@opentdf/sdk 0.8.0-beta.71 → 0.8.0-beta.75

package/dist/types/src/nanotdf/models/ResourceLocator.d.ts

@@ -1,65 +0,0 @@
-import ProtocolEnum from '../enum/ProtocolEnum.js';
-import ResourceLocatorIdentifierEnum from '../enum/ResourceLocatorIdentifierEnum.js';
-/**
- *
- * The Resource Locator is a way for the nanotdf to represent references to external resources in as succinct a format
- * as possible.
- *
- * | Section       | Minimum Length (B) | Maximum Length (B) |
- * |---------------|--------------------|--------------------|
- * | Protocol Enum | 1                  | 1                  |
- * | Body Length   | 1                  | 1                  |
- * | Body          | 1                  | 255                |
- * | Identifier    | 0                  | n                  |
- *
- * @link https://github.com/virtru/nanotdf/blob/master/spec/index.md#3312-kas
- * @link https://github.com/virtru/nanotdf/blob/master/spec/index.md#341-resource-locator
- */
-export default class ResourceLocator {
-    readonly protocol: ProtocolEnum;
-    readonly lengthOfBody: number;
-    readonly body: string;
-    readonly offset: number;
-    readonly id?: string | undefined;
-    readonly idType: ResourceLocatorIdentifierEnum;
-    static readonly PROTOCOL_OFFSET = 0;
-    static readonly PROTOCOL_LENGTH = 1;
-    static readonly LENGTH_OFFSET = 1;
-    static readonly LENGTH_LENGTH = 1;
-    static readonly BODY_OFFSET = 2;
-    static readonly IDENTIFIER_0_BYTE: number;
-    static readonly IDENTIFIER_2_BYTE: number;
-    static readonly IDENTIFIER_8_BYTE: number;
-    static readonly IDENTIFIER_32_BYTE: number;
-    constructor(protocol: ProtocolEnum, lengthOfBody: number, body: string, offset: number, id?: string | undefined, idType?: ResourceLocatorIdentifierEnum);
-    /**
-     * Construct a new URL or URL + identifier pair, for use with NanoTDF envelopes.
-     * @param url The URL to encrypt; `http` and `https` schemes are supported
-     * @param identifier An optional identifier.
-     *    For KAS URLs, this is usually a public key identifier (kid). Limit 32 characters
-     * @returns a value representing the URL and identifier, if present.
-     *    This method throws an Error if the URL is invalid or of the wrong schema,
-     *    or if the identifier is an unsupported value.
-     */
-    static fromURL(url: string, identifier?: string): ResourceLocator;
-    static parse(buff: Uint8Array): ResourceLocator;
-    /**
-     * Length
-     *
-     * @returns { number } Length of resource locator
-     */
-    get length(): number;
-    get url(): string | never;
-    /**
-     * Return the contents of the Resource Locator in buffer
-     */
-    toBuffer(): Uint8Array;
-    /**
-     * Get Identifier
-     *
-     * Returns the identifier of the ResourceLocator or an empty string if no identifier is present.
-     * @returns { string } Identifier of the resource locator.
-     */
-    get identifier(): string;
-}
-//# sourceMappingURL=ResourceLocator.d.ts.map

package/dist/types/src/nanotdf/models/ResourceLocator.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ResourceLocator.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/models/ResourceLocator.ts"],"names":[],"mappings":"AACA,OAAO,YAAY,MAAM,yBAAyB,CAAC;AACnD,OAAO,6BAA6B,MAAM,0CAA0C,CAAC;AAErF;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,OAAO,OAAO,eAAe;IAYhC,QAAQ,CAAC,QAAQ,EAAE,YAAY;IAC/B,QAAQ,CAAC,YAAY,EAAE,MAAM;IAC7B,QAAQ,CAAC,IAAI,EAAE,MAAM;IACrB,QAAQ,CAAC,MAAM,EAAE,MAAM;IACvB,QAAQ,CAAC,EAAE,CAAC,EAAE,MAAM;IACpB,QAAQ,CAAC,MAAM,EAAE,6BAA6B;IAhBhD,MAAM,CAAC,QAAQ,CAAC,eAAe,KAAK;IACpC,MAAM,CAAC,QAAQ,CAAC,eAAe,KAAK;IACpC,MAAM,CAAC,QAAQ,CAAC,aAAa,KAAK;IAClC,MAAM,CAAC,QAAQ,CAAC,aAAa,KAAK;IAClC,MAAM,CAAC,QAAQ,CAAC,WAAW,KAAK;IAChC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAU;IACnD,MAAM,CAAC,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAU;gBAGzC,QAAQ,EAAE,YAAY,EACtB,YAAY,EAAE,MAAM,EACpB,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,EAAE,CAAC,EAAE,MAAM,YAAA,EACX,MAAM,GAAE,6BAAkE;IAGrF;;;;;;;;OAQG;IACH,MAAM,CAAC,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,GAAG,eAAe;IA2CjE,MAAM,CAAC,KAAK,CAAC,IAAI,EAAE,UAAU;IAiE7B;;;;OAIG;IACH,IAAI,MAAM,IAAI,MAAM,CAEnB;IAED,IAAI,GAAG,IAAI,MAAM,GAAG,KAAK,CASxB;IAED;;OAEG;IACH,QAAQ,IAAI,UAAU;IAuBtB;;;;;OAKG;IACH,IAAI,UAAU,IAAI,MAAM,CAEvB;CACF"}

package/dist/types/src/nanotdf/models/Signature.d.ts

@@ -1,33 +0,0 @@
-import Header from './Header.js';
-/**
- * NanoTDF Signature
- *
- * The signature section is an optional section that contains an ECDSA signature used to cryptographically bind the Header and Payload to a creator of the nanotdf. The key used for signing is the private key of the creator of the nanotdf. The ECC Params used for the signature are described in Section 3.3.1.4.2. The private key used for this signature is distinctly different than the ephemeral private key. This is a persistent key belonging to an individual, entity, or device that creates nanotdfs. The signature is used to authenticate the entire nanotdf and contains both the public key related to the creators private key and the resulting signature. The structure of this section:
- *
- * | Section    | Minimum Length (B) | Maximum Length (B) |
- * |------------|--------------------|--------------------|
- * | Public Key | 33                 | 67                 |
- * | Signature  | 64                 | 132                |
- *
- * @link https://github.com/virtru/nanotdf/blob/master/spec/index.md#333-signature
- */
-export default class Signature {
-    publicKey: Uint8Array;
-    signature: Uint8Array;
-    static parse(header: Header, buff: Uint8Array): {
-        signature: Signature;
-        offset: number;
-    } | never;
-    constructor(publicKey: Uint8Array, signature: Uint8Array);
-    /**
-     * Length
-     *
-     * @returns { number } Length of signature
-     */
-    get length(): number;
-    /**
-     * Copy the contents of the signature to buffer
-     */
-    copyToBuffer(target: Uint8Array): void;
-}
-//# sourceMappingURL=Signature.d.ts.map

package/dist/types/src/nanotdf/models/Signature.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"Signature.d.ts","sourceRoot":"","sources":["../../../../../src/nanotdf/models/Signature.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,aAAa,CAAC;AAIjC;;;;;;;;;;;GAWG;AACH,MAAM,CAAC,OAAO,OAAO,SAAS;IACrB,SAAS,EAAE,UAAU,CAAC;IACtB,SAAS,EAAE,UAAU,CAAC;IAE7B,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,GAAG;QAAE,SAAS,EAAE,SAAS,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,GAAG,KAAK;gBAuCpF,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,UAAU;IAKxD;;;;OAIG;IACH,IAAI,MAAM,IAAI,MAAM,CAEnB;IAED;;OAEG;IACH,YAAY,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI;CAQvC"}

package/dist/types/src/nanotdf-crypto/ciphers.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ciphers.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/ciphers.ts"],"names":[],"mappings":"AAAA,oBAAY,OAAO;IACjB,MAAM,YAAY;CACnB;AAED,oBAAY,gBAAgB;IAC1B,MAAM,MAAM;CACb;AAMD,eAAO,MAAM,gBAAgB,UAAa,CAAC"}

package/dist/types/src/nanotdf-crypto/decrypt.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"decrypt.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/decrypt.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;GAWG;AACH,wBAA8B,OAAO,CACnC,GAAG,EAAE,SAAS,EACd,UAAU,EAAE,UAAU,EACtB,EAAE,EAAE,UAAU,EACd,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,WAAW,CAAC,CAUtB"}

package/dist/types/src/nanotdf-crypto/digest.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"digest.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/digest.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,OAAO,UAAU,MAAM,CAC5B,QAAQ,EAAE,mBAAmB,EAC7B,IAAI,EAAE,eAAe,GACpB,OAAO,CAAC,WAAW,CAAC,CAEtB"}

package/dist/types/src/nanotdf-crypto/ecdsaSignature.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ecdsaSignature.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/ecdsaSignature.ts"],"names":[],"mappings":"AAGA;;;;;;;;;GASG;AACH,wBAAsB,eAAe,CACnC,UAAU,EAAE,SAAS,EACrB,IAAI,EAAE,UAAU,GACf,OAAO,CAAC,WAAW,CAAC,CAUtB;AAED;;;;;;;;;;GAUG;AACH,wBAAsB,oBAAoB,CACxC,SAAS,EAAE,SAAS,EACpB,SAAS,EAAE,UAAU,EACrB,IAAI,EAAE,UAAU,GACf,OAAO,CAAC,OAAO,CAAC,CAWlB;AAED;;;;;;GAMG;AACH,wBAAgB,4BAA4B,CAAC,cAAc,EAAE,UAAU,GAAG;IACxE,CAAC,EAAE,UAAU,CAAC;IACd,CAAC,EAAE,UAAU,CAAC;CACf,CAeA"}

package/dist/types/src/nanotdf-crypto/encrypt.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"encrypt.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/encrypt.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;GAWG;AACH,wBAA8B,OAAO,CACnC,GAAG,EAAE,SAAS,EACd,SAAS,EAAE,UAAU,EACrB,EAAE,EAAE,UAAU,EACd,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,WAAW,CAAC,CAUtB"}

package/dist/types/src/nanotdf-crypto/enums.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"enums.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/enums.ts"],"names":[],"mappings":"AAAA,oBAAY,aAAa;IACvB,IAAI,SAAS;IACb,KAAK,UAAU;IACf,KAAK,UAAU;IACf,IAAI,SAAS;IACb,QAAQ,aAAa;IACrB,OAAO,YAAY;CACpB;AAED,oBAAY,UAAU;IACpB,IAAI,UAAU;IACd,IAAI,UAAU;IACd,IAAI,UAAU;CACf;AAED,oBAAY,UAAU;IACpB,MAAM,YAAY;CACnB;AAED,oBAAY,QAAQ;IAClB,IAAI,UAAU;IACd,MAAM,YAAY;IAClB,MAAM,YAAY;IAClB,MAAM,YAAY;CACnB;AAED,oBAAY,SAAS;IACnB,GAAG,QAAQ;IACX,KAAK,UAAU;IACf,IAAI,SAAS;CACd;AAED,oBAAY,OAAO;IACjB,OAAO,YAAY;IACnB,MAAM,WAAW;CAClB;AAED,oBAAY,YAAY;IACtB,OAAO,YAAY;IACnB,OAAO,YAAY;IACnB,UAAU,eAAe;IACzB,SAAS,cAAc;IACvB,MAAM,WAAW;IACjB,IAAI,SAAS;IACb,SAAS,cAAc;IACvB,OAAO,YAAY;CACpB"}

package/dist/types/src/nanotdf-crypto/exportCryptoKey.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"exportCryptoKey.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/exportCryptoKey.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,wBAA8B,eAAe,CAAC,GAAG,EAAE,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC,CAWlF"}

package/dist/types/src/nanotdf-crypto/generateKeyPair.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"generateKeyPair.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/generateKeyPair.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAErE,UAAU,sBAAsB;IAC9B,IAAI,EAAE,aAAa,CAAC,IAAI,GAAG,aAAa,CAAC,KAAK,CAAC;IAC/C,KAAK,EAAE,UAAU,CAAC;IAClB,SAAS,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;IAC/B,aAAa,EAAE,OAAO,CAAC;CACxB;AAED,wBAAsB,eAAe,CACnC,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,aAAa,EAAE,GAAE,sBAK5D,GACA,OAAO,CAAC,aAAa,GAAG,KAAK,CAAC,CAEhC"}

package/dist/types/src/nanotdf-crypto/generateRandomNumber.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"generateRandomNumber.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/generateRandomNumber.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAI/D"}

package/dist/types/src/nanotdf-crypto/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,OAAO,IAAI,OAAO,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,OAAO,IAAI,MAAM,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,EAAE,OAAO,IAAI,OAAO,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,EAAE,iBAAiB,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AAC5E,OAAO,KAAK,KAAK,MAAM,YAAY,CAAC"}

package/dist/types/src/nanotdf-crypto/keyAgreement.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"keyAgreement.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/keyAgreement.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AA4BH,UAAU,mBAAmB;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,uBAAuB,CAAC;IAClC,QAAQ,EAAE,UAAU,CAAC;IACrB,QAAQ,EAAE,UAAU,GAAG,WAAW,CAAC;IACnC,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB,aAAa,EAAE,OAAO,CAAC;CACxB;AAED;;;;;;GAMG;AACH,wBAAsB,YAAY,CAChC,UAAU,EAAE,SAAS,EACrB,SAAS,EAAE,SAAS,EACpB,OAAO,GAAE,OAAO,CAAC,mBAAmB,CAcnC,GACA,OAAO,CAAC,SAAS,CAAC,CA0EpB"}

package/dist/types/src/nanotdf-crypto/pemPublicToCrypto.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"pemPublicToCrypto.d.ts","sourceRoot":"","sources":["../../../../src/nanotdf-crypto/pemPublicToCrypto.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAgDH,UAAU,wBAAwB;IAChC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,QAAQ,EAAE,CAAC;IACpB,aAAa,EAAE,OAAO,CAAC;CACxB;AA6CD;;;;;;;;;GASG;AACH,wBAAsB,iBAAiB,CACrC,GAAG,EAAE,MAAM,EACX,OAAO,GAAE,wBAER,GACA,OAAO,CAAC,SAAS,CAAC,CAsCpB;AAyBD,wBAAsB,eAAe,CACnC,GAAG,EAAE,MAAM,EACX,OAAO,GAAE,wBAER,GACA,OAAO,CAAC,SAAS,CAAC,CAapB"}

package/dist/types/src/tdf/NanoTDF/NanoTDF.d.ts

@@ -1,99 +0,0 @@
-declare enum CipherType {
-    Aes256Gcm64 = 0,// Default cipher
-    Aes256Gcm96 = 1,
-    Aes256Gcm104 = 2,
-    Aes256Gcm112 = 3,
-    Aes256Gcm120 = 4,
-    Aes256Gcm128 = 5
-}
-/**
- * The Signature ECC Mode is used to determine the length of the signature at the end of a nanotdf. This, in
- * combination with the previous HAS_SIGNATURE section, describe the signature of the nanotdf. The following table
- * describes the valid values and the associated ECC Params.
- */
-declare enum CurveName {
-    Secp256R1 = 0,
-    Secp384R1 = 1,
-    Secp521R1 = 2
-}
-export declare enum ResourceLocatorProtocol {
-    Http = 0,
-    Https = 1,
-    Unreserverd = 2,
-    SharedResourceDirectory = 255
-}
-export declare enum PolicyType {
-    Remote = 0,
-    EmbeddedText = 1,
-    EmbeddedEncrypted = 2,// Default policy
-    EmbeddedEncryptedPKA = 3
-}
-/**
- * Resource Locator interface
- */
-export interface ResourceLocator {
-    protocol: ResourceLocatorProtocol;
-    length: number;
-    body: string;
-}
-/**
- * Policy interface
- */
-export interface Policy {
-    type: PolicyType;
-    binding: Uint8Array;
-}
-/**
- * Remote policy interface
- */
-export interface RemotePolicy extends Policy {
-    protocol: ResourceLocatorProtocol;
-    urn: string;
-}
-/**
- * Embedded policy interface
- */
-export interface EmbeddedPolicy extends Policy {
-    content: Uint8Array;
-}
-/**
- * Header interface
- */
-export interface Header {
-    magicNumberVersion: Uint8Array;
-    kas: ResourceLocator;
-    useECDSABinding: boolean;
-    ephemeralCurveName: CurveName;
-    hasSignature: boolean;
-    signatureCurveName: CurveName;
-    symmetricCipher: CipherType;
-    authTagLength: number;
-    policy: RemotePolicy | EmbeddedPolicy;
-    ephemeralPublicKey: Uint8Array;
-}
-/**
- * Payload interface
- */
-export interface Payload {
-    iv: Uint8Array;
-    ciphertext: Uint8Array;
-    authTag: Uint8Array;
-    ciphertextAuthTag: Uint8Array;
-}
-/**
- * Signature interface
- */
-export interface Signature {
-    publicKey: Uint8Array;
-    signature: Uint8Array;
-}
-/**
- * NanoTDF interface
- */
-export interface NanoTDF {
-    header: Header;
-    payload: Payload;
-    signature: Signature;
-}
-export {};
-//# sourceMappingURL=NanoTDF.d.ts.map

package/dist/types/src/tdf/NanoTDF/NanoTDF.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"NanoTDF.d.ts","sourceRoot":"","sources":["../../../../../src/tdf/NanoTDF/NanoTDF.ts"],"names":[],"mappings":"AAAA,aAAK,UAAU;IACb,WAAW,IAAA,CAAE,iBAAiB;IAC9B,WAAW,IAAA;IACX,YAAY,IAAA;IACZ,YAAY,IAAA;IACZ,YAAY,IAAA;IACZ,YAAY,IAAA;CACb;AAED;;;;GAIG;AACH,aAAK,SAAS;IACZ,SAAS,IAAA;IACT,SAAS,IAAA;IACT,SAAS,IAAA;CACV;AAED,oBAAY,uBAAuB;IACjC,IAAI,IAAA;IACJ,KAAK,IAAA;IACL,WAAW,IAAA;IACX,uBAAuB,MAAO;CAC/B;AAED,oBAAY,UAAU;IACpB,MAAM,IAAA;IACN,YAAY,IAAA;IACZ,iBAAiB,IAAA,CAAE,iBAAiB;IACpC,oBAAoB,IAAA;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,uBAAuB,CAAC;IAClC,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;CACd;AAED;;GAEG;AACH,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,UAAU,CAAC;IACjB,OAAO,EAAE,UAAU,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,YAAa,SAAQ,MAAM;IAC1C,QAAQ,EAAE,uBAAuB,CAAC;IAClC,GAAG,EAAE,MAAM,CAAC;CACb;AAED;;GAEG;AACH,MAAM,WAAW,cAAe,SAAQ,MAAM;IAC5C,OAAO,EAAE,UAAU,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,MAAM;IAErB,kBAAkB,EAAE,UAAU,CAAC;IAG/B,GAAG,EAAE,eAAe,CAAC;IAGrB,eAAe,EAAE,OAAO,CAAC;IACzB,kBAAkB,EAAE,SAAS,CAAC;IAG9B,YAAY,EAAE,OAAO,CAAC;IACtB,kBAAkB,EAAE,SAAS,CAAC;IAC9B,eAAe,EAAE,UAAU,CAAC;IAE5B,aAAa,EAAE,MAAM,CAAC;IAGtB,MAAM,EAAE,YAAY,GAAG,cAAc,CAAC;IAGtC,kBAAkB,EAAE,UAAU,CAAC;CAChC;AAED;;GAEG;AACH,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,UAAU,CAAC;IACf,UAAU,EAAE,UAAU,CAAC;IACvB,OAAO,EAAE,UAAU,CAAC;IACpB,iBAAiB,EAAE,UAAU,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,SAAS,EAAE,UAAU,CAAC;IACtB,SAAS,EAAE,UAAU,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,OAAO;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,OAAO,CAAC;IACjB,SAAS,EAAE,SAAS,CAAC;CACtB"}

package/dist/types/src/types/index.d.ts

@@ -1,45 +0,0 @@
-import PolicyTypeEnum from '../nanotdf/enum/PolicyTypeEnum.js';
-export type InputSource = ReadableStream<Uint8Array> | Uint8Array | string | ArrayBuffer | Promise<ReadableStream<Uint8Array>>;
-type Header = {
-    magicNumberVersion: string[];
-    kas: {
-        protocol: number;
-        length: number;
-        body: string;
-    };
-    eccBindingMode: {
-        useECDSABinding: boolean;
-        ephemeralCurveName: number;
-    };
-    symmetricPayloadConfig: {
-        hasSignature: boolean;
-        signatureCurveName: number;
-        symmetricCipher: number;
-    };
-    ephemeralPublicKey: string[];
-};
-type HeaderPolicy = {
-    type: PolicyTypeEnum;
-    content: string[];
-    binding: string[];
-};
-type RemotePolicy = {
-    protocol: number;
-    length: number;
-    body: string;
-};
-export type PlainEmbeddedHeader = Header & {
-    policy: HeaderPolicy;
-};
-export type EmbeddedHeader = Header & {
-    policy: HeaderPolicy;
-};
-export type RemoteHeader = Header & {
-    policy: {
-        type: PolicyTypeEnum;
-        remotePolicy: RemotePolicy;
-        binding: string[];
-    };
-};
-export {};
-//# sourceMappingURL=index.d.ts.map

package/dist/types/src/types/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/types/index.ts"],"names":[],"mappings":"AAAA,OAAO,cAAc,MAAM,mCAAmC,CAAC;AAE/D,MAAM,MAAM,WAAW,GACnB,cAAc,CAAC,UAAU,CAAC,GAC1B,UAAU,GACV,MAAM,GACN,WAAW,GACX,OAAO,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC;AAExC,KAAK,MAAM,GAAG;IACZ,kBAAkB,EAAE,MAAM,EAAE,CAAC;IAC7B,GAAG,EAAE;QACH,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,EAAE,MAAM,CAAC;KACd,CAAC;IACF,cAAc,EAAE;QACd,eAAe,EAAE,OAAO,CAAC;QACzB,kBAAkB,EAAE,MAAM,CAAC;KAC5B,CAAC;IACF,sBAAsB,EAAE;QACtB,YAAY,EAAE,OAAO,CAAC;QACtB,kBAAkB,EAAE,MAAM,CAAC;QAC3B,eAAe,EAAE,MAAM,CAAC;KACzB,CAAC;IACF,kBAAkB,EAAE,MAAM,EAAE,CAAC;CAC9B,CAAC;AAEF,KAAK,YAAY,GAAG;IAClB,IAAI,EAAE,cAAc,CAAC;IACrB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB,CAAC;AAEF,KAAK,YAAY,GAAG;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;CACd,CAAC;AAEF,MAAM,MAAM,mBAAmB,GAAG,MAAM,GAAG;IACzC,MAAM,EAAE,YAAY,CAAC;CACtB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG,MAAM,GAAG;IACpC,MAAM,EAAE,YAAY,CAAC;CACtB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG,MAAM,GAAG;IAClC,MAAM,EAAE;QACN,IAAI,EAAE,cAAc,CAAC;QACrB,YAAY,EAAE,YAAY,CAAC;QAC3B,OAAO,EAAE,MAAM,EAAE,CAAC;KACnB,CAAC;CACH,CAAC"}

package/dist/web/src/nanoclients.js

@@ -1,287 +0,0 @@
-import { Client, NanoTDF, encrypt, decrypt, encryptDataset, getHkdfSalt, DefaultParams, } from './nanotdf/index.js';
-import { keyAgreement } from './nanotdf-crypto/index.js';
-import { PolicyBuilder } from './tdf/Policy.js';
-import { fetchECKasPubKey } from './access.js';
-import { ConfigurationError } from './errors.js';
-// Define default options
-const defaultOptions = {
-    ecdsaBinding: false,
-};
-/**
- * NanoTDF SDK Client. Deprecated in favor of OpenTDF.
- *
- */
-export class NanoTDFClient extends Client {
-    /**
-     * Decrypt ciphertext
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    async decrypt(ciphertext) {
-        // Parse ciphertext
-        const nanotdf = NanoTDF.from(ciphertext);
-        // TODO: The version number should be fetched from the API
-        const version = '0.0.1';
-        const kasUrl = nanotdf.header.getKasRewrapUrl();
-        // Rewrap key on every request
-        const { unwrappedKey: ukey } = await this.rewrapKey(nanotdf.header.toBuffer(), kasUrl, nanotdf.header.magicNumberVersion, version);
-        if (!ukey) {
-            throw new Error('internal: key rewrap failure');
-        }
-        // Return decrypt promise
-        return decrypt(ukey, nanotdf);
-    }
-    /**
-     * Decrypt ciphertext of the legacy TDF, with the older, smaller i.v. calculation.
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    async decryptLegacyTDF(ciphertext) {
-        // Parse ciphertext
-        const nanotdf = NanoTDF.from(ciphertext, undefined, true);
-        const legacyVersion = '0.0.0';
-        // Rewrap key on every request
-        const { unwrappedKey: key } = await this.rewrapKey(nanotdf.header.toBuffer(), nanotdf.header.getKasRewrapUrl(), nanotdf.header.magicNumberVersion, legacyVersion);
-        if (!key) {
-            throw new Error('internal: failed unwrap');
-        }
-        // Return decrypt promise
-        return decrypt(key, nanotdf);
-    }
-    /**
-     * Encrypts the given data using the NanoTDF encryption scheme.
-     *
-     * @param data The data to be encrypted.
-     * @param options The encryption options (currently unused).
-     * @returns A promise that resolves to the encrypted data as an ArrayBuffer.
-     * @throws If the initialization vector is not a number.
-     */
-    async encrypt(data, options) {
-        // For encrypt always generate the client ephemeralKeyPair
-        const ephemeralKeyPair = await this.ephemeralKeyPair;
-        const initializationVector = this.iv;
-        if (typeof initializationVector !== 'number') {
-            throw new ConfigurationError('NanoTDF clients are single use. Please generate a new client and keypair.');
-        }
-        delete this.iv;
-        if (!this.kasPubKey) {
-            this.kasPubKey = await fetchECKasPubKey(this.kasUrl);
-        }
-        // Create a policy for the tdf
-        const policy = new PolicyBuilder();
-        // Add data attributes.
-        for (const dataAttribute of this.dataAttributes) {
-            const attribute = {
-                attribute: dataAttribute,
-                pubKey: this.kasPubKey.publicKey,
-                kasUrl: this.kasUrl,
-            };
-            policy.addAttribute(attribute);
-        }
-        if (this.dissems.length == 0 && this.dataAttributes.length == 0) {
-            console.warn('This policy has an empty attributes list and an empty dissemination list. This will allow any entity with a valid Entity Object to access this TDF.');
-        }
-        // Encrypt the policy.
-        const policyObjectAsStr = policy.toJSON();
-        // IV is always '1', since the new keypair is generated on encrypt
-        // using the same key is fine.
-        const lengthAsUint32 = new Uint32Array(1);
-        lengthAsUint32[0] = initializationVector;
-        const lengthAsUint24 = new Uint8Array(lengthAsUint32.buffer);
-        // NOTE: We are only interested in only first 3 bytes.
-        const payloadIV = new Uint8Array(12).fill(0);
-        payloadIV[9] = lengthAsUint24[2];
-        payloadIV[10] = lengthAsUint24[1];
-        payloadIV[11] = lengthAsUint24[0];
-        const mergedOptions = { ...defaultOptions, ...options };
-        return encrypt(policyObjectAsStr, this.kasPubKey, ephemeralKeyPair, payloadIV, data, mergedOptions.ecdsaBinding);
-    }
-}
-/**
- * NanoTDF Dataset SDK Client
- *
- *
- * @example
- * ```
- * import { clientSecretAuthProvider, NanoTDFDatasetClient } from '@opentdf/sdk';
- *
- * const OIDC_ENDPOINT = 'http://localhost:65432/auth/realms/opentdf';
- * const KAS_URL = 'http://localhost:65432/api/kas/';
- *
- * const ciphertext = '...';
- * const client = new NanoTDFDatasetClient({
- *   authProvider: await clientSecretAuthProvider({
- *     clientId: 'tdf-client',
- *     clientSecret: '123-456',
- *     exchange: 'client',
- *     oidcOrigin: OIDC_ENDPOINT,
- *   }),
- *   kasEndpoint: KAS_URL,
- * });
- * const plaintext = client.decrypt(ciphertext);
- * console.log('Plaintext', plaintext);
- * ```
- */
-export class NanoTDFDatasetClient extends Client {
-    /**
-     * Create new NanoTDF Dataset Client
-     *
-     * The Ephemeral Key Pair can either be provided or will be generate when fetching the entity object. Once set it
-     * cannot be changed. If a new ephemeral key is desired it a new client should be initialized.
-     * There is no performance impact for creating a new client IFF the ephemeral key pair is provided.
-     *
-     * @param clientConfig OIDC client credentials
-     * @param kasUrl Key access service URL
-     * @param ephemeralKeyPair (optional) ephemeral key pair to use
-     * @param maxKeyIterations Max iteration to performe without a key rotation
-     */
-    constructor(opts) {
-        if (opts.maxKeyIterations &&
-            opts.maxKeyIterations > NanoTDFDatasetClient.NTDF_MAX_KEY_ITERATIONS) {
-            throw new ConfigurationError(`key iteration exceeds max iterations(${NanoTDFDatasetClient.NTDF_MAX_KEY_ITERATIONS})`);
-        }
-        super(opts);
-        this.maxKeyIteration = opts.maxKeyIterations || NanoTDFDatasetClient.NTDF_MAX_KEY_ITERATIONS;
-        this.keyIterationCount = 0;
-    }
-    /**
-     * Encrypt data
-     *
-     * Pass a string, TypedArray, or ArrayBuffer data and get a promise which resolves ciphertext
-     *
-     * @param data to decrypt
-     */
-    async encrypt(data, options) {
-        // Intial encrypt
-        if (this.keyIterationCount == 0) {
-            const mergedOptions = { ...defaultOptions, ...options };
-            this.ecdsaBinding = mergedOptions.ecdsaBinding;
-            // For encrypt always generate the client ephemeralKeyPair
-            const ephemeralKeyPair = await this.ephemeralKeyPair;
-            if (!this.kasPubKey) {
-                this.kasPubKey = await fetchECKasPubKey(this.kasUrl);
-            }
-            // Create a policy for the tdf
-            const policy = new PolicyBuilder();
-            // Add data attributes.
-            for (const dataAttribute of this.dataAttributes) {
-                const attribute = {
-                    attribute: dataAttribute,
-                    kasPubKey: this.kasPubKey.publicKey,
-                    kasUrl: this.kasUrl,
-                };
-                policy.addAttribute(attribute);
-            }
-            if (this.dissems.length == 0 || this.dataAttributes.length == 0) {
-                console.warn('This policy has an empty attributes list and an empty dissemination list. This will allow any entity with a valid Entity Object to access this TDF.');
-            }
-            // Encrypt the policy.
-            const policyObjectAsStr = policy.toJSON();
-            const ivVector = this.generateIV();
-            // Generate a symmetric key.
-            this.symmetricKey = await keyAgreement(ephemeralKeyPair.privateKey, await this.kasPubKey.key, await getHkdfSalt(DefaultParams.magicNumberVersion));
-            const nanoTDFBuffer = await encrypt(policyObjectAsStr, this.kasPubKey, ephemeralKeyPair, ivVector, data, this.ecdsaBinding);
-            // Cache the header and increment the key iteration
-            if (!this.cachedHeader) {
-                const nanoTDF = NanoTDF.from(nanoTDFBuffer);
-                this.cachedHeader = nanoTDF.header;
-            }
-            this.keyIterationCount += 1;
-            return nanoTDFBuffer;
-        }
-        this.keyIterationCount += 1;
-        if (!this.cachedHeader) {
-            throw new ConfigurationError('invalid dataset client: empty nanoTDF header');
-        }
-        if (!this.symmetricKey) {
-            throw new ConfigurationError('invalid dataset client: empty dek');
-        }
-        this.keyIterationCount += 1;
-        if (this.keyIterationCount == this.maxKeyIteration) {
-            // reset the key iteration
-            this.keyIterationCount = 0;
-        }
-        const ivVector = this.generateIV();
-        return encryptDataset(this.symmetricKey, this.cachedHeader, ivVector, data);
-    }
-    /**
-     * Decrypt ciphertext
-     *
-     * Pass a base64 string, TypedArray, or ArrayBuffer ciphertext and get a promise which resolves plaintext
-     *
-     * @param ciphertext Ciphertext to decrypt
-     */
-    async decrypt(ciphertext) {
-        // Parse ciphertext
-        const nanotdf = NanoTDF.from(ciphertext);
-        if (!this.cachedEphemeralKey) {
-            // First decrypt
-            return this.rewrapAndDecrypt(nanotdf);
-        }
-        // Other encrypts
-        if (this.cachedEphemeralKey.toString() == nanotdf.header.ephemeralPublicKey.toString()) {
-            const ukey = this.unwrappedKey;
-            if (!ukey) {
-                // These should have thrown already.
-                throw new Error('internal: key rewrap failure');
-            }
-            // Return decrypt promise
-            return decrypt(ukey, nanotdf);
-        }
-        else {
-            return this.rewrapAndDecrypt(nanotdf);
-        }
-    }
-    async rewrapAndDecrypt(nanotdf) {
-        // TODO: The version number should be fetched from the API
-        const version = '0.0.1';
-        // Rewrap key on every request
-        const { unwrappedKey: ukey } = await this.rewrapKey(nanotdf.header.toBuffer(), nanotdf.header.getKasRewrapUrl(), nanotdf.header.magicNumberVersion, version);
-        if (!ukey) {
-            // These should have thrown already.
-            throw new Error('internal: key rewrap failure');
-        }
-        this.cachedEphemeralKey = nanotdf.header.ephemeralPublicKey;
-        this.unwrappedKey = ukey;
-        // Return decrypt promise
-        return decrypt(ukey, nanotdf);
-    }
-    generateIV() {
-        const iv = this.iv;
-        if (iv === undefined) {
-            // iv has passed the maximum iteration count for this dek
-            throw new ConfigurationError('dataset full');
-        }
-        // assert iv ∈ ℤ ∩ (0, 2^24)
-        if (!Number.isInteger(iv) || iv <= 0 || 0xff_ffff < iv) {
-            // Something has fiddled with the iv outside of the expected behavior
-            // could indicate a race condition, e.g. if two workers or handlers are
-            // processing the file at once, for example.
-            throw new Error('internal: invalid state');
-        }
-        const lengthAsUint32 = new Uint32Array(1);
-        lengthAsUint32[0] = iv;
-        const lengthAsUint24 = new Uint8Array(lengthAsUint32.buffer);
-        // NOTE: We are only interested in only first 3 bytes.
-        const ivVector = new Uint8Array(Client.IV_SIZE).fill(0);
-        ivVector[9] = lengthAsUint24[2];
-        ivVector[10] = lengthAsUint24[1];
-        ivVector[11] = lengthAsUint24[0];
-        // Increment the IV
-        if (iv == 0xff_ffff) {
-            delete this.iv;
-        }
-        else {
-            this.iv = iv + 1;
-        }
-        return ivVector;
-    }
-}
-// Total unique IVs(2^24 -1) used for encrypting the nano tdf payloads
-// IV starts from 1 since the 0 IV is reserved for policy encryption
-NanoTDFDatasetClient.NTDF_MAX_KEY_ITERATIONS = 8388606;
-//# sourceMappingURL=data:application/json;base64,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

package/dist/web/src/nanoindex.js

@@ -1,5 +0,0 @@
-export * as AuthProviders from './auth/providers.js';
-export { attributeFQNsAsValues } from './policy/api.js';
-export * from './nanoclients.js';
-export { version, clientType } from './version.js';
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoibmFub2luZGV4LmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vLi4vc3JjL25hbm9pbmRleC50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiQUFBQSxPQUFPLEtBQUssYUFBYSxNQUFNLHFCQUFxQixDQUFDO0FBQ3JELE9BQU8sRUFBRSxxQkFBcUIsRUFBRSxNQUFNLGlCQUFpQixDQUFDO0FBQ3hELGNBQWMsa0JBQWtCLENBQUM7QUFDakMsT0FBTyxFQUFFLE9BQU8sRUFBRSxVQUFVLEVBQUUsTUFBTSxjQUFjLENBQUMifQ==