@pagopa/io-react-native-cie 1.2.0 → 1.2.1

package/IoReactNativeCie.podspec

@@ -16,7 +16,7 @@ Pod::Spec.new do |s|
   s.source_files = "ios/**/*.{h,m,mm,swift}"
 
   # CieSDK dependency
-  s.dependency "CieSDK", "~> 0.1.12"
+  s.dependency "CieSDK", "~> 0.1.13"
 
 # Use install_modules_dependencies helper to install the dependencies if React Native version >=0.71.0.
 # See https://github.com/facebook/react-native/blob/febf6b7f33fdb4904669f99d795eba4c0f95d7bf/scripts/cocoapods/new_architecture.rb#L79.

package/README.md

@@ -97,22 +97,24 @@ To run the example app, follow the instructions in [example/README.md](./example
 
 List of available functions
 
-| Function                                                                | Return             | Description                                                                    |
-| :---------------------------------------------------------------------- | :----------------- | :----------------------------------------------------------------------------- |
-| `hasNFCFeature()`                                                       | `Promise<boolean>` | (Android) Checks if the device supports NFC feature                            |
-| `isNfcEnabled()`                                                        | `Promise<boolean>` | (Android) Checks if the NFC is currently enabled                               |
-| `isCieAuthenticationSupported()`                                        | `Promise<boolean>` | (Android) Checks if the device supports CIE autentication                      |
-| `openNfcSettings()`                                                     | `Promise<void>`    | (Android) Opens NFC system settings page                                       |
-| `addListener(event: CieEvent, listener: CieEventHandlers)`              | `() => void`       | Adds a NFC event listener and returns a function to unsubscribe from the event |
-| `removeListener(event: CieEvent)`                                       | `void`             | Removes all listeners for the specified event                                  |
-| `removeAllListeners()`                                                  | `void`             | Removes all registered listeners                                               |
-| `setCustomIdpUrl(url?: string)`                                         | `void`             | Updates IDP url, if `undefined` will use the default IDP url                   |
-| `setAlertMessage(key: AlertMessageKey, value: string)`                  | `void`             | (iOS) Updates iOS NFC modal alert message                                      |
-| `setCurrentAlertMessage(value: string)`                                 | `void`             | (iOS) Updates currently displayed iOS NFC modal alert message                  |
-| `startInternalAuthentication(challenge: string)`                        | `Promise<void>`    | Start the CIE IAS/NIS Internal Authentication                                  |
-| `startReadingAttributes(timeout: number)`                               | `Promise<void>`    | Start the CIE attributes reading process                                       |
-| `startReading(pin: string, authenticationUrl: string, timeout: number)` | `Promise<void>`    | Start the CIE reading process fro authentication                               |
-| `stopReading()`                                                         | `Promise<void>`    | (Android) Stops all reading process                                            |
+| Function                                                                                                                | Return             | Description                                                                    |
+| :---------------------------------------------------------------------------------------------------------------------- | :----------------- | :----------------------------------------------------------------------------- |
+| `hasNFCFeature()`                                                                                                       | `Promise<boolean>` | (Android) Checks if the device supports NFC feature                            |
+| `isNfcEnabled()`                                                                                                        | `Promise<boolean>` | (Android) Checks if the NFC is currently enabled                               |
+| `isCieAuthenticationSupported()`                                                                                        | `Promise<boolean>` | (Android) Checks if the device supports CIE autentication                      |
+| `openNfcSettings()`                                                                                                     | `Promise<void>`    | (Android) Opens NFC system settings page                                       |
+| `addListener(event: CieEvent, listener: CieEventHandlers)`                                                              | `() => void`       | Adds a NFC event listener and returns a function to unsubscribe from the event |
+| `removeListener(event: CieEvent)`                                                                                       | `void`             | Removes all listeners for the specified event                                  |
+| `removeAllListeners()`                                                                                                  | `void`             | Removes all registered listeners                                               |
+| `setCustomIdpUrl(url?: string)`                                                                                         | `void`             | Updates IDP url, if `undefined` will use the default IDP url                   |
+| `setAlertMessage(key: AlertMessageKey, value: string)`                                                                  | `void`             | (iOS) Updates iOS NFC modal alert message                                      |
+| `setCurrentAlertMessage(value: string)`                                                                                 | `void`             | (iOS) Updates currently displayed iOS NFC modal alert message                  |
+| `startInternalAuthentication(challenge: string, resultEncoding?: 'hex' \| 'base64', timeout?: number)`                  | `Promise<void>`    | Start the CIE IAS/NIS Internal Authentication                                  |
+| `startMRTDReading(can: string, resultEncoding?: 'hex' \| 'base64', timeout?: number)`                                   | `Promise<void>`    | Start PACE MRTD reading (reads MRTD data using CAN)                            |
+| `startInternalAuthAndMRTDReading(can: string, challenge: string, resultEncoding?: 'hex' \| 'base64', timeout?: number)` | `Promise<void>`    | Start combined Internal Authentication + PACE MRTD reading                     |
+| `startReadingAttributes(timeout: number)`                                                                               | `Promise<void>`    | Start the CIE attributes reading process                                       |
+| `startReading(pin: string, authenticationUrl: string, timeout: number)`                                                 | `Promise<void>`    | Start the CIE reading process fro authentication                               |
+| `stopReading()`                                                                                                         | `Promise<void>`    | (Android) Stops all reading process                                            |
 
 ## Usage
 

package/android/build.gradle

@@ -78,6 +78,6 @@ dependencies {
   implementation "com.facebook.react:react-android"
   implementation "org.jetbrains.kotlin:kotlin-stdlib:$kotlin_version"
   // CIE SDK
-  implementation "it.pagopa.io.app.cie:cie:0.1.5"
+  implementation "it.pagopa.io.app.cie:cie:0.1.7"
 }
 

package/android/src/main/java/com/pagopa/ioreactnativecie/IoReactNativeCieModule.kt

@@ -5,18 +5,24 @@ import com.facebook.react.bridge.Promise
 import com.facebook.react.bridge.ReactApplicationContext
 import com.facebook.react.bridge.ReactContextBaseJavaModule
 import com.facebook.react.bridge.ReactMethod
-import com.facebook.react.bridge.WritableMap
 import com.facebook.react.bridge.WritableNativeMap
 import com.facebook.react.modules.core.DeviceEventManagerModule
 import com.pagopa.ioreactnativecie.cie.Atr
 import it.pagopa.io.app.cie.CieLogger
 import it.pagopa.io.app.cie.CieSDK
+import it.pagopa.io.app.cie.IntAuthMRTDResponse
+import it.pagopa.io.app.cie.NisAndPaceCallback
 import it.pagopa.io.app.cie.cie.CieAtrCallback
 import it.pagopa.io.app.cie.cie.NfcError
 import it.pagopa.io.app.cie.cie.NfcEvent
 import it.pagopa.io.app.cie.network.NetworkCallback
 import it.pagopa.io.app.cie.network.NetworkError
 import it.pagopa.io.app.cie.nfc.NfcEvents
+import it.pagopa.io.app.cie.nis.InternalAuthenticationResponse
+import it.pagopa.io.app.cie.nis.NisCallback
+import it.pagopa.io.app.cie.pace.MRTDResponse
+import it.pagopa.io.app.cie.pace.PaceCallback
+import it.pagopa.io.app.cie.toHex
 import java.net.URL
 
 class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
@@ -35,16 +41,19 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
    */
   val cieSdk: CieSDK by lazy {
     CieSDK.withContext(currentActivity)
-  };
+  }
 
+  @Suppress("unused")
   @ReactMethod
   fun addListener(eventName: String) {
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun removeListeners(count: Int) {
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun hasNfcFeature(promise: Promise) {
     try {
@@ -56,6 +65,7 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
     }
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun isNfcEnabled(promise: Promise) {
     try {
@@ -67,6 +77,7 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
     }
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun isCieAuthenticationSupported(promise: Promise) {
     cieSdk.isCieAuthenticationSupported().apply {
@@ -74,6 +85,7 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
     }
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun openNfcSettings(promise: Promise) {
     try {
@@ -84,21 +96,205 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
     }
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun setAlertMessage(key: String, value: String) {
     // Android does not support alert messages for NFC reading
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun setCurrentAlertMessage(value: String) {
     // Android does not support alert messages for NFC reading
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun setCustomIdpUrl(url: String) {
     cieSdk.withCustomIdpUrl(url)
   }
 
+  @Suppress("unused")
+  @ReactMethod
+  fun startInternalAuthentication(
+    challenge: String,
+    resultEncoding: String,
+    timeout: Int = 10000,
+    promise: Promise,
+  ) {
+    val encoding: ResultEncoding = ResultEncoding.fromString(resultEncoding)
+    try {
+      cieSdk.startReadingNis(challenge, timeout, object : NfcEvents {
+        override fun event(event: NfcEvent) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.EVENT.value, WritableNativeMap().apply {
+              putString("name", event.name)
+              putDouble(
+                "progress",
+                (event.numeratorForNis.toDouble() / NfcEvent.totalNisOfNumeratorEvent.toDouble())
+              )
+            })
+        }
+
+        override fun error(error: NfcError) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.ERROR.value, WritableNativeMap().apply {
+              putString("name", mapNfcError(error).name)
+              error.msg?.let { putString("message", it) }
+            })
+
+        }
+      }, object : NisCallback {
+        override fun onSuccess(nisAuth: InternalAuthenticationResponse) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.INTERNAL_AUTHENTICATION_SUCCESS.value, WritableNativeMap().apply {
+              putString("nis", encoding.encode(nisAuth.nis))
+              putString("publicKey", encoding.encode(nisAuth.kpubIntServ))
+              putString("sod", encoding.encode(nisAuth.sod))
+              putString("signedChallenge", encoding.encode(nisAuth.challengeSigned))
+            })
+        }
+
+        override fun onError(error: NfcError) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.ERROR.value, WritableNativeMap().apply {
+              putString("name", mapNfcError(error).name)
+              error.msg?.let { putString("message", it) }
+            })
+        }
+      })
+      promise.resolve(null)
+    } catch (e: Exception) {
+      promise.reject(ModuleException.UNKNOWN_EXCEPTION, e.message, e)
+    }
+  }
+
+  @Suppress("unused")
+  @ReactMethod
+  fun startMRTDReading(
+    can: String,
+    resultEncoding: String,
+    timeout: Int = 10000,
+    promise: Promise,
+  ) {
+    val encoding: ResultEncoding = ResultEncoding.fromString(resultEncoding)
+    try {
+      cieSdk.startDoPace(can, timeout, object : NfcEvents {
+        override fun event(event: NfcEvent) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.EVENT.value, WritableNativeMap().apply {
+              putString("name", event.name)
+              putDouble(
+                "progress",
+                (event.numeratorForPace.toDouble() / NfcEvent.totalPaceOfNumeratorEvent.toDouble())
+              )
+            })
+        }
+
+        override fun error(error: NfcError) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.ERROR.value, WritableNativeMap().apply {
+              putString("name", mapNfcError(error).name)
+              error.msg?.let { putString("message", it) }
+            })
+
+        }
+      }, object : PaceCallback {
+        override fun onSuccess(eMRTDResponse: MRTDResponse) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.MRTD_WITH_PACE_SUCCESS.value, WritableNativeMap().apply {
+              putString("dg1", encoding.encode(eMRTDResponse.dg1))
+              putString("dg11", encoding.encode(eMRTDResponse.dg11))
+              putString("sod", encoding.encode(eMRTDResponse.sod))
+            })
+        }
+
+        override fun onError(error: NfcError) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.ERROR.value, WritableNativeMap().apply {
+              putString("name", mapNfcError(error).name)
+              error.msg?.let { putString("message", it) }
+            })
+        }
+      })
+      promise.resolve(null)
+    } catch (e: Exception) {
+      promise.reject(ModuleException.UNKNOWN_EXCEPTION, e.message, e)
+    }
+  }
+
+  @Suppress("unused")
+  @ReactMethod
+  fun startInternalAuthAndMRTDReading(
+    can: String,
+    challenge: String,
+    resultEncoding: String,
+    timeout: Int = 10000,
+    promise: Promise,
+  ) {
+    val encoding: ResultEncoding = ResultEncoding.fromString(resultEncoding)
+    try {
+      cieSdk.startNisAndPace(challenge, can, timeout, object : NfcEvents {
+        override fun event(event: NfcEvent) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.EVENT.value, WritableNativeMap().apply {
+              putString("name", event.name)
+              putDouble(
+                "progress",
+                (event.numeratorForNisAndPace.toDouble() / NfcEvent.totalNisAndPaceOfNumeratorEvent.toDouble())
+              )
+            })
+        }
+
+        override fun error(error: NfcError) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.ERROR.value, WritableNativeMap().apply {
+              putString("name", mapNfcError(error).name)
+              error.msg?.let { putString("message", it) }
+            })
+
+        }
+      }, object : NisAndPaceCallback {
+        override fun onSuccess(intAuthMRTDResponse: IntAuthMRTDResponse) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(
+              EventType.INTERNAL_AUTH_AND_MRTD_WITH_PACE_SUCCESS.value,
+              WritableNativeMap().apply {
+                putMap("nis_data", WritableNativeMap().apply {
+                  putString("nis", encoding.encode(intAuthMRTDResponse.internalAuthentication.nis))
+                  putString(
+                    "publicKey",
+                    encoding.encode(intAuthMRTDResponse.internalAuthentication.kpubIntServ)
+                  )
+                  putString("sod", encoding.encode(intAuthMRTDResponse.internalAuthentication.sod))
+                  putString(
+                    "signedChallenge",
+                    encoding.encode(intAuthMRTDResponse.internalAuthentication.challengeSigned)
+                  )
+                })
+                putMap("mrtd_data", WritableNativeMap().apply {
+                  putString("dg1", encoding.encode(intAuthMRTDResponse.mrtd.dg1))
+                  putString("dg11", encoding.encode(intAuthMRTDResponse.mrtd.dg11))
+                  putString("sod", encoding.encode(intAuthMRTDResponse.mrtd.sod))
+                })
+              })
+        }
+
+        override fun onError(error: NfcError) {
+          this@IoReactNativeCieModule.reactApplicationContext.getJSModule(DeviceEventManagerModule.RCTDeviceEventEmitter::class.java)
+            .emit(EventType.ERROR.value, WritableNativeMap().apply {
+              putString("name", mapNfcError(error).name)
+              error.msg?.let { putString("message", it) }
+            })
+        }
+      })
+      promise.resolve(null)
+    } catch (e: Exception) {
+      promise.reject(ModuleException.UNKNOWN_EXCEPTION, e.message, e)
+    }
+  }
+
+  @Suppress("unused")
   @ReactMethod
   fun startReadingAttributes(
     timeout: Int = 10000,
@@ -148,6 +344,7 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
     }
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun startReading(
     pin: String,
@@ -159,7 +356,7 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
       cieSdk.setPin(pin)
     } catch (e: Exception) {
       promise.reject(ModuleException.PIN_REGEX_NOT_VALID, e.message, e)
-      return;
+      return
     }
 
     try {
@@ -210,6 +407,7 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
     }
   }
 
+  @Suppress("unused")
   @ReactMethod
   fun stopReading() {
     cieSdk.stopNFCListening()
@@ -239,12 +437,34 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
 
   companion object {
     const val NAME = "IoReactNativeCie"
-    const val ERROR_USER_INFO_KEY = "error"
+
+    enum class ResultEncoding(val value: String) {
+      BASE64("base64"),
+      HEX("hex");
+
+      fun encode(data: ByteArray): String = when (this) {
+        BASE64 -> Base64.encodeToString(data, Base64.URL_SAFE or Base64.NO_WRAP)
+        HEX -> data.toHex().uppercase()
+      }
+
+      companion object {
+        fun fromString(value: String?): ResultEncoding {
+          return when (value) {
+            "hex" -> HEX
+            "base64" -> BASE64
+            else -> BASE64 // Default
+          }
+        }
+      }
+    }
 
     enum class EventType(val value: String) {
       EVENT("onEvent"),
       ERROR("onError"),
       ATTRIBUTES_SUCCESS("onAttributesSuccess"),
+      INTERNAL_AUTHENTICATION_SUCCESS("onInternalAuthenticationSuccess"),
+      MRTD_WITH_PACE_SUCCESS("onMRTDWithPaceSuccess"),
+      INTERNAL_AUTH_AND_MRTD_WITH_PACE_SUCCESS("onInternalAuthAndMRTDWithPaceSuccess"),
       SUCCESS("onSuccess")
     }
 
@@ -262,9 +482,9 @@ class IoReactNativeCieModule(reactContext: ReactApplicationContext) :
     }
 
     private object ModuleException {
-      const val PIN_REGEX_NOT_VALID = "PIN_REGEX_NOT_VALID";
-      const val INVALID_AUTH_URL = "INVALID_AUTH_URL";
-      const val UNKNOWN_EXCEPTION = "UNKNOWN_EXCEPTION";
+      const val PIN_REGEX_NOT_VALID = "PIN_REGEX_NOT_VALID"
+      const val INVALID_AUTH_URL = "INVALID_AUTH_URL"
+      const val UNKNOWN_EXCEPTION = "UNKNOWN_EXCEPTION"
     }
   }
 }

package/ios/Data/Data+StringRepresentations.swift

@@ -9,9 +9,9 @@ import Foundation
 
 extension Data {
   
-  /// Converts the data to a lowercase hexadecimal string.
+  /// Converts the data to an uppercase hexadecimal string.
   func toHexString() -> String {
-    return self.map { String(format: "%02x", $0) }.joined()
+    return self.map { String(format: "%02X", $0) }.joined()
   }
   
   /// Converts the data to a base64url encoded string (RFC 7515), without padding.

package/ios/IoReactNativeCie.mm

@@ -31,6 +31,19 @@ RCT_EXTERN_METHOD(startInternalAuthentication:  (NSString)challenge
                   withResolver:             (RCTPromiseResolveBlock)resolve
                   withRejecter:             (RCTPromiseRejectBlock)reject)
 
+RCT_EXTERN_METHOD(startMRTDReading:         (NSString)can
+                  withResultEncoding:       (NSString)encodingString
+                  withTimeout:              (NSNumber)timeout
+                  withResolver:             (RCTPromiseResolveBlock)resolve
+                  withRejecter:             (RCTPromiseRejectBlock)reject)
+
+RCT_EXTERN_METHOD(startInternalAuthAndMRTDReading:  (NSString)can
+                  withChallenge:            (NSString)challenge
+                  withResultEncoding:       (NSString)encodingString
+                  withTimeout:              (NSNumber)timeout
+                  withResolver:             (RCTPromiseResolveBlock)resolve
+                  withRejecter:             (RCTPromiseRejectBlock)reject)
+
 RCT_EXTERN_METHOD(startReadingAttributes:   (NSNumber)timeout
                   withResolver:             (RCTPromiseResolveBlock)resolve
                   withRejecter:             (RCTPromiseRejectBlock)reject)

package/ios/IoReactNativeCie.swift

@@ -85,15 +85,99 @@ class IoReactNativeCie: RCTEventEmitter {
         )
         let encoding = DataEncoding.from(string: encodingString)
         let payload: NSDictionary = [
-          "response": [
+          "nis": internalAuthResponse.nis.encodedDataString(encoding: encoding),
+          "publicKey": internalAuthResponse.publicKey.encodedDataString(encoding: encoding),
+          "sod": internalAuthResponse.sod.encodedDataString(encoding: encoding),
+          "signedChallenge": internalAuthResponse.signedChallenge.encodedDataString(encoding: encoding)
+        ]
+        self.sendEvent(
+          withName: EventType.onInternalAuthenticationSuccess.rawValue, body: payload)
+        resolve(nil)
+      } catch {
+        guard let nfcDigitalIdError = error as? NfcDigitalIdError else {
+          reject(ModuleException.unexpected.rawValue, error.localizedDescription, error)
+          return
+        }
+        handleReadError(nfcDigitalIdError)
+        resolve(nil)
+      }
+    }
+  }
+  
+  @objc func startMRTDReading(
+    _ can: String,
+    withResultEncoding encodingString: String,
+    withTimeout timeout: Int,
+    withResolver resolve: @escaping RCTPromiseResolveBlock,
+    withRejecter reject: @escaping RCTPromiseRejectBlock
+  ) {
+    Task { [weak self] in
+      guard let self = self else {
+        reject(ModuleException.threadingError.rawValue, "Failed to perform background operation, self was deallocated", nil)
+        return
+      }
+      
+      do {
+        let mrtdResponse = try await self.cieSdk.performMtrd(
+          can: can,
+          handleReadEvent
+        )
+        let encoding = DataEncoding.from(string: encodingString)
+        let payload: NSDictionary = [
+          "dg1": mrtdResponse.dg1.encodedDataString(encoding: encoding),
+          "dg11": mrtdResponse.dg11.encodedDataString(encoding: encoding),
+          "sod": mrtdResponse.sod.encodedDataString(encoding: encoding)
+        ]
+        self.sendEvent(
+          withName: EventType.onMRTDWithPaceSuccess.rawValue, body: payload)
+        resolve(nil)
+      } catch {
+        guard let nfcDigitalIdError = error as? NfcDigitalIdError else {
+          reject(ModuleException.unexpected.rawValue, error.localizedDescription, error)
+          return
+        }
+        handleReadError(nfcDigitalIdError)
+        resolve(nil)
+      }
+    }
+  }
+  
+  @objc func startInternalAuthAndMRTDReading(
+    _ can: String,
+    withChallenge challenge: String,
+    withResultEncoding encodingString: String,
+    withTimeout timeout: Int,
+    withResolver resolve: @escaping RCTPromiseResolveBlock,
+    withRejecter reject: @escaping RCTPromiseRejectBlock
+  ) {
+    Task { [weak self] in
+      guard let self = self else {
+        reject(ModuleException.threadingError.rawValue, "Failed to perform background operation, self was deallocated", nil)
+        return
+      }
+      
+      do {
+        let (mrtdResponse, internalAuthResponse) = try await self.cieSdk.performMRTDAndInternalAuthentication(
+          challenge: Array(challenge.utf8),
+          can: can,
+          handleReadEvent
+        )
+        let encoding = DataEncoding.from(string: encodingString)
+        let payload: NSDictionary = [
+          "nis_data": [
             "nis": internalAuthResponse.nis.encodedDataString(encoding: encoding),
             "publicKey": internalAuthResponse.publicKey.encodedDataString(encoding: encoding),
             "sod": internalAuthResponse.sod.encodedDataString(encoding: encoding),
             "signedChallenge": internalAuthResponse.signedChallenge.encodedDataString(encoding: encoding)
+          ],
+          "mrtd_data": [
+            "dg1": mrtdResponse.dg1.encodedDataString(encoding: encoding),
+            "dg11": mrtdResponse.dg11.encodedDataString(encoding: encoding),
+            "sod": mrtdResponse.sod.encodedDataString(encoding: encoding)
           ]
         ]
         self.sendEvent(
-          withName: EventType.onInternalAuthenticationSuccess.rawValue, body: payload)
+          withName: EventType.onInternalAuthAndMRTDWithPaceSuccess.rawValue, body: payload)
         resolve(nil)
       } catch {
         guard let nfcDigitalIdError = error as? NfcDigitalIdError else {
@@ -216,6 +300,8 @@ class IoReactNativeCie: RCTEventEmitter {
     case onError
     case onAttributesSuccess
     case onInternalAuthenticationSuccess
+    case onMRTDWithPaceSuccess
+    case onInternalAuthAndMRTDWithPaceSuccess
     case onSuccess
   }
   

package/lib/module/manager/index.js

@@ -108,6 +108,103 @@ const startInternalAuthentication = async (challenge, resultEncoding = 'base64',
   return IoReactNativeCie.startInternalAuthentication(challenge, resultEncoding, timeout);
 };
 
+/**
+ * Initiates a PACE (Password Authenticated Connection Establishment) reading
+ * session on a CIE (Carta d'Identità Elettronica) using the provided CAN (Card
+ * Access Number) to read the MRTD information.
+ *
+ * The operation is asynchronous; Since the Promise resolves
+ * with `void`, any resulting data or errors are expected to be surfaced through
+ * native events.
+ *
+ * @param can The 6‑digit Card Access Number printed on the CIE, used to
+ *            bootstrap the PACE secure messaging protocol. Must be a numeric
+ *            string; validation (if any) occurs in the native layer.
+ * @param resultEncoding The encoding format expected for any binary payloads
+ *                       produced during the reading process. Defaults to
+ *                       `'base64'`. Use `'hex'` if downstream consumers require
+ *                       hexadecimal representation.
+ * @param timeout Maximum time (in milliseconds) allowed for the PACE reading
+ *                session before it is aborted. Defaults to `DEFAULT_TIMEOUT`.
+ *                A larger value may be required on older devices or in
+ *                environments with slower NFC interactions.
+ *
+ * @returns Promise that resolves when the reading process has started.
+ *
+ * @throws May reject with:
+ * - Invalid input (e.g., malformed CAN).
+ * - NFC subsystem unavailable or disabled.
+ * - Operation timeout exceeded.
+ * - Native module internal errors.
+ *
+ * @example
+ * await startPaceReading("123456"); // Uses base64 encoding and default timeout.
+ *
+ * @example
+ * await startPaceReading("654321", "hex", 15000);
+ *
+ * @remarks
+ * Ensure NFC is enabled and the user has positioned the CIE correctly before
+ * calling this function to minimize timeouts and improve reliability.
+ *
+ * Once the MRTD reading with PACE flow has been initiated, a Promise resolves,
+ * while when the reading process produces data, the `'onSuccess'` event has been called.
+ * The `'onError'` event is called if an error occurs during the reading process.
+ * The `'onEvent'` event is called to provide progress updates.
+ */
+const startMRTDReading = async (can, resultEncoding = 'base64', timeout = DEFAULT_TIMEOUT) => {
+  return IoReactNativeCie.startMRTDReading(can, resultEncoding, timeout);
+};
+
+/**
+ * Initiates a combined reading session on a CIE (Carta d'Identità Elettronica)
+ * that performs both Internal Authentication and MRTD reading using PACE.
+ *
+ * The operation is asynchronous; Since the Promise resolves
+ * with `void`, any resulting data or errors are expected to be surfaced through
+ * native events.
+ *
+ * @param can The 6‑digit Card Access Number printed on the CIE, used to
+ *            bootstrap the PACE secure messaging protocol. Must be a numeric
+ *            string; validation (if any) occurs in the native layer.
+ * @param challenge The challenge string to be used for Internal Authentication.
+ * @param resultEncoding The encoding format expected for any binary payloads
+ *                       produced during the reading process. Defaults to
+ *                       `'base64'`. Use `'hex'` if downstream consumers require
+ *                       hexadecimal representation.
+ * @param timeout Maximum time (in milliseconds) allowed for the combined reading
+ *                session before it is aborted. Defaults to `DEFAULT_TIMEOUT`.
+ *                A larger value may be required on older devices or in
+ *                environments with slower NFC interactions.
+ *
+ * @returns Promise that resolves when the reading process has started.
+ *
+ * @throws May reject with:
+ * - Invalid input (e.g., malformed CAN or challenge).
+ * - NFC subsystem unavailable or disabled.
+ * - Operation timeout exceeded.
+ * - Native module internal errors.
+ *
+ * @example
+ * await startInternalAuthAndMRTDReading("123456", "challengeString");
+ *
+ * @example
+ * await startInternalAuthAndMRTDReading("654321", "challengeString", "hex", 15000);
+ *
+ * @remarks
+ * Ensure NFC is enabled and the user has positioned the CIE correctly before
+ * calling this function to minimize timeouts and improve reliability.
+ *
+ * Once the Internal Authentication and MRTD reading with PACE flow has been initiated,
+ * a Promise resolves, while when the reading process produces data,
+ * the `'onSuccess'` event has been called.
+ * The `'onError'` event is called if an error occurs during the reading process.
+ * The `'onEvent'` event is called to provide progress updates.
+ */
+const startInternalAuthAndMRTDReading = async (can, challenge, resultEncoding = 'base64', timeout = DEFAULT_TIMEOUT) => {
+  return IoReactNativeCie.startInternalAuthAndMRTDReading(can, challenge, resultEncoding, timeout);
+};
+
 /**
  * Starts the process of reading attributes from the CIE card.
  *
@@ -159,5 +256,5 @@ const startReading = async (pin, authenticationUrl, timeout = DEFAULT_TIMEOUT) =
 const stopReading = async () => {
   return IoReactNativeCie.stopReading();
 };
-export { addListener, removeListener, removeAllListeners, setCustomIdpUrl, startReadingAttributes, startInternalAuthentication, startReading, stopReading };
+export { addListener, removeListener, removeAllListeners, setCustomIdpUrl, startReadingAttributes, startInternalAuthentication, startMRTDReading, startInternalAuthAndMRTDReading, startReading, stopReading };
 //# sourceMappingURL=index.js.map

package/lib/module/manager/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["NativeEventEmitter","IoReactNativeCie","getDefaultIdpUrl","DEFAULT_TIMEOUT","eventEmitter","addListener","event","listener","subscription","remove","removeListener","removeAllListeners","setCustomIdpUrl","url","setAlertMessage","key","value","setCurrentAlertMessage","startInternalAuthentication","challenge","resultEncoding","timeout","startReadingAttributes","startReading","pin","authenticationUrl","stopReading"],"sourceRoot":"../../../src","sources":["manager/index.ts"],"mappings":";;AAAA,SAASA,kBAAkB,QAAQ,cAAc;AACjD,SAASC,gBAAgB,QAAQ,cAAW;AAE5C,SAASC,gBAAgB,QAAQ,YAAS;AAE1C,MAAMC,eAAe,GAAG,KAAK;AAE7B,MAAMC,YAAY,GAAG,IAAIJ,kBAAkB,CAACC,gBAAgB,CAAC;;AAE7D;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMI,WAAW,GAAGA,CAClBC,KAAQ,EACRC,QAA6B,KAC1B;EACH,MAAMC,YAAY,GAAGJ,YAAY,CAACC,WAAW,CAACC,KAAK,EAAEC,QAAQ,CAAC;EAC9D,OAAOC,YAAY,CAACC,MAAM;AAC5B,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA,MAAMC,cAAc,GAAIJ,KAAe,IAAK;EAC1CF,YAAY,CAACO,kBAAkB,CAACL,KAAK,CAAC;AACxC,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMK,kBAAkB,GAAGA,CAAA,KAAM;EAC/BP,YAAY,CAACO,kBAAkB,CAAC,SAAS,CAAC;EAC1CP,YAAY,CAACO,kBAAkB,CAAC,SAAS,CAAC;EAC1CP,YAAY,CAACO,kBAAkB,CAAC,qBAAqB,CAAC;EACtDP,YAAY,CAACO,kBAAkB,CAAC,WAAW,CAAC;AAC9C,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMC,eAAe,GAAIC,GAAuB,IAAK;EACnDZ,gBAAgB,CAACW,eAAe,CAACC,GAAG,IAAIX,gBAAgB,CAAC,CAAC,CAAC;AAC7D,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMY,eAAe,GAAGA,CAACC,GAAoB,EAAEC,KAAa,KAAK;EACtEf,gBAAgB,CAACa,eAAe,CAACC,GAAG,EAAEC,KAAK,CAAC;AAC9C,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,sBAAsB,GAAID,KAAa,IAAK;EACvDf,gBAAgB,CAACgB,sBAAsB,CAACD,KAAK,CAAC;AAChD,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAME,2BAA2B,GAAG,MAAAA,CAClCC,SAAiB,EACjBC,cAAgC,GAAG,QAAQ,EAC3CC,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACiB,2BAA2B,CACjDC,SAAS,EACTC,cAAc,EACdC,OACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMC,sBAAsB,GAAG,MAAAA,CAC7BD,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACqB,sBAAsB,CAACD,OAAO,CAAC;AACzD,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAME,YAAY,GAAG,MAAAA,CACnBC,GAAW,EACXC,iBAAyB,EACzBJ,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACsB,YAAY,CAACC,GAAG,EAAEC,iBAAiB,EAAEJ,OAAO,CAAC;AACvE,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMK,WAAW,GAAG,MAAAA,CAAA,KAA2B;EAC7C,OAAOzB,gBAAgB,CAACyB,WAAW,CAAC,CAAC;AACvC,CAAC;AAED,SACErB,WAAW,EACXK,cAAc,EACdC,kBAAkB,EAClBC,eAAe,EACfU,sBAAsB,EACtBJ,2BAA2B,EAC3BK,YAAY,EACZG,WAAW","ignoreList":[]}
+{"version":3,"names":["NativeEventEmitter","IoReactNativeCie","getDefaultIdpUrl","DEFAULT_TIMEOUT","eventEmitter","addListener","event","listener","subscription","remove","removeListener","removeAllListeners","setCustomIdpUrl","url","setAlertMessage","key","value","setCurrentAlertMessage","startInternalAuthentication","challenge","resultEncoding","timeout","startMRTDReading","can","startInternalAuthAndMRTDReading","startReadingAttributes","startReading","pin","authenticationUrl","stopReading"],"sourceRoot":"../../../src","sources":["manager/index.ts"],"mappings":";;AAAA,SAASA,kBAAkB,QAAQ,cAAc;AACjD,SAASC,gBAAgB,QAAQ,cAAW;AAE5C,SAASC,gBAAgB,QAAQ,YAAS;AAE1C,MAAMC,eAAe,GAAG,KAAK;AAE7B,MAAMC,YAAY,GAAG,IAAIJ,kBAAkB,CAACC,gBAAgB,CAAC;;AAE7D;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMI,WAAW,GAAGA,CAClBC,KAAQ,EACRC,QAA6B,KAC1B;EACH,MAAMC,YAAY,GAAGJ,YAAY,CAACC,WAAW,CAACC,KAAK,EAAEC,QAAQ,CAAC;EAC9D,OAAOC,YAAY,CAACC,MAAM;AAC5B,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA,MAAMC,cAAc,GAAIJ,KAAe,IAAK;EAC1CF,YAAY,CAACO,kBAAkB,CAACL,KAAK,CAAC;AACxC,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMK,kBAAkB,GAAGA,CAAA,KAAM;EAC/BP,YAAY,CAACO,kBAAkB,CAAC,SAAS,CAAC;EAC1CP,YAAY,CAACO,kBAAkB,CAAC,SAAS,CAAC;EAC1CP,YAAY,CAACO,kBAAkB,CAAC,qBAAqB,CAAC;EACtDP,YAAY,CAACO,kBAAkB,CAAC,WAAW,CAAC;AAC9C,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMC,eAAe,GAAIC,GAAuB,IAAK;EACnDZ,gBAAgB,CAACW,eAAe,CAACC,GAAG,IAAIX,gBAAgB,CAAC,CAAC,CAAC;AAC7D,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMY,eAAe,GAAGA,CAACC,GAAoB,EAAEC,KAAa,KAAK;EACtEf,gBAAgB,CAACa,eAAe,CAACC,GAAG,EAAEC,KAAK,CAAC;AAC9C,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,sBAAsB,GAAID,KAAa,IAAK;EACvDf,gBAAgB,CAACgB,sBAAsB,CAACD,KAAK,CAAC;AAChD,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAME,2BAA2B,GAAG,MAAAA,CAClCC,SAAiB,EACjBC,cAAgC,GAAG,QAAQ,EAC3CC,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACiB,2BAA2B,CACjDC,SAAS,EACTC,cAAc,EACdC,OACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMC,gBAAgB,GAAG,MAAAA,CACvBC,GAAW,EACXH,cAAgC,GAAG,QAAQ,EAC3CC,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACqB,gBAAgB,CAACC,GAAG,EAAEH,cAAc,EAAEC,OAAO,CAAC;AACxE,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMG,+BAA+B,GAAG,MAAAA,CACtCD,GAAW,EACXJ,SAAiB,EACjBC,cAAgC,GAAG,QAAQ,EAC3CC,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACuB,+BAA+B,CACrDD,GAAG,EACHJ,SAAS,EACTC,cAAc,EACdC,OACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMI,sBAAsB,GAAG,MAAAA,CAC7BJ,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACwB,sBAAsB,CAACJ,OAAO,CAAC;AACzD,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMK,YAAY,GAAG,MAAAA,CACnBC,GAAW,EACXC,iBAAyB,EACzBP,OAAe,GAAGlB,eAAe,KACf;EAClB,OAAOF,gBAAgB,CAACyB,YAAY,CAACC,GAAG,EAAEC,iBAAiB,EAAEP,OAAO,CAAC;AACvE,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMQ,WAAW,GAAG,MAAAA,CAAA,KAA2B;EAC7C,OAAO5B,gBAAgB,CAAC4B,WAAW,CAAC,CAAC;AACvC,CAAC;AAED,SACExB,WAAW,EACXK,cAAc,EACdC,kBAAkB,EAClBC,eAAe,EACfa,sBAAsB,EACtBP,2BAA2B,EAC3BI,gBAAgB,EAChBE,+BAA+B,EAC/BE,YAAY,EACZG,WAAW","ignoreList":[]}

package/lib/module/manager/types.js

@@ -34,8 +34,8 @@ z.object({
   attemptsLeft: z.number()
 })]);
 /**
- * Represent the CIE attributes containing the CIE type
- * All string value are Hex encoded
+ * Represent the CIE response coming from NIS Internal Auth
+ * All string value are Hex or Base64 encoded
  */
 export const InternalAuthResponseObject = z.object({
   nis: z.string(),
@@ -43,6 +43,33 @@ export const InternalAuthResponseObject = z.object({
   sod: z.string(),
   signedChallenge: z.string()
 });
+/**
+ * Represent the CIE response coming from MRTD with PACE reading
+ * All string value are Hex or Base64 encoded
+ */
+export const MrtdResponseObject = z.object({
+  dg1: z.string(),
+  dg11: z.string(),
+  sod: z.string()
+});
+/**
+ * Represent the CIE response coming from NIS Internal Auth
+ * and MRTD with PACE reading during the same NFC session.
+ * All string value are Hex or Base64 encoded
+ */
+export const InternalAuthAndMrtdResponse = z.object({
+  nis_data: z.object({
+    nis: z.string(),
+    publicKey: z.string(),
+    sod: z.string(),
+    signedChallenge: z.string()
+  }),
+  mrtd_data: z.object({
+    dg1: z.string(),
+    dg11: z.string(),
+    sod: z.string()
+  })
+});
 /**
  * Represent the CIE attributes containing the CIE type
  */

package/lib/module/manager/types.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","AlertMessageKey","enum","NfcEvent","object","name","string","progress","coerce","number","NfcErrorName","NfcError","union","exclude","message","optional","extract","attemptsLeft","InternalAuthResponseObject","nis","publicKey","sod","signedChallenge","CieAttributes","type","base64"],"sourceRoot":"../../../src","sources":["manager/types.ts"],"mappings":";;AAAA,SAASA,CAAC,QAAQ,KAAK;;AAEvB;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,eAAe,GAAGD,CAAC,CAACE,IAAI,CAAC,CACpC,qBAAqB,EACrB,UAAU,EACV,mBAAmB,EACnB,gBAAgB,EAChB,aAAa,EACb,SAAS,EACT,YAAY,EACZ,sBAAsB,EACtB,sBAAsB,EACtB,cAAc,CACf,CAAC;AAIF;AACA;AACA;AACA;AACA,OAAO,MAAMC,QAAQ,GAAGH,CAAC,CAACI,MAAM,CAAC;EAC/BC,IAAI,EAAEL,CAAC,CAACM,MAAM,CAAC,CAAC;EAChBC,QAAQ,EAAEP,CAAC,CAACQ,MAAM,CAACC,MAAM,CAAC;AAC5B,CAAC,CAAC;AAIF;AACA;AACA;AACA,OAAO,MAAMC,YAAY,GAAGV,CAAC,CAACE,IAAI,CAAC,CACjC,WAAW,EACX,UAAU,EACV,mBAAmB,EACnB,YAAY,EACZ,WAAW,EACX,cAAc,EACd,wBAAwB,EACxB,qBAAqB,EACrB,qBAAqB,EACrB,sBAAsB,EACtB,eAAe,CAChB,CAAC;AAIF;AACA;AACA;AACA,OAAO,MAAMS,QAAQ,GAAGX,CAAC,CAACY,KAAK,CAAC,CAC9BZ,CAAC,CAACI,MAAM,CAAC;EACPC,IAAI,EAAEK,YAAY,CAACG,OAAO,CAAC,CAAC,WAAW,CAAC,CAAC;EACzCC,OAAO,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACS,QAAQ,CAAC;AAC/B,CAAC,CAAC;AACF;AACAf,CAAC,CAACI,MAAM,CAAC;EACPC,IAAI,EAAEK,YAAY,CAACM,OAAO,CAAC,CAAC,WAAW,CAAC,CAAC;EACzCF,OAAO,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACS,QAAQ,CAAC,CAAC;EAC9BE,YAAY,EAAEjB,CAAC,CAACS,MAAM,CAAC;AACzB,CAAC,CAAC,CACH,CAAC;AAIF;AACA;AACA;AACA;AACA,OAAO,MAAMS,0BAA0B,GAAGlB,CAAC,CAACI,MAAM,CAAC;EACjDe,GAAG,EAAEnB,CAAC,CAACM,MAAM,CAAC,CAAC;EACfc,SAAS,EAAEpB,CAAC,CAACM,MAAM,CAAC,CAAC;EACrBe,GAAG,EAAErB,CAAC,CAACM,MAAM,CAAC,CAAC;EACfgB,eAAe,EAAEtB,CAAC,CAACM,MAAM,CAAC;AAC5B,CAAC,CAAC;AAIF;AACA;AACA;AACA,OAAO,MAAMiB,aAAa,GAAGvB,CAAC,CAACI,MAAM,CAAC;EACpCoB,IAAI,EAAExB,CAAC,CAACM,MAAM,CAAC,CAAC;EAChBmB,MAAM,EAAEzB,CAAC,CAACM,MAAM,CAAC;AACnB,CAAC,CAAC;;AAIF;AACA;AACA;;AASA;AACA;AACA","ignoreList":[]}
+{"version":3,"names":["z","AlertMessageKey","enum","NfcEvent","object","name","string","progress","coerce","number","NfcErrorName","NfcError","union","exclude","message","optional","extract","attemptsLeft","InternalAuthResponseObject","nis","publicKey","sod","signedChallenge","MrtdResponseObject","dg1","dg11","InternalAuthAndMrtdResponse","nis_data","mrtd_data","CieAttributes","type","base64"],"sourceRoot":"../../../src","sources":["manager/types.ts"],"mappings":";;AAAA,SAASA,CAAC,QAAQ,KAAK;;AAEvB;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,eAAe,GAAGD,CAAC,CAACE,IAAI,CAAC,CACpC,qBAAqB,EACrB,UAAU,EACV,mBAAmB,EACnB,gBAAgB,EAChB,aAAa,EACb,SAAS,EACT,YAAY,EACZ,sBAAsB,EACtB,sBAAsB,EACtB,cAAc,CACf,CAAC;AAIF;AACA;AACA;AACA;AACA,OAAO,MAAMC,QAAQ,GAAGH,CAAC,CAACI,MAAM,CAAC;EAC/BC,IAAI,EAAEL,CAAC,CAACM,MAAM,CAAC,CAAC;EAChBC,QAAQ,EAAEP,CAAC,CAACQ,MAAM,CAACC,MAAM,CAAC;AAC5B,CAAC,CAAC;AAIF;AACA;AACA;AACA,OAAO,MAAMC,YAAY,GAAGV,CAAC,CAACE,IAAI,CAAC,CACjC,WAAW,EACX,UAAU,EACV,mBAAmB,EACnB,YAAY,EACZ,WAAW,EACX,cAAc,EACd,wBAAwB,EACxB,qBAAqB,EACrB,qBAAqB,EACrB,sBAAsB,EACtB,eAAe,CAChB,CAAC;AAIF;AACA;AACA;AACA,OAAO,MAAMS,QAAQ,GAAGX,CAAC,CAACY,KAAK,CAAC,CAC9BZ,CAAC,CAACI,MAAM,CAAC;EACPC,IAAI,EAAEK,YAAY,CAACG,OAAO,CAAC,CAAC,WAAW,CAAC,CAAC;EACzCC,OAAO,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACS,QAAQ,CAAC;AAC/B,CAAC,CAAC;AACF;AACAf,CAAC,CAACI,MAAM,CAAC;EACPC,IAAI,EAAEK,YAAY,CAACM,OAAO,CAAC,CAAC,WAAW,CAAC,CAAC;EACzCF,OAAO,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACS,QAAQ,CAAC,CAAC;EAC9BE,YAAY,EAAEjB,CAAC,CAACS,MAAM,CAAC;AACzB,CAAC,CAAC,CACH,CAAC;AAIF;AACA;AACA;AACA;AACA,OAAO,MAAMS,0BAA0B,GAAGlB,CAAC,CAACI,MAAM,CAAC;EACjDe,GAAG,EAAEnB,CAAC,CAACM,MAAM,CAAC,CAAC;EACfc,SAAS,EAAEpB,CAAC,CAACM,MAAM,CAAC,CAAC;EACrBe,GAAG,EAAErB,CAAC,CAACM,MAAM,CAAC,CAAC;EACfgB,eAAe,EAAEtB,CAAC,CAACM,MAAM,CAAC;AAC5B,CAAC,CAAC;AAIF;AACA;AACA;AACA;AACA,OAAO,MAAMiB,kBAAkB,GAAGvB,CAAC,CAACI,MAAM,CAAC;EACzCoB,GAAG,EAAExB,CAAC,CAACM,MAAM,CAAC,CAAC;EACfmB,IAAI,EAAEzB,CAAC,CAACM,MAAM,CAAC,CAAC;EAChBe,GAAG,EAAErB,CAAC,CAACM,MAAM,CAAC;AAChB,CAAC,CAAC;AAIF;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMoB,2BAA2B,GAAG1B,CAAC,CAACI,MAAM,CAAC;EAClDuB,QAAQ,EAAE3B,CAAC,CAACI,MAAM,CAAC;IACjBe,GAAG,EAAEnB,CAAC,CAACM,MAAM,CAAC,CAAC;IACfc,SAAS,EAAEpB,CAAC,CAACM,MAAM,CAAC,CAAC;IACrBe,GAAG,EAAErB,CAAC,CAACM,MAAM,CAAC,CAAC;IACfgB,eAAe,EAAEtB,CAAC,CAACM,MAAM,CAAC;EAC5B,CAAC,CAAC;EACFsB,SAAS,EAAE5B,CAAC,CAACI,MAAM,CAAC;IAClBoB,GAAG,EAAExB,CAAC,CAACM,MAAM,CAAC,CAAC;IACfmB,IAAI,EAAEzB,CAAC,CAACM,MAAM,CAAC,CAAC;IAChBe,GAAG,EAAErB,CAAC,CAACM,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;AAMF;AACA;AACA;AACA,OAAO,MAAMuB,aAAa,GAAG7B,CAAC,CAACI,MAAM,CAAC;EACpC0B,IAAI,EAAE9B,CAAC,CAACM,MAAM,CAAC,CAAC;EAChByB,MAAM,EAAE/B,CAAC,CAACM,MAAM,CAAC;AACnB,CAAC,CAAC;;AAIF;AACA;AACA;;AAeA;AACA;AACA","ignoreList":[]}

package/lib/typescript/src/index.d.ts

@@ -1,6 +1,6 @@
 import * as CieUtils from './utils';
 import * as CieManager from './manager';
 export { CieUtils, CieManager };
-export type { NfcEvent, NfcError, CieAttributes, CieEventHandlers, CieEvent, } from './manager/types';
+export type { NfcEvent, NfcError, CieAttributes, CieEventHandlers, CieEvent, InternalAuthResponse, MrtdResponse, InternalAuthAndMrtdResponse, } from './manager/types';
 export type { CieErrorSchema, CieError, CieErrorCodes } from './errors';
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/src/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,QAAQ,MAAM,SAAS,CAAC;AACpC,OAAO,KAAK,UAAU,MAAM,WAAW,CAAC;AAExC,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC;AAEhC,YAAY,EACV,QAAQ,EACR,QAAQ,EACR,aAAa,EACb,gBAAgB,EAChB,QAAQ,GACT,MAAM,iBAAiB,CAAC;AAEzB,YAAY,EAAE,cAAc,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,QAAQ,MAAM,SAAS,CAAC;AACpC,OAAO,KAAK,UAAU,MAAM,WAAW,CAAC;AAExC,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC;AAEhC,YAAY,EACV,QAAQ,EACR,QAAQ,EACR,aAAa,EACb,gBAAgB,EAChB,QAAQ,EACR,oBAAoB,EACpB,YAAY,EACZ,2BAA2B,GAC5B,MAAM,iBAAiB,CAAC;AAEzB,YAAY,EAAE,cAAc,EAAE,QAAQ,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC"}

package/lib/typescript/src/manager/index.d.ts

@@ -76,6 +76,97 @@ export declare const setCurrentAlertMessage: (value: string) => void;
  * @returns A promise that resolves when the authentication process has ended.
  */
 declare const startInternalAuthentication: (challenge: string, resultEncoding?: "base64" | "hex", timeout?: number) => Promise<void>;
+/**
+ * Initiates a PACE (Password Authenticated Connection Establishment) reading
+ * session on a CIE (Carta d'Identità Elettronica) using the provided CAN (Card
+ * Access Number) to read the MRTD information.
+ *
+ * The operation is asynchronous; Since the Promise resolves
+ * with `void`, any resulting data or errors are expected to be surfaced through
+ * native events.
+ *
+ * @param can The 6‑digit Card Access Number printed on the CIE, used to
+ *            bootstrap the PACE secure messaging protocol. Must be a numeric
+ *            string; validation (if any) occurs in the native layer.
+ * @param resultEncoding The encoding format expected for any binary payloads
+ *                       produced during the reading process. Defaults to
+ *                       `'base64'`. Use `'hex'` if downstream consumers require
+ *                       hexadecimal representation.
+ * @param timeout Maximum time (in milliseconds) allowed for the PACE reading
+ *                session before it is aborted. Defaults to `DEFAULT_TIMEOUT`.
+ *                A larger value may be required on older devices or in
+ *                environments with slower NFC interactions.
+ *
+ * @returns Promise that resolves when the reading process has started.
+ *
+ * @throws May reject with:
+ * - Invalid input (e.g., malformed CAN).
+ * - NFC subsystem unavailable or disabled.
+ * - Operation timeout exceeded.
+ * - Native module internal errors.
+ *
+ * @example
+ * await startPaceReading("123456"); // Uses base64 encoding and default timeout.
+ *
+ * @example
+ * await startPaceReading("654321", "hex", 15000);
+ *
+ * @remarks
+ * Ensure NFC is enabled and the user has positioned the CIE correctly before
+ * calling this function to minimize timeouts and improve reliability.
+ *
+ * Once the MRTD reading with PACE flow has been initiated, a Promise resolves,
+ * while when the reading process produces data, the `'onSuccess'` event has been called.
+ * The `'onError'` event is called if an error occurs during the reading process.
+ * The `'onEvent'` event is called to provide progress updates.
+ */
+declare const startMRTDReading: (can: string, resultEncoding?: "base64" | "hex", timeout?: number) => Promise<void>;
+/**
+ * Initiates a combined reading session on a CIE (Carta d'Identità Elettronica)
+ * that performs both Internal Authentication and MRTD reading using PACE.
+ *
+ * The operation is asynchronous; Since the Promise resolves
+ * with `void`, any resulting data or errors are expected to be surfaced through
+ * native events.
+ *
+ * @param can The 6‑digit Card Access Number printed on the CIE, used to
+ *            bootstrap the PACE secure messaging protocol. Must be a numeric
+ *            string; validation (if any) occurs in the native layer.
+ * @param challenge The challenge string to be used for Internal Authentication.
+ * @param resultEncoding The encoding format expected for any binary payloads
+ *                       produced during the reading process. Defaults to
+ *                       `'base64'`. Use `'hex'` if downstream consumers require
+ *                       hexadecimal representation.
+ * @param timeout Maximum time (in milliseconds) allowed for the combined reading
+ *                session before it is aborted. Defaults to `DEFAULT_TIMEOUT`.
+ *                A larger value may be required on older devices or in
+ *                environments with slower NFC interactions.
+ *
+ * @returns Promise that resolves when the reading process has started.
+ *
+ * @throws May reject with:
+ * - Invalid input (e.g., malformed CAN or challenge).
+ * - NFC subsystem unavailable or disabled.
+ * - Operation timeout exceeded.
+ * - Native module internal errors.
+ *
+ * @example
+ * await startInternalAuthAndMRTDReading("123456", "challengeString");
+ *
+ * @example
+ * await startInternalAuthAndMRTDReading("654321", "challengeString", "hex", 15000);
+ *
+ * @remarks
+ * Ensure NFC is enabled and the user has positioned the CIE correctly before
+ * calling this function to minimize timeouts and improve reliability.
+ *
+ * Once the Internal Authentication and MRTD reading with PACE flow has been initiated,
+ * a Promise resolves, while when the reading process produces data,
+ * the `'onSuccess'` event has been called.
+ * The `'onError'` event is called if an error occurs during the reading process.
+ * The `'onEvent'` event is called to provide progress updates.
+ */
+declare const startInternalAuthAndMRTDReading: (can: string, challenge: string, resultEncoding?: "base64" | "hex", timeout?: number) => Promise<void>;
 /**
  * Starts the process of reading attributes from the CIE card.
  *
@@ -119,5 +210,5 @@ declare const startReading: (pin: string, authenticationUrl: string, timeout?: n
  * ```
  */
 declare const stopReading: () => Promise<void>;
-export { addListener, removeListener, removeAllListeners, setCustomIdpUrl, startReadingAttributes, startInternalAuthentication, startReading, stopReading, };
+export { addListener, removeListener, removeAllListeners, setCustomIdpUrl, startReadingAttributes, startInternalAuthentication, startMRTDReading, startInternalAuthAndMRTDReading, startReading, stopReading, };
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/src/manager/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/manager/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,eAAe,EAAE,KAAK,QAAQ,EAAE,KAAK,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAOhF;;;;;;;;;;;;;GAaG;AACH,QAAA,MAAM,WAAW,GAAI,CAAC,SAAS,QAAQ,EACrC,OAAO,CAAC,EACR,UAAU,gBAAgB,CAAC,CAAC,CAAC,eAI9B,CAAC;AAEF;;;;GAIG;AACH,QAAA,MAAM,cAAc,GAAI,OAAO,QAAQ,SAEtC,CAAC;AAEF;;;;;;;GAOG;AACH,QAAA,MAAM,kBAAkB,YAKvB,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,QAAA,MAAM,eAAe,GAAI,KAAK,MAAM,GAAG,SAAS,SAE/C,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,eAAe,GAAI,KAAK,eAAe,EAAE,OAAO,MAAM,SAElE,CAAC;AAEF;;;;;;;;;;GAUG;AACH,eAAO,MAAM,sBAAsB,GAAI,OAAO,MAAM,SAEnD,CAAC;AAEF;;;;;;;GAOG;AACH,QAAA,MAAM,2BAA2B,GAC/B,WAAW,MAAM,EACjB,iBAAgB,QAAQ,GAAG,KAAgB,EAC3C,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAMd,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,QAAA,MAAM,sBAAsB,GAC1B,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAEd,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,QAAA,MAAM,YAAY,GAChB,KAAK,MAAM,EACX,mBAAmB,MAAM,EACzB,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAEd,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,QAAA,MAAM,WAAW,QAAa,OAAO,CAAC,IAAI,CAEzC,CAAC;AAEF,OAAO,EACL,WAAW,EACX,cAAc,EACd,kBAAkB,EAClB,eAAe,EACf,sBAAsB,EACtB,2BAA2B,EAC3B,YAAY,EACZ,WAAW,GACZ,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/manager/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,eAAe,EAAE,KAAK,QAAQ,EAAE,KAAK,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAOhF;;;;;;;;;;;;;GAaG;AACH,QAAA,MAAM,WAAW,GAAI,CAAC,SAAS,QAAQ,EACrC,OAAO,CAAC,EACR,UAAU,gBAAgB,CAAC,CAAC,CAAC,eAI9B,CAAC;AAEF;;;;GAIG;AACH,QAAA,MAAM,cAAc,GAAI,OAAO,QAAQ,SAEtC,CAAC;AAEF;;;;;;;GAOG;AACH,QAAA,MAAM,kBAAkB,YAKvB,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,QAAA,MAAM,eAAe,GAAI,KAAK,MAAM,GAAG,SAAS,SAE/C,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,eAAO,MAAM,eAAe,GAAI,KAAK,eAAe,EAAE,OAAO,MAAM,SAElE,CAAC;AAEF;;;;;;;;;;GAUG;AACH,eAAO,MAAM,sBAAsB,GAAI,OAAO,MAAM,SAEnD,CAAC;AAEF;;;;;;;GAOG;AACH,QAAA,MAAM,2BAA2B,GAC/B,WAAW,MAAM,EACjB,iBAAgB,QAAQ,GAAG,KAAgB,EAC3C,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAMd,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;AACH,QAAA,MAAM,gBAAgB,GACpB,KAAK,MAAM,EACX,iBAAgB,QAAQ,GAAG,KAAgB,EAC3C,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAEd,CAAC;AAEF;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4CG;AACH,QAAA,MAAM,+BAA+B,GACnC,KAAK,MAAM,EACX,WAAW,MAAM,EACjB,iBAAgB,QAAQ,GAAG,KAAgB,EAC3C,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAOd,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,QAAA,MAAM,sBAAsB,GAC1B,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAEd,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,QAAA,MAAM,YAAY,GAChB,KAAK,MAAM,EACX,mBAAmB,MAAM,EACzB,UAAS,MAAwB,KAChC,OAAO,CAAC,IAAI,CAEd,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,QAAA,MAAM,WAAW,QAAa,OAAO,CAAC,IAAI,CAEzC,CAAC;AAEF,OAAO,EACL,WAAW,EACX,cAAc,EACd,kBAAkB,EAClB,eAAe,EACf,sBAAsB,EACtB,2BAA2B,EAC3B,gBAAgB,EAChB,+BAA+B,EAC/B,YAAY,EACZ,WAAW,GACZ,CAAC"}

package/lib/typescript/src/manager/types.d.ts

@@ -53,8 +53,8 @@ export declare const NfcError: z.ZodUnion<[z.ZodObject<{
 }>]>;
 export type NfcError = z.infer<typeof NfcError>;
 /**
- * Represent the CIE attributes containing the CIE type
- * All string value are Hex encoded
+ * Represent the CIE response coming from NIS Internal Auth
+ * All string value are Hex or Base64 encoded
  */
 export declare const InternalAuthResponseObject: z.ZodObject<{
     nis: z.ZodString;
@@ -73,6 +73,85 @@ export declare const InternalAuthResponseObject: z.ZodObject<{
     signedChallenge: string;
 }>;
 export type InternalAuthResponse = z.infer<typeof InternalAuthResponseObject>;
+/**
+ * Represent the CIE response coming from MRTD with PACE reading
+ * All string value are Hex or Base64 encoded
+ */
+export declare const MrtdResponseObject: z.ZodObject<{
+    dg1: z.ZodString;
+    dg11: z.ZodString;
+    sod: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    sod: string;
+    dg1: string;
+    dg11: string;
+}, {
+    sod: string;
+    dg1: string;
+    dg11: string;
+}>;
+export type MrtdResponse = z.infer<typeof MrtdResponseObject>;
+/**
+ * Represent the CIE response coming from NIS Internal Auth
+ * and MRTD with PACE reading during the same NFC session.
+ * All string value are Hex or Base64 encoded
+ */
+export declare const InternalAuthAndMrtdResponse: z.ZodObject<{
+    nis_data: z.ZodObject<{
+        nis: z.ZodString;
+        publicKey: z.ZodString;
+        sod: z.ZodString;
+        signedChallenge: z.ZodString;
+    }, "strip", z.ZodTypeAny, {
+        nis: string;
+        publicKey: string;
+        sod: string;
+        signedChallenge: string;
+    }, {
+        nis: string;
+        publicKey: string;
+        sod: string;
+        signedChallenge: string;
+    }>;
+    mrtd_data: z.ZodObject<{
+        dg1: z.ZodString;
+        dg11: z.ZodString;
+        sod: z.ZodString;
+    }, "strip", z.ZodTypeAny, {
+        sod: string;
+        dg1: string;
+        dg11: string;
+    }, {
+        sod: string;
+        dg1: string;
+        dg11: string;
+    }>;
+}, "strip", z.ZodTypeAny, {
+    nis_data: {
+        nis: string;
+        publicKey: string;
+        sod: string;
+        signedChallenge: string;
+    };
+    mrtd_data: {
+        sod: string;
+        dg1: string;
+        dg11: string;
+    };
+}, {
+    nis_data: {
+        nis: string;
+        publicKey: string;
+        sod: string;
+        signedChallenge: string;
+    };
+    mrtd_data: {
+        sod: string;
+        dg1: string;
+        dg11: string;
+    };
+}>;
+export type InternalAuthAndMrtdResponse = z.infer<typeof InternalAuthAndMrtdResponse>;
 /**
  * Represent the CIE attributes containing the CIE type
  */
@@ -93,7 +172,9 @@ export type CieAttributes = z.infer<typeof CieAttributes>;
 export type CieEventHandlers = {
     onEvent: (event: NfcEvent) => void;
     onError: (error: NfcError) => void;
-    onInternalAuthenticationSuccess: (attributes: InternalAuthResponse) => void;
+    onInternalAuthenticationSuccess: (internalAuthResponse: InternalAuthResponse) => void;
+    onMRTDWithPaceSuccess: (mrtdResponse: MrtdResponse) => void;
+    onInternalAuthAndMRTDWithPaceSuccess: (internalAuthAndMrtdResponse: InternalAuthAndMrtdResponse) => void;
     onAttributesSuccess: (attributes: CieAttributes) => void;
     onSuccess: (uri: string) => void;
 };

package/lib/typescript/src/manager/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/manager/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB;;;;GAIG;AACH,eAAO,MAAM,eAAe,+LAW1B,CAAC;AAEH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D;;;GAGG;AACH,eAAO,MAAM,QAAQ;;;;;;;;;EAGnB,CAAC;AAEH,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,QAAQ,CAAC,CAAC;AAEhD;;GAEG;AACH,eAAO,MAAM,YAAY,uNAYvB,CAAC;AAEH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAExD;;GAEG;AACH,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;IAWnB,CAAC;AAEH,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,QAAQ,CAAC,CAAC;AAEhD;;;GAGG;AACH,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;EAKrC,CAAC;AAEH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAE9E;;GAEG;AACH,eAAO,MAAM,aAAa;;;;;;;;;EAGxB,CAAC;AAEH,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAC;AAE1D;;GAEG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC7B,OAAO,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;IACnC,OAAO,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;IACnC,+BAA+B,EAAE,CAAC,UAAU,EAAE,oBAAoB,KAAK,IAAI,CAAC;IAC5E,mBAAmB,EAAE,CAAC,UAAU,EAAE,aAAa,KAAK,IAAI,CAAC;IACzD,SAAS,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,IAAI,CAAC;CAClC,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,MAAM,gBAAgB,CAAC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/manager/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB;;;;GAIG;AACH,eAAO,MAAM,eAAe,+LAW1B,CAAC;AAEH,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAE9D;;;GAGG;AACH,eAAO,MAAM,QAAQ;;;;;;;;;EAGnB,CAAC;AAEH,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,QAAQ,CAAC,CAAC;AAEhD;;GAEG;AACH,eAAO,MAAM,YAAY,uNAYvB,CAAC;AAEH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAExD;;GAEG;AACH,eAAO,MAAM,QAAQ;;;;;;;;;;;;;;;;;;;;;IAWnB,CAAC;AAEH,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,QAAQ,CAAC,CAAC;AAEhD;;;GAGG;AACH,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;EAKrC,CAAC;AAEH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAE9E;;;GAGG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;;;;;EAI7B,CAAC;AAEH,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAE9D;;;;GAIG;AACH,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAYtC,CAAC;AAEH,MAAM,MAAM,2BAA2B,GAAG,CAAC,CAAC,KAAK,CAC/C,OAAO,2BAA2B,CACnC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,aAAa;;;;;;;;;EAGxB,CAAC;AAEH,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAC;AAE1D;;GAEG;AACH,MAAM,MAAM,gBAAgB,GAAG;IAC7B,OAAO,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;IACnC,OAAO,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,IAAI,CAAC;IACnC,+BAA+B,EAAE,CAC/B,oBAAoB,EAAE,oBAAoB,KACvC,IAAI,CAAC;IACV,qBAAqB,EAAE,CAAC,YAAY,EAAE,YAAY,KAAK,IAAI,CAAC;IAC5D,oCAAoC,EAAE,CACpC,2BAA2B,EAAE,2BAA2B,KACrD,IAAI,CAAC;IACV,mBAAmB,EAAE,CAAC,UAAU,EAAE,aAAa,KAAK,IAAI,CAAC;IACzD,SAAS,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,IAAI,CAAC;CAClC,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,MAAM,gBAAgB,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@pagopa/io-react-native-cie",
-  "version": "1.2.0",
+  "version": "1.2.1",
   "description": "Native support for CIE",
   "source": "./src/index.ts",
   "main": "./lib/module/index.js",

package/src/index.ts

@@ -9,6 +9,9 @@ export type {
   CieAttributes,
   CieEventHandlers,
   CieEvent,
+  InternalAuthResponse,
+  MrtdResponse,
+  InternalAuthAndMrtdResponse,
 } from './manager/types';
 
 export type { CieErrorSchema, CieError, CieErrorCodes } from './errors';

package/src/manager/index.ts

@@ -120,6 +120,117 @@ const startInternalAuthentication = async (
   );
 };
 
+/**
+ * Initiates a PACE (Password Authenticated Connection Establishment) reading
+ * session on a CIE (Carta d'Identità Elettronica) using the provided CAN (Card
+ * Access Number) to read the MRTD information.
+ *
+ * The operation is asynchronous; Since the Promise resolves
+ * with `void`, any resulting data or errors are expected to be surfaced through
+ * native events.
+ *
+ * @param can The 6‑digit Card Access Number printed on the CIE, used to
+ *            bootstrap the PACE secure messaging protocol. Must be a numeric
+ *            string; validation (if any) occurs in the native layer.
+ * @param resultEncoding The encoding format expected for any binary payloads
+ *                       produced during the reading process. Defaults to
+ *                       `'base64'`. Use `'hex'` if downstream consumers require
+ *                       hexadecimal representation.
+ * @param timeout Maximum time (in milliseconds) allowed for the PACE reading
+ *                session before it is aborted. Defaults to `DEFAULT_TIMEOUT`.
+ *                A larger value may be required on older devices or in
+ *                environments with slower NFC interactions.
+ *
+ * @returns Promise that resolves when the reading process has started.
+ *
+ * @throws May reject with:
+ * - Invalid input (e.g., malformed CAN).
+ * - NFC subsystem unavailable or disabled.
+ * - Operation timeout exceeded.
+ * - Native module internal errors.
+ *
+ * @example
+ * await startPaceReading("123456"); // Uses base64 encoding and default timeout.
+ *
+ * @example
+ * await startPaceReading("654321", "hex", 15000);
+ *
+ * @remarks
+ * Ensure NFC is enabled and the user has positioned the CIE correctly before
+ * calling this function to minimize timeouts and improve reliability.
+ *
+ * Once the MRTD reading with PACE flow has been initiated, a Promise resolves,
+ * while when the reading process produces data, the `'onSuccess'` event has been called.
+ * The `'onError'` event is called if an error occurs during the reading process.
+ * The `'onEvent'` event is called to provide progress updates.
+ */
+const startMRTDReading = async (
+  can: string,
+  resultEncoding: 'base64' | 'hex' = 'base64',
+  timeout: number = DEFAULT_TIMEOUT
+): Promise<void> => {
+  return IoReactNativeCie.startMRTDReading(can, resultEncoding, timeout);
+};
+
+/**
+ * Initiates a combined reading session on a CIE (Carta d'Identità Elettronica)
+ * that performs both Internal Authentication and MRTD reading using PACE.
+ *
+ * The operation is asynchronous; Since the Promise resolves
+ * with `void`, any resulting data or errors are expected to be surfaced through
+ * native events.
+ *
+ * @param can The 6‑digit Card Access Number printed on the CIE, used to
+ *            bootstrap the PACE secure messaging protocol. Must be a numeric
+ *            string; validation (if any) occurs in the native layer.
+ * @param challenge The challenge string to be used for Internal Authentication.
+ * @param resultEncoding The encoding format expected for any binary payloads
+ *                       produced during the reading process. Defaults to
+ *                       `'base64'`. Use `'hex'` if downstream consumers require
+ *                       hexadecimal representation.
+ * @param timeout Maximum time (in milliseconds) allowed for the combined reading
+ *                session before it is aborted. Defaults to `DEFAULT_TIMEOUT`.
+ *                A larger value may be required on older devices or in
+ *                environments with slower NFC interactions.
+ *
+ * @returns Promise that resolves when the reading process has started.
+ *
+ * @throws May reject with:
+ * - Invalid input (e.g., malformed CAN or challenge).
+ * - NFC subsystem unavailable or disabled.
+ * - Operation timeout exceeded.
+ * - Native module internal errors.
+ *
+ * @example
+ * await startInternalAuthAndMRTDReading("123456", "challengeString");
+ *
+ * @example
+ * await startInternalAuthAndMRTDReading("654321", "challengeString", "hex", 15000);
+ *
+ * @remarks
+ * Ensure NFC is enabled and the user has positioned the CIE correctly before
+ * calling this function to minimize timeouts and improve reliability.
+ *
+ * Once the Internal Authentication and MRTD reading with PACE flow has been initiated,
+ * a Promise resolves, while when the reading process produces data,
+ * the `'onSuccess'` event has been called.
+ * The `'onError'` event is called if an error occurs during the reading process.
+ * The `'onEvent'` event is called to provide progress updates.
+ */
+const startInternalAuthAndMRTDReading = async (
+  can: string,
+  challenge: string,
+  resultEncoding: 'base64' | 'hex' = 'base64',
+  timeout: number = DEFAULT_TIMEOUT
+): Promise<void> => {
+  return IoReactNativeCie.startInternalAuthAndMRTDReading(
+    can,
+    challenge,
+    resultEncoding,
+    timeout
+  );
+};
+
 /**
  * Starts the process of reading attributes from the CIE card.
  *
@@ -185,6 +296,8 @@ export {
   setCustomIdpUrl,
   startReadingAttributes,
   startInternalAuthentication,
+  startMRTDReading,
+  startInternalAuthAndMRTDReading,
   startReading,
   stopReading,
 };

package/src/manager/types.ts

@@ -69,8 +69,8 @@ export const NfcError = z.union([
 export type NfcError = z.infer<typeof NfcError>;
 
 /**
- * Represent the CIE attributes containing the CIE type
- * All string value are Hex encoded
+ * Represent the CIE response coming from NIS Internal Auth
+ * All string value are Hex or Base64 encoded
  */
 export const InternalAuthResponseObject = z.object({
   nis: z.string(),
@@ -81,6 +81,41 @@ export const InternalAuthResponseObject = z.object({
 
 export type InternalAuthResponse = z.infer<typeof InternalAuthResponseObject>;
 
+/**
+ * Represent the CIE response coming from MRTD with PACE reading
+ * All string value are Hex or Base64 encoded
+ */
+export const MrtdResponseObject = z.object({
+  dg1: z.string(),
+  dg11: z.string(),
+  sod: z.string(),
+});
+
+export type MrtdResponse = z.infer<typeof MrtdResponseObject>;
+
+/**
+ * Represent the CIE response coming from NIS Internal Auth
+ * and MRTD with PACE reading during the same NFC session.
+ * All string value are Hex or Base64 encoded
+ */
+export const InternalAuthAndMrtdResponse = z.object({
+  nis_data: z.object({
+    nis: z.string(),
+    publicKey: z.string(),
+    sod: z.string(),
+    signedChallenge: z.string(),
+  }),
+  mrtd_data: z.object({
+    dg1: z.string(),
+    dg11: z.string(),
+    sod: z.string(),
+  }),
+});
+
+export type InternalAuthAndMrtdResponse = z.infer<
+  typeof InternalAuthAndMrtdResponse
+>;
+
 /**
  * Represent the CIE attributes containing the CIE type
  */
@@ -97,7 +132,13 @@ export type CieAttributes = z.infer<typeof CieAttributes>;
 export type CieEventHandlers = {
   onEvent: (event: NfcEvent) => void;
   onError: (error: NfcError) => void;
-  onInternalAuthenticationSuccess: (attributes: InternalAuthResponse) => void;
+  onInternalAuthenticationSuccess: (
+    internalAuthResponse: InternalAuthResponse
+  ) => void;
+  onMRTDWithPaceSuccess: (mrtdResponse: MrtdResponse) => void;
+  onInternalAuthAndMRTDWithPaceSuccess: (
+    internalAuthAndMrtdResponse: InternalAuthAndMrtdResponse
+  ) => void;
   onAttributesSuccess: (attributes: CieAttributes) => void;
   onSuccess: (uri: string) => void;
 };