npm - @pagopa/io-react-native-wallet - Versions diffs - 0.12.0 → 0.13.1 - Mend

@pagopa/io-react-native-wallet 0.12.0 → 0.13.1

Files changed (205) hide show

package/lib/typescript/credential/issuance/03-start-user-authorization.d.ts CHANGED Viewed

@@ -1,31 +1,36 @@
 import type { CryptoContext } from "@pagopa/io-react-native-jwt";
 import { type Out } from "../../utils/misc";
-import type { StartFlow } from "./01-start-flow";
 import type { EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
+import type { StartFlow } from "./01-start-flow";
+import { AuthorizationDetail } from "../../utils/par";
 export type StartUserAuthorization = (issuerConf: Out<EvaluateIssuerTrust>["issuerConf"], credentialType: Out<StartFlow>["credentialType"], context: {
     wiaCryptoContext: CryptoContext;
     walletInstanceAttestation: string;
-    walletProviderBaseUrl: string;
-    additionalParams?: Record<string, string>;
+    redirectUri: string;
     appFetch?: GlobalFetch["fetch"];
 }) => Promise<{
-    requestUri: string;
+    issuerRequestUri: string;
     clientId: string;
+    codeVerifier: string;
+    credentialDefinition: AuthorizationDetail;
 }>;
 /**
- * Start the User authorization phase.
- * Perform the Pushed Authorization Request as defined in OAuth 2.0 protocol.
- *
- * @param issuerConf The Issuer configuration
- * @param credentialType The type of the credential to be requested
- * @param context.wiaCryptoContext The context to access the key associated with the Wallet Instance Attestation
- * @param context.walletInstanceAttestation The Wallet Instance Attestation token
- * @param context.walletProviderBaseUrl The base url of the Wallet Provider
- * @param context.additionalParams Hash set of parameters to be passed to the authorization endpoint
- * (used as a temporary fix until we have a proper User identity in the PID token provider)
- * TODO: [SIW-630]
- * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
- * @returns The request uri to continue the authorization to
+ * WARNING: This function must be called after {@link evaluateIssuerTrust} and {@link startFlow}. The next steam is {@link compeUserAuthorizationWithQueryMode} or {@link compeUserAuthorizationWithFormPostJwtMode}
+ * Creates and sends a PAR request to the /as/par endpoint of the authroization server.
+ * This starts the authentication flow to obtain an access token.
+ * This token enables the Wallet Instance to request a digital credential from the Credential Endpoint of the Credential Issuer.
+ * This is an HTTP POST request containing the Wallet Instance identifier (client id), the code challenge and challenge method as specified by PKCE according to RFC 9126
+ * along with the WTE and its proof of possession (WTE-PoP).
+ * Additionally, it includes a request object, which is a signed JWT encapsulating the type of digital credential requested (authorization_details),
+ * the application session identifier on the Wallet Instance side (state),
+ * the method (query or form_post.jwt) by which the Authorization Server
+ * should transmit the Authorization Response containing the authorization code issued upon the end user's authentication (response_mode)
+ * to the Wallet Instance's Token Endpoint to obtain the Access Token, and the redirect_uri of the Wallet Instance where the Authorization Response
+ * should be delivered. The redirect is achived by using a custom URL scheme that the Wallet Instance is registered to handle.
+ * @param issuerConf The issuer configuration
+ * @param credentialType The type of the credential to be requested returned by {@link selectCredentialDefinition}
+ * @param ctx The context object containing the Wallet Instance's cryptographic context, the Wallet Instance's attestation, the redirect URI and the fetch implementation
+ * @returns The URI to which the end user should be redirected to start the authentication flow, along with the client id, the code verifier and the credential definition
  */
 export declare const startUserAuthorization: StartUserAuthorization;
 //# sourceMappingURL=03-start-user-authorization.d.ts.map

package/lib/typescript/credential/issuance/03-start-user-authorization.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"03-start-user-authorization.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/03-start-user-authorization.ts"],"names":[],"mappings":"~~AAGA~~,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAEjE,OAAO,~~EAAa~~,KAAK,GAAG,EAAE,MAAM,kBAAkB,CAAC;~~AACvD~~,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACjD,OAAO,~~KAAK,~~EAAE,mBAAmB,~~EAAE~~,MAAM,~~4BAA4B~~,CAAC;~~AA4DtE~~,MAAM,MAAM,sBAAsB,GAAG,CACnC,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,cAAc,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,gBAAgB,CAAC,EAChD,OAAO,EAAE;IACP,gBAAgB,EAAE,aAAa,CAAC;IAChC,yBAAyB,EAAE,MAAM,CAAC;IAClC,~~qBAAqB~~,EAAE,MAAM,CAAC;~~IAC9B~~,~~gBAAgB~~,CAAC,EAAE,~~MAAM~~,CAAC,~~MAAM~~,~~EAAE,MAAM,~~CAAC,CAAC;~~IAC1C~~,~~QAAQ~~,CAAC,EAAE,~~WAAW~~,CAAC,~~OAAO~~,~~CAAC~~,~~CAAC;CACjC~~,~~KACE,OAAO,~~CAAC;~~IAAE~~,~~UAAU~~,EAAE,MAAM,CAAC;~~IAAC~~,~~QAAQ~~,EAAE,~~MAAM~~,~~CAAA~~;~~CAAE~~,CAAC,CAAC;~~AAEvD;;;;;;;;;;;;;;GAcG~~;AACH,eAAO,MAAM,sBAAsB,EAAE,~~sBA2CpC~~,CAAC"}
1	+ {"version":3,"file":"03-start-user-authorization.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/03-start-user-authorization.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAEjE,OAAO,EAAoC,KAAK,GAAG,EAAE,MAAM,kBAAkB,CAAC;AAC9E,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACtE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACjD,OAAO,EAAE,mBAAmB,EAAkB,MAAM,iBAAiB,CAAC;AAGtE,MAAM,MAAM,sBAAsB,GAAG,CACnC,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,cAAc,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,gBAAgB,CAAC,EAChD,OAAO,EAAE;IACP,gBAAgB,EAAE,aAAa,CAAC;IAChC,yBAAyB,EAAE,MAAM,CAAC;IAClC,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;CACjC,KACE,OAAO,CAAC;IACX,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,oBAAoB,EAAE,mBAAmB,CAAC;CAC3C,CAAC,CAAC;AAyDH;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,sBAAsB,EAAE,sBAmCpC,CAAC"}

package/lib/typescript/credential/issuance/04-complete-user-authorization.d.ts CHANGED Viewed

@@ -1,16 +1,28 @@
-import type { Out } from "../../utils/misc";
+import { type AuthorizationContext, type AuthorizationResult } from "../../utils/auth";
+import { type Out } from "../../utils/misc";
 import type { StartUserAuthorization } from "./03-start-user-authorization";
+import type { EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
 /**
- * The interface of the phase to complete User authorization.
- * It may be implemented as a Credential presentation
- * or with a strong User identification
- *
- * @param requestUri The url to reach to complete the user authorization.
- * @param cliendId Identifies the current client across all the requests of the issuing flow
- *
- * @returns the access code to use to request the credental
+ * The interface of the phase to complete User authorization via strong identification when the response mode is "query" and the request credential is a PersonIdentificationData.
  */
-export type CompleteUserAuthorization = (requestUri: Out<StartUserAuthorization>["requestUri"], clientId: Out<StartUserAuthorization>["clientId"]) => Promise<{
-    code: string;
-}>;
+export type CompleteUserAuthorizationWithQueryMode = (issuerRequestUri: Out<StartUserAuthorization>["issuerRequestUri"], clientId: Out<StartUserAuthorization>["clientId"], issuerConf: Out<EvaluateIssuerTrust>["issuerConf"], idpHint: string, redirectUri: string, authorizationContext?: AuthorizationContext) => Promise<AuthorizationResult>;
+/**
+ * WARNING: This function must be called after {@link startUserAuthorization}. The next function to be called is {@link authorizeAccess}.
+ * The interface of the phase to complete User authorization via strong identification when the response mode is "query" and the request credential is a PersonIdentificationData.
+ * It is used to complete the user authorization by catching the redirectSchema from the authorization server which then contains the authorization response.
+ * This function utilizes the authorization context to open an in-app browser capable of catching the redirectSchema to perform a get request to the authorization endpoint.
+ * If the 302 redirect happens and the redirectSchema is caught, the function will return the authorization response after parsing it from the query string.
+ * @param issuerRequestUri the URI of the issuer where the request is sent
+ * @param clientId Identifies the current client across all the requests of the issuing flow returned by {@link startUserAuthorization}
+ * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+ * @param authorizationContext The context to identify the user which will be used to start the authorization. It's needed only when requesting a PersonalIdentificationData credential. The implementantion should open an in-app browser capable of catching the redirectSchema.
+ * If not specified, the default browser is used
+ * @param idphint Unique identifier of the SPID IDP selected by the user
+ * @param redirectUri The url to reach to complete the user authorization which is the custom URL scheme that the Wallet Instance is registered to handle, usually a custom URL or deeplink
+ * @throws {AuthorizationError} if an error occurs during the authorization process
+ * @throws {AuthorizationIdpError} if an error occurs during the authorization process and the error is related to the IDP
+ * @returns the authorization response which contains code, state and iss
+ */
+export declare const completeUserAuthorizationWithQueryMode: CompleteUserAuthorizationWithQueryMode;
+export declare const completeUserAuthorizationWithFormPostJwtMode: () => never;
 //# sourceMappingURL=04-complete-user-authorization.d.ts.map

package/lib/typescript/credential/issuance/04-complete-user-authorization.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"04-complete-user-authorization.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/04-complete-user-authorization.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,~~EAAE~~,GAAG,EAAE,MAAM,kBAAkB,CAAC;~~AAC5C~~,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAC;~~AAE5E;;;;;;;;;GASG~~;AACH,MAAM,MAAM,~~yBAAyB~~,GAAG,~~CACtC~~,~~UAAU~~,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,~~YAAY~~,CAAC,~~EACrD~~,QAAQ,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,UAAU,CAAC,~~KAC9C~~,~~OAAO~~,CAAC~~;IAAE~~,~~IAAI~~,EAAE,MAAM,~~CAAA~~;~~CAAE~~,CAAC,CAAC"}
1	+ {"version":3,"file":"04-complete-user-authorization.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/04-complete-user-authorization.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,KAAK,oBAAoB,EACzB,KAAK,mBAAmB,EACzB,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EAAS,KAAK,GAAG,EAAE,MAAM,kBAAkB,CAAC;AACnD,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAC;AAG5E,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AAGtE;;GAEG;AACH,MAAM,MAAM,sCAAsC,GAAG,CACnD,gBAAgB,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,kBAAkB,CAAC,EACjE,QAAQ,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,UAAU,CAAC,EACjD,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,OAAO,EAAE,MAAM,EACf,WAAW,EAAE,MAAM,EACnB,oBAAoB,CAAC,EAAE,oBAAoB,KACxC,OAAO,CAAC,mBAAmB,CAAC,CAAC;AAElC;;;;;;;;;;;;;;;;GAgBG;AACH,eAAO,MAAM,sCAAsC,EAAE,sCAsElD,CAAC;AAGJ,eAAO,MAAM,4CAA4C,aAExD,CAAC"}

package/lib/typescript/credential/issuance/05-authorize-access.d.ts CHANGED Viewed

@@ -1,26 +1,32 @@
-import type { StartUserAuthorization } from "./03-start-user-authorization";
 import { type Out } from "../../utils/misc";
 import type { EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
-import type { CompleteUserAuthorization } from "./04-complete-user-authorization";
-export type AuthorizeAccess = (issuerConf: Out<EvaluateIssuerTrust>["issuerConf"], code: Out<CompleteUserAuthorization>["code"], clientId: Out<StartUserAuthorization>["clientId"], context: {
+import type { StartUserAuthorization } from "./03-start-user-authorization";
+import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import { TokenResponse } from "./types";
+import type { CompleteUserAuthorizationWithQueryMode } from "./04-complete-user-authorization";
+export type AuthorizeAccess = (issuerConf: Out<EvaluateIssuerTrust>["issuerConf"], code: Out<CompleteUserAuthorizationWithQueryMode>["code"], redirectUri: string, clientId: Out<StartUserAuthorization>["clientId"], codeVerifier: Out<StartUserAuthorization>["codeVerifier"], context: {
     walletInstanceAttestation: string;
-    walletProviderBaseUrl: string;
     appFetch?: GlobalFetch["fetch"];
+    wiaCryptoContext: CryptoContext;
 }) => Promise<{
-    accessToken: string;
-    nonce: string;
-    clientId: string;
+    accessToken: TokenResponse;
+    tokenRequestSignedDPop: string;
 }>;
 /**
- * Obtain the access token to finally request the credential
- *
- * @param issuerConf The Issuer configuration
- * @param code The access code from the User authorization phase
- * @param clientId Identifies the current client across all the requests of the issuing flow
- * @param context.walletInstanceAttestation The Wallet Instance Attestation token
- * @param context.walletProviderBaseUrl The base url of the Wallet Provider
+ * Creates and sends the DPoP Proof JWT to be presented with the authorization code to the /token endpoint of the authorization server
+ * for requesting the issuance of an access token bound to the public key of the Wallet Instance contained within the DPoP.
+ * This enables the Wallet Instance to request a digital credential.
+ * The DPoP Proof JWT is generated according to the section 4.3 of the DPoP RFC 9449 specification.
+ * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+ * @param code The authorization code returned by {@link completeUserAuthorizationWithQueryMode} or {@link completeUserAuthorizationWithFormPost}
+ * @param redirectUri The redirect URI which is the custom URL scheme that the Wallet Instance is registered to handle
+ * @param clientId The client id returned by {@link startUserAuthorization}
+ * @param codeVerifier The code verifier returned by {@link startUserAuthorization}
+ * @param context.walletInstanceAttestation The Wallet Instance's attestation
+ * @param context.wiaCryptoContext The Wallet Instance's crypto context
  * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
- * @returns
+ * @throws {ValidationFailed} if an error occurs while parsing the token response
+ * @return The token response containing the access token along with the token request signed with DPoP which has to be used in the {@link obtainCredential} step.
  */
 export declare const authorizeAccess: AuthorizeAccess;
 //# sourceMappingURL=05-authorize-access.d.ts.map

package/lib/typescript/credential/issuance/05-authorize-access.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"05-authorize-access.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/05-authorize-access.ts"],"names":[],"mappings":"~~AAGA~~,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAC;~~AAC5E~~,OAAO,~~EAAa,~~KAAK,~~GAAG~~,EAAE,MAAM,~~kBAAkB~~,CAAC;~~AACvD~~,OAAO,~~KAAK,~~EAAE,~~mBAAmB~~,EAAE,MAAM,~~4BAA4B~~,CAAC;~~AAEtE~~,OAAO,KAAK,EAAE,~~yBAAyB~~,EAAE,MAAM,kCAAkC,CAAC;~~AAElF~~,MAAM,MAAM,eAAe,GAAG,CAC5B,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,IAAI,EAAE,GAAG,CAAC,~~yBAAyB~~,CAAC,CAAC,MAAM,CAAC,~~EAC5C~~,QAAQ,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,UAAU,CAAC,EACjD,~~OAAO~~,EAAE~~;IACP~~,~~yBAAyB~~,~~EAAE~~,~~MAAM~~,CAAC;~~IAClC~~,~~qBAAqB~~,EAAE,MAAM,CAAC;~~IAC9B~~,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;~~CACjC~~,~~KACE~~,~~OAAO~~,CAAC;~~IAEX~~,~~WAAW~~,~~EAAE~~,~~MAAM,~~CAAC;~~IAEpB~~,~~KAAK~~,EAAE,~~MAAM~~,CAAC;~~IAEd~~,~~QAAQ~~,EAAE,MAAM,~~CAAC~~;~~CAClB~~,CAAC,CAAC;~~AAEH;;;;;;;;;;GAUG~~;AACH,eAAO,MAAM,eAAe,EAAE,~~eAqD7B~~,CAAC"}
1	+ {"version":3,"file":"05-authorize-access.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/05-authorize-access.ts"],"names":[],"mappings":"AAAA,OAAO,EAAa,KAAK,GAAG,EAAE,MAAM,kBAAkB,CAAC;AACvD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACtE,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAC;AAM5E,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAEjE,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAExC,OAAO,KAAK,EAAE,sCAAsC,EAAE,MAAM,kCAAkC,CAAC;AAE/F,MAAM,MAAM,eAAe,GAAG,CAC5B,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,IAAI,EAAE,GAAG,CAAC,sCAAsC,CAAC,CAAC,MAAM,CAAC,EACzD,WAAW,EAAE,MAAM,EACnB,QAAQ,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,UAAU,CAAC,EACjD,YAAY,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,cAAc,CAAC,EACzD,OAAO,EAAE;IACP,yBAAyB,EAAE,MAAM,CAAC;IAClC,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;IAChC,gBAAgB,EAAE,aAAa,CAAC;CACjC,KACE,OAAO,CAAC;IAAE,WAAW,EAAE,aAAa,CAAC;IAAC,sBAAsB,EAAE,MAAM,CAAA;CAAE,CAAC,CAAC;AAE7E;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,eAAe,EAAE,eAyE7B,CAAC"}

package/lib/typescript/credential/issuance/06-obtain-credential.d.ts CHANGED Viewed

@@ -1,35 +1,28 @@
 import { type CryptoContext } from "@pagopa/io-react-native-jwt";
-import type { StartFlow } from "./01-start-flow";
-import { type Out } from "../../utils/misc";
-import type { EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
 import type { AuthorizeAccess } from "./05-authorize-access";
-import { SupportedCredentialFormat } from "./const";
-/**
- * Return the signed jwt for nonce proof of possession
- */
-export declare const createNonceProof: (nonce: string, issuer: string, audience: string, ctx: CryptoContext) => Promise<string>;
-export type ObtainCredential = (issuerConf: Out<EvaluateIssuerTrust>["issuerConf"], accessToken: Out<AuthorizeAccess>["accessToken"], nonce: Out<AuthorizeAccess>["nonce"], clientId: Out<AuthorizeAccess>["clientId"], credentialType: Out<StartFlow>["credentialType"], credentialFormat: SupportedCredentialFormat, context: {
+import type { EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
+import { type Out } from "../../utils/misc";
+import type { StartUserAuthorization } from "./03-start-user-authorization";
+import { CredentialResponse } from "./types";
+export type ObtainCredential = (issuerConf: Out<EvaluateIssuerTrust>["issuerConf"], accessToken: Out<AuthorizeAccess>["accessToken"], clientId: Out<StartUserAuthorization>["clientId"], credentialDefinition: Out<StartUserAuthorization>["credentialDefinition"], tokenRequestSignedDPop: Out<AuthorizeAccess>["tokenRequestSignedDPop"], context: {
     credentialCryptoContext: CryptoContext;
-    walletProviderBaseUrl: string;
     appFetch?: GlobalFetch["fetch"];
-}) => Promise<{
-    credential: string;
-    format: SupportedCredentialFormat;
-    nonce: string;
-}>;
+}) => Promise<CredentialResponse>;
+export declare const createNonceProof: (nonce: string, issuer: string, audience: string, ctx: CryptoContext) => Promise<string>;
 /**
- * Fetch a credential from the issuer
- *
- * @param issuerConf The Issuer configuration
- * @param accessToken The access token to grant access to the credential, obtained with the access authorization step
- * @param nonce The nonce value to prevent reply attacks, obtained with the access authorization step
- * @param clientId Identifies the current client across all the requests of the issuing flow
- * @param credentialType The type of the credential to be requested
- * @param credentialFormat The format of the requested credential. @see {SupportedCredentialFormat}
- * @param context.credentialCryptoContext The context to access the key the Credential will be bound to
- * @param context.walletProviderBaseUrl The base url of the Wallet Provider
+ * Obtains the credential from the issuer.
+ * The key pair of the credentialCryptoContext is used for Openid4vci proof JWT to be presented with the Access Token and the DPoP Proof JWT at the Credential Endpoint
+ * of the Credential Issuer to request the issuance of a credential linked to the public key contained in the JWT proof.
+ * The Openid4vci proof JWT incapsulates the nonce extracted from the token response from the {@link authorizeAccess} step.
+ * The credential request is sent to the Credential Endpoint of the Credential Issuer via HTTP POST with the type of the credential, its format, the access token and the JWT proof.
+ * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+ * @param accessToken The access token response returned by {@link authorizeAccess}
+ * @param clientId The client id returned by {@link startUserAuthorization}
+ * @param credentialDefinition The credential definition of the credential to be obtained returned by {@link startUserAuthorization}
+ * @param tokenRequestSignedDPop The DPoP signed token request returned by {@link authorizeAccess}
+ * @param context.credentialCryptoContext The crypto context used to obtain the credential
  * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
- * @returns The signed credential token
+ * @returns The credential response containing the credential
  */
 export declare const obtainCredential: ObtainCredential;
 //# sourceMappingURL=06-obtain-credential.d.ts.map

package/lib/typescript/credential/issuance/06-obtain-credential.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"06-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/06-obtain-credential.ts"],"names":[],"mappings":"~~AAEA~~,OAAO,EAAW,KAAK,aAAa,EAAE,MAAM,6BAA6B,CAAC;~~AAG1E~~,OAAO,KAAK,EAAE,~~SAAS~~,EAAE,MAAM,~~iBAAiB~~,CAAC;~~AACjD~~,OAAO,~~EAAa,~~KAAK,~~GAAG~~,EAAE,MAAM,~~kBAAkB~~,CAAC;~~AACvD~~,OAAO,KAAK,~~EAAE~~,~~mBAAmB,~~EAAE,MAAM,~~4BAA4B~~,CAAC;~~AACtE~~,OAAO,KAAK,EAAE,~~eAAe~~,EAAE,MAAM,~~uBAAuB,~~CAAC;~~AAC7D~~,OAAO,EAAE,~~yBAAyB~~,EAAE,MAAM,SAAS,CAAC;~~AAEpD;;GAEG;AACH~~,~~eAAO,~~MAAM,~~gBAAgB,UACpB,~~MAAM,~~UACL,MAAM,YACJ,MAAM,OACX,aAAa,KACjB,QAAQ,MAAM,CAchB,CAAC;AAWF,MAAM,MAAM,~~gBAAgB,GAAG,CAC7B,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,WAAW,EAAE,GAAG,CAAC,eAAe,CAAC,CAAC,aAAa,CAAC,EAChD,~~KAAK~~,EAAE,GAAG,CAAC,~~eAAe~~,CAAC,CAAC,~~OAAO~~,CAAC,~~EACpC~~,~~QAAQ~~,EAAE,GAAG,CAAC,~~eAAe~~,CAAC,CAAC,~~UAAU~~,CAAC,~~EAC1C~~,~~cAAc~~,EAAE,GAAG,CAAC,~~SAAS~~,CAAC,CAAC,~~gBAAgB~~,CAAC,~~EAChD~~,~~gBAAgB,EAAE,yBAAyB,EAC3C,~~OAAO,EAAE;IACP,uBAAuB,EAAE,aAAa,CAAC;IACvC,~~qBAAqB,EAAE,MAAM,CAAC;IAC9B,~~QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;CACjC,KACE,OAAO,CAAC;~~IACX~~,~~UAAU~~,~~EAAE~~,MAAM,~~CAAC;IACnB~~,MAAM,~~EAAE~~,~~yBAAyB~~,~~CAAC;IAClC~~,~~KAAK~~,~~EAAE~~,MAAM,~~CAAC;CACf~~,CAAC~~,CAAC~~;~~AAeH;;;;;;;;;;;;;GAaG~~;AACH,eAAO,MAAM,gBAAgB,EAAE,~~gBAuE9B~~,CAAC"}
1	+ {"version":3,"file":"06-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/06-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,EAAW,KAAK,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAC1E,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAC7D,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACtE,OAAO,EAAa,KAAK,GAAG,EAAE,MAAM,kBAAkB,CAAC;AACvD,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,+BAA+B,CAAC;AAE5E,OAAO,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAE7C,MAAM,MAAM,gBAAgB,GAAG,CAC7B,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,WAAW,EAAE,GAAG,CAAC,eAAe,CAAC,CAAC,aAAa,CAAC,EAChD,QAAQ,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,UAAU,CAAC,EACjD,oBAAoB,EAAE,GAAG,CAAC,sBAAsB,CAAC,CAAC,sBAAsB,CAAC,EACzE,sBAAsB,EAAE,GAAG,CAAC,eAAe,CAAC,CAAC,wBAAwB,CAAC,EACtE,OAAO,EAAE;IACP,uBAAuB,EAAE,aAAa,CAAC;IACvC,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;CACjC,KACE,OAAO,CAAC,kBAAkB,CAAC,CAAC;AAEjC,eAAO,MAAM,gBAAgB,UACpB,MAAM,UACL,MAAM,YACJ,MAAM,OACX,aAAa,KACjB,QAAQ,MAAM,CAehB,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,gBAAgB,EAAE,gBAqE9B,CAAC"}

package/lib/typescript/credential/issuance/07-verify-and-parse-credential.d.ts CHANGED Viewed

@@ -1,10 +1,9 @@
 import type { Out } from "../../utils/misc";
 import type { EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
-import type { ObtainCredential } from "./06-obtain-credential";
 import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import type { ObtainCredential } from "./06-obtain-credential";
 export type VerifyAndParseCredential = (issuerConf: Out<EvaluateIssuerTrust>["issuerConf"], credential: Out<ObtainCredential>["credential"], format: Out<ObtainCredential>["format"], context: {
     credentialCryptoContext: CryptoContext;
-    ignoreMissingAttributes?: boolean;
 }) => Promise<{
     parsedCredential: ParsedCredential;
 }>;
@@ -12,24 +11,20 @@ type ParsedCredential = Record<
 /** Attribute key */
 string, {
     /** Human-readable name of the attribute */
-    name: /* if i18n is provided */ Record<string, string> | /* if no i18n is provided */ string;
-    /** If in defined as mandatory by the Issuer */
-    mandatory: boolean;
+    name: /* if i18n is provided */ Record<string, string> | /* if no i18n is provided */ string | undefined;
     /** The actual value of the attribute */
     value: unknown;
 }>;
 /**
- * Verify and parse an encoded credential
- *
- * @param issuerConf The Issuer configuration
- * @param credential The encoded credential
- * @param format The format of the credentual
- * @param context.credentialCryptoContext The context to access the key the Credential will be bound to
- * @param context.ignoreMissingAttributes (optional) Whether to fail if a defined attribute is note present in the credentual. Default: false
+ * Verify and parse an encoded credential.
+ * @param issuerConf The Issuer configuration returned by {@link evaluateIssuerTrust}
+ * @param credential The encoded credential returned by {@link obtainCredential}
+ * @param format The format of the credentual returned by {@link obtainCredential}
+ * @param context.credentialCryptoContext The crypto context used to obtain the credential in {@link obtainCredential}
  * @returns A parsed credential with attributes in plain value
- * @throws If the credential signature is not verified with the Issuer key set
- * @throws If the credential is not bound to the provided user key
- * @throws If the credential data fail to parse
+ * @throws {IoWalletError} If the credential signature is not verified with the Issuer key set
+ * @throws {IoWalletError} If the credential is not bound to the provided user key
+ * @throws {IoWalletError} If the credential data fail to parse
  */
 export declare const verifyAndParseCredential: VerifyAndParseCredential;
 export {};

package/lib/typescript/credential/issuance/07-verify-and-parse-credential.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"07-verify-and-parse-credential.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/07-verify-and-parse-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;~~AACtE~~,OAAO,KAAK,EAAE,~~gBAAgB~~,EAAE,MAAM,~~wBAAwB~~,CAAC;~~AAK/D~~,OAAO,KAAK,EAAE,~~aAAa~~,EAAE,MAAM,~~6BAA6B~~,CAAC;~~AAEjE~~,MAAM,MAAM,wBAAwB,GAAG,CACrC,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,UAAU,EAAE,GAAG,CAAC,gBAAgB,CAAC,CAAC,YAAY,CAAC,EAC/C,MAAM,EAAE,GAAG,CAAC,gBAAgB,CAAC,CAAC,QAAQ,CAAC,EACvC,OAAO,EAAE;IACP,uBAAuB,EAAE,aAAa,CAAC;~~IACvC~~,~~uBAAuB,CAAC,EAAE,OAAO,CAAC;CACnC,~~KACE,OAAO,CAAC;IAAE,gBAAgB,EAAE,gBAAgB,CAAA;CAAE,CAAC,CAAC;AAGrD,KAAK,gBAAgB,GAAG,MAAM;AAC5B,oBAAoB;AACpB,MAAM,EACN;IACE,2CAA2C;IAC3C,IAAI,EACA,yBAAyB,CAAC,MAAM,CAC9B,MAAM,EACN,MAAM,CACP,GACD,4BAA4B,CAAC,MAAM,~~CAAC;IACxC,+CAA+C;IAC/C~~,SAAS,~~EAAE,OAAO,~~CAAC;~~IACnB~~,wCAAwC;IACxC,KAAK,EAAE,OAAO,CAAC;CAChB,CACF,CAAC;~~AAkLF;;;;;;;;;;;;GAYG~~;AACH,eAAO,MAAM,wBAAwB,EAAE,~~wBAwBtC~~,CAAC"}
1	+ {"version":3,"file":"07-verify-and-parse-credential.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/07-verify-and-parse-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AAKtE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAE/D,MAAM,MAAM,wBAAwB,GAAG,CACrC,UAAU,EAAE,GAAG,CAAC,mBAAmB,CAAC,CAAC,YAAY,CAAC,EAClD,UAAU,EAAE,GAAG,CAAC,gBAAgB,CAAC,CAAC,YAAY,CAAC,EAC/C,MAAM,EAAE,GAAG,CAAC,gBAAgB,CAAC,CAAC,QAAQ,CAAC,EACvC,OAAO,EAAE;IACP,uBAAuB,EAAE,aAAa,CAAC;CACxC,KACE,OAAO,CAAC;IAAE,gBAAgB,EAAE,gBAAgB,CAAA;CAAE,CAAC,CAAC;AAGrD,KAAK,gBAAgB,GAAG,MAAM;AAC5B,oBAAoB;AACpB,MAAM,EACN;IACE,2CAA2C;IAC3C,IAAI,EACA,yBAAyB,CAAC,MAAM,CAC9B,MAAM,EACN,MAAM,CACP,GACD,4BAA4B,CAAC,MAAM,GACnC,SAAS,CAAC;IACd,wCAAwC;IACxC,KAAK,EAAE,OAAO,CAAC;CAChB,CACF,CAAC;AAyJF;;;;;;;;;;GAUG;AACH,eAAO,MAAM,wBAAwB,EAAE,wBAgBtC,CAAC"}

package/lib/typescript/credential/issuance/index.d.ts CHANGED Viewed

@@ -1,11 +1,10 @@
 import { type StartFlow } from "./01-start-flow";
 import { evaluateIssuerTrust, type EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
 import { startUserAuthorization, type StartUserAuthorization } from "./03-start-user-authorization";
-import { type CompleteUserAuthorization } from "./04-complete-user-authorization";
+import { completeUserAuthorizationWithQueryMode, type CompleteUserAuthorizationWithQueryMode } from "./04-complete-user-authorization";
 import { authorizeAccess, type AuthorizeAccess } from "./05-authorize-access";
 import { obtainCredential, type ObtainCredential } from "./06-obtain-credential";
 import { verifyAndParseCredential, type VerifyAndParseCredential } from "./07-verify-and-parse-credential";
-import type { ConfirmCredential } from "./08-confirm-credential";
-export { evaluateIssuerTrust, startUserAuthorization, authorizeAccess, obtainCredential, verifyAndParseCredential, };
-export type { StartFlow, EvaluateIssuerTrust, StartUserAuthorization, CompleteUserAuthorization, AuthorizeAccess, ObtainCredential, VerifyAndParseCredential, ConfirmCredential, };
+export { evaluateIssuerTrust, startUserAuthorization, completeUserAuthorizationWithQueryMode, authorizeAccess, obtainCredential, verifyAndParseCredential, };
+export type { StartFlow, EvaluateIssuerTrust, StartUserAuthorization, CompleteUserAuthorizationWithQueryMode, AuthorizeAccess, ObtainCredential, VerifyAndParseCredential, };
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/credential/issuance/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACjD,OAAO,EACL,mBAAmB,EACnB,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,sBAAsB,EACtB,KAAK,sBAAsB,EAC5B,MAAM,+BAA+B,CAAC;AACvC,OAAO,~~EAAE~~,KAAK,~~yBAAyB~~,~~EAAE~~,MAAM,kCAAkC,CAAC;~~AAClF~~,OAAO,EAAE,eAAe,EAAE,KAAK,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAC9E,OAAO,EACL,gBAAgB,EAChB,KAAK,gBAAgB,EACtB,MAAM,wBAAwB,CAAC;AAChC,OAAO,EACL,wBAAwB,EACxB,KAAK,wBAAwB,EAC9B,MAAM,kCAAkC,CAAC;~~AAC1C~~,OAAO,~~KAAK,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAEjE,OAAO,~~EACL,mBAAmB,EACnB,sBAAsB,EACtB,eAAe,EACf,gBAAgB,EAChB,wBAAwB,GACzB,CAAC;AACF,YAAY,EACV,SAAS,EACT,mBAAmB,EACnB,sBAAsB,EACtB,~~yBAAyB~~,~~EACzB~~,eAAe,EACf,gBAAgB,EAChB,wBAAwB,~~EACxB~~,~~iBAAiB,GAClB,~~CAAC"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACjD,OAAO,EACL,mBAAmB,EACnB,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,sBAAsB,EACtB,KAAK,sBAAsB,EAC5B,MAAM,+BAA+B,CAAC;AACvC,OAAO,EACL,sCAAsC,EACtC,KAAK,sCAAsC,EAC5C,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EAAE,eAAe,EAAE,KAAK,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAC9E,OAAO,EACL,gBAAgB,EAChB,KAAK,gBAAgB,EACtB,MAAM,wBAAwB,CAAC;AAChC,OAAO,EACL,wBAAwB,EACxB,KAAK,wBAAwB,EAC9B,MAAM,kCAAkC,CAAC;AAE1C,OAAO,EACL,mBAAmB,EACnB,sBAAsB,EACtB,sCAAsC,EACtC,eAAe,EACf,gBAAgB,EAChB,wBAAwB,GACzB,CAAC;AACF,YAAY,EACV,SAAS,EACT,mBAAmB,EACnB,sBAAsB,EACtB,sCAAsC,EACtC,eAAe,EACf,gBAAgB,EAChB,wBAAwB,GACzB,CAAC"}

package/lib/typescript/credential/issuance/types.d.ts ADDED Viewed

@@ -0,0 +1,63 @@
+import * as z from "zod";
+export type TokenResponse = z.infer<typeof TokenResponse>;
+export declare const TokenResponse: z.ZodObject<{
+    access_token: z.ZodString;
+    authorization_details: z.ZodArray<z.ZodObject<{
+        credential_configuration_id: z.ZodString;
+        format: z.ZodUnion<[z.ZodLiteral<"vc+sd-jwt">, z.ZodLiteral<"vc+mdoc-cbor">]>;
+        type: z.ZodLiteral<"openid_credential">;
+    }, "strip", z.ZodTypeAny, {
+        type: "openid_credential";
+        format: "vc+sd-jwt" | "vc+mdoc-cbor";
+        credential_configuration_id: string;
+    }, {
+        type: "openid_credential";
+        format: "vc+sd-jwt" | "vc+mdoc-cbor";
+        credential_configuration_id: string;
+    }>, "many">;
+    c_nonce: z.ZodString;
+    c_nonce_expires_in: z.ZodNumber;
+    expires_in: z.ZodNumber;
+    token_type: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    authorization_details: {
+        type: "openid_credential";
+        format: "vc+sd-jwt" | "vc+mdoc-cbor";
+        credential_configuration_id: string;
+    }[];
+    access_token: string;
+    c_nonce: string;
+    c_nonce_expires_in: number;
+    expires_in: number;
+    token_type: string;
+}, {
+    authorization_details: {
+        type: "openid_credential";
+        format: "vc+sd-jwt" | "vc+mdoc-cbor";
+        credential_configuration_id: string;
+    }[];
+    access_token: string;
+    c_nonce: string;
+    c_nonce_expires_in: number;
+    expires_in: number;
+    token_type: string;
+}>;
+export type CredentialResponse = z.infer<typeof CredentialResponse>;
+export declare const CredentialResponse: z.ZodObject<{
+    c_nonce: z.ZodString;
+    c_nonce_expires_in: z.ZodNumber;
+    credential: z.ZodString;
+    format: z.ZodUnion<[z.ZodLiteral<"vc+sd-jwt">, z.ZodLiteral<"vc+mdoc-cbor">]>;
+}, "strip", z.ZodTypeAny, {
+    format: "vc+sd-jwt" | "vc+mdoc-cbor";
+    c_nonce: string;
+    c_nonce_expires_in: number;
+    credential: string;
+}, {
+    format: "vc+sd-jwt" | "vc+mdoc-cbor";
+    c_nonce: string;
+    c_nonce_expires_in: number;
+    credential: string;
+}>;
+export type ResponseMode = "query" | "form_post.jwt";
+//# sourceMappingURL=types.d.ts.map

package/lib/typescript/credential/issuance/types.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/types.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,CAAC,MAAM,KAAK,CAAC;AAGzB,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAC;AAE1D,eAAO,MAAM,aAAa;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAOxB,CAAC;AAEH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAEpE,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;EAK7B,CAAC;AAEH,MAAM,MAAM,YAAY,GAAG,OAAO,GAAG,eAAe,CAAC"}

package/lib/typescript/credential/presentation/types.d.ts CHANGED Viewed

@@ -22,28 +22,28 @@ export declare const RequestObject: z.ZodObject<{
     client_id_scheme: z.ZodLiteral<"entity_id">;
     scope: z.ZodString;
 }, "strip", z.ZodTypeAny, {
+    state: string;
     iss: string;
     iat: number;
     exp: number;
     client_id: string;
+    scope: string;
     nonce: string;
     response_type: "vp_token";
-    state: string;
-    response_uri: string;
     response_mode: "direct_post.jwt";
+    response_uri: string;
     client_id_scheme: "entity_id";
-    scope: string;
 }, {
+    state: string;
     iss: string;
     iat: number;
     exp: number;
     client_id: string;
+    scope: string;
     nonce: string;
     response_type: "vp_token";
-    state: string;
-    response_uri: string;
     response_mode: "direct_post.jwt";
+    response_uri: string;
     client_id_scheme: "entity_id";
-    scope: string;
 }>;
 //# sourceMappingURL=types.d.ts.map

package/lib/typescript/index.d.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import type { AuthorizationContext } from "./utils/auth";
 import { fixBase64EncodingOnKey } from "./utils/jwk";
 import "react-native-url-polyfill/auto";
 import * as Credential from "./credential";
@@ -11,5 +12,5 @@ import { AuthorizationDetail, AuthorizationDetails } from "./utils/par";
 import { createCryptoContextFor } from "./utils/crypto";
 import type { IntegrityContext } from "./utils/integrity";
 export { SdJwt, PID, Credential, WalletInstanceAttestation, WalletInstance, Errors, Trust, createCryptoContextFor, AuthorizationDetail, AuthorizationDetails, fixBase64EncodingOnKey, };
-export type { IntegrityContext };
+export type { IntegrityContext, AuthorizationContext };
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAGrD,OAAO,gCAAgC,CAAC;AAExC,OAAO,KAAK,UAAU,MAAM,cAAc,CAAC;AAC3C,OAAO,KAAK,GAAG,MAAM,OAAO,CAAC;AAC7B,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAClC,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,yBAAyB,MAAM,+BAA+B,CAAC;AAC3E,OAAO,KAAK,KAAK,MAAM,SAAS,CAAC;AACjC,OAAO,KAAK,cAAc,MAAM,mBAAmB,CAAC;AACpD,OAAO,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gBAAgB,CAAC;AACxD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAE1D,OAAO,EACL,KAAK,EACL,GAAG,EACH,UAAU,EACV,yBAAyB,EACzB,cAAc,EACd,MAAM,EACN,KAAK,EACL,sBAAsB,EACtB,mBAAmB,EACnB,oBAAoB,EACpB,sBAAsB,GACvB,CAAC;AAEF,YAAY,EAAE,gBAAgB,EAAE,CAAC"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAGrD,OAAO,gCAAgC,CAAC;AAExC,OAAO,KAAK,UAAU,MAAM,cAAc,CAAC;AAC3C,OAAO,KAAK,GAAG,MAAM,OAAO,CAAC;AAC7B,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAClC,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,yBAAyB,MAAM,+BAA+B,CAAC;AAC3E,OAAO,KAAK,KAAK,MAAM,SAAS,CAAC;AACjC,OAAO,KAAK,cAAc,MAAM,mBAAmB,CAAC;AACpD,OAAO,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gBAAgB,CAAC;AACxD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAE1D,OAAO,EACL,KAAK,EACL,GAAG,EACH,UAAU,EACV,yBAAyB,EACzB,cAAc,EACd,MAAM,EACN,KAAK,EACL,sBAAsB,EACtB,mBAAmB,EACnB,oBAAoB,EACpB,sBAAsB,GACvB,CAAC;AAEF,YAAY,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,CAAC"}

package/lib/typescript/pid/sd-jwt/converters.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"converters.d.ts","sourceRoot":"","sources":["../../../../src/pid/sd-jwt/converters.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC/D,OAAO,EAAE,GAAG,EAAE,MAAM,SAAS,CAAC;AAE9B,wBAAgB,YAAY,CAAC,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,UAAU,EAAE,GAAG,GAAG,~~CAqB5E~~"}
1	+ {"version":3,"file":"converters.d.ts","sourceRoot":"","sources":["../../../../src/pid/sd-jwt/converters.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC/D,OAAO,EAAE,GAAG,EAAE,MAAM,SAAS,CAAC;AAE9B,wBAAgB,YAAY,CAAC,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,UAAU,EAAE,GAAG,GAAG,CAe5E"}

package/lib/typescript/pid/sd-jwt/types.d.ts CHANGED Viewed

@@ -10,7 +10,7 @@ export declare const PID: z.ZodObject<{
     issuer: z.ZodString;
     issuedAt: z.ZodDate;
     expiration: z.ZodDate;
-    verification: z.ZodObject<{
+    verification: z.ZodOptional<z.ZodObject<{
         trustFramework: z.ZodLiteral<"eidas">;
         assuranceLevel: z.ZodString;
         evidence: z.ZodArray<z.ZodObject<{
@@ -94,13 +94,13 @@ export declare const PID: z.ZodObject<{
                 };
             };
         }[];
-    }>;
+    }>>;
     claims: z.ZodObject<{
         uniqueId: z.ZodString;
         givenName: z.ZodString;
         familyName: z.ZodString;
-        birthdate: z.ZodString;
-        placeOfBirth: z.ZodObject<{
+        birthDate: z.ZodString;
+        placeOfBirth: z.ZodOptional<z.ZodObject<{
             country: z.ZodString;
             locality: z.ZodString;
         }, "strip", z.ZodTypeAny, {
@@ -109,31 +109,45 @@ export declare const PID: z.ZodObject<{
         }, {
             country: string;
             locality: string;
-        }>;
+        }>>;
         taxIdCode: z.ZodString;
     }, "strip", z.ZodTypeAny, {
         uniqueId: string;
         givenName: string;
         familyName: string;
-        birthdate: string;
-        placeOfBirth: {
+        birthDate: string;
+        taxIdCode: string;
+        placeOfBirth?: {
             country: string;
             locality: string;
-        };
-        taxIdCode: string;
+        } | undefined;
     }, {
         uniqueId: string;
         givenName: string;
         familyName: string;
-        birthdate: string;
-        placeOfBirth: {
+        birthDate: string;
+        taxIdCode: string;
+        placeOfBirth?: {
             country: string;
             locality: string;
-        };
-        taxIdCode: string;
+        } | undefined;
     }>;
 }, "strip", z.ZodTypeAny, {
-    verification: {
+    claims: {
+        uniqueId: string;
+        givenName: string;
+        familyName: string;
+        birthDate: string;
+        taxIdCode: string;
+        placeOfBirth?: {
+            country: string;
+            locality: string;
+        } | undefined;
+    };
+    issuer: string;
+    issuedAt: Date;
+    expiration: Date;
+    verification?: {
         trustFramework: "eidas";
         assuranceLevel: string;
         evidence: {
@@ -147,23 +161,23 @@ export declare const PID: z.ZodObject<{
                 };
             };
         }[];
-    };
+    } | undefined;
+}, {
     claims: {
         uniqueId: string;
         givenName: string;
         familyName: string;
-        birthdate: string;
-        placeOfBirth: {
+        birthDate: string;
+        taxIdCode: string;
+        placeOfBirth?: {
             country: string;
             locality: string;
-        };
-        taxIdCode: string;
+        } | undefined;
     };
     issuer: string;
     issuedAt: Date;
     expiration: Date;
-}, {
-    verification: {
+    verification?: {
         trustFramework: "eidas";
         assuranceLevel: string;
         evidence: {
@@ -177,20 +191,6 @@ export declare const PID: z.ZodObject<{
                 };
             };
         }[];
-    };
-    claims: {
-        uniqueId: string;
-        givenName: string;
-        familyName: string;
-        birthdate: string;
-        placeOfBirth: {
-            country: string;
-            locality: string;
-        };
-        taxIdCode: string;
-    };
-    issuer: string;
-    issuedAt: Date;
-    expiration: Date;
+    } | undefined;
 }>;
 //# sourceMappingURL=types.d.ts.map

package/lib/typescript/pid/sd-jwt/types.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/pid/sd-jwt/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAoBxB;;;;;GAKG;AACH,MAAM,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC;AACtC,eAAO,MAAM,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;~~EAgBd~~,CAAC"}
1	+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/pid/sd-jwt/types.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAoBxB;;;;;GAKG;AACH,MAAM,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC;AACtC,eAAO,MAAM,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAkBd,CAAC"}