@pagopa/io-react-native-wallet 0.13.1 → 0.15.0

package/lib/commonjs/cie/component.js

@@ -0,0 +1,180 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WebViewComponent = exports.CieEvent = void 0;
+var _react = _interopRequireWildcard(require("react"));
+var _reactNative = require("react-native");
+var _reactNativeWebview = require("react-native-webview");
+var _manager = require("./manager");
+var _error = require("./error");
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+/* To obtain the authentication URL on CIE L3 it is necessary to take the
+ * link contained in the "Entra con lettura carta CIE" button.
+ * This link can then be used on CieManager.
+ * This javascript code takes the link in question and sends it to the react native function via postMessage
+ */
+const injectedJavaScript = `
+    (function() {
+      function sendDocumentContent() {
+        const idpAuthUrl = [...document.querySelectorAll("a")]
+        .filter(a => a.textContent.includes("lettura carta CIE"))
+        .map(a=>a.href)[0];
+
+        if(idpAuthUrl) {
+          window.ReactNativeWebView.postMessage(idpAuthUrl);
+        }
+      }
+      if (document.readyState === 'complete') {
+        sendDocumentContent();
+      } else {
+        window.addEventListener('load', sendDocumentContent);
+      }
+    })();
+    true;
+  `;
+let CieEvent = /*#__PURE__*/function (CieEvent) {
+  CieEvent["reading"] = "reading";
+  CieEvent["completed"] = "completed";
+  CieEvent["waiting_card"] = "waiting_card";
+  return CieEvent;
+}({});
+exports.CieEvent = CieEvent;
+/*
+ * To make sure the server recognizes the client as valid iPhone device (iOS only) we use a custom header
+ * on Android it is not required.
+ */
+const iOSUserAgent = "Mozilla/5.0 (iPhone; CPU iPhone OS 14_0_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/14.0 Mobile/15E148 Safari/604.1";
+const defaultUserAgent = _reactNative.Platform.select({
+  ios: iOSUserAgent,
+  default: undefined
+});
+const webView = /*#__PURE__*/(0, _react.createRef)();
+
+/**
+ * WebViewComponent
+ *
+ * Component that manages authentication via CIE L3 (NFC+PIN) based on WebView (react-native-webview).
+ * In particular, once rendered, it makes a series of calls to the authUrl in the WebView,
+ * extrapolates the authentication URL necessary for CieManager to sign via certificate
+ * and calls the CIE SDK which is responsible for starting card reading via NFC.
+ * At the end of the reading, a redirect is made in the WebView towards the page that asks
+ * the user for consent to send the data to the Service Provider. This moment can be captured
+ * via the onUserInteraction parameter. When the user allows or denies their consent,
+ * a redirect is made to the URL set by the Service Provider.
+ * This url can be configured using the redirectUrl parameter which allows you to close the WebView.
+ * The event can then be captured via the onSuccess parameter.
+ *
+ * @param {CIEParams} params - Parameters required by the component.
+ * @param {string} params.authUrl -The authentication URL of the Service Provider to which to authenticate.
+ * @param {boolean} params.useUat - If set to true it uses the CIE testing environment.
+ * @param {string} params.pin - CIE pin for use with NFC reading.
+ * @param {Function} params.onError - Callback function in case of error. The function is passed the Error parameter.
+ * @param {Function} params.onSuccess - Callback at the end of authentication to which the redirect URL including parameters is passed.
+ * @param {string} params.redirectUrl - Redirect URL set by the Service Provider. It is used to stop the flow and return to the calling function via onSuccess.
+ * @param {Function} params.onEvent - Callback function that is called whenever there is a new CieEvent from the CIE reader.
+ * @returns {JSX.Element} - The configured component with WebView.
+ */
+const WebViewComponent = params => {
+  const [webViewUrl, setWebViewUrl] = _react.default.useState(params.authUrl);
+  const [isCardReadingFinished, setCardReadingFinished] = _react.default.useState(false);
+
+  /*
+   * Once the reading of the card with NFC is finished, it is necessary
+   * to change the URL of the WebView by redirecting to the URL returned by
+   * CieManager to allow the user to continue with the consent authorization
+   * */
+  const continueWithUrl = callbackUrl => {
+    setCardReadingFinished(true);
+    setWebViewUrl(callbackUrl);
+  };
+
+  // This function is called from the injected javascript code (postMessage). Which receives the authentication URL
+  const handleMessage = async event => {
+    const cieAuthorizationUri = event.nativeEvent.data;
+    const startCie = _reactNative.Platform.select({
+      ios: _manager.startCieiOS,
+      default: _manager.startCieAndroid
+    });
+    await startCie(params.useUat, params.pin, params.onError, params.onEvent, cieAuthorizationUri, continueWithUrl);
+  };
+
+  //This function is called when authentication with CIE ends and the SP URL containing code and state is returned
+  const handleShouldStartLoading = (onSuccess, redirectUrl) => event => {
+    if (isCardReadingFinished && event.url.includes(redirectUrl)) {
+      onSuccess(event.url);
+      return false;
+    } else {
+      return true;
+    }
+  };
+  const handleOnLoadEnd = (onError, onCieEvent) => e => {
+    const eventTitle = e.nativeEvent.title.toLowerCase();
+    if (eventTitle === "pagina web non disponibile" ||
+    // On Android, if we attempt to access the idp URL twice,
+    // we are presented with an error page titled "ERROR".
+    eventTitle === "errore") {
+      handleOnError(onError)(new Error(eventTitle));
+    }
+
+    /* At the end of loading the page, if the card has already been read
+     * then the WebView has loaded the page to ask the user for consent,
+     * so send the completed event
+     * */
+    if (isCardReadingFinished) {
+      onCieEvent(CieEvent.completed);
+    }
+  };
+  const handleOnError = onError => e => {
+    const error = e;
+    const webViewError = e;
+    const webViewHttpError = e;
+    if (webViewHttpError.nativeEvent.statusCode) {
+      const {
+        description,
+        statusCode
+      } = webViewHttpError.nativeEvent;
+      onError(new _error.CieError({
+        message: `WebView http error: ${description} with status code: ${statusCode}`,
+        type: _error.CieErrorType.WEB_VIEW_ERROR
+      }));
+    } else if (webViewError.nativeEvent) {
+      const {
+        code,
+        description
+      } = webViewError.nativeEvent;
+      onError(new _error.CieError({
+        message: `WebView error: ${description} with code: ${code}`,
+        type: _error.CieErrorType.WEB_VIEW_ERROR
+      }));
+    } else if (error.message !== undefined) {
+      onError(new _error.CieError({
+        message: `${error.message}`,
+        type: _error.CieErrorType.WEB_VIEW_ERROR
+      }));
+    } else {
+      onError(new _error.CieError({
+        message: "An error occurred in the WebView",
+        type: _error.CieErrorType.WEB_VIEW_ERROR
+      }));
+    }
+  };
+  return /*#__PURE__*/_react.default.createElement(_reactNativeWebview.WebView, {
+    ref: webView,
+    userAgent: defaultUserAgent,
+    javaScriptEnabled: true,
+    source: {
+      uri: webViewUrl
+    },
+    onLoadEnd: handleOnLoadEnd(params.onError, params.onEvent),
+    onError: handleOnError(params.onError),
+    onHttpError: handleOnError(params.onError),
+    injectedJavaScript: injectedJavaScript,
+    onShouldStartLoadWithRequest: handleShouldStartLoading(params.onSuccess, params.redirectUrl),
+    onMessage: handleMessage
+  });
+};
+exports.WebViewComponent = WebViewComponent;
+//# sourceMappingURL=component.js.map

package/lib/commonjs/cie/component.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_react","_interopRequireWildcard","require","_reactNative","_reactNativeWebview","_manager","_error","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","injectedJavaScript","CieEvent","exports","iOSUserAgent","defaultUserAgent","Platform","select","ios","undefined","webView","createRef","WebViewComponent","params","webViewUrl","setWebViewUrl","React","useState","authUrl","isCardReadingFinished","setCardReadingFinished","continueWithUrl","callbackUrl","handleMessage","event","cieAuthorizationUri","nativeEvent","data","startCie","startCieiOS","startCieAndroid","useUat","pin","onError","onEvent","handleShouldStartLoading","onSuccess","redirectUrl","url","includes","handleOnLoadEnd","onCieEvent","e","eventTitle","title","toLowerCase","handleOnError","Error","completed","error","webViewError","webViewHttpError","statusCode","description","CieError","message","type","CieErrorType","WEB_VIEW_ERROR","code","createElement","WebView","ref","userAgent","javaScriptEnabled","source","uri","onLoadEnd","onHttpError","onShouldStartLoadWithRequest","onMessage"],"sourceRoot":"../../../src","sources":["cie/component.tsx"],"mappings":";;;;;;AAAA,IAAAA,MAAA,GAAAC,uBAAA,CAAAC,OAAA;AACA,IAAAC,YAAA,GAAAD,OAAA;AACA,IAAAE,mBAAA,GAAAF,OAAA;AASA,IAAAG,QAAA,GAAAH,OAAA;AACA,IAAAI,MAAA,GAAAJ,OAAA;AAAiD,SAAAK,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAP,wBAAAW,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAEjD;AACA;AACA;AACA;AACA;AACA,MAAMW,kBAAkB,GAAI;AAC5B;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,GAAG;AAAC,IAIQC,QAAQ,0BAARA,QAAQ;EAARA,QAAQ;EAARA,QAAQ;EAARA,QAAQ;EAAA,OAARA,QAAQ;AAAA;AAAAC,OAAA,CAAAD,QAAA,GAAAA,QAAA;AAgBpB;AACA;AACA;AACA;AACA,MAAME,YAAY,GAChB,2IAA2I;AAC7I,MAAMC,gBAAgB,GAAGC,qBAAQ,CAACC,MAAM,CAAC;EACvCC,GAAG,EAAEJ,YAAY;EACjBlB,OAAO,EAAEuB;AACX,CAAC,CAAC;AAEF,MAAMC,OAAO,gBAAG,IAAAC,gBAAS,EAAU,CAAC;;AAEpC;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMC,gBAAgB,GAAIC,MAAiB,IAAK;EACrD,MAAM,CAACC,UAAU,EAAEC,aAAa,CAAC,GAAGC,cAAK,CAACC,QAAQ,CAACJ,MAAM,CAACK,OAAO,CAAC;EAClE,MAAM,CAACC,qBAAqB,EAAEC,sBAAsB,CAAC,GAAGJ,cAAK,CAACC,QAAQ,CAAC,KAAK,CAAC;;EAE7E;AACF;AACA;AACA;AACA;EACE,MAAMI,eAAgC,GAAIC,WAAmB,IAAK;IAChEF,sBAAsB,CAAC,IAAI,CAAC;IAC5BL,aAAa,CAACO,WAAW,CAAC;EAC5B,CAAC;;EAED;EACA,MAAMC,aAAa,GAAG,MAAOC,KAA0B,IAAK;IAC1D,MAAMC,mBAAmB,GAAGD,KAAK,CAACE,WAAW,CAACC,IAAI;IAClD,MAAMC,QAAQ,GAAGtB,qBAAQ,CAACC,MAAM,CAAC;MAC/BC,GAAG,EAAEqB,oBAAW;MAChB3C,OAAO,EAAE4C;IACX,CAAC,CAAC;IACF,MAAMF,QAAQ,CACZf,MAAM,CAACkB,MAAM,EACblB,MAAM,CAACmB,GAAG,EACVnB,MAAM,CAACoB,OAAO,EACdpB,MAAM,CAACqB,OAAO,EACdT,mBAAmB,EACnBJ,eACF,CAAC;EACH,CAAC;;EAED;EACA,MAAMc,wBAAwB,GAC5BA,CAACC,SAAoB,EAAEC,WAAmB,KACzCb,KAAwB,IAAc;IACrC,IAAIL,qBAAqB,IAAIK,KAAK,CAACc,GAAG,CAACC,QAAQ,CAACF,WAAW,CAAC,EAAE;MAC5DD,SAAS,CAACZ,KAAK,CAACc,GAAG,CAAC;MACpB,OAAO,KAAK;IACd,CAAC,MAAM;MACL,OAAO,IAAI;IACb;EACF,CAAC;EAEH,MAAME,eAAe,GACnBA,CAACP,OAAgB,EAAEQ,UAAsB,KACxCC,CAA6C,IAAK;IACjD,MAAMC,UAAU,GAAGD,CAAC,CAAChB,WAAW,CAACkB,KAAK,CAACC,WAAW,CAAC,CAAC;IACpD,IACEF,UAAU,KAAK,4BAA4B;IAC3C;IACA;IACAA,UAAU,KAAK,QAAQ,EACvB;MACAG,aAAa,CAACb,OAAO,CAAC,CAAC,IAAIc,KAAK,CAACJ,UAAU,CAAC,CAAC;IAC/C;;IAEA;AACN;AACA;AACA;IACM,IAAIxB,qBAAqB,EAAE;MACzBsB,UAAU,CAACvC,QAAQ,CAAC8C,SAAS,CAAC;IAChC;EACF,CAAC;EAEH,MAAMF,aAAa,GAChBb,OAAgB,IAChBS,CAAoD,IAAW;IAC9D,MAAMO,KAAK,GAAGP,CAAU;IACxB,MAAMQ,YAAY,GAAGR,CAAsB;IAC3C,MAAMS,gBAAgB,GAAGT,CAA0B;IACnD,IAAIS,gBAAgB,CAACzB,WAAW,CAAC0B,UAAU,EAAE;MAC3C,MAAM;QAAEC,WAAW;QAAED;MAAW,CAAC,GAAGD,gBAAgB,CAACzB,WAAW;MAChEO,OAAO,CACL,IAAIqB,eAAQ,CAAC;QACXC,OAAO,EAAG,uBAAsBF,WAAY,sBAAqBD,UAAW,EAAC;QAC7EI,IAAI,EAAEC,mBAAY,CAACC;MACrB,CAAC,CACH,CAAC;IACH,CAAC,MAAM,IAAIR,YAAY,CAACxB,WAAW,EAAE;MACnC,MAAM;QAAEiC,IAAI;QAAEN;MAAY,CAAC,GAAGH,YAAY,CAACxB,WAAW;MACtDO,OAAO,CACL,IAAIqB,eAAQ,CAAC;QACXC,OAAO,EAAG,kBAAiBF,WAAY,eAAcM,IAAK,EAAC;QAC3DH,IAAI,EAAEC,mBAAY,CAACC;MACrB,CAAC,CACH,CAAC;IACH,CAAC,MAAM,IAAIT,KAAK,CAACM,OAAO,KAAK9C,SAAS,EAAE;MACtCwB,OAAO,CACL,IAAIqB,eAAQ,CAAC;QACXC,OAAO,EAAG,GAAEN,KAAK,CAACM,OAAQ,EAAC;QAC3BC,IAAI,EAAEC,mBAAY,CAACC;MACrB,CAAC,CACH,CAAC;IACH,CAAC,MAAM;MACLzB,OAAO,CACL,IAAIqB,eAAQ,CAAC;QACXC,OAAO,EAAE,kCAAkC;QAC3CC,IAAI,EAAEC,mBAAY,CAACC;MACrB,CAAC,CACH,CAAC;IACH;EACF,CAAC;EAEH,oBACEtF,MAAA,CAAAc,OAAA,CAAA0E,aAAA,CAACpF,mBAAA,CAAAqF,OAAO;IACNC,GAAG,EAAEpD,OAAQ;IACbqD,SAAS,EAAE1D,gBAAiB;IAC5B2D,iBAAiB,EAAE,IAAK;IACxBC,MAAM,EAAE;MAAEC,GAAG,EAAEpD;IAAW,CAAE;IAC5BqD,SAAS,EAAE3B,eAAe,CAAC3B,MAAM,CAACoB,OAAO,EAAEpB,MAAM,CAACqB,OAAO,CAAE;IAC3DD,OAAO,EAAEa,aAAa,CAACjC,MAAM,CAACoB,OAAO,CAAE;IACvCmC,WAAW,EAAEtB,aAAa,CAACjC,MAAM,CAACoB,OAAO,CAAE;IAC3ChC,kBAAkB,EAAEA,kBAAmB;IACvCoE,4BAA4B,EAAElC,wBAAwB,CACpDtB,MAAM,CAACuB,SAAS,EAChBvB,MAAM,CAACwB,WACT,CAAE;IACFiC,SAAS,EAAE/C;EAAc,CAC1B,CAAC;AAEN,CAAC;AAACpB,OAAA,CAAAS,gBAAA,GAAAA,gBAAA"}

package/lib/commonjs/cie/error.js

@@ -0,0 +1,44 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.CieErrorType = exports.CieError = void 0;
+let CieErrorType = /*#__PURE__*/function (CieErrorType) {
+  CieErrorType[CieErrorType["GENERIC"] = 0] = "GENERIC";
+  CieErrorType[CieErrorType["TAG_NOT_VALID"] = 1] = "TAG_NOT_VALID";
+  CieErrorType[CieErrorType["WEB_VIEW_ERROR"] = 2] = "WEB_VIEW_ERROR";
+  CieErrorType[CieErrorType["NFC_ERROR"] = 3] = "NFC_ERROR";
+  CieErrorType[CieErrorType["AUTHENTICATION_ERROR"] = 4] = "AUTHENTICATION_ERROR";
+  CieErrorType[CieErrorType["PIN_ERROR"] = 5] = "PIN_ERROR";
+  CieErrorType[CieErrorType["PIN_LOCKED"] = 6] = "PIN_LOCKED";
+  CieErrorType[CieErrorType["CERTIFICATE_ERROR"] = 7] = "CERTIFICATE_ERROR";
+  return CieErrorType;
+}({});
+exports.CieErrorType = CieErrorType;
+class CieError extends Error {
+  constructor(options) {
+    super(options.message);
+    if (options.type) {
+      this.type = options.type;
+    } else {
+      this.type = CieErrorType.GENERIC;
+    }
+    if (this.type === CieErrorType.PIN_ERROR) {
+      this.attemptsLeft = options.attemptsLeft;
+    } else if (this.type === CieErrorType.PIN_LOCKED) {
+      this.attemptsLeft = 0;
+    }
+    this.name = this.constructor.name;
+  }
+  toString() {
+    return JSON.stringify({
+      name: this.name,
+      type: CieErrorType[this.type],
+      message: this.message,
+      attemptsLeft: this.attemptsLeft
+    });
+  }
+}
+exports.CieError = CieError;
+//# sourceMappingURL=error.js.map

package/lib/commonjs/cie/error.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["CieErrorType","exports","CieError","Error","constructor","options","message","type","GENERIC","PIN_ERROR","attemptsLeft","PIN_LOCKED","name","toString","JSON","stringify"],"sourceRoot":"../../../src","sources":["cie/error.ts"],"mappings":";;;;;;IAAYA,YAAY,0BAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAZA,YAAY,CAAZA,YAAY;EAAA,OAAZA,YAAY;AAAA;AAAAC,OAAA,CAAAD,YAAA,GAAAA,YAAA;AA4BjB,MAAME,QAAQ,SAASC,KAAK,CAAC;EAGlCC,WAAWA,CAACC,OAAqB,EAAE;IACjC,KAAK,CAACA,OAAO,CAACC,OAAO,CAAC;IAEtB,IAAID,OAAO,CAACE,IAAI,EAAE;MAChB,IAAI,CAACA,IAAI,GAAGF,OAAO,CAACE,IAAI;IAC1B,CAAC,MAAM;MACL,IAAI,CAACA,IAAI,GAAGP,YAAY,CAACQ,OAAO;IAClC;IAEA,IAAI,IAAI,CAACD,IAAI,KAAKP,YAAY,CAACS,SAAS,EAAE;MACxC,IAAI,CAACC,YAAY,GAAGL,OAAO,CAACK,YAAY;IAC1C,CAAC,MAAM,IAAI,IAAI,CAACH,IAAI,KAAKP,YAAY,CAACW,UAAU,EAAE;MAChD,IAAI,CAACD,YAAY,GAAG,CAAC;IACvB;IAEA,IAAI,CAACE,IAAI,GAAG,IAAI,CAACR,WAAW,CAACQ,IAAI;EACnC;EAEAC,QAAQA,CAAA,EAAW;IACjB,OAAOC,IAAI,CAACC,SAAS,CAAC;MACpBH,IAAI,EAAE,IAAI,CAACA,IAAI;MACfL,IAAI,EAAEP,YAAY,CAAC,IAAI,CAACO,IAAI,CAAC;MAC7BD,OAAO,EAAE,IAAI,CAACA,OAAO;MACrBI,YAAY,EAAE,IAAI,CAACA;IACrB,CAAC,CAAC;EACJ;AACF;AAACT,OAAA,CAAAC,QAAA,GAAAA,QAAA"}

package/lib/commonjs/cie/index.js

@@ -0,0 +1,32 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+Object.defineProperty(exports, "CieError", {
+  enumerable: true,
+  get: function () {
+    return _error.CieError;
+  }
+});
+Object.defineProperty(exports, "CieErrorType", {
+  enumerable: true,
+  get: function () {
+    return _error.CieErrorType;
+  }
+});
+Object.defineProperty(exports, "CieEvent", {
+  enumerable: true,
+  get: function () {
+    return _component.CieEvent;
+  }
+});
+Object.defineProperty(exports, "WebViewComponent", {
+  enumerable: true,
+  get: function () {
+    return _component.WebViewComponent;
+  }
+});
+var _component = require("./component");
+var _error = require("./error");
+//# sourceMappingURL=index.js.map

package/lib/commonjs/cie/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_component","require","_error"],"sourceRoot":"../../../src","sources":["cie/index.ts"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,IAAAA,UAAA,GAAAC,OAAA;AACA,IAAAC,MAAA,GAAAD,OAAA"}

package/lib/commonjs/cie/manager.js

@@ -0,0 +1,142 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.startCieiOS = exports.startCieAndroid = void 0;
+var _reactNativeCie = _interopRequireDefault(require("@pagopa/react-native-cie"));
+var _reactNative = require("react-native");
+var _component = require("./component");
+var _error = require("./error");
+function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
+const BASE_UAT_URL = "https://collaudo.idserver.servizicie.interno.gov.it/idp/";
+const startCieAndroid = (useCieUat, ciePin, onError, onEvent, cieAuthorizationUri, continueWithUrl) => {
+  try {
+    _reactNativeCie.default.removeAllListeners();
+    _reactNativeCie.default.start().then(async () => {
+      _reactNativeCie.default.onEvent(handleCieEvent(onError, onEvent));
+      _reactNativeCie.default.onError(e => {
+        console.error(e);
+        return onError(new _error.CieError({
+          message: e.message
+        }));
+      });
+      _reactNativeCie.default.onSuccess(handleCieSuccess(continueWithUrl));
+      await _reactNativeCie.default.setPin(ciePin);
+      _reactNativeCie.default.setAuthenticationUrl(cieAuthorizationUri);
+      _reactNativeCie.default.enableLog(useCieUat);
+      _reactNativeCie.default.setCustomIdpUrl(useCieUat ? getCieUatEndpoint() : null);
+      await _reactNativeCie.default.startListeningNFC();
+      onEvent(_component.CieEvent.waiting_card);
+    }).catch(onError);
+  } catch (e) {
+    onError(new _error.CieError({
+      message: `Unable to start CIE NFC manager on Android: ${e}`,
+      type: _error.CieErrorType.NFC_ERROR
+    }));
+  }
+};
+exports.startCieAndroid = startCieAndroid;
+const startCieiOS = async (useCieUat, ciePin, onError, onEvent, cieAuthorizationUri, continueWithUrl) => {
+  try {
+    _reactNativeCie.default.removeAllListeners();
+    _reactNativeCie.default.onEvent(handleCieEvent(onError, onEvent));
+    _reactNativeCie.default.onError(e => onError(new _error.CieError({
+      message: e.message
+    })));
+    _reactNativeCie.default.onSuccess(handleCieSuccess(continueWithUrl));
+    _reactNativeCie.default.enableLog(useCieUat);
+    _reactNativeCie.default.setCustomIdpUrl(useCieUat ? getCieUatEndpoint() : null);
+    await _reactNativeCie.default.setPin(ciePin);
+    _reactNativeCie.default.setAuthenticationUrl(cieAuthorizationUri);
+    _reactNativeCie.default.start().then(async () => {
+      await _reactNativeCie.default.startListeningNFC();
+      onEvent(_component.CieEvent.waiting_card);
+    }).catch(onError);
+  } catch (e) {
+    onError(new _error.CieError({
+      message: `Unable to start CIE NFC manager on iOS: ${e}`,
+      type: _error.CieErrorType.NFC_ERROR
+    }));
+  }
+};
+exports.startCieiOS = startCieiOS;
+const handleCieEvent = (onError, onEvent) => event => {
+  switch (event.event) {
+    // Reading starts
+    case "ON_TAG_DISCOVERED":
+      onEvent(_component.CieEvent.reading);
+      break;
+    // "Function not supported" seems to be TAG_ERROR_NFC_NOT_SUPPORTED
+    // for the iOS SDK
+    case "Function not supported":
+    case "TAG_ERROR_NFC_NOT_SUPPORTED":
+    case "ON_TAG_DISCOVERED_NOT_CIE":
+      onError(new _error.CieError({
+        message: `Invalid CIE card:  ${event.event}`,
+        type: _error.CieErrorType.TAG_NOT_VALID
+      }));
+      break;
+    case "AUTHENTICATION_ERROR":
+    case "ON_NO_INTERNET_CONNECTION":
+      onError(new _error.CieError({
+        message: `Authentication error or no internet connection`,
+        type: _error.CieErrorType.AUTHENTICATION_ERROR
+      }));
+      break;
+    case "EXTENDED_APDU_NOT_SUPPORTED":
+      onError(new _error.CieError({
+        message: `APDU not supported`,
+        type: _error.CieErrorType.NFC_ERROR
+      }));
+      break;
+    case "Transmission Error":
+    case "ON_TAG_LOST":
+      onError(new _error.CieError({
+        message: `Trasmission error`,
+        type: _error.CieErrorType.NFC_ERROR
+      }));
+      break;
+
+    // The card is temporarily locked. Unlock is available by CieID app
+    case "PIN Locked":
+    case "ON_CARD_PIN_LOCKED":
+      onError(new _error.CieError({
+        message: `PIN locked`,
+        type: _error.CieErrorType.PIN_LOCKED
+      }));
+      break;
+    case "ON_PIN_ERROR":
+      onError(new _error.CieError({
+        message: `PIN locked`,
+        type: _error.CieErrorType.PIN_ERROR,
+        attemptsLeft: event.attemptsLeft
+      }));
+      break;
+
+    // CIE is Expired or Revoked
+    case "CERTIFICATE_EXPIRED":
+      onError(new _error.CieError({
+        message: `Certificate expired`,
+        type: _error.CieErrorType.CERTIFICATE_ERROR
+      }));
+      break;
+    case "CERTIFICATE_REVOKED":
+      onError(new _error.CieError({
+        message: `Certificate revoked`,
+        type: _error.CieErrorType.CERTIFICATE_ERROR
+      }));
+      break;
+    default:
+      break;
+  }
+};
+const handleCieSuccess = continueWithUrl => url => {
+  continueWithUrl(decodeURIComponent(url));
+};
+const getCieUatEndpoint = () => _reactNative.Platform.select({
+  ios: `${BASE_UAT_URL}Authn/SSL/Login2`,
+  android: BASE_UAT_URL,
+  default: null
+});
+//# sourceMappingURL=manager.js.map

package/lib/commonjs/cie/manager.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_reactNativeCie","_interopRequireDefault","require","_reactNative","_component","_error","obj","__esModule","default","BASE_UAT_URL","startCieAndroid","useCieUat","ciePin","onError","onEvent","cieAuthorizationUri","continueWithUrl","cieManager","removeAllListeners","start","then","handleCieEvent","e","console","error","CieError","message","onSuccess","handleCieSuccess","setPin","setAuthenticationUrl","enableLog","setCustomIdpUrl","getCieUatEndpoint","startListeningNFC","CieEvent","waiting_card","catch","type","CieErrorType","NFC_ERROR","exports","startCieiOS","event","reading","TAG_NOT_VALID","AUTHENTICATION_ERROR","PIN_LOCKED","PIN_ERROR","attemptsLeft","CERTIFICATE_ERROR","url","decodeURIComponent","Platform","select","ios","android"],"sourceRoot":"../../../src","sources":["cie/manager.ts"],"mappings":";;;;;;AAAA,IAAAA,eAAA,GAAAC,sBAAA,CAAAC,OAAA;AACA,IAAAC,YAAA,GAAAD,OAAA;AACA,IAAAE,UAAA,GAAAF,OAAA;AACA,IAAAG,MAAA,GAAAH,OAAA;AAAiD,SAAAD,uBAAAK,GAAA,WAAAA,GAAA,IAAAA,GAAA,CAAAC,UAAA,GAAAD,GAAA,KAAAE,OAAA,EAAAF,GAAA;AAEjD,MAAMG,YAAY,GAAG,0DAA0D;AAIxE,MAAMC,eAAe,GAAGA,CAC7BC,SAAkB,EAClBC,MAAc,EACdC,OAAgB,EAChBC,OAAmB,EACnBC,mBAA2B,EAC3BC,eAAgC,KAC7B;EACH,IAAI;IACFC,uBAAU,CAACC,kBAAkB,CAAC,CAAC;IAC/BD,uBAAU,CACPE,KAAK,CAAC,CAAC,CACPC,IAAI,CAAC,YAAY;MAChBH,uBAAU,CAACH,OAAO,CAACO,cAAc,CAACR,OAAO,EAAEC,OAAO,CAAC,CAAC;MACpDG,uBAAU,CAACJ,OAAO,CAAES,CAAQ,IAAK;QAC/BC,OAAO,CAACC,KAAK,CAACF,CAAC,CAAC;QAChB,OAAOT,OAAO,CAAC,IAAIY,eAAQ,CAAC;UAAEC,OAAO,EAAEJ,CAAC,CAACI;QAAQ,CAAC,CAAC,CAAC;MACtD,CAAC,CAAC;MACFT,uBAAU,CAACU,SAAS,CAACC,gBAAgB,CAACZ,eAAe,CAAC,CAAC;MACvD,MAAMC,uBAAU,CAACY,MAAM,CAACjB,MAAM,CAAC;MAC/BK,uBAAU,CAACa,oBAAoB,CAACf,mBAAmB,CAAC;MACpDE,uBAAU,CAACc,SAAS,CAACpB,SAAS,CAAC;MAC/BM,uBAAU,CAACe,eAAe,CAACrB,SAAS,GAAGsB,iBAAiB,CAAC,CAAC,GAAG,IAAI,CAAC;MAClE,MAAMhB,uBAAU,CAACiB,iBAAiB,CAAC,CAAC;MACpCpB,OAAO,CAACqB,mBAAQ,CAACC,YAAY,CAAC;IAChC,CAAC,CAAC,CACDC,KAAK,CAACxB,OAAO,CAAC;EACnB,CAAC,CAAC,OAAOS,CAAC,EAAE;IACVT,OAAO,CACL,IAAIY,eAAQ,CAAC;MACXC,OAAO,EAAG,+CAA8CJ,CAAE,EAAC;MAC3DgB,IAAI,EAAEC,mBAAY,CAACC;IACrB,CAAC,CACH,CAAC;EACH;AACF,CAAC;AAACC,OAAA,CAAA/B,eAAA,GAAAA,eAAA;AAEK,MAAMgC,WAAW,GAAG,MAAAA,CACzB/B,SAAkB,EAClBC,MAAc,EACdC,OAAgB,EAChBC,OAAmB,EACnBC,mBAA2B,EAC3BC,eAAgC,KAC7B;EACH,IAAI;IACFC,uBAAU,CAACC,kBAAkB,CAAC,CAAC;IAC/BD,uBAAU,CAACH,OAAO,CAACO,cAAc,CAACR,OAAO,EAAEC,OAAO,CAAC,CAAC;IACpDG,uBAAU,CAACJ,OAAO,CAAES,CAAQ,IAC1BT,OAAO,CAAC,IAAIY,eAAQ,CAAC;MAAEC,OAAO,EAAEJ,CAAC,CAACI;IAAQ,CAAC,CAAC,CAC9C,CAAC;IACDT,uBAAU,CAACU,SAAS,CAACC,gBAAgB,CAACZ,eAAe,CAAC,CAAC;IACvDC,uBAAU,CAACc,SAAS,CAACpB,SAAS,CAAC;IAC/BM,uBAAU,CAACe,eAAe,CAACrB,SAAS,GAAGsB,iBAAiB,CAAC,CAAC,GAAG,IAAI,CAAC;IAClE,MAAMhB,uBAAU,CAACY,MAAM,CAACjB,MAAM,CAAC;IAC/BK,uBAAU,CAACa,oBAAoB,CAACf,mBAAmB,CAAC;IACpDE,uBAAU,CACPE,KAAK,CAAC,CAAC,CACPC,IAAI,CAAC,YAAY;MAChB,MAAMH,uBAAU,CAACiB,iBAAiB,CAAC,CAAC;MACpCpB,OAAO,CAACqB,mBAAQ,CAACC,YAAY,CAAC;IAChC,CAAC,CAAC,CACDC,KAAK,CAACxB,OAAO,CAAC;EACnB,CAAC,CAAC,OAAOS,CAAC,EAAE;IACVT,OAAO,CACL,IAAIY,eAAQ,CAAC;MACXC,OAAO,EAAG,2CAA0CJ,CAAE,EAAC;MACvDgB,IAAI,EAAEC,mBAAY,CAACC;IACrB,CAAC,CACH,CAAC;EACH;AACF,CAAC;AAACC,OAAA,CAAAC,WAAA,GAAAA,WAAA;AAEF,MAAMrB,cAAc,GAClBA,CAACR,OAAgB,EAAEC,OAAmB,KAAM6B,KAAa,IAAK;EAC5D,QAAQA,KAAK,CAACA,KAAK;IACjB;IACA,KAAK,mBAAmB;MACtB7B,OAAO,CAACqB,mBAAQ,CAACS,OAAO,CAAC;MACzB;IACF;IACA;IACA,KAAK,wBAAwB;IAC7B,KAAK,6BAA6B;IAClC,KAAK,2BAA2B;MAC9B/B,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,sBAAqBiB,KAAK,CAACA,KAAM,EAAC;QAC5CL,IAAI,EAAEC,mBAAY,CAACM;MACrB,CAAC,CACH,CAAC;MACD;IACF,KAAK,sBAAsB;IAC3B,KAAK,2BAA2B;MAC9BhC,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,gDAA+C;QACzDY,IAAI,EAAEC,mBAAY,CAACO;MACrB,CAAC,CACH,CAAC;MACD;IACF,KAAK,6BAA6B;MAChCjC,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,oBAAmB;QAC7BY,IAAI,EAAEC,mBAAY,CAACC;MACrB,CAAC,CACH,CAAC;MACD;IACF,KAAK,oBAAoB;IACzB,KAAK,aAAa;MAChB3B,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,mBAAkB;QAC5BY,IAAI,EAAEC,mBAAY,CAACC;MACrB,CAAC,CACH,CAAC;MACD;;IAEF;IACA,KAAK,YAAY;IACjB,KAAK,oBAAoB;MACvB3B,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,YAAW;QACrBY,IAAI,EAAEC,mBAAY,CAACQ;MACrB,CAAC,CACH,CAAC;MACD;IACF,KAAK,cAAc;MACjBlC,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,YAAW;QACrBY,IAAI,EAAEC,mBAAY,CAACS,SAAS;QAC5BC,YAAY,EAAEN,KAAK,CAACM;MACtB,CAAC,CACH,CAAC;MACD;;IAEF;IACA,KAAK,qBAAqB;MACxBpC,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,qBAAoB;QAC9BY,IAAI,EAAEC,mBAAY,CAACW;MACrB,CAAC,CACH,CAAC;MACD;IACF,KAAK,qBAAqB;MACxBrC,OAAO,CACL,IAAIY,eAAQ,CAAC;QACXC,OAAO,EAAG,qBAAoB;QAC9BY,IAAI,EAAEC,mBAAY,CAACW;MACrB,CAAC,CACH,CAAC;MAED;IAEF;MACE;EACJ;AACF,CAAC;AAEH,MAAMtB,gBAAgB,GACnBZ,eAAgC,IAAMmC,GAAW,IAAK;EACrDnC,eAAe,CAACoC,kBAAkB,CAACD,GAAG,CAAC,CAAC;AAC1C,CAAC;AAEH,MAAMlB,iBAAiB,GAAGA,CAAA,KACxBoB,qBAAQ,CAACC,MAAM,CAAC;EACdC,GAAG,EAAG,GAAE9C,YAAa,kBAAiB;EACtC+C,OAAO,EAAE/C,YAAY;EACrBD,OAAO,EAAE;AACX,CAAC,CAAC"}

package/lib/commonjs/client/index.js

@@ -27,10 +27,13 @@ const getWalletProviderClient = context => {
   } = context;
   return (0, _walletProvider.createApiClient)((method, url, params) => appFetch(url, {
     method,
-    body: params ? JSON.stringify(params.body) : undefined
+    body: params ? JSON.stringify(params.body) : undefined,
+    headers: {
+      "Content-Type": "application/json"
+    }
   }).then(validateResponse).then(res => {
     const contentType = res.headers.get("content-type");
-    if (contentType === "application/json") {
+    if (contentType !== null && contentType !== void 0 && contentType.includes("application/json")) {
       return res.json();
     }
     return res.text();

package/lib/commonjs/client/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["_errors","require","_walletProvider","validateResponse","response","ok","problemDetail","ProblemDetail","parse","json","title","WalletProviderResponseError","type","detail","status","getWalletProviderClient","context","walletProviderBaseUrl","appFetch","fetch","createWalletProviderApiClient","method","url","params","body","JSON","stringify","undefined","then","res","contentType","headers","get","text","exports"],"sourceRoot":"../../../src","sources":["client/index.ts"],"mappings":";;;;;;AAAA,IAAAA,OAAA,GAAAC,OAAA;AACA,IAAAC,eAAA,GAAAD,OAAA;AAQA,MAAME,gBAAgB,GAAG,MAAOC,QAAkB,IAAK;EACrD,IAAI,CAACA,QAAQ,CAACC,EAAE,EAAE;IAChB,IAAIC,aAA4B,GAAG,CAAC,CAAC;IACrC,IAAI;MACFA,aAAa,GAAGC,6BAAa,CAACC,KAAK,CAAC,MAAMJ,QAAQ,CAACK,IAAI,CAAC,CAAC,CAAC;IAC5D,CAAC,CAAC,MAAM;MACNH,aAAa,GAAG;QACdI,KAAK,EAAE;MACT,CAAC;IACH;IAEA,MAAM,IAAIC,mCAA2B,CACnCL,aAAa,CAACI,KAAK,IAAI,uCAAuC,EAC9DJ,aAAa,CAACM,IAAI,EAClBN,aAAa,CAACO,MAAM,EACpBT,QAAQ,CAACU,MACX,CAAC;EACH;EACA,OAAOV,QAAQ;AACjB,CAAC;AAEM,MAAMW,uBAAuB,GAAIC,OAGvC,IAAK;EACJ,MAAM;IAAEC,qBAAqB;IAAEC,QAAQ,GAAGC;EAAM,CAAC,GAAGH,OAAO;EAE3D,OAAO,IAAAI,+BAA6B,EAClC,CAACC,MAAM,EAAEC,GAAG,EAAEC,MAAM,KAClBL,QAAQ,CAACI,GAAG,EAAE;IACZD,MAAM;IACNG,IAAI,EAAED,MAAM,GAAGE,IAAI,CAACC,SAAS,CAACH,MAAM,CAACC,IAAI,CAAC,GAAGG;EAC/C,CAAC,CAAC,CACCC,IAAI,CAACzB,gBAAgB,CAAC,CACtByB,IAAI,CAAEC,GAAG,IAAK;IACb,MAAMC,WAAW,GAAGD,GAAG,CAACE,OAAO,CAACC,GAAG,CAAC,cAAc,CAAC;IACnD,IAAIF,WAAW,KAAK,kBAAkB,EAAE;MACtC,OAAOD,GAAG,CAACpB,IAAI,CAAC,CAAC;IACnB;IACA,OAAOoB,GAAG,CAACI,IAAI,CAAC,CAAC;EACnB,CAAC,CAAC,EACNhB,qBACF,CAAC;AACH,CAAC;AAACiB,OAAA,CAAAnB,uBAAA,GAAAA,uBAAA"}
+{"version":3,"names":["_errors","require","_walletProvider","validateResponse","response","ok","problemDetail","ProblemDetail","parse","json","title","WalletProviderResponseError","type","detail","status","getWalletProviderClient","context","walletProviderBaseUrl","appFetch","fetch","createWalletProviderApiClient","method","url","params","body","JSON","stringify","undefined","headers","then","res","contentType","get","includes","text","exports"],"sourceRoot":"../../../src","sources":["client/index.ts"],"mappings":";;;;;;AAAA,IAAAA,OAAA,GAAAC,OAAA;AACA,IAAAC,eAAA,GAAAD,OAAA;AAQA,MAAME,gBAAgB,GAAG,MAAOC,QAAkB,IAAK;EACrD,IAAI,CAACA,QAAQ,CAACC,EAAE,EAAE;IAChB,IAAIC,aAA4B,GAAG,CAAC,CAAC;IACrC,IAAI;MACFA,aAAa,GAAGC,6BAAa,CAACC,KAAK,CAAC,MAAMJ,QAAQ,CAACK,IAAI,CAAC,CAAC,CAAC;IAC5D,CAAC,CAAC,MAAM;MACNH,aAAa,GAAG;QACdI,KAAK,EAAE;MACT,CAAC;IACH;IAEA,MAAM,IAAIC,mCAA2B,CACnCL,aAAa,CAACI,KAAK,IAAI,uCAAuC,EAC9DJ,aAAa,CAACM,IAAI,EAClBN,aAAa,CAACO,MAAM,EACpBT,QAAQ,CAACU,MACX,CAAC;EACH;EACA,OAAOV,QAAQ;AACjB,CAAC;AAEM,MAAMW,uBAAuB,GAAIC,OAGvC,IAAK;EACJ,MAAM;IAAEC,qBAAqB;IAAEC,QAAQ,GAAGC;EAAM,CAAC,GAAGH,OAAO;EAE3D,OAAO,IAAAI,+BAA6B,EAClC,CAACC,MAAM,EAAEC,GAAG,EAAEC,MAAM,KAClBL,QAAQ,CAACI,GAAG,EAAE;IACZD,MAAM;IACNG,IAAI,EAAED,MAAM,GAAGE,IAAI,CAACC,SAAS,CAACH,MAAM,CAACC,IAAI,CAAC,GAAGG,SAAS;IACtDC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB;EACF,CAAC,CAAC,CACCC,IAAI,CAAC1B,gBAAgB,CAAC,CACtB0B,IAAI,CAAEC,GAAG,IAAK;IACb,MAAMC,WAAW,GAAGD,GAAG,CAACF,OAAO,CAACI,GAAG,CAAC,cAAc,CAAC;IACnD,IAAID,WAAW,aAAXA,WAAW,eAAXA,WAAW,CAAEE,QAAQ,CAAC,kBAAkB,CAAC,EAAE;MAC7C,OAAOH,GAAG,CAACrB,IAAI,CAAC,CAAC;IACnB;IACA,OAAOqB,GAAG,CAACI,IAAI,CAAC,CAAC;EACnB,CAAC,CAAC,EACNjB,qBACF,CAAC;AACH,CAAC;AAACkB,OAAA,CAAApB,uBAAA,GAAAA,uBAAA"}

package/lib/commonjs/credential/issuance/04-complete-user-authorization.js

@@ -3,12 +3,17 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.completeUserAuthorizationWithQueryMode = exports.completeUserAuthorizationWithFormPostJwtMode = void 0;
+exports.parseAuthroizationResponse = exports.getRequestedCredentialToBePresented = exports.completeUserAuthorizationWithQueryMode = exports.completeUserAuthorizationWithFormPostJwtMode = void 0;
 var _auth = require("../../utils/auth");
 var _misc = require("../../utils/misc");
 var _parseUrl = _interopRequireDefault(require("parse-url"));
 var _errors = require("../../utils/errors");
 var _reactNative = require("react-native");
+var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
+var _types = require("../presentation/types");
+var _reactNativeUuid = _interopRequireDefault(require("react-native-uuid"));
+var _types2 = require("./types");
+var _decoder = require("../../../src/utils/decoder");
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
 /**
  * The interface of the phase to complete User authorization via strong identification when the response mode is "query" and the request credential is a PersonIdentificationData.
@@ -32,11 +37,6 @@ function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { de
  * @returns the authorization response which contains code, state and iss
  */
 const completeUserAuthorizationWithQueryMode = async (issuerRequestUri, clientId, issuerConf, idpHint, redirectUri, authorizationContext) => {
-  /**
-   * Starts the authorization flow which dependes on the response mode and the request credential.
-   * If the response mode is "query" the authorization flow is handled differently via the authorization context which opens an in-app browser capable of catching the redirectSchema.
-   * The form_post.jwt mode is not currently supported.
-   */
   const authzRequestEndpoint = issuerConf.oauth_authorization_server.authorization_endpoint;
   const params = new URLSearchParams({
     client_id: clientId,
@@ -72,23 +72,148 @@ const completeUserAuthorizationWithQueryMode = async (issuerRequestUri, clientId
       throw new _errors.AuthorizationError("Invalid authentication redirect url");
     }
   }
-  const urlParse = (0, _parseUrl.default)(authRedirectUrl);
-  const authRes = _auth.AuthorizationResultShape.safeParse(urlParse.query);
-  if (!authRes.success) {
-    const authErr = _auth.AuthorizationErrorShape.safeParse(urlParse.query);
-    if (!authErr.success) {
-      throw new _errors.AuthorizationError(authRes.error.message); // an error occured while parsing the result and the error
-    }
+  const query = (0, _parseUrl.default)(authRedirectUrl).query;
+  return parseAuthroizationResponse(query);
+};
 
-    throw new _errors.AuthorizationIdpError(authErr.data.error, authErr.data.error_description);
+/**
+ * WARNING: This function must be called after {@link startUserAuthorization}. The next function to be called is {@link completeUserAuthorizationWithFormPostJwtMode}.
+ * The interface of the phase to complete User authorization via presentation of existing credentials when the response mode is "form_post.jwt".
+ * It is used as a first step to complete the user authorization by obtaining the requested credential to be presented from the authorization server.
+ * The information is obtained by performing a GET request to the authorization endpoint with request_uri and client_id parameters.
+ * @param issuerRequestUri the URI of the issuer where the request is sent
+ * @param clientId Identifies the current client across all the requests of the issuing flow returned by {@link startUserAuthorization}
+ * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+ * @param appFetch (optional) fetch api implementation. Default: built-in fetch
+ * @throws {ValidationFailed} if an error while validating the response
+ * @returns the request object which contains the credential to be presented in order to obtain the requested credential
+ */
+exports.completeUserAuthorizationWithQueryMode = completeUserAuthorizationWithQueryMode;
+const getRequestedCredentialToBePresented = async function (issuerRequestUri, clientId, issuerConf) {
+  let appFetch = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : fetch;
+  const authzRequestEndpoint = issuerConf.oauth_authorization_server.authorization_endpoint;
+  const params = new URLSearchParams({
+    client_id: clientId,
+    request_uri: issuerRequestUri
+  });
+  const requestObject = await appFetch(`${authzRequestEndpoint}?${params.toString()}`, {
+    method: "GET"
+  }).then((0, _misc.hasStatus)(200)).then(res => res.text()).then(jws => (0, _ioReactNativeJwt.decode)(jws)).then(reqObj => _types.RequestObject.safeParse(reqObj.payload));
+  if (!requestObject.success) {
+    throw new _errors.ValidationFailed("Request Object validation failed", requestObject.error.message);
   }
-  return authRes.data;
+  return requestObject.data;
 };
 
-// TODO: SIW-1120 implement generic credential issuance flow
-exports.completeUserAuthorizationWithQueryMode = completeUserAuthorizationWithQueryMode;
-const completeUserAuthorizationWithFormPostJwtMode = () => {
-  throw new Error("Not implemented");
+/**
+ * WARNING: This function must be called after {@link startUserAuthorization}. The next function to be called is {@link completeUserAuthorizationWithFormPostJwtMode}.
+ * The interface of the phase to complete User authorization via presentation of existing credentials when the response mode is "form_post.jwt".
+ * It is used as a first step to complete the user authorization by obtaining the requested credential to be presented from the authorization server.
+ * The information is obtained by performing a GET request to the authorization endpoint with request_uri and client_id parameters.
+ * @param issuerRequestUri the URI of the issuer where the request is sent
+ * @param clientId Identifies the current client across all the requests of the issuing flow returned by {@link startUserAuthorization}
+ * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+ * @param context.walletInstanceAccestation the Wallet Instance's attestation to be presented
+ * @param context.pid the PID to be presented
+ * @param context.wiaCryptoContext The Wallet Instance's crypto context associated with the walletInstanceAttestation parameter
+ * @param context.pidCryptoContext The PID crypto context associated with the pid parameter
+ * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
+ * @throws {ValidationFailed} if an error while validating the response
+ * @returns the authorization response which contains code, state and iss
+ */
+exports.getRequestedCredentialToBePresented = getRequestedCredentialToBePresented;
+const completeUserAuthorizationWithFormPostJwtMode = async (requestObject, ctx) => {
+  const {
+    wiaCryptoContext,
+    pidCryptoContext,
+    pid,
+    walletInstanceAttestation,
+    appFetch = fetch
+  } = ctx;
+  const wiaWpToken = await new _ioReactNativeJwt.SignJWT(wiaCryptoContext).setProtectedHeader({
+    alg: "ES256",
+    typ: "JWT"
+  }).setPayload({
+    vp: walletInstanceAttestation,
+    jti: _reactNativeUuid.default.v4().toString(),
+    nonce: requestObject.nonce
+  }).setIssuedAt().setExpirationTime("5m").setAudience(requestObject.response_uri).sign();
+  const pidWpToken = await new _ioReactNativeJwt.SignJWT(pidCryptoContext).setProtectedHeader({
+    alg: "ES256",
+    typ: "JWT"
+  }).setPayload({
+    vp: pid,
+    jti: _reactNativeUuid.default.v4().toString(),
+    nonce: requestObject.nonce
+  }).setIssuedAt().setExpirationTime("5m").setAudience(requestObject.response_uri).sign();
+
+  /* The path parameter refers to the vp_token variable of the authzResponsePayload and must point to the plain credential which
+   * is cointaned in the `vp` property of the signed jwt token payload
+   */
+  const presentationSubmission = {
+    definition_id: `${_reactNativeUuid.default.v4()}`,
+    id: `${_reactNativeUuid.default.v4()}`,
+    descriptor_map: [{
+      id: "PersonIdentificationData",
+      path: "$.vp_token[0].vp",
+      format: "vc+sd-jwt"
+    }, {
+      id: "WalletAttestation",
+      path: "$.vp_token[1].vp",
+      format: "jwt"
+    }]
+  };
+  const authzResponsePayload = (0, _ioReactNativeJwt.encodeBase64)(JSON.stringify({
+    state: requestObject.state,
+    presentation_submission: presentationSubmission,
+    vp_token: [pidWpToken, wiaWpToken]
+  }));
+
+  // Note: according to the spec, the response should be encrypted with the public key of the RP however this is not implemented yet
+  // https://openid.net/specs/openid-4-verifiable-presentations-1_0.html#name-signed-and-encrypted-response
+  // const rsaPublicJwk = chooseRSAPublicKeyToEncrypt(rpConf);
+  // const encrypted = await new EncryptJwe(authzResponsePayload, {
+  //   alg: "RSA-OAEP-256",
+  //   enc: "A256CBC-HS512",
+  //   kid: rsaPublicJwk.kid,
+  // }).encrypt(rsaPublicJwk);
+
+  const body = new URLSearchParams({
+    response: authzResponsePayload
+  }).toString();
+  const resUriRes = await appFetch(requestObject.response_uri, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/x-www-form-urlencoded"
+    },
+    body
+  }).then((0, _misc.hasStatus)(200)).then(reqUri => reqUri.json());
+  const responseUri = _types2.ResponseUriResultShape.safeParse(resUriRes);
+  if (!responseUri.success) {
+    throw new _errors.ValidationFailed("Response Uri validation failed", responseUri.error.message);
+  }
+  return await appFetch(responseUri.data.redirect_uri).then((0, _misc.hasStatus)(200)).then(res => res.text()).then(_decoder.getJwtFromFormPost).then(cbRes => parseAuthroizationResponse(cbRes.decodedJwt.payload));
 };
+
+/**
+ * Parse the authorization response and return the result which contains code, state and iss.
+ * @throws {AuthorizationError} if an error occurs during the parsing process
+ * @throws {AuthorizationIdpError} if an error occurs during the parsing process and the error is related to the IDP
+ * @param authRes the authorization response to be parsed
+ * @returns the authorization result which contains code, state and iss
+ */
 exports.completeUserAuthorizationWithFormPostJwtMode = completeUserAuthorizationWithFormPostJwtMode;
+const parseAuthroizationResponse = authRes => {
+  const authResParsed = _auth.AuthorizationResultShape.safeParse(authRes);
+  if (!authResParsed.success) {
+    const authErr = _auth.AuthorizationErrorShape.safeParse(authRes);
+    if (!authErr.success) {
+      throw new _errors.AuthorizationError(authResParsed.error.message); // an error occured while parsing the result and the error
+    }
+
+    throw new _errors.AuthorizationIdpError(authErr.data.error, authErr.data.error_description);
+  }
+  return authResParsed.data;
+};
+exports.parseAuthroizationResponse = parseAuthroizationResponse;
 //# sourceMappingURL=04-complete-user-authorization.js.map