@pagopa/io-react-native-wallet 0.4.3 → 0.6.0

package/lib/commonjs/trust/types.js

@@ -3,7 +3,7 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.TrustMark = exports.TrustAnchorEntityConfiguration = exports.EntityStatement = exports.EntityConfiguration = void 0;
+exports.WalletProviderEntityConfiguration = exports.TrustMark = exports.TrustAnchorEntityConfiguration = exports.RelyingPartyEntityConfiguration = exports.EntityStatement = exports.EntityConfigurationHeader = exports.EntityConfiguration = exports.CredentialIssuerEntityConfiguration = void 0;
 var _types = require("../sd-jwt/types");
 var _jwk = require("../utils/jwk");
 var z = _interopRequireWildcard(require("zod"));
@@ -13,7 +13,29 @@ const TrustMark = z.object({
   id: z.string(),
   trust_mark: z.string()
 });
+
+// Display metadata for a credential, used by the issuer to
+// instruct the Wallet Solution on how to render the credential correctly
 exports.TrustMark = TrustMark;
+const CredentialDisplayMetadata = z.object({
+  name: z.string(),
+  locale: z.string(),
+  logo: z.object({
+    url: z.string(),
+    alt_text: z.string()
+  }),
+  background_color: z.string(),
+  text_color: z.string()
+});
+
+// Metadata for a credentia which i supported by a Issuer
+
+const SupportedCredentialMetadata = z.object({
+  format: z.literal("vc+sd-jwt"),
+  cryptographic_binding_methods_supported: z.array(z.string()),
+  cryptographic_suites_supported: z.array(z.string()),
+  display: z.array(CredentialDisplayMetadata)
+});
 const EntityStatement = z.object({
   header: z.object({
     typ: z.literal("entity-statement+jwt"),
@@ -32,12 +54,16 @@ const EntityStatement = z.object({
   })
 });
 exports.EntityStatement = EntityStatement;
-const EntityConfiguration = z.object({
-  header: z.object({
-    typ: z.literal("entity-statement+jwt"),
-    alg: z.string(),
-    kid: z.string()
-  }),
+const EntityConfigurationHeader = z.object({
+  typ: z.literal("entity-statement+jwt"),
+  alg: z.string(),
+  kid: z.string()
+});
+
+// Structuire common to every Entity Configuration document
+exports.EntityConfigurationHeader = EntityConfigurationHeader;
+const BaseEntityConfiguration = z.object({
+  header: EntityConfigurationHeader,
   payload: z.object({
     exp: _types.UnixTime,
     iat: _types.UnixTime,
@@ -60,9 +86,76 @@ const EntityConfiguration = z.object({
       }).passthrough()
     }).passthrough(),
     authority_hints: z.array(z.string()).optional()
+  }).passthrough()
+});
+
+// Entity configuration for a Trust Anchor (it has no specific metadata section)
+
+const TrustAnchorEntityConfiguration = BaseEntityConfiguration;
+
+// Entity configuration for a Credential Issuer
+exports.TrustAnchorEntityConfiguration = TrustAnchorEntityConfiguration;
+const CredentialIssuerEntityConfiguration = BaseEntityConfiguration.and(z.object({
+  payload: z.object({
+    jwks: z.object({
+      keys: z.array(_jwk.JWK)
+    }),
+    metadata: z.object({
+      openid_credential_issuer: z.object({
+        credential_issuer: z.string(),
+        authorization_endpoint: z.string(),
+        token_endpoint: z.string(),
+        pushed_authorization_request_endpoint: z.string(),
+        dpop_signing_alg_values_supported: z.array(z.string()),
+        credential_endpoint: z.string(),
+        credentials_supported: z.array(SupportedCredentialMetadata),
+        jwks: z.object({
+          keys: z.array(_jwk.JWK)
+        })
+      })
+    })
+  })
+}));
+
+// Entity configuration for a Wallet Provider
+exports.CredentialIssuerEntityConfiguration = CredentialIssuerEntityConfiguration;
+const WalletProviderEntityConfiguration = BaseEntityConfiguration.and(z.object({
+  payload: z.object({
+    metadata: z.object({
+      wallet_provider: z.object({
+        token_endpoint: z.string(),
+        attested_security_context_values_supported: z.array(z.string()).optional(),
+        grant_types_supported: z.array(z.string()),
+        token_endpoint_auth_methods_supported: z.array(z.string()),
+        token_endpoint_auth_signing_alg_values_supported: z.array(z.string()),
+        jwks: z.object({
+          keys: z.array(_jwk.JWK)
+        })
+      }).passthrough()
+    })
   })
+}));
+
+// Entity configuration for a Relying Party
+exports.WalletProviderEntityConfiguration = WalletProviderEntityConfiguration;
+const RelyingPartyEntityConfiguration = BaseEntityConfiguration.and(z.object({
+  payload: z.object({
+    metadata: z.object({
+      wallet_relying_party: z.object({
+        application_type: z.string().optional(),
+        client_id: z.string().optional(),
+        client_name: z.string().optional(),
+        jwks: z.array(_jwk.JWK),
+        contacts: z.array(z.string()).optional()
+      }).passthrough()
+    })
+  })
+}));
+
+// Maps any entity configuration by the union of every possible shapes
+exports.RelyingPartyEntityConfiguration = RelyingPartyEntityConfiguration;
+const EntityConfiguration = z.union([WalletProviderEntityConfiguration, CredentialIssuerEntityConfiguration, TrustAnchorEntityConfiguration, RelyingPartyEntityConfiguration], {
+  description: "Any kind of Entity Configuration allowed in the ecosystem"
 });
 exports.EntityConfiguration = EntityConfiguration;
-const TrustAnchorEntityConfiguration = EntityConfiguration;
-exports.TrustAnchorEntityConfiguration = TrustAnchorEntityConfiguration;
 //# sourceMappingURL=types.js.map

package/lib/commonjs/trust/types.js.map

@@ -1 +1 @@
-{"version":3,"names":["_types","require","_jwk","z","_interopRequireWildcard","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","TrustMark","object","id","string","trust_mark","exports","EntityStatement","header","typ","literal","alg","kid","payload","iss","sub","jwks","keys","array","JWK","trust_marks","iat","number","exp","EntityConfiguration","UnixTime","metadata","federation_entity","federation_fetch_endpoint","optional","federation_list_endpoint","federation_resolve_endpoint","federation_trust_mark_status_endpoint","federation_trust_mark_list_endpoint","homepage_uri","policy_uri","logo_uri","contacts","passthrough","authority_hints","TrustAnchorEntityConfiguration"],"sourceRoot":"../../../src","sources":["trust/types.ts"],"mappings":";;;;;;AAAA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,IAAA,GAAAD,OAAA;AACA,IAAAE,CAAA,GAAAC,uBAAA,CAAAH,OAAA;AAAyB,SAAAI,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAF,wBAAAM,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAElB,MAAMW,SAAS,GAAGxB,CAAC,CAACyB,MAAM,CAAC;EAAEC,EAAE,EAAE1B,CAAC,CAAC2B,MAAM,CAAC,CAAC;EAAEC,UAAU,EAAE5B,CAAC,CAAC2B,MAAM,CAAC;AAAE,CAAC,CAAC;AAACE,OAAA,CAAAL,SAAA,GAAAA,SAAA;AAIvE,MAAMM,eAAe,GAAG9B,CAAC,CAACyB,MAAM,CAAC;EACtCM,MAAM,EAAE/B,CAAC,CAACyB,MAAM,CAAC;IACfO,GAAG,EAAEhC,CAAC,CAACiC,OAAO,CAAC,sBAAsB,CAAC;IACtCC,GAAG,EAAElC,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfQ,GAAG,EAAEnC,CAAC,CAAC2B,MAAM,CAAC;EAChB,CAAC,CAAC;EACFS,OAAO,EAAEpC,CAAC,CAACyB,MAAM,CAAC;IAChBY,GAAG,EAAErC,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfW,GAAG,EAAEtC,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfY,IAAI,EAAEvC,CAAC,CAACyB,MAAM,CAAC;MAAEe,IAAI,EAAExC,CAAC,CAACyC,KAAK,CAACC,QAAG;IAAE,CAAC,CAAC;IACtCC,WAAW,EAAE3C,CAAC,CAACyC,KAAK,CAACjB,SAAS,CAAC;IAC/BoB,GAAG,EAAE5C,CAAC,CAAC6C,MAAM,CAAC,CAAC;IACfC,GAAG,EAAE9C,CAAC,CAAC6C,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;AAAChB,OAAA,CAAAC,eAAA,GAAAA,eAAA;AAGI,MAAMiB,mBAAmB,GAAG/C,CAAC,CAACyB,MAAM,CAAC;EAC1CM,MAAM,EAAE/B,CAAC,CAACyB,MAAM,CAAC;IACfO,GAAG,EAAEhC,CAAC,CAACiC,OAAO,CAAC,sBAAsB,CAAC;IACtCC,GAAG,EAAElC,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfQ,GAAG,EAAEnC,CAAC,CAAC2B,MAAM,CAAC;EAChB,CAAC,CAAC;EACFS,OAAO,EAAEpC,CAAC,CAACyB,MAAM,CAAC;IAChBqB,GAAG,EAAEE,eAAQ;IACbJ,GAAG,EAAEI,eAAQ;IACbX,GAAG,EAAErC,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfW,GAAG,EAAEtC,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfY,IAAI,EAAEvC,CAAC,CAACyB,MAAM,CAAC;MACbe,IAAI,EAAExC,CAAC,CAACyC,KAAK,CAACC,QAAG;IACnB,CAAC,CAAC;IACFO,QAAQ,EAAEjD,CAAC,CACRyB,MAAM,CAAC;MACNyB,iBAAiB,EAAElD,CAAC,CACjByB,MAAM,CAAC;QACN0B,yBAAyB,EAAEnD,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QAChDC,wBAAwB,EAAErD,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QAC/CE,2BAA2B,EAAEtD,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QAClDG,qCAAqC,EAAEvD,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QAC5DI,mCAAmC,EAAExD,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QAC1DK,YAAY,EAAEzD,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QACnCM,UAAU,EAAE1D,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QACjCO,QAAQ,EAAE3D,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACyB,QAAQ,CAAC,CAAC;QAC/BQ,QAAQ,EAAE5D,CAAC,CAACyC,KAAK,CAACzC,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC,CAACyB,QAAQ,CAAC;MACzC,CAAC,CAAC,CACDS,WAAW,CAAC;IACjB,CAAC,CAAC,CACDA,WAAW,CAAC,CAAC;IAChBC,eAAe,EAAE9D,CAAC,CAACyC,KAAK,CAACzC,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC,CAACyB,QAAQ,CAAC;EAChD,CAAC;AACH,CAAC,CAAC;AAACvB,OAAA,CAAAkB,mBAAA,GAAAA,mBAAA;AAKI,MAAMgB,8BAA8B,GAAGhB,mBAAmB;AAAClB,OAAA,CAAAkC,8BAAA,GAAAA,8BAAA"}
+{"version":3,"names":["_types","require","_jwk","z","_interopRequireWildcard","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","TrustMark","object","id","string","trust_mark","exports","CredentialDisplayMetadata","name","locale","logo","url","alt_text","background_color","text_color","SupportedCredentialMetadata","format","literal","cryptographic_binding_methods_supported","array","cryptographic_suites_supported","display","EntityStatement","header","typ","alg","kid","payload","iss","sub","jwks","keys","JWK","trust_marks","iat","number","exp","EntityConfigurationHeader","BaseEntityConfiguration","UnixTime","metadata","federation_entity","federation_fetch_endpoint","optional","federation_list_endpoint","federation_resolve_endpoint","federation_trust_mark_status_endpoint","federation_trust_mark_list_endpoint","homepage_uri","policy_uri","logo_uri","contacts","passthrough","authority_hints","TrustAnchorEntityConfiguration","CredentialIssuerEntityConfiguration","and","openid_credential_issuer","credential_issuer","authorization_endpoint","token_endpoint","pushed_authorization_request_endpoint","dpop_signing_alg_values_supported","credential_endpoint","credentials_supported","WalletProviderEntityConfiguration","wallet_provider","attested_security_context_values_supported","grant_types_supported","token_endpoint_auth_methods_supported","token_endpoint_auth_signing_alg_values_supported","RelyingPartyEntityConfiguration","wallet_relying_party","application_type","client_id","client_name","EntityConfiguration","union","description"],"sourceRoot":"../../../src","sources":["trust/types.ts"],"mappings":";;;;;;AAAA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,IAAA,GAAAD,OAAA;AACA,IAAAE,CAAA,GAAAC,uBAAA,CAAAH,OAAA;AAAyB,SAAAI,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAF,wBAAAM,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAElB,MAAMW,SAAS,GAAGxB,CAAC,CAACyB,MAAM,CAAC;EAAEC,EAAE,EAAE1B,CAAC,CAAC2B,MAAM,CAAC,CAAC;EAAEC,UAAU,EAAE5B,CAAC,CAAC2B,MAAM,CAAC;AAAE,CAAC,CAAC;;AAG7E;AACA;AAAAE,OAAA,CAAAL,SAAA,GAAAA,SAAA;AAEA,MAAMM,yBAAyB,GAAG9B,CAAC,CAACyB,MAAM,CAAC;EACzCM,IAAI,EAAE/B,CAAC,CAAC2B,MAAM,CAAC,CAAC;EAChBK,MAAM,EAAEhC,CAAC,CAAC2B,MAAM,CAAC,CAAC;EAClBM,IAAI,EAAEjC,CAAC,CAACyB,MAAM,CAAC;IACbS,GAAG,EAAElC,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfQ,QAAQ,EAAEnC,CAAC,CAAC2B,MAAM,CAAC;EACrB,CAAC,CAAC;EACFS,gBAAgB,EAAEpC,CAAC,CAAC2B,MAAM,CAAC,CAAC;EAC5BU,UAAU,EAAErC,CAAC,CAAC2B,MAAM,CAAC;AACvB,CAAC,CAAC;;AAEF;;AAEA,MAAMW,2BAA2B,GAAGtC,CAAC,CAACyB,MAAM,CAAC;EAC3Cc,MAAM,EAAEvC,CAAC,CAACwC,OAAO,CAAC,WAAW,CAAC;EAC9BC,uCAAuC,EAAEzC,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC;EAC5DgB,8BAA8B,EAAE3C,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC;EACnDiB,OAAO,EAAE5C,CAAC,CAAC0C,KAAK,CAACZ,yBAAyB;AAC5C,CAAC,CAAC;AAGK,MAAMe,eAAe,GAAG7C,CAAC,CAACyB,MAAM,CAAC;EACtCqB,MAAM,EAAE9C,CAAC,CAACyB,MAAM,CAAC;IACfsB,GAAG,EAAE/C,CAAC,CAACwC,OAAO,CAAC,sBAAsB,CAAC;IACtCQ,GAAG,EAAEhD,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfsB,GAAG,EAAEjD,CAAC,CAAC2B,MAAM,CAAC;EAChB,CAAC,CAAC;EACFuB,OAAO,EAAElD,CAAC,CAACyB,MAAM,CAAC;IAChB0B,GAAG,EAAEnD,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfyB,GAAG,EAAEpD,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACf0B,IAAI,EAAErD,CAAC,CAACyB,MAAM,CAAC;MAAE6B,IAAI,EAAEtD,CAAC,CAAC0C,KAAK,CAACa,QAAG;IAAE,CAAC,CAAC;IACtCC,WAAW,EAAExD,CAAC,CAAC0C,KAAK,CAAClB,SAAS,CAAC;IAC/BiC,GAAG,EAAEzD,CAAC,CAAC0D,MAAM,CAAC,CAAC;IACfC,GAAG,EAAE3D,CAAC,CAAC0D,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;AAAC7B,OAAA,CAAAgB,eAAA,GAAAA,eAAA;AAKI,MAAMe,yBAAyB,GAAG5D,CAAC,CAACyB,MAAM,CAAC;EAChDsB,GAAG,EAAE/C,CAAC,CAACwC,OAAO,CAAC,sBAAsB,CAAC;EACtCQ,GAAG,EAAEhD,CAAC,CAAC2B,MAAM,CAAC,CAAC;EACfsB,GAAG,EAAEjD,CAAC,CAAC2B,MAAM,CAAC;AAChB,CAAC,CAAC;;AAEF;AAAAE,OAAA,CAAA+B,yBAAA,GAAAA,yBAAA;AACA,MAAMC,uBAAuB,GAAG7D,CAAC,CAACyB,MAAM,CAAC;EACvCqB,MAAM,EAAEc,yBAAyB;EACjCV,OAAO,EAAElD,CAAC,CACPyB,MAAM,CAAC;IACNkC,GAAG,EAAEG,eAAQ;IACbL,GAAG,EAAEK,eAAQ;IACbX,GAAG,EAAEnD,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACfyB,GAAG,EAAEpD,CAAC,CAAC2B,MAAM,CAAC,CAAC;IACf0B,IAAI,EAAErD,CAAC,CAACyB,MAAM,CAAC;MACb6B,IAAI,EAAEtD,CAAC,CAAC0C,KAAK,CAACa,QAAG;IACnB,CAAC,CAAC;IACFQ,QAAQ,EAAE/D,CAAC,CACRyB,MAAM,CAAC;MACNuC,iBAAiB,EAAEhE,CAAC,CACjByB,MAAM,CAAC;QACNwC,yBAAyB,EAAEjE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAChDC,wBAAwB,EAAEnE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAC/CE,2BAA2B,EAAEpE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAClDG,qCAAqC,EAAErE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAC5DI,mCAAmC,EAAEtE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAC1DK,YAAY,EAAEvE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QACnCM,UAAU,EAAExE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QACjCO,QAAQ,EAAEzE,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAC/BQ,QAAQ,EAAE1E,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC,CAACuC,QAAQ,CAAC;MACzC,CAAC,CAAC,CACDS,WAAW,CAAC;IACjB,CAAC,CAAC,CACDA,WAAW,CAAC,CAAC;IAChBC,eAAe,EAAE5E,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC,CAACuC,QAAQ,CAAC;EAChD,CAAC,CAAC,CACDS,WAAW,CAAC;AACjB,CAAC,CAAC;;AAEF;;AAIO,MAAME,8BAA8B,GAAGhB,uBAAuB;;AAErE;AAAAhC,OAAA,CAAAgD,8BAAA,GAAAA,8BAAA;AAIO,MAAMC,mCAAmC,GAAGjB,uBAAuB,CAACkB,GAAG,CAC5E/E,CAAC,CAACyB,MAAM,CAAC;EACPyB,OAAO,EAAElD,CAAC,CAACyB,MAAM,CAAC;IAChB4B,IAAI,EAAErD,CAAC,CAACyB,MAAM,CAAC;MAAE6B,IAAI,EAAEtD,CAAC,CAAC0C,KAAK,CAACa,QAAG;IAAE,CAAC,CAAC;IACtCQ,QAAQ,EAAE/D,CAAC,CAACyB,MAAM,CAAC;MACjBuD,wBAAwB,EAAEhF,CAAC,CAACyB,MAAM,CAAC;QACjCwD,iBAAiB,EAAEjF,CAAC,CAAC2B,MAAM,CAAC,CAAC;QAC7BuD,sBAAsB,EAAElF,CAAC,CAAC2B,MAAM,CAAC,CAAC;QAClCwD,cAAc,EAAEnF,CAAC,CAAC2B,MAAM,CAAC,CAAC;QAC1ByD,qCAAqC,EAAEpF,CAAC,CAAC2B,MAAM,CAAC,CAAC;QACjD0D,iCAAiC,EAAErF,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC;QACtD2D,mBAAmB,EAAEtF,CAAC,CAAC2B,MAAM,CAAC,CAAC;QAC/B4D,qBAAqB,EAAEvF,CAAC,CAAC0C,KAAK,CAACJ,2BAA2B,CAAC;QAC3De,IAAI,EAAErD,CAAC,CAACyB,MAAM,CAAC;UAAE6B,IAAI,EAAEtD,CAAC,CAAC0C,KAAK,CAACa,QAAG;QAAE,CAAC;MACvC,CAAC;IACH,CAAC;EACH,CAAC;AACH,CAAC,CACH,CAAC;;AAED;AAAA1B,OAAA,CAAAiD,mCAAA,GAAAA,mCAAA;AAIO,MAAMU,iCAAiC,GAAG3B,uBAAuB,CAACkB,GAAG,CAC1E/E,CAAC,CAACyB,MAAM,CAAC;EACPyB,OAAO,EAAElD,CAAC,CAACyB,MAAM,CAAC;IAChBsC,QAAQ,EAAE/D,CAAC,CAACyB,MAAM,CAAC;MACjBgE,eAAe,EAAEzF,CAAC,CACfyB,MAAM,CAAC;QACN0D,cAAc,EAAEnF,CAAC,CAAC2B,MAAM,CAAC,CAAC;QAC1B+D,0CAA0C,EAAE1F,CAAC,CAC1C0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC,CACjBuC,QAAQ,CAAC,CAAC;QACbyB,qBAAqB,EAAE3F,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC;QAC1CiE,qCAAqC,EAAE5F,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC;QAC1DkE,gDAAgD,EAAE7F,CAAC,CAAC0C,KAAK,CACvD1C,CAAC,CAAC2B,MAAM,CAAC,CACX,CAAC;QACD0B,IAAI,EAAErD,CAAC,CAACyB,MAAM,CAAC;UAAE6B,IAAI,EAAEtD,CAAC,CAAC0C,KAAK,CAACa,QAAG;QAAE,CAAC;MACvC,CAAC,CAAC,CACDoB,WAAW,CAAC;IACjB,CAAC;EACH,CAAC;AACH,CAAC,CACH,CAAC;;AAED;AAAA9C,OAAA,CAAA2D,iCAAA,GAAAA,iCAAA;AAIO,MAAMM,+BAA+B,GAAGjC,uBAAuB,CAACkB,GAAG,CACxE/E,CAAC,CAACyB,MAAM,CAAC;EACPyB,OAAO,EAAElD,CAAC,CAACyB,MAAM,CAAC;IAChBsC,QAAQ,EAAE/D,CAAC,CAACyB,MAAM,CAAC;MACjBsE,oBAAoB,EAAE/F,CAAC,CACpByB,MAAM,CAAC;QACNuE,gBAAgB,EAAEhG,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QACvC+B,SAAS,EAAEjG,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAChCgC,WAAW,EAAElG,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAACuC,QAAQ,CAAC,CAAC;QAClCb,IAAI,EAAErD,CAAC,CAAC0C,KAAK,CAACa,QAAG,CAAC;QAClBmB,QAAQ,EAAE1E,CAAC,CAAC0C,KAAK,CAAC1C,CAAC,CAAC2B,MAAM,CAAC,CAAC,CAAC,CAACuC,QAAQ,CAAC;MACzC,CAAC,CAAC,CACDS,WAAW,CAAC;IACjB,CAAC;EACH,CAAC;AACH,CAAC,CACH,CAAC;;AAED;AAAA9C,OAAA,CAAAiE,+BAAA,GAAAA,+BAAA;AAEO,MAAMK,mBAAmB,GAAGnG,CAAC,CAACoG,KAAK,CACxC,CACEZ,iCAAiC,EACjCV,mCAAmC,EACnCD,8BAA8B,EAC9BiB,+BAA+B,CAChC,EACD;EACEO,WAAW,EAAE;AACf,CACF,CAAC;AAACxE,OAAA,CAAAsE,mBAAA,GAAAA,mBAAA"}

package/lib/commonjs/utils/crypto.js

@@ -0,0 +1,46 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.createCryptoContextFor = void 0;
+var _ioReactNativeCrypto = require("@pagopa/io-react-native-crypto");
+var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
+var _jwk = require("./jwk");
+/**
+ * Create a CryptoContext bound to a key pair.
+ * Key pair is supposed to exist already in the device's keychain.
+ * It's identified by its unique keytag.
+ *
+ * @returns the crypto context
+ */
+const createCryptoContextFor = keytag => {
+  return {
+    /**
+     * Retrieve the public key of the pair.
+     * If the key pair doesn't exist yet, an error is raised
+     * @returns The public key.
+     */
+    async getPublicKey() {
+      return (0, _ioReactNativeCrypto.getPublicKey)(keytag).then(_jwk.fixBase64EncodingOnKey).then(async jwk => ({
+        ...jwk,
+        // Keys in the TEE are not stored with their KID, which is supposed to be assigned when they are included in JWK sets.
+        // (that is, KID is not a propoerty of the key itself, but it's property used to identify a key in a set).
+        // We assume the convention we use the thumbprint of the public key as KID, thus for easy development we decided to evaluate KID here
+        // However the values is an arbitrary string that might be anything
+        kid: await (0, _ioReactNativeJwt.thumbprint)(jwk)
+      }));
+    },
+    /**
+     * Get a signature for a provided value.
+     * If the key pair doesn't exist yet, an error is raised.
+     * @param value
+     * @returns The signature for the value
+     */
+    async getSignature(value) {
+      return (0, _ioReactNativeCrypto.sign)(value, keytag);
+    }
+  };
+};
+exports.createCryptoContextFor = createCryptoContextFor;
+//# sourceMappingURL=crypto.js.map

package/lib/commonjs/utils/crypto.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["_ioReactNativeCrypto","require","_ioReactNativeJwt","_jwk","createCryptoContextFor","keytag","getPublicKey","then","fixBase64EncodingOnKey","jwk","kid","thumbprint","getSignature","value","sign","exports"],"sourceRoot":"../../../src","sources":["utils/crypto.ts"],"mappings":";;;;;;AAAA,IAAAA,oBAAA,GAAAC,OAAA;AACA,IAAAC,iBAAA,GAAAD,OAAA;AACA,IAAAE,IAAA,GAAAF,OAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMG,sBAAsB,GAAIC,MAAc,IAAoB;EACvE,OAAO;IACL;AACJ;AACA;AACA;AACA;IACI,MAAMC,YAAYA,CAAA,EAAG;MACnB,OAAO,IAAAA,iCAAY,EAACD,MAAM,CAAC,CACxBE,IAAI,CAACC,2BAAsB,CAAC,CAC5BD,IAAI,CAAC,MAAOE,GAAG,KAAM;QACpB,GAAGA,GAAG;QACN;QACA;QACA;QACA;QACAC,GAAG,EAAE,MAAM,IAAAC,4BAAU,EAACF,GAAG;MAC3B,CAAC,CAAC,CAAC;IACP,CAAC;IACD;AACJ;AACA;AACA;AACA;AACA;IACI,MAAMG,YAAYA,CAACC,KAAa,EAAE;MAChC,OAAO,IAAAC,yBAAI,EAACD,KAAK,EAAER,MAAM,CAAC;IAC5B;EACF,CAAC;AACH,CAAC;AAACU,OAAA,CAAAX,sBAAA,GAAAA,sBAAA"}

package/lib/commonjs/utils/dpop.js

@@ -3,20 +3,27 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.getUnsignedDPop = exports.DPoPPayload = void 0;
+exports.createDPopToken = exports.DPoPPayload = void 0;
 var z = _interopRequireWildcard(require("zod"));
 var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
-const getUnsignedDPop = (jwk, payload) => {
-  const dPop = new _ioReactNativeJwt.SignJWT(payload).setProtectedHeader({
-    alg: "ES256",
+/**
+ * Create a signed DPoP token
+ *
+ * @param payload The payload to be included in the token.
+ * @param crypto The crypto context that handles the key bound to the DPoP.
+ *
+ * @returns The signed crypto token.
+ */
+const createDPopToken = async (payload, crypto) => {
+  const jwk = await crypto.getPublicKey();
+  return new _ioReactNativeJwt.SignJWT(crypto).setPayload(payload).setProtectedHeader({
     typ: "dpop+jwt",
     jwk
-  }).setIssuedAt().setExpirationTime("1h").toSign();
-  return dPop;
+  }).setIssuedAt().setExpirationTime("1h").sign();
 };
-exports.getUnsignedDPop = getUnsignedDPop;
+exports.createDPopToken = createDPopToken;
 const DPoPPayload = z.object({
   jti: z.string(),
   htm: z.union([z.literal("POST"), z.literal("GET")]),

package/lib/commonjs/utils/dpop.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","_interopRequireWildcard","require","_ioReactNativeJwt","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","getUnsignedDPop","jwk","payload","dPop","SignJWT","setProtectedHeader","alg","typ","setIssuedAt","setExpirationTime","toSign","exports","DPoPPayload","object","jti","string","htm","union","literal","htu","ath","optional"],"sourceRoot":"../../../src","sources":["utils/dpop.ts"],"mappings":";;;;;;AAAA,IAAAA,CAAA,GAAAC,uBAAA,CAAAC,OAAA;AAEA,IAAAC,iBAAA,GAAAD,OAAA;AAAsD,SAAAE,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAJ,wBAAAQ,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAG/C,MAAMW,eAAe,GAAGA,CAACC,GAAQ,EAAEC,OAAoB,KAAa;EACzE,MAAMC,IAAI,GAAG,IAAIC,yBAAO,CAACF,OAAO,CAAC,CAC9BG,kBAAkB,CAAC;IAClBC,GAAG,EAAE,OAAO;IACZC,GAAG,EAAE,UAAU;IACfN;EACF,CAAC,CAAC,CACDO,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,MAAM,CAAC,CAAC;EACX,OAAOP,IAAI;AACb,CAAC;AAACQ,OAAA,CAAAX,eAAA,GAAAA,eAAA;AAGK,MAAMY,WAAW,GAAGtC,CAAC,CAACuC,MAAM,CAAC;EAClCC,GAAG,EAAExC,CAAC,CAACyC,MAAM,CAAC,CAAC;EACfC,GAAG,EAAE1C,CAAC,CAAC2C,KAAK,CAAC,CAAC3C,CAAC,CAAC4C,OAAO,CAAC,MAAM,CAAC,EAAE5C,CAAC,CAAC4C,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;EACnDC,GAAG,EAAE7C,CAAC,CAACyC,MAAM,CAAC,CAAC;EACfK,GAAG,EAAE9C,CAAC,CAACyC,MAAM,CAAC,CAAC,CAACM,QAAQ,CAAC;AAC3B,CAAC,CAAC;AAACV,OAAA,CAAAC,WAAA,GAAAA,WAAA"}
+{"version":3,"names":["z","_interopRequireWildcard","require","_ioReactNativeJwt","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","createDPopToken","payload","crypto","jwk","getPublicKey","SignJWT","setPayload","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","exports","DPoPPayload","object","jti","string","htm","union","literal","htu","ath","optional"],"sourceRoot":"../../../src","sources":["utils/dpop.ts"],"mappings":";;;;;;AAAA,IAAAA,CAAA,GAAAC,uBAAA,CAAAC,OAAA;AAEA,IAAAC,iBAAA,GAAAD,OAAA;AAA0E,SAAAE,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAJ,wBAAAQ,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAE1E;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMW,eAAe,GAAG,MAAAA,CAC7BC,OAAoB,EACpBC,MAAqB,KACD;EACpB,MAAMC,GAAG,GAAG,MAAMD,MAAM,CAACE,YAAY,CAAC,CAAC;EACvC,OAAO,IAAIC,yBAAO,CAACH,MAAM,CAAC,CACvBI,UAAU,CAACL,OAAO,CAAC,CACnBM,kBAAkB,CAAC;IAClBC,GAAG,EAAE,UAAU;IACfL;EACF,CAAC,CAAC,CACDM,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX,CAAC;AAACC,OAAA,CAAAZ,eAAA,GAAAA,eAAA;AAGK,MAAMa,WAAW,GAAGvC,CAAC,CAACwC,MAAM,CAAC;EAClCC,GAAG,EAAEzC,CAAC,CAAC0C,MAAM,CAAC,CAAC;EACfC,GAAG,EAAE3C,CAAC,CAAC4C,KAAK,CAAC,CAAC5C,CAAC,CAAC6C,OAAO,CAAC,MAAM,CAAC,EAAE7C,CAAC,CAAC6C,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;EACnDC,GAAG,EAAE9C,CAAC,CAAC0C,MAAM,CAAC,CAAC;EACfK,GAAG,EAAE/C,CAAC,CAAC0C,MAAM,CAAC,CAAC,CAACM,QAAQ,CAAC;AAC3B,CAAC,CAAC;AAACV,OAAA,CAAAC,WAAA,GAAAA,WAAA"}

package/lib/commonjs/wallet-instance-attestation/index.js

@@ -3,13 +3,13 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-Object.defineProperty(exports, "Issuing", {
+exports.decode = decode;
+Object.defineProperty(exports, "getAttestation", {
   enumerable: true,
   get: function () {
-    return _issuing.Issuing;
+    return _issuing.getAttestation;
   }
 });
-exports.decode = decode;
 exports.verify = verify;
 var _types = require("./types");
 var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");

package/lib/commonjs/wallet-instance-attestation/issuing.js

@@ -3,68 +3,50 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.Issuing = void 0;
+exports.getAttestation = void 0;
 var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
 var _jwk = require("../utils/jwk");
 var _types = require("./types");
 var _reactNativeUuid = _interopRequireDefault(require("react-native-uuid"));
 var _errors = require("../utils/errors");
 function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-class Issuing {
-  constructor(walletProviderBaseUrl) {
-    let appFetch = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : fetch;
-    this.walletProviderBaseUrl = walletProviderBaseUrl;
-    this.appFetch = appFetch;
-  }
-
-  /**
-   * Get the Wallet Instance Attestation Request to sign
-   *
-   * @async @function
-   *
-   * @param jwk Public key of the wallet instance
-   *
-   * @returns {string} Wallet Instance Attestation Request to sign
-   *
-   */
-  async getAttestationRequestToSign(jwk) {
-    const parsedJwk = _jwk.JWK.parse(jwk);
-    const keyThumbprint = await (0, _ioReactNativeJwt.thumbprint)(parsedJwk);
-    const publicKey = {
-      ...parsedJwk,
-      kid: keyThumbprint
-    };
-    const walletInstanceAttestationRequest = new _ioReactNativeJwt.SignJWT({
-      iss: keyThumbprint,
-      aud: this.walletProviderBaseUrl,
-      jti: `${_reactNativeUuid.default.v4()}`,
-      nonce: `${_reactNativeUuid.default.v4()}`,
-      cnf: {
-        jwk: (0, _jwk.fixBase64EncodingOnKey)(publicKey)
-      }
-    }).setProtectedHeader({
-      alg: "ES256",
-      kid: publicKey.kid,
-      typ: "wiar+jwt"
-    }).setIssuedAt().setExpirationTime("1h").toSign();
-    return walletInstanceAttestationRequest;
-  }
+async function getAttestationRequest(wiaCryptoContext, walletProviderEntityConfiguration) {
+  const jwk = await wiaCryptoContext.getPublicKey();
+  const parsedJwk = _jwk.JWK.parse(jwk);
+  const keyThumbprint = await (0, _ioReactNativeJwt.thumbprint)(parsedJwk);
+  const publicKey = {
+    ...parsedJwk,
+    kid: keyThumbprint
+  };
+  return new _ioReactNativeJwt.SignJWT(wiaCryptoContext).setPayload({
+    iss: keyThumbprint,
+    aud: walletProviderEntityConfiguration.payload.iss,
+    jti: `${_reactNativeUuid.default.v4()}`,
+    nonce: `${_reactNativeUuid.default.v4()}`,
+    cnf: {
+      jwk: (0, _jwk.fixBase64EncodingOnKey)(publicKey)
+    }
+  }).setProtectedHeader({
+    kid: publicKey.kid,
+    typ: "wiar+jwt"
+  }).setIssuedAt().setExpirationTime("1h").sign();
+}
 
-  /**
-   * Get the Wallet Instance Attestation given a
-   * Wallet Instance Attestation Request and signature
-   *
-   * @async @function
-   *
-   * @param attestationRequest Wallet Instance Attestaion Request
-   * obtained with {@link getAttestationRequestToSign}
-   * @param signature Signature of the Wallet Instance Attestaion Request
-   *
-   * @returns {string} Wallet Instance Attestation
-   *
-   */
-  async getAttestation(attestationRequest, signature) {
-    const signedAttestationRequest = await _ioReactNativeJwt.SignJWT.appendSignature(attestationRequest, signature);
+/**
+ * Request a Wallet Instance Attestation (WIA) to the Wallet provider
+ *
+ * @param params.wiaCryptoContext The key pair associated with the WIA. Will be use to prove the ownership of the attestation.
+ * @param params.appFetch (optional) Http client
+ * @param walletProviderBaseUrl Base url for the Wallet Provider
+ * @returns The retrieved Wallet Instance Attestation token
+ */
+const getAttestation = _ref => {
+  let {
+    wiaCryptoContext,
+    appFetch = fetch
+  } = _ref;
+  return async walletProviderEntityConfiguration => {
+    const signedAttestationRequest = await getAttestationRequest(wiaCryptoContext, walletProviderEntityConfiguration);
     const decodedRequest = (0, _ioReactNativeJwt.decode)(signedAttestationRequest);
     const parsedRequest = _types.WalletInstanceAttestationRequestJwt.parse({
       payload: decodedRequest.payload,
@@ -72,12 +54,12 @@ class Issuing {
     });
     const publicKey = parsedRequest.payload.cnf.jwk;
     await (0, _ioReactNativeJwt.verify)(signedAttestationRequest, publicKey);
-    const tokenUrl = new URL("token", this.walletProviderBaseUrl).href;
+    const tokenUrl = walletProviderEntityConfiguration.payload.metadata.wallet_provider.token_endpoint;
     const requestBody = {
       grant_type: "urn:ietf:params:oauth:client-assertion-type:jwt-client-attestation",
       assertion: signedAttestationRequest
     };
-    const response = await this.appFetch(tokenUrl, {
+    const response = await appFetch(tokenUrl, {
       method: "POST",
       headers: {
         "Content-Type": "application/json"
@@ -88,7 +70,7 @@ class Issuing {
       return await response.text();
     }
     throw new _errors.WalletInstanceAttestationIssuingError("Unable to obtain wallet instance attestation from wallet provider", `Response code: ${response.status}`);
-  }
-}
-exports.Issuing = Issuing;
+  };
+};
+exports.getAttestation = getAttestation;
 //# sourceMappingURL=issuing.js.map

package/lib/commonjs/wallet-instance-attestation/issuing.js.map

@@ -1 +1 @@
-{"version":3,"names":["_ioReactNativeJwt","require","_jwk","_types","_reactNativeUuid","_interopRequireDefault","_errors","obj","__esModule","default","Issuing","constructor","walletProviderBaseUrl","appFetch","arguments","length","undefined","fetch","getAttestationRequestToSign","jwk","parsedJwk","JWK","parse","keyThumbprint","thumbprint","publicKey","kid","walletInstanceAttestationRequest","SignJWT","iss","aud","jti","uuid","v4","nonce","cnf","fixBase64EncodingOnKey","setProtectedHeader","alg","typ","setIssuedAt","setExpirationTime","toSign","getAttestation","attestationRequest","signature","signedAttestationRequest","appendSignature","decodedRequest","decodeJwt","parsedRequest","WalletInstanceAttestationRequestJwt","payload","header","protectedHeader","verifyJwt","tokenUrl","URL","href","requestBody","grant_type","assertion","response","method","headers","body","JSON","stringify","status","text","WalletInstanceAttestationIssuingError","exports"],"sourceRoot":"../../../src","sources":["wallet-instance-attestation/issuing.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AAGA,IAAAC,IAAA,GAAAD,OAAA;AACA,IAAAE,MAAA,GAAAF,OAAA;AACA,IAAAG,gBAAA,GAAAC,sBAAA,CAAAJ,OAAA;AACA,IAAAK,OAAA,GAAAL,OAAA;AAAwE,SAAAI,uBAAAE,GAAA,WAAAA,GAAA,IAAAA,GAAA,CAAAC,UAAA,GAAAD,GAAA,KAAAE,OAAA,EAAAF,GAAA;AAEjE,MAAMG,OAAO,CAAC;EAGnBC,WAAWA,CACTC,qBAA6B,EAE7B;IAAA,IADAC,QAA8B,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAGG,KAAK;IAEtC,IAAI,CAACL,qBAAqB,GAAGA,qBAAqB;IAClD,IAAI,CAACC,QAAQ,GAAGA,QAAQ;EAC1B;;EAEA;AACF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACE,MAAMK,2BAA2BA,CAACC,GAAQ,EAAmB;IAC3D,MAAMC,SAAS,GAAGC,QAAG,CAACC,KAAK,CAACH,GAAG,CAAC;IAChC,MAAMI,aAAa,GAAG,MAAM,IAAAC,4BAAU,EAACJ,SAAS,CAAC;IACjD,MAAMK,SAAS,GAAG;MAAE,GAAGL,SAAS;MAAEM,GAAG,EAAEH;IAAc,CAAC;IAEtD,MAAMI,gCAAgC,GAAG,IAAIC,yBAAO,CAAC;MACnDC,GAAG,EAAEN,aAAa;MAClBO,GAAG,EAAE,IAAI,CAAClB,qBAAqB;MAC/BmB,GAAG,EAAG,GAAEC,wBAAI,CAACC,EAAE,CAAC,CAAE,EAAC;MACnBC,KAAK,EAAG,GAAEF,wBAAI,CAACC,EAAE,CAAC,CAAE,EAAC;MACrBE,GAAG,EAAE;QACHhB,GAAG,EAAE,IAAAiB,2BAAsB,EAACX,SAAS;MACvC;IACF,CAAC,CAAC,CACCY,kBAAkB,CAAC;MAClBC,GAAG,EAAE,OAAO;MACZZ,GAAG,EAAED,SAAS,CAACC,GAAG;MAClBa,GAAG,EAAE;IACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,MAAM,CAAC,CAAC;IAEX,OAAOf,gCAAgC;EACzC;;EAEA;AACF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACE,MAAMgB,cAAcA,CAClBC,kBAA0B,EAC1BC,SAAiB,EACA;IACjB,MAAMC,wBAAwB,GAAG,MAAMlB,yBAAO,CAACmB,eAAe,CAC5DH,kBAAkB,EAClBC,SACF,CAAC;IAED,MAAMG,cAAc,GAAG,IAAAC,wBAAS,EAACH,wBAAwB,CAAC;IAC1D,MAAMI,aAAa,GAAGC,0CAAmC,CAAC7B,KAAK,CAAC;MAC9D8B,OAAO,EAAEJ,cAAc,CAACI,OAAO;MAC/BC,MAAM,EAAEL,cAAc,CAACM;IACzB,CAAC,CAAC;IACF,MAAM7B,SAAS,GAAGyB,aAAa,CAACE,OAAO,CAACjB,GAAG,CAAChB,GAAG;IAE/C,MAAM,IAAAoC,wBAAS,EAACT,wBAAwB,EAAErB,SAAS,CAAC;IAEpD,MAAM+B,QAAQ,GAAG,IAAIC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC7C,qBAAqB,CAAC,CAAC8C,IAAI;IAClE,MAAMC,WAAW,GAAG;MAClBC,UAAU,EACR,oEAAoE;MACtEC,SAAS,EAAEf;IACb,CAAC;IACD,MAAMgB,QAAQ,GAAG,MAAM,IAAI,CAACjD,QAAQ,CAAC2C,QAAQ,EAAE;MAC7CO,MAAM,EAAE,MAAM;MACdC,OAAO,EAAE;QACP,cAAc,EAAE;MAClB,CAAC;MACDC,IAAI,EAAEC,IAAI,CAACC,SAAS,CAACR,WAAW;IAClC,CAAC,CAAC;IAEF,IAAIG,QAAQ,CAACM,MAAM,KAAK,GAAG,EAAE;MAC3B,OAAO,MAAMN,QAAQ,CAACO,IAAI,CAAC,CAAC;IAC9B;IAEA,MAAM,IAAIC,6CAAqC,CAC7C,mEAAmE,EAClE,kBAAiBR,QAAQ,CAACM,MAAO,EACpC,CAAC;EACH;AACF;AAACG,OAAA,CAAA7D,OAAA,GAAAA,OAAA"}
+{"version":3,"names":["_ioReactNativeJwt","require","_jwk","_types","_reactNativeUuid","_interopRequireDefault","_errors","obj","__esModule","default","getAttestationRequest","wiaCryptoContext","walletProviderEntityConfiguration","jwk","getPublicKey","parsedJwk","JWK","parse","keyThumbprint","thumbprint","publicKey","kid","SignJWT","setPayload","iss","aud","payload","jti","uuid","v4","nonce","cnf","fixBase64EncodingOnKey","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","getAttestation","_ref","appFetch","fetch","signedAttestationRequest","decodedRequest","decodeJwt","parsedRequest","WalletInstanceAttestationRequestJwt","header","protectedHeader","verifyJwt","tokenUrl","metadata","wallet_provider","token_endpoint","requestBody","grant_type","assertion","response","method","headers","body","JSON","stringify","status","text","WalletInstanceAttestationIssuingError","exports"],"sourceRoot":"../../../src","sources":["wallet-instance-attestation/issuing.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AAMA,IAAAC,IAAA,GAAAD,OAAA;AACA,IAAAE,MAAA,GAAAF,OAAA;AACA,IAAAG,gBAAA,GAAAC,sBAAA,CAAAJ,OAAA;AACA,IAAAK,OAAA,GAAAL,OAAA;AAAwE,SAAAI,uBAAAE,GAAA,WAAAA,GAAA,IAAAA,GAAA,CAAAC,UAAA,GAAAD,GAAA,KAAAE,OAAA,EAAAF,GAAA;AAGxE,eAAeG,qBAAqBA,CAClCC,gBAA+B,EAC/BC,iCAAoE,EACnD;EACjB,MAAMC,GAAG,GAAG,MAAMF,gBAAgB,CAACG,YAAY,CAAC,CAAC;EACjD,MAAMC,SAAS,GAAGC,QAAG,CAACC,KAAK,CAACJ,GAAG,CAAC;EAChC,MAAMK,aAAa,GAAG,MAAM,IAAAC,4BAAU,EAACJ,SAAS,CAAC;EACjD,MAAMK,SAAS,GAAG;IAAE,GAAGL,SAAS;IAAEM,GAAG,EAAEH;EAAc,CAAC;EAEtD,OAAO,IAAII,yBAAO,CAACX,gBAAgB,CAAC,CACjCY,UAAU,CAAC;IACVC,GAAG,EAAEN,aAAa;IAClBO,GAAG,EAAEb,iCAAiC,CAACc,OAAO,CAACF,GAAG;IAClDG,GAAG,EAAG,GAAEC,wBAAI,CAACC,EAAE,CAAC,CAAE,EAAC;IACnBC,KAAK,EAAG,GAAEF,wBAAI,CAACC,EAAE,CAAC,CAAE,EAAC;IACrBE,GAAG,EAAE;MACHlB,GAAG,EAAE,IAAAmB,2BAAsB,EAACZ,SAAS;IACvC;EACF,CAAC,CAAC,CACDa,kBAAkB,CAAC;IAClBZ,GAAG,EAAED,SAAS,CAACC,GAAG;IAClBa,GAAG,EAAE;EACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX;;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMC,cAAc,GACzBC,IAAA;EAAA,IAAC;IACC5B,gBAAgB;IAChB6B,QAAQ,GAAGC;EAIb,CAAC,GAAAF,IAAA;EAAA,OACD,MACE3B,iCAAoE,IAChD;IACpB,MAAM8B,wBAAwB,GAAG,MAAMhC,qBAAqB,CAC1DC,gBAAgB,EAChBC,iCACF,CAAC;IAED,MAAM+B,cAAc,GAAG,IAAAC,wBAAS,EAACF,wBAAwB,CAAC;IAC1D,MAAMG,aAAa,GAAGC,0CAAmC,CAAC7B,KAAK,CAAC;MAC9DS,OAAO,EAAEiB,cAAc,CAACjB,OAAO;MAC/BqB,MAAM,EAAEJ,cAAc,CAACK;IACzB,CAAC,CAAC;IACF,MAAM5B,SAAS,GAAGyB,aAAa,CAACnB,OAAO,CAACK,GAAG,CAAClB,GAAG;IAE/C,MAAM,IAAAoC,wBAAS,EAACP,wBAAwB,EAAEtB,SAAS,CAAC;IAEpD,MAAM8B,QAAQ,GACZtC,iCAAiC,CAACc,OAAO,CAACyB,QAAQ,CAACC,eAAe,CAC/DC,cAAc;IACnB,MAAMC,WAAW,GAAG;MAClBC,UAAU,EACR,oEAAoE;MACtEC,SAAS,EAAEd;IACb,CAAC;IACD,MAAMe,QAAQ,GAAG,MAAMjB,QAAQ,CAACU,QAAQ,EAAE;MACxCQ,MAAM,EAAE,MAAM;MACdC,OAAO,EAAE;QACP,cAAc,EAAE;MAClB,CAAC;MACDC,IAAI,EAAEC,IAAI,CAACC,SAAS,CAACR,WAAW;IAClC,CAAC,CAAC;IAEF,IAAIG,QAAQ,CAACM,MAAM,KAAK,GAAG,EAAE;MAC3B,OAAO,MAAMN,QAAQ,CAACO,IAAI,CAAC,CAAC;IAC9B;IAEA,MAAM,IAAIC,6CAAqC,CAC7C,mEAAmE,EAClE,kBAAiBR,QAAQ,CAACM,MAAO,EACpC,CAAC;EACH,CAAC;AAAA;AAACG,OAAA,CAAA5B,cAAA,GAAAA,cAAA"}

package/lib/module/index.js

@@ -5,10 +5,8 @@ import * as PID from "./pid";
 import * as RP from "./rp";
 import * as Errors from "./utils/errors";
 import * as WalletInstanceAttestation from "./wallet-instance-attestation";
-import { getUnsignedDPop } from "./utils/dpop";
-import { RelyingPartySolution } from "./rp";
-import { RpEntityConfiguration } from "./rp/types";
-import { verifyTrustChain, getEntityConfiguration } from "./trust";
-import { EntityConfiguration, EntityStatement, TrustAnchorEntityConfiguration } from "./trust/types";
-export { PID, RP, WalletInstanceAttestation, Errors, getUnsignedDPop, RelyingPartySolution, verifyTrustChain, getEntityConfiguration, EntityConfiguration, EntityStatement, RpEntityConfiguration, TrustAnchorEntityConfiguration };
+import * as RelyingPartySolution from "./rp";
+import { verifyTrustChain, getEntityConfiguration, getCredentialIssuerEntityConfiguration, getRelyingPartyEntityConfiguration, getTrustAnchorEntityConfiguration, getWalletProviderEntityConfiguration } from "./trust";
+import { createCryptoContextFor } from "./utils/crypto";
+export { PID, RP, WalletInstanceAttestation, Errors, RelyingPartySolution, verifyTrustChain, getEntityConfiguration, getCredentialIssuerEntityConfiguration, getRelyingPartyEntityConfiguration, getTrustAnchorEntityConfiguration, getWalletProviderEntityConfiguration, createCryptoContextFor };
 //# sourceMappingURL=index.js.map

package/lib/module/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["PID","RP","Errors","WalletInstanceAttestation","getUnsignedDPop","RelyingPartySolution","RpEntityConfiguration","verifyTrustChain","getEntityConfiguration","EntityConfiguration","EntityStatement","TrustAnchorEntityConfiguration"],"sourceRoot":"../../src","sources":["index.ts"],"mappings":"AAAA;AACA;AACA,OAAO,gCAAgC;AAEvC,OAAO,KAAKA,GAAG,MAAM,OAAO;AAC5B,OAAO,KAAKC,EAAE,MAAM,MAAM;AAC1B,OAAO,KAAKC,MAAM,MAAM,gBAAgB;AACxC,OAAO,KAAKC,yBAAyB,MAAM,+BAA+B;AAC1E,SAASC,eAAe,QAAQ,cAAc;AAC9C,SAASC,oBAAoB,QAAQ,MAAM;AAC3C,SAASC,qBAAqB,QAAQ,YAAY;AAClD,SAASC,gBAAgB,EAAEC,sBAAsB,QAAQ,SAAS;AAClE,SACEC,mBAAmB,EACnBC,eAAe,EACfC,8BAA8B,QACzB,eAAe;AAEtB,SACEX,GAAG,EACHC,EAAE,EACFE,yBAAyB,EACzBD,MAAM,EACNE,eAAe,EACfC,oBAAoB,EACpBE,gBAAgB,EAChBC,sBAAsB,EACtBC,mBAAmB,EACnBC,eAAe,EACfJ,qBAAqB,EACrBK,8BAA8B"}
+{"version":3,"names":["PID","RP","Errors","WalletInstanceAttestation","RelyingPartySolution","verifyTrustChain","getEntityConfiguration","getCredentialIssuerEntityConfiguration","getRelyingPartyEntityConfiguration","getTrustAnchorEntityConfiguration","getWalletProviderEntityConfiguration","createCryptoContextFor"],"sourceRoot":"../../src","sources":["index.ts"],"mappings":"AAAA;AACA;AACA,OAAO,gCAAgC;AAEvC,OAAO,KAAKA,GAAG,MAAM,OAAO;AAC5B,OAAO,KAAKC,EAAE,MAAM,MAAM;AAC1B,OAAO,KAAKC,MAAM,MAAM,gBAAgB;AACxC,OAAO,KAAKC,yBAAyB,MAAM,+BAA+B;AAC1E,OAAO,KAAKC,oBAAoB,MAAM,MAAM;AAC5C,SACEC,gBAAgB,EAChBC,sBAAsB,EACtBC,sCAAsC,EACtCC,kCAAkC,EAClCC,iCAAiC,EACjCC,oCAAoC,QAC/B,SAAS;AAChB,SAASC,sBAAsB,QAAQ,gBAAgB;AAEvD,SACEX,GAAG,EACHC,EAAE,EACFE,yBAAyB,EACzBD,MAAM,EACNE,oBAAoB,EACpBC,gBAAgB,EAChBC,sBAAsB,EACtBC,sCAAsC,EACtCC,kCAAkC,EAClCC,iCAAiC,EACjCC,oCAAoC,EACpCC,sBAAsB"}

package/lib/module/pid/index.js

@@ -1,4 +1,4 @@
 import * as SdJwt from "./sd-jwt";
-import { Issuing } from "./issuing";
+import * as Issuing from "./issuing";
 export { SdJwt, Issuing };
 //# sourceMappingURL=index.js.map

package/lib/module/pid/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["SdJwt","Issuing"],"sourceRoot":"../../../src","sources":["pid/index.ts"],"mappings":"AAAA,OAAO,KAAKA,KAAK,MAAM,UAAU;AACjC,SAASC,OAAO,QAAQ,WAAW;AACnC,SAASD,KAAK,EAAEC,OAAO"}
+{"version":3,"names":["SdJwt","Issuing"],"sourceRoot":"../../../src","sources":["pid/index.ts"],"mappings":"AAAA,OAAO,KAAKA,KAAK,MAAM,UAAU;AACjC,OAAO,KAAKC,OAAO,MAAM,WAAW;AACpC,SAASD,KAAK,EAAEC,OAAO"}