@pagopa/io-react-native-wallet 0.7.4 → 0.9.1

package/lib/typescript/credential/issuance/const.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"const.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/const.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,cAAc,uEAC2C,CAAC"}

package/lib/typescript/credential/issuance/index.d.ts

@@ -0,0 +1,10 @@
+import { type StartFlow } from "./01-start-flow";
+import { evaluateIssuerTrust, type EvaluateIssuerTrust } from "./02-evaluate-issuer-trust";
+import { startUserAuthorization, type StartUserAuthorization } from "./03-start-user-authorization";
+import { type CompleteUserAuthorization } from "./04-complete-user-authorization";
+import { authorizeAccess, type AuthorizeAccess } from "./05-authorize-access";
+import { obtainCredential, type ObtainCredential } from "./06-obtain-credential";
+import type { ConfirmCredential } from "./07-confirm-credential";
+export { evaluateIssuerTrust, startUserAuthorization, authorizeAccess, obtainCredential, };
+export type { StartFlow, EvaluateIssuerTrust, StartUserAuthorization, CompleteUserAuthorization, AuthorizeAccess, ObtainCredential, ConfirmCredential, };
+//# sourceMappingURL=index.d.ts.map

package/lib/typescript/credential/issuance/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/credential/issuance/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACjD,OAAO,EACL,mBAAmB,EACnB,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,sBAAsB,EACtB,KAAK,sBAAsB,EAC5B,MAAM,+BAA+B,CAAC;AACvC,OAAO,EAAE,KAAK,yBAAyB,EAAE,MAAM,kCAAkC,CAAC;AAClF,OAAO,EAAE,eAAe,EAAE,KAAK,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAC9E,OAAO,EACL,gBAAgB,EAChB,KAAK,gBAAgB,EACtB,MAAM,wBAAwB,CAAC;AAChC,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAEjE,OAAO,EACL,mBAAmB,EACnB,sBAAsB,EACtB,eAAe,EACf,gBAAgB,GACjB,CAAC;AACF,YAAY,EACV,SAAS,EACT,mBAAmB,EACnB,sBAAsB,EACtB,yBAAyB,EACzB,eAAe,EACf,gBAAgB,EAChB,iBAAiB,GAClB,CAAC"}

package/lib/typescript/credential/presentation/01-start-flow.d.ts

@@ -0,0 +1,20 @@
+/**
+ * The beginning of the presentation flow.
+ * To be implemented accordind to the user touchpoint
+ *
+ * @param Optional parameters, depending on the starting touchoint
+ * @returns The url for the Relying Party to connect with
+ */
+export type StartFlow<T extends Array<unknown> = []> = (...args: T) => Promise<{
+    requestURI: string;
+    clientId: string;
+}>;
+/**
+ * Start a presentation flow by decoding an incoming QR-code
+ *
+ * @param qrcode The encoded QR-code content
+ * @returns The url for the Relying Party to connect with
+ * @throws If the provided qr code fails to be decoded
+ */
+export declare const startFlowFromQR: StartFlow<[string]>;
+//# sourceMappingURL=01-start-flow.d.ts.map

package/lib/typescript/credential/presentation/01-start-flow.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"01-start-flow.d.ts","sourceRoot":"","sources":["../../../../src/credential/presentation/01-start-flow.ts"],"names":[],"mappings":"AAWA;;;;;;GAMG;AACH,MAAM,MAAM,SAAS,CAAC,CAAC,SAAS,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,IAAI,EAAE,CAAC,KAAK,OAAO,CAAC;IAC7E,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB,CAAC,CAAC;AAEH;;;;;;GAMG;AACH,eAAO,MAAM,eAAe,EAAE,SAAS,CAAC,CAAC,MAAM,CAAC,CAoB/C,CAAC"}

package/lib/typescript/credential/presentation/02-evaluate-rp-trust.d.ts

@@ -0,0 +1,18 @@
+import { RelyingPartyEntityConfiguration } from "../../trust/types";
+import type { StartFlow } from "../issuance/01-start-flow";
+import type { Out } from "../../utils/misc";
+export type EvaluateRelyingPartyTrust = (rpUrl: Out<StartFlow>["issuerUrl"], context?: {
+    appFetch?: GlobalFetch["fetch"];
+}) => Promise<{
+    rpConf: RelyingPartyEntityConfiguration["payload"]["metadata"];
+}>;
+/**
+ * The Relying Party trust evaluation phase.
+ * Fetch the  Relying Party's configuration and verify trust.
+ *
+ * @param rpUrl The base url of the Issuer
+ * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
+ * @returns The Relying Party's configuration
+ */
+export declare const evaluateRelyingPartyTrust: EvaluateRelyingPartyTrust;
+//# sourceMappingURL=02-evaluate-rp-trust.d.ts.map

package/lib/typescript/credential/presentation/02-evaluate-rp-trust.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"02-evaluate-rp-trust.d.ts","sourceRoot":"","sources":["../../../../src/credential/presentation/02-evaluate-rp-trust.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,+BAA+B,EAAE,MAAM,mBAAmB,CAAC;AACpE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,2BAA2B,CAAC;AAC3D,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,kBAAkB,CAAC;AAE5C,MAAM,MAAM,yBAAyB,GAAG,CACtC,KAAK,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,WAAW,CAAC,EAClC,OAAO,CAAC,EAAE;IACR,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;CACjC,KACE,OAAO,CAAC;IACX,MAAM,EAAE,+BAA+B,CAAC,SAAS,CAAC,CAAC,UAAU,CAAC,CAAC;CAChE,CAAC,CAAC;AAEH;;;;;;;GAOG;AACH,eAAO,MAAM,yBAAyB,EAAE,yBAUvC,CAAC"}

package/lib/typescript/credential/presentation/03-get-request-object.d.ts

@@ -0,0 +1,25 @@
+import { type CryptoContext } from "@pagopa/io-react-native-jwt";
+import type { EvaluateRelyingPartyTrust } from "./02-evaluate-rp-trust";
+import { type Out } from "../../utils/misc";
+import type { StartFlow } from "./01-start-flow";
+import { RequestObject } from "./types";
+export type GetRequestObject = (requestUri: Out<StartFlow>["requestURI"], rpConf: Out<EvaluateRelyingPartyTrust>["rpConf"], context: {
+    wiaCryptoContext: CryptoContext;
+    appFetch?: GlobalFetch["fetch"];
+    walletInstanceAttestation: string;
+}) => Promise<{
+    requestObject: RequestObject;
+}>;
+/**
+ * Obtain the Request Object for RP authentication
+ * @see https://italia.github.io/eudi-wallet-it-docs/versione-corrente/en/relying-party-solution.html
+ *
+ * @param requestUri The url for the Relying Party to connect with
+ * @param rpConf The Relying Party's configuration
+ * @param context.wiaCryptoContext The context to access the key associated with the Wallet Instance Attestation
+ * @param context.walletInstanceAttestation The Wallet Instance Attestation token
+ * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
+ * @returns The Request Object that describes the presentation
+ */
+export declare const getRequestObject: GetRequestObject;
+//# sourceMappingURL=03-get-request-object.d.ts.map

package/lib/typescript/credential/presentation/03-get-request-object.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"03-get-request-object.d.ts","sourceRoot":"","sources":["../../../../src/credential/presentation/03-get-request-object.ts"],"names":[],"mappings":"AACA,OAAO,EAIL,KAAK,aAAa,EACnB,MAAM,6BAA6B,CAAC;AAIrC,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACxE,OAAO,EAAa,KAAK,GAAG,EAAE,MAAM,kBAAkB,CAAC;AACvD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACjD,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAExC,MAAM,MAAM,gBAAgB,GAAG,CAC7B,UAAU,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,YAAY,CAAC,EACxC,MAAM,EAAE,GAAG,CAAC,yBAAyB,CAAC,CAAC,QAAQ,CAAC,EAChD,OAAO,EAAE;IACP,gBAAgB,EAAE,aAAa,CAAC;IAChC,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;IAChC,yBAAyB,EAAE,MAAM,CAAC;CACnC,KACE,OAAO,CAAC;IAAE,aAAa,EAAE,aAAa,CAAA;CAAE,CAAC,CAAC;AAE/C;;;;;;;;;;GAUG;AACH,eAAO,MAAM,gBAAgB,EAAE,gBAgD9B,CAAC"}

package/lib/typescript/credential/presentation/04-send-authorization-response.d.ts

@@ -0,0 +1,34 @@
+import { type Out } from "../../utils/misc";
+import type { GetRequestObject } from "./03-get-request-object";
+import type { EvaluateRelyingPartyTrust } from "./02-evaluate-rp-trust";
+import { type Presentation } from "./types";
+import * as z from "zod";
+export type AuthorizationResponse = z.infer<typeof AuthorizationResponse>;
+export declare const AuthorizationResponse: z.ZodObject<{
+    status: z.ZodString;
+    response_code: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    status: string;
+    response_code?: string | undefined;
+}, {
+    status: string;
+    response_code?: string | undefined;
+}>;
+export type SendAuthorizationResponse = (requestObject: Out<GetRequestObject>["requestObject"], rpConf: Out<EvaluateRelyingPartyTrust>["rpConf"], presentation: Presentation, // TODO: [SIW-353] support multiple presentations
+context: {
+    walletInstanceAttestation: string;
+    appFetch?: GlobalFetch["fetch"];
+}) => Promise<AuthorizationResponse>;
+/**
+ * Complete the presentation flow by sending the authorization response to the Relying Party
+ *
+ * @param requestObject The Request Object that describes the presentation
+ * @param rpConf The Relying Party's configuration
+ * @param presentation The presentation tuple consisting in the signed credential,
+ * the list of claims to be disclosed, and the context to access the key that proves the holder binding
+ * @param context.walletInstanceAttestation The Wallet Instance Attestation token
+ * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
+ * @returns The result of the presentation flow
+ */
+export declare const sendAuthorizationResponse: SendAuthorizationResponse;
+//# sourceMappingURL=04-send-authorization-response.d.ts.map

package/lib/typescript/credential/presentation/04-send-authorization-response.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"04-send-authorization-response.d.ts","sourceRoot":"","sources":["../../../../src/credential/presentation/04-send-authorization-response.ts"],"names":[],"mappings":"AAKA,OAAO,EAAa,KAAK,GAAG,EAAE,MAAM,kBAAkB,CAAC;AACvD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAEhE,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,wBAAwB,CAAC;AACxE,OAAO,EAAE,KAAK,YAAY,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,KAAK,CAAC,MAAM,KAAK,CAAC;AAEzB,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAC1E,eAAO,MAAM,qBAAqB;;;;;;;;;EAShC,CAAC;AAkFH,MAAM,MAAM,yBAAyB,GAAG,CACtC,aAAa,EAAE,GAAG,CAAC,gBAAgB,CAAC,CAAC,eAAe,CAAC,EACrD,MAAM,EAAE,GAAG,CAAC,yBAAyB,CAAC,CAAC,QAAQ,CAAC,EAChD,YAAY,EAAE,YAAY,EAAE,iDAAiD;AAC7E,OAAO,EAAE;IACP,yBAAyB,EAAE,MAAM,CAAC;IAClC,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;CACjC,KACE,OAAO,CAAC,qBAAqB,CAAC,CAAC;AAEpC;;;;;;;;;;GAUG;AACH,eAAO,MAAM,yBAAyB,EAAE,yBA0CvC,CAAC"}

package/lib/typescript/credential/presentation/index.d.ts

@@ -0,0 +1,7 @@
+import { startFlowFromQR, type StartFlow } from "./01-start-flow";
+import { evaluateRelyingPartyTrust, type EvaluateRelyingPartyTrust } from "./02-evaluate-rp-trust";
+import { getRequestObject, type GetRequestObject } from "./03-get-request-object";
+import { sendAuthorizationResponse, type SendAuthorizationResponse } from "./04-send-authorization-response";
+export { startFlowFromQR, evaluateRelyingPartyTrust, getRequestObject, sendAuthorizationResponse, };
+export type { StartFlow, EvaluateRelyingPartyTrust, GetRequestObject, SendAuthorizationResponse, };
+//# sourceMappingURL=index.d.ts.map

package/lib/typescript/credential/presentation/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/credential/presentation/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,KAAK,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAClE,OAAO,EACL,yBAAyB,EACzB,KAAK,yBAAyB,EAC/B,MAAM,wBAAwB,CAAC;AAChC,OAAO,EACL,gBAAgB,EAChB,KAAK,gBAAgB,EACtB,MAAM,yBAAyB,CAAC;AACjC,OAAO,EACL,yBAAyB,EACzB,KAAK,yBAAyB,EAC/B,MAAM,kCAAkC,CAAC;AAE1C,OAAO,EACL,eAAe,EACf,yBAAyB,EACzB,gBAAgB,EAChB,yBAAyB,GAC1B,CAAC;AACF,YAAY,EACV,SAAS,EACT,yBAAyB,EACzB,gBAAgB,EAChB,yBAAyB,GAC1B,CAAC"}

package/lib/typescript/credential/presentation/types.d.ts

@@ -0,0 +1,49 @@
+import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import * as z from "zod";
+/**
+ * A pair that associate a tokenized Verified Credential with the claims presented or requested to present.
+ */
+export type Presentation = [
+    string,
+    string[],
+    CryptoContext
+];
+export type RequestObject = z.infer<typeof RequestObject>;
+export declare const RequestObject: z.ZodObject<{
+    iss: z.ZodString;
+    iat: z.ZodNumber;
+    exp: z.ZodNumber;
+    state: z.ZodString;
+    nonce: z.ZodString;
+    response_uri: z.ZodString;
+    response_type: z.ZodLiteral<"vp_token">;
+    response_mode: z.ZodLiteral<"direct_post.jwt">;
+    client_id: z.ZodString;
+    client_id_scheme: z.ZodLiteral<"entity_id">;
+    scope: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    iss: string;
+    iat: number;
+    exp: number;
+    client_id: string;
+    nonce: string;
+    response_type: "vp_token";
+    state: string;
+    response_uri: string;
+    response_mode: "direct_post.jwt";
+    client_id_scheme: "entity_id";
+    scope: string;
+}, {
+    iss: string;
+    iat: number;
+    exp: number;
+    client_id: string;
+    nonce: string;
+    response_type: "vp_token";
+    state: string;
+    response_uri: string;
+    response_mode: "direct_post.jwt";
+    client_id_scheme: "entity_id";
+    scope: string;
+}>;
+//# sourceMappingURL=types.d.ts.map

package/lib/typescript/credential/presentation/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/credential/presentation/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAEjE,OAAO,KAAK,CAAC,MAAM,KAAK,CAAC;AAEzB;;GAEG;AACH,MAAM,MAAM,YAAY,GAAG;IACO,MAAM;IACzB,MAAM,EAAE;IACsC,aAAa;CACzE,CAAC;AAEF,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,aAAa,CAAC,CAAC;AAC1D,eAAO,MAAM,aAAa;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAYxB,CAAC"}

package/lib/typescript/index.d.ts

@@ -1,11 +1,10 @@
 import "react-native-url-polyfill/auto";
+import * as Credential from "./credential";
 import * as PID from "./pid";
-import * as RP from "./rp";
 import * as Errors from "./utils/errors";
 import * as WalletInstanceAttestation from "./wallet-instance-attestation";
-import * as RelyingPartySolution from "./rp";
-import { verifyTrustChain, getEntityConfiguration, getCredentialIssuerEntityConfiguration, getRelyingPartyEntityConfiguration, getTrustAnchorEntityConfiguration, getWalletProviderEntityConfiguration } from "./trust";
-import { RelyingPartyEntityConfiguration, WalletProviderEntityConfiguration, TrustAnchorEntityConfiguration, CredentialIssuerEntityConfiguration } from "./trust/types";
+import * as Trust from "./trust";
+import { AuthorizationDetail, AuthorizationDetails } from "./utils/par";
 import { createCryptoContextFor } from "./utils/crypto";
-export { PID, RP, WalletInstanceAttestation, Errors, RelyingPartySolution, verifyTrustChain, getEntityConfiguration, getCredentialIssuerEntityConfiguration, getRelyingPartyEntityConfiguration, getTrustAnchorEntityConfiguration, getWalletProviderEntityConfiguration, createCryptoContextFor, RelyingPartyEntityConfiguration, WalletProviderEntityConfiguration, TrustAnchorEntityConfiguration, CredentialIssuerEntityConfiguration, };
+export { PID, Credential, WalletInstanceAttestation, Errors, Trust, createCryptoContextFor, AuthorizationDetail, AuthorizationDetails, };
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAEA,OAAO,gCAAgC,CAAC;AAExC,OAAO,KAAK,GAAG,MAAM,OAAO,CAAC;AAC7B,OAAO,KAAK,EAAE,MAAM,MAAM,CAAC;AAC3B,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,yBAAyB,MAAM,+BAA+B,CAAC;AAC3E,OAAO,KAAK,oBAAoB,MAAM,MAAM,CAAC;AAC7C,OAAO,EACL,gBAAgB,EAChB,sBAAsB,EACtB,sCAAsC,EACtC,kCAAkC,EAClC,iCAAiC,EACjC,oCAAoC,EACrC,MAAM,SAAS,CAAC;AACjB,OAAO,EACL,+BAA+B,EAC/B,iCAAiC,EACjC,8BAA8B,EAC9B,mCAAmC,EACpC,MAAM,eAAe,CAAC;AACvB,OAAO,EAAE,sBAAsB,EAAE,MAAM,gBAAgB,CAAC;AAExD,OAAO,EACL,GAAG,EACH,EAAE,EACF,yBAAyB,EACzB,MAAM,EACN,oBAAoB,EACpB,gBAAgB,EAChB,sBAAsB,EACtB,sCAAsC,EACtC,kCAAkC,EAClC,iCAAiC,EACjC,oCAAoC,EACpC,sBAAsB,EACtB,+BAA+B,EAC/B,iCAAiC,EACjC,8BAA8B,EAC9B,mCAAmC,GACpC,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAEA,OAAO,gCAAgC,CAAC;AAExC,OAAO,KAAK,UAAU,MAAM,cAAc,CAAC;AAC3C,OAAO,KAAK,GAAG,MAAM,OAAO,CAAC;AAC7B,OAAO,KAAK,MAAM,MAAM,gBAAgB,CAAC;AACzC,OAAO,KAAK,yBAAyB,MAAM,+BAA+B,CAAC;AAC3E,OAAO,KAAK,KAAK,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gBAAgB,CAAC;AAExD,OAAO,EACL,GAAG,EACH,UAAU,EACV,yBAAyB,EACzB,MAAM,EACN,KAAK,EACL,sBAAsB,EACtB,mBAAmB,EACnB,oBAAoB,GACrB,CAAC"}

package/lib/typescript/pid/index.d.ts

@@ -1,4 +1,3 @@
 import * as SdJwt from "./sd-jwt";
-import * as Issuing from "./issuing";
-export { SdJwt, Issuing };
+export { SdJwt };
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/pid/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/pid/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAClC,OAAO,KAAK,OAAO,MAAM,WAAW,CAAC;AACrC,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/pid/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAClC,OAAO,EAAE,KAAK,EAAE,CAAC"}

package/lib/typescript/sd-jwt/index.d.ts

@@ -49,13 +49,13 @@ export declare const disclose: (token: string, claims: string[]) => Promise<{
  *
  *
  * @param token The encoded token that represents a valid sd-jwt for verifiable credentials
- * @param publicKey The public key to validate the signature
+ * @param publicKey The single public key or an array of public keys to validate the signature.
  * @param schema Schema to use to parse the SD-JWT
  *
  * @returns The parsed SD-JWT token and the parsed disclosures
  *
  */
-export declare const verify: <S extends z.AnyZodObject>(token: string, publicKey: JWK, schema: S) => Promise<{
+export declare const verify: <S extends z.AnyZodObject>(token: string, publicKey: JWK | JWK[], schema: S) => Promise<{
     sdJwt: z.TypeOf<S>;
     disclosures: Disclosure[];
 }>;

package/lib/typescript/sd-jwt/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/sd-jwt/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAOxB,OAAO,EAAE,UAAU,EAAY,KAAK,qBAAqB,EAAE,MAAM,SAAS,CAAC;AAE3E,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,cAAc,CAAC;AAWxC;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,MAAM,oCACV,MAAM;;iBAIA,qBAAqB,EAAE;CAsBrC,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,QAAQ,UACZ,MAAM,UACL,MAAM,EAAE;WACE,MAAM;WAAS;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,EAAE;EA8CnE,CAAC;AAEF;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,MAAM,oCACV,MAAM,aACF,GAAG;;iBAE6B,UAAU,EAAE;EAwBxD,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/sd-jwt/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAOxB,OAAO,EAAE,UAAU,EAAY,KAAK,qBAAqB,EAAE,MAAM,SAAS,CAAC;AAE3E,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,cAAc,CAAC;AAWxC;;;;;;;;;;;;;GAaG;AACH,eAAO,MAAM,MAAM,oCACV,MAAM;;iBAIA,qBAAqB,EAAE;CAsBrC,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,eAAO,MAAM,QAAQ,UACZ,MAAM,UACL,MAAM,EAAE;WACE,MAAM;WAAS;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,EAAE;EA8CnE,CAAC;AAEF;;;;;;;;;;;;;;;GAeG;AACH,eAAO,MAAM,MAAM,oCACV,MAAM,aACF,GAAG,GAAG,GAAG,EAAE;;iBAEqB,UAAU,EAAE;EAwBxD,CAAC"}

package/lib/typescript/sd-jwt/types.d.ts

@@ -176,7 +176,7 @@ export declare const SdJwt4VC: z.ZodObject<{
                 x5u?: string | undefined;
             };
         }>;
-        type: z.ZodLiteral<"PersonIdentificationData">;
+        type: z.ZodString;
         verified_claims: z.ZodObject<{
             verification: z.ZodIntersection<z.ZodObject<{
                 trust_framework: z.ZodLiteral<"eidas">;
@@ -224,7 +224,7 @@ export declare const SdJwt4VC: z.ZodObject<{
         }>;
         _sd_alg: z.ZodLiteral<"sha-256">;
     }, "strip", z.ZodTypeAny, {
-        type: "PersonIdentificationData";
+        type: string;
         status: string;
         iss: string;
         sub: string;
@@ -270,7 +270,7 @@ export declare const SdJwt4VC: z.ZodObject<{
         };
         _sd_alg: "sha-256";
     }, {
-        type: "PersonIdentificationData";
+        type: string;
         status: string;
         iss: string;
         sub: string;
@@ -324,7 +324,7 @@ export declare const SdJwt4VC: z.ZodObject<{
         kid?: string | undefined;
     };
     payload: {
-        type: "PersonIdentificationData";
+        type: string;
         status: string;
         iss: string;
         sub: string;
@@ -378,7 +378,7 @@ export declare const SdJwt4VC: z.ZodObject<{
         kid?: string | undefined;
     };
     payload: {
-        type: "PersonIdentificationData";
+        type: string;
         status: string;
         iss: string;
         sub: string;

package/lib/typescript/trust/chain.d.ts

@@ -7,11 +7,20 @@ type ParsedToken = {
 /**
  * Validates a provided trust chain against a known trust
  *
- * @param trustAnchorEntity
- * @param chain
+ * @param trustAnchorEntity The entity configuration of the known trust anchor
+ * @param chain The chain of statements to be validate
  * @returns The list of parsed token representing the chain
  * @throws {IoWalletError} If the chain is not valid
  */
-export declare function verifyTrustChain(trustAnchorEntity: TrustAnchorEntityConfiguration, chain: string[]): Promise<ParsedToken[]>;
+export declare function validateTrustChain(trustAnchorEntity: TrustAnchorEntityConfiguration, chain: string[]): Promise<ParsedToken[]>;
+/**
+ * Given a trust chain, obtain a new trust chain by fetching each element's fresh version
+ *
+ * @param chain The original chain
+ * @param appFetch (optional) fetch api implementation
+ * @returns A list of signed token that reprensent the trust chain, in the same order of the provided chain
+ * @throws When an element of the chain fails to parse
+ */
+export declare function renewTrustChain(chain: string[], appFetch?: GlobalFetch["fetch"]): Promise<string[]>;
 export {};
 //# sourceMappingURL=chain.d.ts.map

package/lib/typescript/trust/chain.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"chain.d.ts","sourceRoot":"","sources":["../../../src/trust/chain.ts"],"names":[],"mappings":"AAIA,OAAO,EAGL,8BAA8B,EAC/B,MAAM,SAAS,CAAC;AAIjB,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kDAAkD,CAAC;AAExF,KAAK,WAAW,GAAG;IACjB,MAAM,EAAE,eAAe,CAAC,iBAAiB,CAAC,CAAC;IAC3C,OAAO,EAAE,eAAe,CAAC,SAAS,CAAC,CAAC;CACrC,CAAC;AAiCF;;;;;;;GAOG;AACH,wBAAsB,gBAAgB,CACpC,iBAAiB,EAAE,8BAA8B,EACjD,KAAK,EAAE,MAAM,EAAE,GACd,OAAO,CAAC,WAAW,EAAE,CAAC,CA+CxB"}
+{"version":3,"file":"chain.d.ts","sourceRoot":"","sources":["../../../src/trust/chain.ts"],"names":[],"mappings":"AAIA,OAAO,EAGL,8BAA8B,EAC/B,MAAM,SAAS,CAAC;AAIjB,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kDAAkD,CAAC;AAGxF,KAAK,WAAW,GAAG;IACjB,MAAM,EAAE,eAAe,CAAC,iBAAiB,CAAC,CAAC;IAC3C,OAAO,EAAE,eAAe,CAAC,SAAS,CAAC,CAAC;CACrC,CAAC;AAiCF;;;;;;;GAOG;AACH,wBAAsB,kBAAkB,CACtC,iBAAiB,EAAE,8BAA8B,EACjD,KAAK,EAAE,MAAM,EAAE,GACd,OAAO,CAAC,WAAW,EAAE,CAAC,CA+CxB;AAED;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAC7B,KAAK,EAAE,MAAM,EAAE,EACf,QAAQ,GAAE,WAAW,CAAC,OAAO,CAAS,qBA6BvC"}

package/lib/typescript/trust/index.d.ts

@@ -1,6 +1,31 @@
-import { WalletProviderEntityConfiguration, TrustAnchorEntityConfiguration, CredentialIssuerEntityConfiguration, RelyingPartyEntityConfiguration, EntityConfiguration } from "./types";
-import { verifyTrustChain } from "./chain";
-export { verifyTrustChain };
+import { WalletProviderEntityConfiguration, TrustAnchorEntityConfiguration, CredentialIssuerEntityConfiguration, RelyingPartyEntityConfiguration, EntityConfiguration, EntityStatement } from "./types";
+import { validateTrustChain } from "./chain";
+export type { WalletProviderEntityConfiguration, TrustAnchorEntityConfiguration, CredentialIssuerEntityConfiguration, RelyingPartyEntityConfiguration, EntityConfiguration, EntityStatement, };
+/**
+ * Verify a given trust chain is actually valid.
+ * It can handle fast chain renewal, which means we try to fetch a fresh version of each statement.
+ *
+ * @param trustAnchorEntity The entity configuration of the known trust anchor
+ * @param chain The chain of statements to be validate
+ * @param options.renewOnFail Whether to renew the provided chain if the validation fails at first. Default: true
+ * @param options.appFetch Fetch api implementation. Default: the built-in implementation
+ * @returns The result of the chain validation
+ * @throws {IoWalletError} When either validation or renewal fail
+ */
+export declare function verifyTrustChain(trustAnchorEntity: TrustAnchorEntityConfiguration, chain: string[], { appFetch, renewOnFail, }?: {
+    appFetch?: GlobalFetch["fetch"];
+    renewOnFail?: boolean;
+}): Promise<ReturnType<typeof validateTrustChain>>;
+/**
+ * Fetch the signed entity configuration token for an entity
+ *
+ * @param entityBaseUrl The url of the entity to fetch
+ * @param param.appFetch (optional) fetch api implemention
+ * @returns The signed Entity Configuration token
+ */
+export declare function getSignedEntityConfiguration(entityBaseUrl: string, { appFetch, }?: {
+    appFetch?: GlobalFetch["fetch"];
+}): Promise<string>;
 /**
  * Fetch and parse the entity configuration document for a given federation entity.
  * This is an inner method to serve public interfaces.
@@ -253,9 +278,7 @@ export declare const getCredentialIssuerEntityConfiguration: (entityBaseUrl: Par
                 dpop_signing_alg_values_supported: string[];
                 credential_endpoint: string;
                 credentials_supported: {
-                    format: "vc+sd-jwt";
-                    cryptographic_binding_methods_supported: string[];
-                    cryptographic_suites_supported: string[];
+                    id: string;
                     display: {
                         name: string;
                         locale: string;
@@ -266,8 +289,53 @@ export declare const getCredentialIssuerEntityConfiguration: (entityBaseUrl: Par
                         background_color: string;
                         text_color: string;
                     }[];
+                    format: "vc+sd-jwt";
+                    cryptographic_binding_methods_supported: string[];
+                    cryptographic_suites_supported: string[];
+                    credential_definition: {
+                        type: string[];
+                        credentialSubject: Record<string, {
+                            mandatory: boolean;
+                            display: {
+                                name: string;
+                                locale: string;
+                            }[];
+                        }>;
+                    };
                 }[];
             };
+            wallet_relying_party?: {
+                jwks: {
+                    keys: {
+                        kty: "RSA" | "EC";
+                        alg?: string | undefined;
+                        crv?: string | undefined;
+                        d?: string | undefined;
+                        dp?: string | undefined;
+                        dq?: string | undefined;
+                        e?: string | undefined;
+                        ext?: boolean | undefined;
+                        k?: string | undefined;
+                        key_ops?: string[] | undefined;
+                        kid?: string | undefined;
+                        n?: string | undefined;
+                        p?: string | undefined;
+                        q?: string | undefined;
+                        qi?: string | undefined;
+                        use?: string | undefined;
+                        x?: string | undefined;
+                        y?: string | undefined;
+                        x5c?: string[] | undefined;
+                        x5t?: string | undefined;
+                        "x5t#S256"?: string | undefined;
+                        x5u?: string | undefined;
+                    }[];
+                };
+                application_type?: string | undefined;
+                client_id?: string | undefined;
+                client_name?: string | undefined;
+                contacts?: string[] | undefined;
+            } | undefined;
         };
     };
 }>;
@@ -422,8 +490,6 @@ export declare const getRelyingPartyEntityConfiguration: (entityBaseUrl: Paramet
                 client_id?: string | undefined;
                 client_name?: string | undefined;
                 contacts?: string[] | undefined;
-            } & {
-                [k: string]: unknown;
             };
         };
     };
@@ -607,9 +673,7 @@ export declare const getEntityConfiguration: (entityBaseUrl: Parameters<typeof f
                 dpop_signing_alg_values_supported: string[];
                 credential_endpoint: string;
                 credentials_supported: {
-                    format: "vc+sd-jwt";
-                    cryptographic_binding_methods_supported: string[];
-                    cryptographic_suites_supported: string[];
+                    id: string;
                     display: {
                         name: string;
                         locale: string;
@@ -620,8 +684,53 @@ export declare const getEntityConfiguration: (entityBaseUrl: Parameters<typeof f
                         background_color: string;
                         text_color: string;
                     }[];
+                    format: "vc+sd-jwt";
+                    cryptographic_binding_methods_supported: string[];
+                    cryptographic_suites_supported: string[];
+                    credential_definition: {
+                        type: string[];
+                        credentialSubject: Record<string, {
+                            mandatory: boolean;
+                            display: {
+                                name: string;
+                                locale: string;
+                            }[];
+                        }>;
+                    };
                 }[];
             };
+            wallet_relying_party?: {
+                jwks: {
+                    keys: {
+                        kty: "RSA" | "EC";
+                        alg?: string | undefined;
+                        crv?: string | undefined;
+                        d?: string | undefined;
+                        dp?: string | undefined;
+                        dq?: string | undefined;
+                        e?: string | undefined;
+                        ext?: boolean | undefined;
+                        k?: string | undefined;
+                        key_ops?: string[] | undefined;
+                        kid?: string | undefined;
+                        n?: string | undefined;
+                        p?: string | undefined;
+                        q?: string | undefined;
+                        qi?: string | undefined;
+                        use?: string | undefined;
+                        x?: string | undefined;
+                        y?: string | undefined;
+                        x5c?: string[] | undefined;
+                        x5t?: string | undefined;
+                        "x5t#S256"?: string | undefined;
+                        x5u?: string | undefined;
+                    }[];
+                };
+                application_type?: string | undefined;
+                client_id?: string | undefined;
+                client_name?: string | undefined;
+                contacts?: string[] | undefined;
+            } | undefined;
         };
     };
 }) | ({
@@ -685,7 +794,7 @@ export declare const getEntityConfiguration: (entityBaseUrl: Parameters<typeof f
 } & {
     payload: {
         metadata: {
-            wallet_provider: {
+            wallet_relying_party: {
                 jwks: {
                     keys: {
                         kty: "RSA" | "EC";
@@ -712,13 +821,10 @@ export declare const getEntityConfiguration: (entityBaseUrl: Parameters<typeof f
                         x5u?: string | undefined;
                     }[];
                 };
-                token_endpoint: string;
-                grant_types_supported: string[];
-                token_endpoint_auth_methods_supported: string[];
-                token_endpoint_auth_signing_alg_values_supported: string[];
-                attested_security_context_values_supported?: string[] | undefined;
-            } & {
-                [k: string]: unknown;
+                application_type?: string | undefined;
+                client_id?: string | undefined;
+                client_name?: string | undefined;
+                contacts?: string[] | undefined;
             };
         };
     };
@@ -783,7 +889,7 @@ export declare const getEntityConfiguration: (entityBaseUrl: Parameters<typeof f
 } & {
     payload: {
         metadata: {
-            wallet_relying_party: {
+            wallet_provider: {
                 jwks: {
                     keys: {
                         kty: "RSA" | "EC";
@@ -810,14 +916,82 @@ export declare const getEntityConfiguration: (entityBaseUrl: Parameters<typeof f
                         x5u?: string | undefined;
                     }[];
                 };
-                application_type?: string | undefined;
-                client_id?: string | undefined;
-                client_name?: string | undefined;
-                contacts?: string[] | undefined;
+                token_endpoint: string;
+                grant_types_supported: string[];
+                token_endpoint_auth_methods_supported: string[];
+                token_endpoint_auth_signing_alg_values_supported: string[];
+                attested_security_context_values_supported?: string[] | undefined;
             } & {
                 [k: string]: unknown;
             };
         };
     };
 })>;
+/**
+ * Fetch and parse the entity statement document for a given federation entity.
+ *
+ * @param accreditationBodyBaseUrl The base url of the accreditaion body which holds and signs the required entity statement
+ * @param subordinatedEntityBaseUrl The url that identifies the subordinate entity
+ * @param options.appFetch An optional instance of the http client to be used.
+ * @returns The parsed entity configuration object
+ * @throws {IoWalletError} If the http request fails
+ * @throws Parse error if the document is not in the expected shape.
+ */
+export declare function getEntityStatement(accreditationBodyBaseUrl: string, subordinatedEntityBaseUrl: string, { appFetch, }?: {
+    appFetch?: GlobalFetch["fetch"];
+}): Promise<{
+    header: {
+        alg: string;
+        kid: string;
+        typ: "entity-statement+jwt";
+    };
+    payload: {
+        iss: string;
+        sub: string;
+        iat: number;
+        exp: number;
+        jwks: {
+            keys: {
+                kty: "RSA" | "EC";
+                alg?: string | undefined;
+                crv?: string | undefined;
+                d?: string | undefined;
+                dp?: string | undefined;
+                dq?: string | undefined;
+                e?: string | undefined;
+                ext?: boolean | undefined;
+                k?: string | undefined;
+                key_ops?: string[] | undefined;
+                kid?: string | undefined;
+                n?: string | undefined;
+                p?: string | undefined;
+                q?: string | undefined;
+                qi?: string | undefined;
+                use?: string | undefined;
+                x?: string | undefined;
+                y?: string | undefined;
+                x5c?: string[] | undefined;
+                x5t?: string | undefined;
+                "x5t#S256"?: string | undefined;
+                x5u?: string | undefined;
+            }[];
+        };
+        trust_marks: {
+            id: string;
+            trust_mark: string;
+        }[];
+    };
+}>;
+/**
+ * Fetch the entity statement document for a given federation entity.
+ *
+ * @param accreditationBodyBaseUrl The base url of the accreditaion body which holds and signs the required entity statement
+ * @param subordinatedEntityBaseUrl The url that identifies the subordinate entity
+ * @param options.appFetch An optional instance of the http client to be used.
+ * @returns The signed entity statement token
+ * @throws {IoWalletError} If the http request fails
+ */
+export declare function getSignedEntityStatement(accreditationBodyBaseUrl: string, subordinatedEntityBaseUrl: string, { appFetch, }?: {
+    appFetch?: GlobalFetch["fetch"];
+}): Promise<string>;
 //# sourceMappingURL=index.d.ts.map