npm - @pagopa/io-react-native-wallet - Versions diffs - 1.5.0 → 1.6.0 - Mend

@pagopa/io-react-native-wallet 1.5.0 → 1.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (58) hide show

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@pagopa/io-react-native-wallet",
-  "version": "1.5.0",
+  "version": "1.6.0",
   "description": "Provide data structures, helpers and API for IO Wallet",
   "main": "lib/commonjs/index",
   "module": "lib/module/index",
@@ -53,29 +53,29 @@
     "registry": "https://registry.npmjs.org/"
   },
   "devDependencies": {
-    "@pagopa/eslint-config": "^3.0.0",
     "@pagopa/io-react-native-crypto": "^0.2.3",
     "@pagopa/io-react-native-jwt": "^2.1.0",
-    "@pagopa/io-react-native-cbor": "^1.0.0",
-    "@react-native/eslint-config": "^0.72.2",
+    "@pagopa/io-react-native-cbor": "^1.2.0",
+    "@react-native/eslint-config": "^0.75.5",
     "@rushstack/eslint-patch": "^1.3.2",
     "@types/jest": "^28.1.2",
-    "@types/react": "^18.0.24",
+    "@types/react": "^18.2.6",
     "@types/react-native": "0.70.0",
+    "@types/url-parse": "^1.4.11",
     "del-cli": "^5.0.0",
     "eslint": "^8.4.1",
-    "eslint-config-prettier": "^10.0.1",
+    "eslint-plugin-prettier": "^5.2.3",
     "jest": "^28.1.1",
     "pod-install": "^0.1.0",
-    "prettier": "^2.0.5",
-    "react": "18.2.0",
-    "react-native": "0.72.14",
+    "prettier": "^3.5.3",
+    "react": "18.3.1",
+    "react-native": "0.75.5",
     "react-native-builder-bob": "^0.20.0",
     "typed-openapi": "^0.4.1",
-    "typescript": "^5.0.2"
+    "typescript": "5.0.4"
   },
   "resolutions": {
-    "@types/react": "^18.0.24"
+    "@types/react": "^18.2.6"
   },
   "peerDependencies": {
     "@pagopa/io-react-native-crypto": "*",
@@ -93,6 +93,9 @@
     "modulePathIgnorePatterns": [
       "<rootDir>/example/node_modules",
       "<rootDir>/lib/"
+    ],
+    "transformIgnorePatterns": [
+      "node_modules/(?!(jest-)?@react-native|react-native|uuid)"
     ]
   },
   "react-native-builder-bob": {
@@ -119,7 +122,6 @@
     "parse-url": "^9.2.0",
     "react-native-url-polyfill": "^2.0.0",
     "react-native-uuid": "^2.0.1",
-    "yarn.lock": "^0.0.1-security",
     "zod": "^3.21.4"
   }
 }

package/src/credential/issuance/07-verify-and-parse-credential.ts CHANGED Viewed

@@ -19,6 +19,7 @@ export type VerifyAndParseCredential = (
   issuerConf: Out<GetIssuerConfig>["issuerConf"],
   credential: Out<ObtainCredential>["credential"],
   format: Out<ObtainCredential>["format"],
+  credentialType: string,
   context: {
     credentialCryptoContext: CryptoContext;
     /**
@@ -60,7 +61,7 @@ type DecodedSdJwtCredential = Out<typeof verifySdJwt> & {
 };
 type DecodedMDocCredential = Out<typeof verifyMdoc> & {
-  mDoc: CBOR.MDOC;
+  issuerSigned: CBOR.IssuerSigned;
 };
 const parseCredentialSdJwt = (
@@ -157,10 +158,11 @@ const parseCredentialSdJwt = (
 const parseCredentialMDoc = (
   // the list of supported credentials, as defined in the issuer configuration
   credentials_supported: Out<GetIssuerConfig>["issuerConf"]["credential_configurations_supported"],
-  { mDoc }: DecodedMDocCredential,
+  credential_type: string,
+  { issuerSigned }: DecodedMDocCredential,
   includeUndefinedAttributes: boolean = false
 ): ParsedCredential => {
-  const credentialSubject = credentials_supported[mDoc.docType];
+  const credentialSubject = credentials_supported[credential_type];
   if (!credentialSubject) {
     throw new IoWalletError("Credential type not supported by the issuer");
@@ -184,24 +186,24 @@ const parseCredentialMDoc = (
         [namespace, claimNameKey, definition] as [
           string,
           string,
-          CredentialClaim
+          CredentialClaim,
         ]
     )
   );
-  if (!mDoc.issuerSigned.nameSpaces) {
+  if (!issuerSigned.nameSpaces) {
     throw new IoWalletError("Missing claims in the credential");
   }
   const flatNamespaces: [string, string, string][] = Object.entries(
-    mDoc.issuerSigned.nameSpaces
+    issuerSigned.nameSpaces
   ).flatMap(([namespace, values]) =>
     values.map(
       (v) =>
         [namespace, v.elementIdentifier, v.elementValue] as [
           string,
           string,
-          string
+          string,
         ]
     )
   );
@@ -314,24 +316,36 @@ async function verifyCredentialMDoc(
   issuerKeys: JWK[],
   holderBindingContext: CryptoContext
 ): Promise<DecodedMDocCredential> {
-  const [decodedCredential] =
+  /**
+   * For the moment, being that issues in the crypto key generation
+   * have been found on Android, the check for the deviceKey inside
+   * of the mDoc is skipped, so we are not interested in the holderBindingKey
+   */
+  const [decodedCredential, _] =
     // parallel for optimization
     await Promise.all([
       verifyMdoc(rawCredential, issuerKeys),
       holderBindingContext.getPublicKey(),
     ]);
-  // TODO Implement the holder binding verification for MDOC
-  // Get only the first decoded credential
   if (!decodedCredential) {
     throw new IoWalletError("No MDOC credentials found!");
   }
-  return {
-    mDoc: decodedCredential.mDoc,
-  };
+  /**
+   * For the moment, being that issues in the crypto key generation
+   * have been found on Android, the check for the deviceKey inside
+   * of the mDoc is skipped.
+   */
+  //const key = decodedCredential.mDoc.issuerSigned.issuerAuth.payload.deviceKeyInfo.deviceKey;
+  //
+  //if (!compareKeysByThumbprint(key, holderBindingKey as PublicKey)) {
+  //  throw new IoWalletError(
+  //    `Failed to verify holder binding, holder binding key and mDoc deviceKey don't match`
+  //  );
+  //}
+  return decodedCredential;
 }
 // utility type that specialize VerifyAndParseCredential for given format
@@ -339,13 +353,15 @@ type WithFormat<Format extends Parameters<VerifyAndParseCredential>[2]> = (
   _0: Parameters<VerifyAndParseCredential>[0],
   _1: Parameters<VerifyAndParseCredential>[1],
   _2: Format,
-  _3: Parameters<VerifyAndParseCredential>[3]
+  _3: Parameters<VerifyAndParseCredential>[3],
+  _4: Parameters<VerifyAndParseCredential>[4]
 ) => ReturnType<VerifyAndParseCredential>;
 const verifyAndParseCredentialSdJwt: WithFormat<"vc+sd-jwt"> = async (
   issuerConf,
   credential,
   _,
+  __,
   {
     credentialCryptoContext,
     ignoreMissingAttributes,
@@ -381,6 +397,7 @@ const verifyAndParseCredentialMDoc: WithFormat<"mso_mdoc"> = async (
   issuerConf,
   credential,
   _,
+  credentialType,
   { credentialCryptoContext, ignoreMissingAttributes }
 ) => {
   const decoded = await verifyCredentialMDoc(
@@ -391,6 +408,7 @@ const verifyAndParseCredentialMDoc: WithFormat<"mso_mdoc"> = async (
   const parsedCredential = parseCredentialMDoc(
     issuerConf.credential_configurations_supported,
+    credentialType,
     decoded,
     ignoreMissingAttributes
   );
@@ -432,6 +450,7 @@ export const verifyAndParseCredential: VerifyAndParseCredential = async (
   issuerConf,
   credential,
   format,
+  credentialType,
   context
 ) => {
   if (format === "vc+sd-jwt") {
@@ -439,6 +458,7 @@ export const verifyAndParseCredential: VerifyAndParseCredential = async (
       issuerConf,
       credential,
       format,
+      credentialType,
       context
     );
   }
@@ -447,6 +467,7 @@ export const verifyAndParseCredential: VerifyAndParseCredential = async (
       issuerConf,
       credential,
       format,
+      credentialType,
       context
     );
   }