@pagopa/io-react-native-wallet 2.5.0 → 3.0.0

package/lib/module/credential/presentation/07-evaluate-input-descriptor.js

@@ -1,296 +0,0 @@
-import { decode, prepareVpToken } from "../../sd-jwt";
-import { JSONPath } from "jsonpath-plus";
-import { CredentialsNotFoundError, MissingDataError } from "./errors";
-import Ajv from "ajv";
-const ajv = new Ajv({
-  allErrors: true
-});
-const INDEX_CLAIM_NAME = 1;
-
-/**
- * @deprecated Use `prepareRemotePresentations` from DCQL
- */
-
-/**
- * Transforms an array of DisclosureWithEncoded objects into a key-value map.
- * @param disclosures - An array of DisclosureWithEncoded, each containing a decoded property with [?, claimName, claimValue].
- * @returns An object mapping claim names to their corresponding values.
- */
-const mapDisclosuresToObject = disclosures => {
-  return disclosures.reduce((obj, _ref) => {
-    let {
-      decoded
-    } = _ref;
-    const [, claimName, claimValue] = decoded;
-    obj[claimName] = claimValue;
-    return obj;
-  }, {});
-};
-
-/**
- * Finds a claim within the payload based on provided JSONPath expressions.
- * @param paths - An array of JSONPath expressions to search for in the payload.
- * @param payload - The object to search within using JSONPath.
- * @returns A tuple with the first matched JSONPath and its corresponding value, or [undefined, undefined] if not found.
- */
-const findMatchedClaim = (paths, payload) => {
-  let matchedPath;
-  let matchedValue;
-  paths.some(singlePath => {
-    try {
-      const result = JSONPath({
-        path: singlePath,
-        json: payload
-      });
-      if (result.length > 0) {
-        matchedPath = singlePath;
-        matchedValue = result[0];
-        return true;
-      }
-    } catch (error) {
-      throw new MissingDataError(`JSONPath for "${singlePath}" does not match the provided payload.`);
-    }
-    return false;
-  });
-  return [matchedPath, matchedValue];
-};
-
-/**
- * Extracts the claim name from a path that can be in one of the following formats:
- * 1. $.propertyName
- * 2. $["propertyName"] or $['propertyName']
- *
- * @param path - The path string containing the claim reference.
- * @returns The extracted claim name if matched; otherwise, throws an exception.
- */
-const extractClaimName = path => {
-  // Define a regular expression that matches both formats:
-  // 1. $.propertyName
-  // 2. $["propertyName"] or $['propertyName']
-  const regex = /^\$\.(\w+)$|^\$\[(?:'|")(\w+)(?:'|")\]$/;
-  const match = path.match(regex);
-  if (match) {
-    // match[1] corresponds to the first capture group (\w+) after $.
-    // match[2] corresponds to the second capture group (\w+) inside [""] or ['']
-    return match[1] || match[2];
-  }
-
-  // If the input doesn't match any of the expected formats, return null
-
-  throw new Error(`Invalid input format: "${path}". Expected formats are "$.propertyName", "$['propertyName']", or '$["propertyName"]'.`);
-};
-
-/**
- * Evaluates an InputDescriptor for an SD-JWT-based verifiable credential.
- *
- * - Checks each field in the InputDescriptor against the provided `payloadCredential`
- *   and `disclosures` (selectively disclosed claims).
- * - Validates whether required fields are present (unless marked optional)
- *   and match any specified JSONPath.
- * - If a field includes a JSON Schema filter, validates the claim value against that schema.
- * - Enforces `limit_disclosure` rules by returning only disclosures, required and optional, matching the specified fields
- *   if set to "required". Otherwise also return the array unrequestedDisclosures with disclosures which can be passed for a particular use case.
- * - Throws an error if a required field is invalid or missing.
- *
- * @param inputDescriptor - Describes constraints (fields, filters, etc.) that must be satisfied.
- * @param payloadCredential - The credential payload to check against.
- * @param disclosures - An array of DisclosureWithEncoded objects representing selective disclosures.
- * @returns A filtered list of disclosures satisfying the descriptor constraints, or throws an error if not.
- * @throws Will throw an error if any required constraint fails or if JSONPath lookups are invalid.
- */
-export const evaluateInputDescriptorForSdJwt4VC = (inputDescriptor, payloadCredential, disclosures) => {
-  var _inputDescriptor$cons;
-  if (!(inputDescriptor !== null && inputDescriptor !== void 0 && (_inputDescriptor$cons = inputDescriptor.constraints) !== null && _inputDescriptor$cons !== void 0 && _inputDescriptor$cons.fields)) {
-    // No validation, all field are optional
-    return {
-      requiredDisclosures: [],
-      optionalDisclosures: [],
-      unrequestedDisclosures: disclosures
-    };
-  }
-  const requiredClaimNames = [];
-  const optionalClaimNames = [];
-
-  // Transform disclosures to find claim using JSONPath
-  const disclosuresAsPayload = mapDisclosuresToObject(disclosures);
-
-  // For each field, we need at least one matching path
-  // If we succeed, we push the matched disclosure in matchedDisclosures and stop checking further paths
-  const allFieldsValid = inputDescriptor.constraints.fields.every(field => {
-    // For Potential profile, selectively disclosed claims will always be built as an individual object property, by using a name-value pair.
-    // Hence that selective claim for array element and recursive disclosures are not supported by Potential for the first iteration of Piloting.
-    // We need to check inside disclosures or inside credential payload. Example path: "$.given_name"
-    let [matchedPath, matchedValue] = findMatchedClaim(field.path, disclosuresAsPayload);
-    if (!matchedPath) {
-      [matchedPath, matchedValue] = findMatchedClaim(field.path, payloadCredential);
-      if (!matchedPath) {
-        // Path could be optional, in this case no need to validate! continue to next field
-        return field === null || field === void 0 ? void 0 : field.optional;
-      }
-    } else {
-      // if match a disclouse we save which is required or optional
-      const claimName = extractClaimName(matchedPath);
-      if (claimName) {
-        (field !== null && field !== void 0 && field.optional ? optionalClaimNames : requiredClaimNames).push(claimName);
-      }
-    }
-
-    // FILTER validation
-    // If this field has a "filter" (JSON Schema), validate the claimValue
-    if (field.filter) {
-      try {
-        const validateSchema = ajv.compile(field.filter);
-        if (!validateSchema(matchedValue)) {
-          throw new MissingDataError(`Claim value "${matchedValue}" for path "${matchedPath}" does not match the provided JSON Schema.`);
-        }
-      } catch (error) {
-        return false;
-      }
-    }
-    // Submission Requirements validation
-    // TODO: [EUDIW-216] Read rule value if “all” o “pick” and validate
-
-    return true;
-  });
-  if (!allFieldsValid) {
-    throw new MissingDataError("Credential validation failed: Required fields are missing or do not match the input descriptor.");
-  }
-
-  // Categorizes disclosures into required and optional based on claim names and disclosure constraints.
-
-  const requiredDisclosures = disclosures.filter(disclosure => requiredClaimNames.includes(disclosure.decoded[INDEX_CLAIM_NAME]));
-  const optionalDisclosures = disclosures.filter(disclosure => optionalClaimNames.includes(disclosure.decoded[INDEX_CLAIM_NAME]));
-  const isNotLimitDisclosure = !(inputDescriptor.constraints.limit_disclosure === "required");
-  const unrequestedDisclosures = isNotLimitDisclosure ? disclosures.filter(disclosure => !optionalClaimNames.includes(disclosure.decoded[INDEX_CLAIM_NAME]) && !requiredClaimNames.includes(disclosure.decoded[INDEX_CLAIM_NAME])) : [];
-  return {
-    requiredDisclosures,
-    optionalDisclosures,
-    unrequestedDisclosures
-  };
-};
-/**
- * Finds the first credential that satisfies the input descriptor constraints.
- * @param inputDescriptor The input descriptor to evaluate.
- * @param decodedSdJwtCredentials An array of decoded SD-JWT credentials.
- * @returns An object containing the matched evaluation, keyTag, and credential.
- */
-export const findCredentialSdJwt = (inputDescriptor, decodedSdJwtCredentials) => {
-  for (const {
-    cryptoContext,
-    credential,
-    sdJwt,
-    disclosures
-  } of decodedSdJwtCredentials) {
-    try {
-      const evaluatedDisclosure = evaluateInputDescriptorForSdJwt4VC(inputDescriptor, sdJwt.payload, disclosures);
-      return {
-        matchedEvaluation: evaluatedDisclosure,
-        cryptoContext,
-        matchedCredential: credential
-      };
-    } catch {
-      // skip to next credential
-      continue;
-    }
-  }
-  throw new CredentialsNotFoundError([{
-    id: "",
-    reason: "None of the vc+sd-jwt credentials satisfy the requirements."
-  }]);
-};
-
-/**
- * Evaluates multiple input descriptors against provided SD-JWT and MDOC credentials.
- *
- * For each input descriptor, this function:
- * - Checks the credential format.
- * - Decodes the credential.
- * - Evaluates the descriptor using the associated disclosures.
- *
- * @param inputDescriptors - An array of input descriptors.
- * @param credentialsSdJwt - An array of tuples containing keyTag and SD-JWT credential.
- * @returns An array of objects, each containing the evaluated disclosures,
- *          the input descriptor, the credential, and the keyTag.
- * @throws {CredentialNotFoundError} When the credential format is unsupported.
- */
-export const evaluateInputDescriptors = async (inputDescriptors, credentialsSdJwt) => {
-  // We need decode SD-JWT credentials for evaluation
-  const decodedSdJwtCredentials = (credentialsSdJwt === null || credentialsSdJwt === void 0 ? void 0 : credentialsSdJwt.map(_ref2 => {
-    let [cryptoContext, credential] = _ref2;
-    const {
-      sdJwt,
-      disclosures
-    } = decode(credential);
-    return {
-      cryptoContext,
-      credential,
-      sdJwt,
-      disclosures
-    };
-  })) || [];
-  return Promise.all(inputDescriptors.map(async descriptor => {
-    var _descriptor$format;
-    if ((_descriptor$format = descriptor.format) !== null && _descriptor$format !== void 0 && _descriptor$format["dc+sd-jwt"]) {
-      if (!decodedSdJwtCredentials.length) {
-        throw new CredentialsNotFoundError([{
-          id: descriptor.id,
-          reason: "vc+sd-jwt credential is not supported."
-        }]);
-      }
-      const {
-        matchedEvaluation,
-        cryptoContext,
-        matchedCredential
-      } = findCredentialSdJwt(descriptor, decodedSdJwtCredentials);
-      return {
-        evaluatedDisclosure: matchedEvaluation,
-        inputDescriptor: descriptor,
-        credential: matchedCredential,
-        cryptoContext
-      };
-    }
-    throw new CredentialsNotFoundError([{
-      id: descriptor.id,
-      reason: `${descriptor.format} format is not supported.`
-    }]);
-  }));
-};
-
-/**
- * Prepares remote presentations for a set of credentials based on input descriptors.
- *
- * For each credential and its corresponding input descriptor, this function:
- * - Validates the credential format.
- * - Generates a verifiable presentation token (vpToken) using the provided nonce and client identifier.
- *
- * @deprecated Use `prepareRemotePresentations` from DCQL
- *
- * @param credentialAndDescriptors - An array containing objects with requested claims,
- *                                   input descriptor, credential, and keyTag.
- * @param nonce - A unique nonce for the verifiable presentation token.
- * @param client_id - The client identifier.
- * @returns A promise that resolves to an array of RemotePresentation objects.
- * @throws {CredentialNotFoundError} When the credential format is unsupported.
- */
-export const prepareLegacyRemotePresentations = async (credentialAndDescriptors, nonce, client_id) => {
-  return Promise.all(credentialAndDescriptors.map(async item => {
-    var _descriptor$format2;
-    const descriptor = item.inputDescriptor;
-    if ((_descriptor$format2 = descriptor.format) !== null && _descriptor$format2 !== void 0 && _descriptor$format2["dc+sd-jwt"]) {
-      const {
-        vp_token
-      } = await prepareVpToken(nonce, client_id, [item.credential, item.requestedClaims, item.cryptoContext]);
-      return {
-        requestedClaims: item.requestedClaims,
-        inputDescriptor: descriptor,
-        vpToken: vp_token,
-        format: "dc+sd-jwt"
-      };
-    }
-    throw new CredentialsNotFoundError([{
-      id: descriptor.id,
-      reason: `${descriptor.format} format is not supported.`
-    }]);
-  }));
-};
-//# sourceMappingURL=07-evaluate-input-descriptor.js.map

package/lib/module/credential/presentation/07-evaluate-input-descriptor.js.map

@@ -1 +0,0 @@
-{"version":3,"names":["decode","prepareVpToken","JSONPath","CredentialsNotFoundError","MissingDataError","Ajv","ajv","allErrors","INDEX_CLAIM_NAME","mapDisclosuresToObject","disclosures","reduce","obj","_ref","decoded","claimName","claimValue","findMatchedClaim","paths","payload","matchedPath","matchedValue","some","singlePath","result","path","json","length","error","extractClaimName","regex","match","Error","evaluateInputDescriptorForSdJwt4VC","inputDescriptor","payloadCredential","_inputDescriptor$cons","constraints","fields","requiredDisclosures","optionalDisclosures","unrequestedDisclosures","requiredClaimNames","optionalClaimNames","disclosuresAsPayload","allFieldsValid","every","field","optional","push","filter","validateSchema","compile","disclosure","includes","isNotLimitDisclosure","limit_disclosure","findCredentialSdJwt","decodedSdJwtCredentials","cryptoContext","credential","sdJwt","evaluatedDisclosure","matchedEvaluation","matchedCredential","id","reason","evaluateInputDescriptors","inputDescriptors","credentialsSdJwt","map","_ref2","Promise","all","descriptor","_descriptor$format","format","prepareLegacyRemotePresentations","credentialAndDescriptors","nonce","client_id","item","_descriptor$format2","vp_token","requestedClaims","vpToken"],"sourceRoot":"../../../../src","sources":["credential/presentation/07-evaluate-input-descriptor.ts"],"mappings":"AAEA,SAASA,MAAM,EAAEC,cAAc,QAAQ,cAAc;AACrD,SAASC,QAAQ,QAAQ,eAAe;AACxC,SAASC,wBAAwB,EAAEC,gBAAgB,QAAQ,UAAU;AACrE,OAAOC,GAAG,MAAM,KAAK;AAGrB,MAAMC,GAAG,GAAG,IAAID,GAAG,CAAC;EAAEE,SAAS,EAAE;AAAK,CAAC,CAAC;AACxC,MAAMC,gBAAgB,GAAG,CAAC;;AA6B1B;AACA;AACA;;AAYA;AACA;AACA;AACA;AACA;AACA,MAAMC,sBAAsB,GAC1BC,WAAoC,IACR;EAC5B,OAAOA,WAAW,CAACC,MAAM,CACvB,CAACC,GAAG,EAAAC,IAAA,KAAkB;IAAA,IAAhB;MAAEC;IAAQ,CAAC,GAAAD,IAAA;IACf,MAAM,GAAGE,SAAS,EAAEC,UAAU,CAAC,GAAGF,OAAO;IACzCF,GAAG,CAACG,SAAS,CAAC,GAAGC,UAAU;IAC3B,OAAOJ,GAAG;EACZ,CAAC,EACD,CAAC,CACH,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA,MAAMK,gBAAgB,GAAGA,CACvBC,KAAe,EACfC,OAAY,KACW;EACvB,IAAIC,WAAW;EACf,IAAIC,YAAY;EAChBH,KAAK,CAACI,IAAI,CAAEC,UAAU,IAAK;IACzB,IAAI;MACF,MAAMC,MAAM,GAAGtB,QAAQ,CAAC;QAAEuB,IAAI,EAAEF,UAAU;QAAEG,IAAI,EAAEP;MAAQ,CAAC,CAAC;MAC5D,IAAIK,MAAM,CAACG,MAAM,GAAG,CAAC,EAAE;QACrBP,WAAW,GAAGG,UAAU;QACxBF,YAAY,GAAGG,MAAM,CAAC,CAAC,CAAC;QACxB,OAAO,IAAI;MACb;IACF,CAAC,CAAC,OAAOI,KAAK,EAAE;MACd,MAAM,IAAIxB,gBAAgB,CACvB,iBAAgBmB,UAAW,wCAC9B,CAAC;IACH;IACA,OAAO,KAAK;EACd,CAAC,CAAC;EAEF,OAAO,CAACH,WAAW,EAAEC,YAAY,CAAC;AACpC,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,MAAMQ,gBAAgB,GAAIJ,IAAY,IAAyB;EAC7D;EACA;EACA;EACA,MAAMK,KAAK,GAAG,yCAAyC;EAEvD,MAAMC,KAAK,GAAGN,IAAI,CAACM,KAAK,CAACD,KAAK,CAAC;EAC/B,IAAIC,KAAK,EAAE;IACT;IACA;IACA,OAAOA,KAAK,CAAC,CAAC,CAAC,IAAIA,KAAK,CAAC,CAAC,CAAC;EAC7B;;EAEA;;EAEA,MAAM,IAAIC,KAAK,CACZ,0BAAyBP,IAAK,wFACjC,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMQ,kCAAmE,GAC9EA,CAACC,eAAe,EAAEC,iBAAiB,EAAEzB,WAAW,KAAK;EAAA,IAAA0B,qBAAA;EACnD,IAAI,EAACF,eAAe,aAAfA,eAAe,gBAAAE,qBAAA,GAAfF,eAAe,CAAEG,WAAW,cAAAD,qBAAA,eAA5BA,qBAAA,CAA8BE,MAAM,GAAE;IACzC;IACA,OAAO;MACLC,mBAAmB,EAAE,EAAE;MACvBC,mBAAmB,EAAE,EAAE;MACvBC,sBAAsB,EAAE/B;IAC1B,CAAC;EACH;EACA,MAAMgC,kBAA4B,GAAG,EAAE;EACvC,MAAMC,kBAA4B,GAAG,EAAE;;EAEvC;EACA,MAAMC,oBAAoB,GAAGnC,sBAAsB,CAACC,WAAW,CAAC;;EAEhE;EACA;EACA,MAAMmC,cAAc,GAAGX,eAAe,CAACG,WAAW,CAACC,MAAM,CAACQ,KAAK,CAAEC,KAAK,IAAK;IACzE;IACA;IACA;IACA,IAAI,CAAC3B,WAAW,EAAEC,YAAY,CAAC,GAAGJ,gBAAgB,CAChD8B,KAAK,CAACtB,IAAI,EACVmB,oBACF,CAAC;IAED,IAAI,CAACxB,WAAW,EAAE;MAChB,CAACA,WAAW,EAAEC,YAAY,CAAC,GAAGJ,gBAAgB,CAC5C8B,KAAK,CAACtB,IAAI,EACVU,iBACF,CAAC;MAED,IAAI,CAACf,WAAW,EAAE;QAChB;QACA,OAAO2B,KAAK,aAALA,KAAK,uBAALA,KAAK,CAAEC,QAAQ;MACxB;IACF,CAAC,MAAM;MACL;MACA,MAAMjC,SAAS,GAAGc,gBAAgB,CAACT,WAAW,CAAC;MAC/C,IAAIL,SAAS,EAAE;QACb,CAACgC,KAAK,aAALA,KAAK,eAALA,KAAK,CAAEC,QAAQ,GAAGL,kBAAkB,GAAGD,kBAAkB,EAAEO,IAAI,CAC9DlC,SACF,CAAC;MACH;IACF;;IAEA;IACA;IACA,IAAIgC,KAAK,CAACG,MAAM,EAAE;MAChB,IAAI;QACF,MAAMC,cAAc,GAAG7C,GAAG,CAAC8C,OAAO,CAACL,KAAK,CAACG,MAAM,CAAC;QAChD,IAAI,CAACC,cAAc,CAAC9B,YAAY,CAAC,EAAE;UACjC,MAAM,IAAIjB,gBAAgB,CACvB,gBAAeiB,YAAa,eAAcD,WAAY,4CACzD,CAAC;QACH;MACF,CAAC,CAAC,OAAOQ,KAAK,EAAE;QACd,OAAO,KAAK;MACd;IACF;IACA;IACA;;IAEA,OAAO,IAAI;EACb,CAAC,CAAC;EAEF,IAAI,CAACiB,cAAc,EAAE;IACnB,MAAM,IAAIzC,gBAAgB,CACxB,iGACF,CAAC;EACH;;EAEA;;EAEA,MAAMmC,mBAAmB,GAAG7B,WAAW,CAACwC,MAAM,CAAEG,UAAU,IACxDX,kBAAkB,CAACY,QAAQ,CAACD,UAAU,CAACvC,OAAO,CAACN,gBAAgB,CAAC,CAClE,CAAC;EAED,MAAMgC,mBAAmB,GAAG9B,WAAW,CAACwC,MAAM,CAAEG,UAAU,IACxDV,kBAAkB,CAACW,QAAQ,CAACD,UAAU,CAACvC,OAAO,CAACN,gBAAgB,CAAC,CAClE,CAAC;EAED,MAAM+C,oBAAoB,GAAG,EAC3BrB,eAAe,CAACG,WAAW,CAACmB,gBAAgB,KAAK,UAAU,CAC5D;EAED,MAAMf,sBAAsB,GAAGc,oBAAoB,GAC/C7C,WAAW,CAACwC,MAAM,CACfG,UAAU,IACT,CAACV,kBAAkB,CAACW,QAAQ,CAC1BD,UAAU,CAACvC,OAAO,CAACN,gBAAgB,CACrC,CAAC,IACD,CAACkC,kBAAkB,CAACY,QAAQ,CAACD,UAAU,CAACvC,OAAO,CAACN,gBAAgB,CAAC,CACrE,CAAC,GACD,EAAE;EAEN,OAAO;IACL+B,mBAAmB;IACnBC,mBAAmB;IACnBC;EACF,CAAC;AACH,CAAC;AASH;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMgB,mBAAmB,GAAGA,CACjCvB,eAAgC,EAChCwB,uBAAiD,KAK9C;EACH,KAAK,MAAM;IACTC,aAAa;IACbC,UAAU;IACVC,KAAK;IACLnD;EACF,CAAC,IAAIgD,uBAAuB,EAAE;IAC5B,IAAI;MACF,MAAMI,mBAAmB,GAAG7B,kCAAkC,CAC5DC,eAAe,EACf2B,KAAK,CAAC1C,OAAO,EACbT,WACF,CAAC;MAED,OAAO;QACLqD,iBAAiB,EAAED,mBAAmB;QACtCH,aAAa;QACbK,iBAAiB,EAAEJ;MACrB,CAAC;IACH,CAAC,CAAC,MAAM;MACN;MACA;IACF;EACF;EAEA,MAAM,IAAIzD,wBAAwB,CAAC,CACjC;IACE8D,EAAE,EAAE,EAAE;IACNC,MAAM,EAAE;EACV,CAAC,CACF,CAAC;AACJ,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,wBAAkD,GAAG,MAAAA,CAChEC,gBAAgB,EAChBC,gBAAgB,KACb;EACH;EACA,MAAMX,uBAAuB,GAC3B,CAAAW,gBAAgB,aAAhBA,gBAAgB,uBAAhBA,gBAAgB,CAAEC,GAAG,CAACC,KAAA,IAAiC;IAAA,IAAhC,CAACZ,aAAa,EAAEC,UAAU,CAAC,GAAAW,KAAA;IAChD,MAAM;MAAEV,KAAK;MAAEnD;IAAY,CAAC,GAAGV,MAAM,CAAC4D,UAAU,CAAC;IACjD,OAAO;MAAED,aAAa;MAAEC,UAAU;MAAEC,KAAK;MAAEnD;IAAY,CAAC;EAC1D,CAAC,CAAC,KAAI,EAAE;EAEV,OAAO8D,OAAO,CAACC,GAAG,CAChBL,gBAAgB,CAACE,GAAG,CAAC,MAAOI,UAAU,IAAK;IAAA,IAAAC,kBAAA;IACzC,KAAAA,kBAAA,GAAID,UAAU,CAACE,MAAM,cAAAD,kBAAA,eAAjBA,kBAAA,CAAoB,WAAW,CAAC,EAAE;MACpC,IAAI,CAACjB,uBAAuB,CAAC/B,MAAM,EAAE;QACnC,MAAM,IAAIxB,wBAAwB,CAAC,CACjC;UACE8D,EAAE,EAAES,UAAU,CAACT,EAAE;UACjBC,MAAM,EAAE;QACV,CAAC,CACF,CAAC;MACJ;MAEA,MAAM;QAAEH,iBAAiB;QAAEJ,aAAa;QAAEK;MAAkB,CAAC,GAC3DP,mBAAmB,CAACiB,UAAU,EAAEhB,uBAAuB,CAAC;MAE1D,OAAO;QACLI,mBAAmB,EAAEC,iBAAiB;QACtC7B,eAAe,EAAEwC,UAAU;QAC3Bd,UAAU,EAAEI,iBAAiB;QAC7BL;MACF,CAAC;IACH;IAEA,MAAM,IAAIxD,wBAAwB,CAAC,CACjC;MACE8D,EAAE,EAAES,UAAU,CAACT,EAAE;MACjBC,MAAM,EAAG,GAAEQ,UAAU,CAACE,MAAO;IAC/B,CAAC,CACF,CAAC;EACJ,CAAC,CACH,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,gCAAkE,GAC7E,MAAAA,CAAOC,wBAAwB,EAAEC,KAAK,EAAEC,SAAS,KAAK;EACpD,OAAOR,OAAO,CAACC,GAAG,CAChBK,wBAAwB,CAACR,GAAG,CAAC,MAAOW,IAAI,IAAK;IAAA,IAAAC,mBAAA;IAC3C,MAAMR,UAAU,GAAGO,IAAI,CAAC/C,eAAe;IAEvC,KAAAgD,mBAAA,GAAIR,UAAU,CAACE,MAAM,cAAAM,mBAAA,eAAjBA,mBAAA,CAAoB,WAAW,CAAC,EAAE;MACpC,MAAM;QAAEC;MAAS,CAAC,GAAG,MAAMlF,cAAc,CAAC8E,KAAK,EAAEC,SAAS,EAAE,CAC1DC,IAAI,CAACrB,UAAU,EACfqB,IAAI,CAACG,eAAe,EACpBH,IAAI,CAACtB,aAAa,CACnB,CAAC;MAEF,OAAO;QACLyB,eAAe,EAAEH,IAAI,CAACG,eAAe;QACrClD,eAAe,EAAEwC,UAAU;QAC3BW,OAAO,EAAEF,QAAQ;QACjBP,MAAM,EAAE;MACV,CAAC;IACH;IAEA,MAAM,IAAIzE,wBAAwB,CAAC,CACjC;MACE8D,EAAE,EAAES,UAAU,CAACT,EAAE;MACjBC,MAAM,EAAG,GAAEQ,UAAU,CAACE,MAAO;IAC/B,CAAC,CACF,CAAC;EACJ,CAAC,CACH,CAAC;AACH,CAAC"}

package/lib/module/credential/presentation/08-send-authorization-response.js

@@ -1,239 +0,0 @@
-import { EncryptJwe } from "@pagopa/io-react-native-jwt";
-import uuid from "react-native-uuid";
-import { getJwksFromConfig } from "./04-retrieve-rp-jwks";
-import { NoSuitableKeysFoundInEntityConfiguration } from "./errors";
-import { hasStatusOrThrow } from "../../utils/misc";
-import * as z from "zod";
-import { RelyingPartyResponseError, RelyingPartyResponseErrorCodes, ResponseErrorBuilder, UnexpectedStatusCodeError } from "../../utils/errors";
-export const AuthorizationResponse = z.object({
-  status: z.string().optional(),
-  response_code: z.string() /**
-                            FIXME: [SIW-627] we expect this value from every RP implementation
-                            Actually some RP does not return the value
-                            We make it optional to not break the flow.
-                            */.optional(),
-  redirect_uri: z.string().optional()
-});
-
-/**
- * Selects a public key (with `use = enc`) from the set of JWK keys
- * offered by the Relying Party (RP) for encryption.
- *
- * @param rpJwkKeys - The array of JWKs retrieved from the RP entity configuration.
- * @returns The first suitable public key found in the list.
- * @throws {NoSuitableKeysFoundInEntityConfiguration} If no suitable encryption key is found.
- */
-export const choosePublicKeyToEncrypt = rpJwkKeys => {
-  const encKey = rpJwkKeys.find(jwk => jwk.use === "enc");
-  if (encKey) {
-    return encKey;
-  }
-
-  // No suitable key found
-  throw new NoSuitableKeysFoundInEntityConfiguration("No suitable public key found for encryption.");
-};
-
-/**
- * Builds a URL-encoded form body for a direct POST response using JWT encryption.
- *
- * @param jwkKeys - Array of JWKs from the Relying Party for encryption.
- * @param requestObject - Contains state, nonce, and other relevant info.
- * @param payload - Object that contains the VP token to encrypt and the mapping of the credential disclosures
- * @returns A URL-encoded string for an `application/x-www-form-urlencoded` POST body, where `response` contains the encrypted JWE.
- */
-export const buildDirectPostJwtBody = async (requestObject, rpConf, payload) => {
-  // Prepare the authorization response payload to be encrypted
-  const authzResponsePayload = JSON.stringify({
-    state: requestObject.state,
-    ...payload
-  });
-  // Choose a suitable public key for encryption
-  const {
-    keys
-  } = getJwksFromConfig(rpConf);
-  const encPublicJwk = choosePublicKeyToEncrypt(keys);
-
-  // Encrypt the authorization payload
-  const {
-    authorization_encrypted_response_alg,
-    authorization_encrypted_response_enc
-  } = rpConf.openid_credential_verifier;
-  const defaultAlg = encPublicJwk.kty === "EC" ? "ECDH-ES" : "RSA-OAEP-256";
-  const encryptedResponse = await new EncryptJwe(authzResponsePayload, {
-    alg: authorization_encrypted_response_alg || defaultAlg,
-    enc: authorization_encrypted_response_enc || "A256CBC-HS512",
-    kid: encPublicJwk.kid
-  }).encrypt(encPublicJwk);
-
-  // Build the x-www-form-urlencoded form body
-  const formBody = new URLSearchParams({
-    response: encryptedResponse,
-    ...(requestObject.state ? {
-      state: requestObject.state
-    } : {})
-  });
-  return formBody.toString();
-};
-
-/**
- * Builds a URL-encoded form body for a direct POST response without encryption.
- *
- * @param requestObject - Contains state, nonce, and other relevant info.
- * @param payload - Object that contains either the VP token to encrypt and the stringified mapping of the credential disclosures or the error code
- * @returns A URL-encoded string suitable for an `application/x-www-form-urlencoded` POST body.
- */
-export const buildDirectPostBody = async (requestObject, payload) => {
-  const formUrlEncodedBody = new URLSearchParams({
-    ...(requestObject.state && {
-      state: requestObject.state
-    }),
-    ...Object.entries(payload).reduce((acc, _ref) => {
-      let [key, value] = _ref;
-      return {
-        ...acc,
-        [key]: Array.isArray(value) || typeof value === "object" ? JSON.stringify(value) : value
-      };
-    }, {})
-  });
-  return formUrlEncodedBody.toString();
-};
-
-/**
- * Type definition for the function that sends the authorization response
- * to the Relying Party, completing the presentation flow.
- * Use with `presentation_definition`.
- * @deprecated Use `sendAuthorizationResponse`
- */
-
-/**
- * Sends the authorization response to the Relying Party (RP) using the specified `response_mode`.
- * This function completes the presentation flow in an OpenID 4 Verifiable Presentations scenario.
- *
- * @param requestObject - The request details, including presentation requirements.
- * @param presentationDefinition - The definition of the expected presentation.
- * @param jwkKeys - Array of JWKs from the Relying Party for optional encryption.
- * @param presentation - Tuple with verifiable credential, claims, and crypto context.
- * @param context - Contains optional custom fetch implementation.
- * @returns Parsed and validated authorization response from the Relying Party.
- */
-export const sendLegacyAuthorizationResponse = async function (requestObject, presentationDefinitionId, remotePresentations, rpConf) {
-  var _remotePresentations$;
-  let {
-    appFetch = fetch
-  } = arguments.length > 4 && arguments[4] !== undefined ? arguments[4] : {};
-  /**
-   * 1. Prepare the VP token and presentation submission
-   * If there is only one credential, `vpToken` is a single string.
-   * If there are multiple credential, `vpToken` is an array of string.
-   **/
-  const vp_token = (remotePresentations === null || remotePresentations === void 0 ? void 0 : remotePresentations.length) === 1 ? (_remotePresentations$ = remotePresentations[0]) === null || _remotePresentations$ === void 0 ? void 0 : _remotePresentations$.vpToken : remotePresentations.map(remotePresentation => remotePresentation.vpToken);
-  const descriptor_map = remotePresentations.map((remotePresentation, index) => ({
-    id: remotePresentation.inputDescriptor.id,
-    path: remotePresentations.length === 1 ? `$` : `$[${index}]`,
-    format: remotePresentation.format
-  }));
-  const presentation_submission = {
-    id: uuid.v4(),
-    definition_id: presentationDefinitionId,
-    descriptor_map
-  };
-  const requestBody = await buildDirectPostJwtBody(requestObject, rpConf, {
-    vp_token,
-    presentation_submission
-  });
-
-  // 3. Send the authorization response via HTTP POST and validate the response
-  return await appFetch(requestObject.response_uri, {
-    method: "POST",
-    headers: {
-      "Content-Type": "application/x-www-form-urlencoded"
-    },
-    body: requestBody
-  }).then(hasStatusOrThrow(200)).then(res => res.json()).then(AuthorizationResponse.parse);
-};
-
-/**
- * Type definition for the function that sends the authorization response
- * to the Relying Party, completing the presentation flow.
- * Use with DCQL queries.
- */
-
-export const sendAuthorizationResponse = async function (requestObject, remotePresentations, rpConf) {
-  let {
-    appFetch = fetch
-  } = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : {};
-  // 1. Prepare the VP token as a JSON object with keys corresponding to the DCQL query credential IDs
-  const requestBody = await buildDirectPostJwtBody(requestObject, rpConf, {
-    vp_token: remotePresentations.reduce((acc, presentation) => ({
-      ...acc,
-      [presentation.credentialId]: presentation.vpToken
-    }), {})
-  });
-
-  // 2. Send the authorization response via HTTP POST and validate the response
-  return await appFetch(requestObject.response_uri, {
-    method: "POST",
-    headers: {
-      "Content-Type": "application/x-www-form-urlencoded"
-    },
-    body: requestBody
-  }).then(hasStatusOrThrow(200)).then(res => res.json()).then(AuthorizationResponse.parse).catch(handleAuthorizationResponseError);
-};
-
-/**
- * Type definition for the function that sends the authorization response
- * to the Relying Party, completing the presentation flow.
- */
-
-/**
- * Sends the authorization error response to the Relying Party (RP) using the specified `response_mode`.
- * This function completes the presentation flow in an OpenID 4 Verifiable Presentations scenario.
- *
- * @param requestObject - The request details, including presentation requirements.
- * @param error - The response error value, with description
- * @param context - Contains optional custom fetch implementation.
- * @returns Parsed and validated authorization response from the Relying Party.
- */
-export const sendAuthorizationErrorResponse = async function (requestObject, _ref2) {
-  let {
-    error,
-    errorDescription
-  } = _ref2;
-  let {
-    appFetch = fetch
-  } = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : {};
-  const requestBody = await buildDirectPostBody(requestObject, {
-    error,
-    error_description: errorDescription
-  });
-  return await appFetch(requestObject.response_uri, {
-    method: "POST",
-    headers: {
-      "Content-Type": "application/x-www-form-urlencoded"
-    },
-    body: requestBody
-  }).then(hasStatusOrThrow(200, RelyingPartyResponseError)).then(res => res.json()).then(AuthorizationResponse.parse);
-};
-
-/**
- * Handle the the presentation error by mapping it to a custom exception.
- * If the error is not an instance of {@link UnexpectedStatusCodeError}, it is thrown as is.
- * @param e - The error to be handled
- * @throws {RelyingPartyResponseError} with a specific code for more context
- */
-const handleAuthorizationResponseError = e => {
-  if (!(e instanceof UnexpectedStatusCodeError)) {
-    throw e;
-  }
-  throw new ResponseErrorBuilder(RelyingPartyResponseError).handle(400, {
-    code: RelyingPartyResponseErrorCodes.InvalidAuthorizationResponse,
-    message: "The Authorization Response contains invalid parameters or it is malformed"
-  }).handle(403, {
-    code: RelyingPartyResponseErrorCodes.InvalidAuthorizationResponse,
-    message: "The Authorization Response was forbidden"
-  }).handle("*", {
-    code: RelyingPartyResponseErrorCodes.RelyingPartyGenericError,
-    message: "Unable to successfully send the Authorization Response"
-  }).buildFrom(e);
-};
-//# sourceMappingURL=08-send-authorization-response.js.map

package/lib/module/credential/presentation/08-send-authorization-response.js.map

@@ -1 +0,0 @@
-{"version":3,"names":["EncryptJwe","uuid","getJwksFromConfig","NoSuitableKeysFoundInEntityConfiguration","hasStatusOrThrow","z","RelyingPartyResponseError","RelyingPartyResponseErrorCodes","ResponseErrorBuilder","UnexpectedStatusCodeError","AuthorizationResponse","object","status","string","optional","response_code","redirect_uri","choosePublicKeyToEncrypt","rpJwkKeys","encKey","find","jwk","use","buildDirectPostJwtBody","requestObject","rpConf","payload","authzResponsePayload","JSON","stringify","state","keys","encPublicJwk","authorization_encrypted_response_alg","authorization_encrypted_response_enc","openid_credential_verifier","defaultAlg","kty","encryptedResponse","alg","enc","kid","encrypt","formBody","URLSearchParams","response","toString","buildDirectPostBody","formUrlEncodedBody","Object","entries","reduce","acc","_ref","key","value","Array","isArray","sendLegacyAuthorizationResponse","presentationDefinitionId","remotePresentations","_remotePresentations$","appFetch","fetch","arguments","length","undefined","vp_token","vpToken","map","remotePresentation","descriptor_map","index","id","inputDescriptor","path","format","presentation_submission","v4","definition_id","requestBody","response_uri","method","headers","body","then","res","json","parse","sendAuthorizationResponse","presentation","credentialId","catch","handleAuthorizationResponseError","sendAuthorizationErrorResponse","_ref2","error","errorDescription","error_description","e","handle","code","InvalidAuthorizationResponse","message","RelyingPartyGenericError","buildFrom"],"sourceRoot":"../../../../src","sources":["credential/presentation/08-send-authorization-response.ts"],"mappings":"AAAA,SAASA,UAAU,QAAQ,6BAA6B;AACxD,OAAOC,IAAI,MAAM,mBAAmB;AACpC,SAAyBC,iBAAiB,QAAQ,uBAAuB;AAEzE,SAASC,wCAAwC,QAAQ,UAAU;AACnE,SAASC,gBAAgB,QAAkB,kBAAkB;AAO7D,OAAO,KAAKC,CAAC,MAAM,KAAK;AAExB,SACEC,yBAAyB,EACzBC,8BAA8B,EAC9BC,oBAAoB,EACpBC,yBAAyB,QACpB,oBAAoB;AAI3B,OAAO,MAAMC,qBAAqB,GAAGL,CAAC,CAACM,MAAM,CAAC;EAC5CC,MAAM,EAAEP,CAAC,CAACQ,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC7BC,aAAa,EAAEV,CAAC,CACbQ,MAAM,CAAC,CAAC,CAAC;AACd;AACA;AACA;AACA,8BAJc,CAKTC,QAAQ,CAAC,CAAC;EACbE,YAAY,EAAEX,CAAC,CAACQ,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC;AACpC,CAAC,CAAC;;AAEF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMG,wBAAwB,GACnCC,SAAiC,IACzB;EACR,MAAMC,MAAM,GAAGD,SAAS,CAACE,IAAI,CAAEC,GAAG,IAAKA,GAAG,CAACC,GAAG,KAAK,KAAK,CAAC;EAEzD,IAAIH,MAAM,EAAE;IACV,OAAOA,MAAM;EACf;;EAEA;EACA,MAAM,IAAIhB,wCAAwC,CAChD,8CACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMoB,sBAAsB,GAAG,MAAAA,CACpCC,aAAwD,EACxDC,MAA8D,EAC9DC,OAAuC,KACnB;EAGpB;EACA,MAAMC,oBAAoB,GAAGC,IAAI,CAACC,SAAS,CAAC;IAC1CC,KAAK,EAAEN,aAAa,CAACM,KAAK;IAC1B,GAAGJ;EACL,CAAC,CAAC;EACF;EACA,MAAM;IAAEK;EAAK,CAAC,GAAG7B,iBAAiB,CAACuB,MAAM,CAAC;EAC1C,MAAMO,YAAY,GAAGf,wBAAwB,CAACc,IAAI,CAAC;;EAEnD;EACA,MAAM;IACJE,oCAAoC;IACpCC;EACF,CAAC,GAAGT,MAAM,CAACU,0BAA0B;EAErC,MAAMC,UAAsB,GAC1BJ,YAAY,CAACK,GAAG,KAAK,IAAI,GAAG,SAAS,GAAG,cAAc;EAExD,MAAMC,iBAAiB,GAAG,MAAM,IAAItC,UAAU,CAAC2B,oBAAoB,EAAE;IACnEY,GAAG,EAAGN,oCAAoC,IAAmBG,UAAU;IACvEI,GAAG,EACAN,oCAAoC,IAAmB,eAAe;IACzEO,GAAG,EAAET,YAAY,CAACS;EACpB,CAAC,CAAC,CAACC,OAAO,CAACV,YAAY,CAAC;;EAExB;EACA,MAAMW,QAAQ,GAAG,IAAIC,eAAe,CAAC;IACnCC,QAAQ,EAAEP,iBAAiB;IAC3B,IAAId,aAAa,CAACM,KAAK,GAAG;MAAEA,KAAK,EAAEN,aAAa,CAACM;IAAM,CAAC,GAAG,CAAC,CAAC;EAC/D,CAAC,CAAC;EACF,OAAOa,QAAQ,CAACG,QAAQ,CAAC,CAAC;AAC5B,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,mBAAmB,GAAG,MAAAA,CACjCvB,aAAwD,EACxDE,OAAuC,KACnB;EACpB,MAAMsB,kBAAkB,GAAG,IAAIJ,eAAe,CAAC;IAC7C,IAAIpB,aAAa,CAACM,KAAK,IAAI;MAAEA,KAAK,EAAEN,aAAa,CAACM;IAAM,CAAC,CAAC;IAC1D,GAAGmB,MAAM,CAACC,OAAO,CAACxB,OAAO,CAAC,CAACyB,MAAM,CAC/B,CAACC,GAAG,EAAAC,IAAA;MAAA,IAAE,CAACC,GAAG,EAAEC,KAAK,CAAC,GAAAF,IAAA;MAAA,OAAM;QACtB,GAAGD,GAAG;QACN,CAACE,GAAG,GACFE,KAAK,CAACC,OAAO,CAACF,KAAK,CAAC,IAAI,OAAOA,KAAK,KAAK,QAAQ,GAC7C3B,IAAI,CAACC,SAAS,CAAC0B,KAAK,CAAC,GACrBA;MACR,CAAC;IAAA,CAAC,EACF,CAAC,CACH;EACF,CAAC,CAAC;EAEF,OAAOP,kBAAkB,CAACF,QAAQ,CAAC,CAAC;AACtC,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;;AAWA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMY,+BAAgE,GAC3E,eAAAA,CACElC,aAAa,EACbmC,wBAAwB,EACxBC,mBAAmB,EACnBnC,MAAM,EAE6B;EAAA,IAAAoC,qBAAA;EAAA,IADnC;IAAEC,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB;AACJ;AACA;AACA;AACA;EACI,MAAMG,QAAQ,GACZ,CAAAP,mBAAmB,aAAnBA,mBAAmB,uBAAnBA,mBAAmB,CAAEK,MAAM,MAAK,CAAC,IAAAJ,qBAAA,GAC7BD,mBAAmB,CAAC,CAAC,CAAC,cAAAC,qBAAA,uBAAtBA,qBAAA,CAAwBO,OAAO,GAC/BR,mBAAmB,CAACS,GAAG,CACpBC,kBAAkB,IAAKA,kBAAkB,CAACF,OAC7C,CAAC;EAEP,MAAMG,cAAc,GAAGX,mBAAmB,CAACS,GAAG,CAC5C,CAACC,kBAAkB,EAAEE,KAAK,MAAM;IAC9BC,EAAE,EAAEH,kBAAkB,CAACI,eAAe,CAACD,EAAE;IACzCE,IAAI,EAAEf,mBAAmB,CAACK,MAAM,KAAK,CAAC,GAAI,GAAE,GAAI,KAAIO,KAAM,GAAE;IAC5DI,MAAM,EAAEN,kBAAkB,CAACM;EAC7B,CAAC,CACH,CAAC;EAED,MAAMC,uBAAuB,GAAG;IAC9BJ,EAAE,EAAExE,IAAI,CAAC6E,EAAE,CAAC,CAAC;IACbC,aAAa,EAAEpB,wBAAwB;IACvCY;EACF,CAAC;EAED,MAAMS,WAAW,GAAG,MAAMzD,sBAAsB,CAACC,aAAa,EAAEC,MAAM,EAAE;IACtE0C,QAAQ;IACRU;EACF,CAAC,CAAC;;EAEF;EACA,OAAO,MAAMf,QAAQ,CAACtC,aAAa,CAACyD,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEJ;EACR,CAAC,CAAC,CACCK,IAAI,CAACjF,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAC3BiF,IAAI,CAAEC,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBF,IAAI,CAAC3E,qBAAqB,CAAC8E,KAAK,CAAC;AACtC,CAAC;;AAEH;AACA;AACA;AACA;AACA;;AAUA,OAAO,MAAMC,yBAAoD,GAAG,eAAAA,CAClEjE,aAAa,EACboC,mBAAmB,EACnBnC,MAAM,EAE6B;EAAA,IADnC;IAAEqC,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB;EACA,MAAMgB,WAAW,GAAG,MAAMzD,sBAAsB,CAACC,aAAa,EAAEC,MAAM,EAAE;IACtE0C,QAAQ,EAAEP,mBAAmB,CAACT,MAAM,CAClC,CAACC,GAAG,EAAEsC,YAAY,MAAM;MACtB,GAAGtC,GAAG;MACN,CAACsC,YAAY,CAACC,YAAY,GAAGD,YAAY,CAACtB;IAC5C,CAAC,CAAC,EACF,CAAC,CACH;EACF,CAAC,CAAC;;EAEF;EACA,OAAO,MAAMN,QAAQ,CAACtC,aAAa,CAACyD,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEJ;EACR,CAAC,CAAC,CACCK,IAAI,CAACjF,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAC3BiF,IAAI,CAAEC,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBF,IAAI,CAAC3E,qBAAqB,CAAC8E,KAAK,CAAC,CACjCI,KAAK,CAACC,gCAAgC,CAAC;AAC5C,CAAC;;AAED;AACA;AACA;AACA;;AASA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,8BAA8D,GACzE,eAAAA,CACEtE,aAAa,EAAAuE,KAAA,EAGsB;EAAA,IAFnC;IAAEC,KAAK;IAAEC;EAAiB,CAAC,GAAAF,KAAA;EAAA,IAC3B;IAAEjC,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB,MAAMgB,WAAW,GAAG,MAAMjC,mBAAmB,CAACvB,aAAa,EAAE;IAC3DwE,KAAK;IACLE,iBAAiB,EAAED;EACrB,CAAC,CAAC;EAEF,OAAO,MAAMnC,QAAQ,CAACtC,aAAa,CAACyD,YAAY,EAAE;IAChDC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEJ;EACR,CAAC,CAAC,CACCK,IAAI,CAACjF,gBAAgB,CAAC,GAAG,EAAEE,yBAAyB,CAAC,CAAC,CACtD+E,IAAI,CAAEC,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBF,IAAI,CAAC3E,qBAAqB,CAAC8E,KAAK,CAAC;AACtC,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AACA,MAAMK,gCAAgC,GAAIM,CAAU,IAAK;EACvD,IAAI,EAAEA,CAAC,YAAY1F,yBAAyB,CAAC,EAAE;IAC7C,MAAM0F,CAAC;EACT;EAEA,MAAM,IAAI3F,oBAAoB,CAACF,yBAAyB,CAAC,CACtD8F,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE9F,8BAA8B,CAAC+F,4BAA4B;IACjEC,OAAO,EACL;EACJ,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE9F,8BAA8B,CAAC+F,4BAA4B;IACjEC,OAAO,EAAE;EACX,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE9F,8BAA8B,CAACiG,wBAAwB;IAC7DD,OAAO,EAAE;EACX,CAAC,CAAC,CACDE,SAAS,CAACN,CAAC,CAAC;AACjB,CAAC"}

package/lib/module/credential/presentation/errors.js

@@ -1,103 +0,0 @@
-import { IoWalletError, serializeAttrs } from "../../utils/errors";
-export { DcqlError } from "dcql";
-
-/**
- * An error subclass thrown when auth request decode fail
- *
- */
-export class AuthRequestDecodeError extends IoWalletError {
-  code = "ERR_IO_WALLET_AUTHENTICATION_REQUEST_DECODE_FAILED";
-
-  /** The Claim for which the validation failed. */
-
-  /** Reason code for the validation failure. */
-
-  constructor(message) {
-    let claim = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : "unspecified";
-    let reason = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : "unspecified";
-    super(serializeAttrs({
-      message,
-      claim,
-      reason
-    }));
-    this.claim = claim;
-    this.reason = reason;
-  }
-}
-
-/**
- * When selecting a public key from an entity configuration, and no one meets the requirements for the scenario
- *
- */
-export class NoSuitableKeysFoundInEntityConfiguration extends IoWalletError {
-  code = "ERR_NO_SUITABLE_KEYS_NOT_FOUND";
-
-  /**
-   * @param scenario describe the scenario in which the error arise
-   */
-  constructor(scenario) {
-    const message = `Entity configuration do not provide any suitable keys (${scenario}).`;
-    super(message);
-  }
-}
-
-/**
- * When a QR code is not valid.
- *
- */
-export class InvalidQRCodeError extends IoWalletError {
-  code = "ERR_INVALID_QR_CODE";
-
-  /** Detailed reason for the QR code validation failure. */
-
-  constructor(reason) {
-    super("Invalid QR code");
-    this.reason = reason;
-  }
-}
-
-/**
- * When the Request Object sent by the Relying Party is not valid
- */
-export class InvalidRequestObjectError extends IoWalletError {
-  code = "ERR_INVALID_REQUEST_OBJECT";
-
-  /** Detailed reason for the Request Object validation failure. */
-
-  constructor(message) {
-    let reason = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : "unspecified";
-    super(message);
-    this.reason = reason;
-  }
-}
-
-/**
- * When some required data is missing to continue because certain attributes are not contained inside the wallet.
- *
- */
-export class MissingDataError extends IoWalletError {
-  code = "ERR_MISSING_DATA";
-
-  /**
-   * @param missingAttributes An array or description of the attributes that are missing.
-   */
-  constructor(missingAttributes) {
-    const message = `Some required data is missing: ${missingAttributes}.`;
-    super(message);
-  }
-}
-/**
- * Error thrown when one or more credentials cannot be found in the wallet
- * and the presentation request cannot be satisfied.
- */
-export class CredentialsNotFoundError extends IoWalletError {
-  code = "ERR_CREDENTIALS_NOT_FOUND";
-  /**
-   * @param details The details of the credentials that could not be found.
-   */
-  constructor(details) {
-    super("One or more credentials cannot be found in the wallet");
-    this.details = details;
-  }
-}
-//# sourceMappingURL=errors.js.map