npm - @pagopa/io-react-native-wallet - Versions diffs - 2.5.1 → 3.0.0 - Mend

@pagopa/io-react-native-wallet 2.5.1 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (1551) hide show

package/lib/commonjs/trust/common/verify-chain.js ADDED Viewed

@@ -0,0 +1,193 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.createVerifyTrustChain = createVerifyTrustChain;
+var _utils = require("./utils");
+var _errors = require("./errors");
+var _ioReactNativeCrypto = require("@pagopa/io-react-native-crypto");
+/**
+ * Factory function to create `validateTrustChain`.
+ * @param config Version specific Entity shapes
+ * @returns `validateTrustChain` function compliant with the public API
+ */
+function createValidateTrustChain(_ref) {
+  let {
+    FirstElementShape,
+    MiddleElementShape,
+    LastElementShape
+  } = _ref;
+  /**
+   * Validates a provided trust chain against a known trust anchor, including X.509 certificate checks.
+   *
+   * @param trustAnchorEntity The entity configuration of the known trust anchor (for JWT validation).
+   * @param chain The chain of statements to be validated.
+   * @param x509Options Options for X.509 certificate validation.
+   * @returns The list of parsed tokens representing the chain.
+   * @throws {FederationError} If the chain is not valid (JWT or X.509). Specific errors like TrustChainEmptyError, X509ValidationError may be thrown.
+   */
+  return async function validateTrustChain(trustAnchorEntity, chain, x509Options) {
+    // If the chain is empty, fail
+    if (chain.length === 0) {
+      throw new _errors.TrustChainEmptyError("Cannot verify empty trust chain.");
+    }
+    // Select the expected token shape
+    const selectTokenShape = elementIndex => elementIndex === 0 ? FirstElementShape : elementIndex === chain.length - 1 ? LastElementShape : MiddleElementShape;
+    // Select the kid from the current index
+    const selectKid = currentIndex => {
+      const token = chain[currentIndex];
+      if (!token) {
+        throw new _errors.TrustChainTokenMissingError(`Token missing at index ${currentIndex} in trust chain.`, {
+          index: currentIndex
+        });
+      }
+      const shape = selectTokenShape(currentIndex);
+      return shape.parse((0, _utils.decode)(token)).header.kid;
+    };
+    // Select keys from the next token
+    // If the current token is the last, keys from trust anchor will be used
+    const selectKeys = currentIndex => {
+      if (currentIndex === chain.length - 1) {
+        return trustAnchorEntity.keys;
+      }
+      const nextIndex = currentIndex + 1;
+      const nextToken = chain[nextIndex];
+      if (!nextToken) {
+        throw new _errors.TrustChainTokenMissingError(`Next token missing at index ${nextIndex} (needed for keys for token at ${currentIndex}).`, {
+          index: nextIndex
+        });
+      }
+      const shape = selectTokenShape(nextIndex);
+      return shape.parse((0, _utils.decode)(nextToken)).payload.jwks.keys;
+    };
+    const x509TrustAnchorCertBase64 = (0, _utils.getTrustAnchorX509Certificate)(trustAnchorEntity);
+    // Iterate the chain and validate each element's signature against the public keys of its next
+    // If there is no next, hence it's the end of the chain, and it must be verified by the Trust Anchor
+    const validationPromises = chain.map(async (tokenString, i) => {
+      const kidFromTokenHeader = selectKid(i);
+      const signerJwks = selectKeys(i);
+      // Step 1: Verify JWT signature
+      const parsedToken = await (0, _utils.verify)(tokenString, kidFromTokenHeader, signerJwks);
+      // Step 2: X.509 Certificate Chain Validation
+      const jwkUsedForVerification = signerJwks.find(k => k.kid === kidFromTokenHeader);
+      if (!jwkUsedForVerification) {
+        throw new _errors.FederationError(`JWK with kid '${kidFromTokenHeader}' was not found in signer's JWKS for token at index ${i}, though JWT verification passed.`, {
+          tokenIndex: i,
+          kid: kidFromTokenHeader
+        });
+      }
+      if (!jwkUsedForVerification.x5c || jwkUsedForVerification.x5c.length === 0) {
+        throw new _errors.MissingX509CertsError(`JWK with kid '${kidFromTokenHeader}' does not contain an X.509 certificate chain (x5c) for token at index ${i}.`);
+      }
+      // If the chain has more than one certificate AND
+      // the last certificate in the x5c chain is the same as the trust anchor,
+      // remove the anchor from the chain being passed, as it's supplied separately.
+      const certChainBase64 = jwkUsedForVerification.x5c.length > 1 && jwkUsedForVerification.x5c.at(-1) === x509TrustAnchorCertBase64 ? jwkUsedForVerification.x5c.slice(0, -1) : jwkUsedForVerification.x5c;
+      const x509ValidationResult = await (0, _ioReactNativeCrypto.verifyCertificateChain)(certChainBase64, x509TrustAnchorCertBase64, x509Options);
+      if (!x509ValidationResult.isValid) {
+        throw new _errors.X509ValidationError(`X.509 certificate chain validation failed for token at index ${i} (kid: ${kidFromTokenHeader}). Status: ${x509ValidationResult.validationStatus}. Error: ${x509ValidationResult.errorMessage}`, {
+          tokenIndex: i,
+          kid: kidFromTokenHeader,
+          x509ValidationStatus: x509ValidationResult.validationStatus,
+          x509ErrorMessage: x509ValidationResult.errorMessage
+        });
+      }
+      return parsedToken;
+    });
+    return Promise.all(validationPromises);
+  };
+}
+/**
+ * Factory function to create `renewTrustChain`.
+ * @param config Version specific Entity shapes
+ * @returns `renewTrustChain` function
+ */
+function createRenewTrustChain(_ref2) {
+  let {
+    EntityStatementShape,
+    EntityConfigurationShape
+  } = _ref2;
+  /**
+   * Given a trust chain, obtain a new trust chain by fetching each element's fresh version
+   *
+   * @param chain The original chain
+   * @param appFetch (optional) fetch api implementation
+   * @returns A list of signed token that represent the trust chain, in the same order of the provided chain
+   * @throws {FederationError} If the chain is not valid
+   */
+  return async function renewTrustChain(chain) {
+    let appFetch = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : fetch;
+    return Promise.all(chain.map(async (token, index) => {
+      const decoded = (0, _utils.decode)(token);
+      const entityStatementResult = EntityStatementShape.safeParse(decoded);
+      const entityConfigurationResult = EntityConfigurationShape.safeParse(decoded);
+      if (entityConfigurationResult.success) {
+        return (0, _utils.getSignedEntityConfiguration)(entityConfigurationResult.data.payload.iss, {
+          appFetch
+        });
+      }
+      if (entityStatementResult.success) {
+        const entityStatement = entityStatementResult.data;
+        const parentBaseUrl = entityStatement.payload.iss;
+        const parentECJwt = await (0, _utils.getSignedEntityConfiguration)(parentBaseUrl, {
+          appFetch
+        });
+        const parentEC = EntityConfigurationShape.parse((0, _utils.decode)(parentECJwt));
+        const federationFetchEndpoint = parentEC.payload.metadata.federation_entity.federation_fetch_endpoint;
+        if (!federationFetchEndpoint) {
+          throw new _errors.MissingFederationFetchEndpointError(`Parent EC at ${parentBaseUrl} is missing federation_fetch_endpoint, cannot renew ES for ${entityStatement.payload.sub}.`, {
+            entityBaseUrl: entityStatement.payload.sub,
+            missingInEntityUrl: parentBaseUrl
+          });
+        }
+        return (0, _utils.getSignedEntityStatement)(federationFetchEndpoint, entityStatement.payload.sub, {
+          appFetch
+        });
+      }
+      throw new _errors.TrustChainRenewalError(`Failed to renew trust chain. Reason: element #${index} failed to parse.`, {
+        originalChain: chain
+      });
+    }));
+  };
+}
+/**
+ * Factory function to create `verifyTrustChain`.
+ * @param config Version specific Entity shapes
+ * @returns `verifyTrustChain` function compliant with the public API
+ */
+function createVerifyTrustChain(config) {
+  return async function verifyTrustChain(trustAnchorEntity, chain) {
+    let x509Options = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : {
+      connectTimeout: 10000,
+      readTimeout: 10000,
+      requireCrl: true
+    };
+    let {
+      appFetch = fetch,
+      renewOnFail = true
+    } = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : {};
+    const validateTrustChain = createValidateTrustChain(config);
+    const renewTrustChain = createRenewTrustChain(config);
+    try {
+      return await validateTrustChain(trustAnchorEntity, chain, x509Options);
+    } catch (error) {
+      if (renewOnFail) {
+        const renewedChain = await renewTrustChain(chain, appFetch);
+        return validateTrustChain(trustAnchorEntity, renewedChain, x509Options);
+      } else {
+        throw error;
+      }
+    }
+  };
+}
+//# sourceMappingURL=verify-chain.js.map

package/lib/commonjs/trust/common/verify-chain.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["_utils","require","_errors","_ioReactNativeCrypto","createValidateTrustChain","_ref","FirstElementShape","MiddleElementShape","LastElementShape","validateTrustChain","trustAnchorEntity","chain","x509Options","length","TrustChainEmptyError","selectTokenShape","elementIndex","selectKid","currentIndex","token","TrustChainTokenMissingError","index","shape","parse","decode","header","kid","selectKeys","keys","nextIndex","nextToken","payload","jwks","x509TrustAnchorCertBase64","getTrustAnchorX509Certificate","validationPromises","map","tokenString","i","kidFromTokenHeader","signerJwks","parsedToken","verify","jwkUsedForVerification","find","k","FederationError","tokenIndex","x5c","MissingX509CertsError","certChainBase64","at","slice","x509ValidationResult","verifyCertificateChain","isValid","X509ValidationError","validationStatus","errorMessage","x509ValidationStatus","x509ErrorMessage","Promise","all","createRenewTrustChain","_ref2","EntityStatementShape","EntityConfigurationShape","renewTrustChain","appFetch","arguments","undefined","fetch","decoded","entityStatementResult","safeParse","entityConfigurationResult","success","getSignedEntityConfiguration","data","iss","entityStatement","parentBaseUrl","parentECJwt","parentEC","federationFetchEndpoint","metadata","federation_entity","federation_fetch_endpoint","MissingFederationFetchEndpointError","sub","entityBaseUrl","missingInEntityUrl","getSignedEntityStatement","TrustChainRenewalError","originalChain","createVerifyTrustChain","config","verifyTrustChain","connectTimeout","readTimeout","requireCrl","renewOnFail","error","renewedChain"],"sourceRoot":"../../../../src","sources":["trust/common/verify-chain.ts"],"mappings":";;;;;;AAGA,IAAAA,MAAA,GAAAC,OAAA;AAMA,IAAAC,OAAA,GAAAD,OAAA;AASA,IAAAE,oBAAA,GAAAF,OAAA;AA8BA;AACA;AACA;AACA;AACA;AACA,SAASG,wBAAwBA,CAAAC,IAAA,EAIf;EAAA,IAJgB;IAChCC,iBAAiB;IACjBC,kBAAkB;IAClBC;EACa,CAAC,GAAAH,IAAA;EACd;AACF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACE,OAAO,eAAeI,kBAAkBA,CACtCC,iBAAoC,EACpCC,KAAe,EACfC,WAAmC,EACX;IACxB;IACA,IAAID,KAAK,CAACE,MAAM,KAAK,CAAC,EAAE;MACtB,MAAM,IAAIC,4BAAoB,CAAC,kCAAkC,CAAC;IACpE;;IAEA;IACA,MAAMC,gBAAgB,GAAIC,YAAoB,IAC5CA,YAAY,KAAK,CAAC,GACdV,iBAAiB,GACjBU,YAAY,KAAKL,KAAK,CAACE,MAAM,GAAG,CAAC,GAC/BL,gBAAgB,GAChBD,kBAAkB;;IAE1B;IACA,MAAMU,SAAS,GAAIC,YAAoB,IAAa;MAClD,MAAMC,KAAK,GAAGR,KAAK,CAACO,YAAY,CAAC;MACjC,IAAI,CAACC,KAAK,EAAE;QACV,MAAM,IAAIC,mCAA2B,CAClC,0BAAyBF,YAAa,kBAAiB,EACxD;UAAEG,KAAK,EAAEH;QAAa,CACxB,CAAC;MACH;MACA,MAAMI,KAAK,GAAGP,gBAAgB,CAACG,YAAY,CAAC;MAC5C,OAAOI,KAAK,CAACC,KAAK,CAAC,IAAAC,aAAM,EAACL,KAAK,CAAC,CAAC,CAACM,MAAM,CAACC,GAAG;IAC9C,CAAC;;IAED;IACA;IACA,MAAMC,UAAU,GAAIT,YAAoB,IAAY;MAClD,IAAIA,YAAY,KAAKP,KAAK,CAACE,MAAM,GAAG,CAAC,EAAE;QACrC,OAAOH,iBAAiB,CAACkB,IAAI;MAC/B;MAEA,MAAMC,SAAS,GAAGX,YAAY,GAAG,CAAC;MAClC,MAAMY,SAAS,GAAGnB,KAAK,CAACkB,SAAS,CAAC;MAClC,IAAI,CAACC,SAAS,EAAE;QACd,MAAM,IAAIV,mCAA2B,CAClC,+BAA8BS,SAAU,kCAAiCX,YAAa,IAAG,EAC1F;UAAEG,KAAK,EAAEQ;QAAU,CACrB,CAAC;MACH;MACA,MAAMP,KAAK,GAAGP,gBAAgB,CAACc,SAAS,CAAC;MACzC,OAAOP,KAAK,CAACC,KAAK,CAAC,IAAAC,aAAM,EAACM,SAAS,CAAC,CAAC,CAACC,OAAO,CAACC,IAAI,CAACJ,IAAI;IACzD,CAAC;IAED,MAAMK,yBAAyB,GAC7B,IAAAC,oCAA6B,EAACxB,iBAAiB,CAAC;;IAElD;IACA;IACA,MAAMyB,kBAAkB,GAAGxB,KAAK,CAACyB,GAAG,CAAC,OAAOC,WAAW,EAAEC,CAAC,KAAK;MAC7D,MAAMC,kBAAkB,GAAGtB,SAAS,CAACqB,CAAC,CAAC;MACvC,MAAME,UAAU,GAAGb,UAAU,CAACW,CAAC,CAAC;;MAEhC;MACA,MAAMG,WAAW,GAAG,MAAM,IAAAC,aAAM,EAC9BL,WAAW,EACXE,kBAAkB,EAClBC,UACF,CAAC;;MAED;MACA,MAAMG,sBAAsB,GAAGH,UAAU,CAACI,IAAI,CAC3CC,CAAC,IAAKA,CAAC,CAACnB,GAAG,KAAKa,kBACnB,CAAC;MAED,IAAI,CAACI,sBAAsB,EAAE;QAC3B,MAAM,IAAIG,uBAAe,CACtB,iBAAgBP,kBAAmB,uDAAsDD,CAAE,mCAAkC,EAC9H;UAAES,UAAU,EAAET,CAAC;UAAEZ,GAAG,EAAEa;QAAmB,CAC3C,CAAC;MACH;MAEA,IACE,CAACI,sBAAsB,CAACK,GAAG,IAC3BL,sBAAsB,CAACK,GAAG,CAACnC,MAAM,KAAK,CAAC,EACvC;QACA,MAAM,IAAIoC,6BAAqB,CAC5B,iBAAgBV,kBAAmB,0EAAyED,CAAE,GACjH,CAAC;MACH;;MAEA;MACA;MACA;MACA,MAAMY,eAAe,GACnBP,sBAAsB,CAACK,GAAG,CAACnC,MAAM,GAAG,CAAC,IACrC8B,sBAAsB,CAACK,GAAG,CAACG,EAAE,CAAC,CAAC,CAAC,CAAC,KAAKlB,yBAAyB,GAC3DU,sBAAsB,CAACK,GAAG,CAACI,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GACvCT,sBAAsB,CAACK,GAAG;MAEhC,MAAMK,oBAAiD,GACrD,MAAM,IAAAC,2CAAsB,EAC1BJ,eAAe,EACfjB,yBAAyB,EACzBrB,WACF,CAAC;MAEH,IAAI,CAACyC,oBAAoB,CAACE,OAAO,EAAE;QACjC,MAAM,IAAIC,2BAAmB,CAC1B,gEAA+DlB,CAAE,UAASC,kBAAmB,cAAac,oBAAoB,CAACI,gBAAiB,YAAWJ,oBAAoB,CAACK,YAAa,EAAC,EAC/L;UACEX,UAAU,EAAET,CAAC;UACbZ,GAAG,EAAEa,kBAAkB;UACvBoB,oBAAoB,EAAEN,oBAAoB,CAACI,gBAAgB;UAC3DG,gBAAgB,EAAEP,oBAAoB,CAACK;QACzC,CACF,CAAC;MACH;MACA,OAAOjB,WAAW;IACpB,CAAC,CAAC;IAEF,OAAOoB,OAAO,CAACC,GAAG,CAAC3B,kBAAkB,CAAC;EACxC,CAAC;AACH;;AAEA;AACA;AACA;AACA;AACA;AACA,SAAS4B,qBAAqBA,CAAAC,KAAA,EAGZ;EAAA,IAHa;IAC7BC,oBAAoB;IACpBC;EACa,CAAC,GAAAF,KAAA;EACd;AACF;AACA;AACA;AACA;AACA;AACA;AACA;EACE,OAAO,eAAeG,eAAeA,CACnCxD,KAAe,EAEI;IAAA,IADnByD,QAA8B,GAAAC,SAAA,CAAAxD,MAAA,QAAAwD,SAAA,QAAAC,SAAA,GAAAD,SAAA,MAAGE,KAAK;IAEtC,OAAOV,OAAO,CAACC,GAAG,CAChBnD,KAAK,CAACyB,GAAG,CAAC,OAAOjB,KAAK,EAAEE,KAAK,KAAK;MAChC,MAAMmD,OAAO,GAAG,IAAAhD,aAAM,EAACL,KAAK,CAAC;MAE7B,MAAMsD,qBAAqB,GAAGR,oBAAoB,CAACS,SAAS,CAACF,OAAO,CAAC;MACrE,MAAMG,yBAAyB,GAC7BT,wBAAwB,CAACQ,SAAS,CAACF,OAAO,CAAC;MAE7C,IAAIG,yBAAyB,CAACC,OAAO,EAAE;QACrC,OAAO,IAAAC,mCAA4B,EACjCF,yBAAyB,CAACG,IAAI,CAAC/C,OAAO,CAACgD,GAAG,EAC1C;UAAEX;QAAS,CACb,CAAC;MACH;MACA,IAAIK,qBAAqB,CAACG,OAAO,EAAE;QACjC,MAAMI,eAAe,GAAGP,qBAAqB,CAACK,IAAI;QAElD,MAAMG,aAAa,GAAGD,eAAe,CAACjD,OAAO,CAACgD,GAAG;QACjD,MAAMG,WAAW,GAAG,MAAM,IAAAL,mCAA4B,EACpDI,aAAa,EACb;UAAEb;QAAS,CACb,CAAC;QACD,MAAMe,QAAQ,GAAGjB,wBAAwB,CAAC3C,KAAK,CAAC,IAAAC,aAAM,EAAC0D,WAAW,CAAC,CAAC;QAEpE,MAAME,uBAAuB,GAC3BD,QAAQ,CAACpD,OAAO,CAACsD,QAAQ,CAACC,iBAAiB,CACxCC,yBAAyB;QAC9B,IAAI,CAACH,uBAAuB,EAAE;UAC5B,MAAM,IAAII,2CAAmC,CAC1C,gBAAeP,aAAc,8DAA6DD,eAAe,CAACjD,OAAO,CAAC0D,GAAI,GAAE,EACzH;YACEC,aAAa,EAAEV,eAAe,CAACjD,OAAO,CAAC0D,GAAG;YAC1CE,kBAAkB,EAAEV;UACtB,CACF,CAAC;QACH;QACA,OAAO,IAAAW,+BAAwB,EAC7BR,uBAAuB,EACvBJ,eAAe,CAACjD,OAAO,CAAC0D,GAAG,EAC3B;UAAErB;QAAS,CACb,CAAC;MACH;MACA,MAAM,IAAIyB,8BAAsB,CAC7B,iDAAgDxE,KAAM,mBAAkB,EACzE;QAAEyE,aAAa,EAAEnF;MAAM,CACzB,CAAC;IACH,CAAC,CACH,CAAC;EACH,CAAC;AACH;;AAEA;AACA;AACA;AACA;AACA;AACO,SAASoF,sBAAsBA,CACpCC,MAAqB,EACS;EAC9B,OAAO,eAAeC,gBAAgBA,CACpCvF,iBAAiB,EACjBC,KAAK,EAOL;IAAA,IANAC,WAAW,GAAAyD,SAAA,CAAAxD,MAAA,QAAAwD,SAAA,QAAAC,SAAA,GAAAD,SAAA,MAAG;MACZ6B,cAAc,EAAE,KAAK;MACrBC,WAAW,EAAE,KAAK;MAClBC,UAAU,EAAE;IACd,CAAC;IAAA,IACD;MAAEhC,QAAQ,GAAGG,KAAK;MAAE8B,WAAW,GAAG;IAAK,CAAC,GAAAhC,SAAA,CAAAxD,MAAA,QAAAwD,SAAA,QAAAC,SAAA,GAAAD,SAAA,MAAG,CAAC,CAAC;IAE7C,MAAM5D,kBAAkB,GAAGL,wBAAwB,CAAC4F,MAAM,CAAC;IAC3D,MAAM7B,eAAe,GAAGJ,qBAAqB,CAACiC,MAAM,CAAC;IAErD,IAAI;MACF,OAAO,MAAMvF,kBAAkB,CAACC,iBAAiB,EAAEC,KAAK,EAAEC,WAAW,CAAC;IACxE,CAAC,CAAC,OAAO0F,KAAK,EAAE;MACd,IAAID,WAAW,EAAE;QACf,MAAME,YAAY,GAAG,MAAMpC,eAAe,CAACxD,KAAK,EAAEyD,QAAQ,CAAC;QAC3D,OAAO3D,kBAAkB,CAACC,iBAAiB,EAAE6F,YAAY,EAAE3F,WAAW,CAAC;MACzE,CAAC,MAAM;QACL,MAAM0F,KAAK;MACb;IACF;EACF,CAAC;AACH"}

package/lib/commonjs/trust/index.js CHANGED Viewed

@@ -3,15 +3,16 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.Verify = exports.Types = exports.Errors = exports.Build = void 0;
-var Build = _interopRequireWildcard(require("./build-chain"));
-exports.Build = Build;
-var Verify = _interopRequireWildcard(require("./verify-chain"));
-exports.Verify = Verify;
-var Errors = _interopRequireWildcard(require("./errors"));
+exports.Errors = void 0;
+Object.defineProperty(exports, "V1_0_0", {
+  enumerable: true,
+  get: function () {
+    return _v.Trust;
+  }
+});
+var Errors = _interopRequireWildcard(require("./common/errors"));
 exports.Errors = Errors;
-var Types = _interopRequireWildcard(require("./types"));
-exports.Types = Types;
+var _v = require("./v1.0.0");
 function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
 function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
 //# sourceMappingURL=index.js.map

package/lib/commonjs/trust/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"names":["~~Build~~","_interopRequireWildcard","require","exports","~~Verify~~","~~Errors","Types","~~_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set"],"sourceRoot":"../../../src","sources":["trust/index.ts"],"mappings":"~~;;;;;;~~AAAA,IAAAA,~~KAAA~~,GAAAC,uBAAA,CAAAC,OAAA;~~AAAuCC~~,OAAA,CAAAH,~~KAAA,GAAAA,KAAA;AACvC,IAAAI,~~MAAA,~~GAAAH,uBAAA,CAAAC,OAAA;AAAyCC,OAAA,CAAAC,MAAA,~~GAAAA,MAAA;~~AACzC~~,~~IAAAC~~,~~MAAA~~,~~GAAAJ~~,~~uBAAA,CAAAC,~~OAAA;~~AAAmCC~~,~~OAAA~~,~~CAAAE,MAAA,GAAAA,MAAA;AACnC,IAAAC,KAAA,GAAAL,uBAAA,CAAAC,OAAA;AAAiCC,OAAA,CAAAG,KAAA,GAAAA,KAAA;AAAA,SAAAC,~~yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,~~SAAAP~~,~~wBAAAW~~,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA"}
1	+ {"version":3,"names":["Errors","_interopRequireWildcard","require","exports","_v","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set"],"sourceRoot":"../../../src","sources":["trust/index.ts"],"mappings":";;;;;;;;;;;;AAAA,IAAAA,MAAA,GAAAC,uBAAA,CAAAC,OAAA;AAA0CC,OAAA,CAAAH,MAAA,GAAAA,MAAA;AAG1C,IAAAI,EAAA,GAAAF,OAAA;AAA2C,SAAAG,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAL,wBAAAS,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA"}

package/lib/commonjs/trust/v1.0.0/build-chain.js ADDED Viewed

@@ -0,0 +1,15 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.buildTrustChain = void 0;
+var _buildChain = require("../common/build-chain");
+var _types = require("../common/types");
+var _types2 = require("./types");
+const buildTrustChain = (0, _buildChain.createBuildTrustChain)({
+  EntityStatementShape: _types.EntityStatement,
+  EntityConfigurationShape: _types2.EntityConfiguration
+});
+exports.buildTrustChain = buildTrustChain;
+//# sourceMappingURL=build-chain.js.map

package/lib/commonjs/trust/v1.0.0/build-chain.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["_buildChain","require","_types","_types2","buildTrustChain","createBuildTrustChain","EntityStatementShape","EntityStatement","EntityConfigurationShape","EntityConfiguration","exports"],"sourceRoot":"../../../../src","sources":["trust/v1.0.0/build-chain.ts"],"mappings":";;;;;;AAAA,IAAAA,WAAA,GAAAC,OAAA;AACA,IAAAC,MAAA,GAAAD,OAAA;AACA,IAAAE,OAAA,GAAAF,OAAA;AAEO,MAAMG,eAAe,GAAG,IAAAC,iCAAqB,EAAC;EACnDC,oBAAoB,EAAEC,sBAAe;EACrCC,wBAAwB,EAAEC;AAC5B,CAAC,CAAC;AAACC,OAAA,CAAAN,eAAA,GAAAA,eAAA"}

package/lib/commonjs/trust/v1.0.0/entities.js ADDED Viewed

@@ -0,0 +1,51 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.getWalletProviderEntityConfiguration = exports.getTrustAnchorEntityConfiguration = exports.getRelyingPartyEntityConfiguration = exports.getEntityConfiguration = exports.getCredentialIssuerEntityConfiguration = void 0;
+var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
+var _types = require("./types");
+var _utils = require("../common/utils");
+/**
+ * Fetch and parse the entity configuration document for a given federation entity.
+ * This is an inner method to serve public interfaces.
+ * @version 1.0.0
+ *
+ * To add another entity configuration type (example: Foo entity type):
+ *  - create its zod schema and type by inherit from the base type (example: FooEntityConfiguration = BaseEntityConfiguration.and(...))
+ *  - add such type to EntityConfiguration union
+ *  - create a public function which use such type (example: getFooEntityConfiguration = (url, options) => Promise<FooEntityConfiguration>)
+ *
+ * @param entityBaseUrl The base url of the entity.
+ * @param schema The expected schema of the entity configuration, according to the kind of entity we are fetching from.
+ * @param options An optional object with additional options.
+ * @param options.appFetch An optional instance of the http client to be used.
+ * @returns The parsed entity configuration object
+ * @throws {IoWalletError} If the http request fails
+ * @throws Parse error if the document is not in the expected shape.
+ */
+async function fetchAndParseEntityConfiguration(entityBaseUrl, schema) {
+  let {
+    appFetch = fetch
+  } = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : {};
+  const responseText = await (0, _utils.getSignedEntityConfiguration)(entityBaseUrl, {
+    appFetch
+  });
+  const responseJwt = (0, _ioReactNativeJwt.decode)(responseText);
+  return schema.parse({
+    header: responseJwt.protectedHeader,
+    payload: responseJwt.payload
+  });
+}
+const getWalletProviderEntityConfiguration = (entityBaseUrl, options) => fetchAndParseEntityConfiguration(entityBaseUrl, _types.WalletProviderEntityConfiguration, options);
+exports.getWalletProviderEntityConfiguration = getWalletProviderEntityConfiguration;
+const getCredentialIssuerEntityConfiguration = (entityBaseUrl, options) => fetchAndParseEntityConfiguration(entityBaseUrl, _types.CredentialIssuerEntityConfiguration, options);
+exports.getCredentialIssuerEntityConfiguration = getCredentialIssuerEntityConfiguration;
+const getTrustAnchorEntityConfiguration = (entityBaseUrl, options) => fetchAndParseEntityConfiguration(entityBaseUrl, _types.TrustAnchorEntityConfiguration, options);
+exports.getTrustAnchorEntityConfiguration = getTrustAnchorEntityConfiguration;
+const getRelyingPartyEntityConfiguration = (entityBaseUrl, options) => fetchAndParseEntityConfiguration(entityBaseUrl, _types.RelyingPartyEntityConfiguration, options);
+exports.getRelyingPartyEntityConfiguration = getRelyingPartyEntityConfiguration;
+const getEntityConfiguration = (entityBaseUrl, options) => fetchAndParseEntityConfiguration(entityBaseUrl, _types.EntityConfiguration, options);
+exports.getEntityConfiguration = getEntityConfiguration;
+//# sourceMappingURL=entities.js.map

package/lib/commonjs/trust/v1.0.0/entities.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["_ioReactNativeJwt","require","_types","_utils","fetchAndParseEntityConfiguration","entityBaseUrl","schema","appFetch","fetch","arguments","length","undefined","responseText","getSignedEntityConfiguration","responseJwt","decodeJwt","parse","header","protectedHeader","payload","getWalletProviderEntityConfiguration","options","WalletProviderEntityConfiguration","exports","getCredentialIssuerEntityConfiguration","CredentialIssuerEntityConfiguration","getTrustAnchorEntityConfiguration","TrustAnchorEntityConfiguration","getRelyingPartyEntityConfiguration","RelyingPartyEntityConfiguration","getEntityConfiguration","EntityConfiguration"],"sourceRoot":"../../../../src","sources":["trust/v1.0.0/entities.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,MAAA,GAAAD,OAAA;AAQA,IAAAE,MAAA,GAAAF,OAAA;AAKA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,eAAeG,gCAAgCA,CAC7CC,aAAqB,EACrBC,MAAoB,EAER;EAAA,IADZ;IAAEC,QAAQ,GAAGC;EAAoB,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEvC,MAAMG,YAAY,GAAG,MAAM,IAAAC,mCAA4B,EAACR,aAAa,EAAE;IACrEE;EACF,CAAC,CAAC;EAEF,MAAMO,WAAW,GAAG,IAAAC,wBAAS,EAACH,YAAY,CAAC;EAC3C,OAAON,MAAM,CAACU,KAAK,CAAC;IAClBC,MAAM,EAAEH,WAAW,CAACI,eAAe;IACnCC,OAAO,EAAEL,WAAW,CAACK;EACvB,CAAC,CAAC;AACJ;AAEO,MAAMC,oCAAoC,GAAGA,CAClDf,aAAqB,EACrBgB,OAAsB,KAEtBjB,gCAAgC,CAC9BC,aAAa,EACbiB,wCAAiC,EACjCD,OACF,CAAC;AAACE,OAAA,CAAAH,oCAAA,GAAAA,oCAAA;AAEG,MAAMI,sCAAsC,GAAGA,CACpDnB,aAAqB,EACrBgB,OAAsB,KAEtBjB,gCAAgC,CAC9BC,aAAa,EACboB,0CAAmC,EACnCJ,OACF,CAAC;AAACE,OAAA,CAAAC,sCAAA,GAAAA,sCAAA;AAEG,MAAME,iCAAiC,GAAGA,CAC/CrB,aAAqB,EACrBgB,OAAsB,KAEtBjB,gCAAgC,CAC9BC,aAAa,EACbsB,qCAA8B,EAC9BN,OACF,CAAC;AAACE,OAAA,CAAAG,iCAAA,GAAAA,iCAAA;AAEG,MAAME,kCAAkC,GAAGA,CAChDvB,aAAqB,EACrBgB,OAAsB,KAEtBjB,gCAAgC,CAC9BC,aAAa,EACbwB,sCAA+B,EAC/BR,OACF,CAAC;AAACE,OAAA,CAAAK,kCAAA,GAAAA,kCAAA;AAEG,MAAME,sBAAsB,GAAGA,CACpCzB,aAAqB,EACrBgB,OAAsB,KAEtBjB,gCAAgC,CAACC,aAAa,EAAE0B,0BAAmB,EAAEV,OAAO,CAAC;AAACE,OAAA,CAAAO,sBAAA,GAAAA,sBAAA"}

package/lib/commonjs/trust/v1.0.0/index.js ADDED Viewed

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.Trust = void 0;
+var _entities = require("./entities");
+var _mappers = require("../../utils/mappers");
+var _mappers2 = require("./mappers");
+var _buildChain = require("./build-chain");
+var _verifyChain = require("./verify-chain");
+const Trust = {
+  getTrustAnchorEntityConfiguration: (0, _mappers.withMapperAsync)(_mappers2.mapToTrustAnchorConfig, _entities.getTrustAnchorEntityConfiguration),
+  buildTrustChain: _buildChain.buildTrustChain,
+  verifyTrustChain: _verifyChain.verifyTrustChain
+};
+exports.Trust = Trust;
+//# sourceMappingURL=index.js.map

package/lib/commonjs/trust/v1.0.0/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["_entities","require","_mappers","_mappers2","_buildChain","_verifyChain","Trust","getTrustAnchorEntityConfiguration","withMapperAsync","mapToTrustAnchorConfig","buildTrustChain","verifyTrustChain","exports"],"sourceRoot":"../../../../src","sources":["trust/v1.0.0/index.ts"],"mappings":";;;;;;AACA,IAAAA,SAAA,GAAAC,OAAA;AACA,IAAAC,QAAA,GAAAD,OAAA;AACA,IAAAE,SAAA,GAAAF,OAAA;AACA,IAAAG,WAAA,GAAAH,OAAA;AACA,IAAAI,YAAA,GAAAJ,OAAA;AAEO,MAAMK,KAAe,GAAG;EAC7BC,iCAAiC,EAAE,IAAAC,wBAAe,EAChDC,gCAAsB,EACtBF,2CACF,CAAC;EACDG,eAAe,EAAfA,2BAAe;EACfC,gBAAgB,EAAhBA;AACF,CAAC;AAACC,OAAA,CAAAN,KAAA,GAAAA,KAAA"}

package/lib/commonjs/trust/v1.0.0/mappers.js ADDED Viewed

@@ -0,0 +1,21 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.mapToTrustAnchorConfig = void 0;
+var _mappers = require("../../utils/mappers");
+const mapToTrustAnchorConfig = (0, _mappers.createMapper)(x => {
+  const {
+    federation_entity
+  } = x.payload.metadata;
+  return {
+    jwt: {
+      header: x.header
+    },
+    keys: x.payload.jwks.keys,
+    federation_entity
+  };
+});
+exports.mapToTrustAnchorConfig = mapToTrustAnchorConfig;
+//# sourceMappingURL=mappers.js.map

package/lib/commonjs/trust/v1.0.0/mappers.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["_mappers","require","mapToTrustAnchorConfig","createMapper","x","federation_entity","payload","metadata","jwt","header","keys","jwks","exports"],"sourceRoot":"../../../../src","sources":["trust/v1.0.0/mappers.ts"],"mappings":";;;;;;AAAA,IAAAA,QAAA,GAAAC,OAAA;AAIO,MAAMC,sBAAsB,GAAG,IAAAC,qBAAY,EAG/CC,CAAC,IAAK;EACP,MAAM;IAAEC;EAAkB,CAAC,GAAGD,CAAC,CAACE,OAAO,CAACC,QAAQ;EAChD,OAAO;IACLC,GAAG,EAAE;MAAEC,MAAM,EAAEL,CAAC,CAACK;IAAO,CAAC;IACzBC,IAAI,EAAEN,CAAC,CAACE,OAAO,CAACK,IAAI,CAACD,IAAI;IACzBL;EACF,CAAC;AACH,CAAC,CAAC;AAACO,OAAA,CAAAV,sBAAA,GAAAA,sBAAA"}

package/lib/commonjs/trust/v1.0.0/types.js ADDED Viewed

@@ -0,0 +1,159 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.WalletProviderEntityConfiguration = exports.TrustAnchorEntityConfiguration = exports.RelyingPartyEntityConfiguration = exports.EntityConfiguration = exports.CredentialIssuerEntityConfiguration = void 0;
+var z = _interopRequireWildcard(require("zod"));
+var _jwk = require("../../utils/jwk");
+var _types = require("../common/types");
+var _core = require("@openid-federation/core");
+function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
+function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
+const RelyingPartyMetadata = z.object({
+  application_type: z.string().optional(),
+  client_id: z.string().optional(),
+  client_name: z.string().optional(),
+  jwks: z.object({
+    keys: z.array(_core.jsonWebKeySchema)
+  }),
+  contacts: z.array(z.string()).optional(),
+  request_uris: z.array(z.string()).optional(),
+  authorization_signed_response_alg: z.string().optional(),
+  authorization_encrypted_response_alg: z.string().optional(),
+  authorization_encrypted_response_enc: z.string().optional()
+});
+// Display metadata for a credential, used by the issuer to
+// instruct the Wallet Solution on how to render the credential correctly
+const CredentialDisplayMetadata = z.object({
+  name: z.string(),
+  locale: z.string()
+});
+// Metadata for displaying issuer information
+const CredentialIssuerDisplayMetadata = z.object({
+  name: z.string(),
+  locale: z.string()
+});
+const ClaimsMetadata = z.object({
+  path: z.array(z.union([z.string(), z.number(), z.null()])),
+  // https://openid.net/specs/openid-4-verifiable-credential-issuance-1_0-15.html#name-claims-path-pointer
+  display: z.array(CredentialDisplayMetadata)
+});
+const IssuanceErrorSupported = z.object({
+  display: z.array(z.object({
+    title: z.string(),
+    description: z.string(),
+    locale: z.string()
+  }))
+});
+// Metadata for a credential which is supported by an Issuer
+const SupportedCredentialMetadata = z.intersection(z.discriminatedUnion("format", [z.object({
+  format: z.literal("dc+sd-jwt"),
+  vct: z.string()
+}), z.object({
+  format: z.literal("mso_mdoc"),
+  doctype: z.string()
+})]), z.object({
+  scope: z.string(),
+  display: z.array(CredentialDisplayMetadata),
+  claims: z.array(ClaimsMetadata),
+  cryptographic_binding_methods_supported: z.array(z.string()),
+  credential_signing_alg_values_supported: z.array(z.string()),
+  authentic_source: z.string().optional(),
+  issuance_errors_supported: z.record(IssuanceErrorSupported).optional()
+}));
+// Entity configuration for a Trust Anchor (it has no specific metadata section)
+const TrustAnchorEntityConfiguration = _types.BaseEntityConfiguration;
+// Entity configuration for a Credential Issuer
+exports.TrustAnchorEntityConfiguration = TrustAnchorEntityConfiguration;
+const CredentialIssuerEntityConfiguration = _types.BaseEntityConfiguration.and(z.object({
+  payload: z.object({
+    jwks: z.object({
+      keys: z.array(_jwk.JWK)
+    }),
+    metadata: z.object({
+      openid_credential_issuer: z.object({
+        credential_issuer: z.string(),
+        credential_endpoint: z.string(),
+        revocation_endpoint: z.string().optional(),
+        nonce_endpoint: z.string(),
+        status_attestation_endpoint: z.string(),
+        display: z.array(CredentialIssuerDisplayMetadata),
+        credential_configurations_supported: z.record(SupportedCredentialMetadata),
+        jwks: z.object({
+          keys: z.array(_jwk.JWK)
+        }),
+        trust_frameworks_supported: z.array(z.string()),
+        evidence_supported: z.array(z.string())
+      }),
+      oauth_authorization_server: z.object({
+        authorization_endpoint: z.string(),
+        pushed_authorization_request_endpoint: z.string(),
+        token_endpoint: z.string(),
+        client_registration_types_supported: z.array(z.string()),
+        code_challenge_methods_supported: z.array(z.string()),
+        acr_values_supported: z.array(z.string()),
+        grant_types_supported: z.array(z.string()),
+        issuer: z.string(),
+        jwks: z.object({
+          keys: z.array(_jwk.JWK)
+        }),
+        scopes_supported: z.array(z.string()),
+        response_modes_supported: z.array(z.string()),
+        token_endpoint_auth_methods_supported: z.array(z.string()),
+        token_endpoint_auth_signing_alg_values_supported: z.array(z.string()),
+        request_object_signing_alg_values_supported: z.array(z.string())
+      }),
+      /**
+       * Credential Issuers act as Relying Party when they require the presentation of other credentials.
+       * This does not apply for PID issuance, which requires CIE authz.
+       */
+      openid_credential_verifier: RelyingPartyMetadata.optional()
+    })
+  })
+}));
+// Entity configuration for a Relying Party
+exports.CredentialIssuerEntityConfiguration = CredentialIssuerEntityConfiguration;
+const RelyingPartyEntityConfiguration = _types.BaseEntityConfiguration.and(z.object({
+  payload: z.object({
+    metadata: z.object({
+      openid_credential_verifier: RelyingPartyMetadata
+    })
+  })
+}));
+// Entity configuration for a Wallet Provider
+exports.RelyingPartyEntityConfiguration = RelyingPartyEntityConfiguration;
+const WalletProviderEntityConfiguration = _types.BaseEntityConfiguration.and(z.object({
+  payload: z.object({
+    metadata: z.object({
+      wallet_provider: z.object({
+        token_endpoint: z.string(),
+        aal_values_supported: z.array(z.string()).optional(),
+        grant_types_supported: z.array(z.string()),
+        token_endpoint_auth_methods_supported: z.array(z.string()),
+        token_endpoint_auth_signing_alg_values_supported: z.array(z.string()),
+        jwks: z.object({
+          keys: z.array(_jwk.JWK)
+        })
+      }).passthrough()
+    })
+  })
+}));
+// Maps any entity configuration by the union of every possible shapes
+exports.WalletProviderEntityConfiguration = WalletProviderEntityConfiguration;
+const EntityConfiguration = z.union([WalletProviderEntityConfiguration, CredentialIssuerEntityConfiguration, TrustAnchorEntityConfiguration, RelyingPartyEntityConfiguration], {
+  description: "Any kind of Entity Configuration allowed in the ecosystem"
+});
+exports.EntityConfiguration = EntityConfiguration;
+//# sourceMappingURL=types.js.map

package/lib/commonjs/trust/v1.0.0/types.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["z","_interopRequireWildcard","require","_jwk","_types","_core","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","RelyingPartyMetadata","object","application_type","string","optional","client_id","client_name","jwks","keys","array","jsonWebKeySchema","contacts","request_uris","authorization_signed_response_alg","authorization_encrypted_response_alg","authorization_encrypted_response_enc","CredentialDisplayMetadata","name","locale","CredentialIssuerDisplayMetadata","ClaimsMetadata","path","union","number","null","display","IssuanceErrorSupported","title","description","SupportedCredentialMetadata","intersection","discriminatedUnion","format","literal","vct","doctype","scope","claims","cryptographic_binding_methods_supported","credential_signing_alg_values_supported","authentic_source","issuance_errors_supported","record","TrustAnchorEntityConfiguration","BaseEntityConfiguration","exports","CredentialIssuerEntityConfiguration","and","payload","JWK","metadata","openid_credential_issuer","credential_issuer","credential_endpoint","revocation_endpoint","nonce_endpoint","status_attestation_endpoint","credential_configurations_supported","trust_frameworks_supported","evidence_supported","oauth_authorization_server","authorization_endpoint","pushed_authorization_request_endpoint","token_endpoint","client_registration_types_supported","code_challenge_methods_supported","acr_values_supported","grant_types_supported","issuer","scopes_supported","response_modes_supported","token_endpoint_auth_methods_supported","token_endpoint_auth_signing_alg_values_supported","request_object_signing_alg_values_supported","openid_credential_verifier","RelyingPartyEntityConfiguration","WalletProviderEntityConfiguration","wallet_provider","aal_values_supported","passthrough","EntityConfiguration"],"sourceRoot":"../../../../src","sources":["trust/v1.0.0/types.ts"],"mappings":";;;;;;AAAA,IAAAA,CAAA,GAAAC,uBAAA,CAAAC,OAAA;AACA,IAAAC,IAAA,GAAAD,OAAA;AACA,IAAAE,MAAA,GAAAF,OAAA;AACA,IAAAG,KAAA,GAAAH,OAAA;AAA2D,SAAAI,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAN,wBAAAU,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAE3D,MAAMW,oBAAoB,GAAG5B,CAAC,CAAC6B,MAAM,CAAC;EACpCC,gBAAgB,EAAE9B,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACvCC,SAAS,EAAEjC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAChCE,WAAW,EAAElC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAClCG,IAAI,EAAEnC,CAAC,CAAC6B,MAAM,CAAC;IACbO,IAAI,EAAEpC,CAAC,CAACqC,KAAK,CAACC,sBAAgB;EAChC,CAAC,CAAC;EACFC,QAAQ,EAAEvC,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxCQ,YAAY,EAAExC,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC5CS,iCAAiC,EAAEzC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxDU,oCAAoC,EAAE1C,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC3DW,oCAAoC,EAAE3C,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC;AAC5D,CAAC,CAAC;;AAEF;AACA;AAEA,MAAMY,yBAAyB,GAAG5C,CAAC,CAAC6B,MAAM,CAAC;EACzCgB,IAAI,EAAE7C,CAAC,CAAC+B,MAAM,CAAC,CAAC;EAChBe,MAAM,EAAE9C,CAAC,CAAC+B,MAAM,CAAC;AACnB,CAAC,CAAC;;AAEF;;AAIA,MAAMgB,+BAA+B,GAAG/C,CAAC,CAAC6B,MAAM,CAAC;EAC/CgB,IAAI,EAAE7C,CAAC,CAAC+B,MAAM,CAAC,CAAC;EAChBe,MAAM,EAAE9C,CAAC,CAAC+B,MAAM,CAAC;AACnB,CAAC,CAAC;AAGF,MAAMiB,cAAc,GAAGhD,CAAC,CAAC6B,MAAM,CAAC;EAC9BoB,IAAI,EAAEjD,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAACkD,KAAK,CAAC,CAAClD,CAAC,CAAC+B,MAAM,CAAC,CAAC,EAAE/B,CAAC,CAACmD,MAAM,CAAC,CAAC,EAAEnD,CAAC,CAACoD,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;EAAE;EAC5DC,OAAO,EAAErD,CAAC,CAACqC,KAAK,CAACO,yBAAyB;AAC5C,CAAC,CAAC;AAGF,MAAMU,sBAAsB,GAAGtD,CAAC,CAAC6B,MAAM,CAAC;EACtCwB,OAAO,EAAErD,CAAC,CAACqC,KAAK,CACdrC,CAAC,CAAC6B,MAAM,CAAC;IACP0B,KAAK,EAAEvD,CAAC,CAAC+B,MAAM,CAAC,CAAC;IACjByB,WAAW,EAAExD,CAAC,CAAC+B,MAAM,CAAC,CAAC;IACvBe,MAAM,EAAE9C,CAAC,CAAC+B,MAAM,CAAC;EACnB,CAAC,CACH;AACF,CAAC,CAAC;;AAEF;;AAEA,MAAM0B,2BAA2B,GAAGzD,CAAC,CAAC0D,YAAY,CAChD1D,CAAC,CAAC2D,kBAAkB,CAAC,QAAQ,EAAE,CAC7B3D,CAAC,CAAC6B,MAAM,CAAC;EAAE+B,MAAM,EAAE5D,CAAC,CAAC6D,OAAO,CAAC,WAAW,CAAC;EAAEC,GAAG,EAAE9D,CAAC,CAAC+B,MAAM,CAAC;AAAE,CAAC,CAAC,EAC7D/B,CAAC,CAAC6B,MAAM,CAAC;EAAE+B,MAAM,EAAE5D,CAAC,CAAC6D,OAAO,CAAC,UAAU,CAAC;EAAEE,OAAO,EAAE/D,CAAC,CAAC+B,MAAM,CAAC;AAAE,CAAC,CAAC,CACjE,CAAC,EACF/B,CAAC,CAAC6B,MAAM,CAAC;EACPmC,KAAK,EAAEhE,CAAC,CAAC+B,MAAM,CAAC,CAAC;EACjBsB,OAAO,EAAErD,CAAC,CAACqC,KAAK,CAACO,yBAAyB,CAAC;EAC3CqB,MAAM,EAAEjE,CAAC,CAACqC,KAAK,CAACW,cAAc,CAAC;EAC/BkB,uCAAuC,EAAElE,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;EAC5DoC,uCAAuC,EAAEnE,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;EAC5DqC,gBAAgB,EAAEpE,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACvCqC,yBAAyB,EAAErE,CAAC,CAACsE,MAAM,CAAChB,sBAAsB,CAAC,CAACtB,QAAQ,CAAC;AACvE,CAAC,CACH,CAAC;;AAED;;AAIO,MAAMuC,8BAA8B,GAAGC,8BAAuB;;AAErE;AAAAC,OAAA,CAAAF,8BAAA,GAAAA,8BAAA;AAIO,MAAMG,mCAAmC,GAAGF,8BAAuB,CAACG,GAAG,CAC5E3E,CAAC,CAAC6B,MAAM,CAAC;EACP+C,OAAO,EAAE5E,CAAC,CAAC6B,MAAM,CAAC;IAChBM,IAAI,EAAEnC,CAAC,CAAC6B,MAAM,CAAC;MAAEO,IAAI,EAAEpC,CAAC,CAACqC,KAAK,CAACwC,QAAG;IAAE,CAAC,CAAC;IACtCC,QAAQ,EAAE9E,CAAC,CAAC6B,MAAM,CAAC;MACjBkD,wBAAwB,EAAE/E,CAAC,CAAC6B,MAAM,CAAC;QACjCmD,iBAAiB,EAAEhF,CAAC,CAAC+B,MAAM,CAAC,CAAC;QAC7BkD,mBAAmB,EAAEjF,CAAC,CAAC+B,MAAM,CAAC,CAAC;QAC/BmD,mBAAmB,EAAElF,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;QAC1CmD,cAAc,EAAEnF,CAAC,CAAC+B,MAAM,CAAC,CAAC;QAC1BqD,2BAA2B,EAAEpF,CAAC,CAAC+B,MAAM,CAAC,CAAC;QACvCsB,OAAO,EAAErD,CAAC,CAACqC,KAAK,CAACU,+BAA+B,CAAC;QACjDsC,mCAAmC,EAAErF,CAAC,CAACsE,MAAM,CAC3Cb,2BACF,CAAC;QACDtB,IAAI,EAAEnC,CAAC,CAAC6B,MAAM,CAAC;UAAEO,IAAI,EAAEpC,CAAC,CAACqC,KAAK,CAACwC,QAAG;QAAE,CAAC,CAAC;QACtCS,0BAA0B,EAAEtF,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QAC/CwD,kBAAkB,EAAEvF,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC;MACxC,CAAC,CAAC;MACFyD,0BAA0B,EAAExF,CAAC,CAAC6B,MAAM,CAAC;QACnC4D,sBAAsB,EAAEzF,CAAC,CAAC+B,MAAM,CAAC,CAAC;QAClC2D,qCAAqC,EAAE1F,CAAC,CAAC+B,MAAM,CAAC,CAAC;QACjD4D,cAAc,EAAE3F,CAAC,CAAC+B,MAAM,CAAC,CAAC;QAC1B6D,mCAAmC,EAAE5F,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QACxD8D,gCAAgC,EAAE7F,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QACrD+D,oBAAoB,EAAE9F,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QACzCgE,qBAAqB,EAAE/F,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QAC1CiE,MAAM,EAAEhG,CAAC,CAAC+B,MAAM,CAAC,CAAC;QAClBI,IAAI,EAAEnC,CAAC,CAAC6B,MAAM,CAAC;UAAEO,IAAI,EAAEpC,CAAC,CAACqC,KAAK,CAACwC,QAAG;QAAE,CAAC,CAAC;QACtCoB,gBAAgB,EAAEjG,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QACrCmE,wBAAwB,EAAElG,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QAC7CoE,qCAAqC,EAAEnG,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QAC1DqE,gDAAgD,EAAEpG,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QACrEsE,2CAA2C,EAAErG,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC;MACjE,CAAC,CAAC;MACF;AACR;AACA;AACA;MACQuE,0BAA0B,EAAE1E,oBAAoB,CAACI,QAAQ,CAAC;IAC5D,CAAC;EACH,CAAC;AACH,CAAC,CACH,CAAC;;AAED;AAAAyC,OAAA,CAAAC,mCAAA,GAAAA,mCAAA;AAIO,MAAM6B,+BAA+B,GAAG/B,8BAAuB,CAACG,GAAG,CACxE3E,CAAC,CAAC6B,MAAM,CAAC;EACP+C,OAAO,EAAE5E,CAAC,CAAC6B,MAAM,CAAC;IAChBiD,QAAQ,EAAE9E,CAAC,CAAC6B,MAAM,CAAC;MACjByE,0BAA0B,EAAE1E;IAC9B,CAAC;EACH,CAAC;AACH,CAAC,CACH,CAAC;;AAED;AAAA6C,OAAA,CAAA8B,+BAAA,GAAAA,+BAAA;AAIO,MAAMC,iCAAiC,GAAGhC,8BAAuB,CAACG,GAAG,CAC1E3E,CAAC,CAAC6B,MAAM,CAAC;EACP+C,OAAO,EAAE5E,CAAC,CAAC6B,MAAM,CAAC;IAChBiD,QAAQ,EAAE9E,CAAC,CAAC6B,MAAM,CAAC;MACjB4E,eAAe,EAAEzG,CAAC,CACf6B,MAAM,CAAC;QACN8D,cAAc,EAAE3F,CAAC,CAAC+B,MAAM,CAAC,CAAC;QAC1B2E,oBAAoB,EAAE1G,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;QACpD+D,qBAAqB,EAAE/F,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QAC1CoE,qCAAqC,EAAEnG,CAAC,CAACqC,KAAK,CAACrC,CAAC,CAAC+B,MAAM,CAAC,CAAC,CAAC;QAC1DqE,gDAAgD,EAAEpG,CAAC,CAACqC,KAAK,CACvDrC,CAAC,CAAC+B,MAAM,CAAC,CACX,CAAC;QACDI,IAAI,EAAEnC,CAAC,CAAC6B,MAAM,CAAC;UAAEO,IAAI,EAAEpC,CAAC,CAACqC,KAAK,CAACwC,QAAG;QAAE,CAAC;MACvC,CAAC,CAAC,CACD8B,WAAW,CAAC;IACjB,CAAC;EACH,CAAC;AACH,CAAC,CACH,CAAC;;AAED;AAAAlC,OAAA,CAAA+B,iCAAA,GAAAA,iCAAA;AAEO,MAAMI,mBAAmB,GAAG5G,CAAC,CAACkD,KAAK,CACxC,CACEsD,iCAAiC,EACjC9B,mCAAmC,EACnCH,8BAA8B,EAC9BgC,+BAA+B,CAChC,EACD;EACE/C,WAAW,EAAE;AACf,CACF,CAAC;AAACiB,OAAA,CAAAmC,mBAAA,GAAAA,mBAAA"}

package/lib/commonjs/trust/v1.0.0/verify-chain.js ADDED Viewed

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.verifyTrustChain = void 0;
+var _zod = require("zod");
+var _types = require("../common/types");
+var _verifyChain = require("../common/verify-chain");
+var _types2 = require("./types");
+const verifyTrustChain = (0, _verifyChain.createVerifyTrustChain)({
+  EntityStatementShape: _types.EntityStatement,
+  EntityConfigurationShape: _types2.EntityConfiguration,
+  FirstElementShape: _types2.EntityConfiguration,
+  MiddleElementShape: _types.EntityStatement,
+  LastElementShape: _zod.z.union([_types.EntityStatement, _types2.TrustAnchorEntityConfiguration])
+});
+exports.verifyTrustChain = verifyTrustChain;
+//# sourceMappingURL=verify-chain.js.map

package/lib/commonjs/trust/v1.0.0/verify-chain.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["_zod","require","_types","_verifyChain","_types2","verifyTrustChain","createVerifyTrustChain","EntityStatementShape","EntityStatement","EntityConfigurationShape","EntityConfiguration","FirstElementShape","MiddleElementShape","LastElementShape","z","union","TrustAnchorEntityConfiguration","exports"],"sourceRoot":"../../../../src","sources":["trust/v1.0.0/verify-chain.ts"],"mappings":";;;;;;AAAA,IAAAA,IAAA,GAAAC,OAAA;AACA,IAAAC,MAAA,GAAAD,OAAA;AACA,IAAAE,YAAA,GAAAF,OAAA;AACA,IAAAG,OAAA,GAAAH,OAAA;AAEO,MAAMI,gBAAgB,GAAG,IAAAC,mCAAsB,EAAC;EACrDC,oBAAoB,EAAEC,sBAAe;EACrCC,wBAAwB,EAAEC,2BAAmB;EAC7CC,iBAAiB,EAAED,2BAAmB;EACtCE,kBAAkB,EAAEJ,sBAAe;EACnCK,gBAAgB,EAAEC,MAAC,CAACC,KAAK,CAAC,CAACP,sBAAe,EAAEQ,sCAA8B,CAAC;AAC7E,CAAC,CAAC;AAACC,OAAA,CAAAZ,gBAAA,GAAAA,gBAAA"}

package/lib/commonjs/trust/v1.3.3/entities.js ADDED Viewed

@@ -0,0 +1,43 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.getRelyingPartyEntityConfiguration = void 0;
+var _utils = require("../common/utils");
+var _types = require("./types");
+var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
+/**
+ * Fetch and parse the entity configuration document for a given federation entity.
+ * This is an inner method to serve public interfaces.
+ * @version 1.3.3
+ *
+ * To add another entity configuration type (example: Foo entity type):
+ *  - create its zod schema and type by inherit from the base type (example: FooEntityConfiguration = BaseEntityConfiguration.and(...))
+ *  - add such type to EntityConfiguration union
+ *  - create a public function which use such type (example: getFooEntityConfiguration = (url, options) => Promise<FooEntityConfiguration>)
+ *
+ * @param entityBaseUrl The base url of the entity.
+ * @param schema The expected schema of the entity configuration, according to the kind of entity we are fetching from.
+ * @param options An optional object with additional options.
+ * @param options.appFetch An optional instance of the http client to be used.
+ * @returns The parsed entity configuration object
+ * @throws {IoWalletError} If the http request fails
+ * @throws Parse error if the document is not in the expected shape.
+ */
+async function fetchAndParseEntityConfiguration(entityBaseUrl, schema) {
+  let {
+    appFetch = fetch
+  } = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : {};
+  const responseText = await (0, _utils.getSignedEntityConfiguration)(entityBaseUrl, {
+    appFetch
+  });
+  const responseJwt = (0, _ioReactNativeJwt.decode)(responseText);
+  return schema.parse({
+    header: responseJwt.protectedHeader,
+    payload: responseJwt.payload
+  });
+}
+const getRelyingPartyEntityConfiguration = (entityBaseUrl, options) => fetchAndParseEntityConfiguration(entityBaseUrl, _types.RelyingPartyEntityConfiguration, options);
+exports.getRelyingPartyEntityConfiguration = getRelyingPartyEntityConfiguration;
+//# sourceMappingURL=entities.js.map

package/lib/commonjs/trust/v1.3.3/entities.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["_utils","require","_types","_ioReactNativeJwt","fetchAndParseEntityConfiguration","entityBaseUrl","schema","appFetch","fetch","arguments","length","undefined","responseText","getSignedEntityConfiguration","responseJwt","decodeJwt","parse","header","protectedHeader","payload","getRelyingPartyEntityConfiguration","options","RelyingPartyEntityConfiguration","exports"],"sourceRoot":"../../../../src","sources":["trust/v1.3.3/entities.ts"],"mappings":";;;;;;AACA,IAAAA,MAAA,GAAAC,OAAA;AAIA,IAAAC,MAAA,GAAAD,OAAA;AACA,IAAAE,iBAAA,GAAAF,OAAA;AAEA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,eAAeG,gCAAgCA,CAC7CC,aAAqB,EACrBC,MAAoB,EAER;EAAA,IADZ;IAAEC,QAAQ,GAAGC;EAAoB,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEvC,MAAMG,YAAY,GAAG,MAAM,IAAAC,mCAA4B,EAACR,aAAa,EAAE;IACrEE;EACF,CAAC,CAAC;EAEF,MAAMO,WAAW,GAAG,IAAAC,wBAAS,EAACH,YAAY,CAAC;EAC3C,OAAON,MAAM,CAACU,KAAK,CAAC;IAClBC,MAAM,EAAEH,WAAW,CAACI,eAAe;IACnCC,OAAO,EAAEL,WAAW,CAACK;EACvB,CAAC,CAAC;AACJ;AAEO,MAAMC,kCAAkC,GAAGA,CAChDf,aAAqB,EACrBgB,OAAsB,KAEtBjB,gCAAgC,CAC9BC,aAAa,EACbiB,sCAA+B,EAC/BD,OACF,CAAC;AAACE,OAAA,CAAAH,kCAAA,GAAAA,kCAAA"}