npm - @pagopa/io-react-native-wallet - Versions diffs - 2.5.1 → 3.0.0 - Mend

@pagopa/io-react-native-wallet 2.5.1 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (1551) hide show

package/lib/typescript/api/index.d.ts ADDED Viewed

@@ -0,0 +1,29 @@
+import * as WalletInstance from "../wallet-instance";
+import * as WIA from "../wallet-instance-attestation";
+import * as Trust from "../trust";
+import * as CredentialIssuance from "../credential/issuance";
+import * as CredentialStatus from "../credential/status";
+import * as RemotePresentation from "../credential/presentation";
+import * as CredentialsCatalogue from "../credentials-catalogue";
+import * as Trustmark from "../credential/trustmark";
+import * as CredentialsOffer from "../credential/offer";
+export type ItwVersion = "1.0.0" | "1.3.3";
+/**
+ * The Wallet public API.
+ */
+export interface IoWalletApi {
+    WalletInstance: WalletInstance.WalletInstanceApi;
+    WalletInstanceAttestation: WIA.WalletInstanceAttestationApi;
+    Trust: Trust.TrustApi;
+    CredentialIssuance: CredentialIssuance.IssuanceApi;
+    CredentialStatus: CredentialStatus.CredentialStatusApi;
+    RemotePresentation: RemotePresentation.RemotePresentationApi;
+    CredentialsCatalogue: CredentialsCatalogue.CredentialsCatalogueApi;
+    Trustmark: Trustmark.TrustmarkApi;
+    CredentialsOffer: CredentialsOffer.OfferApi;
+}
+/**
+ * The Wallet API implementations grouped by IT-Wallet specifications version.
+ */
+export declare const ioWalletApiByVersion: Record<ItwVersion, IoWalletApi>;
+//# sourceMappingURL=index.d.ts.map

package/lib/typescript/api/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/api/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,cAAc,MAAM,oBAAoB,CAAC;AACrD,OAAO,KAAK,GAAG,MAAM,gCAAgC,CAAC;AACtD,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAClC,OAAO,KAAK,kBAAkB,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,gBAAgB,MAAM,sBAAsB,CAAC;AACzD,OAAO,KAAK,kBAAkB,MAAM,4BAA4B,CAAC;AACjE,OAAO,KAAK,oBAAoB,MAAM,0BAA0B,CAAC;AACjE,OAAO,KAAK,SAAS,MAAM,yBAAyB,CAAC;AACrD,OAAO,KAAK,gBAAgB,MAAM,qBAAqB,CAAC;AAExD,MAAM,MAAM,UAAU,GAAG,OAAO,GAAG,OAAO,CAAC;AAE3C;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,cAAc,EAAE,cAAc,CAAC,iBAAiB,CAAC;IACjD,yBAAyB,EAAE,GAAG,CAAC,4BAA4B,CAAC;IAC5D,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC;IACtB,kBAAkB,EAAE,kBAAkB,CAAC,WAAW,CAAC;IACnD,gBAAgB,EAAE,gBAAgB,CAAC,mBAAmB,CAAC;IACvD,kBAAkB,EAAE,kBAAkB,CAAC,qBAAqB,CAAC;IAC7D,oBAAoB,EAAE,oBAAoB,CAAC,uBAAuB,CAAC;IACnE,SAAS,EAAE,SAAS,CAAC,YAAY,CAAC;IAClC,gBAAgB,EAAE,gBAAgB,CAAC,QAAQ,CAAC;CAC7C;AAED;;GAEG;AACH,eAAO,MAAM,oBAAoB,EAAE,MAAM,CAAC,UAAU,EAAE,WAAW,CAwBhE,CAAC"}

package/lib/typescript/client/generated/wallet-provider.d.ts CHANGED Viewed

@@ -37,20 +37,20 @@ export declare const WalletAttestationsView: z.ZodObject<{
         format: z.ZodUnion<[z.ZodLiteral<"jwt">, z.ZodLiteral<"dc+sd-jwt">]>;
         wallet_attestation: z.ZodString;
     }, "strip", z.ZodTypeAny, {
-        format: "dc+sd-jwt" | "jwt";
+        format: "jwt" | "dc+sd-jwt";
         wallet_attestation: string;
     }, {
-        format: "dc+sd-jwt" | "jwt";
+        format: "jwt" | "dc+sd-jwt";
         wallet_attestation: string;
     }>, "many">;
 }, "strip", z.ZodTypeAny, {
     wallet_attestations: {
-        format: "dc+sd-jwt" | "jwt";
+        format: "jwt" | "dc+sd-jwt";
         wallet_attestation: string;
     }[];
 }, {
     wallet_attestations: {
-        format: "dc+sd-jwt" | "jwt";
+        format: "jwt" | "dc+sd-jwt";
         wallet_attestation: string;
     }[];
 }>;
@@ -87,15 +87,15 @@ export declare const ProblemJson: z.ZodObject<{
     detail: z.ZodOptional<z.ZodString>;
     instance: z.ZodOptional<z.ZodString>;
 }, "strip", z.ZodTypeAny, {
+    status?: number | undefined;
     type?: string | undefined;
     title?: string | undefined;
-    status?: number | undefined;
     detail?: string | undefined;
     instance?: string | undefined;
 }, {
+    status?: number | undefined;
     type?: string | undefined;
     title?: string | undefined;
-    status?: number | undefined;
     detail?: string | undefined;
     instance?: string | undefined;
 }>;
@@ -190,20 +190,20 @@ export declare const post_CreateWalletAttestation: {
             format: z.ZodUnion<[z.ZodLiteral<"jwt">, z.ZodLiteral<"dc+sd-jwt">]>;
             wallet_attestation: z.ZodString;
         }, "strip", z.ZodTypeAny, {
-            format: "dc+sd-jwt" | "jwt";
+            format: "jwt" | "dc+sd-jwt";
             wallet_attestation: string;
         }, {
-            format: "dc+sd-jwt" | "jwt";
+            format: "jwt" | "dc+sd-jwt";
             wallet_attestation: string;
         }>, "many">;
     }, "strip", z.ZodTypeAny, {
         wallet_attestations: {
-            format: "dc+sd-jwt" | "jwt";
+            format: "jwt" | "dc+sd-jwt";
             wallet_attestation: string;
         }[];
     }, {
         wallet_attestations: {
-            format: "dc+sd-jwt" | "jwt";
+            format: "jwt" | "dc+sd-jwt";
             wallet_attestation: string;
         }[];
     }>;
@@ -490,20 +490,20 @@ export declare const EndpointByMethod: {
                     format: z.ZodUnion<[z.ZodLiteral<"jwt">, z.ZodLiteral<"dc+sd-jwt">]>;
                     wallet_attestation: z.ZodString;
                 }, "strip", z.ZodTypeAny, {
-                    format: "dc+sd-jwt" | "jwt";
+                    format: "jwt" | "dc+sd-jwt";
                     wallet_attestation: string;
                 }, {
-                    format: "dc+sd-jwt" | "jwt";
+                    format: "jwt" | "dc+sd-jwt";
                     wallet_attestation: string;
                 }>, "many">;
             }, "strip", z.ZodTypeAny, {
                 wallet_attestations: {
-                    format: "dc+sd-jwt" | "jwt";
+                    format: "jwt" | "dc+sd-jwt";
                     wallet_attestation: string;
                 }[];
             }, {
                 wallet_attestations: {
-                    format: "dc+sd-jwt" | "jwt";
+                    format: "jwt" | "dc+sd-jwt";
                     wallet_attestation: string;
                 }[];
             }>;

package/lib/typescript/credential/index.d.ts CHANGED Viewed

@@ -1,7 +1,3 @@
-import * as Issuance from "./issuance";
-import * as Presentation from "./presentation";
-import * as Status from "./status";
-import * as Trustmark from "./trustmark";
 import * as Offer from "./offer";
-export { Issuance, Presentation, Status, Trustmark, Offer };
+export { Offer };
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/credential/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/credential/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,~~QAAQ,MAAM,YAAY,CAAC;AACvC,OAAO,~~KAAK,~~YAAY,~~MAAM,~~gBAAgB,CAAC;AAC/C,OAAO,KAAK,MAAM,MAAM,UAAU,CAAC;AACnC,OAAO,KAAK,~~SAAS,~~MAAM,aAAa,~~CAAC;~~AACzC,OAAO,KAAK,KAAK,MAAM,SAAS,CAAC;~~AAEjC,OAAO,EAAE,~~QAAQ,EAAE,YAAY,EAAE,MAAM,EAAE,SAAS,EAAE,~~KAAK,EAAE,CAAC"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/credential/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,KAAK,MAAM,SAAS,CAAC;AAEjC,OAAO,EAAE,KAAK,EAAE,CAAC"}

package/lib/typescript/credential/issuance/api/01-evaluate-issuer-trust.d.ts ADDED Viewed

@@ -0,0 +1,18 @@
+import type { IssuerConfig } from "./IssuerConfig";
+export interface EvaluateIssuerTrustApi {
+    /**
+     * The Issuer trust evaluation phase.
+     * Fetch the Issuer's configuration and verify trust.
+     * @since 1.0.0
+     *
+     * @param issuerUrl The base url of the Issuer
+     * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
+     * @returns The Issuer's configuration
+     */
+    evaluateIssuerTrust(issuerUrl: string, ctx?: {
+        appFetch?: GlobalFetch["fetch"];
+    }): Promise<{
+        issuerConf: IssuerConfig;
+    }>;
+}
+//# sourceMappingURL=01-evaluate-issuer-trust.d.ts.map

package/lib/typescript/credential/issuance/api/01-evaluate-issuer-trust.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"01-evaluate-issuer-trust.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/01-evaluate-issuer-trust.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAEnD,MAAM,WAAW,sBAAsB;IACrC;;;;;;;;OAQG;IACH,mBAAmB,CACjB,SAAS,EAAE,MAAM,EACjB,GAAG,CAAC,EAAE;QAAE,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAA;KAAE,GACxC,OAAO,CAAC;QAAE,UAAU,EAAE,YAAY,CAAA;KAAE,CAAC,CAAC;CAC1C"}

package/lib/typescript/credential/issuance/api/02-start-user-authorization.d.ts ADDED Viewed

@@ -0,0 +1,48 @@
+import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import type { AuthorizationDetail } from "../../../utils/par";
+import type { IssuerConfig } from "./IssuerConfig";
+export interface StartUserAuthorizationApi {
+    /**
+     * WARNING: This function must be called after {@link evaluateIssuerTrust}. The next steam is {@link completeUserAuthorizationWithQueryMode} or {@link completeUserAuthorizationWithFormPostJwtMode}
+     *
+     * Creates and sends a PAR request to the PAR endpoint of the authorization server.
+     * This starts the authentication flow to obtain an access token.
+     * This token enables the Wallet Instance to request a digital credential from the Credential Endpoint of the Credential Issuer; when multiple credential types are passed,
+     * it is possible to use the same access token for the issuance of all requested credentials.
+     *
+     * This is an HTTP POST request containing the Wallet Instance identifier (client id), the code challenge and challenge method as specified by PKCE according to RFC 9126
+     * along with the WTE and its proof of possession (WTE-PoP).
+     * Additionally, it includes a request object, which is a signed JWT encapsulating the type of digital credential requested (authorization_details), challenge method and
+     * redirect URI for the document proof step (if L2 flow), the application session identifier on the Wallet Instance side (state), the method (query or form_post.jwt)
+     * by which the Authorization Server should transmit the Authorization Response containing the authorization code issued upon the end user's authentication (response_mode)
+     * to the Wallet Instance's Token Endpoint to obtain the Access Token, and the redirectUri of the Wallet Instance where the Authorization Response should be delivered.
+     * The redirect is achived by using a custom URL scheme that the Wallet Instance is registered to handle.
+     * @since 1.0.0
+     *
+     * @param issuerConf The issuer configuration
+     * @param credentialIds The credential configuration IDs to be requested
+     * @param proof The configuration for the proof to be used in the request: "none" for standard flows, "document" for L2+ with MRTD verification.
+     * @param context.wiaCryptoContext The Wallet Instance's cryptographic context
+     * @param context.walletInstanceAttestation: the Wallet Instance's attestation
+     * @param context.redirectUri: the redirect URI
+     * @param context.appFetch: (optional) the fetch implementation
+     * @returns The URI to which the end user should be redirected to start the authentication flow, along with additional authentication parameters
+     */
+    startUserAuthorization(issuerConf: IssuerConfig, credentialIds: string[], proof: {
+        proofType: "none";
+    } | {
+        proofType: "mrtd-pop";
+        idpHinting: string;
+    }, context: {
+        wiaCryptoContext: CryptoContext;
+        walletInstanceAttestation: string;
+        redirectUri: string;
+        appFetch?: GlobalFetch["fetch"];
+    }): Promise<{
+        issuerRequestUri: string;
+        clientId: string;
+        codeVerifier: string;
+        credentialDefinition: AuthorizationDetail[];
+    }>;
+}
+//# sourceMappingURL=02-start-user-authorization.d.ts.map

package/lib/typescript/credential/issuance/api/02-start-user-authorization.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"02-start-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/02-start-user-authorization.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,oBAAoB,CAAC;AAC9D,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAEnD,MAAM,WAAW,yBAAyB;IACxC;;;;;;;;;;;;;;;;;;;;;;;;;OAyBG;IACH,sBAAsB,CACpB,UAAU,EAAE,YAAY,EACxB,aAAa,EAAE,MAAM,EAAE,EACvB,KAAK,EACD;QAAE,SAAS,EAAE,MAAM,CAAA;KAAE,GACrB;QAAE,SAAS,EAAE,UAAU,CAAC;QAAC,UAAU,EAAE,MAAM,CAAA;KAAE,EACjD,OAAO,EAAE;QACP,gBAAgB,EAAE,aAAa,CAAC;QAChC,yBAAyB,EAAE,MAAM,CAAC;QAClC,WAAW,EAAE,MAAM,CAAC;QACpB,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;KACjC,GACA,OAAO,CAAC;QACT,gBAAgB,EAAE,MAAM,CAAC;QACzB,QAAQ,EAAE,MAAM,CAAC;QACjB,YAAY,EAAE,MAAM,CAAC;QACrB,oBAAoB,EAAE,mBAAmB,EAAE,CAAC;KAC7C,CAAC,CAAC;CACJ"}

package/lib/typescript/credential/issuance/api/03-complete-user-authorization.d.ts ADDED Viewed

@@ -0,0 +1,78 @@
+import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import type { AuthorizationChallengeResult, AuthorizationResult } from "../../../utils/auth";
+import type { RequestObject } from "../../../credential/presentation/api";
+import type { IssuerConfig } from "./IssuerConfig";
+export interface CompleteUserAuthorizationApi {
+    /**
+     * WARNING: This function must be called after {@link startUserAuthorization}. The next function to be called is {@link completeUserAuthorizationWithFormPostJwtMode}.
+     *
+     * The interface of the phase to complete User authorization via presentation of existing credentials when the response mode is "form_post.jwt".
+     * It is used as a first step to complete the user authorization by obtaining the requested credential to be presented from the authorization server.
+     * The information is obtained by performing a GET request to the authorization endpoint with request_uri and client_id parameters.
+     * @since 1.0.0
+     *
+     * @param issuerRequestUri the URI of the issuer where the request is sent
+     * @param clientId Identifies the current client across all the requests of the issuing flow returned by {@link startUserAuthorization}
+     * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+     * @param appFetch (optional) fetch api implementation. Default: built-in fetch
+     * @returns the request object which contains the credential to be presented in order to obtain the requested credential
+     * @throws {ValidationFailed} if an error while validating the response
+     */
+    getRequestedCredentialToBePresented(issuerRequestUri: string, clientId: string, issuerConf: IssuerConfig, appFetch?: GlobalFetch["fetch"]): Promise<RequestObject>;
+    /**
+     * WARNING: This function must be called after obtaining the authorization redirect URL from the webviews (SPID and CIE L3) or browser for CIEID.
+     *
+     * Complete User authorization via strong identification when the response mode is "query" and the request credential is a PersonIdentificationData.
+     * This function parses the authorization redirect URL to extract the authorization response.
+     * @since 1.0.0
+     *
+     * @param authRedirectUrl The URL to which the end user should be redirected to start the authentication flow
+     * @returns the authorization response which contains code, state and iss
+     */
+    completeUserAuthorizationWithQueryMode(authRedirectUrl: string): Promise<AuthorizationResult>;
+    /**
+     * WARNING: This function must be called after {@link getRequestedCredentialToBePresented}. The next function to be called is {@link authorizeAccess}.
+     *
+     * The interface of the phase to complete User authorization via presentation of existing credentials when the response mode is "form_post.jwt".
+     * The information is obtained by performing a POST request to the endpoint received in the response_uri field of the requestObject, where the Authorization Response payload is posted.
+     * Following this,the redirect_uri from the response is used to obtain the final authorization response.
+     * @since 1.0.0
+     *
+     * @param requestObject - The request object containing the necessary parameters for authorization.
+     * @param pid The `PID` that must be presented for the issuance of credentials.
+     * @param appFetch (optional) fetch api implementation. Default: built-in fetch
+     * @returns the authorization response which contains code, state and iss
+     * @throws {ValidationFailed} if an error while validating the response
+     */
+    completeUserAuthorizationWithFormPostJwtMode(requestObject: RequestObject, issuerConf: IssuerConfig, pid: string, context: {
+        wiaCryptoContext: CryptoContext;
+        pidKeyTag: string;
+        appFetch?: GlobalFetch["fetch"];
+    }): Promise<AuthorizationResult>;
+    /**
+     * WARNING: this function must be called after obtaining the authorization redirect URL from the webviews (SPID and CIE L3) or browser for CIEID, and the PID
+     * issuance requires a MRTD PoP challenge.
+     * @since 1.0.0
+     *
+     * @param authRedirectUrl The URL to which the end user should be redirected to start the MRTD PoP validation flow
+     * @returns the authorization response which contains the challenge
+     */
+    continueUserAuthorizationWithMRTDPoPChallenge(authRedirectUrl: string): Promise<AuthorizationChallengeResult>;
+    /**
+     * WARNING: This function must be called after {@link startUserAuthorization}.
+     *
+     * The generated authUrl must be used to open a browser or webview capable of catching the redirectSchema to perform a get request to the authorization endpoint.
+     * Builds the authorization URL to which the end user should be redirected to continue the authentication flow.
+     * @since 1.0.0
+     *
+     * @param issuerRequestUri the URI of the issuer where the request is sent
+     * @param clientId Identifies the current client across all the requests of the issuing flow returned by {@link startUserAuthorization}
+     * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+     * @param idpHint Unique identifier of the IDP selected by the user (optional)
+     * @returns An object containing the authorization URL
+     */
+    buildAuthorizationUrl(issuerRequestUri: string, clientId: string, issuerConf: IssuerConfig, idpHint?: string): Promise<{
+        authUrl: string;
+    }>;
+}
+//# sourceMappingURL=03-complete-user-authorization.d.ts.map

package/lib/typescript/credential/issuance/api/03-complete-user-authorization.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"03-complete-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/03-complete-user-authorization.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EACV,4BAA4B,EAC5B,mBAAmB,EACpB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,sCAAsC,CAAC;AAC1E,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAEnD,MAAM,WAAW,4BAA4B;IAC3C;;;;;;;;;;;;;;OAcG;IACH,mCAAmC,CACjC,gBAAgB,EAAE,MAAM,EACxB,QAAQ,EAAE,MAAM,EAChB,UAAU,EAAE,YAAY,EACxB,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,GAC9B,OAAO,CAAC,aAAa,CAAC,CAAC;IAE1B;;;;;;;;;OASG;IACH,sCAAsC,CACpC,eAAe,EAAE,MAAM,GACtB,OAAO,CAAC,mBAAmB,CAAC,CAAC;IAEhC;;;;;;;;;;;;;OAaG;IACH,4CAA4C,CAC1C,aAAa,EAAE,aAAa,EAC5B,UAAU,EAAE,YAAY,EACxB,GAAG,EAAE,MAAM,EACX,OAAO,EAAE;QACP,gBAAgB,EAAE,aAAa,CAAC;QAChC,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;KACjC,GACA,OAAO,CAAC,mBAAmB,CAAC,CAAC;IAEhC;;;;;;;OAOG;IACH,6CAA6C,CAC3C,eAAe,EAAE,MAAM,GACtB,OAAO,CAAC,4BAA4B,CAAC,CAAC;IAEzC;;;;;;;;;;;;OAYG;IACH,qBAAqB,CACnB,gBAAgB,EAAE,MAAM,EACxB,QAAQ,EAAE,MAAM,EAChB,UAAU,EAAE,YAAY,EACxB,OAAO,CAAC,EAAE,MAAM,GACf,OAAO,CAAC;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CACjC"}

package/lib/typescript/credential/issuance/api/04-authorize-access.d.ts ADDED Viewed

@@ -0,0 +1,33 @@
+import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import type { IssuerConfig } from "./IssuerConfig";
+import type { TokenResponse } from "./types";
+export interface AuthorizeAccessApi {
+    /**
+     * Creates and sends the DPoP Proof JWT to be presented with the authorization code to the /token endpoint of the authorization server
+     * for requesting the issuance of an access token bound to the public key of the Wallet Instance contained within the DPoP.
+     * This enables the Wallet Instance to request a digital credential.
+     * The DPoP Proof JWT is generated according to the section 4.3 of the DPoP RFC 9449 specification.
+     * @since 1.0.0
+     *
+     * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+     * @param code The authorization code returned by {@link completeUserAuthorizationWithQueryMode} or {@link completeUserAuthorizationWithFormPost}
+     * @param redirectUri The redirect URI which is the custom URL scheme that the Wallet Instance is registered to handle
+     * @param codeVerifier The code verifier returned by {@link startUserAuthorization}
+     * @param context.walletInstanceAttestation The Wallet Instance's attestation
+     * @param context.wiaCryptoContext The Wallet Instance's crypto context
+     * @param context.dPopCryptoContext The DPoP crypto context
+     * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
+     * @return The token response containing the access token along with the token request signed with DPoP which has to be used in the {@link obtainCredential} step.
+     * @throws {ValidationFailed} if an error occurs while parsing the token response
+     * @throws {IssuerResponseError} with a specific code for more context
+     */
+    authorizeAccess(issuerConf: IssuerConfig, code: string, redirectUri: string, codeVerifier: string, context: {
+        walletInstanceAttestation: string;
+        wiaCryptoContext: CryptoContext;
+        dPopCryptoContext: CryptoContext;
+        appFetch?: GlobalFetch["fetch"];
+    }): Promise<{
+        accessToken: TokenResponse;
+    }>;
+}
+//# sourceMappingURL=04-authorize-access.d.ts.map

package/lib/typescript/credential/issuance/api/04-authorize-access.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"04-authorize-access.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/04-authorize-access.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAE7C,MAAM,WAAW,kBAAkB;IACjC;;;;;;;;;;;;;;;;;;OAkBG;IACH,eAAe,CACb,UAAU,EAAE,YAAY,EACxB,IAAI,EAAE,MAAM,EACZ,WAAW,EAAE,MAAM,EACnB,YAAY,EAAE,MAAM,EACpB,OAAO,EAAE;QACP,yBAAyB,EAAE,MAAM,CAAC;QAClC,gBAAgB,EAAE,aAAa,CAAC;QAChC,iBAAiB,EAAE,aAAa,CAAC;QACjC,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;KACjC,GACA,OAAO,CAAC;QAAE,WAAW,EAAE,aAAa,CAAA;KAAE,CAAC,CAAC;CAC5C"}

package/lib/typescript/credential/issuance/api/05-obtain-credential.d.ts ADDED Viewed

@@ -0,0 +1,36 @@
+import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import type { Out } from "../../../utils/misc";
+import type { IssuerConfig } from "./IssuerConfig";
+import type { AuthorizeAccessApi } from "./04-authorize-access";
+import type { CredentialFormat } from "./types";
+export interface ObtainCredentialApi {
+    /**
+     * Obtains the credential from the issuer.
+     * The key pair of the credentialCryptoContext is used for Openid4vci proof JWT to be presented with the Access Token and the DPoP Proof JWT at the Credential Endpoint
+     * of the Credential Issuer to request the issuance of a credential linked to the public key contained in the JWT proof.
+     * The Openid4vci proof JWT incapsulates the nonce extracted from the token response from the {@link authorizeAccess} step.
+     * The credential request is sent to the Credential Endpoint of the Credential Issuer via HTTP POST with the type of the credential, its format, the access token and the JWT proof.
+     * @since 1.0.0
+     *
+     * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
+     * @param accessToken The access token response returned by {@link authorizeAccess}
+     * @param clientId The client id returned by {@link startUserAuthorization}
+     * @param credentialDefinition The credential definition of the credential to be obtained returned by {@link authorizeAccess}
+     * @param context.credentialCryptoContext The crypto context used to obtain the credential
+     * @param context.dPopCryptoContext The DPoP crypto context
+     * @param context.appFetch (optional) fetch api implementation. Default: built-in fetch
+     * @returns The credential response containing the credential
+     */
+    obtainCredential(issuerConf: IssuerConfig, accessToken: Out<AuthorizeAccessApi["authorizeAccess"]>["accessToken"], clientId: string, credentialDefinition: {
+        credential_configuration_id: string;
+        credential_identifier?: string;
+    }, context: {
+        dPopCryptoContext: CryptoContext;
+        credentialCryptoContext: CryptoContext;
+        appFetch?: GlobalFetch["fetch"];
+    }): Promise<{
+        credential: string;
+        format: CredentialFormat;
+    }>;
+}
+//# sourceMappingURL=05-obtain-credential.d.ts.map

package/lib/typescript/credential/issuance/api/05-obtain-credential.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"05-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/05-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAChE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEhD,MAAM,WAAW,mBAAmB;IAClC;;;;;;;;;;;;;;;;OAgBG;IACH,gBAAgB,CACd,UAAU,EAAE,YAAY,EACxB,WAAW,EAAE,GAAG,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC,CAAC,aAAa,CAAC,EACtE,QAAQ,EAAE,MAAM,EAChB,oBAAoB,EAAE;QACpB,2BAA2B,EAAE,MAAM,CAAC;QACpC,qBAAqB,CAAC,EAAE,MAAM,CAAC;KAChC,EACD,OAAO,EAAE;QACP,iBAAiB,EAAE,aAAa,CAAC;QACjC,uBAAuB,EAAE,aAAa,CAAC;QACvC,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;KACjC,GACA,OAAO,CAAC;QACT,UAAU,EAAE,MAAM,CAAC;QACnB,MAAM,EAAE,gBAAgB,CAAC;KAC1B,CAAC,CAAC;CACJ"}

package/lib/typescript/credential/issuance/api/06-verify-and-parse-credential.d.ts ADDED Viewed

@@ -0,0 +1,36 @@
+import type { CryptoContext } from "@pagopa/io-react-native-jwt";
+import type { IssuerConfig } from "./IssuerConfig";
+import type { ParsedCredential } from "./types";
+export interface VerifyAndParseCredentialApi {
+    /**
+     * Verify and parse an encoded credential.
+     * @since 1.0.0
+     *
+     * @param issuerConf The Issuer configuration returned by {@link evaluateIssuerTrust}
+     * @param credential The encoded credential returned by {@link obtainCredential}
+     * @param credentialConfigurationId The credential configuration ID that defines the provided credential
+     * @param context.credentialCryptoContext The crypto context used to obtain the credential in {@link obtainCredential}
+     * @param context.ignoreMissingAttributes Skip error when attributes declared in the issuer configuration are not found within disclosures
+     * @param context.includeUndefinedAttributes Include attributes not explicitly declared in the issuer configuration
+     * @returns A parsed credential with attributes in plain value, the expiration and issuance date of the credential
+     * @throws {IoWalletError} If the credential signature is not verified with the Issuer key set
+     * @throws {IoWalletError} If the credential is not bound to the provided user key
+     * @throws {IoWalletError} If the credential data fail to parse
+     */
+    verifyAndParseCredential(issuerConf: IssuerConfig, credential: string, credentialConfigurationId: string, context: {
+        credentialCryptoContext: CryptoContext;
+        /**
+         * Do not throw an error when an attribute is not found within disclosures.
+         */
+        ignoreMissingAttributes?: boolean;
+        /**
+         * Include attributes that are not explicitly mapped in the issuer configuration.
+         */
+        includeUndefinedAttributes?: boolean;
+    }, x509CertRoot?: string): Promise<{
+        parsedCredential: ParsedCredential;
+        expiration: Date;
+        issuedAt: Date | undefined;
+    }>;
+}
+//# sourceMappingURL=06-verify-and-parse-credential.d.ts.map

package/lib/typescript/credential/issuance/api/06-verify-and-parse-credential.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"06-verify-and-parse-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/06-verify-and-parse-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEhD,MAAM,WAAW,2BAA2B;IAC1C;;;;;;;;;;;;;;OAcG;IACH,wBAAwB,CACtB,UAAU,EAAE,YAAY,EACxB,UAAU,EAAE,MAAM,EAClB,yBAAyB,EAAE,MAAM,EACjC,OAAO,EAAE;QACP,uBAAuB,EAAE,aAAa,CAAC;QACvC;;WAEG;QACH,uBAAuB,CAAC,EAAE,OAAO,CAAC;QAClC;;WAEG;QACH,0BAA0B,CAAC,EAAE,OAAO,CAAC;KACtC,EACD,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CAAC;QACT,gBAAgB,EAAE,gBAAgB,CAAC;QACnC,UAAU,EAAE,IAAI,CAAC;QACjB,QAAQ,EAAE,IAAI,GAAG,SAAS,CAAC;KAC5B,CAAC,CAAC;CACJ"}