@pagopa/io-react-native-wallet 3.0.0 → 3.1.0

package/lib/module/utils/credentials.js.map

@@ -1 +1 @@
-{"version":3,"names":["decodeSdJwtSync","digest","thumbprint","IoWalletError","LEGACY_SD_JWT","SD_JWT","extractJwkFromCredential","credential","format","includes","decoded","cnf","jwt","payload","jwk","kid"],"sourceRoot":"../../../src","sources":["utils/credentials.ts"],"mappings":"AAAA,SAASA,eAAe,QAAQ,gBAAgB;AAChD,SAASC,MAAM,QAAQ,uBAAuB;AAC9C,SAASC,UAAU,QAAQ,6BAA6B;AAGxD,SAASC,aAAa,QAAQ,UAAU;AACxC,SACEC,aAAa,QAGR,iBAAiB;AAExB,MAAMC,MAAM,GAAG,CAAC,WAAW,EAAED,aAAa,CAAC;;AAE3C;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAME,wBAAwB,GAAG,MAAAA,CACtCC,UAAkB,EAClBC,MAAqD,KACpC;EACjB,IAAIH,MAAM,CAACI,QAAQ,CAACD,MAAM,CAAC,EAAE;IAC3B;IACA,MAAME,OAAO,GAAGV,eAAe,CAACO,UAAU,EAAEN,MAAM,CAAC;IACnD,MAAM;MAAEU;IAAI,CAAC,GAAGD,OAAO,CAACE,GAAG,CAACC,OAAkC;IAC9D,IAAIF,GAAG,CAACG,GAAG,EAAE;MACX,OAAO;QAAE,GAAGH,GAAG,CAACG,GAAG;QAAEC,GAAG,EAAE,MAAMb,UAAU,CAACS,GAAG,CAACG,GAAG;MAAE,CAAC;IACvD;EACF;EACA,MAAM,IAAIX,aAAa,CAAE,qBAAoBK,MAAO,gBAAe,CAAC;AACtE,CAAC"}
+{"version":3,"names":["decodeSdJwtSync","digest","thumbprint","IoWalletError","LEGACY_SD_JWT","SD_JWT","extractJwkFromCredential","credential","format","includes","decoded","fixLegacyCredentialSdJwt","cnf","jwt","payload","jwk","kid","token","endsWith","_token$split$at","hasKeyBindingJwt","split","at","length"],"sourceRoot":"../../../src","sources":["utils/credentials.ts"],"mappings":"AAAA,SAASA,eAAe,QAAQ,gBAAgB;AAChD,SAASC,MAAM,QAAQ,uBAAuB;AAC9C,SAASC,UAAU,QAAQ,6BAA6B;AAGxD,SAASC,aAAa,QAAQ,UAAU;AACxC,SACEC,aAAa,QAGR,iBAAiB;AAExB,MAAMC,MAAM,GAAG,CAAC,WAAW,EAAED,aAAa,CAAC;;AAE3C;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAME,wBAAwB,GAAG,MAAAA,CACtCC,UAAkB,EAClBC,MAAqD,KACpC;EACjB,IAAIH,MAAM,CAACI,QAAQ,CAACD,MAAM,CAAC,EAAE;IAC3B;IACA,MAAME,OAAO,GAAGV,eAAe,CAC7BW,wBAAwB,CAACJ,UAAU,CAAC,EACpCN,MACF,CAAC;IACD,MAAM;MAAEW;IAAI,CAAC,GAAGF,OAAO,CAACG,GAAG,CAACC,OAAkC;IAC9D,IAAIF,GAAG,CAACG,GAAG,EAAE;MACX,OAAO;QAAE,GAAGH,GAAG,CAACG,GAAG;QAAEC,GAAG,EAAE,MAAMd,UAAU,CAACU,GAAG,CAACG,GAAG;MAAE,CAAC;IACvD;EACF;EACA,MAAM,IAAIZ,aAAa,CAAE,qBAAoBK,MAAO,gBAAe,CAAC;AACtE,CAAC;;AAED;AACA;AACA;AACA;AACA,OAAO,MAAMG,wBAAwB,GAAIM,KAAa,IAAK;EACzD,IAAI,CAACA,KAAK,CAACC,QAAQ,CAAC,GAAG,CAAC,EAAE;IAAA,IAAAC,eAAA;IACxB,MAAMC,gBAAgB,GAAG,EAAAD,eAAA,GAAAF,KAAK,CAACI,KAAK,CAAC,GAAG,CAAC,CAACC,EAAE,CAAC,CAAC,CAAC,CAAC,cAAAH,eAAA,uBAAvBA,eAAA,CAAyBE,KAAK,CAAC,GAAG,CAAC,CAACE,MAAM,MAAK,CAAC;IACzE;IACA,OAAOH,gBAAgB,GAAGH,KAAK,GAAI,GAAEA,KAAM,GAAE;EAC/C;EACA,OAAOA,KAAK;AACd,CAAC"}

package/lib/module/utils/crypto.js

@@ -78,4 +78,12 @@ export const getSigninJwkFromCert = pemCert => {
   }
   throw new IoWalletError("Unable to find the signing key inside the PEM certificate");
 };
+
+/**
+ * Extension of the {@link CryptoContext} that adds key generation with optional key attestation.
+ *
+ * This context requires the consumer to provide an additional method for **key generation**;
+ * on Android this method should also generate a key attestation as a certificate chain
+ * to ensure the key pair is hardware-backed.
+ */
 //# sourceMappingURL=crypto.js.map

package/lib/module/utils/crypto.js.map

@@ -1 +1 @@
-{"version":3,"names":["deleteKey","generate","getPublicKeyFixed","sign","v4","uuidv4","thumbprint","JWK","KEYUTIL","KJUR","RSAKey","X509","IoWalletError","createCryptoContextFor","keytag","getPublicKey","then","jwk","kid","getSignature","value","withEphemeralKey","fn","ephemeralContext","finally","convertBase64DerToPem","certificate","getSigninJwkFromCert","pemCert","x509","readCertPEM","publicKey","crypto","ECDSA","parse","getJWKFromKey","use"],"sourceRoot":"../../../src","sources":["utils/crypto.ts"],"mappings":"AAAA,SACEA,SAAS,EACTC,QAAQ,EACRC,iBAAiB,EACjBC,IAAI,QACC,gCAAgC;AACvC,SAASC,EAAE,IAAIC,MAAM,QAAQ,MAAM;AACnC,SAASC,UAAU,QAA4B,6BAA6B;AAC5E,SAASC,GAAG,QAAQ,OAAO;AAC3B,SAASC,OAAO,EAAEC,IAAI,EAAEC,MAAM,EAAEC,IAAI,QAAQ,WAAW;AACvD,SAASC,aAAa,QAAQ,UAAU;;AAExC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,sBAAsB,GAAIC,MAAc,IAAoB;EACvE,OAAO;IACL,MAAMC,YAAYA,CAAA,EAAG;MACnB,OAAOb,iBAAiB,CAACY,MAAM,CAAC,CAACE,IAAI,CAAC,MAAOC,GAAG,KAAM;QACpD,GAAGA,GAAG;QACN;QACA;QACA;QACA;QACAC,GAAG,EAAE,MAAMZ,UAAU,CAACW,GAAG;MAC3B,CAAC,CAAC,CAAC;IACL,CAAC;IACD;AACJ;AACA;AACA;AACA;AACA;IACI,MAAME,YAAYA,CAACC,KAAa,EAAE;MAChC,OAAOjB,IAAI,CAACiB,KAAK,EAAEN,MAAM,CAAC;IAC5B;EACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMO,gBAAgB,GAAG,MAC9BC,EAAmD,IACpC;EACf;EACA,MAAMR,MAAM,GAAI,aAAYT,MAAM,CAAC,CAAE,EAAC;EACtC,MAAMJ,QAAQ,CAACa,MAAM,CAAC;EACtB,MAAMS,gBAAgB,GAAGV,sBAAsB,CAACC,MAAM,CAAC;EACvD,OAAOQ,EAAE,CAACC,gBAAgB,CAAC,CAACC,OAAO,CAAC,MAAMxB,SAAS,CAACc,MAAM,CAAC,CAAC;AAC9D,CAAC;AACD;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMW,qBAAqB,GAAIC,WAAmB,IACtD,gCAA+BA,WAAY,6BAA4B;;AAE1E;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,GAAIC,OAAe,IAAU;EAC5D,MAAMC,IAAI,GAAG,IAAIlB,IAAI,CAAC,CAAC;EACvBkB,IAAI,CAACC,WAAW,CAACF,OAAO,CAAC;EACzB,MAAMG,SAAS,GAAGF,IAAI,CAACd,YAAY,CAAC,CAAC;EAErC,IAAIgB,SAAS,YAAYrB,MAAM,IAAIqB,SAAS,YAAYtB,IAAI,CAACuB,MAAM,CAACC,KAAK,EAAE;IACzE,OAAO;MACL,GAAG1B,GAAG,CAAC2B,KAAK,CAAC1B,OAAO,CAAC2B,aAAa,CAACJ,SAAS,CAAC,CAAC;MAC9CK,GAAG,EAAE;IACP,CAAC;EACH;EAEA,MAAM,IAAIxB,aAAa,CACrB,2DACF,CAAC;AACH,CAAC"}
+{"version":3,"names":["deleteKey","generate","getPublicKeyFixed","sign","v4","uuidv4","thumbprint","JWK","KEYUTIL","KJUR","RSAKey","X509","IoWalletError","createCryptoContextFor","keytag","getPublicKey","then","jwk","kid","getSignature","value","withEphemeralKey","fn","ephemeralContext","finally","convertBase64DerToPem","certificate","getSigninJwkFromCert","pemCert","x509","readCertPEM","publicKey","crypto","ECDSA","parse","getJWKFromKey","use"],"sourceRoot":"../../../src","sources":["utils/crypto.ts"],"mappings":"AAAA,SACEA,SAAS,EACTC,QAAQ,EACRC,iBAAiB,EACjBC,IAAI,QACC,gCAAgC;AACvC,SAASC,EAAE,IAAIC,MAAM,QAAQ,MAAM;AACnC,SAASC,UAAU,QAA4B,6BAA6B;AAC5E,SAASC,GAAG,QAAQ,OAAO;AAC3B,SAASC,OAAO,EAAEC,IAAI,EAAEC,MAAM,EAAEC,IAAI,QAAQ,WAAW;AACvD,SAASC,aAAa,QAAQ,UAAU;;AAExC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,sBAAsB,GAAIC,MAAc,IAAoB;EACvE,OAAO;IACL,MAAMC,YAAYA,CAAA,EAAG;MACnB,OAAOb,iBAAiB,CAACY,MAAM,CAAC,CAACE,IAAI,CAAC,MAAOC,GAAG,KAAM;QACpD,GAAGA,GAAG;QACN;QACA;QACA;QACA;QACAC,GAAG,EAAE,MAAMZ,UAAU,CAACW,GAAG;MAC3B,CAAC,CAAC,CAAC;IACL,CAAC;IACD;AACJ;AACA;AACA;AACA;AACA;IACI,MAAME,YAAYA,CAACC,KAAa,EAAE;MAChC,OAAOjB,IAAI,CAACiB,KAAK,EAAEN,MAAM,CAAC;IAC5B;EACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMO,gBAAgB,GAAG,MAC9BC,EAAmD,IACpC;EACf;EACA,MAAMR,MAAM,GAAI,aAAYT,MAAM,CAAC,CAAE,EAAC;EACtC,MAAMJ,QAAQ,CAACa,MAAM,CAAC;EACtB,MAAMS,gBAAgB,GAAGV,sBAAsB,CAACC,MAAM,CAAC;EACvD,OAAOQ,EAAE,CAACC,gBAAgB,CAAC,CAACC,OAAO,CAAC,MAAMxB,SAAS,CAACc,MAAM,CAAC,CAAC;AAC9D,CAAC;AACD;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMW,qBAAqB,GAAIC,WAAmB,IACtD,gCAA+BA,WAAY,6BAA4B;;AAE1E;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,GAAIC,OAAe,IAAU;EAC5D,MAAMC,IAAI,GAAG,IAAIlB,IAAI,CAAC,CAAC;EACvBkB,IAAI,CAACC,WAAW,CAACF,OAAO,CAAC;EACzB,MAAMG,SAAS,GAAGF,IAAI,CAACd,YAAY,CAAC,CAAC;EAErC,IAAIgB,SAAS,YAAYrB,MAAM,IAAIqB,SAAS,YAAYtB,IAAI,CAACuB,MAAM,CAACC,KAAK,EAAE;IACzE,OAAO;MACL,GAAG1B,GAAG,CAAC2B,KAAK,CAAC1B,OAAO,CAAC2B,aAAa,CAACJ,SAAS,CAAC,CAAC;MAC9CK,GAAG,EAAE;IACP,CAAC;EACH;EAEA,MAAM,IAAIxB,aAAa,CACrB,2DACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA"}

package/lib/module/utils/dpop.js

@@ -18,7 +18,7 @@ export const createDPopToken = async (payload, crypto) => {
 };
 export const DPoPPayload = z.object({
   jti: z.string(),
-  htm: z.union([z.literal("POST"), z.literal("GET")]),
+  htm: z.enum(["POST", "GET"]),
   htu: z.string(),
   ath: z.string().optional()
 });

package/lib/module/utils/dpop.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","SignJWT","createDPopToken","payload","crypto","jwk","getPublicKey","setPayload","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","DPoPPayload","object","jti","string","htm","union","literal","htu","ath","optional"],"sourceRoot":"../../../src","sources":["utils/dpop.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AAExB,SAASC,OAAO,QAA4B,6BAA6B;;AAEzE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,eAAe,GAAG,MAAAA,CAC7BC,OAAoB,EACpBC,MAAqB,KACD;EACpB,MAAMC,GAAG,GAAG,MAAMD,MAAM,CAACE,YAAY,CAAC,CAAC;EACvC,OAAO,IAAIL,OAAO,CAACG,MAAM,CAAC,CACvBG,UAAU,CAACJ,OAAO,CAAC,CACnBK,kBAAkB,CAAC;IAClBC,GAAG,EAAE,UAAU;IACfJ;EACF,CAAC,CAAC,CACDK,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX,CAAC;AAGD,OAAO,MAAMC,WAAW,GAAGb,CAAC,CAACc,MAAM,CAAC;EAClCC,GAAG,EAAEf,CAAC,CAACgB,MAAM,CAAC,CAAC;EACfC,GAAG,EAAEjB,CAAC,CAACkB,KAAK,CAAC,CAAClB,CAAC,CAACmB,OAAO,CAAC,MAAM,CAAC,EAAEnB,CAAC,CAACmB,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;EACnDC,GAAG,EAAEpB,CAAC,CAACgB,MAAM,CAAC,CAAC;EACfK,GAAG,EAAErB,CAAC,CAACgB,MAAM,CAAC,CAAC,CAACM,QAAQ,CAAC;AAC3B,CAAC,CAAC"}
+{"version":3,"names":["z","SignJWT","createDPopToken","payload","crypto","jwk","getPublicKey","setPayload","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","DPoPPayload","object","jti","string","htm","enum","htu","ath","optional"],"sourceRoot":"../../../src","sources":["utils/dpop.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AAExB,SAASC,OAAO,QAA4B,6BAA6B;;AAEzE;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,eAAe,GAAG,MAAAA,CAC7BC,OAAoB,EACpBC,MAAqB,KACD;EACpB,MAAMC,GAAG,GAAG,MAAMD,MAAM,CAACE,YAAY,CAAC,CAAC;EACvC,OAAO,IAAIL,OAAO,CAACG,MAAM,CAAC,CACvBG,UAAU,CAACJ,OAAO,CAAC,CACnBK,kBAAkB,CAAC;IAClBC,GAAG,EAAE,UAAU;IACfJ;EACF,CAAC,CAAC,CACDK,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX,CAAC;AAGD,OAAO,MAAMC,WAAW,GAAGb,CAAC,CAACc,MAAM,CAAC;EAClCC,GAAG,EAAEf,CAAC,CAACgB,MAAM,CAAC,CAAC;EACfC,GAAG,EAAEjB,CAAC,CAACkB,IAAI,CAAC,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;EAC5BC,GAAG,EAAEnB,CAAC,CAACgB,MAAM,CAAC,CAAC;EACfI,GAAG,EAAEpB,CAAC,CAACgB,MAAM,CAAC,CAAC,CAACK,QAAQ,CAAC;AAC3B,CAAC,CAAC"}

package/lib/module/utils/jwk.js

@@ -18,7 +18,7 @@ export const JWK = z.object({
   /** JWK "kty" (Key Type) Parameter.
    * This attribute is required to discriminate the
    * type of EC/RSA algorithm */
-  kty: z.union([z.literal("RSA"), z.literal("EC")]),
+  kty: z.enum(["RSA", "EC"]),
   n: z.string().optional(),
   p: z.string().optional(),
   q: z.string().optional(),

package/lib/module/utils/jwk.js.map

@@ -1 +1 @@
-{"version":3,"names":["removePadding","thumbprint","z","JWK","object","alg","string","optional","crv","d","dp","dq","e","ext","boolean","k","key_ops","array","kid","kty","union","literal","n","p","q","qi","use","x","y","x5c","x5t","x5u","fixBase64EncodingOnKey","key","pk","JWKS","keys","isSameThumbprint","jwkA","jwkB","thumbprintJwkA","thumbprintJwkB","Promise","all"],"sourceRoot":"../../../src","sources":["utils/jwk.ts"],"mappings":"AAAA,SAAiBA,aAAa,EAAEC,UAAU,QAAQ,6BAA6B;AAC/E,SAASC,CAAC,QAAQ,KAAK;AAGvB,OAAO,MAAMC,GAAG,GAAGD,CAAC,CAACE,MAAM,CAAC;EAC1B;EACAC,GAAG,EAAEH,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1BC,GAAG,EAAEN,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1BE,CAAC,EAAEP,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBG,EAAE,EAAER,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACzBI,EAAE,EAAET,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACzBK,CAAC,EAAEV,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxB;EACAM,GAAG,EAAEX,CAAC,CAACY,OAAO,CAAC,CAAC,CAACP,QAAQ,CAAC,CAAC;EAC3BQ,CAAC,EAAEb,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxB;EACAS,OAAO,EAAEd,CAAC,CAACe,KAAK,CAACf,CAAC,CAACI,MAAM,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACvC;EACAW,GAAG,EAAEhB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1B;AACF;AACA;EACEY,GAAG,EAAEjB,CAAC,CAACkB,KAAK,CAAC,CAAClB,CAAC,CAACmB,OAAO,CAAC,KAAK,CAAC,EAAEnB,CAAC,CAACmB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;EACjDC,CAAC,EAAEpB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBgB,CAAC,EAAErB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBiB,CAAC,EAAEtB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBkB,EAAE,EAAEvB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACzB;EACAmB,GAAG,EAAExB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1BoB,CAAC,EAAEzB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBqB,CAAC,EAAE1B,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxB;EACAsB,GAAG,EAAE3B,CAAC,CAACe,KAAK,CAACf,CAAC,CAACI,MAAM,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACnC;EACAuB,GAAG,EAAE5B,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1B;EACA,UAAU,EAAEL,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACjC;EACAwB,GAAG,EAAE7B,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC;AAC3B,CAAC,CAAC;;AAEF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASyB,sBAAsBA,CAACC,GAAQ,EAAO;EACpD,MAAM;IAAEN,CAAC;IAAEC,CAAC;IAAEhB,CAAC;IAAEU,CAAC;IAAE,GAAGY;EAAG,CAAC,GAAGD,GAAG;EAEjC,OAAO;IACL,GAAGC,EAAE;IACL,IAAIP,CAAC,GAAG;MAAEA,CAAC,EAAE3B,aAAa,CAAC2B,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,IAAIC,CAAC,GAAG;MAAEA,CAAC,EAAE5B,aAAa,CAAC4B,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,IAAIhB,CAAC,GAAG;MAAEA,CAAC,EAAEZ,aAAa,CAACY,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,IAAIU,CAAC,GAAG;MAAEA,CAAC,EAAEtB,aAAa,CAACsB,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC;EACtC,CAAC;AACH;AAGA,OAAO,MAAMa,IAAI,GAAGjC,CAAC,CAACE,MAAM,CAAC;EAC3BgC,IAAI,EAAElC,CAAC,CAACe,KAAK,CAACd,GAAG;AACnB,CAAC,CAAC;AAIF;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMkC,gBAAgB,GAAG,MAAAA,CAAOC,IAAS,EAAEC,IAAS,KAAK;EAC9D,MAAM,CAACC,cAAc,EAAEC,cAAc,CAAC,GAAG,MAAMC,OAAO,CAACC,GAAG,CAAC,CACzD1C,UAAU,CAACqC,IAAI,CAAC,EAChBrC,UAAU,CAACsC,IAAI,CAAC,CACjB,CAAC;EACF,OAAOC,cAAc,KAAKC,cAAc;AAC1C,CAAC"}
+{"version":3,"names":["removePadding","thumbprint","z","JWK","object","alg","string","optional","crv","d","dp","dq","e","ext","boolean","k","key_ops","array","kid","kty","enum","n","p","q","qi","use","x","y","x5c","x5t","x5u","fixBase64EncodingOnKey","key","pk","JWKS","keys","isSameThumbprint","jwkA","jwkB","thumbprintJwkA","thumbprintJwkB","Promise","all"],"sourceRoot":"../../../src","sources":["utils/jwk.ts"],"mappings":"AAAA,SAAiBA,aAAa,EAAEC,UAAU,QAAQ,6BAA6B;AAC/E,SAASC,CAAC,QAAQ,KAAK;AAGvB,OAAO,MAAMC,GAAG,GAAGD,CAAC,CAACE,MAAM,CAAC;EAC1B;EACAC,GAAG,EAAEH,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1BC,GAAG,EAAEN,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1BE,CAAC,EAAEP,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBG,EAAE,EAAER,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACzBI,EAAE,EAAET,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACzBK,CAAC,EAAEV,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxB;EACAM,GAAG,EAAEX,CAAC,CAACY,OAAO,CAAC,CAAC,CAACP,QAAQ,CAAC,CAAC;EAC3BQ,CAAC,EAAEb,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxB;EACAS,OAAO,EAAEd,CAAC,CAACe,KAAK,CAACf,CAAC,CAACI,MAAM,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACvC;EACAW,GAAG,EAAEhB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1B;AACF;AACA;EACEY,GAAG,EAAEjB,CAAC,CAACkB,IAAI,CAAC,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC;EAC1BC,CAAC,EAAEnB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBe,CAAC,EAAEpB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBgB,CAAC,EAAErB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBiB,EAAE,EAAEtB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACzB;EACAkB,GAAG,EAAEvB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1BmB,CAAC,EAAExB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxBoB,CAAC,EAAEzB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACxB;EACAqB,GAAG,EAAE1B,CAAC,CAACe,KAAK,CAACf,CAAC,CAACI,MAAM,CAAC,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACnC;EACAsB,GAAG,EAAE3B,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EAC1B;EACA,UAAU,EAAEL,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC,CAAC;EACjC;EACAuB,GAAG,EAAE5B,CAAC,CAACI,MAAM,CAAC,CAAC,CAACC,QAAQ,CAAC;AAC3B,CAAC,CAAC;;AAEF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASwB,sBAAsBA,CAACC,GAAQ,EAAO;EACpD,MAAM;IAAEN,CAAC;IAAEC,CAAC;IAAEf,CAAC;IAAES,CAAC;IAAE,GAAGY;EAAG,CAAC,GAAGD,GAAG;EAEjC,OAAO;IACL,GAAGC,EAAE;IACL,IAAIP,CAAC,GAAG;MAAEA,CAAC,EAAE1B,aAAa,CAAC0B,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,IAAIC,CAAC,GAAG;MAAEA,CAAC,EAAE3B,aAAa,CAAC2B,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,IAAIf,CAAC,GAAG;MAAEA,CAAC,EAAEZ,aAAa,CAACY,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,IAAIS,CAAC,GAAG;MAAEA,CAAC,EAAErB,aAAa,CAACqB,CAAC;IAAE,CAAC,GAAG,CAAC,CAAC;EACtC,CAAC;AACH;AAGA,OAAO,MAAMa,IAAI,GAAGhC,CAAC,CAACE,MAAM,CAAC;EAC3B+B,IAAI,EAAEjC,CAAC,CAACe,KAAK,CAACd,GAAG;AACnB,CAAC,CAAC;AAIF;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMiC,gBAAgB,GAAG,MAAAA,CAAOC,IAAS,EAAEC,IAAS,KAAK;EAC9D,MAAM,CAACC,cAAc,EAAEC,cAAc,CAAC,GAAG,MAAMC,OAAO,CAACC,GAAG,CAAC,CACzDzC,UAAU,CAACoC,IAAI,CAAC,EAChBpC,UAAU,CAACqC,IAAI,CAAC,CACjB,CAAC;EACF,OAAOC,cAAc,KAAKC,cAAc;AAC1C,CAAC"}

package/lib/module/utils/zod.js

@@ -4,7 +4,7 @@
 
 import { z } from "zod";
 const literalSchema = z.union([z.string(), z.number(), z.boolean(), z.null()]);
-const jsonSchema = z.lazy(() => z.union([literalSchema, z.array(jsonSchema), z.record(jsonSchema)]));
+const jsonSchema = z.lazy(() => z.union([literalSchema, z.array(jsonSchema), z.record(z.string(), jsonSchema)]));
 export const json = () => jsonSchema;
 export const stringToJSONSchema = z.string().transform((str, ctx) => {
   try {

package/lib/module/utils/zod.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","literalSchema","union","string","number","boolean","null","jsonSchema","lazy","array","record","json","stringToJSONSchema","transform","str","ctx","JSON","parse","e","addIssue","code","message","NEVER","UnixTime","min","max"],"sourceRoot":"../../../src","sources":["utils/zod.ts"],"mappings":"AAAA;AACA;AACA;;AAEA,SAASA,CAAC,QAAQ,KAAK;AAEvB,MAAMC,aAAa,GAAGD,CAAC,CAACE,KAAK,CAAC,CAACF,CAAC,CAACG,MAAM,CAAC,CAAC,EAAEH,CAAC,CAACI,MAAM,CAAC,CAAC,EAAEJ,CAAC,CAACK,OAAO,CAAC,CAAC,EAAEL,CAAC,CAACM,IAAI,CAAC,CAAC,CAAC,CAAC;AAM9E,MAAMC,UAA2B,GAAGP,CAAC,CAACQ,IAAI,CAAC,MACzCR,CAAC,CAACE,KAAK,CAAC,CAACD,aAAa,EAAED,CAAC,CAACS,KAAK,CAACF,UAAU,CAAC,EAAEP,CAAC,CAACU,MAAM,CAACH,UAAU,CAAC,CAAC,CACpE,CAAC;AAED,OAAO,MAAMI,IAAI,GAAGA,CAAA,KAAMJ,UAAU;AAEpC,OAAO,MAAMK,kBAAkB,GAAGZ,CAAC,CAChCG,MAAM,CAAC,CAAC,CACRU,SAAS,CAAC,CAACC,GAAG,EAAEC,GAAG,KAAuC;EACzD,IAAI;IACF,OAAOC,IAAI,CAACC,KAAK,CAACH,GAAG,CAAC;EACxB,CAAC,CAAC,OAAOI,CAAC,EAAE;IACVH,GAAG,CAACI,QAAQ,CAAC;MAAEC,IAAI,EAAE,QAAQ;MAAEC,OAAO,EAAE;IAAe,CAAC,CAAC;IACzD,OAAOrB,CAAC,CAACsB,KAAK;EAChB;AACF,CAAC,CAAC;AAEJ,OAAO,MAAMC,QAAQ,GAAGvB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACoB,GAAG,CAAC,CAAC,CAAC,CAACC,GAAG,CAAC,aAAa,CAAC"}
+{"version":3,"names":["z","literalSchema","union","string","number","boolean","null","jsonSchema","lazy","array","record","json","stringToJSONSchema","transform","str","ctx","JSON","parse","e","addIssue","code","message","NEVER","UnixTime","min","max"],"sourceRoot":"../../../src","sources":["utils/zod.ts"],"mappings":"AAAA;AACA;AACA;;AAEA,SAASA,CAAC,QAAQ,KAAK;AAEvB,MAAMC,aAAa,GAAGD,CAAC,CAACE,KAAK,CAAC,CAACF,CAAC,CAACG,MAAM,CAAC,CAAC,EAAEH,CAAC,CAACI,MAAM,CAAC,CAAC,EAAEJ,CAAC,CAACK,OAAO,CAAC,CAAC,EAAEL,CAAC,CAACM,IAAI,CAAC,CAAC,CAAC,CAAC;AAM9E,MAAMC,UAA2B,GAAGP,CAAC,CAACQ,IAAI,CAAC,MACzCR,CAAC,CAACE,KAAK,CAAC,CACND,aAAa,EACbD,CAAC,CAACS,KAAK,CAACF,UAAU,CAAC,EACnBP,CAAC,CAACU,MAAM,CAACV,CAAC,CAACG,MAAM,CAAC,CAAC,EAAEI,UAAU,CAAC,CACjC,CACH,CAAC;AAED,OAAO,MAAMI,IAAI,GAAGA,CAAA,KAAMJ,UAAU;AAEpC,OAAO,MAAMK,kBAAkB,GAAGZ,CAAC,CAChCG,MAAM,CAAC,CAAC,CACRU,SAAS,CAAC,CAACC,GAAG,EAAEC,GAAG,KAAuC;EACzD,IAAI;IACF,OAAOC,IAAI,CAACC,KAAK,CAACH,GAAG,CAAC;EACxB,CAAC,CAAC,OAAOI,CAAC,EAAE;IACVH,GAAG,CAACI,QAAQ,CAAC;MAAEC,IAAI,EAAE,QAAQ;MAAEC,OAAO,EAAE;IAAe,CAAC,CAAC;IACzD,OAAOrB,CAAC,CAACsB,KAAK;EAChB;AACF,CAAC,CAAC;AAEJ,OAAO,MAAMC,QAAQ,GAAGvB,CAAC,CAACI,MAAM,CAAC,CAAC,CAACoB,GAAG,CAAC,CAAC,CAAC,CAACC,GAAG,CAAC,aAAa,CAAC"}

package/lib/module/wallet-instance-attestation/README.md

@@ -30,16 +30,19 @@ const { WALLET_PROVIDER_BASE_URL } = env; // Let's assume env is an object conta
  * WARNING: The integrity context must be the same used when creating the Wallet Instance with the same keytag.
  */
 const wallet = new IoWallet({ version: "1.0.0" });
-const issuedAttestation = await wallet.WalletInstanceAttestation.getAttestation({
-  wiaCryptoContext,
-  integrityContext,
-  walletProviderBaseUrl: WALLET_PROVIDER_BASE_URL,
-  appFetch,
-});
-// [
-//   { type: "wallet_instance_attestation", "format": "jwt", "attestation": "ey..." },
-//   { type: "wallet_instance_attestation", "format": "dc+sd-jwt", "attestation": "ey..." }
-// ]
+const issuedAttestation = await wallet.WalletInstanceAttestation.getAttestation(
+  {
+    walletProviderBaseUrl: WALLET_PROVIDER_BASE_URL,
+    walletSolutionId: "exampleId",
+    walletSolutionVersion: "1.2.3",
+  },
+  {
+    wiaCryptoContext,
+    integrityContext,
+    appFetch,
+  }
+);
+// [{ "format": "jwt", "attestation": "ey..." }, { "format": "dc+sd-jwt", "attestation": "ey..." }]
 return issuedAttestation;
 ```
 

package/lib/module/wallet-instance-attestation/api/types.js

@@ -3,11 +3,11 @@ import { UnixTime } from "../../utils/zod";
 import { JWK } from "../../utils/jwk";
 
 /**
- * Common Wallet Attestation shape. This object is
+ * Common Wallet Instance Attestation shape. This object is
  * an abstraction over the version-specific JWTs.
  */
 
-export const DecodedAttestationJwt = z.object({
+export const DecodedWalletInstanceAttestation = z.object({
   iss: z.string(),
   iat: UnixTime,
   exp: UnixTime,
@@ -15,8 +15,13 @@ export const DecodedAttestationJwt = z.object({
     jwk: JWK
   }),
   sub: z.string(),
+  wallet_provider_name: z.string().optional(),
+  wallet_solution_id: z.string().optional(),
+  /** @deprecated */
   wallet_link: z.string().optional(),
+  /** @deprecated */
   wallet_name: z.string().optional(),
+  /** @deprecated */
   aal: z.string().optional()
 });
 //# sourceMappingURL=types.js.map

package/lib/module/wallet-instance-attestation/api/types.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","UnixTime","JWK","DecodedAttestationJwt","object","iss","string","iat","exp","cnf","jwk","sub","wallet_link","optional","wallet_name","aal"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/api/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,QAAQ,QAAQ,iBAAiB;AAC1C,SAASC,GAAG,QAAQ,iBAAiB;;AAErC;AACA;AACA;AACA;;AAEA,OAAO,MAAMC,qBAAqB,GAAGH,CAAC,CAACI,MAAM,CAAC;EAC5CC,GAAG,EAAEL,CAAC,CAACM,MAAM,CAAC,CAAC;EACfC,GAAG,EAAEN,QAAQ;EACbO,GAAG,EAAEP,QAAQ;EACbQ,GAAG,EAAET,CAAC,CAACI,MAAM,CAAC;IAAEM,GAAG,EAAER;EAAI,CAAC,CAAC;EAC3BS,GAAG,EAAEX,CAAC,CAACM,MAAM,CAAC,CAAC;EACfM,WAAW,EAAEZ,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClCC,WAAW,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClCE,GAAG,EAAEf,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC;AAC3B,CAAC,CAAC"}
+{"version":3,"names":["z","UnixTime","JWK","DecodedWalletInstanceAttestation","object","iss","string","iat","exp","cnf","jwk","sub","wallet_provider_name","optional","wallet_solution_id","wallet_link","wallet_name","aal"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/api/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,QAAQ,QAAQ,iBAAiB;AAC1C,SAASC,GAAG,QAAQ,iBAAiB;;AAErC;AACA;AACA;AACA;;AAIA,OAAO,MAAMC,gCAAgC,GAAGH,CAAC,CAACI,MAAM,CAAC;EACvDC,GAAG,EAAEL,CAAC,CAACM,MAAM,CAAC,CAAC;EACfC,GAAG,EAAEN,QAAQ;EACbO,GAAG,EAAEP,QAAQ;EACbQ,GAAG,EAAET,CAAC,CAACI,MAAM,CAAC;IAAEM,GAAG,EAAER;EAAI,CAAC,CAAC;EAC3BS,GAAG,EAAEX,CAAC,CAACM,MAAM,CAAC,CAAC;EACfM,oBAAoB,EAAEZ,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAC3CC,kBAAkB,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EACzC;EACAE,WAAW,EAAEf,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClC;EACAG,WAAW,EAAEhB,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClC;EACAI,GAAG,EAAEjB,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC;AAC3B,CAAC,CAAC"}

package/lib/module/wallet-instance-attestation/v1.0.0/index.js

@@ -1,10 +1,10 @@
 import { withMapper, withMapperAsync } from "../../utils/mappers";
 import { getAttestation } from "./issuing";
 import { decode, verify } from "./utils";
-import { mapToDecodedAttestationJwt } from "./mappers";
+import { mapToDecodedWalletInstanceAttestation } from "./mappers";
 export const WalletInstanceAttestation = {
   getAttestation,
-  decode: withMapper(mapToDecodedAttestationJwt, decode),
-  verify: withMapperAsync(mapToDecodedAttestationJwt, verify)
+  decode: withMapper(mapToDecodedWalletInstanceAttestation, decode),
+  verify: withMapperAsync(mapToDecodedWalletInstanceAttestation, verify)
 };
 //# sourceMappingURL=index.js.map

package/lib/module/wallet-instance-attestation/v1.0.0/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["withMapper","withMapperAsync","getAttestation","decode","verify","mapToDecodedAttestationJwt","WalletInstanceAttestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.0.0/index.ts"],"mappings":"AACA,SAASA,UAAU,EAAEC,eAAe,QAAQ,qBAAqB;AACjE,SAASC,cAAc,QAAQ,WAAW;AAC1C,SAASC,MAAM,EAAEC,MAAM,QAAQ,SAAS;AACxC,SAASC,0BAA0B,QAAQ,WAAW;AAEtD,OAAO,MAAMC,yBAAuD,GAAG;EACrEJ,cAAc;EACdC,MAAM,EAAEH,UAAU,CAACK,0BAA0B,EAAEF,MAAM,CAAC;EACtDC,MAAM,EAAEH,eAAe,CAACI,0BAA0B,EAAED,MAAM;AAC5D,CAAC"}
+{"version":3,"names":["withMapper","withMapperAsync","getAttestation","decode","verify","mapToDecodedWalletInstanceAttestation","WalletInstanceAttestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.0.0/index.ts"],"mappings":"AACA,SAASA,UAAU,EAAEC,eAAe,QAAQ,qBAAqB;AACjE,SAASC,cAAc,QAAQ,WAAW;AAC1C,SAASC,MAAM,EAAEC,MAAM,QAAQ,SAAS;AACxC,SAASC,qCAAqC,QAAQ,WAAW;AAEjE,OAAO,MAAMC,yBAAuD,GAAG;EACrEJ,cAAc;EACdC,MAAM,EAAEH,UAAU,CAACK,qCAAqC,EAAEF,MAAM,CAAC;EACjEC,MAAM,EAAEH,eAAe,CAACI,qCAAqC,EAAED,MAAM;AACvE,CAAC"}

package/lib/module/wallet-instance-attestation/v1.0.0/issuing.js

@@ -47,24 +47,23 @@ async function getAttestationRequest(challenge, wiaCryptoContext, integrityConte
     typ: "wp-war+jwt"
   }).setIssuedAt().setExpirationTime("1h").sign();
 }
-export const getAttestation = async _ref => {
+export const getAttestation = async (requestParams, _ref) => {
   let {
     wiaCryptoContext,
     integrityContext,
-    walletProviderBaseUrl,
     appFetch = fetch
   } = _ref;
   const api = getWalletProviderClient({
-    walletProviderBaseUrl,
+    walletProviderBaseUrl: requestParams.walletProviderBaseUrl,
     appFetch
   });
 
   // 1. Get nonce from backend
   const challenge = await api.get("/nonce").then(response => response.nonce);
-  Logger.log(LogLevel.DEBUG, `Challenge obtained from ${walletProviderBaseUrl}: ${challenge} `);
+  Logger.log(LogLevel.DEBUG, `Challenge obtained from ${requestParams.walletProviderBaseUrl}: ${challenge} `);
 
   // 2. Get a signed attestation request
-  const signedAttestationRequest = await getAttestationRequest(challenge, wiaCryptoContext, integrityContext, walletProviderBaseUrl);
+  const signedAttestationRequest = await getAttestationRequest(challenge, wiaCryptoContext, integrityContext, requestParams.walletProviderBaseUrl);
   Logger.log(LogLevel.DEBUG, `Signed attestation request: ${signedAttestationRequest}`);
 
   // 3. Request WIA in multiple formats

package/lib/module/wallet-instance-attestation/v1.0.0/issuing.js.map

@@ -1 +1 @@
-{"version":3,"names":["SignJWT","thumbprint","fixBase64EncodingOnKey","JWK","getWalletProviderClient","LogLevel","Logger","ResponseErrorBuilder","WalletProviderResponseError","WalletProviderResponseErrorCodes","WalletAttestationResponse","mapToWalletAttestations","getAttestationRequest","challenge","wiaCryptoContext","integrityContext","walletProviderBaseUrl","jwk","getPublicKey","parsedJwk","parse","keyThumbprint","publicKey","kid","clientData","jwk_thumbprint","hardwareKeyTag","getHardwareKeyTag","signature","authenticatorData","getHardwareSignatureWithAuthData","JSON","stringify","setPayload","iss","aud","nonce","hardware_signature","integrity_assertion","hardware_key_tag","cnf","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","getAttestation","_ref","appFetch","fetch","api","get","then","response","log","DEBUG","signedAttestationRequest","post","body","assertion","catch","handleAttestationCreationError","attestation","wallet_attestations","format","wallet_attestation","e","ERROR","handle","code","WalletInstanceRevoked","message","WalletInstanceNotFound","WalletInstanceIntegrityFailed","WalletInstanceAttestationIssuingFailed","buildFrom"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.0.0/issuing.ts"],"mappings":"AAAA,SAEEA,OAAO,EACPC,UAAU,QACL,6BAA6B;AACpC,SAASC,sBAAsB,EAAEC,GAAG,QAAQ,iBAAiB;AAC7D,SAASC,uBAAuB,QAAQ,cAAc;AAEtD,SAASC,QAAQ,EAAEC,MAAM,QAAQ,qBAAqB;AACtD,SACEC,oBAAoB,EACpBC,2BAA2B,EAC3BC,gCAAgC,QAC3B,oBAAoB;AAC3B,SAASC,yBAAyB,QAAQ,SAAS;AAEnD,SAASC,uBAAuB,QAAQ,WAAW;;AAEnD;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,eAAeC,qBAAqBA,CAClCC,SAAiB,EACjBC,gBAA+B,EAC/BC,gBAAkC,EAClCC,qBAA6B,EACZ;EACjB,MAAMC,GAAG,GAAG,MAAMH,gBAAgB,CAACI,YAAY,CAAC,CAAC;EACjD,MAAMC,SAAS,GAAGhB,GAAG,CAACiB,KAAK,CAACH,GAAG,CAAC;EAChC,MAAMI,aAAa,GAAG,MAAMpB,UAAU,CAACkB,SAAS,CAAC;EACjD,MAAMG,SAAS,GAAG;IAAE,GAAGH,SAAS;IAAEI,GAAG,EAAEF;EAAc,CAAC;EAEtD,MAAMG,UAAU,GAAG;IACjBX,SAAS;IACTY,cAAc,EAAEJ;EAClB,CAAC;EAED,MAAMK,cAAc,GAAGX,gBAAgB,CAACY,iBAAiB,CAAC,CAAC;EAC3D,MAAM;IAAEC,SAAS;IAAEC;EAAkB,CAAC,GACpC,MAAMd,gBAAgB,CAACe,gCAAgC,CACrDC,IAAI,CAACC,SAAS,CAACR,UAAU,CAC3B,CAAC;EAEH,OAAO,IAAIxB,OAAO,CAACc,gBAAgB,CAAC,CACjCmB,UAAU,CAAC;IACVC,GAAG,EAAEb,aAAa;IAClBc,GAAG,EAAEnB,qBAAqB;IAC1BoB,KAAK,EAAEvB,SAAS;IAChBwB,kBAAkB,EAAET,SAAS;IAC7BU,mBAAmB,EAAET,iBAAiB;IACtCU,gBAAgB,EAAEb,cAAc;IAChCc,GAAG,EAAE;MACHvB,GAAG,EAAEf,sBAAsB,CAACoB,SAAS;IACvC;EACF,CAAC,CAAC,CACDmB,kBAAkB,CAAC;IAClBlB,GAAG,EAAED,SAAS,CAACC,GAAG;IAClBmB,GAAG,EAAE;EACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX;AAEA,OAAO,MAAMC,cAA8D,GACzE,MAAAC,IAAA,IAKM;EAAA,IALC;IACLjC,gBAAgB;IAChBC,gBAAgB;IAChBC,qBAAqB;IACrBgC,QAAQ,GAAGC;EACb,CAAC,GAAAF,IAAA;EACC,MAAMG,GAAG,GAAG9C,uBAAuB,CAAC;IAClCY,qBAAqB;IACrBgC;EACF,CAAC,CAAC;;EAEF;EACA,MAAMnC,SAAS,GAAG,MAAMqC,GAAG,CACxBC,GAAG,CAAC,QAAQ,CAAC,CACbC,IAAI,CAAEC,QAAQ,IAAKA,QAAQ,CAACjB,KAAK,CAAC;EACrC9B,MAAM,CAACgD,GAAG,CACRjD,QAAQ,CAACkD,KAAK,EACb,2BAA0BvC,qBAAsB,KAAIH,SAAU,GACjE,CAAC;;EAED;EACA,MAAM2C,wBAAwB,GAAG,MAAM5C,qBAAqB,CAC1DC,SAAS,EACTC,gBAAgB,EAChBC,gBAAgB,EAChBC,qBACF,CAAC;EACDV,MAAM,CAACgD,GAAG,CACRjD,QAAQ,CAACkD,KAAK,EACb,+BAA8BC,wBAAyB,EAC1D,CAAC;;EAED;EACA,MAAMH,QAAQ,GAAG,MAAMH,GAAG,CACvBO,IAAI,CAAC,sBAAsB,EAAE;IAC5BC,IAAI,EAAE;MACJC,SAAS,EAAEH;IACb;EACF,CAAC,CAAC,CACDJ,IAAI,CAAC1C,yBAAyB,CAACU,KAAK,CAAC,CACrCwC,KAAK,CAACC,8BAA8B,CAAC;EAExC,KAAK,MAAMC,WAAW,IAAIT,QAAQ,CAACU,mBAAmB,EAAE;IACtDzD,MAAM,CAACgD,GAAG,CACRjD,QAAQ,CAACkD,KAAK,EACb,kCAAiCO,WAAW,CAACE,MAAO,YAAWF,WAAW,CAACG,kBAAmB,EACjG,CAAC;EACH;EAEA,OAAOtD,uBAAuB,CAAC0C,QAAQ,CAAC;AAC1C,CAAC;AAEH,MAAMQ,8BAA8B,GAAIK,CAAU,IAAK;EACrD5D,MAAM,CAACgD,GAAG,CACRjD,QAAQ,CAAC8D,KAAK,EACb,iEAAgED,CAAE,EACrE,CAAC;EAED,IAAI,EAAEA,CAAC,YAAY1D,2BAA2B,CAAC,EAAE;IAC/C,MAAM0D,CAAC;EACT;EAEA,MAAM,IAAI3D,oBAAoB,CAACC,2BAA2B,CAAC,CACxD4D,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE5D,gCAAgC,CAAC6D,qBAAqB;IAC5DC,OAAO,EAAE;EACX,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE5D,gCAAgC,CAAC+D,sBAAsB;IAC7DD,OAAO,EACL;EACJ,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE5D,gCAAgC,CAACgE,6BAA6B;IACpEF,OAAO,EACL;EACJ,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE5D,gCAAgC,CAACiE,sCAAsC;IAC7EH,OAAO,EAAE;EACX,CAAC,CAAC,CACDI,SAAS,CAACT,CAAC,CAAC;AACjB,CAAC"}
+{"version":3,"names":["SignJWT","thumbprint","fixBase64EncodingOnKey","JWK","getWalletProviderClient","LogLevel","Logger","ResponseErrorBuilder","WalletProviderResponseError","WalletProviderResponseErrorCodes","WalletAttestationResponse","mapToWalletAttestations","getAttestationRequest","challenge","wiaCryptoContext","integrityContext","walletProviderBaseUrl","jwk","getPublicKey","parsedJwk","parse","keyThumbprint","publicKey","kid","clientData","jwk_thumbprint","hardwareKeyTag","getHardwareKeyTag","signature","authenticatorData","getHardwareSignatureWithAuthData","JSON","stringify","setPayload","iss","aud","nonce","hardware_signature","integrity_assertion","hardware_key_tag","cnf","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","getAttestation","requestParams","_ref","appFetch","fetch","api","get","then","response","log","DEBUG","signedAttestationRequest","post","body","assertion","catch","handleAttestationCreationError","attestation","wallet_attestations","format","wallet_attestation","e","ERROR","handle","code","WalletInstanceRevoked","message","WalletInstanceNotFound","WalletInstanceIntegrityFailed","WalletInstanceAttestationIssuingFailed","buildFrom"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.0.0/issuing.ts"],"mappings":"AAAA,SAEEA,OAAO,EACPC,UAAU,QACL,6BAA6B;AACpC,SAASC,sBAAsB,EAAEC,GAAG,QAAQ,iBAAiB;AAC7D,SAASC,uBAAuB,QAAQ,cAAc;AAEtD,SAASC,QAAQ,EAAEC,MAAM,QAAQ,qBAAqB;AACtD,SACEC,oBAAoB,EACpBC,2BAA2B,EAC3BC,gCAAgC,QAC3B,oBAAoB;AAC3B,SAASC,yBAAyB,QAAQ,SAAS;AAEnD,SAASC,uBAAuB,QAAQ,WAAW;;AAEnD;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,eAAeC,qBAAqBA,CAClCC,SAAiB,EACjBC,gBAA+B,EAC/BC,gBAAkC,EAClCC,qBAA6B,EACZ;EACjB,MAAMC,GAAG,GAAG,MAAMH,gBAAgB,CAACI,YAAY,CAAC,CAAC;EACjD,MAAMC,SAAS,GAAGhB,GAAG,CAACiB,KAAK,CAACH,GAAG,CAAC;EAChC,MAAMI,aAAa,GAAG,MAAMpB,UAAU,CAACkB,SAAS,CAAC;EACjD,MAAMG,SAAS,GAAG;IAAE,GAAGH,SAAS;IAAEI,GAAG,EAAEF;EAAc,CAAC;EAEtD,MAAMG,UAAU,GAAG;IACjBX,SAAS;IACTY,cAAc,EAAEJ;EAClB,CAAC;EAED,MAAMK,cAAc,GAAGX,gBAAgB,CAACY,iBAAiB,CAAC,CAAC;EAC3D,MAAM;IAAEC,SAAS;IAAEC;EAAkB,CAAC,GACpC,MAAMd,gBAAgB,CAACe,gCAAgC,CACrDC,IAAI,CAACC,SAAS,CAACR,UAAU,CAC3B,CAAC;EAEH,OAAO,IAAIxB,OAAO,CAACc,gBAAgB,CAAC,CACjCmB,UAAU,CAAC;IACVC,GAAG,EAAEb,aAAa;IAClBc,GAAG,EAAEnB,qBAAqB;IAC1BoB,KAAK,EAAEvB,SAAS;IAChBwB,kBAAkB,EAAET,SAAS;IAC7BU,mBAAmB,EAAET,iBAAiB;IACtCU,gBAAgB,EAAEb,cAAc;IAChCc,GAAG,EAAE;MACHvB,GAAG,EAAEf,sBAAsB,CAACoB,SAAS;IACvC;EACF,CAAC,CAAC,CACDmB,kBAAkB,CAAC;IAClBlB,GAAG,EAAED,SAAS,CAACC,GAAG;IAClBmB,GAAG,EAAE;EACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX;AAEA,OAAO,MAAMC,cAA8D,GACzE,MAAAA,CACEC,aAAa,EAAAC,IAAA,KAEV;EAAA,IADH;IAAElC,gBAAgB;IAAEC,gBAAgB;IAAEkC,QAAQ,GAAGC;EAAM,CAAC,GAAAF,IAAA;EAExD,MAAMG,GAAG,GAAG/C,uBAAuB,CAAC;IAClCY,qBAAqB,EAAE+B,aAAa,CAAC/B,qBAAqB;IAC1DiC;EACF,CAAC,CAAC;;EAEF;EACA,MAAMpC,SAAS,GAAG,MAAMsC,GAAG,CACxBC,GAAG,CAAC,QAAQ,CAAC,CACbC,IAAI,CAAEC,QAAQ,IAAKA,QAAQ,CAAClB,KAAK,CAAC;EACrC9B,MAAM,CAACiD,GAAG,CACRlD,QAAQ,CAACmD,KAAK,EACb,2BAA0BT,aAAa,CAAC/B,qBAAsB,KAAIH,SAAU,GAC/E,CAAC;;EAED;EACA,MAAM4C,wBAAwB,GAAG,MAAM7C,qBAAqB,CAC1DC,SAAS,EACTC,gBAAgB,EAChBC,gBAAgB,EAChBgC,aAAa,CAAC/B,qBAChB,CAAC;EACDV,MAAM,CAACiD,GAAG,CACRlD,QAAQ,CAACmD,KAAK,EACb,+BAA8BC,wBAAyB,EAC1D,CAAC;;EAED;EACA,MAAMH,QAAQ,GAAG,MAAMH,GAAG,CACvBO,IAAI,CAAC,sBAAsB,EAAE;IAC5BC,IAAI,EAAE;MACJC,SAAS,EAAEH;IACb;EACF,CAAC,CAAC,CACDJ,IAAI,CAAC3C,yBAAyB,CAACU,KAAK,CAAC,CACrCyC,KAAK,CAACC,8BAA8B,CAAC;EAExC,KAAK,MAAMC,WAAW,IAAIT,QAAQ,CAACU,mBAAmB,EAAE;IACtD1D,MAAM,CAACiD,GAAG,CACRlD,QAAQ,CAACmD,KAAK,EACb,kCAAiCO,WAAW,CAACE,MAAO,YAAWF,WAAW,CAACG,kBAAmB,EACjG,CAAC;EACH;EAEA,OAAOvD,uBAAuB,CAAC2C,QAAQ,CAAC;AAC1C,CAAC;AAEH,MAAMQ,8BAA8B,GAAIK,CAAU,IAAK;EACrD7D,MAAM,CAACiD,GAAG,CACRlD,QAAQ,CAAC+D,KAAK,EACb,iEAAgED,CAAE,EACrE,CAAC;EAED,IAAI,EAAEA,CAAC,YAAY3D,2BAA2B,CAAC,EAAE;IAC/C,MAAM2D,CAAC;EACT;EAEA,MAAM,IAAI5D,oBAAoB,CAACC,2BAA2B,CAAC,CACxD6D,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE7D,gCAAgC,CAAC8D,qBAAqB;IAC5DC,OAAO,EAAE;EACX,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE7D,gCAAgC,CAACgE,sBAAsB;IAC7DD,OAAO,EACL;EACJ,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE7D,gCAAgC,CAACiE,6BAA6B;IACpEF,OAAO,EACL;EACJ,CAAC,CAAC,CACDH,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAE7D,gCAAgC,CAACkE,sCAAsC;IAC7EH,OAAO,EAAE;EACX,CAAC,CAAC,CACDI,SAAS,CAACT,CAAC,CAAC;AACjB,CAAC"}

package/lib/module/wallet-instance-attestation/v1.0.0/mappers.js

@@ -1,10 +1,9 @@
 import { createMapper } from "../../utils/mappers";
-import { DecodedAttestationJwt } from "../api/types";
-export const mapToDecodedAttestationJwt = createMapper(x => x.payload, {
-  outputSchema: DecodedAttestationJwt
+import { DecodedWalletInstanceAttestation } from "../api/types";
+export const mapToDecodedWalletInstanceAttestation = createMapper(x => x.payload, {
+  outputSchema: DecodedWalletInstanceAttestation
 });
 export const mapToWalletAttestations = createMapper(x => x.wallet_attestations.map(wa => ({
-  type: "wallet_instance_attestation",
   format: wa.format,
   attestation: wa.wallet_attestation
 })));

package/lib/module/wallet-instance-attestation/v1.0.0/mappers.js.map

@@ -1 +1 @@
-{"version":3,"names":["createMapper","DecodedAttestationJwt","mapToDecodedAttestationJwt","x","payload","outputSchema","mapToWalletAttestations","wallet_attestations","map","wa","type","format","attestation","wallet_attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.0.0/mappers.ts"],"mappings":"AAAA,SAASA,YAAY,QAAQ,qBAAqB;AAClD,SAASC,qBAAqB,QAAgC,cAAc;AAM5E,OAAO,MAAMC,0BAA0B,GAAGF,YAAY,CAGnDG,CAAC,IAAKA,CAAC,CAACC,OAAO,EAAE;EAClBC,YAAY,EAAEJ;AAChB,CAAC,CAAC;AAEF,OAAO,MAAMK,uBAAuB,GAAGN,YAAY,CAGhDG,CAAC,IACFA,CAAC,CAACI,mBAAmB,CAACC,GAAG,CAAEC,EAAE,KAAM;EACjCC,IAAI,EAAE,6BAA6B;EACnCC,MAAM,EAAEF,EAAE,CAACE,MAAM;EACjBC,WAAW,EAAEH,EAAE,CAACI;AAClB,CAAC,CAAC,CACJ,CAAC"}
+{"version":3,"names":["createMapper","DecodedWalletInstanceAttestation","mapToDecodedWalletInstanceAttestation","x","payload","outputSchema","mapToWalletAttestations","wallet_attestations","map","wa","format","attestation","wallet_attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.0.0/mappers.ts"],"mappings":"AAAA,SAASA,YAAY,QAAQ,qBAAqB;AAClD,SACEC,gCAAgC,QAE3B,cAAc;AAMrB,OAAO,MAAMC,qCAAqC,GAAGF,YAAY,CAG9DG,CAAC,IAAKA,CAAC,CAACC,OAAO,EAAE;EAClBC,YAAY,EAAEJ;AAChB,CAAC,CAAC;AAEF,OAAO,MAAMK,uBAAuB,GAAGN,YAAY,CAGhDG,CAAC,IACFA,CAAC,CAACI,mBAAmB,CAACC,GAAG,CAAEC,EAAE,KAAM;EACjCC,MAAM,EAAED,EAAE,CAACC,MAAM;EACjBC,WAAW,EAAEF,EAAE,CAACG;AAClB,CAAC,CAAC,CACJ,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/index.js

@@ -1,12 +1,10 @@
-import { UnimplementedFeatureError } from "../../utils/errors";
+import { withMapper, withMapperAsync } from "../../utils/mappers";
 import { getAttestation } from "./issuing";
+import { decode, verify } from "./utils";
+import { mapToDecodedWalletInstanceAttestation } from "./mappers";
 export const WalletInstanceAttestation = {
   getAttestation,
-  decode: () => {
-    throw new UnimplementedFeatureError("decode", "1.3.3");
-  },
-  verify: () => {
-    throw new UnimplementedFeatureError("verify", "1.3.3");
-  }
+  decode: withMapper(mapToDecodedWalletInstanceAttestation, decode),
+  verify: withMapperAsync(mapToDecodedWalletInstanceAttestation, verify)
 };
 //# sourceMappingURL=index.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["UnimplementedFeatureError","getAttestation","WalletInstanceAttestation","decode","verify"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/index.ts"],"mappings":"AAAA,SAASA,yBAAyB,QAAQ,oBAAoB;AAE9D,SAASC,cAAc,QAAQ,WAAW;AAE1C,OAAO,MAAMC,yBAAuD,GAAG;EACrED,cAAc;EACdE,MAAM,EAAEA,CAAA,KAAM;IACZ,MAAM,IAAIH,yBAAyB,CAAC,QAAQ,EAAE,OAAO,CAAC;EACxD,CAAC;EACDI,MAAM,EAAEA,CAAA,KAAM;IACZ,MAAM,IAAIJ,yBAAyB,CAAC,QAAQ,EAAE,OAAO,CAAC;EACxD;AACF,CAAC"}
+{"version":3,"names":["withMapper","withMapperAsync","getAttestation","decode","verify","mapToDecodedWalletInstanceAttestation","WalletInstanceAttestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/index.ts"],"mappings":"AAAA,SAASA,UAAU,EAAEC,eAAe,QAAQ,qBAAqB;AAEjE,SAASC,cAAc,QAAQ,WAAW;AAC1C,SAASC,MAAM,EAAEC,MAAM,QAAQ,SAAS;AACxC,SAASC,qCAAqC,QAAQ,WAAW;AAEjE,OAAO,MAAMC,yBAAuD,GAAG;EACrEJ,cAAc;EACdC,MAAM,EAAEH,UAAU,CAACK,qCAAqC,EAAEF,MAAM,CAAC;EACjEC,MAAM,EAAEH,eAAe,CAACI,qCAAqC,EAAED,MAAM;AACvE,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/issuing.js

@@ -1,5 +1,75 @@
-import { UnimplementedFeatureError } from "../../utils/errors";
-export const getAttestation = () => {
-  throw new UnimplementedFeatureError("getAttestation", "1.3.3");
+import { Platform } from "react-native";
+import { thumbprint, SignJWT } from "@pagopa/io-react-native-jwt";
+import { LogLevel, Logger } from "../../utils/logging";
+import { fixBase64EncodingOnKey, JWK } from "../../utils/jwk";
+import { getWalletProviderClient } from "../../client";
+import { WalletInstanceAttestationResponse } from "./types";
+async function getAttestationRequest(_ref, wiaCryptoContext, integrityContext) {
+  let {
+    challenge,
+    walletSolutionId,
+    walletSolutionVersion
+  } = _ref;
+  const jwk = await wiaCryptoContext.getPublicKey();
+  const parsedJwk = JWK.parse(jwk);
+  const keyThumbprint = await thumbprint(parsedJwk);
+  const publicKey = {
+    ...parsedJwk,
+    kid: keyThumbprint
+  };
+  const clientData = {
+    challenge,
+    jwk_thumbprint: keyThumbprint
+  };
+  const hardwareKeyTag = integrityContext.getHardwareKeyTag();
+  const {
+    signature,
+    authenticatorData
+  } = await integrityContext.getHardwareSignatureWithAuthData(JSON.stringify(clientData));
+  return new SignJWT(wiaCryptoContext).setPayload({
+    iss: hardwareKeyTag,
+    nonce: challenge,
+    platform: Platform.OS,
+    hardware_signature: signature,
+    integrity_assertion: authenticatorData,
+    hardware_key_tag: hardwareKeyTag,
+    wallet_solution_id: walletSolutionId,
+    wallet_solution_version: walletSolutionVersion,
+    cnf: {
+      jwk: fixBase64EncodingOnKey(publicKey)
+    }
+  }).setProtectedHeader({
+    kid: publicKey.kid,
+    typ: "wia-request+jwt"
+  }).setIssuedAt().setExpirationTime("1h").sign();
+}
+export const getAttestation = async (requestParams, _ref2) => {
+  let {
+    wiaCryptoContext,
+    integrityContext,
+    appFetch = fetch
+  } = _ref2;
+  const api = getWalletProviderClient({
+    walletProviderBaseUrl: requestParams.walletProviderBaseUrl,
+    appFetch
+  });
+  const challenge = await api.get("/nonce").then(response => response.nonce);
+  Logger.log(LogLevel.DEBUG, `Challenge obtained from ${requestParams.walletProviderBaseUrl}: ${challenge} `);
+  const signedAttestationRequest = await getAttestationRequest({
+    challenge,
+    ...requestParams
+  }, wiaCryptoContext, integrityContext);
+  Logger.log(LogLevel.DEBUG, `Signed attestation request: ${signedAttestationRequest}`);
+  const response = await api.post("/wallet-instance-attestations", {
+    header: {
+      "Content-Type": "text/plain"
+    },
+    body: signedAttestationRequest
+  }).then(WalletInstanceAttestationResponse.parse);
+  Logger.log(LogLevel.DEBUG, `Obtained Wallet Instance Attestation in jwt format: ${response.wallet_instance_attestation}`);
+  return [{
+    format: "jwt",
+    attestation: response.wallet_instance_attestation
+  }];
 };
 //# sourceMappingURL=issuing.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/issuing.js.map

@@ -1 +1 @@
-{"version":3,"names":["UnimplementedFeatureError","getAttestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/issuing.ts"],"mappings":"AAAA,SAASA,yBAAyB,QAAQ,oBAAoB;AAG9D,OAAO,MAAMC,cAA8D,GACzEA,CAAA,KAAM;EACJ,MAAM,IAAID,yBAAyB,CAAC,gBAAgB,EAAE,OAAO,CAAC;AAChE,CAAC"}
+{"version":3,"names":["Platform","thumbprint","SignJWT","LogLevel","Logger","fixBase64EncodingOnKey","JWK","getWalletProviderClient","WalletInstanceAttestationResponse","getAttestationRequest","_ref","wiaCryptoContext","integrityContext","challenge","walletSolutionId","walletSolutionVersion","jwk","getPublicKey","parsedJwk","parse","keyThumbprint","publicKey","kid","clientData","jwk_thumbprint","hardwareKeyTag","getHardwareKeyTag","signature","authenticatorData","getHardwareSignatureWithAuthData","JSON","stringify","setPayload","iss","nonce","platform","OS","hardware_signature","integrity_assertion","hardware_key_tag","wallet_solution_id","wallet_solution_version","cnf","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","getAttestation","requestParams","_ref2","appFetch","fetch","api","walletProviderBaseUrl","get","then","response","log","DEBUG","signedAttestationRequest","post","header","body","wallet_instance_attestation","format","attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/issuing.ts"],"mappings":"AAAA,SAASA,QAAQ,QAAQ,cAAc;AACvC,SACEC,UAAU,EAEVC,OAAO,QACF,6BAA6B;AAEpC,SAASC,QAAQ,EAAEC,MAAM,QAAQ,qBAAqB;AACtD,SAASC,sBAAsB,EAAEC,GAAG,QAAQ,iBAAiB;AAC7D,SAASC,uBAAuB,QAAQ,cAAc;AAGtD,SAASC,iCAAiC,QAAQ,SAAS;AAE3D,eAAeC,qBAAqBA,CAAAC,IAAA,EAMlCC,gBAA+B,EAC/BC,gBAAkC,EACjB;EAAA,IAPjB;IACEC,SAAS;IACTC,gBAAgB;IAChBC;EACsD,CAAC,GAAAL,IAAA;EAIzD,MAAMM,GAAG,GAAG,MAAML,gBAAgB,CAACM,YAAY,CAAC,CAAC;EACjD,MAAMC,SAAS,GAAGZ,GAAG,CAACa,KAAK,CAACH,GAAG,CAAC;EAChC,MAAMI,aAAa,GAAG,MAAMnB,UAAU,CAACiB,SAAS,CAAC;EACjD,MAAMG,SAAS,GAAG;IAAE,GAAGH,SAAS;IAAEI,GAAG,EAAEF;EAAc,CAAC;EAEtD,MAAMG,UAAU,GAAG;IACjBV,SAAS;IACTW,cAAc,EAAEJ;EAClB,CAAC;EAED,MAAMK,cAAc,GAAGb,gBAAgB,CAACc,iBAAiB,CAAC,CAAC;EAC3D,MAAM;IAAEC,SAAS;IAAEC;EAAkB,CAAC,GACpC,MAAMhB,gBAAgB,CAACiB,gCAAgC,CACrDC,IAAI,CAACC,SAAS,CAACR,UAAU,CAC3B,CAAC;EAEH,OAAO,IAAIrB,OAAO,CAACS,gBAAgB,CAAC,CACjCqB,UAAU,CAAC;IACVC,GAAG,EAAER,cAAc;IACnBS,KAAK,EAAErB,SAAS;IAChBsB,QAAQ,EAAEnC,QAAQ,CAACoC,EAAE;IACrBC,kBAAkB,EAAEV,SAAS;IAC7BW,mBAAmB,EAAEV,iBAAiB;IACtCW,gBAAgB,EAAEd,cAAc;IAChCe,kBAAkB,EAAE1B,gBAAgB;IACpC2B,uBAAuB,EAAE1B,qBAAqB;IAC9C2B,GAAG,EAAE;MACH1B,GAAG,EAAEX,sBAAsB,CAACgB,SAAS;IACvC;EACF,CAAC,CAAC,CACDsB,kBAAkB,CAAC;IAClBrB,GAAG,EAAED,SAAS,CAACC,GAAG;IAClBsB,GAAG,EAAE;EACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX;AAEA,OAAO,MAAMC,cAA8D,GACzE,MAAAA,CACEC,aAAa,EAAAC,KAAA,KAEV;EAAA,IADH;IAAEvC,gBAAgB;IAAEC,gBAAgB;IAAEuC,QAAQ,GAAGC;EAAM,CAAC,GAAAF,KAAA;EAExD,MAAMG,GAAG,GAAG9C,uBAAuB,CAAC;IAClC+C,qBAAqB,EAAEL,aAAa,CAACK,qBAAqB;IAC1DH;EACF,CAAC,CAAC;EAEF,MAAMtC,SAAS,GAAG,MAAMwC,GAAG,CACxBE,GAAG,CAAC,QAAQ,CAAC,CACbC,IAAI,CAAEC,QAAQ,IAAKA,QAAQ,CAACvB,KAAK,CAAC;EACrC9B,MAAM,CAACsD,GAAG,CACRvD,QAAQ,CAACwD,KAAK,EACb,2BAA0BV,aAAa,CAACK,qBAAsB,KAAIzC,SAAU,GAC/E,CAAC;EAED,MAAM+C,wBAAwB,GAAG,MAAMnD,qBAAqB,CAC1D;IAAEI,SAAS;IAAE,GAAGoC;EAAc,CAAC,EAC/BtC,gBAAgB,EAChBC,gBACF,CAAC;EACDR,MAAM,CAACsD,GAAG,CACRvD,QAAQ,CAACwD,KAAK,EACb,+BAA8BC,wBAAyB,EAC1D,CAAC;EAED,MAAMH,QAAQ,GAAG,MAAMJ,GAAG,CACvBQ,IAAI,CAAC,+BAA+B,EAAE;IACrCC,MAAM,EAAE;MACN,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEH;EACR,CAAC,CAAC,CACDJ,IAAI,CAAChD,iCAAiC,CAACW,KAAK,CAAC;EAEhDf,MAAM,CAACsD,GAAG,CACRvD,QAAQ,CAACwD,KAAK,EACb,uDAAsDF,QAAQ,CAACO,2BAA4B,EAC9F,CAAC;EAED,OAAO,CACL;IACEC,MAAM,EAAE,KAAK;IACbC,WAAW,EAAET,QAAQ,CAACO;EACxB,CAAC,CACF;AACH,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js

@@ -0,0 +1,19 @@
+import { createMapper } from "../../utils/mappers";
+import { DecodedWalletInstanceAttestation } from "../api/types";
+export const mapToDecodedWalletInstanceAttestation = createMapper(_ref => {
+  let {
+    payload
+  } = _ref;
+  const {
+    eudi_wallet_info,
+    ...rest
+  } = payload;
+  return {
+    ...rest,
+    wallet_provider_name: eudi_wallet_info.general_info.wallet_provider_name,
+    wallet_solution_id: eudi_wallet_info.general_info.wallet_solution_id
+  };
+}, {
+  outputSchema: DecodedWalletInstanceAttestation
+});
+//# sourceMappingURL=mappers.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["createMapper","DecodedWalletInstanceAttestation","mapToDecodedWalletInstanceAttestation","_ref","payload","eudi_wallet_info","rest","wallet_provider_name","general_info","wallet_solution_id","outputSchema"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/mappers.ts"],"mappings":"AAAA,SAASA,YAAY,QAAQ,qBAAqB;AAClD,SAASC,gCAAgC,QAAQ,cAAc;AAG/D,OAAO,MAAMC,qCAAqC,GAAGF,YAAY,CAI/DG,IAAA,IAAiB;EAAA,IAAhB;IAAEC;EAAQ,CAAC,GAAAD,IAAA;EACV,MAAM;IAAEE,gBAAgB;IAAE,GAAGC;EAAK,CAAC,GAAGF,OAAO;EAC7C,OAAO;IACL,GAAGE,IAAI;IACPC,oBAAoB,EAAEF,gBAAgB,CAACG,YAAY,CAACD,oBAAoB;IACxEE,kBAAkB,EAAEJ,gBAAgB,CAACG,YAAY,CAACC;EACpD,CAAC;AACH,CAAC,EACD;EAAEC,YAAY,EAAET;AAAiC,CACnD,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/types.js

@@ -1,32 +1,21 @@
 import * as z from "zod";
-import { JWK } from "../../utils/jwk";
 import { Jwt } from "../common/types";
-const Status = z.object({
-  status_list: z.object({
-    idx: z.number(),
-    uri: z.string()
-  })
-});
-export const WalletAppAttestationJwt = z.object({
+export const WalletInstanceAttestationJwt = z.object({
   header: z.intersection(Jwt.shape.header, z.object({
     typ: z.literal("oauth-client-attestation+jwt")
   })),
   payload: z.intersection(Jwt.shape.payload, z.object({
     sub: z.string(),
-    wallet_link: z.string().optional(),
-    wallet_name: z.string().optional(),
-    status: Status.optional()
+    eudi_wallet_info: z.object({
+      general_info: z.object({
+        wallet_provider_name: z.string(),
+        wallet_solution_id: z.string(),
+        wallet_solution_version: z.string()
+      })
+    })
   }))
 });
-export const WalletUnitAttestationJwt = z.object({
-  header: z.intersection(Jwt.shape.header, z.object({
-    typ: z.literal("key-attestation+jwt")
-  })),
-  payload: z.intersection(Jwt.shape.payload, z.object({
-    attested_keys: z.array(JWK),
-    user_authentication: z.array(z.string()),
-    key_storage: z.array(z.string()),
-    status: Status
-  }))
+export const WalletInstanceAttestationResponse = z.object({
+  wallet_instance_attestation: z.string()
 });
 //# sourceMappingURL=types.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/types.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","JWK","Jwt","Status","object","status_list","idx","number","uri","string","WalletAppAttestationJwt","header","intersection","shape","typ","literal","payload","sub","wallet_link","optional","wallet_name","status","WalletUnitAttestationJwt","attested_keys","array","user_authentication","key_storage"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,GAAG,QAAQ,iBAAiB;AACrC,SAASC,GAAG,QAAQ,iBAAiB;AAErC,MAAMC,MAAM,GAAGH,CAAC,CAACI,MAAM,CAAC;EACtBC,WAAW,EAAEL,CAAC,CAACI,MAAM,CAAC;IACpBE,GAAG,EAAEN,CAAC,CAACO,MAAM,CAAC,CAAC;IACfC,GAAG,EAAER,CAAC,CAACS,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;AAGF,OAAO,MAAMC,uBAAuB,GAAGV,CAAC,CAACI,MAAM,CAAC;EAC9CO,MAAM,EAAEX,CAAC,CAACY,YAAY,CACpBV,GAAG,CAACW,KAAK,CAACF,MAAM,EAChBX,CAAC,CAACI,MAAM,CAAC;IACPU,GAAG,EAAEd,CAAC,CAACe,OAAO,CAAC,8BAA8B;EAC/C,CAAC,CACH,CAAC;EACDC,OAAO,EAAEhB,CAAC,CAACY,YAAY,CACrBV,GAAG,CAACW,KAAK,CAACG,OAAO,EACjBhB,CAAC,CAACI,MAAM,CAAC;IACPa,GAAG,EAAEjB,CAAC,CAACS,MAAM,CAAC,CAAC;IACfS,WAAW,EAAElB,CAAC,CAACS,MAAM,CAAC,CAAC,CAACU,QAAQ,CAAC,CAAC;IAClCC,WAAW,EAAEpB,CAAC,CAACS,MAAM,CAAC,CAAC,CAACU,QAAQ,CAAC,CAAC;IAClCE,MAAM,EAAElB,MAAM,CAACgB,QAAQ,CAAC;EAC1B,CAAC,CACH;AACF,CAAC,CAAC;AAGF,OAAO,MAAMG,wBAAwB,GAAGtB,CAAC,CAACI,MAAM,CAAC;EAC/CO,MAAM,EAAEX,CAAC,CAACY,YAAY,CACpBV,GAAG,CAACW,KAAK,CAACF,MAAM,EAChBX,CAAC,CAACI,MAAM,CAAC;IACPU,GAAG,EAAEd,CAAC,CAACe,OAAO,CAAC,qBAAqB;EACtC,CAAC,CACH,CAAC;EACDC,OAAO,EAAEhB,CAAC,CAACY,YAAY,CACrBV,GAAG,CAACW,KAAK,CAACG,OAAO,EACjBhB,CAAC,CAACI,MAAM,CAAC;IACPmB,aAAa,EAAEvB,CAAC,CAACwB,KAAK,CAACvB,GAAG,CAAC;IAC3BwB,mBAAmB,EAAEzB,CAAC,CAACwB,KAAK,CAACxB,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;IACxCiB,WAAW,EAAE1B,CAAC,CAACwB,KAAK,CAACxB,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;IAChCY,MAAM,EAAElB;EACV,CAAC,CACH;AACF,CAAC,CAAC"}
+{"version":3,"names":["z","Jwt","WalletInstanceAttestationJwt","object","header","intersection","shape","typ","literal","payload","sub","string","eudi_wallet_info","general_info","wallet_provider_name","wallet_solution_id","wallet_solution_version","WalletInstanceAttestationResponse","wallet_instance_attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,GAAG,QAAQ,iBAAiB;AAKrC,OAAO,MAAMC,4BAA4B,GAAGF,CAAC,CAACG,MAAM,CAAC;EACnDC,MAAM,EAAEJ,CAAC,CAACK,YAAY,CACpBJ,GAAG,CAACK,KAAK,CAACF,MAAM,EAChBJ,CAAC,CAACG,MAAM,CAAC;IACPI,GAAG,EAAEP,CAAC,CAACQ,OAAO,CAAC,8BAA8B;EAC/C,CAAC,CACH,CAAC;EACDC,OAAO,EAAET,CAAC,CAACK,YAAY,CACrBJ,GAAG,CAACK,KAAK,CAACG,OAAO,EACjBT,CAAC,CAACG,MAAM,CAAC;IACPO,GAAG,EAAEV,CAAC,CAACW,MAAM,CAAC,CAAC;IACfC,gBAAgB,EAAEZ,CAAC,CAACG,MAAM,CAAC;MACzBU,YAAY,EAAEb,CAAC,CAACG,MAAM,CAAC;QACrBW,oBAAoB,EAAEd,CAAC,CAACW,MAAM,CAAC,CAAC;QAChCI,kBAAkB,EAAEf,CAAC,CAACW,MAAM,CAAC,CAAC;QAC9BK,uBAAuB,EAAEhB,CAAC,CAACW,MAAM,CAAC;MACpC,CAAC;IACH,CAAC;EACH,CAAC,CACH;AACF,CAAC,CAAC;AAKF,OAAO,MAAMM,iCAAiC,GAAGjB,CAAC,CAACG,MAAM,CAAC;EACxDe,2BAA2B,EAAElB,CAAC,CAACW,MAAM,CAAC;AACxC,CAAC,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/utils.js

@@ -0,0 +1,29 @@
+import { WalletInstanceAttestationJwt } from "./types";
+import { decode as decodeJwt, verify as verifyJwt } from "@pagopa/io-react-native-jwt";
+
+/**
+ * Decode a given JWT to get the parsed Wallet Instance Attestation object they define.
+ * It ensures provided data is in a valid shape.
+ *
+ * It DOES NOT verify token signature nor check disclosures are correctly referenced by the JWT.
+ * Use {@link verify} instead
+ */
+export function decode(token) {
+  const decodedJwt = decodeJwt(token);
+  return WalletInstanceAttestationJwt.parse({
+    header: decodedJwt.protectedHeader,
+    payload: decodedJwt.payload
+  });
+}
+
+/**
+ * Verify a given JWT to get the parsed Wallet Instance Attestation object they define.
+ * Same as {@link decode} plus token signature verification
+ */
+export async function verify(token) {
+  const decoded = decode(token);
+  const pubKey = decoded.payload.cnf.jwk;
+  await verifyJwt(token, pubKey);
+  return decoded;
+}
+//# sourceMappingURL=utils.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/utils.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["WalletInstanceAttestationJwt","decode","decodeJwt","verify","verifyJwt","token","decodedJwt","parse","header","protectedHeader","payload","decoded","pubKey","cnf","jwk"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/utils.ts"],"mappings":"AAAA,SAASA,4BAA4B,QAAQ,SAAS;AACtD,SACEC,MAAM,IAAIC,SAAS,EACnBC,MAAM,IAAIC,SAAS,QACd,6BAA6B;;AAEpC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASH,MAAMA,CAACI,KAAa,EAAgC;EAClE,MAAMC,UAAU,GAAGJ,SAAS,CAACG,KAAK,CAAC;EACnC,OAAOL,4BAA4B,CAACO,KAAK,CAAC;IACxCC,MAAM,EAAEF,UAAU,CAACG,eAAe;IAClCC,OAAO,EAAEJ,UAAU,CAACI;EACtB,CAAC,CAAC;AACJ;;AAEA;AACA;AACA;AACA;AACA,OAAO,eAAeP,MAAMA,CAC1BE,KAAa,EAC0B;EACvC,MAAMM,OAAO,GAAGV,MAAM,CAACI,KAAK,CAAC;EAC7B,MAAMO,MAAM,GAAGD,OAAO,CAACD,OAAO,CAACG,GAAG,CAACC,GAAG;EAEtC,MAAMV,SAAS,CAACC,KAAK,EAAEO,MAAM,CAAC;EAE9B,OAAOD,OAAO;AAChB"}

package/lib/module/wallet-unit-attestation/README.md

@@ -0,0 +1,73 @@
+# Wallet Unit Attestation
+
+This flow is used to obtain a [**Wallet Unit Attestation**](https://italia.github.io/eid-wallet-it-docs/releases/1.3.3/en/wallet-solution-requirements.html#wallet-unit-attestation-requirements). The WUA is bound to one or more cryptographic keys, that must be provided by the consumer application:
+- `keyAttestationCryptoContext` one or more objects that extend the `CryptoContext` with a function to generate a WSCD-stored key with an optional key attestation (Android only); these are the keys that will be attested in the WUA.
+- `integrityContext` object that is used to verify the integrity of the device where the app is running. The key tag must be the same used when creating the Wallet Instance.
+
+#### Note
+Before invoking `WalletUnitAttestation`'s functions, it is necessary to check whether the feature is supported by the current IoWallet instance.
+```ts
+const wallet = new IoWallet({ version: "1.3.3" });
+
+if (wallet.WalletUnitAttestation.isSupported) {
+  // Get the WUA
+}
+```
+
+### Example usage
+
+```ts
+import {
+  IoWallet,
+  createCryptoContextFor,
+  KeyAttestationCryptoContext
+} from "@pagopa/io-react-native-wallet";
+
+// Retrieve the integrity key tag from the store and create its context
+const integrityKeyTag = "example"; // Let's assume this is the same key used when creating the Wallet Instance
+const integrityContext = getIntegrityContext(integrityKeyTag);
+
+// Get env URLs
+const { WALLET_PROVIDER_BASE_URL } = env; // Let's assume env is an object containing the environment variables
+
+// The list of crypto contexts for each key to attest.
+const keysToAttest: KeyAttestationCryptoContext[] = [
+  {
+    ...createCryptoContextFor("example-keytag"),
+    generateKeyWithAttestation(challenge: string) {
+      // Generate a key stored in a trustworthy WSCD.
+      // On Android this function must return a key attestation.
+      return { 
+        success: true,
+        attestation: "android-key-attestation-string",
+      };
+    }
+  }
+];
+
+/**
+ * Obtain a new Wallet Unit Attestation.
+ * WARNING: The integrity context must be the same used when creating the Wallet Instance with the same keytag.
+ */
+const wallet = new IoWallet({ version: "1.3.3" });
+const issuedAttestation = await wallet.WalletUnitAttestation.getAttestation(
+  {
+    walletProviderBaseUrl: WALLET_PROVIDER_BASE_URL,
+    walletSolutionId: "exampleId",
+    walletSolutionVersion: "1.2.3",
+  },
+  {
+    keysToAttest,
+    integrityContext,
+    appFetch,
+  }
+);
+```
+## Mapped results
+
+The following errors are mapped to a `WalletProviderResponseError` with specific codes.
+
+|HTTP Status|Error Code|Description|
+|-----------|----------|-----------|
+|`*`|`ERR_IO_WALLET_PROVIDER_GENERIC_ERROR`|This is a generic error code to map unexpected errors that occurred when interacting with the Wallet Provider.|
+

package/lib/module/wallet-unit-attestation/api/index.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=index.js.map

package/lib/module/wallet-unit-attestation/api/index.js.map

@@ -0,0 +1 @@
+{"version":3,"names":[],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/api/index.ts"],"mappings":""}