npm - @pagopa/io-react-native-wallet - Versions diffs - 3.0.1 → 3.1.1 - Mend

@pagopa/io-react-native-wallet 3.0.1 → 3.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (505) hide show

package/lib/module/wallet-instance-attestation/v1.3.3/issuing.js CHANGED Viewed

@@ -1,5 +1,75 @@
-import { UnimplementedFeatureError } from "../../utils/errors";
-export const getAttestation = () => {
-  throw new UnimplementedFeatureError("getAttestation", "1.3.3");
+import { Platform } from "react-native";
+import { thumbprint, SignJWT } from "@pagopa/io-react-native-jwt";
+import { LogLevel, Logger } from "../../utils/logging";
+import { fixBase64EncodingOnKey, JWK } from "../../utils/jwk";
+import { getWalletProviderClient } from "../../client";
+import { WalletInstanceAttestationResponse } from "./types";
+async function getAttestationRequest(_ref, wiaCryptoContext, integrityContext) {
+  let {
+    challenge,
+    walletSolutionId,
+    walletSolutionVersion
+  } = _ref;
+  const jwk = await wiaCryptoContext.getPublicKey();
+  const parsedJwk = JWK.parse(jwk);
+  const keyThumbprint = await thumbprint(parsedJwk);
+  const publicKey = {
+    ...parsedJwk,
+    kid: keyThumbprint
+  };
+  const clientData = {
+    challenge,
+    jwk_thumbprint: keyThumbprint
+  };
+  const hardwareKeyTag = integrityContext.getHardwareKeyTag();
+  const {
+    signature,
+    authenticatorData
+  } = await integrityContext.getHardwareSignatureWithAuthData(JSON.stringify(clientData));
+  return new SignJWT(wiaCryptoContext).setPayload({
+    iss: hardwareKeyTag,
+    nonce: challenge,
+    platform: Platform.OS,
+    hardware_signature: signature,
+    integrity_assertion: authenticatorData,
+    hardware_key_tag: hardwareKeyTag,
+    wallet_solution_id: walletSolutionId,
+    wallet_solution_version: walletSolutionVersion,
+    cnf: {
+      jwk: fixBase64EncodingOnKey(publicKey)
+    }
+  }).setProtectedHeader({
+    kid: publicKey.kid,
+    typ: "wia-request+jwt"
+  }).setIssuedAt().setExpirationTime("1h").sign();
+}
+export const getAttestation = async (requestParams, _ref2) => {
+  let {
+    wiaCryptoContext,
+    integrityContext,
+    appFetch = fetch
+  } = _ref2;
+  const api = getWalletProviderClient({
+    walletProviderBaseUrl: requestParams.walletProviderBaseUrl,
+    appFetch
+  });
+  const challenge = await api.get("/nonce").then(response => response.nonce);
+  Logger.log(LogLevel.DEBUG, `Challenge obtained from ${requestParams.walletProviderBaseUrl}: ${challenge} `);
+  const signedAttestationRequest = await getAttestationRequest({
+    challenge,
+    ...requestParams
+  }, wiaCryptoContext, integrityContext);
+  Logger.log(LogLevel.DEBUG, `Signed attestation request: ${signedAttestationRequest}`);
+  const response = await api.post("/wallet-instance-attestations", {
+    header: {
+      "Content-Type": "text/plain"
+    },
+    body: signedAttestationRequest
+  }).then(WalletInstanceAttestationResponse.parse);
+  Logger.log(LogLevel.DEBUG, `Obtained Wallet Instance Attestation in jwt format: ${response.wallet_instance_attestation}`);
+  return [{
+    format: "jwt",
+    attestation: response.wallet_instance_attestation
+  }];
 };
 //# sourceMappingURL=issuing.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/issuing.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"names":["~~UnimplementedFeatureError~~","getAttestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/issuing.ts"],"mappings":"AAAA,SAASA,~~yBAAyB~~,QAAQ,~~oBAAoB~~;~~AAG9D~~,OAAO,MAAMC,cAA8D,~~GACzEA~~,~~CAAA~~,~~KAAM~~;~~EACJ~~,MAAM,~~IAAID~~,~~yBAAyB~~,CAAC,gBAAgB,EAAE,OAAO,CAAC;~~AAChE~~,CAAC"}
1	+ {"version":3,"names":["Platform","thumbprint","SignJWT","LogLevel","Logger","fixBase64EncodingOnKey","JWK","getWalletProviderClient","WalletInstanceAttestationResponse","getAttestationRequest","_ref","wiaCryptoContext","integrityContext","challenge","walletSolutionId","walletSolutionVersion","jwk","getPublicKey","parsedJwk","parse","keyThumbprint","publicKey","kid","clientData","jwk_thumbprint","hardwareKeyTag","getHardwareKeyTag","signature","authenticatorData","getHardwareSignatureWithAuthData","JSON","stringify","setPayload","iss","nonce","platform","OS","hardware_signature","integrity_assertion","hardware_key_tag","wallet_solution_id","wallet_solution_version","cnf","setProtectedHeader","typ","setIssuedAt","setExpirationTime","sign","getAttestation","requestParams","_ref2","appFetch","fetch","api","walletProviderBaseUrl","get","then","response","log","DEBUG","signedAttestationRequest","post","header","body","wallet_instance_attestation","format","attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/issuing.ts"],"mappings":"AAAA,SAASA,QAAQ,QAAQ,cAAc;AACvC,SACEC,UAAU,EAEVC,OAAO,QACF,6BAA6B;AAEpC,SAASC,QAAQ,EAAEC,MAAM,QAAQ,qBAAqB;AACtD,SAASC,sBAAsB,EAAEC,GAAG,QAAQ,iBAAiB;AAC7D,SAASC,uBAAuB,QAAQ,cAAc;AAGtD,SAASC,iCAAiC,QAAQ,SAAS;AAE3D,eAAeC,qBAAqBA,CAAAC,IAAA,EAMlCC,gBAA+B,EAC/BC,gBAAkC,EACjB;EAAA,IAPjB;IACEC,SAAS;IACTC,gBAAgB;IAChBC;EACsD,CAAC,GAAAL,IAAA;EAIzD,MAAMM,GAAG,GAAG,MAAML,gBAAgB,CAACM,YAAY,CAAC,CAAC;EACjD,MAAMC,SAAS,GAAGZ,GAAG,CAACa,KAAK,CAACH,GAAG,CAAC;EAChC,MAAMI,aAAa,GAAG,MAAMnB,UAAU,CAACiB,SAAS,CAAC;EACjD,MAAMG,SAAS,GAAG;IAAE,GAAGH,SAAS;IAAEI,GAAG,EAAEF;EAAc,CAAC;EAEtD,MAAMG,UAAU,GAAG;IACjBV,SAAS;IACTW,cAAc,EAAEJ;EAClB,CAAC;EAED,MAAMK,cAAc,GAAGb,gBAAgB,CAACc,iBAAiB,CAAC,CAAC;EAC3D,MAAM;IAAEC,SAAS;IAAEC;EAAkB,CAAC,GACpC,MAAMhB,gBAAgB,CAACiB,gCAAgC,CACrDC,IAAI,CAACC,SAAS,CAACR,UAAU,CAC3B,CAAC;EAEH,OAAO,IAAIrB,OAAO,CAACS,gBAAgB,CAAC,CACjCqB,UAAU,CAAC;IACVC,GAAG,EAAER,cAAc;IACnBS,KAAK,EAAErB,SAAS;IAChBsB,QAAQ,EAAEnC,QAAQ,CAACoC,EAAE;IACrBC,kBAAkB,EAAEV,SAAS;IAC7BW,mBAAmB,EAAEV,iBAAiB;IACtCW,gBAAgB,EAAEd,cAAc;IAChCe,kBAAkB,EAAE1B,gBAAgB;IACpC2B,uBAAuB,EAAE1B,qBAAqB;IAC9C2B,GAAG,EAAE;MACH1B,GAAG,EAAEX,sBAAsB,CAACgB,SAAS;IACvC;EACF,CAAC,CAAC,CACDsB,kBAAkB,CAAC;IAClBrB,GAAG,EAAED,SAAS,CAACC,GAAG;IAClBsB,GAAG,EAAE;EACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX;AAEA,OAAO,MAAMC,cAA8D,GACzE,MAAAA,CACEC,aAAa,EAAAC,KAAA,KAEV;EAAA,IADH;IAAEvC,gBAAgB;IAAEC,gBAAgB;IAAEuC,QAAQ,GAAGC;EAAM,CAAC,GAAAF,KAAA;EAExD,MAAMG,GAAG,GAAG9C,uBAAuB,CAAC;IAClC+C,qBAAqB,EAAEL,aAAa,CAACK,qBAAqB;IAC1DH;EACF,CAAC,CAAC;EAEF,MAAMtC,SAAS,GAAG,MAAMwC,GAAG,CACxBE,GAAG,CAAC,QAAQ,CAAC,CACbC,IAAI,CAAEC,QAAQ,IAAKA,QAAQ,CAACvB,KAAK,CAAC;EACrC9B,MAAM,CAACsD,GAAG,CACRvD,QAAQ,CAACwD,KAAK,EACb,2BAA0BV,aAAa,CAACK,qBAAsB,KAAIzC,SAAU,GAC/E,CAAC;EAED,MAAM+C,wBAAwB,GAAG,MAAMnD,qBAAqB,CAC1D;IAAEI,SAAS;IAAE,GAAGoC;EAAc,CAAC,EAC/BtC,gBAAgB,EAChBC,gBACF,CAAC;EACDR,MAAM,CAACsD,GAAG,CACRvD,QAAQ,CAACwD,KAAK,EACb,+BAA8BC,wBAAyB,EAC1D,CAAC;EAED,MAAMH,QAAQ,GAAG,MAAMJ,GAAG,CACvBQ,IAAI,CAAC,+BAA+B,EAAE;IACrCC,MAAM,EAAE;MACN,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEH;EACR,CAAC,CAAC,CACDJ,IAAI,CAAChD,iCAAiC,CAACW,KAAK,CAAC;EAEhDf,MAAM,CAACsD,GAAG,CACRvD,QAAQ,CAACwD,KAAK,EACb,uDAAsDF,QAAQ,CAACO,2BAA4B,EAC9F,CAAC;EAED,OAAO,CACL;IACEC,MAAM,EAAE,KAAK;IACbC,WAAW,EAAET,QAAQ,CAACO;EACxB,CAAC,CACF;AACH,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js ADDED Viewed

@@ -0,0 +1,19 @@
+import { createMapper } from "../../utils/mappers";
+import { DecodedWalletInstanceAttestation } from "../api/types";
+export const mapToDecodedWalletInstanceAttestation = createMapper(_ref => {
+  let {
+    payload
+  } = _ref;
+  const {
+    eudi_wallet_info,
+    ...rest
+  } = payload;
+  return {
+    ...rest,
+    wallet_provider_name: eudi_wallet_info.general_info.wallet_provider_name,
+    wallet_solution_id: eudi_wallet_info.general_info.wallet_solution_id
+  };
+}, {
+  outputSchema: DecodedWalletInstanceAttestation
+});
+//# sourceMappingURL=mappers.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["createMapper","DecodedWalletInstanceAttestation","mapToDecodedWalletInstanceAttestation","_ref","payload","eudi_wallet_info","rest","wallet_provider_name","general_info","wallet_solution_id","outputSchema"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/mappers.ts"],"mappings":"AAAA,SAASA,YAAY,QAAQ,qBAAqB;AAClD,SAASC,gCAAgC,QAAQ,cAAc;AAG/D,OAAO,MAAMC,qCAAqC,GAAGF,YAAY,CAI/DG,IAAA,IAAiB;EAAA,IAAhB;IAAEC;EAAQ,CAAC,GAAAD,IAAA;EACV,MAAM;IAAEE,gBAAgB;IAAE,GAAGC;EAAK,CAAC,GAAGF,OAAO;EAC7C,OAAO;IACL,GAAGE,IAAI;IACPC,oBAAoB,EAAEF,gBAAgB,CAACG,YAAY,CAACD,oBAAoB;IACxEE,kBAAkB,EAAEJ,gBAAgB,CAACG,YAAY,CAACC;EACpD,CAAC;AACH,CAAC,EACD;EAAEC,YAAY,EAAET;AAAiC,CACnD,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/types.js CHANGED Viewed

@@ -1,32 +1,21 @@
 import * as z from "zod";
-import { JWK } from "../../utils/jwk";
 import { Jwt } from "../common/types";
-const Status = z.object({
-  status_list: z.object({
-    idx: z.number(),
-    uri: z.string()
-  })
-});
-export const WalletAppAttestationJwt = z.object({
+export const WalletInstanceAttestationJwt = z.object({
   header: z.intersection(Jwt.shape.header, z.object({
     typ: z.literal("oauth-client-attestation+jwt")
   })),
   payload: z.intersection(Jwt.shape.payload, z.object({
     sub: z.string(),
-    wallet_link: z.string().optional(),
-    wallet_name: z.string().optional(),
-    status: Status.optional()
+    eudi_wallet_info: z.object({
+      general_info: z.object({
+        wallet_provider_name: z.string(),
+        wallet_solution_id: z.string(),
+        wallet_solution_version: z.string()
+      })
+    })
   }))
 });
-export const WalletUnitAttestationJwt = z.object({
-  header: z.intersection(Jwt.shape.header, z.object({
-    typ: z.literal("key-attestation+jwt")
-  })),
-  payload: z.intersection(Jwt.shape.payload, z.object({
-    attested_keys: z.array(JWK),
-    user_authentication: z.array(z.string()),
-    key_storage: z.array(z.string()),
-    status: Status
-  }))
+export const WalletInstanceAttestationResponse = z.object({
+  wallet_instance_attestation: z.string()
 });
 //# sourceMappingURL=types.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/types.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"names":["z","~~JWK","~~Jwt","~~Status~~","object","~~status_list","idx","number","uri","string","WalletAppAttestationJwt","~~header","intersection","shape","typ","literal","payload","sub","~~wallet_link~~","~~optional~~","~~wallet_name~~","~~status~~","~~WalletUnitAttestationJwt~~","~~attested_keys~~","~~array~~","~~user_authentication~~"~~,"key_storage"~~],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,GAAG,QAAQ,iBAAiB;~~AACrC~~,SAASC,GAAG,QAAQ,iBAAiB;AAErC,MAAMC,MAAM,GAAGH,CAAC,CAACI,MAAM,CAAC;EACtBC,WAAW,EAAEL,CAAC,CAACI,MAAM,CAAC;IACpBE,GAAG,EAAEN,CAAC,CAACO,MAAM,CAAC,CAAC;IACfC,GAAG,EAAER,CAAC,CAACS,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;AAGF,OAAO,MAAMC,~~uBAAuB~~,~~GAAGV~~,CAAC,~~CAACI~~,MAAM,CAAC;~~EAC9CO~~,MAAM,~~EAAEX~~,CAAC,~~CAACY~~,YAAY,~~CACpBV~~,GAAG,~~CAACW~~,KAAK,CAACF,MAAM,~~EAChBX~~,CAAC,~~CAACI~~,MAAM,CAAC;~~IACPU~~,GAAG,~~EAAEd~~,CAAC,~~CAACe~~,OAAO,CAAC,8BAA8B;EAC/C,CAAC,CACH,CAAC;EACDC,OAAO,~~EAAEhB~~,CAAC,~~CAACY~~,YAAY,~~CACrBV~~,GAAG,~~CAACW~~,KAAK,CAACG,OAAO,~~EACjBhB~~,CAAC,~~CAACI~~,MAAM,CAAC;~~IACPa~~,GAAG,~~EAAEjB~~,CAAC,~~CAACS~~,MAAM,CAAC,CAAC;~~IACfS~~,~~WAAW~~,~~EAAElB~~,CAAC,~~CAACS~~,MAAM,CAAC~~,CAAC,CAACU,QAAQ,CAAC,CAAC~~;~~IAClCC~~,~~WAAW~~,~~EAAEpB~~,CAAC,~~CAACS~~,MAAM,CAAC,~~CAAC~~,~~CAACU~~,~~QAAQ,~~CAAC,~~CAAC;IAClCE~~,MAAM,~~EAAElB,MAAM,CAACgB,QAAQ,~~CAAC~~;EAC1B~~,CAAC~~,CACH~~;~~AACF~~,~~CAAC~~,~~CAAC;AAGF~~,~~OAAO,MAAMG,wBAAwB,GAAGtB,~~CAAC,~~CAACI~~,MAAM,CAAC;~~EAC/CO~~,~~MAAM~~,~~EAAEX~~,CAAC,~~CAACY,YAAY,CACpBV,GAAG,~~CAACW,~~KAAK,CAACF,~~MAAM,~~EAChBX,~~CAAC,~~CAACI,MAAM,~~CAAC;~~IACPU~~,~~GAAG,EAAEd,~~CAAC~~,CAACe,OAAO,CAAC,qBAAqB~~;~~EACtC~~,CAAC,CACH~~,CAAC~~;~~EACDC~~,~~OAAO,EAAEhB,~~CAAC,~~CAACY,YAAY,CACrBV,GAAG,CAACW,KAAK,CAACG,OAAO,EACjBhB,~~CAAC~~,CAACI,MAAM,CAAC~~;~~IACPmB~~,~~aAAa~~,~~EAAEvB~~,~~CAAC~~,~~CAACwB~~,~~KAAK,CAACvB,GAAG,~~CAAC~~;IAC3BwB~~,~~mBAAmB~~,~~EAAEzB,CAAC,CAACwB,KAAK,CAACxB,CAAC,CAACS,~~MAAM,CAAC~~,CAAC,CAAC~~;~~IACxCiB~~,~~WAAW~~,~~EAAE1B~~,CAAC,~~CAACwB~~,~~KAAK,CAACxB,CAAC,CAACS,~~MAAM,CAAC~~,CAAC,CAAC~~;~~IAChCY~~,~~MAAM,EAAElB;EACV,~~CAAC,~~CACH;AACF,~~CAAC~~,CAAC~~"}
1	+ {"version":3,"names":["z","Jwt","WalletInstanceAttestationJwt","object","header","intersection","shape","typ","literal","payload","sub","string","eudi_wallet_info","general_info","wallet_provider_name","wallet_solution_id","wallet_solution_version","WalletInstanceAttestationResponse","wallet_instance_attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,GAAG,QAAQ,iBAAiB;AAKrC,OAAO,MAAMC,4BAA4B,GAAGF,CAAC,CAACG,MAAM,CAAC;EACnDC,MAAM,EAAEJ,CAAC,CAACK,YAAY,CACpBJ,GAAG,CAACK,KAAK,CAACF,MAAM,EAChBJ,CAAC,CAACG,MAAM,CAAC;IACPI,GAAG,EAAEP,CAAC,CAACQ,OAAO,CAAC,8BAA8B;EAC/C,CAAC,CACH,CAAC;EACDC,OAAO,EAAET,CAAC,CAACK,YAAY,CACrBJ,GAAG,CAACK,KAAK,CAACG,OAAO,EACjBT,CAAC,CAACG,MAAM,CAAC;IACPO,GAAG,EAAEV,CAAC,CAACW,MAAM,CAAC,CAAC;IACfC,gBAAgB,EAAEZ,CAAC,CAACG,MAAM,CAAC;MACzBU,YAAY,EAAEb,CAAC,CAACG,MAAM,CAAC;QACrBW,oBAAoB,EAAEd,CAAC,CAACW,MAAM,CAAC,CAAC;QAChCI,kBAAkB,EAAEf,CAAC,CAACW,MAAM,CAAC,CAAC;QAC9BK,uBAAuB,EAAEhB,CAAC,CAACW,MAAM,CAAC;MACpC,CAAC;IACH,CAAC;EACH,CAAC,CACH;AACF,CAAC,CAAC;AAKF,OAAO,MAAMM,iCAAiC,GAAGjB,CAAC,CAACG,MAAM,CAAC;EACxDe,2BAA2B,EAAElB,CAAC,CAACW,MAAM,CAAC;AACxC,CAAC,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/utils.js ADDED Viewed

@@ -0,0 +1,29 @@
+import { WalletInstanceAttestationJwt } from "./types";
+import { decode as decodeJwt, verify as verifyJwt } from "@pagopa/io-react-native-jwt";
+/**
+ * Decode a given JWT to get the parsed Wallet Instance Attestation object they define.
+ * It ensures provided data is in a valid shape.
+ *
+ * It DOES NOT verify token signature nor check disclosures are correctly referenced by the JWT.
+ * Use {@link verify} instead
+ */
+export function decode(token) {
+  const decodedJwt = decodeJwt(token);
+  return WalletInstanceAttestationJwt.parse({
+    header: decodedJwt.protectedHeader,
+    payload: decodedJwt.payload
+  });
+}
+/**
+ * Verify a given JWT to get the parsed Wallet Instance Attestation object they define.
+ * Same as {@link decode} plus token signature verification
+ */
+export async function verify(token) {
+  const decoded = decode(token);
+  const pubKey = decoded.payload.cnf.jwk;
+  await verifyJwt(token, pubKey);
+  return decoded;
+}
+//# sourceMappingURL=utils.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/utils.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["WalletInstanceAttestationJwt","decode","decodeJwt","verify","verifyJwt","token","decodedJwt","parse","header","protectedHeader","payload","decoded","pubKey","cnf","jwk"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/utils.ts"],"mappings":"AAAA,SAASA,4BAA4B,QAAQ,SAAS;AACtD,SACEC,MAAM,IAAIC,SAAS,EACnBC,MAAM,IAAIC,SAAS,QACd,6BAA6B;;AAEpC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,SAASH,MAAMA,CAACI,KAAa,EAAgC;EAClE,MAAMC,UAAU,GAAGJ,SAAS,CAACG,KAAK,CAAC;EACnC,OAAOL,4BAA4B,CAACO,KAAK,CAAC;IACxCC,MAAM,EAAEF,UAAU,CAACG,eAAe;IAClCC,OAAO,EAAEJ,UAAU,CAACI;EACtB,CAAC,CAAC;AACJ;;AAEA;AACA;AACA;AACA;AACA,OAAO,eAAeP,MAAMA,CAC1BE,KAAa,EAC0B;EACvC,MAAMM,OAAO,GAAGV,MAAM,CAACI,KAAK,CAAC;EAC7B,MAAMO,MAAM,GAAGD,OAAO,CAACD,OAAO,CAACG,GAAG,CAACC,GAAG;EAEtC,MAAMV,SAAS,CAACC,KAAK,EAAEO,MAAM,CAAC;EAE9B,OAAOD,OAAO;AAChB"}

package/lib/module/wallet-unit-attestation/README.md ADDED Viewed

@@ -0,0 +1,73 @@
+# Wallet Unit Attestation
+This flow is used to obtain a [**Wallet Unit Attestation**](https://italia.github.io/eid-wallet-it-docs/releases/1.3.3/en/wallet-solution-requirements.html#wallet-unit-attestation-requirements). The WUA is bound to one or more cryptographic keys, that must be provided by the consumer application:
+- `keyAttestationCryptoContext` one or more objects that extend the `CryptoContext` with a function to generate a WSCD-stored key with an optional key attestation (Android only); these are the keys that will be attested in the WUA.
+- `integrityContext` object that is used to verify the integrity of the device where the app is running. The key tag must be the same used when creating the Wallet Instance.
+#### Note
+Before invoking `WalletUnitAttestation`'s functions, it is necessary to check whether the feature is supported by the current IoWallet instance.
+```ts
+const wallet = new IoWallet({ version: "1.3.3" });
+if (wallet.WalletUnitAttestation.isSupported) {
+  // Get the WUA
+}
+```
+### Example usage
+```ts
+import {
+  IoWallet,
+  createCryptoContextFor,
+  KeyAttestationCryptoContext
+} from "@pagopa/io-react-native-wallet";
+// Retrieve the integrity key tag from the store and create its context
+const integrityKeyTag = "example"; // Let's assume this is the same key used when creating the Wallet Instance
+const integrityContext = getIntegrityContext(integrityKeyTag);
+// Get env URLs
+const { WALLET_PROVIDER_BASE_URL } = env; // Let's assume env is an object containing the environment variables
+// The list of crypto contexts for each key to attest.
+const keysToAttest: KeyAttestationCryptoContext[] = [
+  {
+    ...createCryptoContextFor("example-keytag"),
+    generateKeyWithAttestation(challenge: string) {
+      // Generate a key stored in a trustworthy WSCD.
+      // On Android this function must return a key attestation.
+      return {
+        success: true,
+        attestation: "android-key-attestation-string",
+      };
+    }
+  }
+];
+/**
+ * Obtain a new Wallet Unit Attestation.
+ * WARNING: The integrity context must be the same used when creating the Wallet Instance with the same keytag.
+ */
+const wallet = new IoWallet({ version: "1.3.3" });
+const issuedAttestation = await wallet.WalletUnitAttestation.getAttestation(
+  {
+    walletProviderBaseUrl: WALLET_PROVIDER_BASE_URL,
+    walletSolutionId: "exampleId",
+    walletSolutionVersion: "1.2.3",
+  },
+  {
+    keysToAttest,
+    integrityContext,
+    appFetch,
+  }
+);
+```
+## Mapped results
+The following errors are mapped to a `WalletProviderResponseError` with specific codes.
+|HTTP Status|Error Code|Description|
+|-----------|----------|-----------|
+|`*`|`ERR_IO_WALLET_PROVIDER_GENERIC_ERROR`|This is a generic error code to map unexpected errors that occurred when interacting with the Wallet Provider.|

package/lib/module/wallet-unit-attestation/api/index.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=index.js.map

package/lib/module/wallet-unit-attestation/api/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"names":[],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/api/index.ts"],"mappings":""}

package/lib/module/wallet-unit-attestation/api/types.js ADDED Viewed

@@ -0,0 +1,36 @@
+import * as z from "zod";
+import { UnixTime } from "../../utils/zod";
+import { JWK } from "../../utils/jwk";
+const Status = z.object({
+  status_list: z.object({
+    idx: z.number(),
+    uri: z.string()
+  })
+});
+/**
+ * Common Wallet Unit Attestation shape. This object is
+ * an abstraction over the version-specific JWTs.
+ */
+export const DecodedWalletUnitAttestation = z.object({
+  attested_keys: z.array(JWK),
+  user_authentication: z.array(z.string()),
+  key_storage: z.array(z.string()),
+  status: Status,
+  eudi_wallet_info: z.object({
+    general_info: z.object({
+      wallet_provider_name: z.string(),
+      wallet_solution_id: z.string(),
+      wallet_solution_version: z.string()
+    }),
+    key_storage_info: z.object({
+      keys_exportable: z.boolean(),
+      storage_type: z.string()
+    })
+  }),
+  iss: z.string(),
+  iat: UnixTime,
+  exp: UnixTime
+});
+//# sourceMappingURL=types.js.map

package/lib/module/wallet-unit-attestation/api/types.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["z","UnixTime","JWK","Status","object","status_list","idx","number","uri","string","DecodedWalletUnitAttestation","attested_keys","array","user_authentication","key_storage","status","eudi_wallet_info","general_info","wallet_provider_name","wallet_solution_id","wallet_solution_version","key_storage_info","keys_exportable","boolean","storage_type","iss","iat","exp"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/api/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,QAAQ,QAAQ,iBAAiB;AAC1C,SAASC,GAAG,QAAQ,iBAAiB;AAErC,MAAMC,MAAM,GAAGH,CAAC,CAACI,MAAM,CAAC;EACtBC,WAAW,EAAEL,CAAC,CAACI,MAAM,CAAC;IACpBE,GAAG,EAAEN,CAAC,CAACO,MAAM,CAAC,CAAC;IACfC,GAAG,EAAER,CAAC,CAACS,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;;AAEF;AACA;AACA;AACA;;AAIA,OAAO,MAAMC,4BAA4B,GAAGV,CAAC,CAACI,MAAM,CAAC;EACnDO,aAAa,EAAEX,CAAC,CAACY,KAAK,CAACV,GAAG,CAAC;EAC3BW,mBAAmB,EAAEb,CAAC,CAACY,KAAK,CAACZ,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;EACxCK,WAAW,EAAEd,CAAC,CAACY,KAAK,CAACZ,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;EAChCM,MAAM,EAAEZ,MAAM;EACda,gBAAgB,EAAEhB,CAAC,CAACI,MAAM,CAAC;IACzBa,YAAY,EAAEjB,CAAC,CAACI,MAAM,CAAC;MACrBc,oBAAoB,EAAElB,CAAC,CAACS,MAAM,CAAC,CAAC;MAChCU,kBAAkB,EAAEnB,CAAC,CAACS,MAAM,CAAC,CAAC;MAC9BW,uBAAuB,EAAEpB,CAAC,CAACS,MAAM,CAAC;IACpC,CAAC,CAAC;IACFY,gBAAgB,EAAErB,CAAC,CAACI,MAAM,CAAC;MACzBkB,eAAe,EAAEtB,CAAC,CAACuB,OAAO,CAAC,CAAC;MAC5BC,YAAY,EAAExB,CAAC,CAACS,MAAM,CAAC;IACzB,CAAC;EACH,CAAC,CAAC;EACFgB,GAAG,EAAEzB,CAAC,CAACS,MAAM,CAAC,CAAC;EACfiB,GAAG,EAAEzB,QAAQ;EACb0B,GAAG,EAAE1B;AACP,CAAC,CAAC"}

package/lib/module/wallet-unit-attestation/index.js ADDED Viewed

@@ -0,0 +1,3 @@
+export { WalletUnitAttestation as V1_0_0 } from "./v1.0.0";
+export { WalletUnitAttestation as V1_3_3 } from "./v1.3.3";
+//# sourceMappingURL=index.js.map

package/lib/module/wallet-unit-attestation/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"names":["WalletUnitAttestation","V1_0_0","V1_3_3"],"sourceRoot":"../../../src","sources":["wallet-unit-attestation/index.ts"],"mappings":"AACA,SAASA,qBAAqB,IAAIC,MAAM,QAAQ,UAAU;AAC1D,SAASD,qBAAqB,IAAIE,MAAM,QAAQ,UAAU"}

package/lib/module/wallet-unit-attestation/v1.0.0/index.js ADDED Viewed

@@ -0,0 +1,4 @@
+export const WalletUnitAttestation = {
+  isSupported: false
+};
+//# sourceMappingURL=index.js.map

package/lib/module/wallet-unit-attestation/v1.0.0/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"names":["WalletUnitAttestation","isSupported"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/v1.0.0/index.ts"],"mappings":"AAEA,OAAO,MAAMA,qBAA+C,GAAG;EAC7DC,WAAW,EAAE;AACf,CAAC"}

package/lib/module/wallet-unit-attestation/v1.3.3/index.js ADDED Viewed

@@ -0,0 +1,10 @@
+import { withMapper } from "../../utils/mappers";
+import { decode } from "./utils";
+import { mapToDecodedWalletUnitAttestation } from "./mappers";
+import { getAttestation } from "./issuing";
+export const WalletUnitAttestation = {
+  isSupported: true,
+  getAttestation,
+  decode: withMapper(mapToDecodedWalletUnitAttestation, decode)
+};
+//# sourceMappingURL=index.js.map

package/lib/module/wallet-unit-attestation/v1.3.3/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["withMapper","decode","mapToDecodedWalletUnitAttestation","getAttestation","WalletUnitAttestation","isSupported"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/v1.3.3/index.ts"],"mappings":"AAAA,SAASA,UAAU,QAAQ,qBAAqB;AAEhD,SAASC,MAAM,QAAQ,SAAS;AAChC,SAASC,iCAAiC,QAAQ,WAAW;AAC7D,SAASC,cAAc,QAAQ,WAAW;AAE1C,OAAO,MAAMC,qBAA+C,GAAG;EAC7DC,WAAW,EAAE,IAAI;EACjBF,cAAc;EACdF,MAAM,EAAED,UAAU,CAACE,iCAAiC,EAAED,MAAM;AAC9D,CAAC"}

package/lib/module/wallet-unit-attestation/v1.3.3/issuing.js ADDED Viewed

@@ -0,0 +1,112 @@
+import { Platform } from "react-native";
+import { SignJWT, thumbprint } from "@pagopa/io-react-native-jwt";
+import { Logger, LogLevel } from "../../utils/logging";
+import { getWalletProviderClient } from "../../client";
+import { fixBase64EncodingOnKey, JWK } from "../../utils/jwk";
+import { IoWalletError } from "../../utils/errors";
+import { WalletUnitAttestationResponse } from "./types";
+/**
+ * Create a Key Attestation Request in JWT format for the provided key.
+ * @param challenge The challenge for key attestation
+ * @param cryptoContext The crypto context of the key to attest
+ * @returns The key attestation request JWT, the public key and the original crypto context
+ */
+const createKeyAttestationRequest = async (challenge, cryptoContext) => {
+  const {
+    success,
+    attestation
+  } = await cryptoContext.generateKeyWithAttestation(challenge);
+  if (!success) {
+    throw new IoWalletError("generateKeyWithAttestation failed to generate a cryptographic key for the Wallet Unit Attestation request");
+  }
+  if (Platform.OS === "android" && !attestation) {
+    throw new IoWalletError("Missing key attestation: on Android the generated key must have a key attestation to request a Wallet Unit Attestation");
+  }
+  const publicKey = JWK.parse(await cryptoContext.getPublicKey());
+  const requestJwt = await new SignJWT(cryptoContext).setPayload({
+    wscd_key_attestation: {
+      storage_type: "LOCAL_NATIVE",
+      ...(attestation && {
+        attestation
+      })
+    },
+    cnf: {
+      jwk: fixBase64EncodingOnKey(publicKey)
+    }
+  }).setProtectedHeader({
+    kid: publicKey.kid,
+    typ: "key-attestation-request+jwt"
+  }).setIssuedAt().setExpirationTime("1h").sign();
+  return {
+    cryptoContext,
+    publicKey,
+    keyAttestationRequestJwt: requestJwt
+  };
+};
+export const getAttestation = async (_ref, _ref2) => {
+  let {
+    walletProviderBaseUrl,
+    walletSolutionId,
+    walletSolutionVersion
+  } = _ref;
+  let {
+    keysToAttest: keysToAttestContexts,
+    integrityContext,
+    appFetch = fetch
+  } = _ref2;
+  if (keysToAttestContexts.length === 0) {
+    throw new IoWalletError("At least one key to attest must be provided");
+  }
+  const api = getWalletProviderClient({
+    walletProviderBaseUrl,
+    appFetch
+  });
+  const {
+    nonce
+  } = await api.get("/nonce");
+  Logger.log(LogLevel.DEBUG, `Challenge obtained from ${walletProviderBaseUrl}: ${nonce}`);
+  const keysToAttest = await Promise.all(keysToAttestContexts.map(cryptoContext => createKeyAttestationRequest(nonce, cryptoContext)));
+  // Use the first key to attest to sign the WUA Request JWT
+  const signatureKey = keysToAttest.at(0);
+  const hardwareKeyTag = integrityContext.getHardwareKeyTag();
+  const clientData = {
+    challenge: nonce,
+    jwk_thumbprints: await Promise.all(keysToAttest.map(k => thumbprint(k.publicKey)))
+  };
+  const {
+    signature,
+    authenticatorData
+  } = await integrityContext.getHardwareSignatureWithAuthData(JSON.stringify(clientData));
+  const signedAttestationRequest = await new SignJWT(signatureKey.cryptoContext).setPayload({
+    nonce,
+    hardware_key_tag: hardwareKeyTag,
+    iss: hardwareKeyTag,
+    keys_to_attest: keysToAttest.map(k => k.keyAttestationRequestJwt),
+    hardware_signature: signature,
+    integrity_assertion: authenticatorData,
+    platform: Platform.OS,
+    wallet_solution_id: walletSolutionId,
+    wallet_solution_version: walletSolutionVersion,
+    cnf: {
+      jwk: fixBase64EncodingOnKey(signatureKey.publicKey)
+    }
+  }).setProtectedHeader({
+    kid: signatureKey.publicKey.kid,
+    typ: "wua-request+jwt"
+  }).setIssuedAt().setExpirationTime("1h").sign();
+  Logger.log(LogLevel.DEBUG, `Signed attestation request: ${signedAttestationRequest}`);
+  const response = await api.post("/wallet-unit-attestations", {
+    header: {
+      "Content-Type": "text/plain"
+    },
+    body: signedAttestationRequest
+  }).then(WalletUnitAttestationResponse.parse);
+  Logger.log(LogLevel.DEBUG, `Obtained Wallet Unit Attestation: ${response.wallet_unit_attestation}`);
+  return {
+    format: "jwt",
+    attestation: response.wallet_unit_attestation
+  };
+};
+//# sourceMappingURL=issuing.js.map

package/lib/module/wallet-unit-attestation/v1.3.3/issuing.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["Platform","SignJWT","thumbprint","Logger","LogLevel","getWalletProviderClient","fixBase64EncodingOnKey","JWK","IoWalletError","WalletUnitAttestationResponse","createKeyAttestationRequest","challenge","cryptoContext","success","attestation","generateKeyWithAttestation","OS","publicKey","parse","getPublicKey","requestJwt","setPayload","wscd_key_attestation","storage_type","cnf","jwk","setProtectedHeader","kid","typ","setIssuedAt","setExpirationTime","sign","keyAttestationRequestJwt","getAttestation","_ref","_ref2","walletProviderBaseUrl","walletSolutionId","walletSolutionVersion","keysToAttest","keysToAttestContexts","integrityContext","appFetch","fetch","length","api","nonce","get","log","DEBUG","Promise","all","map","signatureKey","at","hardwareKeyTag","getHardwareKeyTag","clientData","jwk_thumbprints","k","signature","authenticatorData","getHardwareSignatureWithAuthData","JSON","stringify","signedAttestationRequest","hardware_key_tag","iss","keys_to_attest","hardware_signature","integrity_assertion","platform","wallet_solution_id","wallet_solution_version","response","post","header","body","then","wallet_unit_attestation","format"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/v1.3.3/issuing.ts"],"mappings":"AAAA,SAASA,QAAQ,QAAQ,cAAc;AACvC,SAASC,OAAO,EAAEC,UAAU,QAAQ,6BAA6B;AACjE,SAASC,MAAM,EAAEC,QAAQ,QAAQ,qBAAqB;AACtD,SAASC,uBAAuB,QAAQ,cAAc;AACtD,SAASC,sBAAsB,EAAEC,GAAG,QAAQ,iBAAiB;AAC7D,SAASC,aAAa,QAAQ,oBAAoB;AAGlD,SAASC,6BAA6B,QAAQ,SAAS;;AAEvD;AACA;AACA;AACA;AACA;AACA;AACA,MAAMC,2BAA2B,GAAG,MAAAA,CAClCC,SAAiB,EACjBC,aAA0C,KACvC;EACH,MAAM;IAAEC,OAAO;IAAEC;EAAY,CAAC,GAC5B,MAAMF,aAAa,CAACG,0BAA0B,CAACJ,SAAS,CAAC;EAE3D,IAAI,CAACE,OAAO,EAAE;IACZ,MAAM,IAAIL,aAAa,CACrB,2GACF,CAAC;EACH;EAEA,IAAIR,QAAQ,CAACgB,EAAE,KAAK,SAAS,IAAI,CAACF,WAAW,EAAE;IAC7C,MAAM,IAAIN,aAAa,CACrB,wHACF,CAAC;EACH;EAEA,MAAMS,SAAS,GAAGV,GAAG,CAACW,KAAK,CAAC,MAAMN,aAAa,CAACO,YAAY,CAAC,CAAC,CAAC;EAE/D,MAAMC,UAAU,GAAG,MAAM,IAAInB,OAAO,CAACW,aAAa,CAAC,CAChDS,UAAU,CAAC;IACVC,oBAAoB,EAAE;MACpBC,YAAY,EAAE,cAAc;MAC5B,IAAIT,WAAW,IAAI;QAAEA;MAAY,CAAC;IACpC,CAAC;IACDU,GAAG,EAAE;MACHC,GAAG,EAAEnB,sBAAsB,CAACW,SAAS;IACvC;EACF,CAAC,CAAC,CACDS,kBAAkB,CAAC;IAClBC,GAAG,EAAEV,SAAS,CAACU,GAAG;IAClBC,GAAG,EAAE;EACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;EAET,OAAO;IAAEnB,aAAa;IAAEK,SAAS;IAAEe,wBAAwB,EAAEZ;EAAW,CAAC;AAC3E,CAAC;AAED,OAAO,MAAMa,cAAmE,GAC9E,MAAAA,CAAAC,IAAA,EAAAC,KAAA,KAGK;EAAA,IAFH;IAAEC,qBAAqB;IAAEC,gBAAgB;IAAEC;EAAsB,CAAC,GAAAJ,IAAA;EAAA,IAClE;IAAEK,YAAY,EAAEC,oBAAoB;IAAEC,gBAAgB;IAAEC,QAAQ,GAAGC;EAAM,CAAC,GAAAR,KAAA;EAE1E,IAAIK,oBAAoB,CAACI,MAAM,KAAK,CAAC,EAAE;IACrC,MAAM,IAAIpC,aAAa,CAAC,6CAA6C,CAAC;EACxE;EAEA,MAAMqC,GAAG,GAAGxC,uBAAuB,CAAC;IAAE+B,qBAAqB;IAAEM;EAAS,CAAC,CAAC;EAExE,MAAM;IAAEI;EAAM,CAAC,GAAG,MAAMD,GAAG,CAACE,GAAG,CAAC,QAAQ,CAAC;EACzC5C,MAAM,CAAC6C,GAAG,CACR5C,QAAQ,CAAC6C,KAAK,EACb,2BAA0Bb,qBAAsB,KAAIU,KAAM,EAC7D,CAAC;EAED,MAAMP,YAAY,GAAG,MAAMW,OAAO,CAACC,GAAG,CACpCX,oBAAoB,CAACY,GAAG,CAAExC,aAAa,IACrCF,2BAA2B,CAACoC,KAAK,EAAElC,aAAa,CAClD,CACF,CAAC;;EAED;EACA,MAAMyC,YAAY,GAAGd,YAAY,CAACe,EAAE,CAAC,CAAC,CAAE;EAExC,MAAMC,cAAc,GAAGd,gBAAgB,CAACe,iBAAiB,CAAC,CAAC;EAE3D,MAAMC,UAAU,GAAG;IACjB9C,SAAS,EAAEmC,KAAK;IAChBY,eAAe,EAAE,MAAMR,OAAO,CAACC,GAAG,CAChCZ,YAAY,CAACa,GAAG,CAAEO,CAAC,IAAKzD,UAAU,CAACyD,CAAC,CAAC1C,SAAS,CAAC,CACjD;EACF,CAAC;EAED,MAAM;IAAE2C,SAAS;IAAEC;EAAkB,CAAC,GACpC,MAAMpB,gBAAgB,CAACqB,gCAAgC,CACrDC,IAAI,CAACC,SAAS,CAACP,UAAU,CAC3B,CAAC;EAEH,MAAMQ,wBAAwB,GAAG,MAAM,IAAIhE,OAAO,CAChDoD,YAAY,CAACzC,aACf,CAAC,CACES,UAAU,CAAC;IACVyB,KAAK;IACLoB,gBAAgB,EAAEX,cAAc;IAChCY,GAAG,EAAEZ,cAAc;IACnBa,cAAc,EAAE7B,YAAY,CAACa,GAAG,CAAEO,CAAC,IAAKA,CAAC,CAAC3B,wBAAwB,CAAC;IACnEqC,kBAAkB,EAAET,SAAS;IAC7BU,mBAAmB,EAAET,iBAAiB;IACtCU,QAAQ,EAAEvE,QAAQ,CAACgB,EAAE;IACrBwD,kBAAkB,EAAEnC,gBAAgB;IACpCoC,uBAAuB,EAAEnC,qBAAqB;IAC9Cd,GAAG,EAAE;MACHC,GAAG,EAAEnB,sBAAsB,CAAC+C,YAAY,CAACpC,SAAS;IACpD;EACF,CAAC,CAAC,CACDS,kBAAkB,CAAC;IAClBC,GAAG,EAAE0B,YAAY,CAACpC,SAAS,CAACU,GAAG;IAC/BC,GAAG,EAAE;EACP,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;EAET5B,MAAM,CAAC6C,GAAG,CACR5C,QAAQ,CAAC6C,KAAK,EACb,+BAA8BgB,wBAAyB,EAC1D,CAAC;EAED,MAAMS,QAAQ,GAAG,MAAM7B,GAAG,CACvB8B,IAAI,CAAC,2BAA2B,EAAE;IACjCC,MAAM,EAAE;MACN,cAAc,EAAE;IAClB,CAAC;IACDC,IAAI,EAAEZ;EACR,CAAC,CAAC,CACDa,IAAI,CAACrE,6BAA6B,CAACS,KAAK,CAAC;EAE5Cf,MAAM,CAAC6C,GAAG,CACR5C,QAAQ,CAAC6C,KAAK,EACb,qCAAoCyB,QAAQ,CAACK,uBAAwB,EACxE,CAAC;EAED,OAAO;IACLC,MAAM,EAAE,KAAK;IACblE,WAAW,EAAE4D,QAAQ,CAACK;EACxB,CAAC;AACH,CAAC"}

package/lib/module/wallet-unit-attestation/v1.3.3/mappers.js ADDED Viewed

@@ -0,0 +1,6 @@
+import { createMapper } from "../../utils/mappers";
+import { DecodedWalletUnitAttestation } from "../api/types";
+export const mapToDecodedWalletUnitAttestation = createMapper(x => x.payload, {
+  outputSchema: DecodedWalletUnitAttestation
+});
+//# sourceMappingURL=mappers.js.map

package/lib/module/wallet-unit-attestation/v1.3.3/mappers.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["createMapper","DecodedWalletUnitAttestation","mapToDecodedWalletUnitAttestation","x","payload","outputSchema"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/v1.3.3/mappers.ts"],"mappings":"AAAA,SAASA,YAAY,QAAQ,qBAAqB;AAClD,SAASC,4BAA4B,QAAQ,cAAc;AAG3D,OAAO,MAAMC,iCAAiC,GAAGF,YAAY,CAG1DG,CAAC,IAAKA,CAAC,CAACC,OAAO,EAAE;EAClBC,YAAY,EAAEJ;AAChB,CAAC,CAAC"}

package/lib/module/wallet-unit-attestation/v1.3.3/types.js ADDED Viewed

@@ -0,0 +1,14 @@
+import * as z from "zod";
+import { Jwt } from "../../wallet-instance-attestation/common/types";
+import { DecodedWalletUnitAttestation } from "../api/types";
+export const WalletUnitAttestationJwt = z.object({
+  header: z.intersection(Jwt.shape.header, z.object({
+    typ: z.literal("key-attestation+jwt")
+  })),
+  payload: DecodedWalletUnitAttestation // The payload type matches the public API
+});
+export const WalletUnitAttestationResponse = z.object({
+  wallet_unit_attestation: z.string()
+});
+//# sourceMappingURL=types.js.map

package/lib/module/wallet-unit-attestation/v1.3.3/types.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["z","Jwt","DecodedWalletUnitAttestation","WalletUnitAttestationJwt","object","header","intersection","shape","typ","literal","payload","WalletUnitAttestationResponse","wallet_unit_attestation","string"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/v1.3.3/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,GAAG,QAAQ,gDAAgD;AACpE,SAASC,4BAA4B,QAAQ,cAAc;AAG3D,OAAO,MAAMC,wBAAwB,GAAGH,CAAC,CAACI,MAAM,CAAC;EAC/CC,MAAM,EAAEL,CAAC,CAACM,YAAY,CACpBL,GAAG,CAACM,KAAK,CAACF,MAAM,EAChBL,CAAC,CAACI,MAAM,CAAC;IACPI,GAAG,EAAER,CAAC,CAACS,OAAO,CAAC,qBAAqB;EACtC,CAAC,CACH,CAAC;EACDC,OAAO,EAAER,4BAA4B,CAAE;AACzC,CAAC,CAAC;;AAKF,OAAO,MAAMS,6BAA6B,GAAGX,CAAC,CAACI,MAAM,CAAC;EACpDQ,uBAAuB,EAAEZ,CAAC,CAACa,MAAM,CAAC;AACpC,CAAC,CAAC"}

package/lib/module/wallet-unit-attestation/v1.3.3/utils.js ADDED Viewed

@@ -0,0 +1,15 @@
+import { decode as decodeJwt } from "@pagopa/io-react-native-jwt";
+import { WalletUnitAttestationJwt } from "./types";
+/**
+ * Decode a given JWT to get the parsed Wallet Unit Attestation object they define.
+ * It ensures the provided data is in a valid shape, but it DOES NOT verify the signature.
+ */
+export function decode(token) {
+  const decodedJwt = decodeJwt(token);
+  return WalletUnitAttestationJwt.parse({
+    header: decodedJwt.protectedHeader,
+    payload: decodedJwt.payload
+  });
+}
+//# sourceMappingURL=utils.js.map

package/lib/module/wallet-unit-attestation/v1.3.3/utils.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"names":["decode","decodeJwt","WalletUnitAttestationJwt","token","decodedJwt","parse","header","protectedHeader","payload"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/v1.3.3/utils.ts"],"mappings":"AAAA,SAASA,MAAM,IAAIC,SAAS,QAAQ,6BAA6B;AACjE,SAASC,wBAAwB,QAAQ,SAAS;;AAElD;AACA;AACA;AACA;AACA,OAAO,SAASF,MAAMA,CAACG,KAAa,EAA4B;EAC9D,MAAMC,UAAU,GAAGH,SAAS,CAACE,KAAK,CAAC;EACnC,OAAOD,wBAAwB,CAACG,KAAK,CAAC;IACpCC,MAAM,EAAEF,UAAU,CAACG,eAAe;IAClCC,OAAO,EAAEJ,UAAU,CAACI;EACtB,CAAC,CAAC;AACJ"}

package/lib/typescript/api/index.d.ts CHANGED Viewed

@@ -1,5 +1,6 @@
 import * as WalletInstance from "../wallet-instance";
 import * as WIA from "../wallet-instance-attestation";
+import * as WUA from "../wallet-unit-attestation";
 import * as Trust from "../trust";
 import * as CredentialIssuance from "../credential/issuance";
 import * as CredentialStatus from "../credential/status";
@@ -14,6 +15,7 @@ export type ItwVersion = "1.0.0" | "1.3.3";
 export interface IoWalletApi {
     WalletInstance: WalletInstance.WalletInstanceApi;
     WalletInstanceAttestation: WIA.WalletInstanceAttestationApi;
+    WalletUnitAttestation: WUA.WalletUnitAttestationApi;
     Trust: Trust.TrustApi;
     CredentialIssuance: CredentialIssuance.IssuanceApi;
     CredentialStatus: CredentialStatus.CredentialStatusApi;

package/lib/typescript/api/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/api/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,cAAc,MAAM,oBAAoB,CAAC;AACrD,OAAO,KAAK,GAAG,MAAM,gCAAgC,CAAC;AACtD,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAClC,OAAO,KAAK,kBAAkB,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,gBAAgB,MAAM,sBAAsB,CAAC;AACzD,OAAO,KAAK,kBAAkB,MAAM,4BAA4B,CAAC;AACjE,OAAO,KAAK,oBAAoB,MAAM,0BAA0B,CAAC;AACjE,OAAO,KAAK,SAAS,MAAM,yBAAyB,CAAC;AACrD,OAAO,KAAK,gBAAgB,MAAM,qBAAqB,CAAC;AAExD,MAAM,MAAM,UAAU,GAAG,OAAO,GAAG,OAAO,CAAC;AAE3C;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,cAAc,EAAE,cAAc,CAAC,iBAAiB,CAAC;IACjD,yBAAyB,EAAE,GAAG,CAAC,4BAA4B,CAAC;IAC5D,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC;IACtB,kBAAkB,EAAE,kBAAkB,CAAC,WAAW,CAAC;IACnD,gBAAgB,EAAE,gBAAgB,CAAC,mBAAmB,CAAC;IACvD,kBAAkB,EAAE,kBAAkB,CAAC,qBAAqB,CAAC;IAC7D,oBAAoB,EAAE,oBAAoB,CAAC,uBAAuB,CAAC;IACnE,SAAS,EAAE,SAAS,CAAC,YAAY,CAAC;IAClC,gBAAgB,EAAE,gBAAgB,CAAC,QAAQ,CAAC;CAC7C;AAED;;GAEG;AACH,eAAO,MAAM,oBAAoB,EAAE,MAAM,CAAC,UAAU,EAAE,WAAW,~~CAwBhE~~,CAAC"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/api/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,cAAc,MAAM,oBAAoB,CAAC;AACrD,OAAO,KAAK,GAAG,MAAM,gCAAgC,CAAC;AACtD,OAAO,KAAK,GAAG,MAAM,4BAA4B,CAAC;AAClD,OAAO,KAAK,KAAK,MAAM,UAAU,CAAC;AAClC,OAAO,KAAK,kBAAkB,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,gBAAgB,MAAM,sBAAsB,CAAC;AACzD,OAAO,KAAK,kBAAkB,MAAM,4BAA4B,CAAC;AACjE,OAAO,KAAK,oBAAoB,MAAM,0BAA0B,CAAC;AACjE,OAAO,KAAK,SAAS,MAAM,yBAAyB,CAAC;AACrD,OAAO,KAAK,gBAAgB,MAAM,qBAAqB,CAAC;AAExD,MAAM,MAAM,UAAU,GAAG,OAAO,GAAG,OAAO,CAAC;AAE3C;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,cAAc,EAAE,cAAc,CAAC,iBAAiB,CAAC;IACjD,yBAAyB,EAAE,GAAG,CAAC,4BAA4B,CAAC;IAC5D,qBAAqB,EAAE,GAAG,CAAC,wBAAwB,CAAC;IACpD,KAAK,EAAE,KAAK,CAAC,QAAQ,CAAC;IACtB,kBAAkB,EAAE,kBAAkB,CAAC,WAAW,CAAC;IACnD,gBAAgB,EAAE,gBAAgB,CAAC,mBAAmB,CAAC;IACvD,kBAAkB,EAAE,kBAAkB,CAAC,qBAAqB,CAAC;IAC7D,oBAAoB,EAAE,oBAAoB,CAAC,uBAAuB,CAAC;IACnE,SAAS,EAAE,SAAS,CAAC,YAAY,CAAC;IAClC,gBAAgB,EAAE,gBAAgB,CAAC,QAAQ,CAAC;CAC7C;AAED;;GAEG;AACH,eAAO,MAAM,oBAAoB,EAAE,MAAM,CAAC,UAAU,EAAE,WAAW,CA0BhE,CAAC"}