@pagopa/io-react-native-wallet 3.1.1 → 3.2.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/commonjs/credential/issuance/README.md +44 -17
- package/lib/commonjs/credential/issuance/v1.0.0/03-complete-user-authorization.js +5 -2
- package/lib/commonjs/credential/issuance/v1.0.0/03-complete-user-authorization.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.0.0/05-obtain-credential.js +5 -1
- package/lib/commonjs/credential/issuance/v1.0.0/05-obtain-credential.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.0.0/index.js +1 -0
- package/lib/commonjs/credential/issuance/v1.0.0/index.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/03-complete-user-authorization.js +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/03-complete-user-authorization.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/05-obtain-credential.js +147 -52
- package/lib/commonjs/credential/issuance/v1.3.3/05-obtain-credential.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/index.js +1 -0
- package/lib/commonjs/credential/issuance/v1.3.3/index.js.map +1 -1
- package/lib/commonjs/credential/presentation/api/types.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.0.0/05-verify-request-object.js +18 -12
- package/lib/commonjs/credential/presentation/v1.0.0/05-verify-request-object.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.0.0/07-send-authorization-response.js +3 -0
- package/lib/commonjs/credential/presentation/v1.0.0/07-send-authorization-response.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.0.0/index.js +0 -2
- package/lib/commonjs/credential/presentation/v1.0.0/index.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.0.0/mappers.js +23 -13
- package/lib/commonjs/credential/presentation/v1.0.0/mappers.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.0.0/types.js +25 -17
- package/lib/commonjs/credential/presentation/v1.0.0/types.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.3.3/05-verify-request-object.js +29 -6
- package/lib/commonjs/credential/presentation/v1.3.3/05-verify-request-object.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.3.3/07-send-authorization-response.js +9 -6
- package/lib/commonjs/credential/presentation/v1.3.3/07-send-authorization-response.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.3.3/mappers.js +25 -13
- package/lib/commonjs/credential/presentation/v1.3.3/mappers.js.map +1 -1
- package/lib/commonjs/credential/presentation/v1.3.3/types.js +6 -3
- package/lib/commonjs/credential/presentation/v1.3.3/types.js.map +1 -1
- package/lib/commonjs/credentials-catalogue/api/DigitalCredentialsCatalogue.js +26 -1
- package/lib/commonjs/credentials-catalogue/api/DigitalCredentialsCatalogue.js.map +1 -1
- package/lib/commonjs/credentials-catalogue/v1.3.3/fetch-and-parse-catalogue.js +4 -0
- package/lib/commonjs/credentials-catalogue/v1.3.3/fetch-and-parse-catalogue.js.map +1 -1
- package/lib/commonjs/credentials-catalogue/v1.3.3/fetch-translations.js +5 -3
- package/lib/commonjs/credentials-catalogue/v1.3.3/fetch-translations.js.map +1 -1
- package/lib/commonjs/credentials-catalogue/v1.3.3/mappers.js +9 -1
- package/lib/commonjs/credentials-catalogue/v1.3.3/mappers.js.map +1 -1
- package/lib/commonjs/credentials-catalogue/v1.3.3/types.js +49 -1
- package/lib/commonjs/credentials-catalogue/v1.3.3/types.js.map +1 -1
- package/lib/commonjs/utils/callbacks.js +25 -6
- package/lib/commonjs/utils/callbacks.js.map +1 -1
- package/lib/commonjs/utils/crypto.js +58 -5
- package/lib/commonjs/utils/crypto.js.map +1 -1
- package/lib/module/credential/issuance/README.md +44 -17
- package/lib/module/credential/issuance/v1.0.0/03-complete-user-authorization.js +6 -3
- package/lib/module/credential/issuance/v1.0.0/03-complete-user-authorization.js.map +1 -1
- package/lib/module/credential/issuance/v1.0.0/05-obtain-credential.js +4 -1
- package/lib/module/credential/issuance/v1.0.0/05-obtain-credential.js.map +1 -1
- package/lib/module/credential/issuance/v1.0.0/index.js +2 -1
- package/lib/module/credential/issuance/v1.0.0/index.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/03-complete-user-authorization.js +1 -1
- package/lib/module/credential/issuance/v1.3.3/03-complete-user-authorization.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/05-obtain-credential.js +143 -49
- package/lib/module/credential/issuance/v1.3.3/05-obtain-credential.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/index.js +2 -1
- package/lib/module/credential/issuance/v1.3.3/index.js.map +1 -1
- package/lib/module/credential/presentation/api/types.js.map +1 -1
- package/lib/module/credential/presentation/v1.0.0/05-verify-request-object.js +13 -7
- package/lib/module/credential/presentation/v1.0.0/05-verify-request-object.js.map +1 -1
- package/lib/module/credential/presentation/v1.0.0/07-send-authorization-response.js +4 -1
- package/lib/module/credential/presentation/v1.0.0/07-send-authorization-response.js.map +1 -1
- package/lib/module/credential/presentation/v1.0.0/index.js +0 -2
- package/lib/module/credential/presentation/v1.0.0/index.js.map +1 -1
- package/lib/module/credential/presentation/v1.0.0/mappers.js +23 -13
- package/lib/module/credential/presentation/v1.0.0/mappers.js.map +1 -1
- package/lib/module/credential/presentation/v1.0.0/types.js +23 -15
- package/lib/module/credential/presentation/v1.0.0/types.js.map +1 -1
- package/lib/module/credential/presentation/v1.3.3/05-verify-request-object.js +28 -6
- package/lib/module/credential/presentation/v1.3.3/05-verify-request-object.js.map +1 -1
- package/lib/module/credential/presentation/v1.3.3/07-send-authorization-response.js +9 -6
- package/lib/module/credential/presentation/v1.3.3/07-send-authorization-response.js.map +1 -1
- package/lib/module/credential/presentation/v1.3.3/mappers.js +25 -13
- package/lib/module/credential/presentation/v1.3.3/mappers.js.map +1 -1
- package/lib/module/credential/presentation/v1.3.3/types.js +5 -2
- package/lib/module/credential/presentation/v1.3.3/types.js.map +1 -1
- package/lib/module/credentials-catalogue/api/DigitalCredentialsCatalogue.js +24 -0
- package/lib/module/credentials-catalogue/api/DigitalCredentialsCatalogue.js.map +1 -1
- package/lib/module/credentials-catalogue/v1.3.3/fetch-and-parse-catalogue.js +5 -1
- package/lib/module/credentials-catalogue/v1.3.3/fetch-and-parse-catalogue.js.map +1 -1
- package/lib/module/credentials-catalogue/v1.3.3/fetch-translations.js +5 -3
- package/lib/module/credentials-catalogue/v1.3.3/fetch-translations.js.map +1 -1
- package/lib/module/credentials-catalogue/v1.3.3/mappers.js +9 -1
- package/lib/module/credentials-catalogue/v1.3.3/mappers.js.map +1 -1
- package/lib/module/credentials-catalogue/v1.3.3/types.js +47 -0
- package/lib/module/credentials-catalogue/v1.3.3/types.js.map +1 -1
- package/lib/module/utils/callbacks.js +26 -7
- package/lib/module/utils/callbacks.js.map +1 -1
- package/lib/module/utils/crypto.js +57 -6
- package/lib/module/utils/crypto.js.map +1 -1
- package/lib/typescript/credential/issuance/api/05-obtain-credential.d.ts +20 -0
- package/lib/typescript/credential/issuance/api/05-obtain-credential.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.0.0/03-complete-user-authorization.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.0.0/05-obtain-credential.d.ts +1 -0
- package/lib/typescript/credential/issuance/v1.0.0/05-obtain-credential.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.0.0/index.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/05-obtain-credential.d.ts +23 -2
- package/lib/typescript/credential/issuance/v1.3.3/05-obtain-credential.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/index.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/api/04-verify-certificate-chain.d.ts +9 -2
- package/lib/typescript/credential/presentation/api/04-verify-certificate-chain.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/api/05-verify-request-object.d.ts +2 -2
- package/lib/typescript/credential/presentation/api/05-verify-request-object.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/api/07-send-authorization-response.d.ts +2 -2
- package/lib/typescript/credential/presentation/api/07-send-authorization-response.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/api/types.d.ts +18 -0
- package/lib/typescript/credential/presentation/api/types.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.0.0/05-verify-request-object.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.0.0/07-send-authorization-response.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.0.0/index.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.0.0/mappers.d.ts +21 -13
- package/lib/typescript/credential/presentation/v1.0.0/mappers.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.0.0/types.d.ts +23 -15
- package/lib/typescript/credential/presentation/v1.0.0/types.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.3.3/05-verify-request-object.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.3.3/07-send-authorization-response.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.3.3/mappers.d.ts +89 -79
- package/lib/typescript/credential/presentation/v1.3.3/mappers.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/v1.3.3/types.d.ts +87 -79
- package/lib/typescript/credential/presentation/v1.3.3/types.d.ts.map +1 -1
- package/lib/typescript/credentials-catalogue/api/DigitalCredentialsCatalogue.d.ts +73 -0
- package/lib/typescript/credentials-catalogue/api/DigitalCredentialsCatalogue.d.ts.map +1 -1
- package/lib/typescript/credentials-catalogue/api/index.d.ts +6 -5
- package/lib/typescript/credentials-catalogue/api/index.d.ts.map +1 -1
- package/lib/typescript/credentials-catalogue/v1.0.0/mappers.d.ts +25 -0
- package/lib/typescript/credentials-catalogue/v1.0.0/mappers.d.ts.map +1 -1
- package/lib/typescript/credentials-catalogue/v1.3.3/fetch-and-parse-catalogue.d.ts.map +1 -1
- package/lib/typescript/credentials-catalogue/v1.3.3/fetch-translations.d.ts.map +1 -1
- package/lib/typescript/credentials-catalogue/v1.3.3/mappers.d.ts +51 -0
- package/lib/typescript/credentials-catalogue/v1.3.3/mappers.d.ts.map +1 -1
- package/lib/typescript/credentials-catalogue/v1.3.3/types.d.ts +33 -0
- package/lib/typescript/credentials-catalogue/v1.3.3/types.d.ts.map +1 -1
- package/lib/typescript/utils/callbacks.d.ts.map +1 -1
- package/lib/typescript/utils/crypto.d.ts +32 -15
- package/lib/typescript/utils/crypto.d.ts.map +1 -1
- package/package.json +2 -1
- package/src/credential/issuance/README.md +44 -17
- package/src/credential/issuance/api/05-obtain-credential.ts +24 -0
- package/src/credential/issuance/v1.0.0/03-complete-user-authorization.ts +8 -3
- package/src/credential/issuance/v1.0.0/05-obtain-credential.ts +6 -0
- package/src/credential/issuance/v1.0.0/index.ts +5 -1
- package/src/credential/issuance/v1.3.3/03-complete-user-authorization.ts +1 -1
- package/src/credential/issuance/v1.3.3/05-obtain-credential.ts +175 -80
- package/src/credential/issuance/v1.3.3/index.ts +5 -1
- package/src/credential/presentation/api/04-verify-certificate-chain.ts +9 -2
- package/src/credential/presentation/api/05-verify-request-object.ts +2 -2
- package/src/credential/presentation/api/07-send-authorization-response.ts +2 -2
- package/src/credential/presentation/api/types.ts +16 -0
- package/src/credential/presentation/v1.0.0/05-verify-request-object.ts +21 -10
- package/src/credential/presentation/v1.0.0/07-send-authorization-response.ts +7 -0
- package/src/credential/presentation/v1.0.0/index.ts +0 -2
- package/src/credential/presentation/v1.0.0/mappers.ts +17 -17
- package/src/credential/presentation/v1.0.0/types.ts +23 -15
- package/src/credential/presentation/v1.3.3/05-verify-request-object.ts +63 -10
- package/src/credential/presentation/v1.3.3/07-send-authorization-response.ts +13 -4
- package/src/credential/presentation/v1.3.3/mappers.ts +19 -17
- package/src/credential/presentation/v1.3.3/types.ts +9 -3
- package/src/credentials-catalogue/api/DigitalCredentialsCatalogue.ts +32 -0
- package/src/credentials-catalogue/api/index.ts +6 -3
- package/src/credentials-catalogue/v1.3.3/fetch-and-parse-catalogue.ts +6 -0
- package/src/credentials-catalogue/v1.3.3/fetch-translations.ts +6 -3
- package/src/credentials-catalogue/v1.3.3/mappers.ts +17 -1
- package/src/credentials-catalogue/v1.3.3/types.ts +51 -0
- package/src/utils/callbacks.ts +29 -8
- package/src/utils/crypto.ts +86 -15
- package/lib/commonjs/credential/presentation/v1.0.0/04-verify-certificate-chain.js +0 -12
- package/lib/commonjs/credential/presentation/v1.0.0/04-verify-certificate-chain.js.map +0 -1
- package/lib/module/credential/presentation/v1.0.0/04-verify-certificate-chain.js +0 -5
- package/lib/module/credential/presentation/v1.0.0/04-verify-certificate-chain.js.map +0 -1
- package/lib/typescript/credential/presentation/v1.0.0/04-verify-certificate-chain.d.ts +0 -3
- package/lib/typescript/credential/presentation/v1.0.0/04-verify-certificate-chain.d.ts.map +0 -1
- package/src/credential/presentation/v1.0.0/04-verify-certificate-chain.ts +0 -10
|
@@ -8,6 +8,8 @@ Credentials instead require a simpler authorization flow and they require other
|
|
|
8
8
|
|
|
9
9
|
The supported credentials are defined in the entity configuration of the issuer which is evaluted and parsed in the `evaluateIssuerTrust` step. Available credentials are identified with a unique `credential_configuration_id`, that must be used when requesting authorization. The Authorization Server returns an array of **credential identifiers** that map to the `credential_configuration_id` provided: to obtain the credential, one of the credential identifiers (or all of them) must be requested to the credential endpoint.
|
|
10
10
|
|
|
11
|
+
In the newest versions of IT-Wallet specifications it is mandatory that the cryptographic keys bound to each credential are stored in a WSCD and attested in a **Wallet Unit Attestation**, that must be sent to the Issuer when requesting a credential.
|
|
12
|
+
|
|
11
13
|
## Sequence Diagram
|
|
12
14
|
|
|
13
15
|
```mermaid
|
|
@@ -20,8 +22,9 @@ graph TD;
|
|
|
20
22
|
C4.1[completeUserAuthorizationWithFormPostJwtMode]
|
|
21
23
|
E4[completeUserAuthorizationWithQueryMode]
|
|
22
24
|
5[authorizeAccess]
|
|
23
|
-
6[
|
|
24
|
-
7[
|
|
25
|
+
6[WalletUnitAttestation.getAttestation]
|
|
26
|
+
7[obtainCredential]
|
|
27
|
+
8[verifyAndParseCredential]
|
|
25
28
|
credSel{Is credential an eID?}
|
|
26
29
|
proofSel{Requires MRTD PoP?}
|
|
27
30
|
M1[continueUserAuthorizationWithMRTDPoPChallenge]
|
|
@@ -44,6 +47,7 @@ graph TD;
|
|
|
44
47
|
E4 --> 5
|
|
45
48
|
5 --> 6
|
|
46
49
|
6 --> 7
|
|
50
|
+
7 --> 8
|
|
47
51
|
|
|
48
52
|
M1 --> M2
|
|
49
53
|
M2 --> M3
|
|
@@ -92,6 +96,10 @@ When the credential is different than an eID, the flow requires the user to pres
|
|
|
92
96
|
|
|
93
97
|
The expected result from the authentication process is in `form_post.jwt` format as defined in [JWT Secured Authorization Response Mode for OAuth 2.0 (JARM)](https://openid.net/specs/oauth-v2-jarm.html#name-response-mode-form_postjwt).
|
|
94
98
|
|
|
99
|
+
## Batch issuance
|
|
100
|
+
|
|
101
|
+
To obtain a batch of credentials the Issuance module exposes a dedicated method—`obtainCredentialsBatch`—that returns a list of credentials of the same type with different cryptographic data. For this reason the caller must generate multiple keys and attest them in a single Wallet Unit Attestation.
|
|
102
|
+
|
|
95
103
|
## Examples
|
|
96
104
|
|
|
97
105
|
<details>
|
|
@@ -119,12 +127,28 @@ const { WALLET_PROVIDER_BASE_URL, WALLET_EAA_PROVIDER_BASE_URL, REDIRECT_URI } =
|
|
|
119
127
|
* WARNING: The integrity context must be the same used when creating the Wallet Instance with the same keytag.
|
|
120
128
|
*/
|
|
121
129
|
const walletInstanceAttestation =
|
|
122
|
-
await WalletInstanceAttestation.getAttestation(
|
|
123
|
-
|
|
124
|
-
|
|
125
|
-
|
|
126
|
-
|
|
127
|
-
|
|
130
|
+
await wallet.WalletInstanceAttestation.getAttestation(
|
|
131
|
+
{
|
|
132
|
+
walletProviderBaseUrl: WALLET_PROVIDER_BASE_URL,
|
|
133
|
+
walletSolutionId: "exampleId",
|
|
134
|
+
walletSolutionVersion: "1.2.3",
|
|
135
|
+
},
|
|
136
|
+
{
|
|
137
|
+
wiaCryptoContext,
|
|
138
|
+
integrityContext,
|
|
139
|
+
appFetch,
|
|
140
|
+
}
|
|
141
|
+
);
|
|
142
|
+
|
|
143
|
+
const credentialKeyTag = uuidv4().toString();
|
|
144
|
+
let walletUnitAttestation: string | undefined;
|
|
145
|
+
|
|
146
|
+
// Obtains a Wallet Unit Attestation if supported
|
|
147
|
+
if (wallet.WalletUnitAttestation.isSupported) {
|
|
148
|
+
walletUnitAttestation = await wallet.WalletUnitAttestation.getAttestation(); // See the Wallet Unit Attestation README for more details
|
|
149
|
+
} else {
|
|
150
|
+
await generate(credentialKeyTag); // Let's assume this function generates a new hardware-backed key pair
|
|
151
|
+
}
|
|
128
152
|
|
|
129
153
|
const pid = {
|
|
130
154
|
credential: "example",
|
|
@@ -133,9 +157,6 @@ const pid = {
|
|
|
133
157
|
credentialType: "PersonIdentificationData";
|
|
134
158
|
};
|
|
135
159
|
|
|
136
|
-
// Create credential crypto context
|
|
137
|
-
const credentialKeyTag = uuidv4().toString();
|
|
138
|
-
await generate(credentialKeyTag); // Let's assume this function generates a new hardware-backed key pair
|
|
139
160
|
const credentialCryptoContext = createCryptoContextFor(credentialKeyTag);
|
|
140
161
|
|
|
141
162
|
// Evaluate issuer trust
|
|
@@ -271,12 +292,18 @@ const { WALLET_PROVIDER_BASE_URL, WALLET_EID_PROVIDER_BASE_URL, REDIRECT_URI } =
|
|
|
271
292
|
* WARNING: The integrity context must be the same used when creating the Wallet Instance with the same keytag.
|
|
272
293
|
*/
|
|
273
294
|
const walletInstanceAttestation =
|
|
274
|
-
await WalletInstanceAttestation.getAttestation(
|
|
275
|
-
|
|
276
|
-
|
|
277
|
-
|
|
278
|
-
|
|
279
|
-
|
|
295
|
+
await wallet.WalletInstanceAttestation.getAttestation(
|
|
296
|
+
{
|
|
297
|
+
walletProviderBaseUrl: WALLET_PROVIDER_BASE_URL,
|
|
298
|
+
walletSolutionId: "exampleId",
|
|
299
|
+
walletSolutionVersion: "1.2.3",
|
|
300
|
+
},
|
|
301
|
+
{
|
|
302
|
+
wiaCryptoContext,
|
|
303
|
+
integrityContext,
|
|
304
|
+
appFetch,
|
|
305
|
+
}
|
|
306
|
+
);
|
|
280
307
|
|
|
281
308
|
const idpHit = "https://example.com"; // Let's assume this is the IDP hint
|
|
282
309
|
|
|
@@ -65,7 +65,10 @@ const getRequestedCredentialToBePresented = async function (issuerRequestUri, cl
|
|
|
65
65
|
_logging.Logger.log(_logging.LogLevel.DEBUG, `Requesting the request object to ${authzRequestEndpoint}?${params.toString()}`);
|
|
66
66
|
const requestObject = await appFetch(`${authzRequestEndpoint}?${params.toString()}`, {
|
|
67
67
|
method: "GET"
|
|
68
|
-
}).then((0, _misc.hasStatusOrThrow)(200, _errors.IssuerResponseError)).then(res => res.text()).then(jws => (0, _ioReactNativeJwt.decode)(jws)).then(reqObj => _types2.
|
|
68
|
+
}).then((0, _misc.hasStatusOrThrow)(200, _errors.IssuerResponseError)).then(res => res.text()).then(jws => (0, _ioReactNativeJwt.decode)(jws)).then(reqObj => _types2.RawRequestObject.safeParse({
|
|
69
|
+
header: reqObj.protectedHeader,
|
|
70
|
+
payload: reqObj.payload
|
|
71
|
+
}));
|
|
69
72
|
if (!requestObject.success) {
|
|
70
73
|
_logging.Logger.log(_logging.LogLevel.ERROR, `Error while validating the response object: ${requestObject.error.message}`);
|
|
71
74
|
throw new _errors.ValidationFailed({
|
|
@@ -73,7 +76,7 @@ const getRequestedCredentialToBePresented = async function (issuerRequestUri, cl
|
|
|
73
76
|
reason: requestObject.error.message
|
|
74
77
|
});
|
|
75
78
|
}
|
|
76
|
-
return requestObject.data;
|
|
79
|
+
return requestObject.data.payload;
|
|
77
80
|
};
|
|
78
81
|
exports.getRequestedCredentialToBePresented = getRequestedCredentialToBePresented;
|
|
79
82
|
const completeUserAuthorizationWithFormPostJwtMode = async (requestObject, _issuerConfig, pid, _ref) => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_auth","require","_misc","_parseUrl","_interopRequireDefault","_errors","_ioReactNativeJwt","_types","_decoder","_errors2","_logging","_types2","_v","obj","__esModule","default","continueUserAuthorizationWithMRTDPoPChallenge","authRedirectUrl","Logger","log","LogLevel","DEBUG","query","parseUrl","authResParsed","AuthorizationChallengeResultShape","safeParse","success","authErr","AuthorizationErrorShape","ERROR","error","message","AuthorizationError","JSON","stringify","AuthorizationIdpError","data","error_description","exports","buildAuthorizationUrl","issuerRequestUri","clientId","issuerConf","idpHint","authzRequestEndpoint","authorization_endpoint","params","URLSearchParams","client_id","request_uri","append","authUrl","completeUserAuthorizationWithQueryMode","parseAuthorizationResponse","getRequestedCredentialToBePresented","appFetch","arguments","length","undefined","fetch","toString","requestObject","method","then","hasStatusOrThrow","IssuerResponseError","res","text","jws","decode","reqObj","
|
|
1
|
+
{"version":3,"names":["_auth","require","_misc","_parseUrl","_interopRequireDefault","_errors","_ioReactNativeJwt","_types","_decoder","_errors2","_logging","_types2","_v","obj","__esModule","default","continueUserAuthorizationWithMRTDPoPChallenge","authRedirectUrl","Logger","log","LogLevel","DEBUG","query","parseUrl","authResParsed","AuthorizationChallengeResultShape","safeParse","success","authErr","AuthorizationErrorShape","ERROR","error","message","AuthorizationError","JSON","stringify","AuthorizationIdpError","data","error_description","exports","buildAuthorizationUrl","issuerRequestUri","clientId","issuerConf","idpHint","authzRequestEndpoint","authorization_endpoint","params","URLSearchParams","client_id","request_uri","append","authUrl","completeUserAuthorizationWithQueryMode","parseAuthorizationResponse","getRequestedCredentialToBePresented","appFetch","arguments","length","undefined","fetch","toString","requestObject","method","then","hasStatusOrThrow","IssuerResponseError","res","text","jws","decode","reqObj","RawRequestObject","header","protectedHeader","payload","ValidationFailed","reason","completeUserAuthorizationWithFormPostJwtMode","_issuerConfig","pid","_ref","wiaCryptoContext","pidKeyTag","dcqlQueryResult","RemotePresentationFlow","evaluateDcqlQuery","dcql_query","authRequestObject","nonce","responseUri","response_uri","remotePresentation","prepareRemotePresentations","authzResponsePayload","createAuthzResponsePayload","state","body","response","resUriRes","headers","reqUri","json","ResponseUriResultShape","redirect_uri","getJwtFromFormPost","cbRes","decodedJwt","authRes","AuthorizationResultShape","_ref2","kid","getPublicKey","SignJWT","setProtectedHeader","typ","setPayload","vp_token","presentations","reduce","_ref3","credentialId","vpToken","setIssuedAt","setExpirationTime","sign"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.0.0/03-complete-user-authorization.ts"],"mappings":";;;;;;AAAA,IAAAA,KAAA,GAAAC,OAAA;AAMA,IAAAC,KAAA,GAAAD,OAAA;AACA,IAAAE,SAAA,GAAAC,sBAAA,CAAAH,OAAA;AAEA,IAAAI,OAAA,GAAAJ,OAAA;AACA,IAAAK,iBAAA,GAAAL,OAAA;AAKA,IAAAM,MAAA,GAAAN,OAAA;AACA,IAAAO,QAAA,GAAAP,OAAA;AACA,IAAAQ,QAAA,GAAAR,OAAA;AACA,IAAAS,QAAA,GAAAT,OAAA;AACA,IAAAU,OAAA,GAAAV,OAAA;AACA,IAAAW,EAAA,GAAAX,OAAA;AAAyF,SAAAG,uBAAAS,GAAA,WAAAA,GAAA,IAAAA,GAAA,CAAAC,UAAA,GAAAD,GAAA,KAAAE,OAAA,EAAAF,GAAA;AAIlF,MAAMG,6CAA2G,GACtH,MAAOC,eAAe,IAAK;EACzBC,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,+HACH,CAAC;EACD,MAAMC,KAAK,GAAG,IAAAC,iBAAQ,EAACN,eAAe,CAAC,CAACK,KAAK;EAE7C,MAAME,aAAa,GAAGC,uCAAiC,CAACC,SAAS,CAACJ,KAAK,CAAC;EACxE,IAAI,CAACE,aAAa,CAACG,OAAO,EAAE;IAC1B,MAAMC,OAAO,GAAGC,6BAAuB,CAACH,SAAS,CAACJ,KAAK,CAAC;IACxD,IAAI,CAACM,OAAO,CAACD,OAAO,EAAE;MACpBT,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACU,KAAK,EACb,mDAAkDN,aAAa,CAACO,KAAK,CAACC,OAAQ,EACjF,CAAC;MACD,MAAM,IAAIC,2BAAkB,CAACT,aAAa,CAACO,KAAK,CAACC,OAAO,CAAC,CAAC,CAAC;IAC7D;;IACAd,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACU,KAAK,EACb,2CAA0CI,IAAI,CAACC,SAAS,CAACP,OAAO,CAAE,EACrE,CAAC;IACD,MAAM,IAAIQ,8BAAqB,CAC7BR,OAAO,CAACS,IAAI,CAACN,KAAK,EAClBH,OAAO,CAACS,IAAI,CAACC,iBACf,CAAC;EACH;EACA,OAAOd,aAAa,CAACa,IAAI;AAC3B,CAAC;AAACE,OAAA,CAAAvB,6CAAA,GAAAA,6CAAA;AAEG,MAAMwB,qBAA2D,GACtE,MAAAA,CAAOC,gBAAgB,EAAEC,QAAQ,EAAEC,UAAU,EAAEC,OAAO,KAAK;EACzD,MAAMC,oBAAoB,GAAGF,UAAU,CAACG,sBAAsB;EAE9D,MAAMC,MAAM,GAAG,IAAIC,eAAe,CAAC;IACjCC,SAAS,EAAEP,QAAQ;IACnBQ,WAAW,EAAET;EACf,CAAC,CAAC;EAEF,IAAIG,OAAO,EAAE;IACXG,MAAM,CAACI,MAAM,CAAC,SAAS,EAAEP,OAAO,CAAC;EACnC;EAEA,MAAMQ,OAAO,GAAI,GAAEP,oBAAqB,IAAGE,MAAO,EAAC;EAEnD,OAAO;IAAEK;EAAQ,CAAC;AACpB,CAAC;AAACb,OAAA,CAAAC,qBAAA,GAAAA,qBAAA;AAEG,MAAMa,sCAA6F,GACxG,MAAOpC,eAAe,IAAK;EACzBC,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,2GACH,CAAC;EACD,MAAMC,KAAK,GAAG,IAAAC,iBAAQ,EAACN,eAAe,CAAC,CAACK,KAAK;EAE7C,OAAOgC,0BAA0B,CAAChC,KAAK,CAAC;AAC1C,CAAC;AAACiB,OAAA,CAAAc,sCAAA,GAAAA,sCAAA;AAEG,MAAME,mCAAuF,GAClG,eAAAA,CAAOd,gBAAgB,EAAEC,QAAQ,EAAEC,UAAU,EAAuB;EAAA,IAArBa,QAAQ,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAGG,KAAK;EAC7D1C,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,sGACH,CAAC;EACD,MAAMwB,oBAAoB,GAAGF,UAAU,CAACG,sBAAsB;EAC9D,MAAMC,MAAM,GAAG,IAAIC,eAAe,CAAC;IACjCC,SAAS,EAAEP,QAAQ;IACnBQ,WAAW,EAAET;EACf,CAAC,CAAC;EAEFvB,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,oCAAmCwB,oBAAqB,IAAGE,MAAM,CAACc,QAAQ,CAAC,CAAE,EAChF,CAAC;EAED,MAAMC,aAAa,GAAG,MAAMN,QAAQ,CACjC,GAAEX,oBAAqB,IAAGE,MAAM,CAACc,QAAQ,CAAC,CAAE,EAAC,EAC9C;IAAEE,MAAM,EAAE;EAAM,CAClB,CAAC,CACEC,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,EAAEC,2BAAmB,CAAC,CAAC,CAChDF,IAAI,CAAEG,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBJ,IAAI,CAAEK,GAAG,IAAK,IAAAC,wBAAM,EAACD,GAAG,CAAC,CAAC,CAC1BL,IAAI,CAAEO,MAAM,IACXC,wBAAgB,CAAC9C,SAAS,CAAC;IACzB+C,MAAM,EAAEF,MAAM,CAACG,eAAe;IAC9BC,OAAO,EAAEJ,MAAM,CAACI;EAClB,CAAC,CACH,CAAC;EAEH,IAAI,CAACb,aAAa,CAACnC,OAAO,EAAE;IAC1BT,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACU,KAAK,EACb,+CAA8CgC,aAAa,CAAC/B,KAAK,CAACC,OAAQ,EAC7E,CAAC;IACD,MAAM,IAAI4C,wBAAgB,CAAC;MACzB5C,OAAO,EAAE,kCAAkC;MAC3C6C,MAAM,EAAEf,aAAa,CAAC/B,KAAK,CAACC;IAC9B,CAAC,CAAC;EACJ;EACA,OAAO8B,aAAa,CAACzB,IAAI,CAACsC,OAAO;AACnC,CAAC;AAACpC,OAAA,CAAAgB,mCAAA,GAAAA,mCAAA;AAEG,MAAMuB,4CAAyG,GACpH,MAAAA,CACEhB,aAAa,EACbiB,aAAa,EACbC,GAAG,EAAAC,IAAA,KAEA;EAAA,IADH;IAAEC,gBAAgB;IAAEC,SAAS;IAAE3B,QAAQ,GAAGI;EAAM,CAAC,GAAAqB,IAAA;EAEjD/D,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,sHACH,CAAC;EAED,MAAM+D,eAAe,GAAG,MAAMC,qBAAsB,CAACC,iBAAiB,CACpExB,aAAa,CAACyB,UAAU,EACxB,CAAC,CAACJ,SAAS,EAAEH,GAAG,CAAC,CACnB,CAAC;EAED,MAAMQ,iBAAiB,GAAG;IACxBC,KAAK,EAAE3B,aAAa,CAAC2B,KAAK;IAC1B/C,QAAQ,EAAEoB,aAAa,CAACb,SAAS;IACjCyC,WAAW,EAAE5B,aAAa,CAAC6B;EAC7B,CAAC;EAED,MAAMC,kBAAkB,GACtB,MAAMP,qBAAsB,CAACQ,0BAA0B,CACrDT,eAAe,EACfI,iBACF,CAAC;EAEH,MAAMM,oBAAoB,GAAG,MAAMC,0BAA0B,CAAC;IAC5DC,KAAK,EAAElC,aAAa,CAACkC,KAAK;IAC1BJ,kBAAkB;IAClBV;EACF,CAAC,CAAC;EAEFhE,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,2BAA0ByE,oBAAqB,EAClD,CAAC;;EAED;EACA;EACA;EACA;EACA;EACA;EACA;EACA;;EAEA,MAAMG,IAAI,GAAG,IAAIjD,eAAe,CAAC;IAC/BkD,QAAQ,EAAEJ;EACZ,CAAC,CAAC,CAACjC,QAAQ,CAAC,CAAC;EAEb,MAAMsC,SAAS,GAAG,MAAM3C,QAAQ,CAACM,aAAa,CAAC6B,YAAY,EAAE;IAC3D5B,MAAM,EAAE,MAAM;IACdqC,OAAO,EAAE;MACP,cAAc,EAAE;IAClB,CAAC;IACDH;EACF,CAAC,CAAC,CACCjC,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,EAAEC,2BAAmB,CAAC,CAAC,CAChDF,IAAI,CAAEqC,MAAM,IAAKA,MAAM,CAACC,IAAI,CAAC,CAAC,CAAC;EAElC,MAAMZ,WAAW,GAAGa,6BAAsB,CAAC7E,SAAS,CAACyE,SAAS,CAAC;EAC/D,IAAI,CAACT,WAAW,CAAC/D,OAAO,EAAE;IACxBT,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACU,KAAK,EACb,4CAA2C4D,WAAW,CAAC3D,KAAK,CAACC,OAAQ,EACxE,CAAC;IACD,MAAM,IAAI4C,wBAAgB,CAAC;MACzB5C,OAAO,EAAE,gCAAgC;MACzC6C,MAAM,EAAEa,WAAW,CAAC3D,KAAK,CAACC;IAC5B,CAAC,CAAC;EACJ;EAEA,OAAO,MAAMwB,QAAQ,CAACkC,WAAW,CAACrD,IAAI,CAACmE,YAAY,CAAC,CACjDxC,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,EAAEC,2BAAmB,CAAC,CAAC,CAChDF,IAAI,CAAEG,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBJ,IAAI,CAACyC,2BAAkB,CAAC,CACxBzC,IAAI,CAAE0C,KAAK,IAAKpD,0BAA0B,CAACoD,KAAK,CAACC,UAAU,CAAChC,OAAO,CAAC,CAAC;AAC1E,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AACA;AANApC,OAAA,CAAAuC,4CAAA,GAAAA,4CAAA;AAOO,MAAMxB,0BAA0B,GACrCsD,OAAgB,IACQ;EACxB,MAAMpF,aAAa,GAAGqF,8BAAwB,CAACnF,SAAS,CAACkF,OAAO,CAAC;EACjE,IAAI,CAACpF,aAAa,CAACG,OAAO,EAAE;IAC1B,MAAMC,OAAO,GAAGC,6BAAuB,CAACH,SAAS,CAACkF,OAAO,CAAC;IAC1D,IAAI,CAAChF,OAAO,CAACD,OAAO,EAAE;MACpBT,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACU,KAAK,EACb,mDAAkDN,aAAa,CAACO,KAAK,CAACC,OAAQ,EACjF,CAAC;MACD,MAAM,IAAIC,2BAAkB,CAACT,aAAa,CAACO,KAAK,CAACC,OAAO,CAAC,CAAC,CAAC;IAC7D;;IACAd,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACU,KAAK,EACb,2CAA0CI,IAAI,CAACC,SAAS,CAACP,OAAO,CAAE,EACrE,CAAC;IACD,MAAM,IAAIQ,8BAAqB,CAC7BR,OAAO,CAACS,IAAI,CAACN,KAAK,EAClBH,OAAO,CAACS,IAAI,CAACC,iBACf,CAAC;EACH;EACA,OAAOd,aAAa,CAACa,IAAI;AAC3B,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAPAE,OAAA,CAAAe,0BAAA,GAAAA,0BAAA;AAQA,MAAMyC,0BAA0B,GAAG,MAAAe,KAAA,IAQZ;EAAA,IARmB;IACxCd,KAAK;IACLJ,kBAAkB;IAClBV;EAKF,CAAC,GAAA4B,KAAA;EACC,MAAM;IAAEC;EAAI,CAAC,GAAG,MAAM7B,gBAAgB,CAAC8B,YAAY,CAAC,CAAC;EAErD,OAAO,IAAIC,yBAAO,CAAC/B,gBAAgB,CAAC,CACjCgC,kBAAkB,CAAC;IAClBC,GAAG,EAAE,KAAK;IACVJ;EACF,CAAC,CAAC,CACDK,UAAU,CAAC;IACV;AACN;AACA;AACA;AACA;IACM,IAAIpB,KAAK,GAAG;MAAEA;IAAM,CAAC,GAAG,CAAC,CAAC,CAAC;IAC3BqB,QAAQ,EAAEzB,kBAAkB,CAAC0B,aAAa,CAACC,MAAM,CAC/C,CAACF,QAAQ,EAAAG,KAAA;MAAA,IAAE;QAAEC,YAAY;QAAEC;MAAQ,CAAC,GAAAF,KAAA;MAAA,OAAM;QACxC,GAAGH,QAAQ;QACX,CAACI,YAAY,GAAGC;MAClB,CAAC;IAAA,CAAC,EACF,CAAC,CACH;EACF,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX,CAAC"}
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
Object.defineProperty(exports, "__esModule", {
|
|
4
4
|
value: true
|
|
5
5
|
});
|
|
6
|
-
exports.obtainCredential = exports.createNonceProof = void 0;
|
|
6
|
+
exports.obtainCredentialsBatch = exports.obtainCredential = exports.createNonceProof = void 0;
|
|
7
7
|
var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
|
|
8
8
|
var _uuid = require("uuid");
|
|
9
9
|
var _misc = require("../../../utils/misc");
|
|
@@ -145,4 +145,8 @@ const handleObtainCredentialError = e => {
|
|
|
145
145
|
message: "Unable to obtain the requested credential"
|
|
146
146
|
}).buildFrom(e);
|
|
147
147
|
};
|
|
148
|
+
const obtainCredentialsBatch = () => {
|
|
149
|
+
throw new _errors.UnimplementedFeatureError("obtainCredentialsBatch", "1.0.0");
|
|
150
|
+
};
|
|
151
|
+
exports.obtainCredentialsBatch = obtainCredentialsBatch;
|
|
148
152
|
//# sourceMappingURL=05-obtain-credential.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_ioReactNativeJwt","require","_uuid","_misc","_errors","_dpop","_logging","_types","createNonceProof","nonce","issuer","audience","ctx","jwk","getPublicKey","SignJWT","setPayload","setProtectedHeader","typ","setAudience","setIssuer","setIssuedAt","setExpirationTime","sign","exports","obtainCredential","issuerConf","accessToken","clientId","credentialDefinition","context","credentialCryptoContext","appFetch","fetch","dPopCryptoContext","credential_configuration_id","credential_identifier","credentialUrl","credential_endpoint","issuerUrl","credential_issuer","nonceUrl","nonce_endpoint","c_nonce","method","headers","then","hasStatusOrThrow","res","json","body","NonceResponse","parse","signedNonceProof","Logger","log","LogLevel","DEBUG","containsCredentialDefinition","authorization_details","some","c","credential_identifiers","includes","ERROR","ValidationFailed","message","credentialRequestFormBody","proof","jwt","proof_type","JSON","stringify","tokenRequestSignedDPop","createDPopToken","htm","htu","jti","uuidv4","ath","sha256ToBase64","access_token","credentialRes","DPoP","Authorization","token_type","CredentialResponse","safeParse","catch","handleObtainCredentialError","success","error","reason","data","issuerCredentialConfig","credential_configurations_supported","credential","credentials","at","format","e","UnexpectedStatusCodeError","ResponseErrorBuilder","IssuerResponseError","handle","code","IssuerResponseErrorCodes","CredentialIssuingNotSynchronous","CredentialInvalidStatus","CredentialRequestFailed","buildFrom"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.0.0/05-obtain-credential.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AAKA,IAAAC,KAAA,GAAAD,OAAA;AACA,IAAAE,KAAA,GAAAF,OAAA;AACA,IAAAG,OAAA,GAAAH,OAAA;
|
|
1
|
+
{"version":3,"names":["_ioReactNativeJwt","require","_uuid","_misc","_errors","_dpop","_logging","_types","createNonceProof","nonce","issuer","audience","ctx","jwk","getPublicKey","SignJWT","setPayload","setProtectedHeader","typ","setAudience","setIssuer","setIssuedAt","setExpirationTime","sign","exports","obtainCredential","issuerConf","accessToken","clientId","credentialDefinition","context","credentialCryptoContext","appFetch","fetch","dPopCryptoContext","credential_configuration_id","credential_identifier","credentialUrl","credential_endpoint","issuerUrl","credential_issuer","nonceUrl","nonce_endpoint","c_nonce","method","headers","then","hasStatusOrThrow","res","json","body","NonceResponse","parse","signedNonceProof","Logger","log","LogLevel","DEBUG","containsCredentialDefinition","authorization_details","some","c","credential_identifiers","includes","ERROR","ValidationFailed","message","credentialRequestFormBody","proof","jwt","proof_type","JSON","stringify","tokenRequestSignedDPop","createDPopToken","htm","htu","jti","uuidv4","ath","sha256ToBase64","access_token","credentialRes","DPoP","Authorization","token_type","CredentialResponse","safeParse","catch","handleObtainCredentialError","success","error","reason","data","issuerCredentialConfig","credential_configurations_supported","credential","credentials","at","format","e","UnexpectedStatusCodeError","ResponseErrorBuilder","IssuerResponseError","handle","code","IssuerResponseErrorCodes","CredentialIssuingNotSynchronous","CredentialInvalidStatus","CredentialRequestFailed","buildFrom","obtainCredentialsBatch","UnimplementedFeatureError"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.0.0/05-obtain-credential.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AAKA,IAAAC,KAAA,GAAAD,OAAA;AACA,IAAAE,KAAA,GAAAF,OAAA;AACA,IAAAG,OAAA,GAAAH,OAAA;AAQA,IAAAI,KAAA,GAAAJ,OAAA;AACA,IAAAK,QAAA,GAAAL,OAAA;AAEA,IAAAM,MAAA,GAAAN,OAAA;AAEO,MAAMO,gBAAgB,GAAG,MAAAA,CAC9BC,KAAa,EACbC,MAAc,EACdC,QAAgB,EAChBC,GAAkB,KACE;EACpB,MAAMC,GAAG,GAAG,MAAMD,GAAG,CAACE,YAAY,CAAC,CAAC;EACpC,OAAO,IAAIC,yBAAO,CAACH,GAAG,CAAC,CACpBI,UAAU,CAAC;IACVP;EACF,CAAC,CAAC,CACDQ,kBAAkB,CAAC;IAClBC,GAAG,EAAE,sBAAsB;IAC3BL;EACF,CAAC,CAAC,CACDM,WAAW,CAACR,QAAQ,CAAC,CACrBS,SAAS,CAACV,MAAM,CAAC,CACjBW,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,MAAM,CAAC,CACzBC,IAAI,CAAC,CAAC;AACX,CAAC;AAACC,OAAA,CAAAhB,gBAAA,GAAAA,gBAAA;AAEK,MAAMiB,gBAAiD,GAAG,MAAAA,CAC/DC,UAAU,EACVC,WAAW,EACXC,QAAQ,EACRC,oBAAoB,EACpBC,OAAO,KACJ;EACH,MAAM;IACJC,uBAAuB;IACvBC,QAAQ,GAAGC,KAAK;IAChBC;EACF,CAAC,GAAGJ,OAAO;EACX,MAAM;IAAEK,2BAA2B;IAAEC;EAAsB,CAAC,GAC1DP,oBAAoB;EAEtB,MAAMQ,aAAa,GAAGX,UAAU,CAACY,mBAAmB;EACpD,MAAMC,SAAS,GAAGb,UAAU,CAACc,iBAAiB;EAC9C,MAAMC,QAAQ,GAAGf,UAAU,CAACgB,cAAc;;EAE1C;EACA,MAAM;IAAEC;EAAQ,CAAC,GAAG,MAAMX,QAAQ,CAACS,QAAQ,EAAE;IAC3CG,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MAAE,cAAc,EAAE;IAAmB;EAChD,CAAC,CAAC,CACCC,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAAEI,IAAI,IAAKC,oBAAa,CAACC,KAAK,CAACF,IAAI,CAAC,CAAC;;EAE5C;AACF;AACA;AACA;AACA;EACE,MAAMG,gBAAgB,GAAG,MAAM7C,gBAAgB,CAC7CmC,OAAO,EACPf,QAAQ,EACRW,SAAS,EACTR,uBACF,CAAC;EAEDuB,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACC,KAAK,EAAG,uBAAsBJ,gBAAiB,EAAC,CAAC;;EAErE;EACA,MAAMK,4BAA4B,GAAG/B,WAAW,CAACgC,qBAAqB,CAACC,IAAI,CACxEC,CAAC,IACAA,CAAC,CAAC1B,2BAA2B,KAAKA,2BAA2B,KAC5DC,qBAAqB,GAClByB,CAAC,CAACC,sBAAsB,CAACC,QAAQ,CAAC3B,qBAAqB,CAAC,GACxD,IAAI,CACZ,CAAC;EAED,IAAI,CAACsB,4BAA4B,EAAE;IACjCJ,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACQ,KAAK,EACb,gEAA+DrC,WAAW,CAACgC,qBAAsB,EACpG,CAAC;IACD,MAAM,IAAIM,wBAAgB,CAAC;MACzBC,OAAO,EACL;IACJ,CAAC,CAAC;EACJ;;EAEA;AACF;AACA;AACA;AACA;AACA;EACE,MAAMC,yBAAyB,GAAG/B,qBAAqB,GACnD;IACEA,qBAAqB,EAAEA,qBAAqB;IAC5CgC,KAAK,EAAE;MAAEC,GAAG,EAAEhB,gBAAgB;MAAEiB,UAAU,EAAE;IAAM;EACpD,CAAC,GACD;IACEnC,2BAA2B,EAAEA,2BAA2B;IACxDiC,KAAK,EAAE;MAAEC,GAAG,EAAEhB,gBAAgB;MAAEiB,UAAU,EAAE;IAAM;EACpD,CAAC;EAELhB,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,4BAA2Bc,IAAI,CAACC,SAAS,CAACL,yBAAyB,CAAE,EACxE,CAAC;EAED,MAAMM,sBAAsB,GAAG,MAAM,IAAAC,qBAAe,EAClD;IACEC,GAAG,EAAE,MAAM;IACXC,GAAG,EAAEvC,aAAa;IAClBwC,GAAG,EAAG,GAAE,IAAAC,QAAM,EAAC,CAAE,EAAC;IAClBC,GAAG,EAAE,MAAM,IAAAC,gCAAc,EAACrD,WAAW,CAACsD,YAAY;EACpD,CAAC,EACD/C,iBACF,CAAC;EAEDoB,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACC,KAAK,EAAG,uBAAsBgB,sBAAuB,EAAC,CAAC;EAE3E,MAAMS,aAAa,GAAG,MAAMlD,QAAQ,CAACK,aAAa,EAAE;IAClDO,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MACP,cAAc,EAAE,kBAAkB;MAClCsC,IAAI,EAAEV,sBAAsB;MAC5BW,aAAa,EAAG,GAAEzD,WAAW,CAAC0D,UAAW,IAAG1D,WAAW,CAACsD,YAAa;IACvE,CAAC;IACD/B,IAAI,EAAEqB,IAAI,CAACC,SAAS,CAACL,yBAAyB;EAChD,CAAC,CAAC,CACCrB,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAAEI,IAAI,IAAKoC,yBAAkB,CAACC,SAAS,CAACrC,IAAI,CAAC,CAAC,CAClDsC,KAAK,CAACC,2BAA2B,CAAC;EAErC,IAAI,CAACP,aAAa,CAACQ,OAAO,EAAE;IAC1BpC,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACQ,KAAK,EACb,0CAAyCkB,aAAa,CAACS,KAAK,CAACzB,OAAQ,EACxE,CAAC;IACD,MAAM,IAAID,wBAAgB,CAAC;MACzBC,OAAO,EAAE,uCAAuC;MAChD0B,MAAM,EAAEV,aAAa,CAACS,KAAK,CAACzB;IAC9B,CAAC,CAAC;EACJ;EAEAZ,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,wBAAuBc,IAAI,CAACC,SAAS,CAACU,aAAa,CAACW,IAAI,CAAE,EAC7D,CAAC;;EAED;EACA,MAAMC,sBAAsB,GAC1BpE,UAAU,CAACqE,mCAAmC,CAAC5D,2BAA2B,CAAC;;EAE7E;EACA,OAAO;IACL6D,UAAU,EAAEd,aAAa,CAACW,IAAI,CAACI,WAAW,CAACC,EAAE,CAAC,CAAC,CAAC,CAAEF,UAAU;IAC5DG,MAAM,EAAEL,sBAAsB,CAAEK;EAClC,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AALA3E,OAAA,CAAAC,gBAAA,GAAAA,gBAAA;AAMA,MAAMgE,2BAA2B,GAAIW,CAAU,IAAK;EAClD9C,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACQ,KAAK,EAAG,8CAA6CoC,CAAE,EAAC,CAAC;EAE7E,IAAI,EAAEA,CAAC,YAAYC,iCAAyB,CAAC,EAAE;IAC7C,MAAMD,CAAC;EACT;EAEA,MAAM,IAAIE,4BAAoB,CAACC,2BAAmB,CAAC,CAChDC,MAAM,CAAC,GAAG,EAAE;IACX;IACA;IACAC,IAAI,EAAEC,gCAAwB,CAACC,+BAA+B;IAC9DzC,OAAO,EACL;EACJ,CAAC,CAAC,CACDsC,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACE,uBAAuB;IACtD1C,OAAO,EAAE;EACX,CAAC,CAAC,CACDsC,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACE,uBAAuB;IACtD1C,OAAO,EAAE;EACX,CAAC,CAAC,CACDsC,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACG,uBAAuB;IACtD3C,OAAO,EAAE;EACX,CAAC,CAAC,CACD4C,SAAS,CAACV,CAAC,CAAC;AACjB,CAAC;AAEM,MAAMW,sBAA6D,GACxEA,CAAA,KAAM;EACJ,MAAM,IAAIC,iCAAyB,CAAC,wBAAwB,EAAE,OAAO,CAAC;AACxE,CAAC;AAACxF,OAAA,CAAAuF,sBAAA,GAAAA,sBAAA"}
|
|
@@ -21,6 +21,7 @@ const Issuance = {
|
|
|
21
21
|
completeUserAuthorizationWithFormPostJwtMode: _completeUserAuthorization.completeUserAuthorizationWithFormPostJwtMode,
|
|
22
22
|
authorizeAccess: _authorizeAccess.authorizeAccess,
|
|
23
23
|
obtainCredential: _obtainCredential.obtainCredential,
|
|
24
|
+
obtainCredentialsBatch: _obtainCredential.obtainCredentialsBatch,
|
|
24
25
|
verifyAndParseCredential: _verifyAndParseCredential.verifyAndParseCredential,
|
|
25
26
|
MRTDPoP: _mrtdPop.MRTDPoP
|
|
26
27
|
};
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_evaluateIssuerTrust","require","_startUserAuthorization","_completeUserAuthorization","_authorizeAccess","_obtainCredential","_verifyAndParseCredential","_mrtdPop","Issuance","evaluateIssuerTrust","startUserAuthorization","buildAuthorizationUrl","completeUserAuthorizationWithQueryMode","continueUserAuthorizationWithMRTDPoPChallenge","getRequestedCredentialToBePresented","completeUserAuthorizationWithFormPostJwtMode","authorizeAccess","obtainCredential","verifyAndParseCredential","MRTDPoP","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.0.0/index.ts"],"mappings":";;;;;;AACA,IAAAA,oBAAA,GAAAC,OAAA;AACA,IAAAC,uBAAA,GAAAD,OAAA;AACA,IAAAE,0BAAA,GAAAF,OAAA;AAOA,IAAAG,gBAAA,GAAAH,OAAA;AACA,IAAAI,iBAAA,GAAAJ,OAAA;
|
|
1
|
+
{"version":3,"names":["_evaluateIssuerTrust","require","_startUserAuthorization","_completeUserAuthorization","_authorizeAccess","_obtainCredential","_verifyAndParseCredential","_mrtdPop","Issuance","evaluateIssuerTrust","startUserAuthorization","buildAuthorizationUrl","completeUserAuthorizationWithQueryMode","continueUserAuthorizationWithMRTDPoPChallenge","getRequestedCredentialToBePresented","completeUserAuthorizationWithFormPostJwtMode","authorizeAccess","obtainCredential","obtainCredentialsBatch","verifyAndParseCredential","MRTDPoP","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.0.0/index.ts"],"mappings":";;;;;;AACA,IAAAA,oBAAA,GAAAC,OAAA;AACA,IAAAC,uBAAA,GAAAD,OAAA;AACA,IAAAE,0BAAA,GAAAF,OAAA;AAOA,IAAAG,gBAAA,GAAAH,OAAA;AACA,IAAAI,iBAAA,GAAAJ,OAAA;AAIA,IAAAK,yBAAA,GAAAL,OAAA;AACA,IAAAM,QAAA,GAAAN,OAAA;AAEO,MAAMO,QAAqB,GAAG;EACnCC,mBAAmB,EAAnBA,wCAAmB;EACnBC,sBAAsB,EAAtBA,8CAAsB;EACtBC,qBAAqB,EAArBA,gDAAqB;EACrBC,sCAAsC,EAAtCA,iEAAsC;EACtCC,6CAA6C,EAA7CA,wEAA6C;EAC7CC,mCAAmC,EAAnCA,8DAAmC;EACnCC,4CAA4C,EAA5CA,uEAA4C;EAC5CC,eAAe,EAAfA,gCAAe;EACfC,gBAAgB,EAAhBA,kCAAgB;EAChBC,sBAAsB,EAAtBA,wCAAsB;EACtBC,wBAAwB,EAAxBA,kDAAwB;EACxBC,OAAO,EAAPA;AACF,CAAC;AAACC,OAAA,CAAAb,QAAA,GAAAA,QAAA"}
|
|
@@ -14,8 +14,8 @@ var _errors = require("../common/errors");
|
|
|
14
14
|
var _logging = require("../../../utils/logging");
|
|
15
15
|
var _v = require("../../presentation/v1.3.3");
|
|
16
16
|
var _callbacks = require("../../../utils/callbacks");
|
|
17
|
-
var _errors2 = require("../../../utils/errors");
|
|
18
17
|
var _config = require("../../../utils/config");
|
|
18
|
+
var _errors2 = require("../../../utils/errors");
|
|
19
19
|
var _mappers = require("./mappers");
|
|
20
20
|
function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
|
|
21
21
|
const continueUserAuthorizationWithMRTDPoPChallenge = async authRedirectUrl => {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_auth","require","_parseUrl","_interopRequireDefault","_ioWalletOid4vp","_ioWalletOid4vci","_ioWalletOauth","_ioReactNativeJwt","_errors","_logging","_v","_callbacks","
|
|
1
|
+
{"version":3,"names":["_auth","require","_parseUrl","_interopRequireDefault","_ioWalletOid4vp","_ioWalletOid4vci","_ioWalletOauth","_ioReactNativeJwt","_errors","_logging","_v","_callbacks","_config","_errors2","_mappers","obj","__esModule","default","continueUserAuthorizationWithMRTDPoPChallenge","authRedirectUrl","Logger","log","LogLevel","DEBUG","parsedChallenge","parseMrtdChallenge","redirectUrl","challenge_info","challengeJwt","err","errorMessage","Error","message","ERROR","AuthorizationError","exports","buildAuthorizationUrl","issuerRequestUri","clientId","issuerConf","idpHint","authzRequestEndpoint","authorization_endpoint","params","URLSearchParams","client_id","request_uri","append","authUrl","completeUserAuthorizationWithQueryMode","query","parseUrl","parseAuthorizationResponse","getRequestedCredentialToBePresented","appFetch","arguments","length","undefined","fetch","toString","authRequest","fetchAuthorizationRequest","authorizeRequestUrl","callbacks","catch","sdkUnexpectedStatusCodeToIssuerError","parsedAuthRequest","parseAuthorizeRequest","config","sdkConfigV1_3","requestObjectJwt","partialCallbacks","mapToRequestObject","completeUserAuthorizationWithFormPostJwtMode","requestObject","issuerConfig","pid","_ref","wiaCryptoContext","pidKeyTag","dcqlQueryResult","RemotePresentationFlow","evaluateDcqlQuery","dcql_query","authRequestObject","nonce","responseUri","response_uri","remotePresentation","prepareRemotePresentations","authzResponsePayload","createAuthzResponsePayload","state","issuerSigKey","keys","find","key","use","IoWalletError","sendAuthorizationResponseAndExtractCode","authorizationResponseJarm","iss","presentationResponseUri","signer","alg","method","publicJwk","authRes","authResParsed","AuthorizationResultShape","safeParse","success","authErr","AuthorizationErrorShape","error","JSON","stringify","AuthorizationIdpError","data","error_description","_ref2","kid","getPublicKey","SignJWT","setProtectedHeader","typ","setPayload","vp_token","presentations","reduce","_ref3","credentialId","vpToken","setIssuedAt","setExpirationTime","sign"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/03-complete-user-authorization.ts"],"mappings":";;;;;;AAAA,IAAAA,KAAA,GAAAC,OAAA;AAKA,IAAAC,SAAA,GAAAC,sBAAA,CAAAF,OAAA;AAEA,IAAAG,eAAA,GAAAH,OAAA;AAIA,IAAAI,gBAAA,GAAAJ,OAAA;AACA,IAAAK,cAAA,GAAAL,OAAA;AACA,IAAAM,iBAAA,GAAAN,OAAA;AACA,IAAAO,OAAA,GAAAP,OAAA;AACA,IAAAQ,QAAA,GAAAR,OAAA;AACA,IAAAS,EAAA,GAAAT,OAAA;AACA,IAAAU,UAAA,GAAAV,OAAA;AACA,IAAAW,OAAA,GAAAX,OAAA;AACA,IAAAY,QAAA,GAAAZ,OAAA;AAKA,IAAAa,QAAA,GAAAb,OAAA;AAA+C,SAAAE,uBAAAY,GAAA,WAAAA,GAAA,IAAAA,GAAA,CAAAC,UAAA,GAAAD,GAAA,KAAAE,OAAA,EAAAF,GAAA;AAGxC,MAAMG,6CAA2G,GACtH,MAAOC,eAAe,IAAK;EACzBC,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,+HACH,CAAC;EACD,IAAI;IACF,MAAMC,eAAe,GAAG,IAAAC,iCAAkB,EAAC;MACzCC,WAAW,EAAEP;IACf,CAAC,CAAC;IACF,OAAO;MAAEQ,cAAc,EAAEH,eAAe,CAACI;IAAa,CAAC;EACzD,CAAC,CAAC,OAAOC,GAAG,EAAE;IACZ,MAAMC,YAAY,GAChBD,GAAG,YAAYE,KAAK,GAAGF,GAAG,CAACG,OAAO,GAAG,+BAA+B;IACtEZ,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACW,KAAK,EACb,mDAAkDH,YAAa,EAClE,CAAC;IACD,MAAM,IAAII,0BAAkB,CAACJ,YAAY,CAAC;EAC5C;AACF,CAAC;AAACK,OAAA,CAAAjB,6CAAA,GAAAA,6CAAA;AAEG,MAAMkB,qBAA2D,GACtE,MAAAA,CAAOC,gBAAgB,EAAEC,QAAQ,EAAEC,UAAU,EAAEC,OAAO,KAAK;EACzD,MAAMC,oBAAoB,GAAGF,UAAU,CAACG,sBAAsB;EAE9D,MAAMC,MAAM,GAAG,IAAIC,eAAe,CAAC;IACjCC,SAAS,EAAEP,QAAQ;IACnBQ,WAAW,EAAET;EACf,CAAC,CAAC;EAEF,IAAIG,OAAO,EAAE;IACXG,MAAM,CAACI,MAAM,CAAC,SAAS,EAAEP,OAAO,CAAC;EACnC;EAEA,MAAMQ,OAAO,GAAI,GAAEP,oBAAqB,IAAGE,MAAO,EAAC;EAEnD,OAAO;IAAEK;EAAQ,CAAC;AACpB,CAAC;AAACb,OAAA,CAAAC,qBAAA,GAAAA,qBAAA;AAEG,MAAMa,sCAA6F,GACxG,MAAO9B,eAAe,IAAK;EACzBC,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,2GACH,CAAC;EACD,MAAM2B,KAAK,GAAG,IAAAC,iBAAQ,EAAChC,eAAe,CAAC,CAAC+B,KAAK;EAE7C,OAAOE,0BAA0B,CAACF,KAAK,CAAC;AAC1C,CAAC;AAACf,OAAA,CAAAc,sCAAA,GAAAA,sCAAA;AAEG,MAAMI,mCAAuF,GAClG,eAAAA,CAAOhB,gBAAgB,EAAEC,QAAQ,EAAEC,UAAU,EAAuB;EAAA,IAArBe,QAAQ,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAGG,KAAK;EAC7DtC,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,sGACH,CAAC;EAED,MAAMkB,oBAAoB,GAAGF,UAAU,CAACG,sBAAsB;EAC9D,MAAMC,MAAM,GAAG,IAAIC,eAAe,CAAC;IACjCC,SAAS,EAAEP,QAAQ;IACnBQ,WAAW,EAAET;EACf,CAAC,CAAC;EAEFjB,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,oCAAmCkB,oBAAqB,IAAGE,MAAM,CAACgB,QAAQ,CAAC,CAAE,EAChF,CAAC;EAED,MAAMC,WAAW,GAAG,MAAM,IAAAC,yCAAyB,EAAC;IAClDC,mBAAmB,EAAG,GAAErB,oBAAqB,IAAGE,MAAM,CAACgB,QAAQ,CAAC,CAAE,EAAC;IACnEI,SAAS,EAAE;MACTL,KAAK,EAAEJ;IACT;EACF,CAAC,CAAC,CAACU,KAAK,CAACC,6CAAoC,CAAC;EAE9C,MAAMC,iBAAiB,GAAG,MAAM,IAAAC,qCAAqB,EAAC;IACpDC,MAAM,EAAEC,qBAAa;IACrBC,gBAAgB,EAAEV,WAAW,CAACU,gBAAgB;IAC9CP,SAAS,EAAEQ;EACb,CAAC,CAAC;EAEF,OAAO,IAAAC,2BAAkB,EAACN,iBAAiB,CAAC;AAC9C,CAAC;AAAC/B,OAAA,CAAAkB,mCAAA,GAAAA,mCAAA;AAEG,MAAMoB,4CAAyG,GACpH,MAAAA,CACEC,aAAa,EACbC,YAAY,EACZC,GAAG,EAAAC,IAAA,KAEA;EAAA,IADH;IAAEC,gBAAgB;IAAEC,SAAS;IAAEzB,QAAQ,GAAGI;EAAM,CAAC,GAAAmB,IAAA;EAEjDzD,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,sHACH,CAAC;EAED,MAAMyD,eAAe,GAAG,MAAMC,qBAAsB,CAACC,iBAAiB,CACpER,aAAa,CAACS,UAAU,EACxB,CAAC,CAACJ,SAAS,EAAEH,GAAG,CAAC,CACnB,CAAC;EAED,MAAMQ,iBAAiB,GAAG;IACxBC,KAAK,EAAEX,aAAa,CAACW,KAAK;IAC1B/C,QAAQ,EAAEoC,aAAa,CAAC7B,SAAS;IACjCyC,WAAW,EAAEZ,aAAa,CAACa;EAC7B,CAAC;EAED,MAAMC,kBAAkB,GACtB,MAAMP,qBAAsB,CAACQ,0BAA0B,CACrDT,eAAe,EACfI,iBACF,CAAC;EAEH,MAAMM,oBAAoB,GAAG,MAAMC,0BAA0B,CAAC;IAC5DC,KAAK,EAAElB,aAAa,CAACkB,KAAK;IAC1BJ,kBAAkB;IAClBV;EACF,CAAC,CAAC;EAEF1D,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,2BAA0BmE,oBAAqB,EAClD,CAAC;EAED,MAAMG,YAAY,GAAGlB,YAAY,CAACmB,IAAI,CAACC,IAAI,CAAEC,GAAG,IAAKA,GAAG,CAACC,GAAG,KAAK,KAAK,CAAC;EACvE,IAAI,CAACJ,YAAY,EAAE;IACjB,MAAM/D,YAAY,GAAG,gDAAgD;IACrEV,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACW,KAAK,EAAEH,YAAY,CAAC;IACxC,MAAM,IAAIoE,sBAAa,CAACpE,YAAY,CAAC;EACvC;EAEA,OAAO,IAAAqE,wDAAuC,EAAC;IAC7CC,yBAAyB,EAAEV,oBAAoB;IAC/C3B,SAAS,EAAE;MACT,GAAGQ,2BAAgB;MACnBb,KAAK,EAAEJ;IACT,CAAC;IACD+C,GAAG,EAAE3B,aAAa,CAAC2B,GAAG;IACtBT,KAAK,EAAElB,aAAa,CAACkB,KAAM;IAC3BU,uBAAuB,EAAE5B,aAAa,CAACa,YAAY;IACnDgB,MAAM,EAAE;MACNC,GAAG,EAAE,OAAO;MACZC,MAAM,EAAE,KAAK;MACbC,SAAS,EAAEb;IACb;EACF,CAAC,CAAC;AACJ,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AACA;AANA1D,OAAA,CAAAsC,4CAAA,GAAAA,4CAAA;AAOO,MAAMrB,0BAA0B,GACrCuD,OAAgB,IACQ;EACxB,MAAMC,aAAa,GAAGC,8BAAwB,CAACC,SAAS,CAACH,OAAO,CAAC;EACjE,IAAI,CAACC,aAAa,CAACG,OAAO,EAAE;IAC1B,MAAMC,OAAO,GAAGC,6BAAuB,CAACH,SAAS,CAACH,OAAO,CAAC;IAC1D,IAAI,CAACK,OAAO,CAACD,OAAO,EAAE;MACpB3F,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACW,KAAK,EACb,mDAAkD2E,aAAa,CAACM,KAAK,CAAClF,OAAQ,EACjF,CAAC;MACD,MAAM,IAAIE,0BAAkB,CAAC0E,aAAa,CAACM,KAAK,CAAClF,OAAO,CAAC,CAAC,CAAC;IAC7D;;IACAZ,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACW,KAAK,EACb,2CAA0CkF,IAAI,CAACC,SAAS,CAACJ,OAAO,CAAE,EACrE,CAAC;IACD,MAAM,IAAIK,6BAAqB,CAC7BL,OAAO,CAACM,IAAI,CAACJ,KAAK,EAClBF,OAAO,CAACM,IAAI,CAACC,iBACf,CAAC;EACH;EACA,OAAOX,aAAa,CAACU,IAAI;AAC3B,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAPAnF,OAAA,CAAAiB,0BAAA,GAAAA,0BAAA;AAQA,MAAMuC,0BAA0B,GAAG,MAAA6B,KAAA,IAQZ;EAAA,IARmB;IACxC5B,KAAK;IACLJ,kBAAkB;IAClBV;EAKF,CAAC,GAAA0C,KAAA;EACC,MAAM;IAAEC;EAAI,CAAC,GAAG,MAAM3C,gBAAgB,CAAC4C,YAAY,CAAC,CAAC;EAErD,OAAO,IAAIC,yBAAO,CAAC7C,gBAAgB,CAAC,CACjC8C,kBAAkB,CAAC;IAClBC,GAAG,EAAE,KAAK;IACVJ;EACF,CAAC,CAAC,CACDK,UAAU,CAAC;IACV;AACN;AACA;AACA;AACA;IACM,IAAIlC,KAAK,GAAG;MAAEA;IAAM,CAAC,GAAG,CAAC,CAAC,CAAC;IAC3BmC,QAAQ,EAAEvC,kBAAkB,CAACwC,aAAa,CAACC,MAAM,CAC/C,CAACF,QAAQ,EAAAG,KAAA;MAAA,IAAE;QAAEC,YAAY;QAAEC;MAAQ,CAAC,GAAAF,KAAA;MAAA,OAAM;QACxC,GAAGH,QAAQ;QACX,CAACI,YAAY,GAAG,CAACC,OAAO;MAC1B,CAAC;IAAA,CAAC,EACF,CAAC,CACH;EACF,CAAC,CAAC,CACDC,WAAW,CAAC,CAAC,CACbC,iBAAiB,CAAC,IAAI,CAAC,CACvBC,IAAI,CAAC,CAAC;AACX,CAAC"}
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
Object.defineProperty(exports, "__esModule", {
|
|
4
4
|
value: true
|
|
5
5
|
});
|
|
6
|
-
exports.
|
|
6
|
+
exports.requestCredentials = exports.obtainCredentialsBatch = exports.obtainCredential = void 0;
|
|
7
7
|
var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
|
|
8
8
|
var _ioWalletOauth = require("@pagopa/io-wallet-oauth2");
|
|
9
9
|
var _ioWalletOid4vci = require("@pagopa/io-wallet-oid4vci");
|
|
@@ -14,34 +14,24 @@ var _logging = require("../../../utils/logging");
|
|
|
14
14
|
var _config = require("../../../utils/config");
|
|
15
15
|
var _callbacks = require("../../../utils/callbacks");
|
|
16
16
|
var _types = require("./types");
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
17
|
+
/**
|
|
18
|
+
* Helper to create a credential request and fetch it from the issuer.
|
|
19
|
+
*
|
|
20
|
+
* When multiple keys are provided as {@link CryptoContext}, a batch is requested.
|
|
21
|
+
*
|
|
22
|
+
* @returns The raw credential response
|
|
23
|
+
*/
|
|
24
|
+
const requestCredentials = async _ref => {
|
|
25
|
+
let {
|
|
26
|
+
issuerConf,
|
|
27
|
+
accessToken,
|
|
28
|
+
credentialIdentifier,
|
|
29
|
+
clientId,
|
|
30
|
+
keyAttestationJwt,
|
|
31
|
+
credentialCryptoContexts,
|
|
30
32
|
dPopCryptoContext,
|
|
31
|
-
walletUnitAttestation,
|
|
32
33
|
appFetch = fetch
|
|
33
|
-
} =
|
|
34
|
-
if (!walletUnitAttestation) {
|
|
35
|
-
throw new _errors.ValidationFailed({
|
|
36
|
-
message: "The Wallet Unit Attestation is required to obtain the credential"
|
|
37
|
-
});
|
|
38
|
-
}
|
|
39
|
-
const {
|
|
40
|
-
credential_configuration_id,
|
|
41
|
-
credential_identifier
|
|
42
|
-
} = credentialDefinition;
|
|
43
|
-
|
|
44
|
-
// Fetch the nonce from the Credential Issuer
|
|
34
|
+
} = _ref;
|
|
45
35
|
const {
|
|
46
36
|
c_nonce
|
|
47
37
|
} = await appFetch(issuerConf.nonce_endpoint, {
|
|
@@ -49,36 +39,61 @@ const obtainCredential = async (issuerConf, accessToken, clientId, credentialDef
|
|
|
49
39
|
headers: {
|
|
50
40
|
"Content-Type": "application/json"
|
|
51
41
|
}
|
|
52
|
-
}).then((0, _misc.hasStatusOrThrow)(200)).then(res => res.json()).then(
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
|
|
42
|
+
}).then((0, _misc.hasStatusOrThrow)(200)).then(res => res.json()).then(_types.NonceResponse.parse);
|
|
43
|
+
const keys = await Promise.all(credentialCryptoContexts.map(async ctx => {
|
|
44
|
+
const publicJwk = await ctx.getPublicKey();
|
|
45
|
+
return {
|
|
46
|
+
publicJwk,
|
|
47
|
+
cryptoContext: ctx
|
|
48
|
+
};
|
|
49
|
+
}));
|
|
50
|
+
const signJwt = async (jwtSigner, _ref2) => {
|
|
51
|
+
let {
|
|
52
|
+
header,
|
|
53
|
+
payload
|
|
54
|
+
} = _ref2;
|
|
55
|
+
if (jwtSigner.method !== "jwk") {
|
|
56
|
+
throw new _errors.IoWalletError(`Unsupported signer method: ${jwtSigner.method}`);
|
|
57
|
+
}
|
|
58
|
+
const {
|
|
59
|
+
cryptoContext
|
|
60
|
+
} = keys.find(_ref3 => {
|
|
61
|
+
let {
|
|
62
|
+
publicJwk
|
|
63
|
+
} = _ref3;
|
|
64
|
+
return publicJwk.kid === jwtSigner.publicJwk.kid;
|
|
65
|
+
}) ?? {};
|
|
66
|
+
if (!cryptoContext) {
|
|
67
|
+
throw new _errors.IoWalletError(`Could not find CryptoContext for key ${jwtSigner.publicJwk.kid}`);
|
|
68
|
+
}
|
|
69
|
+
return {
|
|
70
|
+
jwt: await new _ioReactNativeJwt.SignJWT(cryptoContext).setProtectedHeader(header).setPayload(payload).sign(),
|
|
71
|
+
signerJwk: jwtSigner.publicJwk
|
|
72
|
+
};
|
|
73
|
+
};
|
|
74
|
+
const signers = keys.map(_ref4 => {
|
|
75
|
+
let {
|
|
76
|
+
publicJwk
|
|
77
|
+
} = _ref4;
|
|
78
|
+
return {
|
|
79
|
+
alg: "ES256",
|
|
80
|
+
method: "jwk",
|
|
81
|
+
publicJwk
|
|
82
|
+
};
|
|
83
|
+
});
|
|
63
84
|
const credentialRequest = await (0, _ioWalletOid4vci.createCredentialRequest)({
|
|
64
85
|
config: _config.sdkConfigV1_3,
|
|
65
86
|
callbacks: {
|
|
66
87
|
hash: _callbacks.partialCallbacks.hash,
|
|
67
|
-
signJwt
|
|
68
|
-
jwt: await new _ioReactNativeJwt.SignJWT(credentialCryptoContext).setPayload(payload).sign(),
|
|
69
|
-
signerJwk
|
|
70
|
-
})
|
|
88
|
+
signJwt
|
|
71
89
|
},
|
|
72
90
|
clientId,
|
|
73
|
-
credential_identifier:
|
|
91
|
+
credential_identifier: credentialIdentifier,
|
|
74
92
|
issuerIdentifier: issuerConf.credential_issuer,
|
|
93
|
+
maxBatchSize: issuerConf.credential_issuance_batch_size,
|
|
75
94
|
nonce: c_nonce,
|
|
76
|
-
keyAttestation:
|
|
77
|
-
signers
|
|
78
|
-
alg: "ES256",
|
|
79
|
-
method: "jwk",
|
|
80
|
-
publicJwk: signerJwk
|
|
81
|
-
}]
|
|
95
|
+
keyAttestation: keyAttestationJwt,
|
|
96
|
+
signers
|
|
82
97
|
});
|
|
83
98
|
const dPopSignerJwk = await dPopCryptoContext.getPublicKey();
|
|
84
99
|
const credentialDPoP = await (0, _ioWalletOauth.createTokenDPoP)({
|
|
@@ -86,7 +101,7 @@ const obtainCredential = async (issuerConf, accessToken, clientId, credentialDef
|
|
|
86
101
|
..._callbacks.partialCallbacks,
|
|
87
102
|
signJwt: async (_, payload) => ({
|
|
88
103
|
jwt: await new _ioReactNativeJwt.SignJWT(dPopCryptoContext).setPayload(payload).sign(),
|
|
89
|
-
signerJwk
|
|
104
|
+
signerJwk: dPopSignerJwk
|
|
90
105
|
})
|
|
91
106
|
},
|
|
92
107
|
signer: {
|
|
@@ -100,7 +115,7 @@ const obtainCredential = async (issuerConf, accessToken, clientId, credentialDef
|
|
|
100
115
|
},
|
|
101
116
|
accessToken: accessToken.access_token
|
|
102
117
|
});
|
|
103
|
-
|
|
118
|
+
return await (0, _ioWalletOid4vci.fetchCredentialResponse)({
|
|
104
119
|
callbacks: {
|
|
105
120
|
fetch: appFetch
|
|
106
121
|
},
|
|
@@ -109,6 +124,43 @@ const obtainCredential = async (issuerConf, accessToken, clientId, credentialDef
|
|
|
109
124
|
accessToken: accessToken.access_token,
|
|
110
125
|
dPoP: credentialDPoP.jwt
|
|
111
126
|
}).catch(handleObtainCredentialError);
|
|
127
|
+
};
|
|
128
|
+
exports.requestCredentials = requestCredentials;
|
|
129
|
+
const obtainCredential = async (issuerConf, accessToken, clientId, credentialDefinition, context) => {
|
|
130
|
+
const {
|
|
131
|
+
credentialCryptoContext,
|
|
132
|
+
dPopCryptoContext,
|
|
133
|
+
walletUnitAttestation,
|
|
134
|
+
appFetch = fetch
|
|
135
|
+
} = context;
|
|
136
|
+
if (!walletUnitAttestation) {
|
|
137
|
+
throw new _errors.ValidationFailed({
|
|
138
|
+
message: "The Wallet Unit Attestation is required to obtain the credential"
|
|
139
|
+
});
|
|
140
|
+
}
|
|
141
|
+
const {
|
|
142
|
+
credential_configuration_id,
|
|
143
|
+
credential_identifier
|
|
144
|
+
} = credentialDefinition;
|
|
145
|
+
|
|
146
|
+
// Validation of accessTokenResponse.authorization_details if contain credentialDefinition
|
|
147
|
+
const containsCredentialDefinition = accessToken.authorization_details.some(c => c.credential_configuration_id === credential_configuration_id && (credential_identifier ? c.credential_identifiers.includes(credential_identifier) : true));
|
|
148
|
+
if (!containsCredentialDefinition) {
|
|
149
|
+
_logging.Logger.log(_logging.LogLevel.ERROR, `Credential definition not found in the access token response ${accessToken.authorization_details}`);
|
|
150
|
+
throw new _errors.ValidationFailed({
|
|
151
|
+
message: "The access token response does not contain the requested credential"
|
|
152
|
+
});
|
|
153
|
+
}
|
|
154
|
+
const credentialRes = await requestCredentials({
|
|
155
|
+
issuerConf,
|
|
156
|
+
accessToken,
|
|
157
|
+
clientId,
|
|
158
|
+
credentialCryptoContexts: [credentialCryptoContext],
|
|
159
|
+
credentialIdentifier: credential_identifier,
|
|
160
|
+
dPopCryptoContext,
|
|
161
|
+
keyAttestationJwt: walletUnitAttestation,
|
|
162
|
+
appFetch
|
|
163
|
+
});
|
|
112
164
|
_logging.Logger.log(_logging.LogLevel.DEBUG, `Credential Response: ${JSON.stringify(credentialRes)}`);
|
|
113
165
|
|
|
114
166
|
// Extract the format corresponding to the credential_configuration_id used
|
|
@@ -123,6 +175,49 @@ const obtainCredential = async (issuerConf, accessToken, clientId, credentialDef
|
|
|
123
175
|
format: issuerCredentialConfig.format
|
|
124
176
|
};
|
|
125
177
|
};
|
|
178
|
+
exports.obtainCredential = obtainCredential;
|
|
179
|
+
const obtainCredentialsBatch = async (issuerConf, accessToken, clientId, credentialDefinition, context) => {
|
|
180
|
+
const {
|
|
181
|
+
credentialCryptoContexts,
|
|
182
|
+
dPopCryptoContext,
|
|
183
|
+
walletUnitAttestation,
|
|
184
|
+
appFetch = fetch
|
|
185
|
+
} = context;
|
|
186
|
+
if (!walletUnitAttestation) {
|
|
187
|
+
throw new _errors.ValidationFailed({
|
|
188
|
+
message: "The Wallet Unit Attestation is required to obtain the credential"
|
|
189
|
+
});
|
|
190
|
+
}
|
|
191
|
+
const {
|
|
192
|
+
credential_configuration_id,
|
|
193
|
+
credential_identifier
|
|
194
|
+
} = credentialDefinition;
|
|
195
|
+
const credentialRes = await requestCredentials({
|
|
196
|
+
issuerConf,
|
|
197
|
+
accessToken,
|
|
198
|
+
clientId,
|
|
199
|
+
credentialCryptoContexts,
|
|
200
|
+
credentialIdentifier: credential_identifier,
|
|
201
|
+
dPopCryptoContext,
|
|
202
|
+
keyAttestationJwt: walletUnitAttestation,
|
|
203
|
+
appFetch
|
|
204
|
+
});
|
|
205
|
+
|
|
206
|
+
// Extract the format corresponding to the credential_configuration_id used
|
|
207
|
+
const issuerCredentialConfig = issuerConf.credential_configurations_supported[credential_configuration_id];
|
|
208
|
+
if ("transaction_id" in credentialRes) {
|
|
209
|
+
throw new _errors.IoWalletError("Deferred issuance is not currently supported");
|
|
210
|
+
}
|
|
211
|
+
return credentialRes.credentials.map(_ref5 => {
|
|
212
|
+
let {
|
|
213
|
+
credential
|
|
214
|
+
} = _ref5;
|
|
215
|
+
return {
|
|
216
|
+
credential,
|
|
217
|
+
format: issuerCredentialConfig.format
|
|
218
|
+
};
|
|
219
|
+
});
|
|
220
|
+
};
|
|
126
221
|
|
|
127
222
|
/**
|
|
128
223
|
* Handle the credential error by mapping it to a custom exception.
|
|
@@ -130,7 +225,7 @@ const obtainCredential = async (issuerConf, accessToken, clientId, credentialDef
|
|
|
130
225
|
* @param e - The error to be handled
|
|
131
226
|
* @throws {IssuerResponseError} with a specific code for more context
|
|
132
227
|
*/
|
|
133
|
-
exports.
|
|
228
|
+
exports.obtainCredentialsBatch = obtainCredentialsBatch;
|
|
134
229
|
const handleObtainCredentialError = e => {
|
|
135
230
|
_logging.Logger.log(_logging.LogLevel.ERROR, `Error occurred while obtaining credential: ${e}`);
|
|
136
231
|
if (!(e instanceof _ioWalletUtils.UnexpectedStatusCodeError)) {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_ioReactNativeJwt","require","_ioWalletOauth","_ioWalletOid4vci","_ioWalletUtils","_misc","_errors","_logging","_config","_callbacks","_types","
|
|
1
|
+
{"version":3,"names":["_ioReactNativeJwt","require","_ioWalletOauth","_ioWalletOid4vci","_ioWalletUtils","_misc","_errors","_logging","_config","_callbacks","_types","requestCredentials","_ref","issuerConf","accessToken","credentialIdentifier","clientId","keyAttestationJwt","credentialCryptoContexts","dPopCryptoContext","appFetch","fetch","c_nonce","nonce_endpoint","method","headers","then","hasStatusOrThrow","res","json","NonceResponse","parse","keys","Promise","all","map","ctx","publicJwk","getPublicKey","cryptoContext","signJwt","jwtSigner","_ref2","header","payload","IoWalletError","find","_ref3","kid","jwt","SignJWT","setProtectedHeader","setPayload","sign","signerJwk","signers","_ref4","alg","credentialRequest","createCredentialRequest","config","sdkConfigV1_3","callbacks","hash","partialCallbacks","credential_identifier","issuerIdentifier","credential_issuer","maxBatchSize","credential_issuance_batch_size","nonce","keyAttestation","dPopSignerJwk","credentialDPoP","createTokenDPoP","_","signer","tokenRequest","url","credential_endpoint","access_token","fetchCredentialResponse","credentialEndpoint","dPoP","catch","handleObtainCredentialError","exports","obtainCredential","credentialDefinition","context","credentialCryptoContext","walletUnitAttestation","ValidationFailed","message","credential_configuration_id","containsCredentialDefinition","authorization_details","some","c","credential_identifiers","includes","Logger","log","LogLevel","ERROR","credentialRes","DEBUG","JSON","stringify","issuerCredentialConfig","credential_configurations_supported","credential","credentials","at","format","obtainCredentialsBatch","_ref5","e","SdkUnexpectedStatusCodeError","ResponseErrorBuilder","IssuerResponseError","handle","code","IssuerResponseErrorCodes","CredentialInvalidStatus","CredentialRequestFailed","buildFrom"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/05-obtain-credential.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,cAAA,GAAAD,OAAA;AAKA,IAAAE,gBAAA,GAAAF,OAAA;AAIA,IAAAG,cAAA,GAAAH,OAAA;AACA,IAAAI,KAAA,GAAAJ,OAAA;AACA,IAAAK,OAAA,GAAAL,OAAA;AAOA,IAAAM,QAAA,GAAAN,OAAA;AACA,IAAAO,OAAA,GAAAP,OAAA;AACA,IAAAQ,UAAA,GAAAR,OAAA;AAEA,IAAAS,MAAA,GAAAT,OAAA;AAcA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMU,kBAAkB,GAAG,MAAAC,IAAA,IASP;EAAA,IATc;IACvCC,UAAU;IACVC,WAAW;IACXC,oBAAoB;IACpBC,QAAQ;IACRC,iBAAiB;IACjBC,wBAAwB;IACxBC,iBAAiB;IACjBC,QAAQ,GAAGC;EACQ,CAAC,GAAAT,IAAA;EACpB,MAAM;IAAEU;EAAQ,CAAC,GAAG,MAAMF,QAAQ,CAACP,UAAU,CAACU,cAAc,EAAE;IAC5DC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MAAE,cAAc,EAAE;IAAmB;EAChD,CAAC,CAAC,CACCC,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAACI,oBAAa,CAACC,KAAK,CAAC;EAE5B,MAAMC,IAAI,GAAG,MAAMC,OAAO,CAACC,GAAG,CAC5BhB,wBAAwB,CAACiB,GAAG,CAAC,MAAOC,GAAG,IAAK;IAC1C,MAAMC,SAAS,GAAG,MAAMD,GAAG,CAACE,YAAY,CAAC,CAAC;IAC1C,OAAO;MAAED,SAAS;MAAEE,aAAa,EAAEH;IAAI,CAAC;EAC1C,CAAC,CACH,CAAC;EAED,MAAMI,OAAmC,GAAG,MAAAA,CAC1CC,SAAS,EAAAC,KAAA,KAEN;IAAA,IADH;MAAEC,MAAM;MAAEC;IAAQ,CAAC,GAAAF,KAAA;IAEnB,IAAID,SAAS,CAACjB,MAAM,KAAK,KAAK,EAAE;MAC9B,MAAM,IAAIqB,qBAAa,CAAE,8BAA6BJ,SAAS,CAACjB,MAAO,EAAC,CAAC;IAC3E;IAEA,MAAM;MAAEe;IAAc,CAAC,GACrBP,IAAI,CAACc,IAAI,CAACC,KAAA;MAAA,IAAC;QAAEV;MAAU,CAAC,GAAAU,KAAA;MAAA,OAAKV,SAAS,CAACW,GAAG,KAAKP,SAAS,CAACJ,SAAS,CAACW,GAAG;IAAA,EAAC,IACvE,CAAC,CAAC;IAEJ,IAAI,CAACT,aAAa,EAAE;MAClB,MAAM,IAAIM,qBAAa,CACpB,wCAAuCJ,SAAS,CAACJ,SAAS,CAACW,GAAI,EAClE,CAAC;IACH;IAEA,OAAO;MACLC,GAAG,EAAE,MAAM,IAAIC,yBAAO,CAACX,aAAa,CAAC,CAClCY,kBAAkB,CAACR,MAAM,CAAC,CAC1BS,UAAU,CAACR,OAAO,CAAC,CACnBS,IAAI,CAAC,CAAC;MACTC,SAAS,EAAEb,SAAS,CAACJ;IACvB,CAAC;EACH,CAAC;EAED,MAAMkB,OAAO,GAAGvB,IAAI,CAACG,GAAG,CAAeqB,KAAA;IAAA,IAAC;MAAEnB;IAAU,CAAC,GAAAmB,KAAA;IAAA,OAAM;MACzDC,GAAG,EAAE,OAAO;MACZjC,MAAM,EAAE,KAAK;MACba;IACF,CAAC;EAAA,CAAC,CAAC;EAEH,MAAMqB,iBAAiB,GAAG,MAAM,IAAAC,wCAAuB,EAAC;IACtDC,MAAM,EAAEC,qBAAa;IACrBC,SAAS,EAAE;MACTC,IAAI,EAAEC,2BAAgB,CAACD,IAAI;MAC3BvB;IACF,CAAC;IACDxB,QAAQ;IACRiD,qBAAqB,EAAElD,oBAAoB;IAC3CmD,gBAAgB,EAAErD,UAAU,CAACsD,iBAAiB;IAC9CC,YAAY,EAAEvD,UAAU,CAACwD,8BAA8B;IACvDC,KAAK,EAAEhD,OAAO;IACdiD,cAAc,EAAEtD,iBAAiB;IACjCsC;EACF,CAAC,CAAC;EAEF,MAAMiB,aAAa,GAAG,MAAMrD,iBAAiB,CAACmB,YAAY,CAAC,CAAC;EAE5D,MAAMmC,cAAc,GAAG,MAAM,IAAAC,8BAAe,EAAC;IAC3CZ,SAAS,EAAE;MACT,GAAGE,2BAAgB;MACnBxB,OAAO,EAAE,MAAAA,CAAOmC,CAAC,EAAE/B,OAAO,MAAM;QAC9BK,GAAG,EAAE,MAAM,IAAIC,yBAAO,CAAC/B,iBAAiB,CAAC,CAACiC,UAAU,CAACR,OAAO,CAAC,CAACS,IAAI,CAAC,CAAC;QACpEC,SAAS,EAAEkB;MACb,CAAC;IACH,CAAC;IACDI,MAAM,EAAE;MACNpD,MAAM,EAAE,KAAK;MACbiC,GAAG,EAAE,OAAO;MACZpB,SAAS,EAAEmC;IACb,CAAC;IACDK,YAAY,EAAE;MACZrD,MAAM,EAAE,MAAM;MACdsD,GAAG,EAAEjE,UAAU,CAACkE;IAClB,CAAC;IACDjE,WAAW,EAAEA,WAAW,CAACkE;EAC3B,CAAC,CAAC;EAEF,OAAO,MAAM,IAAAC,wCAAuB,EAAC;IACnCnB,SAAS,EAAE;MACTzC,KAAK,EAAED;IACT,CAAC;IACD8D,kBAAkB,EAAErE,UAAU,CAACkE,mBAAmB;IAClDrB,iBAAiB,EAAEA,iBAAiB;IACpC5C,WAAW,EAAEA,WAAW,CAACkE,YAAY;IACrCG,IAAI,EAAEV,cAAc,CAACxB;EACvB,CAAC,CAAC,CAACmC,KAAK,CAACC,2BAA2B,CAAC;AACvC,CAAC;AAACC,OAAA,CAAA3E,kBAAA,GAAAA,kBAAA;AAEK,MAAM4E,gBAAiD,GAAG,MAAAA,CAC/D1E,UAAU,EACVC,WAAW,EACXE,QAAQ,EACRwE,oBAAoB,EACpBC,OAAO,KACJ;EACH,MAAM;IACJC,uBAAuB;IACvBvE,iBAAiB;IACjBwE,qBAAqB;IACrBvE,QAAQ,GAAGC;EACb,CAAC,GAAGoE,OAAO;EACX,IAAI,CAACE,qBAAqB,EAAE;IAC1B,MAAM,IAAIC,wBAAgB,CAAC;MACzBC,OAAO,EACL;IACJ,CAAC,CAAC;EACJ;EAEA,MAAM;IAAEC,2BAA2B;IAAE7B;EAAsB,CAAC,GAC1DuB,oBAAoB;;EAEtB;EACA,MAAMO,4BAA4B,GAAGjF,WAAW,CAACkF,qBAAqB,CAACC,IAAI,CACxEC,CAAC,IACAA,CAAC,CAACJ,2BAA2B,KAAKA,2BAA2B,KAC5D7B,qBAAqB,GAClBiC,CAAC,CAACC,sBAAsB,CAACC,QAAQ,CAACnC,qBAAqB,CAAC,GACxD,IAAI,CACZ,CAAC;EAED,IAAI,CAAC8B,4BAA4B,EAAE;IACjCM,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,gEAA+D1F,WAAW,CAACkF,qBAAsB,EACpG,CAAC;IACD,MAAM,IAAIJ,wBAAgB,CAAC;MACzBC,OAAO,EACL;IACJ,CAAC,CAAC;EACJ;EAEA,MAAMY,aAAa,GAAG,MAAM9F,kBAAkB,CAAC;IAC7CE,UAAU;IACVC,WAAW;IACXE,QAAQ;IACRE,wBAAwB,EAAE,CAACwE,uBAAuB,CAAC;IACnD3E,oBAAoB,EAAEkD,qBAAsB;IAC5C9C,iBAAiB;IACjBF,iBAAiB,EAAE0E,qBAAqB;IACxCvE;EACF,CAAC,CAAC;EAEFiF,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACG,KAAK,EACb,wBAAuBC,IAAI,CAACC,SAAS,CAACH,aAAa,CAAE,EACxD,CAAC;;EAED;EACA,MAAMI,sBAAsB,GAC1BhG,UAAU,CAACiG,mCAAmC,CAAChB,2BAA2B,CAAC;EAE7E,IAAI,gBAAgB,IAAIW,aAAa,EAAE;IACrC,MAAM,IAAI5D,qBAAa,CAAC,oCAAoC,CAAC;EAC/D;;EAEA;EACA,OAAO;IACLkE,UAAU,EAAEN,aAAa,CAACO,WAAW,CAACC,EAAE,CAAC,CAAC,CAAC,CAAEF,UAAU;IACvDG,MAAM,EAAEL,sBAAsB,CAAEK;EAClC,CAAC;AACH,CAAC;AAAC5B,OAAA,CAAAC,gBAAA,GAAAA,gBAAA;AAEK,MAAM4B,sBAA6D,GACxE,MAAAA,CAAOtG,UAAU,EAAEC,WAAW,EAAEE,QAAQ,EAAEwE,oBAAoB,EAAEC,OAAO,KAAK;EAC1E,MAAM;IACJvE,wBAAwB;IACxBC,iBAAiB;IACjBwE,qBAAqB;IACrBvE,QAAQ,GAAGC;EACb,CAAC,GAAGoE,OAAO;EACX,IAAI,CAACE,qBAAqB,EAAE;IAC1B,MAAM,IAAIC,wBAAgB,CAAC;MACzBC,OAAO,EACL;IACJ,CAAC,CAAC;EACJ;EAEA,MAAM;IAAEC,2BAA2B;IAAE7B;EAAsB,CAAC,GAC1DuB,oBAAoB;EAEtB,MAAMiB,aAAa,GAAG,MAAM9F,kBAAkB,CAAC;IAC7CE,UAAU;IACVC,WAAW;IACXE,QAAQ;IACRE,wBAAwB;IACxBH,oBAAoB,EAAEkD,qBAAqB;IAC3C9C,iBAAiB;IACjBF,iBAAiB,EAAE0E,qBAAqB;IACxCvE;EACF,CAAC,CAAC;;EAEF;EACA,MAAMyF,sBAAsB,GAC1BhG,UAAU,CAACiG,mCAAmC,CAC5ChB,2BAA2B,CAC5B;EAEH,IAAI,gBAAgB,IAAIW,aAAa,EAAE;IACrC,MAAM,IAAI5D,qBAAa,CAAC,8CAA8C,CAAC;EACzE;EAEA,OAAO4D,aAAa,CAACO,WAAW,CAAC7E,GAAG,CAACiF,KAAA;IAAA,IAAC;MAAEL;IAAW,CAAC,GAAAK,KAAA;IAAA,OAAM;MACxDL,UAAU;MACVG,MAAM,EAAEL,sBAAsB,CAAEK;IAClC,CAAC;EAAA,CAAC,CAAC;AACL,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AALA5B,OAAA,CAAA6B,sBAAA,GAAAA,sBAAA;AAMA,MAAM9B,2BAA2B,GAAIgC,CAAU,IAAK;EAClDhB,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACC,KAAK,EAAG,8CAA6Ca,CAAE,EAAC,CAAC;EAE7E,IAAI,EAAEA,CAAC,YAAYC,wCAA4B,CAAC,EAAE;IAChD,MAAMD,CAAC;EACT;EAEA,MAAM,IAAIE,4BAAoB,CAACC,2BAAmB,CAAC,CAChDC,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACC,uBAAuB;IACtD/B,OAAO,EAAE;EACX,CAAC,CAAC,CACD4B,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACC,uBAAuB;IACtD/B,OAAO,EAAE;EACX,CAAC,CAAC,CACD4B,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACE,uBAAuB;IACtDhC,OAAO,EAAE;EACX,CAAC,CAAC,CACDiC,SAAS,CAACT,CAAC,CAAC;AACjB,CAAC"}
|