@pagopa/io-react-native-wallet 3.1.2 → 3.3.0

package/lib/module/utils/callbacks.js.map

@@ -1 +1 @@
-{"version":3,"names":["EncryptJwe","getJwkFromHeader","verify","digest","X509","IoWalletError","generateRandomBytes","partialCallbacks","generateRandom","hash","encryptJwe","_ref","data","publicJwk","alg","enc","kid","jwe","encrypt","encryptionJwk","verifyJwt","jwtSigner","jwt","method","compact","verified","signerJwk","decryptJwe","getX509CertificateMetadata","certificate","x509","readCertPEM","sanExt","getExtSubjectAltName","sanDnsNames","sanUriNames","item","array","push","dns","uri","createVerifyJwtFromJwks","jwks","_","header"],"sourceRoot":"../../../src","sources":["utils/callbacks.ts"],"mappings":"AAAA,SAASA,UAAU,EAAEC,gBAAgB,QAAQ,6BAA6B;AAC1E,SAASC,MAAM,QAAQ,6BAA6B;AAEpD,SAASC,MAAM,QAAQ,uBAAuB;AAC9C,SAASC,IAAI,QAAQ,WAAW;AAChC,SAASC,aAAa,QAAQ,UAAU;AACxC,SAASC,mBAAmB,QAAQ,QAAQ;;AAQ5C;;AAMA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,gBAAwC,GAAG;EACtDC,cAAc,EAAEF,mBAAmB;EACnCG,IAAI,EAAEN,MAAqB;EAC3BO,UAAU,EAAE,MAAAA,CAAAC,IAAA,EAAqCC,IAAI;IAAA,IAAlC;MAAEC,SAAS;MAAEC,GAAG;MAAEC,GAAG;MAAEC;IAAI,CAAC,GAAAL,IAAA;IAAA,OAAY;MACzD;MACAM,GAAG,EAAE,MAAM,IAAIjB,UAAU,CAACY,IAAI,EAAE;QAAEE,GAAG;QAAEC,GAAG;QAAEC;MAAI,CAAC,CAAC,CAACE,OAAO,CAACL,SAAS,CAAC;MACrEM,aAAa,EAAEN;IACjB,CAAC;EAAA,CAAC;EACFO,SAAS,EAAE,MAAAA,CAAOC,SAAS,EAAEC,GAAG,KAAK;IACnC;IACA,IAAID,SAAS,CAACE,MAAM,KAAK,KAAK,EAAE;MAC9B,MAAM,IAAIlB,aAAa,CAAE,8BAA6BgB,SAAS,CAACE,MAAO,EAAC,CAAC;IAC3E;IACA,IAAI;MACF,MAAMrB,MAAM,CAACoB,GAAG,CAACE,OAAO,EAAEH,SAAS,CAACR,SAAS,CAAC;MAC9C,OAAO;QAAEY,QAAQ,EAAE,IAAI;QAAEC,SAAS,EAAEL,SAAS,CAACR;MAAU,CAAC;IAC3D,CAAC,CAAC,MAAM;MACN,OAAO;QAAEY,QAAQ,EAAE;MAAM,CAAC;IAC5B;EACF,CAAC;EACDE,UAAU,EAAEA,CAAA,KAAM;IAChB,MAAM,IAAItB,aAAa,CAAC,+BAA+B,CAAC;EAC1D,CAAC;EACDuB,0BAA0B,EAAGC,WAAW,IAAK;IAC3C,MAAMC,IAAI,GAAG,IAAI1B,IAAI,CAAC,CAAC;IACvB0B,IAAI,CAACC,WAAW,CAACF,WAAW,CAAC;IAC7B,MAAMG,MAAM,GAAGF,IAAI,CAACG,oBAAoB,CAACJ,WAAW,CAAC;IAErD,MAAMK,WAAqB,GAAG,EAAE;IAChC,MAAMC,WAAqB,GAAG,EAAE;IAEhC,KAAK,MAAMC,IAAI,IAAIJ,MAAM,CAACK,KAAK,EAAE;MAC/B,IAAI,CAACD,IAAI,EAAE;MACX,IAAI,KAAK,IAAIA,IAAI,EAAEF,WAAW,CAACI,IAAI,CAACF,IAAI,CAACG,GAAG,CAAC;MAC7C,IAAI,KAAK,IAAIH,IAAI,EAAED,WAAW,CAACG,IAAI,CAACF,IAAI,CAACI,GAAG,CAAC;IAC/C;IAEA,OAAO;MAAEN,WAAW;MAAEC;IAAY,CAAC;EACrC;AACF,CAAC;AAID;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMM,uBAAuB,GAClCC,IAAW,IACsB;EACjC,OAAO,eAAetB,SAASA,CAACuB,CAAC,EAAErB,GAAG,EAAE;IACtC,IAAI;MACF,MAAMI,SAAS,GAAGzB,gBAAgB,CAACqB,GAAG,CAACsB,MAAM,EAAeF,IAAI,CAAC;MACjE,MAAMxC,MAAM,CAACoB,GAAG,CAACE,OAAO,EAAEE,SAAS,CAAC;MACpC,OAAO;QAAED,QAAQ,EAAE,IAAI;QAAEC;MAAU,CAAC;IACtC,CAAC,CAAC,MAAM;MACN,OAAO;QAAED,QAAQ,EAAE;MAAM,CAAC;IAC5B;EACF,CAAC;AACH,CAAC"}
+{"version":3,"names":["EncryptJwe","getJwkFromHeader","SignJWT","verify","digest","X509","IoWalletError","assert","generateRandomBytes","getJwkFromCertificateChain","getJwkFromTrustChain","getJwkFromSigner","signer","method","x5c","trustChain","length","kid","publicJwk","partialCallbacks","generateRandom","hash","encryptJwe","_ref","data","alg","enc","jwe","encrypt","encryptionJwk","verifyJwt","jwtSigner","jwt","signerJwk","compact","verified","decryptJwe","getX509CertificateMetadata","certificate","x509","readCertPEM","sanExt","getExtSubjectAltName","sanDnsNames","sanUriNames","item","array","push","dns","uri","createVerifyJwtFromJwks","jwks","_","header","createSignJwtFromCryptoContext","cryptoContext","signJwt","_ref2","payload","setProtectedHeader","setPayload","sign","getPublicKey"],"sourceRoot":"../../../src","sources":["utils/callbacks.ts"],"mappings":"AAAA,SACEA,UAAU,EACVC,gBAAgB,EAChBC,OAAO,QAEF,6BAA6B;AACpC,SAASC,MAAM,QAAQ,6BAA6B;AAEpD,SAASC,MAAM,QAAQ,uBAAuB;AAC9C,SAASC,IAAI,QAAQ,WAAW;AAChC,SAASC,aAAa,QAAQ,UAAU;AACxC,SAASC,MAAM,EAAEC,mBAAmB,QAAQ,QAAQ;AAEpD,SAASC,0BAA0B,EAAEC,oBAAoB,QAAQ,UAAU;;AAO3E;;AAMA;AACA;AACA;AACA;AACA;AACA,MAAMC,gBAAgB,GAAG,MAAOC,MAAiB,IAAmB;EAClE,QAAQA,MAAM,CAACC,MAAM;IACnB,KAAK,KAAK;MACR,OAAOJ,0BAA0B,CAACG,MAAM,CAACE,GAAG,CAAC;IAC/C,KAAK,YAAY;MAAE;QACjBP,MAAM,CACJK,MAAM,CAACG,UAAU,IAAIH,MAAM,CAACG,UAAU,CAACC,MAAM,GAAG,CAAC,EACjD,+CACF,CAAC;QACD,OAAON,oBAAoB,CAACE,MAAM,CAACG,UAAU,EAAEH,MAAM,CAACK,GAAG,CAAC;MAC5D;IACA,KAAK,KAAK;MACR,OAAOL,MAAM,CAACM,SAAS;IACzB;MACE,MAAM,IAAIZ,aAAa,CAAE,8BAA6BM,MAAM,CAACC,MAAO,EAAC,CAAC;EAC1E;AACF,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMM,gBAAwC,GAAG;EACtDC,cAAc,EAAEZ,mBAAmB;EACnCa,IAAI,EAAEjB,MAAqB;EAC3BkB,UAAU,EAAE,MAAAA,CAAAC,IAAA,EAAqCC,IAAI;IAAA,IAAlC;MAAEN,SAAS;MAAEO,GAAG;MAAEC,GAAG;MAAET;IAAI,CAAC,GAAAM,IAAA;IAAA,OAAY;MACzD;MACAI,GAAG,EAAE,MAAM,IAAI3B,UAAU,CAACwB,IAAI,EAAE;QAAEC,GAAG;QAAEC,GAAG;QAAET;MAAI,CAAC,CAAC,CAACW,OAAO,CAACV,SAAS,CAAC;MACrEW,aAAa,EAAEX;IACjB,CAAC;EAAA,CAAC;EACFY,SAAS,EAAE,MAAAA,CAAOC,SAAS,EAAEC,GAAG,KAAK;IACnC,IAAI;MACF,MAAMC,SAAS,GAAG,MAAMtB,gBAAgB,CAACoB,SAAS,CAAC;MACnD,MAAM5B,MAAM,CAAC6B,GAAG,CAACE,OAAO,EAAED,SAAS,CAAC;MACpC,OAAO;QAAEE,QAAQ,EAAE,IAAI;QAAEF;MAAU,CAAC;IACtC,CAAC,CAAC,MAAM;MACN,OAAO;QAAEE,QAAQ,EAAE;MAAM,CAAC;IAC5B;EACF,CAAC;EACDC,UAAU,EAAEA,CAAA,KAAM;IAChB,MAAM,IAAI9B,aAAa,CAAC,+BAA+B,CAAC;EAC1D,CAAC;EACD+B,0BAA0B,EAAGC,WAAW,IAAK;IAC3C,MAAMC,IAAI,GAAG,IAAIlC,IAAI,CAAC,CAAC;IACvBkC,IAAI,CAACC,WAAW,CAACF,WAAW,CAAC;IAC7B,MAAMG,MAAM,GAAGF,IAAI,CAACG,oBAAoB,CAACJ,WAAW,CAAC;IAErD,MAAMK,WAAqB,GAAG,EAAE;IAChC,MAAMC,WAAqB,GAAG,EAAE;IAEhC,KAAK,MAAMC,IAAI,IAAIJ,MAAM,CAACK,KAAK,EAAE;MAC/B,IAAI,CAACD,IAAI,EAAE;MACX,IAAI,KAAK,IAAIA,IAAI,EAAEF,WAAW,CAACI,IAAI,CAACF,IAAI,CAACG,GAAG,CAAC;MAC7C,IAAI,KAAK,IAAIH,IAAI,EAAED,WAAW,CAACG,IAAI,CAACF,IAAI,CAACI,GAAG,CAAC;IAC/C;IAEA,OAAO;MAAEN,WAAW;MAAEC;IAAY,CAAC;EACrC;AACF,CAAC;AAID;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMM,uBAAuB,GAClCC,IAAW,IACsB;EACjC,OAAO,eAAerB,SAASA,CAACsB,CAAC,EAAEpB,GAAG,EAAE;IACtC,IAAI;MACF,MAAMC,SAAS,GAAGhC,gBAAgB,CAAC+B,GAAG,CAACqB,MAAM,EAAeF,IAAI,CAAC;MACjE,MAAMhD,MAAM,CAAC6B,GAAG,CAACE,OAAO,EAAED,SAAS,CAAC;MACpC,OAAO;QAAEE,QAAQ,EAAE,IAAI;QAAEF;MAAU,CAAC;IACtC,CAAC,CAAC,MAAM;MACN,OAAO;QAAEE,QAAQ,EAAE;MAAM,CAAC;IAC5B;EACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMmB,8BAA8B,GACzCC,aAA4B,IACG;EAC/B,OAAO,eAAeC,OAAOA,CAACzB,SAAS,EAAA0B,KAAA,EAAuB;IAAA,IAArB;MAAEJ,MAAM;MAAEK;IAAQ,CAAC,GAAAD,KAAA;IAC1D,OAAO;MACLzB,GAAG,EAAE,MAAM,IAAI9B,OAAO,CAACqD,aAAa,CAAC,CAClCI,kBAAkB,CAACN,MAAM,CAAC,CAC1BO,UAAU,CAACF,OAAO,CAAC,CACnBG,IAAI,CAAC,CAAC;MACT5B,SAAS,EACPF,SAAS,CAAClB,MAAM,KAAK,KAAK,GACtBkB,SAAS,CAACb,SAAS,GACnB,MAAMqC,aAAa,CAACO,YAAY,CAAC;IACzC,CAAC;EACH,CAAC;AACH,CAAC"}

package/lib/module/utils/crypto.js

@@ -1,10 +1,18 @@
 import { deleteKey, generate, getPublicKeyFixed, sign } from "@pagopa/io-react-native-crypto";
 import { v4 as uuidv4 } from "uuid";
-import { thumbprint } from "@pagopa/io-react-native-jwt";
-import { JWK } from "./jwk";
+import { decode, thumbprint } from "@pagopa/io-react-native-jwt";
+import { JWK, JWKS } from "./jwk";
 import { KEYUTIL, KJUR, RSAKey, X509 } from "jsrsasign";
 import { IoWalletError } from "./errors";
 
+/**
+ * Extension of the {@link CryptoContext} that adds key generation with optional key attestation.
+ *
+ * This context requires the consumer to provide an additional method for **key generation**;
+ * on Android this method should also generate a key attestation as a certificate chain
+ * to ensure the key pair is hardware-backed.
+ */
+
 /**
  * Create a CryptoContext bound to a key pair.
  * Key pair is supposed to exist already in the device's keychain.
@@ -80,10 +88,53 @@ export const getSigninJwkFromCert = pemCert => {
 };
 
 /**
- * Extension of the {@link CryptoContext} that adds key generation with optional key attestation.
+ * Retrieves the signing JWK from a x509 certificate chain.
  *
- * This context requires the consumer to provide an additional method for **key generation**;
- * on Android this method should also generate a key attestation as a certificate chain
- * to ensure the key pair is hardware-backed.
+ * @param certChain - The x509 certificate chain.
+ * @returns The signing JWK.
+ * @throws Will throw an error if no suitable keys are found.
  */
+export const getJwkFromCertificateChain = async certChain => {
+  const [leafCert] = certChain;
+  if (!leafCert) {
+    throw new IoWalletError("The provided certificate chain is invalid or malformed");
+  }
+  const pemCert = convertBase64DerToPem(leafCert);
+  return getSigninJwkFromCert(pemCert);
+};
+
+/**
+ * Retrieves the signing JWK from a trust chain of entity configuration JWTs, matching the provided signer KID.
+ *
+ * @param trustChain - The trust chain of entity configuration JWTs.
+ * @param signerKid - The KID of the signer to look for in the trust chain.
+ * @returns The signing JWK.
+ * @throws Will throw an error if no suitable keys are found.
+ */
+export const getJwkFromTrustChain = (trustChain, signerKid) => {
+  const [entityConfigurationJwt] = trustChain;
+  if (!entityConfigurationJwt) {
+    throw new IoWalletError("The provided trust chain is invalid or malformed");
+  }
+  const keys = [];
+  const decodedEntityConfigJwt = decode(entityConfigurationJwt);
+  const baseEntityConfig = decodedEntityConfigJwt.payload;
+
+  // Get top-level JWKS
+  if (baseEntityConfig.jwks) {
+    keys.push(...JWKS.parse(baseEntityConfig.jwks).keys);
+  }
+
+  // Check metadata entries for additional JWKS like openid_credential_verifier
+  if (baseEntityConfig.metadata) {
+    for (const metadata of Object.values(baseEntityConfig.metadata)) {
+      if (metadata.jwks) {
+        keys.push(...JWKS.parse(metadata.jwks).keys);
+      }
+    }
+  }
+  const federationJwk = keys.find(key => key.kid === signerKid);
+  if (!federationJwk) throw new IoWalletError("No suitable key was found in the provided trust chain");
+  return federationJwk;
+};
 //# sourceMappingURL=crypto.js.map

package/lib/module/utils/crypto.js.map

@@ -1 +1 @@
-{"version":3,"names":["deleteKey","generate","getPublicKeyFixed","sign","v4","uuidv4","thumbprint","JWK","KEYUTIL","KJUR","RSAKey","X509","IoWalletError","createCryptoContextFor","keytag","getPublicKey","then","jwk","kid","getSignature","value","withEphemeralKey","fn","ephemeralContext","finally","convertBase64DerToPem","certificate","getSigninJwkFromCert","pemCert","x509","readCertPEM","publicKey","crypto","ECDSA","parse","getJWKFromKey","use"],"sourceRoot":"../../../src","sources":["utils/crypto.ts"],"mappings":"AAAA,SACEA,SAAS,EACTC,QAAQ,EACRC,iBAAiB,EACjBC,IAAI,QACC,gCAAgC;AACvC,SAASC,EAAE,IAAIC,MAAM,QAAQ,MAAM;AACnC,SAASC,UAAU,QAA4B,6BAA6B;AAC5E,SAASC,GAAG,QAAQ,OAAO;AAC3B,SAASC,OAAO,EAAEC,IAAI,EAAEC,MAAM,EAAEC,IAAI,QAAQ,WAAW;AACvD,SAASC,aAAa,QAAQ,UAAU;;AAExC;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,sBAAsB,GAAIC,MAAc,IAAoB;EACvE,OAAO;IACL,MAAMC,YAAYA,CAAA,EAAG;MACnB,OAAOb,iBAAiB,CAACY,MAAM,CAAC,CAACE,IAAI,CAAC,MAAOC,GAAG,KAAM;QACpD,GAAGA,GAAG;QACN;QACA;QACA;QACA;QACAC,GAAG,EAAE,MAAMZ,UAAU,CAACW,GAAG;MAC3B,CAAC,CAAC,CAAC;IACL,CAAC;IACD;AACJ;AACA;AACA;AACA;AACA;IACI,MAAME,YAAYA,CAACC,KAAa,EAAE;MAChC,OAAOjB,IAAI,CAACiB,KAAK,EAAEN,MAAM,CAAC;IAC5B;EACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMO,gBAAgB,GAAG,MAC9BC,EAAmD,IACpC;EACf;EACA,MAAMR,MAAM,GAAI,aAAYT,MAAM,CAAC,CAAE,EAAC;EACtC,MAAMJ,QAAQ,CAACa,MAAM,CAAC;EACtB,MAAMS,gBAAgB,GAAGV,sBAAsB,CAACC,MAAM,CAAC;EACvD,OAAOQ,EAAE,CAACC,gBAAgB,CAAC,CAACC,OAAO,CAAC,MAAMxB,SAAS,CAACc,MAAM,CAAC,CAAC;AAC9D,CAAC;AACD;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMW,qBAAqB,GAAIC,WAAmB,IACtD,gCAA+BA,WAAY,6BAA4B;;AAE1E;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,GAAIC,OAAe,IAAU;EAC5D,MAAMC,IAAI,GAAG,IAAIlB,IAAI,CAAC,CAAC;EACvBkB,IAAI,CAACC,WAAW,CAACF,OAAO,CAAC;EACzB,MAAMG,SAAS,GAAGF,IAAI,CAACd,YAAY,CAAC,CAAC;EAErC,IAAIgB,SAAS,YAAYrB,MAAM,IAAIqB,SAAS,YAAYtB,IAAI,CAACuB,MAAM,CAACC,KAAK,EAAE;IACzE,OAAO;MACL,GAAG1B,GAAG,CAAC2B,KAAK,CAAC1B,OAAO,CAAC2B,aAAa,CAACJ,SAAS,CAAC,CAAC;MAC9CK,GAAG,EAAE;IACP,CAAC;EACH;EAEA,MAAM,IAAIxB,aAAa,CACrB,2DACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA"}
+{"version":3,"names":["deleteKey","generate","getPublicKeyFixed","sign","v4","uuidv4","decode","thumbprint","JWK","JWKS","KEYUTIL","KJUR","RSAKey","X509","IoWalletError","createCryptoContextFor","keytag","getPublicKey","then","jwk","kid","getSignature","value","withEphemeralKey","fn","ephemeralContext","finally","convertBase64DerToPem","certificate","getSigninJwkFromCert","pemCert","x509","readCertPEM","publicKey","crypto","ECDSA","parse","getJWKFromKey","use","getJwkFromCertificateChain","certChain","leafCert","getJwkFromTrustChain","trustChain","signerKid","entityConfigurationJwt","keys","decodedEntityConfigJwt","baseEntityConfig","payload","jwks","push","metadata","Object","values","federationJwk","find","key"],"sourceRoot":"../../../src","sources":["utils/crypto.ts"],"mappings":"AAAA,SACEA,SAAS,EACTC,QAAQ,EACRC,iBAAiB,EACjBC,IAAI,QACC,gCAAgC;AACvC,SAASC,EAAE,IAAIC,MAAM,QAAQ,MAAM;AACnC,SACEC,MAAM,EACNC,UAAU,QAEL,6BAA6B;AAEpC,SAASC,GAAG,EAAEC,IAAI,QAAQ,OAAO;AACjC,SAASC,OAAO,EAAEC,IAAI,EAAEC,MAAM,EAAEC,IAAI,QAAQ,WAAW;AACvD,SAASC,aAAa,QAAQ,UAAU;;AAExC;AACA;AACA;AACA;AACA;AACA;AACA;;AAYA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,sBAAsB,GAAIC,MAAc,IAAoB;EACvE,OAAO;IACL,MAAMC,YAAYA,CAAA,EAAG;MACnB,OAAOf,iBAAiB,CAACc,MAAM,CAAC,CAACE,IAAI,CAAC,MAAOC,GAAG,KAAM;QACpD,GAAGA,GAAG;QACN;QACA;QACA;QACA;QACAC,GAAG,EAAE,MAAMb,UAAU,CAACY,GAAG;MAC3B,CAAC,CAAC,CAAC;IACL,CAAC;IACD;AACJ;AACA;AACA;AACA;AACA;IACI,MAAME,YAAYA,CAACC,KAAa,EAAE;MAChC,OAAOnB,IAAI,CAACmB,KAAK,EAAEN,MAAM,CAAC;IAC5B;EACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMO,gBAAgB,GAAG,MAC9BC,EAAmD,IACpC;EACf;EACA,MAAMR,MAAM,GAAI,aAAYX,MAAM,CAAC,CAAE,EAAC;EACtC,MAAMJ,QAAQ,CAACe,MAAM,CAAC;EACtB,MAAMS,gBAAgB,GAAGV,sBAAsB,CAACC,MAAM,CAAC;EACvD,OAAOQ,EAAE,CAACC,gBAAgB,CAAC,CAACC,OAAO,CAAC,MAAM1B,SAAS,CAACgB,MAAM,CAAC,CAAC;AAC9D,CAAC;AACD;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMW,qBAAqB,GAAIC,WAAmB,IACtD,gCAA+BA,WAAY,6BAA4B;;AAE1E;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,oBAAoB,GAAIC,OAAe,IAAU;EAC5D,MAAMC,IAAI,GAAG,IAAIlB,IAAI,CAAC,CAAC;EACvBkB,IAAI,CAACC,WAAW,CAACF,OAAO,CAAC;EACzB,MAAMG,SAAS,GAAGF,IAAI,CAACd,YAAY,CAAC,CAAC;EAErC,IAAIgB,SAAS,YAAYrB,MAAM,IAAIqB,SAAS,YAAYtB,IAAI,CAACuB,MAAM,CAACC,KAAK,EAAE;IACzE,OAAO;MACL,GAAG3B,GAAG,CAAC4B,KAAK,CAAC1B,OAAO,CAAC2B,aAAa,CAACJ,SAAS,CAAC,CAAC;MAC9CK,GAAG,EAAE;IACP,CAAC;EACH;EAEA,MAAM,IAAIxB,aAAa,CACrB,2DACF,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMyB,0BAA0B,GAAG,MACxCC,SAAmB,IACF;EACjB,MAAM,CAACC,QAAQ,CAAC,GAAGD,SAAS;EAC5B,IAAI,CAACC,QAAQ,EAAE;IACb,MAAM,IAAI3B,aAAa,CACrB,wDACF,CAAC;EACH;EACA,MAAMgB,OAAO,GAAGH,qBAAqB,CAACc,QAAQ,CAAC;EAC/C,OAAOZ,oBAAoB,CAACC,OAAO,CAAC;AACtC,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMY,oBAAoB,GAAGA,CAClCC,UAAoB,EACpBC,SAAiB,KACT;EACR,MAAM,CAACC,sBAAsB,CAAC,GAAGF,UAAU;EAC3C,IAAI,CAACE,sBAAsB,EAAE;IAC3B,MAAM,IAAI/B,aAAa,CAAC,kDAAkD,CAAC;EAC7E;EAEA,MAAMgC,IAAW,GAAG,EAAE;EACtB,MAAMC,sBAAsB,GAAGzC,MAAM,CAACuC,sBAAsB,CAAC;EAC7D,MAAMG,gBAAgB,GACpBD,sBAAsB,CAACE,OAA6C;;EAEtE;EACA,IAAID,gBAAgB,CAACE,IAAI,EAAE;IACzBJ,IAAI,CAACK,IAAI,CAAC,GAAG1C,IAAI,CAAC2B,KAAK,CAACY,gBAAgB,CAACE,IAAI,CAAC,CAACJ,IAAI,CAAC;EACtD;;EAEA;EACA,IAAIE,gBAAgB,CAACI,QAAQ,EAAE;IAC7B,KAAK,MAAMA,QAAQ,IAAIC,MAAM,CAACC,MAAM,CAClCN,gBAAgB,CAACI,QACnB,CAAC,EAAE;MACD,IAAIA,QAAQ,CAACF,IAAI,EAAE;QACjBJ,IAAI,CAACK,IAAI,CAAC,GAAG1C,IAAI,CAAC2B,KAAK,CAACgB,QAAQ,CAACF,IAAI,CAAC,CAACJ,IAAI,CAAC;MAC9C;IACF;EACF;EAEA,MAAMS,aAAa,GAAGT,IAAI,CAACU,IAAI,CAAEC,GAAG,IAAKA,GAAG,CAACrC,GAAG,KAAKwB,SAAS,CAAC;EAC/D,IAAI,CAACW,aAAa,EAChB,MAAM,IAAIzC,aAAa,CACrB,uDACF,CAAC;EACH,OAAOyC,aAAa;AACtB,CAAC"}

package/lib/module/utils/x509.js

@@ -0,0 +1,28 @@
+import { verifyCertificateChain } from "@pagopa/io-react-native-crypto";
+import { X509ValidationError } from "../trust/common/errors";
+
+/**
+ * This function checks whether the x509 certificate chain is valid against a specified Certificate Authority (CA)
+ *
+ * @param x5chain The mdoc's x509 certificate chain
+ * @param x509CertRoot The Trust Anchor CA
+ * @param options Options for certificate validation
+ */
+export const verifyX509Chain = async function (x5chain, x509CertRoot) {
+  let options = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : {
+    connectTimeout: 10000,
+    readTimeout: 10000,
+    requireCrl: true
+  };
+  // Strip the trust anchor from the chain if the issuer included it,
+  // since verifyCertificateChain expects it passed separately.
+  const certChain = x5chain.length > 1 && x5chain.at(-1) === x509CertRoot ? x5chain.slice(0, -1) : x5chain;
+  const x509ValidationResult = await verifyCertificateChain(certChain, x509CertRoot, options);
+  if (!x509ValidationResult.isValid) {
+    throw new X509ValidationError(`X.509 certificate chain validation failed. Status: ${x509ValidationResult.validationStatus}. Error: ${x509ValidationResult.errorMessage}`, {
+      x509ValidationStatus: x509ValidationResult.validationStatus,
+      x509ErrorMessage: x509ValidationResult.errorMessage
+    });
+  }
+};
+//# sourceMappingURL=x509.js.map

package/lib/module/utils/x509.js.map

@@ -0,0 +1 @@
+{"version":3,"names":["verifyCertificateChain","X509ValidationError","verifyX509Chain","x5chain","x509CertRoot","options","arguments","length","undefined","connectTimeout","readTimeout","requireCrl","certChain","at","slice","x509ValidationResult","isValid","validationStatus","errorMessage","x509ValidationStatus","x509ErrorMessage"],"sourceRoot":"../../../src","sources":["utils/x509.ts"],"mappings":"AAAA,SACEA,sBAAsB,QAGjB,gCAAgC;AACvC,SAASC,mBAAmB,QAAQ,wBAAwB;;AAE5D;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,eAAe,GAAG,eAAAA,CAC7BC,OAAiB,EACjBC,YAAoB,EAMjB;EAAA,IALHC,OAA+B,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG;IAChCG,cAAc,EAAE,KAAK;IACrBC,WAAW,EAAE,KAAK;IAClBC,UAAU,EAAE;EACd,CAAC;EAED;EACA;EACA,MAAMC,SAAS,GACbT,OAAO,CAACI,MAAM,GAAG,CAAC,IAAIJ,OAAO,CAACU,EAAE,CAAC,CAAC,CAAC,CAAC,KAAKT,YAAY,GACjDD,OAAO,CAACW,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GACpBX,OAAO;EAEb,MAAMY,oBAAiD,GACrD,MAAMf,sBAAsB,CAACY,SAAS,EAAER,YAAY,EAAEC,OAAO,CAAC;EAEhE,IAAI,CAACU,oBAAoB,CAACC,OAAO,EAAE;IACjC,MAAM,IAAIf,mBAAmB,CAC1B,sDAAqDc,oBAAoB,CAACE,gBAAiB,YAAWF,oBAAoB,CAACG,YAAa,EAAC,EAC1I;MACEC,oBAAoB,EAAEJ,oBAAoB,CAACE,gBAAgB;MAC3DG,gBAAgB,EAAEL,oBAAoB,CAACG;IACzC,CACF,CAAC;EACH;AACF,CAAC"}

package/lib/module/wallet-instance-attestation/api/types.js

@@ -15,8 +15,6 @@ export const DecodedWalletInstanceAttestation = z.object({
     jwk: JWK
   }),
   sub: z.string(),
-  wallet_provider_name: z.string().optional(),
-  wallet_solution_id: z.string().optional(),
   /** @deprecated */
   wallet_link: z.string().optional(),
   /** @deprecated */

package/lib/module/wallet-instance-attestation/api/types.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","UnixTime","JWK","DecodedWalletInstanceAttestation","object","iss","string","iat","exp","cnf","jwk","sub","wallet_provider_name","optional","wallet_solution_id","wallet_link","wallet_name","aal"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/api/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,QAAQ,QAAQ,iBAAiB;AAC1C,SAASC,GAAG,QAAQ,iBAAiB;;AAErC;AACA;AACA;AACA;;AAIA,OAAO,MAAMC,gCAAgC,GAAGH,CAAC,CAACI,MAAM,CAAC;EACvDC,GAAG,EAAEL,CAAC,CAACM,MAAM,CAAC,CAAC;EACfC,GAAG,EAAEN,QAAQ;EACbO,GAAG,EAAEP,QAAQ;EACbQ,GAAG,EAAET,CAAC,CAACI,MAAM,CAAC;IAAEM,GAAG,EAAER;EAAI,CAAC,CAAC;EAC3BS,GAAG,EAAEX,CAAC,CAACM,MAAM,CAAC,CAAC;EACfM,oBAAoB,EAAEZ,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAC3CC,kBAAkB,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EACzC;EACAE,WAAW,EAAEf,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClC;EACAG,WAAW,EAAEhB,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClC;EACAI,GAAG,EAAEjB,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC;AAC3B,CAAC,CAAC"}
+{"version":3,"names":["z","UnixTime","JWK","DecodedWalletInstanceAttestation","object","iss","string","iat","exp","cnf","jwk","sub","wallet_link","optional","wallet_name","aal"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/api/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,QAAQ,QAAQ,iBAAiB;AAC1C,SAASC,GAAG,QAAQ,iBAAiB;;AAErC;AACA;AACA;AACA;;AAIA,OAAO,MAAMC,gCAAgC,GAAGH,CAAC,CAACI,MAAM,CAAC;EACvDC,GAAG,EAAEL,CAAC,CAACM,MAAM,CAAC,CAAC;EACfC,GAAG,EAAEN,QAAQ;EACbO,GAAG,EAAEP,QAAQ;EACbQ,GAAG,EAAET,CAAC,CAACI,MAAM,CAAC;IAAEM,GAAG,EAAER;EAAI,CAAC,CAAC;EAC3BS,GAAG,EAAEX,CAAC,CAACM,MAAM,CAAC,CAAC;EACf;EACAM,WAAW,EAAEZ,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClC;EACAC,WAAW,EAAEd,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC,CAAC;EAClC;EACAE,GAAG,EAAEf,CAAC,CAACM,MAAM,CAAC,CAAC,CAACO,QAAQ,CAAC;AAC3B,CAAC,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js

@@ -1,19 +1,6 @@
 import { createMapper } from "../../utils/mappers";
 import { DecodedWalletInstanceAttestation } from "../api/types";
-export const mapToDecodedWalletInstanceAttestation = createMapper(_ref => {
-  let {
-    payload
-  } = _ref;
-  const {
-    eudi_wallet_info,
-    ...rest
-  } = payload;
-  return {
-    ...rest,
-    wallet_provider_name: eudi_wallet_info.general_info.wallet_provider_name,
-    wallet_solution_id: eudi_wallet_info.general_info.wallet_solution_id
-  };
-}, {
+export const mapToDecodedWalletInstanceAttestation = createMapper(x => x.payload, {
   outputSchema: DecodedWalletInstanceAttestation
 });
 //# sourceMappingURL=mappers.js.map

package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js.map

@@ -1 +1 @@
-{"version":3,"names":["createMapper","DecodedWalletInstanceAttestation","mapToDecodedWalletInstanceAttestation","_ref","payload","eudi_wallet_info","rest","wallet_provider_name","general_info","wallet_solution_id","outputSchema"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/mappers.ts"],"mappings":"AAAA,SAASA,YAAY,QAAQ,qBAAqB;AAClD,SAASC,gCAAgC,QAAQ,cAAc;AAG/D,OAAO,MAAMC,qCAAqC,GAAGF,YAAY,CAI/DG,IAAA,IAAiB;EAAA,IAAhB;IAAEC;EAAQ,CAAC,GAAAD,IAAA;EACV,MAAM;IAAEE,gBAAgB;IAAE,GAAGC;EAAK,CAAC,GAAGF,OAAO;EAC7C,OAAO;IACL,GAAGE,IAAI;IACPC,oBAAoB,EAAEF,gBAAgB,CAACG,YAAY,CAACD,oBAAoB;IACxEE,kBAAkB,EAAEJ,gBAAgB,CAACG,YAAY,CAACC;EACpD,CAAC;AACH,CAAC,EACD;EAAEC,YAAY,EAAET;AAAiC,CACnD,CAAC"}
+{"version":3,"names":["createMapper","DecodedWalletInstanceAttestation","mapToDecodedWalletInstanceAttestation","x","payload","outputSchema"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/mappers.ts"],"mappings":"AAAA,SAASA,YAAY,QAAQ,qBAAqB;AAClD,SAASC,gCAAgC,QAAQ,cAAc;AAG/D,OAAO,MAAMC,qCAAqC,GAAGF,YAAY,CAG9DG,CAAC,IAAKA,CAAC,CAACC,OAAO,EAAE;EAClBC,YAAY,EAAEJ;AAChB,CAAC,CAAC"}

package/lib/module/wallet-instance-attestation/v1.3.3/types.js

@@ -6,13 +6,8 @@ export const WalletInstanceAttestationJwt = z.object({
   })),
   payload: z.intersection(Jwt.shape.payload, z.object({
     sub: z.string(),
-    eudi_wallet_info: z.object({
-      general_info: z.object({
-        wallet_provider_name: z.string(),
-        wallet_solution_id: z.string(),
-        wallet_solution_version: z.string()
-      })
-    })
+    wallet_link: z.string().optional(),
+    wallet_name: z.string().optional()
   }))
 });
 export const WalletInstanceAttestationResponse = z.object({

package/lib/module/wallet-instance-attestation/v1.3.3/types.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","Jwt","WalletInstanceAttestationJwt","object","header","intersection","shape","typ","literal","payload","sub","string","eudi_wallet_info","general_info","wallet_provider_name","wallet_solution_id","wallet_solution_version","WalletInstanceAttestationResponse","wallet_instance_attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,GAAG,QAAQ,iBAAiB;AAKrC,OAAO,MAAMC,4BAA4B,GAAGF,CAAC,CAACG,MAAM,CAAC;EACnDC,MAAM,EAAEJ,CAAC,CAACK,YAAY,CACpBJ,GAAG,CAACK,KAAK,CAACF,MAAM,EAChBJ,CAAC,CAACG,MAAM,CAAC;IACPI,GAAG,EAAEP,CAAC,CAACQ,OAAO,CAAC,8BAA8B;EAC/C,CAAC,CACH,CAAC;EACDC,OAAO,EAAET,CAAC,CAACK,YAAY,CACrBJ,GAAG,CAACK,KAAK,CAACG,OAAO,EACjBT,CAAC,CAACG,MAAM,CAAC;IACPO,GAAG,EAAEV,CAAC,CAACW,MAAM,CAAC,CAAC;IACfC,gBAAgB,EAAEZ,CAAC,CAACG,MAAM,CAAC;MACzBU,YAAY,EAAEb,CAAC,CAACG,MAAM,CAAC;QACrBW,oBAAoB,EAAEd,CAAC,CAACW,MAAM,CAAC,CAAC;QAChCI,kBAAkB,EAAEf,CAAC,CAACW,MAAM,CAAC,CAAC;QAC9BK,uBAAuB,EAAEhB,CAAC,CAACW,MAAM,CAAC;MACpC,CAAC;IACH,CAAC;EACH,CAAC,CACH;AACF,CAAC,CAAC;AAKF,OAAO,MAAMM,iCAAiC,GAAGjB,CAAC,CAACG,MAAM,CAAC;EACxDe,2BAA2B,EAAElB,CAAC,CAACW,MAAM,CAAC;AACxC,CAAC,CAAC"}
+{"version":3,"names":["z","Jwt","WalletInstanceAttestationJwt","object","header","intersection","shape","typ","literal","payload","sub","string","wallet_link","optional","wallet_name","WalletInstanceAttestationResponse","wallet_instance_attestation"],"sourceRoot":"../../../../src","sources":["wallet-instance-attestation/v1.3.3/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,GAAG,QAAQ,iBAAiB;AAKrC,OAAO,MAAMC,4BAA4B,GAAGF,CAAC,CAACG,MAAM,CAAC;EACnDC,MAAM,EAAEJ,CAAC,CAACK,YAAY,CACpBJ,GAAG,CAACK,KAAK,CAACF,MAAM,EAChBJ,CAAC,CAACG,MAAM,CAAC;IACPI,GAAG,EAAEP,CAAC,CAACQ,OAAO,CAAC,8BAA8B;EAC/C,CAAC,CACH,CAAC;EACDC,OAAO,EAAET,CAAC,CAACK,YAAY,CACrBJ,GAAG,CAACK,KAAK,CAACG,OAAO,EACjBT,CAAC,CAACG,MAAM,CAAC;IACPO,GAAG,EAAEV,CAAC,CAACW,MAAM,CAAC,CAAC;IACfC,WAAW,EAAEZ,CAAC,CAACW,MAAM,CAAC,CAAC,CAACE,QAAQ,CAAC,CAAC;IAClCC,WAAW,EAAEd,CAAC,CAACW,MAAM,CAAC,CAAC,CAACE,QAAQ,CAAC;EACnC,CAAC,CACH;AACF,CAAC,CAAC;AAKF,OAAO,MAAME,iCAAiC,GAAGf,CAAC,CAACG,MAAM,CAAC;EACxDa,2BAA2B,EAAEhB,CAAC,CAACW,MAAM,CAAC;AACxC,CAAC,CAAC"}

package/lib/module/wallet-unit-attestation/api/types.js

@@ -18,17 +18,6 @@ export const DecodedWalletUnitAttestation = z.object({
   user_authentication: z.array(z.string()),
   key_storage: z.array(z.string()),
   status: Status,
-  eudi_wallet_info: z.object({
-    general_info: z.object({
-      wallet_provider_name: z.string(),
-      wallet_solution_id: z.string(),
-      wallet_solution_version: z.string()
-    }),
-    key_storage_info: z.object({
-      keys_exportable: z.boolean(),
-      storage_type: z.string()
-    })
-  }),
   iss: z.string(),
   iat: UnixTime,
   exp: UnixTime

package/lib/module/wallet-unit-attestation/api/types.js.map

@@ -1 +1 @@
-{"version":3,"names":["z","UnixTime","JWK","Status","object","status_list","idx","number","uri","string","DecodedWalletUnitAttestation","attested_keys","array","user_authentication","key_storage","status","eudi_wallet_info","general_info","wallet_provider_name","wallet_solution_id","wallet_solution_version","key_storage_info","keys_exportable","boolean","storage_type","iss","iat","exp"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/api/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,QAAQ,QAAQ,iBAAiB;AAC1C,SAASC,GAAG,QAAQ,iBAAiB;AAErC,MAAMC,MAAM,GAAGH,CAAC,CAACI,MAAM,CAAC;EACtBC,WAAW,EAAEL,CAAC,CAACI,MAAM,CAAC;IACpBE,GAAG,EAAEN,CAAC,CAACO,MAAM,CAAC,CAAC;IACfC,GAAG,EAAER,CAAC,CAACS,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;;AAEF;AACA;AACA;AACA;;AAIA,OAAO,MAAMC,4BAA4B,GAAGV,CAAC,CAACI,MAAM,CAAC;EACnDO,aAAa,EAAEX,CAAC,CAACY,KAAK,CAACV,GAAG,CAAC;EAC3BW,mBAAmB,EAAEb,CAAC,CAACY,KAAK,CAACZ,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;EACxCK,WAAW,EAAEd,CAAC,CAACY,KAAK,CAACZ,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;EAChCM,MAAM,EAAEZ,MAAM;EACda,gBAAgB,EAAEhB,CAAC,CAACI,MAAM,CAAC;IACzBa,YAAY,EAAEjB,CAAC,CAACI,MAAM,CAAC;MACrBc,oBAAoB,EAAElB,CAAC,CAACS,MAAM,CAAC,CAAC;MAChCU,kBAAkB,EAAEnB,CAAC,CAACS,MAAM,CAAC,CAAC;MAC9BW,uBAAuB,EAAEpB,CAAC,CAACS,MAAM,CAAC;IACpC,CAAC,CAAC;IACFY,gBAAgB,EAAErB,CAAC,CAACI,MAAM,CAAC;MACzBkB,eAAe,EAAEtB,CAAC,CAACuB,OAAO,CAAC,CAAC;MAC5BC,YAAY,EAAExB,CAAC,CAACS,MAAM,CAAC;IACzB,CAAC;EACH,CAAC,CAAC;EACFgB,GAAG,EAAEzB,CAAC,CAACS,MAAM,CAAC,CAAC;EACfiB,GAAG,EAAEzB,QAAQ;EACb0B,GAAG,EAAE1B;AACP,CAAC,CAAC"}
+{"version":3,"names":["z","UnixTime","JWK","Status","object","status_list","idx","number","uri","string","DecodedWalletUnitAttestation","attested_keys","array","user_authentication","key_storage","status","iss","iat","exp"],"sourceRoot":"../../../../src","sources":["wallet-unit-attestation/api/types.ts"],"mappings":"AAAA,OAAO,KAAKA,CAAC,MAAM,KAAK;AACxB,SAASC,QAAQ,QAAQ,iBAAiB;AAC1C,SAASC,GAAG,QAAQ,iBAAiB;AAErC,MAAMC,MAAM,GAAGH,CAAC,CAACI,MAAM,CAAC;EACtBC,WAAW,EAAEL,CAAC,CAACI,MAAM,CAAC;IACpBE,GAAG,EAAEN,CAAC,CAACO,MAAM,CAAC,CAAC;IACfC,GAAG,EAAER,CAAC,CAACS,MAAM,CAAC;EAChB,CAAC;AACH,CAAC,CAAC;;AAEF;AACA;AACA;AACA;;AAIA,OAAO,MAAMC,4BAA4B,GAAGV,CAAC,CAACI,MAAM,CAAC;EACnDO,aAAa,EAAEX,CAAC,CAACY,KAAK,CAACV,GAAG,CAAC;EAC3BW,mBAAmB,EAAEb,CAAC,CAACY,KAAK,CAACZ,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;EACxCK,WAAW,EAAEd,CAAC,CAACY,KAAK,CAACZ,CAAC,CAACS,MAAM,CAAC,CAAC,CAAC;EAChCM,MAAM,EAAEZ,MAAM;EACda,GAAG,EAAEhB,CAAC,CAACS,MAAM,CAAC,CAAC;EACfQ,GAAG,EAAEhB,QAAQ;EACbiB,GAAG,EAAEjB;AACP,CAAC,CAAC"}

package/lib/typescript/credential/issuance/api/05-obtain-credential.d.ts

@@ -34,5 +34,25 @@ export interface ObtainCredentialApi {
         credential: string;
         format: CredentialFormat;
     }>;
+    /**
+     * Obtains a batch of credentials from the issuer.
+     * The batch includes the same credential format and dataset with different cryptographic data.
+     * For this reason, the function accepts a list of {@link CryptoContext}; the rest of the parameters are the same as {@link obtainCredential}.
+     * @since 1.3.3
+     *
+     * @returns The list of credentials issued in the batch.
+     */
+    obtainCredentialsBatch(issuerConf: IssuerConfig, accessToken: Out<AuthorizeAccessApi["authorizeAccess"]>["accessToken"], clientId: string, credentialDefinition: {
+        credential_configuration_id: string;
+        credential_identifier: string;
+    }, context: {
+        dPopCryptoContext: CryptoContext;
+        credentialCryptoContexts: CryptoContext[];
+        walletUnitAttestation?: string;
+        appFetch?: GlobalFetch["fetch"];
+    }): Promise<{
+        credential: string;
+        format: CredentialFormat;
+    }[]>;
 }
 //# sourceMappingURL=05-obtain-credential.d.ts.map

package/lib/typescript/credential/issuance/api/05-obtain-credential.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"05-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/05-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAChE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEhD,MAAM,WAAW,mBAAmB;IAClC;;;;;;;;;;;;;;;;;OAiBG;IACH,gBAAgB,CACd,UAAU,EAAE,YAAY,EACxB,WAAW,EAAE,GAAG,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC,CAAC,aAAa,CAAC,EACtE,QAAQ,EAAE,MAAM,EAChB,oBAAoB,EAAE;QACpB,2BAA2B,EAAE,MAAM,CAAC;QACpC,qBAAqB,CAAC,EAAE,MAAM,CAAC;KAChC,EACD,OAAO,EAAE;QACP,iBAAiB,EAAE,aAAa,CAAC;QACjC,uBAAuB,EAAE,aAAa,CAAC;QACvC,qBAAqB,CAAC,EAAE,MAAM,CAAC;QAC/B,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;KACjC,GACA,OAAO,CAAC;QACT,UAAU,EAAE,MAAM,CAAC;QACnB,MAAM,EAAE,gBAAgB,CAAC;KAC1B,CAAC,CAAC;CACJ"}
+{"version":3,"file":"05-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/05-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,uBAAuB,CAAC;AAChE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEhD,MAAM,WAAW,mBAAmB;IAClC;;;;;;;;;;;;;;;;;OAiBG;IACH,gBAAgB,CACd,UAAU,EAAE,YAAY,EACxB,WAAW,EAAE,GAAG,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC,CAAC,aAAa,CAAC,EACtE,QAAQ,EAAE,MAAM,EAChB,oBAAoB,EAAE;QACpB,2BAA2B,EAAE,MAAM,CAAC;QACpC,qBAAqB,CAAC,EAAE,MAAM,CAAC;KAChC,EACD,OAAO,EAAE;QACP,iBAAiB,EAAE,aAAa,CAAC;QACjC,uBAAuB,EAAE,aAAa,CAAC;QACvC,qBAAqB,CAAC,EAAE,MAAM,CAAC;QAC/B,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;KACjC,GACA,OAAO,CAAC;QACT,UAAU,EAAE,MAAM,CAAC;QACnB,MAAM,EAAE,gBAAgB,CAAC;KAC1B,CAAC,CAAC;IAEH;;;;;;;OAOG;IACH,sBAAsB,CACpB,UAAU,EAAE,YAAY,EACxB,WAAW,EAAE,GAAG,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC,CAAC,aAAa,CAAC,EACtE,QAAQ,EAAE,MAAM,EAChB,oBAAoB,EAAE;QACpB,2BAA2B,EAAE,MAAM,CAAC;QACpC,qBAAqB,EAAE,MAAM,CAAC;KAC/B,EACD,OAAO,EAAE;QACP,iBAAiB,EAAE,aAAa,CAAC;QACjC,wBAAwB,EAAE,aAAa,EAAE,CAAC;QAC1C,qBAAqB,CAAC,EAAE,MAAM,CAAC;QAC/B,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;KACjC,GACA,OAAO,CAAC;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,gBAAgB,CAAA;KAAE,EAAE,CAAC,CAAC;CAChE"}

package/lib/typescript/credential/issuance/api/06-verify-and-parse-credential.d.ts

@@ -27,6 +27,10 @@ export interface VerifyAndParseCredentialApi {
          * Include attributes that are not explicitly mapped in the issuer configuration.
          */
         includeUndefinedAttributes?: boolean;
+        /**
+         * Validate the certificate chain of the credential against the provided `x509CertRoot`.
+         */
+        validateCertificateChain?: boolean;
     }, x509CertRoot?: string): Promise<{
         parsedCredential: ParsedCredential;
         expiration: Date;

package/lib/typescript/credential/issuance/api/06-verify-and-parse-credential.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"06-verify-and-parse-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/06-verify-and-parse-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEhD,MAAM,WAAW,2BAA2B;IAC1C;;;;;;;;;;;;;;OAcG;IACH,wBAAwB,CACtB,UAAU,EAAE,YAAY,EACxB,UAAU,EAAE,MAAM,EAClB,yBAAyB,EAAE,MAAM,EACjC,OAAO,EAAE;QACP,uBAAuB,EAAE,aAAa,CAAC;QACvC;;WAEG;QACH,uBAAuB,CAAC,EAAE,OAAO,CAAC;QAClC;;WAEG;QACH,0BAA0B,CAAC,EAAE,OAAO,CAAC;KACtC,EACD,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CAAC;QACT,gBAAgB,EAAE,gBAAgB,CAAC;QACnC,UAAU,EAAE,IAAI,CAAC;QACjB,QAAQ,EAAE,IAAI,GAAG,SAAS,CAAC;KAC5B,CAAC,CAAC;CACJ"}
+{"version":3,"file":"06-verify-and-parse-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/api/06-verify-and-parse-credential.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AACnD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAEhD,MAAM,WAAW,2BAA2B;IAC1C;;;;;;;;;;;;;;OAcG;IACH,wBAAwB,CACtB,UAAU,EAAE,YAAY,EACxB,UAAU,EAAE,MAAM,EAClB,yBAAyB,EAAE,MAAM,EACjC,OAAO,EAAE;QACP,uBAAuB,EAAE,aAAa,CAAC;QACvC;;WAEG;QACH,uBAAuB,CAAC,EAAE,OAAO,CAAC;QAClC;;WAEG;QACH,0BAA0B,CAAC,EAAE,OAAO,CAAC;QACrC;;WAEG;QACH,wBAAwB,CAAC,EAAE,OAAO,CAAC;KACpC,EACD,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CAAC;QACT,gBAAgB,EAAE,gBAAgB,CAAC;QACnC,UAAU,EAAE,IAAI,CAAC;QACjB,QAAQ,EAAE,IAAI,GAAG,SAAS,CAAC;KAC5B,CAAC,CAAC;CACJ"}

package/lib/typescript/credential/issuance/common/02-start-user-authorization.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"02-start-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/common/02-start-user-authorization.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,mBAAmB,EAAE,MAAM,oBAAoB,CAAC;AACzD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAE3C,KAAK,YAAY,GAAG,OAAO,GAAG,eAAe,CAAC;AAE9C;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,GACrC,YAAY,YAAY,EACxB,cAAc,MAAM,KACnB,mBAmBF,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,kBAAkB,GAC7B,YAAY,YAAY,EACxB,eAAe,MAAM,EAAE,KACtB,YAsCF,CAAC"}
+{"version":3,"file":"02-start-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/common/02-start-user-authorization.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,mBAAmB,EAAE,MAAM,oBAAoB,CAAC;AACzD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAE3C,KAAK,YAAY,GAAG,OAAO,GAAG,eAAe,CAAC;AAE9C;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,GACrC,YAAY,YAAY,EACxB,cAAc,MAAM,KACnB,mBAmBF,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,kBAAkB,GAC7B,YAAY,YAAY,EACxB,eAAe,MAAM,EAAE,KACtB,YAwCF,CAAC"}

package/lib/typescript/credential/issuance/common/06-verify-and-parse-credential.sdjwt.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"06-verify-and-parse-credential.sdjwt.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/common/06-verify-and-parse-credential.sdjwt.ts"],"names":[],"mappings":"AAaA,OAAO,KAAK,EAAE,WAAW,EAAkC,MAAM,QAAQ,CAAC;AAuL1E,eAAO,MAAM,6BAA6B,EAAE,WAAW,CAAC,0BAA0B,CAiE/E,CAAC"}
+{"version":3,"file":"06-verify-and-parse-credential.sdjwt.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/common/06-verify-and-parse-credential.sdjwt.ts"],"names":[],"mappings":"AAeA,OAAO,KAAK,EAAE,WAAW,EAAkC,MAAM,QAAQ,CAAC;AAyM1E,eAAO,MAAM,6BAA6B,EAAE,WAAW,CAAC,0BAA0B,CA8E/E,CAAC"}

package/lib/typescript/credential/issuance/mrtd-pop/02-init-challenge.d.ts

@@ -1,3 +1,14 @@
+import { IoWalletSdkConfig } from "@pagopa/io-wallet-utils";
 import type { MRTDPoPApi } from "../api/mrtd-pop";
-export declare const initChallenge: MRTDPoPApi["initChallenge"];
+type Config = {
+    sdkConfig: IoWalletSdkConfig;
+};
+/**
+ * Factory function to create `initChallenge` for MRTD PoP flow.
+ * The factory is needed to inject version specific SDK configuration.
+ * @param config Configuration object containing the IO Wallet SDK configuration
+ * @returns `initChallenge` function compliant with the public API
+ */
+export declare function createInitChallenge(config: Config): MRTDPoPApi["initChallenge"];
+export {};
 //# sourceMappingURL=02-init-challenge.d.ts.map

package/lib/typescript/credential/issuance/mrtd-pop/02-init-challenge.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"02-init-challenge.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/mrtd-pop/02-init-challenge.ts"],"names":[],"mappings":"AAWA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAGlD,eAAO,MAAM,aAAa,EAAE,UAAU,CAAC,eAAe,CA2CrD,CAAC"}
+{"version":3,"file":"02-init-challenge.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/mrtd-pop/02-init-challenge.ts"],"names":[],"mappings":"AAIA,OAAO,EACL,iBAAiB,EAElB,MAAM,yBAAyB,CAAC;AAOjC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAOlD,KAAK,MAAM,GAAG;IACZ,SAAS,EAAE,iBAAiB,CAAC;CAC9B,CAAC;AAEF;;;;;GAKG;AACH,wBAAgB,mBAAmB,CACjC,MAAM,EAAE,MAAM,GACb,UAAU,CAAC,eAAe,CAAC,CAgD7B"}

package/lib/typescript/credential/issuance/mrtd-pop/03-validate-challenge.d.ts

@@ -1,4 +1,15 @@
+import type { IoWalletSdkConfig } from "@pagopa/io-wallet-utils";
 import type { MRTDPoPApi } from "../api/mrtd-pop";
-export declare const validateChallenge: MRTDPoPApi["validateChallenge"];
+type Config = {
+    sdkConfig: IoWalletSdkConfig;
+};
+/**
+ * Factory function to create `validateChallenge` for MRTD PoP flow.
+ * The factory is needed to inject version specific SDK configuration.
+ * @param config Configuration object containing the IO Wallet SDK configuration
+ * @returns `validateChallenge` function compliant with the public API
+ */
+export declare function createValidateChallenge(config: Config): MRTDPoPApi["validateChallenge"];
 export declare const buildChallengeCallbackUrl: MRTDPoPApi["buildChallengeCallbackUrl"];
+export {};
 //# sourceMappingURL=03-validate-challenge.d.ts.map

package/lib/typescript/credential/issuance/mrtd-pop/03-validate-challenge.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"03-validate-challenge.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/mrtd-pop/03-validate-challenge.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAElD,eAAO,MAAM,iBAAiB,EAAE,UAAU,CAAC,mBAAmB,CA+D7D,CAAC;AAEF,eAAO,MAAM,yBAAyB,EAAE,UAAU,CAAC,2BAA2B,CAS3E,CAAC"}
+{"version":3,"file":"03-validate-challenge.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/mrtd-pop/03-validate-challenge.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAMjE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAElD,KAAK,MAAM,GAAG;IACZ,SAAS,EAAE,iBAAiB,CAAC;CAC9B,CAAC;AAEF;;;;;GAKG;AACH,wBAAgB,uBAAuB,CACrC,MAAM,EAAE,MAAM,GACb,UAAU,CAAC,mBAAmB,CAAC,CAqEjC;AAED,eAAO,MAAM,yBAAyB,EAAE,UAAU,CAAC,2BAA2B,CAS3E,CAAC"}

package/lib/typescript/credential/issuance/mrtd-pop/index.d.ts

@@ -1,3 +1,4 @@
 import type { MRTDPoPApi } from "../api/mrtd-pop";
-export declare const MRTDPoP: MRTDPoPApi;
+export declare const MRTDPoPv1_0: MRTDPoPApi;
+export declare const MRTDPoPv1_3: MRTDPoPApi;
 //# sourceMappingURL=index.d.ts.map

package/lib/typescript/credential/issuance/mrtd-pop/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/mrtd-pop/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAQlD,eAAO,MAAM,OAAO,EAAE,UAKrB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/mrtd-pop/index.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAQlD,eAAO,MAAM,WAAW,EAAE,UAKzB,CAAC;AAEF,eAAO,MAAM,WAAW,EAAE,UAKzB,CAAC"}

package/lib/typescript/credential/issuance/v1.0.0/03-complete-user-authorization.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"03-complete-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/03-complete-user-authorization.ts"],"names":[],"mappings":"AAAA,OAAO,EAIL,KAAK,mBAAmB,EACzB,MAAM,qBAAqB,CAAC;AAgB7B,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAG1C,eAAO,MAAM,6CAA6C,EAAE,WAAW,CAAC,+CAA+C,CA4BpH,CAAC;AAEJ,eAAO,MAAM,qBAAqB,EAAE,WAAW,CAAC,uBAAuB,CAgBpE,CAAC;AAEJ,eAAO,MAAM,sCAAsC,EAAE,WAAW,CAAC,wCAAwC,CAStG,CAAC;AAEJ,eAAO,MAAM,mCAAmC,EAAE,WAAW,CAAC,qCAAqC,CAqChG,CAAC;AAEJ,eAAO,MAAM,4CAA4C,EAAE,WAAW,CAAC,8CAA8C,CAgFlH,CAAC;AAEJ;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,GACrC,SAAS,OAAO,KACf,mBAqBF,CAAC"}
+{"version":3,"file":"03-complete-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/03-complete-user-authorization.ts"],"names":[],"mappings":"AAAA,OAAO,EAIL,KAAK,mBAAmB,EACzB,MAAM,qBAAqB,CAAC;AAgB7B,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAG1C,eAAO,MAAM,6CAA6C,EAAE,WAAW,CAAC,+CAA+C,CA4BpH,CAAC;AAEJ,eAAO,MAAM,qBAAqB,EAAE,WAAW,CAAC,uBAAuB,CAgBpE,CAAC;AAEJ,eAAO,MAAM,sCAAsC,EAAE,WAAW,CAAC,wCAAwC,CAStG,CAAC;AAEJ,eAAO,MAAM,mCAAmC,EAAE,WAAW,CAAC,qCAAqC,CA0ChG,CAAC;AAEJ,eAAO,MAAM,4CAA4C,EAAE,WAAW,CAAC,8CAA8C,CAgFlH,CAAC;AAEJ;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,GACrC,SAAS,OAAO,KACf,mBAqBF,CAAC"}

package/lib/typescript/credential/issuance/v1.0.0/05-obtain-credential.d.ts

@@ -2,4 +2,5 @@ import { type CryptoContext } from "@pagopa/io-react-native-jwt";
 import type { IssuanceApi } from "../api";
 export declare const createNonceProof: (nonce: string, issuer: string, audience: string, ctx: CryptoContext) => Promise<string>;
 export declare const obtainCredential: IssuanceApi["obtainCredential"];
+export declare const obtainCredentialsBatch: IssuanceApi["obtainCredentialsBatch"];
 //# sourceMappingURL=05-obtain-credential.d.ts.map

package/lib/typescript/credential/issuance/v1.0.0/05-obtain-credential.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"05-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/05-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,aAAa,EAGnB,MAAM,6BAA6B,CAAC;AAYrC,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAG1C,eAAO,MAAM,gBAAgB,GAC3B,OAAO,MAAM,EACb,QAAQ,MAAM,EACd,UAAU,MAAM,EAChB,KAAK,aAAa,KACjB,OAAO,CAAC,MAAM,CAehB,CAAC;AAEF,eAAO,MAAM,gBAAgB,EAAE,WAAW,CAAC,kBAAkB,CAsI5D,CAAC"}
+{"version":3,"file":"05-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/05-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,aAAa,EAGnB,MAAM,6BAA6B,CAAC;AAarC,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAG1C,eAAO,MAAM,gBAAgB,GAC3B,OAAO,MAAM,EACb,QAAQ,MAAM,EACd,UAAU,MAAM,EAChB,KAAK,aAAa,KACjB,OAAO,CAAC,MAAM,CAehB,CAAC;AAEF,eAAO,MAAM,gBAAgB,EAAE,WAAW,CAAC,kBAAkB,CAsI5D,CAAC;AAsCF,eAAO,MAAM,sBAAsB,EAAE,WAAW,CAAC,wBAAwB,CAGtE,CAAC"}

package/lib/typescript/credential/issuance/v1.0.0/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAe1C,eAAO,MAAM,QAAQ,EAAE,WAYtB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAkB1C,eAAO,MAAM,QAAQ,EAAE,WAatB,CAAC"}

package/lib/typescript/credential/issuance/v1.0.0/mappers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"mappers.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/mappers.ts"],"names":[],"mappings":"AAIA,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAwB5B,CAAC"}
+{"version":3,"file":"mappers.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.0.0/mappers.ts"],"names":[],"mappings":"AAIA,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA2B5B,CAAC"}

package/lib/typescript/credential/issuance/v1.3.3/01-evaluate-issuer-trust.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"01-evaluate-issuer-trust.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/01-evaluate-issuer-trust.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAG1C,eAAO,MAAM,mBAAmB,EAAE,WAAW,CAAC,qBAAqB,CAclE,CAAC"}
+{"version":3,"file":"01-evaluate-issuer-trust.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/01-evaluate-issuer-trust.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAG1C,eAAO,MAAM,mBAAmB,EAAE,WAAW,CAAC,qBAAqB,CAalE,CAAC"}

package/lib/typescript/credential/issuance/v1.3.3/02-start-user-authorization.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"02-start-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/02-start-user-authorization.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAS1C,eAAO,MAAM,sBAAsB,EAAE,WAAW,CAAC,wBAAwB,CA4FtE,CAAC"}
+{"version":3,"file":"02-start-user-authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/02-start-user-authorization.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAS1C,eAAO,MAAM,sBAAsB,EAAE,WAAW,CAAC,wBAAwB,CA+FtE,CAAC"}

package/lib/typescript/credential/issuance/v1.3.3/04-authorize-access.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"04-authorize-access.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/04-authorize-access.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,WAAW,EAAiB,MAAM,QAAQ,CAAC;AAEzD,eAAO,MAAM,eAAe,EAAE,WAAW,CAAC,iBAAiB,CA0E1D,CAAC"}
+{"version":3,"file":"04-authorize-access.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/04-authorize-access.ts"],"names":[],"mappings":"AAYA,OAAO,KAAK,EAAE,WAAW,EAAiB,MAAM,QAAQ,CAAC;AAEzD,eAAO,MAAM,eAAe,EAAE,WAAW,CAAC,iBAAiB,CA0E1D,CAAC"}

package/lib/typescript/credential/issuance/v1.3.3/05-obtain-credential.d.ts

@@ -1,5 +1,26 @@
 import { type CryptoContext } from "@pagopa/io-react-native-jwt";
-import type { IssuanceApi } from "../api";
-export declare const createNonceProof: (nonce: string, issuer: string, audience: string, ctx: CryptoContext) => Promise<string>;
+import { type Out } from "../../../utils/misc";
+import type { IssuanceApi, IssuerConfig } from "../api";
+import type { AuthorizeAccessApi } from "../api/04-authorize-access";
+type CreateRequestParams = {
+    clientId: string;
+    credentialIdentifier: string;
+    accessToken: Out<AuthorizeAccessApi["authorizeAccess"]>["accessToken"];
+    issuerConf: IssuerConfig;
+    dPopCryptoContext: CryptoContext;
+    credentialCryptoContexts: CryptoContext[];
+    keyAttestationJwt: string;
+    appFetch?: GlobalFetch["fetch"];
+};
+/**
+ * Helper to create a credential request and fetch it from the issuer.
+ *
+ * When multiple keys are provided as {@link CryptoContext}, a batch is requested.
+ *
+ * @returns The raw credential response
+ */
+export declare const requestCredentials: ({ issuerConf, accessToken, credentialIdentifier, clientId, keyAttestationJwt, credentialCryptoContexts, dPopCryptoContext, appFetch, }: CreateRequestParams) => Promise<import("@pagopa/io-wallet-oid4vci").CredentialResponse>;
 export declare const obtainCredential: IssuanceApi["obtainCredential"];
+export declare const obtainCredentialsBatch: IssuanceApi["obtainCredentialsBatch"];
+export {};
 //# sourceMappingURL=05-obtain-credential.d.ts.map

package/lib/typescript/credential/issuance/v1.3.3/05-obtain-credential.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"05-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/05-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,aAAa,EAAW,MAAM,6BAA6B,CAAC;AAkB1E,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAG1C,eAAO,MAAM,gBAAgB,GAC3B,OAAO,MAAM,EACb,QAAQ,MAAM,EACd,UAAU,MAAM,EAChB,KAAK,aAAa,KACjB,OAAO,CAAC,MAAM,CAehB,CAAC;AAEF,eAAO,MAAM,gBAAgB,EAAE,WAAW,CAAC,kBAAkB,CAiI5D,CAAC"}
+{"version":3,"file":"05-obtain-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/05-obtain-credential.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,aAAa,EAAW,MAAM,6BAA6B,CAAC;AAY1E,OAAO,EAAoB,KAAK,GAAG,EAAE,MAAM,qBAAqB,CAAC;AAcjE,OAAO,KAAK,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAExD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAErE,KAAK,mBAAmB,GAAG;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,WAAW,EAAE,GAAG,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC;IACvE,UAAU,EAAE,YAAY,CAAC;IACzB,iBAAiB,EAAE,aAAa,CAAC;IACjC,wBAAwB,EAAE,aAAa,EAAE,CAAC;IAC1C,iBAAiB,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAC;CACjC,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,kBAAkB,GAAU,wIAStC,mBAAmB,oEA2FrB,CAAC;AAEF,eAAO,MAAM,gBAAgB,EAAE,WAAW,CAAC,kBAAkB,CAwE5D,CAAC;AAEF,eAAO,MAAM,sBAAsB,EAAE,WAAW,CAAC,wBAAwB,CA2CtE,CAAC"}

package/lib/typescript/credential/issuance/v1.3.3/06-verify-and-parse-credential.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"06-verify-and-parse-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/06-verify-and-parse-credential.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAI1C,eAAO,MAAM,wBAAwB,EAAE,WAAW,CAAC,0BAA0B,CAuC1E,CAAC"}
+{"version":3,"file":"06-verify-and-parse-credential.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/06-verify-and-parse-credential.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAI1C,eAAO,MAAM,wBAAwB,EAAE,WAAW,CAAC,0BAA0B,CAwC1E,CAAC"}

package/lib/typescript/credential/issuance/v1.3.3/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAe1C,eAAO,MAAM,QAAQ,EAAE,WAYtB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AAkB1C,eAAO,MAAM,QAAQ,EAAE,WAatB,CAAC"}

package/lib/typescript/credential/issuance/v1.3.3/mappers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"mappers.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/mappers.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,0BAA0B,CAAC;AAI7E,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kCAAkC,CAAC;AA8BtE,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;mBAqDy4vM,CAAC;uBAA6C,CAAC;mBAA2C,CAAC;mBAAyC,CAAC;mBAA2C,CAAC;0BAAgD,CAAC;mBAAyC,CAAC;;;;;;gCAA+K,CAAC;2BAAmD,CAAC;8BAAoD,CAAC;wBAA4B,CAAC;yBAAiD,CAAC;;;;;sCAA0K,CAAC;;;;;;;;;;;;;;;;;2BAA80B,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;;;;;;oCAAilB,CAAC;;;;;;;;;;;;;;8BAAqhB,CAAC;;mCAAqG,CAAC;;;2CAA6I,CAAC;;qCAAwG,CAAC;8BAAqD,CAAC;;+BAA0G,CAAC;;;4CAAsI,CAAC;4CAAkE,CAAC;;wCAAyF,CAAC;+CAAqE,CAAC;;uCAAwG,CAAC;gCAAsD,CAAC;;wCAAyF,CAAC;+CAAqE,CAAC;;2CAA4G,CAAC;;wCAAyF,CAAC;+CAAqE,CAAC;;;;;;;;;qDAA0d,CAAC;2CAA+C,CAAC;mDAA+J,CAAC;;;;;;;;;;;;;;2BAAskB,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;qCAAwN,CAAC;yCAAiE,CAAC;;;4CAAuH,CAAC;uBAA6C,CAAC;;;oCAA8G,CAAC;oCAA0D,CAAC;;gCAAyE,CAAC;uCAA6D,CAAC;;+BAAwF,CAAC;wBAA8C,CAAC;;gCAAyE,CAAC;uCAA6D,CAAC;;mCAA4F,CAAC;;gCAAyE,CAAC;uCAA6D,CAAC;;;8BAAwH,CAAC;qCAA2D,CAAC;gDAAsE,CAAC;;sCAAuF,CAAC;;;;;;;;;;;2BAAqa,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;uBAAmQ,CAAC;yCAAiE,CAAC;yCAAiE,CAAC;uCAA+D,CAAC;uCAA+D,CAAC;;gCAA4E,CAAC;;6BAA8E,CAAC;;wBAAkE,CAAC;4BAAoD,CAAC;wBAA8C,CAAC;wBAA8C,CAAC;iCAAuD,CAAC;0BAAgD,CAAC;+BAAqD,CAAC;yCAA+D,CAAC;mDAAyE,CAAC;wCAA8D,CAAC;2CAAiE,CAAC;8CAAoE,CAAC;mDAAyE,CAAC;qDAA2E,CAAC;oBAA0C,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;uBAAqG,CAAC;;2BAA4E,CAAC;;;;;;;;;;;;;;;;oBAA0uB,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;wBAAsG,CAAC;+BAAqD,CAAC;;;sCAAqG,CAAC;;;;;;;;;;;;;;2BAAunB,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;;;;;6CAAmlB,CAAC;;oCAAsF,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;2BAAuuD,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;;;qCAA2a,CAAC;;sCAAyF,CAAC;;;;;;;;;;;;;2BAAyhB,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;uBAAuN,CAAC;uCAA+D,CAAC;;gCAA4E,CAAC;;6BAA8E,CAAC;;wBAAkE,CAAC;4BAAoD,CAAC;wBAA8C,CAAC;wBAA8C,CAAC;iCAAuD,CAAC;0BAAgD,CAAC;+BAAqD,CAAC;yCAA+D,CAAC;mDAAyE,CAAC;wCAA8D,CAAC;2CAAiE,CAAC;8CAAoE,CAAC;mDAAyE,CAAC;qDAA2E,CAAC;oBAA0C,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;uBAAqG,CAAC;;2BAA4E,CAAC;;oBAA8D,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;wBAAsG,CAAC;+BAAqD,CAAC;;;;eAAiJ,CAAC;mBAA8B,CAAC;qBAAgC,CAAC;kBAA6B,CAAC;qBAAgC,CAAC;uBAAkC,CAAC;iBAA4B,CAAC;;;;;;;;;;;uBAAwc,CAAC;2BAAiD,CAAC;uBAA+C,CAAC;uBAA6C,CAAC;uBAA+C,CAAC;8BAAoD,CAAC;uBAA6C,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAf/h5N,CAAC;AAEF,eAAO,MAAM,kBAAkB,wDAY5B,CAAC"}
+{"version":3,"file":"mappers.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/v1.3.3/mappers.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,0BAA0B,CAAC;AAI7E,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kCAAkC,CAAC;AA8BtE,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;mBAwDi3vM,CAAC;uBAA6C,CAAC;mBAA2C,CAAC;mBAAyC,CAAC;mBAA2C,CAAC;0BAAgD,CAAC;mBAAyC,CAAC;;;;;;gCAA+K,CAAC;2BAAmD,CAAC;8BAAoD,CAAC;wBAA4B,CAAC;yBAAiD,CAAC;;;;;sCAA0K,CAAC;;;;;;;;;;;;;;;;;2BAA80B,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;;;;;;oCAAilB,CAAC;;;;;;;;;;;;;;8BAAqhB,CAAC;;mCAAqG,CAAC;;;2CAA6I,CAAC;;qCAAwG,CAAC;8BAAqD,CAAC;;+BAA0G,CAAC;;;4CAAsI,CAAC;4CAAkE,CAAC;;wCAAyF,CAAC;+CAAqE,CAAC;;uCAAwG,CAAC;gCAAsD,CAAC;;wCAAyF,CAAC;+CAAqE,CAAC;;2CAA4G,CAAC;;wCAAyF,CAAC;+CAAqE,CAAC;;;;;;;;;qDAA0d,CAAC;2CAA+C,CAAC;mDAA+J,CAAC;;;;;;;;;;;;;;2BAAskB,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;qCAAwN,CAAC;yCAAiE,CAAC;;;4CAAuH,CAAC;uBAA6C,CAAC;;;oCAA8G,CAAC;oCAA0D,CAAC;;gCAAyE,CAAC;uCAA6D,CAAC;;+BAAwF,CAAC;wBAA8C,CAAC;;gCAAyE,CAAC;uCAA6D,CAAC;;mCAA4F,CAAC;;gCAAyE,CAAC;uCAA6D,CAAC;;;8BAAwH,CAAC;qCAA2D,CAAC;gDAAsE,CAAC;;sCAAuF,CAAC;;;;;;;;;;;2BAAqa,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;uBAAmQ,CAAC;yCAAiE,CAAC;yCAAiE,CAAC;uCAA+D,CAAC;uCAA+D,CAAC;;gCAA4E,CAAC;;6BAA8E,CAAC;;wBAAkE,CAAC;4BAAoD,CAAC;wBAA8C,CAAC;wBAA8C,CAAC;iCAAuD,CAAC;0BAAgD,CAAC;+BAAqD,CAAC;yCAA+D,CAAC;mDAAyE,CAAC;wCAA8D,CAAC;2CAAiE,CAAC;8CAAoE,CAAC;mDAAyE,CAAC;qDAA2E,CAAC;oBAA0C,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;uBAAqG,CAAC;;2BAA4E,CAAC;;;;;;;;;;;;;;;;oBAA0uB,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;wBAAsG,CAAC;+BAAqD,CAAC;;;sCAAqG,CAAC;;;;;;;;;;;;;;2BAAunB,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;;;;;6CAAmlB,CAAC;;oCAAsF,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;2BAAuuD,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;;;;qCAA2a,CAAC;;sCAAyF,CAAC;;;;;;;;;;;;;2BAAyhB,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;;;;uBAAuN,CAAC;uCAA+D,CAAC;;gCAA4E,CAAC;;6BAA8E,CAAC;;wBAAkE,CAAC;4BAAoD,CAAC;wBAA8C,CAAC;wBAA8C,CAAC;iCAAuD,CAAC;0BAAgD,CAAC;+BAAqD,CAAC;yCAA+D,CAAC;mDAAyE,CAAC;wCAA8D,CAAC;2CAAiE,CAAC;8CAAoE,CAAC;mDAAyE,CAAC;qDAA2E,CAAC;oBAA0C,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;uBAAqG,CAAC;;2BAA4E,CAAC;;oBAA8D,CAAC;;;;;2BAAmL,CAAC;+BAAqD,CAAC;2BAAmD,CAAC;2BAAiD,CAAC;2BAAmD,CAAC;kCAAwD,CAAC;2BAAiD,CAAC;;;wBAAsG,CAAC;+BAAqD,CAAC;;;;eAAiJ,CAAC;mBAA8B,CAAC;qBAAgC,CAAC;kBAA6B,CAAC;qBAAgC,CAAC;uBAAkC,CAAC;iBAA4B,CAAC;;;;;;;;;;;uBAAwc,CAAC;2BAAiD,CAAC;uBAA+C,CAAC;uBAA6C,CAAC;uBAA+C,CAAC;8BAAoD,CAAC;uBAA6C,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAfvg5N,CAAC;AAEF,eAAO,MAAM,kBAAkB,wDAY5B,CAAC"}

package/lib/typescript/credential/presentation/api/04-verify-certificate-chain.d.ts

@@ -2,7 +2,14 @@ import type { CertificateValidationResult } from "@pagopa/io-react-native-crypto
 export interface VerifyAuthRequestCertificateChainApi {
     /**
      * Verify the X.509 certificate chain in the Request Object `x5c` header claim.
-     * @since 1.0.0
+     *
+     * **Note:** the method is optional and might not be present in the interface. Always check for its presence before calling it.
+     * @example
+     * if (RemotePresentation.verifyAuthRequestCertificateChain) {
+     *   RemotePresentation.verifyAuthRequestCertificateChain(requestObjectJwt, { caRootCert })
+     * }
+     *
+     * @since 1.3.3
      *
      * @param requestObjectJwt The Request Object in JWT format
      * @param params.caRootCert The CA root certificate used to validate the chain
@@ -10,7 +17,7 @@ export interface VerifyAuthRequestCertificateChainApi {
      * @throws {MissingX509CertsError} if the Request Object does not contain x5c
      * @throws {X509ValidationError} if the certificate chain validation fails
      */
-    verifyAuthRequestCertificateChain(requestObjectJwt: string, params: {
+    verifyAuthRequestCertificateChain?(requestObjectJwt: string, params: {
         caRootCert: string;
     }): Promise<CertificateValidationResult>;
 }

package/lib/typescript/credential/presentation/api/04-verify-certificate-chain.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"04-verify-certificate-chain.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/api/04-verify-certificate-chain.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,2BAA2B,EAAE,MAAM,gCAAgC,CAAC;AAElF,MAAM,WAAW,oCAAoC;IACnD;;;;;;;;;OASG;IACH,iCAAiC,CAC/B,gBAAgB,EAAE,MAAM,EACxB,MAAM,EAAE;QACN,UAAU,EAAE,MAAM,CAAC;KACpB,GACA,OAAO,CAAC,2BAA2B,CAAC,CAAC;CACzC"}
+{"version":3,"file":"04-verify-certificate-chain.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/api/04-verify-certificate-chain.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,2BAA2B,EAAE,MAAM,gCAAgC,CAAC;AAElF,MAAM,WAAW,oCAAoC;IACnD;;;;;;;;;;;;;;;;OAgBG;IACH,iCAAiC,CAAC,CAChC,gBAAgB,EAAE,MAAM,EACxB,MAAM,EAAE;QACN,UAAU,EAAE,MAAM,CAAC;KACpB,GACA,OAAO,CAAC,2BAA2B,CAAC,CAAC;CACzC"}

package/lib/typescript/credential/presentation/api/05-verify-request-object.d.ts

@@ -7,14 +7,14 @@ export interface VerifyRequestObjectApi {
      *
      * @param requestObjectEncodedJwt The Request Object in JWT format
      * @param params.clientId The client ID to verify
-     * @param params.rpConf The Entity Configuration of the Relying Party
+     * @param params.rpConf Optional Relying Party configuration (OpenID Federation clients only)
      * @param params.state Optional state
      * @returns The verified Request Object
      * @throws {InvalidRequestObjectError} if the Request Object cannot be validated
      */
     verifyRequestObject(requestObjectEncodedJwt: string, params: {
         clientId: string;
-        rpConf: RelyingPartyConfig;
+        rpConf?: RelyingPartyConfig;
         state?: string;
     }): Promise<{
         requestObject: RequestObject;

package/lib/typescript/credential/presentation/api/05-verify-request-object.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"05-verify-request-object.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/api/05-verify-request-object.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC/D,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAE7C,MAAM,WAAW,sBAAsB;IACrC;;;;;;;;;;OAUG;IACH,mBAAmB,CACjB,uBAAuB,EAAE,MAAM,EAC/B,MAAM,EAAE;QACN,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,kBAAkB,CAAC;QAC3B,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,GACA,OAAO,CAAC;QAAE,aAAa,EAAE,aAAa,CAAA;KAAE,CAAC,CAAC;CAC9C"}
+{"version":3,"file":"05-verify-request-object.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/api/05-verify-request-object.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC/D,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAE7C,MAAM,WAAW,sBAAsB;IACrC;;;;;;;;;;OAUG;IACH,mBAAmB,CACjB,uBAAuB,EAAE,MAAM,EAC/B,MAAM,EAAE;QACN,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,CAAC,EAAE,kBAAkB,CAAC;QAC5B,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,GACA,OAAO,CAAC;QAAE,aAAa,EAAE,aAAa,CAAA;KAAE,CAAC,CAAC;CAC9C"}

package/lib/typescript/credential/presentation/api/07-send-authorization-response.d.ts

@@ -30,11 +30,11 @@ export interface SendAuthorizationResponseApi {
      *
      * @param requestObject The request details, including presentation requirements.
      * @param remotePresentation The presentations to send, each with their VP token
-     * @param rpConf The Relying Party common configuration
+     * @param rpConf Optional Relying Party configuration (OpenID Federation clients only)
      * @param context Contains optional custom fetch implementation.
      * @returns Parsed and validated authorization response from the Relying Party.
      */
-    sendAuthorizationResponse(requestObject: RequestObject, remotePresentation: RemotePresentation, rpConf: RelyingPartyConfig, context?: FetchContext): Promise<AuthorizationResponse>;
+    sendAuthorizationResponse(requestObject: RequestObject, remotePresentation: RemotePresentation, rpConf?: RelyingPartyConfig, context?: FetchContext): Promise<AuthorizationResponse>;
     /**
      * Sends the authorization error response to the Relying Party (RP).
      * This function completes the presentation flow in an OpenID 4 Verifiable Presentations scenario.

package/lib/typescript/credential/presentation/api/07-send-authorization-response.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"07-send-authorization-response.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/api/07-send-authorization-response.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,qBAAqB,EACrB,aAAa,EACb,kBAAkB,EAClB,aAAa,EACd,MAAM,SAAS,CAAC;AACjB,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC/D,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AACrE,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,4BAA4B,CAAC;AACtD,KAAK,YAAY,GAAG;IAAE,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAA;CAAE,CAAC;AAExD,MAAM,WAAW,4BAA4B;IAC3C;;;;;;;;;;;OAWG;IACH,0BAA0B,CACxB,WAAW,EAAE,GAAG,CAAC,oBAAoB,CAAC,mBAAmB,CAAC,CAAC,EAC3D,iBAAiB,EAAE;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;QACjB,WAAW,EAAE,MAAM,CAAC;KACrB,GACA,OAAO,CAAC,kBAAkB,CAAC,CAAC;IAE/B;;;;;;;;;;OAUG;IACH,yBAAyB,CACvB,aAAa,EAAE,aAAa,EAC5B,kBAAkB,EAAE,kBAAkB,EACtC,MAAM,EAAE,kBAAkB,EAC1B,OAAO,CAAC,EAAE,YAAY,GACrB,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAElC;;;;;;;;;OASG;IACH,8BAA8B,CAC5B,aAAa,EAAE,aAAa,EAC5B,KAAK,EAAE;QAAE,KAAK,EAAE,aAAa,CAAC;QAAC,gBAAgB,EAAE,MAAM,CAAA;KAAE,EACzD,OAAO,CAAC,EAAE,YAAY,GACrB,OAAO,CAAC,qBAAqB,CAAC,CAAC;CACnC"}
+{"version":3,"file":"07-send-authorization-response.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/api/07-send-authorization-response.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,qBAAqB,EACrB,aAAa,EACb,kBAAkB,EAClB,aAAa,EACd,MAAM,SAAS,CAAC;AACjB,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC/D,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AACrE,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,4BAA4B,CAAC;AACtD,KAAK,YAAY,GAAG;IAAE,QAAQ,CAAC,EAAE,WAAW,CAAC,OAAO,CAAC,CAAA;CAAE,CAAC;AAExD,MAAM,WAAW,4BAA4B;IAC3C;;;;;;;;;;;OAWG;IACH,0BAA0B,CACxB,WAAW,EAAE,GAAG,CAAC,oBAAoB,CAAC,mBAAmB,CAAC,CAAC,EAC3D,iBAAiB,EAAE;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;QACjB,WAAW,EAAE,MAAM,CAAC;KACrB,GACA,OAAO,CAAC,kBAAkB,CAAC,CAAC;IAE/B;;;;;;;;;;OAUG;IACH,yBAAyB,CACvB,aAAa,EAAE,aAAa,EAC5B,kBAAkB,EAAE,kBAAkB,EACtC,MAAM,CAAC,EAAE,kBAAkB,EAC3B,OAAO,CAAC,EAAE,YAAY,GACrB,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAElC;;;;;;;;;OASG;IACH,8BAA8B,CAC5B,aAAa,EAAE,aAAa,EAC5B,KAAK,EAAE;QAAE,KAAK,EAAE,aAAa,CAAC;QAAC,gBAAgB,EAAE,MAAM,CAAA;KAAE,EACzD,OAAO,CAAC,EAAE,YAAY,GACrB,OAAO,CAAC,qBAAqB,CAAC,CAAC;CACnC"}