npm - @pagopa/io-react-native-wallet - Versions diffs - 3.1.2 → 3.3.0 - Mend

@pagopa/io-react-native-wallet 3.1.2 → 3.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (360) hide show

package/src/utils/x509.ts ADDED Viewed

@@ -0,0 +1,43 @@
+import {
+  verifyCertificateChain,
+  type CertificateValidationResult,
+  type X509CertificateOptions,
+} from "@pagopa/io-react-native-crypto";
+import { X509ValidationError } from "../trust/common/errors";
+/**
+ * This function checks whether the x509 certificate chain is valid against a specified Certificate Authority (CA)
+ *
+ * @param x5chain The mdoc's x509 certificate chain
+ * @param x509CertRoot The Trust Anchor CA
+ * @param options Options for certificate validation
+ */
+export const verifyX509Chain = async (
+  x5chain: string[],
+  x509CertRoot: string,
+  options: X509CertificateOptions = {
+    connectTimeout: 10000,
+    readTimeout: 10000,
+    requireCrl: true,
+  }
+) => {
+  // Strip the trust anchor from the chain if the issuer included it,
+  // since verifyCertificateChain expects it passed separately.
+  const certChain =
+    x5chain.length > 1 && x5chain.at(-1) === x509CertRoot
+      ? x5chain.slice(0, -1)
+      : x5chain;
+  const x509ValidationResult: CertificateValidationResult =
+    await verifyCertificateChain(certChain, x509CertRoot, options);
+  if (!x509ValidationResult.isValid) {
+    throw new X509ValidationError(
+      `X.509 certificate chain validation failed. Status: ${x509ValidationResult.validationStatus}. Error: ${x509ValidationResult.errorMessage}`,
+      {
+        x509ValidationStatus: x509ValidationResult.validationStatus,
+        x509ErrorMessage: x509ValidationResult.errorMessage,
+      }
+    );
+  }
+};

package/src/wallet-instance-attestation/api/types.ts CHANGED Viewed

@@ -15,8 +15,6 @@ export const DecodedWalletInstanceAttestation = z.object({
   exp: UnixTime,
   cnf: z.object({ jwk: JWK }),
   sub: z.string(),
-  wallet_provider_name: z.string().optional(),
-  wallet_solution_id: z.string().optional(),
   /** @deprecated */
   wallet_link: z.string().optional(),
   /** @deprecated */

package/src/wallet-instance-attestation/v1.3.3/mappers.ts CHANGED Viewed

@@ -5,14 +5,6 @@ import { WalletInstanceAttestationJwt } from "./types";
 export const mapToDecodedWalletInstanceAttestation = createMapper<
   WalletInstanceAttestationJwt,
   DecodedWalletInstanceAttestation
->(
-  ({ payload }) => {
-    const { eudi_wallet_info, ...rest } = payload;
-    return {
-      ...rest,
-      wallet_provider_name: eudi_wallet_info.general_info.wallet_provider_name,
-      wallet_solution_id: eudi_wallet_info.general_info.wallet_solution_id,
-    };
-  },
-  { outputSchema: DecodedWalletInstanceAttestation }
-);
+>((x) => x.payload, {
+  outputSchema: DecodedWalletInstanceAttestation,
+});

package/src/wallet-instance-attestation/v1.3.3/types.ts CHANGED Viewed

@@ -15,13 +15,8 @@ export const WalletInstanceAttestationJwt = z.object({
     Jwt.shape.payload,
     z.object({
       sub: z.string(),
-      eudi_wallet_info: z.object({
-        general_info: z.object({
-          wallet_provider_name: z.string(),
-          wallet_solution_id: z.string(),
-          wallet_solution_version: z.string(),
-        }),
-      }),
+      wallet_link: z.string().optional(),
+      wallet_name: z.string().optional(),
     })
   ),
 });

package/src/wallet-unit-attestation/api/types.ts CHANGED Viewed

@@ -21,17 +21,6 @@ export const DecodedWalletUnitAttestation = z.object({
   user_authentication: z.array(z.string()),
   key_storage: z.array(z.string()),
   status: Status,
-  eudi_wallet_info: z.object({
-    general_info: z.object({
-      wallet_provider_name: z.string(),
-      wallet_solution_id: z.string(),
-      wallet_solution_version: z.string(),
-    }),
-    key_storage_info: z.object({
-      keys_exportable: z.boolean(),
-      storage_type: z.string(),
-    }),
-  }),
   iss: z.string(),
   iat: UnixTime,
   exp: UnixTime,

package/lib/commonjs/credential/issuance/common/authorization.js DELETED Viewed

@@ -1,56 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", {
-  value: true
-});
-exports.selectResponseMode = exports.selectCredentialDefinition = void 0;
-var _errors = require("../../../utils/errors");
-var _logging = require("../../../utils/logging");
-/**
- * Ensures that the credential type requested is supported by the issuer and contained in the
- * issuer configuration.
- * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
- * @param credentialId The credential configuration ID to be requested;
- * @returns The credential definition to be used in the request which includes the format and the type and its type
- */
-const selectCredentialDefinition = (issuerConf, credentialId) => {
-  const credential_configurations_supported = issuerConf.credential_configurations_supported;
-  const [result] = Object.keys(credential_configurations_supported).filter(e => e.includes(credentialId)).map(() => ({
-    credential_configuration_id: credentialId,
-    type: "openid_credential"
-  }));
-  if (!result) {
-    _logging.Logger.log(_logging.LogLevel.ERROR, `Requested credential ${credentialId} is not supported by the issuer according to its configuration ${JSON.stringify(credential_configurations_supported)}`);
-    throw new _errors.IoWalletError(`No credential support the type '${credentialId}'`);
-  }
-  return result;
-};
-/**
- * Ensures that the response mode requested is supported by the issuer and contained in the issuer configuration.
- * When multiple credentials are provided, all of them must support the same response_mode.
- * @param issuerConf The issuer configuration
- * @param credentialIds The credential configuration IDs to be requested
- * @returns The response mode to be used in the request, "query" for PersonIdentificationData and "form_post.jwt" for all other types.
- */
-exports.selectCredentialDefinition = selectCredentialDefinition;
-const selectResponseMode = (issuerConf, credentialIds) => {
-  const responseModeSet = new Set();
-  for (const credentialId of credentialIds) {
-    responseModeSet.add(credentialId.match(/PersonIdentificationData/i) ? "query" : "form_post.jwt");
-  }
-  if (responseModeSet.size !== 1) {
-    _logging.Logger.log(_logging.LogLevel.ERROR, `${credentialIds} have incompatible response_mode: ${[...responseModeSet.values()]}`);
-    throw new _errors.IoWalletError("Requested credentials have incompatible response_mode and cannot be requested with the same PAR request");
-  }
-  const [responseMode] = responseModeSet.values();
-  _logging.Logger.log(_logging.LogLevel.DEBUG, `Selected response mode ${responseMode} for credential IDs ${credentialIds}`);
-  const responseModeSupported = issuerConf.response_modes_supported;
-  if (responseModeSupported && !responseModeSupported.includes(responseMode)) {
-    _logging.Logger.log(_logging.LogLevel.ERROR, `Requested response mode ${responseMode} is not supported by the issuer according to its configuration ${JSON.stringify(responseModeSupported)}`);
-    throw new _errors.IoWalletError(`No response mode support for IDs '${credentialIds}'`);
-  }
-  return responseMode;
-};
-exports.selectResponseMode = selectResponseMode;
-//# sourceMappingURL=authorization.js.map

package/lib/commonjs/credential/issuance/common/authorization.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"names":["_errors","require","_logging","selectCredentialDefinition","issuerConf","credentialId","credential_configurations_supported","result","Object","keys","filter","e","includes","map","credential_configuration_id","type","Logger","log","LogLevel","ERROR","JSON","stringify","IoWalletError","exports","selectResponseMode","credentialIds","responseModeSet","Set","add","match","size","values","responseMode","DEBUG","responseModeSupported","response_modes_supported"],"sourceRoot":"../../../../../src","sources":["credential/issuance/common/authorization.ts"],"mappings":";;;;;;AAAA,IAAAA,OAAA,GAAAC,OAAA;AACA,IAAAC,QAAA,GAAAD,OAAA;AAMA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAME,0BAA0B,GAAGA,CACxCC,UAAwB,EACxBC,YAAoB,KACI;EACxB,MAAMC,mCAAmC,GACvCF,UAAU,CAACE,mCAAmC;EAEhD,MAAM,CAACC,MAAM,CAAC,GAAGC,MAAM,CAACC,IAAI,CAACH,mCAAmC,CAAC,CAC9DI,MAAM,CAAEC,CAAC,IAAKA,CAAC,CAACC,QAAQ,CAACP,YAAY,CAAC,CAAC,CACvCQ,GAAG,CAAC,OAAO;IACVC,2BAA2B,EAAET,YAAY;IACzCU,IAAI,EAAE;EACR,CAAC,CAAC,CAAC;EAEL,IAAI,CAACR,MAAM,EAAE;IACXS,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,wBAAuBd,YAAa,kEAAiEe,IAAI,CAACC,SAAS,CAACf,mCAAmC,CAAE,EAC5J,CAAC;IACD,MAAM,IAAIgB,qBAAa,CAAE,mCAAkCjB,YAAa,GAAE,CAAC;EAC7E;EACA,OAAOE,MAAM;AACf,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AANAgB,OAAA,CAAApB,0BAAA,GAAAA,0BAAA;AAOO,MAAMqB,kBAAkB,GAAGA,CAChCpB,UAAwB,EACxBqB,aAAuB,KACN;EACjB,MAAMC,eAAe,GAAG,IAAIC,GAAG,CAAe,CAAC;EAE/C,KAAK,MAAMtB,YAAY,IAAIoB,aAAa,EAAE;IACxCC,eAAe,CAACE,GAAG,CACjBvB,YAAY,CAACwB,KAAK,CAAC,2BAA2B,CAAC,GAC3C,OAAO,GACP,eACN,CAAC;EACH;EAEA,IAAIH,eAAe,CAACI,IAAI,KAAK,CAAC,EAAE;IAC9Bd,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,GAAEM,aAAc,qCAAoC,CAAC,GAAGC,eAAe,CAACK,MAAM,CAAC,CAAC,CAAE,EACrF,CAAC;IACD,MAAM,IAAIT,qBAAa,CACrB,yGACF,CAAC;EACH;EAEA,MAAM,CAACU,YAAY,CAAC,GAAGN,eAAe,CAACK,MAAM,CAAC,CAAC;EAE/Cf,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACe,KAAK,EACb,0BAAyBD,YAAa,uBAAsBP,aAAc,EAC7E,CAAC;EAED,MAAMS,qBAAqB,GAAG9B,UAAU,CAAC+B,wBAAwB;EACjE,IAAID,qBAAqB,IAAI,CAACA,qBAAqB,CAACtB,QAAQ,CAACoB,YAAa,CAAC,EAAE;IAC3EhB,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,2BAA0Ba,YAAa,kEAAiEZ,IAAI,CAACC,SAAS,CAACa,qBAAqB,CAAE,EACjJ,CAAC;IACD,MAAM,IAAIZ,qBAAa,CACpB,qCAAoCG,aAAc,GACrD,CAAC;EACH;EAEA,OAAOO,YAAY;AACrB,CAAC;AAACT,OAAA,CAAAC,kBAAA,GAAAA,kBAAA"}

package/lib/commonjs/credential/presentation/v1.0.0/04-verify-certificate-chain.js DELETED Viewed

@@ -1,12 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", {
-  value: true
-});
-exports.verifyAuthRequestCertificateChain = void 0;
-var _errors = require("../../../utils/errors");
-const verifyAuthRequestCertificateChain = async () => {
-  throw new _errors.UnimplementedFeatureError("verifyAuthRequestCertificateChain", "1.0.0");
-};
-exports.verifyAuthRequestCertificateChain = verifyAuthRequestCertificateChain;
-//# sourceMappingURL=04-verify-certificate-chain.js.map

package/lib/commonjs/credential/presentation/v1.0.0/04-verify-certificate-chain.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"names":["_errors","require","verifyAuthRequestCertificateChain","UnimplementedFeatureError","exports"],"sourceRoot":"../../../../../src","sources":["credential/presentation/v1.0.0/04-verify-certificate-chain.ts"],"mappings":";;;;;;AAAA,IAAAA,OAAA,GAAAC,OAAA;AAGO,MAAMC,iCAA6F,GACxG,MAAAA,CAAA,KAAY;EACV,MAAM,IAAIC,iCAAyB,CACjC,mCAAmC,EACnC,OACF,CAAC;AACH,CAAC;AAACC,OAAA,CAAAF,iCAAA,GAAAA,iCAAA"}

package/lib/commonjs/credential/presentation/v1.3.3/utils.mdoc.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"names":["_ioReactNativeIso","require","_jsrsasign","_dcql","mapCredentialsToObj","credentialsMdoc","Promise","all","map","credential","issuerSigned","CBOR","decodeIssuerSigned","b64utob64","namespaces","Object","entries","nameSpaces","reduce","acc","_ref","ns","nsClaims","flattenNsClaims","ac","_ref2","el","elementIdentifier","elementValue","credential_format","doctype","issuerAuth","payload","docType","cryptographic_holder_binding","original_credential","exports","getClaimsFromDcqlMatch","match","getValidDcqlClaims","flatMap","_ref3","output","_ref4","keys","claimName","namespace","name","value","getPresentationFrameFromClaims","requestedClaims","_ref5","existingNamespace"],"sourceRoot":"../../../../../src","sources":["credential/presentation/v1.3.3/utils.mdoc.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,UAAA,GAAAD,OAAA;AAOA,IAAAE,KAAA,GAAAF,OAAA;AAMA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMG,mBAAmB,GAAG,MACjCC,eAAkC,IACM;EACxC,OAAO,MAAMC,OAAO,CAACC,GAAG,CACtBF,eAAe,CAACG,GAAG,CAAC,MAAOC,UAAU,IAAK;IACxC,MAAMC,YAAY,GAAG,MAAMC,sBAAI,CAACC,kBAAkB,CAChD,IAAAC,oBAAS,EAACJ,UAAU,CAAC,CAAC,CAAC,CACzB,CAAC;IAED,MAAMK,UAAU,GAAGC,MAAM,CAACC,OAAO,CAACN,YAAY,CAACO,UAAU,CAAC,CAACC,MAAM,CAC/D,CAACC,GAAG,EAAAC,IAAA,KAAqB;MAAA,IAAnB,CAACC,EAAE,EAAEC,QAAQ,CAAC,GAAAF,IAAA;MAClB,MAAMG,eAAe,GAAGR,MAAM,CAACC,OAAO,CAACM,QAAQ,CAAC,CAACJ,MAAM,CACrD,CAACM,EAAE,EAAAC,KAAA;QAAA,IAAE,GAAGC,EAAE,CAAC,GAAAD,KAAA;QAAA,OAAM;UACf,GAAGD,EAAE;UACL,CAACE,EAAE,CAACC,iBAAiB,GAAGD,EAAE,CAACE;QAC7B,CAAC;MAAA,CAAC,EACF,CAAC,CACH,CAAC;MAED,OAAO;QACL,GAAGT,GAAG;QACN,CAACE,EAAE,GAAGE;MACR,CAAC;IACH,CAAC,EACD,CAAC,CACH,CAAC;IAED,OAAO;MACLM,iBAAiB,EAAE,UAAU;MAC7BC,OAAO,EAAEpB,YAAY,CAACqB,UAAU,CAACC,OAAO,CAACC,OAAO,IAAI,iBAAiB;MACrEC,4BAA4B,EAAE,IAAI;MAClCpB,UAAU;MACVqB,mBAAmB,EAAE1B;IACvB,CAAC;EACH,CAAC,CACH,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AAJA2B,OAAA,CAAAhC,mBAAA,GAAAA,mBAAA;AAKO,MAAMiC,sBAAsB,GACjCC,KAAsC,IAEtC,IAAAC,wBAAkB,EAACD,KAAK,CAAC,CAACE,OAAO,CAACC,KAAA;EAAA,IAAC;IAAEC;EAAO,CAAC,GAAAD,KAAA;EAAA,OAC3C1B,MAAM,CAACC,OAAO,CAAC0B,MAAM,CAAC,CAACF,OAAO,CAACG,KAAA;IAAA,IAAC,CAACtB,EAAE,EAAEC,QAAQ,CAAC,GAAAqB,KAAA;IAAA,OAC5C5B,MAAM,CAAC6B,IAAI,CAACtB,QAAQ,CAAC,CAACd,GAAG,CAAEqC,SAAS,KAAM;MACxCC,SAAS,EAAEzB,EAAE;MACb0B,IAAI,EAAEF,SAAS;MACfG,KAAK,EAAE1B,QAAQ,CAACuB,SAAS;IAC3B,CAAC,CAAC,CAAC;EAAA,CACL,CAAC;AAAA,CACH,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AACA;AANAT,OAAA,CAAAC,sBAAA,GAAAA,sBAAA;AAOO,MAAMY,8BAA8B,GAAGA,CAC5CC,eAAsC,EACtCjB,OAAe,MACQ;EACvB,CAACA,OAAO,GAAGiB,eAAe,CAAChC,MAAM,CAAC,CAACC,GAAG,EAAAgC,KAAA,KAA0B;IAAA,IAAxB;MAAEJ,IAAI;MAAED;IAAU,CAAC,GAAAK,KAAA;IACzD,IAAIL,SAAS,EAAE;MACb3B,GAAG,CAAC2B,SAAS,CAAC,KAAK,CAAC,CAAC;MACrB,MAAMM,iBAAiB,GAAGjC,GAAG,CAAC2B,SAAS,CAA4B;MACnEM,iBAAiB,CAACL,IAAI,CAAC,GAAG,IAAI;IAChC,CAAC,MAAM;MACL5B,GAAG,CAAC4B,IAAI,CAAC,GAAG,IAAI;IAClB;IACA,OAAO5B,GAAG;EACZ,CAAC,EAAE,CAAC,CAAsB;AAC5B,CAAC,CAAC;AAACiB,OAAA,CAAAa,8BAAA,GAAAA,8BAAA"}

package/lib/module/credential/issuance/common/authorization.js DELETED Viewed

@@ -1,48 +0,0 @@
-import { IoWalletError } from "../../../utils/errors";
-import { LogLevel, Logger } from "../../../utils/logging";
-/**
- * Ensures that the credential type requested is supported by the issuer and contained in the
- * issuer configuration.
- * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
- * @param credentialId The credential configuration ID to be requested;
- * @returns The credential definition to be used in the request which includes the format and the type and its type
- */
-export const selectCredentialDefinition = (issuerConf, credentialId) => {
-  const credential_configurations_supported = issuerConf.credential_configurations_supported;
-  const [result] = Object.keys(credential_configurations_supported).filter(e => e.includes(credentialId)).map(() => ({
-    credential_configuration_id: credentialId,
-    type: "openid_credential"
-  }));
-  if (!result) {
-    Logger.log(LogLevel.ERROR, `Requested credential ${credentialId} is not supported by the issuer according to its configuration ${JSON.stringify(credential_configurations_supported)}`);
-    throw new IoWalletError(`No credential support the type '${credentialId}'`);
-  }
-  return result;
-};
-/**
- * Ensures that the response mode requested is supported by the issuer and contained in the issuer configuration.
- * When multiple credentials are provided, all of them must support the same response_mode.
- * @param issuerConf The issuer configuration
- * @param credentialIds The credential configuration IDs to be requested
- * @returns The response mode to be used in the request, "query" for PersonIdentificationData and "form_post.jwt" for all other types.
- */
-export const selectResponseMode = (issuerConf, credentialIds) => {
-  const responseModeSet = new Set();
-  for (const credentialId of credentialIds) {
-    responseModeSet.add(credentialId.match(/PersonIdentificationData/i) ? "query" : "form_post.jwt");
-  }
-  if (responseModeSet.size !== 1) {
-    Logger.log(LogLevel.ERROR, `${credentialIds} have incompatible response_mode: ${[...responseModeSet.values()]}`);
-    throw new IoWalletError("Requested credentials have incompatible response_mode and cannot be requested with the same PAR request");
-  }
-  const [responseMode] = responseModeSet.values();
-  Logger.log(LogLevel.DEBUG, `Selected response mode ${responseMode} for credential IDs ${credentialIds}`);
-  const responseModeSupported = issuerConf.response_modes_supported;
-  if (responseModeSupported && !responseModeSupported.includes(responseMode)) {
-    Logger.log(LogLevel.ERROR, `Requested response mode ${responseMode} is not supported by the issuer according to its configuration ${JSON.stringify(responseModeSupported)}`);
-    throw new IoWalletError(`No response mode support for IDs '${credentialIds}'`);
-  }
-  return responseMode;
-};
-//# sourceMappingURL=authorization.js.map

package/lib/module/credential/issuance/common/authorization.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"names":["IoWalletError","LogLevel","Logger","selectCredentialDefinition","issuerConf","credentialId","credential_configurations_supported","result","Object","keys","filter","e","includes","map","credential_configuration_id","type","log","ERROR","JSON","stringify","selectResponseMode","credentialIds","responseModeSet","Set","add","match","size","values","responseMode","DEBUG","responseModeSupported","response_modes_supported"],"sourceRoot":"../../../../../src","sources":["credential/issuance/common/authorization.ts"],"mappings":"AAAA,SAASA,aAAa,QAAQ,uBAAuB;AACrD,SAASC,QAAQ,EAAEC,MAAM,QAAQ,wBAAwB;AAMzD;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,0BAA0B,GAAGA,CACxCC,UAAwB,EACxBC,YAAoB,KACI;EACxB,MAAMC,mCAAmC,GACvCF,UAAU,CAACE,mCAAmC;EAEhD,MAAM,CAACC,MAAM,CAAC,GAAGC,MAAM,CAACC,IAAI,CAACH,mCAAmC,CAAC,CAC9DI,MAAM,CAAEC,CAAC,IAAKA,CAAC,CAACC,QAAQ,CAACP,YAAY,CAAC,CAAC,CACvCQ,GAAG,CAAC,OAAO;IACVC,2BAA2B,EAAET,YAAY;IACzCU,IAAI,EAAE;EACR,CAAC,CAAC,CAAC;EAEL,IAAI,CAACR,MAAM,EAAE;IACXL,MAAM,CAACc,GAAG,CACRf,QAAQ,CAACgB,KAAK,EACb,wBAAuBZ,YAAa,kEAAiEa,IAAI,CAACC,SAAS,CAACb,mCAAmC,CAAE,EAC5J,CAAC;IACD,MAAM,IAAIN,aAAa,CAAE,mCAAkCK,YAAa,GAAE,CAAC;EAC7E;EACA,OAAOE,MAAM;AACf,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMa,kBAAkB,GAAGA,CAChChB,UAAwB,EACxBiB,aAAuB,KACN;EACjB,MAAMC,eAAe,GAAG,IAAIC,GAAG,CAAe,CAAC;EAE/C,KAAK,MAAMlB,YAAY,IAAIgB,aAAa,EAAE;IACxCC,eAAe,CAACE,GAAG,CACjBnB,YAAY,CAACoB,KAAK,CAAC,2BAA2B,CAAC,GAC3C,OAAO,GACP,eACN,CAAC;EACH;EAEA,IAAIH,eAAe,CAACI,IAAI,KAAK,CAAC,EAAE;IAC9BxB,MAAM,CAACc,GAAG,CACRf,QAAQ,CAACgB,KAAK,EACb,GAAEI,aAAc,qCAAoC,CAAC,GAAGC,eAAe,CAACK,MAAM,CAAC,CAAC,CAAE,EACrF,CAAC;IACD,MAAM,IAAI3B,aAAa,CACrB,yGACF,CAAC;EACH;EAEA,MAAM,CAAC4B,YAAY,CAAC,GAAGN,eAAe,CAACK,MAAM,CAAC,CAAC;EAE/CzB,MAAM,CAACc,GAAG,CACRf,QAAQ,CAAC4B,KAAK,EACb,0BAAyBD,YAAa,uBAAsBP,aAAc,EAC7E,CAAC;EAED,MAAMS,qBAAqB,GAAG1B,UAAU,CAAC2B,wBAAwB;EACjE,IAAID,qBAAqB,IAAI,CAACA,qBAAqB,CAAClB,QAAQ,CAACgB,YAAa,CAAC,EAAE;IAC3E1B,MAAM,CAACc,GAAG,CACRf,QAAQ,CAACgB,KAAK,EACb,2BAA0BW,YAAa,kEAAiEV,IAAI,CAACC,SAAS,CAACW,qBAAqB,CAAE,EACjJ,CAAC;IACD,MAAM,IAAI9B,aAAa,CACpB,qCAAoCqB,aAAc,GACrD,CAAC;EACH;EAEA,OAAOO,YAAY;AACrB,CAAC"}

package/lib/module/credential/presentation/v1.0.0/04-verify-certificate-chain.js DELETED Viewed

@@ -1,5 +0,0 @@
-import { UnimplementedFeatureError } from "../../../utils/errors";
-export const verifyAuthRequestCertificateChain = async () => {
-  throw new UnimplementedFeatureError("verifyAuthRequestCertificateChain", "1.0.0");
-};
-//# sourceMappingURL=04-verify-certificate-chain.js.map

package/lib/module/credential/presentation/v1.0.0/04-verify-certificate-chain.js.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"names":["UnimplementedFeatureError","verifyAuthRequestCertificateChain"],"sourceRoot":"../../../../../src","sources":["credential/presentation/v1.0.0/04-verify-certificate-chain.ts"],"mappings":"AAAA,SAASA,yBAAyB,QAAQ,uBAAuB;AAGjE,OAAO,MAAMC,iCAA6F,GACxG,MAAAA,CAAA,KAAY;EACV,MAAM,IAAID,yBAAyB,CACjC,mCAAmC,EACnC,OACF,CAAC;AACH,CAAC"}

package/lib/module/credential/presentation/v1.3.3/utils.mdoc.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"names":["CBOR","b64utob64","getValidDcqlClaims","mapCredentialsToObj","credentialsMdoc","Promise","all","map","credential","issuerSigned","decodeIssuerSigned","namespaces","Object","entries","nameSpaces","reduce","acc","_ref","ns","nsClaims","flattenNsClaims","ac","_ref2","el","elementIdentifier","elementValue","credential_format","doctype","issuerAuth","payload","docType","cryptographic_holder_binding","original_credential","getClaimsFromDcqlMatch","match","flatMap","_ref3","output","_ref4","keys","claimName","namespace","name","value","getPresentationFrameFromClaims","requestedClaims","_ref5","existingNamespace"],"sourceRoot":"../../../../../src","sources":["credential/presentation/v1.3.3/utils.mdoc.ts"],"mappings":"AAAA,SAASA,IAAI,QAAQ,kCAAkC;AACvD,SAASC,SAAS,QAAQ,WAAW;AAOrC,SAASC,kBAAkB,QAAQ,sBAAsB;AAMzD;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMC,mBAAmB,GAAG,MACjCC,eAAkC,IACM;EACxC,OAAO,MAAMC,OAAO,CAACC,GAAG,CACtBF,eAAe,CAACG,GAAG,CAAC,MAAOC,UAAU,IAAK;IACxC,MAAMC,YAAY,GAAG,MAAMT,IAAI,CAACU,kBAAkB,CAChDT,SAAS,CAACO,UAAU,CAAC,CAAC,CAAC,CACzB,CAAC;IAED,MAAMG,UAAU,GAAGC,MAAM,CAACC,OAAO,CAACJ,YAAY,CAACK,UAAU,CAAC,CAACC,MAAM,CAC/D,CAACC,GAAG,EAAAC,IAAA,KAAqB;MAAA,IAAnB,CAACC,EAAE,EAAEC,QAAQ,CAAC,GAAAF,IAAA;MAClB,MAAMG,eAAe,GAAGR,MAAM,CAACC,OAAO,CAACM,QAAQ,CAAC,CAACJ,MAAM,CACrD,CAACM,EAAE,EAAAC,KAAA;QAAA,IAAE,GAAGC,EAAE,CAAC,GAAAD,KAAA;QAAA,OAAM;UACf,GAAGD,EAAE;UACL,CAACE,EAAE,CAACC,iBAAiB,GAAGD,EAAE,CAACE;QAC7B,CAAC;MAAA,CAAC,EACF,CAAC,CACH,CAAC;MAED,OAAO;QACL,GAAGT,GAAG;QACN,CAACE,EAAE,GAAGE;MACR,CAAC;IACH,CAAC,EACD,CAAC,CACH,CAAC;IAED,OAAO;MACLM,iBAAiB,EAAE,UAAU;MAC7BC,OAAO,EAAElB,YAAY,CAACmB,UAAU,CAACC,OAAO,CAACC,OAAO,IAAI,iBAAiB;MACrEC,4BAA4B,EAAE,IAAI;MAClCpB,UAAU;MACVqB,mBAAmB,EAAExB;IACvB,CAAC;EACH,CAAC,CACH,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMyB,sBAAsB,GACjCC,KAAsC,IAEtChC,kBAAkB,CAACgC,KAAK,CAAC,CAACC,OAAO,CAACC,KAAA;EAAA,IAAC;IAAEC;EAAO,CAAC,GAAAD,KAAA;EAAA,OAC3CxB,MAAM,CAACC,OAAO,CAACwB,MAAM,CAAC,CAACF,OAAO,CAACG,KAAA;IAAA,IAAC,CAACpB,EAAE,EAAEC,QAAQ,CAAC,GAAAmB,KAAA;IAAA,OAC5C1B,MAAM,CAAC2B,IAAI,CAACpB,QAAQ,CAAC,CAACZ,GAAG,CAAEiC,SAAS,KAAM;MACxCC,SAAS,EAAEvB,EAAE;MACbwB,IAAI,EAAEF,SAAS;MACfG,KAAK,EAAExB,QAAQ,CAACqB,SAAS;IAC3B,CAAC,CAAC,CAAC;EAAA,CACL,CAAC;AAAA,CACH,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AACA;AACA,OAAO,MAAMI,8BAA8B,GAAGA,CAC5CC,eAAsC,EACtCf,OAAe,MACQ;EACvB,CAACA,OAAO,GAAGe,eAAe,CAAC9B,MAAM,CAAC,CAACC,GAAG,EAAA8B,KAAA,KAA0B;IAAA,IAAxB;MAAEJ,IAAI;MAAED;IAAU,CAAC,GAAAK,KAAA;IACzD,IAAIL,SAAS,EAAE;MACbzB,GAAG,CAACyB,SAAS,CAAC,KAAK,CAAC,CAAC;MACrB,MAAMM,iBAAiB,GAAG/B,GAAG,CAACyB,SAAS,CAA4B;MACnEM,iBAAiB,CAACL,IAAI,CAAC,GAAG,IAAI;IAChC,CAAC,MAAM;MACL1B,GAAG,CAAC0B,IAAI,CAAC,GAAG,IAAI;IAClB;IACA,OAAO1B,GAAG;EACZ,CAAC,EAAE,CAAC,CAAsB;AAC5B,CAAC,CAAC"}

package/lib/typescript/credential/issuance/common/authorization.d.ts DELETED Viewed

@@ -1,21 +0,0 @@
-import { AuthorizationDetail } from "../../../utils/par";
-import type { IssuerConfig } from "../api";
-type ResponseMode = "query" | "form_post.jwt";
-/**
- * Ensures that the credential type requested is supported by the issuer and contained in the
- * issuer configuration.
- * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
- * @param credentialId The credential configuration ID to be requested;
- * @returns The credential definition to be used in the request which includes the format and the type and its type
- */
-export declare const selectCredentialDefinition: (issuerConf: IssuerConfig, credentialId: string) => AuthorizationDetail;
-/**
- * Ensures that the response mode requested is supported by the issuer and contained in the issuer configuration.
- * When multiple credentials are provided, all of them must support the same response_mode.
- * @param issuerConf The issuer configuration
- * @param credentialIds The credential configuration IDs to be requested
- * @returns The response mode to be used in the request, "query" for PersonIdentificationData and "form_post.jwt" for all other types.
- */
-export declare const selectResponseMode: (issuerConf: IssuerConfig, credentialIds: string[]) => ResponseMode;
-export {};
-//# sourceMappingURL=authorization.d.ts.map

package/lib/typescript/credential/issuance/common/authorization.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"authorization.d.ts","sourceRoot":"","sources":["../../../../../src/credential/issuance/common/authorization.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,mBAAmB,EAAE,MAAM,oBAAoB,CAAC;AACzD,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAE3C,KAAK,YAAY,GAAG,OAAO,GAAG,eAAe,CAAC;AAE9C;;;;;;GAMG;AACH,eAAO,MAAM,0BAA0B,GACrC,YAAY,YAAY,EACxB,cAAc,MAAM,KACnB,mBAmBF,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,kBAAkB,GAC7B,YAAY,YAAY,EACxB,eAAe,MAAM,EAAE,KACtB,YAwCF,CAAC"}

package/lib/typescript/credential/presentation/v1.0.0/04-verify-certificate-chain.d.ts DELETED Viewed

@@ -1,3 +0,0 @@
-import { type RemotePresentationApi } from "../api";
-export declare const verifyAuthRequestCertificateChain: RemotePresentationApi["verifyAuthRequestCertificateChain"];
-//# sourceMappingURL=04-verify-certificate-chain.d.ts.map

package/lib/typescript/credential/presentation/v1.0.0/04-verify-certificate-chain.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"04-verify-certificate-chain.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/v1.0.0/04-verify-certificate-chain.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,KAAK,qBAAqB,EAAE,MAAM,QAAQ,CAAC;AAEpD,eAAO,MAAM,iCAAiC,EAAE,qBAAqB,CAAC,mCAAmC,CAMtG,CAAC"}

package/lib/typescript/credential/presentation/v1.3.3/utils.mdoc.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"utils.mdoc.d.ts","sourceRoot":"","sources":["../../../../../src/credential/presentation/v1.3.3/utils.mdoc.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,kBAAkB,EAAE,eAAe,EAAE,MAAM,MAAM,CAAC;AAChE,OAAO,KAAK,EACV,eAAe,EACf,mBAAmB,EACnB,iBAAiB,EAClB,MAAM,QAAQ,CAAC;AAGhB,KAAK,wBAAwB,GAAG,kBAAkB,GAAG;IACnD,mBAAmB,EAAE,eAAe,CAAC;CACtC,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,mBAAmB,GAC9B,iBAAiB,eAAe,EAAE,KACjC,OAAO,CAAC,wBAAwB,EAAE,CAkCpC,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,sBAAsB,GACjC,OAAO,eAAe,CAAC,eAAe,KACrC,mBAAmB,EASnB,CAAC;AAEJ;;;;;;GAMG;AACH,eAAO,MAAM,8BAA8B,GACzC,iBAAiB,mBAAmB,EAAE,EACtC,SAAS,MAAM,KACd,iBAWD,CAAC"}

package/src/credential/issuance/common/authorization.ts DELETED Viewed

@@ -1,89 +0,0 @@
-import { IoWalletError } from "../../../utils/errors";
-import { LogLevel, Logger } from "../../../utils/logging";
-import { AuthorizationDetail } from "../../../utils/par";
-import type { IssuerConfig } from "../api";
-type ResponseMode = "query" | "form_post.jwt";
-/**
- * Ensures that the credential type requested is supported by the issuer and contained in the
- * issuer configuration.
- * @param issuerConf The issuer configuration returned by {@link evaluateIssuerTrust}
- * @param credentialId The credential configuration ID to be requested;
- * @returns The credential definition to be used in the request which includes the format and the type and its type
- */
-export const selectCredentialDefinition = (
-  issuerConf: IssuerConfig,
-  credentialId: string
-): AuthorizationDetail => {
-  const credential_configurations_supported =
-    issuerConf.credential_configurations_supported;
-  const [result] = Object.keys(credential_configurations_supported)
-    .filter((e) => e.includes(credentialId))
-    .map(() => ({
-      credential_configuration_id: credentialId,
-      type: "openid_credential" as const,
-    }));
-  if (!result) {
-    Logger.log(
-      LogLevel.ERROR,
-      `Requested credential ${credentialId} is not supported by the issuer according to its configuration ${JSON.stringify(credential_configurations_supported)}`
-    );
-    throw new IoWalletError(`No credential support the type '${credentialId}'`);
-  }
-  return result;
-};
-/**
- * Ensures that the response mode requested is supported by the issuer and contained in the issuer configuration.
- * When multiple credentials are provided, all of them must support the same response_mode.
- * @param issuerConf The issuer configuration
- * @param credentialIds The credential configuration IDs to be requested
- * @returns The response mode to be used in the request, "query" for PersonIdentificationData and "form_post.jwt" for all other types.
- */
-export const selectResponseMode = (
-  issuerConf: IssuerConfig,
-  credentialIds: string[]
-): ResponseMode => {
-  const responseModeSet = new Set<ResponseMode>();
-  for (const credentialId of credentialIds) {
-    responseModeSet.add(
-      credentialId.match(/PersonIdentificationData/i)
-        ? "query"
-        : "form_post.jwt"
-    );
-  }
-  if (responseModeSet.size !== 1) {
-    Logger.log(
-      LogLevel.ERROR,
-      `${credentialIds} have incompatible response_mode: ${[...responseModeSet.values()]}`
-    );
-    throw new IoWalletError(
-      "Requested credentials have incompatible response_mode and cannot be requested with the same PAR request"
-    );
-  }
-  const [responseMode] = responseModeSet.values();
-  Logger.log(
-    LogLevel.DEBUG,
-    `Selected response mode ${responseMode} for credential IDs ${credentialIds}`
-  );
-  const responseModeSupported = issuerConf.response_modes_supported;
-  if (responseModeSupported && !responseModeSupported.includes(responseMode!)) {
-    Logger.log(
-      LogLevel.ERROR,
-      `Requested response mode ${responseMode} is not supported by the issuer according to its configuration ${JSON.stringify(responseModeSupported)}`
-    );
-    throw new IoWalletError(
-      `No response mode support for IDs '${credentialIds}'`
-    );
-  }
-  return responseMode!;
-};

package/src/credential/presentation/v1.0.0/04-verify-certificate-chain.ts DELETED Viewed

@@ -1,10 +0,0 @@
-import { UnimplementedFeatureError } from "../../../utils/errors";
-import { type RemotePresentationApi } from "../api";
-export const verifyAuthRequestCertificateChain: RemotePresentationApi["verifyAuthRequestCertificateChain"] =
-  async () => {
-    throw new UnimplementedFeatureError(
-      "verifyAuthRequestCertificateChain",
-      "1.0.0"
-    );
-  };