@pagopa/io-react-native-wallet 3.2.0 → 3.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/commonjs/credential/issuance/common/02-start-user-authorization.js +4 -3
- package/lib/commonjs/credential/issuance/common/02-start-user-authorization.js.map +1 -1
- package/lib/commonjs/credential/issuance/common/06-verify-and-parse-credential.sdjwt.js +37 -8
- package/lib/commonjs/credential/issuance/common/06-verify-and-parse-credential.sdjwt.js.map +1 -1
- package/lib/commonjs/credential/issuance/mrtd-pop/02-init-challenge.js +46 -38
- package/lib/commonjs/credential/issuance/mrtd-pop/02-init-challenge.js.map +1 -1
- package/lib/commonjs/credential/issuance/mrtd-pop/03-validate-challenge.js +58 -51
- package/lib/commonjs/credential/issuance/mrtd-pop/03-validate-challenge.js.map +1 -1
- package/lib/commonjs/credential/issuance/mrtd-pop/index.js +21 -5
- package/lib/commonjs/credential/issuance/mrtd-pop/index.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.0.0/02-start-user-authorization.js +3 -3
- package/lib/commonjs/credential/issuance/v1.0.0/02-start-user-authorization.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.0.0/index.js +1 -1
- package/lib/commonjs/credential/issuance/v1.0.0/index.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.0.0/mappers.js +1 -1
- package/lib/commonjs/credential/issuance/v1.0.0/mappers.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/01-evaluate-issuer-trust.js +0 -2
- package/lib/commonjs/credential/issuance/v1.3.3/01-evaluate-issuer-trust.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/02-start-user-authorization.js +20 -16
- package/lib/commonjs/credential/issuance/v1.3.3/02-start-user-authorization.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/04-authorize-access.js +20 -19
- package/lib/commonjs/credential/issuance/v1.3.3/04-authorize-access.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/05-obtain-credential.js +4 -6
- package/lib/commonjs/credential/issuance/v1.3.3/05-obtain-credential.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/06-verify-and-parse-credential.js +4 -1
- package/lib/commonjs/credential/issuance/v1.3.3/06-verify-and-parse-credential.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/index.js +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/index.js.map +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/mappers.js +1 -1
- package/lib/commonjs/credential/issuance/v1.3.3/mappers.js.map +1 -1
- package/lib/commonjs/credential/presentation/{v1.3.3/utils.mdoc.js → common/utils/mdoc.js} +2 -2
- package/lib/commonjs/credential/presentation/common/utils/mdoc.js.map +1 -0
- package/lib/commonjs/credential/presentation/v1.3.3/06-evaluate-dcql-query.js +2 -2
- package/lib/commonjs/credential/presentation/v1.3.3/06-evaluate-dcql-query.js.map +1 -1
- package/lib/commonjs/credential/status/README.md +3 -2
- package/lib/commonjs/credential/status/v1.3.3/01-status-list.js +27 -5
- package/lib/commonjs/credential/status/v1.3.3/01-status-list.js.map +1 -1
- package/lib/commonjs/credential/status/v1.3.3/02-verify-and-parse-status-list.js +17 -6
- package/lib/commonjs/credential/status/v1.3.3/02-verify-and-parse-status-list.js.map +1 -1
- package/lib/commonjs/mdoc/index.js +3 -24
- package/lib/commonjs/mdoc/index.js.map +1 -1
- package/lib/commonjs/sd-jwt/__test__/types.test.js +2 -14
- package/lib/commonjs/sd-jwt/__test__/types.test.js.map +1 -1
- package/lib/commonjs/sd-jwt/__test__/utils.test.js +0 -12
- package/lib/commonjs/sd-jwt/__test__/utils.test.js.map +1 -1
- package/lib/commonjs/sd-jwt/types.js +1 -14
- package/lib/commonjs/sd-jwt/types.js.map +1 -1
- package/lib/commonjs/utils/callbacks.js +20 -1
- package/lib/commonjs/utils/callbacks.js.map +1 -1
- package/lib/commonjs/utils/x509.js +34 -0
- package/lib/commonjs/utils/x509.js.map +1 -0
- package/lib/commonjs/wallet-instance-attestation/api/types.js +0 -2
- package/lib/commonjs/wallet-instance-attestation/api/types.js.map +1 -1
- package/lib/commonjs/wallet-instance-attestation/v1.3.3/mappers.js +1 -14
- package/lib/commonjs/wallet-instance-attestation/v1.3.3/mappers.js.map +1 -1
- package/lib/commonjs/wallet-instance-attestation/v1.3.3/types.js +2 -7
- package/lib/commonjs/wallet-instance-attestation/v1.3.3/types.js.map +1 -1
- package/lib/commonjs/wallet-unit-attestation/api/types.js +0 -11
- package/lib/commonjs/wallet-unit-attestation/api/types.js.map +1 -1
- package/lib/module/credential/issuance/common/02-start-user-authorization.js +4 -3
- package/lib/module/credential/issuance/common/02-start-user-authorization.js.map +1 -1
- package/lib/module/credential/issuance/common/06-verify-and-parse-credential.sdjwt.js +39 -10
- package/lib/module/credential/issuance/common/06-verify-and-parse-credential.sdjwt.js.map +1 -1
- package/lib/module/credential/issuance/mrtd-pop/02-init-challenge.js +47 -34
- package/lib/module/credential/issuance/mrtd-pop/02-init-challenge.js.map +1 -1
- package/lib/module/credential/issuance/mrtd-pop/03-validate-challenge.js +58 -47
- package/lib/module/credential/issuance/mrtd-pop/03-validate-challenge.js.map +1 -1
- package/lib/module/credential/issuance/mrtd-pop/index.js +20 -5
- package/lib/module/credential/issuance/mrtd-pop/index.js.map +1 -1
- package/lib/module/credential/issuance/v1.0.0/02-start-user-authorization.js +1 -1
- package/lib/module/credential/issuance/v1.0.0/02-start-user-authorization.js.map +1 -1
- package/lib/module/credential/issuance/v1.0.0/index.js +2 -2
- package/lib/module/credential/issuance/v1.0.0/index.js.map +1 -1
- package/lib/module/credential/issuance/v1.0.0/mappers.js +1 -1
- package/lib/module/credential/issuance/v1.0.0/mappers.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/01-evaluate-issuer-trust.js +0 -2
- package/lib/module/credential/issuance/v1.3.3/01-evaluate-issuer-trust.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/02-start-user-authorization.js +20 -16
- package/lib/module/credential/issuance/v1.3.3/02-start-user-authorization.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/04-authorize-access.js +22 -19
- package/lib/module/credential/issuance/v1.3.3/04-authorize-access.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/05-obtain-credential.js +5 -7
- package/lib/module/credential/issuance/v1.3.3/05-obtain-credential.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/06-verify-and-parse-credential.js +4 -1
- package/lib/module/credential/issuance/v1.3.3/06-verify-and-parse-credential.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/index.js +2 -2
- package/lib/module/credential/issuance/v1.3.3/index.js.map +1 -1
- package/lib/module/credential/issuance/v1.3.3/mappers.js +1 -1
- package/lib/module/credential/issuance/v1.3.3/mappers.js.map +1 -1
- package/lib/module/credential/presentation/{v1.3.3/utils.mdoc.js → common/utils/mdoc.js} +2 -2
- package/lib/module/credential/presentation/common/utils/mdoc.js.map +1 -0
- package/lib/module/credential/presentation/v1.3.3/06-evaluate-dcql-query.js +2 -3
- package/lib/module/credential/presentation/v1.3.3/06-evaluate-dcql-query.js.map +1 -1
- package/lib/module/credential/status/README.md +3 -2
- package/lib/module/credential/status/v1.3.3/01-status-list.js +27 -5
- package/lib/module/credential/status/v1.3.3/01-status-list.js.map +1 -1
- package/lib/module/credential/status/v1.3.3/02-verify-and-parse-status-list.js +17 -6
- package/lib/module/credential/status/v1.3.3/02-verify-and-parse-status-list.js.map +1 -1
- package/lib/module/mdoc/index.js +3 -24
- package/lib/module/mdoc/index.js.map +1 -1
- package/lib/module/sd-jwt/__test__/types.test.js +2 -14
- package/lib/module/sd-jwt/__test__/types.test.js.map +1 -1
- package/lib/module/sd-jwt/__test__/utils.test.js +0 -12
- package/lib/module/sd-jwt/__test__/utils.test.js.map +1 -1
- package/lib/module/sd-jwt/types.js +1 -14
- package/lib/module/sd-jwt/types.js.map +1 -1
- package/lib/module/utils/callbacks.js +19 -1
- package/lib/module/utils/callbacks.js.map +1 -1
- package/lib/module/utils/x509.js +28 -0
- package/lib/module/utils/x509.js.map +1 -0
- package/lib/module/wallet-instance-attestation/api/types.js +0 -2
- package/lib/module/wallet-instance-attestation/api/types.js.map +1 -1
- package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js +1 -14
- package/lib/module/wallet-instance-attestation/v1.3.3/mappers.js.map +1 -1
- package/lib/module/wallet-instance-attestation/v1.3.3/types.js +2 -7
- package/lib/module/wallet-instance-attestation/v1.3.3/types.js.map +1 -1
- package/lib/module/wallet-unit-attestation/api/types.js +0 -11
- package/lib/module/wallet-unit-attestation/api/types.js.map +1 -1
- package/lib/typescript/credential/issuance/api/06-verify-and-parse-credential.d.ts +4 -0
- package/lib/typescript/credential/issuance/api/06-verify-and-parse-credential.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/common/02-start-user-authorization.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/common/06-verify-and-parse-credential.sdjwt.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/mrtd-pop/02-init-challenge.d.ts +12 -1
- package/lib/typescript/credential/issuance/mrtd-pop/02-init-challenge.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/mrtd-pop/03-validate-challenge.d.ts +12 -1
- package/lib/typescript/credential/issuance/mrtd-pop/03-validate-challenge.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/mrtd-pop/index.d.ts +2 -1
- package/lib/typescript/credential/issuance/mrtd-pop/index.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.0.0/mappers.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/01-evaluate-issuer-trust.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/02-start-user-authorization.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/04-authorize-access.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/05-obtain-credential.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/06-verify-and-parse-credential.d.ts.map +1 -1
- package/lib/typescript/credential/issuance/v1.3.3/mappers.d.ts.map +1 -1
- package/lib/typescript/credential/presentation/{v1.3.3/utils.mdoc.d.ts → common/utils/mdoc.d.ts} +2 -2
- package/lib/typescript/credential/presentation/common/utils/mdoc.d.ts.map +1 -0
- package/lib/typescript/credential/presentation/v1.3.3/06-evaluate-dcql-query.d.ts.map +1 -1
- package/lib/typescript/credential/status/api/status-list.d.ts +8 -4
- package/lib/typescript/credential/status/api/status-list.d.ts.map +1 -1
- package/lib/typescript/credential/status/v1.3.3/01-status-list.d.ts.map +1 -1
- package/lib/typescript/credential/status/v1.3.3/02-verify-and-parse-status-list.d.ts.map +1 -1
- package/lib/typescript/mdoc/index.d.ts +1 -1
- package/lib/typescript/mdoc/index.d.ts.map +1 -1
- package/lib/typescript/mdoc/utils.d.ts +0 -24
- package/lib/typescript/mdoc/utils.d.ts.map +1 -1
- package/lib/typescript/sd-jwt/types.d.ts +0 -12
- package/lib/typescript/sd-jwt/types.d.ts.map +1 -1
- package/lib/typescript/utils/callbacks.d.ts +7 -0
- package/lib/typescript/utils/callbacks.d.ts.map +1 -1
- package/lib/typescript/utils/x509.d.ts +10 -0
- package/lib/typescript/utils/x509.d.ts.map +1 -0
- package/lib/typescript/wallet-instance-attestation/api/types.d.ts +0 -2
- package/lib/typescript/wallet-instance-attestation/api/types.d.ts.map +1 -1
- package/lib/typescript/wallet-instance-attestation/v1.0.0/mappers.d.ts +0 -2
- package/lib/typescript/wallet-instance-attestation/v1.0.0/mappers.d.ts.map +1 -1
- package/lib/typescript/wallet-instance-attestation/v1.3.3/mappers.d.ts +2 -9
- package/lib/typescript/wallet-instance-attestation/v1.3.3/mappers.d.ts.map +1 -1
- package/lib/typescript/wallet-instance-attestation/v1.3.3/types.d.ts +2 -7
- package/lib/typescript/wallet-instance-attestation/v1.3.3/types.d.ts.map +1 -1
- package/lib/typescript/wallet-unit-attestation/api/types.d.ts +0 -11
- package/lib/typescript/wallet-unit-attestation/api/types.d.ts.map +1 -1
- package/lib/typescript/wallet-unit-attestation/v1.3.3/mappers.d.ts +0 -22
- package/lib/typescript/wallet-unit-attestation/v1.3.3/mappers.d.ts.map +1 -1
- package/lib/typescript/wallet-unit-attestation/v1.3.3/types.d.ts +0 -11
- package/lib/typescript/wallet-unit-attestation/v1.3.3/types.d.ts.map +1 -1
- package/package.json +6 -6
- package/src/credential/issuance/api/06-verify-and-parse-credential.ts +4 -0
- package/src/credential/issuance/common/02-start-user-authorization.ts +6 -3
- package/src/credential/issuance/common/06-verify-and-parse-credential.sdjwt.ts +42 -9
- package/src/credential/issuance/mrtd-pop/02-init-challenge.ts +69 -45
- package/src/credential/issuance/mrtd-pop/03-validate-challenge.ts +84 -62
- package/src/credential/issuance/mrtd-pop/index.ts +13 -5
- package/src/credential/issuance/v1.0.0/02-start-user-authorization.ts +1 -1
- package/src/credential/issuance/v1.0.0/index.ts +2 -2
- package/src/credential/issuance/v1.0.0/mappers.ts +4 -1
- package/src/credential/issuance/v1.3.3/01-evaluate-issuer-trust.ts +0 -2
- package/src/credential/issuance/v1.3.3/02-start-user-authorization.ts +24 -20
- package/src/credential/issuance/v1.3.3/04-authorize-access.ts +28 -23
- package/src/credential/issuance/v1.3.3/05-obtain-credential.ts +8 -8
- package/src/credential/issuance/v1.3.3/06-verify-and-parse-credential.ts +2 -1
- package/src/credential/issuance/v1.3.3/index.ts +2 -2
- package/src/credential/issuance/v1.3.3/mappers.ts +4 -1
- package/src/credential/presentation/{v1.3.3/utils.mdoc.ts → common/utils/mdoc.ts} +2 -2
- package/src/credential/presentation/v1.3.3/06-evaluate-dcql-query.ts +3 -3
- package/src/credential/status/README.md +3 -2
- package/src/credential/status/api/status-list.ts +10 -7
- package/src/credential/status/v1.3.3/01-status-list.ts +21 -7
- package/src/credential/status/v1.3.3/02-verify-and-parse-status-list.ts +19 -5
- package/src/mdoc/index.ts +5 -41
- package/src/sd-jwt/__test__/types.test.ts +1 -13
- package/src/sd-jwt/__test__/utils.test.ts +0 -12
- package/src/sd-jwt/types.ts +0 -13
- package/src/utils/callbacks.ts +28 -1
- package/src/utils/x509.ts +43 -0
- package/src/wallet-instance-attestation/api/types.ts +0 -2
- package/src/wallet-instance-attestation/v1.3.3/mappers.ts +3 -11
- package/src/wallet-instance-attestation/v1.3.3/types.ts +2 -7
- package/src/wallet-unit-attestation/api/types.ts +0 -11
- package/lib/commonjs/credential/issuance/common/authorization.js +0 -56
- package/lib/commonjs/credential/issuance/common/authorization.js.map +0 -1
- package/lib/commonjs/credential/presentation/v1.3.3/utils.mdoc.js.map +0 -1
- package/lib/module/credential/issuance/common/authorization.js +0 -48
- package/lib/module/credential/issuance/common/authorization.js.map +0 -1
- package/lib/module/credential/presentation/v1.3.3/utils.mdoc.js.map +0 -1
- package/lib/typescript/credential/issuance/common/authorization.d.ts +0 -21
- package/lib/typescript/credential/issuance/common/authorization.d.ts.map +0 -1
- package/lib/typescript/credential/presentation/v1.3.3/utils.mdoc.d.ts.map +0 -1
- package/src/credential/issuance/common/authorization.ts +0 -89
|
@@ -5,11 +5,12 @@ Object.defineProperty(exports, "__esModule", {
|
|
|
5
5
|
});
|
|
6
6
|
exports.startUserAuthorization = void 0;
|
|
7
7
|
var _ioWalletOauth = require("@pagopa/io-wallet-oauth2");
|
|
8
|
+
var _uuid = require("uuid");
|
|
8
9
|
var _logging = require("../../../utils/logging");
|
|
9
|
-
var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
|
|
10
10
|
var _callbacks = require("../../../utils/callbacks");
|
|
11
11
|
var _errors = require("../../../utils/errors");
|
|
12
|
-
var
|
|
12
|
+
var _config = require("../../../utils/config");
|
|
13
|
+
var _startUserAuthorization = require("../common/02-start-user-authorization");
|
|
13
14
|
const startUserAuthorization = async (issuerConf, credentialIds, proof, ctx) => {
|
|
14
15
|
const {
|
|
15
16
|
wiaCryptoContext,
|
|
@@ -22,8 +23,7 @@ const startUserAuthorization = async (issuerConf, credentialIds, proof, ctx) =>
|
|
|
22
23
|
_logging.Logger.log(_logging.LogLevel.ERROR, `Public key associated with kid ${clientId} not found in the device`);
|
|
23
24
|
throw new _errors.IoWalletError("No public key found");
|
|
24
25
|
}
|
|
25
|
-
const
|
|
26
|
-
const credentialDefinition = credentialIds.map(c => (0, _authorization.selectCredentialDefinition)(issuerConf, c));
|
|
26
|
+
const credentialDefinition = credentialIds.map(c => (0, _startUserAuthorization.selectCredentialDefinition)(issuerConf, c));
|
|
27
27
|
if (proof.proofType === "mrtd-pop") {
|
|
28
28
|
/**
|
|
29
29
|
* When we requests a PID using eID Substantial Authentication with MRTD Verification, we must include
|
|
@@ -38,12 +38,14 @@ const startUserAuthorization = async (issuerConf, credentialIds, proof, ctx) =>
|
|
|
38
38
|
challenge_redirect_uri: redirectUri
|
|
39
39
|
});
|
|
40
40
|
}
|
|
41
|
-
const
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
}
|
|
41
|
+
const wiaSigner = {
|
|
42
|
+
method: "jwk",
|
|
43
|
+
alg: "ES256",
|
|
44
|
+
publicJwk: await wiaCryptoContext.getPublicKey()
|
|
45
|
+
};
|
|
46
|
+
const signJwt = (0, _callbacks.createSignJwtFromCryptoContext)(wiaCryptoContext);
|
|
46
47
|
const parRequest = await (0, _ioWalletOauth.createPushedAuthorizationRequest)({
|
|
48
|
+
config: _config.sdkConfigV1_3,
|
|
47
49
|
callbacks: {
|
|
48
50
|
..._callbacks.partialCallbacks,
|
|
49
51
|
signJwt
|
|
@@ -51,24 +53,26 @@ const startUserAuthorization = async (issuerConf, credentialIds, proof, ctx) =>
|
|
|
51
53
|
authorizationServerMetadata: {
|
|
52
54
|
require_signed_request_object: true
|
|
53
55
|
},
|
|
56
|
+
jti: (0, _uuid.v4)(),
|
|
54
57
|
clientId,
|
|
55
58
|
audience: issuerConf.credential_issuer,
|
|
56
59
|
authorization_details: credentialDefinition,
|
|
57
60
|
codeChallengeMethodsSupported: ["S256"],
|
|
58
|
-
|
|
59
|
-
|
|
61
|
+
redirectUri,
|
|
62
|
+
dpop: {
|
|
63
|
+
signer: wiaSigner
|
|
64
|
+
}
|
|
60
65
|
});
|
|
61
66
|
const clientAttestationPoP = await (0, _ioWalletOauth.createClientAttestationPopJwt)({
|
|
67
|
+
config: _config.sdkConfigV1_3,
|
|
62
68
|
callbacks: {
|
|
69
|
+
generateRandom: _callbacks.partialCallbacks.generateRandom,
|
|
63
70
|
signJwt
|
|
64
71
|
},
|
|
65
72
|
clientAttestation: walletInstanceAttestation,
|
|
66
73
|
authorizationServer: issuerConf.authorization_endpoint,
|
|
67
|
-
signer:
|
|
68
|
-
|
|
69
|
-
alg: "ES256",
|
|
70
|
-
publicJwk: signerJwk
|
|
71
|
-
}
|
|
74
|
+
signer: wiaSigner,
|
|
75
|
+
jti: (0, _uuid.v4)()
|
|
72
76
|
});
|
|
73
77
|
const {
|
|
74
78
|
request_uri
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_ioWalletOauth","require","
|
|
1
|
+
{"version":3,"names":["_ioWalletOauth","require","_uuid","_logging","_callbacks","_errors","_config","_startUserAuthorization","startUserAuthorization","issuerConf","credentialIds","proof","ctx","wiaCryptoContext","walletInstanceAttestation","redirectUri","appFetch","fetch","clientId","getPublicKey","then","_","kid","Logger","log","LogLevel","ERROR","IoWalletError","credentialDefinition","map","c","selectCredentialDefinition","proofType","push","type","idphinting","idpHinting","challenge_method","challenge_redirect_uri","wiaSigner","method","alg","publicJwk","signJwt","createSignJwtFromCryptoContext","parRequest","createPushedAuthorizationRequest","config","sdkConfigV1_3","callbacks","partialCallbacks","authorizationServerMetadata","require_signed_request_object","jti","uuidv4","audience","credential_issuer","authorization_details","codeChallengeMethodsSupported","dpop","signer","clientAttestationPoP","createClientAttestationPopJwt","generateRandom","clientAttestation","authorizationServer","authorization_endpoint","request_uri","fetchPushedAuthorizationResponse","pushedAuthorizationRequestEndpoint","pushed_authorization_request_endpoint","pushedAuthorizationRequest","clientAttestationDPoP","walletAttestation","issuerRequestUri","codeVerifier","pkceCodeVerifier","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/02-start-user-authorization.ts"],"mappings":";;;;;;AAAA,IAAAA,cAAA,GAAAC,OAAA;AAMA,IAAAC,KAAA,GAAAD,OAAA;AACA,IAAAE,QAAA,GAAAF,OAAA;AAEA,IAAAG,UAAA,GAAAH,OAAA;AAIA,IAAAI,OAAA,GAAAJ,OAAA;AACA,IAAAK,OAAA,GAAAL,OAAA;AACA,IAAAM,uBAAA,GAAAN,OAAA;AAEO,MAAMO,sBAA6D,GACxE,MAAAA,CAAOC,UAAU,EAAEC,aAAa,EAAEC,KAAK,EAAEC,GAAG,KAAK;EAC/C,MAAM;IACJC,gBAAgB;IAChBC,yBAAyB;IACzBC,WAAW;IACXC,QAAQ,GAAGC;EACb,CAAC,GAAGL,GAAG;EAEP,MAAMM,QAAQ,GAAG,MAAML,gBAAgB,CAACM,YAAY,CAAC,CAAC,CAACC,IAAI,CAAEC,CAAC,IAAKA,CAAC,CAACC,GAAG,CAAC;EAEzE,IAAI,CAACJ,QAAQ,EAAE;IACbK,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,kCAAiCR,QAAS,0BAC7C,CAAC;IACD,MAAM,IAAIS,qBAAa,CAAC,qBAAqB,CAAC;EAChD;EAEA,MAAMC,oBAAoB,GAAGlB,aAAa,CAACmB,GAAG,CAAEC,CAAC,IAC/C,IAAAC,kDAA0B,EAACtB,UAAU,EAAEqB,CAAC,CAC1C,CAAC;EAED,IAAInB,KAAK,CAACqB,SAAS,KAAK,UAAU,EAAE;IAClC;AACN;AACA;AACA;AACA;AACA;IACMJ,oBAAoB,CAACK,IAAI,CAAC;MACxBC,IAAI,EAAE,sBAAsB;MAC5BC,UAAU,EAAExB,KAAK,CAACyB,UAAU;MAC5BC,gBAAgB,EAAE,UAAU;MAC5BC,sBAAsB,EAAEvB;IAC1B,CAAC,CAAC;EACJ;EAEA,MAAMwB,SAAuB,GAAG;IAC9BC,MAAM,EAAE,KAAK;IACbC,GAAG,EAAE,OAAO;IACZC,SAAS,EAAE,MAAM7B,gBAAgB,CAACM,YAAY,CAAC;EACjD,CAAC;EAED,MAAMwB,OAAO,GAAG,IAAAC,yCAA8B,EAAC/B,gBAAgB,CAAC;EAEhE,MAAMgC,UAAU,GAAG,MAAM,IAAAC,+CAAgC,EAAC;IACxDC,MAAM,EAAEC,qBAAa;IACrBC,SAAS,EAAE;MACT,GAAGC,2BAAgB;MACnBP;IACF,CAAC;IACDQ,2BAA2B,EAAE;MAC3BC,6BAA6B,EAAE;IACjC,CAAC;IACDC,GAAG,EAAE,IAAAC,QAAM,EAAC,CAAC;IACbpC,QAAQ;IACRqC,QAAQ,EAAE9C,UAAU,CAAC+C,iBAAiB;IACtCC,qBAAqB,EAAE7B,oBAAoB;IAC3C8B,6BAA6B,EAAE,CAAC,MAAM,CAAC;IACvC3C,WAAW;IACX4C,IAAI,EAAE;MACJC,MAAM,EAAErB;IACV;EACF,CAAC,CAAC;EAEF,MAAMsB,oBAAoB,GAAG,MAAM,IAAAC,4CAA6B,EAAC;IAC/Df,MAAM,EAAEC,qBAAa;IACrBC,SAAS,EAAE;MACTc,cAAc,EAAEb,2BAAgB,CAACa,cAAc;MAC/CpB;IACF,CAAC;IACDqB,iBAAiB,EAAElD,yBAAyB;IAC5CmD,mBAAmB,EAAExD,UAAU,CAACyD,sBAAsB;IACtDN,MAAM,EAAErB,SAAS;IACjBc,GAAG,EAAE,IAAAC,QAAM,EAAC;EACd,CAAC,CAAC;EAEF,MAAM;IAAEa;EAAY,CAAC,GAAG,MAAM,IAAAC,+CAAgC,EAAC;IAC7DnB,SAAS,EAAE;MACThC,KAAK,EAAED;IACT,CAAC;IACDqD,kCAAkC,EAChC5D,UAAU,CAAC6D,qCAAqC;IAClDC,0BAA0B,EAAE1B,UAAU;IACtC2B,qBAAqB,EAAEX,oBAAoB;IAC3CY,iBAAiB,EAAE3D;EACrB,CAAC,CAAC;EAEF,OAAO;IACL4D,gBAAgB,EAAEP,WAAW;IAC7BjD,QAAQ;IACRyD,YAAY,EAAE9B,UAAU,CAAC+B,gBAAgB;IACzChD;EACF,CAAC;AACH,CAAC;AAACiD,OAAA,CAAArE,sBAAA,GAAAA,sBAAA"}
|
|
@@ -4,15 +4,11 @@ Object.defineProperty(exports, "__esModule", {
|
|
|
4
4
|
value: true
|
|
5
5
|
});
|
|
6
6
|
exports.authorizeAccess = void 0;
|
|
7
|
-
var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
|
|
8
7
|
var _ioWalletOauth = require("@pagopa/io-wallet-oauth2");
|
|
9
8
|
var _uuid = require("uuid");
|
|
10
|
-
var _pop = require("../../../utils/pop");
|
|
11
|
-
var WalletInstanceAttestation = _interopRequireWildcard(require("../../../wallet-instance-attestation/v1.0.0/utils"));
|
|
12
9
|
var _callbacks = require("../../../utils/callbacks");
|
|
13
10
|
var _errors = require("../../../utils/errors");
|
|
14
|
-
|
|
15
|
-
function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
|
|
11
|
+
var _config = require("../../../utils/config");
|
|
16
12
|
const authorizeAccess = async (issuerConf, code, redirectUri, codeVerifier, context) => {
|
|
17
13
|
const {
|
|
18
14
|
appFetch = fetch,
|
|
@@ -20,31 +16,36 @@ const authorizeAccess = async (issuerConf, code, redirectUri, codeVerifier, cont
|
|
|
20
16
|
wiaCryptoContext,
|
|
21
17
|
dPopCryptoContext
|
|
22
18
|
} = context;
|
|
23
|
-
const dPopSignerJwk = await dPopCryptoContext.getPublicKey();
|
|
24
19
|
const tokenDPoP = await (0, _ioWalletOauth.createTokenDPoP)({
|
|
25
20
|
callbacks: {
|
|
26
21
|
..._callbacks.partialCallbacks,
|
|
27
|
-
signJwt:
|
|
28
|
-
jwt: await new _ioReactNativeJwt.SignJWT(wiaCryptoContext).setPayload(payload).sign(),
|
|
29
|
-
signerJwk: dPopSignerJwk
|
|
30
|
-
})
|
|
22
|
+
signJwt: (0, _callbacks.createSignJwtFromCryptoContext)(dPopCryptoContext)
|
|
31
23
|
},
|
|
32
24
|
signer: {
|
|
33
|
-
alg: "ES256",
|
|
34
25
|
method: "jwk",
|
|
35
|
-
|
|
26
|
+
alg: "ES256",
|
|
27
|
+
publicJwk: await dPopCryptoContext.getPublicKey()
|
|
36
28
|
},
|
|
29
|
+
jti: (0, _uuid.v4)(),
|
|
37
30
|
tokenRequest: {
|
|
38
31
|
method: "POST",
|
|
39
32
|
url: issuerConf.token_endpoint
|
|
40
33
|
}
|
|
41
34
|
});
|
|
42
|
-
const
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
35
|
+
const clientAttestationDPoP = await (0, _ioWalletOauth.createClientAttestationPopJwt)({
|
|
36
|
+
config: _config.sdkConfigV1_3,
|
|
37
|
+
callbacks: {
|
|
38
|
+
generateRandom: _callbacks.partialCallbacks.generateRandom,
|
|
39
|
+
signJwt: (0, _callbacks.createSignJwtFromCryptoContext)(wiaCryptoContext)
|
|
40
|
+
},
|
|
41
|
+
clientAttestation: walletInstanceAttestation,
|
|
42
|
+
authorizationServer: issuerConf.credential_issuer,
|
|
43
|
+
signer: {
|
|
44
|
+
method: "jwk",
|
|
45
|
+
alg: "ES256",
|
|
46
|
+
publicJwk: await wiaCryptoContext.getPublicKey()
|
|
47
|
+
}
|
|
48
|
+
});
|
|
48
49
|
const tokenResponse = await (0, _ioWalletOauth.fetchTokenResponse)({
|
|
49
50
|
accessTokenEndpoint: issuerConf.token_endpoint,
|
|
50
51
|
callbacks: {
|
|
@@ -53,7 +54,7 @@ const authorizeAccess = async (issuerConf, code, redirectUri, codeVerifier, cont
|
|
|
53
54
|
},
|
|
54
55
|
walletAttestation: walletInstanceAttestation,
|
|
55
56
|
dPoP: tokenDPoP.jwt,
|
|
56
|
-
clientAttestationDPoP
|
|
57
|
+
clientAttestationDPoP,
|
|
57
58
|
accessTokenRequest: {
|
|
58
59
|
code,
|
|
59
60
|
grant_type: "authorization_code",
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["
|
|
1
|
+
{"version":3,"names":["_ioWalletOauth","require","_uuid","_callbacks","_errors","_config","authorizeAccess","issuerConf","code","redirectUri","codeVerifier","context","appFetch","fetch","walletInstanceAttestation","wiaCryptoContext","dPopCryptoContext","tokenDPoP","createTokenDPoP","callbacks","partialCallbacks","signJwt","createSignJwtFromCryptoContext","signer","method","alg","publicJwk","getPublicKey","jti","uuidv4","tokenRequest","url","token_endpoint","clientAttestationDPoP","createClientAttestationPopJwt","config","sdkConfigV1_3","generateRandom","clientAttestation","authorizationServer","credential_issuer","tokenResponse","fetchTokenResponse","accessTokenEndpoint","walletAttestation","dPoP","jwt","accessTokenRequest","grant_type","code_verifier","redirect_uri","authorization_details","IoWalletError","accessToken","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/04-authorize-access.ts"],"mappings":";;;;;;AAAA,IAAAA,cAAA,GAAAC,OAAA;AAKA,IAAAC,KAAA,GAAAD,OAAA;AACA,IAAAE,UAAA,GAAAF,OAAA;AAIA,IAAAG,OAAA,GAAAH,OAAA;AACA,IAAAI,OAAA,GAAAJ,OAAA;AAGO,MAAMK,eAA+C,GAAG,MAAAA,CAC7DC,UAAU,EACVC,IAAI,EACJC,WAAW,EACXC,YAAY,EACZC,OAAO,KACJ;EACH,MAAM;IACJC,QAAQ,GAAGC,KAAK;IAChBC,yBAAyB;IACzBC,gBAAgB;IAChBC;EACF,CAAC,GAAGL,OAAO;EAEX,MAAMM,SAAS,GAAG,MAAM,IAAAC,8BAAe,EAAC;IACtCC,SAAS,EAAE;MACT,GAAGC,2BAAgB;MACnBC,OAAO,EAAE,IAAAC,yCAA8B,EAACN,iBAAiB;IAC3D,CAAC;IACDO,MAAM,EAAE;MACNC,MAAM,EAAE,KAAK;MACbC,GAAG,EAAE,OAAO;MACZC,SAAS,EAAE,MAAMV,iBAAiB,CAACW,YAAY,CAAC;IAClD,CAAC;IACDC,GAAG,EAAE,IAAAC,QAAM,EAAC,CAAC;IACbC,YAAY,EAAE;MACZN,MAAM,EAAE,MAAM;MACdO,GAAG,EAAExB,UAAU,CAACyB;IAClB;EACF,CAAC,CAAC;EAEF,MAAMC,qBAAqB,GAAG,MAAM,IAAAC,4CAA6B,EAAC;IAChEC,MAAM,EAAEC,qBAAa;IACrBjB,SAAS,EAAE;MACTkB,cAAc,EAAEjB,2BAAgB,CAACiB,cAAc;MAC/ChB,OAAO,EAAE,IAAAC,yCAA8B,EAACP,gBAAgB;IAC1D,CAAC;IACDuB,iBAAiB,EAAExB,yBAAyB;IAC5CyB,mBAAmB,EAAEhC,UAAU,CAACiC,iBAAiB;IACjDjB,MAAM,EAAE;MACNC,MAAM,EAAE,KAAK;MACbC,GAAG,EAAE,OAAO;MACZC,SAAS,EAAE,MAAMX,gBAAgB,CAACY,YAAY,CAAC;IACjD;EACF,CAAC,CAAC;EAEF,MAAMc,aAAa,GAAG,MAAM,IAAAC,iCAAkB,EAAC;IAC7CC,mBAAmB,EAAEpC,UAAU,CAACyB,cAAc;IAC9Cb,SAAS,EAAE;MACT,GAAGC,2BAAgB;MACnBP,KAAK,EAAED;IACT,CAAC;IACDgC,iBAAiB,EAAE9B,yBAAyB;IAC5C+B,IAAI,EAAE5B,SAAS,CAAC6B,GAAG;IACnBb,qBAAqB;IACrBc,kBAAkB,EAAE;MAClBvC,IAAI;MACJwC,UAAU,EAAE,oBAAoB;MAChCC,aAAa,EAAEvC,YAAY;MAC3BwC,YAAY,EAAEzC;IAChB;EACF,CAAC,CAAC;;EAEF;EACA;EACA,IAAI,CAACgC,aAAa,CAACU,qBAAqB,EAAE;IACxC,MAAM,IAAIC,qBAAa,CACrB,6DACF,CAAC;EACH;EAEA,OAAO;IACLC,WAAW,EAAEZ;EACf,CAAC;AACH,CAAC;AAACa,OAAA,CAAAhD,eAAA,GAAAA,eAAA"}
|
|
@@ -8,6 +8,7 @@ var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
|
|
|
8
8
|
var _ioWalletOauth = require("@pagopa/io-wallet-oauth2");
|
|
9
9
|
var _ioWalletOid4vci = require("@pagopa/io-wallet-oid4vci");
|
|
10
10
|
var _ioWalletUtils = require("@pagopa/io-wallet-utils");
|
|
11
|
+
var _uuid = require("uuid");
|
|
11
12
|
var _misc = require("../../../utils/misc");
|
|
12
13
|
var _errors = require("../../../utils/errors");
|
|
13
14
|
var _logging = require("../../../utils/logging");
|
|
@@ -95,20 +96,17 @@ const requestCredentials = async _ref => {
|
|
|
95
96
|
keyAttestation: keyAttestationJwt,
|
|
96
97
|
signers
|
|
97
98
|
});
|
|
98
|
-
const dPopSignerJwk = await dPopCryptoContext.getPublicKey();
|
|
99
99
|
const credentialDPoP = await (0, _ioWalletOauth.createTokenDPoP)({
|
|
100
100
|
callbacks: {
|
|
101
101
|
..._callbacks.partialCallbacks,
|
|
102
|
-
signJwt:
|
|
103
|
-
jwt: await new _ioReactNativeJwt.SignJWT(dPopCryptoContext).setPayload(payload).sign(),
|
|
104
|
-
signerJwk: dPopSignerJwk
|
|
105
|
-
})
|
|
102
|
+
signJwt: (0, _callbacks.createSignJwtFromCryptoContext)(dPopCryptoContext)
|
|
106
103
|
},
|
|
107
104
|
signer: {
|
|
108
105
|
method: "jwk",
|
|
109
106
|
alg: "ES256",
|
|
110
|
-
publicJwk:
|
|
107
|
+
publicJwk: await dPopCryptoContext.getPublicKey()
|
|
111
108
|
},
|
|
109
|
+
jti: (0, _uuid.v4)(),
|
|
112
110
|
tokenRequest: {
|
|
113
111
|
method: "POST",
|
|
114
112
|
url: issuerConf.credential_endpoint
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_ioReactNativeJwt","require","_ioWalletOauth","_ioWalletOid4vci","_ioWalletUtils","_misc","_errors","_logging","_config","_callbacks","_types","requestCredentials","_ref","issuerConf","accessToken","credentialIdentifier","clientId","keyAttestationJwt","credentialCryptoContexts","dPopCryptoContext","appFetch","fetch","c_nonce","nonce_endpoint","method","headers","then","hasStatusOrThrow","res","json","NonceResponse","parse","keys","Promise","all","map","ctx","publicJwk","getPublicKey","cryptoContext","signJwt","jwtSigner","_ref2","header","payload","IoWalletError","find","_ref3","kid","jwt","SignJWT","setProtectedHeader","setPayload","sign","signerJwk","signers","_ref4","alg","credentialRequest","createCredentialRequest","config","sdkConfigV1_3","callbacks","hash","partialCallbacks","credential_identifier","issuerIdentifier","credential_issuer","maxBatchSize","credential_issuance_batch_size","nonce","keyAttestation","
|
|
1
|
+
{"version":3,"names":["_ioReactNativeJwt","require","_ioWalletOauth","_ioWalletOid4vci","_ioWalletUtils","_uuid","_misc","_errors","_logging","_config","_callbacks","_types","requestCredentials","_ref","issuerConf","accessToken","credentialIdentifier","clientId","keyAttestationJwt","credentialCryptoContexts","dPopCryptoContext","appFetch","fetch","c_nonce","nonce_endpoint","method","headers","then","hasStatusOrThrow","res","json","NonceResponse","parse","keys","Promise","all","map","ctx","publicJwk","getPublicKey","cryptoContext","signJwt","jwtSigner","_ref2","header","payload","IoWalletError","find","_ref3","kid","jwt","SignJWT","setProtectedHeader","setPayload","sign","signerJwk","signers","_ref4","alg","credentialRequest","createCredentialRequest","config","sdkConfigV1_3","callbacks","hash","partialCallbacks","credential_identifier","issuerIdentifier","credential_issuer","maxBatchSize","credential_issuance_batch_size","nonce","keyAttestation","credentialDPoP","createTokenDPoP","createSignJwtFromCryptoContext","signer","jti","uuidv4","tokenRequest","url","credential_endpoint","access_token","fetchCredentialResponse","credentialEndpoint","dPoP","catch","handleObtainCredentialError","exports","obtainCredential","credentialDefinition","context","credentialCryptoContext","walletUnitAttestation","ValidationFailed","message","credential_configuration_id","containsCredentialDefinition","authorization_details","some","c","credential_identifiers","includes","Logger","log","LogLevel","ERROR","credentialRes","DEBUG","JSON","stringify","issuerCredentialConfig","credential_configurations_supported","credential","credentials","at","format","obtainCredentialsBatch","_ref5","e","SdkUnexpectedStatusCodeError","ResponseErrorBuilder","IssuerResponseError","handle","code","IssuerResponseErrorCodes","CredentialInvalidStatus","CredentialRequestFailed","buildFrom"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/05-obtain-credential.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,cAAA,GAAAD,OAAA;AAKA,IAAAE,gBAAA,GAAAF,OAAA;AAIA,IAAAG,cAAA,GAAAH,OAAA;AACA,IAAAI,KAAA,GAAAJ,OAAA;AACA,IAAAK,KAAA,GAAAL,OAAA;AACA,IAAAM,OAAA,GAAAN,OAAA;AAOA,IAAAO,QAAA,GAAAP,OAAA;AACA,IAAAQ,OAAA,GAAAR,OAAA;AACA,IAAAS,UAAA,GAAAT,OAAA;AAKA,IAAAU,MAAA,GAAAV,OAAA;AAcA;AACA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMW,kBAAkB,GAAG,MAAAC,IAAA,IASP;EAAA,IATc;IACvCC,UAAU;IACVC,WAAW;IACXC,oBAAoB;IACpBC,QAAQ;IACRC,iBAAiB;IACjBC,wBAAwB;IACxBC,iBAAiB;IACjBC,QAAQ,GAAGC;EACQ,CAAC,GAAAT,IAAA;EACpB,MAAM;IAAEU;EAAQ,CAAC,GAAG,MAAMF,QAAQ,CAACP,UAAU,CAACU,cAAc,EAAE;IAC5DC,MAAM,EAAE,MAAM;IACdC,OAAO,EAAE;MAAE,cAAc,EAAE;IAAmB;EAChD,CAAC,CAAC,CACCC,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,GAAG,IAAKA,GAAG,CAACC,IAAI,CAAC,CAAC,CAAC,CACzBH,IAAI,CAACI,oBAAa,CAACC,KAAK,CAAC;EAE5B,MAAMC,IAAI,GAAG,MAAMC,OAAO,CAACC,GAAG,CAC5BhB,wBAAwB,CAACiB,GAAG,CAAC,MAAOC,GAAG,IAAK;IAC1C,MAAMC,SAAS,GAAG,MAAMD,GAAG,CAACE,YAAY,CAAC,CAAC;IAC1C,OAAO;MAAED,SAAS;MAAEE,aAAa,EAAEH;IAAI,CAAC;EAC1C,CAAC,CACH,CAAC;EAED,MAAMI,OAAmC,GAAG,MAAAA,CAC1CC,SAAS,EAAAC,KAAA,KAEN;IAAA,IADH;MAAEC,MAAM;MAAEC;IAAQ,CAAC,GAAAF,KAAA;IAEnB,IAAID,SAAS,CAACjB,MAAM,KAAK,KAAK,EAAE;MAC9B,MAAM,IAAIqB,qBAAa,CAAE,8BAA6BJ,SAAS,CAACjB,MAAO,EAAC,CAAC;IAC3E;IAEA,MAAM;MAAEe;IAAc,CAAC,GACrBP,IAAI,CAACc,IAAI,CAACC,KAAA;MAAA,IAAC;QAAEV;MAAU,CAAC,GAAAU,KAAA;MAAA,OAAKV,SAAS,CAACW,GAAG,KAAKP,SAAS,CAACJ,SAAS,CAACW,GAAG;IAAA,EAAC,IACvE,CAAC,CAAC;IAEJ,IAAI,CAACT,aAAa,EAAE;MAClB,MAAM,IAAIM,qBAAa,CACpB,wCAAuCJ,SAAS,CAACJ,SAAS,CAACW,GAAI,EAClE,CAAC;IACH;IAEA,OAAO;MACLC,GAAG,EAAE,MAAM,IAAIC,yBAAO,CAACX,aAAa,CAAC,CAClCY,kBAAkB,CAACR,MAAM,CAAC,CAC1BS,UAAU,CAACR,OAAO,CAAC,CACnBS,IAAI,CAAC,CAAC;MACTC,SAAS,EAAEb,SAAS,CAACJ;IACvB,CAAC;EACH,CAAC;EAED,MAAMkB,OAAO,GAAGvB,IAAI,CAACG,GAAG,CAAeqB,KAAA;IAAA,IAAC;MAAEnB;IAAU,CAAC,GAAAmB,KAAA;IAAA,OAAM;MACzDC,GAAG,EAAE,OAAO;MACZjC,MAAM,EAAE,KAAK;MACba;IACF,CAAC;EAAA,CAAC,CAAC;EAEH,MAAMqB,iBAAiB,GAAG,MAAM,IAAAC,wCAAuB,EAAC;IACtDC,MAAM,EAAEC,qBAAa;IACrBC,SAAS,EAAE;MACTC,IAAI,EAAEC,2BAAgB,CAACD,IAAI;MAC3BvB;IACF,CAAC;IACDxB,QAAQ;IACRiD,qBAAqB,EAAElD,oBAAoB;IAC3CmD,gBAAgB,EAAErD,UAAU,CAACsD,iBAAiB;IAC9CC,YAAY,EAAEvD,UAAU,CAACwD,8BAA8B;IACvDC,KAAK,EAAEhD,OAAO;IACdiD,cAAc,EAAEtD,iBAAiB;IACjCsC;EACF,CAAC,CAAC;EAEF,MAAMiB,cAAc,GAAG,MAAM,IAAAC,8BAAe,EAAC;IAC3CX,SAAS,EAAE;MACT,GAAGE,2BAAgB;MACnBxB,OAAO,EAAE,IAAAkC,yCAA8B,EAACvD,iBAAiB;IAC3D,CAAC;IACDwD,MAAM,EAAE;MACNnD,MAAM,EAAE,KAAK;MACbiC,GAAG,EAAE,OAAO;MACZpB,SAAS,EAAE,MAAMlB,iBAAiB,CAACmB,YAAY,CAAC;IAClD,CAAC;IACDsC,GAAG,EAAE,IAAAC,QAAM,EAAC,CAAC;IACbC,YAAY,EAAE;MACZtD,MAAM,EAAE,MAAM;MACduD,GAAG,EAAElE,UAAU,CAACmE;IAClB,CAAC;IACDlE,WAAW,EAAEA,WAAW,CAACmE;EAC3B,CAAC,CAAC;EAEF,OAAO,MAAM,IAAAC,wCAAuB,EAAC;IACnCpB,SAAS,EAAE;MACTzC,KAAK,EAAED;IACT,CAAC;IACD+D,kBAAkB,EAAEtE,UAAU,CAACmE,mBAAmB;IAClDtB,iBAAiB,EAAEA,iBAAiB;IACpC5C,WAAW,EAAEA,WAAW,CAACmE,YAAY;IACrCG,IAAI,EAAEZ,cAAc,CAACvB;EACvB,CAAC,CAAC,CAACoC,KAAK,CAACC,2BAA2B,CAAC;AACvC,CAAC;AAACC,OAAA,CAAA5E,kBAAA,GAAAA,kBAAA;AAEK,MAAM6E,gBAAiD,GAAG,MAAAA,CAC/D3E,UAAU,EACVC,WAAW,EACXE,QAAQ,EACRyE,oBAAoB,EACpBC,OAAO,KACJ;EACH,MAAM;IACJC,uBAAuB;IACvBxE,iBAAiB;IACjByE,qBAAqB;IACrBxE,QAAQ,GAAGC;EACb,CAAC,GAAGqE,OAAO;EACX,IAAI,CAACE,qBAAqB,EAAE;IAC1B,MAAM,IAAIC,wBAAgB,CAAC;MACzBC,OAAO,EACL;IACJ,CAAC,CAAC;EACJ;EAEA,MAAM;IAAEC,2BAA2B;IAAE9B;EAAsB,CAAC,GAC1DwB,oBAAoB;;EAEtB;EACA,MAAMO,4BAA4B,GAAGlF,WAAW,CAACmF,qBAAqB,CAACC,IAAI,CACxEC,CAAC,IACAA,CAAC,CAACJ,2BAA2B,KAAKA,2BAA2B,KAC5D9B,qBAAqB,GAClBkC,CAAC,CAACC,sBAAsB,CAACC,QAAQ,CAACpC,qBAAqB,CAAC,GACxD,IAAI,CACZ,CAAC;EAED,IAAI,CAAC+B,4BAA4B,EAAE;IACjCM,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACC,KAAK,EACb,gEAA+D3F,WAAW,CAACmF,qBAAsB,EACpG,CAAC;IACD,MAAM,IAAIJ,wBAAgB,CAAC;MACzBC,OAAO,EACL;IACJ,CAAC,CAAC;EACJ;EAEA,MAAMY,aAAa,GAAG,MAAM/F,kBAAkB,CAAC;IAC7CE,UAAU;IACVC,WAAW;IACXE,QAAQ;IACRE,wBAAwB,EAAE,CAACyE,uBAAuB,CAAC;IACnD5E,oBAAoB,EAAEkD,qBAAsB;IAC5C9C,iBAAiB;IACjBF,iBAAiB,EAAE2E,qBAAqB;IACxCxE;EACF,CAAC,CAAC;EAEFkF,eAAM,CAACC,GAAG,CACRC,iBAAQ,CAACG,KAAK,EACb,wBAAuBC,IAAI,CAACC,SAAS,CAACH,aAAa,CAAE,EACxD,CAAC;;EAED;EACA,MAAMI,sBAAsB,GAC1BjG,UAAU,CAACkG,mCAAmC,CAAChB,2BAA2B,CAAC;EAE7E,IAAI,gBAAgB,IAAIW,aAAa,EAAE;IACrC,MAAM,IAAI7D,qBAAa,CAAC,oCAAoC,CAAC;EAC/D;;EAEA;EACA,OAAO;IACLmE,UAAU,EAAEN,aAAa,CAACO,WAAW,CAACC,EAAE,CAAC,CAAC,CAAC,CAAEF,UAAU;IACvDG,MAAM,EAAEL,sBAAsB,CAAEK;EAClC,CAAC;AACH,CAAC;AAAC5B,OAAA,CAAAC,gBAAA,GAAAA,gBAAA;AAEK,MAAM4B,sBAA6D,GACxE,MAAAA,CAAOvG,UAAU,EAAEC,WAAW,EAAEE,QAAQ,EAAEyE,oBAAoB,EAAEC,OAAO,KAAK;EAC1E,MAAM;IACJxE,wBAAwB;IACxBC,iBAAiB;IACjByE,qBAAqB;IACrBxE,QAAQ,GAAGC;EACb,CAAC,GAAGqE,OAAO;EACX,IAAI,CAACE,qBAAqB,EAAE;IAC1B,MAAM,IAAIC,wBAAgB,CAAC;MACzBC,OAAO,EACL;IACJ,CAAC,CAAC;EACJ;EAEA,MAAM;IAAEC,2BAA2B;IAAE9B;EAAsB,CAAC,GAC1DwB,oBAAoB;EAEtB,MAAMiB,aAAa,GAAG,MAAM/F,kBAAkB,CAAC;IAC7CE,UAAU;IACVC,WAAW;IACXE,QAAQ;IACRE,wBAAwB;IACxBH,oBAAoB,EAAEkD,qBAAqB;IAC3C9C,iBAAiB;IACjBF,iBAAiB,EAAE2E,qBAAqB;IACxCxE;EACF,CAAC,CAAC;;EAEF;EACA,MAAM0F,sBAAsB,GAC1BjG,UAAU,CAACkG,mCAAmC,CAC5ChB,2BAA2B,CAC5B;EAEH,IAAI,gBAAgB,IAAIW,aAAa,EAAE;IACrC,MAAM,IAAI7D,qBAAa,CAAC,8CAA8C,CAAC;EACzE;EAEA,OAAO6D,aAAa,CAACO,WAAW,CAAC9E,GAAG,CAACkF,KAAA;IAAA,IAAC;MAAEL;IAAW,CAAC,GAAAK,KAAA;IAAA,OAAM;MACxDL,UAAU;MACVG,MAAM,EAAEL,sBAAsB,CAAEK;IAClC,CAAC;EAAA,CAAC,CAAC;AACL,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AALA5B,OAAA,CAAA6B,sBAAA,GAAAA,sBAAA;AAMA,MAAM9B,2BAA2B,GAAIgC,CAAU,IAAK;EAClDhB,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACC,KAAK,EAAG,8CAA6Ca,CAAE,EAAC,CAAC;EAE7E,IAAI,EAAEA,CAAC,YAAYC,wCAA4B,CAAC,EAAE;IAChD,MAAMD,CAAC;EACT;EAEA,MAAM,IAAIE,4BAAoB,CAACC,2BAAmB,CAAC,CAChDC,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACC,uBAAuB;IACtD/B,OAAO,EAAE;EACX,CAAC,CAAC,CACD4B,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACC,uBAAuB;IACtD/B,OAAO,EAAE;EACX,CAAC,CAAC,CACD4B,MAAM,CAAC,GAAG,EAAE;IACXC,IAAI,EAAEC,gCAAwB,CAACE,uBAAuB;IACtDhC,OAAO,EAAE;EACX,CAAC,CAAC,CACDiC,SAAS,CAACT,CAAC,CAAC;AACjB,CAAC"}
|
|
@@ -15,7 +15,10 @@ const verifyAndParseCredential = async (issuerConf, credential, credentialConfig
|
|
|
15
15
|
case "dc+sd-jwt":
|
|
16
16
|
{
|
|
17
17
|
_logging.Logger.log(_logging.LogLevel.DEBUG, "Parsing credential in dc+sd-jwt format");
|
|
18
|
-
return (0, _verifyAndParseCredential2.verifyAndParseCredentialSdJwt)(issuerConf, credential, credentialConfigurationId,
|
|
18
|
+
return (0, _verifyAndParseCredential2.verifyAndParseCredentialSdJwt)(issuerConf, credential, credentialConfigurationId, {
|
|
19
|
+
validateCertificateChain: true,
|
|
20
|
+
...context
|
|
21
|
+
}, x509CertRoot);
|
|
19
22
|
}
|
|
20
23
|
case "mso_mdoc":
|
|
21
24
|
{
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_errors","require","_logging","_verifyAndParseCredential","_verifyAndParseCredential2","verifyAndParseCredential","issuerConf","credential","credentialConfigurationId","context","x509CertRoot","_issuerConf$credentia","format","credential_configurations_supported","Logger","log","LogLevel","DEBUG","verifyAndParseCredentialSdJwt","verifyAndParseCredentialMDoc","message","ERROR","IoWalletError","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/06-verify-and-parse-credential.ts"],"mappings":";;;;;;AAAA,IAAAA,OAAA,GAAAC,OAAA;AACA,IAAAC,QAAA,GAAAD,OAAA;AAEA,IAAAE,yBAAA,GAAAF,OAAA;AACA,IAAAG,0BAAA,GAAAH,OAAA;AAEO,MAAMI,wBAAiE,GAC5E,MAAAA,CACEC,UAAU,EACVC,UAAU,EACVC,yBAAyB,EACzBC,OAAO,EACPC,YAAY,KACT;EAAA,IAAAC,qBAAA;EACH,MAAMC,MAAM,IAAAD,qBAAA,GACVL,UAAU,CAACO,mCAAmC,CAACL,yBAAyB,CAAC,cAAAG,qBAAA,uBAAzEA,qBAAA,CACIC,MAAM;EAEZ,QAAQA,MAAM;IACZ,KAAK,WAAW;MAAE;QAChBE,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACC,KAAK,EAAE,wCAAwC,CAAC;QACpE,OAAO,IAAAC,wDAA6B,EAClCZ,UAAU,EACVC,UAAU,EACVC,yBAAyB,
|
|
1
|
+
{"version":3,"names":["_errors","require","_logging","_verifyAndParseCredential","_verifyAndParseCredential2","verifyAndParseCredential","issuerConf","credential","credentialConfigurationId","context","x509CertRoot","_issuerConf$credentia","format","credential_configurations_supported","Logger","log","LogLevel","DEBUG","verifyAndParseCredentialSdJwt","validateCertificateChain","verifyAndParseCredentialMDoc","message","ERROR","IoWalletError","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/06-verify-and-parse-credential.ts"],"mappings":";;;;;;AAAA,IAAAA,OAAA,GAAAC,OAAA;AACA,IAAAC,QAAA,GAAAD,OAAA;AAEA,IAAAE,yBAAA,GAAAF,OAAA;AACA,IAAAG,0BAAA,GAAAH,OAAA;AAEO,MAAMI,wBAAiE,GAC5E,MAAAA,CACEC,UAAU,EACVC,UAAU,EACVC,yBAAyB,EACzBC,OAAO,EACPC,YAAY,KACT;EAAA,IAAAC,qBAAA;EACH,MAAMC,MAAM,IAAAD,qBAAA,GACVL,UAAU,CAACO,mCAAmC,CAACL,yBAAyB,CAAC,cAAAG,qBAAA,uBAAzEA,qBAAA,CACIC,MAAM;EAEZ,QAAQA,MAAM;IACZ,KAAK,WAAW;MAAE;QAChBE,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACC,KAAK,EAAE,wCAAwC,CAAC;QACpE,OAAO,IAAAC,wDAA6B,EAClCZ,UAAU,EACVC,UAAU,EACVC,yBAAyB,EACzB;UAAEW,wBAAwB,EAAE,IAAI;UAAE,GAAGV;QAAQ,CAAC,EAC9CC,YACF,CAAC;MACH;IACA,KAAK,UAAU;MAAE;QACfI,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACC,KAAK,EAAE,uCAAuC,CAAC;QACnE,OAAO,IAAAG,sDAA4B,EACjCd,UAAU,EACVC,UAAU,EACVC,yBAAyB,EACzBC,OAAO,EACPC,YACF,CAAC;MACH;IAEA;MAAS;QACP,MAAMW,OAAO,GAAI,kCAAiCT,MAAO,EAAC;QAC1DE,eAAM,CAACC,GAAG,CAACC,iBAAQ,CAACM,KAAK,EAAED,OAAO,CAAC;QACnC,MAAM,IAAIE,qBAAa,CAACF,OAAO,CAAC;MAClC;EACF;AACF,CAAC;AAACG,OAAA,CAAAnB,wBAAA,GAAAA,wBAAA"}
|
|
@@ -23,7 +23,7 @@ const Issuance = {
|
|
|
23
23
|
obtainCredential: _obtainCredential.obtainCredential,
|
|
24
24
|
obtainCredentialsBatch: _obtainCredential.obtainCredentialsBatch,
|
|
25
25
|
verifyAndParseCredential: _verifyAndParseCredential.verifyAndParseCredential,
|
|
26
|
-
MRTDPoP: _mrtdPop.
|
|
26
|
+
MRTDPoP: _mrtdPop.MRTDPoPv1_3
|
|
27
27
|
};
|
|
28
28
|
exports.Issuance = Issuance;
|
|
29
29
|
//# sourceMappingURL=index.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_evaluateIssuerTrust","require","_startUserAuthorization","_completeUserAuthorization","_authorizeAccess","_obtainCredential","_verifyAndParseCredential","_mrtdPop","Issuance","evaluateIssuerTrust","startUserAuthorization","buildAuthorizationUrl","completeUserAuthorizationWithQueryMode","continueUserAuthorizationWithMRTDPoPChallenge","getRequestedCredentialToBePresented","completeUserAuthorizationWithFormPostJwtMode","authorizeAccess","obtainCredential","obtainCredentialsBatch","verifyAndParseCredential","MRTDPoP","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/index.ts"],"mappings":";;;;;;AACA,IAAAA,oBAAA,GAAAC,OAAA;AACA,IAAAC,uBAAA,GAAAD,OAAA;AACA,IAAAE,0BAAA,GAAAF,OAAA;AAOA,IAAAG,gBAAA,GAAAH,OAAA;AACA,IAAAI,iBAAA,GAAAJ,OAAA;AAIA,IAAAK,yBAAA,GAAAL,OAAA;AACA,IAAAM,QAAA,GAAAN,OAAA;AAEO,MAAMO,QAAqB,GAAG;EACnCC,mBAAmB,EAAnBA,wCAAmB;EACnBC,sBAAsB,EAAtBA,8CAAsB;EACtBC,qBAAqB,EAArBA,gDAAqB;EACrBC,sCAAsC,EAAtCA,iEAAsC;EACtCC,6CAA6C,EAA7CA,wEAA6C;EAC7CC,mCAAmC,EAAnCA,8DAAmC;EACnCC,4CAA4C,EAA5CA,uEAA4C;EAC5CC,eAAe,EAAfA,gCAAe;EACfC,gBAAgB,EAAhBA,kCAAgB;EAChBC,sBAAsB,EAAtBA,wCAAsB;EACtBC,wBAAwB,EAAxBA,kDAAwB;EACxBC,OAAO,
|
|
1
|
+
{"version":3,"names":["_evaluateIssuerTrust","require","_startUserAuthorization","_completeUserAuthorization","_authorizeAccess","_obtainCredential","_verifyAndParseCredential","_mrtdPop","Issuance","evaluateIssuerTrust","startUserAuthorization","buildAuthorizationUrl","completeUserAuthorizationWithQueryMode","continueUserAuthorizationWithMRTDPoPChallenge","getRequestedCredentialToBePresented","completeUserAuthorizationWithFormPostJwtMode","authorizeAccess","obtainCredential","obtainCredentialsBatch","verifyAndParseCredential","MRTDPoP","MRTDPoPv1_3","exports"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/index.ts"],"mappings":";;;;;;AACA,IAAAA,oBAAA,GAAAC,OAAA;AACA,IAAAC,uBAAA,GAAAD,OAAA;AACA,IAAAE,0BAAA,GAAAF,OAAA;AAOA,IAAAG,gBAAA,GAAAH,OAAA;AACA,IAAAI,iBAAA,GAAAJ,OAAA;AAIA,IAAAK,yBAAA,GAAAL,OAAA;AACA,IAAAM,QAAA,GAAAN,OAAA;AAEO,MAAMO,QAAqB,GAAG;EACnCC,mBAAmB,EAAnBA,wCAAmB;EACnBC,sBAAsB,EAAtBA,8CAAsB;EACtBC,qBAAqB,EAArBA,gDAAqB;EACrBC,sCAAsC,EAAtCA,iEAAsC;EACtCC,6CAA6C,EAA7CA,wEAA6C;EAC7CC,mCAAmC,EAAnCA,8DAAmC;EACnCC,4CAA4C,EAA5CA,uEAA4C;EAC5CC,eAAe,EAAfA,gCAAe;EACfC,gBAAgB,EAAhBA,kCAAgB;EAChBC,sBAAsB,EAAtBA,wCAAsB;EACtBC,wBAAwB,EAAxBA,kDAAwB;EACxBC,OAAO,EAAEC;AACX,CAAC;AAACC,OAAA,CAAAd,QAAA,GAAAA,QAAA"}
|
|
@@ -41,7 +41,7 @@ const mapToIssuerConfig = (0, _mappers.createMapper)(x => {
|
|
|
41
41
|
credential_endpoint: openid_credential_issuer.credential_endpoint,
|
|
42
42
|
credential_issuer: openid_credential_issuer.credential_issuer,
|
|
43
43
|
credential_configurations_supported: mapCredentialConfigurationsSupported(openid_credential_issuer),
|
|
44
|
-
keys: openid_credential_issuer.jwks.keys,
|
|
44
|
+
keys: [...openid_credential_issuer.jwks.keys, ...oauth_authorization_server.jwks.keys],
|
|
45
45
|
pushed_authorization_request_endpoint: oauth_authorization_server.pushed_authorization_request_endpoint,
|
|
46
46
|
token_endpoint: oauth_authorization_server.token_endpoint,
|
|
47
47
|
nonce_endpoint: openid_credential_issuer.nonce_endpoint,
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_misc","require","_mappers","_IssuerConfig","mapCredentialConfigurationsSupported","oidIssuer","Object","entries","credential_configurations_supported","reduce","acc","_ref","_config$credential_me","key","config","format","vct","doctype","scope","display","credential_metadata","claims","map","claim","path","mapToIssuerConfig","createMapper","x","_openid_credential_is","oauth_authorization_server","openid_credential_issuer","federation_entity","metadata","assert","authorization_endpoint","credential_endpoint","credential_issuer","keys","jwks","pushed_authorization_request_endpoint","token_endpoint","nonce_endpoint","credential_issuance_batch_size","batch_credential_issuance","batch_size","outputSchema","IssuerConfig","exports","mapToRequestObject","_ref2","payload","iss","client_id","dcql_query","nonce","response_uri","state","response_mode","response_type"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/mappers.ts"],"mappings":";;;;;;AAEA,IAAAA,KAAA,GAAAC,OAAA;AACA,IAAAC,QAAA,GAAAD,OAAA;AAGA,IAAAE,aAAA,GAAAF,OAAA;AAOA,MAAMG,oCAAoC,GACxCC,SAA8C,IAE9CC,MAAM,CAACC,OAAO,CAACF,SAAS,CAACG,mCAAmC,CAAC,CAACC,MAAM,CAClE,CAACC,GAAG,EAAAC,IAAA,KAAoB;EAAA,IAAAC,qBAAA;EAAA,IAAlB,CAACC,GAAG,EAAEC,MAAM,CAAC,GAAAH,IAAA;EACjBD,GAAG,CAACG,GAAG,CAAC,GAAG;IACT,IAAIC,MAAM,CAACC,MAAM,KAAK,WAAW,GAC7B;MAAEA,MAAM,EAAED,MAAM,CAACC,MAAM;MAAEC,GAAG,EAAEF,MAAM,CAACE;IAAI,CAAC,GAC1C;MAAED,MAAM,EAAED,MAAM,CAACC,MAAM;MAAEE,OAAO,EAAEH,MAAM,CAACG;IAAQ,CAAC,CAAC;IACvDC,KAAK,EAAEJ,MAAM,CAACI,KAAK;IACnBC,OAAO,EAAEL,MAAM,CAACM,mBAAmB,CAACD,OAAQ;IAC5CE,MAAM,EACJ,EAAAT,qBAAA,GAAAE,MAAM,CAACM,mBAAmB,CAACC,MAAM,cAAAT,qBAAA,uBAAjCA,qBAAA,CAAmCU,GAAG,CAAEC,KAAK,KAAM;MACjDC,IAAI,EAAED,KAAK,CAACC,IAAI;MAChBL,OAAO,EAAEI,KAAK,CAACJ,OAAO,IAAI;IAC5B,CAAC,CAAC,CAAC,KAAI;EACX,CAAC;EACD,OAAOT,GAAG;AACZ,CAAC,EACD,CAAC,CACH,CAAC;AAEI,MAAMe,iBAAiB,GAAG,IAAAC,qBAAY,EAI1CC,CAAC,IAAK;EAAA,IAAAC,qBAAA;EACL,MAAM;IACJC,0BAA0B;IAC1BC,wBAAwB;IACxBC;EACF,CAAC,GAAGJ,CAAC,CAACK,QAAQ;EAEd,IAAAC,YAAM,EACJJ,0BAA0B,EAC1B,2DACF,CAAC;EACD,IAAAI,YAAM,EACJH,wBAAwB,EACxB,yDACF,CAAC;EAED,OAAO;IACLI,sBAAsB,EAAEL,0BAA0B,CAACK,sBAAsB;IACzEC,mBAAmB,EAAEL,wBAAwB,CAACK,mBAAmB;IACjEC,iBAAiB,EAAEN,wBAAwB,CAACM,iBAAiB;IAC7D5B,mCAAmC,EAAEJ,oCAAoC,CACvE0B,wBACF,CAAC;IACDO,IAAI,
|
|
1
|
+
{"version":3,"names":["_misc","require","_mappers","_IssuerConfig","mapCredentialConfigurationsSupported","oidIssuer","Object","entries","credential_configurations_supported","reduce","acc","_ref","_config$credential_me","key","config","format","vct","doctype","scope","display","credential_metadata","claims","map","claim","path","mapToIssuerConfig","createMapper","x","_openid_credential_is","oauth_authorization_server","openid_credential_issuer","federation_entity","metadata","assert","authorization_endpoint","credential_endpoint","credential_issuer","keys","jwks","pushed_authorization_request_endpoint","token_endpoint","nonce_endpoint","credential_issuance_batch_size","batch_credential_issuance","batch_size","outputSchema","IssuerConfig","exports","mapToRequestObject","_ref2","payload","iss","client_id","dcql_query","nonce","response_uri","state","response_mode","response_type"],"sourceRoot":"../../../../../src","sources":["credential/issuance/v1.3.3/mappers.ts"],"mappings":";;;;;;AAEA,IAAAA,KAAA,GAAAC,OAAA;AACA,IAAAC,QAAA,GAAAD,OAAA;AAGA,IAAAE,aAAA,GAAAF,OAAA;AAOA,MAAMG,oCAAoC,GACxCC,SAA8C,IAE9CC,MAAM,CAACC,OAAO,CAACF,SAAS,CAACG,mCAAmC,CAAC,CAACC,MAAM,CAClE,CAACC,GAAG,EAAAC,IAAA,KAAoB;EAAA,IAAAC,qBAAA;EAAA,IAAlB,CAACC,GAAG,EAAEC,MAAM,CAAC,GAAAH,IAAA;EACjBD,GAAG,CAACG,GAAG,CAAC,GAAG;IACT,IAAIC,MAAM,CAACC,MAAM,KAAK,WAAW,GAC7B;MAAEA,MAAM,EAAED,MAAM,CAACC,MAAM;MAAEC,GAAG,EAAEF,MAAM,CAACE;IAAI,CAAC,GAC1C;MAAED,MAAM,EAAED,MAAM,CAACC,MAAM;MAAEE,OAAO,EAAEH,MAAM,CAACG;IAAQ,CAAC,CAAC;IACvDC,KAAK,EAAEJ,MAAM,CAACI,KAAK;IACnBC,OAAO,EAAEL,MAAM,CAACM,mBAAmB,CAACD,OAAQ;IAC5CE,MAAM,EACJ,EAAAT,qBAAA,GAAAE,MAAM,CAACM,mBAAmB,CAACC,MAAM,cAAAT,qBAAA,uBAAjCA,qBAAA,CAAmCU,GAAG,CAAEC,KAAK,KAAM;MACjDC,IAAI,EAAED,KAAK,CAACC,IAAI;MAChBL,OAAO,EAAEI,KAAK,CAACJ,OAAO,IAAI;IAC5B,CAAC,CAAC,CAAC,KAAI;EACX,CAAC;EACD,OAAOT,GAAG;AACZ,CAAC,EACD,CAAC,CACH,CAAC;AAEI,MAAMe,iBAAiB,GAAG,IAAAC,qBAAY,EAI1CC,CAAC,IAAK;EAAA,IAAAC,qBAAA;EACL,MAAM;IACJC,0BAA0B;IAC1BC,wBAAwB;IACxBC;EACF,CAAC,GAAGJ,CAAC,CAACK,QAAQ;EAEd,IAAAC,YAAM,EACJJ,0BAA0B,EAC1B,2DACF,CAAC;EACD,IAAAI,YAAM,EACJH,wBAAwB,EACxB,yDACF,CAAC;EAED,OAAO;IACLI,sBAAsB,EAAEL,0BAA0B,CAACK,sBAAsB;IACzEC,mBAAmB,EAAEL,wBAAwB,CAACK,mBAAmB;IACjEC,iBAAiB,EAAEN,wBAAwB,CAACM,iBAAiB;IAC7D5B,mCAAmC,EAAEJ,oCAAoC,CACvE0B,wBACF,CAAC;IACDO,IAAI,EAAE,CACJ,GAAGP,wBAAwB,CAACQ,IAAI,CAACD,IAAI,EACrC,GAAGR,0BAA0B,CAACS,IAAI,CAACD,IAAI,CAC/B;IACVE,qCAAqC,EACnCV,0BAA0B,CAACU,qCAAqC;IAClEC,cAAc,EAAEX,0BAA0B,CAACW,cAAc;IACzDC,cAAc,EAAEX,wBAAwB,CAACW,cAAe;IACxDV,iBAAiB,EAAEA,iBAAiB,IAAI,CAAC,CAAC;IAC1CW,8BAA8B,GAAAd,qBAAA,GAC5BE,wBAAwB,CAACa,yBAAyB,cAAAf,qBAAA,uBAAlDA,qBAAA,CAAoDgB;EACxD,CAAC;AACH,CAAC,EACD;EAAEC,YAAY,EAAEC;AAAa,CAAC,CAAC;AACjC,CAAC;AAACC,OAAA,CAAAtB,iBAAA,GAAAA,iBAAA;AAEK,MAAMuB,kBAAkB,GAAG,IAAAtB,qBAAY,EAG5CuB,KAAA;EAAA,IAAC;IAAEC;EAAQ,CAAC,GAAAD,KAAA;EAAA,OAAM;IAClBE,GAAG,EAAED,OAAO,CAACC,GAAG,IAAI,gBAAgB;IACpCC,SAAS,EAAEF,OAAO,CAACE,SAAS;IAC5BC,UAAU,EAAEH,OAAO,CAACG,UAAU;IAC9BC,KAAK,EAAEJ,OAAO,CAACI,KAAK;IACpBC,YAAY,EAAEL,OAAO,CAACK,YAAY;IAClCC,KAAK,EAAEN,OAAO,CAACM,KAAK;IACpBC,aAAa,EAAEP,OAAO,CAACO,aAAa;IACpCC,aAAa,EAAER,OAAO,CAACQ;EACzB,CAAC;AAAA,CAAC,CAAC;AAACX,OAAA,CAAAC,kBAAA,GAAAA,kBAAA"}
|
|
@@ -6,7 +6,7 @@ Object.defineProperty(exports, "__esModule", {
|
|
|
6
6
|
exports.mapCredentialsToObj = exports.getPresentationFrameFromClaims = exports.getClaimsFromDcqlMatch = void 0;
|
|
7
7
|
var _ioReactNativeIso = require("@pagopa/io-react-native-iso18013");
|
|
8
8
|
var _jsrsasign = require("jsrsasign");
|
|
9
|
-
var _dcql = require("
|
|
9
|
+
var _dcql = require("./dcql");
|
|
10
10
|
/**
|
|
11
11
|
* Convert a list of credential in mdoc format to a list of objects
|
|
12
12
|
* with namespaces for correct parsing by the `dcql` library.
|
|
@@ -85,4 +85,4 @@ const getPresentationFrameFromClaims = (requestedClaims, docType) => ({
|
|
|
85
85
|
}, {})
|
|
86
86
|
});
|
|
87
87
|
exports.getPresentationFrameFromClaims = getPresentationFrameFromClaims;
|
|
88
|
-
//# sourceMappingURL=
|
|
88
|
+
//# sourceMappingURL=mdoc.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"names":["_ioReactNativeIso","require","_jsrsasign","_dcql","mapCredentialsToObj","credentialsMdoc","Promise","all","map","credential","issuerSigned","CBOR","decodeIssuerSigned","b64utob64","namespaces","Object","entries","nameSpaces","reduce","acc","_ref","ns","nsClaims","flattenNsClaims","ac","_ref2","el","elementIdentifier","elementValue","credential_format","doctype","issuerAuth","payload","docType","cryptographic_holder_binding","original_credential","exports","getClaimsFromDcqlMatch","match","getValidDcqlClaims","flatMap","_ref3","output","_ref4","keys","claimName","namespace","name","value","getPresentationFrameFromClaims","requestedClaims","_ref5","existingNamespace"],"sourceRoot":"../../../../../../src","sources":["credential/presentation/common/utils/mdoc.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,UAAA,GAAAD,OAAA;AAOA,IAAAE,KAAA,GAAAF,OAAA;AAMA;AACA;AACA;AACA;AACA;AACA;AACO,MAAMG,mBAAmB,GAAG,MACjCC,eAAkC,IACM;EACxC,OAAO,MAAMC,OAAO,CAACC,GAAG,CACtBF,eAAe,CAACG,GAAG,CAAC,MAAOC,UAAU,IAAK;IACxC,MAAMC,YAAY,GAAG,MAAMC,sBAAI,CAACC,kBAAkB,CAChD,IAAAC,oBAAS,EAACJ,UAAU,CAAC,CAAC,CAAC,CACzB,CAAC;IAED,MAAMK,UAAU,GAAGC,MAAM,CAACC,OAAO,CAACN,YAAY,CAACO,UAAU,CAAC,CAACC,MAAM,CAC/D,CAACC,GAAG,EAAAC,IAAA,KAAqB;MAAA,IAAnB,CAACC,EAAE,EAAEC,QAAQ,CAAC,GAAAF,IAAA;MAClB,MAAMG,eAAe,GAAGR,MAAM,CAACC,OAAO,CAACM,QAAQ,CAAC,CAACJ,MAAM,CACrD,CAACM,EAAE,EAAAC,KAAA;QAAA,IAAE,GAAGC,EAAE,CAAC,GAAAD,KAAA;QAAA,OAAM;UACf,GAAGD,EAAE;UACL,CAACE,EAAE,CAACC,iBAAiB,GAAGD,EAAE,CAACE;QAC7B,CAAC;MAAA,CAAC,EACF,CAAC,CACH,CAAC;MAED,OAAO;QACL,GAAGT,GAAG;QACN,CAACE,EAAE,GAAGE;MACR,CAAC;IACH,CAAC,EACD,CAAC,CACH,CAAC;IAED,OAAO;MACLM,iBAAiB,EAAE,UAAU;MAC7BC,OAAO,EAAEpB,YAAY,CAACqB,UAAU,CAACC,OAAO,CAACC,OAAO,IAAI,iBAAiB;MACrEC,4BAA4B,EAAE,IAAI;MAClCpB,UAAU;MACVqB,mBAAmB,EAAE1B;IACvB,CAAC;EACH,CAAC,CACH,CAAC;AACH,CAAC;;AAED;AACA;AACA;AACA;AACA;AAJA2B,OAAA,CAAAhC,mBAAA,GAAAA,mBAAA;AAKO,MAAMiC,sBAAsB,GACjCC,KAAsC,IAEtC,IAAAC,wBAAkB,EAACD,KAAK,CAAC,CAACE,OAAO,CAACC,KAAA;EAAA,IAAC;IAAEC;EAAO,CAAC,GAAAD,KAAA;EAAA,OAC3C1B,MAAM,CAACC,OAAO,CAAC0B,MAAM,CAAC,CAACF,OAAO,CAACG,KAAA;IAAA,IAAC,CAACtB,EAAE,EAAEC,QAAQ,CAAC,GAAAqB,KAAA;IAAA,OAC5C5B,MAAM,CAAC6B,IAAI,CAACtB,QAAQ,CAAC,CAACd,GAAG,CAAEqC,SAAS,KAAM;MACxCC,SAAS,EAAEzB,EAAE;MACb0B,IAAI,EAAEF,SAAS;MACfG,KAAK,EAAE1B,QAAQ,CAACuB,SAAS;IAC3B,CAAC,CAAC,CAAC;EAAA,CACL,CAAC;AAAA,CACH,CAAC;;AAEH;AACA;AACA;AACA;AACA;AACA;AACA;AANAT,OAAA,CAAAC,sBAAA,GAAAA,sBAAA;AAOO,MAAMY,8BAA8B,GAAGA,CAC5CC,eAAsC,EACtCjB,OAAe,MACQ;EACvB,CAACA,OAAO,GAAGiB,eAAe,CAAChC,MAAM,CAAC,CAACC,GAAG,EAAAgC,KAAA,KAA0B;IAAA,IAAxB;MAAEJ,IAAI;MAAED;IAAU,CAAC,GAAAK,KAAA;IACzD,IAAIL,SAAS,EAAE;MACb3B,GAAG,CAAC2B,SAAS,CAAC,KAAK,CAAC,CAAC;MACrB,MAAMM,iBAAiB,GAAGjC,GAAG,CAAC2B,SAAS,CAA4B;MACnEM,iBAAiB,CAACL,IAAI,CAAC,GAAG,IAAI;IAChC,CAAC,MAAM;MACL5B,GAAG,CAAC4B,IAAI,CAAC,GAAG,IAAI;IAClB;IACA,OAAO5B,GAAG;EACZ,CAAC,EAAE,CAAC,CAAsB;AAC5B,CAAC,CAAC;AAACiB,OAAA,CAAAa,8BAAA,GAAAA,8BAAA"}
|
|
@@ -7,8 +7,8 @@ exports.evaluateDcqlQuery = void 0;
|
|
|
7
7
|
var _dcql = require("dcql");
|
|
8
8
|
var _valibot = require("valibot");
|
|
9
9
|
var _errors = require("../common/errors");
|
|
10
|
-
var mdocUtils = _interopRequireWildcard(require("./utils.mdoc"));
|
|
11
10
|
var sdJwtUtils = _interopRequireWildcard(require("../common/utils/sd-jwt"));
|
|
11
|
+
var mdocUtils = _interopRequireWildcard(require("../common/utils/mdoc"));
|
|
12
12
|
var _dcql2 = require("../common/utils/dcql");
|
|
13
13
|
function _getRequireWildcardCache(nodeInterop) { if (typeof WeakMap !== "function") return null; var cacheBabelInterop = new WeakMap(); var cacheNodeInterop = new WeakMap(); return (_getRequireWildcardCache = function (nodeInterop) { return nodeInterop ? cacheNodeInterop : cacheBabelInterop; })(nodeInterop); }
|
|
14
14
|
function _interopRequireWildcard(obj, nodeInterop) { if (!nodeInterop && obj && obj.__esModule) { return obj; } if (obj === null || typeof obj !== "object" && typeof obj !== "function") { return { default: obj }; } var cache = _getRequireWildcardCache(nodeInterop); if (cache && cache.has(obj)) { return cache.get(obj); } var newObj = {}; var hasPropertyDescriptor = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var key in obj) { if (key !== "default" && Object.prototype.hasOwnProperty.call(obj, key)) { var desc = hasPropertyDescriptor ? Object.getOwnPropertyDescriptor(obj, key) : null; if (desc && (desc.get || desc.set)) { Object.defineProperty(newObj, key, desc); } else { newObj[key] = obj[key]; } } } newObj.default = obj; if (cache) { cache.set(obj, newObj); } return newObj; }
|
|
@@ -48,7 +48,7 @@ const evaluateDcqlQuery = async function (query, credentialsSdJwt) {
|
|
|
48
48
|
vct
|
|
49
49
|
} = matchOutput;
|
|
50
50
|
const [keyTag, credential] = credentialsById[vct];
|
|
51
|
-
const requiredDisclosures = (0,
|
|
51
|
+
const requiredDisclosures = (0, _dcql2.getClaimsFromDcqlMatch)(match);
|
|
52
52
|
const presentationFrame = (0, _dcql2.getPresentationFrameFromDcqlMatch)(match, parsedQuery);
|
|
53
53
|
return {
|
|
54
54
|
id,
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_dcql","require","_valibot","_errors","
|
|
1
|
+
{"version":3,"names":["_dcql","require","_valibot","_errors","sdJwtUtils","_interopRequireWildcard","mdocUtils","_dcql2","_getRequireWildcardCache","nodeInterop","WeakMap","cacheBabelInterop","cacheNodeInterop","obj","__esModule","default","cache","has","get","newObj","hasPropertyDescriptor","Object","defineProperty","getOwnPropertyDescriptor","key","prototype","hasOwnProperty","call","desc","set","evaluateDcqlQuery","query","credentialsSdJwt","credentialsMdoc","arguments","length","undefined","credentials","Promise","all","mapCredentialsToObj","flat","credentialsById","reduce","acc","c","vct","doctype","original_credential","parsedQuery","DcqlQuery","parse","validate","queryResult","can_be_satisfied","CredentialsNotFoundError","extractFailedCredentialsDetails","getDcqlQueryMatches","map","_ref","_queryResult$credenti","_match$valid_credenti","id","match","purposes","credential_sets","filter","_set$matching_options","matching_options","includes","credentialSet","_credentialSet$purpos","description","purpose","toString","required","Boolean","matchOutput","valid_credentials","meta","output","credential_format","keyTag","credential","requiredDisclosures","getClaimsFromDcqlMatch","presentationFrame","getPresentationFrameFromDcqlMatch","format","getPresentationFrameFromClaims","Error","error","isValiError","DcqlError","message","code","cause","issues","exports"],"sourceRoot":"../../../../../src","sources":["credential/presentation/v1.3.3/06-evaluate-dcql-query.ts"],"mappings":";;;;;;AAAA,IAAAA,KAAA,GAAAC,OAAA;AACA,IAAAC,QAAA,GAAAD,OAAA;AACA,IAAAE,OAAA,GAAAF,OAAA;AAEA,IAAAG,UAAA,GAAAC,uBAAA,CAAAJ,OAAA;AACA,IAAAK,SAAA,GAAAD,uBAAA,CAAAJ,OAAA;AAEA,IAAAM,MAAA,GAAAN,OAAA;AAK8B,SAAAO,yBAAAC,WAAA,eAAAC,OAAA,kCAAAC,iBAAA,OAAAD,OAAA,QAAAE,gBAAA,OAAAF,OAAA,YAAAF,wBAAA,YAAAA,CAAAC,WAAA,WAAAA,WAAA,GAAAG,gBAAA,GAAAD,iBAAA,KAAAF,WAAA;AAAA,SAAAJ,wBAAAQ,GAAA,EAAAJ,WAAA,SAAAA,WAAA,IAAAI,GAAA,IAAAA,GAAA,CAAAC,UAAA,WAAAD,GAAA,QAAAA,GAAA,oBAAAA,GAAA,wBAAAA,GAAA,4BAAAE,OAAA,EAAAF,GAAA,UAAAG,KAAA,GAAAR,wBAAA,CAAAC,WAAA,OAAAO,KAAA,IAAAA,KAAA,CAAAC,GAAA,CAAAJ,GAAA,YAAAG,KAAA,CAAAE,GAAA,CAAAL,GAAA,SAAAM,MAAA,WAAAC,qBAAA,GAAAC,MAAA,CAAAC,cAAA,IAAAD,MAAA,CAAAE,wBAAA,WAAAC,GAAA,IAAAX,GAAA,QAAAW,GAAA,kBAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAd,GAAA,EAAAW,GAAA,SAAAI,IAAA,GAAAR,qBAAA,GAAAC,MAAA,CAAAE,wBAAA,CAAAV,GAAA,EAAAW,GAAA,cAAAI,IAAA,KAAAA,IAAA,CAAAV,GAAA,IAAAU,IAAA,CAAAC,GAAA,KAAAR,MAAA,CAAAC,cAAA,CAAAH,MAAA,EAAAK,GAAA,EAAAI,IAAA,YAAAT,MAAA,CAAAK,GAAA,IAAAX,GAAA,CAAAW,GAAA,SAAAL,MAAA,CAAAJ,OAAA,GAAAF,GAAA,MAAAG,KAAA,IAAAA,KAAA,CAAAa,GAAA,CAAAhB,GAAA,EAAAM,MAAA,YAAAA,MAAA;AAEvB,MAAMW,iBAA6D,GACxE,eAAAA,CAAOC,KAAK,EAAEC,gBAAgB,EAA2B;EAAA,IAAzBC,eAAe,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,EAAE;EAClD,MAAMG,WAAW,GAAG,CAClB,MAAMC,OAAO,CAACC,GAAG,CAAC,CAChBnC,UAAU,CAACoC,mBAAmB,CAACR,gBAAgB,CAAC,EAChD1B,SAAS,CAACkC,mBAAmB,CAACP,eAAe,CAAC,CAC/C,CAAC,EACFQ,IAAI,CAAC,CAAC;;EAER;EACA,MAAMC,eAAe,GAAGL,WAAW,CAACM,MAAM,CACxC,CAACC,GAAG,EAAEC,CAAC,MAAM;IACX,GAAGD,GAAG;IACN,CAAC,KAAK,IAAIC,CAAC,GAAGA,CAAC,CAACC,GAAG,GAAGD,CAAC,CAACE,OAAO,GAAGF,CAAC,CAACG;EACtC,CAAC,CAAC,EACF,CAAC,CACH,CAAC;EAED,IAAI;IACF;IACA,MAAMC,WAAW,GAAGC,eAAS,CAACC,KAAK,CAACpB,KAAK,CAAC;IAC1CmB,eAAS,CAACE,QAAQ,CAACH,WAAW,CAAC;IAE/B,MAAMI,WAAW,GAAGH,eAAS,CAACnB,KAAK,CAACkB,WAAW,EAAEZ,WAAW,CAAC;IAE7D,IAAI,CAACgB,WAAW,CAACC,gBAAgB,EAAE;MACjC,MAAM,IAAIC,gCAAwB,CAChC,IAAAC,sCAA+B,EAACH,WAAW,CAC7C,CAAC;IACH;IAEA,OAAO,IAAAI,0BAAmB,EAACJ,WAAW,CAAC,CAACK,GAAG,CAACC,IAAA,IAAiB;MAAA,IAAAC,qBAAA,EAAAC,qBAAA;MAAA,IAAhB,CAACC,EAAE,EAAEC,KAAK,CAAC,GAAAJ,IAAA;MACtD,MAAMK,QAAQ,IAAAJ,qBAAA,GAAGP,WAAW,CAACY,eAAe,cAAAL,qBAAA,gBAAAA,qBAAA,GAA3BA,qBAAA,CACbM,MAAM,CAAErC,GAAG;QAAA,IAAAsC,qBAAA;QAAA,QAAAA,qBAAA,GAAKtC,GAAG,CAACuC,gBAAgB,cAAAD,qBAAA,uBAApBA,qBAAA,CAAsB1B,IAAI,CAAC,CAAC,CAAC4B,QAAQ,CAACP,EAAE,CAAC;MAAA,EAAC,cAAAF,qBAAA,uBAD7CA,qBAAA,CAEbF,GAAG,CAAqBY,aAAa;QAAA,IAAAC,qBAAA;QAAA,OAAM;UAC3CC,WAAW,GAAAD,qBAAA,GAAED,aAAa,CAACG,OAAO,cAAAF,qBAAA,uBAArBA,qBAAA,CAAuBG,QAAQ,CAAC,CAAC;UAC9CC,QAAQ,EAAEC,OAAO,CAACN,aAAa,CAACK,QAAQ;QAC1C,CAAC;MAAA,CAAC,CAAC;MAEL,MAAME,WAAW,IAAAhB,qBAAA,GAAGE,KAAK,CAACe,iBAAiB,CAAC,CAAC,CAAC,cAAAjB,qBAAA,uBAA1BA,qBAAA,CAA4BkB,IAAI,CAACC,MAAM;MAE3D,IAAI,CAAAH,WAAW,aAAXA,WAAW,uBAAXA,WAAW,CAAEI,iBAAiB,MAAK,WAAW,EAAE;QAClD,MAAM;UAAEnC;QAAI,CAAC,GAAG+B,WAAW;QAC3B,MAAM,CAACK,MAAM,EAAEC,UAAU,CAAC,GAAGzC,eAAe,CAACI,GAAG,CAAE;QAElD,MAAMsC,mBAAmB,GAAG,IAAAC,6BAAsB,EAACtB,KAAK,CAAC;QACzD,MAAMuB,iBAAiB,GAAG,IAAAC,wCAAiC,EACzDxB,KAAK,EACLd,WACF,CAAC;QAED,OAAO;UACLa,EAAE;UACFhB,GAAG;UACHoC,MAAM;UACNM,MAAM,EAAEX,WAAW,CAACI,iBAAiB;UACrCE,UAAU;UACVC,mBAAmB;UACnBE,iBAAiB;UACjB;UACA;UACAtB,QAAQ,EAAEA,QAAQ,IAAI,CAAC;YAAEW,QAAQ,EAAE;UAAK,CAAC;QAC3C,CAAC;MACH;MAEA,IAAI,CAAAE,WAAW,aAAXA,WAAW,uBAAXA,WAAW,CAAEI,iBAAiB,MAAK,UAAU,EAAE;QACjD,MAAM;UAAElC;QAAQ,CAAC,GAAG8B,WAAW;QAC/B,MAAM,CAACK,MAAM,EAAEC,UAAU,CAAC,GAAGzC,eAAe,CAACK,OAAO,CAAE;QAEtD,MAAMqC,mBAAmB,GAAG9E,SAAS,CAAC+E,sBAAsB,CAACtB,KAAK,CAAC;QACnE,MAAMuB,iBAAiB,GAAGhF,SAAS,CAACmF,8BAA8B,CAChEL,mBAAmB,EACnBrC,OACF,CAAC;QAED,OAAO;UACLe,EAAE;UACFf,OAAO;UACPmC,MAAM;UACNM,MAAM,EAAEX,WAAW,CAACI,iBAAiB;UACrCE,UAAU;UACVC,mBAAmB;UACnBE,iBAAiB;UACjBtB,QAAQ,EAAEA,QAAQ,IAAI,CAAC;YAAEW,QAAQ,EAAE;UAAK,CAAC;QAC3C,CAAC;MACH;MAEA,MAAM,IAAIe,KAAK,CACZ,kCAAiCb,WAAW,aAAXA,WAAW,uBAAXA,WAAW,CAAEI,iBAAkB,EACnE,CAAC;IACH,CAAC,CAAC;EACJ,CAAC,CAAC,OAAOU,KAAK,EAAE;IACd;IACA,IAAI,IAAAC,oBAAW,EAACD,KAAK,CAAC,EAAE;MACtB,MAAM,IAAIE,eAAS,CAAC;QAClBC,OAAO,EAAE,yCAAyC;QAClDC,IAAI,EAAE,aAAa;QACnBC,KAAK,EAAEL,KAAK,CAACM;MACf,CAAC,CAAC;IACJ;;IAEA;IACA,MAAMN,KAAK;EACb;AACF,CAAC;AAACO,OAAA,CAAApE,iBAAA,GAAAA,iBAAA"}
|
|
@@ -111,15 +111,16 @@ const res = await wallet.CredentialStatus.statusList.get(
|
|
|
111
111
|
);
|
|
112
112
|
|
|
113
113
|
// Verify and parse the status list response to get the credential status
|
|
114
|
-
const { status } =
|
|
114
|
+
const { status, statusBit } =
|
|
115
115
|
await wallet.CredentialStatus.statusList.verifyAndParse(
|
|
116
|
-
issuerConf,
|
|
116
|
+
issuerConf.keys,
|
|
117
117
|
res
|
|
118
118
|
);
|
|
119
119
|
|
|
120
120
|
return {
|
|
121
121
|
statusList: res.statusList,
|
|
122
122
|
status,
|
|
123
|
+
statusBit,
|
|
123
124
|
};
|
|
124
125
|
```
|
|
125
126
|
|
|
@@ -5,6 +5,7 @@ Object.defineProperty(exports, "__esModule", {
|
|
|
5
5
|
});
|
|
6
6
|
exports.getStatusList = void 0;
|
|
7
7
|
var _ioReactNativeIso = require("@pagopa/io-react-native-iso18013");
|
|
8
|
+
var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
|
|
8
9
|
var _jwtStatusList = require("@sd-jwt/jwt-status-list");
|
|
9
10
|
var _errors = require("../../../utils/errors");
|
|
10
11
|
var _misc = require("../../../utils/misc");
|
|
@@ -32,11 +33,32 @@ const getStatusList = async function (credential, format) {
|
|
|
32
33
|
uri,
|
|
33
34
|
idx
|
|
34
35
|
} = await getStatusListEntry(credential, format);
|
|
35
|
-
const
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
36
|
+
const fetchStatusList = function () {
|
|
37
|
+
let options = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {};
|
|
38
|
+
return appFetch(uri, {
|
|
39
|
+
headers: {
|
|
40
|
+
Accept: "application/statuslist+jwt",
|
|
41
|
+
...(options.cacheDisabled && {
|
|
42
|
+
"Cache-Control": "no-cache"
|
|
43
|
+
})
|
|
44
|
+
}
|
|
45
|
+
}).then((0, _misc.hasStatusOrThrow)(200)).then(response => response.text());
|
|
46
|
+
};
|
|
47
|
+
|
|
48
|
+
// When the HTTP response includes cache headers, fetch will return a cached response and the JWT might be expired
|
|
49
|
+
let statusList = await fetchStatusList();
|
|
50
|
+
const decoded = (0, _ioReactNativeJwt.decode)(statusList);
|
|
51
|
+
const {
|
|
52
|
+
exp
|
|
53
|
+
} = decoded.payload;
|
|
54
|
+
|
|
55
|
+
// If the status list JWT is expired, try to fetch it again bypassing the HTTP cache.
|
|
56
|
+
// If it is still expired after the refetch, `verifyAndParseStatusList` will throw.
|
|
57
|
+
if (exp && exp < Math.floor(Date.now() / 1000)) {
|
|
58
|
+
statusList = await fetchStatusList({
|
|
59
|
+
cacheDisabled: true
|
|
60
|
+
});
|
|
61
|
+
}
|
|
40
62
|
return {
|
|
41
63
|
statusList,
|
|
42
64
|
uri,
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_ioReactNativeIso","require","_jwtStatusList","_errors","_misc","getStatusListEntry","credential","format","statusListEntry","_decoded$issuerAuth","decoded","CBOR","decode","issuerAuth","payload","status","status_list","getStatusListFromJWT","IoWalletError","getStatusList","appFetch","fetch","arguments","length","undefined","uri","idx","
|
|
1
|
+
{"version":3,"names":["_ioReactNativeIso","require","_ioReactNativeJwt","_jwtStatusList","_errors","_misc","getStatusListEntry","credential","format","statusListEntry","_decoded$issuerAuth","decoded","CBOR","decode","issuerAuth","payload","status","status_list","getStatusListFromJWT","IoWalletError","getStatusList","appFetch","fetch","arguments","length","undefined","uri","idx","fetchStatusList","options","headers","Accept","cacheDisabled","then","hasStatusOrThrow","response","text","statusList","decodeJwt","exp","Math","floor","Date","now","exports"],"sourceRoot":"../../../../../src","sources":["credential/status/v1.3.3/01-status-list.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,iBAAA,GAAAD,OAAA;AACA,IAAAE,cAAA,GAAAF,OAAA;AAIA,IAAAG,OAAA,GAAAH,OAAA;AACA,IAAAI,KAAA,GAAAJ,OAAA;AAIA,MAAMK,kBAAkB,GAAG,MAAAA,CACzBC,UAAkB,EAClBC,MAAwB,KACK;EAC7B,IAAIC,eAA4C;EAEhD,IAAID,MAAM,KAAK,UAAU,EAAE;IAAA,IAAAE,mBAAA;IACzB;IACA,MAAMC,OAAO,GAAG,MAAMC,sBAAI,CAACC,MAAM,CAACN,UAAU,CAAC;IAC7CE,eAAe,IAAAC,mBAAA,GAAGC,OAAO,CAACG,UAAU,cAAAJ,mBAAA,gBAAAA,mBAAA,GAAlBA,mBAAA,CAAoBK,OAAO,cAAAL,mBAAA,gBAAAA,mBAAA,GAA3BA,mBAAA,CAA6BM,MAAM,cAAAN,mBAAA,uBAAnCA,mBAAA,CAAqCO,WAAW;EACpE;EAEA,IAAIT,MAAM,KAAK,WAAW,EAAE;IAC1BC,eAAe,GAAG,IAAAS,mCAAoB,EAACX,UAAU,CAAC;EACpD;EAEA,IAAI,CAACE,eAAe,EAAE;IACpB,MAAM,IAAIU,qBAAa,CAAC,+CAA+C,CAAC;EAC1E;EAEA,OAAOV,eAAe;AACxB,CAAC;AAEM,MAAMW,aAAmC,GAAG,eAAAA,CACjDb,UAAU,EACVC,MAAM,EAEH;EAAA,IADH;IAAEa,QAAQ,GAAGC;EAAM,CAAC,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;EAEzB,MAAM;IAAEG,GAAG;IAAEC;EAAI,CAAC,GAAG,MAAMrB,kBAAkB,CAACC,UAAU,EAAEC,MAAM,CAAC;EAEjE,MAAMoB,eAAe,GAAG,SAAAA,CAAA;IAAA,IAACC,OAAoC,GAAAN,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;IAAA,OAChEF,QAAQ,CAACK,GAAG,EAAE;MACZI,OAAO,EAAE;QACPC,MAAM,EAAE,4BAA4B;QACpC,IAAIF,OAAO,CAACG,aAAa,IAAI;UAAE,eAAe,EAAE;QAAW,CAAC;MAC9D;IACF,CAAC,CAAC,CACCC,IAAI,CAAC,IAAAC,sBAAgB,EAAC,GAAG,CAAC,CAAC,CAC3BD,IAAI,CAAEE,QAAQ,IAAKA,QAAQ,CAACC,IAAI,CAAC,CAAC,CAAC;EAAA;;EAExC;EACA,IAAIC,UAAU,GAAG,MAAMT,eAAe,CAAC,CAAC;EACxC,MAAMjB,OAAO,GAAG,IAAA2B,wBAAS,EAACD,UAAU,CAAC;EAErC,MAAM;IAAEE;EAAI,CAAC,GAAG5B,OAAO,CAACI,OAAO;;EAE/B;EACA;EACA,IAAIwB,GAAG,IAAIA,GAAG,GAAGC,IAAI,CAACC,KAAK,CAACC,IAAI,CAACC,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,EAAE;IAC9CN,UAAU,GAAG,MAAMT,eAAe,CAAC;MAAEI,aAAa,EAAE;IAAK,CAAC,CAAC;EAC7D;EACA,OAAO;IAAEK,UAAU;IAAEX,GAAG;IAAEC,GAAG;IAAEnB,MAAM,EAAE;EAAM,CAAC;AAChD,CAAC;AAACoC,OAAA,CAAAxB,aAAA,GAAAA,aAAA"}
|
|
@@ -6,18 +6,29 @@ Object.defineProperty(exports, "__esModule", {
|
|
|
6
6
|
exports.verifyAndParseStatusList = void 0;
|
|
7
7
|
var _ioReactNativeJwt = require("@pagopa/io-react-native-jwt");
|
|
8
8
|
var _jwtStatusList = require("@sd-jwt/jwt-status-list");
|
|
9
|
-
|
|
9
|
+
/**
|
|
10
|
+
* Mapping of status bits to their corresponding meaning as defined in the specification.
|
|
11
|
+
* @see https://italia.github.io/eid-wallet-it-docs/releases/1.3.3/en/credential-revocation.html#token-status-lists
|
|
12
|
+
*/
|
|
13
|
+
const CredentialStatusMap = {
|
|
14
|
+
0x00: "VALID",
|
|
15
|
+
0x01: "INVALID",
|
|
16
|
+
0x02: "SUSPENDED",
|
|
17
|
+
0x03: "UPDATE",
|
|
18
|
+
0x0b: "ATTRIBUTE_UPDATE"
|
|
19
|
+
};
|
|
20
|
+
const verifyAndParseStatusList = async (keys, _ref) => {
|
|
10
21
|
let {
|
|
11
22
|
statusList: rawStatusList,
|
|
12
23
|
idx
|
|
13
24
|
} = _ref;
|
|
14
|
-
await (0, _ioReactNativeJwt.verify)(rawStatusList,
|
|
25
|
+
await (0, _ioReactNativeJwt.verify)(rawStatusList, keys);
|
|
15
26
|
const statusList = (0, _jwtStatusList.getListFromStatusListJWT)(rawStatusList);
|
|
16
|
-
const
|
|
17
|
-
|
|
18
|
-
// TODO: [SIW-3992] Improve the return object with additional data, throw CredentialInvalidStatus when invalid
|
|
27
|
+
const statusBit = statusList.getStatus(idx);
|
|
28
|
+
const status = CredentialStatusMap[statusBit];
|
|
19
29
|
return {
|
|
20
|
-
status
|
|
30
|
+
status,
|
|
31
|
+
statusBit: `0x${statusBit.toString(16).padStart(2, "0").toUpperCase()}`
|
|
21
32
|
};
|
|
22
33
|
};
|
|
23
34
|
exports.verifyAndParseStatusList = verifyAndParseStatusList;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"names":["_ioReactNativeJwt","require","_jwtStatusList","verifyAndParseStatusList","
|
|
1
|
+
{"version":3,"names":["_ioReactNativeJwt","require","_jwtStatusList","CredentialStatusMap","verifyAndParseStatusList","keys","_ref","statusList","rawStatusList","idx","verify","getListFromStatusListJWT","statusBit","getStatus","status","toString","padStart","toUpperCase","exports"],"sourceRoot":"../../../../../src","sources":["credential/status/v1.3.3/02-verify-and-parse-status-list.ts"],"mappings":";;;;;;AAAA,IAAAA,iBAAA,GAAAC,OAAA;AACA,IAAAC,cAAA,GAAAD,OAAA;AAGA;AACA;AACA;AACA;AACA,MAAME,mBAAmB,GAAG;EAC1B,IAAI,EAAE,OAAO;EACb,IAAI,EAAE,SAAS;EACf,IAAI,EAAE,WAAW;EACjB,IAAI,EAAE,QAAQ;EACd,IAAI,EAAE;AACR,CAAU;AAIH,MAAMC,wBAAyD,GAAG,MAAAA,CACvEC,IAAI,EAAAC,IAAA,KAED;EAAA,IADH;IAAEC,UAAU,EAAEC,aAAa;IAAEC;EAAI,CAAC,GAAAH,IAAA;EAElC,MAAM,IAAAI,wBAAM,EAACF,aAAa,EAAEH,IAAI,CAAC;EAEjC,MAAME,UAAU,GAAG,IAAAI,uCAAwB,EAACH,aAAa,CAAC;EAC1D,MAAMI,SAAS,GAAGL,UAAU,CAACM,SAAS,CAACJ,GAAG,CAAwB;EAClE,MAAMK,MAAM,GAAGX,mBAAmB,CAACS,SAAS,CAAC;EAE7C,OAAO;IACLE,MAAM;IACNF,SAAS,EAAG,KAAIA,SAAS,CAACG,QAAQ,CAAC,EAAE,CAAC,CAACC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAACC,WAAW,CAAC,CAAE;EACxE,CAAC;AACH,CAAC;AAACC,OAAA,CAAAd,wBAAA,GAAAA,wBAAA"}
|