npm - @pagopa/io-wallet-oid4vci - Versions diffs - 1.2.1 → 1.3.0 - Mend

@pagopa/io-wallet-oid4vci 1.2.1 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -1,5 +1,5 @@
 import { CallbackContext, JwtSigner, JwtSignerJwk, verifyJwt, VerifyJwtCallback, JwtSignerX5c } from '@openid4vc/oauth2';
-import { decodeJwt, getJwtFromFormPost, CallbackContext as CallbackContext$1, verifyJwt as verifyJwt$1, V1_0, V1_3, Jwk } from '@pagopa/io-wallet-oauth2';
+import { decodeJwt, getJwtFromFormPost, CallbackContext as CallbackContext$1, verifyJwt as verifyJwt$1, WalletAttestationOptionsV1_0, WalletAttestationOptionsV1_3, WalletAttestationOptionsV1_4, Jwk } from '@pagopa/io-wallet-oauth2';
 export { BaseWalletAttestationOptions } from '@pagopa/io-wallet-oauth2';
 import { FetchAuthorizationResponseOptions } from '@pagopa/io-wallet-oid4vp';
 import z, { z as z$1 } from 'zod';
@@ -490,7 +490,7 @@ declare const zCredentialRequestV1_3: z$1.ZodObject<{
     credential_identifier: z$1.ZodOptional<z$1.ZodString>;
     transaction_id: z$1.ZodOptional<z$1.ZodString>;
     proofs: z$1.ZodObject<{
-        jwt: z$1.ZodArray<z$1.ZodString>;
+        jwt: z$1.ZodTuple<[z$1.ZodString], z$1.ZodString>;
     }, z$1.core.$strip>;
 }, z$1.core.$strip>;
 type CredentialRequestV1_3 = z$1.infer<typeof zCredentialRequestV1_3>;
@@ -781,10 +781,8 @@ declare const zKeyAttestationStatus: z$1.ZodObject<{
 }, z$1.core.$strip>;
 type KeyAttestationStatus = z$1.infer<typeof zKeyAttestationStatus>;
 /**
- * For the moment, these are all the supported algorithms in both
- * {@link https://italia.github.io/eid-wallet-it-docs/releases/1.3.3/en/algorithms.html#cryptographic-algorithms|v1.3.3} and
- * {@link https://italia.github.io/eid-wallet-it-docs/releases/1.0.2/en/algorithms.html#cryptographic-algorithms|v1.0.2},
- * and in both specifications the `alg` field MUST be one of those values.
+ * For the moment, the specification doesn't restrict the key attestation signature algorithm
+ * to a subset of those that must/should be allowed
  */
 declare const zKeyAttestationAlg: z$1.ZodEnum<{
     ES256: "ES256";
@@ -1247,8 +1245,10 @@ declare function fetchCredentialResponse(options: FetchCredentialResponseOptions
  * Generic error thrown on Oid4vci operations
  */
 declare class Oid4vciError extends Error {
-    readonly statusCode?: number | undefined;
-    constructor(message: string, statusCode?: number | undefined);
+    readonly statusCode?: number;
+    constructor(message: string, options?: {
+        statusCode?: number;
+    } & ErrorOptions);
 }
 /**
  * Error thrown in case the DPoP key passed to the
@@ -1256,69 +1256,74 @@ declare class Oid4vciError extends Error {
  * doesn't contain a kid
  */
 declare class WalletProviderError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during nonce request.
  */
 declare class NonceRequestError extends Error {
-    readonly statusCode?: number | undefined;
-    constructor(message: string, statusCode?: number | undefined);
+    readonly statusCode?: number;
+    constructor(message: string, options?: {
+        statusCode?: number;
+    } & ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential response fetching.
  */
 declare class FetchCredentialResponseError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential request parsing.
  */
 declare class ParseCredentialRequestError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when metadata fetching fails at all discovery endpoints.
  */
 declare class FetchMetadataError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential response creation.
  */
 declare class CreateCredentialResponseError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential request JWT proof verification.
  */
 declare class VerifyCredentialRequestJwtProofError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an error occurs during key attestation JWT verification.
  */
 declare class VerifyKeyAttestationJwtError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an error occurs during credential offer operations.
  * This includes parsing, resolving, validating, and extracting grant details from credential offers.
  */
 declare class CredentialOfferError extends Oid4vciError {
-    constructor(message: string, statusCode?: number);
+    readonly statusCode?: number;
+    constructor(message: string, options?: {
+        statusCode?: number;
+    } & ErrorOptions);
 }
 /**
  * Error thrown when a credential request is missing the required DPoP proof header.
  */
 declare class MissingDpopProofError extends Oid4vciError {
-    constructor(message?: string);
+    constructor(message?: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when a credential request has a missing or invalid Authorization header.
  */
 declare class CredentialAuthorizationHeaderError extends Oid4vciError {
-    constructor(message?: string);
+    constructor(message?: string, options?: ErrorOptions);
 }
 declare const zMetadataResponseV1_0: z$1.ZodObject<{
@@ -9925,13 +9930,11 @@ interface FetchMetadataOptions {
  */
 declare function fetchMetadata(options: FetchMetadataOptions): Promise<MetadataResponse>;
-type WalletAttestationOptionsV1_0 = V1_0.WalletAttestationOptionsV1_0;
-type WalletAttestationOptionsV1_3 = V1_3.WalletAttestationOptionsV1_3;
 /**
  * Union type for wallet attestation options
  * Used by the version router
  */
-type WalletAttestationOptions = WalletAttestationOptionsV1_0 | WalletAttestationOptionsV1_3;
+type WalletAttestationOptions = WalletAttestationOptionsV1_0 | WalletAttestationOptionsV1_3 | WalletAttestationOptionsV1_4;
 /**
  * @interface KeyAttestationOptions
@@ -10009,8 +10012,10 @@ declare class WalletProvider {
      * Creates a wallet attestation JWT according to the configured Italian Wallet specification version.
      *
      * Version Differences:
-     * - v1.0: Uses only `trust_chain` in header (federation method)
-     * - v1.3: Requires `x5c` in header, optional `trust_chain`, supports `nbf` and `status` claims
+     * - v1.0: Uses only `trust_chain` in header (federation method); no `status` claim
+     * - v1.3: Requires `x5c` in header, optional `trust_chain`; supports optional `nbf` and `status` claims
+     * - v1.4: Requires `x5c` in header, optional `trust_chain`; `status`, `wallet_link`, and `wallet_name`
+     *   are all **required**; optional `eudi_wallet_info` claim; sets `sub` to `dpopJwkPublic.kid`
      *
      * @public
      * @async
@@ -10045,8 +10050,33 @@ declare class WalletProvider {
      *   nbf: new Date('2025-01-01'), // Optional
      *   status: { status_list: { idx: 2, uri: "https://status.example.com" } } // Optional
      * });
+     *
+     * @example v1.4 - Wallet attestation with required status and optional eudi_wallet_info
+     * const jwt = await provider.createItWalletAttestationJwt({
+     *   callbacks: { signJwt: mySignJwtCallback },
+     *   dpopJwkPublic: myJwk,
+     *   issuer: "https://wallet-provider.example.com",
+     *   signer: {
+     *     alg: "ES256",
+     *     kid: "provider-key-id",
+     *     method: "x5c",
+     *     x5c: ["cert1-base64", "cert2-base64"],
+     *     trustChain: ["trust-anchor-jwt"] // Optional
+     *   },
+     *   status: { status_list: { idx: 2, uri: "https://status.example.com" } }, // Required
+     *   walletLink: "https://wallet.example.com", // Required
+     *   walletName: "My Wallet", // Required
+     *   eudiWalletInfo: { // Optional
+     *     general_info: {
+     *       wallet_provider_name: "PagoPA",
+     *       wallet_solution_certification_information: "certification-ref",
+     *       wallet_solution_id: "wallet-solution-id",
+     *       wallet_solution_version: "1.0.0"
+     *     }
+     *   }
+     * });
      */
     createItWalletAttestationJwt(options: WalletAttestationOptions): Promise<string>;
 }
-export { type AuthorizationCodeGrant, type AuthorizationResponse, type BaseCredentialRequestOptions, type CompleteAuthorizationOptions, type CompleteAuthorizationResult, CreateCredentialResponseError, type CreateCredentialResponseOptions, type CreateCredentialResponseOptionsV1_0, type CreateCredentialResponseOptionsV1_3, type CreateCredentialResponseResult, type CreateCredentialResponseResultWithFlow, CredentialAuthorizationHeaderError, type CredentialObject, type CredentialOffer, CredentialOfferError, type CredentialOfferGrants, type CredentialOfferUri, type CredentialRequest, type CredentialRequestOptions, type CredentialRequestOptionsV1_0, type CredentialRequestOptionsV1_3, type CredentialRequestV1_0, type CredentialRequestV1_3, type CredentialResponse, type CredentialResponseEncryption, type CredentialResponseV1_0, type CredentialResponseV1_3, type DeferredCredentialResponseV1_0, type DeferredCredentialResponseV1_3, type DeferredFlowOptionsV1_0, type DeferredFlowOptionsV1_3, type ExtractGrantDetailsResult, FetchCredentialResponseError, type FetchCredentialResponseOptions, FetchMetadataError, type FetchMetadataOptions, type FetchStatusListCallback, type ImmediateCredentialResponse, type ImmediateFlowOptions, type KeyAttestationHeader, type KeyAttestationOptions, type KeyAttestationPayload, type KeyAttestationStatus, type MetadataResponse, type MetadataResponseV1_0, type MetadataResponseV1_3, MissingDpopProofError, NonceRequestError, Oid4vciError, type ParseCredentialOfferUriOptions, ParseCredentialRequestError, type ParseCredentialRequestExpectedValues, type ParseCredentialRequestOptions, type ParsedCredentialProof, type ParsedCredentialRequest, type ProofJwtHeader, type ProofJwtHeaderV1_0, type ProofJwtHeaderV1_3, type ProofJwtPayload, type ResolveCredentialOfferOptions, type SendAuthorizationResponseAndExtractCodeOptions, type StatusList, type ValidateCredentialOfferOptions, type VerifyAuthorizationResponseFormPostJWTOptions, type VerifyAuthorizationResponseOptions, type VerifyCredentialRequestJwtProofBaseOptions, VerifyCredentialRequestJwtProofError, type VerifyCredentialRequestJwtProofOptions, type VerifyCredentialRequestJwtProofOptionsV1_0, type VerifyCredentialRequestJwtProofOptionsV1_3, type VerifyCredentialRequestJwtProofResult, type VerifyCredentialRequestJwtProofResultV1_0, type VerifyCredentialRequestJwtProofResultV1_3, VerifyKeyAttestationJwtError, type VerifyKeyAttestationJwtOptions, type VerifyKeyAttestationJwtResult, type WalletAttestationOptions, type WalletAttestationOptionsV1_0, type WalletAttestationOptionsV1_3, WalletProvider, WalletProviderError, completeAuthorization, createCredentialRequest, createCredentialResponse, extractGrantDetails, fetchCredentialResponse, fetchMetadata, keyAttestationTypeHeader, parseCredentialOfferUri, parseCredentialRequest, resolveCredentialOffer, sendAuthorizationResponseAndExtractCode, validateCredentialOffer, verifyAuthorizationResponse, verifyAuthorizationResponseFormPostJWT, verifyCredentialRequestJwtProof, verifyKeyAttestationJwt, zAuthorizationResponse, zCredentialObject, zCredentialRequestV1_0, zCredentialRequestV1_3, zCredentialResponseEncryption, zCredentialResponseV1_0, zCredentialResponseV1_3, zDeferredCredentialResponseV1_0, zDeferredCredentialResponseV1_3, zImmediateCredentialResponse, zKeyAttestationAlg, zKeyAttestationHeader, zKeyAttestationPayload, zKeyAttestationStatus, zKeyAttestationTypeHeader, zMetadataResponse, zMetadataResponseV1_0, zMetadataResponseV1_3, zProofJwtHeaderV1_0, zProofJwtHeaderV1_3, zProofJwtPayload, zStatusList };
+export { type AuthorizationCodeGrant, type AuthorizationResponse, type BaseCredentialRequestOptions, type CompleteAuthorizationOptions, type CompleteAuthorizationResult, CreateCredentialResponseError, type CreateCredentialResponseOptions, type CreateCredentialResponseOptionsV1_0, type CreateCredentialResponseOptionsV1_3, type CreateCredentialResponseResult, type CreateCredentialResponseResultWithFlow, CredentialAuthorizationHeaderError, type CredentialObject, type CredentialOffer, CredentialOfferError, type CredentialOfferGrants, type CredentialOfferUri, type CredentialRequest, type CredentialRequestOptions, type CredentialRequestOptionsV1_0, type CredentialRequestOptionsV1_3, type CredentialRequestV1_0, type CredentialRequestV1_3, type CredentialResponse, type CredentialResponseEncryption, type CredentialResponseV1_0, type CredentialResponseV1_3, type DeferredCredentialResponseV1_0, type DeferredCredentialResponseV1_3, type DeferredFlowOptionsV1_0, type DeferredFlowOptionsV1_3, type ExtractGrantDetailsResult, FetchCredentialResponseError, type FetchCredentialResponseOptions, FetchMetadataError, type FetchMetadataOptions, type FetchStatusListCallback, type ImmediateCredentialResponse, type ImmediateFlowOptions, type KeyAttestationHeader, type KeyAttestationOptions, type KeyAttestationPayload, type KeyAttestationStatus, type MetadataResponse, type MetadataResponseV1_0, type MetadataResponseV1_3, MissingDpopProofError, NonceRequestError, Oid4vciError, type ParseCredentialOfferUriOptions, ParseCredentialRequestError, type ParseCredentialRequestExpectedValues, type ParseCredentialRequestOptions, type ParsedCredentialProof, type ParsedCredentialRequest, type ProofJwtHeader, type ProofJwtHeaderV1_0, type ProofJwtHeaderV1_3, type ProofJwtPayload, type ResolveCredentialOfferOptions, type SendAuthorizationResponseAndExtractCodeOptions, type StatusList, type ValidateCredentialOfferOptions, type VerifyAuthorizationResponseFormPostJWTOptions, type VerifyAuthorizationResponseOptions, type VerifyCredentialRequestJwtProofBaseOptions, VerifyCredentialRequestJwtProofError, type VerifyCredentialRequestJwtProofOptions, type VerifyCredentialRequestJwtProofOptionsV1_0, type VerifyCredentialRequestJwtProofOptionsV1_3, type VerifyCredentialRequestJwtProofResult, type VerifyCredentialRequestJwtProofResultV1_0, type VerifyCredentialRequestJwtProofResultV1_3, VerifyKeyAttestationJwtError, type VerifyKeyAttestationJwtOptions, type VerifyKeyAttestationJwtResult, type WalletAttestationOptions, WalletProvider, WalletProviderError, completeAuthorization, createCredentialRequest, createCredentialResponse, extractGrantDetails, fetchCredentialResponse, fetchMetadata, keyAttestationTypeHeader, parseCredentialOfferUri, parseCredentialRequest, resolveCredentialOffer, sendAuthorizationResponseAndExtractCode, validateCredentialOffer, verifyAuthorizationResponse, verifyAuthorizationResponseFormPostJWT, verifyCredentialRequestJwtProof, verifyKeyAttestationJwt, zAuthorizationResponse, zCredentialObject, zCredentialRequestV1_0, zCredentialRequestV1_3, zCredentialResponseEncryption, zCredentialResponseV1_0, zCredentialResponseV1_3, zDeferredCredentialResponseV1_0, zDeferredCredentialResponseV1_3, zImmediateCredentialResponse, zKeyAttestationAlg, zKeyAttestationHeader, zKeyAttestationPayload, zKeyAttestationStatus, zKeyAttestationTypeHeader, zMetadataResponse, zMetadataResponseV1_0, zMetadataResponseV1_3, zProofJwtHeaderV1_0, zProofJwtHeaderV1_3, zProofJwtPayload, zStatusList };

package/dist/index.d.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import { CallbackContext, JwtSigner, JwtSignerJwk, verifyJwt, VerifyJwtCallback, JwtSignerX5c } from '@openid4vc/oauth2';
-import { decodeJwt, getJwtFromFormPost, CallbackContext as CallbackContext$1, verifyJwt as verifyJwt$1, V1_0, V1_3, Jwk } from '@pagopa/io-wallet-oauth2';
+import { decodeJwt, getJwtFromFormPost, CallbackContext as CallbackContext$1, verifyJwt as verifyJwt$1, WalletAttestationOptionsV1_0, WalletAttestationOptionsV1_3, WalletAttestationOptionsV1_4, Jwk } from '@pagopa/io-wallet-oauth2';
 export { BaseWalletAttestationOptions } from '@pagopa/io-wallet-oauth2';
 import { FetchAuthorizationResponseOptions } from '@pagopa/io-wallet-oid4vp';
 import z, { z as z$1 } from 'zod';
@@ -490,7 +490,7 @@ declare const zCredentialRequestV1_3: z$1.ZodObject<{
     credential_identifier: z$1.ZodOptional<z$1.ZodString>;
     transaction_id: z$1.ZodOptional<z$1.ZodString>;
     proofs: z$1.ZodObject<{
-        jwt: z$1.ZodArray<z$1.ZodString>;
+        jwt: z$1.ZodTuple<[z$1.ZodString], z$1.ZodString>;
     }, z$1.core.$strip>;
 }, z$1.core.$strip>;
 type CredentialRequestV1_3 = z$1.infer<typeof zCredentialRequestV1_3>;
@@ -781,10 +781,8 @@ declare const zKeyAttestationStatus: z$1.ZodObject<{
 }, z$1.core.$strip>;
 type KeyAttestationStatus = z$1.infer<typeof zKeyAttestationStatus>;
 /**
- * For the moment, these are all the supported algorithms in both
- * {@link https://italia.github.io/eid-wallet-it-docs/releases/1.3.3/en/algorithms.html#cryptographic-algorithms|v1.3.3} and
- * {@link https://italia.github.io/eid-wallet-it-docs/releases/1.0.2/en/algorithms.html#cryptographic-algorithms|v1.0.2},
- * and in both specifications the `alg` field MUST be one of those values.
+ * For the moment, the specification doesn't restrict the key attestation signature algorithm
+ * to a subset of those that must/should be allowed
  */
 declare const zKeyAttestationAlg: z$1.ZodEnum<{
     ES256: "ES256";
@@ -1247,8 +1245,10 @@ declare function fetchCredentialResponse(options: FetchCredentialResponseOptions
  * Generic error thrown on Oid4vci operations
  */
 declare class Oid4vciError extends Error {
-    readonly statusCode?: number | undefined;
-    constructor(message: string, statusCode?: number | undefined);
+    readonly statusCode?: number;
+    constructor(message: string, options?: {
+        statusCode?: number;
+    } & ErrorOptions);
 }
 /**
  * Error thrown in case the DPoP key passed to the
@@ -1256,69 +1256,74 @@ declare class Oid4vciError extends Error {
  * doesn't contain a kid
  */
 declare class WalletProviderError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during nonce request.
  */
 declare class NonceRequestError extends Error {
-    readonly statusCode?: number | undefined;
-    constructor(message: string, statusCode?: number | undefined);
+    readonly statusCode?: number;
+    constructor(message: string, options?: {
+        statusCode?: number;
+    } & ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential response fetching.
  */
 declare class FetchCredentialResponseError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential request parsing.
  */
 declare class ParseCredentialRequestError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when metadata fetching fails at all discovery endpoints.
  */
 declare class FetchMetadataError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential response creation.
  */
 declare class CreateCredentialResponseError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an unexpected error occurs during credential request JWT proof verification.
  */
 declare class VerifyCredentialRequestJwtProofError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an error occurs during key attestation JWT verification.
  */
 declare class VerifyKeyAttestationJwtError extends Oid4vciError {
-    constructor(message: string, cause?: unknown);
+    constructor(message: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when an error occurs during credential offer operations.
  * This includes parsing, resolving, validating, and extracting grant details from credential offers.
  */
 declare class CredentialOfferError extends Oid4vciError {
-    constructor(message: string, statusCode?: number);
+    readonly statusCode?: number;
+    constructor(message: string, options?: {
+        statusCode?: number;
+    } & ErrorOptions);
 }
 /**
  * Error thrown when a credential request is missing the required DPoP proof header.
  */
 declare class MissingDpopProofError extends Oid4vciError {
-    constructor(message?: string);
+    constructor(message?: string, options?: ErrorOptions);
 }
 /**
  * Error thrown when a credential request has a missing or invalid Authorization header.
  */
 declare class CredentialAuthorizationHeaderError extends Oid4vciError {
-    constructor(message?: string);
+    constructor(message?: string, options?: ErrorOptions);
 }
 declare const zMetadataResponseV1_0: z$1.ZodObject<{
@@ -9925,13 +9930,11 @@ interface FetchMetadataOptions {
  */
 declare function fetchMetadata(options: FetchMetadataOptions): Promise<MetadataResponse>;
-type WalletAttestationOptionsV1_0 = V1_0.WalletAttestationOptionsV1_0;
-type WalletAttestationOptionsV1_3 = V1_3.WalletAttestationOptionsV1_3;
 /**
  * Union type for wallet attestation options
  * Used by the version router
  */
-type WalletAttestationOptions = WalletAttestationOptionsV1_0 | WalletAttestationOptionsV1_3;
+type WalletAttestationOptions = WalletAttestationOptionsV1_0 | WalletAttestationOptionsV1_3 | WalletAttestationOptionsV1_4;
 /**
  * @interface KeyAttestationOptions
@@ -10009,8 +10012,10 @@ declare class WalletProvider {
      * Creates a wallet attestation JWT according to the configured Italian Wallet specification version.
      *
      * Version Differences:
-     * - v1.0: Uses only `trust_chain` in header (federation method)
-     * - v1.3: Requires `x5c` in header, optional `trust_chain`, supports `nbf` and `status` claims
+     * - v1.0: Uses only `trust_chain` in header (federation method); no `status` claim
+     * - v1.3: Requires `x5c` in header, optional `trust_chain`; supports optional `nbf` and `status` claims
+     * - v1.4: Requires `x5c` in header, optional `trust_chain`; `status`, `wallet_link`, and `wallet_name`
+     *   are all **required**; optional `eudi_wallet_info` claim; sets `sub` to `dpopJwkPublic.kid`
      *
      * @public
      * @async
@@ -10045,8 +10050,33 @@ declare class WalletProvider {
      *   nbf: new Date('2025-01-01'), // Optional
      *   status: { status_list: { idx: 2, uri: "https://status.example.com" } } // Optional
      * });
+     *
+     * @example v1.4 - Wallet attestation with required status and optional eudi_wallet_info
+     * const jwt = await provider.createItWalletAttestationJwt({
+     *   callbacks: { signJwt: mySignJwtCallback },
+     *   dpopJwkPublic: myJwk,
+     *   issuer: "https://wallet-provider.example.com",
+     *   signer: {
+     *     alg: "ES256",
+     *     kid: "provider-key-id",
+     *     method: "x5c",
+     *     x5c: ["cert1-base64", "cert2-base64"],
+     *     trustChain: ["trust-anchor-jwt"] // Optional
+     *   },
+     *   status: { status_list: { idx: 2, uri: "https://status.example.com" } }, // Required
+     *   walletLink: "https://wallet.example.com", // Required
+     *   walletName: "My Wallet", // Required
+     *   eudiWalletInfo: { // Optional
+     *     general_info: {
+     *       wallet_provider_name: "PagoPA",
+     *       wallet_solution_certification_information: "certification-ref",
+     *       wallet_solution_id: "wallet-solution-id",
+     *       wallet_solution_version: "1.0.0"
+     *     }
+     *   }
+     * });
      */
     createItWalletAttestationJwt(options: WalletAttestationOptions): Promise<string>;
 }
-export { type AuthorizationCodeGrant, type AuthorizationResponse, type BaseCredentialRequestOptions, type CompleteAuthorizationOptions, type CompleteAuthorizationResult, CreateCredentialResponseError, type CreateCredentialResponseOptions, type CreateCredentialResponseOptionsV1_0, type CreateCredentialResponseOptionsV1_3, type CreateCredentialResponseResult, type CreateCredentialResponseResultWithFlow, CredentialAuthorizationHeaderError, type CredentialObject, type CredentialOffer, CredentialOfferError, type CredentialOfferGrants, type CredentialOfferUri, type CredentialRequest, type CredentialRequestOptions, type CredentialRequestOptionsV1_0, type CredentialRequestOptionsV1_3, type CredentialRequestV1_0, type CredentialRequestV1_3, type CredentialResponse, type CredentialResponseEncryption, type CredentialResponseV1_0, type CredentialResponseV1_3, type DeferredCredentialResponseV1_0, type DeferredCredentialResponseV1_3, type DeferredFlowOptionsV1_0, type DeferredFlowOptionsV1_3, type ExtractGrantDetailsResult, FetchCredentialResponseError, type FetchCredentialResponseOptions, FetchMetadataError, type FetchMetadataOptions, type FetchStatusListCallback, type ImmediateCredentialResponse, type ImmediateFlowOptions, type KeyAttestationHeader, type KeyAttestationOptions, type KeyAttestationPayload, type KeyAttestationStatus, type MetadataResponse, type MetadataResponseV1_0, type MetadataResponseV1_3, MissingDpopProofError, NonceRequestError, Oid4vciError, type ParseCredentialOfferUriOptions, ParseCredentialRequestError, type ParseCredentialRequestExpectedValues, type ParseCredentialRequestOptions, type ParsedCredentialProof, type ParsedCredentialRequest, type ProofJwtHeader, type ProofJwtHeaderV1_0, type ProofJwtHeaderV1_3, type ProofJwtPayload, type ResolveCredentialOfferOptions, type SendAuthorizationResponseAndExtractCodeOptions, type StatusList, type ValidateCredentialOfferOptions, type VerifyAuthorizationResponseFormPostJWTOptions, type VerifyAuthorizationResponseOptions, type VerifyCredentialRequestJwtProofBaseOptions, VerifyCredentialRequestJwtProofError, type VerifyCredentialRequestJwtProofOptions, type VerifyCredentialRequestJwtProofOptionsV1_0, type VerifyCredentialRequestJwtProofOptionsV1_3, type VerifyCredentialRequestJwtProofResult, type VerifyCredentialRequestJwtProofResultV1_0, type VerifyCredentialRequestJwtProofResultV1_3, VerifyKeyAttestationJwtError, type VerifyKeyAttestationJwtOptions, type VerifyKeyAttestationJwtResult, type WalletAttestationOptions, type WalletAttestationOptionsV1_0, type WalletAttestationOptionsV1_3, WalletProvider, WalletProviderError, completeAuthorization, createCredentialRequest, createCredentialResponse, extractGrantDetails, fetchCredentialResponse, fetchMetadata, keyAttestationTypeHeader, parseCredentialOfferUri, parseCredentialRequest, resolveCredentialOffer, sendAuthorizationResponseAndExtractCode, validateCredentialOffer, verifyAuthorizationResponse, verifyAuthorizationResponseFormPostJWT, verifyCredentialRequestJwtProof, verifyKeyAttestationJwt, zAuthorizationResponse, zCredentialObject, zCredentialRequestV1_0, zCredentialRequestV1_3, zCredentialResponseEncryption, zCredentialResponseV1_0, zCredentialResponseV1_3, zDeferredCredentialResponseV1_0, zDeferredCredentialResponseV1_3, zImmediateCredentialResponse, zKeyAttestationAlg, zKeyAttestationHeader, zKeyAttestationPayload, zKeyAttestationStatus, zKeyAttestationTypeHeader, zMetadataResponse, zMetadataResponseV1_0, zMetadataResponseV1_3, zProofJwtHeaderV1_0, zProofJwtHeaderV1_3, zProofJwtPayload, zStatusList };
+export { type AuthorizationCodeGrant, type AuthorizationResponse, type BaseCredentialRequestOptions, type CompleteAuthorizationOptions, type CompleteAuthorizationResult, CreateCredentialResponseError, type CreateCredentialResponseOptions, type CreateCredentialResponseOptionsV1_0, type CreateCredentialResponseOptionsV1_3, type CreateCredentialResponseResult, type CreateCredentialResponseResultWithFlow, CredentialAuthorizationHeaderError, type CredentialObject, type CredentialOffer, CredentialOfferError, type CredentialOfferGrants, type CredentialOfferUri, type CredentialRequest, type CredentialRequestOptions, type CredentialRequestOptionsV1_0, type CredentialRequestOptionsV1_3, type CredentialRequestV1_0, type CredentialRequestV1_3, type CredentialResponse, type CredentialResponseEncryption, type CredentialResponseV1_0, type CredentialResponseV1_3, type DeferredCredentialResponseV1_0, type DeferredCredentialResponseV1_3, type DeferredFlowOptionsV1_0, type DeferredFlowOptionsV1_3, type ExtractGrantDetailsResult, FetchCredentialResponseError, type FetchCredentialResponseOptions, FetchMetadataError, type FetchMetadataOptions, type FetchStatusListCallback, type ImmediateCredentialResponse, type ImmediateFlowOptions, type KeyAttestationHeader, type KeyAttestationOptions, type KeyAttestationPayload, type KeyAttestationStatus, type MetadataResponse, type MetadataResponseV1_0, type MetadataResponseV1_3, MissingDpopProofError, NonceRequestError, Oid4vciError, type ParseCredentialOfferUriOptions, ParseCredentialRequestError, type ParseCredentialRequestExpectedValues, type ParseCredentialRequestOptions, type ParsedCredentialProof, type ParsedCredentialRequest, type ProofJwtHeader, type ProofJwtHeaderV1_0, type ProofJwtHeaderV1_3, type ProofJwtPayload, type ResolveCredentialOfferOptions, type SendAuthorizationResponseAndExtractCodeOptions, type StatusList, type ValidateCredentialOfferOptions, type VerifyAuthorizationResponseFormPostJWTOptions, type VerifyAuthorizationResponseOptions, type VerifyCredentialRequestJwtProofBaseOptions, VerifyCredentialRequestJwtProofError, type VerifyCredentialRequestJwtProofOptions, type VerifyCredentialRequestJwtProofOptionsV1_0, type VerifyCredentialRequestJwtProofOptionsV1_3, type VerifyCredentialRequestJwtProofResult, type VerifyCredentialRequestJwtProofResultV1_0, type VerifyCredentialRequestJwtProofResultV1_3, VerifyKeyAttestationJwtError, type VerifyKeyAttestationJwtOptions, type VerifyKeyAttestationJwtResult, type WalletAttestationOptions, WalletProvider, WalletProviderError, completeAuthorization, createCredentialRequest, createCredentialResponse, extractGrantDetails, fetchCredentialResponse, fetchMetadata, keyAttestationTypeHeader, parseCredentialOfferUri, parseCredentialRequest, resolveCredentialOffer, sendAuthorizationResponseAndExtractCode, validateCredentialOffer, verifyAuthorizationResponse, verifyAuthorizationResponseFormPostJWT, verifyCredentialRequestJwtProof, verifyKeyAttestationJwt, zAuthorizationResponse, zCredentialObject, zCredentialRequestV1_0, zCredentialRequestV1_3, zCredentialResponseEncryption, zCredentialResponseV1_0, zCredentialResponseV1_3, zDeferredCredentialResponseV1_0, zDeferredCredentialResponseV1_3, zImmediateCredentialResponse, zKeyAttestationAlg, zKeyAttestationHeader, zKeyAttestationPayload, zKeyAttestationStatus, zKeyAttestationTypeHeader, zMetadataResponse, zMetadataResponseV1_0, zMetadataResponseV1_3, zProofJwtHeaderV1_0, zProofJwtHeaderV1_3, zProofJwtPayload, zStatusList };