@raytio/core 10.0.1 → 10.1.0

package/dist/verifications/getPOVerification.js

@@ -1,94 +1,94 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getPOVerification = void 0;
-const ramda_1 = require("ramda");
-const types_1 = require("@raytio/types");
-const crypto_1 = require("../crypto");
-const getVerifiedBy_1 = require("./getVerifiedBy");
-const maybeRereference_1 = require("./maybeRereference");
-const general_1 = require("../general");
-const schema_1 = require("../schema");
-/**
- * Determines the verification status of a profile object, and its individual fields.
- */
-function getPOVerification({ PO, schema, realVers, }) {
-    var _a, _b;
-    // safe guard to avoid a misleading response from this function
-    const schemaName = PO.schema || (0, schema_1.findSchemaLabel)(PO.labels);
-    if (schema.name !== schemaName) {
-        throw new Error(`Wrong schema supplied to getPOVerification: ${schema.name} != ${schemaName}`);
-    }
-    const someAreEncrypted = !!(0, crypto_1.someEncrypted)(PO.properties);
-    if (someAreEncrypted) {
-        return {
-            status: types_1.POVerification.Encrypted,
-            details: { sourceNId: PO.n_id, verifiers: [] },
-            fieldVerifications: {},
-        };
-    }
-    // if a subObject is supplied, properties might not be an object.
-    // In which case this PO is definitely not verified
-    const shouldBeVerifiedProps = PO.properties instanceof Object
-        ? (0, ramda_1.pick)(
-        // 📛 part1: this is the straightforward case, we pick the fields that are always verifiable
-        ((_a = schema.verified_fields) === null || _a === void 0 ? void 0 : _a.filter((x) => typeof x === "string")) || [], PO.properties)
-        : {};
-    // 📛 part2: some fields may be conditionally verifiable. if so, and the condition is true, add them to shouldBeVerifiedProps
-    ((_b = schema.verified_fields) !== null && _b !== void 0 ? _b : [])
-        .filter((x) => typeof x !== "string" && (0, general_1.isConditionMet)(x.if, PO.properties))
-        .forEach(x => {
-        // eslint-disable-next-line fp/no-mutation
-        shouldBeVerifiedProps[x.field] = PO.properties[x.field];
-    });
-    const fieldVerifications = (0, ramda_1.mapObjIndexed)((content, fieldName) => {
-        const pertainingVers = realVers.filter(x => x.fieldName === fieldName &&
-            // using ramda's `equals` because this needs to work for objects/arrays
-            (0, ramda_1.equals)((0, maybeRereference_1.maybeRereference)(x.value), (0, maybeRereference_1.maybeRereference)(content)) &&
-            // if an nId is supplied, also filter out verifications that don't relate to that n_id
-            (PO.n_id ? x.belongsToNId === PO.n_id : true));
-        // .every() illogically returns true for arrays with zero length
-        if (pertainingVers.length && pertainingVers.every(x => x.expired)) {
-            return types_1.FieldVerification.Expired;
-        }
-        if (pertainingVers.some(x => !x.verified)) {
-            return types_1.FieldVerification.VerifiedFalse;
-        }
-        return pertainingVers.length
-            ? types_1.FieldVerification.Verified
-            : types_1.FieldVerification.NotVerified;
-    }, shouldBeVerifiedProps);
-    const status = (() => {
-        if (!Object.values(shouldBeVerifiedProps).length) {
-            return types_1.POVerification.NotVerified;
-        }
-        const allExpired = Object.values(fieldVerifications).every(x => x === types_1.FieldVerification.Expired);
-        if (allExpired)
-            return types_1.POVerification.Expired;
-        const anyVerfiedFalse = Object.values(fieldVerifications).some(x => x === types_1.FieldVerification.VerifiedFalse);
-        if (anyVerfiedFalse)
-            return types_1.POVerification.VerifiedFalse;
-        const allVerified = Object.values(fieldVerifications).every(x => x === types_1.FieldVerification.Verified);
-        if (allVerified)
-            return types_1.POVerification.FullyVerified;
-        const anyVerified = Object.values(fieldVerifications).some(x => x === types_1.FieldVerification.Verified);
-        if (anyVerified)
-            return types_1.POVerification.PartiallyVerified;
-        const noneVerified = Object.values(fieldVerifications).every(x => x === types_1.FieldVerification.NotVerified);
-        if (noneVerified)
-            return types_1.POVerification.NotVerified;
-        // can't happen, but just in case the logic above fails
-        /* istanbul ignore next */
-        return types_1.POVerification.NotVerified;
-    })();
-    const verifiers = (0, getVerifiedBy_1.getVerifiedBy)({
-        nId: PO.n_id,
-        realVers,
-        shouldBeVerifiedProps,
-    });
-    return {
-        status,
-        details: { sourceNId: PO.n_id, verifiers },
-        fieldVerifications,
-    };
-}
-exports.getPOVerification = getPOVerification;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getPOVerification = void 0;
+const ramda_1 = require("ramda");
+const types_1 = require("@raytio/types");
+const crypto_1 = require("../crypto");
+const getVerifiedBy_1 = require("./getVerifiedBy");
+const maybeRereference_1 = require("./maybeRereference");
+const general_1 = require("../general");
+const schema_1 = require("../schema");
+/**
+ * Determines the verification status of a profile object, and its individual fields.
+ */
+function getPOVerification({ PO, schema, realVers, }) {
+    var _a, _b;
+    // safe guard to avoid a misleading response from this function
+    const schemaName = PO.schema || (0, schema_1.findSchemaLabel)(PO.labels);
+    if (schema.name !== schemaName) {
+        throw new Error(`Wrong schema supplied to getPOVerification: ${schema.name} != ${schemaName}`);
+    }
+    const someAreEncrypted = !!(0, crypto_1.someEncrypted)(PO.properties);
+    if (someAreEncrypted) {
+        return {
+            status: types_1.POVerification.Encrypted,
+            details: { sourceNId: PO.n_id, verifiers: [] },
+            fieldVerifications: {},
+        };
+    }
+    // if a subObject is supplied, properties might not be an object.
+    // In which case this PO is definitely not verified
+    const shouldBeVerifiedProps = PO.properties instanceof Object
+        ? (0, ramda_1.pick)(
+        // 📛 part1: this is the straightforward case, we pick the fields that are always verifiable
+        ((_a = schema.verified_fields) === null || _a === void 0 ? void 0 : _a.filter((x) => typeof x === "string")) || [], PO.properties)
+        : {};
+    // 📛 part2: some fields may be conditionally verifiable. if so, and the condition is true, add them to shouldBeVerifiedProps
+    ((_b = schema.verified_fields) !== null && _b !== void 0 ? _b : [])
+        .filter((x) => typeof x !== "string" && (0, general_1.isConditionMet)(x.if, PO.properties))
+        .forEach(x => {
+        // eslint-disable-next-line fp/no-mutation
+        shouldBeVerifiedProps[x.field] = PO.properties[x.field];
+    });
+    const fieldVerifications = (0, ramda_1.mapObjIndexed)((content, fieldName) => {
+        const pertainingVers = realVers.filter(x => x.fieldName === fieldName &&
+            // using ramda's `equals` because this needs to work for objects/arrays
+            (0, ramda_1.equals)((0, maybeRereference_1.maybeRereference)(x.value), (0, maybeRereference_1.maybeRereference)(content)) &&
+            // if an nId is supplied, also filter out verifications that don't relate to that n_id
+            (PO.n_id ? x.belongsToNId === PO.n_id : true));
+        // .every() illogically returns true for arrays with zero length
+        if (pertainingVers.length && pertainingVers.every(x => x.expired)) {
+            return types_1.FieldVerification.Expired;
+        }
+        if (pertainingVers.some(x => !x.verified)) {
+            return types_1.FieldVerification.VerifiedFalse;
+        }
+        return pertainingVers.length
+            ? types_1.FieldVerification.Verified
+            : types_1.FieldVerification.NotVerified;
+    }, shouldBeVerifiedProps);
+    const status = (() => {
+        if (!Object.values(shouldBeVerifiedProps).length) {
+            return types_1.POVerification.NotVerified;
+        }
+        const allExpired = Object.values(fieldVerifications).every(x => x === types_1.FieldVerification.Expired);
+        if (allExpired)
+            return types_1.POVerification.Expired;
+        const anyVerfiedFalse = Object.values(fieldVerifications).some(x => x === types_1.FieldVerification.VerifiedFalse);
+        if (anyVerfiedFalse)
+            return types_1.POVerification.VerifiedFalse;
+        const allVerified = Object.values(fieldVerifications).every(x => x === types_1.FieldVerification.Verified);
+        if (allVerified)
+            return types_1.POVerification.FullyVerified;
+        const anyVerified = Object.values(fieldVerifications).some(x => x === types_1.FieldVerification.Verified);
+        if (anyVerified)
+            return types_1.POVerification.PartiallyVerified;
+        const noneVerified = Object.values(fieldVerifications).every(x => x === types_1.FieldVerification.NotVerified);
+        if (noneVerified)
+            return types_1.POVerification.NotVerified;
+        // can't happen, but just in case the logic above fails
+        /* istanbul ignore next */
+        return types_1.POVerification.NotVerified;
+    })();
+    const verifiers = (0, getVerifiedBy_1.getVerifiedBy)({
+        nId: PO.n_id,
+        realVers,
+        shouldBeVerifiedProps,
+    });
+    return {
+        status,
+        details: { sourceNId: PO.n_id, verifiers },
+        fieldVerifications,
+    };
+}
+exports.getPOVerification = getPOVerification;

package/dist/verifications/getRealVerifications.d.ts

@@ -0,0 +1,22 @@
+import { ProfileObject, Verification, RealVer } from "@raytio/types";
+declare type Props = {
+    apiUrl: string;
+    verifications: Verification[];
+    profileObjects: ProfileObject[];
+    controller?: AbortController;
+    /**
+     * do NOT use this option. If the value of a field
+     * equals the value of this prop, that field will be treated
+     * as verified, even if the API says it's not verified. See
+     * #614 for context. @deprecated
+     */
+    UNSAFE_treatNoValueAsVerified?: string;
+};
+/**
+ * Given a list of verifications and decrypted profile objects, this function calls
+ * the Raytio API to verify the credibility of these verifications, returning only valid
+ * verifications.
+ * @returns a list of fileNames/values that are verified.
+ */
+export declare const getRealVerifications: ({ apiUrl, verifications, profileObjects, controller, UNSAFE_treatNoValueAsVerified, }: Props) => Promise<RealVer[]>;
+export {};

package/dist/verifications/getRealVerifications.js

@@ -0,0 +1,71 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getRealVerifications = void 0;
+const ramda_1 = require("ramda");
+const crypto_1 = require("../crypto");
+const checkVerifications_1 = require("./checkVerifications");
+const maybeRereference_1 = require("./maybeRereference");
+const getValuesForAField = (fieldName, POs) => (0, ramda_1.uniq)(
+// truthy only, and ignore encrypted properties. this function will be called again once they're decrypted
+POs.map(x => { var _a; return (_a = x.properties) === null || _a === void 0 ? void 0 : _a[fieldName]; }).filter(x => !!x && !(0, crypto_1.isEncrypted)(x)));
+/**
+ * Given a list of verifications and decrypted profile objects, this function calls
+ * the Raytio API to verify the credibility of these verifications, returning only valid
+ * verifications.
+ * @returns a list of fileNames/values that are verified.
+ */
+const getRealVerifications = async ({ apiUrl, verifications, profileObjects, controller, UNSAFE_treatNoValueAsVerified, }) => {
+    // for each verification (including passed: false), create a list of every possible that
+    // value that that verification might have been for. Flatten the list
+    // and send the whole thing to the API.
+    const toVerify = verifications.flatMap(ver => {
+        const values = getValuesForAField(ver.properties.field, profileObjects);
+        return values.flatMap(value => ver.properties.verifications.map(({ signature }) => ({
+            verifications: [
+                Object.assign({ signature }, (ver.n_id.startsWith("HASHED::")
+                    ? {
+                        hashed_n_id: ver.n_id.split("::")[1],
+                        a_id: ver.n_id.split("::")[2],
+                    }
+                    : { n_id: ver.n_id })),
+            ],
+            data_to_verify: [{ value: (0, maybeRereference_1.maybeRereference)(value) }],
+        })));
+    });
+    // the API can't cope with an empty array
+    if (!toVerify.length)
+        return [];
+    const apiResponse = await (0, checkVerifications_1.checkVerifications)({
+        apiUrl,
+        toVerify,
+        controller,
+    });
+    // do NOT expose the `verified` prop from the /verify_check API to avoid semantic confusion,
+    // since verified: true does not mean that the verification is verified!
+    const realVers = apiResponse
+        .filter(x => x.verified ||
+        // if UNSAFE_treatNoValueAsVerified is enabled, and we don't know the value of this field,
+        // treat is as verified if the `passed` property is true (this is NOT a safe check).
+        (!!UNSAFE_treatNoValueAsVerified &&
+            x.data.value === UNSAFE_treatNoValueAsVerified &&
+            x.data.passed))
+        .map(({ signature, data, n_id: nID, valid_until }) => ({
+        fieldName: data.field,
+        value: data.value,
+        provider: {
+            dataSourceNId: data.verifier_source_id,
+            serviceProviderNId: data.verifier_service_id,
+            verifierNId: data.verifier_id,
+            date: new Date(`${data.verification_date}Z`), // the api returns invalid dates (missing the `Z`)
+        },
+        expired: valid_until ? new Date(valid_until) : false,
+        metadata: data.metadata,
+        xId: data.request_div,
+        signature,
+        verified: data.passed,
+        nID,
+        belongsToNId: data.source_n_id,
+    }));
+    return realVers;
+};
+exports.getRealVerifications = getRealVerifications;

package/dist/verifications/getVerifiedBy.d.ts

@@ -1 +1 @@
-export {};
+export {};

package/dist/verifications/getVerifiedBy.js

@@ -1,19 +1,19 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getVerifiedBy = void 0;
-const ramda_1 = require("ramda");
-const maybeRereference_1 = require("./maybeRereference");
-// we should probably document this
-/** @internal */
-const getVerifiedBy = ({ nId, realVers, shouldBeVerifiedProps, }) => {
-    const mayBeVerifiedFields = Object.keys(shouldBeVerifiedProps);
-    const pertainingVers = realVers
-        .filter(x => mayBeVerifiedFields.includes(x.fieldName) &&
-        // using ramda's `equals` because this needs to work for objects/arrays
-        (0, ramda_1.equals)((0, maybeRereference_1.maybeRereference)(shouldBeVerifiedProps[x.fieldName]), (0, maybeRereference_1.maybeRereference)(x.value)) &&
-        // if an nId is supplied, also filter out verifications that don't relate to that n_id
-        (nId ? x.belongsToNId === nId : true))
-        .map(x => x.provider);
-    return (0, ramda_1.uniqBy)(x => x.dataSourceNId, pertainingVers);
-};
-exports.getVerifiedBy = getVerifiedBy;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getVerifiedBy = void 0;
+const ramda_1 = require("ramda");
+const maybeRereference_1 = require("./maybeRereference");
+// we should probably document this
+/** @internal */
+const getVerifiedBy = ({ nId, realVers, shouldBeVerifiedProps, }) => {
+    const mayBeVerifiedFields = Object.keys(shouldBeVerifiedProps);
+    const pertainingVers = realVers
+        .filter(x => mayBeVerifiedFields.includes(x.fieldName) &&
+        // using ramda's `equals` because this needs to work for objects/arrays
+        (0, ramda_1.equals)((0, maybeRereference_1.maybeRereference)(shouldBeVerifiedProps[x.fieldName]), (0, maybeRereference_1.maybeRereference)(x.value)) &&
+        // if an nId is supplied, also filter out verifications that don't relate to that n_id
+        (nId ? x.belongsToNId === nId : true))
+        .map(x => x.provider);
+    return (0, ramda_1.uniqBy)(x => x.dataSourceNId, pertainingVers);
+};
+exports.getVerifiedBy = getVerifiedBy;

package/dist/verifications/index.d.ts

@@ -1,5 +1,5 @@
-export * from "./cleanInstance";
-export * from "./getPOVerification";
-export * from "./verifyCheck";
-export * from "./getVerifiedBy";
-export * from "./safeHarbour";
+export * from "./cleanInstance";
+export * from "./getPOVerification";
+export * from "./verifyCheck";
+export * from "./getVerifiedBy";
+export * from "./safeHarbour";

package/dist/verifications/index.js

@@ -1,21 +1,21 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./cleanInstance"), exports);
-__exportStar(require("./getPOVerification"), exports);
-__exportStar(require("./verifyCheck"), exports);
-__exportStar(require("./getVerifiedBy"), exports);
-__exportStar(require("./safeHarbour"), exports);
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./cleanInstance"), exports);
+__exportStar(require("./getPOVerification"), exports);
+__exportStar(require("./verifyCheck"), exports);
+__exportStar(require("./getVerifiedBy"), exports);
+__exportStar(require("./safeHarbour"), exports);

package/dist/verifications/maybeRereference.d.ts

@@ -1 +1 @@
-export {};
+export {};

package/dist/verifications/maybeRereference.js

@@ -1,10 +1,10 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.maybeRereference = void 0;
-const hasNId = (value) => typeof value === "object" && !!value && "n_id" in value;
-/**
- * @internal see #578
- * For values that have already been dereferenced, we recreate the `$ref`.
- */
-const maybeRereference = (value) => hasNId(value) ? { $ref: `urn:profile_object:${value.n_id}` } : value;
-exports.maybeRereference = maybeRereference;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.maybeRereference = void 0;
+const hasNId = (value) => typeof value === "object" && !!value && "n_id" in value;
+/**
+ * @internal see #578
+ * For values that have already been dereferenced, we recreate the `$ref`.
+ */
+const maybeRereference = (value) => hasNId(value) ? { $ref: `urn:profile_object:${value.n_id}` } : value;
+exports.maybeRereference = maybeRereference;

package/dist/verifications/safeHarbour.d.ts

@@ -1,20 +1,20 @@
-import { ProfileObject, RealVer, Schema } from "@raytio/types";
-/** an object listing the `xId`s for each SafeHarbourCode */
-export declare type SafeHarbourObj = Partial<Record<SafeHarbourCode, string[]>>;
-/** the response from {@link calcSafeHarbourScore} */
-export declare type SafeHarbourResult = {
-    isSafe: boolean;
-    flags: SafeHarbourObj;
-};
-/**
- * The Safe Harbour Score indidicates whether a person's identity has been verified
- * to the extent requried for Safe Harbour Compliance. This requires multiple verifications
- * from different sources. For information, refer to the
- * {@link https://dev-docs.rayt.io/docs/features/pep-checks Raytio Documentation}.
- */
-export declare const calcSafeHarbourScore: (data: {
-    person: ProfileObject;
-    profileObjects: ProfileObject[];
-    realVers: RealVer[];
-    getSchema(schemaName: string): Promise<Schema>;
-}) => Promise<SafeHarbourResult>;
+import { ProfileObject, RealVer, Schema } from "@raytio/types";
+/** an object listing the `xId`s for each SafeHarbourCode */
+export declare type SafeHarbourObj = Partial<Record<SafeHarbourCode, string[]>>;
+/** the response from {@link calcSafeHarbourScore} */
+export declare type SafeHarbourResult = {
+    isSafe: boolean;
+    flags: SafeHarbourObj;
+};
+/**
+ * The Safe Harbour Score indidicates whether a person's identity has been verified
+ * to the extent requried for Safe Harbour Compliance. This requires multiple verifications
+ * from different sources. For information, refer to the
+ * {@link https://dev-docs.rayt.io/docs/features/pep-checks Raytio Documentation}.
+ */
+export declare const calcSafeHarbourScore: (data: {
+    person: ProfileObject;
+    profileObjects: ProfileObject[];
+    realVers: RealVer[];
+    getSchema(schemaName: string): Promise<Schema>;
+}) => Promise<SafeHarbourResult>;

package/dist/verifications/safeHarbour.js

@@ -1,74 +1,74 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.calcSafeHarbourScore = exports.safeHarbourRequirementsMet = exports.getFlags = exports.filterByMutualFields = void 0;
-const ramda_1 = require("ramda");
-const types_1 = require("@raytio/types");
-const getPOVerification_1 = require("./getPOVerification");
-const schema_1 = require("../schema");
-/** @internal see #659 */
-var SafeHarbourCode;
-(function (SafeHarbourCode) {
-    SafeHarbourCode["M1"] = "M1";
-    SafeHarbourCode["M2"] = "M2";
-    SafeHarbourCode["N1"] = "N1";
-})(SafeHarbourCode || (SafeHarbourCode = {}));
-/**
- * @internal
- * we filter to only include the POs where all the mutual fields match the
- * person, i.e. we only want POs that have fName, lName, etc. with the same
- * value as the base person
- */
-function filterByMutualFields(person, profileObjects) {
-    const personFields = Object.entries(person.properties).filter(([fieldName]) => fieldName !== "n_id");
-    if (!personFields.length)
-        return [];
-    return profileObjects.filter(PO => personFields.every(([k, v]) => { var _a; return ((_a = PO.properties) === null || _a === void 0 ? void 0 : _a[k]) && (0, ramda_1.equals)(PO.properties[k], v); }));
-}
-exports.filterByMutualFields = filterByMutualFields;
-/** @internal */
-async function getFlags({ person, profileObjects, realVers, getSchema, }) {
-    const POsWithSameFields = filterByMutualFields(person, profileObjects);
-    const relevantVers = (await Promise.all(POsWithSameFields.map(async (PO) => {
-        const schemaName = (0, schema_1.findSchemaLabel)(PO.labels);
-        const schema = await getSchema(schemaName);
-        return Object.assign({ nId: PO.n_id }, (0, getPOVerification_1.getPOVerification)({
-            schema,
-            PO,
-            realVers,
-        }));
-    })))
-        .filter(v => v.status === types_1.POVerification.FullyVerified)
-        .flatMap(v => v.details.verifiers.map(verProvider => realVers.find(ver => ver.belongsToNId === v.nId &&
-        ver.provider.dataSourceNId === verProvider.dataSourceNId)))
-        .filter((x) => !!x);
-    // in case there are somehow duplicates (see #922)
-    return (0, ramda_1.uniqBy)(x => x.nID, relevantVers)
-        .filter(ver => { var _a; return (_a = ver.metadata) === null || _a === void 0 ? void 0 : _a["safeHarbourScore"]; })
-        .reduce((ac, ver) => {
-        var _a, _b;
-        const key = (_a = ver.metadata) === null || _a === void 0 ? void 0 : _a["safeHarbourScore"];
-        if ((_b = ac[key]) === null || _b === void 0 ? void 0 : _b.includes(ver.xId))
-            return ac;
-        return Object.assign(Object.assign({}, ac), { [key]: [...(ac[key] || []), ver.xId] });
-    }, {});
-}
-exports.getFlags = getFlags;
-/** @internal */
-function safeHarbourRequirementsMet(flags) {
-    const { M1 = 0, M2 = 0, N1 = 0 } = (0, ramda_1.mapObjIndexed)(xIds => xIds.length, flags);
-    // see https://bit.ly/2KKo4rF
-    const isSafe = M1 >= 2 ||
-        (M1 >= 1 && M2 >= 1) ||
-        (M1 >= 1 && N1 >= 1) ||
-        (M2 >= 1 && N1 >= 1);
-    return { isSafe, flags };
-}
-exports.safeHarbourRequirementsMet = safeHarbourRequirementsMet;
-/**
- * The Safe Harbour Score indidicates whether a person's identity has been verified
- * to the extent requried for Safe Harbour Compliance. This requires multiple verifications
- * from different sources. For information, refer to the
- * {@link https://dev-docs.rayt.io/docs/features/pep-checks Raytio Documentation}.
- */
-const calcSafeHarbourScore = (data) => getFlags(data).then(safeHarbourRequirementsMet);
-exports.calcSafeHarbourScore = calcSafeHarbourScore;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.calcSafeHarbourScore = exports.safeHarbourRequirementsMet = exports.getFlags = exports.filterByMutualFields = void 0;
+const ramda_1 = require("ramda");
+const types_1 = require("@raytio/types");
+const getPOVerification_1 = require("./getPOVerification");
+const schema_1 = require("../schema");
+/** @internal see #659 */
+var SafeHarbourCode;
+(function (SafeHarbourCode) {
+    SafeHarbourCode["M1"] = "M1";
+    SafeHarbourCode["M2"] = "M2";
+    SafeHarbourCode["N1"] = "N1";
+})(SafeHarbourCode || (SafeHarbourCode = {}));
+/**
+ * @internal
+ * we filter to only include the POs where all the mutual fields match the
+ * person, i.e. we only want POs that have fName, lName, etc. with the same
+ * value as the base person
+ */
+function filterByMutualFields(person, profileObjects) {
+    const personFields = Object.entries(person.properties).filter(([fieldName]) => fieldName !== "n_id");
+    if (!personFields.length)
+        return [];
+    return profileObjects.filter(PO => personFields.every(([k, v]) => { var _a; return ((_a = PO.properties) === null || _a === void 0 ? void 0 : _a[k]) && (0, ramda_1.equals)(PO.properties[k], v); }));
+}
+exports.filterByMutualFields = filterByMutualFields;
+/** @internal */
+async function getFlags({ person, profileObjects, realVers, getSchema, }) {
+    const POsWithSameFields = filterByMutualFields(person, profileObjects);
+    const relevantVers = (await Promise.all(POsWithSameFields.map(async (PO) => {
+        const schemaName = (0, schema_1.findSchemaLabel)(PO.labels);
+        const schema = await getSchema(schemaName);
+        return Object.assign({ nId: PO.n_id }, (0, getPOVerification_1.getPOVerification)({
+            schema,
+            PO,
+            realVers,
+        }));
+    })))
+        .filter(v => v.status === types_1.POVerification.FullyVerified)
+        .flatMap(v => v.details.verifiers.map(verProvider => realVers.find(ver => ver.belongsToNId === v.nId &&
+        ver.provider.dataSourceNId === verProvider.dataSourceNId)))
+        .filter((x) => !!x);
+    // in case there are somehow duplicates (see #922)
+    return (0, ramda_1.uniqBy)(x => x.nID, relevantVers)
+        .filter(ver => { var _a; return (_a = ver.metadata) === null || _a === void 0 ? void 0 : _a["safeHarbourScore"]; })
+        .reduce((ac, ver) => {
+        var _a, _b;
+        const key = (_a = ver.metadata) === null || _a === void 0 ? void 0 : _a["safeHarbourScore"];
+        if ((_b = ac[key]) === null || _b === void 0 ? void 0 : _b.includes(ver.xId))
+            return ac;
+        return Object.assign(Object.assign({}, ac), { [key]: [...(ac[key] || []), ver.xId] });
+    }, {});
+}
+exports.getFlags = getFlags;
+/** @internal */
+function safeHarbourRequirementsMet(flags) {
+    const { M1 = 0, M2 = 0, N1 = 0 } = (0, ramda_1.mapObjIndexed)(xIds => xIds.length, flags);
+    // see https://bit.ly/2KKo4rF
+    const isSafe = M1 >= 2 ||
+        (M1 >= 1 && M2 >= 1) ||
+        (M1 >= 1 && N1 >= 1) ||
+        (M2 >= 1 && N1 >= 1);
+    return { isSafe, flags };
+}
+exports.safeHarbourRequirementsMet = safeHarbourRequirementsMet;
+/**
+ * The Safe Harbour Score indidicates whether a person's identity has been verified
+ * to the extent requried for Safe Harbour Compliance. This requires multiple verifications
+ * from different sources. For information, refer to the
+ * {@link https://dev-docs.rayt.io/docs/features/pep-checks Raytio Documentation}.
+ */
+const calcSafeHarbourScore = (data) => getFlags(data).then(safeHarbourRequirementsMet);
+exports.calcSafeHarbourScore = calcSafeHarbourScore;

package/dist/verifications/verifyCheck/getOwnRealVerifications.d.ts

@@ -1,13 +1,13 @@
-import { ProfileObject, Verification, RealVer, UId } from "@raytio/types";
-/**
- * Given a list of verifications and decrypted profile objects, this function
- * locally verifies the credibility of the signatures in the verifications.
- *
- * This function does NOT call the API, except to fetch the public key.
- * @returns a list of authentic RealVer
- */
-export declare const getOwnRealVerifications: ({ verifications, profileObjects, userId, }: {
-    verifications: Verification[];
-    profileObjects: ProfileObject[];
-    userId: UId;
-}) => Promise<RealVer[]>;
+import { ProfileObject, Verification, RealVer, UId } from "@raytio/types";
+/**
+ * Given a list of verifications and decrypted profile objects, this function
+ * locally verifies the credibility of the signatures in the verifications.
+ *
+ * This function does NOT call the API, except to fetch the public key.
+ * @returns a list of authentic RealVer
+ */
+export declare const getOwnRealVerifications: ({ verifications, profileObjects, userId, }: {
+    verifications: Verification[];
+    profileObjects: ProfileObject[];
+    userId: UId;
+}) => Promise<RealVer[]>;