@raytio/core 9.0.3 → 10.1.0

package/dist/verifications/verifyCheck/getOwnRealVerifications.js

@@ -1,63 +1,64 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getOwnRealVerifications = void 0;
-const maybeRereference_1 = require("../maybeRereference");
-const operations_1 = require("./operations");
-/**
- * Given a list of verifications and decrypted profile objects, this function
- * locally verifies the credibility of the signatures in the verifications.
- *
- * This function does NOT call the API, except to fetch the public key.
- * @returns a list of authentic RealVer
- */
-const getOwnRealVerifications = async ({ verifications, profileObjects, userId, }) => {
-    const realVers = [];
-    // this code is deliberaly written using for-loops instead of Promise.all,
-    // because attempting hundreds of webcrypto operations simultaneously will
-    // probably upset some heritage web browser.
-    for (const ver of verifications) {
-        for (const { data, signature } of ver.properties.verifications) {
-            const sourcePO = profileObjects.find(PO => PO.n_id === data.source_n_id);
-            if (!sourcePO)
-                continue;
-            const value = sourcePO.properties[data.field];
-            if (!value)
-                continue;
-            /**
-             * this does NOT mean that the data is correct. It means the
-             * verification is genuinely signed by raytio, but the data
-             * might be bogus (i.e. `passed: false`)
-             */
-            const isGenuine = await (0, operations_1.checkOwnVerification)({
-                verObject: data,
-                userId,
-                value: (0, maybeRereference_1.maybeRereference)(value),
-                signature,
-            });
-            if (!isGenuine)
-                continue;
-            // a "RealVer" is what the client likes to deal with,
-            // rather than the "VerificationPayload" which is stored on the API.
-            // eslint-disable-next-line fp/no-mutating-methods
-            realVers.push({
-                fieldName: data.field,
-                value,
-                provider: {
-                    dataSourceNId: data.verifier_source_id,
-                    serviceProviderNId: data.verifier_service_id,
-                    verifierNId: data.verifier_id,
-                    date: new Date(`${data.verification_date}Z`), // the api returns invalid dates (missing the `Z`)
-                },
-                expired: data.valid_until ? new Date(data.valid_until) : false,
-                metadata: data.metadata,
-                xId: data.request_div,
-                signature,
-                verified: data.passed,
-                nID: ver.n_id,
-                belongsToNId: data.source_n_id,
-            });
-        }
-    }
-    return realVers;
-};
-exports.getOwnRealVerifications = getOwnRealVerifications;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getOwnRealVerifications = void 0;
+const general_1 = require("../../general");
+const maybeRereference_1 = require("../maybeRereference");
+const operations_1 = require("./operations");
+/**
+ * Given a list of verifications and decrypted profile objects, this function
+ * locally verifies the credibility of the signatures in the verifications.
+ *
+ * This function does NOT call the API, except to fetch the public key.
+ * @returns a list of authentic RealVer
+ */
+const getOwnRealVerifications = async ({ verifications, profileObjects, userId, }) => {
+    const realVers = [];
+    // this code is deliberaly written using for-loops instead of Promise.all,
+    // because attempting hundreds of webcrypto operations simultaneously will
+    // probably upset some heritage web browser.
+    for (const ver of verifications) {
+        for (const { data, signature } of ver.properties.verifications) {
+            const sourcePO = profileObjects.find(PO => PO.n_id === data.source_n_id);
+            if (!sourcePO)
+                continue;
+            const value = sourcePO.properties[data.field];
+            if (!value)
+                continue;
+            /**
+             * this does NOT mean that the data is correct. It means the
+             * verification is genuinely signed by raytio, but the data
+             * might be bogus (i.e. `passed: false`)
+             */
+            const isGenuine = await (0, operations_1.checkOwnVerification)({
+                verObject: data,
+                userId,
+                value: (0, maybeRereference_1.maybeRereference)(value),
+                signature,
+            });
+            if (!isGenuine)
+                continue;
+            // a "RealVer" is what the client likes to deal with,
+            // rather than the "VerificationPayload" which is stored on the API.
+            // eslint-disable-next-line fp/no-mutating-methods
+            realVers.push({
+                fieldName: data.field,
+                value,
+                provider: {
+                    dataSourceNId: data.verifier_source_id,
+                    serviceProviderNId: data.verifier_service_id,
+                    verifierNId: data.verifier_id,
+                    date: (0, general_1.repairDate)(data.verification_date),
+                },
+                expired: data.valid_until ? (0, general_1.repairDate)(data.valid_until) : false,
+                metadata: data.metadata,
+                xId: data.request_div,
+                signature,
+                verified: data.passed,
+                nID: ver.n_id,
+                belongsToNId: data.source_n_id,
+            });
+        }
+    }
+    return realVers;
+};
+exports.getOwnRealVerifications = getOwnRealVerifications;

package/dist/verifications/verifyCheck/getSomeoneElsesRealVerifications.d.ts

@@ -1,19 +1,19 @@
-import { ProfileObject, Verification, RealVer, AId } from "@raytio/types";
-declare type Props = {
-    aId: AId;
-    apiUrl: string;
-    verifications: Verification[];
-    profileObjects: ProfileObject[];
-    controller?: AbortController;
-};
-/**
- * Given a list of verifications and decrypted profile objects, this function calls
- * the Raytio API to verify the credibility of these verifications, returning only valid
- * verifications.
- *
- * ❗ prefer `getOwnRealVerifications` if the data to be verified belongs to the current user.
- *
- * @returns a list of fileNames/values that are verified.
- */
-export declare const getSomeoneElsesRealVerifications: ({ aId, apiUrl, verifications, profileObjects, controller, }: Props) => Promise<RealVer[]>;
-export {};
+import { ProfileObject, Verification, RealVer, AId } from "@raytio/types";
+declare type Props = {
+    aId: AId;
+    apiUrl: string;
+    verifications: Verification[];
+    profileObjects: ProfileObject[];
+    controller?: AbortController;
+};
+/**
+ * Given a list of verifications and decrypted profile objects, this function calls
+ * the Raytio API to verify the credibility of these verifications, returning only valid
+ * verifications.
+ *
+ * ❗ prefer `getOwnRealVerifications` if the data to be verified belongs to the current user.
+ *
+ * @returns a list of fileNames/values that are verified.
+ */
+export declare const getSomeoneElsesRealVerifications: ({ aId, apiUrl, verifications, profileObjects, controller, }: Props) => Promise<RealVer[]>;
+export {};

package/dist/verifications/verifyCheck/getSomeoneElsesRealVerifications.js

@@ -1,71 +1,72 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getSomeoneElsesRealVerifications = void 0;
-const ramda_1 = require("ramda");
-const operations_1 = require("./operations");
-const maybeRereference_1 = require("../maybeRereference");
-const crypto_1 = require("../../crypto");
-const getValuesForAField = (fieldName, POs) => (0, ramda_1.uniq)(
-// truthy only, and ignore encrypted properties. this function will be called again once they're decrypted
-POs.map(x => { var _a; return (_a = x.properties) === null || _a === void 0 ? void 0 : _a[fieldName]; }).filter(x => !!x && !(0, crypto_1.isEncrypted)(x)));
-/**
- * Given a list of verifications and decrypted profile objects, this function calls
- * the Raytio API to verify the credibility of these verifications, returning only valid
- * verifications.
- *
- * ❗ prefer `getOwnRealVerifications` if the data to be verified belongs to the current user.
- *
- * @returns a list of fileNames/values that are verified.
- */
-const getSomeoneElsesRealVerifications = async ({ aId, apiUrl, verifications, profileObjects, controller, }) => {
-    // for each verification (including passed: false), create a list of every possible that
-    // value that that verification might have been for. Flatten the list
-    // and send the whole thing to the API.
-    const toVerify = verifications.flatMap(ver => {
-        const values = getValuesForAField(ver.properties.field, profileObjects);
-        return values.flatMap(value => ver.properties.verifications.map(({ signature }) => ({
-            verifications: [
-                Object.assign({ signature }, (ver.n_id.startsWith("HASHED::")
-                    ? {
-                        hashed_n_id: ver.n_id.split("::")[1],
-                        a_id: ver.n_id.split("::")[2],
-                    }
-                    : { n_id: ver.n_id })),
-            ],
-            data_to_verify: [{ value: (0, maybeRereference_1.maybeRereference)(value) }],
-        })));
-    });
-    // the API can't cope with an empty array
-    if (!toVerify.length)
-        return [];
-    const apiResponse = await (0, operations_1.checkSomeoneElsesVerifications)({
-        apiUrl,
-        toVerify,
-        controller,
-    });
-    // do NOT expose the `verified` prop from the /verify_check API to avoid semantic confusion,
-    // since verified: true does not mean that the verification is verified!
-    const realVers = apiResponse
-        .filter(x => x.verified)
-        .map(({ signature, data, n_id: nID, valid_until }) => ({
-        fieldName: data.field,
-        value: data.value,
-        provider: {
-            dataSourceNId: data.verifier_source_id,
-            serviceProviderNId: data.verifier_service_id,
-            verifierNId: data.verifier_id,
-            date: new Date(`${data.verification_date}Z`), // the api returns invalid dates (missing the `Z`)
-        },
-        expired: valid_until ? new Date(valid_until) : false,
-        metadata: data.metadata,
-        xId: data.request_div,
-        signature,
-        verified: data.passed,
-        nID,
-        belongsToNId: data.source_hashed_n_id
-            ? `HASHED::${data.source_hashed_n_id}::${aId}`
-            : data.source_n_id,
-    }));
-    return realVers;
-};
-exports.getSomeoneElsesRealVerifications = getSomeoneElsesRealVerifications;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSomeoneElsesRealVerifications = void 0;
+const ramda_1 = require("ramda");
+const operations_1 = require("./operations");
+const maybeRereference_1 = require("../maybeRereference");
+const crypto_1 = require("../../crypto");
+const general_1 = require("../../general");
+const getValuesForAField = (fieldName, POs) => (0, ramda_1.uniq)(
+// truthy only, and ignore encrypted properties. this function will be called again once they're decrypted
+POs.map(x => { var _a; return (_a = x.properties) === null || _a === void 0 ? void 0 : _a[fieldName]; }).filter(x => !!x && !(0, crypto_1.isEncrypted)(x)));
+/**
+ * Given a list of verifications and decrypted profile objects, this function calls
+ * the Raytio API to verify the credibility of these verifications, returning only valid
+ * verifications.
+ *
+ * ❗ prefer `getOwnRealVerifications` if the data to be verified belongs to the current user.
+ *
+ * @returns a list of fileNames/values that are verified.
+ */
+const getSomeoneElsesRealVerifications = async ({ aId, apiUrl, verifications, profileObjects, controller, }) => {
+    // for each verification (including passed: false), create a list of every possible that
+    // value that that verification might have been for. Flatten the list
+    // and send the whole thing to the API.
+    const toVerify = verifications.flatMap(ver => {
+        const values = getValuesForAField(ver.properties.field, profileObjects);
+        return values.flatMap(value => ver.properties.verifications.map(({ signature }) => ({
+            verifications: [
+                Object.assign({ signature }, (ver.n_id.startsWith("HASHED::")
+                    ? {
+                        hashed_n_id: ver.n_id.split("::")[1],
+                        a_id: ver.n_id.split("::")[2],
+                    }
+                    : { n_id: ver.n_id })),
+            ],
+            data_to_verify: [{ value: (0, maybeRereference_1.maybeRereference)(value) }],
+        })));
+    });
+    // the API can't cope with an empty array
+    if (!toVerify.length)
+        return [];
+    const apiResponse = await (0, operations_1.checkSomeoneElsesVerifications)({
+        apiUrl,
+        toVerify,
+        controller,
+    });
+    // do NOT expose the `verified` prop from the /verify_check API to avoid semantic confusion,
+    // since verified: true does not mean that the verification is verified!
+    const realVers = apiResponse
+        .filter(x => x.verified)
+        .map(({ signature, data, n_id: nID, valid_until }) => ({
+        fieldName: data.field,
+        value: data.value,
+        provider: {
+            dataSourceNId: data.verifier_source_id,
+            serviceProviderNId: data.verifier_service_id,
+            verifierNId: data.verifier_id,
+            date: (0, general_1.repairDate)(data.verification_date),
+        },
+        expired: valid_until ? (0, general_1.repairDate)(valid_until) : false,
+        metadata: data.metadata,
+        xId: data.request_div,
+        signature,
+        verified: data.passed,
+        nID,
+        belongsToNId: data.source_hashed_n_id
+            ? `HASHED::${data.source_hashed_n_id}::${aId}`
+            : data.source_n_id,
+    }));
+    return realVers;
+};
+exports.getSomeoneElsesRealVerifications = getSomeoneElsesRealVerifications;

package/dist/verifications/verifyCheck/index.d.ts

@@ -1,3 +1,3 @@
-export * from "./getOwnRealVerifications";
-export * from "./getSomeoneElsesRealVerifications";
-export { checkJsonSignature } from "./operations";
+export * from "./getOwnRealVerifications";
+export * from "./getSomeoneElsesRealVerifications";
+export { checkJsonSignature } from "./operations";

package/dist/verifications/verifyCheck/index.js

@@ -1,17 +1,21 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkJsonSignature = void 0;
-__exportStar(require("./getOwnRealVerifications"), exports);
-__exportStar(require("./getSomeoneElsesRealVerifications"), exports);
-var operations_1 = require("./operations");
-Object.defineProperty(exports, "checkJsonSignature", { enumerable: true, get: function () { return operations_1.checkJsonSignature; } });
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.checkJsonSignature = void 0;
+__exportStar(require("./getOwnRealVerifications"), exports);
+__exportStar(require("./getSomeoneElsesRealVerifications"), exports);
+var operations_1 = require("./operations");
+Object.defineProperty(exports, "checkJsonSignature", { enumerable: true, get: function () { return operations_1.checkJsonSignature; } });

package/dist/verifications/verifyCheck/operations/checkOwnVerification.d.ts

@@ -1,15 +1,15 @@
-import { UId, VerificationPayload } from "@raytio/types";
-declare type SingleVerToCheck = {
-    verObject: VerificationPayload<false>;
-    signature: string;
-    userId: UId;
-    value: unknown;
-};
-/**
- * checks that a json object was signed by the provided signature. Unless you're
- * dealing with bundled verifications, you should use `getOwnRealVerifications`
- * or `getSomeoneElsesRealVerifications` instead.
- */
-export declare const checkJsonSignature: (data: unknown, signature: string) => Promise<boolean>;
-export declare const checkOwnVerification: ({ verObject, signature, userId, value, }: SingleVerToCheck) => Promise<boolean>;
-export {};
+import { UId, VerificationPayload } from "@raytio/types";
+declare type SingleVerToCheck = {
+    verObject: VerificationPayload<false>;
+    signature: string;
+    userId: UId;
+    value: unknown;
+};
+/**
+ * checks that a json object was signed by the provided signature. Unless you're
+ * dealing with bundled verifications, you should use `getOwnRealVerifications`
+ * or `getSomeoneElsesRealVerifications` instead.
+ */
+export declare const checkJsonSignature: (data: unknown, signature: string) => Promise<boolean>;
+export declare const checkOwnVerification: ({ verObject, signature, userId, value, }: SingleVerToCheck) => Promise<boolean>;
+export {};

package/dist/verifications/verifyCheck/operations/checkOwnVerification.js

@@ -1,39 +1,39 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkOwnVerification = exports.checkJsonSignature = exports.checkSignature = void 0;
-const util_1 = require("../../../util");
-let cache; // eslint-disable-line fp/no-let
-const base64ToArrayBuffer = (str) => Uint8Array.from(atob(str), c => c.charCodeAt(0));
-async function getJwk() {
-    // eslint-disable-next-line fp/no-mutation
-    cache || (cache = fetch("https://api-docs.rayt.io/lookups/raytio.pem")
-        .then(r => r.text())
-        .then(pem => crypto.subtle.importKey("spki", base64ToArrayBuffer(pem.split("-----")[2].trim()), { name: "RSA-PSS", hash: "SHA-512" }, false, ["verify"])));
-    return cache;
-}
-/** @internal exported only for tests */
-async function checkSignature(publicCryptoKey, signature, data) {
-    // the logic must match https://gitlab.com/raytio/mono/-/blob/devo/common/signing/signing/sign.py
-    const signatureBuf = base64ToArrayBuffer(signature);
-    const isVerified = await crypto.subtle.verify({ name: "RSA-PSS", hash: "SHA-512", saltLength: 512 / 8 }, publicCryptoKey, signatureBuf, new TextEncoder().encode(data));
-    return isVerified;
-}
-exports.checkSignature = checkSignature;
-/**
- * checks that a json object was signed by the provided signature. Unless you're
- * dealing with bundled verifications, you should use `getOwnRealVerifications`
- * or `getSomeoneElsesRealVerifications` instead.
- */
-const checkJsonSignature = async (data, signature) => {
-    const jwk = await getJwk();
-    const stringified = (0, util_1.canonicalJsonify)(data);
-    const result = await checkSignature(jwk, signature, stringified);
-    return result;
-};
-exports.checkJsonSignature = checkJsonSignature;
-const checkOwnVerification = async ({ verObject, signature, userId, value, }) => {
-    if (!userId)
-        throw new Error("No userId supplied");
-    return (0, exports.checkJsonSignature)(Object.assign(Object.assign({}, verObject), { sub: userId, value }), signature);
-};
-exports.checkOwnVerification = checkOwnVerification;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.checkOwnVerification = exports.checkJsonSignature = exports.checkSignature = void 0;
+const util_1 = require("../../../util");
+let cache; // eslint-disable-line fp/no-let
+const base64ToArrayBuffer = (str) => Uint8Array.from(atob(str), c => c.charCodeAt(0));
+async function getJwk() {
+    // eslint-disable-next-line fp/no-mutation
+    cache || (cache = fetch("https://api-docs.rayt.io/lookups/raytio.pem")
+        .then(r => r.text())
+        .then(pem => crypto.subtle.importKey("spki", base64ToArrayBuffer(pem.split("-----")[2].trim()), { name: "RSA-PSS", hash: "SHA-512" }, false, ["verify"])));
+    return cache;
+}
+/** @internal exported only for tests */
+async function checkSignature(publicCryptoKey, signature, data) {
+    // the logic must match https://gitlab.com/raytio/mono/-/blob/devo/common/signing/signing/sign.py
+    const signatureBuf = base64ToArrayBuffer(signature);
+    const isVerified = await crypto.subtle.verify({ name: "RSA-PSS", hash: "SHA-512", saltLength: 512 / 8 }, publicCryptoKey, signatureBuf, new TextEncoder().encode(data));
+    return isVerified;
+}
+exports.checkSignature = checkSignature;
+/**
+ * checks that a json object was signed by the provided signature. Unless you're
+ * dealing with bundled verifications, you should use `getOwnRealVerifications`
+ * or `getSomeoneElsesRealVerifications` instead.
+ */
+const checkJsonSignature = async (data, signature) => {
+    const jwk = await getJwk();
+    const stringified = (0, util_1.canonicalJsonify)(data);
+    const result = await checkSignature(jwk, signature, stringified);
+    return result;
+};
+exports.checkJsonSignature = checkJsonSignature;
+const checkOwnVerification = async ({ verObject, signature, userId, value, }) => {
+    if (!userId)
+        throw new Error("No userId supplied");
+    return (0, exports.checkJsonSignature)(Object.assign(Object.assign({}, verObject), { sub: userId, value }), signature);
+};
+exports.checkOwnVerification = checkOwnVerification;

package/dist/verifications/verifyCheck/operations/checkSomeoneElsesVerifications.d.ts

@@ -1 +1 @@
-export {};
+export {};

package/dist/verifications/verifyCheck/operations/checkSomeoneElsesVerifications.js

@@ -1,16 +1,16 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkSomeoneElsesVerifications = void 0;
-const util_1 = require("../../../util");
-/** @internal */
-const checkSomeoneElsesVerifications = async ({ apiUrl, toVerify, controller, }) => {
-    const response = await fetch(`${apiUrl}/extract_verify/v2/verify_check`, {
-        method: "POST",
-        body: JSON.stringify(toVerify),
-        signal: controller === null || controller === void 0 ? void 0 : controller.signal,
-    }).then(util_1.handleResponse);
-    // if we send `n` items to the API, it returns `n + m` items. The
-    // extra `m` items are garbage and don't have the verified field.
-    return response.filter(ver => "verified" in ver);
-};
-exports.checkSomeoneElsesVerifications = checkSomeoneElsesVerifications;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.checkSomeoneElsesVerifications = void 0;
+const util_1 = require("../../../util");
+/** @internal */
+const checkSomeoneElsesVerifications = async ({ apiUrl, toVerify, controller, }) => {
+    const response = await fetch(`${apiUrl}/extract_verify/v2/verify_check`, {
+        method: "POST",
+        body: JSON.stringify(toVerify),
+        signal: controller === null || controller === void 0 ? void 0 : controller.signal,
+    }).then(util_1.handleResponse);
+    // if we send `n` items to the API, it returns `n + m` items. The
+    // extra `m` items are garbage and don't have the verified field.
+    return response.filter(ver => "verified" in ver);
+};
+exports.checkSomeoneElsesVerifications = checkSomeoneElsesVerifications;

package/dist/verifications/verifyCheck/operations/index.d.ts

@@ -1,2 +1,2 @@
-export * from "./checkOwnVerification";
-export * from "./checkSomeoneElsesVerifications";
+export * from "./checkOwnVerification";
+export * from "./checkSomeoneElsesVerifications";

package/dist/verifications/verifyCheck/operations/index.js

@@ -1,14 +1,18 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./checkOwnVerification"), exports);
-__exportStar(require("./checkSomeoneElsesVerifications"), exports);
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./checkOwnVerification"), exports);
+__exportStar(require("./checkSomeoneElsesVerifications"), exports);

package/dist/verifications/verifyCheck/util/canonicalJsonify.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/verifications/verifyCheck/util/canonicalJsonify.js

@@ -0,0 +1,48 @@
+"use strict";
+/* eslint-disable fp/no-mutating-methods, fp/no-mutation, fp/no-let, prefer-reflect */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.canonicalJsonify = void 0;
+const isObject = (a) => Object.prototype.toString.call(a) === "[object Object]";
+const REGEX = 
+// eslint-disable-next-line no-control-regex
+/[\u0000-\u001F]|"|\\|[\uD800-\uDBFF](?![\uDC00-\uDFFF])|(?:[^\uD800-\uDBFF]|^)[\uDC00-\uDFFF]/g;
+const SLASH_ESC = {
+    "\b": "\\b",
+    "\t": "\\t",
+    "\n": "\\n",
+    "\f": "\\f",
+    "\r": "\\r",
+    '"': '\\"',
+    "\\": "\\\\",
+};
+const replacer = (char) => SLASH_ESC[char] ||
+    `\\u${char.charCodeAt(0).toString(16).toUpperCase().padStart(4, "0")}`;
+function copyObjectWithSortedKeys(object) {
+    if (isObject(object)) {
+        return `{${Object.keys(object)
+            .sort()
+            .map(key => `"${key}":${copyObjectWithSortedKeys(object[key])}`)
+            .join(",")}}`;
+    }
+    if (Array.isArray(object)) {
+        return `[${object.map(copyObjectWithSortedKeys).join(",")}]`;
+    }
+    if (typeof object === "number" && object % 1 !== 0) {
+        // float ->
+        const exponent = Math.round(Math.log10(Math.abs(object)));
+        let mantissa = `${object / 10 ** exponent}`;
+        if (!mantissa.includes("."))
+            mantissa += ".0";
+        return `${mantissa}E${exponent}`;
+    }
+    if (typeof object === "string")
+        return `"${object.replace(REGEX, replacer)}"`;
+    return object; // bool or int
+}
+/**
+ * @internal
+ * spec compliant, and matches
+ * https://gitlab.com/raytio/mono/-/blob/devo/common/signing/signing/canonical_json.py
+ */
+const canonicalJsonify = (object) => `${copyObjectWithSortedKeys(object)}`;
+exports.canonicalJsonify = canonicalJsonify;

package/dist/verifications/verifyCheck/util/getValuesForAField.d.ts

@@ -0,0 +1,2 @@
+import { ProfileObject } from "@raytio/types";
+export declare const getValuesForAField: (fieldName: string, POs: ProfileObject[]) => unknown[];

package/dist/verifications/verifyCheck/util/getValuesForAField.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getValuesForAField = void 0;
+const ramda_1 = require("ramda");
+const crypto_1 = require("../../../crypto");
+const getValuesForAField = (fieldName, POs) => (0, ramda_1.uniq)(
+// truthy only, and ignore encrypted properties. this function will be called again once they're decrypted
+POs.map(x => { var _a; return (_a = x.properties) === null || _a === void 0 ? void 0 : _a[fieldName]; }).filter(x => !!x && !(0, crypto_1.isEncrypted)(x)));
+exports.getValuesForAField = getValuesForAField;