@raytio/decrypt-helper 2.1.2 → 3.0.0

package/CHANGELOG.md

@@ -7,6 +7,29 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## 3.0.0 (2022-02-04)
+
+- 💥 BREAKING CHANGE: renamed the `USERNAME` & `PASSWORD` environment variables to `RAYTIO_USERNAME` & `RAYTIO_PASSWORD`
+- 💥 BREAKING CHANGE: removed the `READABLE_FIELD_NAMES` option
+- 💥 BREAKING CHANGE: [csv] added new columns, shifted other columns
+- 💥 BREAKING CHANGE: [json] removed some duplicate legacy fields, see #33
+- !156: various internal refactoring
+
+## 2.2.1 (2022-02-09)
+
+- !158 include the submission score in the json and pdf
+
+## 2.2.0 (2022-02-04)
+
+- !153 fix rendering of arrays of primitive values
+- !152 Update @raytio/core to v9 to fix a bug with `hashed_n_id`
+- !155, !154, !146, !147, !150, !151 automated dependency updates
+
+## 2.1.3 (2021-10-08)
+
+- !134 Add more logging to `saveToS3Bucket`
+- !129, !131, !132, !133 automated dependency updates
+
 ## 2.1.2 (2021-09-24)
 
 - !129 Update @raytio/core to v8.1.2 to support the new API format for `hashed_n_id`

package/README.md

@@ -34,12 +34,9 @@ raytio
       // if using raytio.saveToS3Bucket, specify the ID of the bucket here
       S3_BUCKET: "",
 
-      // whether the JSON and CSV output should use readable field names instead of the field IDs
-      READABLE_FIELD_NAMES: true,
-
       // the credentials of an organization user
-      USERNAME: "...",
-      PASSWORD: "...",
+      RAYTIO_USERNAME: "...",
+      RAYTIO_PASSWORD: "...",
 
       // used when generating a PDF report, if not supplied defaults to "en-NZ" and "Pacific/Auckland"
       // for available timezone options, see the map on https://momentjs.com/timezone

package/dist/api/fetchAA.d.ts

@@ -0,0 +1,3 @@
+import type { AId, AA } from "@raytio/types";
+import { EnvConfig } from "./fetchEnvConfig";
+export declare function fetchAA(apiToken: string, envConfig: EnvConfig, aId: AId): Promise<AA>;

package/dist/api/fetchAA.js

@@ -0,0 +1,19 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.fetchAA = void 0;
+const authedFetch_1 = require("./authedFetch");
+function fetchAA(apiToken, envConfig, aId) {
+    return __awaiter(this, void 0, void 0, function* () {
+        return (0, authedFetch_1.authedFetch)(apiToken, `${envConfig.api_url}/share/v2/access_application/${aId}`);
+    });
+}
+exports.fetchAA = fetchAA;

package/dist/api/getFiles.js

@@ -43,7 +43,7 @@ function getFiles(profileObjects, instance, apiToken, envConfig, applicationDecr
         // [nId: NId, fieldName: string, file: RaytFile][]
         const urnOrEncryptedList = profileObjects.flatMap((PO) => {
             return Object.entries(PO.properties)
-                .filter((kv) => (0, file_1.isFile)(kv[1]))
+                .filter((kv) => (0, file_1.isFieldValueFile)(kv[1]))
                 .map(([k, v]) => {
                 return [
                     PO.n_id,

package/dist/api/getSchema.d.ts

@@ -1,3 +1,3 @@
 import type { Schema } from "@raytio/types";
 import { EnvConfig } from "./fetchEnvConfig";
-export declare function getSchema(envConfig: EnvConfig, apiToken: string, name: string): Promise<Schema>;
+export declare function getSchema(envConfig: EnvConfig, name: string): Promise<Schema>;

package/dist/api/getSchema.js

@@ -12,18 +12,18 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.getSchema = void 0;
 const authedFetch_1 = require("./authedFetch");
 const cache = new Map();
-function $getSchema(envConfig, apiToken, name) {
+function $getSchema(envConfig, name) {
     return __awaiter(this, void 0, void 0, function* () {
         const [schemaHead, ...schemaTail] = name.split("_");
-        const schema = yield (0, authedFetch_1.authedFetch)(apiToken, `${envConfig.api_url}/graph/v2/schema/${schemaHead}/${schemaTail.join("_")}?expand=true`);
+        const schema = yield (0, authedFetch_1.authedFetch)("", `${envConfig.api_url}/graph/v2/schema_public/${schemaHead}/${schemaTail.join("_")}?expand=true`);
         return Object.assign(Object.assign({}, schema), { name });
     });
 }
-function getSchema(envConfig, apiToken, name) {
+function getSchema(envConfig, name) {
     return __awaiter(this, void 0, void 0, function* () {
         if (cache.has(name))
             return cache.get(name);
-        const promise = $getSchema(envConfig, apiToken, name);
+        const promise = $getSchema(envConfig, name);
         cache.set(name, promise);
         return promise;
     });

package/dist/api/index.d.ts

@@ -1,4 +1,5 @@
 export * from "./authedFetch";
+export * from "./fetchAA";
 export * from "./fetchEnvConfig";
 export * from "./fetchInstanceData";
 export * from "./getFiles";

package/dist/api/index.js

@@ -11,6 +11,7 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./authedFetch"), exports);
+__exportStar(require("./fetchAA"), exports);
 __exportStar(require("./fetchEnvConfig"), exports);
 __exportStar(require("./fetchInstanceData"), exports);
 __exportStar(require("./getFiles"), exports);

package/dist/api/signIn.js

@@ -24,11 +24,11 @@ function signIn(CONFIG, envConfig) {
             userPoolWebClientId: envConfig.cognito_web_client_id,
         });
         const userObj = yield auth_1.default.signIn({
-            username: CONFIG.USERNAME,
-            password: yield (0, core_1.hashPassword)(CONFIG.PASSWORD),
+            username: CONFIG.RAYTIO_USERNAME,
+            password: yield (0, core_1.hashPassword)(CONFIG.RAYTIO_PASSWORD),
         });
         if (userObj.challengeName === "SOFTWARE_TOKEN_MFA") {
-            throw new Error(`The configured account (${CONFIG.USERNAME}) has two factor authentication enabled. You must disable 2FA or use a different account`);
+            throw new Error(`The configured account (${CONFIG.RAYTIO_USERNAME}) has two factor authentication enabled. You must disable 2FA or use a different account`);
         }
         const user = yield auth_1.default.currentAuthenticatedUser();
         const apiToken = (_b = (_a = user.signInUserSession) === null || _a === void 0 ? void 0 : _a.idToken) === null || _b === void 0 ? void 0 : _b.jwtToken;

package/dist/constants.d.ts

@@ -1,3 +1,4 @@
+import { ScoreResult } from "@raytio/core";
 import { FieldVerification, Instance, POVerification } from "@raytio/types";
 export declare const ATTRIBUTE_MAP: {
     "custom:kek_derivation": string[];
@@ -10,8 +11,10 @@ export declare const ATTRIBUTE_MAP: {
 export declare const VERIFICATION_SCHEMA = "ss_Verification";
 export declare const INSTANCE_FIELDS_TO_REMOVE: readonly ["profile_objects", "relationships", "keys"];
 export declare const FIELDS_TO_REMOVE: readonly ["n_id", "document"];
-export declare const ENV_VARIABLES: readonly ["CLIENT_URL", "READABLE_FIELD_NAMES", "USERNAME", "PASSWORD"];
+export declare const ENV_VARIABLES: readonly ["CLIENT_URL", "RAYTIO_USERNAME", "RAYTIO_PASSWORD"];
 export declare type Config = Record<typeof ENV_VARIABLES[number], string>;
-export declare type InstanceDataToPassOn = Omit<Instance, typeof INSTANCE_FIELDS_TO_REMOVE[number]>;
+export declare type InstanceDataToPassOn = Omit<Instance, typeof INSTANCE_FIELDS_TO_REMOVE[number]> & {
+    score?: ScoreResult;
+};
 export declare const PO_VER_TEXT_MAP: Record<POVerification, string>;
 export declare const FIELD_VER_TEXT_MAP: Record<FieldVerification, string>;

package/dist/constants.js

@@ -19,9 +19,8 @@ exports.INSTANCE_FIELDS_TO_REMOVE = [
 exports.FIELDS_TO_REMOVE = ["n_id", "document"];
 exports.ENV_VARIABLES = [
     "CLIENT_URL",
-    "READABLE_FIELD_NAMES",
-    "USERNAME",
-    "PASSWORD",
+    "RAYTIO_USERNAME",
+    "RAYTIO_PASSWORD",
 ];
 exports.PO_VER_TEXT_MAP = {
     [types_1.POVerification.FullyVerified]: "Fully Verified",

package/dist/helpers/__tests__/formatOutput.test.js

@@ -31,16 +31,20 @@ const profileObjects = [
     },
 ];
 const allSchemas = [
-    { name: "ss_name", title: "Your Name" },
+    { name: "ss_name", title: "Your Name", description: "", properties: {} },
     {
         name: "ss_nz_drivers_license",
         schema_group: "DL",
         title: "NZ Drivers License",
+        description: "",
+        properties: {},
     },
     {
         name: "ss_nsw_drivers_license",
         schema_group: "DL",
         title: "NSW Drivers License",
+        description: "",
+        properties: {},
     },
 ];
 const realVers = [];
@@ -51,7 +55,7 @@ describe("formatOutput", () => {
     it("uses schema_group to group schema", () => __awaiter(void 0, void 0, void 0, function* () {
         const output = yield (0, formatOutput_1.formatOutput)(profileObjects, allSchemas, realVers, "[apiToken]", 
         // @ts-expect-error testing if it works with booleans not stringied bools
-        { READABLE_FIELD_NAMES: false }, Symbol.for("envConfig"));
+        Symbol.for("envConfig"));
         expect(output).toStrictEqual({
             DL: [
                 {
@@ -73,11 +77,7 @@ describe("formatOutput", () => {
                     },
                     $safeHarbour: "NOT_APPLICABLE",
                     $schemaName: "ss_nz_drivers_license",
-                    // legacy
-                    issuer: "NZTA",
-                    "issuer.verification": undefined,
-                    license_number: "DW012345",
-                    "license_number.verification": undefined,
+                    $schemaTitle: "NZ Drivers License",
                 },
                 {
                     $verification_details: Symbol.for("VerificationDetails"),
@@ -98,11 +98,7 @@ describe("formatOutput", () => {
                     },
                     $safeHarbour: "NOT_APPLICABLE",
                     $schemaName: "ss_nsw_drivers_license",
-                    // legacy
-                    city: "Sydney",
-                    "city.verification": undefined,
-                    license_number: "ABC123",
-                    "license_number.verification": undefined,
+                    $schemaTitle: "NSW Drivers License",
                 },
             ],
             ss_name: [
@@ -125,99 +121,7 @@ describe("formatOutput", () => {
                     },
                     $safeHarbour: "NOT_APPLICABLE",
                     $schemaName: "ss_name",
-                    // legacy
-                    fName: "john",
-                    "fName.verification": undefined,
-                    lName: "doe",
-                    "lName.verification": undefined,
-                },
-            ],
-        });
-    }));
-    it("doesn't use schema_group if READABLE_FIELD_NAMES is true", () => __awaiter(void 0, void 0, void 0, function* () {
-        const output = yield (0, formatOutput_1.formatOutput)(profileObjects, allSchemas, realVers, "[apiToken]", 
-        // @ts-expect-error testing if it works with booleans not stringied bools
-        { READABLE_FIELD_NAMES: true }, Symbol.for("envConfig"));
-        expect(output).toStrictEqual({
-            "NSW Drivers License": [
-                {
-                    $verification_details: Symbol.for("VerificationDetails"),
-                    $verified: types_1.POVerification.NotVerified,
-                    $shouldBeVerifiedFields: undefined,
-                    $nId: "n3",
-                    $properties: {
-                        city: {
-                            title: "city",
-                            value: "Sydney",
-                            verification: undefined,
-                        },
-                        license_number: {
-                            title: "license_number",
-                            value: "ABC123",
-                            verification: undefined,
-                        },
-                    },
-                    $safeHarbour: "NOT_APPLICABLE",
-                    $schemaName: "ss_nsw_drivers_license",
-                    // legacy
-                    city: "Sydney",
-                    "city Verification": undefined,
-                    license_number: "ABC123",
-                    "license_number Verification": undefined,
-                },
-            ],
-            "NZ Drivers License": [
-                {
-                    $verification_details: Symbol.for("VerificationDetails"),
-                    $verified: types_1.POVerification.NotVerified,
-                    $shouldBeVerifiedFields: undefined,
-                    $nId: "n2",
-                    $properties: {
-                        issuer: {
-                            title: "issuer",
-                            value: "NZTA",
-                            verification: undefined,
-                        },
-                        license_number: {
-                            title: "license_number",
-                            value: "DW012345",
-                            verification: undefined,
-                        },
-                    },
-                    $safeHarbour: "NOT_APPLICABLE",
-                    $schemaName: "ss_nz_drivers_license",
-                    // legacy
-                    issuer: "NZTA",
-                    "issuer Verification": undefined,
-                    license_number: "DW012345",
-                    "license_number Verification": undefined,
-                },
-            ],
-            "Your Name": [
-                {
-                    $verification_details: Symbol.for("VerificationDetails"),
-                    $verified: types_1.POVerification.NotVerified,
-                    $shouldBeVerifiedFields: undefined,
-                    $nId: "n1",
-                    $properties: {
-                        fName: {
-                            title: "fName",
-                            value: "john",
-                            verification: undefined,
-                        },
-                        lName: {
-                            title: "lName",
-                            value: "doe",
-                            verification: undefined,
-                        },
-                    },
-                    $safeHarbour: "NOT_APPLICABLE",
-                    $schemaName: "ss_name",
-                    // legacy
-                    fName: "john",
-                    "fName Verification": undefined,
-                    lName: "doe",
-                    "lName Verification": undefined,
+                    $schemaTitle: "Your Name",
                 },
             ],
         });

package/dist/helpers/__tests__/lookup.test.js

@@ -30,7 +30,7 @@ describe("maybeAddLookupValue", () => {
             },
         };
         const result = yield (0, lookup_ts_1.maybeAddLookupValue)(schema, key, value);
-        expect(result).toStrictEqual("NZ");
+        expect(result).toBe("NZ");
     }));
     it("Returns lookup value", () => __awaiter(void 0, void 0, void 0, function* () {
         getLookupOption_ts_1.getLookupOption.mockImplementation(() => [
@@ -52,7 +52,7 @@ describe("maybeAddLookupValue", () => {
             },
         };
         const result = yield (0, lookup_ts_1.maybeAddLookupValue)(schema, key, value);
-        expect(result).toStrictEqual("New Zealand");
+        expect(result).toBe("New Zealand");
     }));
     it("Returns value if no corresponding key in lookup", () => __awaiter(void 0, void 0, void 0, function* () {
         getLookupOption_ts_1.getLookupOption.mockImplementation(() => [
@@ -74,6 +74,6 @@ describe("maybeAddLookupValue", () => {
             },
         };
         const result = yield (0, lookup_ts_1.maybeAddLookupValue)(schema, key, value);
-        expect(result).toStrictEqual("NZ");
+        expect(result).toBe("NZ");
     }));
 });

package/dist/helpers/file.d.ts

@@ -1,4 +1,5 @@
 import type { Encrypted, NId, Urn } from "@raytio/types";
+import type { FlatPO } from "./formatOutput";
 export declare type RaytFile = {
     n_id: NId;
     content: Urn | Encrypted;
@@ -6,4 +7,7 @@ export declare type RaytFile = {
     n_id: NId;
     Content: Urn | Encrypted;
 };
-export declare const isFile: (field: unknown) => field is RaytFile;
+/** checks if a field value is a file */
+export declare const isFieldValueFile: (fieldValue: unknown) => fieldValue is RaytFile;
+/** checks if a PO is a file */
+export declare const isPOFile: (PO: FlatPO) => boolean;

package/dist/helpers/file.js

@@ -1,12 +1,17 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.isFile = void 0;
+exports.isPOFile = exports.isFieldValueFile = void 0;
 const core_1 = require("@raytio/core");
 const URN_PREFIX = "urn:";
 /** @internal */
 const isObject = (x) => !!x && typeof x === "object";
 /** @internal */
 const isUrnOrEncrypted = (x) => (typeof x === "string" && x.startsWith(URN_PREFIX)) || (0, core_1.isEncrypted)(x);
-const isFile = (field) => isObject(field) &&
-    (isUrnOrEncrypted(field.content) || isUrnOrEncrypted(field.Content));
-exports.isFile = isFile;
+/** checks if a field value is a file */
+const isFieldValueFile = (fieldValue) => isObject(fieldValue) &&
+    "content" in fieldValue &&
+    isUrnOrEncrypted(fieldValue.content);
+exports.isFieldValueFile = isFieldValueFile;
+/** checks if a PO is a file */
+const isPOFile = (PO) => { var _a; return (0, exports.isFieldValueFile)({ content: (_a = PO.$properties.content) === null || _a === void 0 ? void 0 : _a.value }); };
+exports.isPOFile = isPOFile;

package/dist/helpers/formatOutput.d.ts

@@ -1,13 +1,19 @@
-import type { NId, POVerification, ProfileObject, RealVer, Schema } from "@raytio/types";
+import type { FieldVerification, NId, POVerification, ProfileObject, RealVer, Schema } from "@raytio/types";
 import { ResolvedVerificationProvider, EnvConfig } from "../api";
-import { Config } from "../constants";
 export declare type FlatPO = {
     $verified: POVerification;
     $verification_details: ResolvedVerificationProvider | undefined;
     $shouldBeVerifiedFields: string[] | undefined;
     $nId: NId;
     $schemaName: string;
+    $schemaTitle: string;
+    $properties: {
+        [fieldName: string]: {
+            title: string;
+            value: unknown;
+            verification: FieldVerification;
+        };
+    };
     $safeHarbour: boolean | "NOT_APPLICABLE";
-    [schemaField: string]: any;
 };
-export declare function formatOutput(profileObjects: ProfileObject[], allSchemas: Schema[], realVers: RealVer[], apiToken: string, CONFIG: Config, envConfig: EnvConfig): Promise<Record<string, FlatPO[]>>;
+export declare function formatOutput(profileObjects: ProfileObject[], allSchemas: Schema[], realVers: RealVer[], apiToken: string, envConfig: EnvConfig): Promise<Record<string, FlatPO[]>>;

package/dist/helpers/formatOutput.js

@@ -15,17 +15,18 @@ const ramda_1 = require("ramda");
 const api_1 = require("../api");
 const constants_1 = require("../constants");
 const lookup_1 = require("./lookup");
+const types_1 = require("./types");
 const byPriority = (schema) => ([a], [b]) => {
     var _a, _b, _c, _d, _e, _f;
+    (0, types_1.assertSafeProperty)(a);
+    (0, types_1.assertSafeProperty)(b);
     // if no priority, it becomes the last
     const aPriority = (_c = (_b = (_a = schema.properties) === null || _a === void 0 ? void 0 : _a[a]) === null || _b === void 0 ? void 0 : _b.priority) !== null && _c !== void 0 ? _c : Infinity;
     const bPriority = (_f = (_e = (_d = schema.properties) === null || _d === void 0 ? void 0 : _d[b]) === null || _e === void 0 ? void 0 : _e.priority) !== null && _f !== void 0 ? _f : Infinity;
     return aPriority - bPriority;
 };
-// TODO: clean up
-function formatOutput(profileObjects, allSchemas, realVers, apiToken, CONFIG, envConfig) {
+function formatOutput(profileObjects, allSchemas, realVers, apiToken, envConfig) {
     return __awaiter(this, void 0, void 0, function* () {
-        const readable = CONFIG.READABLE_FIELD_NAMES.toString() === "true";
         const PODetails = profileObjects.reduce((acPromise, PO) => __awaiter(this, void 0, void 0, function* () {
             var _a, _b;
             const ac = yield acPromise;
@@ -36,11 +37,13 @@ function formatOutput(profileObjects, allSchemas, realVers, apiToken, CONFIG, en
             const verDetails = (0, core_1.getPOVerification)({ PO, schema, realVers });
             const realProps = (0, ramda_1.omit)(constants_1.FIELDS_TO_REMOVE, PO.properties);
             const schemaNameOrGroup = (_a = schema.schema_group) !== null && _a !== void 0 ? _a : schema.name;
+            (0, types_1.assertSafeProperty)(schemaNameOrGroup);
             const existing = ac[schemaNameOrGroup] || [];
             const poProperties = Object.entries(realProps).sort(byPriority(schema));
             const reducedProperties = yield poProperties.reduce((acc, [key, value]) => __awaiter(this, void 0, void 0, function* () {
                 var _c, _d;
                 const accP = yield acc;
+                (0, types_1.assertSafeProperty)(key);
                 return Object.assign(Object.assign({}, accP), { [key]: {
                         title: ((_d = (_c = schema.properties) === null || _c === void 0 ? void 0 : _c[key]) === null || _d === void 0 ? void 0 : _d.title) || key,
                         value: typeof value === "string"
@@ -49,31 +52,24 @@ function formatOutput(profileObjects, allSchemas, realVers, apiToken, CONFIG, en
                         verification: verDetails.fieldVerifications[key],
                     } });
             }), Promise.resolve({}));
-            const thisPO = Object.assign({ 
-                // these are always included
-                $verified: verDetails.status, $verification_details: yield (0, api_1.resolveVerificationDetails)(verDetails.details, apiToken, envConfig), $shouldBeVerifiedFields: (_b = schema.verified_fields) === null || _b === void 0 ? void 0 : _b.map((x) => typeof x === "string" ? x : x.field), 
-                // these are not included in the CSV for legacy reasons
-                $nId: PO.n_id, $schemaName: schemaName, $properties: reducedProperties, $safeHarbour: schemaName === "ss_Person_Name"
+            const thisPO = {
+                $verified: verDetails.status,
+                $verification_details: yield (0, api_1.resolveVerificationDetails)(verDetails.details.verifiers, apiToken, envConfig),
+                $shouldBeVerifiedFields: (_b = schema.verified_fields) === null || _b === void 0 ? void 0 : _b.map((x) => typeof x === "string" ? x : x.field),
+                $nId: PO.n_id,
+                $schemaName: schemaName,
+                $schemaTitle: schema.title,
+                $properties: reducedProperties,
+                $safeHarbour: schemaName === "ss_Person_Name"
                     ? (yield (0, core_1.calcSafeHarbourScore)({
                         person: PO,
-                        getSchema: (name) => (0, api_1.getSchema)(envConfig, apiToken, name),
+                        getSchema: (name) => (0, api_1.getSchema)(envConfig, name),
                         profileObjects,
                         realVers,
                     })).isSafe
-                    : "NOT_APPLICABLE" }, Object.entries(realProps)
-                .sort(byPriority(schema))
-                .reduce((acc, [key, value]) => {
-                var _a, _b;
-                const title = readable
-                    ? ((_b = (_a = schema.properties) === null || _a === void 0 ? void 0 : _a[key]) === null || _b === void 0 ? void 0 : _b.title) || key
-                    : key;
-                const titleV = readable
-                    ? `${title} Verification`
-                    : `${title}.verification`;
-                return Object.assign(Object.assign({}, acc), { [title]: value, [titleV]: verDetails.fieldVerifications[key] });
-            }, {}));
-            const schemaTitle = (readable && schema.title) || schemaNameOrGroup;
-            return Object.assign(Object.assign({}, ac), { [schemaTitle]: [...existing, thisPO] });
+                    : "NOT_APPLICABLE",
+            };
+            return Object.assign(Object.assign({}, ac), { [schemaNameOrGroup]: [...existing, thisPO] });
         }), Promise.resolve({}));
         return PODetails;
     });

package/dist/helpers/index.d.ts

@@ -3,3 +3,4 @@ export * from "./json2csv";
 export * from "./setupMaxcryptor";
 export * from "./splitPOAndVers";
 export * from "./file";
+export * from "./types";

package/dist/helpers/index.js

@@ -15,3 +15,4 @@ __exportStar(require("./json2csv"), exports);
 __exportStar(require("./setupMaxcryptor"), exports);
 __exportStar(require("./splitPOAndVers"), exports);
 __exportStar(require("./file"), exports);
+__exportStar(require("./types"), exports);

package/dist/helpers/lookup.d.ts

@@ -1,2 +1,2 @@
 import { Schema } from "@raytio/types";
-export declare const maybeAddLookupValue: <T extends unknown>(schema: Schema, k: string, value: T, apiToken: string) => Promise<string | number | T>;
+export declare const maybeAddLookupValue: <T>(schema: Schema, k: string, value: T, apiToken: string) => Promise<string | number | T>;

package/dist/helpers/setupMaxcryptor.js

@@ -21,7 +21,7 @@ function setupMaxcryptor(CONFIG, cognitoAttributes) {
                 return acc;
             return (0, ramda_1.assocPath)(constants_1.ATTRIBUTE_MAP[Name], JSON.parse(Value), acc);
         }, {});
-        const { encryptor: maxcryptor } = yield (0, maxcryptor_1.encryptorFromExistingUser)(userDoc, CONFIG.PASSWORD);
+        const { encryptor: maxcryptor } = yield (0, maxcryptor_1.encryptorFromExistingUser)(userDoc, CONFIG.RAYTIO_PASSWORD);
         return maxcryptor;
     });
 }

package/dist/helpers/types.d.ts

@@ -0,0 +1 @@
+export declare function assertSafeProperty(property: unknown): asserts property is string;

package/dist/helpers/types.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.assertSafeProperty = void 0;
+function assertSafeProperty(property) {
+    if (typeof property !== "string" || property in {}) {
+        throw new Error(`Invalid property name '${property}'`);
+    }
+}
+exports.assertSafeProperty = assertSafeProperty;

package/dist/pdf/components/FieldVerificationBadge.d.ts

@@ -1,6 +1,6 @@
 /// <reference types="jsx-pdf" />
 import { FieldVerification } from "@raytio/types";
-export declare function FieldVerificationBadge({ status, width, }: {
+export declare const FieldVerificationBadge: ({ status, width, }: {
     status: FieldVerification | undefined;
     width: number;
-}): null | JSX.Element;
+}) => null | JSX.Element;

package/dist/pdf/components/FieldVerificationBadge.js

@@ -7,7 +7,7 @@ exports.FieldVerificationBadge = void 0;
 const jsx_pdf_1 = __importDefault(require("jsx-pdf"));
 const types_1 = require("@raytio/types");
 const general_1 = require("../helpers/general");
-function FieldVerificationBadge({ status, width, }) {
+const FieldVerificationBadge = ({ status, width, }) => {
     if (status === types_1.FieldVerification.VerifiedFalse) {
         return (jsx_pdf_1.default.createElement("svg", { content: (0, general_1.loadAsset)("verified_false_small.svg"), width: width }));
     }
@@ -15,5 +15,5 @@ function FieldVerificationBadge({ status, width, }) {
         return jsx_pdf_1.default.createElement("svg", { content: (0, general_1.loadAsset)("verified_tick_small.svg"), width: width });
     }
     return null;
-}
+};
 exports.FieldVerificationBadge = FieldVerificationBadge;

package/dist/pdf/components/Images.d.ts

@@ -1,6 +1,6 @@
 /// <reference types="jsx-pdf" />
-import { Files } from "../types";
-export declare function Images({ nIds, files, }: {
+import { ProcessSubmissionOutput } from "../../public-methods/processSubmission";
+export declare const Images: ({ nIds, files, }: {
     nIds: string[];
-    files: Files;
-}): JSX.Element;
+    files: ProcessSubmissionOutput["files"];
+}) => JSX.Element;

package/dist/pdf/components/Images.js

@@ -5,11 +5,14 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.Images = void 0;
 const jsx_pdf_1 = __importDefault(require("jsx-pdf"));
-function Images({ nIds, files, }) {
+const helpers_1 = require("../../helpers");
+const Images = ({ nIds, files, }) => {
     return (jsx_pdf_1.default.createElement(jsx_pdf_1.default.Fragment, null, nIds.map((nId) => {
         var _a;
         const file = (_a = files[nId]) === null || _a === void 0 ? void 0 : _a[0];
+        if (file)
+            (0, helpers_1.assertSafeProperty)(file);
         return file ? (jsx_pdf_1.default.createElement("image", { src: file, width: 300 })) : (jsx_pdf_1.default.createElement("text", null, "File not found"));
     })));
-}
+};
 exports.Images = Images;

package/dist/pdf/components/InnerTableRows.d.ts

@@ -1,10 +1,11 @@
 /// <reference types="jsx-pdf" />
-import { Files, PdfConfig } from "../types";
-export declare function InnerTableRows({ key, value, imageFieldNames, config, files, color, }: {
+import { ProcessSubmissionOutput } from "../../public-methods/processSubmission";
+import { PdfConfig } from "../types";
+export declare const InnerTableRows: ({ key, value, imageFieldNames, config, files, color, }: {
     key: string;
     value: any;
-    files: Files;
+    files: ProcessSubmissionOutput["files"];
     config: PdfConfig;
     color: string;
     imageFieldNames: string[];
-}): JSX.Element;
+}) => JSX.Element;

package/dist/pdf/components/InnerTableRows.js

@@ -6,10 +6,11 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.InnerTableRows = void 0;
 const jsx_pdf_1 = __importDefault(require("jsx-pdf"));
 const ramda_1 = require("ramda");
+const helpers_1 = require("../../helpers");
 const transform_1 = require("../helpers/transform");
 const Images_1 = require("./Images");
 const ValidationDisplay_1 = require("./ValidationDisplay");
-function InnerTableRows({ key, value, imageFieldNames, config, files, color, }) {
+const InnerTableRows = ({ key, value, imageFieldNames, config, files, color, }) => {
     if (typeof value === "object" &&
         value &&
         "score" in value &&
@@ -25,11 +26,12 @@ function InnerTableRows({ key, value, imageFieldNames, config, files, color, })
         const tableValues = [...headers, ...value];
         return (jsx_pdf_1.default.createElement("table", { headerRows: 1, layout: "headerLineOnly" }, tableValues.map((data, tableValueIndex) => {
             return (jsx_pdf_1.default.createElement("row", null, headers[0].map((header) => {
+                (0, helpers_1.assertSafeProperty)(header);
                 return (jsx_pdf_1.default.createElement("cell", null,
-                    jsx_pdf_1.default.createElement(InnerTableRows, { key: header, value: data[header] || (tableValueIndex === 0 ? header : "-"), files: files, config: config, color: color, imageFieldNames: imageFieldNames })));
+                    jsx_pdf_1.default.createElement(exports.InnerTableRows, { key: header, value: data[header] || (tableValueIndex === 0 ? header : "-"), files: files, config: config, color: color, imageFieldNames: imageFieldNames })));
             })));
         })));
     }
     return jsx_pdf_1.default.createElement("text", { color: color }, text.slice(0, 100));
-}
+};
 exports.InnerTableRows = InnerTableRows;

package/dist/pdf/components/POVerificationBadge.d.ts

@@ -1,8 +1,8 @@
 /// <reference types="jsx-pdf" />
 import { POVerification } from "@raytio/types";
-import { PdfSchema } from "../types";
+import { FlatPO } from "../../helpers";
 export declare const FILE_MAP: Record<POVerification, string>;
-export declare function POVerificationBadge({ width, schema, }: {
+export declare const POVerificationBadge: ({ width, POs, }: {
     width: number;
-    schema: PdfSchema;
-}): JSX.Element;
+    POs: FlatPO[];
+}) => JSX.Element;

package/dist/pdf/components/POVerificationBadge.js

@@ -18,10 +18,9 @@ exports.FILE_MAP = {
     [types_1.POVerification.Encrypted]: "not_verified_big",
     [types_1.POVerification.Loading]: "not_verified_big",
 };
-function POVerificationBadge({ width, schema, }) {
-    const [, profileObjects] = schema;
+const POVerificationBadge = ({ width, POs, }) => {
     // TODO: this won't work if multiple POs of the same schema are shared
-    const { $verified, $verification_details, $shouldBeVerifiedFields, $safeHarbour, } = profileObjects[0];
+    const { $verified, $verification_details, $shouldBeVerifiedFields, $safeHarbour, } = POs[0];
     const verifiedBy = $verification_details === null || $verification_details === void 0 ? void 0 : $verification_details.verifier_id;
     return (jsx_pdf_1.default.createElement(jsx_pdf_1.default.Fragment, null,
         $shouldBeVerifiedFields && (jsx_pdf_1.default.createElement(jsx_pdf_1.default.Fragment, null,
@@ -39,5 +38,5 @@ function POVerificationBadge({ width, schema, }) {
                 jsx_pdf_1.default.createElement("text", { alignment: "center" },
                     $safeHarbour ? "" : "Not ",
                     "Safe Harbour Compliant"))))));
-}
+};
 exports.POVerificationBadge = POVerificationBadge;

package/dist/pdf/components/Report.d.ts

@@ -1,11 +1,12 @@
 /// <reference types="jsx-pdf" />
 import type { AId } from "@raytio/types";
-import { Files, PdfConfig, ReportData } from "../types";
-export declare function Report({ data, files, config, aId, clientUrl, version, }: {
-    data: ReportData;
-    files: Files;
+import { PdfConfig } from "../types";
+import { ProcessSubmissionOutput } from "../../public-methods/processSubmission";
+export declare const Report: ({ data, files, config, aId, clientUrl, version, }: {
+    data: ProcessSubmissionOutput["json"];
+    files: ProcessSubmissionOutput["files"];
     config: PdfConfig;
     aId: AId;
     clientUrl: string;
     version: string;
-}): JSX.Element;
+}) => JSX.Element;

package/dist/pdf/components/Report.js

@@ -15,8 +15,7 @@ const general_1 = require("../helpers/general");
 const VerifyBox_1 = require("./VerifyBox");
 const constants_1 = require("../constants");
 const transform_1 = require("../helpers/transform");
-function Report({ data, files, config, aId, clientUrl, version, }) {
-    const schemas = Object.entries(data).filter(([, val]) => Array.isArray(val) && val.length && "$verified" in val[0]);
+const Report = ({ data, files, config, aId, clientUrl, version, }) => {
     // The PDF is read only; there's no reason why anyone would ever need to unlock it.
     const randomToken = (0, crypto_1.randomBytes)(32).toString("base64");
     return (jsx_pdf_1.default.createElement("document", { defaultStyle: { font: "Lato", fontSize: 12 }, info: {
@@ -39,25 +38,30 @@ function Report({ data, files, config, aId, clientUrl, version, }) {
             jsx_pdf_1.default.createElement("text", { style: ["header", "marginBottom"], alignment: "center" }, "Raytio Verification Report"),
             jsx_pdf_1.default.createElement("columns", { columnGap: 10 },
                 jsx_pdf_1.default.createElement("column", { width: "auto" },
-                    jsx_pdf_1.default.createElement("text", { style: ["subheader", "marginBottom"] }, Object.entries(constants_1.SUBMISSION_DATA)
-                        .map(([id, label]) => `${label}: ${(0, transform_1.transform)(id, data[id], config)}`)
-                        .join("\n")),
+                    jsx_pdf_1.default.createElement("text", { style: ["subheader", "marginBottom"] },
+                        Object.entries(constants_1.SUBMISSION_DATA)
+                            .map(([id, label]) => `${label}: ${(0, transform_1.transform)(id, data[id], config)}`)
+                            .join("\n"),
+                        data.score
+                            ? `\nScore: ${data.score.score}\nScore Category: ${data.score.category}`
+                            : ""),
                     jsx_pdf_1.default.createElement(Subheader_1.Subheader, { data: data, config: config })),
                 jsx_pdf_1.default.createElement("column", { width: "*" },
                     jsx_pdf_1.default.createElement("text", null, " ")),
                 jsx_pdf_1.default.createElement("column", { width: 150 },
                     jsx_pdf_1.default.createElement(VerifyBox_1.VerifyBox, { aId: aId, iId: data.i_id, clientUrl: clientUrl }))),
-            schemas.map((schema) => {
+            Object.values(data.profile_objects).map((POs) => {
+                // for each schema
                 return (jsx_pdf_1.default.createElement("stack", { 
                     // unbreakable is off because it crashes if its too big for one page
-                    // TODO: PR to pdfmake to fix this
+                    // This is a 7-year-old issue in pdfmake (https://github.com/bpampuch/pdfmake/issues/207)
                     unbreakable: false, style: "marginY" },
-                    jsx_pdf_1.default.createElement(TableTitle_1.TableTitle, { schema: schema }),
+                    jsx_pdf_1.default.createElement(TableTitle_1.TableTitle, { POs: POs }),
                     jsx_pdf_1.default.createElement("columns", { columnGap: 15 },
                         jsx_pdf_1.default.createElement("column", { width: 80 },
-                            jsx_pdf_1.default.createElement(POVerificationBadge_1.POVerificationBadge, { width: 80, schema: schema })),
+                            jsx_pdf_1.default.createElement(POVerificationBadge_1.POVerificationBadge, { width: 80, POs: POs })),
                         jsx_pdf_1.default.createElement("column", { width: "auto" },
-                            jsx_pdf_1.default.createElement(Table_1.Table, { schema: schema, files: files, config: config })))));
+                            jsx_pdf_1.default.createElement(Table_1.Table, { POs: POs, files: files, config: config })))));
             })),
         jsx_pdf_1.default.createElement("footer", null, (currentPage, pageCount, pageSize) => (jsx_pdf_1.default.createElement("stack", { bold: true, color: "#333", fontSize: 10 },
             jsx_pdf_1.default.createElement("text", { margin: 16 },
@@ -67,5 +71,5 @@ function Report({ data, files, config, aId, clientUrl, version, }) {
                 currentPage,
                 " of ",
                 pageCount))))));
-}
+};
 exports.Report = Report;

package/dist/pdf/components/Subheader.d.ts

@@ -1,2 +1,2 @@
 /// <reference types="jsx-pdf" />
-export declare function Subheader(): JSX.Element;
+export declare const Subheader: () => JSX.Element;

package/dist/pdf/components/Subheader.js

@@ -7,7 +7,7 @@ exports.Subheader = void 0;
 const types_1 = require("@raytio/types");
 const jsx_pdf_1 = __importDefault(require("jsx-pdf"));
 const FieldVerificationBadge_1 = require("./FieldVerificationBadge");
-function Subheader() {
+const Subheader = () => {
     return (jsx_pdf_1.default.createElement(jsx_pdf_1.default.Fragment, null,
         jsx_pdf_1.default.createElement("text", { bold: true, style: "marginBottom" }, "Key:"),
         jsx_pdf_1.default.createElement("table", { layout: "noBorders" },
@@ -23,5 +23,5 @@ function Subheader() {
                 jsx_pdf_1.default.createElement("cell", null,
                     jsx_pdf_1.default.createElement(FieldVerificationBadge_1.FieldVerificationBadge, { width: 10, status: types_1.FieldVerification.VerifiedFalse })),
                 jsx_pdf_1.default.createElement("cell", null, "Verified False")))));
-}
+};
 exports.Subheader = Subheader;

package/dist/pdf/components/Table.d.ts

@@ -1,7 +1,9 @@
 /// <reference types="jsx-pdf" />
-import { PdfSchema, Files, PdfConfig } from "../types";
-export declare function Table({ schema, files, config, }: {
-    schema: PdfSchema;
-    files: Files;
+import { PdfConfig } from "../types";
+import { FlatPO } from "../../helpers";
+import { ProcessSubmissionOutput } from "../../public-methods/processSubmission";
+export declare const Table: ({ POs, files, config, }: {
+    POs: FlatPO[];
+    files: ProcessSubmissionOutput["files"];
     config: PdfConfig;
-}): JSX.Element;
+}) => JSX.Element;

package/dist/pdf/components/Table.js

@@ -10,35 +10,33 @@ const FieldVerificationBadge_1 = require("./FieldVerificationBadge");
 const Images_1 = require("./Images");
 const InnerTableRows_1 = require("./InnerTableRows");
 const helpers_1 = require("../../helpers");
-function Table({ schema, files, config, }) {
-    const [, profileObjects] = schema;
-    /** every fieldName in this profile object */
+const Table = ({ POs, files, config, }) => {
+    /** every fieldName in these profile object */
     const fieldNames = [
-        ...new Set(profileObjects
-            .flatMap(Object.keys)
-            .filter((x) => !x.startsWith("$") &&
-            !x.endsWith(".verification") &&
-            !x.endsWith(" Verification"))),
+        ...new Set(POs.flatMap((PO) => Object.keys(PO.$properties))),
     ];
     // some or all POs in this schema are files themselves. So render the file, assuming it's an image
-    const fileNIds = profileObjects.filter(helpers_1.isFile).map((x) => x.n_id);
+    const fileNIds = POs.filter(helpers_1.isPOFile).map((x) => x.$nId);
     if (fileNIds.length)
         return jsx_pdf_1.default.createElement(Images_1.Images, { nIds: fileNIds, files: files });
-    const imageFieldNames = fieldNames.filter((x) => profileObjects.map((PO) => PO[x]).some(helpers_1.isFile));
-    return (jsx_pdf_1.default.createElement("table", { layout: "noBorders" }, fieldNames.map((fieldName) => (jsx_pdf_1.default.createElement("row", null,
-        jsx_pdf_1.default.createElement("cell", null,
-            jsx_pdf_1.default.createElement("text", { color: "#12130e" }, fieldName.replace(/_/g, " "))),
-        profileObjects.flatMap((PO) => {
-            const status = PO[`${fieldName}.verification`] ||
-                PO[`${fieldName} Verification`];
-            const color = (0, general_1.verifyColour)(status);
-            // jsx-pdf currently doesn't support fragments, will make a PR at some point
-            return [
-                jsx_pdf_1.default.createElement("cell", null,
-                    jsx_pdf_1.default.createElement(FieldVerificationBadge_1.FieldVerificationBadge, { width: 10, status: status })),
-                jsx_pdf_1.default.createElement("cell", null,
-                    jsx_pdf_1.default.createElement(InnerTableRows_1.InnerTableRows, { key: fieldName, value: PO[fieldName], files: files, config: config, color: color, imageFieldNames: imageFieldNames })),
-            ];
-        }))))));
-}
+    const imageFieldNames = fieldNames.filter((fieldName) => POs.map((PO) => PO.$properties[fieldName].value).some(helpers_1.isFieldValueFile));
+    return (jsx_pdf_1.default.createElement("table", { layout: "noBorders" }, fieldNames.map((fieldName) => {
+        var _a;
+        return (jsx_pdf_1.default.createElement("row", null,
+            jsx_pdf_1.default.createElement("cell", null,
+                jsx_pdf_1.default.createElement("text", { color: "#12130e" }, ((_a = POs.find((PO) => PO.$properties[fieldName])) === null || _a === void 0 ? void 0 : _a.$properties[fieldName].title) || fieldName)),
+            POs.flatMap((PO) => {
+                (0, helpers_1.assertSafeProperty)(fieldName);
+                const { value, verification } = PO.$properties[fieldName];
+                const color = (0, general_1.verifyColour)(verification);
+                // jsx-pdf currently doesn't support fragments, will make a PR at some point
+                return [
+                    jsx_pdf_1.default.createElement("cell", null,
+                        jsx_pdf_1.default.createElement(FieldVerificationBadge_1.FieldVerificationBadge, { width: 10, status: verification })),
+                    jsx_pdf_1.default.createElement("cell", null,
+                        jsx_pdf_1.default.createElement(InnerTableRows_1.InnerTableRows, { key: fieldName, value: value, files: files, config: config, color: color, imageFieldNames: imageFieldNames })),
+                ];
+            })));
+    })));
+};
 exports.Table = Table;

package/dist/pdf/components/TableTitle.d.ts

@@ -1,5 +1,5 @@
 /// <reference types="jsx-pdf" />
-import { PdfSchema } from "../types";
-export declare function TableTitle({ schema }: {
-    schema: PdfSchema;
-}): JSX.Element;
+import { FlatPO } from "../../helpers";
+export declare const TableTitle: ({ POs }: {
+    POs: FlatPO[];
+}) => JSX.Element;

package/dist/pdf/components/TableTitle.js

@@ -6,9 +6,12 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.TableTitle = void 0;
 const jsx_pdf_1 = __importDefault(require("jsx-pdf"));
 const helpers_1 = require("../../helpers");
-function TableTitle({ schema }) {
-    const [schemaTitle, POs] = schema;
-    const maybeFileName = POs.some(helpers_1.isFile) && (POs[0].title || POs[0].Title);
+const TableTitle = ({ POs }) => {
+    var _a;
+    const schemaTitle = POs[0].$schemaTitle;
+    const maybeFileName = POs.some(helpers_1.isPOFile)
+        ? (_a = POs[0].$properties.title) === null || _a === void 0 ? void 0 : _a.value
+        : undefined;
     return (jsx_pdf_1.default.createElement("text", { bold: true, fontSize: 14, style: "marginBottom" }, maybeFileName || schemaTitle));
-}
+};
 exports.TableTitle = TableTitle;

package/dist/pdf/components/ValidationDisplay.d.ts

@@ -1,5 +1,5 @@
 /// <reference types="jsx-pdf" />
 import { Validation } from "@raytio/types";
-export declare function ValidationDisplay({ value, }: {
+export declare const ValidationDisplay: ({ value, }: {
     value: Validation;
-}): null | JSX.Element;
+}) => null | JSX.Element;

package/dist/pdf/components/ValidationDisplay.js

@@ -6,12 +6,13 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.ValidationDisplay = void 0;
 const jsx_pdf_1 = __importDefault(require("jsx-pdf"));
 const pieChart_1 = require("./pieChart");
+const helpers_1 = require("../../helpers");
 const SEVERITY_COLOURS = {
     low: "#2e8bc0",
     medium: "#ff9800",
     high: "#fb7171",
 };
-function ValidationDisplay({ value, }) {
+const ValidationDisplay = ({ value, }) => {
     const colour = value.score > 0.5 ? "#c2d887" : "#fb7171";
     return (jsx_pdf_1.default.createElement(jsx_pdf_1.default.Fragment, null,
         jsx_pdf_1.default.createElement("svg", { content: (0, pieChart_1.pieChart)(colour, value.score * 100), width: 50 }),
@@ -20,6 +21,10 @@ function ValidationDisplay({ value, }) {
         "/10",
         Object.values(value.breakdown)
             .filter((x) => x.severity && x.reason)
-            .map((x) => (jsx_pdf_1.default.createElement("text", { color: SEVERITY_COLOURS[x.severity] }, x.reason)))));
-}
+            .map((x) => {
+            const key = x.severity;
+            (0, helpers_1.assertSafeProperty)(key);
+            return jsx_pdf_1.default.createElement("text", { color: SEVERITY_COLOURS[key] }, x.reason);
+        })));
+};
 exports.ValidationDisplay = ValidationDisplay;

package/dist/pdf/helpers/general.js

@@ -4,20 +4,25 @@ exports.formatDate = exports.verifyColour = exports.loadAsset = exports.asset =
 const types_1 = require("@raytio/types");
 const fs_1 = require("fs");
 const path_1 = require("path");
-const asset = (name) => (0, path_1.join)(__dirname, "../../../assets/", name);
+const asset = (name) => {
+    if (name.match(/[^A-Za-z\-_.]/) || name.includes("..")) {
+        throw new Error("Invalid asset name");
+    }
+    return (0, path_1.join)(__dirname, "../../../assets/", name);
+};
 exports.asset = asset;
 const loadAsset = (name) => (0, fs_1.readFileSync)((0, exports.asset)(name), { encoding: "utf-8" });
 exports.loadAsset = loadAsset;
-// TODO: clean this up
-/* eslint-disable no-nested-ternary */
-const verifyColour = (x) => x === types_1.FieldVerification.Verified
-    ? "#12130e"
-    : x === types_1.FieldVerification.VerifiedFalse ||
-        x === types_1.POVerification.VerifiedFalse
-        ? "#fb7171"
-        : "#000";
+const verifyColour = (x) => {
+    if (x === types_1.FieldVerification.Verified)
+        return "#12130e";
+    if (x === types_1.FieldVerification.VerifiedFalse ||
+        x === types_1.POVerification.VerifiedFalse) {
+        return "#fb7171";
+    }
+    return "#000";
+};
 exports.verifyColour = verifyColour;
-/* eslint-enable no-nested-ternary */
 /**
  * Produces a date with a long month
  */

package/dist/pdf/helpers/transform.js

@@ -15,8 +15,12 @@ function transform(key, value, pdfConfig, imageFieldNames) {
     if (imageFieldNames === null || imageFieldNames === void 0 ? void 0 : imageFieldNames.includes(key)) {
         return exports.IS_IMAGE;
     }
-    if (Array.isArray(value))
-        return exports.IS_ARRAY_OF_OBJECTS;
+    if (Array.isArray(value)) {
+        if (value.every((v) => typeof v === "object")) {
+            return exports.IS_ARRAY_OF_OBJECTS;
+        }
+        return value.join(", ");
+    }
     if (typeof value !== "string") {
         return `${value}`;
     }

package/dist/public-methods/processSubmission.d.ts

@@ -1,5 +1,6 @@
 import type { AId, IId, Instance, ProfileObject, RealVer, Schema } from "@raytio/types";
 import { Config, InstanceDataToPassOn } from "../constants";
+import { FlatPO } from "../helpers";
 import { ApplicationEncryptorLike } from "../types";
 declare type DecryptData = {
     apiToken: string;
@@ -23,7 +24,11 @@ export interface ProcessSubmissionInput {
 }
 export interface ProcessSubmissionOutput {
     /** details of the submission, included the decrypted profile objects */
-    json: InstanceDataToPassOn & Record<string, any>;
+    json: InstanceDataToPassOn & {
+        profile_objects: {
+            [schemaName: string]: FlatPO[];
+        };
+    };
     /** A string of a CSV file containing the same data as in `json` */
     csv: string;
     /** an object of files that were attached to the submission, such as images */

package/dist/public-methods/processSubmission.js

@@ -44,7 +44,8 @@ function processSubmission({ applicationId, instanceId, verbose, config, _suplie
                 (yield decryptStage(log, config, envConfig, instanceId));
             log("Checking verifications...");
             const [profileObjects, verifications] = (0, helpers_1.splitPOAndVers)(instance.profile_objects);
-            const realVers = yield (0, core_1.getRealVerifications)({
+            const realVers = yield (0, core_1.getSomeoneElsesRealVerifications)({
+                aId: instance.a_id,
                 apiUrl: envConfig.api_url,
                 profileObjects,
                 verifications,
@@ -56,35 +57,45 @@ function processSubmission({ applicationId, instanceId, verbose, config, _suplie
                     throw new Error("Submission contains invalid objects");
                 return schemaName;
             });
-            const allSchemas = yield Promise.all((0, ramda_1.uniq)(schemaNames).map((name) => (0, api_1.getSchema)(envConfig, apiToken, name)));
-            // TODO: resolve URNs if any fields are URNs
+            const allSchemas = yield Promise.all((0, ramda_1.uniq)(schemaNames).map((name) => (0, api_1.getSchema)(envConfig, name)));
+            log("Fetching access application...");
+            const AA = yield (0, api_1.fetchAA)(apiToken, envConfig, instance.a_id);
+            let score;
+            if (AA.ruleset &&
+                typeof AA.ruleset === "object" &&
+                Object.keys(AA.ruleset).length) {
+                const ruleInputData = yield (0, core_1.convertInstanceToRuleInput)(instance, realVers, (schemaName) => (0, api_1.getSchema)(envConfig, schemaName));
+                try {
+                    log("Calculating score...");
+                    score = (0, core_1.calculateScore)(AA.ruleset, ruleInputData);
+                }
+                catch (ex) {
+                    log(`Score calculation failed (${ex})`);
+                }
+            }
+            else {
+                log("No score rules configured on the AA.");
+            }
             log("Fetching verification providers...");
-            const PODetails = yield (0, helpers_1.formatOutput)(profileObjects, allSchemas, realVers, apiToken, config, envConfig);
+            const PODetails = yield (0, helpers_1.formatOutput)(profileObjects, allSchemas, realVers, apiToken, envConfig);
             log("Fetching attached files...");
             const files = yield (0, api_1.getFiles)(profileObjects, instance, apiToken, envConfig, applicationDecryptor);
             const instanceDataToPassOn = (0, ramda_1.omit)(constants_1.INSTANCE_FIELDS_TO_REMOVE, instance);
             // final outputs
-            const csv = (0, helpers_1.deepJsonToCsv)(Object.assign(Object.assign({}, (0, ramda_1.omit)(["a_id", "aa_name"], instanceDataToPassOn)), (0, ramda_1.mapObjIndexed)(
-            // TODO: (semver breaking) we omit these fields because it would a breaking change for the csv format.
-            (v) => v.map((a) => {
-                // TODO: (semver breaking) map the verification enums to the text to prevent a breaking change
-                const b = Object.assign(Object.assign({}, (0, ramda_1.omit)([
-                    "$nId",
-                    "$schemaName",
-                    "$properties",
-                    "$shouldBeVerifiedFields",
-                ], a)), { $verified: constants_1.PO_VER_TEXT_MAP[a.$verified] });
-                return (0, ramda_1.mapObjIndexed)((fieldVal, fieldName) => {
-                    if (fieldName.endsWith(" Verification") ||
-                        fieldName.endsWith(".verification")) {
-                        return constants_1.FIELD_VER_TEXT_MAP[+fieldVal];
-                    }
-                    return fieldVal;
-                }, b);
+            const csv = (0, helpers_1.deepJsonToCsv)(Object.assign(Object.assign({}, instanceDataToPassOn), (0, ramda_1.mapObjIndexed)((POList) => POList.map((flatPO) => {
+                // this is a bit weird, but it prevents an even bigger breaking change for the csv format
+                const obj = Object.entries(flatPO.$properties).flatMap(([fieldName, field]) => [
+                    [fieldName, field.value],
+                    [
+                        `${fieldName}.verification`,
+                        constants_1.FIELD_VER_TEXT_MAP[field.verification],
+                    ],
+                ]);
+                return Object.assign(Object.assign(Object.assign({}, flatPO), { $verified: constants_1.PO_VER_TEXT_MAP[flatPO.$verified] }), Object.fromEntries(obj));
             }), PODetails)));
             log("Success!");
             return {
-                json: Object.assign(Object.assign({}, instanceDataToPassOn), PODetails),
+                json: Object.assign(Object.assign({}, instanceDataToPassOn), { score, profile_objects: PODetails }),
                 csv,
                 files,
                 a_id: applicationId,

package/dist/public-methods/saveToS3Bucket.js

@@ -31,6 +31,7 @@ function upload(s3, { bucketName, fileName, fileContent }) {
     });
 }
 const saveToS3Bucket = () => (input) => __awaiter(void 0, void 0, void 0, function* () {
+    console.log("Uploading data to S3...");
     const bucketName = process.env.S3_BUCKET;
     if (!bucketName)
         throw new Error("S3_BUCKET is not specified");
@@ -52,5 +53,6 @@ const saveToS3Bucket = () => (input) => __awaiter(void 0, void 0, void 0, functi
             fileContent: Buffer.from(dataUrl.split(",")[1], "base64"),
         });
     })));
+    console.log("Finished uploading data to S3.");
 });
 exports.saveToS3Bucket = saveToS3Bucket;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@raytio/decrypt-helper",
-  "version": "2.1.2",
+  "version": "3.0.0",
   "author": "Raytio",
   "description": "A helper to decrypt data shared by Raytio users",
   "main": "dist",
@@ -21,37 +21,37 @@
   },
   "dependencies": {
     "@aws-amplify/auth": "3.4.25",
-    "@peculiar/webcrypto": "^1.1.7",
-    "@raytio/core": "^8.1.2",
-    "@raytio/maxcryptor": "^3.0.1",
-    "@raytio/types": "^5.2.0",
+    "@peculiar/webcrypto": "^1.2.3",
+    "@raytio/core": "^9.0.1",
+    "@raytio/maxcryptor": "^3.1.0",
+    "@raytio/types": "^6.0.0",
     "aws-sdk": "^2.754.0",
     "jsx-pdf": "^2.3.0",
     "localstorage-polyfill": "^1.0.1",
-    "mime-types": "^2.1.32",
-    "node-fetch": "^2.6.2",
-    "pdfmake": "^0.2.2",
-    "ramda": "^0.27.1"
+    "mime-types": "^2.1.34",
+    "node-fetch": "^2.6.7",
+    "pdfmake": "^0.2.4",
+    "ramda": "^0.28.0"
   },
   "devDependencies": {
-    "@types/jest": "^27.0.2",
+    "@types/jest": "^27.4.0",
     "@types/jest-image-snapshot": "^4.3.1",
     "@types/jsx-pdf": "^2.2.2",
     "@types/mime-types": "^2.1.1",
-    "@types/node": "^14.17.18",
+    "@types/node": "^16.11.24",
     "@types/node-fetch": "^2.5.12",
-    "@types/pdfmake": "^0.1.18",
-    "@types/ramda": "^0.27.44",
-    "dotenv": "^10.0.0",
-    "eslint": "^7.32.0",
-    "eslint-config-kyle": "^3.3.0",
-    "jest": "^27.2.1",
+    "@types/pdfmake": "^0.1.20",
+    "@types/ramda": "^0.27.64",
+    "dotenv": "^16.0.0",
+    "eslint": "^8.8.0",
+    "eslint-config-kyle": "^8.3.0",
+    "jest": "^27.5.1",
     "jest-image-snapshot": "^4.5.1",
-    "jest-junit": "^12.3.0",
-    "pdf-to-img": "^1.1.1",
-    "ts-jest": "^27.0.5",
-    "ts-node": "^10.2.1",
-    "typescript": "^4.4.3"
+    "jest-junit": "^13.0.0",
+    "pdf-to-img": "^1.2.0",
+    "ts-jest": "^27.1.3",
+    "ts-node": "^10.5.0",
+    "typescript": "^4.5.5"
   },
   "eslintConfig": {
     "extends": "kyle",