@ripwords/myinvois-client 0.2.34 → 0.2.35

package/dist/api/documentManagement.d.ts

@@ -51,11 +51,11 @@ import "../YX-F34sJ7Ik.js";
 import "../ZX-CDQOfsHh.js";
 import "../XX-DOA-10JW.js";
 import "../unit-types-VgYXIwTT.js";
-import { DocumentStatus, DocumentSummary, DocumentValidationResult, DocumentValidationStepResult } from "../documents-DRQ6_toX.js";
+import { DocumentStatus, DocumentSummary, DocumentValidationResult, DocumentValidationStepResult } from "../documents-ChNlyKB2.js";
 import "../payment-modes-g3DzLmWb.js";
 import "../signatures-CerHUrj3.js";
 import "../notifications-sFhgh3rJ.js";
-import "../taxpayer-DtyHXKwz.js";
+import "../taxpayer-C9VMf0iv.js";
 import { Fetch } from "../utils-C4FoVKLq.js";
 import "../index-CygwSf0x.js";
 

package/dist/api/documentSubmission.d.ts

@@ -51,11 +51,11 @@ import "../YX-F34sJ7Ik.js";
 import "../ZX-CDQOfsHh.js";
 import "../XX-DOA-10JW.js";
 import "../unit-types-VgYXIwTT.js";
-import { AllDocumentsV1_1, DocumentSummary, SigningCredentials, StandardError, SubmissionResponse, SubmissionStatus } from "../documents-DRQ6_toX.js";
+import { AllDocumentsV1_1, DocumentSummary, SigningCredentials, StandardError, SubmissionResponse, SubmissionStatus } from "../documents-ChNlyKB2.js";
 import "../payment-modes-g3DzLmWb.js";
 import "../signatures-CerHUrj3.js";
 import "../notifications-sFhgh3rJ.js";
-import "../taxpayer-DtyHXKwz.js";
+import "../taxpayer-C9VMf0iv.js";
 import { Fetch } from "../utils-C4FoVKLq.js";
 import "../index-CygwSf0x.js";
 

package/dist/api/documentTypeManagement.d.ts

@@ -51,11 +51,11 @@ import "../YX-F34sJ7Ik.js";
 import "../ZX-CDQOfsHh.js";
 import "../XX-DOA-10JW.js";
 import "../unit-types-VgYXIwTT.js";
-import { DocumentTypeResponse, DocumentTypeVersionResponse, DocumentTypesResponse } from "../documents-DRQ6_toX.js";
+import { DocumentTypeResponse, DocumentTypeVersionResponse, DocumentTypesResponse } from "../documents-ChNlyKB2.js";
 import "../payment-modes-g3DzLmWb.js";
 import "../signatures-CerHUrj3.js";
 import "../notifications-sFhgh3rJ.js";
-import "../taxpayer-DtyHXKwz.js";
+import "../taxpayer-C9VMf0iv.js";
 import { Fetch } from "../utils-C4FoVKLq.js";
 import "../index-CygwSf0x.js";
 

package/dist/api/notificationManagement.d.ts

@@ -51,11 +51,11 @@ import "../YX-F34sJ7Ik.js";
 import "../ZX-CDQOfsHh.js";
 import "../XX-DOA-10JW.js";
 import "../unit-types-VgYXIwTT.js";
-import "../documents-DRQ6_toX.js";
+import "../documents-ChNlyKB2.js";
 import "../payment-modes-g3DzLmWb.js";
 import "../signatures-CerHUrj3.js";
 import { NotificationResponse, NotificationSearchParams } from "../notifications-sFhgh3rJ.js";
-import "../taxpayer-DtyHXKwz.js";
+import "../taxpayer-C9VMf0iv.js";
 import { Fetch } from "../utils-C4FoVKLq.js";
 import "../index-CygwSf0x.js";
 

package/dist/api/platformLogin.d.ts

@@ -51,11 +51,11 @@ import "../YX-F34sJ7Ik.js";
 import "../ZX-CDQOfsHh.js";
 import "../XX-DOA-10JW.js";
 import "../unit-types-VgYXIwTT.js";
-import "../documents-DRQ6_toX.js";
+import "../documents-ChNlyKB2.js";
 import "../payment-modes-g3DzLmWb.js";
 import "../signatures-CerHUrj3.js";
 import "../notifications-sFhgh3rJ.js";
-import "../taxpayer-DtyHXKwz.js";
+import "../taxpayer-C9VMf0iv.js";
 import "../utils-C4FoVKLq.js";
 import { ClientCredentials } from "../index-CygwSf0x.js";
 

package/dist/api/taxpayerValidation.d.ts

@@ -51,11 +51,11 @@ import "../YX-F34sJ7Ik.js";
 import "../ZX-CDQOfsHh.js";
 import "../XX-DOA-10JW.js";
 import "../unit-types-VgYXIwTT.js";
-import { RegistrationType } from "../documents-DRQ6_toX.js";
+import { RegistrationType } from "../documents-ChNlyKB2.js";
 import "../payment-modes-g3DzLmWb.js";
 import "../signatures-CerHUrj3.js";
 import "../notifications-sFhgh3rJ.js";
-import { TaxpayerQRCodeResponse, TinSearchParams, TinSearchResponse } from "../taxpayer-DtyHXKwz.js";
+import { TaxpayerQRCodeResponse, TinSearchParams, TinSearchResponse } from "../taxpayer-C9VMf0iv.js";
 import { Fetch } from "../utils-C4FoVKLq.js";
 import "../index-CygwSf0x.js";
 

package/dist/{documents-BWpJ0B3C.d.cts → documents-4B5YOXeb.d.cts}

@@ -467,7 +467,7 @@ interface SelfBilledRefundNoteV1_1 {
   taxTotal: TaxTotal;
 }
 type AllDocumentsV1_1 = InvoiceV1_1 | CreditNoteV1_1 | DebitNoteV1_1 | RefundNoteV1_1 | SelfBilledInvoiceV1_1 | SelfBilledCreditNoteV1_1 | SelfBilledRefundNoteV1_1;
-type SubmissionStatus = 'InProgress' | 'Valid' | 'PartiallyValid' | 'Invalid' | 'TimedOut';
+type SubmissionStatus = 'InProgress' | 'Valid' | 'PartiallyValid' | 'Invalid' | 'TimedOut' | 'Submitted';
 type DocumentStatus = 'Valid' | 'Invalid' | 'Cancelled' | 'Submitted';
 type StandardError = {
   code: string;
@@ -1134,4 +1134,4 @@ interface DocumentTypeVersionResponse {
 }
 //#endregion
 export { Address, AllDocumentsV1_1, Buyer, CompleteInvoice, CreditNoteV1_1, DebitNoteV1_1, DocumentStatus, DocumentSummary, DocumentTypeResponse, DocumentTypeVersion, DocumentTypeVersionResponse, DocumentTypesResponse, DocumentValidationResult, DocumentValidationStepResult, FinalDocumentData, GetSubmissionResponse, InvoiceLineItem, InvoiceSubmission, InvoiceV1_1, LegalMonetaryTotal, RefundNoteV1_1, RegistrationType, ResponseDocument, SelfBilledCreditNoteV1_1, SelfBilledInvoiceV1_1, SelfBilledRefundNoteV1_1, SignedInfoObject, SignedInvoiceSubmission, SignedPropertiesData, SignedPropertiesObject, SigningCredentials, StandardError, SubmissionResponse, SubmissionStatus, Supplier, TaxCategory, TaxSubtotal, TaxTotal, UBLDocument, WorkflowParameter };
-//# sourceMappingURL=documents-BWpJ0B3C.d.cts.map
+//# sourceMappingURL=documents-4B5YOXeb.d.cts.map

package/dist/{documents-DRQ6_toX.d.ts → documents-ChNlyKB2.d.ts}

@@ -467,7 +467,7 @@ interface SelfBilledRefundNoteV1_1 {
   taxTotal: TaxTotal;
 }
 type AllDocumentsV1_1 = InvoiceV1_1 | CreditNoteV1_1 | DebitNoteV1_1 | RefundNoteV1_1 | SelfBilledInvoiceV1_1 | SelfBilledCreditNoteV1_1 | SelfBilledRefundNoteV1_1;
-type SubmissionStatus = 'InProgress' | 'Valid' | 'PartiallyValid' | 'Invalid' | 'TimedOut';
+type SubmissionStatus = 'InProgress' | 'Valid' | 'PartiallyValid' | 'Invalid' | 'TimedOut' | 'Submitted';
 type DocumentStatus = 'Valid' | 'Invalid' | 'Cancelled' | 'Submitted';
 type StandardError = {
   code: string;

package/dist/index.d.ts

@@ -51,11 +51,11 @@ import "./YX-F34sJ7Ik.js";
 import "./ZX-CDQOfsHh.js";
 import "./XX-DOA-10JW.js";
 import { UnitType, UnitTypeCode } from "./unit-types-VgYXIwTT.js";
-import { Address, AllDocumentsV1_1, Buyer, CompleteInvoice, CreditNoteV1_1, DebitNoteV1_1, DocumentStatus, DocumentSummary, DocumentTypeResponse, DocumentTypeVersion, DocumentTypeVersionResponse, DocumentTypesResponse, DocumentValidationResult, DocumentValidationStepResult, FinalDocumentData, GetSubmissionResponse, InvoiceLineItem, InvoiceSubmission, InvoiceV1_1, LegalMonetaryTotal, RefundNoteV1_1, RegistrationType, ResponseDocument, SelfBilledCreditNoteV1_1, SelfBilledInvoiceV1_1, SelfBilledRefundNoteV1_1, SignedInfoObject, SignedInvoiceSubmission, SignedPropertiesData, SignedPropertiesObject, SigningCredentials, StandardError, SubmissionResponse, SubmissionStatus, Supplier, TaxCategory, TaxSubtotal, TaxTotal, UBLDocument, WorkflowParameter } from "./documents-DRQ6_toX.js";
+import { Address, AllDocumentsV1_1, Buyer, CompleteInvoice, CreditNoteV1_1, DebitNoteV1_1, DocumentStatus, DocumentSummary, DocumentTypeResponse, DocumentTypeVersion, DocumentTypeVersionResponse, DocumentTypesResponse, DocumentValidationResult, DocumentValidationStepResult, FinalDocumentData, GetSubmissionResponse, InvoiceLineItem, InvoiceSubmission, InvoiceV1_1, LegalMonetaryTotal, RefundNoteV1_1, RegistrationType, ResponseDocument, SelfBilledCreditNoteV1_1, SelfBilledInvoiceV1_1, SelfBilledRefundNoteV1_1, SignedInfoObject, SignedInvoiceSubmission, SignedPropertiesData, SignedPropertiesObject, SigningCredentials, StandardError, SubmissionResponse, SubmissionStatus, Supplier, TaxCategory, TaxSubtotal, TaxTotal, UBLDocument, WorkflowParameter } from "./documents-ChNlyKB2.js";
 import { PaymentMode, PaymentModeCode, PaymentModeCodeEnum } from "./payment-modes-g3DzLmWb.js";
 import { CanonicalizationMethod, Cert, CertDigest, DigestMethod, IssuerDigitalSignature, IssuerSerial, KeyInfo, QualifyingProperties, Reference, SignatureMethod, SignedInfo, SignedProperties, SignedSignatureProperties, SigningCertificate, Transform, X509Data } from "./signatures-CerHUrj3.js";
 import { Notification, NotificationDeliveryAttempt, NotificationMetadata, NotificationResponse, NotificationSearchParams, NotificationStatus, NotificationStatusEnum, NotificationType, NotificationTypeEnum } from "./notifications-sFhgh3rJ.js";
-import { TaxpayerQRCodeResponse, TinSearchParams, TinSearchResponse } from "./taxpayer-DtyHXKwz.js";
+import { TaxpayerQRCodeResponse, TinSearchParams, TinSearchResponse } from "./taxpayer-C9VMf0iv.js";
 import { Fetch } from "./utils-C4FoVKLq.js";
 import { ClientCredentials, TokenResponse } from "./index-CygwSf0x.js";
 

package/dist/index10.cjs

@@ -1,25 +1,5 @@
+const require_certificate = require('./certificate-CWmfCPdt.cjs');
 
-//#region src/types/payment-modes.d.ts
-/**
-* Enum representing the allowed payment mode codes with descriptive names.
-* Provides a more readable way to reference payment modes.
-*
-* @example
-* const mode = PaymentModeCodeEnum.Cash;
-* console.log(mode); // Output: "01"
-*/
-let PaymentModeCodeEnum = /* @__PURE__ */ function(PaymentModeCodeEnum$1) {
-	PaymentModeCodeEnum$1["Cash"] = "01";
-	PaymentModeCodeEnum$1["Cheque"] = "02";
-	PaymentModeCodeEnum$1["BankTransfer"] = "03";
-	PaymentModeCodeEnum$1["CreditCard"] = "04";
-	PaymentModeCodeEnum$1["DebitCard"] = "05";
-	PaymentModeCodeEnum$1["EWalletDigitalWallet"] = "06";
-	PaymentModeCodeEnum$1["DigitalBank"] = "07";
-	PaymentModeCodeEnum$1["Others"] = "08";
-	return PaymentModeCodeEnum$1;
-}({});
-
-//#endregion
-exports.PaymentModeCodeEnum = PaymentModeCodeEnum;
-//# sourceMappingURL=index10.cjs.map
+exports.extractCertificateInfo = require_certificate.extractCertificateInfo;
+exports.getPemFromP12 = require_certificate.getPemFromP12;
+exports.validateKeyPair = require_certificate.validateKeyPair;

package/dist/index11.cjs

@@ -0,0 +1,22 @@
+require('./formatIdValue-i67o4kyD.cjs');
+const require_document = require('./document-DWsGewNs.cjs');
+
+exports.calculateCertificateDigest = require_document.calculateCertificateDigest;
+exports.calculateDocumentDigest = require_document.calculateDocumentDigest;
+exports.calculateExpectedTaxAmount = require_document.calculateExpectedTaxAmount;
+exports.calculateInvoiceTotals = require_document.calculateInvoiceTotals;
+exports.calculateSignedPropertiesDigest = require_document.calculateSignedPropertiesDigest;
+exports.canonicalizeJSON = require_document.canonicalizeJSON;
+exports.createFixedRateTaxLineItem = require_document.createFixedRateTaxLineItem;
+exports.createPercentageTaxLineItem = require_document.createPercentageTaxLineItem;
+exports.createSignedInfoAndSign = require_document.createSignedInfoAndSign;
+exports.createSignedProperties = require_document.createSignedProperties;
+exports.extractCertificateInfo = require_document.extractCertificateInfo;
+exports.generateCleanInvoiceObject = require_document.generateCleanInvoiceObject;
+exports.generateCleanUBLDocument = require_document.generateCleanUBLDocument;
+exports.generateCompleteDocument = require_document.generateCompleteDocument;
+exports.isFixedRateTax = require_document.isFixedRateTax;
+exports.isPercentageTax = require_document.isPercentageTax;
+exports.signDocumentString = require_document.signDocumentString;
+exports.sortObjectKeys = require_document.sortObjectKeys;
+exports.transformDocumentForHashing = require_document.transformDocumentForHashing;

package/dist/index12.cjs

@@ -1,34 +1,3 @@
+const require_formatIdValue = require('./formatIdValue-i67o4kyD.cjs');
 
-//#region src/types/state-codes.d.ts
-/**
-* Enum representing the allowed state codes with descriptive names.
-* Provides a more readable way to reference states.
-*
-* @example
-* const code = StateCodeEnum.Selangor;
-* console.log(code); // Output: "10"
-*/
-let StateCodeEnum = /* @__PURE__ */ function(StateCodeEnum$1) {
-	StateCodeEnum$1["Johor"] = "01";
-	StateCodeEnum$1["Kedah"] = "02";
-	StateCodeEnum$1["Kelantan"] = "03";
-	StateCodeEnum$1["Melaka"] = "04";
-	StateCodeEnum$1["NegeriSembilan"] = "05";
-	StateCodeEnum$1["Pahang"] = "06";
-	StateCodeEnum$1["PulauPinang"] = "07";
-	StateCodeEnum$1["Perak"] = "08";
-	StateCodeEnum$1["Perlis"] = "09";
-	StateCodeEnum$1["Selangor"] = "10";
-	StateCodeEnum$1["Terengganu"] = "11";
-	StateCodeEnum$1["Sabah"] = "12";
-	StateCodeEnum$1["Sarawak"] = "13";
-	StateCodeEnum$1["WPKualaLumpur"] = "14";
-	StateCodeEnum$1["WPLabuan"] = "15";
-	StateCodeEnum$1["WPPutrajaya"] = "16";
-	StateCodeEnum$1["NotApplicable"] = "17";
-	return StateCodeEnum$1;
-}({});
-
-//#endregion
-exports.StateCodeEnum = StateCodeEnum;
-//# sourceMappingURL=index12.cjs.map
+exports.formatIdValue = require_formatIdValue.formatIdValue;

package/dist/index13.cjs

@@ -1,24 +1,3 @@
+const require_getBaseUrl = require('./getBaseUrl-D0G4GZmp.cjs');
 
-//#region src/types/tax-types.d.ts
-/**
-* Enum representing the allowed tax type codes with descriptive names.
-* Provides a more readable way to reference tax types.
-*
-* @example
-* const code = TaxTypeCodeEnum.SalesTax;
-* console.log(code); // Output: "01"
-*/
-let TaxTypeCodeEnum = /* @__PURE__ */ function(TaxTypeCodeEnum$1) {
-	TaxTypeCodeEnum$1["SalesTax"] = "01";
-	TaxTypeCodeEnum$1["ServiceTax"] = "02";
-	TaxTypeCodeEnum$1["TourismTax"] = "03";
-	TaxTypeCodeEnum$1["HighValueGoodsTax"] = "04";
-	TaxTypeCodeEnum$1["SalesTaxLowValueGoods"] = "05";
-	TaxTypeCodeEnum$1["NotApplicable"] = "06";
-	TaxTypeCodeEnum$1["TaxExemption"] = "E";
-	return TaxTypeCodeEnum$1;
-}({});
-
-//#endregion
-exports.TaxTypeCodeEnum = TaxTypeCodeEnum;
-//# sourceMappingURL=index13.cjs.map
+exports.getBaseUrl = require_getBaseUrl.getBaseUrl;

package/dist/index14.cjs

@@ -0,0 +1,330 @@
+const require_chunk = require('./chunk-CUT6urMc.cjs');
+require('./formatIdValue-i67o4kyD.cjs');
+const require_document = require('./document-DWsGewNs.cjs');
+const crypto = require_chunk.__toESM(require("crypto"));
+
+//#region src/utils/signature-diagnostics.ts
+/**
+* Analyzes certificate for MyInvois compatibility issues
+*/
+function analyzeCertificateForDiagnostics(certificatePem) {
+	const issues = [];
+	const recommendations = [];
+	try {
+		const cert = new crypto.default.X509Certificate(certificatePem);
+		const certInfo = require_document.extractCertificateInfo(certificatePem);
+		const parseSubjectFields = (dn) => {
+			const fields = {};
+			dn.split("\n").forEach((line) => {
+				const trimmed = line.trim();
+				if (trimmed.includes("=")) {
+					const [key, ...valueParts] = trimmed.split("=");
+					if (key) fields[key.trim()] = valueParts.join("=").trim();
+				}
+			});
+			return fields;
+		};
+		const subjectFields = parseSubjectFields(cert.subject);
+		const organizationIdentifier = subjectFields["organizationIdentifier"] || subjectFields["2.5.4.97"];
+		const serialNumber = subjectFields["serialNumber"];
+		if (!organizationIdentifier) {
+			issues.push("DS311: Certificate missing organizationIdentifier field (TIN)");
+			recommendations.push("CRITICAL: Generate new certificate with organizationIdentifier matching your MyInvois TIN");
+			recommendations.push("Portal Error: \"Signer of invoice doesn't match the submitter of document. TIN doesn't match with the OI.\"");
+		} else if (organizationIdentifier.length < 10) {
+			issues.push("DS311: OrganizationIdentifier (TIN) appears too short - may cause submission rejection");
+			recommendations.push("Verify TIN format matches exactly what is registered in MyInvois");
+		}
+		if (!serialNumber) {
+			issues.push("DS312: Certificate missing serialNumber field (business registration)");
+			recommendations.push("CRITICAL: Generate new certificate with serialNumber matching your business registration");
+			recommendations.push("Portal Error: \"Submitter registration/identity number doesn't match with the certificate SERIALNUMBER.\"");
+		}
+		if (cert.issuer === cert.subject) {
+			issues.push("DS329: Self-signed certificate detected - will fail chain of trust validation");
+			recommendations.push("BLOCKING: Obtain certificate from MyInvois-approved CA:");
+			recommendations.push("• MSC Trustgate Sdn Bhd");
+			recommendations.push("• DigiCert Sdn Bhd");
+			recommendations.push("• Cybersign Asia Sdn Bhd");
+			recommendations.push("Portal Error: \"Certificate is not valid according to the chain of trust validation or has been issued by an untrusted certificate authority.\"");
+		} else {
+			const issuerName = cert.issuer.toLowerCase();
+			const approvedCAs = [
+				"msc trustgate",
+				"digicert",
+				"cybersign"
+			];
+			const isFromApprovedCA = approvedCAs.some((ca) => issuerName.includes(ca));
+			if (!isFromApprovedCA) {
+				issues.push("DS329: Certificate may not be from MyInvois-approved CA");
+				recommendations.push("Verify certificate was issued by an approved CA for MyInvois");
+			}
+		}
+		const rawIssuer = cert.issuer;
+		const normalizedIssuer = certInfo.issuerName;
+		const normalizedIssuerIssues = [
+			{
+				check: normalizedIssuer.includes("\n"),
+				issue: "Normalized issuer still contains newlines"
+			},
+			{
+				check: normalizedIssuer.includes("  "),
+				issue: "Normalized issuer contains double spaces"
+			},
+			{
+				check: /=\s+/.test(normalizedIssuer),
+				issue: "Normalized issuer has spaces after equals"
+			},
+			{
+				check: /\s+=/.test(normalizedIssuer),
+				issue: "Normalized issuer has spaces before equals"
+			},
+			{
+				check: normalizedIssuer.includes("\r"),
+				issue: "Normalized issuer contains carriage returns"
+			}
+		];
+		const hasActualFormatIssues = normalizedIssuerIssues.some(({ check, issue }) => {
+			if (check) {
+				issues.push(`DS326: ${issue} - will cause X509IssuerName mismatch`);
+				return true;
+			}
+			return false;
+		});
+		const hasRawIssuesButNormalizedOk = rawIssuer.includes("\n") && !normalizedIssuer.includes("\n");
+		if (hasActualFormatIssues) {
+			recommendations.push("CRITICAL: Fix issuer name normalization in signature generation");
+			recommendations.push("Portal Error: \"Certificate X509IssuerName doesn't match the X509IssuerName value provided in the signed properties section.\"");
+			recommendations.push("The normalization function is not properly formatting the issuer name");
+			recommendations.push("Debug: Check document.ts extractCertificateInfo() normalization logic");
+		} else if (hasRawIssuesButNormalizedOk) console.log("ℹ️  Note: Raw certificate issuer has newlines but normalization is handling them correctly");
+		const now = /* @__PURE__ */ new Date();
+		const validFrom = new Date(cert.validFrom);
+		const validTo = new Date(cert.validTo);
+		if (now < validFrom) {
+			issues.push("DS329: Certificate not yet valid (future start date)");
+			recommendations.push("Wait until certificate validity period begins");
+		}
+		if (now > validTo) {
+			issues.push("DS329: Certificate has expired");
+			recommendations.push("BLOCKING: Renew certificate - expired certificates are rejected");
+		}
+		try {
+			if (cert.keyUsage && !cert.keyUsage.includes("digital signature")) {
+				issues.push("DS333: Certificate lacks digitalSignature key usage");
+				recommendations.push("Generate new certificate with digitalSignature key usage enabled");
+			}
+		} catch {
+			console.log("Note: Could not check key usage extensions");
+		}
+		return {
+			organizationIdentifier,
+			serialNumber,
+			issuerName: certInfo.issuerName,
+			subjectName: certInfo.subjectName,
+			issues,
+			recommendations
+		};
+	} catch (error) {
+		issues.push(`Certificate parsing failed: ${error}`);
+		recommendations.push("Verify certificate format and validity");
+		return {
+			issuerName: "",
+			subjectName: "",
+			issues,
+			recommendations
+		};
+	}
+}
+/**
+* Analyzes signature generation for potential issues
+*/
+function analyzeSignatureForDiagnostics(invoices, certificatePem) {
+	const issues = [];
+	const recommendations = [];
+	try {
+		const documentDigest = require_document.calculateDocumentDigest(invoices);
+		const certificateDigest = require_document.calculateCertificateDigest(certificatePem);
+		const certInfo = require_document.extractCertificateInfo(certificatePem);
+		const signingTime = (/* @__PURE__ */ new Date()).toISOString();
+		const signedProperties = require_document.createSignedProperties(certificateDigest, signingTime, certInfo.issuerName, certInfo.serialNumber);
+		const signedPropertiesDigest = require_document.calculateSignedPropertiesDigest(signedProperties);
+		if (documentDigest.length === 0) {
+			issues.push("DS333: Document digest generation failed");
+			recommendations.push("CRITICAL: Verify document serialization excludes UBLExtensions/Signature");
+			recommendations.push("Portal Error: \"Document signature value is not a valid signature of the document digest using the public key of the certificate provided.\"");
+		}
+		if (certificateDigest.length === 0) {
+			issues.push("DS333: Certificate digest generation failed");
+			recommendations.push("CRITICAL: Verify certificate format and encoding");
+			recommendations.push("Certificate must be properly base64 encoded without headers/footers");
+		}
+		if (signedPropertiesDigest.length === 0) {
+			issues.push("DS333: Signed properties digest generation failed");
+			recommendations.push("CRITICAL: Verify signed properties structure and canonicalization");
+			recommendations.push("Check XML canonicalization (C14N) is applied correctly");
+		}
+		try {
+			const cert = new crypto.default.X509Certificate(certificatePem);
+			const publicKey = cert.publicKey;
+			const keyDetails = publicKey.asymmetricKeyDetails;
+			if (keyDetails) {
+				if (publicKey.asymmetricKeyType === "rsa" && keyDetails.modulusLength && keyDetails.modulusLength < 2048) {
+					issues.push("DS333: RSA key size too small (minimum 2048 bits required)");
+					recommendations.push("CRITICAL: Generate new certificate with RSA 2048+ bits");
+				}
+				const supportedKeyTypes = ["rsa", "ec"];
+				if (!supportedKeyTypes.includes(publicKey.asymmetricKeyType || "")) {
+					issues.push(`DS333: Unsupported key type: ${publicKey.asymmetricKeyType}`);
+					recommendations.push("CRITICAL: Use RSA or EC key types for MyInvois compatibility");
+				}
+			}
+			const certBuffer = Buffer.from(certificatePem.replace(/-----[^-]+-----/g, "").replace(/\s/g, ""), "base64");
+			if (certBuffer.length === 0) {
+				issues.push("DS333: Certificate encoding appears invalid");
+				recommendations.push("CRITICAL: Verify certificate is properly PEM encoded");
+			}
+		} catch (error) {
+			issues.push(`DS333: Certificate validation failed - ${error}`);
+			recommendations.push("CRITICAL: Verify certificate format and structure are valid");
+		}
+		const isValidBase64 = (str) => {
+			try {
+				return Buffer.from(str, "base64").toString("base64") === str;
+			} catch {
+				return false;
+			}
+		};
+		if (documentDigest && !isValidBase64(documentDigest)) {
+			issues.push("DS333: Document digest is not valid base64 format");
+			recommendations.push("Ensure digest is properly base64 encoded");
+		}
+		if (certificateDigest && !isValidBase64(certificateDigest)) {
+			issues.push("DS333: Certificate digest is not valid base64 format");
+			recommendations.push("Ensure certificate digest is properly base64 encoded");
+		}
+		if (signedPropertiesDigest && !isValidBase64(signedPropertiesDigest)) {
+			issues.push("DS333: Signed properties digest is not valid base64 format");
+			recommendations.push("Ensure signed properties digest is properly base64 encoded");
+		}
+		return {
+			documentDigest,
+			certificateDigest,
+			signedPropertiesDigest,
+			issues,
+			recommendations
+		};
+	} catch (error) {
+		issues.push(`Signature analysis failed: ${error}`);
+		recommendations.push("Review signature generation implementation");
+		return {
+			documentDigest: "",
+			certificateDigest: "",
+			signedPropertiesDigest: "",
+			issues,
+			recommendations
+		};
+	}
+}
+/**
+* Comprehensive signature diagnostics
+*/
+function diagnoseSignatureIssues(invoices, certificatePem) {
+	const certificateAnalysis = analyzeCertificateForDiagnostics(certificatePem);
+	const signatureAnalysis = analyzeSignatureForDiagnostics(invoices, certificatePem);
+	const certificateIssues = certificateAnalysis.issues.length;
+	const signatureIssues = signatureAnalysis.issues.length;
+	return {
+		certificateAnalysis,
+		signatureAnalysis,
+		summary: {
+			totalIssues: certificateIssues + signatureIssues,
+			certificateIssues,
+			signatureIssues
+		}
+	};
+}
+/**
+* Prints diagnostic results in a formatted way
+*/
+function printDiagnostics(result) {
+	console.log("\n🔍 MyInvois Signature Diagnostics Report");
+	console.log("=".repeat(60));
+	console.log("\n📜 CERTIFICATE ANALYSIS");
+	console.log("-".repeat(30));
+	console.log(`  Issuer: ${result.certificateAnalysis.issuerName}`);
+	console.log(`  Subject: ${result.certificateAnalysis.subjectName}`);
+	if (result.certificateAnalysis.organizationIdentifier) console.log(`  Organization ID (TIN): ${result.certificateAnalysis.organizationIdentifier}`);
+	if (result.certificateAnalysis.serialNumber) console.log(`  Serial Number: ${result.certificateAnalysis.serialNumber}`);
+	if (result.certificateAnalysis.issues.length > 0) {
+		console.log("\n  🚨 Certificate Issues:");
+		result.certificateAnalysis.issues.forEach((issue, index) => {
+			console.log(`    ${index + 1}. ${issue}`);
+		});
+	}
+	if (result.certificateAnalysis.recommendations.length > 0) {
+		console.log("\n  💡 Certificate Recommendations:");
+		result.certificateAnalysis.recommendations.forEach((rec, index) => {
+			console.log(`    ${index + 1}. ${rec}`);
+		});
+	}
+	console.log("\n🔐 SIGNATURE ANALYSIS");
+	console.log("-".repeat(30));
+	console.log(`  Document Digest: ${result.signatureAnalysis.documentDigest.substring(0, 32)}...`);
+	console.log(`  Certificate Digest: ${result.signatureAnalysis.certificateDigest.substring(0, 32)}...`);
+	console.log(`  Signed Properties Digest: ${result.signatureAnalysis.signedPropertiesDigest.substring(0, 32)}...`);
+	if (result.signatureAnalysis.issues.length > 0) {
+		console.log("\n  🚨 Signature Issues:");
+		result.signatureAnalysis.issues.forEach((issue, index) => {
+			console.log(`    ${index + 1}. ${issue}`);
+		});
+	}
+	if (result.signatureAnalysis.recommendations.length > 0) {
+		console.log("\n  💡 Signature Recommendations:");
+		result.signatureAnalysis.recommendations.forEach((rec, index) => {
+			console.log(`    ${index + 1}. ${rec}`);
+		});
+	}
+	console.log("\n📊 SUMMARY");
+	console.log("-".repeat(30));
+	console.log(`  Total Issues Found: ${result.summary.totalIssues}`);
+	console.log(`  Certificate Issues: ${result.summary.certificateIssues}`);
+	console.log(`  Signature Issues: ${result.summary.signatureIssues}`);
+	if (result.summary.totalIssues === 0) {
+		console.log("\n  ✅ No issues detected in current analysis");
+		console.log("  🎉 Certificate and signature implementation appear valid");
+	} else {
+		console.log("\n  ⚠️  Issues detected - review recommendations above");
+		const hasDS311 = result.certificateAnalysis.issues.some((issue) => issue.includes("DS311"));
+		const hasDS312 = result.certificateAnalysis.issues.some((issue) => issue.includes("DS312"));
+		const hasDS326 = result.certificateAnalysis.issues.some((issue) => issue.includes("DS326"));
+		const hasDS329 = result.certificateAnalysis.issues.some((issue) => issue.includes("DS329"));
+		const hasDS333 = result.signatureAnalysis.issues.some((issue) => issue.includes("DS333"));
+		console.log("\n  🎯 MYINVOIS PORTAL ERROR ANALYSIS:");
+		if (hasDS311) console.log("     ❌ DS311 - TIN mismatch between certificate and submitter");
+		if (hasDS312) console.log("     ❌ DS312 - Registration number mismatch with certificate");
+		if (hasDS326) console.log("     ❌ DS326 - X509IssuerName format inconsistency");
+		if (hasDS329) console.log("     ❌ DS329 - Certificate trust chain validation failure");
+		if (hasDS333) console.log("     ❌ DS333 - Document signature validation failure");
+		if (result.summary.certificateIssues > 0) {
+			console.log("\n  🚨 PRIMARY ACTION REQUIRED:");
+			console.log("     Certificate issues must be resolved first");
+			console.log("     Self-generated certificates cannot pass MyInvois validation");
+		}
+		if (result.summary.signatureIssues > 0) {
+			console.log("\n  ⚙️  SECONDARY ACTION:");
+			console.log("     Review and optimize signature implementation");
+		}
+		console.log("\n  📋 NEXT STEPS:");
+		console.log("     1. Address BLOCKING/CRITICAL issues first");
+		console.log("     2. Test with updated certificate/implementation");
+		console.log("     3. Re-run diagnostics to verify fixes");
+		console.log("     4. Submit test document to MyInvois portal");
+	}
+	console.log("\n" + "=".repeat(60));
+}
+
+//#endregion
+exports.diagnoseSignatureIssues = diagnoseSignatureIssues;
+exports.printDiagnostics = printDiagnostics;
+//# sourceMappingURL=index14.cjs.map