@sd-jwt/core 0.12.1-next.0 → 0.12.1-next.2

package/dist/index.d.mts

@@ -8,6 +8,19 @@ type JwtData<Header extends Record<string, unknown>, Payload extends Record<stri
     signature?: Base64urlString;
     encoded?: string;
 };
+/**
+ * Options for the JWT verifier
+ */
+type VerifierOptions = {
+    /**
+     * current time in seconds since epoch
+     */
+    currentDate?: number;
+    /**
+     * allowed skew for the current time in seconds. Positive value that will lower the iat and nbf checks, and increase the exp check.
+     */
+    skewSeconds?: number;
+};
 declare class Jwt<Header extends Record<string, unknown> = Record<string, unknown>, Payload extends Record<string, unknown> = Record<string, unknown>> {
     header?: Header;
     payload?: Payload;
@@ -25,7 +38,14 @@ declare class Jwt<Header extends Record<string, unknown> = Record<string, unknow
     protected getUnsignedToken(): string;
     sign(signer: Signer): Promise<string>;
     encodeJwt(): string;
-    verify(verifier: Verifier): Promise<{
+    /**
+     * Verify the JWT using the provided verifier function.
+     * It checks the signature and validates the iat, nbf, and exp claims if they are present.
+     * @param verifier
+     * @param options - Options for verification, such as current date and skew seconds
+     * @returns
+     */
+    verify(verifier: Verifier, options?: VerifierOptions): Promise<{
         payload: Payload | undefined;
         header: Header | undefined;
     }>;
@@ -197,7 +217,14 @@ declare class SDJwtInstance<ExtendedPayload extends SdJwtPayload> {
         };
     }>;
     private calculateSDHash;
-    validate(encodedSDJwt: string): Promise<{
+    /**
+     * This function is for validating the SD JWT
+     * Checking signature, if provided the iat and exp when provided and return its the claims
+     * @param encodedSDJwt
+     * @param options
+     * @returns
+     */
+    validate(encodedSDJwt: string, options?: VerifierOptions): Promise<{
         payload: unknown;
         header: Record<string, unknown> | undefined;
     }>;
@@ -259,4 +286,4 @@ declare class SDJwtGeneralJSONInstance<ExtendedPayload extends SdJwtPayload> {
     getClaims(generalSdjwt: GeneralJSON): Promise<unknown>;
 }
 
-export { FlattenJSON, type FlattenJSONData, type FlattenJSONSerialized, GeneralJSON, type GeneralJSONData, type GeneralJSONSerialized, Jwt, type JwtData, KBJwt, SDJwt, type SDJwtData, SDJwtGeneralJSONInstance, SDJwtInstance, type SdJwtPayload, createDecoy, listKeys, pack };
+export { FlattenJSON, type FlattenJSONData, type FlattenJSONSerialized, GeneralJSON, type GeneralJSONData, type GeneralJSONSerialized, Jwt, type JwtData, KBJwt, SDJwt, type SDJwtData, SDJwtGeneralJSONInstance, SDJwtInstance, type SdJwtPayload, type VerifierOptions, createDecoy, listKeys, pack };

package/dist/index.d.ts

@@ -8,6 +8,19 @@ type JwtData<Header extends Record<string, unknown>, Payload extends Record<stri
     signature?: Base64urlString;
     encoded?: string;
 };
+/**
+ * Options for the JWT verifier
+ */
+type VerifierOptions = {
+    /**
+     * current time in seconds since epoch
+     */
+    currentDate?: number;
+    /**
+     * allowed skew for the current time in seconds. Positive value that will lower the iat and nbf checks, and increase the exp check.
+     */
+    skewSeconds?: number;
+};
 declare class Jwt<Header extends Record<string, unknown> = Record<string, unknown>, Payload extends Record<string, unknown> = Record<string, unknown>> {
     header?: Header;
     payload?: Payload;
@@ -25,7 +38,14 @@ declare class Jwt<Header extends Record<string, unknown> = Record<string, unknow
     protected getUnsignedToken(): string;
     sign(signer: Signer): Promise<string>;
     encodeJwt(): string;
-    verify(verifier: Verifier): Promise<{
+    /**
+     * Verify the JWT using the provided verifier function.
+     * It checks the signature and validates the iat, nbf, and exp claims if they are present.
+     * @param verifier
+     * @param options - Options for verification, such as current date and skew seconds
+     * @returns
+     */
+    verify(verifier: Verifier, options?: VerifierOptions): Promise<{
         payload: Payload | undefined;
         header: Header | undefined;
     }>;
@@ -197,7 +217,14 @@ declare class SDJwtInstance<ExtendedPayload extends SdJwtPayload> {
         };
     }>;
     private calculateSDHash;
-    validate(encodedSDJwt: string): Promise<{
+    /**
+     * This function is for validating the SD JWT
+     * Checking signature, if provided the iat and exp when provided and return its the claims
+     * @param encodedSDJwt
+     * @param options
+     * @returns
+     */
+    validate(encodedSDJwt: string, options?: VerifierOptions): Promise<{
         payload: unknown;
         header: Record<string, unknown> | undefined;
     }>;
@@ -259,4 +286,4 @@ declare class SDJwtGeneralJSONInstance<ExtendedPayload extends SdJwtPayload> {
     getClaims(generalSdjwt: GeneralJSON): Promise<unknown>;
 }
 
-export { FlattenJSON, type FlattenJSONData, type FlattenJSONSerialized, GeneralJSON, type GeneralJSONData, type GeneralJSONSerialized, Jwt, type JwtData, KBJwt, SDJwt, type SDJwtData, SDJwtGeneralJSONInstance, SDJwtInstance, type SdJwtPayload, createDecoy, listKeys, pack };
+export { FlattenJSON, type FlattenJSONData, type FlattenJSONSerialized, GeneralJSON, type GeneralJSONData, type GeneralJSONSerialized, Jwt, type JwtData, KBJwt, SDJwt, type SDJwtData, SDJwtGeneralJSONInstance, SDJwtInstance, type SdJwtPayload, type VerifierOptions, createDecoy, listKeys, pack };

package/dist/index.js

@@ -143,8 +143,27 @@ var Jwt = class _Jwt {
     this.encoded = compact;
     return compact;
   }
-  verify(verifier) {
+  /**
+   * Verify the JWT using the provided verifier function.
+   * It checks the signature and validates the iat, nbf, and exp claims if they are present.
+   * @param verifier
+   * @param options - Options for verification, such as current date and skew seconds
+   * @returns
+   */
+  verify(verifier, options) {
     return __async(this, null, function* () {
+      var _a, _b, _c, _d;
+      const skew = (options == null ? void 0 : options.skewSeconds) ? options.skewSeconds : 0;
+      const currentDate = (_a = options == null ? void 0 : options.currentDate) != null ? _a : Math.floor(Date.now() / 1e3);
+      if (((_b = this.payload) == null ? void 0 : _b.iat) && this.payload.iat - skew > currentDate) {
+        throw new import_utils.SDJWTException("Verify Error: JWT is not yet valid");
+      }
+      if (((_c = this.payload) == null ? void 0 : _c.nbf) && this.payload.nbf - skew > currentDate) {
+        throw new import_utils.SDJWTException("Verify Error: JWT is not yet valid");
+      }
+      if (((_d = this.payload) == null ? void 0 : _d.exp) && this.payload.exp + skew < currentDate) {
+        throw new import_utils.SDJWTException("Verify Error: JWT is expired");
+      }
       if (!this.signature) {
         throw new import_utils.SDJWTException("Verify Error: no signature in JWT");
       }
@@ -655,12 +674,12 @@ var _SDJwtInstance = class _SDJwtInstance {
       return jwt;
     });
   }
-  VerifyJwt(jwt) {
+  VerifyJwt(jwt, options) {
     return __async(this, null, function* () {
       if (!this.userConfig.verifier) {
         throw new import_utils7.SDJWTException("Verifier not found");
       }
-      return jwt.verify(this.userConfig.verifier);
+      return jwt.verify(this.userConfig.verifier, options);
     });
   }
   issue(payload, disclosureFrame, options) {
@@ -804,9 +823,14 @@ var _SDJwtInstance = class _SDJwtInstance {
       return sdHashStr;
     });
   }
-  // This function is for validating the SD JWT
-  // Just checking signature and return its the claims
-  validate(encodedSDJwt) {
+  /**
+   * This function is for validating the SD JWT
+   * Checking signature, if provided the iat and exp when provided and return its the claims
+   * @param encodedSDJwt
+   * @param options
+   * @returns
+   */
+  validate(encodedSDJwt, options) {
     return __async(this, null, function* () {
       if (!this.userConfig.hasher) {
         throw new import_utils7.SDJWTException("Hasher not found");
@@ -816,7 +840,7 @@ var _SDJwtInstance = class _SDJwtInstance {
       if (!sdjwt.jwt) {
         throw new import_utils7.SDJWTException("Invalid SD JWT");
       }
-      const verifiedPayloads = yield this.VerifyJwt(sdjwt.jwt);
+      const verifiedPayloads = yield this.VerifyJwt(sdjwt.jwt, options);
       const claims = yield sdjwt.getClaims(hasher);
       return { payload: claims, header: verifiedPayloads.header };
     });

package/dist/index.mjs

@@ -118,8 +118,27 @@ var Jwt = class _Jwt {
     this.encoded = compact;
     return compact;
   }
-  verify(verifier) {
+  /**
+   * Verify the JWT using the provided verifier function.
+   * It checks the signature and validates the iat, nbf, and exp claims if they are present.
+   * @param verifier
+   * @param options - Options for verification, such as current date and skew seconds
+   * @returns
+   */
+  verify(verifier, options) {
     return __async(this, null, function* () {
+      var _a, _b, _c, _d;
+      const skew = (options == null ? void 0 : options.skewSeconds) ? options.skewSeconds : 0;
+      const currentDate = (_a = options == null ? void 0 : options.currentDate) != null ? _a : Math.floor(Date.now() / 1e3);
+      if (((_b = this.payload) == null ? void 0 : _b.iat) && this.payload.iat - skew > currentDate) {
+        throw new SDJWTException("Verify Error: JWT is not yet valid");
+      }
+      if (((_c = this.payload) == null ? void 0 : _c.nbf) && this.payload.nbf - skew > currentDate) {
+        throw new SDJWTException("Verify Error: JWT is not yet valid");
+      }
+      if (((_d = this.payload) == null ? void 0 : _d.exp) && this.payload.exp + skew < currentDate) {
+        throw new SDJWTException("Verify Error: JWT is expired");
+      }
       if (!this.signature) {
         throw new SDJWTException("Verify Error: no signature in JWT");
       }
@@ -640,12 +659,12 @@ var _SDJwtInstance = class _SDJwtInstance {
       return jwt;
     });
   }
-  VerifyJwt(jwt) {
+  VerifyJwt(jwt, options) {
     return __async(this, null, function* () {
       if (!this.userConfig.verifier) {
         throw new SDJWTException6("Verifier not found");
       }
-      return jwt.verify(this.userConfig.verifier);
+      return jwt.verify(this.userConfig.verifier, options);
     });
   }
   issue(payload, disclosureFrame, options) {
@@ -789,9 +808,14 @@ var _SDJwtInstance = class _SDJwtInstance {
       return sdHashStr;
     });
   }
-  // This function is for validating the SD JWT
-  // Just checking signature and return its the claims
-  validate(encodedSDJwt) {
+  /**
+   * This function is for validating the SD JWT
+   * Checking signature, if provided the iat and exp when provided and return its the claims
+   * @param encodedSDJwt
+   * @param options
+   * @returns
+   */
+  validate(encodedSDJwt, options) {
     return __async(this, null, function* () {
       if (!this.userConfig.hasher) {
         throw new SDJWTException6("Hasher not found");
@@ -801,7 +825,7 @@ var _SDJwtInstance = class _SDJwtInstance {
       if (!sdjwt.jwt) {
         throw new SDJWTException6("Invalid SD JWT");
       }
-      const verifiedPayloads = yield this.VerifyJwt(sdjwt.jwt);
+      const verifiedPayloads = yield this.VerifyJwt(sdjwt.jwt, options);
       const claims = yield sdjwt.getClaims(hasher);
       return { payload: claims, header: verifiedPayloads.header };
     });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sd-jwt/core",
-  "version": "0.12.1-next.0+36e0b22",
+  "version": "0.12.1-next.2+1eefb26",
   "description": "sd-jwt draft 7 implementation in typescript",
   "main": "dist/index.js",
   "module": "dist/index.mjs",
@@ -38,13 +38,13 @@
   },
   "license": "Apache-2.0",
   "devDependencies": {
-    "@sd-jwt/crypto-nodejs": "0.12.1-next.0+36e0b22"
+    "@sd-jwt/crypto-nodejs": "0.12.1-next.2+1eefb26"
   },
   "dependencies": {
-    "@sd-jwt/decode": "0.12.1-next.0+36e0b22",
-    "@sd-jwt/present": "0.12.1-next.0+36e0b22",
-    "@sd-jwt/types": "0.12.1-next.0+36e0b22",
-    "@sd-jwt/utils": "0.12.1-next.0+36e0b22"
+    "@sd-jwt/decode": "0.12.1-next.2+1eefb26",
+    "@sd-jwt/present": "0.12.1-next.2+1eefb26",
+    "@sd-jwt/types": "0.12.1-next.2+1eefb26",
+    "@sd-jwt/utils": "0.12.1-next.2+1eefb26"
   },
   "publishConfig": {
     "access": "public"
@@ -62,5 +62,5 @@
       "esm"
     ]
   },
-  "gitHead": "36e0b22eb619f3ca9ae8522a26617e50c3680526"
+  "gitHead": "1eefb262c40ea23e999cdef6e75222e5b4df1e2c"
 }

package/src/index.ts

@@ -4,7 +4,7 @@ import {
   SDJWTException,
   uint8ArrayToBase64Url,
 } from '@sd-jwt/utils';
-import { Jwt } from './jwt';
+import { Jwt, type VerifierOptions } from './jwt';
 import { KBJwt } from './kbjwt';
 import { SDJwt, pack } from './sdjwt';
 import {
@@ -86,11 +86,11 @@ export class SDJwtInstance<ExtendedPayload extends SdJwtPayload> {
     return jwt;
   }
 
-  private async VerifyJwt(jwt: Jwt) {
+  private async VerifyJwt(jwt: Jwt, options?: VerifierOptions) {
     if (!this.userConfig.verifier) {
       throw new SDJWTException('Verifier not found');
     }
-    return jwt.verify(this.userConfig.verifier);
+    return jwt.verify(this.userConfig.verifier, options);
   }
 
   public async issue<Payload extends ExtendedPayload>(
@@ -273,9 +273,14 @@ export class SDJwtInstance<ExtendedPayload extends SdJwtPayload> {
     return sdHashStr;
   }
 
-  // This function is for validating the SD JWT
-  // Just checking signature and return its the claims
-  public async validate(encodedSDJwt: string) {
+  /**
+   * This function is for validating the SD JWT
+   * Checking signature, if provided the iat and exp when provided and return its the claims
+   * @param encodedSDJwt
+   * @param options
+   * @returns
+   */
+  public async validate(encodedSDJwt: string, options?: VerifierOptions) {
     if (!this.userConfig.hasher) {
       throw new SDJWTException('Hasher not found');
     }
@@ -286,7 +291,7 @@ export class SDJwtInstance<ExtendedPayload extends SdJwtPayload> {
       throw new SDJWTException('Invalid SD JWT');
     }
 
-    const verifiedPayloads = await this.VerifyJwt(sdjwt.jwt);
+    const verifiedPayloads = await this.VerifyJwt(sdjwt.jwt, options);
     const claims = await sdjwt.getClaims(hasher);
     return { payload: claims, header: verifiedPayloads.header };
   }

package/src/jwt.ts

@@ -12,6 +12,21 @@ export type JwtData<
   encoded?: string;
 };
 
+/**
+ * Options for the JWT verifier
+ */
+export type VerifierOptions = {
+  /**
+   * current time in seconds since epoch
+   */
+  currentDate?: number;
+
+  /**
+   * allowed skew for the current time in seconds. Positive value that will lower the iat and nbf checks, and increase the exp check.
+   */
+  skewSeconds?: number;
+};
+
 // This class is used to create and verify JWT
 // Contains header, payload, and signature
 export class Jwt<
@@ -113,7 +128,36 @@ export class Jwt<
     return compact;
   }
 
-  public async verify(verifier: Verifier) {
+  /**
+   * Verify the JWT using the provided verifier function.
+   * It checks the signature and validates the iat, nbf, and exp claims if they are present.
+   * @param verifier
+   * @param options - Options for verification, such as current date and skew seconds
+   * @returns
+   */
+  public async verify(verifier: Verifier, options?: VerifierOptions) {
+    const skew = options?.skewSeconds ? options.skewSeconds : 0;
+    const currentDate = options?.currentDate ?? Math.floor(Date.now() / 1000);
+    if (
+      this.payload?.iat &&
+      (this.payload.iat as number) - skew > currentDate
+    ) {
+      throw new SDJWTException('Verify Error: JWT is not yet valid');
+    }
+
+    if (
+      this.payload?.nbf &&
+      (this.payload.nbf as number) - skew > currentDate
+    ) {
+      throw new SDJWTException('Verify Error: JWT is not yet valid');
+    }
+    if (
+      this.payload?.exp &&
+      (this.payload.exp as number) + skew < currentDate
+    ) {
+      throw new SDJWTException('Verify Error: JWT is expired');
+    }
+
     if (!this.signature) {
       throw new SDJWTException('Verify Error: no signature in JWT');
     }

package/src/test/index.spec.ts

@@ -49,7 +49,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -89,7 +89,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -124,7 +124,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -165,7 +165,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -239,7 +239,7 @@ describe('index', () => {
     const credential = await sdjwt.issue(
       {
         foo: 'bar',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         cnf: {
           jwk: await exportJWK(publicKey),
         },
@@ -274,7 +274,7 @@ describe('index', () => {
         {
           foo: 'bar',
           iss: 'Issuer',
-          iat: new Date().getTime(),
+          iat: Math.floor(Date.now() / 1000),
           vct: '',
         },
         {
@@ -297,7 +297,7 @@ describe('index', () => {
         {
           foo: 'bar',
           iss: 'Issuer',
-          iat: new Date().getTime(),
+          iat: Math.floor(Date.now() / 1000),
           vct: '',
         },
         {
@@ -321,7 +321,7 @@ describe('index', () => {
         {
           foo: 'bar',
           iss: 'Issuer',
-          iat: new Date().getTime(),
+          iat: Math.floor(Date.now() / 1000),
           vct: '',
         },
         {
@@ -351,7 +351,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -395,7 +395,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -437,7 +437,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -480,7 +480,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -518,7 +518,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -547,7 +547,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {
@@ -573,7 +573,7 @@ describe('index', () => {
       {
         foo: 'bar',
         iss: 'Issuer',
-        iat: new Date().getTime(),
+        iat: Math.floor(Date.now() / 1000),
         vct: '',
       },
       {

package/src/test/jwt.spec.ts

@@ -199,4 +199,109 @@ describe('JWT', () => {
       expect(e).toBeInstanceOf(SDJWTException);
     }
   });
+
+  test('verify with issuance date in the future', async () => {
+    const { privateKey, publicKey } = Crypto.generateKeyPairSync('ed25519');
+    const testVerifier: Verifier = async (data: string, sig: string) => {
+      return Crypto.verify(
+        null,
+        Buffer.from(data),
+        publicKey,
+        Buffer.from(sig, 'base64url'),
+      );
+    };
+
+    const jwt = new Jwt({
+      header: { alg: 'EdDSA' },
+      payload: { iat: Math.floor(Date.now() / 1000) + 100 },
+    });
+
+    try {
+      await jwt.verify(testVerifier);
+    } catch (e: unknown) {
+      expect(e).toBeInstanceOf(SDJWTException);
+      expect((e as SDJWTException).message).toBe(
+        'Verify Error: JWT is not yet valid',
+      );
+    }
+  });
+
+  test('verify with not before in the future', async () => {
+    const { privateKey, publicKey } = Crypto.generateKeyPairSync('ed25519');
+    const testVerifier: Verifier = async (data: string, sig: string) => {
+      return Crypto.verify(
+        null,
+        Buffer.from(data),
+        publicKey,
+        Buffer.from(sig, 'base64url'),
+      );
+    };
+
+    const jwt = new Jwt({
+      header: { alg: 'EdDSA' },
+      payload: { nbf: Math.floor(Date.now() / 1000) + 100 },
+    });
+
+    try {
+      await jwt.verify(testVerifier);
+    } catch (e: unknown) {
+      expect(e).toBeInstanceOf(SDJWTException);
+      expect((e as SDJWTException).message).toBe(
+        'Verify Error: JWT is not yet valid',
+      );
+    }
+  });
+
+  test('verify with expired', async () => {
+    const { privateKey, publicKey } = Crypto.generateKeyPairSync('ed25519');
+    const testVerifier: Verifier = async (data: string, sig: string) => {
+      return Crypto.verify(
+        null,
+        Buffer.from(data),
+        publicKey,
+        Buffer.from(sig, 'base64url'),
+      );
+    };
+
+    const jwt = new Jwt({
+      header: { alg: 'EdDSA' },
+      payload: { exp: Math.floor(Date.now() / 1000) },
+    });
+
+    try {
+      await jwt.verify(testVerifier, {
+        currentDate: Math.floor(Date.now() / 1000) + 100,
+      });
+    } catch (e: unknown) {
+      expect(e).toBeInstanceOf(SDJWTException);
+      expect((e as SDJWTException).message).toBe(
+        'Verify Error: JWT is expired',
+      );
+    }
+  });
+
+  test('verify with skew', async () => {
+    const { privateKey, publicKey } = Crypto.generateKeyPairSync('ed25519');
+    const testVerifier: Verifier = async (data: string, sig: string) => {
+      return Crypto.verify(
+        null,
+        Buffer.from(data),
+        publicKey,
+        Buffer.from(sig, 'base64url'),
+      );
+    };
+
+    const jwt = new Jwt({
+      header: { alg: 'EdDSA' },
+      payload: { exp: Math.floor(Date.now() / 1000) - 1 },
+    });
+
+    const testSigner: Signer = async (data: string) => {
+      const sig = Crypto.sign(null, Buffer.from(data), privateKey);
+      return Buffer.from(sig).toString('base64url');
+    };
+
+    await jwt.sign(testSigner);
+    await jwt.verify(testVerifier, { skewSeconds: 2 });
+  });
 });

package/test/app-e2e.spec.ts

@@ -224,7 +224,7 @@ async function JSONtest(filename: string) {
     payload: test.claims,
   });
 
-  const presentedSDJwt = await sdjwt.present<typeof claims>(
+  const presentedSDJwt = await sdjwt.present<typeof test.claims>(
     encodedSdjwt,
     test.presentationFrames,
   );