@sd-jwt/sd-jwt-vc 0.17.2-next.0 → 0.17.2-next.2

package/dist/index.d.mts

@@ -126,7 +126,7 @@ type TypeMetadataFormat = {
     /** OPTIONAL. URI of another type that this one extends. */
     extends?: string;
     /** OPTIONAL. Integrity metadata for the 'extends' field. */
-    'extends#Integrity'?: string;
+    'extends#integrity'?: string;
     /** OPTIONAL. Array of localized display metadata for the type. */
     display?: Display[];
     /** OPTIONAL. Array of claim metadata. */
@@ -162,7 +162,7 @@ interface SdJwtVcPayload extends SdJwtPayload {
     exp?: number;
     cnf?: unknown;
     vct: string;
-    'vct#Integrity'?: string;
+    'vct#integrity'?: string;
     status?: SDJWTVCStatusReference;
     sub?: string;
     iat?: number;
@@ -209,6 +209,9 @@ declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     verify(encodedSDJwt: string, options?: VerifierOptions): Promise<VerificationResult>;
     /**
      * Gets VCT Metadata of the raw SD-JWT-VC. Returns the type metadata format. If the SD-JWT-VC is invalid or does not contain a vct claim, an error is thrown.
+     *
+     * It may return `undefined` if the fetcher returned an undefined value (instead of throwing an error).
+     *
      * @param encodedSDJwt
      * @returns
      */

package/dist/index.d.ts

@@ -126,7 +126,7 @@ type TypeMetadataFormat = {
     /** OPTIONAL. URI of another type that this one extends. */
     extends?: string;
     /** OPTIONAL. Integrity metadata for the 'extends' field. */
-    'extends#Integrity'?: string;
+    'extends#integrity'?: string;
     /** OPTIONAL. Array of localized display metadata for the type. */
     display?: Display[];
     /** OPTIONAL. Array of claim metadata. */
@@ -162,7 +162,7 @@ interface SdJwtVcPayload extends SdJwtPayload {
     exp?: number;
     cnf?: unknown;
     vct: string;
-    'vct#Integrity'?: string;
+    'vct#integrity'?: string;
     status?: SDJWTVCStatusReference;
     sub?: string;
     iat?: number;
@@ -209,6 +209,9 @@ declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     verify(encodedSDJwt: string, options?: VerifierOptions): Promise<VerificationResult>;
     /**
      * Gets VCT Metadata of the raw SD-JWT-VC. Returns the type metadata format. If the SD-JWT-VC is invalid or does not contain a vct claim, an error is thrown.
+     *
+     * It may return `undefined` if the fetcher returned an undefined value (instead of throwing an error).
+     *
      * @param encodedSDJwt
      * @returns
      */

package/dist/index.js

@@ -138,6 +138,9 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
   }
   /**
    * Gets VCT Metadata of the raw SD-JWT-VC. Returns the type metadata format. If the SD-JWT-VC is invalid or does not contain a vct claim, an error is thrown.
+   *
+   * It may return `undefined` if the fetcher returned an undefined value (instead of throwing an error).
+   *
    * @param encodedSDJwt
    * @returns
    */
@@ -235,7 +238,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
         return this.fetchVctFromHeader(result.payload.vct, result);
       }
       const fetcher = (_b = this.userConfig.vctFetcher) != null ? _b : ((uri, integrity) => this.fetch(uri, integrity));
-      return fetcher(result.payload.vct, result.payload["vct#Integrity"]);
+      return fetcher(result.payload.vct, result.payload["vct#integrity"]);
     });
   }
   /**

package/dist/index.mjs

@@ -116,6 +116,9 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends SDJwtInstance {
   }
   /**
    * Gets VCT Metadata of the raw SD-JWT-VC. Returns the type metadata format. If the SD-JWT-VC is invalid or does not contain a vct claim, an error is thrown.
+   *
+   * It may return `undefined` if the fetcher returned an undefined value (instead of throwing an error).
+   *
    * @param encodedSDJwt
    * @returns
    */
@@ -213,7 +216,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends SDJwtInstance {
         return this.fetchVctFromHeader(result.payload.vct, result);
       }
       const fetcher = (_b = this.userConfig.vctFetcher) != null ? _b : ((uri, integrity) => this.fetch(uri, integrity));
-      return fetcher(result.payload.vct, result.payload["vct#Integrity"]);
+      return fetcher(result.payload.vct, result.payload["vct#integrity"]);
     });
   }
   /**

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sd-jwt/sd-jwt-vc",
-  "version": "0.17.2-next.0+1301a03",
+  "version": "0.17.2-next.2+4a4c1b0",
   "description": "sd-jwt draft 7 implementation in typescript",
   "main": "dist/index.js",
   "module": "dist/index.mjs",
@@ -38,15 +38,15 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@sd-jwt/core": "0.17.2-next.0+1301a03",
-    "@sd-jwt/jwt-status-list": "0.17.2-next.0+1301a03",
-    "@sd-jwt/utils": "0.17.2-next.0+1301a03"
+    "@sd-jwt/core": "0.17.2-next.2+4a4c1b0",
+    "@sd-jwt/jwt-status-list": "0.17.2-next.2+4a4c1b0",
+    "@sd-jwt/utils": "0.17.2-next.2+4a4c1b0"
   },
   "devDependencies": {
-    "@sd-jwt/crypto-nodejs": "0.17.2-next.0+1301a03",
-    "@sd-jwt/types": "0.17.2-next.0+1301a03",
-    "jose": "^6.1.0",
-    "msw": "^2.11.3"
+    "@sd-jwt/crypto-nodejs": "0.17.2-next.2+4a4c1b0",
+    "@sd-jwt/types": "0.17.2-next.2+4a4c1b0",
+    "jose": "^6.1.2",
+    "msw": "^2.12.3"
   },
   "publishConfig": {
     "access": "public"
@@ -64,5 +64,5 @@
       "esm"
     ]
   },
-  "gitHead": "1301a03484b285711d7afd7448457348bad96569"
+  "gitHead": "4a4c1b0c04615bcf0e455d51cd1b9234cbcd0d78"
 }

package/src/sd-jwt-vc-instance.ts

@@ -128,6 +128,9 @@ export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
 
   /**
    * Gets VCT Metadata of the raw SD-JWT-VC. Returns the type metadata format. If the SD-JWT-VC is invalid or does not contain a vct claim, an error is thrown.
+   *
+   * It may return `undefined` if the fetcher returned an undefined value (instead of throwing an error).
+   *
    * @param encodedSDJwt
    * @returns
    */
@@ -222,6 +225,7 @@ export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
       // implement based on https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-08.html#name-extending-type-metadata
       //TODO: needs to be implemented. Unclear at this point which values will overwrite the values from the extended type metadata format
     }
+
     return typeMetadataFormat;
   }
 
@@ -244,7 +248,7 @@ export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     const fetcher: VcTFetcher =
       this.userConfig.vctFetcher ??
       ((uri, integrity) => this.fetch(uri, integrity));
-    return fetcher(result.payload.vct, result.payload['vct#Integrity']);
+    return fetcher(result.payload.vct, result.payload['vct#integrity']);
   }
 
   /**

package/src/sd-jwt-vc-payload.ts

@@ -13,7 +13,7 @@ export interface SdJwtVcPayload extends SdJwtPayload {
   // REQUIRED. The type of the Verifiable Credential, e.g., https://credentials.example.com/identity_credential, as defined in Section 3.2.2.1.1.
   vct: string;
   // OPTIONAL. If passed, the loaded type metadata format has to be validated according to https://www.w3.org/TR/SRI/
-  'vct#Integrity'?: string;
+  'vct#integrity'?: string;
   // OPTIONAL. The information on how to read the status of the Verifiable Credential. See [https://www.ietf.org/archive/id/draft-ietf-oauth-status-list-02.html] for more information.
   status?: SDJWTVCStatusReference;
   // OPTIONAL. The identifier of the Subject of the Verifiable Credential. The Issuer MAY use it to provide the Subject identifier known by the Issuer. There is no requirement for a binding to exist between sub and cnf claims.

package/src/sd-jwt-vc-type-metadata-format.ts

@@ -136,7 +136,7 @@ export type TypeMetadataFormat = {
   /** OPTIONAL. URI of another type that this one extends. */
   extends?: string;
   /** OPTIONAL. Integrity metadata for the 'extends' field. */
-  'extends#Integrity'?: string;
+  'extends#integrity'?: string;
   /** OPTIONAL. Array of localized display metadata for the type. */
   display?: Display[];
   /** OPTIONAL. Array of claim metadata. */

package/src/test/vct.spec.ts

@@ -4,7 +4,7 @@ import { digest, generateSalt } from '@sd-jwt/crypto-nodejs';
 import type { DisclosureFrame, Signer, Verifier } from '@sd-jwt/types';
 import { HttpResponse, http } from 'msw';
 import { setupServer } from 'msw/node';
-import { afterAll, beforeAll, describe, expect, test } from 'vitest';
+import { afterAll, beforeAll, describe, expect, test, vitest } from 'vitest';
 import { SDJwtVcInstance } from '..';
 import type { SdJwtVcPayload } from '../sd-jwt-vc-payload';
 import type { TypeMetadataFormat } from '../sd-jwt-vc-type-metadata-format';
@@ -85,19 +85,31 @@ describe('App', () => {
   afterEach(() => server.resetHandlers());
 
   test('VCT Validation', async () => {
+    // The method is private, so TS complains, but you can use spies on private method just fine.
+    // @ts-expect-error
+    const validateIntegritySpy = vitest.spyOn(sdjwt, 'validateIntegrity');
+
     const expectedPayload: SdJwtVcPayload = {
       iat,
       iss,
       vct,
-      'vct#Integrity': vctIntegrity,
+      'vct#integrity': vctIntegrity,
       ...claims,
     };
+
     const encodedSdjwt = await sdjwt.issue(
       expectedPayload,
       disclosureFrame as unknown as DisclosureFrame<SdJwtVcPayload>,
     );
 
     await sdjwt.verify(encodedSdjwt);
+
+    // Ensure validateIntegrity method was called
+    expect(validateIntegritySpy).toHaveBeenCalledWith(
+      expect.any(Response),
+      vct,
+      vctIntegrity,
+    );
   });
 
   test('VCT from JWT header Validation', async () => {
@@ -133,7 +145,7 @@ describe('App', () => {
       disclosureFrame as unknown as DisclosureFrame<SdJwtVcPayload>,
     );
 
-    expect(sdjwt.verify(encodedSdjwt)).rejects.toThrowError(
+    await expect(sdjwt.verify(encodedSdjwt)).rejects.toThrowError(
       `Request to ${vct} timed out`,
     );
   });