@sd-jwt/sd-jwt-vc 0.8.1-next.1 → 0.8.1-next.2

package/README.md

@@ -103,7 +103,7 @@ const sdjwt = new SDJwtVcInstance({
 });
 ```
 
-The library will load load the type metadata format based on the `vct` value according to the [SD-JWT-VC specification](https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-04.html#name-type-metadata) and validate this schema.
+The library will load load the type metadata format based on the `vct` value according to the [SD-JWT-VC specification](https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-08.html#name-sd-jwt-vc-type-metadata) and validate this schema.
 
 Since at this point the display is not yet implemented, the library will only validate the schema and return the type metadata format. In the future the values of the type metadata can be fetched via a function call.
 

package/dist/index.d.mts

@@ -2,7 +2,7 @@ import { SDJWTConfig, kbPayload, kbHeader, DisclosureFrame } from '@sd-jwt/types
 import { SdJwtPayload, SDJwtInstance } from '@sd-jwt/core';
 
 /**
- * https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-04.html#name-type-metadata-format
+ * https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-08.html#name-type-metadata-format
  */
 type TypeMetadataFormat = {
     vct: string;
@@ -86,12 +86,6 @@ declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
      * Verifies the SD-JWT-VC. It will validate the signature, the keybindings when required, the status, and the VCT.
      */
     verify(encodedSDJwt: string, requiredClaimKeys?: string[], requireKeyBindings?: boolean): Promise<VerificationResult>;
-    /**
-     * Default function to fetch the VCT from the uri. We assume that the vct is a URL that is used to fetch the VCT.
-     * @param uri
-     * @returns
-     */
-    private vctFetcher;
     /**
      * Validates the integrity of the response if the integrity is passed. If the integrity does not match, an error is thrown.
      * @param integrity

package/dist/index.d.ts

@@ -2,7 +2,7 @@ import { SDJWTConfig, kbPayload, kbHeader, DisclosureFrame } from '@sd-jwt/types
 import { SdJwtPayload, SDJwtInstance } from '@sd-jwt/core';
 
 /**
- * https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-04.html#name-type-metadata-format
+ * https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-08.html#name-type-metadata-format
  */
 type TypeMetadataFormat = {
     vct: string;
@@ -86,12 +86,6 @@ declare class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
      * Verifies the SD-JWT-VC. It will validate the signature, the keybindings when required, the status, and the VCT.
      */
     verify(encodedSDJwt: string, requiredClaimKeys?: string[], requireKeyBindings?: boolean): Promise<VerificationResult>;
-    /**
-     * Default function to fetch the VCT from the uri. We assume that the vct is a URL that is used to fetch the VCT.
-     * @param uri
-     * @returns
-     */
-    private vctFetcher;
     /**
      * Validates the integrity of the response if the integrity is passed. If the integrity does not match, an error is thrown.
      * @param integrity

package/dist/index.js

@@ -147,19 +147,6 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
       return result;
     });
   }
-  /**
-   * Default function to fetch the VCT from the uri. We assume that the vct is a URL that is used to fetch the VCT.
-   * @param uri
-   * @returns
-   */
-  vctFetcher(uri, integrity) {
-    return __async(this, null, function* () {
-      const elements = uri.split("/");
-      elements.splice(3, 0, ".well-known/vct");
-      const url = elements.join("/");
-      return this.fetch(url, integrity);
-    });
-  }
   /**
    * Validates the integrity of the response if the integrity is passed. If the integrity does not match, an error is thrown.
    * @param integrity
@@ -234,7 +221,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends import_core.SDJwtInstance {
   verifyVct(result) {
     return __async(this, null, function* () {
       var _a;
-      const fetcher = (_a = this.userConfig.vctFetcher) != null ? _a : this.vctFetcher.bind(this);
+      const fetcher = (_a = this.userConfig.vctFetcher) != null ? _a : (uri, integrity) => this.fetch(uri, integrity);
       const typeMetadataFormat = yield fetcher(
         result.payload.vct,
         result.payload["vct#Integrity"]

package/dist/index.mjs

@@ -115,19 +115,6 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends SDJwtInstance {
       return result;
     });
   }
-  /**
-   * Default function to fetch the VCT from the uri. We assume that the vct is a URL that is used to fetch the VCT.
-   * @param uri
-   * @returns
-   */
-  vctFetcher(uri, integrity) {
-    return __async(this, null, function* () {
-      const elements = uri.split("/");
-      elements.splice(3, 0, ".well-known/vct");
-      const url = elements.join("/");
-      return this.fetch(url, integrity);
-    });
-  }
   /**
    * Validates the integrity of the response if the integrity is passed. If the integrity does not match, an error is thrown.
    * @param integrity
@@ -202,7 +189,7 @@ var SDJwtVcInstance = class _SDJwtVcInstance extends SDJwtInstance {
   verifyVct(result) {
     return __async(this, null, function* () {
       var _a;
-      const fetcher = (_a = this.userConfig.vctFetcher) != null ? _a : this.vctFetcher.bind(this);
+      const fetcher = (_a = this.userConfig.vctFetcher) != null ? _a : (uri, integrity) => this.fetch(uri, integrity);
       const typeMetadataFormat = yield fetcher(
         result.payload.vct,
         result.payload["vct#Integrity"]

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sd-jwt/sd-jwt-vc",
-  "version": "0.8.1-next.1+1562d38",
+  "version": "0.8.1-next.2+2358c75",
   "description": "sd-jwt draft 7 implementation in typescript",
   "main": "dist/index.js",
   "module": "dist/index.mjs",
@@ -39,15 +39,15 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@sd-jwt/core": "0.8.1-next.1+1562d38",
-    "@sd-jwt/jwt-status-list": "0.8.1-next.1+1562d38",
-    "@sd-jwt/utils": "0.8.1-next.1+1562d38",
+    "@sd-jwt/core": "0.8.1-next.2+2358c75",
+    "@sd-jwt/jwt-status-list": "0.8.1-next.2+2358c75",
+    "@sd-jwt/utils": "0.8.1-next.2+2358c75",
     "ajv": "^8.17.1",
     "ajv-formats": "^3.0.1"
   },
   "devDependencies": {
-    "@sd-jwt/crypto-nodejs": "0.8.1-next.1+1562d38",
-    "@sd-jwt/types": "0.8.1-next.1+1562d38",
+    "@sd-jwt/crypto-nodejs": "0.8.1-next.2+2358c75",
+    "@sd-jwt/types": "0.8.1-next.2+2358c75",
     "jose": "^5.2.2",
     "msw": "^2.3.5"
   },
@@ -67,5 +67,5 @@
       "esm"
     ]
   },
-  "gitHead": "1562d383b9a9b60ec8e175a8a4f2751975859ad3"
+  "gitHead": "2358c759887ee29b4c35a3ee0e93ebd8e8c26545"
 }

package/src/sd-jwt-vc-instance.ts

@@ -40,7 +40,7 @@ export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
   protected validateReservedFields(
     disclosureFrame: DisclosureFrame<SdJwtVcPayload>,
   ): void {
-    //validate disclosureFrame according to https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-03.html#section-3.2.2.2
+    //validate disclosureFrame according to https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-08.html#section-3.2.2.2
     if (
       disclosureFrame?._sd &&
       Array.isArray(disclosureFrame._sd) &&
@@ -130,23 +130,6 @@ export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     return result;
   }
 
-  /**
-   * Default function to fetch the VCT from the uri. We assume that the vct is a URL that is used to fetch the VCT.
-   * @param uri
-   * @returns
-   */
-  private async vctFetcher(
-    uri: string,
-    integrity?: string,
-  ): Promise<TypeMetadataFormat> {
-    // modify the uri based on https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-04.html#section-6.3.1
-    const elements = uri.split('/');
-    //insert a new element on the thrid position, but not replace it
-    elements.splice(3, 0, '.well-known/vct');
-    const url = elements.join('/');
-    return this.fetch<TypeMetadataFormat>(url, integrity);
-  }
-
   /**
    * Validates the integrity of the response if the integrity is passed. If the integrity does not match, an error is thrown.
    * @param integrity
@@ -227,14 +210,15 @@ export class SDJwtVcInstance extends SDJwtInstance<SdJwtVcPayload> {
     result: VerificationResult,
   ): Promise<TypeMetadataFormat | undefined> {
     const fetcher: VcTFetcher =
-      this.userConfig.vctFetcher ?? this.vctFetcher.bind(this);
+      this.userConfig.vctFetcher ??
+      ((uri, integrity) => this.fetch(uri, integrity));
     const typeMetadataFormat = await fetcher(
       result.payload.vct,
       result.payload['vct#Integrity'],
     );
 
     if (typeMetadataFormat.extends) {
-      // implement based on https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-04.html#name-extending-type-metadata
+      // implement based on https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-08.html#name-extending-type-metadata
       //TODO: needs to be implemented. Unclear at this point which values will overwrite the values from the extended type metadata format
     }
 

package/src/sd-jwt-vc-type-metadata-format.ts

@@ -1,5 +1,5 @@
 /**
- * https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-04.html#name-type-metadata-format
+ * https://www.ietf.org/archive/id/draft-ietf-oauth-sd-jwt-vc-08.html#name-type-metadata-format
  */
 export type TypeMetadataFormat = {
   vct: string; // REQUIRED. A URI that uniquely identifies the type. This URI MUST be dereferenceable to a JSON document that describes the type.

package/src/test/vct.spec.ts

@@ -41,7 +41,7 @@ const restHandlers = [
     };
     return HttpResponse.json(res);
   }),
-  http.get('http://exmaple.com/.well-known/vct/example', () => {
+  http.get('http://exmaple.com/example', () => {
     const res: TypeMetadataFormat = {
       vct: 'http://example.com/example',
       name: 'ExampleCredentialType',