@sphereon/jarm 0.17.0 → 0.17.1-feature.esm.cjs.24

package/dist/metadata/index.d.ts

@@ -1,4 +0,0 @@
-export * from './v-jarm-client-metadata.js';
-export * from './v-jarm-server-metadata.js';
-export * from './jarm-validate-metadata.js';
-//# sourceMappingURL=index.d.ts.map

package/dist/metadata/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../lib/metadata/index.ts"],"names":[],"mappings":"AAAA,cAAc,6BAA6B,CAAC;AAC5C,cAAc,6BAA6B,CAAC;AAC5C,cAAc,6BAA6B,CAAC"}

package/dist/metadata/index.js

@@ -1,20 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./v-jarm-client-metadata.js"), exports);
-__exportStar(require("./v-jarm-server-metadata.js"), exports);
-__exportStar(require("./jarm-validate-metadata.js"), exports);
-//# sourceMappingURL=index.js.map

package/dist/metadata/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../lib/metadata/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,8DAA4C;AAC5C,8DAA4C;AAC5C,8DAA4C"}

package/dist/metadata/jarm-validate-metadata.d.ts

@@ -1,74 +0,0 @@
-import * as v from 'valibot';
-export declare const vJarmAuthResponseValidateMetadataInput: v.ObjectSchema<{
-    readonly client_metadata: v.UnionSchema<[v.ObjectSchema<{
-        readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-        readonly authorization_encrypted_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-        readonly authorization_encrypted_response_enc: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-    }, undefined>, v.ObjectSchema<{
-        readonly authorization_signed_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-        readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-        readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    }, undefined>, v.ObjectSchema<{
-        readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-        readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-        readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-    }, undefined>], undefined>;
-    readonly server_metadata: Omit<v.ObjectSchema<{
-        readonly authorization_signing_alg_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWS [RFC7515] signing algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to sign the response.">]>;
-        readonly authorization_encryption_alg_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>;
-        readonly authorization_encryption_enc_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (enc values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>;
-    }, undefined>, "_types" | "_run" | "entries"> & {
-        readonly entries: {
-            readonly authorization_signing_alg_values_supported: v.OptionalSchema<v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWS [RFC7515] signing algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to sign the response.">]>, never>;
-            readonly authorization_encryption_alg_values_supported: v.OptionalSchema<v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>, never>;
-            readonly authorization_encryption_enc_values_supported: v.OptionalSchema<v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (enc values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>, never>;
-        };
-        readonly _run: (dataset: v.Dataset<unknown, never>, config: v.Config<v.BaseIssue<unknown>>) => v.Dataset<v.InferObjectOutput<{
-            readonly authorization_signing_alg_values_supported: v.OptionalSchema<v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWS [RFC7515] signing algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to sign the response.">]>, never>;
-            readonly authorization_encryption_alg_values_supported: v.OptionalSchema<v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>, never>;
-            readonly authorization_encryption_enc_values_supported: v.OptionalSchema<v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (enc values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>, never>;
-        }>, v.InferIssue<v.ObjectSchema<{
-            readonly authorization_signing_alg_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWS [RFC7515] signing algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to sign the response.">]>;
-            readonly authorization_encryption_alg_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>;
-            readonly authorization_encryption_enc_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (enc values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>;
-        }, undefined>>>;
-        readonly _types?: {
-            readonly input: {
-                authorization_signing_alg_values_supported?: string[] | undefined;
-                authorization_encryption_alg_values_supported?: string[] | undefined;
-                authorization_encryption_enc_values_supported?: string[] | undefined;
-            };
-            readonly output: {
-                authorization_signing_alg_values_supported?: string[] | undefined;
-                authorization_encryption_alg_values_supported?: string[] | undefined;
-                authorization_encryption_enc_values_supported?: string[] | undefined;
-            };
-            readonly issue: v.StringIssue | v.ObjectIssue | v.ArrayIssue;
-        } | undefined;
-    };
-}, undefined>;
-export type JarmMetadataValidate = v.InferInput<typeof vJarmAuthResponseValidateMetadataInput>;
-export declare const vJarmMetadataValidateOut: v.VariantSchema<"type", [v.ObjectSchema<{
-    readonly type: v.LiteralSchema<"signed", undefined>;
-    readonly client_metadata: v.ObjectSchema<{
-        readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-        readonly authorization_encrypted_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-        readonly authorization_encrypted_response_enc: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-    }, undefined>;
-}, undefined>, v.ObjectSchema<{
-    readonly type: v.LiteralSchema<"encrypted", undefined>;
-    readonly client_metadata: v.ObjectSchema<{
-        readonly authorization_signed_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-        readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-        readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    }, undefined>;
-}, undefined>, v.ObjectSchema<{
-    readonly type: v.LiteralSchema<"signed encrypted", undefined>;
-    readonly client_metadata: v.ObjectSchema<{
-        readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-        readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-        readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-    }, undefined>;
-}, undefined>], undefined>;
-export declare const jarmMetadataValidate: (vJarmMetadataValidate: JarmMetadataValidate) => v.InferOutput<typeof vJarmMetadataValidateOut>;
-//# sourceMappingURL=jarm-validate-metadata.d.ts.map

package/dist/metadata/jarm-validate-metadata.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"jarm-validate-metadata.d.ts","sourceRoot":"","sources":["../../lib/metadata/jarm-validate-metadata.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,SAAS,CAAC;AAW7B,eAAO,MAAM,sCAAsC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;aAGjD,CAAC;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,sCAAsC,CAAC,CAAC;AAE/F,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;;;;;;;;;0BAanC,CAAC;AAEH,eAAO,MAAM,oBAAoB,0BAA2B,oBAAoB,KAAG,CAAC,CAAC,WAAW,CAAC,OAAO,wBAAwB,CA+C/H,CAAC"}

package/dist/metadata/jarm-validate-metadata.js

@@ -1,98 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.jarmMetadataValidate = exports.vJarmMetadataValidateOut = exports.vJarmAuthResponseValidateMetadataInput = void 0;
-const v = __importStar(require("valibot"));
-const v_jarm_client_metadata_js_1 = require("../metadata/v-jarm-client-metadata.js");
-const v_jarm_server_metadata_js_1 = require("../metadata/v-jarm-server-metadata.js");
-const utils_js_1 = require("../utils.js");
-exports.vJarmAuthResponseValidateMetadataInput = v.object({
-    client_metadata: v_jarm_client_metadata_js_1.vJarmClientMetadata,
-    server_metadata: v.partial(v_jarm_server_metadata_js_1.vJarmServerMetadata),
-});
-exports.vJarmMetadataValidateOut = v.variant('type', [
-    v.object({
-        type: v.literal('signed'),
-        client_metadata: v_jarm_client_metadata_js_1.vJarmClientMetadataSign,
-    }),
-    v.object({
-        type: v.literal('encrypted'),
-        client_metadata: v_jarm_client_metadata_js_1.vJarmClientMetadataEncrypt,
-    }),
-    v.object({
-        type: v.literal('signed encrypted'),
-        client_metadata: v_jarm_client_metadata_js_1.vJarmClientMetadataSignEncrypt,
-    }),
-]);
-const jarmMetadataValidate = (vJarmMetadataValidate) => {
-    var _a, _b, _c;
-    const { client_metadata, server_metadata } = vJarmMetadataValidate;
-    const { authorization_encrypted_response_alg, authorization_encrypted_response_enc, authorization_signed_response_alg } = client_metadata;
-    (0, utils_js_1.assertValueSupported)({
-        supported: (_a = server_metadata.authorization_signing_alg_values_supported) !== null && _a !== void 0 ? _a : [],
-        actual: authorization_signed_response_alg,
-        required: !!authorization_signed_response_alg,
-        error: new Error('Invalid authorization_signed_response_alg'),
-    });
-    (0, utils_js_1.assertValueSupported)({
-        supported: (_b = server_metadata.authorization_encryption_alg_values_supported) !== null && _b !== void 0 ? _b : [],
-        actual: authorization_encrypted_response_alg,
-        required: !!authorization_encrypted_response_alg,
-        error: new Error('Invalid authorization_encrypted_response_alg'),
-    });
-    (0, utils_js_1.assertValueSupported)({
-        supported: (_c = server_metadata.authorization_encryption_enc_values_supported) !== null && _c !== void 0 ? _c : [],
-        actual: authorization_encrypted_response_enc,
-        required: !!authorization_encrypted_response_enc,
-        error: new Error('Invalid authorization_encrypted_response_enc'),
-    });
-    if (authorization_signed_response_alg && authorization_encrypted_response_alg && authorization_encrypted_response_enc) {
-        return {
-            type: 'signed encrypted',
-            client_metadata: {
-                authorization_signed_response_alg,
-                authorization_encrypted_response_alg,
-                authorization_encrypted_response_enc,
-            },
-        };
-    }
-    else if (authorization_signed_response_alg && !authorization_encrypted_response_alg && !authorization_encrypted_response_enc) {
-        return {
-            type: 'signed',
-            client_metadata: { authorization_signed_response_alg },
-        };
-    }
-    else if (!authorization_signed_response_alg && authorization_encrypted_response_alg && authorization_encrypted_response_enc) {
-        return {
-            type: 'encrypted',
-            client_metadata: { authorization_encrypted_response_alg, authorization_encrypted_response_enc },
-        };
-    }
-    else {
-        throw new Error(`Invalid jarm client_metadata combination`);
-    }
-};
-exports.jarmMetadataValidate = jarmMetadataValidate;
-//# sourceMappingURL=jarm-validate-metadata.js.map

package/dist/metadata/jarm-validate-metadata.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"jarm-validate-metadata.js","sourceRoot":"","sources":["../../lib/metadata/jarm-validate-metadata.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAA6B;AAE7B,qFAK+C;AAC/C,qFAA4E;AAC5E,0CAAmD;AAEtC,QAAA,sCAAsC,GAAG,CAAC,CAAC,MAAM,CAAC;IAC7D,eAAe,EAAE,+CAAmB;IACpC,eAAe,EAAE,CAAC,CAAC,OAAO,CAAC,+CAAmB,CAAC;CAChD,CAAC,CAAC;AAGU,QAAA,wBAAwB,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE;IACxD,CAAC,CAAC,MAAM,CAAC;QACP,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC;QACzB,eAAe,EAAE,mDAAuB;KACzC,CAAC;IACF,CAAC,CAAC,MAAM,CAAC;QACP,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC;QAC5B,eAAe,EAAE,sDAA0B;KAC5C,CAAC;IACF,CAAC,CAAC,MAAM,CAAC;QACP,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC,kBAAkB,CAAC;QACnC,eAAe,EAAE,0DAA8B;KAChD,CAAC;CACH,CAAC,CAAC;AAEI,MAAM,oBAAoB,GAAG,CAAC,qBAA2C,EAAkD,EAAE;;IAClI,MAAM,EAAE,eAAe,EAAE,eAAe,EAAE,GAAG,qBAAqB,CAAC;IACnE,MAAM,EAAE,oCAAoC,EAAE,oCAAoC,EAAE,iCAAiC,EAAE,GAAG,eAAe,CAAC;IAE1I,IAAA,+BAAoB,EAAC;QACnB,SAAS,EAAE,MAAA,eAAe,CAAC,0CAA0C,mCAAI,EAAE;QAC3E,MAAM,EAAE,iCAAiC;QACzC,QAAQ,EAAE,CAAC,CAAC,iCAAiC;QAC7C,KAAK,EAAE,IAAI,KAAK,CAAC,2CAA2C,CAAC;KAC9D,CAAC,CAAC;IAEH,IAAA,+BAAoB,EAAC;QACnB,SAAS,EAAE,MAAA,eAAe,CAAC,6CAA6C,mCAAI,EAAE;QAC9E,MAAM,EAAE,oCAAoC;QAC5C,QAAQ,EAAE,CAAC,CAAC,oCAAoC;QAChD,KAAK,EAAE,IAAI,KAAK,CAAC,8CAA8C,CAAC;KACjE,CAAC,CAAC;IAEH,IAAA,+BAAoB,EAAC;QACnB,SAAS,EAAE,MAAA,eAAe,CAAC,6CAA6C,mCAAI,EAAE;QAC9E,MAAM,EAAE,oCAAoC;QAC5C,QAAQ,EAAE,CAAC,CAAC,oCAAoC;QAChD,KAAK,EAAE,IAAI,KAAK,CAAC,8CAA8C,CAAC;KACjE,CAAC,CAAC;IAEH,IAAI,iCAAiC,IAAI,oCAAoC,IAAI,oCAAoC,EAAE,CAAC;QACtH,OAAO;YACL,IAAI,EAAE,kBAAkB;YACxB,eAAe,EAAE;gBACf,iCAAiC;gBACjC,oCAAoC;gBACpC,oCAAoC;aACrC;SACF,CAAC;IACJ,CAAC;SAAM,IAAI,iCAAiC,IAAI,CAAC,oCAAoC,IAAI,CAAC,oCAAoC,EAAE,CAAC;QAC/H,OAAO;YACL,IAAI,EAAE,QAAQ;YACd,eAAe,EAAE,EAAE,iCAAiC,EAAE;SACvD,CAAC;IACJ,CAAC;SAAM,IAAI,CAAC,iCAAiC,IAAI,oCAAoC,IAAI,oCAAoC,EAAE,CAAC;QAC9H,OAAO;YACL,IAAI,EAAE,WAAW;YACjB,eAAe,EAAE,EAAE,oCAAoC,EAAE,oCAAoC,EAAE;SAChG,CAAC;IACJ,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAC9D,CAAC;AACH,CAAC,CAAC;AA/CW,QAAA,oBAAoB,wBA+C/B"}

package/dist/metadata/v-jarm-client-metadata.d.ts

@@ -1,34 +0,0 @@
-import * as v from 'valibot';
-export declare const vJarmClientMetadataSign: v.ObjectSchema<{
-    readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-    readonly authorization_encrypted_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-    readonly authorization_encrypted_response_enc: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-}, undefined>;
-export declare const vJarmClientMetadataEncrypt: v.ObjectSchema<{
-    readonly authorization_signed_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-    readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-}, undefined>;
-export declare const vJarmClientMetadataSignEncrypt: v.ObjectSchema<{
-    readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-}, undefined>;
-/**
- * Clients may register their public encryption keys using the jwks_uri or jwks metadata parameters.
- */
-export declare const vJarmClientMetadata: v.UnionSchema<[v.ObjectSchema<{
-    readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-    readonly authorization_encrypted_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-    readonly authorization_encrypted_response_enc: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-}, undefined>, v.ObjectSchema<{
-    readonly authorization_signed_response_alg: v.OptionalSchema<v.NeverSchema<undefined>, never>;
-    readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-}, undefined>, v.ObjectSchema<{
-    readonly authorization_encrypted_response_alg: v.SchemaWithPipe<[v.StringSchema<undefined>, v.DescriptionAction<string, "JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    readonly authorization_encrypted_response_enc: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, "A128CBC-HS256">, v.DescriptionAction<string, "JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.">]>;
-    readonly authorization_signed_response_alg: v.SchemaWithPipe<[v.OptionalSchema<v.StringSchema<undefined>, never>, v.DescriptionAction<string | undefined, "JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.">]>;
-}, undefined>], undefined>;
-export type JarmClientMetadata = v.InferInput<typeof vJarmClientMetadata>;
-//# sourceMappingURL=v-jarm-client-metadata.d.ts.map

package/dist/metadata/v-jarm-client-metadata.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"v-jarm-client-metadata.d.ts","sourceRoot":"","sources":["../../lib/metadata/v-jarm-client-metadata.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,SAAS,CAAC;AAE7B,eAAO,MAAM,uBAAuB;;;;aAUlC,CAAC;AAEH,eAAO,MAAM,0BAA0B;;;;aAerC,CAAC;AAEH,eAAO,MAAM,8BAA8B;;;;aAGzC,CAAC;AAEH;;GAEG;AACH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;0BAAiG,CAAC;AAElI,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,mBAAmB,CAAC,CAAC"}

package/dist/metadata/v-jarm-client-metadata.js

@@ -1,44 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.vJarmClientMetadata = exports.vJarmClientMetadataSignEncrypt = exports.vJarmClientMetadataEncrypt = exports.vJarmClientMetadataSign = void 0;
-const v = __importStar(require("valibot"));
-exports.vJarmClientMetadataSign = v.object({
-    authorization_signed_response_alg: v.pipe(v.optional(v.string()), // @default 'RS256'  This makes no sense with openid4vp if just encrypted can be specified
-    v.description('JWA. If this is specified, the response will be signed using JWS and the configured algorithm. The algorithm none is not allowed.')),
-    authorization_encrypted_response_alg: v.optional(v.never()),
-    authorization_encrypted_response_enc: v.optional(v.never()),
-});
-exports.vJarmClientMetadataEncrypt = v.object({
-    authorization_signed_response_alg: v.optional(v.never()),
-    authorization_encrypted_response_alg: v.pipe(v.string(), v.description('JWE alg algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.')),
-    authorization_encrypted_response_enc: v.pipe(v.optional(v.string(), 'A128CBC-HS256'), v.description('JWE enc algorithm JWA. If both signing and encryption are requested, the response will be signed then encrypted with the provided algorithm.')),
-});
-exports.vJarmClientMetadataSignEncrypt = v.object(Object.assign(Object.assign({}, v.pick(exports.vJarmClientMetadataSign, ['authorization_signed_response_alg']).entries), v.pick(exports.vJarmClientMetadataEncrypt, ['authorization_encrypted_response_alg', 'authorization_encrypted_response_enc']).entries));
-/**
- * Clients may register their public encryption keys using the jwks_uri or jwks metadata parameters.
- */
-exports.vJarmClientMetadata = v.union([exports.vJarmClientMetadataSign, exports.vJarmClientMetadataEncrypt, exports.vJarmClientMetadataSignEncrypt]);
-//# sourceMappingURL=v-jarm-client-metadata.js.map

package/dist/metadata/v-jarm-client-metadata.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"v-jarm-client-metadata.js","sourceRoot":"","sources":["../../lib/metadata/v-jarm-client-metadata.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAA6B;AAEhB,QAAA,uBAAuB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC9C,iCAAiC,EAAE,CAAC,CAAC,IAAI,CACvC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,0FAA0F;IAClH,CAAC,CAAC,WAAW,CACX,mIAAmI,CACpI,CACF;IAED,oCAAoC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC;IAC3D,oCAAoC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC;CAC5D,CAAC,CAAC;AAEU,QAAA,0BAA0B,GAAG,CAAC,CAAC,MAAM,CAAC;IACjD,iCAAiC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC;IACxD,oCAAoC,EAAE,CAAC,CAAC,IAAI,CAC1C,CAAC,CAAC,MAAM,EAAE,EACV,CAAC,CAAC,WAAW,CACX,8IAA8I,CAC/I,CACF;IAED,oCAAoC,EAAE,CAAC,CAAC,IAAI,CAC1C,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,eAAe,CAAC,EACvC,CAAC,CAAC,WAAW,CACX,8IAA8I,CAC/I,CACF;CACF,CAAC,CAAC;AAEU,QAAA,8BAA8B,GAAG,CAAC,CAAC,MAAM,iCACjD,CAAC,CAAC,IAAI,CAAC,+BAAuB,EAAE,CAAC,mCAAmC,CAAC,CAAC,CAAC,OAAO,GAC9E,CAAC,CAAC,IAAI,CAAC,kCAA0B,EAAE,CAAC,sCAAsC,EAAE,sCAAsC,CAAC,CAAC,CAAC,OAAO,EAC/H,CAAC;AAEH;;GAEG;AACU,QAAA,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,+BAAuB,EAAE,kCAA0B,EAAE,sCAA8B,CAAC,CAAC,CAAC"}

package/dist/metadata/v-jarm-server-metadata.d.ts

@@ -1,11 +0,0 @@
-import * as v from 'valibot';
-/**
- * Authorization servers SHOULD publish the supported algorithms for signing and encrypting the JWT of an authorization response by utilizing OAuth 2.0 Authorization Server Metadata [RFC8414] parameters.
- */
-export declare const vJarmServerMetadata: v.ObjectSchema<{
-    readonly authorization_signing_alg_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWS [RFC7515] signing algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to sign the response.">]>;
-    readonly authorization_encryption_alg_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>;
-    readonly authorization_encryption_enc_values_supported: v.SchemaWithPipe<[v.ArraySchema<v.StringSchema<undefined>, undefined>, v.DescriptionAction<string[], "JSON array containing a list of the JWE [RFC7516] encryption algorithms (enc values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.">]>;
-}, undefined>;
-export type JarmServerMetadata = v.InferInput<typeof vJarmServerMetadata>;
-//# sourceMappingURL=v-jarm-server-metadata.d.ts.map

package/dist/metadata/v-jarm-server-metadata.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"v-jarm-server-metadata.d.ts","sourceRoot":"","sources":["../../lib/metadata/v-jarm-server-metadata.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,SAAS,CAAC;AAE7B;;GAEG;AACH,eAAO,MAAM,mBAAmB;;;;aAqB9B,CAAC;AAEH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,mBAAmB,CAAC,CAAC"}

package/dist/metadata/v-jarm-server-metadata.js

@@ -1,36 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.vJarmServerMetadata = void 0;
-const v = __importStar(require("valibot"));
-/**
- * Authorization servers SHOULD publish the supported algorithms for signing and encrypting the JWT of an authorization response by utilizing OAuth 2.0 Authorization Server Metadata [RFC8414] parameters.
- */
-exports.vJarmServerMetadata = v.object({
-    authorization_signing_alg_values_supported: v.pipe(v.array(v.string()), v.description('JSON array containing a list of the JWS [RFC7515] signing algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to sign the response.')),
-    authorization_encryption_alg_values_supported: v.pipe(v.array(v.string()), v.description('JSON array containing a list of the JWE [RFC7516] encryption algorithms (alg values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.')),
-    authorization_encryption_enc_values_supported: v.pipe(v.array(v.string()), v.description('JSON array containing a list of the JWE [RFC7516] encryption algorithms (enc values) JWA [RFC7518] supported by the authorization endpoint to encrypt the response.')),
-});
-//# sourceMappingURL=v-jarm-server-metadata.js.map

package/dist/metadata/v-jarm-server-metadata.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"v-jarm-server-metadata.js","sourceRoot":"","sources":["../../lib/metadata/v-jarm-server-metadata.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAA6B;AAE7B;;GAEG;AACU,QAAA,mBAAmB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC1C,0CAA0C,EAAE,CAAC,CAAC,IAAI,CAChD,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,EACnB,CAAC,CAAC,WAAW,CACX,+JAA+J,CAChK,CACF;IAED,6CAA6C,EAAE,CAAC,CAAC,IAAI,CACnD,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,EACnB,CAAC,CAAC,WAAW,CACX,qKAAqK,CACtK,CACF;IAED,6CAA6C,EAAE,CAAC,CAAC,IAAI,CACnD,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,EACnB,CAAC,CAAC,WAAW,CACX,qKAAqK,CACtK,CACF;CACF,CAAC,CAAC"}

package/dist/utils.d.ts

@@ -1,17 +0,0 @@
-export declare function appendQueryParams(input: {
-    url: URL;
-    params: Record<string, string | number | boolean>;
-}): URL;
-export declare function appendFragmentParams(input: {
-    url: URL;
-    fragments: Record<string, string | number | boolean>;
-}): URL;
-interface AssertValueSupported<T> {
-    supported: T[];
-    actual: T;
-    error: Error;
-    required: boolean;
-}
-export declare function assertValueSupported<T>(input: AssertValueSupported<T>): T | undefined;
-export {};
-//# sourceMappingURL=utils.d.ts.map

package/dist/utils.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../lib/utils.ts"],"names":[],"mappings":"AAAA,wBAAgB,iBAAiB,CAAC,KAAK,EAAE;IAAE,GAAG,EAAE,GAAG,CAAC;IAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,CAAA;CAAE,OASvG;AAED,wBAAgB,oBAAoB,CAAC,KAAK,EAAE;IAAE,GAAG,EAAE,GAAG,CAAC;IAAC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC,CAAA;CAAE,OAe7G;AAED,UAAU,oBAAoB,CAAC,CAAC;IAC9B,SAAS,EAAE,CAAC,EAAE,CAAC;IACf,MAAM,EAAE,CAAC,CAAC;IACV,KAAK,EAAE,KAAK,CAAC;IACb,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,wBAAgB,oBAAoB,CAAC,CAAC,EAAE,KAAK,EAAE,oBAAoB,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,SAAS,CAMrF"}

package/dist/utils.js

@@ -1,33 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.appendQueryParams = appendQueryParams;
-exports.appendFragmentParams = appendFragmentParams;
-exports.assertValueSupported = assertValueSupported;
-function appendQueryParams(input) {
-    const { url, params } = input;
-    // Append the new query parameters from the params object
-    for (const [key, value] of Object.entries(params)) {
-        url.searchParams.append(key, encodeURIComponent(value));
-    }
-    return url;
-}
-function appendFragmentParams(input) {
-    const { url, fragments } = input;
-    // Convert existing fragment to an object and remove the leading '#'
-    const fragmentParams = new URLSearchParams(url.hash.slice(1)); // Remove the leading '#' from the fragment
-    // Append the new fragments from the fragments object
-    for (const [key, value] of Object.entries(fragments)) {
-        fragmentParams.append(key, encodeURIComponent(value));
-    }
-    // Rebuild the fragment string and assign it to the URL
-    url.hash = fragmentParams.toString();
-    return url;
-}
-function assertValueSupported(input) {
-    const { required, error, supported, actual } = input;
-    const intersection = supported.find((value) => value === actual);
-    if (required && !intersection)
-        throw error;
-    return intersection;
-}
-//# sourceMappingURL=utils.js.map

package/dist/utils.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"utils.js","sourceRoot":"","sources":["../lib/utils.ts"],"names":[],"mappings":";;AAAA,8CASC;AAED,oDAeC;AASD,oDAMC;AAzCD,SAAgB,iBAAiB,CAAC,KAAsE;IACtG,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,KAAK,CAAC;IAE9B,yDAAyD;IACzD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAClD,GAAG,CAAC,YAAY,CAAC,MAAM,CAAC,GAAG,EAAE,kBAAkB,CAAC,KAAK,CAAC,CAAC,CAAC;IAC1D,CAAC;IAED,OAAO,GAAG,CAAC;AACb,CAAC;AAED,SAAgB,oBAAoB,CAAC,KAAyE;IAC5G,MAAM,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,KAAK,CAAC;IAEjC,oEAAoE;IACpE,MAAM,cAAc,GAAG,IAAI,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,2CAA2C;IAE1G,qDAAqD;IACrD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;QACrD,cAAc,CAAC,MAAM,CAAC,GAAG,EAAE,kBAAkB,CAAC,KAAK,CAAC,CAAC,CAAC;IACxD,CAAC;IAED,uDAAuD;IACvD,GAAG,CAAC,IAAI,GAAG,cAAc,CAAC,QAAQ,EAAE,CAAC;IAErC,OAAO,GAAG,CAAC;AACb,CAAC;AASD,SAAgB,oBAAoB,CAAI,KAA8B;IACpE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,KAAK,CAAC;IACrD,MAAM,YAAY,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,KAAK,MAAM,CAAC,CAAC;IAEjE,IAAI,QAAQ,IAAI,CAAC,YAAY;QAAE,MAAM,KAAK,CAAC;IAC3C,OAAO,YAAY,CAAC;AACtB,CAAC"}

package/dist/v-response-mode-registry.d.ts

@@ -1,30 +0,0 @@
-import * as v from 'valibot';
-import type { ResponseTypeOut } from './v-response-type-registry.js';
-export declare const vJarmResponseMode: v.PicklistSchema<["jwt", "query.jwt", "fragment.jwt", "form_post.jwt"], undefined>;
-export type JarmResponseMode = v.InferInput<typeof vJarmResponseMode>;
-export declare const vOpenid4vpResponseMode: v.PicklistSchema<["direct_post"], undefined>;
-export type Openid4vpResponseMode = v.InferInput<typeof vOpenid4vpResponseMode>;
-/**
- *  * 'direct_post.jwt' The response is send as HTTP POST request using the application/x-www-form-urlencoded content type. The body contains a single parameter response which is the JWT encoded Response as defined in JARM 4.1
- */
-export declare const vOpenid4vpJarmResponseMode: v.PicklistSchema<["direct_post.jwt"], undefined>;
-export type Openid4vpJarmResponseMode = v.InferInput<typeof vOpenid4vpJarmResponseMode>;
-/**
- *  The use of this parameter is NOT RECOMMENDED when the Response Mode that would be requested is the default mode specified for the Response Type.
- *  * 'query' In this mode, Authorization Response parameters are encoded in the query string added to the redirect_uri when redirecting back to the Client.
- *  * 'fragment' In this mode, Authorization Response parameters are encoded in the fragment added to the redirect_uri when redirecting back to the Client.
- *  * 'direct_post' the Authorization Response is send to an endpoint controlled by the Verifier via an HTTP POST request.
- */
-export declare const vResponseMode: v.SchemaWithPipe<[v.PicklistSchema<["query", "fragment", "direct_post", "jwt", "query.jwt", "fragment.jwt", "form_post.jwt", "direct_post.jwt"], undefined>, v.DescriptionAction<"jwt" | "query.jwt" | "fragment.jwt" | "form_post.jwt" | "direct_post" | "direct_post.jwt" | "query" | "fragment", "Informs the Authorization Server of the mechanism to be used for returning parameters from the Authorization Endpoint.">]>;
-export type ResponseMode = v.InferInput<typeof vResponseMode>;
-export declare const getDefaultResponseMode: (input: {
-    response_type: ResponseTypeOut;
-}) => "query" | "fragment";
-export declare const getJarmDefaultResponseMode: (input: {
-    response_type: ResponseTypeOut;
-}) => "query.jwt" | "fragment.jwt";
-export declare const validateResponseMode: (input: {
-    response_type: ResponseTypeOut;
-    response_mode: ResponseMode;
-}) => void;
-//# sourceMappingURL=v-response-mode-registry.d.ts.map

package/dist/v-response-mode-registry.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"v-response-mode-registry.d.ts","sourceRoot":"","sources":["../lib/v-response-mode-registry.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,SAAS,CAAC;AAE7B,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAErE,eAAO,MAAM,iBAAiB,oFAAoE,CAAC;AACnG,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAEtE,eAAO,MAAM,sBAAsB,8CAA8B,CAAC;AAClE,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAEhF;;GAEG;AACH,eAAO,MAAM,0BAA0B,kDAAkC,CAAC;AAC1E,MAAM,MAAM,yBAAyB,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,0BAA0B,CAAC,CAAC;AAExF;;;;;GAKG;AACH,eAAO,MAAM,aAAa,iaAGzB,CAAC;AACF,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,aAAa,CAAC,CAAC;AAkB9D,eAAO,MAAM,sBAAsB,UAAW;IAAE,aAAa,EAAE,eAAe,CAAA;CAAE,KAAG,OAAO,GAAG,UAiB5F,CAAC;AAEF,eAAO,MAAM,0BAA0B,UAAW;IAAE,aAAa,EAAE,eAAe,CAAA;CAAE,KAAG,WAAW,GAAG,cASpG,CAAC;AAEF,eAAO,MAAM,oBAAoB,UAAW;IAAE,aAAa,EAAE,eAAe,CAAC;IAAC,aAAa,EAAE,YAAY,CAAA;CAAE,SAM1G,CAAC"}

package/dist/v-response-mode-registry.js

@@ -1,90 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.validateResponseMode = exports.getJarmDefaultResponseMode = exports.getDefaultResponseMode = exports.vResponseMode = exports.vOpenid4vpJarmResponseMode = exports.vOpenid4vpResponseMode = exports.vJarmResponseMode = void 0;
-const v = __importStar(require("valibot"));
-exports.vJarmResponseMode = v.picklist(['jwt', 'query.jwt', 'fragment.jwt', 'form_post.jwt']);
-exports.vOpenid4vpResponseMode = v.picklist(['direct_post']);
-/**
- *  * 'direct_post.jwt' The response is send as HTTP POST request using the application/x-www-form-urlencoded content type. The body contains a single parameter response which is the JWT encoded Response as defined in JARM 4.1
- */
-exports.vOpenid4vpJarmResponseMode = v.picklist(['direct_post.jwt']);
-/**
- *  The use of this parameter is NOT RECOMMENDED when the Response Mode that would be requested is the default mode specified for the Response Type.
- *  * 'query' In this mode, Authorization Response parameters are encoded in the query string added to the redirect_uri when redirecting back to the Client.
- *  * 'fragment' In this mode, Authorization Response parameters are encoded in the fragment added to the redirect_uri when redirecting back to the Client.
- *  * 'direct_post' the Authorization Response is send to an endpoint controlled by the Verifier via an HTTP POST request.
- */
-exports.vResponseMode = v.pipe(v.picklist(['query', 'fragment', ...exports.vOpenid4vpResponseMode.options, ...exports.vJarmResponseMode.options, ...exports.vOpenid4vpJarmResponseMode.options]), v.description('Informs the Authorization Server of the mechanism to be used for returning parameters from the Authorization Endpoint.'));
-const getDisAllowedResponseModes = (input) => {
-    const { response_type } = input;
-    switch (response_type) {
-        case 'code token':
-            return ['query'];
-        case 'code id_token':
-            return ['query'];
-        case 'id_token token':
-            return ['query'];
-        case 'code id_token token':
-            return ['query'];
-    }
-    return undefined;
-};
-const getDefaultResponseMode = (input) => {
-    const { response_type } = input;
-    switch (response_type) {
-        case 'code':
-        case 'none':
-            return 'query';
-        case 'token':
-        case 'id_token':
-        case 'code token':
-        case 'code id_token':
-        case 'id_token token':
-        case 'code id_token token':
-        case 'vp_token':
-        case 'id_token vp_token':
-            return 'fragment';
-    }
-};
-exports.getDefaultResponseMode = getDefaultResponseMode;
-const getJarmDefaultResponseMode = (input) => {
-    const responseMode = (0, exports.getDefaultResponseMode)(input);
-    switch (responseMode) {
-        case 'query':
-            return 'query.jwt';
-        case 'fragment':
-            return 'fragment.jwt';
-    }
-};
-exports.getJarmDefaultResponseMode = getJarmDefaultResponseMode;
-const validateResponseMode = (input) => {
-    const disallowedResponseModes = getDisAllowedResponseModes(input);
-    if (disallowedResponseModes === null || disallowedResponseModes === void 0 ? void 0 : disallowedResponseModes.includes(input.response_mode)) {
-        throw new Error(`Response_type '${input.response_type}' is not compatible with response_mode '${input.response_mode}'.`);
-    }
-};
-exports.validateResponseMode = validateResponseMode;
-//# sourceMappingURL=v-response-mode-registry.js.map

package/dist/v-response-mode-registry.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"v-response-mode-registry.js","sourceRoot":"","sources":["../lib/v-response-mode-registry.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,2CAA6B;AAIhB,QAAA,iBAAiB,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC,KAAK,EAAE,WAAW,EAAE,cAAc,EAAE,eAAe,CAAC,CAAC,CAAC;AAGtF,QAAA,sBAAsB,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC;AAGlE;;GAEG;AACU,QAAA,0BAA0B,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC;AAG1E;;;;;GAKG;AACU,QAAA,aAAa,GAAG,CAAC,CAAC,IAAI,CACjC,CAAC,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,UAAU,EAAE,GAAG,8BAAsB,CAAC,OAAO,EAAE,GAAG,yBAAiB,CAAC,OAAO,EAAE,GAAG,kCAA0B,CAAC,OAAO,CAAC,CAAC,EACzI,CAAC,CAAC,WAAW,CAAC,wHAAwH,CAAC,CACxI,CAAC;AAGF,MAAM,0BAA0B,GAAG,CAAC,KAAyC,EAAiD,EAAE;IAC9H,MAAM,EAAE,aAAa,EAAE,GAAG,KAAK,CAAC;IAEhC,QAAQ,aAAa,EAAE,CAAC;QACtB,KAAK,YAAY;YACf,OAAO,CAAC,OAAO,CAAC,CAAC;QACnB,KAAK,eAAe;YAClB,OAAO,CAAC,OAAO,CAAC,CAAC;QACnB,KAAK,gBAAgB;YACnB,OAAO,CAAC,OAAO,CAAC,CAAC;QACnB,KAAK,qBAAqB;YACxB,OAAO,CAAC,OAAO,CAAC,CAAC;IACrB,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC,CAAC;AAEK,MAAM,sBAAsB,GAAG,CAAC,KAAyC,EAAwB,EAAE;IACxG,MAAM,EAAE,aAAa,EAAE,GAAG,KAAK,CAAC;IAEhC,QAAQ,aAAa,EAAE,CAAC;QACtB,KAAK,MAAM,CAAC;QACZ,KAAK,MAAM;YACT,OAAO,OAAO,CAAC;QACjB,KAAK,OAAO,CAAC;QACb,KAAK,UAAU,CAAC;QAChB,KAAK,YAAY,CAAC;QAClB,KAAK,eAAe,CAAC;QACrB,KAAK,gBAAgB,CAAC;QACtB,KAAK,qBAAqB,CAAC;QAC3B,KAAK,UAAU,CAAC;QAChB,KAAK,mBAAmB;YACtB,OAAO,UAAU,CAAC;IACtB,CAAC;AACH,CAAC,CAAC;AAjBW,QAAA,sBAAsB,0BAiBjC;AAEK,MAAM,0BAA0B,GAAG,CAAC,KAAyC,EAAgC,EAAE;IACpH,MAAM,YAAY,GAAG,IAAA,8BAAsB,EAAC,KAAK,CAAC,CAAC;IAEnD,QAAQ,YAAY,EAAE,CAAC;QACrB,KAAK,OAAO;YACV,OAAO,WAAW,CAAC;QACrB,KAAK,UAAU;YACb,OAAO,cAAc,CAAC;IAC1B,CAAC;AACH,CAAC,CAAC;AATW,QAAA,0BAA0B,8BASrC;AAEK,MAAM,oBAAoB,GAAG,CAAC,KAAsE,EAAE,EAAE;IAC7G,MAAM,uBAAuB,GAAG,0BAA0B,CAAC,KAAK,CAAC,CAAC;IAElE,IAAI,uBAAuB,aAAvB,uBAAuB,uBAAvB,uBAAuB,CAAE,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,EAAE,CAAC;QAC3D,MAAM,IAAI,KAAK,CAAC,kBAAkB,KAAK,CAAC,aAAa,2CAA2C,KAAK,CAAC,aAAa,IAAI,CAAC,CAAC;IAC3H,CAAC;AACH,CAAC,CAAC;AANW,QAAA,oBAAoB,wBAM/B"}

package/dist/v-response-type-registry.d.ts

@@ -1,9 +0,0 @@
-import * as v from 'valibot';
-export declare const oAuthResponseTypes: v.PicklistSchema<["code", "token"], undefined>;
-export declare const oAuthMRTEPResponseTypes: v.PicklistSchema<["none", "id_token", "code token", "code id_token", "id_token token", "code id_token token"], undefined>;
-export declare const openid4vpResponseTypes: v.PicklistSchema<["vp_token", "id_token vp_token"], undefined>;
-export declare const vTransformedResponseTypes: v.PicklistSchema<["vp_token", "id_token vp_token", "code", "token", "none", "id_token", "code token", "code id_token", "id_token token", "code id_token token"], undefined>;
-export declare const vResponseType: v.SchemaWithPipe<[v.StringSchema<undefined>, v.TransformAction<string, string>, v.PicklistSchema<["vp_token", "id_token vp_token", "code", "token", "none", "id_token", "code token", "code id_token", "id_token token", "code id_token token"], undefined>]>;
-export type ResponseType = v.InferInput<typeof vTransformedResponseTypes>;
-export type ResponseTypeOut = v.InferOutput<typeof vTransformedResponseTypes>;
-//# sourceMappingURL=v-response-type-registry.d.ts.map

package/dist/v-response-type-registry.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"v-response-type-registry.d.ts","sourceRoot":"","sources":["../lib/v-response-type-registry.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,CAAC,MAAM,SAAS,CAAC;AAE7B,eAAO,MAAM,kBAAkB,gDAAgC,CAAC;AAGhE,eAAO,MAAM,uBAAuB,2HAA2G,CAAC;AAEhJ,eAAO,MAAM,sBAAsB,gEAAgD,CAAC;AAEpF,eAAO,MAAM,yBAAyB,6KAIpC,CAAC;AAEH,eAAO,MAAM,aAAa,+PAIzB,CAAC;AAEF,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,yBAAyB,CAAC,CAAC;AAC1E,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,WAAW,CAAC,OAAO,yBAAyB,CAAC,CAAC"}