npm - @sphereon/ssi-sdk-ext.identifier-resolution - Versions diffs - 0.24.1-unstable.93 → 0.25.1-feature.SDK.41.oidf.support.11 - Mend

@sphereon/ssi-sdk-ext.identifier-resolution 0.24.1-unstable.93 → 0.25.1-feature.SDK.41.oidf.support.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (54) hide show

package/dist/agent/IdentifierResolution.d.ts +5 -0
package/dist/agent/IdentifierResolution.d.ts.map +1 -1
package/dist/agent/IdentifierResolution.js +31 -1
package/dist/agent/IdentifierResolution.js.map +1 -1
package/dist/functions/LegacySupport.d.ts +12 -0
package/dist/functions/LegacySupport.d.ts.map +1 -0
package/dist/functions/LegacySupport.js +39 -0
package/dist/functions/LegacySupport.js.map +1 -0
package/dist/functions/externalIdentifierFunctions.d.ts +17 -1
package/dist/functions/externalIdentifierFunctions.d.ts.map +1 -1
package/dist/functions/externalIdentifierFunctions.js +89 -6
package/dist/functions/externalIdentifierFunctions.js.map +1 -1
package/dist/functions/externalOIDFIdentifier.d.ts +19 -0
package/dist/functions/externalOIDFIdentifier.d.ts.map +1 -0
package/dist/functions/externalOIDFIdentifier.js +84 -0
package/dist/functions/externalOIDFIdentifier.js.map +1 -0
package/dist/functions/index.d.ts +2 -11
package/dist/functions/index.d.ts.map +1 -1
package/dist/functions/index.js +2 -36
package/dist/functions/index.js.map +1 -1
package/dist/functions/managedIdentifierFunctions.d.ts +17 -3
package/dist/functions/managedIdentifierFunctions.d.ts.map +1 -1
package/dist/functions/managedIdentifierFunctions.js +134 -12
package/dist/functions/managedIdentifierFunctions.js.map +1 -1
package/dist/tsdoc-metadata.json +1 -1
package/dist/types/IIdentifierResolution.d.ts +14 -3
package/dist/types/IIdentifierResolution.d.ts.map +1 -1
package/dist/types/IIdentifierResolution.js +18 -0
package/dist/types/IIdentifierResolution.js.map +1 -1
package/dist/types/common.d.ts +4 -1
package/dist/types/common.d.ts.map +1 -1
package/dist/types/common.js +21 -10
package/dist/types/common.js.map +1 -1
package/dist/types/externalIdentifierTypes.d.ts +38 -6
package/dist/types/externalIdentifierTypes.d.ts.map +1 -1
package/dist/types/externalIdentifierTypes.js +16 -7
package/dist/types/externalIdentifierTypes.js.map +1 -1
package/dist/types/managedIdentifierTypes.d.ts +43 -15
package/dist/types/managedIdentifierTypes.d.ts.map +1 -1
package/dist/types/managedIdentifierTypes.js +24 -11
package/dist/types/managedIdentifierTypes.js.map +1 -1
package/package.json +13 -12
package/plugin.schema.json +2652 -281
package/src/agent/IdentifierResolution.ts +71 -11
package/src/functions/LegacySupport.ts +54 -0
package/src/functions/externalIdentifierFunctions.ts +101 -6
package/src/functions/externalOIDFIdentifier.ts +95 -0
package/src/functions/index.ts +2 -51
package/src/functions/managedIdentifierFunctions.ts +162 -14
package/src/types/IIdentifierResolution.ts +47 -3
package/src/types/IJwtService.d.ts +226 -0
package/src/types/common.ts +14 -2
package/src/types/externalIdentifierTypes.ts +76 -12
package/src/types/managedIdentifierTypes.ts +78 -16

package/src/types/externalIdentifierTypes.ts CHANGED Viewed

@@ -1,9 +1,18 @@
 import { DidDocumentJwks } from '@sphereon/ssi-sdk-ext.did-utils'
-import { JWK } from '@sphereon/ssi-sdk-ext.key-utils'
-import { X509ValidationResult } from '@sphereon/ssi-sdk-ext.x509-utils'
+import { ICoseKeyJson, JWK } from '@sphereon/ssi-types'
+import { X509CertificateChainValidationOpts, X509ValidationResult } from '@sphereon/ssi-sdk-ext.x509-utils'
 import { IParsedDID } from '@sphereon/ssi-types'
 import { DIDDocument, DIDDocumentSection, DIDResolutionResult } from '@veramo/core'
-import { isDidIdentifier, isJwkIdentifier, isJwksUrlIdentifier, isKidIdentifier, isOidcDiscoveryIdentifier, isX5cIdentifier, JwkInfo } from './common'
+import {
+  isCoseKeyIdentifier,
+  isDidIdentifier, isOIDFEntityIdIdentifier,
+  isJwkIdentifier,
+  isJwksUrlIdentifier,
+  isKidIdentifier,
+  isOidcDiscoveryIdentifier,
+  isX5cIdentifier,
+  JwkInfo,
+} from './common'
 /**
  * Use whenever we need to resolve an external identifier. We can pass in kids, DIDs, and x5chains
@@ -32,7 +41,14 @@ export function isExternalIdentifierDidOpts(opts: ExternalIdentifierOptsBase): o
   return ('method' in opts && opts.method === 'did') || isDidIdentifier(identifier)
 }
-export type ExternalIdentifierOpts = (ExternalIdentifierJwkOpts | ExternalIdentifierX5cOpts | ExternalIdentifierDidOpts | ExternalIdentifierKidOpts) &
+export type ExternalIdentifierOpts = (
+  | ExternalIdentifierJwkOpts
+  | ExternalIdentifierX5cOpts
+  | ExternalIdentifierDidOpts
+  | ExternalIdentifierKidOpts
+  | ExternalIdentifierCoseKeyOpts
+  | ExternalIdentifierOIDFEntityIdOpts
+) &
   ExternalIdentifierOptsBase
 export type ExternalIdentifierKidOpts = Omit<ExternalIdentifierOptsBase, 'method'> & {
@@ -48,6 +64,7 @@ export function isExternalIdentifierKidOpts(opts: ExternalIdentifierOptsBase): o
 export type ExternalIdentifierJwkOpts = Omit<ExternalIdentifierOptsBase, 'method'> & {
   method?: 'jwk'
   identifier: JWK
+  x5c?: ExternalIdentifierX5cOpts
 }
 export function isExternalIdentifierJwkOpts(opts: ExternalIdentifierOptsBase): opts is ExternalIdentifierJwkOpts {
@@ -55,6 +72,16 @@ export function isExternalIdentifierJwkOpts(opts: ExternalIdentifierOptsBase): o
   return ('method' in opts && opts.method === 'jwk') || isJwkIdentifier(identifier)
 }
+export type ExternalIdentifierCoseKeyOpts = Omit<ExternalIdentifierOptsBase, 'method'> & {
+  method?: 'cose_key'
+  identifier: ICoseKeyJson
+}
+export function isExternalIdentifierCoseKeyOpts(opts: ExternalIdentifierOptsBase): opts is ExternalIdentifierCoseKeyOpts {
+  const { identifier } = opts
+  return ('method' in opts && opts.method === 'cose_key') || isCoseKeyIdentifier(identifier)
+}
 export type ExternalIdentifierOidcDiscoveryOpts = Omit<ExternalIdentifierOptsBase, 'method'> & {
   method?: 'oidc-discovery'
   identifier: string
@@ -75,28 +102,53 @@ export function isExternalIdentifierJwksUrlOpts(opts: ExternalIdentifierOptsBase
   return ('method' in opts && opts.method === 'oidc-discovery') || isJwksUrlIdentifier(identifier)
 }
-export type ExternalIdentifierX5cOpts = Omit<ExternalIdentifierOptsBase, 'method'> & {
-  method?: 'x5c'
-  identifier: string[]
-  verify?: boolean // defaults to true
-  verificationTime?: Date
-  trustAnchors?: string[]
+export type ExternalIdentifierOIDFEntityIdOpts = Omit<ExternalIdentifierOptsBase, 'method'> & {
+  method?: 'entity_id'
+  identifier: string
+  trustAnchors?: Array<string>
+}
+export function isExternalIdentifierOIDFEntityIdOpts(opts: ExternalIdentifierOptsBase): opts is ExternalIdentifierCoseKeyOpts {
+  const { identifier } = opts
+  return ('method' in opts && opts.method === 'entity_id' || 'trustAnchors' in opts) && isOIDFEntityIdIdentifier(identifier)
 }
+export type ExternalIdentifierX5cOpts = Omit<ExternalIdentifierOptsBase, 'method'> &
+  X509CertificateChainValidationOpts & {
+    method?: 'x5c'
+    identifier: string[]
+    verify?: boolean // defaults to true
+    verificationTime?: Date
+    trustAnchors?: string[]
+  }
 export function isExternalIdentifierX5cOpts(opts: ExternalIdentifierOptsBase): opts is ExternalIdentifierX5cOpts {
   const { identifier } = opts
   return ('method' in opts && opts.method === 'x5c') || isX5cIdentifier(identifier)
 }
-export type ExternalIdentifierMethod = 'did' | 'jwk' | 'x5c' | 'kid' | 'oidc-discovery' | 'jwks-url' | 'oid4vci-issuer'
+export type ExternalIdentifierMethod = 'did' | 'jwk' | 'x5c' | 'kid' | 'cose_key' | 'oidc-discovery' | 'jwks-url' | 'oid4vci-issuer' | 'entity_id'
-export type ExternalIdentifierResult = ExternalIdentifierDidResult | ExternalIdentifierX5cResult
+export type ExternalIdentifierResult = IExternalIdentifierResultBase &
+  (ExternalIdentifierDidResult | ExternalIdentifierX5cResult | ExternalIdentifierJwkResult | ExternalIdentifierOIDFEntityIdResult | ExternalIdentifierCoseKeyResult )
 export interface IExternalIdentifierResultBase {
   method: ExternalIdentifierMethod
   jwks: Array<ExternalJwkInfo>
 }
+export interface ExternalIdentifierJwkResult extends IExternalIdentifierResultBase {
+  method: 'jwk'
+  jwk: JWK
+  x5c?: ExternalIdentifierX5cResult
+}
+export interface ExternalIdentifierCoseKeyResult extends IExternalIdentifierResultBase {
+  method: 'cose_key'
+  coseKey: ICoseKeyJson
+  x5c?: ExternalIdentifierX5cResult
+}
 export interface ExternalIdentifierX5cResult extends IExternalIdentifierResultBase {
   method: 'x5c'
   x5c: string[]
@@ -105,8 +157,20 @@ export interface ExternalIdentifierX5cResult extends IExternalIdentifierResultBa
   certificates: any[] // for now since our schema generator trips on pkijs Certificate(Json) object //fixme
 }
+export type TrustedAnchor = string
+export type PublicKeyHex = string
+export type ErrorMessage = string
+export interface ExternalIdentifierOIDFEntityIdResult extends IExternalIdentifierResultBase {
+  method: 'entity_id'
+  trustedAnchors: Record<TrustedAnchor, PublicKeyHex>
+  errorList?: Record<TrustedAnchor, ErrorMessage>
+  trustEstablished: boolean
+}
 export interface ExternalJwkInfo extends JwkInfo {
   kid?: string
+  publicKeyHex: string
 }
 export interface ExternalIdentifierDidResult extends IExternalIdentifierResultBase {

package/src/types/managedIdentifierTypes.ts CHANGED Viewed

@@ -1,13 +1,23 @@
-import { JWK } from '@sphereon/ssi-sdk-ext.key-utils'
+import { ClientIdScheme } from '@sphereon/ssi-sdk-ext.x509-utils'
+import { ICoseKeyJson, JWK } from '@sphereon/ssi-types'
 import { DIDDocumentSection, IIdentifier, IKey, TKeyType } from '@veramo/core'
-import { isDidIdentifier, isJwkIdentifier, isKeyIdentifier, isKidIdentifier, isX5cIdentifier, JwkInfo } from './common'
+import {
+  isCoseKeyIdentifier,
+  isDidIdentifier,
+  isOID4VCIssuerIdentifier,
+  isJwkIdentifier,
+  isKeyIdentifier,
+  isKidIdentifier,
+  isX5cIdentifier,
+  JwkInfo
+} from './common'
 /**
  * Use whenever we need to pass in an identifier. We can pass in kids, DIDs, IIdentifier objects and x5chains
  *
  * The functions below can be used to check the type, and they also provide the proper 'runtime' types
  */
-export type ManagedIdentifierType = IIdentifier /*did*/ | string /*did or kid*/ | string[] /*x5c*/ | JWK | IKey
+export type ManagedIdentifierType = IIdentifier /*did*/ | string /*did or kid*/ | string[] /*x5c*/ | JWK | IKey | ICoseKeyJson
 export type ManagedIdentifierOpts = (
   | ManagedIdentifierJwkOpts
@@ -15,6 +25,8 @@ export type ManagedIdentifierOpts = (
   | ManagedIdentifierDidOpts
   | ManagedIdentifierKidOpts
   | ManagedIdentifierKeyOpts
+  | ManagedIdentifierCoseKeyOpts
+  | ManagedIdentifierOID4VCIssuerOpts
 ) &
   ManagedIdentifierOptsBase
@@ -24,9 +36,11 @@ export type ManagedIdentifierOptsBase = {
   kmsKeyRef?: string // The key reference for the KMS system. If provided this value will be used to determine the appropriate key. Otherwise it will be inferred
   issuer?: string // can be used when a specific issuer needs to end up, for instance when signing JWTs. Will be returned or inferred if not provided
   kid?: string // can be used when a specific kid value needs to be used. For instance when signing JWTs. Will be returned or inferred if not provided
+  clientId?: string
+  clientIdScheme?: ClientIdScheme | 'did' | string
 }
-export type ManagedIdentifierDidOpts = Omit<ManagedIdentifierOptsBase, 'method'> & {
+export type ManagedIdentifierDidOpts = Omit<ManagedIdentifierOptsBase, 'method' | 'identifier'> & {
   method?: 'did'
   identifier: IIdentifier | string
   keyType?: TKeyType
@@ -41,7 +55,7 @@ export function isManagedIdentifierDidOpts(opts: ManagedIdentifierOptsBase): opt
   return ('method' in opts && opts.method === 'did') || isDidIdentifier(identifier)
 }
-export type ManagedIdentifierKidOpts = Omit<ManagedIdentifierOptsBase, 'method'> & {
+export type ManagedIdentifierKidOpts = Omit<ManagedIdentifierOptsBase, 'method' | 'identifier'> & {
   method?: 'kid'
   identifier: string
 }
@@ -51,17 +65,37 @@ export function isManagedIdentifierKidOpts(opts: ManagedIdentifierOptsBase): opt
   return ('method' in opts && opts.method === 'kid') || isKidIdentifier(identifier)
 }
-export type ManagedIdentifierKeyOpts = Omit<ManagedIdentifierOptsBase, 'method'> & {
+export type ManagedIdentifierKeyOpts = Omit<ManagedIdentifierOptsBase, 'method' | 'identifier'> & {
   method?: 'key'
   identifier: IKey
 }
-export function isManagedIdentifierKeyOpts(opts: ManagedIdentifierOptsBase): opts is ManagedIdentifierKidOpts {
+export function isManagedIdentifierKeyOpts(opts: ManagedIdentifierOptsBase): opts is ManagedIdentifierKeyOpts {
   const { identifier } = opts
   return ('method' in opts && opts.method === 'key') || isKeyIdentifier(identifier)
 }
-export type ManagedIdentifierJwkOpts = Omit<ManagedIdentifierOptsBase, 'method'> & {
+export type ManagedIdentifierCoseKeyOpts = Omit<ManagedIdentifierOptsBase, 'method' | 'identifier'> & {
+  method?: 'cose_key'
+  identifier: ICoseKeyJson
+}
+export function isManagedIdentifierCoseKeyOpts(opts: ManagedIdentifierOptsBase): opts is ManagedIdentifierCoseKeyOpts {
+  const { identifier } = opts
+  return ('method' in opts && opts.method === 'cose_key') || isCoseKeyIdentifier(identifier)
+}
+export type ManagedIdentifierOID4VCIssuerOpts = Omit<ManagedIdentifierOptsBase, 'method' | 'identifier'> & {
+  method?: 'oid4vci-issuer'
+  identifier: string
+}
+export function isManagedIdentifierOID4VCIssuerOpts(opts: ManagedIdentifierOptsBase): opts is ManagedIdentifierCoseKeyOpts {
+  const { identifier } = opts
+  return ('method' in opts && opts.method === 'oid4vci-issuer') || isOID4VCIssuerIdentifier(identifier)
+}
+export type ManagedIdentifierJwkOpts = Omit<ManagedIdentifierOptsBase, 'method' | 'identifier'> & {
   method?: 'jwk'
   identifier: JWK
 }
@@ -71,7 +105,7 @@ export function isManagedIdentifierJwkOpts(opts: ManagedIdentifierOptsBase): opt
   return ('method' in opts && opts.method === 'jwk') || isJwkIdentifier(identifier)
 }
-export type ManagedIdentifierX5cOpts = Omit<ManagedIdentifierOptsBase, 'method'> & {
+export type ManagedIdentifierX5cOpts = Omit<ManagedIdentifierOptsBase, 'method' | 'identifier'> & {
   method?: 'x5c'
   identifier: string[]
 }
@@ -91,6 +125,13 @@ export interface IManagedIdentifierResultBase extends ManagedJwkInfo {
   key: IKey
   kid?: string
   issuer?: string
+  clientId?: string
+  clientIdScheme?: ClientIdScheme | 'did' | string
+  identifier: ManagedIdentifierType
+}
+export function isManagedIdentifierCoseKeyResult(object: IManagedIdentifierResultBase): object is ManagedIdentifierCoseKeyResult {
+  return object!! && typeof object === 'object' && 'method' in object && object.method === 'cose_key'
 }
 export function isManagedIdentifierDidResult(object: IManagedIdentifierResultBase): object is ManagedIdentifierDidResult {
@@ -126,30 +167,51 @@ export interface ManagedIdentifierDidResult extends IManagedIdentifierResultBase
 }
 export interface ManagedIdentifierJwkResult extends IManagedIdentifierResultBase {
+  identifier: JWK
   method: 'jwk'
 }
 export interface ManagedIdentifierKidResult extends IManagedIdentifierResultBase {
   method: 'kid'
-  issuer: string
+  identifier: string
   kid: string
 }
 export interface ManagedIdentifierKeyResult extends IManagedIdentifierResultBase {
   method: 'key'
-  issuer: string
-  kid: string
+  identifier: IKey
+}
+export interface ManagedIdentifierCoseKeyResult extends IManagedIdentifierResultBase {
+  method: 'cose_key'
+  identifier: ICoseKeyJson
+}
+export interface ManagedIdentifierOID4VCIssuerResult extends IManagedIdentifierResultBase {
+  method: 'oid4vci-issuer'
+  identifier: string
 }
 export interface ManagedIdentifierX5cResult extends IManagedIdentifierResultBase {
   method: 'x5c'
+  identifier: string[]
   x5c: string[]
   certificate: any // Certificate(JSON_, but trips schema generator. Probably want to create our own DTO
 }
-export type ManagedIdentifierMethod = 'did' | 'jwk' | 'x5c' | 'kid' | 'key'
+export type ManagedIdentifierMethod = 'did' | 'jwk' | 'x5c' | 'kid' | 'key' | 'cose_key' | 'oid4vci-issuer'
 export type ManagedIdentifierResult = IManagedIdentifierResultBase &
-  (ManagedIdentifierX5cResult | ManagedIdentifierDidResult | ManagedIdentifierJwkResult | ManagedIdentifierKidResult | ManagedIdentifierKeyResult)
-export type ManagedIdentifierOptsOrResult = ManagedIdentifierResult | ManagedIdentifierOpts
+  (
+    | ManagedIdentifierX5cResult
+    | ManagedIdentifierDidResult
+    | ManagedIdentifierJwkResult
+    | ManagedIdentifierKidResult
+    | ManagedIdentifierKeyResult
+    | ManagedIdentifierCoseKeyResult
+    | ManagedIdentifierOID4VCIssuerResult
+  )
+export type ManagedIdentifierOptsOrResult = (ManagedIdentifierResult | ManagedIdentifierOpts) & {
+  lazyDisabled?: boolean
+}