@sphereon/ssi-sdk-ext.identifier-resolution 0.28.1-feature.esm.cjs.8 → 0.28.1-feature.esm.cjs.9

package/dist/index.cjs

@@ -1,30 +1,14 @@
-"use strict";
-var __defProp = Object.defineProperty;
-var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+"use strict";Object.defineProperty(exports, "__esModule", {value: true}); function _nullishCoalesce(lhs, rhsFn) { if (lhs != null) { return lhs; } else { return rhsFn(); } } function _optionalChain(ops) { let lastAccessLHS = undefined; let value = ops[0]; let i = 1; while (i < ops.length) { const op = ops[i]; const fn = ops[i + 1]; i += 2; if ((op === 'optionalAccess' || op === 'optionalCall') && value == null) { return undefined; } if (op === 'access' || op === 'optionalAccess') { lastAccessLHS = value; value = fn(value); } else if (op === 'call' || op === 'optionalCall') { value = fn((...args) => value.call(lastAccessLHS, ...args)); lastAccessLHS = undefined; } } return value; } var _class;var __defProp = Object.defineProperty;
 var __getOwnPropNames = Object.getOwnPropertyNames;
-var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
 var __commonJS = (cb, mod) => function __require() {
   return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
 };
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
-    for (let key of __getOwnPropNames(from))
-      if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
-  }
-  return to;
-};
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 
 // plugin.schema.json
 var require_plugin_schema = __commonJS({
-  "plugin.schema.json"(exports, module2) {
-    module2.exports = {
+  "plugin.schema.json"(exports, module) {
+    module.exports = {
       IIdentifierResolution: {
         components: {
           schemas: {
@@ -4346,66 +4330,6 @@ var require_plugin_schema = __commonJS({
   }
 });
 
-// src/index.ts
-var index_exports = {};
-__export(index_exports, {
-  IdentifierResolution: () => IdentifierResolution,
-  ensureManagedIdentifierResult: () => ensureManagedIdentifierResult,
-  getManagedCoseKeyIdentifier: () => getManagedCoseKeyIdentifier,
-  getManagedDidIdentifier: () => getManagedDidIdentifier,
-  getManagedIdentifier: () => getManagedIdentifier,
-  getManagedJwkIdentifier: () => getManagedJwkIdentifier,
-  getManagedKeyIdentifier: () => getManagedKeyIdentifier,
-  getManagedKidIdentifier: () => getManagedKidIdentifier,
-  getManagedOID4VCIssuerIdentifier: () => getManagedOID4VCIssuerIdentifier,
-  getManagedX5cIdentifier: () => getManagedX5cIdentifier,
-  identifierResolutionContextMethods: () => identifierResolutionContextMethods,
-  isCoseKeyIdentifier: () => isCoseKeyIdentifier,
-  isDidIdentifier: () => isDidIdentifier,
-  isExternalIdentifierCoseKeyOpts: () => isExternalIdentifierCoseKeyOpts,
-  isExternalIdentifierDidOpts: () => isExternalIdentifierDidOpts,
-  isExternalIdentifierJwkOpts: () => isExternalIdentifierJwkOpts,
-  isExternalIdentifierJwksUrlOpts: () => isExternalIdentifierJwksUrlOpts,
-  isExternalIdentifierKidOpts: () => isExternalIdentifierKidOpts,
-  isExternalIdentifierOIDFEntityIdOpts: () => isExternalIdentifierOIDFEntityIdOpts,
-  isExternalIdentifierOidcDiscoveryOpts: () => isExternalIdentifierOidcDiscoveryOpts,
-  isExternalIdentifierX5cOpts: () => isExternalIdentifierX5cOpts,
-  isIIdentifier: () => isIIdentifier,
-  isJwkIdentifier: () => isJwkIdentifier,
-  isJwksUrlIdentifier: () => isJwksUrlIdentifier,
-  isKeyIdentifier: () => isKeyIdentifier,
-  isKidIdentifier: () => isKidIdentifier,
-  isManagedIdentifierCoseKeyOpts: () => isManagedIdentifierCoseKeyOpts,
-  isManagedIdentifierCoseKeyResult: () => isManagedIdentifierCoseKeyResult,
-  isManagedIdentifierDidOpts: () => isManagedIdentifierDidOpts,
-  isManagedIdentifierDidResult: () => isManagedIdentifierDidResult,
-  isManagedIdentifierJwkOpts: () => isManagedIdentifierJwkOpts,
-  isManagedIdentifierJwkResult: () => isManagedIdentifierJwkResult,
-  isManagedIdentifierKeyOpts: () => isManagedIdentifierKeyOpts,
-  isManagedIdentifierKeyResult: () => isManagedIdentifierKeyResult,
-  isManagedIdentifierKidOpts: () => isManagedIdentifierKidOpts,
-  isManagedIdentifierKidResult: () => isManagedIdentifierKidResult,
-  isManagedIdentifierOID4VCIssuerOpts: () => isManagedIdentifierOID4VCIssuerOpts,
-  isManagedIdentifierResult: () => isManagedIdentifierResult,
-  isManagedIdentifierX5cOpts: () => isManagedIdentifierX5cOpts,
-  isManagedIdentifierX5cResult: () => isManagedIdentifierX5cResult,
-  isOID4VCIssuerIdentifier: () => isOID4VCIssuerIdentifier,
-  isOIDFEntityIdIdentifier: () => isOIDFEntityIdIdentifier,
-  isOidcDiscoveryIdentifier: () => isOidcDiscoveryIdentifier,
-  isX5cIdentifier: () => isX5cIdentifier,
-  legacyKeyRefsToIdentifierOpts: () => legacyKeyRefsToIdentifierOpts,
-  managedIdentifierToJwk: () => managedIdentifierToJwk,
-  managedIdentifierToKeyResult: () => managedIdentifierToKeyResult,
-  resolveExternalCoseKeyIdentifier: () => resolveExternalCoseKeyIdentifier,
-  resolveExternalDidIdentifier: () => resolveExternalDidIdentifier,
-  resolveExternalIdentifier: () => resolveExternalIdentifier,
-  resolveExternalJwkIdentifier: () => resolveExternalJwkIdentifier,
-  resolveExternalOIDFEntityIdIdentifier: () => resolveExternalOIDFEntityIdIdentifier,
-  resolveExternalX5cIdentifier: () => resolveExternalX5cIdentifier,
-  schema: () => schema
-});
-module.exports = __toCommonJS(index_exports);
-
 // src/types/common.ts
 function isDidIdentifier(identifier) {
   return isIIdentifier(identifier) || typeof identifier === "string" && identifier.startsWith("did:");
@@ -4574,20 +4498,20 @@ var identifierResolutionContextMethods = [
 ];
 
 // src/agent/IdentifierResolution.ts
-var import_ssi_sdk_ext7 = require("@sphereon/ssi-sdk-ext.key-utils");
+var _ssisdkextkeyutils = require('@sphereon/ssi-sdk-ext.key-utils');
 
 // src/functions/managedIdentifierFunctions.ts
-var import_ssi_sdk_ext = require("@sphereon/ssi-sdk-ext.did-utils");
-var import_ssi_sdk_ext2 = require("@sphereon/ssi-sdk-ext.key-utils");
-var import_ssi_sdk_ext3 = require("@sphereon/ssi-sdk-ext.x509-utils");
-var import_ssi_sdk = require("@sphereon/ssi-sdk.agent-config");
-var import_pkijs = require("pkijs");
+var _ssisdkextdidutils = require('@sphereon/ssi-sdk-ext.did-utils');
+
+var _ssisdkextx509utils = require('@sphereon/ssi-sdk-ext.x509-utils');
+var _ssisdkagentconfig = require('@sphereon/ssi-sdk.agent-config');
+var _pkijs = require('pkijs');
 async function getManagedKidIdentifier(opts, context) {
   const method = "kid";
   let key = void 0;
   let issuer = void 0;
   let kid = void 0;
-  if (!(0, import_ssi_sdk.contextHasKeyManager)(context)) {
+  if (!_ssisdkagentconfig.contextHasKeyManager.call(void 0, context)) {
     return Promise.reject(Error(`Cannot get Key/JWK identifier if KeyManager plugin is not enabled!`));
   } else if (opts.identifier.startsWith("did:")) {
     const did = opts.identifier.split("#")[0];
@@ -4598,24 +4522,24 @@ async function getManagedKidIdentifier(opts, context) {
     }, context);
     key = didIdentifier.key;
     issuer = didIdentifier.issuer;
-    kid = opts?.kid ?? key.meta?.verificationMethod?.id ?? didIdentifier.kid;
+    kid = _nullishCoalesce(_nullishCoalesce(_optionalChain([opts, 'optionalAccess', _ => _.kid]), () => ( _optionalChain([key, 'access', _2 => _2.meta, 'optionalAccess', _3 => _3.verificationMethod, 'optionalAccess', _4 => _4.id]))), () => ( didIdentifier.kid));
   }
   if (!key) {
     key = await context.agent.keyManagerGet({
-      kid: opts.kmsKeyRef ?? opts.identifier
+      kid: _nullishCoalesce(opts.kmsKeyRef, () => ( opts.identifier))
     });
   }
-  const jwk = (0, import_ssi_sdk_ext2.toJwk)(key.publicKeyHex, key.type, {
+  const jwk = _ssisdkextkeyutils.toJwk.call(void 0, key.publicKeyHex, key.type, {
     key
   });
-  const jwkThumbprint = key.meta?.jwkThumbprint ?? (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+  const jwkThumbprint = _nullishCoalesce(_optionalChain([key, 'access', _5 => _5.meta, 'optionalAccess', _6 => _6.jwkThumbprint]), () => ( _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
-  });
+  })));
   if (!kid) {
-    kid = opts.kid ?? key.meta?.verificationMethod?.id ?? key.kid ?? jwkThumbprint;
+    kid = _nullishCoalesce(_nullishCoalesce(_nullishCoalesce(opts.kid, () => ( _optionalChain([key, 'access', _7 => _7.meta, 'optionalAccess', _8 => _8.verificationMethod, 'optionalAccess', _9 => _9.id]))), () => ( key.kid)), () => ( jwkThumbprint));
   }
   if (!issuer) {
-    issuer = opts.issuer ?? kid;
+    issuer = _nullishCoalesce(opts.issuer, () => ( kid));
   }
   return {
     method,
@@ -4647,14 +4571,14 @@ async function getManagedKeyIdentifier(opts, _context) {
   if (opts.kmsKeyRef && opts.kmsKeyRef !== key.kid) {
     return Promise.reject(Error(`Cannot get a managed key object by providing a key and a kmsKeyRef that are different.}`));
   }
-  const jwk = (0, import_ssi_sdk_ext2.toJwk)(key.publicKeyHex, key.type, {
+  const jwk = _ssisdkextkeyutils.toJwk.call(void 0, key.publicKeyHex, key.type, {
     key
   });
-  const jwkThumbprint = key.meta?.jwkThumbprint ?? (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+  const jwkThumbprint = _nullishCoalesce(_optionalChain([key, 'access', _10 => _10.meta, 'optionalAccess', _11 => _11.jwkThumbprint]), () => ( _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
-  });
-  const kid = opts.kid ?? key.meta?.verificationMethod?.id ?? jwkThumbprint;
-  const issuer = opts.issuer ?? kid;
+  })));
+  const kid = _nullishCoalesce(_nullishCoalesce(opts.kid, () => ( _optionalChain([key, 'access', _12 => _12.meta, 'optionalAccess', _13 => _13.verificationMethod, 'optionalAccess', _14 => _14.id]))), () => ( jwkThumbprint));
+  const issuer = _nullishCoalesce(opts.issuer, () => ( kid));
   return {
     method,
     key,
@@ -4673,17 +4597,17 @@ __name(getManagedKeyIdentifier, "getManagedKeyIdentifier");
 async function getManagedCoseKeyIdentifier(opts, context) {
   const method = "cose_key";
   const coseKey = opts.identifier;
-  if (!(0, import_ssi_sdk.contextHasKeyManager)(context)) {
+  if (!_ssisdkagentconfig.contextHasKeyManager.call(void 0, context)) {
     return Promise.reject(Error(`Cannot get Cose Key identifier if KeyManager plugin is not enabled!`));
   }
-  const jwk = (0, import_ssi_sdk_ext2.coseKeyToJwk)(coseKey);
-  const jwkThumbprint = (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+  const jwk = _ssisdkextkeyutils.coseKeyToJwk.call(void 0, coseKey);
+  const jwkThumbprint = _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
   });
   const key = await context.agent.keyManagerGet({
-    kid: opts.kmsKeyRef ?? jwkThumbprint
+    kid: _nullishCoalesce(opts.kmsKeyRef, () => ( jwkThumbprint))
   });
-  const kid = opts.kid ?? coseKey.kid ?? jwkThumbprint;
+  const kid = _nullishCoalesce(_nullishCoalesce(opts.kid, () => ( coseKey.kid)), () => ( jwkThumbprint));
   const issuer = opts.issuer;
   return {
     method,
@@ -4702,7 +4626,7 @@ async function getManagedCoseKeyIdentifier(opts, context) {
 __name(getManagedCoseKeyIdentifier, "getManagedCoseKeyIdentifier");
 async function getManagedDidIdentifier(opts, context) {
   const method = "did";
-  if (!(0, import_ssi_sdk.contextHasDidManager)(context)) {
+  if (!_ssisdkagentconfig.contextHasDidManager.call(void 0, context)) {
     return Promise.reject(Error(`Cannot get DID identifier if DID Manager plugin is not enabled!`));
   }
   let identifier;
@@ -4714,26 +4638,26 @@ async function getManagedDidIdentifier(opts, context) {
     identifier = opts.identifier;
   }
   const did = identifier.did;
-  const keys = identifier?.keys;
-  const extendedKey = await (0, import_ssi_sdk_ext.getFirstKeyWithRelation)({
+  const keys = _optionalChain([identifier, 'optionalAccess', _15 => _15.keys]);
+  const extendedKey = await _ssisdkextdidutils.getFirstKeyWithRelation.call(void 0, {
     ...opts,
     identifier,
-    vmRelationship: opts.vmRelationship ?? "verificationMethod"
+    vmRelationship: _nullishCoalesce(opts.vmRelationship, () => ( "verificationMethod"))
   }, context);
   const key = extendedKey;
   const controllerKeyId = identifier.controllerKeyId;
-  const jwk = (0, import_ssi_sdk_ext2.toJwk)(key.publicKeyHex, key.type, {
+  const jwk = _ssisdkextkeyutils.toJwk.call(void 0, key.publicKeyHex, key.type, {
     key
   });
-  const jwkThumbprint = key.meta?.jwkThumbprint ?? (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+  const jwkThumbprint = _nullishCoalesce(_optionalChain([key, 'access', _16 => _16.meta, 'optionalAccess', _17 => _17.jwkThumbprint]), () => ( _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
-  });
-  let kid = opts.kid ?? extendedKey.meta?.verificationMethod?.id;
+  })));
+  let kid = _nullishCoalesce(opts.kid, () => ( _optionalChain([extendedKey, 'access', _18 => _18.meta, 'optionalAccess', _19 => _19.verificationMethod, 'optionalAccess', _20 => _20.id])));
   if (!kid.startsWith(did)) {
     const hash = kid.startsWith("#") ? "" : "#";
     kid = `${did}${hash}${kid}`;
   }
-  const issuer = opts.issuer ?? did;
+  const issuer = _nullishCoalesce(opts.issuer, () => ( did));
   return {
     method,
     key,
@@ -4755,20 +4679,20 @@ __name(getManagedDidIdentifier, "getManagedDidIdentifier");
 async function getManagedJwkIdentifier(opts, context) {
   const method = "jwk";
   const { kid, issuer } = opts;
-  if (!(0, import_ssi_sdk.contextHasKeyManager)(context)) {
+  if (!_ssisdkagentconfig.contextHasKeyManager.call(void 0, context)) {
     return Promise.reject(Error(`Cannot get Key/JWK identifier if KeyManager plugin is not enabled!`));
   }
   const key = await context.agent.keyManagerGet({
-    kid: opts.kmsKeyRef ?? (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+    kid: _nullishCoalesce(opts.kmsKeyRef, () => ( _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
       jwk: opts.identifier
-    })
+    })))
   });
-  const jwk = opts.identifier ?? (0, import_ssi_sdk_ext2.toJwk)(key.publicKeyHex, key.type, {
+  const jwk = _nullishCoalesce(opts.identifier, () => ( _ssisdkextkeyutils.toJwk.call(void 0, key.publicKeyHex, key.type, {
     key
-  });
-  const jwkThumbprint = key.meta?.jwkThumbprint ?? (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+  })));
+  const jwkThumbprint = _nullishCoalesce(_optionalChain([key, 'access', _21 => _21.meta, 'optionalAccess', _22 => _22.jwkThumbprint]), () => ( _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
-  });
+  })));
   return {
     method,
     key,
@@ -4790,23 +4714,23 @@ async function getManagedX5cIdentifier(opts, context) {
   const x5c = opts.identifier;
   if (x5c.length === 0) {
     return Promise.reject(`Cannot resolve x5c when an empty x5c is passed in`);
-  } else if (!(0, import_ssi_sdk.contextHasKeyManager)(context)) {
+  } else if (!_ssisdkagentconfig.contextHasKeyManager.call(void 0, context)) {
     return Promise.reject(Error(`Cannot get X5c identifier if KeyManager plugin is not enabled!`));
   }
-  const cryptoImpl = (0, import_ssi_sdk_ext2.globalCrypto)(false, opts.crypto);
-  const certificate = (0, import_ssi_sdk_ext3.pemOrDerToX509Certificate)(x5c[0]);
-  const cryptoEngine = new import_pkijs.CryptoEngine({
+  const cryptoImpl = _ssisdkextkeyutils.globalCrypto.call(void 0, false, opts.crypto);
+  const certificate = _ssisdkextx509utils.pemOrDerToX509Certificate.call(void 0, x5c[0]);
+  const cryptoEngine = new (0, _pkijs.CryptoEngine)({
     name: "identifier_resolver_managed",
     crypto: cryptoImpl
   });
-  (0, import_pkijs.setEngine)(cryptoEngine.name, cryptoEngine);
+  _pkijs.setEngine.call(void 0, cryptoEngine.name, cryptoEngine);
   const pk = await certificate.getPublicKey(void 0, cryptoEngine);
   const jwk = await cryptoEngine.subtle.exportKey("jwk", pk);
-  const jwkThumbprint = (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+  const jwkThumbprint = _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
   });
   const key = await context.agent.keyManagerGet({
-    kid: opts.kmsKeyRef ?? jwkThumbprint
+    kid: _nullishCoalesce(opts.kmsKeyRef, () => ( jwkThumbprint))
   });
   return {
     method,
@@ -4841,7 +4765,7 @@ async function getManagedOID4VCIssuerIdentifier(opts, context) {
     dq: "mxRTU3QDyR2EnCv0Nl0TCF90oliJGAHR9HJmBe__EjuCBbwHfcT8OG3hWOv8vpzokQPRl5cQt3NckzX3fs6xlJN4Ai2Hh2zduKFVQ2p-AF2p6Yfahscjtq-GY9cB85NxLy2IXCC0PF--Sq9LOrTE9QV988SJy_yUrAjcZ5MmECk",
     qi: "ldHXIrEmMZVaNwGzDF9WG8sHj2mOZmQpw9yrjLK9hAsmsNr5LTyqWAqJIYZSwPTYWhY4nu2O0EY9G9uYiqewXfCKw_UngrJt8Xwfq1Zruz0YY869zPN4GiE9-9rzdZB33RBw8kIOquY3MK74FMwCihYx_LiU2YTHkaoJ3ncvtvg"
   };
-  const jwkThumbprint = (0, import_ssi_sdk_ext2.calculateJwkThumbprint)({
+  const jwkThumbprint = _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
   });
   const key = {
@@ -4920,13 +4844,13 @@ async function managedIdentifierToJwk(identifier, context) {
 __name(managedIdentifierToJwk, "managedIdentifierToJwk");
 
 // src/functions/externalIdentifierFunctions.ts
-var import_ssi_sdk_ext4 = require("@sphereon/ssi-sdk-ext.did-utils");
-var import_ssi_sdk_ext5 = require("@sphereon/ssi-sdk-ext.key-utils");
-var import_ssi_sdk_ext6 = require("@sphereon/ssi-sdk-ext.x509-utils");
-var import_ssi_sdk2 = require("@sphereon/ssi-sdk.agent-config");
-var import_ssi_types = require("@sphereon/ssi-types");
-var import_utils = require("@veramo/utils");
-var import_pkijs2 = require("pkijs");
+
+
+
+
+var _ssitypes = require('@sphereon/ssi-types');
+var _utils = require('@veramo/utils');
+
 async function resolveExternalIdentifier(opts, context) {
   let method;
   if (isExternalIdentifierDidOpts(opts)) {
@@ -4953,26 +4877,26 @@ async function resolveExternalX5cIdentifier(opts, context) {
   if (!isExternalIdentifierX5cOpts(opts)) {
     return Promise.reject("External x5c Identifier args need to be provided");
   }
-  const verify = opts.verify ?? true;
-  const x5c = opts.identifier.map((derOrPem) => derOrPem.includes("CERTIFICATE") ? (0, import_ssi_sdk_ext6.PEMToDer)(derOrPem) : derOrPem);
+  const verify = _nullishCoalesce(opts.verify, () => ( true));
+  const x5c = opts.identifier.map((derOrPem) => derOrPem.includes("CERTIFICATE") ? _ssisdkextx509utils.PEMToDer.call(void 0, derOrPem) : derOrPem);
   if (x5c.length === 0) {
     return Promise.reject("Empty certification chain is not allowed");
   }
-  const certificates = x5c.map(import_ssi_sdk_ext6.pemOrDerToX509Certificate);
+  const certificates = x5c.map(_ssisdkextx509utils.pemOrDerToX509Certificate);
   let verificationResult;
   let issuerJWK;
   let jwks = [];
   if (verify) {
-    if ((0, import_ssi_sdk2.contextHasPlugin)(context, "verifyCertificateChain")) {
+    if (_ssisdkagentconfig.contextHasPlugin.call(void 0, context, "verifyCertificateChain")) {
       verificationResult = await context.agent.verifyCertificateChain({
         chain: opts.identifier,
-        trustAnchors: opts.trustAnchors ?? [],
+        trustAnchors: _nullishCoalesce(opts.trustAnchors, () => ( [])),
         verificationTime: opts.verificationTime
       });
     } else {
-      verificationResult = await (0, import_ssi_sdk_ext6.validateX509CertificateChain)({
+      verificationResult = await _ssisdkextx509utils.validateX509CertificateChain.call(void 0, {
         chain: opts.identifier,
-        trustAnchors: opts.trustAnchors ?? [],
+        trustAnchors: _nullishCoalesce(opts.trustAnchors, () => ( [])),
         verificationTime: opts.verificationTime,
         opts
       });
@@ -4982,30 +4906,30 @@ async function resolveExternalX5cIdentifier(opts, context) {
         return {
           jwk: cert.publicKeyJWK,
           kid: cert.subject.dn.DN,
-          jwkThumbprint: (0, import_ssi_sdk_ext5.calculateJwkThumbprint)({
+          jwkThumbprint: _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
             jwk: cert.publicKeyJWK
           }),
-          publicKeyHex: (0, import_ssi_sdk_ext4.jwkTtoPublicKeyHex)(cert.publicKeyJWK)
+          publicKeyHex: _ssisdkextdidutils.jwkTtoPublicKeyHex.call(void 0, cert.publicKeyJWK)
         };
       });
     }
   }
   if (!jwks || jwks.length === 0) {
-    const cryptoEngine = new import_pkijs2.CryptoEngine({
+    const cryptoEngine = new (0, _pkijs.CryptoEngine)({
       name: "identifier_resolver_external",
-      crypto: (0, import_ssi_sdk_ext5.globalCrypto)(false, opts.crypto)
+      crypto: _ssisdkextkeyutils.globalCrypto.call(void 0, false, opts.crypto)
     });
-    (0, import_pkijs2.setEngine)(cryptoEngine.name, cryptoEngine);
+    _pkijs.setEngine.call(void 0, cryptoEngine.name, cryptoEngine);
     jwks = await Promise.all(certificates.map(async (cert) => {
       const pk = await cert.getPublicKey(void 0, cryptoEngine);
       const jwk = await cryptoEngine.exportKey("jwk", pk);
       return {
         jwk,
-        kid: (0, import_ssi_sdk_ext6.getSubjectDN)(cert).DN,
-        jwkThumbprint: (0, import_ssi_sdk_ext5.calculateJwkThumbprint)({
+        kid: _ssisdkextx509utils.getSubjectDN.call(void 0, cert).DN,
+        jwkThumbprint: _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
           jwk
         }),
-        publicKeyHex: (0, import_ssi_sdk_ext4.jwkTtoPublicKeyHex)(jwk)
+        publicKeyHex: _ssisdkextdidutils.jwkTtoPublicKeyHex.call(void 0, jwk)
       };
     }));
   }
@@ -5037,7 +4961,7 @@ async function resolveExternalJwkIdentifier(opts, context) {
       identifier: jwk.x5c
     }, context);
   }
-  const jwkThumbprint = (0, import_ssi_sdk_ext5.calculateJwkThumbprint)({
+  const jwkThumbprint = _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
   });
   return {
@@ -5048,7 +4972,7 @@ async function resolveExternalJwkIdentifier(opts, context) {
         jwk,
         jwkThumbprint,
         kid: jwk.kid,
-        publicKeyHex: (0, import_ssi_sdk_ext4.jwkTtoPublicKeyHex)(jwk)
+        publicKeyHex: _ssisdkextdidutils.jwkTtoPublicKeyHex.call(void 0, jwk)
       }
     ],
     x5c
@@ -5067,8 +4991,8 @@ async function resolveExternalCoseKeyIdentifier(opts, context) {
       identifier: coseKey.x5chain
     }, context);
   }
-  const jwk = (0, import_ssi_sdk_ext5.coseKeyToJwk)(coseKey);
-  const jwkThumbprint = (0, import_ssi_sdk_ext5.calculateJwkThumbprint)({
+  const jwk = _ssisdkextkeyutils.coseKeyToJwk.call(void 0, coseKey);
+  const jwkThumbprint = _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
     jwk
   });
   return {
@@ -5079,7 +5003,7 @@ async function resolveExternalCoseKeyIdentifier(opts, context) {
         jwk,
         jwkThumbprint,
         kid: coseKey.kid,
-        publicKeyHex: (0, import_ssi_sdk_ext4.jwkTtoPublicKeyHex)(jwk)
+        publicKeyHex: _ssisdkextdidutils.jwkTtoPublicKeyHex.call(void 0, jwk)
       }
     ],
     x5c
@@ -5089,36 +5013,36 @@ __name(resolveExternalCoseKeyIdentifier, "resolveExternalCoseKeyIdentifier");
 async function resolveExternalDidIdentifier(opts, context) {
   if (!isExternalIdentifierDidOpts(opts)) {
     return Promise.reject("External DID Identifier args need to be provided");
-  } else if (!(0, import_ssi_sdk2.contextHasPlugin)(context, "resolveDid")) {
+  } else if (!_ssisdkagentconfig.contextHasPlugin.call(void 0, context, "resolveDid")) {
     return Promise.reject(Error(`Cannot get external DID identifier if DID resolver plugin is not enabled!`));
   }
   const { uniresolverResolution = false, localResolution = true, resolverResolution = true } = opts;
   const did = opts.identifier;
   let parsed;
   try {
-    parsed = (0, import_ssi_types.parseDid)(did);
+    parsed = _ssitypes.parseDid.call(void 0, did);
   } catch (error) {
     return Promise.reject(error);
   }
   const didParsed = parsed;
-  const didResolutionResult = await (0, import_ssi_sdk_ext4.getAgentResolver)(context, {
+  const didResolutionResult = await _ssisdkextdidutils.getAgentResolver.call(void 0, context, {
     uniresolverResolution,
     localResolution,
     resolverResolution
   }).resolve(did);
-  const didDocument = didResolutionResult.didDocument ?? void 0;
-  const didJwks = didDocument ? (0, import_ssi_sdk_ext4.didDocumentToJwks)(didDocument) : void 0;
-  const jwks = didJwks ? Array.from(new Set(Array.from(Object.values(didJwks).filter((jwks2) => (0, import_utils.isDefined)(jwks2) && jwks2.length > 0).flatMap((jwks2) => jwks2)).flatMap((jwk) => {
+  const didDocument = _nullishCoalesce(didResolutionResult.didDocument, () => ( void 0));
+  const didJwks = didDocument ? _ssisdkextdidutils.didDocumentToJwks.call(void 0, didDocument) : void 0;
+  const jwks = didJwks ? Array.from(new Set(Array.from(Object.values(didJwks).filter((jwks2) => _utils.isDefined.call(void 0, jwks2) && jwks2.length > 0).flatMap((jwks2) => jwks2)).flatMap((jwk) => {
     return {
       jwk,
-      jwkThumbprint: (0, import_ssi_sdk_ext5.calculateJwkThumbprint)({
+      jwkThumbprint: _ssisdkextkeyutils.calculateJwkThumbprint.call(void 0, {
         jwk
       }),
       kid: jwk.kid,
-      publicKeyHex: (0, import_ssi_sdk_ext4.jwkTtoPublicKeyHex)(jwk)
+      publicKeyHex: _ssisdkextdidutils.jwkTtoPublicKeyHex.call(void 0, jwk)
     };
   }).map((jwk) => JSON.stringify(jwk)))).map((jwks2) => JSON.parse(jwks2)) : [];
-  if (didResolutionResult?.didDocument) {
+  if (_optionalChain([didResolutionResult, 'optionalAccess', _23 => _23.didDocument])) {
     delete didResolutionResult["didDocument"];
   }
   return {
@@ -5134,15 +5058,15 @@ async function resolveExternalDidIdentifier(opts, context) {
 __name(resolveExternalDidIdentifier, "resolveExternalDidIdentifier");
 
 // src/functions/externalOIDFIdentifier.ts
-var import_ssi_sdk3 = require("@sphereon/ssi-sdk.agent-config");
-var import_from_string = require("uint8arrays/from-string");
-var import_to_string = require("uint8arrays/to-string");
+
+var _fromstring = require('uint8arrays/from-string');
+var _tostring = require('uint8arrays/to-string');
 async function resolveExternalOIDFEntityIdIdentifier(opts, context) {
   let { trustAnchors, identifier } = opts;
   if (!trustAnchors || trustAnchors.length === 0) {
     return Promise.reject(Error("ExternalIdentifierOIDFEntityIdOpts is missing the trustAnchors"));
   }
-  if (!(0, import_ssi_sdk3.contextHasPlugin)(context, "jwtVerifyJwsSignature")) {
+  if (!_ssisdkagentconfig.contextHasPlugin.call(void 0, context, "jwtVerifyJwsSignature")) {
     return Promise.reject(Error("For OIDFEntityId resolving the agent needs to have the JwtService plugin enabled"));
   }
   const trustedAnchors = /* @__PURE__ */ new Set();
@@ -5157,7 +5081,7 @@ async function resolveExternalOIDFEntityIdIdentifier(opts, context) {
       ]
     });
     if (resolveResult.error || !resolveResult.trustChain) {
-      errorList[trustAnchor] = resolveResult.errorMessage ?? "unspecified";
+      errorList[trustAnchor] = _nullishCoalesce(resolveResult.errorMessage, () => ( "unspecified"));
     } else {
       const trustChain = resolveResult.trustChain.asJsReadonlyArrayView();
       if (trustChain.length === 0) {
@@ -5176,7 +5100,7 @@ async function resolveExternalOIDFEntityIdIdentifier(opts, context) {
         errorList[trustAnchor] = "No signature was present in the trust anchor JWS";
         continue;
       }
-      payload = JSON.parse((0, import_to_string.toString)((0, import_from_string.fromString)(jwtVerifyResult.jws.payload, "base64url")));
+      payload = JSON.parse(_tostring.toString.call(void 0, _fromstring.fromString.call(void 0, jwtVerifyResult.jws.payload, "base64url")));
       const signature = jwtVerifyResult.jws.signatures[0];
       if (signature.identifier.jwks.length === 0) {
         errorList[trustAnchor] = "No JWK was present in the trust anchor signature";
@@ -5205,14 +5129,14 @@ __name(resolveExternalOIDFEntityIdIdentifier, "resolveExternalOIDFEntityIdIdenti
 function legacyKeyRefsToIdentifierOpts(opts) {
   if (!opts.idOpts) {
     console.warn(`Legacy idOpts being used. Support will be dropped in the future. Consider switching to the idOpts, to have support for DIDs, JWKS, x5c etc. See https://github.com/Sphereon-Opensource/SSI-SDK-crypto-extensions/tree/feature/multi_identifier_support/packages/identifier-resolution`);
-    let kmsKeyRef = opts.keyRef ?? opts.didOpts?.idOpts?.kmsKeyRef ?? opts.didOpts?.kid ?? opts.didOpts?.idOpts?.kid ?? (typeof opts.didOpts?.idOpts?.identifier === "object" ? opts.didOpts.idOpts.identifier.keys[0].kid : void 0);
+    let kmsKeyRef = _nullishCoalesce(_nullishCoalesce(_nullishCoalesce(_nullishCoalesce(opts.keyRef, () => ( _optionalChain([opts, 'access', _24 => _24.didOpts, 'optionalAccess', _25 => _25.idOpts, 'optionalAccess', _26 => _26.kmsKeyRef]))), () => ( _optionalChain([opts, 'access', _27 => _27.didOpts, 'optionalAccess', _28 => _28.kid]))), () => ( _optionalChain([opts, 'access', _29 => _29.didOpts, 'optionalAccess', _30 => _30.idOpts, 'optionalAccess', _31 => _31.kid]))), () => ( (typeof _optionalChain([opts, 'access', _32 => _32.didOpts, 'optionalAccess', _33 => _33.idOpts, 'optionalAccess', _34 => _34.identifier]) === "object" ? opts.didOpts.idOpts.identifier.keys[0].kid : void 0)));
     if (!kmsKeyRef) {
       throw Error("Key ref is needed for access token signer");
     }
-    let identifier = opts.didOpts?.identifier ?? opts.didOpts?.idOpts?.identifier;
+    let identifier = _nullishCoalesce(_optionalChain([opts, 'access', _35 => _35.didOpts, 'optionalAccess', _36 => _36.identifier]), () => ( _optionalChain([opts, 'access', _37 => _37.didOpts, 'optionalAccess', _38 => _38.idOpts, 'optionalAccess', _39 => _39.identifier])));
     return {
-      kmsKeyRef: opts.keyRef ?? kmsKeyRef,
-      identifier: identifier ?? kmsKeyRef,
+      kmsKeyRef: _nullishCoalesce(opts.keyRef, () => ( kmsKeyRef)),
+      identifier: _nullishCoalesce(identifier, () => ( kmsKeyRef)),
       issuer: opts.iss
     };
   } else {
@@ -5231,13 +5155,13 @@ function legacyKeyRefsToIdentifierOpts(opts) {
 __name(legacyKeyRefsToIdentifierOpts, "legacyKeyRefsToIdentifierOpts");
 
 // src/agent/IdentifierResolution.ts
-var IdentifierResolution = class {
+var IdentifierResolution = (_class = class {
   static {
     __name(this, "IdentifierResolution");
   }
-  _crypto;
-  schema = schema.IMnemonicInfoGenerator;
-  methods = {
+  
+  __init() {this.schema = exports.schema = schema.IMnemonicInfoGenerator}
+  __init2() {this.methods = {
     identifierManagedGet: this.identifierManagedGet.bind(this),
     identifierManagedGetByDid: this.identifierManagedGetByDid.bind(this),
     identifierManagedGetByKid: this.identifierManagedGetByKid.bind(this),
@@ -5252,12 +5176,12 @@ var IdentifierResolution = class {
     identifierExternalResolveByJwk: this.identifierExternalResolveByJwk.bind(this),
     identifierExternalResolveByCoseKey: this.identifierExternalResolveByCoseKey.bind(this),
     identifierExternalResolveByOIDFEntityId: this.identifierExternalResolveByOIDFEntityId.bind(this)
-  };
+  }}
   /**
   * TODO: Add a cache, as we are retrieving the same keys/info quite often
   */
-  constructor(opts) {
-    this._crypto = (0, import_ssi_sdk_ext7.globalCrypto)(false, opts?.crypto);
+  constructor(opts) {;_class.prototype.__init.call(this);_class.prototype.__init2.call(this);
+    this._crypto = _ssisdkextkeyutils.globalCrypto.call(void 0, false, _optionalChain([opts, 'optionalAccess', _40 => _40.crypto]));
   }
   /**
   * Main method for managed identifiers. We always go through this method (also the other methods below) as we want to
@@ -5349,8 +5273,64 @@ var IdentifierResolution = class {
       method: "entity_id"
     }, context);
   }
-};
+}, _class);
 
 // src/index.ts
 var schema = require_plugin_schema();
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+exports.IdentifierResolution = IdentifierResolution; exports.ensureManagedIdentifierResult = ensureManagedIdentifierResult; exports.getManagedCoseKeyIdentifier = getManagedCoseKeyIdentifier; exports.getManagedDidIdentifier = getManagedDidIdentifier; exports.getManagedIdentifier = getManagedIdentifier; exports.getManagedJwkIdentifier = getManagedJwkIdentifier; exports.getManagedKeyIdentifier = getManagedKeyIdentifier; exports.getManagedKidIdentifier = getManagedKidIdentifier; exports.getManagedOID4VCIssuerIdentifier = getManagedOID4VCIssuerIdentifier; exports.getManagedX5cIdentifier = getManagedX5cIdentifier; exports.identifierResolutionContextMethods = identifierResolutionContextMethods; exports.isCoseKeyIdentifier = isCoseKeyIdentifier; exports.isDidIdentifier = isDidIdentifier; exports.isExternalIdentifierCoseKeyOpts = isExternalIdentifierCoseKeyOpts; exports.isExternalIdentifierDidOpts = isExternalIdentifierDidOpts; exports.isExternalIdentifierJwkOpts = isExternalIdentifierJwkOpts; exports.isExternalIdentifierJwksUrlOpts = isExternalIdentifierJwksUrlOpts; exports.isExternalIdentifierKidOpts = isExternalIdentifierKidOpts; exports.isExternalIdentifierOIDFEntityIdOpts = isExternalIdentifierOIDFEntityIdOpts; exports.isExternalIdentifierOidcDiscoveryOpts = isExternalIdentifierOidcDiscoveryOpts; exports.isExternalIdentifierX5cOpts = isExternalIdentifierX5cOpts; exports.isIIdentifier = isIIdentifier; exports.isJwkIdentifier = isJwkIdentifier; exports.isJwksUrlIdentifier = isJwksUrlIdentifier; exports.isKeyIdentifier = isKeyIdentifier; exports.isKidIdentifier = isKidIdentifier; exports.isManagedIdentifierCoseKeyOpts = isManagedIdentifierCoseKeyOpts; exports.isManagedIdentifierCoseKeyResult = isManagedIdentifierCoseKeyResult; exports.isManagedIdentifierDidOpts = isManagedIdentifierDidOpts; exports.isManagedIdentifierDidResult = isManagedIdentifierDidResult; exports.isManagedIdentifierJwkOpts = isManagedIdentifierJwkOpts; exports.isManagedIdentifierJwkResult = isManagedIdentifierJwkResult; exports.isManagedIdentifierKeyOpts = isManagedIdentifierKeyOpts; exports.isManagedIdentifierKeyResult = isManagedIdentifierKeyResult; exports.isManagedIdentifierKidOpts = isManagedIdentifierKidOpts; exports.isManagedIdentifierKidResult = isManagedIdentifierKidResult; exports.isManagedIdentifierOID4VCIssuerOpts = isManagedIdentifierOID4VCIssuerOpts; exports.isManagedIdentifierResult = isManagedIdentifierResult; exports.isManagedIdentifierX5cOpts = isManagedIdentifierX5cOpts; exports.isManagedIdentifierX5cResult = isManagedIdentifierX5cResult; exports.isOID4VCIssuerIdentifier = isOID4VCIssuerIdentifier; exports.isOIDFEntityIdIdentifier = isOIDFEntityIdIdentifier; exports.isOidcDiscoveryIdentifier = isOidcDiscoveryIdentifier; exports.isX5cIdentifier = isX5cIdentifier; exports.legacyKeyRefsToIdentifierOpts = legacyKeyRefsToIdentifierOpts; exports.managedIdentifierToJwk = managedIdentifierToJwk; exports.managedIdentifierToKeyResult = managedIdentifierToKeyResult; exports.resolveExternalCoseKeyIdentifier = resolveExternalCoseKeyIdentifier; exports.resolveExternalDidIdentifier = resolveExternalDidIdentifier; exports.resolveExternalIdentifier = resolveExternalIdentifier; exports.resolveExternalJwkIdentifier = resolveExternalJwkIdentifier; exports.resolveExternalOIDFEntityIdIdentifier = resolveExternalOIDFEntityIdIdentifier; exports.resolveExternalX5cIdentifier = resolveExternalX5cIdentifier; exports.schema = schema;
 //# sourceMappingURL=index.cjs.map