@sphereon/ssi-sdk-ext.identifier-resolution 0.28.1-feature.oyd.cmsm.improv.21 → 0.28.1-next.54

package/dist/agent/IdentifierResolution.js

@@ -1,123 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.IdentifierResolution = void 0;
-const ssi_sdk_ext_key_utils_1 = require("@sphereon/ssi-sdk-ext.key-utils");
-const __1 = require("..");
-const functions_1 = require("../functions");
-/**
- * @public
- */
-class IdentifierResolution {
-    /**
-     * TODO: Add a cache, as we are retrieving the same keys/info quite often
-     */
-    constructor(opts) {
-        this.schema = __1.schema.IMnemonicInfoGenerator;
-        this.methods = {
-            identifierManagedGet: this.identifierGetManaged.bind(this),
-            identifierManagedGetByDid: this.identifierGetManagedByDid.bind(this),
-            identifierManagedGetByKid: this.identifierGetManagedByKid.bind(this),
-            identifierManagedGetByJwk: this.identifierGetManagedByJwk.bind(this),
-            identifierManagedGetByX5c: this.identifierGetManagedByX5c.bind(this),
-            identifierManagedGetByKey: this.identifierGetManagedByKey.bind(this),
-            identifierManagedGetByCoseKey: this.identifierGetManagedByCoseKey.bind(this),
-            identifierManagedGetByOID4VCIssuer: this.identifierGetManagedByOID4VCIssuer.bind(this),
-            identifierExternalResolve: this.identifierResolveExternal.bind(this),
-            identifierExternalResolveByDid: this.identifierExternalResolveByDid.bind(this),
-            identifierExternalResolveByX5c: this.identifierExternalResolveByX5c.bind(this),
-            identifierExternalResolveByJwk: this.identifierExternalResolveByJwk.bind(this),
-            identifierExternalResolveByCoseKey: this.identifierExternalResolveByCoseKey.bind(this),
-            identifierExternalResolveByOIDFEntityId: this.identifierExternalResolveByOIDFEntityId.bind(this),
-            // todo: JWKSet, oidc-discovery, oid4vci-issuer etc. Anything we already can resolve and need keys of
-        };
-        this._crypto = (0, ssi_sdk_ext_key_utils_1.globalCrypto)(false, opts === null || opts === void 0 ? void 0 : opts.crypto);
-    }
-    /**
-     * Main method for managed identifiers. We always go through this method (also the other methods below) as we want to
-     * integrate a plugin for anomaly detection. Having a single method helps
-     * @param args
-     * @param context
-     * @private
-     */
-    identifierGetManaged(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return yield (0, functions_1.ensureManagedIdentifierResult)(Object.assign(Object.assign({}, args), { crypto: this._crypto }), context);
-        });
-    }
-    identifierGetManagedByDid(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierGetManaged(Object.assign(Object.assign({}, args), { method: 'did' }), context));
-        });
-    }
-    identifierGetManagedByKid(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierGetManaged(Object.assign(Object.assign({}, args), { method: 'kid' }), context));
-        });
-    }
-    identifierGetManagedByKey(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierGetManaged(Object.assign(Object.assign({}, args), { method: 'key' }), context));
-        });
-    }
-    identifierGetManagedByCoseKey(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierGetManaged(Object.assign(Object.assign({}, args), { method: 'cose_key' }), context));
-        });
-    }
-    identifierGetManagedByOID4VCIssuer(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierGetManaged(Object.assign(Object.assign({}, args), { method: 'oid4vci-issuer' }), context));
-        });
-    }
-    identifierGetManagedByJwk(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierGetManaged(Object.assign(Object.assign({}, args), { method: 'jwk' }), context));
-        });
-    }
-    identifierGetManagedByX5c(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierGetManaged(Object.assign(Object.assign({}, args), { method: 'x5c' }), context));
-        });
-    }
-    identifierResolveExternal(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return yield (0, functions_1.resolveExternalIdentifier)(Object.assign(Object.assign({}, args), { crypto: this._crypto }), context);
-        });
-    }
-    identifierExternalResolveByDid(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierResolveExternal(Object.assign(Object.assign({}, args), { method: 'did' }), context));
-        });
-    }
-    identifierExternalResolveByX5c(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierResolveExternal(Object.assign(Object.assign({}, args), { method: 'x5c' }), context));
-        });
-    }
-    identifierExternalResolveByCoseKey(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierResolveExternal(Object.assign(Object.assign({}, args), { method: 'cose_key' }), context));
-        });
-    }
-    identifierExternalResolveByJwk(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierResolveExternal(Object.assign(Object.assign({}, args), { method: 'jwk' }), context));
-        });
-    }
-    identifierExternalResolveByOIDFEntityId(args, context) {
-        return __awaiter(this, void 0, void 0, function* () {
-            return (yield this.identifierResolveExternal(Object.assign(Object.assign({}, args), { method: 'entity_id' }), context));
-        });
-    }
-}
-exports.IdentifierResolution = IdentifierResolution;
-//# sourceMappingURL=IdentifierResolution.js.map

package/dist/agent/IdentifierResolution.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"IdentifierResolution.js","sourceRoot":"","sources":["../../src/agent/IdentifierResolution.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2EAA8D;AAG9D,0BAA2B;AAC3B,4CAAuF;AAgCvF;;GAEG;AACH,MAAa,oBAAoB;IAwB/B;;OAEG;IACH,YAAY,IAA0B;QAxB7B,WAAM,GAAG,UAAM,CAAC,sBAAsB,CAAA;QACtC,YAAO,GAA0B;YACxC,oBAAoB,EAAE,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,IAAI,CAAC;YAC1D,yBAAyB,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC;YACpE,yBAAyB,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC;YACpE,yBAAyB,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC;YACpE,yBAAyB,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC;YACpE,yBAAyB,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC;YACpE,6BAA6B,EAAE,IAAI,CAAC,6BAA6B,CAAC,IAAI,CAAC,IAAI,CAAC;YAC5E,kCAAkC,EAAE,IAAI,CAAC,kCAAkC,CAAC,IAAI,CAAC,IAAI,CAAC;YAEtF,yBAAyB,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,IAAI,CAAC;YACpE,8BAA8B,EAAE,IAAI,CAAC,8BAA8B,CAAC,IAAI,CAAC,IAAI,CAAC;YAC9E,8BAA8B,EAAE,IAAI,CAAC,8BAA8B,CAAC,IAAI,CAAC,IAAI,CAAC;YAC9E,8BAA8B,EAAE,IAAI,CAAC,8BAA8B,CAAC,IAAI,CAAC,IAAI,CAAC;YAC9E,kCAAkC,EAAE,IAAI,CAAC,kCAAkC,CAAC,IAAI,CAAC,IAAI,CAAC;YACtF,uCAAuC,EAAE,IAAI,CAAC,uCAAuC,CAAC,IAAI,CAAC,IAAI,CAAC;YAEhG,qGAAqG;SACtG,CAAA;QAMC,IAAI,CAAC,OAAO,GAAG,IAAA,oCAAY,EAAC,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,MAAM,CAAC,CAAA;IAClD,CAAC;IAED;;;;;;OAMG;IACW,oBAAoB,CAChC,IAAmC,EACnC,OAA2D;;YAE3D,OAAO,MAAM,IAAA,yCAA6B,kCAAM,IAAI,KAAE,MAAM,EAAE,IAAI,CAAC,OAAO,KAAI,OAAO,CAAC,CAAA;QACxF,CAAC;KAAA;IAEa,yBAAyB,CACrC,IAA8B,EAC9B,OAAyE;;YAEzE,OAAO,CAAC,MAAM,IAAI,CAAC,oBAAoB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAA+B,CAAA;QAC7G,CAAC;KAAA;IAEa,yBAAyB,CACrC,IAA8B,EAC9B,OAA2D;;YAE3D,OAAO,CAAC,MAAM,IAAI,CAAC,oBAAoB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAA+B,CAAA;QAC7G,CAAC;KAAA;IAEa,yBAAyB,CACrC,IAA8B,EAC9B,OAA2D;;YAE3D,OAAO,CAAC,MAAM,IAAI,CAAC,oBAAoB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAA+B,CAAA;QAC7G,CAAC;KAAA;IAEa,6BAA6B,CACzC,IAAkC,EAClC,OAA2D;;YAE3D,OAAO,CAAC,MAAM,IAAI,CAAC,oBAAoB,iCAAM,IAAI,KAAE,MAAM,EAAE,UAAU,KAAI,OAAO,CAAC,CAAmC,CAAA;QACtH,CAAC;KAAA;IAEa,kCAAkC,CAC9C,IAAuC,EACvC,OAA2D;;YAE3D,OAAO,CAAC,MAAM,IAAI,CAAC,oBAAoB,iCAAM,IAAI,KAAE,MAAM,EAAE,gBAAgB,KAAI,OAAO,CAAC,CAAwC,CAAA;QACjI,CAAC;KAAA;IAEa,yBAAyB,CACrC,IAA8B,EAC9B,OAA2D;;YAE3D,OAAO,CAAC,MAAM,IAAI,CAAC,oBAAoB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAA+B,CAAA;QAC7G,CAAC;KAAA;IAEa,yBAAyB,CACrC,IAA8B,EAC9B,OAA2D;;YAE3D,OAAO,CAAC,MAAM,IAAI,CAAC,oBAAoB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAA+B,CAAA;QAC7G,CAAC;KAAA;IAEa,yBAAyB,CACrC,IAA4B,EAC5B,OAAiD;;YAEjD,OAAO,MAAM,IAAA,qCAAyB,kCAAM,IAAI,KAAE,MAAM,EAAE,IAAI,CAAC,OAAO,KAAI,OAAO,CAAC,CAAA;QACpF,CAAC;KAAA;IAEa,8BAA8B,CAAC,IAA+B,EAAE,OAA2B;;YACvG,OAAO,CAAC,MAAM,IAAI,CAAC,yBAAyB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAAgC,CAAA;QACnH,CAAC;KAAA;IAEa,8BAA8B,CAAC,IAA+B,EAAE,OAA2B;;YACvG,OAAO,CAAC,MAAM,IAAI,CAAC,yBAAyB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAAgC,CAAA;QACnH,CAAC;KAAA;IAEa,kCAAkC,CAC9C,IAAmC,EACnC,OAA2B;;YAE3B,OAAO,CAAC,MAAM,IAAI,CAAC,yBAAyB,iCAAM,IAAI,KAAE,MAAM,EAAE,UAAU,KAAI,OAAO,CAAC,CAAoC,CAAA;QAC5H,CAAC;KAAA;IAEa,8BAA8B,CAAC,IAA+B,EAAE,OAA2B;;YACvG,OAAO,CAAC,MAAM,IAAI,CAAC,yBAAyB,iCAAM,IAAI,KAAE,MAAM,EAAE,KAAK,KAAI,OAAO,CAAC,CAAgC,CAAA;QACnH,CAAC;KAAA;IAEa,uCAAuC,CACnD,IAAwC,EACxC,OAA2B;;YAE3B,OAAO,CAAC,MAAM,IAAI,CAAC,yBAAyB,iCAAM,IAAI,KAAE,MAAM,EAAE,WAAW,KAAI,OAAO,CAAC,CAAyC,CAAA;QAClI,CAAC;KAAA;CACF;AA9HD,oDA8HC"}

package/dist/functions/LegacySupport.d.ts

@@ -1,12 +0,0 @@
-import { ManagedIdentifierOptsOrResult } from '../types';
-/**
- * Converts legacy id opts key refs to the new ManagedIdentifierOpts
- * @param opts
- */
-export declare function legacyKeyRefsToIdentifierOpts(opts: {
-    idOpts?: ManagedIdentifierOptsOrResult;
-    iss?: string;
-    keyRef?: string;
-    didOpts?: any;
-}): ManagedIdentifierOptsOrResult;
-//# sourceMappingURL=LegacySupport.d.ts.map

package/dist/functions/LegacySupport.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"LegacySupport.d.ts","sourceRoot":"","sources":["../../src/functions/LegacySupport.ts"],"names":[],"mappings":"AACA,OAAO,EAA4B,6BAA6B,EAAE,MAAM,UAAU,CAAA;AAElF;;;GAGG;AACH,wBAAgB,6BAA6B,CAAC,IAAI,EAAE;IAClD,MAAM,CAAC,EAAE,6BAA6B,CAAA;IACtC,GAAG,CAAC,EAAE,MAAM,CAAA;IACZ,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,OAAO,CAAC,EAAE,GAAG,CAAA;CACd,GAAG,6BAA6B,CAyChC"}

package/dist/functions/LegacySupport.js

@@ -1,39 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.legacyKeyRefsToIdentifierOpts = legacyKeyRefsToIdentifierOpts;
-/**
- * Converts legacy id opts key refs to the new ManagedIdentifierOpts
- * @param opts
- */
-function legacyKeyRefsToIdentifierOpts(opts) {
-    var _a, _b, _c, _d, _e, _f, _g, _h, _j, _k, _l, _m, _o, _p, _q, _r;
-    if (!opts.idOpts) {
-        console.warn(`Legacy idOpts being used. Support will be dropped in the future. Consider switching to the idOpts, to have support for DIDs, JWKS, x5c etc. See https://github.com/Sphereon-Opensource/SSI-SDK-crypto-extensions/tree/feature/multi_identifier_support/packages/identifier-resolution`);
-        // legacy way
-        let kmsKeyRef = (_j = (_f = (_d = (_a = opts.keyRef) !== null && _a !== void 0 ? _a : (_c = (_b = opts.didOpts) === null || _b === void 0 ? void 0 : _b.idOpts) === null || _c === void 0 ? void 0 : _c.kmsKeyRef) !== null && _d !== void 0 ? _d : (_e = opts.didOpts) === null || _e === void 0 ? void 0 : _e.kid) !== null && _f !== void 0 ? _f : (_h = (_g = opts.didOpts) === null || _g === void 0 ? void 0 : _g.idOpts) === null || _h === void 0 ? void 0 : _h.kid) !== null && _j !== void 0 ? _j : (typeof ((_l = (_k = opts.didOpts) === null || _k === void 0 ? void 0 : _k.idOpts) === null || _l === void 0 ? void 0 : _l.identifier) === 'object' ? opts.didOpts.idOpts.identifier.keys[0].kid : undefined);
-        if (!kmsKeyRef) {
-            throw Error('Key ref is needed for access token signer');
-        }
-        let identifier = ((_o = (_m = opts.didOpts) === null || _m === void 0 ? void 0 : _m.identifier) !== null && _o !== void 0 ? _o : (_q = (_p = opts.didOpts) === null || _p === void 0 ? void 0 : _p.idOpts) === null || _q === void 0 ? void 0 : _q.identifier);
-        return {
-            kmsKeyRef: (_r = opts.keyRef) !== null && _r !== void 0 ? _r : kmsKeyRef,
-            identifier: identifier !== null && identifier !== void 0 ? identifier : kmsKeyRef,
-            issuer: opts.iss,
-        };
-    }
-    else {
-        const idOpts = opts.idOpts;
-        if (opts.keyRef && !idOpts.kmsKeyRef) {
-            // legacy way
-            console.warn(`Legacy keyRef being used. Support will be dropped in the future. Consider switching to the idOpts, to have support for DIDs, JWKS, x5c etc. See https://github.com/Sphereon-Opensource/SSI-SDK-crypto-extensions/tree/feature/multi_identifier_support/packages/identifier-resolution`);
-            idOpts.kmsKeyRef = opts.keyRef;
-        }
-        if (opts.iss && !idOpts.issuer) {
-            // legacy way
-            console.warn(`Legacy iss being used. Support will be dropped in the future. Consider switching to the idOpts, to have support for DIDs, JWKS, x5c etc. See https://github.com/Sphereon-Opensource/SSI-SDK-crypto-extensions/tree/feature/multi_identifier_support/packages/identifier-resolution`);
-            idOpts.issuer = opts.iss;
-        }
-        return idOpts;
-    }
-}
-//# sourceMappingURL=LegacySupport.js.map

package/dist/functions/LegacySupport.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"LegacySupport.js","sourceRoot":"","sources":["../../src/functions/LegacySupport.ts"],"names":[],"mappings":";;AAOA,sEA8CC;AAlDD;;;GAGG;AACH,SAAgB,6BAA6B,CAAC,IAK7C;;IACC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;QACjB,OAAO,CAAC,IAAI,CACV,uRAAuR,CACxR,CAAA;QACD,aAAa;QACb,IAAI,SAAS,GACX,MAAA,MAAA,MAAA,MAAA,IAAI,CAAC,MAAM,mCACX,MAAA,MAAA,IAAI,CAAC,OAAO,0CAAE,MAAM,0CAAE,SAAS,mCAC/B,MAAA,IAAI,CAAC,OAAO,0CAAE,GAAG,mCACjB,MAAA,MAAA,IAAI,CAAC,OAAO,0CAAE,MAAM,0CAAE,GAAG,mCACzB,CAAC,OAAO,CAAA,MAAA,MAAA,IAAI,CAAC,OAAO,0CAAE,MAAM,0CAAE,UAAU,CAAA,KAAK,QAAQ,CAAC,CAAC,CAAE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,UAA0B,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAA;QAClI,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,KAAK,CAAC,2CAA2C,CAAC,CAAA;QAC1D,CAAC;QACD,IAAI,UAAU,GAAG,CAAC,MAAA,MAAA,IAAI,CAAC,OAAO,0CAAE,UAAU,mCAAI,MAAA,MAAA,IAAI,CAAC,OAAO,0CAAE,MAAM,0CAAE,UAAU,CAA4B,CAAA;QAE1G,OAAO;YACL,SAAS,EAAE,MAAA,IAAI,CAAC,MAAM,mCAAI,SAAS;YACnC,UAAU,EAAE,UAAU,aAAV,UAAU,cAAV,UAAU,GAAI,SAAS;YACnC,MAAM,EAAE,IAAI,CAAC,GAAG;SACkB,CAAA;IACtC,CAAC;SAAM,CAAC;QACN,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAA;QAC1B,IAAI,IAAI,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;YACrC,aAAa;YACb,OAAO,CAAC,IAAI,CACV,uRAAuR,CACxR,CAAA;YACD,MAAM,CAAC,SAAS,GAAG,IAAI,CAAC,MAAM,CAAA;QAChC,CAAC;QACD,IAAI,IAAI,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;YAC/B,aAAa;YACb,OAAO,CAAC,IAAI,CACV,oRAAoR,CACrR,CAAA;YACD,MAAM,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG,CAAA;QAC1B,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;AACH,CAAC"}

package/dist/functions/externalIdentifierFunctions.d.ts

@@ -1,26 +0,0 @@
-import { IAgentContext, IDIDManager, IResolver } from '@veramo/core';
-import { ExternalIdentifierCoseKeyOpts, ExternalIdentifierCoseKeyResult, ExternalIdentifierDidOpts, ExternalIdentifierDidResult, ExternalIdentifierJwkOpts, ExternalIdentifierJwkResult, ExternalIdentifierOpts, ExternalIdentifierResult, ExternalIdentifierX5cOpts, ExternalIdentifierX5cResult } from '../types';
-export declare function resolveExternalIdentifier(opts: ExternalIdentifierOpts & {
-    crypto?: Crypto;
-}, context: IAgentContext<any>): Promise<ExternalIdentifierResult>;
-export declare function resolveExternalX5cIdentifier(opts: ExternalIdentifierX5cOpts & {
-    crypto?: Crypto;
-}, context: IAgentContext<IResolver & IDIDManager>): Promise<ExternalIdentifierX5cResult>;
-/**
- * Resolves a JWK. Normally this is just returning the JWK, but in case the JWK contains a x5c the chain is validated
- * @param opts
- * @param context
- */
-export declare function resolveExternalJwkIdentifier(opts: ExternalIdentifierJwkOpts & {
-    x5c?: ExternalIdentifierX5cOpts;
-}, context: IAgentContext<any>): Promise<ExternalIdentifierJwkResult>;
-/**
- * Resolves a JWK. Normally this is just returning the JWK, but in case the JWK contains a x5c the chain is validated
- * @param opts
- * @param context
- */
-export declare function resolveExternalCoseKeyIdentifier(opts: ExternalIdentifierCoseKeyOpts & {
-    x5c?: ExternalIdentifierX5cOpts;
-}, context: IAgentContext<any>): Promise<ExternalIdentifierCoseKeyResult>;
-export declare function resolveExternalDidIdentifier(opts: ExternalIdentifierDidOpts, context: IAgentContext<IResolver & IDIDManager>): Promise<ExternalIdentifierDidResult>;
-//# sourceMappingURL=externalIdentifierFunctions.d.ts.map

package/dist/functions/externalIdentifierFunctions.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"externalIdentifierFunctions.d.ts","sourceRoot":"","sources":["../../src/functions/externalIdentifierFunctions.ts"],"names":[],"mappings":"AAWA,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,cAAc,CAAA;AAGpE,OAAO,EACL,6BAA6B,EAC7B,+BAA+B,EAC/B,yBAAyB,EACzB,2BAA2B,EAC3B,yBAAyB,EACzB,2BAA2B,EAE3B,sBAAsB,EACtB,wBAAwB,EACxB,yBAAyB,EACzB,2BAA2B,EAU5B,MAAM,UAAU,CAAA;AAGjB,wBAAsB,yBAAyB,CAC7C,IAAI,EAAE,sBAAsB,GAAG;IAC7B,MAAM,CAAC,EAAE,MAAM,CAAA;CAChB,EACD,OAAO,EAAE,aAAa,CAAC,GAAG,CAAC,GAC1B,OAAO,CAAC,wBAAwB,CAAC,CAoBnC;AAED,wBAAsB,4BAA4B,CAChD,IAAI,EAAE,yBAAyB,GAAG;IAChC,MAAM,CAAC,EAAE,MAAM,CAAA;CAChB,EACD,OAAO,EAAE,aAAa,CAAC,SAAS,GAAG,WAAW,CAAC,GAC9C,OAAO,CAAC,2BAA2B,CAAC,CA4EtC;AAED;;;;GAIG;AACH,wBAAsB,4BAA4B,CAChD,IAAI,EAAE,yBAAyB,GAAG;IAChC,GAAG,CAAC,EAAE,yBAAyB,CAAA;CAChC,EACD,OAAO,EAAE,aAAa,CAAC,GAAG,CAAC,GAC1B,OAAO,CAAC,2BAA2B,CAAC,CAuBtC;AAED;;;;GAIG;AACH,wBAAsB,gCAAgC,CACpD,IAAI,EAAE,6BAA6B,GAAG;IACpC,GAAG,CAAC,EAAE,yBAAyB,CAAA;CAChC,EACD,OAAO,EAAE,aAAa,CAAC,GAAG,CAAC,GAC1B,OAAO,CAAC,+BAA+B,CAAC,CAyB1C;AAED,wBAAsB,4BAA4B,CAChD,IAAI,EAAE,yBAAyB,EAC/B,OAAO,EAAE,aAAa,CAAC,SAAS,GAAG,WAAW,CAAC,GAC9C,OAAO,CAAC,2BAA2B,CAAC,CAmDtC"}

package/dist/functions/externalIdentifierFunctions.js

@@ -1,250 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.resolveExternalIdentifier = resolveExternalIdentifier;
-exports.resolveExternalX5cIdentifier = resolveExternalX5cIdentifier;
-exports.resolveExternalJwkIdentifier = resolveExternalJwkIdentifier;
-exports.resolveExternalCoseKeyIdentifier = resolveExternalCoseKeyIdentifier;
-exports.resolveExternalDidIdentifier = resolveExternalDidIdentifier;
-const ssi_sdk_ext_did_utils_1 = require("@sphereon/ssi-sdk-ext.did-utils");
-const ssi_sdk_ext_key_utils_1 = require("@sphereon/ssi-sdk-ext.key-utils");
-const ssi_sdk_ext_x509_utils_1 = require("@sphereon/ssi-sdk-ext.x509-utils");
-const ssi_sdk_agent_config_1 = require("@sphereon/ssi-sdk.agent-config");
-const ssi_types_1 = require("@sphereon/ssi-types");
-const utils_1 = require("@veramo/utils");
-const pkijs_1 = require("pkijs");
-const types_1 = require("../types");
-const _1 = require(".");
-function resolveExternalIdentifier(opts, context) {
-    return __awaiter(this, void 0, void 0, function* () {
-        let method;
-        if ((0, types_1.isExternalIdentifierDidOpts)(opts)) {
-            return resolveExternalDidIdentifier(opts, context);
-        }
-        else if ((0, types_1.isExternalIdentifierX5cOpts)(opts)) {
-            return resolveExternalX5cIdentifier(opts, context);
-        }
-        else if ((0, types_1.isExternalIdentifierJwkOpts)(opts)) {
-            return resolveExternalJwkIdentifier(opts, context);
-        }
-        else if ((0, types_1.isExternalIdentifierCoseKeyOpts)(opts)) {
-            return resolveExternalCoseKeyIdentifier(opts, context);
-        }
-        else if ((0, types_1.isExternalIdentifierOIDFEntityIdOpts)(opts)) {
-            return (0, _1.resolveExternalOIDFEntityIdIdentifier)(opts, context);
-        }
-        else if ((0, types_1.isExternalIdentifierKidOpts)(opts)) {
-            method = 'kid';
-        }
-        else if ((0, types_1.isExternalIdentifierJwksUrlOpts)(opts)) {
-            method = 'jwks-url';
-        }
-        else if ((0, types_1.isExternalIdentifierOidcDiscoveryOpts)(opts)) {
-            method = 'oidc-discovery';
-        }
-        throw Error(`External resolution method ${method} is not yet implemented`);
-    });
-}
-function resolveExternalX5cIdentifier(opts, context) {
-    return __awaiter(this, void 0, void 0, function* () {
-        var _a, _b, _c;
-        if (!(0, types_1.isExternalIdentifierX5cOpts)(opts)) {
-            return Promise.reject('External x5c Identifier args need to be provided');
-        }
-        const verify = (_a = opts.verify) !== null && _a !== void 0 ? _a : true;
-        const x5c = opts.identifier.map((derOrPem) => (derOrPem.includes('CERTIFICATE') ? (0, ssi_sdk_ext_x509_utils_1.PEMToDer)(derOrPem) : derOrPem));
-        if (x5c.length === 0) {
-            return Promise.reject('Empty certification chain is not allowed');
-        }
-        const certificates = x5c.map(ssi_sdk_ext_x509_utils_1.pemOrDerToX509Certificate);
-        let verificationResult;
-        let issuerJWK;
-        let jwks = [];
-        if (verify) {
-            // We use the agent plugin if it is available as that is more powerful, but revert to the function otherwise
-            if ((0, ssi_sdk_agent_config_1.contextHasPlugin)(context, 'verifyCertificateChain')) {
-                verificationResult = (yield context.agent.verifyCertificateChain({
-                    chain: opts.identifier,
-                    trustAnchors: (_b = opts.trustAnchors) !== null && _b !== void 0 ? _b : [],
-                    verificationTime: opts.verificationTime,
-                })); // We need to cast, as we know this is the value and we do not want to rely on the x509 plugin perse
-            }
-            else {
-                verificationResult = yield (0, ssi_sdk_ext_x509_utils_1.validateX509CertificateChain)({
-                    chain: opts.identifier,
-                    trustAnchors: (_c = opts.trustAnchors) !== null && _c !== void 0 ? _c : [],
-                    verificationTime: opts.verificationTime,
-                    opts,
-                });
-            }
-            if (verificationResult.certificateChain) {
-                jwks = verificationResult.certificateChain.map((cert) => {
-                    return {
-                        jwk: cert.publicKeyJWK,
-                        kid: cert.subject.dn.DN,
-                        jwkThumbprint: (0, ssi_sdk_ext_key_utils_1.calculateJwkThumbprint)({ jwk: cert.publicKeyJWK }),
-                        publicKeyHex: (0, ssi_sdk_ext_did_utils_1.jwkTtoPublicKeyHex)(cert.publicKeyJWK),
-                    };
-                });
-            }
-        }
-        if (!jwks || jwks.length === 0) {
-            const cryptoEngine = new pkijs_1.CryptoEngine({
-                name: 'identifier_resolver_external',
-                crypto: (0, ssi_sdk_ext_key_utils_1.globalCrypto)(false, opts.crypto),
-            });
-            (0, pkijs_1.setEngine)(cryptoEngine.name, cryptoEngine);
-            jwks = yield Promise.all(certificates.map((cert) => __awaiter(this, void 0, void 0, function* () {
-                const pk = yield cert.getPublicKey(undefined, cryptoEngine);
-                const jwk = (yield cryptoEngine.exportKey('jwk', pk));
-                return {
-                    jwk,
-                    kid: (0, ssi_sdk_ext_x509_utils_1.getSubjectDN)(cert).DN,
-                    jwkThumbprint: (0, ssi_sdk_ext_key_utils_1.calculateJwkThumbprint)({ jwk }),
-                    publicKeyHex: (0, ssi_sdk_ext_did_utils_1.jwkTtoPublicKeyHex)(jwk),
-                };
-            })));
-        }
-        if (jwks.length === 0) {
-            return Promise.reject('Empty certification chain is now allowed');
-        }
-        if (!issuerJWK) {
-            issuerJWK = jwks[0].jwk;
-        }
-        return {
-            method: 'x5c',
-            verificationResult,
-            issuerJWK,
-            jwks,
-            certificates,
-            x5c,
-        };
-    });
-}
-/**
- * Resolves a JWK. Normally this is just returning the JWK, but in case the JWK contains a x5c the chain is validated
- * @param opts
- * @param context
- */
-function resolveExternalJwkIdentifier(opts, context) {
-    return __awaiter(this, void 0, void 0, function* () {
-        if (!(0, types_1.isExternalIdentifierJwkOpts)(opts)) {
-            return Promise.reject('External JWK Identifier args need to be provided');
-        }
-        const jwk = opts.identifier;
-        let x5c = undefined;
-        if (jwk.x5c) {
-            x5c = yield resolveExternalX5cIdentifier(Object.assign(Object.assign({}, opts.x5c), { identifier: jwk.x5c }), context);
-        }
-        const jwkThumbprint = (0, ssi_sdk_ext_key_utils_1.calculateJwkThumbprint)({ jwk });
-        return {
-            method: 'jwk',
-            jwk,
-            jwks: [
-                {
-                    jwk,
-                    jwkThumbprint,
-                    kid: jwk.kid,
-                    publicKeyHex: (0, ssi_sdk_ext_did_utils_1.jwkTtoPublicKeyHex)(jwk),
-                },
-            ],
-            x5c,
-        };
-    });
-}
-/**
- * Resolves a JWK. Normally this is just returning the JWK, but in case the JWK contains a x5c the chain is validated
- * @param opts
- * @param context
- */
-function resolveExternalCoseKeyIdentifier(opts, context) {
-    return __awaiter(this, void 0, void 0, function* () {
-        if (!(0, types_1.isExternalIdentifierCoseKeyOpts)(opts)) {
-            return Promise.reject('External Cose Key args need to be provided');
-        }
-        // TODO: We need to do cbor conversion here as well.
-        const coseKey = opts.identifier;
-        let x5c = undefined;
-        if (coseKey.x5chain) {
-            x5c = yield resolveExternalX5cIdentifier(Object.assign(Object.assign({}, opts.x5c), { identifier: coseKey.x5chain }), context);
-        }
-        const jwk = (0, ssi_sdk_ext_key_utils_1.coseKeyToJwk)(coseKey);
-        const jwkThumbprint = (0, ssi_sdk_ext_key_utils_1.calculateJwkThumbprint)({ jwk });
-        return {
-            method: 'cose_key',
-            coseKey,
-            jwks: [
-                {
-                    jwk,
-                    jwkThumbprint,
-                    kid: coseKey.kid,
-                    publicKeyHex: (0, ssi_sdk_ext_did_utils_1.jwkTtoPublicKeyHex)(jwk),
-                },
-            ],
-            x5c,
-        };
-    });
-}
-function resolveExternalDidIdentifier(opts, context) {
-    return __awaiter(this, void 0, void 0, function* () {
-        var _a;
-        if (!(0, types_1.isExternalIdentifierDidOpts)(opts)) {
-            return Promise.reject('External DID Identifier args need to be provided');
-        }
-        else if (!(0, ssi_sdk_agent_config_1.contextHasPlugin)(context, 'resolveDid')) {
-            return Promise.reject(Error(`Cannot get external DID identifier if DID resolver plugin is not enabled!`));
-        }
-        const { uniresolverResolution = false, localResolution = true, resolverResolution = true } = opts;
-        const did = opts.identifier;
-        let parsed;
-        try {
-            parsed = (0, ssi_types_1.parseDid)(did);
-        }
-        catch (error) {
-            // Error from did resolution spec
-            return Promise.reject(error);
-        }
-        const didParsed = parsed;
-        const didResolutionResult = yield (0, ssi_sdk_ext_did_utils_1.getAgentResolver)(context, {
-            uniresolverResolution,
-            localResolution,
-            resolverResolution,
-        }).resolve(did);
-        const didDocument = (_a = didResolutionResult.didDocument) !== null && _a !== void 0 ? _a : undefined;
-        const didJwks = didDocument ? (0, ssi_sdk_ext_did_utils_1.didDocumentToJwks)(didDocument) : undefined;
-        const jwks = didJwks
-            ? Array.from(new Set(Array.from(Object.values(didJwks)
-                .filter((jwks) => (0, utils_1.isDefined)(jwks) && jwks.length > 0)
-                .flatMap((jwks) => jwks)).flatMap((jwk) => {
-                return {
-                    jwk,
-                    jwkThumbprint: (0, ssi_sdk_ext_key_utils_1.calculateJwkThumbprint)({ jwk }),
-                    kid: jwk.kid,
-                    publicKeyHex: (0, ssi_sdk_ext_did_utils_1.jwkTtoPublicKeyHex)(jwk),
-                };
-            }).map(jwk => JSON.stringify(jwk)))).map((jwks) => JSON.parse(jwks))
-            : [];
-        if (didResolutionResult === null || didResolutionResult === void 0 ? void 0 : didResolutionResult.didDocument) {
-            // @ts-ignore // Mandatory on the original object, but we already provide it directly
-            delete didResolutionResult['didDocument'];
-        }
-        return {
-            method: 'did',
-            did,
-            jwks,
-            didJwks,
-            didDocument,
-            didResolutionResult,
-            didParsed,
-        };
-    });
-}
-//# sourceMappingURL=externalIdentifierFunctions.js.map

package/dist/functions/externalIdentifierFunctions.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"externalIdentifierFunctions.js","sourceRoot":"","sources":["../../src/functions/externalIdentifierFunctions.ts"],"names":[],"mappings":";;;;;;;;;;;AAsCA,8DAyBC;AAED,oEAiFC;AAOD,oEA4BC;AAOD,4EA8BC;AAED,oEAsDC;AAlRD,2EAAyG;AACzG,2EAAoG;AACpG,6EAMyC;AACzC,yEAAiE;AACjE,mDAA+D;AAE/D,yCAAyC;AACzC,iCAA+C;AAC/C,oCAqBiB;AACjB,wBAAyD;AAEzD,SAAsB,yBAAyB,CAC7C,IAEC,EACD,OAA2B;;QAE3B,IAAI,MAA4C,CAAA;QAChD,IAAI,IAAA,mCAA2B,EAAC,IAAI,CAAC,EAAE,CAAC;YACtC,OAAO,4BAA4B,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;QACpD,CAAC;aAAM,IAAI,IAAA,mCAA2B,EAAC,IAAI,CAAC,EAAE,CAAC;YAC7C,OAAO,4BAA4B,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;QACpD,CAAC;aAAM,IAAI,IAAA,mCAA2B,EAAC,IAAI,CAAC,EAAE,CAAC;YAC7C,OAAO,4BAA4B,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;QACpD,CAAC;aAAM,IAAI,IAAA,uCAA+B,EAAC,IAAI,CAAC,EAAE,CAAC;YACjD,OAAO,gCAAgC,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;QACxD,CAAC;aAAM,IAAI,IAAA,4CAAoC,EAAC,IAAI,CAAC,EAAE,CAAC;YACtD,OAAO,IAAA,wCAAqC,EAAC,IAAI,EAAE,OAAO,CAAC,CAAA;QAC7D,CAAC;aAAM,IAAI,IAAA,mCAA2B,EAAC,IAAI,CAAC,EAAE,CAAC;YAC7C,MAAM,GAAG,KAAK,CAAA;QAChB,CAAC;aAAM,IAAI,IAAA,uCAA+B,EAAC,IAAI,CAAC,EAAE,CAAC;YACjD,MAAM,GAAG,UAAU,CAAA;QACrB,CAAC;aAAM,IAAI,IAAA,6CAAqC,EAAC,IAAI,CAAC,EAAE,CAAC;YACvD,MAAM,GAAG,gBAAgB,CAAA;QAC3B,CAAC;QACD,MAAM,KAAK,CAAC,8BAA8B,MAAM,yBAAyB,CAAC,CAAA;IAC5E,CAAC;CAAA;AAED,SAAsB,4BAA4B,CAChD,IAEC,EACD,OAA+C;;;QAE/C,IAAI,CAAC,IAAA,mCAA2B,EAAC,IAAI,CAAC,EAAE,CAAC;YACvC,OAAO,OAAO,CAAC,MAAM,CAAC,kDAAkD,CAAC,CAAA;QAC3E,CAAC;QACD,MAAM,MAAM,GAAG,MAAA,IAAI,CAAC,MAAM,mCAAI,IAAI,CAAA;QAClC,MAAM,GAAG,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,IAAA,iCAAQ,EAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAA;QACjH,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrB,OAAO,OAAO,CAAC,MAAM,CAAC,0CAA0C,CAAC,CAAA;QACnE,CAAC;QACD,MAAM,YAAY,GAAG,GAAG,CAAC,GAAG,CAAC,kDAAyB,CAAC,CAAA;QAEvD,IAAI,kBAAoD,CAAA;QACxD,IAAI,SAA0B,CAAA;QAC9B,IAAI,IAAI,GAAsB,EAAE,CAAA;QAEhC,IAAI,MAAM,EAAE,CAAC;YACX,4GAA4G;YAC5G,IAAI,IAAA,uCAAgB,EAAC,OAAO,EAAE,wBAAwB,CAAC,EAAE,CAAC;gBACxD,kBAAkB,GAAG,CAAC,MAAM,OAAO,CAAC,KAAK,CAAC,sBAAsB,CAAC;oBAC/D,KAAK,EAAE,IAAI,CAAC,UAAU;oBACtB,YAAY,EAAE,MAAA,IAAI,CAAC,YAAY,mCAAI,EAAE;oBACrC,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;iBACxC,CAAC,CAAyB,CAAA,CAAC,oGAAoG;YAClI,CAAC;iBAAM,CAAC;gBACN,kBAAkB,GAAG,MAAM,IAAA,qDAA4B,EAAC;oBACtD,KAAK,EAAE,IAAI,CAAC,UAAU;oBACtB,YAAY,EAAE,MAAA,IAAI,CAAC,YAAY,mCAAI,EAAE;oBACrC,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;oBACvC,IAAI;iBACL,CAAC,CAAA;YACJ,CAAC;YACD,IAAI,kBAAkB,CAAC,gBAAgB,EAAE,CAAC;gBACxC,IAAI,GAAG,kBAAkB,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE;oBACtD,OAAO;wBACL,GAAG,EAAE,IAAI,CAAC,YAAY;wBACtB,GAAG,EAAE,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,EAAE;wBACvB,aAAa,EAAE,IAAA,8CAAsB,EAAC,EAAE,GAAG,EAAE,IAAI,CAAC,YAAY,EAAE,CAAC;wBACjE,YAAY,EAAE,IAAA,0CAAkB,EAAC,IAAI,CAAC,YAAY,CAAC;qBAC1B,CAAA;gBAC7B,CAAC,CAAC,CAAA;YACJ,CAAC;QACH,CAAC;QACD,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,MAAM,YAAY,GAAG,IAAI,oBAAY,CAAC;gBACpC,IAAI,EAAE,8BAA8B;gBACpC,MAAM,EAAE,IAAA,oCAAY,EAAC,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC;aACzC,CAAC,CAAA;YACF,IAAA,iBAAS,EAAC,YAAY,CAAC,IAAI,EAAE,YAAY,CAAC,CAAA;YAC1C,IAAI,GAAG,MAAM,OAAO,CAAC,GAAG,CACtB,YAAY,CAAC,GAAG,CAAC,CAAO,IAAI,EAAE,EAAE;gBAC9B,MAAM,EAAE,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,YAAY,CAAC,CAAA;gBAC3D,MAAM,GAAG,GAAG,CAAC,MAAM,YAAY,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,CAAC,CAAQ,CAAA;gBAC5D,OAAO;oBACL,GAAG;oBACH,GAAG,EAAE,IAAA,qCAAY,EAAC,IAAI,CAAC,CAAC,EAAE;oBAC1B,aAAa,EAAE,IAAA,8CAAsB,EAAC,EAAE,GAAG,EAAE,CAAC;oBAC9C,YAAY,EAAE,IAAA,0CAAkB,EAAC,GAAG,CAAC;iBACZ,CAAA;YAC7B,CAAC,CAAA,CAAC,CACH,CAAA;QACH,CAAC;QACD,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtB,OAAO,OAAO,CAAC,MAAM,CAAC,0CAA0C,CAAC,CAAA;QACnE,CAAC;QACD,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,SAAS,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAA;QACzB,CAAC;QAED,OAAO;YACL,MAAM,EAAE,KAAK;YACb,kBAAkB;YAClB,SAAS;YACT,IAAI;YACJ,YAAY;YACZ,GAAG;SACJ,CAAA;IACH,CAAC;CAAA;AAED;;;;GAIG;AACH,SAAsB,4BAA4B,CAChD,IAEC,EACD,OAA2B;;QAE3B,IAAI,CAAC,IAAA,mCAA2B,EAAC,IAAI,CAAC,EAAE,CAAC;YACvC,OAAO,OAAO,CAAC,MAAM,CAAC,kDAAkD,CAAC,CAAA;QAC3E,CAAC;QACD,MAAM,GAAG,GAAG,IAAI,CAAC,UAAU,CAAA;QAC3B,IAAI,GAAG,GAA4C,SAAS,CAAA;QAC5D,IAAI,GAAG,CAAC,GAAG,EAAE,CAAC;YACZ,GAAG,GAAG,MAAM,4BAA4B,iCAAM,IAAI,CAAC,GAAG,KAAE,UAAU,EAAE,GAAG,CAAC,GAAG,KAAI,OAAO,CAAC,CAAA;QACzF,CAAC;QACD,MAAM,aAAa,GAAG,IAAA,8CAAsB,EAAC,EAAE,GAAG,EAAE,CAAC,CAAA;QACrD,OAAO;YACL,MAAM,EAAE,KAAK;YACb,GAAG;YACH,IAAI,EAAE;gBACJ;oBACE,GAAG;oBACH,aAAa;oBACb,GAAG,EAAE,GAAG,CAAC,GAAG;oBACZ,YAAY,EAAE,IAAA,0CAAkB,EAAC,GAAG,CAAC;iBACtC;aACF;YACD,GAAG;SACkC,CAAA;IACzC,CAAC;CAAA;AAED;;;;GAIG;AACH,SAAsB,gCAAgC,CACpD,IAEC,EACD,OAA2B;;QAE3B,IAAI,CAAC,IAAA,uCAA+B,EAAC,IAAI,CAAC,EAAE,CAAC;YAC3C,OAAO,OAAO,CAAC,MAAM,CAAC,4CAA4C,CAAC,CAAA;QACrE,CAAC;QACD,oDAAoD;QACpD,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAA;QAC/B,IAAI,GAAG,GAA4C,SAAS,CAAA;QAC5D,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;YACpB,GAAG,GAAG,MAAM,4BAA4B,iCAAM,IAAI,CAAC,GAAG,KAAE,UAAU,EAAE,OAAO,CAAC,OAAO,KAAI,OAAO,CAAC,CAAA;QACjG,CAAC;QACD,MAAM,GAAG,GAAG,IAAA,oCAAY,EAAC,OAAO,CAAC,CAAA;QACjC,MAAM,aAAa,GAAG,IAAA,8CAAsB,EAAC,EAAE,GAAG,EAAE,CAAC,CAAA;QACrD,OAAO;YACL,MAAM,EAAE,UAAU;YAClB,OAAO;YACP,IAAI,EAAE;gBACJ;oBACE,GAAG;oBACH,aAAa;oBACb,GAAG,EAAE,OAAO,CAAC,GAAG;oBAChB,YAAY,EAAE,IAAA,0CAAkB,EAAC,GAAG,CAAC;iBACtC;aACF;YACD,GAAG;SACsC,CAAA;IAC7C,CAAC;CAAA;AAED,SAAsB,4BAA4B,CAChD,IAA+B,EAC/B,OAA+C;;;QAE/C,IAAI,CAAC,IAAA,mCAA2B,EAAC,IAAI,CAAC,EAAE,CAAC;YACvC,OAAO,OAAO,CAAC,MAAM,CAAC,kDAAkD,CAAC,CAAA;QAC3E,CAAC;aAAM,IAAI,CAAC,IAAA,uCAAgB,EAA0B,OAAO,EAAE,YAAY,CAAC,EAAE,CAAC;YAC7E,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2EAA2E,CAAC,CAAC,CAAA;QAC3G,CAAC;QACD,MAAM,EAAE,qBAAqB,GAAG,KAAK,EAAE,eAAe,GAAG,IAAI,EAAE,kBAAkB,GAAG,IAAI,EAAE,GAAG,IAAI,CAAA;QACjG,MAAM,GAAG,GAAG,IAAI,CAAC,UAAU,CAAA;QAC3B,IAAI,MAAkB,CAAA;QACtB,IAAI,CAAC;YACH,MAAM,GAAG,IAAA,oBAAQ,EAAC,GAAG,CAAC,CAAA;QACxB,CAAC;QAAC,OAAO,KAAc,EAAE,CAAC;YACxB,iCAAiC;YACjC,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QAC9B,CAAC;QACD,MAAM,SAAS,GAAG,MAAM,CAAA;QACxB,MAAM,mBAAmB,GAAG,MAAM,IAAA,wCAAgB,EAAC,OAAO,EAAE;YAC1D,qBAAqB;YACrB,eAAe;YACf,kBAAkB;SACnB,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;QACf,MAAM,WAAW,GAAG,MAAA,mBAAmB,CAAC,WAAW,mCAAI,SAAS,CAAA;QAChE,MAAM,OAAO,GAAG,WAAW,CAAC,CAAC,CAAC,IAAA,yCAAiB,EAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QACxE,MAAM,IAAI,GAAG,OAAO;YAClB,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,CACzB,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC;iBACnB,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAA,iBAAS,EAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;iBACpD,OAAO,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,CAC7B,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;gBAChB,OAAO;oBACL,GAAG;oBACH,aAAa,EAAE,IAAA,8CAAsB,EAAC,EAAE,GAAG,EAAE,CAAC;oBAC9C,GAAG,EAAE,GAAG,CAAC,GAAG;oBACZ,YAAY,EAAE,IAAA,0CAAkB,EAAC,GAAG,CAAC;iBACtC,CAAA;YACH,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACtE,CAAC,CAAC,EAAE,CAAA;QAEN,IAAI,mBAAmB,aAAnB,mBAAmB,uBAAnB,mBAAmB,CAAE,WAAW,EAAE,CAAC;YACrC,qFAAqF;YACrF,OAAO,mBAAmB,CAAC,aAAa,CAAC,CAAA;QAC3C,CAAC;QACD,OAAO;YACL,MAAM,EAAE,KAAK;YACb,GAAG;YACH,IAAI;YACJ,OAAO;YACP,WAAW;YACX,mBAAmB;YACnB,SAAS;SACV,CAAA;IACH,CAAC;CAAA"}

package/dist/functions/externalOIDFIdentifier.d.ts

@@ -1,19 +0,0 @@
-import { ExternalIdentifierOIDFEntityIdOpts, ExternalIdentifierOIDFEntityIdResult } from '../types';
-import { IAgentContext } from '@veramo/core';
-import { IOIDFClient } from '@sphereon/ssi-sdk.oidf-client';
-/**
- * Resolves an OIDF Entity ID against multiple trust anchors to establish trusted relationships
- *
- * @param opts Configuration options containing the identifier to resolve and trust anchors to validate against
- * @param context Agent context that must include the OIDF client plugin and JWT verification capabilities
- *
- * @returns Promise resolving to an ExternalIdentifierOIDFEntityIdResult containing:
- *  - trustedAnchors: Record mapping trust anchors to their public key hexes
- *  - errorList: Optional record of errors encountered per trust anchor
- *  - jwks: Array of JWK information from the trust chain
- *  - trustEstablished: Boolean indicating if any trust relationships were established
- *
- * @throws Error if trust anchors are missing or JWT verification plugin is not enabled
- */
-export declare function resolveExternalOIDFEntityIdIdentifier(opts: ExternalIdentifierOIDFEntityIdOpts, context: IAgentContext<IOIDFClient>): Promise<ExternalIdentifierOIDFEntityIdResult>;
-//# sourceMappingURL=externalOIDFIdentifier.d.ts.map

package/dist/functions/externalOIDFIdentifier.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"externalOIDFIdentifier.d.ts","sourceRoot":"","sources":["../../src/functions/externalOIDFIdentifier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAgB,kCAAkC,EAAE,oCAAoC,EAAkC,MAAM,UAAU,CAAA;AACjJ,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAA;AAC5C,OAAO,EAAE,WAAW,EAAE,MAAM,+BAA+B,CAAA;AAI3D;;;;;;;;;;;;;GAaG;AACH,wBAAsB,qCAAqC,CACzD,IAAI,EAAE,kCAAkC,EACxC,OAAO,EAAE,aAAa,CAAC,WAAW,CAAC,GAClC,OAAO,CAAC,oCAAoC,CAAC,CAmE/C"}

package/dist/functions/externalOIDFIdentifier.js

@@ -1,106 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.resolveExternalOIDFEntityIdIdentifier = resolveExternalOIDFEntityIdIdentifier;
-const ssi_sdk_agent_config_1 = require("@sphereon/ssi-sdk.agent-config");
-const u8a = __importStar(require("uint8arrays"));
-/**
- * Resolves an OIDF Entity ID against multiple trust anchors to establish trusted relationships
- *
- * @param opts Configuration options containing the identifier to resolve and trust anchors to validate against
- * @param context Agent context that must include the OIDF client plugin and JWT verification capabilities
- *
- * @returns Promise resolving to an ExternalIdentifierOIDFEntityIdResult containing:
- *  - trustedAnchors: Record mapping trust anchors to their public key hexes
- *  - errorList: Optional record of errors encountered per trust anchor
- *  - jwks: Array of JWK information from the trust chain
- *  - trustEstablished: Boolean indicating if any trust relationships were established
- *
- * @throws Error if trust anchors are missing or JWT verification plugin is not enabled
- */
-function resolveExternalOIDFEntityIdIdentifier(opts, context) {
-    return __awaiter(this, void 0, void 0, function* () {
-        var _a;
-        let { trustAnchors, identifier } = opts;
-        if (!trustAnchors || trustAnchors.length === 0) {
-            return Promise.reject(Error('ExternalIdentifierOIDFEntityIdOpts is missing the trustAnchors'));
-        }
-        if (!(0, ssi_sdk_agent_config_1.contextHasPlugin)(context, 'jwtVerifyJwsSignature')) {
-            return Promise.reject(Error('For OIDFEntityId resolving the agent needs to have the JwtService plugin enabled'));
-        }
-        const trustedAnchors = new Set();
-        const errorList = {};
-        const jwkInfos = [];
-        let payload;
-        for (const trustAnchor of trustAnchors) {
-            const resolveResult = yield context.agent.resolveTrustChain({
-                entityIdentifier: identifier,
-                trustAnchors: [trustAnchor],
-            });
-            if (resolveResult.error || !resolveResult.trustChain) {
-                errorList[trustAnchor] = (_a = resolveResult.errorMessage) !== null && _a !== void 0 ? _a : 'unspecified';
-            }
-            else {
-                const trustChain = resolveResult.trustChain.asJsReadonlyArrayView();
-                if (trustChain.length === 0) {
-                    errorList[trustAnchor] = 'Trust chain is empty';
-                    continue;
-                }
-                const jwt = trustChain[0];
-                const jwtVerifyResult = yield context.agent.jwtVerifyJwsSignature({ jws: jwt });
-                if (jwtVerifyResult.error || jwtVerifyResult.critical) {
-                    errorList[trustAnchor] = jwtVerifyResult.message;
-                    continue;
-                }
-                if (jwtVerifyResult.jws.signatures.length === 0) {
-                    errorList[trustAnchor] = 'No signature was present in the trust anchor JWS';
-                    continue;
-                }
-                payload = JSON.parse(u8a.toString(u8a.fromString(jwtVerifyResult.jws.payload, 'base64url')));
-                const signature = jwtVerifyResult.jws.signatures[0];
-                if (signature.identifier.jwks.length === 0) {
-                    errorList[trustAnchor] = 'No JWK was present in the trust anchor signature';
-                    continue;
-                }
-                if (jwkInfos.length === 0) {
-                    // We need the entity JWK only once
-                    jwkInfos.push(...signature.identifier.jwks);
-                }
-                trustedAnchors.add(trustAnchor);
-            }
-        }
-        return Object.assign(Object.assign({ method: 'entity_id', trustedAnchors: Array.from(trustedAnchors) }, (Object.keys(errorList).length > 0 && { errorList })), { jwks: jwkInfos, jwtPayload: payload, trustEstablished: trustedAnchors.size > 0 });
-    });
-}
-//# sourceMappingURL=externalOIDFIdentifier.js.map

package/dist/functions/externalOIDFIdentifier.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"externalOIDFIdentifier.js","sourceRoot":"","sources":["../../src/functions/externalOIDFIdentifier.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoBA,sFAsEC;AAvFD,yEAAiE;AAEjE,iDAAkC;AAClC;;;;;;;;;;;;;GAaG;AACH,SAAsB,qCAAqC,CACzD,IAAwC,EACxC,OAAmC;;;QAEnC,IAAI,EAAE,YAAY,EAAE,UAAU,EAAE,GAAG,IAAI,CAAA;QAEvC,IAAI,CAAC,YAAY,IAAI,YAAY,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/C,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,gEAAgE,CAAC,CAAC,CAAA;QAChG,CAAC;QAED,IAAI,CAAC,IAAA,uCAAgB,EAAC,OAAO,EAAE,uBAAuB,CAAC,EAAE,CAAC;YACxD,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,kFAAkF,CAAC,CAAC,CAAA;QAClH,CAAC;QAED,MAAM,cAAc,GAAuB,IAAI,GAAG,EAAiB,CAAA;QACnE,MAAM,SAAS,GAAwC,EAAE,CAAA;QACzD,MAAM,QAAQ,GAA2B,EAAE,CAAA;QAE3C,IAAI,OAA+B,CAAA;QACnC,KAAK,MAAM,WAAW,IAAI,YAAY,EAAE,CAAC;YACvC,MAAM,aAAa,GAAG,MAAM,OAAO,CAAC,KAAK,CAAC,iBAAiB,CAAC;gBAC1D,gBAAgB,EAAE,UAAU;gBAC5B,YAAY,EAAE,CAAC,WAAW,CAAC;aAC5B,CAAC,CAAA;YAEF,IAAI,aAAa,CAAC,KAAK,IAAI,CAAC,aAAa,CAAC,UAAU,EAAE,CAAC;gBACrD,SAAS,CAAC,WAAW,CAAC,GAAG,MAAA,aAAa,CAAC,YAAY,mCAAI,aAAa,CAAA;YACtE,CAAC;iBAAM,CAAC;gBACN,MAAM,UAAU,GAA0B,aAAa,CAAC,UAAU,CAAC,qBAAqB,EAAE,CAAA;gBAC1F,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBAC5B,SAAS,CAAC,WAAW,CAAC,GAAG,sBAAsB,CAAA;oBAC/C,SAAQ;gBACV,CAAC;gBAED,MAAM,GAAG,GAAG,UAAU,CAAC,CAAC,CAAC,CAAA;gBACzB,MAAM,eAAe,GAAyB,MAAM,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAA;gBAErG,IAAI,eAAe,CAAC,KAAK,IAAI,eAAe,CAAC,QAAQ,EAAE,CAAC;oBACtD,SAAS,CAAC,WAAW,CAAC,GAAG,eAAe,CAAC,OAAO,CAAA;oBAChD,SAAQ;gBACV,CAAC;gBAED,IAAI,eAAe,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBAChD,SAAS,CAAC,WAAW,CAAC,GAAG,kDAAkD,CAAA;oBAC3E,SAAQ;gBACV,CAAC;gBAED,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC,eAAe,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC,CAAC,CAAA;gBAC5F,MAAM,SAAS,GAAG,eAAe,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,CAAA;gBACnD,IAAI,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBAC3C,SAAS,CAAC,WAAW,CAAC,GAAG,kDAAkD,CAAA;oBAC3E,SAAQ;gBACV,CAAC;gBAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBAC1B,mCAAmC;oBACnC,QAAQ,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,CAAA;gBAC7C,CAAC;gBACD,cAAc,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;YACjC,CAAC;QACH,CAAC;QAED,qCACE,MAAM,EAAE,WAAW,EACnB,cAAc,EAAE,KAAK,CAAC,IAAI,CAAC,cAAc,CAAC,IACvC,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC,KACvD,IAAI,EAAE,QAAQ,EACd,UAAU,EAAE,OAAO,EACnB,gBAAgB,EAAE,cAAc,CAAC,IAAI,GAAG,CAAC,IAC1C;IACH,CAAC;CAAA"}

package/dist/functions/index.d.ts

@@ -1,5 +0,0 @@
-export * from './managedIdentifierFunctions';
-export * from './externalIdentifierFunctions';
-export * from './externalOIDFIdentifier';
-export * from './LegacySupport';
-//# sourceMappingURL=index.d.ts.map

package/dist/functions/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/functions/index.ts"],"names":[],"mappings":"AAAA,cAAc,8BAA8B,CAAA;AAC5C,cAAc,+BAA+B,CAAA;AAC7C,cAAc,0BAA0B,CAAA;AACxC,cAAc,iBAAiB,CAAA"}