@sphereon/ssi-sdk-ext.key-utils 0.36.1-feature.SSISDK.70.integrate.digidentity.10 → 0.36.1-feature.SSISDK.70.integrate.digidentity.56

package/dist/index.js

@@ -868,11 +868,45 @@ var hexStringFromUint8Array = /* @__PURE__ */ __name((value) => toString2(value,
 var signatureAlgorithmFromKey = /* @__PURE__ */ __name(async (args) => {
   const { key } = args;
   return signatureAlgorithmFromKeyType({
-    type: key.type
+    type: key.type,
+    algorithms: key.meta?.algorithms
   });
 }, "signatureAlgorithmFromKey");
+function signatureAlgorithmToJoseAlgorithm(alg) {
+  switch (alg) {
+    case "RSA_SHA256":
+      return JoseSignatureAlgorithm.RS256;
+    case "RSA_SHA384":
+      return JoseSignatureAlgorithm.RS384;
+    case "RSA_SHA512":
+      return JoseSignatureAlgorithm.RS512;
+    case "RSA_SSA_PSS_SHA256_MGF1":
+      return JoseSignatureAlgorithm.PS256;
+    case "RSA_SSA_PSS_SHA384_MGF1":
+      return JoseSignatureAlgorithm.PS384;
+    case "RSA_SSA_PSS_SHA512_MGF1":
+      return JoseSignatureAlgorithm.PS512;
+    case "ECDSA_SHA256":
+      return JoseSignatureAlgorithm.ES256;
+    case "ECDSA_SHA384":
+      return JoseSignatureAlgorithm.ES384;
+    case "ECDSA_SHA512":
+      return JoseSignatureAlgorithm.ES512;
+    case "ES256K":
+      return JoseSignatureAlgorithm.ES256K;
+    case "ED25519":
+    case "EdDSA":
+      return JoseSignatureAlgorithm.EdDSA;
+    default:
+      return alg;
+  }
+}
+__name(signatureAlgorithmToJoseAlgorithm, "signatureAlgorithmToJoseAlgorithm");
 var signatureAlgorithmFromKeyType = /* @__PURE__ */ __name((args) => {
-  const { type } = args;
+  const { type, algorithms } = args;
+  if (algorithms && algorithms.length > 0) {
+    return signatureAlgorithmToJoseAlgorithm(algorithms[0]);
+  }
   switch (type) {
     case "Ed25519":
     case "X25519":
@@ -886,7 +920,7 @@ var signatureAlgorithmFromKeyType = /* @__PURE__ */ __name((args) => {
     case "Secp256k1":
       return JoseSignatureAlgorithm.ES256K;
     case "RSA":
-      return JoseSignatureAlgorithm.PS256;
+      return JoseSignatureAlgorithm.RS256;
     default:
       throw new Error(`Key type '${type}' not supported`);
   }
@@ -1138,7 +1172,8 @@ function toPkcs1FromHex(publicKeyHex) {
 }
 __name(toPkcs1FromHex, "toPkcs1FromHex");
 function joseAlgorithmToDigest(alg) {
-  switch (alg.toUpperCase().replace("-", "")) {
+  const normalized = alg.toUpperCase().replace(/-/g, "");
+  switch (normalized) {
     case "RS256":
     case "ES256":
     case "ES256K":
@@ -1155,10 +1190,11 @@ function joseAlgorithmToDigest(alg) {
     case "PS512":
     case "HS512":
       return "SHA-512";
-    case "EdDSA":
+    case "EDDSA":
+    case "ED25519":
       return "SHA-512";
     default:
-      return "SHA-256";
+      throw new Error(`Unsupported JOSE algorithm: ${alg}. Cannot determine digest algorithm.`);
   }
 }
 __name(joseAlgorithmToDigest, "joseAlgorithmToDigest");
@@ -1175,16 +1211,18 @@ function isHashString(input) {
   if (length !== 32 && length !== 48 && length !== 64) {
     return false;
   }
+  let printableCount = 0;
   for (let i = 0; i < length; i++) {
     const byte = input[i];
     if (byte === void 0) {
       return false;
     }
-    if (!(byte >= 48 && byte <= 57 || byte >= 65 && byte <= 70 || byte >= 97 && byte <= 102)) {
-      return false;
+    if (byte >= 32 && byte <= 126) {
+      printableCount++;
     }
   }
-  return true;
+  const printableRatio = printableCount / length;
+  return printableRatio < 0.9;
 }
 __name(isHashString, "isHashString");
 function normalizeHashAlgorithm(alg) {
@@ -1498,6 +1536,7 @@ export {
   shaHasher,
   signatureAlgorithmFromKey,
   signatureAlgorithmFromKeyType,
+  signatureAlgorithmToJoseAlgorithm,
   toBase64url,
   toJwk,
   toJwkFromKey,