@sphereon/ssi-sdk.kms-rest-client 0.34.1-feature.IDK.11.48 → 0.34.1-feature.IDK.11.50

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (70) hide show
  1. package/dist/index.cjs +1056 -1185
  2. package/dist/index.cjs.map +1 -1
  3. package/dist/index.d.cts +1137 -17
  4. package/dist/index.d.ts +1137 -17
  5. package/dist/index.js +1049 -1179
  6. package/dist/index.js.map +1 -1
  7. package/package.json +3 -3
  8. package/plugin.schema.json +38 -157
  9. package/src/agent/KmsRestClient.ts +19 -20
  10. package/src/index.ts +1 -1
  11. package/src/models/AwsAssumeRoleCredentials.ts +49 -57
  12. package/src/models/AwsClientConfiguration.ts +29 -32
  13. package/src/models/AwsKmsSetting.ts +71 -85
  14. package/src/models/AwsStaticCredentials.ts +49 -57
  15. package/src/models/AwsWebIdentityTokenCredentials.ts +50 -58
  16. package/src/models/AzureClientSecretCredentialOpts.ts +45 -50
  17. package/src/models/AzureCredentialOpts.ts +24 -29
  18. package/src/models/AzureKeyVaultSetting.ts +60 -71
  19. package/src/models/CoseKey.ts +96 -104
  20. package/src/models/CoseKeyPair.ts +32 -38
  21. package/src/models/CoseKeyType.ts +18 -21
  22. package/src/models/CreateKeyProvider.ts +60 -74
  23. package/src/models/CreateRawSignature.ts +33 -39
  24. package/src/models/CreateRawSignatureResponse.ts +22 -25
  25. package/src/models/CreateSimpleSignature.ts +45 -59
  26. package/src/models/CryptoAlg.ts +18 -21
  27. package/src/models/Curve.ts +22 -25
  28. package/src/models/DigestAlg.ts +21 -24
  29. package/src/models/ErrorResponse.ts +39 -42
  30. package/src/models/GenerateKey.ts +51 -65
  31. package/src/models/GenerateKeyGlobal.ts +59 -73
  32. package/src/models/GenerateKeyResponse.ts +24 -30
  33. package/src/models/GetKeyResponse.ts +24 -30
  34. package/src/models/IdentifierMethod.ts +19 -22
  35. package/src/models/JoseKeyPair.ts +32 -38
  36. package/src/models/Jwk.ts +190 -207
  37. package/src/models/JwkKeyType.ts +18 -21
  38. package/src/models/JwkUse.ts +16 -19
  39. package/src/models/KeyEncoding.ts +16 -19
  40. package/src/models/KeyInfo.ts +103 -123
  41. package/src/models/KeyOperations.ts +22 -25
  42. package/src/models/KeyProvider.ts +33 -41
  43. package/src/models/KeyProviderResponse.ts +33 -41
  44. package/src/models/KeyProviderType.ts +17 -20
  45. package/src/models/KeyResolver.ts +44 -51
  46. package/src/models/KeyType.ts +17 -20
  47. package/src/models/KeyVisibility.ts +16 -19
  48. package/src/models/ListKeyProvidersResponse.ts +24 -30
  49. package/src/models/ListKeysResponse.ts +24 -30
  50. package/src/models/ListResolversResponse.ts +24 -30
  51. package/src/models/LookupMode.ts +17 -20
  52. package/src/models/ManagedKeyInfo.ts +106 -126
  53. package/src/models/ManagedKeyPair.ts +61 -70
  54. package/src/models/MaskGenFunction.ts +15 -18
  55. package/src/models/ProviderCapabilities.ts +65 -81
  56. package/src/models/ResolvePublicKey.ts +50 -61
  57. package/src/models/ResolvedKeyInfo.ts +104 -124
  58. package/src/models/Resolver.ts +44 -51
  59. package/src/models/SignInput.ts +42 -47
  60. package/src/models/SignOutput.ts +32 -38
  61. package/src/models/Signature.ts +51 -62
  62. package/src/models/SignatureAlgorithm.ts +26 -29
  63. package/src/models/StoreKey.ts +32 -38
  64. package/src/models/StoreKeyResponse.ts +24 -30
  65. package/src/models/UpdateKeyProvider.ts +49 -58
  66. package/src/models/VerifyRawSignature.ts +42 -48
  67. package/src/models/VerifyRawSignatureResponse.ts +22 -25
  68. package/src/models/VerifySimpleSignature.ts +35 -44
  69. package/src/models/index.ts +58 -58
  70. package/src/types/IKmsRestClient.ts +2 -2
package/dist/index.cjs CHANGED
@@ -4,9 +4,6 @@ var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
4
4
  var __getOwnPropNames = Object.getOwnPropertyNames;
5
5
  var __hasOwnProp = Object.prototype.hasOwnProperty;
6
6
  var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
7
- var __commonJS = (cb, mod) => function __require() {
8
- return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
9
- };
10
7
  var __export = (target, all) => {
11
8
  for (var name in all)
12
9
  __defProp(target, name, { get: all[name], enumerable: true });
@@ -21,1142 +18,1019 @@ var __copyProps = (to, from, except, desc) => {
21
18
  };
22
19
  var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
23
20
 
21
+ // src/index.ts
22
+ var index_exports = {};
23
+ __export(index_exports, {
24
+ KmsRestClient: () => KmsRestClient,
25
+ schema: () => plugin_schema_default
26
+ });
27
+ module.exports = __toCommonJS(index_exports);
28
+
24
29
  // plugin.schema.json
25
- var require_plugin_schema = __commonJS({
26
- "plugin.schema.json"(exports, module2) {
27
- module2.exports = {
28
- IKmsRestClient: {
29
- components: {
30
- schemas: {
31
- KmsCreateRawSignatureArgs: {
32
- type: "object",
33
- additionalProperties: false,
34
- properties: {
35
- keyInfo: {
36
- $ref: "#/components/schemas/KeyInfo"
37
- },
38
- input: {
39
- type: "string"
40
- },
41
- baseUrl: {
42
- type: "string"
43
- }
30
+ var plugin_schema_default = {
31
+ IKmsRestClient: {
32
+ components: {
33
+ schemas: {
34
+ KmsCreateRawSignatureArgs: {
35
+ type: "object",
36
+ additionalProperties: false,
37
+ properties: {
38
+ keyInfo: {
39
+ $ref: "#/components/schemas/KeyInfo"
40
+ },
41
+ input: {
42
+ type: "string"
43
+ },
44
+ baseUrl: {
45
+ type: "string"
46
+ }
47
+ },
48
+ required: ["input", "keyInfo"]
49
+ },
50
+ KeyInfo: {
51
+ type: "object",
52
+ properties: {
53
+ kid: {
54
+ type: "string",
55
+ description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
56
+ },
57
+ key: {
58
+ $ref: "#/components/schemas/Jwk"
59
+ },
60
+ signatureAlgorithm: {
61
+ $ref: "#/components/schemas/SignatureAlgorithm"
62
+ },
63
+ keyVisibility: {
64
+ $ref: "#/components/schemas/KeyVisibility"
65
+ },
66
+ x5c: {
67
+ type: "array",
68
+ items: {
69
+ type: "string"
44
70
  },
45
- required: [
46
- "input",
47
- "keyInfo"
48
- ]
71
+ description: "X.509 certificate chain associated with the key."
49
72
  },
50
- KeyInfo: {
73
+ alias: {
74
+ type: "string",
75
+ description: "A reference or alias to the key in the Key Management Service (KMS)."
76
+ },
77
+ providerId: {
78
+ type: "string",
79
+ description: "The Key Management System (KMS) identifier associated with the key."
80
+ },
81
+ keyType: {
82
+ $ref: "#/components/schemas/KeyType"
83
+ },
84
+ keyEncoding: {
85
+ $ref: "#/components/schemas/KeyEncoding"
86
+ },
87
+ opts: {
51
88
  type: "object",
52
- properties: {
53
- kid: {
54
- type: "string",
55
- description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
56
- },
57
- key: {
58
- $ref: "#/components/schemas/Jwk"
59
- },
60
- signatureAlgorithm: {
61
- $ref: "#/components/schemas/SignatureAlgorithm"
62
- },
63
- keyVisibility: {
64
- $ref: "#/components/schemas/KeyVisibility"
65
- },
66
- x5c: {
67
- type: "array",
68
- items: {
69
- type: "string"
70
- },
71
- description: "X.509 certificate chain associated with the key."
72
- },
73
- alias: {
74
- type: "string",
75
- description: "A reference or alias to the key in the Key Management Service (KMS)."
76
- },
77
- providerId: {
78
- type: "string",
79
- description: "The Key Management System (KMS) identifier associated with the key."
80
- },
81
- keyType: {
82
- $ref: "#/components/schemas/KeyType"
83
- },
84
- keyEncoding: {
85
- $ref: "#/components/schemas/KeyEncoding"
86
- },
87
- opts: {
88
- type: "object",
89
- additionalProperties: {
90
- type: "string"
91
- },
92
- description: "Additional configuration options as key-value pairs."
93
- }
89
+ additionalProperties: {
90
+ type: "string"
94
91
  },
95
- additionalProperties: false,
96
- description: "Information about a cryptographic key, providing metadata and configuration details necessary for cryptographic operations."
92
+ description: "Additional configuration options as key-value pairs."
93
+ }
94
+ },
95
+ additionalProperties: false,
96
+ description: "Information about a cryptographic key, providing metadata and configuration details necessary for cryptographic operations."
97
+ },
98
+ Jwk: {
99
+ type: "object",
100
+ properties: {
101
+ kty: {
102
+ $ref: "#/components/schemas/JwkKeyType"
97
103
  },
98
- Jwk: {
99
- type: "object",
100
- properties: {
101
- kty: {
102
- $ref: "#/components/schemas/JwkKeyType"
103
- },
104
- kid: {
105
- type: "string",
106
- description: "Key identifier used to uniquely identify the key."
107
- },
108
- alg: {
109
- type: "string",
110
- description: "The algorithm intended for use with the key (JWA algorithm name)."
111
- },
112
- use: {
113
- $ref: "#/components/schemas/JwkUse"
114
- },
115
- keyOps: {
116
- type: "array",
117
- items: {
118
- $ref: "#/components/schemas/KeyOperations"
119
- },
120
- description: "The allowed cryptographic operations for the key."
121
- },
122
- crv: {
123
- $ref: "#/components/schemas/Curve"
124
- },
125
- x: {
126
- type: "string",
127
- description: "The x coordinate for elliptic curve keys (base64url-encoded)."
128
- },
129
- y: {
130
- type: "string",
131
- description: "The y coordinate for elliptic curve keys (base64url-encoded)."
132
- },
133
- d: {
134
- type: "string",
135
- description: "The private key parameter (base64url-encoded)."
136
- },
137
- n: {
138
- type: "string",
139
- description: "The modulus value for RSA keys (base64url-encoded)."
140
- },
141
- e: {
142
- type: "string",
143
- description: "The public exponent for RSA keys (base64url-encoded)."
144
- },
145
- p: {
146
- type: "string",
147
- description: "The first prime factor for RSA private keys (base64url-encoded)."
148
- },
149
- q: {
150
- type: "string",
151
- description: "The second prime factor for RSA private keys (base64url-encoded)."
152
- },
153
- dp: {
154
- type: "string",
155
- description: "The first factor CRT exponent for RSA private keys (base64url-encoded)."
156
- },
157
- dq: {
158
- type: "string",
159
- description: "The second factor CRT exponent for RSA private keys (base64url-encoded)."
160
- },
161
- qi: {
162
- type: "string",
163
- description: "The first CRT coefficient for RSA private keys (base64url-encoded)."
164
- },
165
- k: {
166
- type: "string",
167
- description: "The symmetric key value (base64url-encoded)."
168
- },
169
- x5c: {
170
- type: "array",
171
- items: {
172
- type: "string"
173
- },
174
- description: "X.509 certificate chain as base64-encoded DER certificates."
175
- },
176
- x5t: {
177
- type: "string",
178
- description: "X.509 certificate SHA-1 thumbprint (base64url-encoded)."
179
- },
180
- x5u: {
181
- type: "string",
182
- description: "URL pointing to X.509 certificate or certificate chain."
183
- },
184
- x5tS256: {
185
- type: "string",
186
- description: "X.509 certificate SHA-256 thumbprint (base64url-encoded)."
187
- }
104
+ kid: {
105
+ type: "string",
106
+ description: "Key identifier used to uniquely identify the key."
107
+ },
108
+ alg: {
109
+ type: "string",
110
+ description: "The algorithm intended for use with the key (JWA algorithm name)."
111
+ },
112
+ use: {
113
+ $ref: "#/components/schemas/JwkUse"
114
+ },
115
+ keyOps: {
116
+ type: "array",
117
+ items: {
118
+ $ref: "#/components/schemas/KeyOperations"
188
119
  },
189
- required: [
190
- "kty"
191
- ],
192
- additionalProperties: false,
193
- description: "Represents a JSON Web Key (JWK) as defined by the JSON Web Key specification."
120
+ description: "The allowed cryptographic operations for the key."
121
+ },
122
+ crv: {
123
+ $ref: "#/components/schemas/Curve"
124
+ },
125
+ x: {
126
+ type: "string",
127
+ description: "The x coordinate for elliptic curve keys (base64url-encoded)."
128
+ },
129
+ y: {
130
+ type: "string",
131
+ description: "The y coordinate for elliptic curve keys (base64url-encoded)."
194
132
  },
195
- JwkKeyType: {
133
+ d: {
196
134
  type: "string",
197
- enum: [
198
- "EC",
199
- "RSA",
200
- "OKP",
201
- "oct"
202
- ],
203
- description: "JSON Web Key (JWK) key type parameter identifying the cryptographic algorithm family."
204
- },
205
- JwkUse: {
135
+ description: "The private key parameter (base64url-encoded)."
136
+ },
137
+ n: {
206
138
  type: "string",
207
- enum: [
208
- "sig",
209
- "enc"
210
- ],
211
- description: "Intended use of the key (signing or encryption)."
139
+ description: "The modulus value for RSA keys (base64url-encoded)."
212
140
  },
213
- KeyOperations: {
141
+ e: {
214
142
  type: "string",
215
- enum: [
216
- "sign",
217
- "verify",
218
- "encrypt",
219
- "decrypt",
220
- "wrapKey",
221
- "unwrapKey",
222
- "deriveKey",
223
- "deriveBits"
224
- ],
225
- description: "Specific operations the key is intended for."
226
- },
227
- Curve: {
143
+ description: "The public exponent for RSA keys (base64url-encoded)."
144
+ },
145
+ p: {
228
146
  type: "string",
229
- enum: [
230
- "P-256",
231
- "P-384",
232
- "P-521",
233
- "secp256k1",
234
- "Ed25519",
235
- "Ed448",
236
- "X25519",
237
- "X448"
238
- ],
239
- description: "Elliptic curve identifier."
240
- },
241
- SignatureAlgorithm: {
147
+ description: "The first prime factor for RSA private keys (base64url-encoded)."
148
+ },
149
+ q: {
242
150
  type: "string",
243
- enum: [
244
- "ED25519",
245
- "ECDSA_SHA256",
246
- "ECDSA_SHA384",
247
- "ECDSA_SHA512",
248
- "ES256K",
249
- "ECKA_DH_SHA256",
250
- "HMAC_SHA256",
251
- "HMAC_SHA384",
252
- "HMAC_SHA512",
253
- "RSA_SSA_PSS_SHA256_MGF1",
254
- "RSA_SSA_PSS_SHA384_MGF1",
255
- "RSA_SSA_PSS_SHA512_MGF1"
256
- ],
257
- description: "Cryptographic signature algorithm identifier."
258
- },
259
- KeyVisibility: {
151
+ description: "The second prime factor for RSA private keys (base64url-encoded)."
152
+ },
153
+ dp: {
260
154
  type: "string",
261
- enum: [
262
- "PUBLIC",
263
- "PRIVATE"
264
- ],
265
- description: "Indicates the visibility status of a cryptographic key."
155
+ description: "The first factor CRT exponent for RSA private keys (base64url-encoded)."
266
156
  },
267
- KeyType: {
157
+ dq: {
268
158
  type: "string",
269
- enum: [
270
- "OKP",
271
- "EC",
272
- "RSA"
273
- ],
274
- description: "Cryptographic key type identifier."
275
- },
276
- KeyEncoding: {
159
+ description: "The second factor CRT exponent for RSA private keys (base64url-encoded)."
160
+ },
161
+ qi: {
277
162
  type: "string",
278
- enum: [
279
- "COSE",
280
- "JOSE"
281
- ],
282
- description: "The encoding format of the cryptographic key."
163
+ description: "The first CRT coefficient for RSA private keys (base64url-encoded)."
283
164
  },
284
- CreateRawSignatureResponse: {
285
- type: "object",
286
- properties: {
287
- signature: {
288
- type: "string",
289
- description: "The created signature encoded as a base64 string."
290
- }
291
- },
292
- required: [
293
- "signature"
294
- ],
295
- additionalProperties: false,
296
- description: "Response body containing the created signature."
165
+ k: {
166
+ type: "string",
167
+ description: "The symmetric key value (base64url-encoded)."
297
168
  },
298
- KmsDeleteKeyArgs: {
299
- type: "object",
300
- properties: {
301
- baseUrl: {
302
- type: "string"
303
- },
304
- aliasOrKid: {
305
- type: "string"
306
- }
169
+ x5c: {
170
+ type: "array",
171
+ items: {
172
+ type: "string"
307
173
  },
308
- additionalProperties: false
174
+ description: "X.509 certificate chain as base64-encoded DER certificates."
309
175
  },
310
- KmsGenerateKeyArgs: {
311
- type: "object",
312
- additionalProperties: false,
313
- properties: {
314
- alias: {
315
- type: "string",
316
- description: "Alias for the generated key."
317
- },
318
- use: {
319
- $ref: "#/components/schemas/JwkUse"
320
- },
321
- keyOperations: {
322
- type: "array",
323
- items: {
324
- $ref: "#/components/schemas/KeyOperations"
325
- }
326
- },
327
- alg: {
328
- $ref: "#/components/schemas/SignatureAlgorithm"
329
- },
330
- providerId: {
331
- type: "string",
332
- description: "Optional provider ID. If not specified, the default provider will be used."
333
- },
334
- baseUrl: {
335
- type: "string"
336
- }
176
+ x5t: {
177
+ type: "string",
178
+ description: "X.509 certificate SHA-1 thumbprint (base64url-encoded)."
179
+ },
180
+ x5u: {
181
+ type: "string",
182
+ description: "URL pointing to X.509 certificate or certificate chain."
183
+ },
184
+ x5tS256: {
185
+ type: "string",
186
+ description: "X.509 certificate SHA-256 thumbprint (base64url-encoded)."
187
+ }
188
+ },
189
+ required: ["kty"],
190
+ additionalProperties: false,
191
+ description: "Represents a JSON Web Key (JWK) as defined by the JSON Web Key specification."
192
+ },
193
+ JwkKeyType: {
194
+ type: "string",
195
+ enum: ["EC", "RSA", "OKP", "oct"],
196
+ description: "JSON Web Key (JWK) key type parameter identifying the cryptographic algorithm family."
197
+ },
198
+ JwkUse: {
199
+ type: "string",
200
+ enum: ["sig", "enc"],
201
+ description: "Intended use of the key (signing or encryption)."
202
+ },
203
+ KeyOperations: {
204
+ type: "string",
205
+ enum: ["sign", "verify", "encrypt", "decrypt", "wrapKey", "unwrapKey", "deriveKey", "deriveBits"],
206
+ description: "Specific operations the key is intended for."
207
+ },
208
+ Curve: {
209
+ type: "string",
210
+ enum: ["P-256", "P-384", "P-521", "secp256k1", "Ed25519", "Ed448", "X25519", "X448"],
211
+ description: "Elliptic curve identifier."
212
+ },
213
+ SignatureAlgorithm: {
214
+ type: "string",
215
+ enum: [
216
+ "ED25519",
217
+ "ECDSA_SHA256",
218
+ "ECDSA_SHA384",
219
+ "ECDSA_SHA512",
220
+ "ES256K",
221
+ "ECKA_DH_SHA256",
222
+ "HMAC_SHA256",
223
+ "HMAC_SHA384",
224
+ "HMAC_SHA512",
225
+ "RSA_SSA_PSS_SHA256_MGF1",
226
+ "RSA_SSA_PSS_SHA384_MGF1",
227
+ "RSA_SSA_PSS_SHA512_MGF1"
228
+ ],
229
+ description: "Cryptographic signature algorithm identifier."
230
+ },
231
+ KeyVisibility: {
232
+ type: "string",
233
+ enum: ["PUBLIC", "PRIVATE"],
234
+ description: "Indicates the visibility status of a cryptographic key."
235
+ },
236
+ KeyType: {
237
+ type: "string",
238
+ enum: ["OKP", "EC", "RSA"],
239
+ description: "Cryptographic key type identifier."
240
+ },
241
+ KeyEncoding: {
242
+ type: "string",
243
+ enum: ["COSE", "JOSE"],
244
+ description: "The encoding format of the cryptographic key."
245
+ },
246
+ CreateRawSignatureResponse: {
247
+ type: "object",
248
+ properties: {
249
+ signature: {
250
+ type: "string",
251
+ description: "The created signature encoded as a base64 string."
252
+ }
253
+ },
254
+ required: ["signature"],
255
+ additionalProperties: false,
256
+ description: "Response body containing the created signature."
257
+ },
258
+ KmsDeleteKeyArgs: {
259
+ type: "object",
260
+ properties: {
261
+ baseUrl: {
262
+ type: "string"
263
+ },
264
+ aliasOrKid: {
265
+ type: "string"
266
+ }
267
+ },
268
+ additionalProperties: false
269
+ },
270
+ KmsGenerateKeyArgs: {
271
+ type: "object",
272
+ additionalProperties: false,
273
+ properties: {
274
+ alias: {
275
+ type: "string",
276
+ description: "Alias for the generated key."
277
+ },
278
+ use: {
279
+ $ref: "#/components/schemas/JwkUse"
280
+ },
281
+ keyOperations: {
282
+ type: "array",
283
+ items: {
284
+ $ref: "#/components/schemas/KeyOperations"
337
285
  }
338
286
  },
339
- ManagedKeyPair: {
340
- type: "object",
341
- properties: {
342
- kid: {
343
- type: "string",
344
- description: "Key identifier, may be null."
345
- },
346
- providerId: {
347
- type: "string",
348
- description: "Key Management System identifier."
349
- },
350
- alias: {
351
- type: "string",
352
- description: "Reference to the key in the KMS."
353
- },
354
- cose: {
355
- $ref: "#/components/schemas/CoseKeyPair"
356
- },
357
- jose: {
358
- $ref: "#/components/schemas/JoseKeyPair"
359
- }
360
- },
361
- required: [
362
- "providerId",
363
- "alias",
364
- "cose",
365
- "jose"
366
- ],
367
- additionalProperties: false,
368
- description: "Represents a key pair used by a crypto provider, encapsulating both JOSE and COSE key pairs."
369
- },
370
- CoseKeyPair: {
371
- type: "object",
372
- properties: {
373
- privateCoseKey: {
374
- $ref: "#/components/schemas/CoseKey"
375
- },
376
- publicCoseKey: {
377
- $ref: "#/components/schemas/CoseKey"
378
- }
379
- },
380
- required: [
381
- "publicCoseKey"
382
- ],
383
- additionalProperties: false,
384
- description: "Represents a cryptographic key pair for COSE (CBOR Object Signing and Encryption) operations."
287
+ alg: {
288
+ $ref: "#/components/schemas/SignatureAlgorithm"
385
289
  },
386
- CoseKey: {
387
- type: "object",
388
- properties: {
389
- kty: {
390
- $ref: "#/components/schemas/CoseKeyType"
391
- },
392
- kid: {
393
- type: "string",
394
- description: "Key identifier (base64url-encoded byte string)."
395
- },
396
- alg: {
397
- type: "number",
398
- description: "The COSE algorithm identifier (e.g., -7=ES256, -35=ES384, -36=ES512, -8=EdDSA)."
399
- },
400
- keyOps: {
401
- type: "array",
402
- items: {
403
- type: "number"
404
- },
405
- description: "The allowed COSE key operations (1=sign, 2=verify, 3=encrypt, 4=decrypt, etc.)."
406
- },
407
- baseIV: {
408
- type: "string",
409
- description: "Base initialization vector (base64url-encoded)."
410
- },
411
- crv: {
412
- type: "number",
413
- description: "The COSE curve identifier (1=P-256, 2=P-384, 3=P-521, 8=secp256k1, 6=Ed25519, etc.)."
414
- },
415
- x: {
416
- type: "string",
417
- description: "The x coordinate (base64url-encoded byte string)."
418
- },
419
- y: {
420
- type: "string",
421
- description: "The y coordinate (base64url-encoded byte string)."
422
- },
423
- d: {
424
- type: "string",
425
- description: "The private key parameter (base64url-encoded byte string)."
426
- },
427
- x5chain: {
428
- type: "array",
429
- items: {
430
- type: "string"
431
- },
432
- description: "X.509 certificate chain as base64-encoded certificates."
433
- }
434
- },
435
- required: [
436
- "kty"
437
- ],
438
- additionalProperties: false,
439
- description: "Represents a COSE (CBOR Object Signing and Encryption) key in JSON format."
290
+ providerId: {
291
+ type: "string",
292
+ description: "Optional provider ID. If not specified, the default provider will be used."
440
293
  },
441
- CoseKeyType: {
442
- type: "number",
443
- enum: [
444
- 1,
445
- 2,
446
- 3,
447
- 4
448
- ],
449
- description: "COSE key type parameter. 1=OKP (Octet Key Pair), 2=EC2 (Elliptic Curve), 3=RSA, 4=Symmetric."
450
- },
451
- JoseKeyPair: {
452
- type: "object",
453
- properties: {
454
- privateJwk: {
455
- $ref: "#/components/schemas/Jwk"
456
- },
457
- publicJwk: {
458
- $ref: "#/components/schemas/Jwk"
459
- }
460
- },
461
- required: [
462
- "publicJwk"
463
- ],
464
- additionalProperties: false,
465
- description: "Data class representing a cryptographic key pair used with JOSE (JSON Object Signing and Encryption)."
294
+ baseUrl: {
295
+ type: "string"
296
+ }
297
+ }
298
+ },
299
+ ManagedKeyPair: {
300
+ type: "object",
301
+ properties: {
302
+ kid: {
303
+ type: "string",
304
+ description: "Key identifier, may be null."
466
305
  },
467
- KmsGetKeyArgs: {
468
- type: "object",
469
- properties: {
470
- baseUrl: {
471
- type: "string"
472
- },
473
- aliasOrKid: {
474
- type: "string"
475
- }
476
- },
477
- required: [
478
- "aliasOrKid"
479
- ],
480
- additionalProperties: false
306
+ providerId: {
307
+ type: "string",
308
+ description: "Key Management System identifier."
481
309
  },
482
- ManagedKeyInfo: {
483
- type: "object",
484
- properties: {
485
- kid: {
486
- type: "string",
487
- description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
488
- },
489
- key: {
490
- $ref: "#/components/schemas/Jwk"
491
- },
492
- signatureAlgorithm: {
493
- $ref: "#/components/schemas/SignatureAlgorithm"
494
- },
495
- keyVisibility: {
496
- $ref: "#/components/schemas/KeyVisibility"
497
- },
498
- x5c: {
499
- type: "array",
500
- items: {
501
- type: "string"
502
- },
503
- description: "X.509 certificate chain associated with the key."
504
- },
505
- alias: {
506
- type: "string",
507
- description: "A reference or alias to the key in the Key Management Service (KMS)."
508
- },
509
- providerId: {
510
- type: "string",
511
- description: "The Key Management System (KMS) identifier associated with the key."
512
- },
513
- keyType: {
514
- $ref: "#/components/schemas/KeyType"
515
- },
516
- keyEncoding: {
517
- $ref: "#/components/schemas/KeyEncoding"
518
- },
519
- opts: {
520
- type: "object",
521
- additionalProperties: {
522
- type: "string"
523
- },
524
- description: "Additional configuration options as key-value pairs."
525
- }
526
- },
527
- required: [
528
- "key",
529
- "alias",
530
- "providerId"
531
- ],
532
- additionalProperties: false,
533
- description: "Represents a managed cryptographic key information that is guaranteed to be present and resolved, part of a KMS providing concrete access to the key."
534
- },
535
- KmsGetKeyProviderArgs: {
536
- type: "object",
537
- properties: {
538
- baseUrl: {
539
- type: "string"
540
- },
541
- providerId: {
542
- type: "string"
543
- }
544
- },
545
- additionalProperties: false
310
+ alias: {
311
+ type: "string",
312
+ description: "Reference to the key in the KMS."
546
313
  },
547
- KeyProviderResponse: {
548
- type: "object",
549
- properties: {
550
- providerId: {
551
- type: "string",
552
- description: "The unique identifier assigned to the Key Provider instance upon creation."
553
- },
554
- type: {
555
- $ref: "#/components/schemas/KeyProviderType"
556
- }
557
- },
558
- required: [
559
- "providerId",
560
- "type"
561
- ],
562
- additionalProperties: false,
563
- description: "Response body containing the details of a Key Provider instance."
564
- },
565
- KeyProviderType: {
314
+ cose: {
315
+ $ref: "#/components/schemas/CoseKeyPair"
316
+ },
317
+ jose: {
318
+ $ref: "#/components/schemas/JoseKeyPair"
319
+ }
320
+ },
321
+ required: ["providerId", "alias", "cose", "jose"],
322
+ additionalProperties: false,
323
+ description: "Represents a key pair used by a crypto provider, encapsulating both JOSE and COSE key pairs."
324
+ },
325
+ CoseKeyPair: {
326
+ type: "object",
327
+ properties: {
328
+ privateCoseKey: {
329
+ $ref: "#/components/schemas/CoseKey"
330
+ },
331
+ publicCoseKey: {
332
+ $ref: "#/components/schemas/CoseKey"
333
+ }
334
+ },
335
+ required: ["publicCoseKey"],
336
+ additionalProperties: false,
337
+ description: "Represents a cryptographic key pair for COSE (CBOR Object Signing and Encryption) operations."
338
+ },
339
+ CoseKey: {
340
+ type: "object",
341
+ properties: {
342
+ kty: {
343
+ $ref: "#/components/schemas/CoseKeyType"
344
+ },
345
+ kid: {
566
346
  type: "string",
567
- enum: [
568
- "SOFTWARE",
569
- "AZURE_KEYVAULT",
570
- "AWS_KMS"
571
- ],
572
- description: "The type of Key Provider. Determines the required configuration settings. - AZURE_KEYVAULT: Microsoft Azure Key Vault or Managed HSM. - AWS_KMS: Amazon Web Services Key Management Service."
573
- },
574
- kmsGetResolverArgs: {
575
- type: "object",
576
- properties: {
577
- baseUrl: {
578
- type: "string"
579
- },
580
- resolverId: {
581
- type: "string"
582
- }
583
- },
584
- required: [
585
- "resolverId"
586
- ],
587
- additionalProperties: false
347
+ description: "Key identifier (base64url-encoded byte string)."
588
348
  },
589
- Resolver: {
590
- type: "object",
591
- properties: {
592
- resolverId: {
593
- type: "string",
594
- description: "Unique identifier for the resolver."
595
- },
596
- supportedIdentifierMethods: {
597
- type: "array",
598
- items: {
599
- $ref: "#/components/schemas/IdentifierMethod"
600
- },
601
- description: "List of identifier methods supported by this resolver."
602
- },
603
- supportedKeyTypes: {
604
- type: "array",
605
- items: {
606
- $ref: "#/components/schemas/KeyType"
607
- },
608
- description: "List of key types supported by this resolver."
609
- }
349
+ alg: {
350
+ type: "number",
351
+ description: "The COSE algorithm identifier (e.g., -7=ES256, -35=ES384, -36=ES512, -8=EdDSA)."
352
+ },
353
+ keyOps: {
354
+ type: "array",
355
+ items: {
356
+ type: "number"
610
357
  },
611
- required: [
612
- "resolverId"
613
- ],
614
- additionalProperties: false,
615
- description: "Represents a key resolver configuration."
358
+ description: "The allowed COSE key operations (1=sign, 2=verify, 3=encrypt, 4=decrypt, etc.)."
616
359
  },
617
- IdentifierMethod: {
360
+ baseIV: {
618
361
  type: "string",
619
- enum: [
620
- "JWK",
621
- "KID",
622
- "COSE_KEY",
623
- "X5C",
624
- "DID"
625
- ],
626
- description: "Method used to identify cryptographic keys."
627
- },
628
- KmsIsValidRawSignatureArgs: {
629
- type: "object",
630
- additionalProperties: false,
631
- properties: {
632
- keyInfo: {
633
- $ref: "#/components/schemas/KeyInfo"
634
- },
635
- input: {
636
- type: "string"
637
- },
638
- signature: {
639
- type: "string"
640
- },
641
- baseUrl: {
642
- type: "string"
643
- }
644
- },
645
- required: [
646
- "input",
647
- "keyInfo",
648
- "signature"
649
- ]
362
+ description: "Base initialization vector (base64url-encoded)."
650
363
  },
651
- VerifyRawSignatureResponse: {
652
- type: "object",
653
- properties: {
654
- isValid: {
655
- type: "boolean",
656
- description: "Indicates whether the signature is valid or not."
657
- }
658
- },
659
- required: [
660
- "isValid"
661
- ],
662
- additionalProperties: false,
663
- description: "Response body containing the details of the signature verification."
364
+ crv: {
365
+ type: "number",
366
+ description: "The COSE curve identifier (1=P-256, 2=P-384, 3=P-521, 8=secp256k1, 6=Ed25519, etc.)."
664
367
  },
665
- KmsListKeyProvidersArgs: {
666
- type: "object",
667
- properties: {
668
- baseUrl: {
669
- type: "string"
670
- }
671
- },
672
- additionalProperties: false
368
+ x: {
369
+ type: "string",
370
+ description: "The x coordinate (base64url-encoded byte string)."
673
371
  },
674
- ListKeyProvidersResponse: {
675
- type: "object",
676
- properties: {
677
- providers: {
678
- type: "array",
679
- items: {
680
- $ref: "#/components/schemas/KeyProvider"
681
- }
682
- }
683
- },
684
- required: [
685
- "providers"
686
- ],
687
- additionalProperties: false,
688
- description: "Response body containing the details of a Key Provider instance."
372
+ y: {
373
+ type: "string",
374
+ description: "The y coordinate (base64url-encoded byte string)."
689
375
  },
690
- KeyProvider: {
691
- type: "object",
692
- properties: {
693
- providerId: {
694
- type: "string",
695
- description: "The unique identifier assigned to the Key Provider instance upon creation."
696
- },
697
- type: {
698
- $ref: "#/components/schemas/KeyProviderType"
699
- }
700
- },
701
- required: [
702
- "providerId",
703
- "type"
704
- ],
705
- additionalProperties: false,
706
- description: "Response body containing the details of a Key Provider instance."
707
- },
708
- KmsListKeysArgs: {
709
- type: "object",
710
- properties: {
711
- baseUrl: {
712
- type: "string"
713
- },
714
- providerId: {
715
- type: "string"
716
- }
717
- },
718
- additionalProperties: false
376
+ d: {
377
+ type: "string",
378
+ description: "The private key parameter (base64url-encoded byte string)."
719
379
  },
720
- ListKeysResponse: {
721
- type: "object",
722
- properties: {
723
- keyInfos: {
724
- type: "array",
725
- items: {
726
- $ref: "#/components/schemas/ManagedKeyInfo"
727
- }
728
- }
380
+ x5chain: {
381
+ type: "array",
382
+ items: {
383
+ type: "string"
729
384
  },
730
- required: [
731
- "keyInfos"
732
- ],
733
- additionalProperties: false,
734
- description: "Response body containing all the managed keys."
385
+ description: "X.509 certificate chain as base64-encoded certificates."
386
+ }
387
+ },
388
+ required: ["kty"],
389
+ additionalProperties: false,
390
+ description: "Represents a COSE (CBOR Object Signing and Encryption) key in JSON format."
391
+ },
392
+ CoseKeyType: {
393
+ type: "number",
394
+ enum: [1, 2, 3, 4],
395
+ description: "COSE key type parameter. 1=OKP (Octet Key Pair), 2=EC2 (Elliptic Curve), 3=RSA, 4=Symmetric."
396
+ },
397
+ JoseKeyPair: {
398
+ type: "object",
399
+ properties: {
400
+ privateJwk: {
401
+ $ref: "#/components/schemas/Jwk"
735
402
  },
736
- KmsListResolversArgs: {
737
- type: "object",
738
- properties: {
739
- baseUrl: {
740
- type: "string"
741
- }
742
- },
743
- additionalProperties: false
403
+ publicJwk: {
404
+ $ref: "#/components/schemas/Jwk"
405
+ }
406
+ },
407
+ required: ["publicJwk"],
408
+ additionalProperties: false,
409
+ description: "Data class representing a cryptographic key pair used with JOSE (JSON Object Signing and Encryption)."
410
+ },
411
+ KmsGetKeyArgs: {
412
+ type: "object",
413
+ properties: {
414
+ baseUrl: {
415
+ type: "string"
744
416
  },
745
- ListResolversResponse: {
746
- type: "object",
747
- properties: {
748
- resolvers: {
749
- type: "array",
750
- items: {
751
- $ref: "#/components/schemas/Resolver"
752
- }
753
- }
754
- },
755
- required: [
756
- "resolvers"
757
- ],
758
- additionalProperties: false,
759
- description: "Response body containing all the resolvers."
417
+ aliasOrKid: {
418
+ type: "string"
419
+ }
420
+ },
421
+ required: ["aliasOrKid"],
422
+ additionalProperties: false
423
+ },
424
+ ManagedKeyInfo: {
425
+ type: "object",
426
+ properties: {
427
+ kid: {
428
+ type: "string",
429
+ description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
760
430
  },
761
- KmsProviderDeleteKeyArgs: {
762
- type: "object",
763
- properties: {
764
- baseUrl: {
765
- type: "string"
766
- },
767
- providerId: {
768
- type: "string"
769
- },
770
- aliasOrKid: {
771
- type: "string"
772
- }
773
- },
774
- required: [
775
- "providerId",
776
- "aliasOrKid"
777
- ],
778
- additionalProperties: false
431
+ key: {
432
+ $ref: "#/components/schemas/Jwk"
779
433
  },
780
- KmsProviderGenerateKey: {
781
- type: "object",
782
- additionalProperties: false,
783
- properties: {
784
- alias: {
785
- type: "string",
786
- description: "Alias for the generated key."
787
- },
788
- use: {
789
- $ref: "#/components/schemas/JwkUse"
790
- },
791
- keyOperations: {
792
- type: "array",
793
- items: {
794
- $ref: "#/components/schemas/KeyOperations"
795
- }
796
- },
797
- alg: {
798
- $ref: "#/components/schemas/SignatureAlgorithm"
799
- },
800
- baseUrl: {
801
- type: "string"
802
- },
803
- providerId: {
804
- type: "string"
805
- }
806
- },
807
- required: [
808
- "providerId"
809
- ]
434
+ signatureAlgorithm: {
435
+ $ref: "#/components/schemas/SignatureAlgorithm"
810
436
  },
811
- KmsProviderGetKeyArgs: {
812
- type: "object",
813
- properties: {
814
- baseUrl: {
815
- type: "string"
816
- },
817
- providerId: {
818
- type: "string"
819
- },
820
- aliasOrKid: {
821
- type: "string"
822
- }
823
- },
824
- required: [
825
- "providerId",
826
- "aliasOrKid"
827
- ],
828
- additionalProperties: false
437
+ keyVisibility: {
438
+ $ref: "#/components/schemas/KeyVisibility"
829
439
  },
830
- KmsProviderListKeysArgs: {
831
- type: "object",
832
- properties: {
833
- baseUrl: {
834
- type: "string"
835
- },
836
- providerId: {
837
- type: "string"
838
- }
440
+ x5c: {
441
+ type: "array",
442
+ items: {
443
+ type: "string"
839
444
  },
840
- required: [
841
- "providerId"
842
- ],
843
- additionalProperties: false
445
+ description: "X.509 certificate chain associated with the key."
844
446
  },
845
- KmsProviderStoreKey: {
846
- type: "object",
847
- additionalProperties: false,
848
- properties: {
849
- keyInfo: {
850
- $ref: "#/components/schemas/ResolvedKeyInfo"
851
- },
852
- certChain: {
853
- type: "array",
854
- items: {
855
- type: "string"
856
- },
857
- description: "X.509 certificate chain as base64-encoded DER certificates."
858
- },
859
- baseUrl: {
860
- type: "string"
861
- },
862
- providerId: {
863
- type: "string"
864
- }
865
- },
866
- required: [
867
- "keyInfo",
868
- "providerId"
869
- ]
447
+ alias: {
448
+ type: "string",
449
+ description: "A reference or alias to the key in the Key Management Service (KMS)."
870
450
  },
871
- ResolvedKeyInfo: {
872
- type: "object",
873
- properties: {
874
- kid: {
875
- type: "string",
876
- description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
877
- },
878
- key: {
879
- $ref: "#/components/schemas/Jwk"
880
- },
881
- signatureAlgorithm: {
882
- $ref: "#/components/schemas/SignatureAlgorithm"
883
- },
884
- keyVisibility: {
885
- $ref: "#/components/schemas/KeyVisibility"
886
- },
887
- x5c: {
888
- type: "array",
889
- items: {
890
- type: "string"
891
- },
892
- description: "X.509 certificate chain associated with the key."
893
- },
894
- alias: {
895
- type: "string",
896
- description: "A reference or alias to the key in the Key Management Service (KMS)."
897
- },
898
- providerId: {
899
- type: "string",
900
- description: "The Key Management System (KMS) identifier associated with the key."
901
- },
902
- keyType: {
903
- $ref: "#/components/schemas/KeyType"
904
- },
905
- keyEncoding: {
906
- $ref: "#/components/schemas/KeyEncoding"
907
- },
908
- opts: {
909
- type: "object",
910
- additionalProperties: {
911
- type: "string"
912
- },
913
- description: "Additional configuration options as key-value pairs."
914
- }
915
- },
916
- required: [
917
- "key"
918
- ],
919
- additionalProperties: false,
920
- description: "Represents a resolved cryptographic key information where the key is guaranteed to be present and resolved, providing concrete access to the key."
451
+ providerId: {
452
+ type: "string",
453
+ description: "The Key Management System (KMS) identifier associated with the key."
921
454
  },
922
- KmsResolveKeyArgs: {
923
- type: "object",
924
- additionalProperties: false,
925
- properties: {
926
- keyInfo: {
927
- $ref: "#/components/schemas/KeyInfo"
928
- },
929
- identifierMethod: {
930
- $ref: "#/components/schemas/IdentifierMethod"
931
- },
932
- trustedCerts: {
933
- type: "array",
934
- items: {
935
- type: "string"
936
- },
937
- description: "Optional array of trusted certificates (base64-encoded) that may be used in the resolution process."
938
- },
939
- verifyX509CertificateChain: {
940
- type: "boolean",
941
- description: "Optional boolean indicating whether the X.509 certificate chain should be verified."
942
- },
943
- baseUrl: {
944
- type: "string"
945
- },
946
- resolverId: {
947
- $ref: "#/components/schemas/String"
948
- }
949
- },
950
- required: [
951
- "keyInfo",
952
- "resolverId"
953
- ]
455
+ keyType: {
456
+ $ref: "#/components/schemas/KeyType"
457
+ },
458
+ keyEncoding: {
459
+ $ref: "#/components/schemas/KeyEncoding"
954
460
  },
955
- String: {
461
+ opts: {
956
462
  type: "object",
957
- properties: {
958
- length: {
959
- type: "number"
960
- }
961
- },
962
- required: [
963
- "length"
964
- ],
965
463
  additionalProperties: {
966
464
  type: "string"
967
- }
968
- },
969
- KmsStoreKeyArgs: {
970
- type: "object",
971
- additionalProperties: false,
972
- properties: {
973
- keyInfo: {
974
- $ref: "#/components/schemas/ResolvedKeyInfo"
975
- },
976
- certChain: {
977
- type: "array",
978
- items: {
979
- type: "string"
980
- },
981
- description: "X.509 certificate chain as base64-encoded DER certificates."
982
- },
983
- baseUrl: {
984
- type: "string"
985
- }
986
465
  },
987
- required: [
988
- "keyInfo"
989
- ]
466
+ description: "Additional configuration options as key-value pairs."
990
467
  }
991
468
  },
992
- methods: {
993
- kmsCreateRawSignature: {
994
- description: "",
995
- arguments: {
996
- $ref: "#/components/schemas/KmsCreateRawSignatureArgs"
997
- },
998
- returnType: {
999
- $ref: "#/components/schemas/CreateRawSignatureResponse"
1000
- }
469
+ required: ["key", "alias", "providerId"],
470
+ additionalProperties: false,
471
+ description: "Represents a managed cryptographic key information that is guaranteed to be present and resolved, part of a KMS providing concrete access to the key."
472
+ },
473
+ KmsGetKeyProviderArgs: {
474
+ type: "object",
475
+ properties: {
476
+ baseUrl: {
477
+ type: "string"
1001
478
  },
1002
- kmsDeleteKey: {
1003
- description: "",
1004
- arguments: {
1005
- $ref: "#/components/schemas/KmsDeleteKeyArgs"
1006
- },
1007
- returnType: {
1008
- type: "boolean"
1009
- }
479
+ providerId: {
480
+ type: "string"
481
+ }
482
+ },
483
+ additionalProperties: false
484
+ },
485
+ KeyProviderResponse: {
486
+ type: "object",
487
+ properties: {
488
+ providerId: {
489
+ type: "string",
490
+ description: "The unique identifier assigned to the Key Provider instance upon creation."
1010
491
  },
1011
- kmsGenerateKey: {
1012
- description: "",
1013
- arguments: {
1014
- $ref: "#/components/schemas/KmsGenerateKeyArgs"
1015
- },
1016
- returnType: {
1017
- $ref: "#/components/schemas/ManagedKeyPair"
1018
- }
492
+ type: {
493
+ $ref: "#/components/schemas/KeyProviderType"
494
+ }
495
+ },
496
+ required: ["providerId", "type"],
497
+ additionalProperties: false,
498
+ description: "Response body containing the details of a Key Provider instance."
499
+ },
500
+ KeyProviderType: {
501
+ type: "string",
502
+ enum: ["SOFTWARE", "AZURE_KEYVAULT", "AWS_KMS"],
503
+ description: "The type of Key Provider. Determines the required configuration settings. - AZURE_KEYVAULT: Microsoft Azure Key Vault or Managed HSM. - AWS_KMS: Amazon Web Services Key Management Service."
504
+ },
505
+ kmsGetResolverArgs: {
506
+ type: "object",
507
+ properties: {
508
+ baseUrl: {
509
+ type: "string"
510
+ },
511
+ resolverId: {
512
+ type: "string"
513
+ }
514
+ },
515
+ required: ["resolverId"],
516
+ additionalProperties: false
517
+ },
518
+ Resolver: {
519
+ type: "object",
520
+ properties: {
521
+ resolverId: {
522
+ type: "string",
523
+ description: "Unique identifier for the resolver."
1019
524
  },
1020
- kmsGetKey: {
1021
- description: "",
1022
- arguments: {
1023
- $ref: "#/components/schemas/KmsGetKeyArgs"
525
+ supportedIdentifierMethods: {
526
+ type: "array",
527
+ items: {
528
+ $ref: "#/components/schemas/IdentifierMethod"
1024
529
  },
1025
- returnType: {
1026
- $ref: "#/components/schemas/ManagedKeyInfo"
1027
- }
530
+ description: "List of identifier methods supported by this resolver."
1028
531
  },
1029
- kmsGetKeyProvider: {
1030
- description: "",
1031
- arguments: {
1032
- $ref: "#/components/schemas/KmsGetKeyProviderArgs"
532
+ supportedKeyTypes: {
533
+ type: "array",
534
+ items: {
535
+ $ref: "#/components/schemas/KeyType"
1033
536
  },
1034
- returnType: {
1035
- $ref: "#/components/schemas/KeyProviderResponse"
537
+ description: "List of key types supported by this resolver."
538
+ }
539
+ },
540
+ required: ["resolverId"],
541
+ additionalProperties: false,
542
+ description: "Represents a key resolver configuration."
543
+ },
544
+ IdentifierMethod: {
545
+ type: "string",
546
+ enum: ["JWK", "KID", "COSE_KEY", "X5C", "DID"],
547
+ description: "Method used to identify cryptographic keys."
548
+ },
549
+ KmsIsValidRawSignatureArgs: {
550
+ type: "object",
551
+ additionalProperties: false,
552
+ properties: {
553
+ keyInfo: {
554
+ $ref: "#/components/schemas/KeyInfo"
555
+ },
556
+ input: {
557
+ type: "string"
558
+ },
559
+ signature: {
560
+ type: "string"
561
+ },
562
+ baseUrl: {
563
+ type: "string"
564
+ }
565
+ },
566
+ required: ["input", "keyInfo", "signature"]
567
+ },
568
+ VerifyRawSignatureResponse: {
569
+ type: "object",
570
+ properties: {
571
+ isValid: {
572
+ type: "boolean",
573
+ description: "Indicates whether the signature is valid or not."
574
+ }
575
+ },
576
+ required: ["isValid"],
577
+ additionalProperties: false,
578
+ description: "Response body containing the details of the signature verification."
579
+ },
580
+ KmsListKeyProvidersArgs: {
581
+ type: "object",
582
+ properties: {
583
+ baseUrl: {
584
+ type: "string"
585
+ }
586
+ },
587
+ additionalProperties: false
588
+ },
589
+ ListKeyProvidersResponse: {
590
+ type: "object",
591
+ properties: {
592
+ providers: {
593
+ type: "array",
594
+ items: {
595
+ $ref: "#/components/schemas/KeyProvider"
1036
596
  }
597
+ }
598
+ },
599
+ required: ["providers"],
600
+ additionalProperties: false,
601
+ description: "Response body containing the details of a Key Provider instance."
602
+ },
603
+ KeyProvider: {
604
+ type: "object",
605
+ properties: {
606
+ providerId: {
607
+ type: "string",
608
+ description: "The unique identifier assigned to the Key Provider instance upon creation."
1037
609
  },
1038
- kmsGetResolver: {
1039
- description: "",
1040
- arguments: {
1041
- $ref: "#/components/schemas/kmsGetResolverArgs"
1042
- },
1043
- returnType: {
610
+ type: {
611
+ $ref: "#/components/schemas/KeyProviderType"
612
+ }
613
+ },
614
+ required: ["providerId", "type"],
615
+ additionalProperties: false,
616
+ description: "Response body containing the details of a Key Provider instance."
617
+ },
618
+ KmsListKeysArgs: {
619
+ type: "object",
620
+ properties: {
621
+ baseUrl: {
622
+ type: "string"
623
+ },
624
+ providerId: {
625
+ type: "string"
626
+ }
627
+ },
628
+ additionalProperties: false
629
+ },
630
+ ListKeysResponse: {
631
+ type: "object",
632
+ properties: {
633
+ keyInfos: {
634
+ type: "array",
635
+ items: {
636
+ $ref: "#/components/schemas/ManagedKeyInfo"
637
+ }
638
+ }
639
+ },
640
+ required: ["keyInfos"],
641
+ additionalProperties: false,
642
+ description: "Response body containing all the managed keys."
643
+ },
644
+ KmsListResolversArgs: {
645
+ type: "object",
646
+ properties: {
647
+ baseUrl: {
648
+ type: "string"
649
+ }
650
+ },
651
+ additionalProperties: false
652
+ },
653
+ ListResolversResponse: {
654
+ type: "object",
655
+ properties: {
656
+ resolvers: {
657
+ type: "array",
658
+ items: {
1044
659
  $ref: "#/components/schemas/Resolver"
1045
660
  }
661
+ }
662
+ },
663
+ required: ["resolvers"],
664
+ additionalProperties: false,
665
+ description: "Response body containing all the resolvers."
666
+ },
667
+ KmsProviderDeleteKeyArgs: {
668
+ type: "object",
669
+ properties: {
670
+ baseUrl: {
671
+ type: "string"
1046
672
  },
1047
- kmsIsValidRawSignature: {
1048
- description: "",
1049
- arguments: {
1050
- $ref: "#/components/schemas/KmsIsValidRawSignatureArgs"
1051
- },
1052
- returnType: {
1053
- $ref: "#/components/schemas/VerifyRawSignatureResponse"
1054
- }
673
+ providerId: {
674
+ type: "string"
1055
675
  },
1056
- kmsListKeyProviders: {
1057
- description: "",
1058
- arguments: {
1059
- $ref: "#/components/schemas/KmsListKeyProvidersArgs"
1060
- },
1061
- returnType: {
1062
- $ref: "#/components/schemas/ListKeyProvidersResponse"
1063
- }
676
+ aliasOrKid: {
677
+ type: "string"
678
+ }
679
+ },
680
+ required: ["providerId", "aliasOrKid"],
681
+ additionalProperties: false
682
+ },
683
+ KmsProviderGenerateKey: {
684
+ type: "object",
685
+ additionalProperties: false,
686
+ properties: {
687
+ alias: {
688
+ type: "string",
689
+ description: "Alias for the generated key."
1064
690
  },
1065
- kmsListKeys: {
1066
- description: "",
1067
- arguments: {
1068
- $ref: "#/components/schemas/KmsListKeysArgs"
1069
- },
1070
- returnType: {
1071
- $ref: "#/components/schemas/ListKeysResponse"
1072
- }
691
+ use: {
692
+ $ref: "#/components/schemas/JwkUse"
1073
693
  },
1074
- kmsListResolvers: {
1075
- description: "",
1076
- arguments: {
1077
- $ref: "#/components/schemas/KmsListResolversArgs"
1078
- },
1079
- returnType: {
1080
- $ref: "#/components/schemas/ListResolversResponse"
694
+ keyOperations: {
695
+ type: "array",
696
+ items: {
697
+ $ref: "#/components/schemas/KeyOperations"
1081
698
  }
1082
699
  },
1083
- kmsProviderDeleteKey: {
1084
- description: "",
1085
- arguments: {
1086
- $ref: "#/components/schemas/KmsProviderDeleteKeyArgs"
1087
- },
1088
- returnType: {
1089
- type: "boolean"
1090
- }
700
+ alg: {
701
+ $ref: "#/components/schemas/SignatureAlgorithm"
1091
702
  },
1092
- kmsProviderGenerateKey: {
1093
- description: "",
1094
- arguments: {
1095
- $ref: "#/components/schemas/KmsProviderGenerateKey"
1096
- },
1097
- returnType: {
1098
- $ref: "#/components/schemas/ManagedKeyPair"
1099
- }
703
+ baseUrl: {
704
+ type: "string"
705
+ },
706
+ providerId: {
707
+ type: "string"
708
+ }
709
+ },
710
+ required: ["providerId"]
711
+ },
712
+ KmsProviderGetKeyArgs: {
713
+ type: "object",
714
+ properties: {
715
+ baseUrl: {
716
+ type: "string"
1100
717
  },
1101
- kmsProviderGetKey: {
1102
- description: "",
1103
- arguments: {
1104
- $ref: "#/components/schemas/KmsProviderGetKeyArgs"
718
+ providerId: {
719
+ type: "string"
720
+ },
721
+ aliasOrKid: {
722
+ type: "string"
723
+ }
724
+ },
725
+ required: ["providerId", "aliasOrKid"],
726
+ additionalProperties: false
727
+ },
728
+ KmsProviderListKeysArgs: {
729
+ type: "object",
730
+ properties: {
731
+ baseUrl: {
732
+ type: "string"
733
+ },
734
+ providerId: {
735
+ type: "string"
736
+ }
737
+ },
738
+ required: ["providerId"],
739
+ additionalProperties: false
740
+ },
741
+ KmsProviderStoreKey: {
742
+ type: "object",
743
+ additionalProperties: false,
744
+ properties: {
745
+ keyInfo: {
746
+ $ref: "#/components/schemas/ResolvedKeyInfo"
747
+ },
748
+ certChain: {
749
+ type: "array",
750
+ items: {
751
+ type: "string"
1105
752
  },
1106
- returnType: {
1107
- $ref: "#/components/schemas/ManagedKeyInfo"
1108
- }
753
+ description: "X.509 certificate chain as base64-encoded DER certificates."
1109
754
  },
1110
- kmsProviderListKeys: {
1111
- description: "",
1112
- arguments: {
1113
- $ref: "#/components/schemas/KmsProviderListKeysArgs"
755
+ baseUrl: {
756
+ type: "string"
757
+ },
758
+ providerId: {
759
+ type: "string"
760
+ }
761
+ },
762
+ required: ["keyInfo", "providerId"]
763
+ },
764
+ ResolvedKeyInfo: {
765
+ type: "object",
766
+ properties: {
767
+ kid: {
768
+ type: "string",
769
+ description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
770
+ },
771
+ key: {
772
+ $ref: "#/components/schemas/Jwk"
773
+ },
774
+ signatureAlgorithm: {
775
+ $ref: "#/components/schemas/SignatureAlgorithm"
776
+ },
777
+ keyVisibility: {
778
+ $ref: "#/components/schemas/KeyVisibility"
779
+ },
780
+ x5c: {
781
+ type: "array",
782
+ items: {
783
+ type: "string"
1114
784
  },
1115
- returnType: {
1116
- $ref: "#/components/schemas/ListKeysResponse"
1117
- }
785
+ description: "X.509 certificate chain associated with the key."
786
+ },
787
+ alias: {
788
+ type: "string",
789
+ description: "A reference or alias to the key in the Key Management Service (KMS)."
790
+ },
791
+ providerId: {
792
+ type: "string",
793
+ description: "The Key Management System (KMS) identifier associated with the key."
1118
794
  },
1119
- kmsProviderStoreKey: {
1120
- description: "",
1121
- arguments: {
1122
- $ref: "#/components/schemas/KmsProviderStoreKey"
795
+ keyType: {
796
+ $ref: "#/components/schemas/KeyType"
797
+ },
798
+ keyEncoding: {
799
+ $ref: "#/components/schemas/KeyEncoding"
800
+ },
801
+ opts: {
802
+ type: "object",
803
+ additionalProperties: {
804
+ type: "string"
1123
805
  },
1124
- returnType: {
1125
- $ref: "#/components/schemas/ManagedKeyInfo"
1126
- }
806
+ description: "Additional configuration options as key-value pairs."
807
+ }
808
+ },
809
+ required: ["key"],
810
+ additionalProperties: false,
811
+ description: "Represents a resolved cryptographic key information where the key is guaranteed to be present and resolved, providing concrete access to the key."
812
+ },
813
+ KmsResolveKeyArgs: {
814
+ type: "object",
815
+ additionalProperties: false,
816
+ properties: {
817
+ keyInfo: {
818
+ $ref: "#/components/schemas/KeyInfo"
819
+ },
820
+ identifierMethod: {
821
+ $ref: "#/components/schemas/IdentifierMethod"
1127
822
  },
1128
- kmsResolveKey: {
1129
- description: "",
1130
- arguments: {
1131
- $ref: "#/components/schemas/KmsResolveKeyArgs"
823
+ trustedCerts: {
824
+ type: "array",
825
+ items: {
826
+ type: "string"
1132
827
  },
1133
- returnType: {
1134
- $ref: "#/components/schemas/ResolvedKeyInfo"
1135
- }
828
+ description: "Optional array of trusted certificates (base64-encoded) that may be used in the resolution process."
829
+ },
830
+ verifyX509CertificateChain: {
831
+ type: "boolean",
832
+ description: "Optional boolean indicating whether the X.509 certificate chain should be verified."
1136
833
  },
1137
- kmsStoreKey: {
1138
- description: "",
1139
- arguments: {
1140
- $ref: "#/components/schemas/KmsStoreKeyArgs"
834
+ baseUrl: {
835
+ type: "string"
836
+ },
837
+ resolverId: {
838
+ $ref: "#/components/schemas/String"
839
+ }
840
+ },
841
+ required: ["keyInfo", "resolverId"]
842
+ },
843
+ String: {
844
+ type: "object",
845
+ properties: {
846
+ length: {
847
+ type: "number"
848
+ }
849
+ },
850
+ required: ["length"],
851
+ additionalProperties: {
852
+ type: "string"
853
+ }
854
+ },
855
+ KmsStoreKeyArgs: {
856
+ type: "object",
857
+ additionalProperties: false,
858
+ properties: {
859
+ keyInfo: {
860
+ $ref: "#/components/schemas/ResolvedKeyInfo"
861
+ },
862
+ certChain: {
863
+ type: "array",
864
+ items: {
865
+ type: "string"
1141
866
  },
1142
- returnType: {
1143
- $ref: "#/components/schemas/ManagedKeyInfo"
1144
- }
867
+ description: "X.509 certificate chain as base64-encoded DER certificates."
868
+ },
869
+ baseUrl: {
870
+ type: "string"
1145
871
  }
872
+ },
873
+ required: ["keyInfo"]
874
+ }
875
+ },
876
+ methods: {
877
+ kmsCreateRawSignature: {
878
+ description: "",
879
+ arguments: {
880
+ $ref: "#/components/schemas/KmsCreateRawSignatureArgs"
881
+ },
882
+ returnType: {
883
+ $ref: "#/components/schemas/CreateRawSignatureResponse"
884
+ }
885
+ },
886
+ kmsDeleteKey: {
887
+ description: "",
888
+ arguments: {
889
+ $ref: "#/components/schemas/KmsDeleteKeyArgs"
890
+ },
891
+ returnType: {
892
+ type: "boolean"
893
+ }
894
+ },
895
+ kmsGenerateKey: {
896
+ description: "",
897
+ arguments: {
898
+ $ref: "#/components/schemas/KmsGenerateKeyArgs"
899
+ },
900
+ returnType: {
901
+ $ref: "#/components/schemas/ManagedKeyPair"
902
+ }
903
+ },
904
+ kmsGetKey: {
905
+ description: "",
906
+ arguments: {
907
+ $ref: "#/components/schemas/KmsGetKeyArgs"
908
+ },
909
+ returnType: {
910
+ $ref: "#/components/schemas/ManagedKeyInfo"
911
+ }
912
+ },
913
+ kmsGetKeyProvider: {
914
+ description: "",
915
+ arguments: {
916
+ $ref: "#/components/schemas/KmsGetKeyProviderArgs"
917
+ },
918
+ returnType: {
919
+ $ref: "#/components/schemas/KeyProviderResponse"
920
+ }
921
+ },
922
+ kmsGetResolver: {
923
+ description: "",
924
+ arguments: {
925
+ $ref: "#/components/schemas/kmsGetResolverArgs"
926
+ },
927
+ returnType: {
928
+ $ref: "#/components/schemas/Resolver"
929
+ }
930
+ },
931
+ kmsIsValidRawSignature: {
932
+ description: "",
933
+ arguments: {
934
+ $ref: "#/components/schemas/KmsIsValidRawSignatureArgs"
935
+ },
936
+ returnType: {
937
+ $ref: "#/components/schemas/VerifyRawSignatureResponse"
938
+ }
939
+ },
940
+ kmsListKeyProviders: {
941
+ description: "",
942
+ arguments: {
943
+ $ref: "#/components/schemas/KmsListKeyProvidersArgs"
944
+ },
945
+ returnType: {
946
+ $ref: "#/components/schemas/ListKeyProvidersResponse"
947
+ }
948
+ },
949
+ kmsListKeys: {
950
+ description: "",
951
+ arguments: {
952
+ $ref: "#/components/schemas/KmsListKeysArgs"
953
+ },
954
+ returnType: {
955
+ $ref: "#/components/schemas/ListKeysResponse"
956
+ }
957
+ },
958
+ kmsListResolvers: {
959
+ description: "",
960
+ arguments: {
961
+ $ref: "#/components/schemas/KmsListResolversArgs"
962
+ },
963
+ returnType: {
964
+ $ref: "#/components/schemas/ListResolversResponse"
965
+ }
966
+ },
967
+ kmsProviderDeleteKey: {
968
+ description: "",
969
+ arguments: {
970
+ $ref: "#/components/schemas/KmsProviderDeleteKeyArgs"
971
+ },
972
+ returnType: {
973
+ type: "boolean"
974
+ }
975
+ },
976
+ kmsProviderGenerateKey: {
977
+ description: "",
978
+ arguments: {
979
+ $ref: "#/components/schemas/KmsProviderGenerateKey"
980
+ },
981
+ returnType: {
982
+ $ref: "#/components/schemas/ManagedKeyPair"
983
+ }
984
+ },
985
+ kmsProviderGetKey: {
986
+ description: "",
987
+ arguments: {
988
+ $ref: "#/components/schemas/KmsProviderGetKeyArgs"
989
+ },
990
+ returnType: {
991
+ $ref: "#/components/schemas/ManagedKeyInfo"
992
+ }
993
+ },
994
+ kmsProviderListKeys: {
995
+ description: "",
996
+ arguments: {
997
+ $ref: "#/components/schemas/KmsProviderListKeysArgs"
998
+ },
999
+ returnType: {
1000
+ $ref: "#/components/schemas/ListKeysResponse"
1001
+ }
1002
+ },
1003
+ kmsProviderStoreKey: {
1004
+ description: "",
1005
+ arguments: {
1006
+ $ref: "#/components/schemas/KmsProviderStoreKey"
1007
+ },
1008
+ returnType: {
1009
+ $ref: "#/components/schemas/ManagedKeyInfo"
1010
+ }
1011
+ },
1012
+ kmsResolveKey: {
1013
+ description: "",
1014
+ arguments: {
1015
+ $ref: "#/components/schemas/KmsResolveKeyArgs"
1016
+ },
1017
+ returnType: {
1018
+ $ref: "#/components/schemas/ResolvedKeyInfo"
1019
+ }
1020
+ },
1021
+ kmsStoreKey: {
1022
+ description: "",
1023
+ arguments: {
1024
+ $ref: "#/components/schemas/KmsStoreKeyArgs"
1025
+ },
1026
+ returnType: {
1027
+ $ref: "#/components/schemas/ManagedKeyInfo"
1146
1028
  }
1147
1029
  }
1148
1030
  }
1149
- };
1031
+ }
1150
1032
  }
1151
- });
1152
-
1153
- // src/index.ts
1154
- var index_exports = {};
1155
- __export(index_exports, {
1156
- KmsRestClient: () => KmsRestClient,
1157
- schema: () => schema
1158
- });
1159
- module.exports = __toCommonJS(index_exports);
1033
+ };
1160
1034
 
1161
1035
  // src/agent/KmsRestClient.ts
1162
1036
  var import_ssi_types = require("@sphereon/ssi-types");
@@ -1182,16 +1056,16 @@ function CoseKeyFromJSONTyped(json, ignoreDiscriminator) {
1182
1056
  return json;
1183
1057
  }
1184
1058
  return {
1185
- "kty": CoseKeyTypeFromJSON(json["kty"]),
1186
- "kid": json["kid"] == null ? void 0 : json["kid"],
1187
- "alg": json["alg"] == null ? void 0 : json["alg"],
1188
- "keyOps": json["key_ops"] == null ? void 0 : json["key_ops"],
1189
- "baseIV": json["baseIV"] == null ? void 0 : json["baseIV"],
1190
- "crv": json["crv"] == null ? void 0 : json["crv"],
1191
- "x": json["x"] == null ? void 0 : json["x"],
1192
- "y": json["y"] == null ? void 0 : json["y"],
1193
- "d": json["d"] == null ? void 0 : json["d"],
1194
- "x5chain": json["x5chain"] == null ? void 0 : json["x5chain"]
1059
+ kty: CoseKeyTypeFromJSON(json["kty"]),
1060
+ kid: json["kid"] == null ? void 0 : json["kid"],
1061
+ alg: json["alg"] == null ? void 0 : json["alg"],
1062
+ keyOps: json["key_ops"] == null ? void 0 : json["key_ops"],
1063
+ baseIV: json["baseIV"] == null ? void 0 : json["baseIV"],
1064
+ crv: json["crv"] == null ? void 0 : json["crv"],
1065
+ x: json["x"] == null ? void 0 : json["x"],
1066
+ y: json["y"] == null ? void 0 : json["y"],
1067
+ d: json["d"] == null ? void 0 : json["d"],
1068
+ x5chain: json["x5chain"] == null ? void 0 : json["x5chain"]
1195
1069
  };
1196
1070
  }
1197
1071
  __name(CoseKeyFromJSONTyped, "CoseKeyFromJSONTyped");
@@ -1206,8 +1080,8 @@ function CoseKeyPairFromJSONTyped(json, ignoreDiscriminator) {
1206
1080
  return json;
1207
1081
  }
1208
1082
  return {
1209
- "privateCoseKey": json["privateCoseKey"] == null ? void 0 : CoseKeyFromJSON(json["privateCoseKey"]),
1210
- "publicCoseKey": CoseKeyFromJSON(json["publicCoseKey"])
1083
+ privateCoseKey: json["privateCoseKey"] == null ? void 0 : CoseKeyFromJSON(json["privateCoseKey"]),
1084
+ publicCoseKey: CoseKeyFromJSON(json["publicCoseKey"])
1211
1085
  };
1212
1086
  }
1213
1087
  __name(CoseKeyPairFromJSONTyped, "CoseKeyPairFromJSONTyped");
@@ -1344,27 +1218,27 @@ function JwkFromJSONTyped(json, ignoreDiscriminator) {
1344
1218
  return json;
1345
1219
  }
1346
1220
  return {
1347
- "kty": JwkKeyTypeFromJSON(json["kty"]),
1348
- "kid": json["kid"] == null ? void 0 : json["kid"],
1349
- "alg": json["alg"] == null ? void 0 : json["alg"],
1350
- "use": json["use"] == null ? void 0 : JwkUseFromJSON(json["use"]),
1351
- "keyOps": json["key_ops"] == null ? void 0 : json["key_ops"].map(KeyOperationsFromJSON),
1352
- "crv": json["crv"] == null ? void 0 : CurveFromJSON(json["crv"]),
1353
- "x": json["x"] == null ? void 0 : json["x"],
1354
- "y": json["y"] == null ? void 0 : json["y"],
1355
- "d": json["d"] == null ? void 0 : json["d"],
1356
- "n": json["n"] == null ? void 0 : json["n"],
1357
- "e": json["e"] == null ? void 0 : json["e"],
1358
- "p": json["p"] == null ? void 0 : json["p"],
1359
- "q": json["q"] == null ? void 0 : json["q"],
1360
- "dp": json["dp"] == null ? void 0 : json["dp"],
1361
- "dq": json["dq"] == null ? void 0 : json["dq"],
1362
- "qi": json["qi"] == null ? void 0 : json["qi"],
1363
- "k": json["k"] == null ? void 0 : json["k"],
1364
- "x5c": json["x5c"] == null ? void 0 : json["x5c"],
1365
- "x5t": json["x5t"] == null ? void 0 : json["x5t"],
1366
- "x5u": json["x5u"] == null ? void 0 : json["x5u"],
1367
- "x5tS256": json["x5t#S256"] == null ? void 0 : json["x5t#S256"]
1221
+ kty: JwkKeyTypeFromJSON(json["kty"]),
1222
+ kid: json["kid"] == null ? void 0 : json["kid"],
1223
+ alg: json["alg"] == null ? void 0 : json["alg"],
1224
+ use: json["use"] == null ? void 0 : JwkUseFromJSON(json["use"]),
1225
+ keyOps: json["key_ops"] == null ? void 0 : json["key_ops"].map(KeyOperationsFromJSON),
1226
+ crv: json["crv"] == null ? void 0 : CurveFromJSON(json["crv"]),
1227
+ x: json["x"] == null ? void 0 : json["x"],
1228
+ y: json["y"] == null ? void 0 : json["y"],
1229
+ d: json["d"] == null ? void 0 : json["d"],
1230
+ n: json["n"] == null ? void 0 : json["n"],
1231
+ e: json["e"] == null ? void 0 : json["e"],
1232
+ p: json["p"] == null ? void 0 : json["p"],
1233
+ q: json["q"] == null ? void 0 : json["q"],
1234
+ dp: json["dp"] == null ? void 0 : json["dp"],
1235
+ dq: json["dq"] == null ? void 0 : json["dq"],
1236
+ qi: json["qi"] == null ? void 0 : json["qi"],
1237
+ k: json["k"] == null ? void 0 : json["k"],
1238
+ x5c: json["x5c"] == null ? void 0 : json["x5c"],
1239
+ x5t: json["x5t"] == null ? void 0 : json["x5t"],
1240
+ x5u: json["x5u"] == null ? void 0 : json["x5u"],
1241
+ x5tS256: json["x5t#S256"] == null ? void 0 : json["x5t#S256"]
1368
1242
  };
1369
1243
  }
1370
1244
  __name(JwkFromJSONTyped, "JwkFromJSONTyped");
@@ -1377,26 +1251,26 @@ function JwkToJSONTyped(value, ignoreDiscriminator = false) {
1377
1251
  return value;
1378
1252
  }
1379
1253
  return {
1380
- "kty": JwkKeyTypeToJSON(value["kty"]),
1381
- "kid": value["kid"],
1382
- "alg": value["alg"],
1383
- "use": JwkUseToJSON(value["use"]),
1384
- "key_ops": value["keyOps"] == null ? void 0 : value["keyOps"].map(KeyOperationsToJSON),
1385
- "crv": CurveToJSON(value["crv"]),
1386
- "x": value["x"],
1387
- "y": value["y"],
1388
- "d": value["d"],
1389
- "n": value["n"],
1390
- "e": value["e"],
1391
- "p": value["p"],
1392
- "q": value["q"],
1393
- "dp": value["dp"],
1394
- "dq": value["dq"],
1395
- "qi": value["qi"],
1396
- "k": value["k"],
1397
- "x5c": value["x5c"],
1398
- "x5t": value["x5t"],
1399
- "x5u": value["x5u"],
1254
+ kty: JwkKeyTypeToJSON(value["kty"]),
1255
+ kid: value["kid"],
1256
+ alg: value["alg"],
1257
+ use: JwkUseToJSON(value["use"]),
1258
+ key_ops: value["keyOps"] == null ? void 0 : value["keyOps"].map(KeyOperationsToJSON),
1259
+ crv: CurveToJSON(value["crv"]),
1260
+ x: value["x"],
1261
+ y: value["y"],
1262
+ d: value["d"],
1263
+ n: value["n"],
1264
+ e: value["e"],
1265
+ p: value["p"],
1266
+ q: value["q"],
1267
+ dp: value["dp"],
1268
+ dq: value["dq"],
1269
+ qi: value["qi"],
1270
+ k: value["k"],
1271
+ x5c: value["x5c"],
1272
+ x5t: value["x5t"],
1273
+ x5u: value["x5u"],
1400
1274
  "x5t#S256": value["x5tS256"]
1401
1275
  };
1402
1276
  }
@@ -1412,16 +1286,16 @@ function KeyInfoToJSONTyped(value, ignoreDiscriminator = false) {
1412
1286
  return value;
1413
1287
  }
1414
1288
  return {
1415
- "kid": value["kid"],
1416
- "key": JwkToJSON(value["key"]),
1417
- "signatureAlgorithm": SignatureAlgorithmToJSON(value["signatureAlgorithm"]),
1418
- "keyVisibility": KeyVisibilityToJSON(value["keyVisibility"]),
1419
- "x5c": value["x5c"],
1420
- "alias": value["alias"],
1421
- "providerId": value["providerId"],
1422
- "keyType": KeyTypeToJSON(value["keyType"]),
1423
- "keyEncoding": KeyEncodingToJSON(value["keyEncoding"]),
1424
- "opts": value["opts"]
1289
+ kid: value["kid"],
1290
+ key: JwkToJSON(value["key"]),
1291
+ signatureAlgorithm: SignatureAlgorithmToJSON(value["signatureAlgorithm"]),
1292
+ keyVisibility: KeyVisibilityToJSON(value["keyVisibility"]),
1293
+ x5c: value["x5c"],
1294
+ alias: value["alias"],
1295
+ providerId: value["providerId"],
1296
+ keyType: KeyTypeToJSON(value["keyType"]),
1297
+ keyEncoding: KeyEncodingToJSON(value["keyEncoding"]),
1298
+ opts: value["opts"]
1425
1299
  };
1426
1300
  }
1427
1301
  __name(KeyInfoToJSONTyped, "KeyInfoToJSONTyped");
@@ -1432,8 +1306,8 @@ function CreateRawSignatureToJSONTyped(value, ignoreDiscriminator = false) {
1432
1306
  return value;
1433
1307
  }
1434
1308
  return {
1435
- "keyInfo": KeyInfoToJSON(value["keyInfo"]),
1436
- "input": value["input"]
1309
+ keyInfo: KeyInfoToJSON(value["keyInfo"]),
1310
+ input: value["input"]
1437
1311
  };
1438
1312
  }
1439
1313
  __name(CreateRawSignatureToJSONTyped, "CreateRawSignatureToJSONTyped");
@@ -1444,7 +1318,7 @@ function CreateRawSignatureResponseFromJSONTyped(json, ignoreDiscriminator) {
1444
1318
  return json;
1445
1319
  }
1446
1320
  return {
1447
- "signature": json["signature"]
1321
+ signature: json["signature"]
1448
1322
  };
1449
1323
  }
1450
1324
  __name(CreateRawSignatureResponseFromJSONTyped, "CreateRawSignatureResponseFromJSONTyped");
@@ -1455,10 +1329,10 @@ function GenerateKeyToJSONTyped(value, ignoreDiscriminator = false) {
1455
1329
  return value;
1456
1330
  }
1457
1331
  return {
1458
- "alias": value["alias"],
1459
- "use": JwkUseToJSON(value["use"]),
1460
- "keyOperations": value["keyOperations"] == null ? void 0 : value["keyOperations"].map(KeyOperationsToJSON),
1461
- "alg": SignatureAlgorithmToJSON(value["alg"])
1332
+ alias: value["alias"],
1333
+ use: JwkUseToJSON(value["use"]),
1334
+ keyOperations: value["keyOperations"] == null ? void 0 : value["keyOperations"].map(KeyOperationsToJSON),
1335
+ alg: SignatureAlgorithmToJSON(value["alg"])
1462
1336
  };
1463
1337
  }
1464
1338
  __name(GenerateKeyToJSONTyped, "GenerateKeyToJSONTyped");
@@ -1469,11 +1343,11 @@ function GenerateKeyGlobalToJSONTyped(value, ignoreDiscriminator = false) {
1469
1343
  return value;
1470
1344
  }
1471
1345
  return {
1472
- "alias": value["alias"],
1473
- "use": JwkUseToJSON(value["use"]),
1474
- "keyOperations": value["keyOperations"] == null ? void 0 : value["keyOperations"].map(KeyOperationsToJSON),
1475
- "alg": SignatureAlgorithmToJSON(value["alg"]),
1476
- "providerId": value["providerId"]
1346
+ alias: value["alias"],
1347
+ use: JwkUseToJSON(value["use"]),
1348
+ keyOperations: value["keyOperations"] == null ? void 0 : value["keyOperations"].map(KeyOperationsToJSON),
1349
+ alg: SignatureAlgorithmToJSON(value["alg"]),
1350
+ providerId: value["providerId"]
1477
1351
  };
1478
1352
  }
1479
1353
  __name(GenerateKeyGlobalToJSONTyped, "GenerateKeyGlobalToJSONTyped");
@@ -1488,8 +1362,8 @@ function JoseKeyPairFromJSONTyped(json, ignoreDiscriminator) {
1488
1362
  return json;
1489
1363
  }
1490
1364
  return {
1491
- "privateJwk": json["privateJwk"] == null ? void 0 : JwkFromJSON(json["privateJwk"]),
1492
- "publicJwk": JwkFromJSON(json["publicJwk"])
1365
+ privateJwk: json["privateJwk"] == null ? void 0 : JwkFromJSON(json["privateJwk"]),
1366
+ publicJwk: JwkFromJSON(json["publicJwk"])
1493
1367
  };
1494
1368
  }
1495
1369
  __name(JoseKeyPairFromJSONTyped, "JoseKeyPairFromJSONTyped");
@@ -1500,11 +1374,11 @@ function ManagedKeyPairFromJSONTyped(json, ignoreDiscriminator) {
1500
1374
  return json;
1501
1375
  }
1502
1376
  return {
1503
- "kid": json["kid"] == null ? void 0 : json["kid"],
1504
- "providerId": json["providerId"],
1505
- "alias": json["alias"],
1506
- "cose": CoseKeyPairFromJSON(json["cose"]),
1507
- "jose": JoseKeyPairFromJSON(json["jose"])
1377
+ kid: json["kid"] == null ? void 0 : json["kid"],
1378
+ providerId: json["providerId"],
1379
+ alias: json["alias"],
1380
+ cose: CoseKeyPairFromJSON(json["cose"]),
1381
+ jose: JoseKeyPairFromJSON(json["jose"])
1508
1382
  };
1509
1383
  }
1510
1384
  __name(ManagedKeyPairFromJSONTyped, "ManagedKeyPairFromJSONTyped");
@@ -1519,16 +1393,16 @@ function ManagedKeyInfoFromJSONTyped(json, ignoreDiscriminator) {
1519
1393
  return json;
1520
1394
  }
1521
1395
  return {
1522
- "kid": json["kid"] == null ? void 0 : json["kid"],
1523
- "key": JwkFromJSON(json["key"]),
1524
- "signatureAlgorithm": json["signatureAlgorithm"] == null ? void 0 : SignatureAlgorithmFromJSON(json["signatureAlgorithm"]),
1525
- "keyVisibility": json["keyVisibility"] == null ? void 0 : KeyVisibilityFromJSON(json["keyVisibility"]),
1526
- "x5c": json["x5c"] == null ? void 0 : json["x5c"],
1527
- "alias": json["alias"],
1528
- "providerId": json["providerId"],
1529
- "keyType": json["keyType"] == null ? void 0 : KeyTypeFromJSON(json["keyType"]),
1530
- "keyEncoding": json["keyEncoding"] == null ? void 0 : KeyEncodingFromJSON(json["keyEncoding"]),
1531
- "opts": json["opts"] == null ? void 0 : json["opts"]
1396
+ kid: json["kid"] == null ? void 0 : json["kid"],
1397
+ key: JwkFromJSON(json["key"]),
1398
+ signatureAlgorithm: json["signatureAlgorithm"] == null ? void 0 : SignatureAlgorithmFromJSON(json["signatureAlgorithm"]),
1399
+ keyVisibility: json["keyVisibility"] == null ? void 0 : KeyVisibilityFromJSON(json["keyVisibility"]),
1400
+ x5c: json["x5c"] == null ? void 0 : json["x5c"],
1401
+ alias: json["alias"],
1402
+ providerId: json["providerId"],
1403
+ keyType: json["keyType"] == null ? void 0 : KeyTypeFromJSON(json["keyType"]),
1404
+ keyEncoding: json["keyEncoding"] == null ? void 0 : KeyEncodingFromJSON(json["keyEncoding"]),
1405
+ opts: json["opts"] == null ? void 0 : json["opts"]
1532
1406
  };
1533
1407
  }
1534
1408
  __name(ManagedKeyInfoFromJSONTyped, "ManagedKeyInfoFromJSONTyped");
@@ -1557,8 +1431,8 @@ function KeyProviderFromJSONTyped(json, ignoreDiscriminator) {
1557
1431
  return json;
1558
1432
  }
1559
1433
  return {
1560
- "providerId": json["providerId"],
1561
- "type": KeyProviderTypeFromJSON(json["type"])
1434
+ providerId: json["providerId"],
1435
+ type: KeyProviderTypeFromJSON(json["type"])
1562
1436
  };
1563
1437
  }
1564
1438
  __name(KeyProviderFromJSONTyped, "KeyProviderFromJSONTyped");
@@ -1569,8 +1443,8 @@ function KeyProviderResponseFromJSONTyped(json, ignoreDiscriminator) {
1569
1443
  return json;
1570
1444
  }
1571
1445
  return {
1572
- "providerId": json["providerId"],
1573
- "type": KeyProviderTypeFromJSON(json["type"])
1446
+ providerId: json["providerId"],
1447
+ type: KeyProviderTypeFromJSON(json["type"])
1574
1448
  };
1575
1449
  }
1576
1450
  __name(KeyProviderResponseFromJSONTyped, "KeyProviderResponseFromJSONTyped");
@@ -1581,7 +1455,7 @@ function ListKeyProvidersResponseFromJSONTyped(json, ignoreDiscriminator) {
1581
1455
  return json;
1582
1456
  }
1583
1457
  return {
1584
- "providers": json["providers"].map(KeyProviderFromJSON)
1458
+ providers: json["providers"].map(KeyProviderFromJSON)
1585
1459
  };
1586
1460
  }
1587
1461
  __name(ListKeyProvidersResponseFromJSONTyped, "ListKeyProvidersResponseFromJSONTyped");
@@ -1592,7 +1466,7 @@ function ListKeysResponseFromJSONTyped(json, ignoreDiscriminator) {
1592
1466
  return json;
1593
1467
  }
1594
1468
  return {
1595
- "keyInfos": json["keyInfos"].map(ManagedKeyInfoFromJSON)
1469
+ keyInfos: json["keyInfos"].map(ManagedKeyInfoFromJSON)
1596
1470
  };
1597
1471
  }
1598
1472
  __name(ListKeysResponseFromJSONTyped, "ListKeysResponseFromJSONTyped");
@@ -1607,9 +1481,9 @@ function ResolverFromJSONTyped(json, ignoreDiscriminator) {
1607
1481
  return json;
1608
1482
  }
1609
1483
  return {
1610
- "resolverId": json["resolverId"],
1611
- "supportedIdentifierMethods": json["supportedIdentifierMethods"] == null ? void 0 : json["supportedIdentifierMethods"].map(IdentifierMethodFromJSON),
1612
- "supportedKeyTypes": json["supportedKeyTypes"] == null ? void 0 : json["supportedKeyTypes"].map(KeyTypeFromJSON)
1484
+ resolverId: json["resolverId"],
1485
+ supportedIdentifierMethods: json["supportedIdentifierMethods"] == null ? void 0 : json["supportedIdentifierMethods"].map(IdentifierMethodFromJSON),
1486
+ supportedKeyTypes: json["supportedKeyTypes"] == null ? void 0 : json["supportedKeyTypes"].map(KeyTypeFromJSON)
1613
1487
  };
1614
1488
  }
1615
1489
  __name(ResolverFromJSONTyped, "ResolverFromJSONTyped");
@@ -1620,7 +1494,7 @@ function ListResolversResponseFromJSONTyped(json, ignoreDiscriminator) {
1620
1494
  return json;
1621
1495
  }
1622
1496
  return {
1623
- "resolvers": json["resolvers"].map(ResolverFromJSON)
1497
+ resolvers: json["resolvers"].map(ResolverFromJSON)
1624
1498
  };
1625
1499
  }
1626
1500
  __name(ListResolversResponseFromJSONTyped, "ListResolversResponseFromJSONTyped");
@@ -1631,10 +1505,10 @@ function ResolvePublicKeyToJSONTyped(value, ignoreDiscriminator = false) {
1631
1505
  return value;
1632
1506
  }
1633
1507
  return {
1634
- "keyInfo": KeyInfoToJSON(value["keyInfo"]),
1635
- "identifierMethod": IdentifierMethodToJSON(value["identifierMethod"]),
1636
- "trustedCerts": value["trustedCerts"],
1637
- "verifyX509CertificateChain": value["verifyX509CertificateChain"]
1508
+ keyInfo: KeyInfoToJSON(value["keyInfo"]),
1509
+ identifierMethod: IdentifierMethodToJSON(value["identifierMethod"]),
1510
+ trustedCerts: value["trustedCerts"],
1511
+ verifyX509CertificateChain: value["verifyX509CertificateChain"]
1638
1512
  };
1639
1513
  }
1640
1514
  __name(ResolvePublicKeyToJSONTyped, "ResolvePublicKeyToJSONTyped");
@@ -1645,16 +1519,16 @@ function ResolvedKeyInfoFromJSONTyped(json, ignoreDiscriminator) {
1645
1519
  return json;
1646
1520
  }
1647
1521
  return {
1648
- "kid": json["kid"] == null ? void 0 : json["kid"],
1649
- "key": JwkFromJSON(json["key"]),
1650
- "signatureAlgorithm": json["signatureAlgorithm"] == null ? void 0 : SignatureAlgorithmFromJSON(json["signatureAlgorithm"]),
1651
- "keyVisibility": json["keyVisibility"] == null ? void 0 : KeyVisibilityFromJSON(json["keyVisibility"]),
1652
- "x5c": json["x5c"] == null ? void 0 : json["x5c"],
1653
- "alias": json["alias"] == null ? void 0 : json["alias"],
1654
- "providerId": json["providerId"] == null ? void 0 : json["providerId"],
1655
- "keyType": json["keyType"] == null ? void 0 : KeyTypeFromJSON(json["keyType"]),
1656
- "keyEncoding": json["keyEncoding"] == null ? void 0 : KeyEncodingFromJSON(json["keyEncoding"]),
1657
- "opts": json["opts"] == null ? void 0 : json["opts"]
1522
+ kid: json["kid"] == null ? void 0 : json["kid"],
1523
+ key: JwkFromJSON(json["key"]),
1524
+ signatureAlgorithm: json["signatureAlgorithm"] == null ? void 0 : SignatureAlgorithmFromJSON(json["signatureAlgorithm"]),
1525
+ keyVisibility: json["keyVisibility"] == null ? void 0 : KeyVisibilityFromJSON(json["keyVisibility"]),
1526
+ x5c: json["x5c"] == null ? void 0 : json["x5c"],
1527
+ alias: json["alias"] == null ? void 0 : json["alias"],
1528
+ providerId: json["providerId"] == null ? void 0 : json["providerId"],
1529
+ keyType: json["keyType"] == null ? void 0 : KeyTypeFromJSON(json["keyType"]),
1530
+ keyEncoding: json["keyEncoding"] == null ? void 0 : KeyEncodingFromJSON(json["keyEncoding"]),
1531
+ opts: json["opts"] == null ? void 0 : json["opts"]
1658
1532
  };
1659
1533
  }
1660
1534
  __name(ResolvedKeyInfoFromJSONTyped, "ResolvedKeyInfoFromJSONTyped");
@@ -1667,16 +1541,16 @@ function ResolvedKeyInfoToJSONTyped(value, ignoreDiscriminator = false) {
1667
1541
  return value;
1668
1542
  }
1669
1543
  return {
1670
- "kid": value["kid"],
1671
- "key": JwkToJSON(value["key"]),
1672
- "signatureAlgorithm": SignatureAlgorithmToJSON(value["signatureAlgorithm"]),
1673
- "keyVisibility": KeyVisibilityToJSON(value["keyVisibility"]),
1674
- "x5c": value["x5c"],
1675
- "alias": value["alias"],
1676
- "providerId": value["providerId"],
1677
- "keyType": KeyTypeToJSON(value["keyType"]),
1678
- "keyEncoding": KeyEncodingToJSON(value["keyEncoding"]),
1679
- "opts": value["opts"]
1544
+ kid: value["kid"],
1545
+ key: JwkToJSON(value["key"]),
1546
+ signatureAlgorithm: SignatureAlgorithmToJSON(value["signatureAlgorithm"]),
1547
+ keyVisibility: KeyVisibilityToJSON(value["keyVisibility"]),
1548
+ x5c: value["x5c"],
1549
+ alias: value["alias"],
1550
+ providerId: value["providerId"],
1551
+ keyType: KeyTypeToJSON(value["keyType"]),
1552
+ keyEncoding: KeyEncodingToJSON(value["keyEncoding"]),
1553
+ opts: value["opts"]
1680
1554
  };
1681
1555
  }
1682
1556
  __name(ResolvedKeyInfoToJSONTyped, "ResolvedKeyInfoToJSONTyped");
@@ -1687,8 +1561,8 @@ function StoreKeyToJSONTyped(value, ignoreDiscriminator = false) {
1687
1561
  return value;
1688
1562
  }
1689
1563
  return {
1690
- "keyInfo": ResolvedKeyInfoToJSON(value["keyInfo"]),
1691
- "certChain": value["certChain"]
1564
+ keyInfo: ResolvedKeyInfoToJSON(value["keyInfo"]),
1565
+ certChain: value["certChain"]
1692
1566
  };
1693
1567
  }
1694
1568
  __name(StoreKeyToJSONTyped, "StoreKeyToJSONTyped");
@@ -1699,9 +1573,9 @@ function VerifyRawSignatureToJSONTyped(value, ignoreDiscriminator = false) {
1699
1573
  return value;
1700
1574
  }
1701
1575
  return {
1702
- "keyInfo": KeyInfoToJSON(value["keyInfo"]),
1703
- "input": value["input"],
1704
- "signature": value["signature"]
1576
+ keyInfo: KeyInfoToJSON(value["keyInfo"]),
1577
+ input: value["input"],
1578
+ signature: value["signature"]
1705
1579
  };
1706
1580
  }
1707
1581
  __name(VerifyRawSignatureToJSONTyped, "VerifyRawSignatureToJSONTyped");
@@ -1712,7 +1586,7 @@ function VerifyRawSignatureResponseFromJSONTyped(json, ignoreDiscriminator) {
1712
1586
  return json;
1713
1587
  }
1714
1588
  return {
1715
- "isValid": json["isValid"]
1589
+ isValid: json["isValid"]
1716
1590
  };
1717
1591
  }
1718
1592
  __name(VerifyRawSignatureResponseFromJSONTyped, "VerifyRawSignatureResponseFromJSONTyped");
@@ -2077,7 +1951,4 @@ var KmsRestClient = class _KmsRestClient {
2077
1951
  return url;
2078
1952
  }
2079
1953
  };
2080
-
2081
- // src/index.ts
2082
- var schema = require_plugin_schema();
2083
1954
  //# sourceMappingURL=index.cjs.map