@sphereon/ssi-sdk.kms-rest-client 0.34.1-feature.IDK.11.49 → 0.34.1-feature.IDK.11.50

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. package/dist/index.cjs +914 -924
  2. package/dist/index.cjs.map +1 -1
  3. package/dist/index.d.cts +1126 -6
  4. package/dist/index.d.ts +1126 -6
  5. package/dist/index.js +907 -918
  6. package/dist/index.js.map +1 -1
  7. package/package.json +3 -3
  8. package/src/agent/KmsRestClient.ts +4 -4
  9. package/src/index.ts +1 -1
package/dist/index.js CHANGED
@@ -1,1019 +1,1011 @@
1
1
  var __defProp = Object.defineProperty;
2
- var __getOwnPropNames = Object.getOwnPropertyNames;
3
2
  var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
4
- var __commonJS = (cb, mod) => function __require() {
5
- return mod || (0, cb[__getOwnPropNames(cb)[0]])((mod = { exports: {} }).exports, mod), mod.exports;
6
- };
7
3
 
8
4
  // plugin.schema.json
9
- var require_plugin_schema = __commonJS({
10
- "plugin.schema.json"(exports, module) {
11
- module.exports = {
12
- IKmsRestClient: {
13
- components: {
14
- schemas: {
15
- KmsCreateRawSignatureArgs: {
16
- type: "object",
17
- additionalProperties: false,
18
- properties: {
19
- keyInfo: {
20
- $ref: "#/components/schemas/KeyInfo"
21
- },
22
- input: {
23
- type: "string"
24
- },
25
- baseUrl: {
26
- type: "string"
27
- }
5
+ var plugin_schema_default = {
6
+ IKmsRestClient: {
7
+ components: {
8
+ schemas: {
9
+ KmsCreateRawSignatureArgs: {
10
+ type: "object",
11
+ additionalProperties: false,
12
+ properties: {
13
+ keyInfo: {
14
+ $ref: "#/components/schemas/KeyInfo"
15
+ },
16
+ input: {
17
+ type: "string"
18
+ },
19
+ baseUrl: {
20
+ type: "string"
21
+ }
22
+ },
23
+ required: ["input", "keyInfo"]
24
+ },
25
+ KeyInfo: {
26
+ type: "object",
27
+ properties: {
28
+ kid: {
29
+ type: "string",
30
+ description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
31
+ },
32
+ key: {
33
+ $ref: "#/components/schemas/Jwk"
34
+ },
35
+ signatureAlgorithm: {
36
+ $ref: "#/components/schemas/SignatureAlgorithm"
37
+ },
38
+ keyVisibility: {
39
+ $ref: "#/components/schemas/KeyVisibility"
40
+ },
41
+ x5c: {
42
+ type: "array",
43
+ items: {
44
+ type: "string"
28
45
  },
29
- required: ["input", "keyInfo"]
46
+ description: "X.509 certificate chain associated with the key."
47
+ },
48
+ alias: {
49
+ type: "string",
50
+ description: "A reference or alias to the key in the Key Management Service (KMS)."
51
+ },
52
+ providerId: {
53
+ type: "string",
54
+ description: "The Key Management System (KMS) identifier associated with the key."
55
+ },
56
+ keyType: {
57
+ $ref: "#/components/schemas/KeyType"
58
+ },
59
+ keyEncoding: {
60
+ $ref: "#/components/schemas/KeyEncoding"
30
61
  },
31
- KeyInfo: {
62
+ opts: {
32
63
  type: "object",
33
- properties: {
34
- kid: {
35
- type: "string",
36
- description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
37
- },
38
- key: {
39
- $ref: "#/components/schemas/Jwk"
40
- },
41
- signatureAlgorithm: {
42
- $ref: "#/components/schemas/SignatureAlgorithm"
43
- },
44
- keyVisibility: {
45
- $ref: "#/components/schemas/KeyVisibility"
46
- },
47
- x5c: {
48
- type: "array",
49
- items: {
50
- type: "string"
51
- },
52
- description: "X.509 certificate chain associated with the key."
53
- },
54
- alias: {
55
- type: "string",
56
- description: "A reference or alias to the key in the Key Management Service (KMS)."
57
- },
58
- providerId: {
59
- type: "string",
60
- description: "The Key Management System (KMS) identifier associated with the key."
61
- },
62
- keyType: {
63
- $ref: "#/components/schemas/KeyType"
64
- },
65
- keyEncoding: {
66
- $ref: "#/components/schemas/KeyEncoding"
67
- },
68
- opts: {
69
- type: "object",
70
- additionalProperties: {
71
- type: "string"
72
- },
73
- description: "Additional configuration options as key-value pairs."
74
- }
64
+ additionalProperties: {
65
+ type: "string"
75
66
  },
76
- additionalProperties: false,
77
- description: "Information about a cryptographic key, providing metadata and configuration details necessary for cryptographic operations."
67
+ description: "Additional configuration options as key-value pairs."
68
+ }
69
+ },
70
+ additionalProperties: false,
71
+ description: "Information about a cryptographic key, providing metadata and configuration details necessary for cryptographic operations."
72
+ },
73
+ Jwk: {
74
+ type: "object",
75
+ properties: {
76
+ kty: {
77
+ $ref: "#/components/schemas/JwkKeyType"
78
78
  },
79
- Jwk: {
80
- type: "object",
81
- properties: {
82
- kty: {
83
- $ref: "#/components/schemas/JwkKeyType"
84
- },
85
- kid: {
86
- type: "string",
87
- description: "Key identifier used to uniquely identify the key."
88
- },
89
- alg: {
90
- type: "string",
91
- description: "The algorithm intended for use with the key (JWA algorithm name)."
92
- },
93
- use: {
94
- $ref: "#/components/schemas/JwkUse"
95
- },
96
- keyOps: {
97
- type: "array",
98
- items: {
99
- $ref: "#/components/schemas/KeyOperations"
100
- },
101
- description: "The allowed cryptographic operations for the key."
102
- },
103
- crv: {
104
- $ref: "#/components/schemas/Curve"
105
- },
106
- x: {
107
- type: "string",
108
- description: "The x coordinate for elliptic curve keys (base64url-encoded)."
109
- },
110
- y: {
111
- type: "string",
112
- description: "The y coordinate for elliptic curve keys (base64url-encoded)."
113
- },
114
- d: {
115
- type: "string",
116
- description: "The private key parameter (base64url-encoded)."
117
- },
118
- n: {
119
- type: "string",
120
- description: "The modulus value for RSA keys (base64url-encoded)."
121
- },
122
- e: {
123
- type: "string",
124
- description: "The public exponent for RSA keys (base64url-encoded)."
125
- },
126
- p: {
127
- type: "string",
128
- description: "The first prime factor for RSA private keys (base64url-encoded)."
129
- },
130
- q: {
131
- type: "string",
132
- description: "The second prime factor for RSA private keys (base64url-encoded)."
133
- },
134
- dp: {
135
- type: "string",
136
- description: "The first factor CRT exponent for RSA private keys (base64url-encoded)."
137
- },
138
- dq: {
139
- type: "string",
140
- description: "The second factor CRT exponent for RSA private keys (base64url-encoded)."
141
- },
142
- qi: {
143
- type: "string",
144
- description: "The first CRT coefficient for RSA private keys (base64url-encoded)."
145
- },
146
- k: {
147
- type: "string",
148
- description: "The symmetric key value (base64url-encoded)."
149
- },
150
- x5c: {
151
- type: "array",
152
- items: {
153
- type: "string"
154
- },
155
- description: "X.509 certificate chain as base64-encoded DER certificates."
156
- },
157
- x5t: {
158
- type: "string",
159
- description: "X.509 certificate SHA-1 thumbprint (base64url-encoded)."
160
- },
161
- x5u: {
162
- type: "string",
163
- description: "URL pointing to X.509 certificate or certificate chain."
164
- },
165
- x5tS256: {
166
- type: "string",
167
- description: "X.509 certificate SHA-256 thumbprint (base64url-encoded)."
168
- }
79
+ kid: {
80
+ type: "string",
81
+ description: "Key identifier used to uniquely identify the key."
82
+ },
83
+ alg: {
84
+ type: "string",
85
+ description: "The algorithm intended for use with the key (JWA algorithm name)."
86
+ },
87
+ use: {
88
+ $ref: "#/components/schemas/JwkUse"
89
+ },
90
+ keyOps: {
91
+ type: "array",
92
+ items: {
93
+ $ref: "#/components/schemas/KeyOperations"
169
94
  },
170
- required: ["kty"],
171
- additionalProperties: false,
172
- description: "Represents a JSON Web Key (JWK) as defined by the JSON Web Key specification."
95
+ description: "The allowed cryptographic operations for the key."
96
+ },
97
+ crv: {
98
+ $ref: "#/components/schemas/Curve"
173
99
  },
174
- JwkKeyType: {
100
+ x: {
175
101
  type: "string",
176
- enum: ["EC", "RSA", "OKP", "oct"],
177
- description: "JSON Web Key (JWK) key type parameter identifying the cryptographic algorithm family."
102
+ description: "The x coordinate for elliptic curve keys (base64url-encoded)."
178
103
  },
179
- JwkUse: {
104
+ y: {
180
105
  type: "string",
181
- enum: ["sig", "enc"],
182
- description: "Intended use of the key (signing or encryption)."
106
+ description: "The y coordinate for elliptic curve keys (base64url-encoded)."
183
107
  },
184
- KeyOperations: {
108
+ d: {
185
109
  type: "string",
186
- enum: ["sign", "verify", "encrypt", "decrypt", "wrapKey", "unwrapKey", "deriveKey", "deriveBits"],
187
- description: "Specific operations the key is intended for."
110
+ description: "The private key parameter (base64url-encoded)."
188
111
  },
189
- Curve: {
112
+ n: {
190
113
  type: "string",
191
- enum: ["P-256", "P-384", "P-521", "secp256k1", "Ed25519", "Ed448", "X25519", "X448"],
192
- description: "Elliptic curve identifier."
114
+ description: "The modulus value for RSA keys (base64url-encoded)."
193
115
  },
194
- SignatureAlgorithm: {
116
+ e: {
195
117
  type: "string",
196
- enum: [
197
- "ED25519",
198
- "ECDSA_SHA256",
199
- "ECDSA_SHA384",
200
- "ECDSA_SHA512",
201
- "ES256K",
202
- "ECKA_DH_SHA256",
203
- "HMAC_SHA256",
204
- "HMAC_SHA384",
205
- "HMAC_SHA512",
206
- "RSA_SSA_PSS_SHA256_MGF1",
207
- "RSA_SSA_PSS_SHA384_MGF1",
208
- "RSA_SSA_PSS_SHA512_MGF1"
209
- ],
210
- description: "Cryptographic signature algorithm identifier."
211
- },
212
- KeyVisibility: {
118
+ description: "The public exponent for RSA keys (base64url-encoded)."
119
+ },
120
+ p: {
213
121
  type: "string",
214
- enum: ["PUBLIC", "PRIVATE"],
215
- description: "Indicates the visibility status of a cryptographic key."
122
+ description: "The first prime factor for RSA private keys (base64url-encoded)."
216
123
  },
217
- KeyType: {
124
+ q: {
218
125
  type: "string",
219
- enum: ["OKP", "EC", "RSA"],
220
- description: "Cryptographic key type identifier."
126
+ description: "The second prime factor for RSA private keys (base64url-encoded)."
221
127
  },
222
- KeyEncoding: {
128
+ dp: {
223
129
  type: "string",
224
- enum: ["COSE", "JOSE"],
225
- description: "The encoding format of the cryptographic key."
130
+ description: "The first factor CRT exponent for RSA private keys (base64url-encoded)."
226
131
  },
227
- CreateRawSignatureResponse: {
228
- type: "object",
229
- properties: {
230
- signature: {
231
- type: "string",
232
- description: "The created signature encoded as a base64 string."
233
- }
234
- },
235
- required: ["signature"],
236
- additionalProperties: false,
237
- description: "Response body containing the created signature."
132
+ dq: {
133
+ type: "string",
134
+ description: "The second factor CRT exponent for RSA private keys (base64url-encoded)."
238
135
  },
239
- KmsDeleteKeyArgs: {
240
- type: "object",
241
- properties: {
242
- baseUrl: {
243
- type: "string"
244
- },
245
- aliasOrKid: {
246
- type: "string"
247
- }
248
- },
249
- additionalProperties: false
136
+ qi: {
137
+ type: "string",
138
+ description: "The first CRT coefficient for RSA private keys (base64url-encoded)."
250
139
  },
251
- KmsGenerateKeyArgs: {
252
- type: "object",
253
- additionalProperties: false,
254
- properties: {
255
- alias: {
256
- type: "string",
257
- description: "Alias for the generated key."
258
- },
259
- use: {
260
- $ref: "#/components/schemas/JwkUse"
261
- },
262
- keyOperations: {
263
- type: "array",
264
- items: {
265
- $ref: "#/components/schemas/KeyOperations"
266
- }
267
- },
268
- alg: {
269
- $ref: "#/components/schemas/SignatureAlgorithm"
270
- },
271
- providerId: {
272
- type: "string",
273
- description: "Optional provider ID. If not specified, the default provider will be used."
274
- },
275
- baseUrl: {
276
- type: "string"
277
- }
278
- }
140
+ k: {
141
+ type: "string",
142
+ description: "The symmetric key value (base64url-encoded)."
279
143
  },
280
- ManagedKeyPair: {
281
- type: "object",
282
- properties: {
283
- kid: {
284
- type: "string",
285
- description: "Key identifier, may be null."
286
- },
287
- providerId: {
288
- type: "string",
289
- description: "Key Management System identifier."
290
- },
291
- alias: {
292
- type: "string",
293
- description: "Reference to the key in the KMS."
294
- },
295
- cose: {
296
- $ref: "#/components/schemas/CoseKeyPair"
297
- },
298
- jose: {
299
- $ref: "#/components/schemas/JoseKeyPair"
300
- }
144
+ x5c: {
145
+ type: "array",
146
+ items: {
147
+ type: "string"
301
148
  },
302
- required: ["providerId", "alias", "cose", "jose"],
303
- additionalProperties: false,
304
- description: "Represents a key pair used by a crypto provider, encapsulating both JOSE and COSE key pairs."
149
+ description: "X.509 certificate chain as base64-encoded DER certificates."
305
150
  },
306
- CoseKeyPair: {
307
- type: "object",
308
- properties: {
309
- privateCoseKey: {
310
- $ref: "#/components/schemas/CoseKey"
311
- },
312
- publicCoseKey: {
313
- $ref: "#/components/schemas/CoseKey"
314
- }
315
- },
316
- required: ["publicCoseKey"],
317
- additionalProperties: false,
318
- description: "Represents a cryptographic key pair for COSE (CBOR Object Signing and Encryption) operations."
151
+ x5t: {
152
+ type: "string",
153
+ description: "X.509 certificate SHA-1 thumbprint (base64url-encoded)."
319
154
  },
320
- CoseKey: {
321
- type: "object",
322
- properties: {
323
- kty: {
324
- $ref: "#/components/schemas/CoseKeyType"
325
- },
326
- kid: {
327
- type: "string",
328
- description: "Key identifier (base64url-encoded byte string)."
329
- },
330
- alg: {
331
- type: "number",
332
- description: "The COSE algorithm identifier (e.g., -7=ES256, -35=ES384, -36=ES512, -8=EdDSA)."
333
- },
334
- keyOps: {
335
- type: "array",
336
- items: {
337
- type: "number"
338
- },
339
- description: "The allowed COSE key operations (1=sign, 2=verify, 3=encrypt, 4=decrypt, etc.)."
340
- },
341
- baseIV: {
342
- type: "string",
343
- description: "Base initialization vector (base64url-encoded)."
344
- },
345
- crv: {
346
- type: "number",
347
- description: "The COSE curve identifier (1=P-256, 2=P-384, 3=P-521, 8=secp256k1, 6=Ed25519, etc.)."
348
- },
349
- x: {
350
- type: "string",
351
- description: "The x coordinate (base64url-encoded byte string)."
352
- },
353
- y: {
354
- type: "string",
355
- description: "The y coordinate (base64url-encoded byte string)."
356
- },
357
- d: {
358
- type: "string",
359
- description: "The private key parameter (base64url-encoded byte string)."
360
- },
361
- x5chain: {
362
- type: "array",
363
- items: {
364
- type: "string"
365
- },
366
- description: "X.509 certificate chain as base64-encoded certificates."
367
- }
368
- },
369
- required: ["kty"],
370
- additionalProperties: false,
371
- description: "Represents a COSE (CBOR Object Signing and Encryption) key in JSON format."
155
+ x5u: {
156
+ type: "string",
157
+ description: "URL pointing to X.509 certificate or certificate chain."
372
158
  },
373
- CoseKeyType: {
374
- type: "number",
375
- enum: [1, 2, 3, 4],
376
- description: "COSE key type parameter. 1=OKP (Octet Key Pair), 2=EC2 (Elliptic Curve), 3=RSA, 4=Symmetric."
159
+ x5tS256: {
160
+ type: "string",
161
+ description: "X.509 certificate SHA-256 thumbprint (base64url-encoded)."
162
+ }
163
+ },
164
+ required: ["kty"],
165
+ additionalProperties: false,
166
+ description: "Represents a JSON Web Key (JWK) as defined by the JSON Web Key specification."
167
+ },
168
+ JwkKeyType: {
169
+ type: "string",
170
+ enum: ["EC", "RSA", "OKP", "oct"],
171
+ description: "JSON Web Key (JWK) key type parameter identifying the cryptographic algorithm family."
172
+ },
173
+ JwkUse: {
174
+ type: "string",
175
+ enum: ["sig", "enc"],
176
+ description: "Intended use of the key (signing or encryption)."
177
+ },
178
+ KeyOperations: {
179
+ type: "string",
180
+ enum: ["sign", "verify", "encrypt", "decrypt", "wrapKey", "unwrapKey", "deriveKey", "deriveBits"],
181
+ description: "Specific operations the key is intended for."
182
+ },
183
+ Curve: {
184
+ type: "string",
185
+ enum: ["P-256", "P-384", "P-521", "secp256k1", "Ed25519", "Ed448", "X25519", "X448"],
186
+ description: "Elliptic curve identifier."
187
+ },
188
+ SignatureAlgorithm: {
189
+ type: "string",
190
+ enum: [
191
+ "ED25519",
192
+ "ECDSA_SHA256",
193
+ "ECDSA_SHA384",
194
+ "ECDSA_SHA512",
195
+ "ES256K",
196
+ "ECKA_DH_SHA256",
197
+ "HMAC_SHA256",
198
+ "HMAC_SHA384",
199
+ "HMAC_SHA512",
200
+ "RSA_SSA_PSS_SHA256_MGF1",
201
+ "RSA_SSA_PSS_SHA384_MGF1",
202
+ "RSA_SSA_PSS_SHA512_MGF1"
203
+ ],
204
+ description: "Cryptographic signature algorithm identifier."
205
+ },
206
+ KeyVisibility: {
207
+ type: "string",
208
+ enum: ["PUBLIC", "PRIVATE"],
209
+ description: "Indicates the visibility status of a cryptographic key."
210
+ },
211
+ KeyType: {
212
+ type: "string",
213
+ enum: ["OKP", "EC", "RSA"],
214
+ description: "Cryptographic key type identifier."
215
+ },
216
+ KeyEncoding: {
217
+ type: "string",
218
+ enum: ["COSE", "JOSE"],
219
+ description: "The encoding format of the cryptographic key."
220
+ },
221
+ CreateRawSignatureResponse: {
222
+ type: "object",
223
+ properties: {
224
+ signature: {
225
+ type: "string",
226
+ description: "The created signature encoded as a base64 string."
227
+ }
228
+ },
229
+ required: ["signature"],
230
+ additionalProperties: false,
231
+ description: "Response body containing the created signature."
232
+ },
233
+ KmsDeleteKeyArgs: {
234
+ type: "object",
235
+ properties: {
236
+ baseUrl: {
237
+ type: "string"
377
238
  },
378
- JoseKeyPair: {
379
- type: "object",
380
- properties: {
381
- privateJwk: {
382
- $ref: "#/components/schemas/Jwk"
383
- },
384
- publicJwk: {
385
- $ref: "#/components/schemas/Jwk"
386
- }
387
- },
388
- required: ["publicJwk"],
389
- additionalProperties: false,
390
- description: "Data class representing a cryptographic key pair used with JOSE (JSON Object Signing and Encryption)."
239
+ aliasOrKid: {
240
+ type: "string"
241
+ }
242
+ },
243
+ additionalProperties: false
244
+ },
245
+ KmsGenerateKeyArgs: {
246
+ type: "object",
247
+ additionalProperties: false,
248
+ properties: {
249
+ alias: {
250
+ type: "string",
251
+ description: "Alias for the generated key."
391
252
  },
392
- KmsGetKeyArgs: {
393
- type: "object",
394
- properties: {
395
- baseUrl: {
396
- type: "string"
397
- },
398
- aliasOrKid: {
399
- type: "string"
400
- }
401
- },
402
- required: ["aliasOrKid"],
403
- additionalProperties: false
253
+ use: {
254
+ $ref: "#/components/schemas/JwkUse"
404
255
  },
405
- ManagedKeyInfo: {
406
- type: "object",
407
- properties: {
408
- kid: {
409
- type: "string",
410
- description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
411
- },
412
- key: {
413
- $ref: "#/components/schemas/Jwk"
414
- },
415
- signatureAlgorithm: {
416
- $ref: "#/components/schemas/SignatureAlgorithm"
417
- },
418
- keyVisibility: {
419
- $ref: "#/components/schemas/KeyVisibility"
420
- },
421
- x5c: {
422
- type: "array",
423
- items: {
424
- type: "string"
425
- },
426
- description: "X.509 certificate chain associated with the key."
427
- },
428
- alias: {
429
- type: "string",
430
- description: "A reference or alias to the key in the Key Management Service (KMS)."
431
- },
432
- providerId: {
433
- type: "string",
434
- description: "The Key Management System (KMS) identifier associated with the key."
435
- },
436
- keyType: {
437
- $ref: "#/components/schemas/KeyType"
438
- },
439
- keyEncoding: {
440
- $ref: "#/components/schemas/KeyEncoding"
441
- },
442
- opts: {
443
- type: "object",
444
- additionalProperties: {
445
- type: "string"
446
- },
447
- description: "Additional configuration options as key-value pairs."
448
- }
449
- },
450
- required: ["key", "alias", "providerId"],
451
- additionalProperties: false,
452
- description: "Represents a managed cryptographic key information that is guaranteed to be present and resolved, part of a KMS providing concrete access to the key."
256
+ keyOperations: {
257
+ type: "array",
258
+ items: {
259
+ $ref: "#/components/schemas/KeyOperations"
260
+ }
453
261
  },
454
- KmsGetKeyProviderArgs: {
455
- type: "object",
456
- properties: {
457
- baseUrl: {
458
- type: "string"
459
- },
460
- providerId: {
461
- type: "string"
462
- }
463
- },
464
- additionalProperties: false
262
+ alg: {
263
+ $ref: "#/components/schemas/SignatureAlgorithm"
465
264
  },
466
- KeyProviderResponse: {
467
- type: "object",
468
- properties: {
469
- providerId: {
470
- type: "string",
471
- description: "The unique identifier assigned to the Key Provider instance upon creation."
472
- },
473
- type: {
474
- $ref: "#/components/schemas/KeyProviderType"
475
- }
476
- },
477
- required: ["providerId", "type"],
478
- additionalProperties: false,
479
- description: "Response body containing the details of a Key Provider instance."
265
+ providerId: {
266
+ type: "string",
267
+ description: "Optional provider ID. If not specified, the default provider will be used."
480
268
  },
481
- KeyProviderType: {
269
+ baseUrl: {
270
+ type: "string"
271
+ }
272
+ }
273
+ },
274
+ ManagedKeyPair: {
275
+ type: "object",
276
+ properties: {
277
+ kid: {
482
278
  type: "string",
483
- enum: ["SOFTWARE", "AZURE_KEYVAULT", "AWS_KMS"],
484
- description: "The type of Key Provider. Determines the required configuration settings. - AZURE_KEYVAULT: Microsoft Azure Key Vault or Managed HSM. - AWS_KMS: Amazon Web Services Key Management Service."
279
+ description: "Key identifier, may be null."
485
280
  },
486
- kmsGetResolverArgs: {
487
- type: "object",
488
- properties: {
489
- baseUrl: {
490
- type: "string"
491
- },
492
- resolverId: {
493
- type: "string"
494
- }
495
- },
496
- required: ["resolverId"],
497
- additionalProperties: false
281
+ providerId: {
282
+ type: "string",
283
+ description: "Key Management System identifier."
498
284
  },
499
- Resolver: {
500
- type: "object",
501
- properties: {
502
- resolverId: {
503
- type: "string",
504
- description: "Unique identifier for the resolver."
505
- },
506
- supportedIdentifierMethods: {
507
- type: "array",
508
- items: {
509
- $ref: "#/components/schemas/IdentifierMethod"
510
- },
511
- description: "List of identifier methods supported by this resolver."
512
- },
513
- supportedKeyTypes: {
514
- type: "array",
515
- items: {
516
- $ref: "#/components/schemas/KeyType"
517
- },
518
- description: "List of key types supported by this resolver."
519
- }
520
- },
521
- required: ["resolverId"],
522
- additionalProperties: false,
523
- description: "Represents a key resolver configuration."
285
+ alias: {
286
+ type: "string",
287
+ description: "Reference to the key in the KMS."
288
+ },
289
+ cose: {
290
+ $ref: "#/components/schemas/CoseKeyPair"
291
+ },
292
+ jose: {
293
+ $ref: "#/components/schemas/JoseKeyPair"
294
+ }
295
+ },
296
+ required: ["providerId", "alias", "cose", "jose"],
297
+ additionalProperties: false,
298
+ description: "Represents a key pair used by a crypto provider, encapsulating both JOSE and COSE key pairs."
299
+ },
300
+ CoseKeyPair: {
301
+ type: "object",
302
+ properties: {
303
+ privateCoseKey: {
304
+ $ref: "#/components/schemas/CoseKey"
524
305
  },
525
- IdentifierMethod: {
306
+ publicCoseKey: {
307
+ $ref: "#/components/schemas/CoseKey"
308
+ }
309
+ },
310
+ required: ["publicCoseKey"],
311
+ additionalProperties: false,
312
+ description: "Represents a cryptographic key pair for COSE (CBOR Object Signing and Encryption) operations."
313
+ },
314
+ CoseKey: {
315
+ type: "object",
316
+ properties: {
317
+ kty: {
318
+ $ref: "#/components/schemas/CoseKeyType"
319
+ },
320
+ kid: {
526
321
  type: "string",
527
- enum: ["JWK", "KID", "COSE_KEY", "X5C", "DID"],
528
- description: "Method used to identify cryptographic keys."
322
+ description: "Key identifier (base64url-encoded byte string)."
529
323
  },
530
- KmsIsValidRawSignatureArgs: {
531
- type: "object",
532
- additionalProperties: false,
533
- properties: {
534
- keyInfo: {
535
- $ref: "#/components/schemas/KeyInfo"
536
- },
537
- input: {
538
- type: "string"
539
- },
540
- signature: {
541
- type: "string"
542
- },
543
- baseUrl: {
544
- type: "string"
545
- }
546
- },
547
- required: ["input", "keyInfo", "signature"]
324
+ alg: {
325
+ type: "number",
326
+ description: "The COSE algorithm identifier (e.g., -7=ES256, -35=ES384, -36=ES512, -8=EdDSA)."
548
327
  },
549
- VerifyRawSignatureResponse: {
550
- type: "object",
551
- properties: {
552
- isValid: {
553
- type: "boolean",
554
- description: "Indicates whether the signature is valid or not."
555
- }
328
+ keyOps: {
329
+ type: "array",
330
+ items: {
331
+ type: "number"
556
332
  },
557
- required: ["isValid"],
558
- additionalProperties: false,
559
- description: "Response body containing the details of the signature verification."
333
+ description: "The allowed COSE key operations (1=sign, 2=verify, 3=encrypt, 4=decrypt, etc.)."
560
334
  },
561
- KmsListKeyProvidersArgs: {
562
- type: "object",
563
- properties: {
564
- baseUrl: {
565
- type: "string"
566
- }
567
- },
568
- additionalProperties: false
335
+ baseIV: {
336
+ type: "string",
337
+ description: "Base initialization vector (base64url-encoded)."
569
338
  },
570
- ListKeyProvidersResponse: {
571
- type: "object",
572
- properties: {
573
- providers: {
574
- type: "array",
575
- items: {
576
- $ref: "#/components/schemas/KeyProvider"
577
- }
578
- }
579
- },
580
- required: ["providers"],
581
- additionalProperties: false,
582
- description: "Response body containing the details of a Key Provider instance."
339
+ crv: {
340
+ type: "number",
341
+ description: "The COSE curve identifier (1=P-256, 2=P-384, 3=P-521, 8=secp256k1, 6=Ed25519, etc.)."
583
342
  },
584
- KeyProvider: {
585
- type: "object",
586
- properties: {
587
- providerId: {
588
- type: "string",
589
- description: "The unique identifier assigned to the Key Provider instance upon creation."
590
- },
591
- type: {
592
- $ref: "#/components/schemas/KeyProviderType"
593
- }
594
- },
595
- required: ["providerId", "type"],
596
- additionalProperties: false,
597
- description: "Response body containing the details of a Key Provider instance."
343
+ x: {
344
+ type: "string",
345
+ description: "The x coordinate (base64url-encoded byte string)."
598
346
  },
599
- KmsListKeysArgs: {
600
- type: "object",
601
- properties: {
602
- baseUrl: {
603
- type: "string"
604
- },
605
- providerId: {
606
- type: "string"
607
- }
608
- },
609
- additionalProperties: false
347
+ y: {
348
+ type: "string",
349
+ description: "The y coordinate (base64url-encoded byte string)."
610
350
  },
611
- ListKeysResponse: {
612
- type: "object",
613
- properties: {
614
- keyInfos: {
615
- type: "array",
616
- items: {
617
- $ref: "#/components/schemas/ManagedKeyInfo"
618
- }
619
- }
620
- },
621
- required: ["keyInfos"],
622
- additionalProperties: false,
623
- description: "Response body containing all the managed keys."
351
+ d: {
352
+ type: "string",
353
+ description: "The private key parameter (base64url-encoded byte string)."
624
354
  },
625
- KmsListResolversArgs: {
626
- type: "object",
627
- properties: {
628
- baseUrl: {
629
- type: "string"
630
- }
355
+ x5chain: {
356
+ type: "array",
357
+ items: {
358
+ type: "string"
631
359
  },
632
- additionalProperties: false
360
+ description: "X.509 certificate chain as base64-encoded certificates."
361
+ }
362
+ },
363
+ required: ["kty"],
364
+ additionalProperties: false,
365
+ description: "Represents a COSE (CBOR Object Signing and Encryption) key in JSON format."
366
+ },
367
+ CoseKeyType: {
368
+ type: "number",
369
+ enum: [1, 2, 3, 4],
370
+ description: "COSE key type parameter. 1=OKP (Octet Key Pair), 2=EC2 (Elliptic Curve), 3=RSA, 4=Symmetric."
371
+ },
372
+ JoseKeyPair: {
373
+ type: "object",
374
+ properties: {
375
+ privateJwk: {
376
+ $ref: "#/components/schemas/Jwk"
633
377
  },
634
- ListResolversResponse: {
635
- type: "object",
636
- properties: {
637
- resolvers: {
638
- type: "array",
639
- items: {
640
- $ref: "#/components/schemas/Resolver"
641
- }
642
- }
643
- },
644
- required: ["resolvers"],
645
- additionalProperties: false,
646
- description: "Response body containing all the resolvers."
378
+ publicJwk: {
379
+ $ref: "#/components/schemas/Jwk"
380
+ }
381
+ },
382
+ required: ["publicJwk"],
383
+ additionalProperties: false,
384
+ description: "Data class representing a cryptographic key pair used with JOSE (JSON Object Signing and Encryption)."
385
+ },
386
+ KmsGetKeyArgs: {
387
+ type: "object",
388
+ properties: {
389
+ baseUrl: {
390
+ type: "string"
647
391
  },
648
- KmsProviderDeleteKeyArgs: {
649
- type: "object",
650
- properties: {
651
- baseUrl: {
652
- type: "string"
653
- },
654
- providerId: {
655
- type: "string"
656
- },
657
- aliasOrKid: {
658
- type: "string"
659
- }
660
- },
661
- required: ["providerId", "aliasOrKid"],
662
- additionalProperties: false
392
+ aliasOrKid: {
393
+ type: "string"
394
+ }
395
+ },
396
+ required: ["aliasOrKid"],
397
+ additionalProperties: false
398
+ },
399
+ ManagedKeyInfo: {
400
+ type: "object",
401
+ properties: {
402
+ kid: {
403
+ type: "string",
404
+ description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
663
405
  },
664
- KmsProviderGenerateKey: {
665
- type: "object",
666
- additionalProperties: false,
667
- properties: {
668
- alias: {
669
- type: "string",
670
- description: "Alias for the generated key."
671
- },
672
- use: {
673
- $ref: "#/components/schemas/JwkUse"
674
- },
675
- keyOperations: {
676
- type: "array",
677
- items: {
678
- $ref: "#/components/schemas/KeyOperations"
679
- }
680
- },
681
- alg: {
682
- $ref: "#/components/schemas/SignatureAlgorithm"
683
- },
684
- baseUrl: {
685
- type: "string"
686
- },
687
- providerId: {
688
- type: "string"
689
- }
690
- },
691
- required: ["providerId"]
406
+ key: {
407
+ $ref: "#/components/schemas/Jwk"
692
408
  },
693
- KmsProviderGetKeyArgs: {
694
- type: "object",
695
- properties: {
696
- baseUrl: {
697
- type: "string"
698
- },
699
- providerId: {
700
- type: "string"
701
- },
702
- aliasOrKid: {
703
- type: "string"
704
- }
705
- },
706
- required: ["providerId", "aliasOrKid"],
707
- additionalProperties: false
409
+ signatureAlgorithm: {
410
+ $ref: "#/components/schemas/SignatureAlgorithm"
708
411
  },
709
- KmsProviderListKeysArgs: {
710
- type: "object",
711
- properties: {
712
- baseUrl: {
713
- type: "string"
714
- },
715
- providerId: {
716
- type: "string"
717
- }
718
- },
719
- required: ["providerId"],
720
- additionalProperties: false
412
+ keyVisibility: {
413
+ $ref: "#/components/schemas/KeyVisibility"
721
414
  },
722
- KmsProviderStoreKey: {
723
- type: "object",
724
- additionalProperties: false,
725
- properties: {
726
- keyInfo: {
727
- $ref: "#/components/schemas/ResolvedKeyInfo"
728
- },
729
- certChain: {
730
- type: "array",
731
- items: {
732
- type: "string"
733
- },
734
- description: "X.509 certificate chain as base64-encoded DER certificates."
735
- },
736
- baseUrl: {
737
- type: "string"
738
- },
739
- providerId: {
740
- type: "string"
741
- }
415
+ x5c: {
416
+ type: "array",
417
+ items: {
418
+ type: "string"
742
419
  },
743
- required: ["keyInfo", "providerId"]
420
+ description: "X.509 certificate chain associated with the key."
744
421
  },
745
- ResolvedKeyInfo: {
746
- type: "object",
747
- properties: {
748
- kid: {
749
- type: "string",
750
- description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
751
- },
752
- key: {
753
- $ref: "#/components/schemas/Jwk"
754
- },
755
- signatureAlgorithm: {
756
- $ref: "#/components/schemas/SignatureAlgorithm"
757
- },
758
- keyVisibility: {
759
- $ref: "#/components/schemas/KeyVisibility"
760
- },
761
- x5c: {
762
- type: "array",
763
- items: {
764
- type: "string"
765
- },
766
- description: "X.509 certificate chain associated with the key."
767
- },
768
- alias: {
769
- type: "string",
770
- description: "A reference or alias to the key in the Key Management Service (KMS)."
771
- },
772
- providerId: {
773
- type: "string",
774
- description: "The Key Management System (KMS) identifier associated with the key."
775
- },
776
- keyType: {
777
- $ref: "#/components/schemas/KeyType"
778
- },
779
- keyEncoding: {
780
- $ref: "#/components/schemas/KeyEncoding"
781
- },
782
- opts: {
783
- type: "object",
784
- additionalProperties: {
785
- type: "string"
786
- },
787
- description: "Additional configuration options as key-value pairs."
788
- }
789
- },
790
- required: ["key"],
791
- additionalProperties: false,
792
- description: "Represents a resolved cryptographic key information where the key is guaranteed to be present and resolved, providing concrete access to the key."
422
+ alias: {
423
+ type: "string",
424
+ description: "A reference or alias to the key in the Key Management Service (KMS)."
793
425
  },
794
- KmsResolveKeyArgs: {
795
- type: "object",
796
- additionalProperties: false,
797
- properties: {
798
- keyInfo: {
799
- $ref: "#/components/schemas/KeyInfo"
800
- },
801
- identifierMethod: {
802
- $ref: "#/components/schemas/IdentifierMethod"
803
- },
804
- trustedCerts: {
805
- type: "array",
806
- items: {
807
- type: "string"
808
- },
809
- description: "Optional array of trusted certificates (base64-encoded) that may be used in the resolution process."
810
- },
811
- verifyX509CertificateChain: {
812
- type: "boolean",
813
- description: "Optional boolean indicating whether the X.509 certificate chain should be verified."
814
- },
815
- baseUrl: {
816
- type: "string"
817
- },
818
- resolverId: {
819
- $ref: "#/components/schemas/String"
820
- }
821
- },
822
- required: ["keyInfo", "resolverId"]
426
+ providerId: {
427
+ type: "string",
428
+ description: "The Key Management System (KMS) identifier associated with the key."
429
+ },
430
+ keyType: {
431
+ $ref: "#/components/schemas/KeyType"
823
432
  },
824
- String: {
433
+ keyEncoding: {
434
+ $ref: "#/components/schemas/KeyEncoding"
435
+ },
436
+ opts: {
825
437
  type: "object",
826
- properties: {
827
- length: {
828
- type: "number"
829
- }
830
- },
831
- required: ["length"],
832
438
  additionalProperties: {
833
439
  type: "string"
834
- }
835
- },
836
- KmsStoreKeyArgs: {
837
- type: "object",
838
- additionalProperties: false,
839
- properties: {
840
- keyInfo: {
841
- $ref: "#/components/schemas/ResolvedKeyInfo"
842
- },
843
- certChain: {
844
- type: "array",
845
- items: {
846
- type: "string"
847
- },
848
- description: "X.509 certificate chain as base64-encoded DER certificates."
849
- },
850
- baseUrl: {
851
- type: "string"
852
- }
853
440
  },
854
- required: ["keyInfo"]
441
+ description: "Additional configuration options as key-value pairs."
855
442
  }
856
443
  },
857
- methods: {
858
- kmsCreateRawSignature: {
859
- description: "",
860
- arguments: {
861
- $ref: "#/components/schemas/KmsCreateRawSignatureArgs"
862
- },
863
- returnType: {
864
- $ref: "#/components/schemas/CreateRawSignatureResponse"
865
- }
444
+ required: ["key", "alias", "providerId"],
445
+ additionalProperties: false,
446
+ description: "Represents a managed cryptographic key information that is guaranteed to be present and resolved, part of a KMS providing concrete access to the key."
447
+ },
448
+ KmsGetKeyProviderArgs: {
449
+ type: "object",
450
+ properties: {
451
+ baseUrl: {
452
+ type: "string"
866
453
  },
867
- kmsDeleteKey: {
868
- description: "",
869
- arguments: {
870
- $ref: "#/components/schemas/KmsDeleteKeyArgs"
871
- },
872
- returnType: {
873
- type: "boolean"
874
- }
454
+ providerId: {
455
+ type: "string"
456
+ }
457
+ },
458
+ additionalProperties: false
459
+ },
460
+ KeyProviderResponse: {
461
+ type: "object",
462
+ properties: {
463
+ providerId: {
464
+ type: "string",
465
+ description: "The unique identifier assigned to the Key Provider instance upon creation."
875
466
  },
876
- kmsGenerateKey: {
877
- description: "",
878
- arguments: {
879
- $ref: "#/components/schemas/KmsGenerateKeyArgs"
880
- },
881
- returnType: {
882
- $ref: "#/components/schemas/ManagedKeyPair"
883
- }
467
+ type: {
468
+ $ref: "#/components/schemas/KeyProviderType"
469
+ }
470
+ },
471
+ required: ["providerId", "type"],
472
+ additionalProperties: false,
473
+ description: "Response body containing the details of a Key Provider instance."
474
+ },
475
+ KeyProviderType: {
476
+ type: "string",
477
+ enum: ["SOFTWARE", "AZURE_KEYVAULT", "AWS_KMS"],
478
+ description: "The type of Key Provider. Determines the required configuration settings. - AZURE_KEYVAULT: Microsoft Azure Key Vault or Managed HSM. - AWS_KMS: Amazon Web Services Key Management Service."
479
+ },
480
+ kmsGetResolverArgs: {
481
+ type: "object",
482
+ properties: {
483
+ baseUrl: {
484
+ type: "string"
884
485
  },
885
- kmsGetKey: {
886
- description: "",
887
- arguments: {
888
- $ref: "#/components/schemas/KmsGetKeyArgs"
486
+ resolverId: {
487
+ type: "string"
488
+ }
489
+ },
490
+ required: ["resolverId"],
491
+ additionalProperties: false
492
+ },
493
+ Resolver: {
494
+ type: "object",
495
+ properties: {
496
+ resolverId: {
497
+ type: "string",
498
+ description: "Unique identifier for the resolver."
499
+ },
500
+ supportedIdentifierMethods: {
501
+ type: "array",
502
+ items: {
503
+ $ref: "#/components/schemas/IdentifierMethod"
889
504
  },
890
- returnType: {
891
- $ref: "#/components/schemas/ManagedKeyInfo"
892
- }
505
+ description: "List of identifier methods supported by this resolver."
893
506
  },
894
- kmsGetKeyProvider: {
895
- description: "",
896
- arguments: {
897
- $ref: "#/components/schemas/KmsGetKeyProviderArgs"
507
+ supportedKeyTypes: {
508
+ type: "array",
509
+ items: {
510
+ $ref: "#/components/schemas/KeyType"
898
511
  },
899
- returnType: {
900
- $ref: "#/components/schemas/KeyProviderResponse"
512
+ description: "List of key types supported by this resolver."
513
+ }
514
+ },
515
+ required: ["resolverId"],
516
+ additionalProperties: false,
517
+ description: "Represents a key resolver configuration."
518
+ },
519
+ IdentifierMethod: {
520
+ type: "string",
521
+ enum: ["JWK", "KID", "COSE_KEY", "X5C", "DID"],
522
+ description: "Method used to identify cryptographic keys."
523
+ },
524
+ KmsIsValidRawSignatureArgs: {
525
+ type: "object",
526
+ additionalProperties: false,
527
+ properties: {
528
+ keyInfo: {
529
+ $ref: "#/components/schemas/KeyInfo"
530
+ },
531
+ input: {
532
+ type: "string"
533
+ },
534
+ signature: {
535
+ type: "string"
536
+ },
537
+ baseUrl: {
538
+ type: "string"
539
+ }
540
+ },
541
+ required: ["input", "keyInfo", "signature"]
542
+ },
543
+ VerifyRawSignatureResponse: {
544
+ type: "object",
545
+ properties: {
546
+ isValid: {
547
+ type: "boolean",
548
+ description: "Indicates whether the signature is valid or not."
549
+ }
550
+ },
551
+ required: ["isValid"],
552
+ additionalProperties: false,
553
+ description: "Response body containing the details of the signature verification."
554
+ },
555
+ KmsListKeyProvidersArgs: {
556
+ type: "object",
557
+ properties: {
558
+ baseUrl: {
559
+ type: "string"
560
+ }
561
+ },
562
+ additionalProperties: false
563
+ },
564
+ ListKeyProvidersResponse: {
565
+ type: "object",
566
+ properties: {
567
+ providers: {
568
+ type: "array",
569
+ items: {
570
+ $ref: "#/components/schemas/KeyProvider"
901
571
  }
572
+ }
573
+ },
574
+ required: ["providers"],
575
+ additionalProperties: false,
576
+ description: "Response body containing the details of a Key Provider instance."
577
+ },
578
+ KeyProvider: {
579
+ type: "object",
580
+ properties: {
581
+ providerId: {
582
+ type: "string",
583
+ description: "The unique identifier assigned to the Key Provider instance upon creation."
902
584
  },
903
- kmsGetResolver: {
904
- description: "",
905
- arguments: {
906
- $ref: "#/components/schemas/kmsGetResolverArgs"
907
- },
908
- returnType: {
585
+ type: {
586
+ $ref: "#/components/schemas/KeyProviderType"
587
+ }
588
+ },
589
+ required: ["providerId", "type"],
590
+ additionalProperties: false,
591
+ description: "Response body containing the details of a Key Provider instance."
592
+ },
593
+ KmsListKeysArgs: {
594
+ type: "object",
595
+ properties: {
596
+ baseUrl: {
597
+ type: "string"
598
+ },
599
+ providerId: {
600
+ type: "string"
601
+ }
602
+ },
603
+ additionalProperties: false
604
+ },
605
+ ListKeysResponse: {
606
+ type: "object",
607
+ properties: {
608
+ keyInfos: {
609
+ type: "array",
610
+ items: {
611
+ $ref: "#/components/schemas/ManagedKeyInfo"
612
+ }
613
+ }
614
+ },
615
+ required: ["keyInfos"],
616
+ additionalProperties: false,
617
+ description: "Response body containing all the managed keys."
618
+ },
619
+ KmsListResolversArgs: {
620
+ type: "object",
621
+ properties: {
622
+ baseUrl: {
623
+ type: "string"
624
+ }
625
+ },
626
+ additionalProperties: false
627
+ },
628
+ ListResolversResponse: {
629
+ type: "object",
630
+ properties: {
631
+ resolvers: {
632
+ type: "array",
633
+ items: {
909
634
  $ref: "#/components/schemas/Resolver"
910
635
  }
636
+ }
637
+ },
638
+ required: ["resolvers"],
639
+ additionalProperties: false,
640
+ description: "Response body containing all the resolvers."
641
+ },
642
+ KmsProviderDeleteKeyArgs: {
643
+ type: "object",
644
+ properties: {
645
+ baseUrl: {
646
+ type: "string"
911
647
  },
912
- kmsIsValidRawSignature: {
913
- description: "",
914
- arguments: {
915
- $ref: "#/components/schemas/KmsIsValidRawSignatureArgs"
916
- },
917
- returnType: {
918
- $ref: "#/components/schemas/VerifyRawSignatureResponse"
919
- }
648
+ providerId: {
649
+ type: "string"
920
650
  },
921
- kmsListKeyProviders: {
922
- description: "",
923
- arguments: {
924
- $ref: "#/components/schemas/KmsListKeyProvidersArgs"
925
- },
926
- returnType: {
927
- $ref: "#/components/schemas/ListKeyProvidersResponse"
928
- }
651
+ aliasOrKid: {
652
+ type: "string"
653
+ }
654
+ },
655
+ required: ["providerId", "aliasOrKid"],
656
+ additionalProperties: false
657
+ },
658
+ KmsProviderGenerateKey: {
659
+ type: "object",
660
+ additionalProperties: false,
661
+ properties: {
662
+ alias: {
663
+ type: "string",
664
+ description: "Alias for the generated key."
929
665
  },
930
- kmsListKeys: {
931
- description: "",
932
- arguments: {
933
- $ref: "#/components/schemas/KmsListKeysArgs"
934
- },
935
- returnType: {
936
- $ref: "#/components/schemas/ListKeysResponse"
937
- }
666
+ use: {
667
+ $ref: "#/components/schemas/JwkUse"
938
668
  },
939
- kmsListResolvers: {
940
- description: "",
941
- arguments: {
942
- $ref: "#/components/schemas/KmsListResolversArgs"
943
- },
944
- returnType: {
945
- $ref: "#/components/schemas/ListResolversResponse"
669
+ keyOperations: {
670
+ type: "array",
671
+ items: {
672
+ $ref: "#/components/schemas/KeyOperations"
946
673
  }
947
674
  },
948
- kmsProviderDeleteKey: {
949
- description: "",
950
- arguments: {
951
- $ref: "#/components/schemas/KmsProviderDeleteKeyArgs"
952
- },
953
- returnType: {
954
- type: "boolean"
955
- }
675
+ alg: {
676
+ $ref: "#/components/schemas/SignatureAlgorithm"
956
677
  },
957
- kmsProviderGenerateKey: {
958
- description: "",
959
- arguments: {
960
- $ref: "#/components/schemas/KmsProviderGenerateKey"
961
- },
962
- returnType: {
963
- $ref: "#/components/schemas/ManagedKeyPair"
964
- }
678
+ baseUrl: {
679
+ type: "string"
965
680
  },
966
- kmsProviderGetKey: {
967
- description: "",
968
- arguments: {
969
- $ref: "#/components/schemas/KmsProviderGetKeyArgs"
681
+ providerId: {
682
+ type: "string"
683
+ }
684
+ },
685
+ required: ["providerId"]
686
+ },
687
+ KmsProviderGetKeyArgs: {
688
+ type: "object",
689
+ properties: {
690
+ baseUrl: {
691
+ type: "string"
692
+ },
693
+ providerId: {
694
+ type: "string"
695
+ },
696
+ aliasOrKid: {
697
+ type: "string"
698
+ }
699
+ },
700
+ required: ["providerId", "aliasOrKid"],
701
+ additionalProperties: false
702
+ },
703
+ KmsProviderListKeysArgs: {
704
+ type: "object",
705
+ properties: {
706
+ baseUrl: {
707
+ type: "string"
708
+ },
709
+ providerId: {
710
+ type: "string"
711
+ }
712
+ },
713
+ required: ["providerId"],
714
+ additionalProperties: false
715
+ },
716
+ KmsProviderStoreKey: {
717
+ type: "object",
718
+ additionalProperties: false,
719
+ properties: {
720
+ keyInfo: {
721
+ $ref: "#/components/schemas/ResolvedKeyInfo"
722
+ },
723
+ certChain: {
724
+ type: "array",
725
+ items: {
726
+ type: "string"
970
727
  },
971
- returnType: {
972
- $ref: "#/components/schemas/ManagedKeyInfo"
973
- }
728
+ description: "X.509 certificate chain as base64-encoded DER certificates."
729
+ },
730
+ baseUrl: {
731
+ type: "string"
732
+ },
733
+ providerId: {
734
+ type: "string"
735
+ }
736
+ },
737
+ required: ["keyInfo", "providerId"]
738
+ },
739
+ ResolvedKeyInfo: {
740
+ type: "object",
741
+ properties: {
742
+ kid: {
743
+ type: "string",
744
+ description: "Unique identifier for the cryptographic key. Can be null if the key identifier is not provided."
745
+ },
746
+ key: {
747
+ $ref: "#/components/schemas/Jwk"
974
748
  },
975
- kmsProviderListKeys: {
976
- description: "",
977
- arguments: {
978
- $ref: "#/components/schemas/KmsProviderListKeysArgs"
749
+ signatureAlgorithm: {
750
+ $ref: "#/components/schemas/SignatureAlgorithm"
751
+ },
752
+ keyVisibility: {
753
+ $ref: "#/components/schemas/KeyVisibility"
754
+ },
755
+ x5c: {
756
+ type: "array",
757
+ items: {
758
+ type: "string"
979
759
  },
980
- returnType: {
981
- $ref: "#/components/schemas/ListKeysResponse"
982
- }
760
+ description: "X.509 certificate chain associated with the key."
761
+ },
762
+ alias: {
763
+ type: "string",
764
+ description: "A reference or alias to the key in the Key Management Service (KMS)."
765
+ },
766
+ providerId: {
767
+ type: "string",
768
+ description: "The Key Management System (KMS) identifier associated with the key."
769
+ },
770
+ keyType: {
771
+ $ref: "#/components/schemas/KeyType"
983
772
  },
984
- kmsProviderStoreKey: {
985
- description: "",
986
- arguments: {
987
- $ref: "#/components/schemas/KmsProviderStoreKey"
773
+ keyEncoding: {
774
+ $ref: "#/components/schemas/KeyEncoding"
775
+ },
776
+ opts: {
777
+ type: "object",
778
+ additionalProperties: {
779
+ type: "string"
988
780
  },
989
- returnType: {
990
- $ref: "#/components/schemas/ManagedKeyInfo"
991
- }
781
+ description: "Additional configuration options as key-value pairs."
782
+ }
783
+ },
784
+ required: ["key"],
785
+ additionalProperties: false,
786
+ description: "Represents a resolved cryptographic key information where the key is guaranteed to be present and resolved, providing concrete access to the key."
787
+ },
788
+ KmsResolveKeyArgs: {
789
+ type: "object",
790
+ additionalProperties: false,
791
+ properties: {
792
+ keyInfo: {
793
+ $ref: "#/components/schemas/KeyInfo"
794
+ },
795
+ identifierMethod: {
796
+ $ref: "#/components/schemas/IdentifierMethod"
992
797
  },
993
- kmsResolveKey: {
994
- description: "",
995
- arguments: {
996
- $ref: "#/components/schemas/KmsResolveKeyArgs"
798
+ trustedCerts: {
799
+ type: "array",
800
+ items: {
801
+ type: "string"
997
802
  },
998
- returnType: {
999
- $ref: "#/components/schemas/ResolvedKeyInfo"
1000
- }
803
+ description: "Optional array of trusted certificates (base64-encoded) that may be used in the resolution process."
804
+ },
805
+ verifyX509CertificateChain: {
806
+ type: "boolean",
807
+ description: "Optional boolean indicating whether the X.509 certificate chain should be verified."
808
+ },
809
+ baseUrl: {
810
+ type: "string"
811
+ },
812
+ resolverId: {
813
+ $ref: "#/components/schemas/String"
814
+ }
815
+ },
816
+ required: ["keyInfo", "resolverId"]
817
+ },
818
+ String: {
819
+ type: "object",
820
+ properties: {
821
+ length: {
822
+ type: "number"
823
+ }
824
+ },
825
+ required: ["length"],
826
+ additionalProperties: {
827
+ type: "string"
828
+ }
829
+ },
830
+ KmsStoreKeyArgs: {
831
+ type: "object",
832
+ additionalProperties: false,
833
+ properties: {
834
+ keyInfo: {
835
+ $ref: "#/components/schemas/ResolvedKeyInfo"
1001
836
  },
1002
- kmsStoreKey: {
1003
- description: "",
1004
- arguments: {
1005
- $ref: "#/components/schemas/KmsStoreKeyArgs"
837
+ certChain: {
838
+ type: "array",
839
+ items: {
840
+ type: "string"
1006
841
  },
1007
- returnType: {
1008
- $ref: "#/components/schemas/ManagedKeyInfo"
1009
- }
842
+ description: "X.509 certificate chain as base64-encoded DER certificates."
843
+ },
844
+ baseUrl: {
845
+ type: "string"
1010
846
  }
847
+ },
848
+ required: ["keyInfo"]
849
+ }
850
+ },
851
+ methods: {
852
+ kmsCreateRawSignature: {
853
+ description: "",
854
+ arguments: {
855
+ $ref: "#/components/schemas/KmsCreateRawSignatureArgs"
856
+ },
857
+ returnType: {
858
+ $ref: "#/components/schemas/CreateRawSignatureResponse"
859
+ }
860
+ },
861
+ kmsDeleteKey: {
862
+ description: "",
863
+ arguments: {
864
+ $ref: "#/components/schemas/KmsDeleteKeyArgs"
865
+ },
866
+ returnType: {
867
+ type: "boolean"
868
+ }
869
+ },
870
+ kmsGenerateKey: {
871
+ description: "",
872
+ arguments: {
873
+ $ref: "#/components/schemas/KmsGenerateKeyArgs"
874
+ },
875
+ returnType: {
876
+ $ref: "#/components/schemas/ManagedKeyPair"
877
+ }
878
+ },
879
+ kmsGetKey: {
880
+ description: "",
881
+ arguments: {
882
+ $ref: "#/components/schemas/KmsGetKeyArgs"
883
+ },
884
+ returnType: {
885
+ $ref: "#/components/schemas/ManagedKeyInfo"
886
+ }
887
+ },
888
+ kmsGetKeyProvider: {
889
+ description: "",
890
+ arguments: {
891
+ $ref: "#/components/schemas/KmsGetKeyProviderArgs"
892
+ },
893
+ returnType: {
894
+ $ref: "#/components/schemas/KeyProviderResponse"
895
+ }
896
+ },
897
+ kmsGetResolver: {
898
+ description: "",
899
+ arguments: {
900
+ $ref: "#/components/schemas/kmsGetResolverArgs"
901
+ },
902
+ returnType: {
903
+ $ref: "#/components/schemas/Resolver"
904
+ }
905
+ },
906
+ kmsIsValidRawSignature: {
907
+ description: "",
908
+ arguments: {
909
+ $ref: "#/components/schemas/KmsIsValidRawSignatureArgs"
910
+ },
911
+ returnType: {
912
+ $ref: "#/components/schemas/VerifyRawSignatureResponse"
913
+ }
914
+ },
915
+ kmsListKeyProviders: {
916
+ description: "",
917
+ arguments: {
918
+ $ref: "#/components/schemas/KmsListKeyProvidersArgs"
919
+ },
920
+ returnType: {
921
+ $ref: "#/components/schemas/ListKeyProvidersResponse"
922
+ }
923
+ },
924
+ kmsListKeys: {
925
+ description: "",
926
+ arguments: {
927
+ $ref: "#/components/schemas/KmsListKeysArgs"
928
+ },
929
+ returnType: {
930
+ $ref: "#/components/schemas/ListKeysResponse"
931
+ }
932
+ },
933
+ kmsListResolvers: {
934
+ description: "",
935
+ arguments: {
936
+ $ref: "#/components/schemas/KmsListResolversArgs"
937
+ },
938
+ returnType: {
939
+ $ref: "#/components/schemas/ListResolversResponse"
940
+ }
941
+ },
942
+ kmsProviderDeleteKey: {
943
+ description: "",
944
+ arguments: {
945
+ $ref: "#/components/schemas/KmsProviderDeleteKeyArgs"
946
+ },
947
+ returnType: {
948
+ type: "boolean"
949
+ }
950
+ },
951
+ kmsProviderGenerateKey: {
952
+ description: "",
953
+ arguments: {
954
+ $ref: "#/components/schemas/KmsProviderGenerateKey"
955
+ },
956
+ returnType: {
957
+ $ref: "#/components/schemas/ManagedKeyPair"
958
+ }
959
+ },
960
+ kmsProviderGetKey: {
961
+ description: "",
962
+ arguments: {
963
+ $ref: "#/components/schemas/KmsProviderGetKeyArgs"
964
+ },
965
+ returnType: {
966
+ $ref: "#/components/schemas/ManagedKeyInfo"
967
+ }
968
+ },
969
+ kmsProviderListKeys: {
970
+ description: "",
971
+ arguments: {
972
+ $ref: "#/components/schemas/KmsProviderListKeysArgs"
973
+ },
974
+ returnType: {
975
+ $ref: "#/components/schemas/ListKeysResponse"
976
+ }
977
+ },
978
+ kmsProviderStoreKey: {
979
+ description: "",
980
+ arguments: {
981
+ $ref: "#/components/schemas/KmsProviderStoreKey"
982
+ },
983
+ returnType: {
984
+ $ref: "#/components/schemas/ManagedKeyInfo"
985
+ }
986
+ },
987
+ kmsResolveKey: {
988
+ description: "",
989
+ arguments: {
990
+ $ref: "#/components/schemas/KmsResolveKeyArgs"
991
+ },
992
+ returnType: {
993
+ $ref: "#/components/schemas/ResolvedKeyInfo"
994
+ }
995
+ },
996
+ kmsStoreKey: {
997
+ description: "",
998
+ arguments: {
999
+ $ref: "#/components/schemas/KmsStoreKeyArgs"
1000
+ },
1001
+ returnType: {
1002
+ $ref: "#/components/schemas/ManagedKeyInfo"
1011
1003
  }
1012
1004
  }
1013
1005
  }
1014
- };
1006
+ }
1015
1007
  }
1016
- });
1008
+ };
1017
1009
 
1018
1010
  // src/agent/KmsRestClient.ts
1019
1011
  import { Loggers } from "@sphereon/ssi-types";
@@ -1934,11 +1926,8 @@ var KmsRestClient = class _KmsRestClient {
1934
1926
  return url;
1935
1927
  }
1936
1928
  };
1937
-
1938
- // src/index.ts
1939
- var schema = require_plugin_schema();
1940
1929
  export {
1941
1930
  KmsRestClient,
1942
- schema
1931
+ plugin_schema_default as schema
1943
1932
  };
1944
1933
  //# sourceMappingURL=index.js.map