@sphereon/ssi-sdk.mdl-mdoc 0.33.1-feature.vcdm2.4 → 0.33.1-feature.vcdm2.tsup.19

package/dist/functions/index.js

@@ -1,214 +0,0 @@
-import { com } from '@sphereon/kmp-mdoc-core';
-import { calculateJwkThumbprint, globalCrypto, verifyRawSignature } from '@sphereon/ssi-sdk-ext.key-utils';
-import { derToPEM, getCertificateInfo, getSubjectDN, pemOrDerToX509Certificate, validateX509CertificateChain, } from '@sphereon/ssi-sdk-ext.x509-utils';
-import * as crypto from 'crypto';
-import { CryptoEngine, setEngine } from 'pkijs';
-import * as u8a from 'uint8arrays';
-var CoseKeyCbor = com.sphereon.crypto.cose.CoseKeyCbor;
-var CoseJoseKeyMappingService = com.sphereon.crypto.CoseJoseKeyMappingService;
-var DefaultCallbacks = com.sphereon.crypto.DefaultCallbacks;
-var SignatureAlgorithm = com.sphereon.crypto.generic.SignatureAlgorithm;
-var KeyInfo = com.sphereon.crypto.KeyInfo;
-var ResolvedKeyInfo = com.sphereon.crypto.ResolvedKeyInfo;
-var DateTimeUtils = com.sphereon.kmp.DateTimeUtils;
-var decodeFrom = com.sphereon.kmp.decodeFrom;
-var encodeTo = com.sphereon.kmp.encodeTo;
-var Encoding = com.sphereon.kmp.Encoding;
-export class CoseCryptoService {
-    context;
-    constructor(context) {
-        this.context = context;
-    }
-    setContext(context) {
-        this.context = context;
-    }
-    async signAsync(input, requireX5Chain) {
-        if (!this.context) {
-            throw Error('No context provided. Please provide a context with the setContext method or constructor');
-        }
-        const { keyInfo, alg, value } = input;
-        let kmsKeyRef = keyInfo.kmsKeyRef ?? undefined;
-        if (!kmsKeyRef) {
-            const key = keyInfo.key;
-            if (key == null) {
-                return Promise.reject(Error('No key present in keyInfo. This implementation cannot sign without a key!'));
-            }
-            const resolvedKeyInfo = ResolvedKeyInfo.Static.fromKeyInfo(keyInfo, key);
-            const jwkKeyInfo = CoseJoseKeyMappingService.toResolvedJwkKeyInfo(resolvedKeyInfo);
-            const kid = jwkKeyInfo.kid ?? calculateJwkThumbprint({ jwk: jwkKeyInfo.key.toJsonDTO() }) ?? jwkKeyInfo.key.getKidAsString(true);
-            if (!kid) {
-                return Promise.reject(Error('No kid present and not kmsKeyRef provided'));
-            }
-            kmsKeyRef = kid;
-        }
-        const result = await this.context.agent.keyManagerSign({
-            algorithm: alg.jose.value,
-            data: encodeTo(value, Encoding.UTF8),
-            encoding: 'utf-8',
-            keyRef: kmsKeyRef,
-        });
-        return decodeFrom(result, Encoding.UTF8);
-    }
-    async verify1Async(input, keyInfo, requireX5Chain) {
-        const getCertAndKey = async (x5c) => {
-            if (requireX5Chain && (!x5c || x5c.length === 0)) {
-                // We should not be able to get here anyway, as the MLD-mdoc library already validated at this point. But let's make sure
-                return Promise.reject(new Error(`No x5chain was present in the CoseSign headers!`));
-            }
-            // TODO: According to the IETF spec there should be a x5t in case the x5chain is in the protected headers. In the Funke this does not seem to be done/used!
-            issuerCert = x5c ? pemOrDerToX509Certificate(x5c[0]) : undefined;
-            let issuerJwk;
-            if (issuerCert) {
-                const info = await getCertificateInfo(issuerCert);
-                issuerJwk = info.publicKeyJWK;
-            }
-            return { issuerCert, issuerJwk };
-        };
-        const coseKeyInfo = CoseJoseKeyMappingService.toCoseKeyInfo(keyInfo);
-        if (coseKeyInfo?.key?.d) {
-            throw Error('Do not use private keys to verify!');
-        }
-        else if (!input.payload?.value) {
-            return Promise.reject(Error('Signature validation without payload not supported'));
-        }
-        const sign1Json = input.toJson(); // Let's make it a bit easier on ourselves, instead of working with CBOR
-        const coseAlg = sign1Json.protectedHeader.alg;
-        if (!coseAlg) {
-            return Promise.reject(Error('No alg protected header present'));
-        }
-        let issuerCert;
-        let issuerCoseKey;
-        let kid = coseKeyInfo?.kid ?? sign1Json.protectedHeader.kid ?? sign1Json.unprotectedHeader?.kid;
-        // Please note this method does not perform chain validation. The MDL-MSO_MDOC library already performed this before this step
-        const x5c = coseKeyInfo?.key?.getX509CertificateChain() ?? sign1Json.protectedHeader?.x5chain ?? sign1Json.unprotectedHeader?.x5chain;
-        if (!coseKeyInfo || !coseKeyInfo?.key || coseKeyInfo?.key?.x5chain) {
-            const certAndKey = await getCertAndKey(x5c);
-            issuerCoseKey = certAndKey.issuerJwk ? CoseJoseKeyMappingService.toCoseKey(certAndKey.issuerJwk) : undefined;
-            issuerCert = certAndKey.issuerCert;
-        }
-        if (!issuerCoseKey) {
-            if (!coseKeyInfo?.key) {
-                return Promise.reject(Error(`Either a x5c needs to be in the headers, or you need to provide a key for verification`));
-            }
-            if (kid === null) {
-                kid = coseKeyInfo.key.getKidAsString(false);
-            }
-            issuerCoseKey = CoseKeyCbor.Static.fromDTO(coseKeyInfo.key);
-        }
-        const issuerCoseKeyInfo = new KeyInfo(kid, issuerCoseKey, coseKeyInfo.opts, coseKeyInfo.keyVisibility, issuerCoseKey.getSignatureAlgorithm() ?? coseKeyInfo.signatureAlgorithm, x5c, coseKeyInfo.kmsKeyRef, coseKeyInfo.kms, coseKeyInfo.keyType ?? issuerCoseKey.getKty());
-        const recalculatedToBeSigned = input.toBeSignedJson(issuerCoseKeyInfo, SignatureAlgorithm.Static.fromCose(coseAlg));
-        const key = CoseJoseKeyMappingService.toJoseJwk(issuerCoseKeyInfo.key).toJsonDTO();
-        const valid = await verifyRawSignature({
-            data: u8a.fromString(recalculatedToBeSigned.base64UrlValue, 'base64url'),
-            signature: u8a.fromString(sign1Json.signature, 'base64url'),
-            key,
-        });
-        return {
-            name: 'mdoc',
-            critical: true,
-            error: !valid,
-            message: `Signature of '${issuerCert ? getSubjectDN(issuerCert).DN : kid}' was ${valid ? '' : 'in'}valid`,
-            keyInfo: issuerCoseKeyInfo,
-        };
-    }
-    resolvePublicKeyAsync(keyInfo) {
-        if (keyInfo.key) {
-            return Promise.resolve(CoseJoseKeyMappingService.toResolvedKeyInfo(keyInfo, keyInfo.key));
-        }
-        return Promise.reject(Error('No key present in keyInfo. This implementation cannot resolve public keys on its own currently!'));
-    }
-}
-/**
- * This class can be used for X509 validations.
- * Either have an instance per trustedCerts and verification invocation or use a single instance and provide the trusted certs in the method argument
- *
- * The class is also registered with the low-level mDL/mdoc Kotlin Multiplatform library
- * Next to the specific function for the library it exports a more powerful version of the same verification method as well
- */
-export class X509CallbackService {
-    _trustedCerts;
-    constructor(trustedCerts) {
-        this.setTrustedCerts(trustedCerts);
-    }
-    /**
-     * A more powerful version of the method below. Allows to verify at a specific time and returns more information
-     * @param chain
-     * @param trustAnchors
-     * @param verificationTime
-     */
-    async verifyCertificateChain({ chain, trustAnchors = this.getTrustedCerts(), verificationTime, opts, }) {
-        return await validateX509CertificateChain({
-            chain,
-            trustAnchors,
-            verificationTime,
-            opts,
-        });
-    }
-    /**
-     * This method is the implementation used within the mDL/Mdoc library
-     */
-    async verifyCertificateChainJS(chainDER, chainPEM, trustedCerts, verificationProfile, verificationTime) {
-        const verificationAt = verificationTime ?? DateTimeUtils.Static.DEFAULT.dateTimeLocal();
-        let chain = [];
-        if (chainDER && chainDER.length > 0) {
-            chain = chainDER.map((der) => Uint8Array.from(der));
-        }
-        if (chainPEM && chainPEM.length > 0) {
-            chain = (chain ?? []).concat(chainPEM);
-        }
-        const result = await validateX509CertificateChain({
-            chain: chain, // The function will handle an empty array
-            trustAnchors: trustedCerts ?? this.getTrustedCerts(),
-            verificationTime: new Date(verificationAt.toEpochSeconds().toULong() * 1000),
-            opts: { trustRootWhenNoAnchors: true },
-        });
-        const cert = result.certificateChain ? result.certificateChain[result.certificateChain.length - 1] : undefined;
-        return {
-            publicKey: cert?.publicKeyJWK, // fixme
-            publicKeyAlgorithm: cert?.publicKeyJWK?.alg,
-            name: 'x.509',
-            critical: result.critical,
-            message: result.message,
-            error: result.error,
-            verificationTime: verificationAt,
-        };
-    }
-    setTrustedCerts = (trustedCertsInPEM) => {
-        this._trustedCerts = trustedCertsInPEM?.map((cert) => {
-            if (cert.includes('CERTIFICATE')) {
-                // PEM
-                return cert;
-            }
-            return derToPEM(cert);
-        });
-    };
-    getTrustedCerts = () => this._trustedCerts;
-}
-const defaultCryptoEngine = () => {
-    if (typeof self !== 'undefined') {
-        if ('crypto' in self) {
-            let engineName = 'webcrypto';
-            if ('webkitSubtle' in self.crypto) {
-                engineName = 'safari';
-            }
-            // @ts-ignore
-            setEngine(engineName, new CryptoEngine({ name: engineName, crypto: crypto }));
-        }
-    }
-    else if (typeof crypto !== 'undefined' && 'webcrypto' in crypto) {
-        const name = 'NodeJS ^15';
-        const nodeCrypto = crypto.webcrypto;
-        // @ts-ignore
-        setEngine(name, new CryptoEngine({ name, crypto: nodeCrypto }));
-    }
-    else {
-        // @ts-ignore
-        const name = 'crypto';
-        setEngine(name, new CryptoEngine({ name, crypto: globalCrypto(false) }));
-    }
-};
-defaultCryptoEngine();
-// We register the services with the mDL/mdoc library. Please note that the context is not passed in, meaning we cannot sign by default.
-DefaultCallbacks.setCoseCryptoDefault(new CoseCryptoService());
-DefaultCallbacks.setX509Default(new X509CallbackService());
-//# sourceMappingURL=index.js.map

package/dist/functions/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/functions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,EAAY,MAAM,yBAAyB,CAAA;AACvD,OAAO,EAAE,sBAAsB,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,iCAAiC,CAAA;AAC1G,OAAO,EAEL,QAAQ,EACR,kBAAkB,EAClB,YAAY,EACZ,yBAAyB,EACzB,4BAA4B,GAE7B,MAAM,kCAAkC,CAAA;AAEzC,OAAO,KAAK,MAAM,MAAM,QAAQ,CAAA;AAChC,OAAO,EAAe,YAAY,EAAE,SAAS,EAAE,MAAM,OAAO,CAAA;AAC5D,OAAO,KAAK,GAAG,MAAM,aAAa,CAAA;AAElC,IAAO,WAAW,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAA;AAIzD,IAAO,yBAAyB,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,yBAAyB,CAAA;AAChF,IAAO,gBAAgB,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,gBAAgB,CAAA;AAE9D,IAAO,kBAAkB,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,kBAAkB,CAAA;AAO1E,IAAO,OAAO,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAA;AAC5C,IAAO,eAAe,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,eAAe,CAAA;AAE5D,IAAO,aAAa,GAAG,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,aAAa,CAAA;AACrD,IAAO,UAAU,GAAG,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAA;AAC/C,IAAO,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAA;AAC3C,IAAO,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAA;AAG3C,MAAM,OAAO,iBAAiB;IACR;IAApB,YAAoB,OAA0B;QAA1B,YAAO,GAAP,OAAO,CAAmB;IAAG,CAAC;IAElD,UAAU,CAAC,OAAyB;QAClC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAA;IACxB,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,KAAqB,EAAE,cAAiC;QACtE,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAClB,MAAM,KAAK,CAAC,yFAAyF,CAAC,CAAA;QACxG,CAAC;QACD,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,KAAK,CAAA;QACrC,IAAI,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,SAAS,CAAA;QAC9C,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAA;YACvB,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;gBAChB,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2EAA2E,CAAC,CAAC,CAAA;YAC3G,CAAC;YACD,MAAM,eAAe,GAAG,eAAe,CAAC,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;YACxE,MAAM,UAAU,GAAyB,yBAAyB,CAAC,oBAAoB,CAAC,eAAe,CAAC,CAAA;YAExG,MAAM,GAAG,GAAG,UAAU,CAAC,GAAG,IAAI,sBAAsB,CAAC,EAAE,GAAG,EAAE,UAAU,CAAC,GAAG,CAAC,SAAS,EAAE,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,CAAC,CAAA;YAChI,IAAI,CAAC,GAAG,EAAE,CAAC;gBACT,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2CAA2C,CAAC,CAAC,CAAA;YAC3E,CAAC;YACD,SAAS,GAAG,GAAG,CAAA;QACjB,CAAC;QACD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,cAAc,CAAC;YACrD,SAAS,EAAE,GAAG,CAAC,IAAM,CAAC,KAAK;YAC3B,IAAI,EAAE,QAAQ,CAAC,KAAK,EAAE,QAAQ,CAAC,IAAI,CAAC;YACpC,QAAQ,EAAE,OAAO;YACjB,MAAM,EAAE,SAAW;SACpB,CAAC,CAAA;QACF,OAAO,UAAU,CAAC,MAAM,EAAE,QAAQ,CAAC,IAAI,CAAC,CAAA;IAC1C,CAAC;IAED,KAAK,CAAC,YAAY,CAChB,KAA8B,EAC9B,OAA+B,EAC/B,cAAiC;QAEjC,MAAM,aAAa,GAAG,KAAK,EACzB,GAA4B,EAI3B,EAAE;YACH,IAAI,cAAc,IAAI,CAAC,CAAC,GAAG,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,CAAC,EAAE,CAAC;gBACjD,yHAAyH;gBACzH,OAAO,OAAO,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC,CAAA;YACrF,CAAC;YACD,2JAA2J;YAC3J,UAAU,GAAG,GAAG,CAAC,CAAC,CAAC,yBAAyB,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAChE,IAAI,SAA0B,CAAA;YAC9B,IAAI,UAAU,EAAE,CAAC;gBACf,MAAM,IAAI,GAAG,MAAM,kBAAkB,CAAC,UAAU,CAAC,CAAA;gBACjD,SAAS,GAAG,IAAI,CAAC,YAAY,CAAA;YAC/B,CAAC;YACD,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,CAAA;QAClC,CAAC,CAAA;QAED,MAAM,WAAW,GAAG,yBAAyB,CAAC,aAAa,CAAC,OAAO,CAAC,CAAA;QAEpE,IAAI,WAAW,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;YACxB,MAAM,KAAK,CAAC,oCAAoC,CAAC,CAAA;QACnD,CAAC;aAAM,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,KAAK,EAAE,CAAC;YACjC,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oDAAoD,CAAC,CAAC,CAAA;QACpF,CAAC;QACD,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,EAAE,CAAA,CAAC,wEAAwE;QACzG,MAAM,OAAO,GAAG,SAAS,CAAC,eAAe,CAAC,GAAG,CAAA;QAC7C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,iCAAiC,CAAC,CAAC,CAAA;QACjE,CAAC;QAED,IAAI,UAAmC,CAAA;QACvC,IAAI,aAAsC,CAAA;QAC1C,IAAI,GAAG,GAAG,WAAW,EAAE,GAAG,IAAI,SAAS,CAAC,eAAe,CAAC,GAAG,IAAI,SAAS,CAAC,iBAAiB,EAAE,GAAG,CAAA;QAC/F,8HAA8H;QAC9H,MAAM,GAAG,GAAG,WAAW,EAAE,GAAG,EAAE,uBAAuB,EAAE,IAAI,SAAS,CAAC,eAAe,EAAE,OAAO,IAAI,SAAS,CAAC,iBAAiB,EAAE,OAAO,CAAA;QACrI,IAAI,CAAC,WAAW,IAAI,CAAC,WAAW,EAAE,GAAG,IAAI,WAAW,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;YACnE,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,GAAG,CAAC,CAAA;YAC3C,aAAa,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,yBAAyB,CAAC,SAAS,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;YAC5G,UAAU,GAAG,UAAU,CAAC,UAAU,CAAA;QACpC,CAAC;QACD,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,IAAI,CAAC,WAAW,EAAE,GAAG,EAAE,CAAC;gBACtB,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,wFAAwF,CAAC,CAAC,CAAA;YACxH,CAAC;YACD,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;gBACjB,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC,cAAc,CAAC,KAAK,CAAC,CAAA;YAC7C,CAAC;YACD,aAAa,GAAG,WAAW,CAAC,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,GAAG,CAAC,CAAA;QAC7D,CAAC;QAED,MAAM,iBAAiB,GAAG,IAAI,OAAO,CACnC,GAAG,EACH,aAAa,EACb,WAAW,CAAC,IAAI,EAChB,WAAW,CAAC,aAAa,EACzB,aAAa,CAAC,qBAAqB,EAAE,IAAI,WAAW,CAAC,kBAAkB,EACvE,GAAG,EACH,WAAW,CAAC,SAAS,EACrB,WAAW,CAAC,GAAG,EACf,WAAW,CAAC,OAAO,IAAI,aAAa,CAAC,MAAM,EAAE,CAC9C,CAAA;QACD,MAAM,sBAAsB,GAAG,KAAK,CAAC,cAAc,CAAC,iBAAiB,EAAE,kBAAkB,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAA;QACnH,MAAM,GAAG,GAAG,yBAAyB,CAAC,SAAS,CAAC,iBAAiB,CAAC,GAAI,CAAC,CAAC,SAAS,EAAO,CAAA;QACxF,MAAM,KAAK,GAAG,MAAM,kBAAkB,CAAC;YACrC,IAAI,EAAE,GAAG,CAAC,UAAU,CAAC,sBAAsB,CAAC,cAAc,EAAE,WAAW,CAAC;YACxE,SAAS,EAAE,GAAG,CAAC,UAAU,CAAC,SAAS,CAAC,SAAS,EAAE,WAAW,CAAC;YAC3D,GAAG;SACJ,CAAC,CAAA;QAEF,OAAO;YACL,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,KAAK,EAAE,CAAC,KAAK;YACb,OAAO,EAAE,iBAAiB,UAAU,CAAC,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,SAAS,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,OAAO;YACzG,OAAO,EAAE,iBAAiB;SACoB,CAAA;IAClD,CAAC;IAED,qBAAqB,CACnB,OAAyC;QAEzC,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;YAChB,OAAO,OAAO,CAAC,OAAO,CAAC,yBAAyB,CAAC,iBAAiB,CAAC,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC,CAAA;QAC3F,CAAC;QACD,OAAO,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,iGAAiG,CAAC,CAAC,CAAA;IACjI,CAAC;CACF;AAED;;;;;;GAMG;AACH,MAAM,OAAO,mBAAmB;IACtB,aAAa,CAAgB;IAErC,YAAY,YAA4B;QACtC,IAAI,CAAC,eAAe,CAAC,YAAY,CAAC,CAAA;IACpC,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,sBAAsB,CAAC,EAC3B,KAAK,EACL,YAAY,GAAG,IAAI,CAAC,eAAe,EAAE,EACrC,gBAAgB,EAChB,IAAI,GACuB;QAC3B,OAAO,MAAM,4BAA4B,CAAC;YACxC,KAAK;YACL,YAAY;YACZ,gBAAgB;YAChB,IAAI;SACL,CAAC,CAAA;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,wBAAwB,CAC5B,QAA+B,EAC/B,QAA4B,EAC5B,YAAgC,EAChC,mBAAyD,EACzD,gBAA6C;QAE7C,MAAM,cAAc,GAAG,gBAAgB,IAAI,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC,aAAa,EAAE,CAAA;QACvF,IAAI,KAAK,GAA+B,EAAE,CAAA;QAC1C,IAAI,QAAQ,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpC,KAAK,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAA;QACrD,CAAC;QACD,IAAI,QAAQ,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpC,KAAK,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;QACxC,CAAC;QACD,MAAM,MAAM,GAAG,MAAM,4BAA4B,CAAC;YAChD,KAAK,EAAE,KAAK,EAAE,0CAA0C;YACxD,YAAY,EAAE,YAAY,IAAI,IAAI,CAAC,eAAe,EAAE;YACpD,gBAAgB,EAAE,IAAI,IAAI,CAAC,cAAc,CAAC,cAAc,EAAE,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC;YAC5E,IAAI,EAAE,EAAE,sBAAsB,EAAE,IAAI,EAAE;SACvC,CAAC,CAAA;QAEF,MAAM,IAAI,GAAgC,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,MAAM,CAAC,gBAAgB,CAAC,MAAM,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QAE3I,OAAO;YACL,SAAS,EAAE,IAAI,EAAE,YAAuB,EAAE,QAAQ;YAClD,kBAAkB,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG;YAC3C,IAAI,EAAE,OAAO;YACb,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,gBAAgB,EAAE,cAAc;SACU,CAAA;IAC9C,CAAC;IAED,eAAe,GAAG,CAAC,iBAAiC,EAAE,EAAE;QACtD,IAAI,CAAC,aAAa,GAAG,iBAAiB,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE;YACnD,IAAI,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;gBACjC,MAAM;gBACN,OAAO,IAAI,CAAA;YACb,CAAC;YACD,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAA;QACvB,CAAC,CAAC,CAAA;IACJ,CAAC,CAAA;IAED,eAAe,GAAG,GAAG,EAAE,CAAC,IAAI,CAAC,aAAa,CAAA;CAC3C;AAED,MAAM,mBAAmB,GAAG,GAAG,EAAE;IAC/B,IAAI,OAAO,IAAI,KAAK,WAAW,EAAE,CAAC;QAChC,IAAI,QAAQ,IAAI,IAAI,EAAE,CAAC;YACrB,IAAI,UAAU,GAAG,WAAW,CAAA;YAC5B,IAAI,cAAc,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAClC,UAAU,GAAG,QAAQ,CAAA;YACvB,CAAC;YACD,aAAa;YACb,SAAS,CAAC,UAAU,EAAE,IAAI,YAAY,CAAC,EAAE,IAAI,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC,CAAA;QAC/E,CAAC;IACH,CAAC;SAAM,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,WAAW,IAAI,MAAM,EAAE,CAAC;QAClE,MAAM,IAAI,GAAG,YAAY,CAAA;QACzB,MAAM,UAAU,GAAG,MAAM,CAAC,SAAS,CAAA;QACnC,aAAa;QACb,SAAS,CAAC,IAAI,EAAE,IAAI,YAAY,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC,CAAC,CAAA;IACjE,CAAC;SAAM,CAAC;QACN,aAAa;QACb,MAAM,IAAI,GAAG,QAAQ,CAAA;QACrB,SAAS,CAAC,IAAI,EAAE,IAAI,YAAY,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAA;IAC1E,CAAC;AACH,CAAC,CAAA;AAED,mBAAmB,EAAE,CAAA;AAErB,wIAAwI;AACxI,gBAAgB,CAAC,oBAAoB,CAAC,IAAI,iBAAiB,EAAE,CAAC,CAAA;AAC9D,gBAAgB,CAAC,cAAc,CAAC,IAAI,mBAAmB,EAAE,CAAC,CAAA"}

package/dist/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAEA,eAAO,MAAM,MAAM,sDAAuC,CAAA;AAC1D,QAAA,MAAM,MAAM,KAAmC,CAAA;AAC/C,OAAO,EAAE,MAAM,EAAE,CAAA;AACjB,OAAO,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAA;AAC7D,cAAc,kBAAkB,CAAA;AAChC,cAAc,aAAa,CAAA"}

package/dist/types/ImDLMdoc.d.ts

@@ -1,75 +0,0 @@
-import { com } from '@sphereon/kmp-mdoc-core';
-import { PresentationDefinitionV2, PresentationSubmission } from '@sphereon/pex-models';
-import { ISphereonKeyManager } from '@sphereon/ssi-sdk-ext.key-manager';
-import { CertificateInfo, SubjectAlternativeGeneralName, X509ValidationResult } from '@sphereon/ssi-sdk-ext.x509-utils';
-import { IAgentContext, IDIDManager, IPluginMethodMap, IResolver } from '@veramo/core';
-import CoseSign1Json = com.sphereon.crypto.cose.CoseSign1Json;
-import ICoseKeyCbor = com.sphereon.crypto.cose.ICoseKeyCbor;
-import ICoseKeyJson = com.sphereon.crypto.cose.ICoseKeyJson;
-import IKeyInfo = com.sphereon.crypto.IKeyInfo;
-import IVerifyResults = com.sphereon.crypto.generic.IVerifyResults;
-import IVerifySignatureResult = com.sphereon.crypto.generic.IVerifySignatureResult;
-import DocumentJson = com.sphereon.mdoc.data.device.DocumentJson;
-import DocumentCbor = com.sphereon.mdoc.data.device.DocumentCbor;
-export interface ImDLMdoc extends IPluginMethodMap {
-    x509VerifyCertificateChain(args: VerifyCertificateChainArgs, context: IRequiredContext): Promise<X509ValidationResult>;
-    x509GetCertificateInfo(args: GetX509CertificateInfoArgs, context: IRequiredContext): Promise<CertificateInfo[]>;
-    mdocVerifyIssuerSigned(args: MdocVerifyIssuerSignedArgs, context: IRequiredContext): Promise<IVerifySignatureResult<KeyType>>;
-    mdocOid4vpHolderPresent(args: MdocOid4vpPresentArgs, context: IRequiredContext): Promise<MdocOid4VPPresentationAuth>;
-    mdocOid4vpRPVerify(args: MdocOid4vpRPVerifyArgs, _context: IRequiredContext): Promise<MdocOid4vpRPVerifyResult>;
-}
-export type IRequiredContext = IAgentContext<ISphereonKeyManager & IDIDManager & IResolver>;
-export type VerifyCertificateChainArgs = {
-    chain: Array<string | Uint8Array>;
-    trustAnchors?: string[];
-    verificationTime?: Date;
-    opts?: {
-        allowNoTrustAnchorsFound?: boolean;
-        trustRootWhenNoAnchors?: boolean;
-        allowSingleNoCAChainElement?: boolean;
-        blindlyTrustedAnchors?: string[];
-    };
-};
-export type GetX509CertificateInfoArgs = {
-    certificates: (string | Uint8Array)[];
-    sanTypeFilter?: SubjectAlternativeGeneralName | SubjectAlternativeGeneralName[];
-};
-export type KeyType = ICoseKeyJson;
-export type MdocVerifyIssuerSignedArgs = {
-    input: CoseSign1Json;
-    keyInfo?: IKeyInfo<KeyType>;
-    requireX5Chain?: boolean;
-};
-export interface MdocOid4VPPresentationAuth {
-    vp_token: string;
-    presentation_submission: PresentationSubmission;
-}
-export interface MdocOid4vpPresentArgs {
-    mdocs: DocumentCbor[];
-    mdocHolderNonce?: string;
-    presentationDefinition: PresentationDefinitionV2;
-    trustAnchors?: string[];
-    verifications?: VerificationOptions;
-    clientId: string;
-    responseUri: string;
-    authorizationRequestNonce: string;
-}
-export type VerificationOptions = {
-    allowExpiredDocuments?: boolean;
-    verificationTime?: Date;
-};
-export type DocumentVerifyResult = {
-    document: DocumentJson;
-    validations: IVerifyResults<ICoseKeyCbor>;
-};
-export type MdocOid4vpRPVerifyResult = {
-    error: boolean;
-    documents: Array<DocumentVerifyResult>;
-    presentation_submission: PresentationSubmission;
-};
-export interface MdocOid4vpRPVerifyArgs {
-    vp_token: string;
-    presentation_submission: PresentationSubmission;
-    trustAnchors?: string[];
-}
-//# sourceMappingURL=ImDLMdoc.d.ts.map

package/dist/types/ImDLMdoc.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ImDLMdoc.d.ts","sourceRoot":"","sources":["../../src/types/ImDLMdoc.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,GAAG,EAAE,MAAM,yBAAyB,CAAA;AAC7C,OAAO,EAAE,wBAAwB,EAAE,sBAAsB,EAAE,MAAM,sBAAsB,CAAA;AACvF,OAAO,EAAE,mBAAmB,EAAE,MAAM,mCAAmC,CAAA;AACvE,OAAO,EAAE,eAAe,EAAE,6BAA6B,EAAE,oBAAoB,EAAE,MAAM,kCAAkC,CAAA;AACvH,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,gBAAgB,EAAE,SAAS,EAAE,MAAM,cAAc,CAAA;AACtF,OAAO,aAAa,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,aAAa,CAAA;AAC7D,OAAO,YAAY,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAA;AAC3D,OAAO,YAAY,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAA;AAC3D,OAAO,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAA;AAC9C,OAAO,cAAc,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,cAAc,CAAA;AAClE,OAAO,sBAAsB,GAAG,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,sBAAsB,CAAA;AAClF,OAAO,YAAY,GAAG,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAA;AAChE,OAAO,YAAY,GAAG,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAA;AAEhE,MAAM,WAAW,QAAS,SAAQ,gBAAgB;IAEhD,0BAA0B,CAAC,IAAI,EAAE,0BAA0B,EAAE,OAAO,EAAE,gBAAgB,GAAG,OAAO,CAAC,oBAAoB,CAAC,CAAA;IAEtH,sBAAsB,CAAC,IAAI,EAAE,0BAA0B,EAAE,OAAO,EAAE,gBAAgB,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC,CAAA;IAE/G,sBAAsB,CAAC,IAAI,EAAE,0BAA0B,EAAE,OAAO,EAAE,gBAAgB,GAAG,OAAO,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC,CAAA;IAE7H,uBAAuB,CAAC,IAAI,EAAE,qBAAqB,EAAE,OAAO,EAAE,gBAAgB,GAAG,OAAO,CAAC,0BAA0B,CAAC,CAAA;IAEpH,kBAAkB,CAAC,IAAI,EAAE,sBAAsB,EAAE,QAAQ,EAAE,gBAAgB,GAAG,OAAO,CAAC,wBAAwB,CAAC,CAAA;CAChH;AAED,MAAM,MAAM,gBAAgB,GAAG,aAAa,CAAC,mBAAmB,GAAG,WAAW,GAAG,SAAS,CAAC,CAAA;AAC3F,MAAM,MAAM,0BAA0B,GAAG;IACvC,KAAK,EAAE,KAAK,CAAC,MAAM,GAAG,UAAU,CAAC,CAAA;IACjC,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;IACvB,gBAAgB,CAAC,EAAE,IAAI,CAAA;IACvB,IAAI,CAAC,EAAE;QAEL,wBAAwB,CAAC,EAAE,OAAO,CAAA;QAElC,sBAAsB,CAAC,EAAE,OAAO,CAAA;QAEhC,2BAA2B,CAAC,EAAE,OAAO,CAAA;QAGrC,qBAAqB,CAAC,EAAE,MAAM,EAAE,CAAA;KACjC,CAAA;CACF,CAAA;AAED,MAAM,MAAM,0BAA0B,GAAG;IACvC,YAAY,EAAE,CAAC,MAAM,GAAG,UAAU,CAAC,EAAE,CAAA;IACrC,aAAa,CAAC,EAAE,6BAA6B,GAAG,6BAA6B,EAAE,CAAA;CAChF,CAAA;AAED,MAAM,MAAM,OAAO,GAAG,YAAY,CAAA;AAClC,MAAM,MAAM,0BAA0B,GAAG;IACvC,KAAK,EAAE,aAAa,CAAA;IACpB,OAAO,CAAC,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAA;IAC3B,cAAc,CAAC,EAAE,OAAO,CAAA;CACzB,CAAA;AAED,MAAM,WAAW,0BAA0B;IACzC,QAAQ,EAAE,MAAM,CAAA;IAChB,uBAAuB,EAAE,sBAAsB,CAAA;CAChD;AAED,MAAM,WAAW,qBAAqB;IACpC,KAAK,EAAE,YAAY,EAAE,CAAA;IACrB,eAAe,CAAC,EAAE,MAAM,CAAA;IACxB,sBAAsB,EAAE,wBAAwB,CAAA;IAChD,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;IACvB,aAAa,CAAC,EAAE,mBAAmB,CAAA;IACnC,QAAQ,EAAE,MAAM,CAAA;IAChB,WAAW,EAAE,MAAM,CAAA;IACnB,yBAAyB,EAAE,MAAM,CAAA;CAClC;AAED,MAAM,MAAM,mBAAmB,GAAG;IAChC,qBAAqB,CAAC,EAAE,OAAO,CAAA;IAC/B,gBAAgB,CAAC,EAAE,IAAI,CAAA;CACxB,CAAA;AAED,MAAM,MAAM,oBAAoB,GAAG;IAAE,QAAQ,EAAE,YAAY,CAAC;IAAC,WAAW,EAAE,cAAc,CAAC,YAAY,CAAC,CAAA;CAAE,CAAA;AACxG,MAAM,MAAM,wBAAwB,GAAG;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,SAAS,EAAE,KAAK,CAAC,oBAAoB,CAAC,CAAC;IAAC,uBAAuB,EAAE,sBAAsB,CAAA;CAAE,CAAA;AAElJ,MAAM,WAAW,sBAAsB;IACrC,QAAQ,EAAE,MAAM,CAAA;IAChB,uBAAuB,EAAE,sBAAsB,CAAA;IAC/C,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;CACxB"}

package/dist/types/ImDLMdoc.js

@@ -1,2 +0,0 @@
-export {};
-//# sourceMappingURL=ImDLMdoc.js.map

package/dist/types/ImDLMdoc.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"ImDLMdoc.js","sourceRoot":"","sources":["../../src/types/ImDLMdoc.ts"],"names":[],"mappings":""}