@sphereon/ssi-sdk.mdl-mdoc 0.33.1-feature.vcdm2.tsup.32 → 0.33.1-next.3

package/dist/index.d.cts

@@ -1,223 +0,0 @@
-import * as _sphereon_ssi_types from '@sphereon/ssi-types';
-import { IPluginMethodMap, IAgentContext, IDIDManager, IResolver, IAgentPlugin } from '@veramo/core';
-import * as _sphereon_kmp_mdoc_core from '@sphereon/kmp-mdoc-core';
-import { com, Nullable } from '@sphereon/kmp-mdoc-core';
-import { PresentationDefinitionV2, PresentationSubmission } from '@sphereon/pex-models';
-import { ISphereonKeyManager } from '@sphereon/ssi-sdk-ext.key-manager';
-import { X509ValidationResult, SubjectAlternativeGeneralName, CertificateInfo } from '@sphereon/ssi-sdk-ext.x509-utils';
-
-type IKey$1 = com.sphereon.crypto.IKey;
-type CoseSign1Json = com.sphereon.crypto.cose.CoseSign1Json;
-type CoseSign1Cbor<Any> = com.sphereon.crypto.cose.CoseSign1Cbor<Any>;
-type ICoseKeyCbor$1 = com.sphereon.crypto.cose.ICoseKeyCbor;
-type ICoseKeyJson = com.sphereon.crypto.cose.ICoseKeyJson;
-type IKeyInfo<KT extends IKey$1 = IKey$1> = com.sphereon.crypto.IKeyInfo<KT>;
-type IVerifyResults<KT extends IKey$1> = com.sphereon.crypto.generic.IVerifyResults<KT>;
-type IVerifySignatureResult<KT extends IKey$1> = com.sphereon.crypto.generic.IVerifySignatureResult<KT>;
-type DocumentJson = com.sphereon.mdoc.data.device.DocumentJson;
-type DocumentCbor = com.sphereon.mdoc.data.device.DocumentCbor;
-declare const CborByteString: typeof com.sphereon.cbor.CborByteString;
-declare const CoseKeyCbor: typeof com.sphereon.crypto.cose.CoseKeyCbor;
-declare const CoseCryptoServiceJS: typeof com.sphereon.crypto.CoseCryptoServiceJS;
-declare const CoseJoseKeyMappingService: {
-    toJoseJwk(key: com.sphereon.crypto.IKey): com.sphereon.crypto.jose.Jwk;
-    toCoseKey(key: com.sphereon.crypto.IKey): com.sphereon.crypto.cose.CoseKeyCbor;
-    getJoseX5c(key: com.sphereon.crypto.IKey): _sphereon_kmp_mdoc_core.Nullable<Array<string>>;
-    toJoseX5c(x5c: _sphereon_kmp_mdoc_core.Nullable<Array<any>>): _sphereon_kmp_mdoc_core.Nullable<Array<string>>;
-    toJwkKeyInfo(keyInfo: com.sphereon.crypto.IKeyInfo<any>): com.sphereon.crypto.KeyInfo<com.sphereon.crypto.jose.Jwk>;
-    toResolvedJwkKeyInfo(resolvedKeyInfo: com.sphereon.crypto.IResolvedKeyInfo<any>): com.sphereon.crypto.ResolvedKeyInfo<com.sphereon.crypto.jose.Jwk>;
-    toCoseKeyInfo(keyInfo: com.sphereon.crypto.IKeyInfo<any>): com.sphereon.crypto.KeyInfo<com.sphereon.crypto.cose.CoseKeyCbor>;
-    toResolvedCoseKeyInfo(resolvedKeyInfo: com.sphereon.crypto.IResolvedKeyInfo<any>): com.sphereon.crypto.ResolvedKeyInfo<com.sphereon.crypto.cose.CoseKeyCbor>;
-    isResolvedKeyInfo(keyInfo: com.sphereon.crypto.IKeyInfo<any>): boolean;
-    toResolvedKeyInfo<KeyType extends com.sphereon.crypto.IKey>(keyInfo: com.sphereon.crypto.IKeyInfo<any>, key?: _sphereon_kmp_mdoc_core.Nullable<KeyType>): com.sphereon.crypto.ResolvedKeyInfo<KeyType>;
-    toResolvedKeyInfoWithResolver<KeyType extends com.sphereon.crypto.IKey>(keyInfo: com.sphereon.crypto.IKeyInfo<KeyType>, resolveCallback: _sphereon_kmp_mdoc_core.Nullable<(p0: com.sphereon.crypto.IKeyInfo<KeyType>) => com.sphereon.crypto.ResolvedKeyInfo<KeyType>>): com.sphereon.crypto.ResolvedKeyInfo<KeyType>;
-    getCoseX5chain(key: com.sphereon.crypto.IKey): _sphereon_kmp_mdoc_core.Nullable<com.sphereon.cbor.CborArray<com.sphereon.cbor.CborByteString>>;
-    toCoseX5chain(x5c: _sphereon_kmp_mdoc_core.Nullable<Array<any>>): _sphereon_kmp_mdoc_core.Nullable<com.sphereon.cbor.CborArray<com.sphereon.cbor.CborByteString>>;
-};
-declare const KeyInfo: typeof com.sphereon.crypto.KeyInfo;
-declare const DateTimeUtils: typeof com.sphereon.kmp.DateTimeUtils;
-declare const decodeFrom: typeof com.sphereon.kmp.decodeFrom;
-declare const encodeTo: typeof com.sphereon.kmp.encodeTo;
-declare const Encoding: typeof com.sphereon.kmp.Encoding;
-declare const MdocValidations: {
-    fromDocumentAsync(document: com.sphereon.mdoc.data.device.DocumentCbor, keyInfo?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.crypto.IKeyInfo<com.sphereon.crypto.cose.ICoseKeyCbor>>, trustedCerts?: _sphereon_kmp_mdoc_core.Nullable<Array<string>>, verificationTime?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.kmp.LocalDateTimeKMP>, allowExpiredDocuments?: _sphereon_kmp_mdoc_core.Nullable<boolean>, dateTimeUtils?: com.sphereon.kmp.DateTimeUtils, timeZoneId?: _sphereon_kmp_mdoc_core.Nullable<string>, clockSkewAllowedInSec?: number): Promise<com.sphereon.crypto.generic.IVerifyResults<com.sphereon.crypto.cose.ICoseKeyCbor>>;
-    fromIssuerAuthAsync(issuerAuth: com.sphereon.crypto.cose.CoseSign1Cbor<com.sphereon.mdoc.data.mso.MobileSecurityObjectCbor>, keyInfo?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.crypto.IKeyInfo<com.sphereon.crypto.cose.ICoseKeyCbor>>, trustedCerts?: _sphereon_kmp_mdoc_core.Nullable<Array<string>>, verificationTime?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.kmp.LocalDateTimeKMP>, allowExpiredDocuments?: _sphereon_kmp_mdoc_core.Nullable<boolean>, dateTimeUtils?: com.sphereon.kmp.DateTimeUtils, timeZoneId?: _sphereon_kmp_mdoc_core.Nullable<string>, clockSkewAllowedInSec?: number): Promise<com.sphereon.crypto.generic.IVerifyResults<com.sphereon.crypto.cose.ICoseKeyCbor>>;
-    withParamsAsync(issuerAuth?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.crypto.cose.CoseSign1Cbor<com.sphereon.mdoc.data.mso.MobileSecurityObjectCbor>>, document?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.mdoc.data.device.DocumentCbor>, mdocVerificationTypes?: _sphereon_kmp_mdoc_core.kotlin.collections.KtSet<com.sphereon.mdoc.data.MdocVerification>, keyInfo?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.crypto.IKeyInfo<com.sphereon.crypto.cose.ICoseKeyCbor>>, trustedCerts?: _sphereon_kmp_mdoc_core.Nullable<Array<string>>, verificationTime?: _sphereon_kmp_mdoc_core.Nullable<com.sphereon.kmp.LocalDateTimeKMP>, allowExpiredDocuments?: _sphereon_kmp_mdoc_core.Nullable<boolean>, dateTimeUtils?: com.sphereon.kmp.DateTimeUtils, timeZoneId?: _sphereon_kmp_mdoc_core.Nullable<string>, clockSkewAllowedInSec?: number): Promise<com.sphereon.crypto.generic.IVerifyResults<com.sphereon.crypto.cose.ICoseKeyCbor>>;
-};
-declare const MdocOid4vpService: typeof com.sphereon.mdoc.oid4vp.MdocOid4vpServiceJs;
-declare const Jwk: typeof com.sphereon.crypto.jose.Jwk;
-type DocumentDescriptorMatchResult = com.sphereon.mdoc.oid4vp.DocumentDescriptorMatchResult;
-type IOid4VPPresentationDefinition = com.sphereon.mdoc.oid4vp.IOid4VPPresentationDefinition;
-declare const Oid4VPPresentationSubmission: typeof com.sphereon.mdoc.oid4vp.Oid4VPPresentationSubmission;
-interface ImDLMdoc extends IPluginMethodMap {
-    x509VerifyCertificateChain(args: VerifyCertificateChainArgs, context: IRequiredContext): Promise<X509ValidationResult>;
-    x509GetCertificateInfo(args: GetX509CertificateInfoArgs, context: IRequiredContext): Promise<CertificateInfo[]>;
-    mdocVerifyIssuerSigned(args: MdocVerifyIssuerSignedArgs, context: IRequiredContext): Promise<IVerifySignatureResult<KeyType>>;
-    mdocOid4vpHolderPresent(args: MdocOid4vpPresentArgs, context: IRequiredContext): Promise<MdocOid4VPPresentationAuth>;
-    mdocOid4vpRPVerify(args: MdocOid4vpRPVerifyArgs, _context: IRequiredContext): Promise<MdocOid4vpRPVerifyResult>;
-}
-type IRequiredContext = IAgentContext<ISphereonKeyManager & IDIDManager & IResolver>;
-type VerifyCertificateChainArgs = {
-    chain: Array<string | Uint8Array>;
-    trustAnchors?: string[];
-    verificationTime?: Date;
-    opts?: {
-        allowNoTrustAnchorsFound?: boolean;
-        trustRootWhenNoAnchors?: boolean;
-        allowSingleNoCAChainElement?: boolean;
-        blindlyTrustedAnchors?: string[];
-    };
-};
-type GetX509CertificateInfoArgs = {
-    certificates: (string | Uint8Array)[];
-    sanTypeFilter?: SubjectAlternativeGeneralName | SubjectAlternativeGeneralName[];
-};
-type KeyType = ICoseKeyJson;
-type MdocVerifyIssuerSignedArgs = {
-    input: CoseSign1Json;
-    keyInfo?: IKeyInfo<KeyType>;
-    requireX5Chain?: boolean;
-};
-interface MdocOid4VPPresentationAuth {
-    vp_token: string;
-    presentation_submission: PresentationSubmission;
-}
-interface MdocOid4vpPresentArgs {
-    mdocs: DocumentCbor[];
-    mdocHolderNonce?: string;
-    presentationDefinition: PresentationDefinitionV2;
-    trustAnchors?: string[];
-    verifications?: VerificationOptions;
-    clientId: string;
-    responseUri: string;
-    authorizationRequestNonce: string;
-}
-type VerificationOptions = {
-    allowExpiredDocuments?: boolean;
-    verificationTime?: Date;
-};
-type DocumentVerifyResult = {
-    document: DocumentJson;
-    validations: IVerifyResults<ICoseKeyCbor$1>;
-};
-type MdocOid4vpRPVerifyResult = {
-    error: boolean;
-    documents: Array<DocumentVerifyResult>;
-    presentation_submission: PresentationSubmission;
-};
-interface MdocOid4vpRPVerifyArgs {
-    vp_token: string;
-    presentation_submission: PresentationSubmission;
-    trustAnchors?: string[];
-}
-
-declare const mdocSupportMethods: Array<string>;
-/**
- * The MDLMdoc class implements the IAgentPlugin interface, providing methods for
- * verification and information retrieval related to X.509 certificates and mDL (mobile
- * driver's license) documents.
- */
-declare class MDLMdoc implements IAgentPlugin {
-    readonly schema: any;
-    readonly methods: ImDLMdoc;
-    private readonly trustAnchors;
-    private opts;
-    constructor(args?: {
-        trustAnchors?: string[];
-        opts?: {
-            trustRootWhenNoAnchors?: boolean;
-            allowSingleNoCAChainElement?: boolean;
-            blindlyTrustedAnchors?: string[];
-        };
-    });
-    /**
-     * Processes and verifies the provided mdoc, generates device response and presentation submission tokens.
-     *
-     * @param {MdocOid4vpPresentArgs} args - An object containing arguments for mdoc oid4vp holder presentation.
-     * @param {IRequiredContext} _context - Required context for the operation.
-     * @return {Promise<MdocOid4VPPresentationAuth>} A promise that resolves to an object containing vp_token and presentation_submission.
-     */
-    private mdocOid4vpHolderPresent;
-    /**
-     * Verifies on the Relying Party (RP) side for mdoc (mobile document) OIDC4VP (OpenID Connect for Verifiable Presentations).
-     *
-     * @param {MdocOid4vpRPVerifyArgs} args - The arguments required for verification, including the vp_token, presentation_submission, and trustAnchors.
-     * @param {IRequiredContext} _context - The required context for this method.
-     * @return {Promise<MdocOid4vpRPVerifyResult>} - A promise that resolves to an object containing error status,
-     * validated documents, and the original presentation submission.
-     */
-    private mdocOid4vpRPVerify;
-    /**
-     * Verifies the issuer-signed Mobile Document (mDoc) using the provided arguments and context.
-     *
-     * @param {MdocVerifyIssuerSignedArgs} args - The arguments required for verification, including input and key information.
-     * @param {IRequiredContext} context - The context encompassing necessary dependencies and configurations.
-     * @return {Promise<IVerifySignatureResult<KeyType>>} A promise that resolves to the result of the signature verification, including key information if available.
-     */
-    private mdocVerifyIssuerSigned;
-    /**
-     * Verifies an X.509 certificate chain against a set of trust anchors.
-     *
-     * @param {VerifyCertificateChainArgs} args - The arguments required for verifying the certificate chain.
-     * This includes the certificate chain to be verified and any additional trust anchors to be used.
-     * @param {IRequiredContext} _context - The context required for verification, including necessary dependencies and settings.
-     * @return {Promise<X509ValidationResult>} A promise that resolves to the result of the validation process, indicating the success or failure of the certificate chain verification.
-     */
-    private x509VerifyCertificateChain;
-    /**
-     * Extracts information from a list of X509 certificates.
-     *
-     * @param {GetX509CertificateInfoArgs} args - Arguments required to retrieve certificate information,
-     * including the certificates and optional Subject Alternative Name (SAN) type filter.
-     * @param {IRequiredContext} context - The context required for the operation, which may include
-     * logging, configuration, and other operational details.
-     * @return {Promise<CertificateInfo[]>} A promise that resolves with an array of certificate
-     * information objects, each containing details extracted from individual certificates.
-     */
-    private x509GetCertificateInfo;
-}
-
-type ICoseKeyCbor = com.sphereon.crypto.cose.ICoseKeyCbor;
-type ToBeSignedCbor = com.sphereon.crypto.cose.ToBeSignedCbor;
-type ICoseCryptoCallbackJS = com.sphereon.crypto.ICoseCryptoCallbackJS;
-type IKey = com.sphereon.crypto.IKey;
-type IX509ServiceJS = com.sphereon.crypto.IX509ServiceJS;
-type X509VerificationProfile = com.sphereon.crypto.X509VerificationProfile;
-type LocalDateTimeKMP = com.sphereon.kmp.LocalDateTimeKMP;
-declare class CoseCryptoService implements ICoseCryptoCallbackJS {
-    private context?;
-    constructor(context?: IRequiredContext | undefined);
-    setContext(context: IRequiredContext): void;
-    signAsync(input: ToBeSignedCbor, requireX5Chain: Nullable<boolean>): Promise<Int8Array>;
-    verify1Async<CborType>(input: com.sphereon.crypto.cose.CoseSign1Cbor<CborType>, keyInfo: com.sphereon.crypto.IKeyInfo<ICoseKeyCbor>, requireX5Chain: Nullable<boolean>): Promise<com.sphereon.crypto.generic.IVerifySignatureResult<ICoseKeyCbor>>;
-    resolvePublicKeyAsync<KT extends com.sphereon.crypto.IKey>(keyInfo: com.sphereon.crypto.IKeyInfo<KT>): Promise<com.sphereon.crypto.IResolvedKeyInfo<KT>>;
-}
-/**
- * This class can be used for X509 validations.
- * Either have an instance per trustedCerts and verification invocation or use a single instance and provide the trusted certs in the method argument
- *
- * The class is also registered with the low-level mDL/mdoc Kotlin Multiplatform library
- * Next to the specific function for the library it exports a more powerful version of the same verification method as well
- */
-declare class X509CallbackService implements IX509ServiceJS {
-    private _trustedCerts?;
-    constructor(trustedCerts?: Array<string>);
-    /**
-     * A more powerful version of the method below. Allows to verify at a specific time and returns more information
-     * @param chain
-     * @param trustAnchors
-     * @param verificationTime
-     */
-    verifyCertificateChain({ chain, trustAnchors, verificationTime, opts, }: VerifyCertificateChainArgs): Promise<X509ValidationResult>;
-    /**
-     * This method is the implementation used within the mDL/Mdoc library
-     */
-    verifyCertificateChainJS<KeyType extends IKey>(chainDER: Nullable<Int8Array[]>, chainPEM: Nullable<string[]>, trustedCerts: Nullable<string[]>, verificationProfile?: X509VerificationProfile | undefined, verificationTime?: Nullable<LocalDateTimeKMP>): Promise<com.sphereon.crypto.IX509VerificationResult<KeyType>>;
-    setTrustedCerts: (trustedCertsInPEM?: Array<string>) => void;
-    getTrustedCerts: () => string[] | undefined;
-}
-
-declare const logger: _sphereon_ssi_types.ISimpleLogger<unknown>;
-declare const schema: any;
-
-export { CborByteString, CoseCryptoService, CoseCryptoServiceJS, CoseJoseKeyMappingService, CoseKeyCbor, type CoseSign1Cbor, type CoseSign1Json, DateTimeUtils, type DocumentCbor, type DocumentDescriptorMatchResult, type DocumentJson, type DocumentVerifyResult, Encoding, type GetX509CertificateInfoArgs, type ICoseKeyCbor$1 as ICoseKeyCbor, type ICoseKeyJson, type IKey$1 as IKey, type IKeyInfo, type IOid4VPPresentationDefinition, type IRequiredContext, type IVerifyResults, type IVerifySignatureResult, type ImDLMdoc, Jwk, KeyInfo, type KeyType, MDLMdoc, type MdocOid4VPPresentationAuth, type MdocOid4vpPresentArgs, type MdocOid4vpRPVerifyArgs, type MdocOid4vpRPVerifyResult, MdocOid4vpService, MdocValidations, type MdocVerifyIssuerSignedArgs, Oid4VPPresentationSubmission, type VerificationOptions, type VerifyCertificateChainArgs, X509CallbackService, decodeFrom, encodeTo, logger, mdocSupportMethods, schema };