@sphereon/ssi-sdk.siopv2-oid4vp-op-auth 0.34.1-feature.FIDES.1.274 → 0.34.1-feature.IDK.11.49

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (20) hide show
  1. package/dist/index.cjs +1091 -608
  2. package/dist/index.cjs.map +1 -1
  3. package/dist/index.d.cts +112 -710
  4. package/dist/index.d.ts +112 -710
  5. package/dist/index.js +1046 -563
  6. package/dist/index.js.map +1 -1
  7. package/package.json +24 -24
  8. package/src/agent/DidAuthSiopOpAuthenticator.ts +145 -10
  9. package/src/index.ts +1 -2
  10. package/src/machine/Siopv2Machine.ts +5 -5
  11. package/src/services/Siopv2MachineService.ts +265 -189
  12. package/src/session/OID4VP.ts +300 -310
  13. package/src/session/OpSession.ts +114 -22
  14. package/src/session/functions.ts +8 -1
  15. package/src/types/IDidAuthSiopOpAuthenticator.ts +59 -6
  16. package/src/types/identifier/index.ts +4 -0
  17. package/src/types/machine/index.ts +1 -1
  18. package/src/types/siop-service/index.ts +10 -12
  19. package/src/utils/CredentialUtils.ts +40 -2
  20. package/src/utils/dcql.ts +19 -22
package/dist/index.d.ts CHANGED
@@ -1,399 +1,29 @@
1
1
  import { TKeyType, IIdentifier, IAgentContext, IDIDManager, IResolver, IPluginMethodMap, IDataStoreORM, IKeyManager, ICredentialIssuer, ICredentialVerifier, TAgent, IAgentPlugin } from '@veramo/core';
2
- import { PresentationSignCallback, OPBuilder, OP, VerifiedAuthorizationRequest, URI, RPRegistrationMetadataPayload, ResponseMode, SupportedVersion, VerifyJwtCallback, DcqlResponseOpts } from '@sphereon/did-auth-siop';
2
+ import { PresentationSignCallback, OPBuilder, OP, VerifiedAuthorizationRequest, URI, PresentationDefinitionWithLocation, RPRegistrationMetadataPayload, ResponseMode, SupportedVersion, VerifyJwtCallback, DcqlResponseOpts, VPTokenLocation, VerifiablePresentationTypeFormat } from '@sphereon/did-auth-siop';
3
3
  import { CheckLinkedDomain, ResolveOpts } from '@sphereon/did-auth-siop-adapter';
4
4
  import { DIDDocument } from '@sphereon/did-uni-client';
5
+ import { SelectResults, VerifiablePresentationResult } from '@sphereon/pex';
5
6
  import { ManagedIdentifierOptsOrResult, IIdentifierResolution } from '@sphereon/ssi-sdk-ext.identifier-resolution';
6
7
  import { JwsPayload, IJwtService } from '@sphereon/ssi-sdk-ext.jwt-service';
7
8
  import { UniqueDigitalCredential, ICredentialStore } from '@sphereon/ssi-sdk.credential-store';
8
- import { ICredentialLocaleBranding, Party, DidAuthConfig, Identity } from '@sphereon/ssi-sdk.data-store-types';
9
+ import { CredentialRole, FindDigitalCredentialArgs, ICredentialLocaleBranding, Party, DidAuthConfig, Identity } from '@sphereon/ssi-sdk.data-store';
9
10
  import { IPDManager } from '@sphereon/ssi-sdk.pd-manager';
10
11
  import { ISDJwtPlugin } from '@sphereon/ssi-sdk.sd-jwt';
11
- import { HasherSync, PresentationSubmission, W3CVerifiablePresentation, OriginalVerifiableCredential } from '@sphereon/ssi-types';
12
+ import { HasherSync, OriginalVerifiableCredential, PresentationSubmission, W3CVerifiablePresentation } from '@sphereon/ssi-types';
12
13
  import { VerifyCallback } from '@sphereon/wellknown-dids-client';
13
14
  import { EventEmitter } from 'events';
14
15
  import { Interpreter, State, StateMachine, BaseActionObject, ServiceMap, ResolveTypegenMeta, TypegenDisabled } from 'xstate';
15
16
  import { IContactManager } from '@sphereon/ssi-sdk.contact-manager';
16
17
  import { IIssuanceBranding } from '@sphereon/ssi-sdk.issuance-branding';
17
- import { DcqlQuery, DcqlPresentation, DcqlCredential } from 'dcql';
18
+ import { DcqlQuery } from 'dcql';
18
19
  import { ICredentialValidation } from '@sphereon/ssi-sdk.credential-validation';
19
- import { JwtIssuer, JwtHeader, SigningAlgo } from '@sphereon/oid4vc-common';
20
20
  import { Format } from '@sphereon/pex-models';
21
+ import { ProofOptions, LinkHandlerAdapter } from '@sphereon/ssi-sdk.core';
22
+ import { JwtIssuer, JwtHeader, SigningAlgo } from '@sphereon/oid4vc-common';
21
23
  import { _ExtendedIKey } from '@veramo/utils';
22
24
  import { SupportedDidMethodEnum } from '@sphereon/ssi-sdk-ext.did-utils';
23
- import { LinkHandlerAdapter } from '@sphereon/ssi-sdk.core';
24
25
  import { IMachineStatePersistence, SerializableState } from '@sphereon/ssi-sdk.xstate-machine-persistence';
25
26
 
26
- var IDidAuthSiopOpAuthenticator$1 = {
27
- components: {
28
- schemas: {
29
- IGetSiopSessionArgs: {
30
- type: "object",
31
- properties: {
32
- sessionId: {
33
- type: "string"
34
- },
35
- additionalProperties: false
36
- },
37
- required: [
38
- "sessionId"
39
- ],
40
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.getSessionForSiop } "
41
- },
42
- IRegisterSiopSessionArgs: {
43
- type: "object",
44
- properties: {
45
- identifier: {
46
- type: "object",
47
- properties: {
48
- did: {
49
- type: "string"
50
- },
51
- alias: {
52
- type: "string"
53
- },
54
- provider: {
55
- type: "string"
56
- },
57
- controllerKeyId: {
58
- type: "string"
59
- },
60
- keys: {
61
- type: "array",
62
- items: {
63
- type: "object",
64
- properties: {
65
- additionalProperties: true
66
- }
67
- }
68
- },
69
- services: {
70
- type: "array",
71
- items: {
72
- type: "object",
73
- properties: {
74
- additionalProperties: true
75
- }
76
- }
77
- }
78
- },
79
- additionalProperties: false,
80
- required: [
81
- "did",
82
- "provider",
83
- "keys",
84
- "services"
85
- ]
86
- },
87
- sessionId: {
88
- type: "string"
89
- },
90
- expiresIn: {
91
- type: "number"
92
- },
93
- additionalProperties: false
94
- },
95
- required: [
96
- "identifier"
97
- ],
98
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.registerSessionForSiop } "
99
- },
100
- IRemoveSiopSessionArgs: {
101
- type: "object",
102
- properties: {
103
- sessionId: {
104
- type: "string"
105
- },
106
- additionalProperties: false
107
- },
108
- required: [
109
- "sessionId"
110
- ],
111
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.removeSessionForSiop } "
112
- },
113
- IAuthenticateWithSiopArgs: {
114
- type: "object",
115
- properties: {
116
- sessionId: {
117
- type: "string"
118
- },
119
- stateId: {
120
- type: "string"
121
- },
122
- redirectUrl: {
123
- type: "string"
124
- },
125
- additionalProperties: false
126
- },
127
- required: [
128
- "sessionId",
129
- "stateId",
130
- "redirectUrl"
131
- ],
132
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.authenticateWithSiop } "
133
- },
134
- IResponse: {
135
- type: "object",
136
- properties: {
137
- status: {
138
- type: "number"
139
- },
140
- additionalProperties: true
141
- },
142
- required: [
143
- "status"
144
- ],
145
- description: "Result of {@link DidAuthSiopOpAuthenticator.authenticateWithSiop & DidAuthSiopOpAuthenticator.sendSiopAuthenticationResponse } "
146
- },
147
- IGetSiopAuthenticationRequestFromRpArgs: {
148
- type: "object",
149
- properties: {
150
- sessionId: {
151
- type: "string"
152
- },
153
- stateId: {
154
- type: "string"
155
- },
156
- redirectUrl: {
157
- type: "string"
158
- },
159
- additionalProperties: false
160
- },
161
- required: [
162
- "sessionId",
163
- "stateId",
164
- "redirectUrl"
165
- ],
166
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.getSiopAuthenticationRequestFromRP } "
167
- },
168
- ParsedAuthenticationRequestURI: {
169
- type: "object",
170
- properties: {
171
- jwt: {
172
- type: "string"
173
- },
174
- requestPayload: {
175
- type: "object",
176
- properties: {
177
- additionalProperties: true
178
- }
179
- },
180
- registration: {
181
- type: "object",
182
- properties: {
183
- additionalProperties: true
184
- }
185
- },
186
- additionalProperties: false
187
- },
188
- required: [
189
- "jwt",
190
- "requestPayload",
191
- "registration"
192
- ],
193
- description: "Result of {@link DidAuthSiopOpAuthenticator.getSiopAuthenticationRequestFromRP } "
194
- },
195
- IGetSiopAuthenticationRequestDetailsArgs: {
196
- type: "object",
197
- properties: {
198
- sessionId: {
199
- type: "string"
200
- },
201
- verifiedAuthenticationRequest: {
202
- type: "object",
203
- properties: {
204
- additionalProperties: true
205
- }
206
- },
207
- credentialFilter: {
208
- type: "object",
209
- properties: {
210
- additionalProperties: true
211
- }
212
- },
213
- additionalProperties: false
214
- },
215
- required: [
216
- "sessionId",
217
- "verifiedAuthenticationRequest"
218
- ],
219
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.getSiopAuthenticationRequestDetails } "
220
- },
221
- IAuthRequestDetails: {
222
- type: "object",
223
- properties: {
224
- id: {
225
- type: "string"
226
- },
227
- alsoKnownAs: {
228
- type: "array",
229
- items: {
230
- type: "string"
231
- }
232
- },
233
- vpResponseOpts: {
234
- type: "object",
235
- properties: {
236
- additionalProperties: true
237
- }
238
- },
239
- additionalProperties: false
240
- },
241
- required: [
242
- "id",
243
- "vpResponseOpts"
244
- ],
245
- description: "Result of {@link DidAuthSiopOpAuthenticator.getSiopAuthenticationRequestDetails } "
246
- },
247
- IVerifySiopAuthenticationRequestUriArgs: {
248
- type: "object",
249
- properties: {
250
- sessionId: {
251
- type: "string"
252
- },
253
- ParsedAuthenticationRequestURI: {
254
- type: "object",
255
- properties: {
256
- additionalProperties: true
257
- }
258
- },
259
- additionalProperties: false
260
- },
261
- required: [
262
- "sessionId",
263
- "ParsedAuthenticationRequestURI"
264
- ],
265
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.verifySiopAuthenticationRequestURI } "
266
- },
267
- VerifiedAuthorizationRequest: {
268
- type: "object",
269
- properties: {
270
- payload: {
271
- type: "object",
272
- properties: {
273
- additionalProperties: true
274
- }
275
- },
276
- presentationDefinitions: {
277
- type: "object",
278
- properties: {
279
- additionalProperties: true
280
- }
281
- },
282
- verifyOpts: {
283
- type: "object",
284
- properties: {
285
- additionalProperties: true
286
- }
287
- },
288
- additionalProperties: false
289
- },
290
- required: [
291
- "payload",
292
- "verifyOpts"
293
- ],
294
- description: "Result of {@link DidAuthSiopOpAuthenticator.verifySiopAuthenticationRequestURI } "
295
- },
296
- ISendSiopAuthenticationResponseArgs: {
297
- type: "object",
298
- properties: {
299
- sessionId: {
300
- type: "string"
301
- },
302
- verifiedAuthenticationRequest: {
303
- type: "object",
304
- properties: {
305
- additionalProperties: true
306
- }
307
- },
308
- verifiablePresentationResponse: {
309
- type: "object",
310
- properties: {
311
- additionalProperties: true
312
- }
313
- },
314
- additionalProperties: false
315
- },
316
- required: [
317
- "sessionId",
318
- "verifiedAuthenticationRequest"
319
- ],
320
- description: "Arguments needed for {@link DidAuthSiopOpAuthenticator.sendSiopAuthenticationResponse } "
321
- }
322
- },
323
- methods: {
324
- getSessionForSiop: {
325
- description: "Get SIOP session",
326
- "arguments": {
327
- $ref: "#/components/schemas/IGetSiopSessionArgs"
328
- },
329
- returnType: "object"
330
- },
331
- registerSessionForSiop: {
332
- description: "Register SIOP session",
333
- "arguments": {
334
- $ref: "#/components/schemas/IRegisterSiopSessionArgs"
335
- },
336
- returnType: "object"
337
- },
338
- removeSessionForSiop: {
339
- description: "Remove SIOP session",
340
- "arguments": {
341
- $ref: "#/components/schemas/IRemoveSiopSessionArgs"
342
- },
343
- returnType: "boolean"
344
- },
345
- authenticateWithSiop: {
346
- description: "Authenticate using DID Auth SIOP",
347
- "arguments": {
348
- $ref: "#/components/schemas/IAuthenticateWithSiopArgs"
349
- },
350
- returnType: {
351
- $ref: "#/components/schemas/Response"
352
- }
353
- },
354
- getSiopAuthenticationRequestFromRP: {
355
- description: "Get authentication request from RP",
356
- "arguments": {
357
- $ref: "#/components/schemas/IGetSiopAuthenticationRequestFromRpArgs"
358
- },
359
- returnType: {
360
- $ref: "#/components/schemas/ParsedAuthenticationRequestURI"
361
- }
362
- },
363
- getSiopAuthenticationRequestDetails: {
364
- description: "Get authentication request details",
365
- "arguments": {
366
- $ref: "#/components/schemas/IGetSiopAuthenticationRequestDetailsArgs"
367
- },
368
- returnType: {
369
- $ref: "#/components/schemas/IAuthRequestDetails"
370
- }
371
- },
372
- verifySiopAuthenticationRequestURI: {
373
- description: "Verify authentication request URI",
374
- "arguments": {
375
- $ref: "#/components/schemas/IVerifySiopAuthenticationRequestUriArgs"
376
- },
377
- returnType: {
378
- $ref: "#/components/schemas/VerifiedAuthorizationRequest"
379
- }
380
- },
381
- sendSiopAuthenticationResponse: {
382
- description: "Send authentication response",
383
- "arguments": {
384
- $ref: "#/components/schemas/ISendSiopAuthenticationResponseArgs"
385
- },
386
- returnType: {
387
- $ref: "#/components/schemas/IRequiredContext"
388
- }
389
- }
390
- }
391
- }
392
- };
393
- var plugin_schema = {
394
- IDidAuthSiopOpAuthenticator: IDidAuthSiopOpAuthenticator$1
395
- };
396
-
397
27
  declare function createOID4VPPresentationSignCallback({ presentationSignCallback, idOpts, domain, fetchRemoteContexts, challenge, format, context, skipDidResolution, }: {
398
28
  presentationSignCallback?: PresentationSignCallback;
399
29
  idOpts: ManagedIdentifierOptsOrResult;
@@ -433,6 +63,7 @@ declare class OpSession {
433
63
  private verifiedAuthorizationRequest?;
434
64
  private _nonce?;
435
65
  private _state?;
66
+ private readonly _providedPresentationDefinitions?;
436
67
  private constructor();
437
68
  static init(options: Required<IOpSessionArgs>): Promise<OpSession>;
438
69
  getAuthorizationRequest(): Promise<VerifiedAuthorizationRequest>;
@@ -449,14 +80,75 @@ declare class OpSession {
449
80
  }): Promise<IIdentifier[]>;
450
81
  getSupportedDIDs(): Promise<string[]>;
451
82
  getRedirectUri(): Promise<string>;
83
+ hasPresentationDefinitions(): Promise<boolean>;
84
+ getPresentationDefinitions(): Promise<Array<PresentationDefinitionWithLocation> | undefined>;
452
85
  getOID4VP(args: IOpSessionGetOID4VPArgs): Promise<OID4VP>;
86
+ private createPresentationVerificationCallback;
453
87
  private createJarmResponseCallback;
454
88
  sendAuthorizationResponse(args: IOpsSendSiopAuthorizationResponseArgs): Promise<Response>;
89
+ private countVCsInAllVPs;
455
90
  }
456
91
 
457
92
  declare class OID4VP {
93
+ private readonly session;
94
+ private readonly allIdentifiers;
95
+ private readonly hasher?;
458
96
  private constructor();
459
97
  static init(session: OpSession, allIdentifiers: string[], hasher?: HasherSync): Promise<OID4VP>;
98
+ getPresentationDefinitions(): Promise<PresentationDefinitionWithLocation[] | undefined>;
99
+ private getPresentationExchange;
100
+ createVerifiablePresentations(credentialRole: CredentialRole, credentialsWithDefinitions: VerifiableCredentialsWithDefinition[], opts?: {
101
+ forceNoCredentialsInVP?: boolean;
102
+ restrictToFormats?: Format;
103
+ restrictToDIDMethods?: string[];
104
+ proofOpts?: ProofOptions;
105
+ idOpts?: ManagedIdentifierOptsOrResult;
106
+ skipDidResolution?: boolean;
107
+ holderDID?: string;
108
+ subjectIsHolder?: boolean;
109
+ hasher?: HasherSync;
110
+ applyFilter?: boolean;
111
+ }): Promise<VerifiablePresentationWithDefinition[]>;
112
+ createVerifiablePresentation(credentialRole: CredentialRole, selectedVerifiableCredentials: VerifiableCredentialsWithDefinition, opts?: {
113
+ forceNoCredentialsInVP?: boolean;
114
+ restrictToFormats?: Format;
115
+ restrictToDIDMethods?: string[];
116
+ proofOpts?: ProofOptions;
117
+ idOpts?: ManagedIdentifierOptsOrResult;
118
+ skipDidResolution?: boolean;
119
+ holder?: string;
120
+ subjectIsHolder?: boolean;
121
+ applyFilter?: boolean;
122
+ hasher?: HasherSync;
123
+ }): Promise<VerifiablePresentationWithDefinition>;
124
+ filterCredentialsAgainstAllDefinitions(credentialRole: CredentialRole, opts?: {
125
+ filterOpts?: {
126
+ verifiableCredentials?: UniqueDigitalCredential[];
127
+ filter?: FindDigitalCredentialArgs;
128
+ };
129
+ holderDIDs?: string[];
130
+ restrictToFormats?: Format;
131
+ restrictToDIDMethods?: string[];
132
+ }): Promise<VerifiableCredentialsWithDefinition[]>;
133
+ filterCredentials(credentialRole: CredentialRole, presentationDefinition: PresentationDefinitionWithLocation, opts?: {
134
+ filterOpts?: {
135
+ verifiableCredentials?: (UniqueDigitalCredential | OriginalVerifiableCredential)[];
136
+ filter?: FindDigitalCredentialArgs;
137
+ };
138
+ holderDIDs?: string[];
139
+ restrictToFormats?: Format;
140
+ restrictToDIDMethods?: string[];
141
+ }): Promise<VerifiableCredentialsWithDefinition>;
142
+ filterCredentialsWithSelectionStatus(credentialRole: CredentialRole, presentationDefinition: PresentationDefinitionWithLocation, opts?: {
143
+ filterOpts?: {
144
+ verifiableCredentials?: OriginalVerifiableCredential[];
145
+ filter?: FindDigitalCredentialArgs;
146
+ };
147
+ holderDIDs?: string[];
148
+ restrictToFormats?: Format;
149
+ restrictToDIDMethods?: string[];
150
+ }): Promise<SelectResults>;
151
+ private getCredentials;
460
152
  }
461
153
 
462
154
  type ErrorDetails = {
@@ -517,7 +209,8 @@ type Siopv2AuthorizationRequestData = {
517
209
  name?: string;
518
210
  uri?: URL;
519
211
  clientId?: string;
520
- dcqlQuery: DcqlQuery;
212
+ presentationDefinitions?: PresentationDefinitionWithLocation[];
213
+ dcqlQuery?: DcqlQuery;
521
214
  };
522
215
  type SelectableCredentialsMap = Map<string, Array<SelectableCredential>>;
523
216
  type SelectableCredential = {
@@ -533,7 +226,7 @@ type OnContactIdentityCreatedArgs = {
533
226
  type OnIdentifierCreatedArgs = {
534
227
  identifier: IIdentifier;
535
228
  };
536
- type RequiredContext = IAgentContext<IContactManager & IDidAuthSiopOpAuthenticator & IDIDManager & IResolver & IIdentifierResolution & ICredentialStore & IIssuanceBranding & ISDJwtPlugin>;
229
+ type RequiredContext = IAgentContext<IContactManager & IDidAuthSiopOpAuthenticator & IDIDManager & IResolver & IIdentifierResolution & ICredentialStore & IIssuanceBranding>;
537
230
 
538
231
  type Siopv2MachineContext = {
539
232
  url: string;
@@ -670,7 +363,7 @@ interface IDidAuthSiopOpAuthenticator extends IPluginMethodMap {
670
363
  interface IOpSessionArgs {
671
364
  sessionId?: string;
672
365
  requestJwtOrUri: string | URI;
673
- dcqlQuery?: DcqlQuery;
366
+ providedPresentationDefinitions?: Array<PresentationDefinitionWithLocation>;
674
367
  identifierOptions?: ManagedIdentifierOptsOrResult;
675
368
  context: IRequiredContext;
676
369
  op?: IOPOptions;
@@ -678,9 +371,15 @@ interface IOpSessionArgs {
678
371
  interface IAuthRequestDetails {
679
372
  rpDIDDocument?: DIDDocument;
680
373
  id: string;
681
- verifiablePresentationMatches: DcqlPresentation[];
374
+ verifiablePresentationMatches: IPresentationWithDefinition[];
682
375
  alsoKnownAs?: string[];
683
376
  }
377
+ interface IPresentationWithDefinition {
378
+ location: VPTokenLocation;
379
+ definition: PresentationDefinitionWithLocation;
380
+ format: VerifiablePresentationTypeFormat;
381
+ presentation: W3CVerifiablePresentation;
382
+ }
684
383
  interface IGetSiopSessionArgs {
685
384
  sessionId: string;
686
385
  }
@@ -702,6 +401,9 @@ interface IOpsSendSiopAuthorizationResponseArgs {
702
401
  hasher?: HasherSync;
703
402
  isFirstParty?: boolean;
704
403
  }
404
+ declare enum events {
405
+ DID_SIOP_AUTHENTICATED = "didSiopAuthenticated"
406
+ }
705
407
  type IRequiredContext = IAgentContext<IDataStoreORM & IResolver & IDIDManager & IKeyManager & IIdentifierResolution & ICredentialIssuer & ICredentialValidation & ICredentialVerifier & ICredentialStore & IPDManager & ISDJwtPlugin & IJwtService>;
706
408
  interface IOPOptions {
707
409
  responseMode?: ResponseMode;
@@ -717,6 +419,15 @@ interface IOPOptions {
717
419
  resolveOpts?: ResolveOpts;
718
420
  hasher?: HasherSync;
719
421
  }
422
+ interface VerifiableCredentialsWithDefinition {
423
+ definition: PresentationDefinitionWithLocation;
424
+ credentials: (UniqueDigitalCredential | OriginalVerifiableCredential)[];
425
+ }
426
+ interface VerifiablePresentationWithDefinition extends VerifiablePresentationResult {
427
+ definition: PresentationDefinitionWithLocation;
428
+ verifiableCredentials: OriginalVerifiableCredential[];
429
+ idOpts: ManagedIdentifierOptsOrResult;
430
+ }
720
431
  interface IOpSessionGetOID4VPArgs {
721
432
  allIdentifiers?: string[];
722
433
  hasher?: HasherSync;
@@ -726,6 +437,14 @@ interface IOID4VPArgs {
726
437
  allIdentifiers?: string[];
727
438
  hasher?: HasherSync;
728
439
  }
440
+ interface IGetPresentationExchangeArgs {
441
+ verifiableCredentials: OriginalVerifiableCredential[];
442
+ allIdentifiers?: string[];
443
+ hasher?: HasherSync;
444
+ }
445
+ type Json = string | number | boolean | null | {
446
+ [key: string]: Json;
447
+ } | Json[];
729
448
  declare const DEFAULT_JWT_PROOF_TYPE = "JwtProof2020";
730
449
 
731
450
  declare const DID_PREFIX = "did";
@@ -772,336 +491,11 @@ type CreateIdentifierOpts = {
772
491
  createOpts?: CreateIdentifierCreateOpts;
773
492
  };
774
493
  type DidAgents = TAgent<IResolver & IDIDManager>;
494
+ type SuitableCredentialAgents = TAgent<IContactManager & ICredentialStore & IIssuanceBranding>;
775
495
 
776
496
  declare const didAuthSiopOpAuthenticatorMethods: Array<string>;
777
497
  declare class DidAuthSiopOpAuthenticator implements IAgentPlugin {
778
- readonly schema: {
779
- components: {
780
- schemas: {
781
- IGetSiopSessionArgs: {
782
- type: string;
783
- properties: {
784
- sessionId: {
785
- type: string;
786
- };
787
- additionalProperties: boolean;
788
- };
789
- required: string[];
790
- description: string;
791
- };
792
- IRegisterSiopSessionArgs: {
793
- type: string;
794
- properties: {
795
- identifier: {
796
- type: string;
797
- properties: {
798
- did: {
799
- type: string;
800
- };
801
- alias: {
802
- type: string;
803
- };
804
- provider: {
805
- type: string;
806
- };
807
- controllerKeyId: {
808
- type: string;
809
- };
810
- keys: {
811
- type: string;
812
- items: {
813
- type: string;
814
- properties: {
815
- additionalProperties: boolean;
816
- };
817
- };
818
- };
819
- services: {
820
- type: string;
821
- items: {
822
- type: string;
823
- properties: {
824
- additionalProperties: boolean;
825
- };
826
- };
827
- };
828
- };
829
- additionalProperties: boolean;
830
- required: string[];
831
- };
832
- sessionId: {
833
- type: string;
834
- };
835
- expiresIn: {
836
- type: string;
837
- };
838
- additionalProperties: boolean;
839
- };
840
- required: string[];
841
- description: string;
842
- };
843
- IRemoveSiopSessionArgs: {
844
- type: string;
845
- properties: {
846
- sessionId: {
847
- type: string;
848
- };
849
- additionalProperties: boolean;
850
- };
851
- required: string[];
852
- description: string;
853
- };
854
- IAuthenticateWithSiopArgs: {
855
- type: string;
856
- properties: {
857
- sessionId: {
858
- type: string;
859
- };
860
- stateId: {
861
- type: string;
862
- };
863
- redirectUrl: {
864
- type: string;
865
- };
866
- additionalProperties: boolean;
867
- };
868
- required: string[];
869
- description: string;
870
- };
871
- IResponse: {
872
- type: string;
873
- properties: {
874
- status: {
875
- type: string;
876
- };
877
- additionalProperties: boolean;
878
- };
879
- required: string[];
880
- description: string;
881
- };
882
- IGetSiopAuthenticationRequestFromRpArgs: {
883
- type: string;
884
- properties: {
885
- sessionId: {
886
- type: string;
887
- };
888
- stateId: {
889
- type: string;
890
- };
891
- redirectUrl: {
892
- type: string;
893
- };
894
- additionalProperties: boolean;
895
- };
896
- required: string[];
897
- description: string;
898
- };
899
- ParsedAuthenticationRequestURI: {
900
- type: string;
901
- properties: {
902
- jwt: {
903
- type: string;
904
- };
905
- requestPayload: {
906
- type: string;
907
- properties: {
908
- additionalProperties: boolean;
909
- };
910
- };
911
- registration: {
912
- type: string;
913
- properties: {
914
- additionalProperties: boolean;
915
- };
916
- };
917
- additionalProperties: boolean;
918
- };
919
- required: string[];
920
- description: string;
921
- };
922
- IGetSiopAuthenticationRequestDetailsArgs: {
923
- type: string;
924
- properties: {
925
- sessionId: {
926
- type: string;
927
- };
928
- verifiedAuthenticationRequest: {
929
- type: string;
930
- properties: {
931
- additionalProperties: boolean;
932
- };
933
- };
934
- credentialFilter: {
935
- type: string;
936
- properties: {
937
- additionalProperties: boolean;
938
- };
939
- };
940
- additionalProperties: boolean;
941
- };
942
- required: string[];
943
- description: string;
944
- };
945
- IAuthRequestDetails: {
946
- type: string;
947
- properties: {
948
- id: {
949
- type: string;
950
- };
951
- alsoKnownAs: {
952
- type: string;
953
- items: {
954
- type: string;
955
- };
956
- };
957
- vpResponseOpts: {
958
- type: string;
959
- properties: {
960
- additionalProperties: boolean;
961
- };
962
- };
963
- additionalProperties: boolean;
964
- };
965
- required: string[];
966
- description: string;
967
- };
968
- IVerifySiopAuthenticationRequestUriArgs: {
969
- type: string;
970
- properties: {
971
- sessionId: {
972
- type: string;
973
- };
974
- ParsedAuthenticationRequestURI: {
975
- type: string;
976
- properties: {
977
- additionalProperties: boolean;
978
- };
979
- };
980
- additionalProperties: boolean;
981
- };
982
- required: string[];
983
- description: string;
984
- };
985
- VerifiedAuthorizationRequest: {
986
- type: string;
987
- properties: {
988
- payload: {
989
- type: string;
990
- properties: {
991
- additionalProperties: boolean;
992
- };
993
- };
994
- presentationDefinitions: {
995
- type: string;
996
- properties: {
997
- additionalProperties: boolean;
998
- };
999
- };
1000
- verifyOpts: {
1001
- type: string;
1002
- properties: {
1003
- additionalProperties: boolean;
1004
- };
1005
- };
1006
- additionalProperties: boolean;
1007
- };
1008
- required: string[];
1009
- description: string;
1010
- };
1011
- ISendSiopAuthenticationResponseArgs: {
1012
- type: string;
1013
- properties: {
1014
- sessionId: {
1015
- type: string;
1016
- };
1017
- verifiedAuthenticationRequest: {
1018
- type: string;
1019
- properties: {
1020
- additionalProperties: boolean;
1021
- };
1022
- };
1023
- verifiablePresentationResponse: {
1024
- type: string;
1025
- properties: {
1026
- additionalProperties: boolean;
1027
- };
1028
- };
1029
- additionalProperties: boolean;
1030
- };
1031
- required: string[];
1032
- description: string;
1033
- };
1034
- };
1035
- methods: {
1036
- getSessionForSiop: {
1037
- description: string;
1038
- arguments: {
1039
- $ref: string;
1040
- };
1041
- returnType: string;
1042
- };
1043
- registerSessionForSiop: {
1044
- description: string;
1045
- arguments: {
1046
- $ref: string;
1047
- };
1048
- returnType: string;
1049
- };
1050
- removeSessionForSiop: {
1051
- description: string;
1052
- arguments: {
1053
- $ref: string;
1054
- };
1055
- returnType: string;
1056
- };
1057
- authenticateWithSiop: {
1058
- description: string;
1059
- arguments: {
1060
- $ref: string;
1061
- };
1062
- returnType: {
1063
- $ref: string;
1064
- };
1065
- };
1066
- getSiopAuthenticationRequestFromRP: {
1067
- description: string;
1068
- arguments: {
1069
- $ref: string;
1070
- };
1071
- returnType: {
1072
- $ref: string;
1073
- };
1074
- };
1075
- getSiopAuthenticationRequestDetails: {
1076
- description: string;
1077
- arguments: {
1078
- $ref: string;
1079
- };
1080
- returnType: {
1081
- $ref: string;
1082
- };
1083
- };
1084
- verifySiopAuthenticationRequestURI: {
1085
- description: string;
1086
- arguments: {
1087
- $ref: string;
1088
- };
1089
- returnType: {
1090
- $ref: string;
1091
- };
1092
- };
1093
- sendSiopAuthenticationResponse: {
1094
- description: string;
1095
- arguments: {
1096
- $ref: string;
1097
- };
1098
- returnType: {
1099
- $ref: string;
1100
- };
1101
- };
1102
- };
1103
- };
1104
- };
498
+ readonly schema: any;
1105
499
  readonly methods: IDidAuthSiopOpAuthenticator;
1106
500
  private readonly sessions;
1107
501
  private readonly customApprovals;
@@ -1124,6 +518,11 @@ declare class DidAuthSiopOpAuthenticator implements IAgentPlugin {
1124
518
  private siopRetrieveContact;
1125
519
  private siopAddContactIdentity;
1126
520
  private siopSendResponse;
521
+ private hasMDocCredentials;
522
+ private isMDocCredential;
523
+ private hasSdJwtCredentials;
524
+ private isSdJwtCredential;
525
+ private retrieveEncodedCredential;
1127
526
  private siopGetSelectableCredentials;
1128
527
  }
1129
528
 
@@ -1152,6 +551,9 @@ declare class Siopv2OID4VPLinkHandler extends LinkHandlerAdapter {
1152
551
  }): Promise<void>;
1153
552
  }
1154
553
 
1155
- declare function convertToDcqlCredentials(credential: UniqueDigitalCredential | OriginalVerifiableCredential, hasher?: HasherSync): DcqlCredential;
554
+ /**
555
+ * @public
556
+ */
557
+ declare const schema: any;
1156
558
 
1157
- export { type AddIdentityArgs, type ContactAliasEvent, type ContactConsentEvent, type CreateConfigArgs, type CreateConfigResult, type CreateContactEvent, type CreateIdentifierArgs, type CreateIdentifierCreateOpts, type CreateIdentifierOpts, type CreateOrGetIdentifierOpts, type CreateSiopv2MachineOpts, DEFAULT_JWT_PROOF_TYPE, DID_PREFIX, type DeclineEvent, type DidAgents, DidAuthSiopOpAuthenticator, type DidAuthSiopOpAuthenticatorOptions, type ErrorDetails, type GetAuthenticationKeyArgs, type GetIdentifierArgs, type GetMachineArgs, type GetSelectableCredentialsArgs, type GetSiopRequestArgs, type IAuthRequestDetails, type IDidAuthSiopOpAuthenticator, type IGetSiopSessionArgs, type IOID4VPArgs, type IOPOptions, type IOpSessionArgs, type IOpSessionGetOID4VPArgs, type IOpsSendSiopAuthorizationResponseArgs, type IRegisterCustomApprovalForSiopArgs, type IRemoveCustomApprovalForSiopArgs, type IRemoveSiopSessionArgs, type IRequiredContext, type IdentifierProviderOpts, type IdentifierWithKey, type KeyOpts, LOGGER_NAMESPACE, type NextEvent, OID4VP, OID4VPCallbackStateListener, type OnContactIdentityCreatedArgs, type OnIdentifierCreatedArgs, OpSession, type PreviousEvent, type RequiredContext, type RetrieveContactArgs, type SelectCredentialsEvent, type SelectableCredential, type SelectableCredentialsMap, type SendResponseArgs, type Siopv2AuthorizationRequestData, type Siopv2AuthorizationResponseData, Siopv2HolderEvent, Siopv2Machine, Siopv2MachineAddContactStates, type Siopv2MachineContext, type Siopv2MachineEventTypes, Siopv2MachineEvents, Siopv2MachineGuards, type Siopv2MachineInstanceOpts, type Siopv2MachineInterpreter, Siopv2MachineServices, type Siopv2MachineState, Siopv2MachineStates, Siopv2OID4VPLinkHandler, type Siopv2StateMachine, SupportedLanguage, convertToDcqlCredentials, createJwtCallbackWithIdOpts, createJwtCallbackWithOpOpts, createOID4VPPresentationSignCallback, createOP, createOPBuilder, didAuthSiopOpAuthenticatorMethods, getSigningAlgo, plugin_schema as schema };
559
+ export { type AddIdentityArgs, type ContactAliasEvent, type ContactConsentEvent, type CreateConfigArgs, type CreateConfigResult, type CreateContactEvent, type CreateIdentifierArgs, type CreateIdentifierCreateOpts, type CreateIdentifierOpts, type CreateOrGetIdentifierOpts, type CreateSiopv2MachineOpts, DEFAULT_JWT_PROOF_TYPE, DID_PREFIX, type DeclineEvent, type DidAgents, DidAuthSiopOpAuthenticator, type DidAuthSiopOpAuthenticatorOptions, type ErrorDetails, type GetAuthenticationKeyArgs, type GetIdentifierArgs, type GetMachineArgs, type GetSelectableCredentialsArgs, type GetSiopRequestArgs, type IAuthRequestDetails, type IDidAuthSiopOpAuthenticator, type IGetPresentationExchangeArgs, type IGetSiopSessionArgs, type IOID4VPArgs, type IOPOptions, type IOpSessionArgs, type IOpSessionGetOID4VPArgs, type IOpsSendSiopAuthorizationResponseArgs, type IPresentationWithDefinition, type IRegisterCustomApprovalForSiopArgs, type IRemoveCustomApprovalForSiopArgs, type IRemoveSiopSessionArgs, type IRequiredContext, type IdentifierProviderOpts, type IdentifierWithKey, type Json, type KeyOpts, LOGGER_NAMESPACE, type NextEvent, OID4VP, OID4VPCallbackStateListener, type OnContactIdentityCreatedArgs, type OnIdentifierCreatedArgs, OpSession, type PreviousEvent, type RequiredContext, type RetrieveContactArgs, type SelectCredentialsEvent, type SelectableCredential, type SelectableCredentialsMap, type SendResponseArgs, type Siopv2AuthorizationRequestData, type Siopv2AuthorizationResponseData, Siopv2HolderEvent, Siopv2Machine, Siopv2MachineAddContactStates, type Siopv2MachineContext, type Siopv2MachineEventTypes, Siopv2MachineEvents, Siopv2MachineGuards, type Siopv2MachineInstanceOpts, type Siopv2MachineInterpreter, Siopv2MachineServices, type Siopv2MachineState, Siopv2MachineStates, Siopv2OID4VPLinkHandler, type Siopv2StateMachine, type SuitableCredentialAgents, SupportedLanguage, type VerifiableCredentialsWithDefinition, type VerifiablePresentationWithDefinition, createJwtCallbackWithIdOpts, createJwtCallbackWithOpOpts, createOID4VPPresentationSignCallback, createOP, createOPBuilder, didAuthSiopOpAuthenticatorMethods, events, getSigningAlgo, schema };