@sphereon/ssi-types 0.34.1-feature.FIDES.1.274 → 0.34.1-feature.IDK.11.48

package/dist/index.cjs

@@ -34,7 +34,6 @@ __export(index_exports, {
   ActionType: () => ActionType,
   BasicEventEmitter: () => BasicEventEmitter,
   CredentialMapper: () => CredentialMapper,
-  CredentialRole: () => CredentialRole,
   DefaultActionSubType: () => DefaultActionSubType,
   DocumentFormat: () => DocumentFormat,
   EventManager: () => EventManager,
@@ -295,15 +294,6 @@ var SimpleRecordLogger = class extends SimpleLogger {
   }
 };
 
-// src/types/datastore.ts
-var CredentialRole = /* @__PURE__ */ (function(CredentialRole2) {
-  CredentialRole2["ISSUER"] = "ISSUER";
-  CredentialRole2["VERIFIER"] = "VERIFIER";
-  CredentialRole2["HOLDER"] = "HOLDER";
-  CredentialRole2["FEDERATION_TRUST_ANCHOR"] = "FEDERATION_TRUST_ANCHOR";
-  return CredentialRole2;
-})({});
-
 // src/events/index.ts
 var import_events2 = require("events");
 var System = /* @__PURE__ */ (function(System2) {
@@ -650,8 +640,7 @@ var parse = /* @__PURE__ */ __name((didUrl) => {
 }, "parse");
 
 // src/utils/mdoc.ts
-var import_kmp_mdoc_core = __toESM(require("@sphereon/kmp-mdoc-core"), 1);
-var { com } = import_kmp_mdoc_core.default;
+var mdoc = __toESM(require("@sphereon/kmp-mdoc-core"), 1);
 function isWrappedMdocCredential(vc) {
   return vc.format === "mso_mdoc";
 }
@@ -660,12 +649,12 @@ function isWrappedMdocPresentation(vp) {
   return vp.format === "mso_mdoc";
 }
 __name(isWrappedMdocPresentation, "isWrappedMdocPresentation");
-function getMdocDecodedPayload(mdoc) {
-  const mdocJson = mdoc.toJson();
+function getMdocDecodedPayload(mdoc2) {
+  const mdocJson = mdoc2.toJson();
   if (!mdocJson.issuerSigned.nameSpaces) {
     throw Error(`Cannot access Issuer Signed items from the Mdoc`);
   }
-  const issuerSignedJson = mdoc.issuerSigned.toJsonDTO();
+  const issuerSignedJson = mdoc2.issuerSigned.toJsonDTO();
   const namespaces = issuerSignedJson.nameSpaces;
   const decodedPayload = {};
   for (const [namespace, items] of Object.entries(namespaces)) {
@@ -678,17 +667,17 @@ function getMdocDecodedPayload(mdoc) {
 }
 __name(getMdocDecodedPayload, "getMdocDecodedPayload");
 function decodeMdocIssuerSigned(oid4vpIssuerSigned) {
-  const issuerSigned = com.sphereon.mdoc.data.device.IssuerSignedCbor.Static.cborDecode(com.sphereon.kmp.decodeFrom(oid4vpIssuerSigned, com.sphereon.kmp.Encoding.BASE64URL));
+  const issuerSigned = mdoc.com.sphereon.mdoc.data.device.IssuerSignedCbor.Static.cborDecode(mdoc.com.sphereon.kmp.decodeFrom(oid4vpIssuerSigned, mdoc.com.sphereon.kmp.Encoding.BASE64URL));
   const holderMdoc = issuerSigned.toDocument();
   return holderMdoc;
 }
 __name(decodeMdocIssuerSigned, "decodeMdocIssuerSigned");
 function encodeMdocIssuerSigned(issuerSigned, encoding = "base64url") {
-  return com.sphereon.kmp.encodeTo(issuerSigned.cborEncode(), com.sphereon.kmp.Encoding.BASE64URL);
+  return mdoc.com.sphereon.kmp.encodeTo(issuerSigned.cborEncode(), mdoc.com.sphereon.kmp.Encoding.BASE64URL);
 }
 __name(encodeMdocIssuerSigned, "encodeMdocIssuerSigned");
 function decodeMdocDeviceResponse(vpToken) {
-  const deviceResponse = com.sphereon.mdoc.data.device.DeviceResponseCbor.Static.cborDecode(com.sphereon.kmp.decodeFrom(vpToken, com.sphereon.kmp.Encoding.BASE64URL));
+  const deviceResponse = mdoc.com.sphereon.mdoc.data.device.DeviceResponseCbor.Static.cborDecode(mdoc.com.sphereon.kmp.decodeFrom(vpToken, mdoc.com.sphereon.kmp.Encoding.BASE64URL));
   return deviceResponse;
 }
 __name(decodeMdocDeviceResponse, "decodeMdocDeviceResponse");
@@ -741,7 +730,7 @@ var mdocDecodedCredentialToUniformCredential = /* @__PURE__ */ __name((decoded,
       created: issuanceDate,
       proofPurpose: IProofPurpose.authentication,
       verificationMethod: json.issuerSigned.issuerAuth.payload,
-      mso_mdoc: com.sphereon.kmp.encodeTo(decoded.cborEncode(), com.sphereon.kmp.Encoding.BASE64URL)
+      mso_mdoc: mdoc.com.sphereon.kmp.encodeTo(decoded.cborEncode(), mdoc.com.sphereon.kmp.Encoding.BASE64URL)
     }
   };
   return credential;
@@ -754,10 +743,8 @@ function decodeSdJwtVc(compactSdJwtVc, hasher) {
   const signedPayload = jwt.payload;
   const decodedPayload = (0, import_decode.getClaimsSync)(signedPayload, disclosures, hasher);
   const compactKeyBindingJwt = kbJwt ? compactSdJwtVc.split("~").pop() : void 0;
-  const type = decodedPayload.vct ? "dc+sd-jwt" : "vc+sd-jwt";
   return {
     compactSdJwtVc,
-    type,
     decodedPayload,
     disclosures: disclosures.map((d) => {
       const decoded = d.key ? [
@@ -791,10 +778,8 @@ async function decodeSdJwtVcAsync(compactSdJwtVc, hasher) {
   const signedPayload = jwt.payload;
   const decodedPayload = await (0, import_decode.getClaims)(signedPayload, disclosures, hasher);
   const compactKeyBindingJwt = kbJwt ? compactSdJwtVc.split("~").pop() : void 0;
-  const type = decodedPayload.vct ? "dc+sd-jwt" : "vc+sd-jwt";
   return {
     compactSdJwtVc,
-    type,
     decodedPayload,
     disclosures: disclosures.map((d) => {
       const decoded = d.key ? [
@@ -825,19 +810,13 @@ async function decodeSdJwtVcAsync(compactSdJwtVc, hasher) {
 __name(decodeSdJwtVcAsync, "decodeSdJwtVcAsync");
 var sdJwtDecodedCredentialToUniformCredential = /* @__PURE__ */ __name((decoded, opts) => {
   const { decodedPayload } = decoded;
-  const { exp, nbf, iss, iat, vct, cnf, status, jti, validUntil, validFrom } = decodedPayload;
-  let credentialSubject = decodedPayload.credentialSubject;
-  let issuer = iss ?? decodedPayload.issuer;
-  if (typeof issuer === "object" && "id" in issuer && typeof issuer.id === "string") {
-    issuer = issuer.id;
-  }
-  const subId = decodedPayload.sub ?? (typeof credentialSubject == "object" && "id" in credentialSubject ? credentialSubject.id : void 0);
+  const { exp, nbf, iss, iat, vct, cnf, status, sub, jti } = decodedPayload;
   const maxSkewInMS = opts?.maxTimeSkewInMS ?? 1500;
-  const expirationDate = validUntil ?? jwtDateToISOString({
+  const expirationDate = jwtDateToISOString({
     jwtClaim: exp,
     claimName: "exp"
   });
-  let issuanceDateStr = validFrom ?? jwtDateToISOString({
+  let issuanceDateStr = jwtDateToISOString({
     jwtClaim: iat,
     claimName: "iat"
   });
@@ -848,7 +827,7 @@ var sdJwtDecodedCredentialToUniformCredential = /* @__PURE__ */ __name((decoded,
       claimName: "nbf"
     });
     if (issuanceDateStr && nbfDateAsStr && issuanceDateStr !== nbfDateAsStr) {
-      const diff = Math.abs(new Date(nbfDateAsStr).getTime() - new Date(issuanceDateStr).getTime());
+      const diff = Math.abs(new Date(nbfDateAsStr).getTime() - new Date(iss).getTime());
       if (!maxSkewInMS || diff > maxSkewInMS) {
         throw Error(`Inconsistent issuance dates between JWT claim (${nbfDateAsStr}) and VC value (${iss})`);
       }
@@ -869,39 +848,24 @@ var sdJwtDecodedCredentialToUniformCredential = /* @__PURE__ */ __name((decoded,
     "jti",
     "sub"
   ]);
-  if (!credentialSubject) {
-    credentialSubject = Object.entries(decodedPayload).reduce((acc, [key, value]) => {
-      if (!excludedFields.has(key) && value !== void 0 && value !== "" && !(typeof value === "object" && value !== null && Object.keys(value).length === 0)) {
-        acc[key] = value;
-      }
-      return acc;
-    }, {});
-  }
-  const sdJwtVc = decodedPayload.vct && !decodedPayload.type;
+  const credentialSubject = Object.entries(decodedPayload).reduce((acc, [key, value]) => {
+    if (!excludedFields.has(key) && value !== void 0 && value !== "" && !(typeof value === "object" && value !== null && Object.keys(value).length === 0)) {
+      acc[key] = value;
+    }
+    return acc;
+  }, {});
   const credential = {
-    ...{
-      type: sdJwtVc ? [
-        vct
-      ] : decodedPayload.type
-    },
-    ...{
-      "@context": sdJwtVc ? [] : decodedPayload["@context"]
-    },
+    type: [
+      vct
+    ],
+    "@context": [],
     credentialSubject: {
       ...credentialSubject,
-      id: subId ?? jti
+      id: credentialSubject.id ?? sub ?? jti
     },
-    ...issuanceDate && (sdJwtVc ? {
-      issuanceDate
-    } : {
-      validFrom: issuanceDateStr
-    }),
-    ...expirationDate && (sdJwtVc ? {
-      expirationDate
-    } : {
-      validUntil: expirationDate
-    }),
-    issuer,
+    issuanceDate,
+    expirationDate,
+    issuer: iss,
     ...cnf && {
       cnf
     },
@@ -1101,7 +1065,6 @@ var CredentialMapper = class _CredentialMapper {
   * an async hasher implementation, use the decodeSdJwtVcAsync method instead and you can provide the decoded payload to methods
   * instead of the compact SD-JWT.
   *
-  * @param credential
   * @param hasher Hasher implementation to use for SD-JWT decoding
   */
   static decodeVerifiableCredential(credential, hasher) {
@@ -1138,8 +1101,7 @@ var CredentialMapper = class _CredentialMapper {
   * an async hasher implementation, use the decodeSdJwtVcAsync method instead and you can provide the decoded payload to methods
   * instead of the compact SD-JWT.
   *
-  * @param originalPresentation
-  * @param opts
+  * @param hasher Hasher implementation to use for SD-JWT decoding
   */
   static toWrappedVerifiablePresentation(originalPresentation, opts) {
     if (_CredentialMapper.isMsoMdocDecodedPresentation(originalPresentation) || _CredentialMapper.isMsoMdocOid4VPEncoded(originalPresentation)) {
@@ -1174,7 +1136,7 @@ var CredentialMapper = class _CredentialMapper {
       }
       return {
         type: _CredentialMapper.isSdJwtDecodedCredential(originalPresentation) ? "sd-jwt-vc-decoded" : "sd-jwt-vc-encoded",
-        format: "dc+sd-jwt",
+        format: "vc+sd-jwt",
         original: originalPresentation,
         presentation: decodedPresentation,
         decoded: decodedPresentation.decodedPayload,
@@ -1244,18 +1206,18 @@ var CredentialMapper = class _CredentialMapper {
   */
   static toWrappedVerifiableCredential(verifiableCredential, opts) {
     if (_CredentialMapper.isMsoMdocDecodedCredential(verifiableCredential) || _CredentialMapper.isMsoMdocOid4VPEncoded(verifiableCredential)) {
-      let mdoc;
+      let mdoc2;
       if (_CredentialMapper.isMsoMdocOid4VPEncoded(verifiableCredential)) {
-        mdoc = decodeMdocIssuerSigned(verifiableCredential);
+        mdoc2 = decodeMdocIssuerSigned(verifiableCredential);
       } else {
-        mdoc = verifiableCredential;
+        mdoc2 = verifiableCredential;
       }
       return {
         type: _CredentialMapper.isMsoMdocDecodedCredential(verifiableCredential) ? "mso_mdoc-decoded" : "mso_mdoc-encoded",
         format: "mso_mdoc",
         original: verifiableCredential,
-        credential: mdoc,
-        decoded: getMdocDecodedPayload(mdoc)
+        credential: mdoc2,
+        decoded: getMdocDecodedPayload(mdoc2)
       };
     }
     if (_CredentialMapper.isSdJwtDecodedCredential(verifiableCredential) || _CredentialMapper.isSdJwtEncoded(verifiableCredential)) {
@@ -1268,7 +1230,7 @@ var CredentialMapper = class _CredentialMapper {
       }
       return {
         type: _CredentialMapper.isSdJwtDecodedCredential(verifiableCredential) ? "sd-jwt-vc-decoded" : "sd-jwt-vc-encoded",
-        format: "dc+sd-jwt",
+        format: "vc+sd-jwt",
         original: verifiableCredential,
         credential: decodedCredential,
         decoded: decodedCredential.decodedPayload
@@ -1390,13 +1352,6 @@ var CredentialMapper = class _CredentialMapper {
   static isSdJwtDecodedCredential(original) {
     return typeof original === "object" && (original.compactSdJwtVc !== void 0 || original.kbJwt !== void 0);
   }
-  static isSdJwtVcdm2DecodedCredential(original) {
-    if (typeof original !== "object") {
-      return false;
-    }
-    const decoded = original;
-    return decoded.compactSdJwtVc !== void 0 && !decoded.decodedPayload.vct && !decoded.decodedPayload["@context"];
-  }
   static isMsoMdocDecodedCredential(original) {
     return typeof original === "object" && "issuerSigned" in original && original.issuerSigned !== void 0;
   }
@@ -1720,11 +1675,11 @@ var CredentialMapper = class _CredentialMapper {
   }
 };
 function isWrappedSdJwtVerifiableCredential(vc) {
-  return vc.format === "dc+sd-jwt";
+  return vc.format === "vc+sd-jwt";
 }
 __name(isWrappedSdJwtVerifiableCredential, "isWrappedSdJwtVerifiableCredential");
 function isWrappedSdJwtVerifiablePresentation(vp) {
-  return vp.format === "dc+sd-jwt";
+  return vp.format === "vc+sd-jwt";
 }
 __name(isWrappedSdJwtVerifiablePresentation, "isWrappedSdJwtVerifiablePresentation");
 var OriginalType = /* @__PURE__ */ (function(OriginalType2) {