@sphereon/ssi-types 0.37.2-next.34 → 0.38.0

package/dist/index.cjs

@@ -692,27 +692,63 @@ function decodeMdocDeviceResponse(vpToken) {
   return deviceResponse;
 }
 __name(decodeMdocDeviceResponse, "decodeMdocDeviceResponse");
+function bytesToImageDataUri(value, mimeType = "image/jpeg") {
+  if (typeof value === "string") {
+    if (value.startsWith("data:image/")) return value;
+    let b64 = value.replace(/-/g, "+").replace(/_/g, "/");
+    const pad = b64.length % 4;
+    if (pad) b64 += "=".repeat(4 - pad);
+    return `data:${mimeType};base64,${b64}`;
+  }
+  if (value && typeof value === "object" && ("length" in value || Symbol.iterator in Object(value))) {
+    try {
+      const int8 = value instanceof Int8Array ? value : new Int8Array(value);
+      const base64 = com.sphereon.kmp.encodeTo(int8, com.sphereon.kmp.Encoding.BASE64);
+      return `data:${mimeType};base64,${base64}`;
+    } catch {
+      const bytes = value instanceof Uint8Array ? value : new Uint8Array(value);
+      let binary = "";
+      for (let i = 0; i < bytes.length; i++) binary += String.fromCharCode(bytes[i]);
+      const base64 = typeof btoa === "function" ? btoa(binary) : com.sphereon.kmp.encodeTo(new Int8Array(bytes), com.sphereon.kmp.Encoding.BASE64);
+      return `data:${mimeType};base64,${base64}`;
+    }
+  }
+  return String(value);
+}
+__name(bytesToImageDataUri, "bytesToImageDataUri");
 var mdocDecodedCredentialToUniformCredential = /* @__PURE__ */ __name((decoded, opts) => {
   const document = decoded.toJson();
   const json = document.toJsonDTO();
-  const type = "Personal Identification Data";
   const MSO = document.MSO;
   if (!MSO || !json.issuerSigned?.nameSpaces) {
     throw Error(`Cannot access Mobile Security Object or Issuer Signed items from the Mdoc`);
   }
   const nameSpaces = json.issuerSigned.nameSpaces;
-  if (!("eu.europa.ec.eudi.pid.1" in nameSpaces)) {
-    throw Error(`Only PID supported at present`);
+  const nameSpaceKeys = Object.keys(nameSpaces);
+  if (nameSpaceKeys.length === 0) {
+    throw Error(`No namespaces found in issuer signed items`);
+  }
+  const items = [];
+  for (const ns of nameSpaceKeys) {
+    items.push(...nameSpaces[ns] || []);
   }
-  const items = nameSpaces["eu.europa.ec.eudi.pid.1"];
-  if (!items || items.length === 0) {
+  if (items.length === 0) {
     throw Error(`No issuer signed items were found`);
   }
+  const IMAGE_CLAIMS = /* @__PURE__ */ new Set([
+    "portrait",
+    "signature_usual_mark"
+  ]);
   const credentialSubject = items.reduce((acc, item) => {
     if (Array.isArray(item.value)) {
       acc[item.key] = item.value.map((val) => val.value).join(", ");
     } else {
-      acc[item.key] = item.value.value;
+      const value = item.value.value;
+      if (IMAGE_CLAIMS.has(item.key) && value != null) {
+        acc[item.key] = bytesToImageDataUri(value);
+      } else {
+        acc[item.key] = value;
+      }
     }
     return acc;
   }, {});
@@ -725,13 +761,50 @@ var mdocDecodedCredentialToUniformCredential = /* @__PURE__ */ __name((decoded,
   if (!issuanceDate) {
     throw Error(`JWT issuance date is required but was not present`);
   }
+  let issuer = opts?.issuer ?? docType;
+  if (credentialSubject.issuing_authority) {
+    issuer = credentialSubject.issuing_authority;
+  }
+  try {
+    const x5chain = json.issuerSigned?.issuerAuth?.unprotectedHeader?.x5chain ?? json.issuerSigned?.issuerAuth?.protectedHeader?.x5chain;
+    if (x5chain && x5chain.length > 0) {
+      const b64 = x5chain[0];
+      let bytes;
+      if (typeof atob === "function") {
+        const binaryStr = atob(b64);
+        bytes = new Uint8Array(binaryStr.length);
+        for (let i = 0; i < binaryStr.length; i++) bytes[i] = binaryStr.charCodeAt(i);
+      } else {
+        const int8 = com.sphereon.kmp.decodeFrom(b64, com.sphereon.kmp.Encoding.BASE64);
+        bytes = new Uint8Array(int8);
+      }
+      let lastCn;
+      for (let i = 0; i < bytes.length - 5; i++) {
+        if (bytes[i] === 85 && bytes[i + 1] === 4 && bytes[i + 2] === 3) {
+          const tag = bytes[i + 3];
+          if (tag === 12 || tag === 19) {
+            const len = bytes[i + 4];
+            if (i + 5 + len <= bytes.length) {
+              const cn = String.fromCharCode(...bytes.slice(i + 5, i + 5 + len));
+              lastCn = cn;
+            }
+          }
+        }
+      }
+      if (lastCn) {
+        issuer = lastCn;
+      }
+    }
+  } catch {
+  }
   const credential = {
     type: [
       docType
     ],
     "@context": [],
+    issuer,
     credentialSubject: {
-      type,
+      type: docType,
       ...credentialSubject
     },
     issuanceDate,
@@ -1127,6 +1200,10 @@ var CredentialMapper = class _CredentialMapper {
       return decodeSdJwtVc(credential, hasher ?? sha2562);
     } else if (_CredentialMapper.isSdJwtDecodedCredential(credential)) {
       return credential;
+    } else if (_CredentialMapper.isMsoMdocOid4VPEncoded(credential)) {
+      return decodeMdocIssuerSigned(credential);
+    } else if (_CredentialMapper.isMsoMdocDecodedCredential(credential)) {
+      return credential;
     } else {
       return credential;
     }