@tidecloak/js 0.9.11

package/dist/esm/modules/tide-js/Cryptide/Signing/BlindSig.js

@@ -0,0 +1,50 @@
+import { RandomBigInt, mod, mod_inv } from "../Math.js";
+import { Point } from "../Ed25519.js";
+import { SHA256_Digest, SHA512_Digest } from "../Hashing/Hash.js";
+import { BigIntFromByteArray, BigIntToByteArray, ConcatUint8Arrays, bytesToBase64 } from "../Serialization.js";
+import { EdDSA } from "../index.js";
+/**
+ *
+ * @param {Point} gR
+ * @param {Point} pub
+ * @param {Uint8Array} message
+ * @param {bigint} multiplier
+ */
+export async function genBlindMessage(gR, pub, message, multiplier) {
+    const blur = RandomBigInt();
+    const gRMul = gR.mul(mod_inv(blur));
+    const eddsaH = mod(BigIntFromByteArray(await SHA512_Digest(ConcatUint8Arrays([gRMul.toRawBytes(), pub.toRawBytes(), message]))));
+    const blurHCMKMul = mod(eddsaH * multiplier * blur);
+    return { blurHCMKMul, blur, gRMul };
+}
+/**
+ *
+ * @param {bigint} blindS
+ * @param {bigint} blur
+ */
+export async function unblindSignature(blindS, blur) {
+    const s = mod(blindS * mod_inv(blur));
+    return s;
+}
+/**
+ *
+ * @param {bigint} S
+ * @param {Point} noncePublic
+ * @param {Point} pub
+ * @param {Uint8Array} message
+ */
+export async function verifyBlindSignature(S, noncePublic, pub, message) {
+    const valid = await EdDSA.verifyRaw(S, noncePublic, pub, message);
+    if (!valid) {
+        console.error(`Signature failed. \nM: ${bytesToBase64(message)}\nS: ${S.toString()}\nNoncePublic: ${noncePublic.toBase64()}\nPublic: ${pub.toBase64()}`);
+    }
+    return valid;
+}
+/**
+ * @param {bigint} S
+ * @param {Point} noncePublic
+ */
+export function serializeBlindSig(S, noncePublic) {
+    return ConcatUint8Arrays([BigIntToByteArray(S), noncePublic.toRawBytes()]);
+}
+//# sourceMappingURL=BlindSig.js.map

package/dist/esm/modules/tide-js/Cryptide/Signing/BlindSig.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"BlindSig.js","sourceRoot":"","sources":["../../../../../../modules/tide-js/Cryptide/Signing/BlindSig.js"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,GAAG,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AACxD,OAAO,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AACtC,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAClE,OAAO,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAC/G,OAAO,EAAE,KAAK,EAAE,MAAM,aAAa,CAAC;AACpC;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CAAC,EAAE,EAAE,GAAG,EAAE,OAAO,EAAE,UAAU;IAC9D,MAAM,IAAI,GAAG,YAAY,EAAE,CAAC;IAC5B,MAAM,KAAK,GAAG,EAAE,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;IACpC,MAAM,MAAM,GAAG,GAAG,CAAC,mBAAmB,CAAC,MAAM,aAAa,CAAC,iBAAiB,CAAC,CAAC,KAAK,CAAC,UAAU,EAAE,EAAE,GAAG,CAAC,UAAU,EAAE,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACjI,MAAM,WAAW,GAAG,GAAG,CAAC,MAAM,GAAG,UAAU,GAAG,IAAI,CAAC,CAAC;IAEpD,OAAO,EAAC,WAAW,EAAE,IAAI,EAAE,KAAK,EAAC,CAAC;AACtC,CAAC;AACD;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,MAAM,EAAE,IAAI;IAC/C,MAAM,CAAC,GAAG,GAAG,CAAC,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;IACtC,OAAO,CAAC,CAAC;AACb,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE,OAAO;IACnE,MAAM,KAAK,GAAG,MAAM,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,WAAW,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;IAElE,IAAG,CAAC,KAAK,EAAC,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,0BAA0B,aAAa,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,QAAQ,EAAE,kBAAkB,WAAW,CAAC,QAAQ,EAAE,aAAa,GAAG,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAC7J,CAAC;IACD,OAAO,KAAK,CAAC;AACjB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,CAAC,EAAE,WAAW;IAC5C,OAAO,iBAAiB,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,EAAE,WAAW,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;AAC/E,CAAC"}

package/dist/esm/modules/tide-js/Cryptide/Signing/EdDSA.js

@@ -0,0 +1,79 @@
+// 
+// Tide Protocol - Infrastructure for a TRUE Zero-Trust paradigm
+// Copyright (C) 2022 Tide Foundation Ltd
+// 
+// This program is free software and is subject to the terms of 
+// the Tide Community Open Code License as published by the 
+// Tide Foundation Limited. You may modify it and redistribute 
+// it in accordance with and subject to the terms of that License.
+// This program is distributed WITHOUT WARRANTY of any kind, 
+// including without any implied warranty of MERCHANTABILITY or 
+// FITNESS FOR A PARTICULAR PURPOSE.
+// See the Tide Community Open Code License for more details.
+// You should have received a copy of the Tide Community Open 
+// Code License along with this program.
+// If not, see https://tide.org/licenses_tcoc2-0-0-en
+//
+import { Point, CURVE } from "../Ed25519.js";
+import { SHA512_Digest } from "../Hashing/Hash.js";
+import { RandomBigInt, mod } from "../Math.js";
+import { base64ToBytes, BigIntFromByteArray, BigIntToByteArray, bytesToBase64, ConcatUint8Arrays, StringToUint8Array } from "../Serialization.js";
+/**
+ * Sign the msg with a private key in non-standard way as it uses a random number generator. Non-deterministic.
+ * @param {string | Uint8Array} msg
+ * @param {bigint} priv
+ * @returns A base64 encoding of the signature
+ */
+export async function sign(msg, priv) {
+    if (typeof (msg) == 'string') {
+        msg = StringToUint8Array(msg);
+    }
+    const A = Point.BASE.mul(priv).toRawBytes();
+    const r = RandomBigInt();
+    const R = Point.BASE.mul(r).toRawBytes();
+    const to_hash2 = ConcatUint8Arrays([R, A, msg]);
+    const k = mod(BigIntFromByteArray(await SHA512_Digest(to_hash2)));
+    const S = mod(r + (k * priv));
+    const sig_bytes = ConcatUint8Arrays([R, BigIntToByteArray(S)]);
+    return bytesToBase64(sig_bytes);
+}
+/**
+ * Verify a EdDSA signature, given a signature, public key and message.
+ * @param {string} sig In base64
+ * @param {string | Point} pub
+ * @param {string | Uint8Array} msg
+ * @returns Boolean dependant on whether the signature is valid or not.
+ */
+export async function verify(sig, pub, msg) {
+    try {
+        if (typeof (msg) == 'string') {
+            msg = StringToUint8Array(msg);
+        }
+        const sig_bytes = base64ToBytes(sig);
+        if (sig_bytes.length != 64)
+            return false;
+        const R = Point.fromBytes(sig_bytes.slice(0, 32));
+        const S = BigIntFromByteArray(sig_bytes.slice(-32));
+        const A = typeof (pub) === 'string' ? Point.fromBase64(pub) : pub;
+        return await verifyRaw(S, R, A, msg);
+    }
+    catch {
+        return false; // very strict indeed
+    }
+}
+/**
+ * Verify a message with raw S and R
+ * @param {bigint} S
+ * @param {Point} R
+ * @param {Point} A
+ * @param {Uint8Array} M
+ */
+export async function verifyRaw(S, R, A, M) {
+    if (S < BigInt(0) || S >= CURVE.n) {
+        return false;
+    }
+    const to_hash = ConcatUint8Arrays([R.toRawBytes(), A.toRawBytes(), M]);
+    const k = mod(BigIntFromByteArray(await SHA512_Digest(to_hash)));
+    return Point.BASE.mul(S).mul(BigInt(8)).equals(R.mul(BigInt(8)).add(A.mul(k).mul(BigInt(8))));
+}
+//# sourceMappingURL=EdDSA.js.map

package/dist/esm/modules/tide-js/Cryptide/Signing/EdDSA.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"EdDSA.js","sourceRoot":"","sources":["../../../../../../modules/tide-js/Cryptide/Signing/EdDSA.js"],"names":[],"mappings":"AAAA,GAAG;AACH,gEAAgE;AAChE,yCAAyC;AACzC,GAAG;AACH,gEAAgE;AAChE,4DAA4D;AAC5D,+DAA+D;AAC/D,kEAAkE;AAClE,6DAA6D;AAC7D,gEAAgE;AAChE,oCAAoC;AACpC,6DAA6D;AAC7D,8DAA8D;AAC9D,wCAAwC;AACxC,qDAAqD;AACrD,EAAE;AAEF,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,GAAG,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,aAAa,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAGlJ;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,IAAI,CAAC,GAAG,EAAE,IAAI;IAChC,IAAG,OAAM,CAAC,GAAG,CAAC,IAAI,QAAQ,EAAC,CAAC;QACxB,GAAG,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;IAClC,CAAC;IAED,MAAM,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,CAAC;IAC5C,MAAM,CAAC,GAAG,YAAY,EAAE,CAAC;IACzB,MAAM,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC;IAEzC,MAAM,QAAQ,GAAG,iBAAiB,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;IAChD,MAAM,CAAC,GAAG,GAAG,CAAC,mBAAmB,CAAC,MAAM,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;IAClE,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC;IAE9B,MAAM,SAAS,GAAG,iBAAiB,CAAC,CAAC,CAAC,EAAE,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC/D,OAAO,aAAa,CAAC,SAAS,CAAC,CAAC;AACpC,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG;IACtC,IAAG,CAAC;QACA,IAAG,OAAM,CAAC,GAAG,CAAC,IAAI,QAAQ,EAAC,CAAC;YACxB,GAAG,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;QAClC,CAAC;QAED,MAAM,SAAS,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;QACrC,IAAG,SAAS,CAAC,MAAM,IAAI,EAAE;YAAE,OAAO,KAAK,CAAC;QAExC,MAAM,CAAC,GAAG,KAAK,CAAC,SAAS,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAClD,MAAM,CAAC,GAAG,mBAAmB,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QACpD,MAAM,CAAC,GAAG,OAAM,CAAC,GAAG,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;QAEjE,OAAO,MAAM,SAAS,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,GAAG,CAAC,CAAA;IACxC,CAAC;IAAA,MAAK,CAAC;QACH,OAAO,KAAK,CAAA,CAAC,qBAAqB;IACtC,CAAC;AACL,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC;IACtC,IAAG,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,KAAK,CAAC,CAAC,EAAC,CAAC;QAC9B,OAAO,KAAK,CAAC;IACjB,CAAC;IAED,MAAM,OAAO,GAAG,iBAAiB,CAAC,CAAC,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC;IACvE,MAAM,CAAC,GAAG,GAAG,CAAC,mBAAmB,CAAC,MAAM,aAAa,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IACjE,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;AAClG,CAAC"}

package/dist/esm/modules/tide-js/Cryptide/Signing/TideSignature.js

@@ -0,0 +1,91 @@
+import { Serialization } from "../index.js";
+import { ConcatUint8Arrays, StringToUint8Array } from "../Serialization.js";
+export class TideSignatureFormat {
+    /**
+     * @param {string|Uint8Array} message
+     */
+    constructor(message) {
+        this.Header = () => "=====TIDE_" + this.Name + ":" + this.Version + "_START=====\n";
+        this.Footer = () => "\n=====TIDE_" + this.Name + ":" + this.Version + "_END=====";
+        if (typeof (message) == 'string') {
+            this.Message = StringToUint8Array(message);
+        }
+        else if (message instanceof Uint8Array) {
+            this.Message = message.slice();
+        }
+        else
+            throw Error("Unknown type provided");
+    }
+    /**
+     *
+     * @returns {Uint8Array}
+     */
+    format() {
+        return ConcatUint8Arrays([StringToUint8Array(this.Header()), this.Message, StringToUint8Array(this.Footer())]);
+    }
+}
+export class URLSignatureFormat extends TideSignatureFormat {
+    constructor(message) {
+        super(message);
+        this.Name = "URL";
+        this.Version = "1";
+    }
+}
+export class ClientURLSignatureFormat extends TideSignatureFormat {
+    constructor(message) {
+        super(message);
+        this.Name = "ClientURL";
+        this.Version = "1";
+    }
+}
+export class PublicKeySignatureFormat extends TideSignatureFormat {
+    constructor(message) {
+        super(message);
+        this.Name = "PublicKey";
+        this.Version = "1";
+    }
+}
+export class AuthorizerSignatureFormat extends TideSignatureFormat {
+    constructor(authflow, modelIds, authorizer) {
+        const authflow_b = StringToUint8Array(authflow);
+        const models_b = modelIds.map(k => StringToUint8Array(k));
+        const authorizer_pack = Serialization.CreateTideMemory(authflow_b, 8 + (4 * models_b.length) + authflow_b.length + models_b.reduce((sum, next) => sum + next.length, 0) + authorizer.length);
+        Serialization.WriteValue(authorizer_pack, 1, authorizer);
+        models_b.forEach((model, i) => {
+            Serialization.WriteValue(authorizer_pack, i + 2, model);
+        });
+        super(authorizer_pack);
+        this.Name = "Authorizer";
+        this.Version = "1";
+    }
+    format() {
+        return this.Message.slice();
+    }
+}
+export class TidecloakSettingsSignatureFormat extends TideSignatureFormat {
+    constructor(message) {
+        super(message);
+        this.Name = "TidecloakSettings";
+        this.Version = "1";
+    }
+}
+export class TestSignatureFormat extends TideSignatureFormat {
+    constructor(message) {
+        super(message);
+        this.Name = "TestMessage";
+        this.Version = "1";
+    }
+}
+export class PlainSignatureFormat extends TideSignatureFormat {
+    /**
+     * WARNING: Only use this class if you are SURE that the data you are signing is ALREADY serialized in some form.
+     * @param {string|Uint8Array} message
+     */
+    constructor(message) {
+        super(message);
+    }
+    format() {
+        return this.Message.slice();
+    }
+}
+//# sourceMappingURL=TideSignature.js.map

package/dist/esm/modules/tide-js/Cryptide/Signing/TideSignature.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TideSignature.js","sourceRoot":"","sources":["../../../../../../modules/tide-js/Cryptide/Signing/TideSignature.js"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAE5E,MAAM,OAAO,mBAAmB;IAK5B;;OAEG;IACH,YAAY,OAAO;QALnB,WAAM,GAAG,GAAG,EAAE,CAAC,YAAY,GAAG,IAAI,CAAC,IAAI,GAAG,GAAG,GAAG,IAAI,CAAC,OAAO,GAAG,eAAe,CAAC;QAC/E,WAAM,GAAG,GAAG,EAAE,CAAC,cAAc,GAAG,IAAI,CAAC,IAAI,GAAG,GAAG,GAAG,IAAI,CAAC,OAAO,GAAG,WAAW,CAAC;QAKzE,IAAG,OAAM,CAAC,OAAO,CAAC,IAAI,QAAQ,EAAC,CAAC;YAC5B,IAAI,CAAC,OAAO,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAC/C,CAAC;aAAK,IAAG,OAAO,YAAY,UAAU,EAAE,CAAC;YACrC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,KAAK,EAAE,CAAC;QACnC,CAAC;;YAAK,MAAM,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC/C,CAAC;IACD;;;OAGG;IACH,MAAM;QACF,OAAO,iBAAiB,CAAC,CAAC,kBAAkB,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE,IAAI,CAAC,OAAO,EAAE,kBAAkB,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,CAAC;IACnH,CAAC;CACJ;AAED,MAAM,OAAO,kBAAmB,SAAQ,mBAAmB;IAGvD,YAAY,OAAO;QACf,KAAK,CAAC,OAAO,CAAC,CAAC;QAHnB,SAAI,GAAG,KAAK,CAAC;QACb,YAAO,GAAG,GAAG,CAAC;IAGd,CAAC;CACJ;AACD,MAAM,OAAO,wBAAyB,SAAQ,mBAAmB;IAG7D,YAAY,OAAO;QACf,KAAK,CAAC,OAAO,CAAC,CAAC;QAHnB,SAAI,GAAG,WAAW,CAAC;QACnB,YAAO,GAAG,GAAG,CAAC;IAGd,CAAC;CACJ;AAED,MAAM,OAAO,wBAAyB,SAAQ,mBAAmB;IAG7D,YAAY,OAAO;QACf,KAAK,CAAC,OAAO,CAAC,CAAC;QAHnB,SAAI,GAAG,WAAW,CAAC;QACnB,YAAO,GAAG,GAAG,CAAC;IAGd,CAAC;CACJ;AAED,MAAM,OAAO,yBAA0B,SAAQ,mBAAmB;IAG9D,YAAY,QAAQ,EAAE,QAAQ,EAAE,UAAU;QACtC,MAAM,UAAU,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAC;QAChD,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1D,MAAM,eAAe,GAAG,aAAa,CAAC,gBAAgB,CAAC,UAAU,EAC7D,CAAC,GAAG,CAAC,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,GAAG,UAAU,CAAC,MAAM,CAC3H,CAAC;QACF,aAAa,CAAC,UAAU,CAAC,eAAe,EAAE,CAAC,EAAE,UAAU,CAAC,CAAC;QACzD,QAAQ,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,CAAC,EAAE,EAAE;YAC1B,aAAa,CAAC,UAAU,CAAC,eAAe,EAAE,CAAC,GAAG,CAAC,EAAE,KAAK,CAAC,CAAC;QAC5D,CAAC,CAAC,CAAC;QACH,KAAK,CAAC,eAAe,CAAC,CAAC;QAZ3B,SAAI,GAAG,YAAY,CAAC;QACpB,YAAO,GAAG,GAAG,CAAC;IAYd,CAAC;IACD,MAAM;QACF,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IAChC,CAAC;CACJ;AAED,MAAM,OAAO,gCAAiC,SAAQ,mBAAmB;IAGrE,YAAY,OAAO;QACf,KAAK,CAAC,OAAO,CAAC,CAAC;QAHnB,SAAI,GAAG,mBAAmB,CAAC;QAC3B,YAAO,GAAG,GAAG,CAAC;IAGd,CAAC;CACJ;AAED,MAAM,OAAO,mBAAoB,SAAQ,mBAAmB;IAGxD,YAAY,OAAO;QACf,KAAK,CAAC,OAAO,CAAC,CAAC;QAHnB,SAAI,GAAG,aAAa,CAAC;QACrB,YAAO,GAAG,GAAG,CAAC;IAGd,CAAC;CACJ;AAED,MAAM,OAAO,oBAAqB,SAAQ,mBAAmB;IACzD;;;OAGG;IACH,YAAY,OAAO;QACf,KAAK,CAAC,OAAO,CAAC,CAAC;IACnB,CAAC;IACD,MAAM;QACF,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IAChC,CAAC;CACJ"}

package/dist/esm/modules/tide-js/Cryptide/TideKey.js

@@ -0,0 +1,71 @@
+import { BaseComponent, BasePrivateComponent, BasePublicComponent, Seed } from "./Components/BaseComponent.js";
+import { Registery } from "./Components/ComponentRegistry.js";
+import { Ed25519SeedComponent } from "./Components/Schemes/Ed25519/Ed25519Components.js";
+import Ed25519Scheme from "./Components/Schemes/Ed25519/Ed25519Scheme.js";
+import { SchemeType } from "./Components/Schemes/SchemeRegistry.js";
+import { computeSharedKey } from "./Encryption/DH.js";
+import { GetPublic, mod, RandomBigInt } from "./Math.js";
+import { BigIntFromByteArray, BigIntToByteArray, Bytes2Hex, bytesToBase64 } from "./Serialization.js";
+export default class TideKey {
+    static NewKey(scheme) {
+        const seedFactory = Registery[scheme.Name][Seed];
+        return new TideKey(seedFactory.Create(undefined));
+    }
+    static FromSerializedComponent(c) {
+        return new TideKey(BaseComponent.DeserializeComponent(c));
+    }
+    constructor(c) {
+        /**@type { BaseComponent } */
+        this.component = undefined;
+        if (c instanceof BaseComponent)
+            this.component = c;
+        else
+            throw Error("Expecting object derived from BaseComponent");
+    }
+    /**
+     *
+     * @returns {BasePrivateComponent}
+     */
+    get_private_component() {
+        if (!hasOwnInstanceMethod(this.component, "GetPrivate") && !(this.component instanceof BasePrivateComponent))
+            throw Error("Cannot generate or find private component");
+        this.privateComponent = this.component instanceof BasePrivateComponent ? this.component : this.component.GetPrivate();
+        return this.privateComponent;
+    }
+    /**
+     * @returns {BasePublicComponent}
+     */
+    get_public_component() {
+        if (!hasOwnInstanceMethod(this.component, "GetPublic") && !(this.component instanceof BasePublicComponent))
+            throw Error("Cannot generate or find public component");
+        this.publicComponent = this.component instanceof BasePublicComponent ? this.component : this.component.GetPublic();
+        return this.publicComponent;
+    }
+    async sign(message) {
+        const f = this.component.Scheme.GetSigningFunction();
+        return await f(message, this.get_private_component());
+    }
+    async verify(message, signature) {
+        const f = this.component.Scheme.GetVerifyingFunction();
+        return await f(message, signature, this.get_public_component());
+    }
+    async prepVouchersReq(gORKn) {
+        // Ensure scheme is Ed25519 for tide vouchers
+        if (this.component.Scheme !== Ed25519Scheme)
+            throw Error("Cannot execute prepVouchersReq on a non Ed25519 key");
+        let blurKeyPub = [];
+        for (let i = 0; i < gORKn.length; i++) {
+            const z = mod(BigIntFromByteArray(await computeSharedKey(gORKn[i], this.get_private_component().priv)));
+            blurKeyPub[i] = gORKn[i].mul(z);
+        }
+        return blurKeyPub;
+    }
+}
+function hasOwnInstanceMethod(obj, methodName) {
+    // get the “own” prototype of this object’s class
+    const proto = Object.getPrototypeOf(obj);
+    // check it has its own property of that name, and that it’s a function
+    return Object.prototype.hasOwnProperty.call(proto, methodName)
+        && typeof proto[methodName] === 'function';
+}
+//# sourceMappingURL=TideKey.js.map

package/dist/esm/modules/tide-js/Cryptide/TideKey.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TideKey.js","sourceRoot":"","sources":["../../../../../modules/tide-js/Cryptide/TideKey.js"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,oBAAoB,EAAE,mBAAmB,EAAE,IAAI,EAAE,MAAM,+BAA+B,CAAC;AAC/G,OAAO,EAAE,SAAS,EAAE,MAAM,mCAAmC,CAAC;AAC9D,OAAO,EAAE,oBAAoB,EAAE,MAAM,mDAAmD,CAAC;AACzF,OAAO,aAAa,MAAM,+CAA+C,CAAC;AAC1E,OAAO,EAAE,UAAU,EAAE,MAAM,wCAAwC,CAAC;AACpE,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,SAAS,EAAE,GAAG,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AACzD,OAAO,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAEtG,MAAM,CAAC,OAAO,OAAO,OAAO;IAExB,MAAM,CAAC,MAAM,CAAC,MAAM;QAChB,MAAM,WAAW,GAAG,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC;QACjD,OAAO,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC;IACtD,CAAC;IAED,MAAM,CAAC,uBAAuB,CAAC,CAAC;QAC5B,OAAO,IAAI,OAAO,CAAC,aAAa,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9D,CAAC;IAOD,YAAY,CAAC;QALb,6BAA6B;QAC7B,cAAS,GAAG,SAAS,CAAC;QAKlB,IAAG,CAAC,YAAY,aAAa;YAAE,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC;;YAC7C,MAAM,KAAK,CAAC,6CAA6C,CAAC,CAAC;IACpE,CAAC;IACD;;;OAGG;IACH,qBAAqB;QACjB,IAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,SAAS,EAAE,YAAY,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,SAAS,YAAY,oBAAoB,CAAC;YAAE,MAAM,KAAK,CAAC,2CAA2C,CAAC,CAAC;QACtK,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,SAAS,YAAY,oBAAoB,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,CAAC;QACtH,OAAO,IAAI,CAAC,gBAAgB,CAAC;IACjC,CAAC;IACD;;OAEG;IACH,oBAAoB;QAChB,IAAG,CAAC,oBAAoB,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,SAAS,YAAY,mBAAmB,CAAC;YAAE,MAAM,KAAK,CAAC,0CAA0C,CAAC,CAAC;QACnK,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC,SAAS,YAAY,mBAAmB,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,EAAE,CAAC;QACnH,OAAO,IAAI,CAAC,eAAe,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAAO;QACd,MAAM,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC;QACrD,OAAO,MAAM,CAAC,CAAC,OAAO,EAAE,IAAI,CAAC,qBAAqB,EAAE,CAAC,CAAC;IAC1D,CAAC;IACD,KAAK,CAAC,MAAM,CAAC,OAAO,EAAE,SAAS;QAC3B,MAAM,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,oBAAoB,EAAE,CAAC;QACvD,OAAO,MAAM,CAAC,CAAC,OAAO,EAAE,SAAS,EAAE,IAAI,CAAC,oBAAoB,EAAE,CAAC,CAAC;IACpE,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,KAAK;QACvB,6CAA6C;QAC7C,IAAG,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,aAAa;YAAE,MAAM,KAAK,CAAC,qDAAqD,CAAC,CAAC;QAC/G,IAAI,UAAU,GAAG,EAAE,CAAC;QACpB,KAAI,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAE,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAC,CAAC;YACjC,MAAM,CAAC,GAAG,GAAG,CAAC,mBAAmB,CAAC,MAAM,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,qBAAqB,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YACxG,UAAU,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QACpC,CAAC;QACD,OAAO,UAAU,CAAC;IACtB,CAAC;CACJ;AAED,SAAS,oBAAoB,CAAC,GAAG,EAAE,UAAU;IACzC,iDAAiD;IACjD,MAAM,KAAK,GAAG,MAAM,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC;IACzC,uEAAuE;IACvE,OAAO,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,UAAU,CAAC;WACvD,OAAO,KAAK,CAAC,UAAU,CAAC,KAAK,UAAU,CAAC;AACnD,CAAC"}

package/dist/esm/modules/tide-js/Cryptide/TideMemoryObjects.js

@@ -0,0 +1,30 @@
+import { CreateTideMemory, writeInt64LittleEndian, WriteValue } from "./Serialization.js";
+import { Utils } from "../index.js";
+import { Ed25519PublicComponent } from "./Components/Schemes/Ed25519/Ed25519Components.js";
+import { AuthorizerSignatureFormat } from "./Signing/TideSignature.js";
+/**
+ *
+ * @param {Ed25519PublicComponent} gvrk
+ * @param {number | bigint} expiry
+ */
+export function CreateVRKPackage(gvrk, expiry) {
+    const serializedgvrk = gvrk.Serialize().ToBytes();
+    const ex = typeof expiry == "bigint" ? expiry : BigInt(expiry);
+    if (ex < BigInt(Utils.CurrentTime() + 5))
+        throw Error("Expiry must be at least 5 seconds into future");
+    const time_b = writeInt64LittleEndian(ex);
+    const vrk_pack = CreateTideMemory(serializedgvrk, 4 + 4 + serializedgvrk.length + time_b.length);
+    WriteValue(vrk_pack, 1, time_b);
+    return vrk_pack;
+}
+/**
+ *
+ * @param {string} authFlow
+ * @param {string[]} signModels
+ * @param {Uint8Array} vrk_pack
+ * @returns
+ */
+export function CreateAuthorizerPackage(authFlow, signModels, vrk_pack) {
+    return new AuthorizerSignatureFormat(authFlow, signModels, vrk_pack).format();
+}
+//# sourceMappingURL=TideMemoryObjects.js.map

package/dist/esm/modules/tide-js/Cryptide/TideMemoryObjects.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TideMemoryObjects.js","sourceRoot":"","sources":["../../../../../modules/tide-js/Cryptide/TideMemoryObjects.js"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,sBAAsB,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAC1F,OAAO,EAAE,KAAK,EAAE,MAAM,aAAa,CAAC;AACpC,OAAO,EAAE,sBAAsB,EAAE,MAAM,mDAAmD,CAAC;AAC3F,OAAO,EAAE,yBAAyB,EAAE,MAAM,4BAA4B,CAAC;AAEvE;;;;GAIG;AACH,MAAM,UAAU,gBAAgB,CAAC,IAAI,EAAE,MAAM;IACzC,MAAM,cAAc,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC,OAAO,EAAE,CAAC;IAClD,MAAM,EAAE,GAAG,OAAO,MAAM,IAAI,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IAC/D,IAAG,EAAE,GAAG,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;QAAE,MAAM,KAAK,CAAC,+CAA+C,CAAC,CAAC;IACtG,MAAM,MAAM,GAAG,sBAAsB,CAAC,EAAE,CAAC,CAAC;IAC1C,MAAM,QAAQ,GAAG,gBAAgB,CAAC,cAAc,EAC5C,CAAC,GAAG,CAAC,GAAG,cAAc,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAChD,CAAC;IACF,UAAU,CAAC,QAAQ,EAAE,CAAC,EAAE,MAAM,CAAC,CAAC;IAChC,OAAO,QAAQ,CAAC;AACpB,CAAC;AACD;;;;;;GAMG;AACH,MAAM,UAAU,uBAAuB,CAAC,QAAQ,EAAE,UAAU,EAAE,QAAQ;IAClE,OAAO,IAAI,yBAAyB,CAAC,QAAQ,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC,MAAM,EAAE,CAAC;AAClF,CAAC"}

package/dist/esm/modules/tide-js/Cryptide/index.js

@@ -0,0 +1,34 @@
+// 
+// Tide Protocol - Infrastructure for a TRUE Zero-Trust paradigm
+// Copyright (C) 2022 Tide Foundation Ltd
+// 
+// This program is free software and is subject to the terms of 
+// the Tide Community Open Code License as published by the 
+// Tide Foundation Limited. You may modify it and redistribute 
+// it in accordance with and subject to the terms of that License.
+// This program is distributed WITHOUT WARRANTY of any kind, 
+// including without any implied warranty of MERCHANTABILITY or 
+// FITNESS FOR A PARTICULAR PURPOSE.
+// See the Tide Community Open Code License for more details.
+// You should have received a copy of the Tide Community Open 
+// Code License along with this program.
+// If not, see https://tide.org/licenses_tcoc2-0-0-en
+//
+export { default as ElGamal } from "./Encryption/ElGamal.js";
+import * as AES from "./Encryption/AES.js";
+export { AES };
+import * as DH from "./Encryption/DH.js";
+export { DH };
+import * as EdDSA from "./Signing/EdDSA.js";
+export { EdDSA };
+import * as Hash from "./Hashing/Hash.js";
+export { Hash };
+import * as HashToPoint from "./Hashing/H2P.js";
+export { HashToPoint };
+import * as Interpolation from "./Interpolation.js";
+export { Interpolation };
+import * as Math from "./Math.js";
+export { Math };
+import * as Serialization from "./Serialization.js";
+export { Serialization };
+//# sourceMappingURL=index.js.map

package/dist/esm/modules/tide-js/Cryptide/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../modules/tide-js/Cryptide/index.js"],"names":[],"mappings":"AAAA,GAAG;AACH,gEAAgE;AAChE,yCAAyC;AACzC,GAAG;AACH,gEAAgE;AAChE,4DAA4D;AAC5D,+DAA+D;AAC/D,kEAAkE;AAClE,6DAA6D;AAC7D,gEAAgE;AAChE,oCAAoC;AACpC,6DAA6D;AAC7D,8DAA8D;AAC9D,wCAAwC;AACxC,qDAAqD;AACrD,EAAE;AAEF,OAAO,EAAE,OAAO,IAAI,OAAO,EAAE,MAAM,yBAAyB,CAAA;AAE5D,OAAO,KAAK,GAAG,MAAM,qBAAqB,CAAA;AAC1C,OAAO,EAAE,GAAG,EAAE,CAAC;AAEf,OAAO,KAAK,EAAE,MAAM,oBAAoB,CAAA;AACxC,OAAO,EAAE,EAAE,EAAE,CAAC;AAEd,OAAO,KAAK,KAAK,MAAM,oBAAoB,CAAA;AAC3C,OAAO,EAAE,KAAK,EAAE,CAAC;AAEjB,OAAO,KAAK,IAAI,MAAM,mBAAmB,CAAA;AACzC,OAAO,EAAE,IAAI,EAAE,CAAC;AAEhB,OAAO,KAAK,WAAW,MAAM,kBAAkB,CAAA;AAC/C,OAAO,EAAE,WAAW,EAAE,CAAC;AAEvB,OAAO,KAAK,aAAa,MAAM,oBAAoB,CAAA;AACnD,OAAO,EAAE,aAAa,EAAE,CAAC;AAEzB,OAAO,KAAK,IAAI,MAAM,WAAW,CAAA;AACjC,OAAO,EAAE,IAAI,EAAE,CAAC;AAEhB,OAAO,KAAK,aAAa,MAAM,oBAAoB,CAAA;AACnD,OAAO,EAAE,aAAa,EAAE,CAAC"}

package/dist/esm/modules/tide-js/Flow/AuthenticationFlows/dCMKAcceptAdminFlow.js

@@ -0,0 +1,3 @@
+export default class dCMKAcceptAdminFlow {
+}
+//# sourceMappingURL=dCMKAcceptAdminFlow.js.map

package/dist/esm/modules/tide-js/Flow/AuthenticationFlows/dCMKAcceptAdminFlow.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dCMKAcceptAdminFlow.js","sourceRoot":"","sources":["../../../../../../modules/tide-js/Flow/AuthenticationFlows/dCMKAcceptAdminFlow.js"],"names":[],"mappings":"AAAA,MAAM,CAAC,OAAO,OAAO,mBAAmB;CAEvC"}

package/dist/esm/modules/tide-js/Flow/AuthenticationFlows/dCMKPasswordFlow.js

@@ -0,0 +1,132 @@
+// 
+// Tide Protocol - Infrastructure for a TRUE Zero-Trust paradigm
+// Copyright (C) 2022 Tide Foundation Ltd
+// 
+// This program is free software and is subject to the terms of 
+// the Tide Community Open Code License as published by the 
+// Tide Foundation Limited. You may modify it and redistribute 
+// it in accordance with and subject to the terms of that License.
+// This program is distributed WITHOUT WARRANTY of any kind, 
+// including without any implied warranty of MERCHANTABILITY or 
+// FITNESS FOR A PARTICULAR PURPOSE.
+// See the Tide Community Open Code License for more details.
+// You should have received a copy of the Tide Community Open 
+// Code License along with this program.
+// If not, see https://tide.org/licenses_tcoc2-0-0-en
+//
+import NodeClient from "../../Clients/NodeClient.js";
+import { DH, Interpolation } from "../../Cryptide/index.js";
+import { AuthenticateBasicReply, AuthenticateConsentReply, CmkConvertReply, PrismConvertReply } from "../../Math/KeyAuthentication.js";
+import { Math } from "../../Cryptide/index.js";
+import { Max, Threshold, WaitForNumberofORKs, sortORKs } from "../../Tools/Utils.js";
+import { RandomBigInt } from "../../Cryptide/Math.js";
+import { BigIntFromByteArray, GetUID, Hex2Bytes, base64ToBytes, bitArrayToUint8Array, serializeBitArray, uint8ArrayToBitArray } from "../../Cryptide/Serialization.js";
+import EnclaveEntry from "../../Models/EnclaveEntry.js";
+import VoucherFlow from "../VoucherFlows/VoucherFlow.js";
+import KeyInfo from "../../Models/Infos/KeyInfo.js";
+import { Point } from "../../Cryptide/Ed25519.js";
+import TideKey from "../../Cryptide/TideKey.js";
+export default class dCMKPasswordFlow {
+    /**
+     * @param {KeyInfo} keyInfo
+     * @param {string} sessID
+     * @param {boolean} cmkCommitted
+     * @param {boolean} prismCommitted
+     * @param {string} voucherURL
+     * @param {string} purpose
+     */
+    constructor(keyInfo, sessID, cmkCommitted, prismCommitted, voucherURL, purpose = null) {
+        this.keyInfo = new KeyInfo(keyInfo.UserId, keyInfo.UserPublic, keyInfo.UserM, keyInfo.OrkInfo.slice());
+        this.sessID = sessID;
+        this.keyInfo.OrkInfo = sortORKs(this.keyInfo.OrkInfo);
+        this.cmkCommitted = cmkCommitted;
+        this.prismCommitted = prismCommitted;
+        this.voucherURL = voucherURL;
+        this.purpose = purpose == null ? "auth" : purpose;
+        this.cState = undefined;
+    }
+    /**
+     * @param {TideKey} sessKey
+     * @param {Point} gSessKeyPub
+     * @param {Point} gPass
+     * @param {Point} gCMK
+     * @param {boolean} rememberMe
+     */
+    async Convert(sessKey, gPass, gCMK, rememberMe) {
+        const clients = this.keyInfo.OrkInfo.map(ork => new NodeClient(ork.orkURL)); // create node clients
+        const voucherFlow = new VoucherFlow(this.keyInfo.OrkInfo.map(o => o.orkPaymentPublic), this.voucherURL, "signin");
+        const { vouchers, k } = await voucherFlow.GetVouchers();
+        const r1 = Math.RandomBigInt();
+        const gBlurPass = gPass.mul(r1);
+        // Here we also find out which ORKs are up
+        const pre_ConvertResponses = clients.map((client, i) => client.Convert(i, this.keyInfo.UserId, gBlurPass, sessKey.get_public_component(), rememberMe, vouchers.toORK(i), this.keyInfo.UserM, this.cmkCommitted, this.prismCommitted));
+        // To save time
+        const prkECDHi = await DH.generateECDHi(this.keyInfo.OrkInfo.map(o => o.orkPublic), sessKey.get_private_component().rawBytes);
+        const { fulfilledResponses, bitwise } = await WaitForNumberofORKs(this.keyInfo.OrkInfo, pre_ConvertResponses, "CMK", Threshold, null, prkECDHi);
+        const ids = this.keyInfo.OrkInfo.map(c => BigInt(c.orkID));
+        const { prismAuthis, timestampi, selfRequesti, expired } = await PrismConvertReply(fulfilledResponses.map(c => c.PrismConvertResponse), ids, this.keyInfo.OrkInfo.map(c => c.orkPublic), r1, prkECDHi);
+        this.cState = {
+            selfRequesti,
+            expired,
+            bitwise,
+            prkECDHi,
+            ...await CmkConvertReply(fulfilledResponses.map(c => c.CMKConvertResponse), ids, prismAuthis, gCMK, timestampi, this.sessID, this.purpose, Point.fromBytes(Hex2Bytes(vouchers.qPub).slice(-32)), // to translate between tide component and native object
+            BigIntFromByteArray(base64ToBytes(vouchers.UDeObf).slice(-32)), // to translate between tide component and native object
+            k.get_private_component().priv, sessKey.get_public_component())
+        };
+        return {
+            VUID: this.cState.VUID
+        };
+    }
+    /**
+     *
+     * @param {TideKey} sessKey
+     * @param {Point} gSessKeyPub
+     * @param {Point} gPass
+     */
+    async ConvertPassword(sessKey, gPass) {
+        if (this.cState != undefined)
+            throw Error("This function must be called as a standlone in this flow");
+        const r1 = RandomBigInt();
+        const gBlurPass = gPass.mul(r1);
+        const clients = this.keyInfo.OrkInfo.map(ork => new NodeClient(ork.orkURL)); // create node clients
+        const voucherFlow = new VoucherFlow(this.keyInfo.OrkInfo.map(o => o.orkPaymentPublic), this.voucherURL, "updateaccount");
+        const { vouchers } = await voucherFlow.GetVouchers();
+        const pre_convertPassResponses = clients.map((client, i) => client.ConvertPass(i, this.keyInfo.UserId, gBlurPass, sessKey.get_public_component(), vouchers.toORK(i), this.keyInfo.UserM));
+        // To save time
+        const prkECDHi = await DH.generateECDHi(this.keyInfo.OrkInfo.map(o => o.orkPublic), sessKey.get_private_component().rawBytes);
+        const { fulfilledResponses, bitwise } = await WaitForNumberofORKs(this.keyInfo.OrkInfo, pre_convertPassResponses, "CMK", Threshold, null, prkECDHi);
+        const { prismAuthis, timestampi, selfRequesti, expired } = await PrismConvertReply(fulfilledResponses, this.keyInfo.OrkInfo.map(c => BigInt(c.orkID)), this.keyInfo.OrkInfo.map(c => c.orkPublic), r1, prkECDHi);
+        return {
+            bitwise: bitwise,
+            expired,
+            selfRequesti
+        };
+    }
+    /**
+     * @param {Point} gVRK If a null value is provided, no encryption is applied.
+     * @param {Uint8Array} sessKey
+     * @param {string} consentToSign
+     */
+    async Authenticate(gVRK, sessKey = null, consentToSign = null) {
+        if (this.cState == undefined)
+            throw Error("Convert State is undefined");
+        const cmkClients = this.keyInfo.OrkInfo.map(ork => new NodeClient(ork.orkURL));
+        const pre_encSig = cmkClients.map((client, i) => client.Authenticate(this.keyInfo.UserId, this.cState.selfRequesti[i], this.cState.blurHCMKMul, serializeBitArray(this.cState.bitwise), this.cmkCommitted, this.prismCommitted));
+        const encSig = await Promise.all(pre_encSig);
+        let vendorEncryptedData;
+        if (consentToSign == null) {
+            vendorEncryptedData = await AuthenticateBasicReply(this.cState.VUID, this.cState.prkECDHi, encSig, this.cState.gCMKAuth, this.cState.authToken, this.cState.r4, this.cState.gRMul, gVRK);
+        }
+        else {
+            vendorEncryptedData = await AuthenticateConsentReply(this.cState.VUID, this.cState.prkECDHi, encSig, this.cState.gCMKAuth, this.cState.authToken, this.cState.r4, this.cState.gRMul, gVRK, BigIntFromByteArray(sessKey), consentToSign);
+        }
+        return {
+            bitwise: this.cState.bitwise,
+            expired: this.cState.expired,
+            selfRequesti: this.cState.selfRequesti,
+            vendorEncryptedData: vendorEncryptedData
+        };
+    }
+}
+//# sourceMappingURL=dCMKPasswordFlow.js.map

package/dist/esm/modules/tide-js/Flow/AuthenticationFlows/dCMKPasswordFlow.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dCMKPasswordFlow.js","sourceRoot":"","sources":["../../../../../../modules/tide-js/Flow/AuthenticationFlows/dCMKPasswordFlow.js"],"names":[],"mappings":"AAAA,GAAG;AACH,gEAAgE;AAChE,yCAAyC;AACzC,GAAG;AACH,gEAAgE;AAChE,4DAA4D;AAC5D,+DAA+D;AAC/D,kEAAkE;AAClE,6DAA6D;AAC7D,gEAAgE;AAChE,oCAAoC;AACpC,6DAA6D;AAC7D,8DAA8D;AAC9D,wCAAwC;AACxC,qDAAqD;AACrD,EAAE;AAEF,OAAO,UAAU,MAAM,6BAA6B,CAAC;AACrD,OAAO,EAAC,EAAE,EAAE,aAAa,EAAC,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,sBAAsB,EAAE,wBAAwB,EAAE,eAAe,EAAE,iBAAiB,EAAG,MAAM,iCAAiC,CAAC;AACxI,OAAO,EAAE,IAAI,EAAE,MAAM,yBAAyB,CAAC;AAC/C,OAAO,EAAE,GAAG,EAAE,SAAS,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AACrF,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AACtD,OAAO,EAAE,mBAAmB,EAAE,MAAM,EAAE,SAAS,EAAE,aAAa,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AACvK,OAAO,YAAY,MAAM,8BAA8B,CAAC;AACxD,OAAO,WAAW,MAAM,gCAAgC,CAAC;AACzD,OAAO,OAAO,MAAM,+BAA+B,CAAC;AACpD,OAAO,EAAE,KAAK,EAAE,MAAM,2BAA2B,CAAC;AAClD,OAAO,OAAO,MAAM,2BAA2B,CAAC;AAEhD,MAAM,CAAC,OAAO,OAAO,gBAAgB;IACjC;;;;;;;OAOG;IACH,YAAY,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,cAAc,EAAE,UAAU,EAAE,OAAO,GAAC,IAAI;QAC/E,IAAI,CAAC,OAAO,GAAG,IAAI,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,KAAK,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;QACvG,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,OAAO,CAAC,OAAO,GAAG,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACtD,IAAI,CAAC,YAAY,GAAG,YAAY,CAAA;QAChC,IAAI,CAAC,cAAc,GAAG,cAAc,CAAA;QACpC,IAAI,CAAC,UAAU,GAAG,UAAU,CAAA;QAC5B,IAAI,CAAC,OAAO,GAAG,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAA;QAEjD,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC;IAChC,CAAC;IAEG;;;;;;OAMG;IACH,KAAK,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,UAAU;QAC1C,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAA,CAAC,sBAAsB;QAElG,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,gBAAgB,CAAC,EAAE,IAAI,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;QAClH,MAAM,EAAC,QAAQ,EAAE,CAAC,EAAC,GAAG,MAAM,WAAW,CAAC,WAAW,EAAE,CAAC;QAEtD,MAAM,EAAE,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QAC/B,MAAM,SAAS,GAAG,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEhC,0CAA0C;QAC1C,MAAM,oBAAoB,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,SAAS,EAAE,OAAO,CAAC,oBAAoB,EAAE,EAAE,UAAU,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC;QAEtO,eAAe;QACf,MAAM,QAAQ,GAAG,MAAM,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,OAAO,CAAC,qBAAqB,EAAE,CAAC,QAAQ,CAAC,CAAC;QAE9H,MAAM,EAAC,kBAAkB,EAAE,OAAO,EAAC,GAAG,MAAM,mBAAmB,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,oBAAoB,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC;QAE9I,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC;QAC3D,MAAM,EAAC,WAAW,EAAE,UAAU,EAAE,YAAY,EAAE,OAAO,EAAC,GAAG,MAAM,iBAAiB,CAC5E,kBAAkB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,oBAAoB,CAAC,EACnD,GAAG,EACH,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,EAC1C,EAAE,EACF,QAAQ,CAAC,CAAC;QAEd,IAAI,CAAC,MAAM,GAAG;YACV,YAAY;YACZ,OAAO;YACP,OAAO;YACP,QAAQ;YACR,GAAI,MAAM,eAAe,CACrB,kBAAkB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,kBAAkB,CAAC,EACjD,GAAG,EACH,WAAW,EACX,IAAI,EACJ,UAAU,EACV,IAAI,CAAC,MAAM,EACX,IAAI,CAAC,OAAO,EACZ,KAAK,CAAC,SAAS,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,wDAAwD;YAC9G,mBAAmB,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,wDAAwD;YACxH,CAAC,CAAC,qBAAqB,EAAE,CAAC,IAAI,EAC9B,OAAO,CAAC,oBAAoB,EAAE,CACjC;SACJ,CAAA;QACD,OAAO;YACH,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI;SACzB,CAAA;IACL,CAAC;IACD;;;;;OAKG;IACH,KAAK,CAAC,eAAe,CAAC,OAAO,EAAE,KAAK;QAChC,IAAG,IAAI,CAAC,MAAM,IAAI,SAAS;YAAE,MAAM,KAAK,CAAC,0DAA0D,CAAC,CAAC;QAErG,MAAM,EAAE,GAAG,YAAY,EAAE,CAAC;QAC1B,MAAM,SAAS,GAAG,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEhC,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAA,CAAC,sBAAsB;QAElG,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,gBAAgB,CAAC,EAAE,IAAI,CAAC,UAAU,EAAE,eAAe,CAAC,CAAC;QACzH,MAAM,EAAC,QAAQ,EAAC,GAAG,MAAM,WAAW,CAAC,WAAW,EAAE,CAAC;QAEnD,MAAM,wBAAwB,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,SAAS,EAAE,OAAO,CAAC,oBAAoB,EAAE,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;QAE1L,eAAe;QACf,MAAM,QAAQ,GAAG,MAAM,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,OAAO,CAAC,qBAAqB,EAAE,CAAC,QAAQ,CAAC,CAAC;QAE9H,MAAM,EAAE,kBAAkB,EAAE,OAAO,EAAE,GAAG,MAAM,mBAAmB,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,wBAAwB,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC;QAEpJ,MAAM,EAAC,WAAW,EAAE,UAAU,EAAE,YAAY,EAAE,OAAO,EAAC,GAAG,MAAM,iBAAiB,CAC5E,kBAAkB,EAClB,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAC9C,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,EAC1C,EAAE,EACF,QAAQ,CAAC,CAAC;QAEd,OAAO;YACH,OAAO,EAAE,OAAO;YAChB,OAAO;YACP,YAAY;SACf,CAAA;IACL,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,OAAO,GAAC,IAAI,EAAE,aAAa,GAAC,IAAI;QACrD,IAAG,IAAI,CAAC,MAAM,IAAI,SAAS;YAAE,MAAM,KAAK,CAAC,4BAA4B,CAAC,CAAC;QACvE,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAA;QAE9E,MAAM,UAAU,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,YAAY,CAChE,IAAI,CAAC,OAAO,CAAC,MAAM,EACnB,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,EAC3B,IAAI,CAAC,MAAM,CAAC,WAAW,EACvB,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,EACtC,IAAI,CAAC,YAAY,EACjB,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC;QAE1B,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAC7C,IAAI,mBAAmB,CAAC;QACxB,IAAG,aAAa,IAAI,IAAI,EAAC,CAAC;YACtB,mBAAmB,GAAG,MAAM,sBAAsB,CAC9C,IAAI,CAAC,MAAM,CAAC,IAAI,EAChB,IAAI,CAAC,MAAM,CAAC,QAAQ,EACpB,MAAM,EACN,IAAI,CAAC,MAAM,CAAC,QAAQ,EACpB,IAAI,CAAC,MAAM,CAAC,SAAS,EACrB,IAAI,CAAC,MAAM,CAAC,EAAE,EACd,IAAI,CAAC,MAAM,CAAC,KAAK,EACjB,IAAI,CACP,CAAC;QACN,CAAC;aAAI,CAAC;YACF,mBAAmB,GAAG,MAAM,wBAAwB,CAChD,IAAI,CAAC,MAAM,CAAC,IAAI,EAChB,IAAI,CAAC,MAAM,CAAC,QAAQ,EACpB,MAAM,EACN,IAAI,CAAC,MAAM,CAAC,QAAQ,EACpB,IAAI,CAAC,MAAM,CAAC,SAAS,EACrB,IAAI,CAAC,MAAM,CAAC,EAAE,EACd,IAAI,CAAC,MAAM,CAAC,KAAK,EACjB,IAAI,EACJ,mBAAmB,CAAC,OAAO,CAAC,EAC5B,aAAa,CAChB,CAAC;QACN,CAAC;QACD,OAAO;YACH,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;YAC5B,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;YAC5B,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC,YAAY;YACtC,mBAAmB,EAAE,mBAAmB;SAC3C,CAAA;IACL,CAAC;CACJ"}

package/dist/esm/modules/tide-js/Flow/AuthenticationFlows/dCMKPasswordlessFlow.js

@@ -0,0 +1,77 @@
+// 
+// Tide Protocol - Infrastructure for a TRUE Zero-Trust paradigm
+// Copyright (C) 2022 Tide Foundation Ltd
+// 
+// This program is free software and is subject to the terms of 
+// the Tide Community Open Code License as published by the 
+// Tide Foundation Limited. You may modify it and redistribute 
+// it in accordance with and subject to the terms of that License.
+// This program is distributed WITHOUT WARRANTY of any kind, 
+// including without any implied warranty of MERCHANTABILITY or 
+// FITNESS FOR A PARTICULAR PURPOSE.
+// See the Tide Community Open Code License for more details.
+// You should have received a copy of the Tide Community Open 
+// Code License along with this program.
+// If not, see https://tide.org/licenses_tcoc2-0-0-en
+//
+import NodeClient from "../../Clients/NodeClient.js";
+import { DH, Interpolation } from "../../Cryptide/index.js";
+import { AuthenticateBasicReply, CmkConvertReply, ConvertRememberedReply } from "../../Math/KeyAuthentication.js";
+import { CurrentTime, Max, Threshold, WaitForNumberofORKs, sortORKs } from "../../Tools/Utils.js";
+import EnclaveEntry from "../../Models/EnclaveEntry.js";
+import { base64ToBytes, BigIntFromByteArray, Hex2Bytes, serializeBitArray, uint8ArrayToBitArray } from "../../Cryptide/Serialization.js";
+import { GetPublic } from "../../Cryptide/Math.js";
+import VoucherFlow from "../VoucherFlows/VoucherFlow.js";
+import { Point } from "../../Cryptide/Ed25519.js";
+import TideKey from "../../Cryptide/TideKey.js";
+export default class dCMKPasswordlessFlow {
+    /**
+     * @param {string} sessID
+     * @param {EnclaveEntry} flowInitData
+     * @param {string} voucherURL
+     */
+    constructor(sessID, flowInitData, voucherURL) {
+        this.sessID = sessID;
+        if (flowInitData.expired < BigInt(CurrentTime()))
+            throw Error("Please log in again.");
+        this.uid = flowInitData.userInfo.UserId;
+        this.selfRequesti = flowInitData.selfRequesti;
+        this.bitwise = flowInitData.orksBitwise;
+        this.orks = sortORKs(flowInitData.userInfo.OrkInfo).filter((_, i) => this.bitwise[i] == 1);
+        this.userPublic = flowInitData.userInfo.UserPublic;
+        this.sessKey = TideKey.FromSerializedComponent(flowInitData.sessKey);
+        this.voucherURL = voucherURL;
+        this.cState = undefined;
+        this.aState = undefined;
+    }
+    async ConvertRemembered() {
+        const clients = this.orks.map(ork => new NodeClient(ork.orkURL)); // create node clients
+        const voucherFlow = new VoucherFlow(this.orks.map(o => o.orkPaymentPublic), this.voucherURL, "signin");
+        const { vouchers, k } = await voucherFlow.GetVouchers();
+        const pre_ConvertAuthnResponses = clients.map((client, i) => client.ConvertRemembered(i, this.uid, this.selfRequesti[i], vouchers.toORK(i)));
+        // To save time
+        const prkECDHi = await DH.generateECDHi(this.orks.map(o => o.orkPublic), this.sessKey.get_private_component().rawBytes);
+        const { fulfilledResponses, bitwise } = await WaitForNumberofORKs(this.orks, pre_ConvertAuthnResponses, "CMK", Threshold, this.bitwise, prkECDHi);
+        this.cState = {
+            bitwise,
+            ...await ConvertRememberedReply(fulfilledResponses, this.orks.map(o => BigInt(o.orkID)), this.userPublic, this.sessID, prkECDHi, Point.fromBytes(Hex2Bytes(vouchers.qPub).slice(-32)), // to translate between tide component and native object
+            BigIntFromByteArray(base64ToBytes(vouchers.UDeObf).slice(-32)), // to translate between tide component and native object
+            k.get_private_component().priv, this.sessKey.get_public_component())
+        };
+        return {
+            VUID: this.cState.VUID
+        };
+    }
+    /**
+     * @param {Point} gVRK If a null value is provided, no encryption is applied.
+     */
+    async AuthenticateRemembered(gVRK) {
+        if (this.cState == undefined)
+            throw Error("Convert State is undefined");
+        const cmkClients = this.orks.map(ork => new NodeClient(ork.orkURL));
+        const pre_encSig = cmkClients.map((client, i) => client.AuthenticateRemembered(this.uid, this.cState.blurHCMKMul, serializeBitArray(this.cState.bitwise)));
+        const encSig = await Promise.all(pre_encSig);
+        return await AuthenticateBasicReply(this.cState.VUID, this.cState.prkECDHi, encSig, this.cState.gCMKAuth, this.cState.authToken, this.cState.r4, this.cState.gRMul, gVRK);
+    }
+}
+//# sourceMappingURL=dCMKPasswordlessFlow.js.map

package/dist/esm/modules/tide-js/Flow/AuthenticationFlows/dCMKPasswordlessFlow.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dCMKPasswordlessFlow.js","sourceRoot":"","sources":["../../../../../../modules/tide-js/Flow/AuthenticationFlows/dCMKPasswordlessFlow.js"],"names":[],"mappings":"AAAA,GAAG;AACH,gEAAgE;AAChE,yCAAyC;AACzC,GAAG;AACH,gEAAgE;AAChE,4DAA4D;AAC5D,+DAA+D;AAC/D,kEAAkE;AAClE,6DAA6D;AAC7D,gEAAgE;AAChE,oCAAoC;AACpC,6DAA6D;AAC7D,8DAA8D;AAC9D,wCAAwC;AACxC,qDAAqD;AACrD,EAAE;AAEF,OAAO,UAAU,MAAM,6BAA6B,CAAC;AACrD,OAAO,EAAE,EAAE,EAAE,aAAa,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAE,sBAAsB,EAAE,eAAe,EAAE,sBAAsB,EAAE,MAAM,iCAAiC,CAAC;AAClH,OAAO,EAAE,WAAW,EAAE,GAAG,EAAE,SAAS,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAClG,OAAO,YAAY,MAAM,8BAA8B,CAAC;AACxD,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,SAAS,EAAE,iBAAiB,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AACzI,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAC;AACnD,OAAO,WAAW,MAAM,gCAAgC,CAAC;AACzD,OAAO,EAAE,KAAK,EAAE,MAAM,2BAA2B,CAAC;AAClD,OAAO,OAAO,MAAM,2BAA2B,CAAC;AAEhD,MAAM,CAAC,OAAO,OAAO,oBAAoB;IACrC;;;;OAIG;IACH,YAAY,MAAM,EAAE,YAAY,EAAE,UAAU;QACxC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QAErB,IAAI,YAAY,CAAC,OAAO,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;YAAE,MAAM,KAAK,CAAC,sBAAsB,CAAC,CAAC;QACtF,IAAI,CAAC,GAAG,GAAG,YAAY,CAAC,QAAQ,CAAC,MAAM,CAAC;QACxC,IAAI,CAAC,YAAY,GAAG,YAAY,CAAC,YAAY,CAAC;QAC9C,IAAI,CAAC,OAAO,GAAG,YAAY,CAAC,WAAW,CAAC;QACxC,IAAI,CAAC,IAAI,GAAG,QAAQ,CAAC,YAAY,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;QAC3F,IAAI,CAAC,UAAU,GAAG,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC;QACnD,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,uBAAuB,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC;QACrE,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAE7B,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC;QACxB,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC;IAC5B,CAAC;IAED,KAAK,CAAC,iBAAiB;QACnB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAA,CAAC,sBAAsB;QAEvF,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,gBAAgB,CAAC,EAAE,IAAI,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;QACvG,MAAM,EAAE,QAAQ,EAAE,CAAC,EAAE,GAAG,MAAM,WAAW,CAAC,WAAW,EAAE,CAAC;QAExD,MAAM,yBAAyB,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAE7I,eAAe;QACf,MAAM,QAAQ,GAAG,MAAM,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,qBAAqB,EAAE,CAAC,QAAQ,CAAC,CAAC;QAExH,MAAM,EAAE,kBAAkB,EAAE,OAAO,EAAE,GAAG,MAAM,mBAAmB,CAAC,IAAI,CAAC,IAAI,EAAE,yBAAyB,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QAElJ,IAAI,CAAC,MAAM,GAAG;YACV,OAAO;YACP,GAAI,MAAM,sBAAsB,CAC5B,kBAAkB,EAClB,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EACnC,IAAI,CAAC,UAAU,EACf,IAAI,CAAC,MAAM,EACX,QAAQ,EACR,KAAK,CAAC,SAAS,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,wDAAwD;YAC9G,mBAAmB,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,wDAAwD;YACxH,CAAC,CAAC,qBAAqB,EAAE,CAAC,IAAI,EAC9B,IAAI,CAAC,OAAO,CAAC,oBAAoB,EAAE,CACtC;SACJ,CAAA;QACD,OAAO;YACH,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI;SACzB,CAAA;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,sBAAsB,CAAC,IAAI;QAC7B,IAAI,IAAI,CAAC,MAAM,IAAI,SAAS;YAAE,MAAM,KAAK,CAAC,4BAA4B,CAAC,CAAC;QACxE,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAA;QAEnE,MAAM,UAAU,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,sBAAsB,CAC1E,IAAI,CAAC,GAAG,EACR,IAAI,CAAC,MAAM,CAAC,WAAW,EACvB,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CACzC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAC7C,OAAO,MAAM,sBAAsB,CAC/B,IAAI,CAAC,MAAM,CAAC,IAAI,EAChB,IAAI,CAAC,MAAM,CAAC,QAAQ,EACpB,MAAM,EACN,IAAI,CAAC,MAAM,CAAC,QAAQ,EACpB,IAAI,CAAC,MAAM,CAAC,SAAS,EACrB,IAAI,CAAC,MAAM,CAAC,EAAE,EACd,IAAI,CAAC,MAAM,CAAC,KAAK,EACjB,IAAI,CACP,CAAC;IACN,CAAC;CACJ"}