npm - @vess-id/ai-identity - Versions diffs - 0.3.0 → 0.3.2 - Mend

@vess-id/ai-identity 0.3.0 → 0.3.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (90) hide show

package/dist/agent/agent-did-manager.d.ts +50 -0
package/dist/agent/agent-did-manager.d.ts.map +1 -0
package/dist/auth/auth-provider.d.ts +51 -0
package/dist/auth/auth-provider.d.ts.map +1 -0
package/dist/auth/index.d.ts +2 -0
package/dist/auth/index.d.ts.map +1 -0
package/dist/client.d.ts +80 -0
package/dist/client.d.ts.map +1 -0
package/dist/config/index.d.ts +30 -0
package/dist/config/index.d.ts.map +1 -0
package/dist/constraint/__tests__/fixtures/constraint.fixtures.d.ts +56 -0
package/dist/constraint/__tests__/fixtures/constraint.fixtures.d.ts.map +1 -0
package/dist/constraint/constraint-evaluator.d.ts +72 -0
package/dist/constraint/constraint-evaluator.d.ts.map +1 -0
package/dist/constraint/index.d.ts +5 -0
package/dist/constraint/index.d.ts.map +1 -0
package/dist/did/agent.d.ts +52 -0
package/dist/did/agent.d.ts.map +1 -0
package/dist/did/did-utils.d.ts +75 -0
package/dist/did/did-utils.d.ts.map +1 -0
package/dist/did/key-manager.d.ts +19 -0
package/dist/did/key-manager.d.ts.map +1 -0
package/dist/gateway/gateway-client.d.ts +103 -0
package/dist/gateway/gateway-client.d.ts.map +1 -0
package/dist/gateway/index.d.ts +2 -0
package/dist/gateway/index.d.ts.map +1 -0
package/dist/grant/grant-manager.d.ts +140 -0
package/dist/grant/grant-manager.d.ts.map +1 -0
package/dist/grant/index.d.ts +2 -0
package/dist/grant/index.d.ts.map +1 -0
package/dist/identity/device-enroll-manager.d.ts +111 -0
package/dist/identity/device-enroll-manager.d.ts.map +1 -0
package/dist/identity/user-identity-manager.d.ts +69 -0
package/dist/identity/user-identity-manager.d.ts.map +1 -0
package/dist/identity/user-key-pair-manager.d.ts +22 -0
package/dist/identity/user-key-pair-manager.d.ts.map +1 -0
package/dist/index.d.ts +32 -3077
package/dist/index.d.ts.map +1 -0
package/dist/index.js +351 -45
package/dist/index.js.map +1 -1
package/dist/index.mjs +351 -49
package/dist/index.mjs.map +1 -1
package/dist/memory/memory-manager.d.ts +71 -0
package/dist/memory/memory-manager.d.ts.map +1 -0
package/dist/monitoring/metrics-manager.d.ts +74 -0
package/dist/monitoring/metrics-manager.d.ts.map +1 -0
package/dist/organization/disclosure-config-manager.d.ts +61 -0
package/dist/organization/disclosure-config-manager.d.ts.map +1 -0
package/dist/organization/key-rotation-manager.d.ts +63 -0
package/dist/organization/key-rotation-manager.d.ts.map +1 -0
package/dist/organization/organization-manager.d.ts +38 -0
package/dist/organization/organization-manager.d.ts.map +1 -0
package/dist/registry/access-orchestrator.d.ts +183 -0
package/dist/registry/access-orchestrator.d.ts.map +1 -0
package/dist/registry/action-registry-json.d.ts +1363 -0
package/dist/registry/action-registry-json.d.ts.map +1 -0
package/dist/registry/action-registry.d.ts +65 -0
package/dist/registry/action-registry.d.ts.map +1 -0
package/dist/registry/index.d.ts +4 -0
package/dist/registry/index.d.ts.map +1 -0
package/dist/revocation/revocation-manager.d.ts +98 -0
package/dist/revocation/revocation-manager.d.ts.map +1 -0
package/dist/state/index.d.ts +3 -0
package/dist/state/index.d.ts.map +1 -0
package/dist/state/json-state-store.d.ts +24 -0
package/dist/state/json-state-store.d.ts.map +1 -0
package/dist/state/state-store.interface.d.ts +37 -0
package/dist/state/state-store.interface.d.ts.map +1 -0
package/dist/storage/filesystem-key-storage.d.ts +16 -0
package/dist/storage/filesystem-key-storage.d.ts.map +1 -0
package/dist/storage/index.d.ts +4 -0
package/dist/storage/index.d.ts.map +1 -0
package/dist/storage/key-storage.interface.d.ts +42 -0
package/dist/storage/key-storage.interface.d.ts.map +1 -0
package/dist/storage/memory-key-storage.d.ts +17 -0
package/dist/storage/memory-key-storage.d.ts.map +1 -0
package/dist/tool/tool-manager.d.ts +44 -0
package/dist/tool/tool-manager.d.ts.map +1 -0
package/dist/utils/crypto.d.ts +22 -0
package/dist/utils/crypto.d.ts.map +1 -0
package/dist/utils/sdjwt-client.d.ts +168 -0
package/dist/utils/sdjwt-client.d.ts.map +1 -0
package/dist/vc/api-vc-manager.d.ts +40 -0
package/dist/vc/api-vc-manager.d.ts.map +1 -0
package/dist/vc/vc-manager.d.ts +55 -0
package/dist/vc/vc-manager.d.ts.map +1 -0
package/dist/vp/vp-manager.d.ts +40 -0
package/dist/vp/vp-manager.d.ts.map +1 -0
package/package.json +2 -2
package/dist/index.d.mts +0 -3078

package/dist/registry/action-registry-json.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"action-registry-json.d.ts","sourceRoot":"","sources":["../../src/registry/action-registry-json.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAuc3B,CAAA"}

package/dist/registry/action-registry.d.ts ADDED Viewed

@@ -0,0 +1,65 @@
+import { RiskLevel } from '@vess-id/ai-identity-types';
+export type { RiskLevel };
+export type Relation = 'viewer' | 'editor' | 'admin' | 'owner' | 'act_as';
+/** MVPの対象リソース（必要に応じて拡張） */
+export type ResourceType = 'SlackChannel' | 'GitHubRepo' | 'DriveFile';
+/** JSON Schema を受け取るための型。Ajvで別途メタ検証します。 */
+export type JsonSchema = Record<string, unknown>;
+export interface ActionMeta {
+    action: string;
+    resource_type: ResourceType;
+    required_relations: Relation[];
+    required_scopes: string[];
+    capability?: string;
+    input_schema?: JsonSchema;
+    constraints?: Record<string, unknown>;
+    effects?: string[];
+    risk?: RiskLevel;
+    version: string;
+}
+export interface CapabilityMeta {
+    capability: string;
+    description?: string;
+    includes: string[];
+    version: string;
+}
+export interface ActionRegistry {
+    registry_version: string;
+    actions: ActionMeta[];
+    capabilities?: CapabilityMeta[];
+}
+import Ajv from 'ajv';
+/**
+ * Ajv インスタンスを作成。
+ * - 本体スキーマ（registry/actions/capabilities）を登録
+ * - formats 追加
+ * - $id付きで利用
+ */
+export declare function createAjv(): Ajv;
+/**
+ * Registry全体の構文検証 + 各Actionの input_schema を「JSON Schemaとして」検証。
+ * @returns { ok, errors } 失敗時は diag を含む
+ */
+export declare function validateRegistryObject(registry: unknown): {
+    ok: boolean;
+    errors?: string[];
+};
+/**
+ * JSONファイルからAction Registryを読み込み、完全検証して返す。
+ * @throws Error 検証エラー時は詳細メッセージ付きでthrow
+ */
+export declare function loadActionRegistryFromFile(filePath: string): Promise<ActionRegistry>;
+/**
+ * 既にパース済みのオブジェクトを検証して返す。
+ * @throws Error 検証エラー時は詳細メッセージ付きでthrow
+ */
+export declare function loadActionRegistryFromObject(obj: unknown): ActionRegistry;
+/** アクション名→ActionMeta のルックアップを作成 */
+export declare function indexActions(reg: ActionRegistry): Map<string, ActionMeta>;
+/** Capability名→CapabilityMeta のルックアップを作成 */
+export declare function indexCapabilities(reg: ActionRegistry): Map<string, CapabilityMeta>;
+/** 指定アクションの required_scopes を取得（無ければ空配列） */
+export declare function getRequiredScopes(regIndex: Map<string, ActionMeta>, action: string): string[];
+/** 指定アクションの required_relations（OR解釈）を取得（無ければ空配列） */
+export declare function getRequiredRelations(regIndex: Map<string, ActionMeta>, action: string): Relation[];
+//# sourceMappingURL=action-registry.d.ts.map

package/dist/registry/action-registry.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"action-registry.d.ts","sourceRoot":"","sources":["../../src/registry/action-registry.ts"],"names":[],"mappings":"AAQA,OAAO,EAAE,SAAS,EAAE,MAAM,4BAA4B,CAAA;AACtD,YAAY,EAAE,SAAS,EAAE,CAAA;AACzB,MAAM,MAAM,QAAQ,GAAG,QAAQ,GAAG,QAAQ,GAAG,OAAO,GAAG,OAAO,GAAG,QAAQ,CAAA;AAEzE,2BAA2B;AAC3B,MAAM,MAAM,YAAY,GAAG,cAAc,GAAG,YAAY,GAAG,WAAW,CAAA;AAEtE,2CAA2C;AAC3C,MAAM,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;AAEhD,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAA;IACd,aAAa,EAAE,YAAY,CAAA;IAC3B,kBAAkB,EAAE,QAAQ,EAAE,CAAA;IAC9B,eAAe,EAAE,MAAM,EAAE,CAAA;IACzB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,YAAY,CAAC,EAAE,UAAU,CAAA;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IACrC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAA;IAClB,IAAI,CAAC,EAAE,SAAS,CAAA;IAChB,OAAO,EAAE,MAAM,CAAA;CAChB;AAED,MAAM,WAAW,cAAc;IAC7B,UAAU,EAAE,MAAM,CAAA;IAClB,WAAW,CAAC,EAAE,MAAM,CAAA;IACpB,QAAQ,EAAE,MAAM,EAAE,CAAA;IAClB,OAAO,EAAE,MAAM,CAAA;CAChB;AAED,MAAM,WAAW,cAAc;IAC7B,gBAAgB,EAAE,MAAM,CAAA;IACxB,OAAO,EAAE,UAAU,EAAE,CAAA;IACrB,YAAY,CAAC,EAAE,cAAc,EAAE,CAAA;CAChC;AAID,OAAO,GAAqB,MAAM,KAAK,CAAA;AA8EvC;;;;;GAKG;AACH,wBAAgB,SAAS,IAAI,GAAG,CAc/B;AAED;;;GAGG;AACH,wBAAgB,sBAAsB,CAAC,QAAQ,EAAE,OAAO,GAAG;IACzD,EAAE,EAAE,OAAO,CAAA;IACX,MAAM,CAAC,EAAE,MAAM,EAAE,CAAA;CAClB,CA+DA;AAiBD;;;GAGG;AACH,wBAAsB,0BAA0B,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC,CAW1F;AAED;;;GAGG;AACH,wBAAgB,4BAA4B,CAAC,GAAG,EAAE,OAAO,GAAG,cAAc,CAOzE;AAID,mCAAmC;AACnC,wBAAgB,YAAY,CAAC,GAAG,EAAE,cAAc,GAAG,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAIzE;AAED,4CAA4C;AAC5C,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,cAAc,GAAG,GAAG,CAAC,MAAM,EAAE,cAAc,CAAC,CAIlF;AAED,4CAA4C;AAC5C,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE,CAE7F;AAED,oDAAoD;AACpD,wBAAgB,oBAAoB,CAClC,QAAQ,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,EACjC,MAAM,EAAE,MAAM,GACb,QAAQ,EAAE,CAEZ"}

package/dist/registry/index.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export * from './access-orchestrator';
+export { Relation, ResourceType, JsonSchema, ActionMeta, CapabilityMeta, ActionRegistry, createAjv, validateRegistryObject, loadActionRegistryFromFile, loadActionRegistryFromObject, indexActions, indexCapabilities, getRequiredScopes, getRequiredRelations, } from './action-registry';
+export * from "./action-registry-json";
+//# sourceMappingURL=index.d.ts.map

package/dist/registry/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/registry/index.ts"],"names":[],"mappings":"AAAA,cAAc,uBAAuB,CAAA;AAErC,OAAO,EACL,QAAQ,EACR,YAAY,EACZ,UAAU,EACV,UAAU,EACV,cAAc,EACd,cAAc,EACd,SAAS,EACT,sBAAsB,EACtB,0BAA0B,EAC1B,4BAA4B,EAC5B,YAAY,EACZ,iBAAiB,EACjB,iBAAiB,EACjB,oBAAoB,GACrB,MAAM,mBAAmB,CAAA;AAC1B,cAAc,wBAAwB,CAAA"}

package/dist/revocation/revocation-manager.d.ts ADDED Viewed

@@ -0,0 +1,98 @@
+export interface RevocationListEntry {
+    credentialId: string;
+    revocationDate: Date;
+    reason?: string;
+    revokedBy: string;
+}
+export interface RevocationList {
+    id: string;
+    issuer: string;
+    type: 'StatusList2021' | 'BitStringStatusList';
+    statusPurpose: 'revocation' | 'suspension';
+    encodedList: string;
+    entries: RevocationListEntry[];
+    createdAt: Date;
+    updatedAt: Date;
+}
+export interface CredentialStatusInfo {
+    id: string;
+    type: string;
+    statusListIndex: number;
+    statusListCredential: string;
+    revocationReason?: string;
+    revocationDate?: Date;
+}
+export declare class RevocationManager {
+    private revocationLists;
+    private credentialStatuses;
+    /**
+     * Create a new revocation list
+     */
+    createRevocationList(issuer: string, type?: 'StatusList2021' | 'BitStringStatusList', purpose?: 'revocation' | 'suspension'): Promise<RevocationList>;
+    /**
+     * Add credential to revocation list
+     */
+    addCredentialToRevocationList(credentialId: string, listId: string, statusIndex?: number): Promise<CredentialStatusInfo>;
+    /**
+     * Revoke a credential
+     */
+    revokeCredential(credentialId: string, reason?: string, revokedBy?: string): Promise<boolean>;
+    /**
+     * Check if credential is revoked
+     */
+    isCredentialRevoked(credentialId: string): Promise<{
+        revoked: boolean;
+        reason?: string;
+        revokedDate?: Date;
+        revokedBy?: string;
+    }>;
+    /**
+     * Get credential status info
+     */
+    getCredentialStatus(credentialId: string): Promise<CredentialStatusInfo | null>;
+    /**
+     * Get revocation list
+     */
+    getRevocationList(listId: string): Promise<RevocationList | null>;
+    /**
+     * Get all revocation lists for an issuer
+     */
+    getIssuerRevocationLists(issuer: string): Promise<RevocationList[]>;
+    /**
+     * Restore/unreovke a credential
+     */
+    restoreCredential(credentialId: string): Promise<boolean>;
+    /**
+     * Create empty bit string
+     */
+    private createEmptyBitString;
+    /**
+     * Set bit in encoded string
+     */
+    private setBitInString;
+    /**
+     * Get bit from encoded string
+     */
+    private getBitFromString;
+    /**
+     * Find next available index in revocation list
+     */
+    private findNextAvailableIndex;
+    /**
+     * Export revocation list in standard format
+     */
+    exportRevocationList(listId: string): Promise<{
+        '@context': string[];
+        id: string;
+        type: string[];
+        issuer: string;
+        validFrom: string;
+        credentialSubject: {
+            id: string;
+            type: string;
+            statusPurpose: string;
+            encodedList: string;
+        };
+    } | null>;
+}
+//# sourceMappingURL=revocation-manager.d.ts.map

package/dist/revocation/revocation-manager.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"revocation-manager.d.ts","sourceRoot":"","sources":["../../src/revocation/revocation-manager.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,mBAAmB;IAClC,YAAY,EAAE,MAAM,CAAA;IACpB,cAAc,EAAE,IAAI,CAAA;IACpB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,SAAS,EAAE,MAAM,CAAA;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAA;IACV,MAAM,EAAE,MAAM,CAAA;IACd,IAAI,EAAE,gBAAgB,GAAG,qBAAqB,CAAA;IAC9C,aAAa,EAAE,YAAY,GAAG,YAAY,CAAA;IAC1C,WAAW,EAAE,MAAM,CAAA;IACnB,OAAO,EAAE,mBAAmB,EAAE,CAAA;IAC9B,SAAS,EAAE,IAAI,CAAA;IACf,SAAS,EAAE,IAAI,CAAA;CAChB;AAED,MAAM,WAAW,oBAAoB;IACnC,EAAE,EAAE,MAAM,CAAA;IACV,IAAI,EAAE,MAAM,CAAA;IACZ,eAAe,EAAE,MAAM,CAAA;IACvB,oBAAoB,EAAE,MAAM,CAAA;IAC5B,gBAAgB,CAAC,EAAE,MAAM,CAAA;IACzB,cAAc,CAAC,EAAE,IAAI,CAAA;CACtB;AAED,qBAAa,iBAAiB;IAC5B,OAAO,CAAC,eAAe,CAAyC;IAChE,OAAO,CAAC,kBAAkB,CAA+C;IAEzE;;OAEG;IACG,oBAAoB,CACxB,MAAM,EAAE,MAAM,EACd,IAAI,GAAE,gBAAgB,GAAG,qBAAwC,EACjE,OAAO,GAAE,YAAY,GAAG,YAA2B,GAClD,OAAO,CAAC,cAAc,CAAC;IAmB1B;;OAEG;IACG,6BAA6B,CACjC,YAAY,EAAE,MAAM,EACpB,MAAM,EAAE,MAAM,EACd,WAAW,CAAC,EAAE,MAAM,GACnB,OAAO,CAAC,oBAAoB,CAAC;IAoBhC;;OAEG;IACG,gBAAgB,CACpB,YAAY,EAAE,MAAM,EACpB,MAAM,CAAC,EAAE,MAAM,EACf,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,OAAO,CAAC;IAwCnB;;OAEG;IACG,mBAAmB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC;QACvD,OAAO,EAAE,OAAO,CAAA;QAChB,MAAM,CAAC,EAAE,MAAM,CAAA;QACf,WAAW,CAAC,EAAE,IAAI,CAAA;QAClB,SAAS,CAAC,EAAE,MAAM,CAAA;KACnB,CAAC;IA+BF;;OAEG;IACG,mBAAmB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,oBAAoB,GAAG,IAAI,CAAC;IAIrF;;OAEG;IACG,iBAAiB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC;IAIvE;;OAEG;IACG,wBAAwB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,EAAE,CAAC;IAIzE;;OAEG;IACG,iBAAiB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IA+B/D;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAM5B;;OAEG;IACH,OAAO,CAAC,cAAc;IAkBtB;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAYxB;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAY9B;;OAEG;IACG,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC;QAClD,UAAU,EAAE,MAAM,EAAE,CAAA;QACpB,EAAE,EAAE,MAAM,CAAA;QACV,IAAI,EAAE,MAAM,EAAE,CAAA;QACd,MAAM,EAAE,MAAM,CAAA;QACd,SAAS,EAAE,MAAM,CAAA;QACjB,iBAAiB,EAAE;YACjB,EAAE,EAAE,MAAM,CAAA;YACV,IAAI,EAAE,MAAM,CAAA;YACZ,aAAa,EAAE,MAAM,CAAA;YACrB,WAAW,EAAE,MAAM,CAAA;SACpB,CAAA;KACF,GAAG,IAAI,CAAC;CAuBV"}

package/dist/state/index.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export { IStateStore } from './state-store.interface';
+export { JsonStateStore } from './json-state-store';
+//# sourceMappingURL=index.d.ts.map

package/dist/state/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/state/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAA;AACrD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAA"}

package/dist/state/json-state-store.d.ts ADDED Viewed

@@ -0,0 +1,24 @@
+import { IStateStore } from './state-store.interface';
+/**
+ * JSON file-based state store.
+ * Stores state in ~/.vess/state.json by default.
+ * Uses atomic write (temp file → rename) for safety.
+ */
+export declare class JsonStateStore implements IStateStore {
+    private filePath;
+    private data;
+    constructor(filePath?: string);
+    get<T = unknown>(key: string): Promise<T | undefined>;
+    set<T = unknown>(key: string, value: T): Promise<void>;
+    delete(key: string): Promise<boolean>;
+    has(key: string): Promise<boolean>;
+    getAll(): Promise<Record<string, unknown>>;
+    clear(): Promise<void>;
+    /**
+     * Get the file path used by this store (useful for diagnostics)
+     */
+    getFilePath(): string;
+    private load;
+    private save;
+}
+//# sourceMappingURL=json-state-store.d.ts.map

package/dist/state/json-state-store.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"json-state-store.d.ts","sourceRoot":"","sources":["../../src/state/json-state-store.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAA;AAErD;;;;GAIG;AACH,qBAAa,cAAe,YAAW,WAAW;IAChD,OAAO,CAAC,QAAQ,CAAQ;IACxB,OAAO,CAAC,IAAI,CAAuC;gBAEvC,QAAQ,CAAC,EAAE,MAAM;IAIvB,GAAG,CAAC,CAAC,GAAG,OAAO,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,SAAS,CAAC;IAKrD,GAAG,CAAC,CAAC,GAAG,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;IAMtD,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAUrC,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKlC,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAI1C,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAK5B;;OAEG;IACH,WAAW,IAAI,MAAM;YAIP,IAAI;YAoBJ,IAAI;CAUnB"}

package/dist/state/state-store.interface.d.ts ADDED Viewed

@@ -0,0 +1,37 @@
+/**
+ * Generic state store interface for persisting application state.
+ * Allows different backends: JSON file, SQLite, Postgres, etc.
+ */
+export interface IStateStore {
+    /**
+     * Get a value by key
+     * @param key Dot-notation key (e.g., "auth.token", "events.cursor")
+     * @returns The stored value, or undefined if not found
+     */
+    get<T = unknown>(key: string): Promise<T | undefined>;
+    /**
+     * Set a value by key
+     * @param key Dot-notation key
+     * @param value Value to store
+     */
+    set<T = unknown>(key: string, value: T): Promise<void>;
+    /**
+     * Delete a value by key
+     * @param key Dot-notation key
+     * @returns true if the key existed and was deleted
+     */
+    delete(key: string): Promise<boolean>;
+    /**
+     * Check if a key exists
+     */
+    has(key: string): Promise<boolean>;
+    /**
+     * Get all stored data as a plain object
+     */
+    getAll(): Promise<Record<string, unknown>>;
+    /**
+     * Clear all stored data
+     */
+    clear(): Promise<void>;
+}
+//# sourceMappingURL=state-store.interface.d.ts.map

package/dist/state/state-store.interface.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"state-store.interface.d.ts","sourceRoot":"","sources":["../../src/state/state-store.interface.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B;;;;OAIG;IACH,GAAG,CAAC,CAAC,GAAG,OAAO,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,GAAG,SAAS,CAAC,CAAA;IAErD;;;;OAIG;IACH,GAAG,CAAC,CAAC,GAAG,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAEtD;;;;OAIG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAA;IAErC;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAA;IAElC;;OAEG;IACH,MAAM,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAA;IAE1C;;OAEG;IACH,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,CAAA;CACvB"}

package/dist/storage/filesystem-key-storage.d.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import { KeyStorageProvider, KeyStorageConfig } from './key-storage.interface';
+/**
+ * Filesystem-based key storage provider
+ */
+export declare class FilesystemKeyStorage implements KeyStorageProvider {
+    private keyStorePath;
+    constructor(config?: KeyStorageConfig);
+    store(id: string, encryptedKey: string): Promise<void>;
+    retrieve(id: string): Promise<string | null>;
+    delete(id: string): Promise<void>;
+    list(): Promise<string[]>;
+    isAvailable(): Promise<boolean>;
+    private ensureKeyStoreExists;
+    private getKeyPath;
+}
+//# sourceMappingURL=filesystem-key-storage.d.ts.map

package/dist/storage/filesystem-key-storage.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"filesystem-key-storage.d.ts","sourceRoot":"","sources":["../../src/storage/filesystem-key-storage.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAA;AAE9E;;GAEG;AACH,qBAAa,oBAAqB,YAAW,kBAAkB;IAC7D,OAAO,CAAC,YAAY,CAAQ;gBAEhB,MAAM,CAAC,EAAE,gBAAgB;IAI/B,KAAK,CAAC,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAMtD,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAa5C,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAYjC,IAAI,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;IASzB,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC;YASvB,oBAAoB;IAQlC,OAAO,CAAC,UAAU;CAGnB"}

package/dist/storage/index.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export * from './key-storage.interface';
+export * from './filesystem-key-storage';
+export * from './memory-key-storage';
+//# sourceMappingURL=index.d.ts.map

package/dist/storage/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/storage/index.ts"],"names":[],"mappings":"AAAA,cAAc,yBAAyB,CAAA;AACvC,cAAc,0BAA0B,CAAA;AACxC,cAAc,sBAAsB,CAAA"}

package/dist/storage/key-storage.interface.d.ts ADDED Viewed

@@ -0,0 +1,42 @@
+/**
+ * Interface for key storage persistence
+ * Allows different storage backends (filesystem, database, memory, etc.)
+ */
+export interface KeyStorageProvider {
+    /**
+     * Store an encrypted key
+     * @param id Unique identifier for the key (e.g., DID hash)
+     * @param encryptedKey Encrypted key data
+     */
+    store(id: string, encryptedKey: string): Promise<void>;
+    /**
+     * Retrieve an encrypted key
+     * @param id Unique identifier for the key
+     * @returns Encrypted key data, or null if not found
+     */
+    retrieve(id: string): Promise<string | null>;
+    /**
+     * Delete a key
+     * @param id Unique identifier for the key
+     */
+    delete(id: string): Promise<void>;
+    /**
+     * List all stored key identifiers
+     * @returns Array of key identifiers
+     */
+    list(): Promise<string[]>;
+    /**
+     * Check if the storage is available and initialized
+     */
+    isAvailable(): Promise<boolean>;
+}
+/**
+ * Configuration for key storage
+ */
+export interface KeyStorageConfig {
+    /** Storage type identifier */
+    type: string;
+    /** Storage-specific options */
+    options?: Record<string, any>;
+}
+//# sourceMappingURL=key-storage.interface.d.ts.map

package/dist/storage/key-storage.interface.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"key-storage.interface.d.ts","sourceRoot":"","sources":["../../src/storage/key-storage.interface.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,WAAW,kBAAkB;IACjC;;;;OAIG;IACH,KAAK,CAAC,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAEtD;;;;OAIG;IACH,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAA;IAE5C;;;OAGG;IACH,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAEjC;;;OAGG;IACH,IAAI,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC,CAAA;IAEzB;;OAEG;IACH,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC,CAAA;CAChC;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,8BAA8B;IAC9B,IAAI,EAAE,MAAM,CAAA;IACZ,+BAA+B;IAC/B,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;CAC9B"}

package/dist/storage/memory-key-storage.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import { KeyStorageProvider } from './key-storage.interface';
+/**
+ * In-memory key storage provider (for testing)
+ */
+export declare class MemoryKeyStorage implements KeyStorageProvider {
+    private keys;
+    store(id: string, encryptedKey: string): Promise<void>;
+    retrieve(id: string): Promise<string | null>;
+    delete(id: string): Promise<void>;
+    list(): Promise<string[]>;
+    isAvailable(): Promise<boolean>;
+    /**
+     * Clear all stored keys (for testing)
+     */
+    clear(): void;
+}
+//# sourceMappingURL=memory-key-storage.d.ts.map

package/dist/storage/memory-key-storage.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"memory-key-storage.d.ts","sourceRoot":"","sources":["../../src/storage/memory-key-storage.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAA;AAE5D;;GAEG;AACH,qBAAa,gBAAiB,YAAW,kBAAkB;IACzD,OAAO,CAAC,IAAI,CAAiC;IAEvC,KAAK,CAAC,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAItD,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAI5C,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAIjC,IAAI,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;IAIzB,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC;IAIrC;;OAEG;IACH,KAAK,IAAI,IAAI;CAGd"}

package/dist/tool/tool-manager.d.ts ADDED Viewed

@@ -0,0 +1,44 @@
+import { ConnectorResponse } from '@vess-id/ai-identity-types';
+import { VPManager } from '../vp/vp-manager';
+export interface ToolDefinition {
+    name: string;
+    description: string;
+    actions: {
+        name: string;
+        description: string;
+        parameters: Record<string, any>;
+    }[];
+}
+export declare class ToolManager {
+    private vpManager;
+    private tools;
+    private proxyApiUrl;
+    constructor(vpManager?: VPManager);
+    /**
+     * Invoke a tool action with VC authorization
+     */
+    invoke<T = any>(tool: string, action: string, params: Record<string, any>, options: {
+        vcs: string[];
+        holderDid: string;
+    }): Promise<ConnectorResponse<T>>;
+    /**
+     * List available tools
+     */
+    list(): ToolDefinition[];
+    /**
+     * Get a specific tool definition
+     */
+    getTool(name: string): ToolDefinition | undefined;
+    /**
+     * Register a custom tool
+     */
+    registerTool(tool: ToolDefinition): void;
+    /**
+     * Check if VCs authorize a tool action
+     */
+    checkAuthorization(vcs: string[], tool: string, action: string, resourceScope?: Record<string, any>): Promise<boolean>;
+    private matchScope;
+    private generateChallenge;
+    private registerDefaultTools;
+}
+//# sourceMappingURL=tool-manager.d.ts.map

package/dist/tool/tool-manager.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"tool-manager.d.ts","sourceRoot":"","sources":["../../src/tool/tool-manager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAA;AAC9D,OAAO,EAAE,SAAS,EAAE,MAAM,kBAAkB,CAAA;AAG5C,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAA;IACZ,WAAW,EAAE,MAAM,CAAA;IACnB,OAAO,EAAE;QACP,IAAI,EAAE,MAAM,CAAA;QACZ,WAAW,EAAE,MAAM,CAAA;QACnB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;KAChC,EAAE,CAAA;CACJ;AAED,qBAAa,WAAW;IACtB,OAAO,CAAC,SAAS,CAAW;IAC5B,OAAO,CAAC,KAAK,CAAyC;IACtD,OAAO,CAAC,WAAW,CAAQ;gBAEf,SAAS,CAAC,EAAE,SAAS;IAOjC;;OAEG;IACG,MAAM,CAAC,CAAC,GAAG,GAAG,EAClB,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAC3B,OAAO,EAAE;QACP,GAAG,EAAE,MAAM,EAAE,CAAA;QACb,SAAS,EAAE,MAAM,CAAA;KAClB,GACA,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC;IAgHhC;;OAEG;IACH,IAAI,IAAI,cAAc,EAAE;IAIxB;;OAEG;IACH,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,GAAG,SAAS;IAIjD;;OAEG;IACH,YAAY,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI;IAIxC;;OAEG;IACG,kBAAkB,CACtB,GAAG,EAAE,MAAM,EAAE,EACb,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,aAAa,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAClC,OAAO,CAAC,OAAO,CAAC;IAyBnB,OAAO,CAAC,UAAU;IAUlB,OAAO,CAAC,iBAAiB;IAIzB,OAAO,CAAC,oBAAoB;CAiU7B"}

package/dist/utils/crypto.d.ts ADDED Viewed

@@ -0,0 +1,22 @@
+import * as jose from 'jose';
+export interface KeyPair {
+    publicKey: any;
+    privateKey: any;
+}
+export declare function generateKeyPair(): Promise<KeyPair>;
+export declare function signJWT(payload: any, privateKey: any, options?: {
+    issuer?: string;
+    audience?: string;
+    expiresIn?: string;
+    notBefore?: string;
+    subject?: string;
+    jti?: string;
+}): Promise<string>;
+export declare function verifyJWT(jwt: string, publicKey: any, options?: {
+    issuer?: string;
+    audience?: string;
+}): Promise<jose.JWTPayload>;
+export declare function generateNonce(): string;
+export declare function getSigner(privateKey: any): Promise<(data: string) => Promise<string>>;
+export declare function getVerifier(publicKey: any): Promise<(data: string, signatureBase64url: string) => Promise<boolean>>;
+//# sourceMappingURL=crypto.d.ts.map

package/dist/utils/crypto.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"crypto.d.ts","sourceRoot":"","sources":["../../src/utils/crypto.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,IAAI,MAAM,MAAM,CAAA;AAI5B,MAAM,WAAW,OAAO;IACtB,SAAS,EAAE,GAAG,CAAA;IACd,UAAU,EAAE,GAAG,CAAA;CAChB;AAED,wBAAsB,eAAe,IAAI,OAAO,CAAC,OAAO,CAAC,CA2BxD;AAED,wBAAsB,OAAO,CAC3B,OAAO,EAAE,GAAG,EACZ,UAAU,EAAE,GAAG,EACf,OAAO,CAAC,EAAE;IACR,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,GAAG,CAAC,EAAE,MAAM,CAAA;CACb,GACA,OAAO,CAAC,MAAM,CAAC,CAgBjB;AAED,wBAAsB,SAAS,CAC7B,GAAG,EAAE,MAAM,EACX,SAAS,EAAE,GAAG,EACd,OAAO,CAAC,EAAE;IACR,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,QAAQ,CAAC,EAAE,MAAM,CAAA;CAClB,GACA,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,CAU1B;AAED,wBAAgB,aAAa,IAAI,MAAM,CAEtC;AAED,wBAAsB,SAAS,CAAC,UAAU,EAAE,GAAG,kBAavB,MAAM,sBAwB7B;AAED,wBAAsB,WAAW,CAAC,SAAS,EAAE,GAAG,kBAY1B,MAAM,sBAAsB,MAAM,uBAmBvD"}

package/dist/utils/sdjwt-client.d.ts ADDED Viewed

@@ -0,0 +1,168 @@
+import { SDJwtVcInstance } from '@sd-jwt/sd-jwt-vc';
+import { KeyManager } from '../did/key-manager';
+import type { DisclosureFrame } from '@sd-jwt/types';
+import type { JWK } from 'jose';
+export declare class SDJwtClient {
+    private static instances;
+    private static keyManager;
+    private static signerCache;
+    private static verifierCache;
+    private constructor();
+    /**
+     * Initialize with KeyManager for DID-based key management
+     */
+    static setKeyManager(keyManager: KeyManager): void;
+    /**
+     * Get SDJwtVcInstance for issuer role (VC issuance)
+     */
+    static getIssuerInstance(issuerDid: string): Promise<SDJwtVcInstance>;
+    /**
+     * Get SDJwtVcInstance for holder role (VP presentation)
+     */
+    static getHolderInstance(holderDid: string): Promise<SDJwtVcInstance>;
+    /**
+     * Get SDJwtVcInstance with specified role (backward compatibility)
+     */
+    static getSDJwtInstance(did: string, options?: {
+        role?: 'issuer' | 'holder';
+    }): Promise<SDJwtVcInstance>;
+    /**
+     * Create a new SDJwtVcInstance with DID-based keys and role
+     */
+    private static createInstance;
+    /**
+     * Create disclosure frame for selective disclosure
+     */
+    static createDisclosureFrame<T extends Record<string, any>>(claims: T, selectivelyDisclosable?: string[]): DisclosureFrame<T>;
+    /**
+     * Issue an SD-JWT with selective disclosure
+     */
+    static issueSDJWT(payload: Record<string, any>, _privateKey: any, // Not used since we get key from KeyManager based on issuer DID
+    selectiveDisclosureFields?: string[]): Promise<string>;
+    /**
+     * Verify an SD-JWT
+     */
+    static verifySDJWT(credential: string): Promise<{
+        valid: boolean;
+        payload?: any;
+        error?: string;
+    }>;
+    /**
+     * Legacy methods for backward compatibility
+     */
+    static createSignerVerifier(): Promise<{
+        signer: (data: string) => Promise<string>;
+        verifier: (data: string, signatureBase64url: string) => Promise<boolean>;
+    }>;
+    static generateKeyPair(): Promise<import("./crypto").KeyPair>;
+    /**
+     * Clear caches for optimization
+     */
+    static clearCaches(): void;
+    /**
+     * Clear cache for specific issuer
+     */
+    static clearIssuerCache(issuerDid: string): void;
+    /**
+     * Get cache statistics
+     */
+    static getCacheStats(): {
+        instanceCount: number;
+        signerCount: number;
+        verifierCount: number;
+    };
+    /**
+     * Create a verifier function from an external public key
+     * This is used for verifying SD-JWTs when you don't have the private key
+     * (e.g., API side verifying credentials issued by MCP)
+     */
+    private static getVerifierFromPublicKey;
+    /**
+     * Get SDJwtVcInstance for verification with an external public key
+     * Used when verifying credentials without having the issuer's private key
+     */
+    private static getVerificationInstance;
+    /**
+     * Get SDJwtVcInstance for decoding without verification
+     */
+    private static getDecodingInstance;
+    /**
+     * Verify an SD-JWT with an external public key
+     * Use this when you have the issuer's public key but not their private key
+     *
+     * @param credential - The SD-JWT credential string
+     * @param publicKey - The issuer's public key (JWK format)
+     * @returns Verification result with valid flag and payload
+     *
+     * @example
+     * ```typescript
+     * const publicKey = extractPublicKeyFromDid(issuerDid)
+     * const result = await SDJwtClient.verifyWithExternalKey(credential, publicKey)
+     * if (result.valid) {
+     *   console.log('Verified claims:', result.payload.claims)
+     * }
+     * ```
+     */
+    static verifyWithExternalKey(credential: string, publicKey: JWK): Promise<{
+        valid: boolean;
+        payload?: any;
+        claims?: any;
+        error?: string;
+    }>;
+    /**
+     * Verify an SD-JWT by extracting the issuer's public key from the DID
+     * Automatically resolves did:jwk DIDs
+     *
+     * @param credential - The SD-JWT credential string
+     * @returns Verification result with valid flag and payload
+     *
+     * @example
+     * ```typescript
+     * const result = await SDJwtClient.verifyWithIssuerDid(credential)
+     * if (result.valid) {
+     *   console.log('Issuer:', result.payload.iss)
+     * }
+     * ```
+     */
+    static verifyWithIssuerDid(credential: string): Promise<{
+        valid: boolean;
+        payload?: any;
+        claims?: any;
+        issuerDid?: string;
+        error?: string;
+    }>;
+    /**
+     * Decode an SD-JWT without verification
+     * Use this when you need to inspect the credential before verification
+     * or when you don't have the issuer's public key
+     *
+     * WARNING: The returned payload has not been verified!
+     * Only use this for inspection purposes, not for authorization decisions.
+     *
+     * @param credential - The SD-JWT credential string
+     * @returns Decoded JWT payload, header, and disclosures
+     *
+     * @example
+     * ```typescript
+     * const decoded = await SDJwtClient.decodeWithoutVerification(credential)
+     * console.log('Issuer (unverified):', decoded.payload?.iss)
+     * console.log('Disclosures:', decoded.disclosures?.length)
+     * ```
+     */
+    static decodeWithoutVerification(credential: string): Promise<{
+        payload?: any;
+        header?: any;
+        disclosures?: any[];
+        claims?: any;
+        error?: string;
+    }>;
+    /**
+     * Extract issuer DID from an SD-JWT without verification
+     * Useful for determining the issuer before verification
+     *
+     * @param credential - The SD-JWT credential string
+     * @returns The issuer DID or null if not found
+     */
+    static extractIssuerDid(credential: string): string | null;
+}
+//# sourceMappingURL=sdjwt-client.d.ts.map

package/dist/utils/sdjwt-client.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"sdjwt-client.d.ts","sourceRoot":"","sources":["../../src/utils/sdjwt-client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAA;AAGnD,OAAO,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAA;AAE/C,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,eAAe,CAAA;AACpD,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,MAAM,CAAA;AAG/B,qBAAa,WAAW;IACtB,OAAO,CAAC,MAAM,CAAC,SAAS,CAA0C;IAClE,OAAO,CAAC,MAAM,CAAC,UAAU,CAAY;IACrC,OAAO,CAAC,MAAM,CAAC,WAAW,CAA8B;IACxD,OAAO,CAAC,MAAM,CAAC,aAAa,CAA8B;IAE1D,OAAO;IAEP;;OAEG;WACW,aAAa,CAAC,UAAU,EAAE,UAAU;IAIlD;;OAEG;WACiB,iBAAiB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IASlF;;OAEG;WACiB,iBAAiB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IASlF;;OAEG;WACiB,gBAAgB,CAClC,GAAG,EAAE,MAAM,EACX,OAAO,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,QAAQ,GAAG,QAAQ,CAAA;KAAE,GACvC,OAAO,CAAC,eAAe,CAAC;IAK3B;;OAEG;mBACkB,cAAc;IA8DnC;;OAEG;WACW,qBAAqB,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAC/D,MAAM,EAAE,CAAC,EACT,sBAAsB,GAAE,MAAM,EAAO,GACpC,eAAe,CAAC,CAAC,CAAC;IA8BrB;;OAEG;WACiB,UAAU,CAC5B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAC5B,WAAW,EAAE,GAAG,EAAE,gEAAgE;IAClF,yBAAyB,GAAE,MAAM,EAAO,GACvC,OAAO,CAAC,MAAM,CAAC;IAgBlB;;OAEG;WACiB,WAAW,CAC7B,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,OAAO,CAAC,EAAE,GAAG,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IA0C7D;;OAEG;WACiB,oBAAoB;;;;WAQpB,eAAe;IAInC;;OAEG;WACW,WAAW,IAAI,IAAI;IAMjC;;OAEG;WACW,gBAAgB,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI;IAMvD;;OAEG;WACW,aAAa,IAAI;QAC7B,aAAa,EAAE,MAAM,CAAA;QACrB,WAAW,EAAE,MAAM,CAAA;QACnB,aAAa,EAAE,MAAM,CAAA;KACtB;IAQD;;;;OAIG;mBACkB,wBAAwB;IAiC7C;;;OAGG;mBACkB,uBAAuB;IAsB5C;;OAEG;mBACkB,mBAAmB;IAsBxC;;;;;;;;;;;;;;;;OAgBG;WACiB,qBAAqB,CACvC,UAAU,EAAE,MAAM,EAClB,SAAS,EAAE,GAAG,GACb,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,OAAO,CAAC,EAAE,GAAG,CAAC;QAAC,MAAM,CAAC,EAAE,GAAG,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IA2B3E;;;;;;;;;;;;;;OAcG;WACiB,mBAAmB,CACrC,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,OAAO,CAAC,EAAE,GAAG,CAAC;QAAC,MAAM,CAAC,EAAE,GAAG,CAAC;QAAC,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAiC/F;;;;;;;;;;;;;;;;;OAiBG;WACiB,yBAAyB,CAC3C,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,OAAO,CAAC,EAAE,GAAG,CAAA;QACb,MAAM,CAAC,EAAE,GAAG,CAAA;QACZ,WAAW,CAAC,EAAE,GAAG,EAAE,CAAA;QACnB,MAAM,CAAC,EAAE,GAAG,CAAA;QACZ,KAAK,CAAC,EAAE,MAAM,CAAA;KACf,CAAC;IAuBF;;;;;;OAMG;WACW,gBAAgB,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;CAelE"}