@sphereon/oid4vci-common - npm Package Compare versions

Comparing version 0.4.1-unstable.255 to 0.4.1-unstable.256

dist/functions/CredentialOfferUtil.d.ts

@@ -1,2 +0,2 @@
-import { AssertedUniformCredentialOffer, CredentialOffer, CredentialOfferPayload, OpenId4VCIVersion, UniformCredentialOffer, UniformCredentialOfferPayload, UniformCredentialOfferRequest } from '../types';
+import { AssertedUniformCredentialOffer, AuthzFlowType, CredentialOffer, CredentialOfferPayload, OpenId4VCIVersion, UniformCredentialOffer, UniformCredentialOfferPayload, UniformCredentialOfferRequest } from '../types';
 export declare function determineSpecVersionFromURI(uri: string): OpenId4VCIVersion;
@@ -20,2 +20,3 @@ export declare function determineSpecVersionFromScheme(credentialOfferURI: string, openId4VCIVersion: OpenId4VCIVersion): OpenId4VCIVersion;
 }): UniformCredentialOfferPayload;
+export declare function determineFlowType(suppliedOffer: AssertedUniformCredentialOffer | UniformCredentialOfferPayload, version: OpenId4VCIVersion): AuthzFlowType[];
 //# sourceMappingURL=CredentialOfferUtil.d.ts.map

dist/functions/CredentialOfferUtil.js

@@ -12,3 +12,3 @@ "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.toUniformCredentialOfferPayload = exports.resolveCredentialOfferURI = exports.assertedUniformCredentialOffer = exports.isPreAuthCode = exports.toUniformCredentialOfferRequest = exports.isCredentialOfferVersion = exports.determineSpecVersionFromOffer = exports.getIssuerFromCredentialOfferPayload = exports.getScheme = exports.determineSpecVersionFromScheme = exports.determineSpecVersionFromURI = void 0;
+exports.determineFlowType = exports.toUniformCredentialOfferPayload = exports.resolveCredentialOfferURI = exports.assertedUniformCredentialOffer = exports.isPreAuthCode = exports.toUniformCredentialOfferRequest = exports.isCredentialOfferVersion = exports.determineSpecVersionFromOffer = exports.getIssuerFromCredentialOfferPayload = exports.getScheme = exports.determineSpecVersionFromScheme = exports.determineSpecVersionFromURI = void 0;
 const types_1 = require("../types");
@@ -149,3 +149,6 @@ const HttpUtils_1 = require("./HttpUtils");
         }
-        return Object.assign(Object.assign({ credential_offer: toUniformCredentialOfferPayload(originalCredentialOffer, opts), original_credential_offer: originalCredentialOffer }, (credentialOfferURI && { credential_offer_uri: credentialOfferURI })), { version });
+        const payload = toUniformCredentialOfferPayload(originalCredentialOffer, opts);
+        const supportedFlows = determineFlowType(payload, version);
+        return Object.assign(Object.assign({ credential_offer: payload, original_credential_offer: originalCredentialOffer }, (credentialOfferURI && { credential_offer_uri: credentialOfferURI })), { supportedFlows,
+            version });
     });
@@ -241,2 +244,25 @@ }
 exports.toUniformCredentialOfferPayload = toUniformCredentialOfferPayload;
+function determineFlowType(suppliedOffer, version) {
+    var _a, _b, _c;
+    let payload;
+    if ('credential_offer' in suppliedOffer && suppliedOffer['credential_offer']) {
+        payload = suppliedOffer.credential_offer;
+    }
+    else {
+        payload = suppliedOffer;
+    }
+    const supportedFlows = [];
+    if ((_a = payload.grants) === null || _a === void 0 ? void 0 : _a.authorization_code) {
+        supportedFlows.push(types_1.AuthzFlowType.AUTHORIZATION_CODE_FLOW);
+    }
+    if ((_c = (_b = payload.grants) === null || _b === void 0 ? void 0 : _b['urn:ietf:params:oauth:grant-type:pre-authorized_code']) === null || _c === void 0 ? void 0 : _c['pre-authorized_code']) {
+        supportedFlows.push(types_1.AuthzFlowType.PRE_AUTHORIZED_CODE_FLOW);
+    }
+    if (supportedFlows.length === 0 && version < types_1.OpenId4VCIVersion.VER_1_0_09) {
+        // auth flow without op_state was possible in v08. The only way to know is that the detections would result in finding nothing.
+        supportedFlows.push(types_1.AuthzFlowType.AUTHORIZATION_CODE_FLOW);
+    }
+    return supportedFlows;
+}
+exports.determineFlowType = determineFlowType;
 function getVersionFromURIParam(credentialOfferURI, currentVersion, matchingVersion, param) {
@@ -243,0 +269,0 @@ if (credentialOfferURI.includes(param)) {

dist/types/CredentialIssuance.types.d.ts

 import { W3CVerifiableCredential } from '@sphereon/ssi-types';
+import { AuthzFlowType } from './Authorization.types';
 import { OID4VCICredentialFormat } from './Generic.types';
@@ -30,2 +31,3 @@ import { OpenId4VCIVersion } from './OpenID4VCIVersions.types';
     version: OpenId4VCIVersion;
+    supportedFlows: AuthzFlowType[];
 }
@@ -32,0 +34,0 @@ export type UniformCredentialOfferPayload = CredentialOfferPayloadV1_0_11;

lib/functions/CredentialOfferUtil.ts

 import {
   AssertedUniformCredentialOffer,
+  AuthzFlowType,
   CredentialOffer,
@@ -157,6 +158,9 @@ CredentialOfferPayload,
   }
+  const payload = toUniformCredentialOfferPayload(originalCredentialOffer, opts);
+  const supportedFlows = determineFlowType(payload, version);
   return {
-    credential_offer: toUniformCredentialOfferPayload(originalCredentialOffer, opts),
+    credential_offer: payload,
     original_credential_offer: originalCredentialOffer,
     ...(credentialOfferURI && { credential_offer_uri: credentialOfferURI }),
+    supportedFlows,
     version,
@@ -260,2 +264,26 @@ };
 
+export function determineFlowType(
+  suppliedOffer: AssertedUniformCredentialOffer | UniformCredentialOfferPayload,
+  version: OpenId4VCIVersion
+): AuthzFlowType[] {
+  let payload: UniformCredentialOfferPayload;
+  if ('credential_offer' in suppliedOffer && suppliedOffer['credential_offer']) {
+    payload = suppliedOffer.credential_offer;
+  } else {
+    payload = suppliedOffer as UniformCredentialOfferPayload;
+  }
+  const supportedFlows: AuthzFlowType[] = [];
+  if (payload.grants?.authorization_code) {
+    supportedFlows.push(AuthzFlowType.AUTHORIZATION_CODE_FLOW);
+  }
+  if (payload.grants?.['urn:ietf:params:oauth:grant-type:pre-authorized_code']?.['pre-authorized_code']) {
+    supportedFlows.push(AuthzFlowType.PRE_AUTHORIZED_CODE_FLOW);
+  }
+  if (supportedFlows.length === 0 && version < OpenId4VCIVersion.VER_1_0_09) {
+    // auth flow without op_state was possible in v08. The only way to know is that the detections would result in finding nothing.
+    supportedFlows.push(AuthzFlowType.AUTHORIZATION_CODE_FLOW);
+  }
+  return supportedFlows;
+}
+
 function getVersionFromURIParam(credentialOfferURI: string, currentVersion: OpenId4VCIVersion, matchingVersion: OpenId4VCIVersion, param: string) {
@@ -262,0 +290,0 @@ if (credentialOfferURI.includes(param)) {

lib/types/CredentialIssuance.types.ts

 import { W3CVerifiableCredential } from '@sphereon/ssi-types';
 
+import { AuthzFlowType } from './Authorization.types';
 import { OID4VCICredentialFormat } from './Generic.types';
@@ -20,4 +21,2 @@ import { OpenId4VCIVersion } from './OpenID4VCIVersions.types';
   baseUrl: string;
-  /*  request: CredentialOfferPayload;
-  version: OpenId4VCIVersion;*/
 }
@@ -41,2 +40,3 @@
   version: OpenId4VCIVersion;
+  supportedFlows: AuthzFlowType[];
 }
@@ -43,0 +43,0 @@

package.json

 {
   "name": "@sphereon/oid4vci-common",
-  "version": "0.4.1-unstable.255+5cab075",
+  "version": "0.4.1-unstable.256+100f9e6",
   "description": "OpenID 4 Verifiable Credential Issuance Common Types",
@@ -48,3 +48,3 @@ "source": "lib/index.ts",
   },
-  "gitHead": "5cab07534e7a8b340f7a05343f56fbf091d64738"
+  "gitHead": "100f9e6ccd7c53353f2876be81df4d6e3f7efde4"
 }

New alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Fixed alerts

Manifest confusion

Supply chain risk

This package has inconsistent metadata. This could be malicious or caused by an error when publishing the package.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

215051

increased by1.77%

Lines of code

3140

increased by1.82%

No dependency changes