@actual-app/sync-server 26.3.0 → 26.4.0-nightly.20260305

package/build/src/app-gocardless/util/handle-error.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"handle-error.d.ts","sourceRoot":"","sources":["../../../../src/app-gocardless/util/handle-error.js"],"names":[],"mappings":"AAAA,yCACU,QAAG,EAAE,QAAG,UAYjB"}

package/build/src/app-gocardless/utils.d.ts

@@ -0,0 +1,4 @@
+export function printIban(account: any): string;
+export function sortByBookingDateOrValueDate(transactions?: any[]): any[];
+export function amountToInteger(n: any): number;
+//# sourceMappingURL=utils.d.ts.map

package/build/src/app-gocardless/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/app-gocardless/utils.js"],"names":[],"mappings":"AAAO,gDAMN;AA2BM,0EASH;AAEG,gDAAgD"}

package/build/src/app-openid.d.ts

@@ -0,0 +1,3 @@
+export { app as handlers };
+declare const app: import("express-serve-static-core").Express;
+//# sourceMappingURL=app-openid.d.ts.map

package/build/src/app-openid.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"app-openid.d.ts","sourceRoot":"","sources":["../../src/app-openid.js"],"names":[],"mappings":";AAYA,+DAAsB"}

package/build/src/app-pluggyai/app-pluggyai.d.ts

@@ -0,0 +1,3 @@
+export { app as handlers };
+declare const app: import("express-serve-static-core").Express;
+//# sourceMappingURL=app-pluggyai.d.ts.map

package/build/src/app-pluggyai/app-pluggyai.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"app-pluggyai.d.ts","sourceRoot":"","sources":["../../../src/app-pluggyai/app-pluggyai.js"],"names":[],"mappings":";AAWA,+DAAsB"}

package/build/src/app-pluggyai/pluggyai-service.d.ts

@@ -0,0 +1,8 @@
+export namespace pluggyaiService {
+    function isConfigured(): boolean;
+    function getAccountsByItemId(itemId: any): Promise<any>;
+    function getAccountById(accountId: any): Promise<any>;
+    function getTransactionsByAccountId(accountId: any, startDate: any, pageSize: any, page: any): Promise<any>;
+    function getTransactions(accountId: any, startDate: any): Promise<any[]>;
+}
+//# sourceMappingURL=pluggyai-service.d.ts.map

package/build/src/app-pluggyai/pluggyai-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pluggyai-service.d.ts","sourceRoot":"","sources":["../../../src/app-pluggyai/pluggyai-service.js"],"names":[],"mappings":";IAqBgB,iCAMb;IAEoB,wDAepB;IACe,sDAaf;IAE2B,4GAoC3B;IACgB,yEAqBhB"}

package/build/src/app-secrets.d.ts

@@ -0,0 +1,3 @@
+export { app as handlers };
+declare const app: import("express-serve-static-core").Express;
+//# sourceMappingURL=app-secrets.d.ts.map

package/build/src/app-secrets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"app-secrets.d.ts","sourceRoot":"","sources":["../../src/app-secrets.js"],"names":[],"mappings":";AASA,+DAAsB"}

package/build/src/app-simplefin/app-simplefin.d.ts

@@ -0,0 +1,3 @@
+export { app as handlers };
+declare const app: import("express-serve-static-core").Express;
+//# sourceMappingURL=app-simplefin.d.ts.map

package/build/src/app-simplefin/app-simplefin.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"app-simplefin.d.ts","sourceRoot":"","sources":["../../../src/app-simplefin/app-simplefin.js"],"names":[],"mappings":";AAWA,+DAAsB"}

package/build/src/app-sync/errors.d.ts

@@ -0,0 +1,9 @@
+export class FileNotFound extends Error {
+    constructor(params?: {});
+    details: {};
+}
+export class GenericFileError extends Error {
+    constructor(message: any, params?: {});
+    details: {};
+}
+//# sourceMappingURL=errors.d.ts.map

package/build/src/app-sync/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../../../src/app-sync/errors.js"],"names":[],"mappings":"AAAA;IACE,yBAGC;IADC,YAAqB;CAExB;AAED;IACE,uCAGC;IADC,YAAqB;CAExB"}

package/build/src/app-sync/services/files-service.d.ts

@@ -0,0 +1,62 @@
+export const filesService: FilesService;
+export class FilesService {
+    constructor(accountDb: any);
+    accountDb: any;
+    get(fileId: any): File;
+    set(file: any): void;
+    find({ userId, limit }: {
+        userId: any;
+        limit?: number;
+    }): any;
+    findUsersWithAccess(fileId: any): any;
+    update(id: any, fileUpdate: any): File;
+    getRaw(fileId: any): any;
+    validate(rawFile: any): File;
+}
+export class File extends FileBase {
+    constructor({ id, name, groupId, encryptSalt, encryptTest, encryptKeyId, encryptMeta, syncVersion, deleted, owner, }: {
+        id: any;
+        name?: any;
+        groupId?: any;
+        encryptSalt?: any;
+        encryptTest?: any;
+        encryptKeyId?: any;
+        encryptMeta?: any;
+        syncVersion?: any;
+        deleted?: boolean;
+        owner?: any;
+    });
+    id: any;
+}
+/**
+ * Represents a file update. Will only update the fields that are defined.
+ * @class
+ * @extends FileBase
+ */
+export class FileUpdate extends FileBase {
+    constructor({ name, groupId, encryptSalt, encryptTest, encryptKeyId, encryptMeta, syncVersion, deleted, owner, }: {
+        name?: any;
+        groupId?: any;
+        encryptSalt?: any;
+        encryptTest?: any;
+        encryptKeyId?: any;
+        encryptMeta?: any;
+        syncVersion?: any;
+        deleted?: any;
+        owner?: any;
+    });
+}
+declare class FileBase {
+    constructor(name: any, groupId: any, encryptSalt: any, encryptTest: any, encryptKeyId: any, encryptMeta: any, syncVersion: any, deleted: any, owner: any);
+    name: any;
+    groupId: any;
+    encryptSalt: any;
+    encryptTest: any;
+    encryptKeyId: any;
+    encryptMeta: any;
+    syncVersion: any;
+    deleted: boolean;
+    owner: any;
+}
+export {};
+//# sourceMappingURL=files-service.d.ts.map

package/build/src/app-sync/services/files-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"files-service.d.ts","sourceRoot":"","sources":["../../../../src/app-sync/services/files-service.js"],"names":[],"mappings":"AAgPA,wCAAsD;AAtJtD;IACE,4BAEC;IADC,eAA0B;IAG5B,uBAOC;IAED,qBAiBC;IAED;;;YAsBC;IAED,sCAkBC;IAED,uCAmDC;IAED,yBAEC;IAED,6BAaC;CACF;AAnND;IACE;;;;;;;;;;;OAwBC;IADC,QAAY;CAEf;AAED;;;;GAIG;AACH;IACE;;;;;;;;;;OAsBC;CACF;AAjFD;IACE,0JAoBC;IATC,UAAgB;IAChB,aAAsB;IACtB,iBAA8B;IAC9B,iBAA8B;IAC9B,kBAAgC;IAChC,iBAA8B;IAC9B,iBAA8B;IAC9B,iBAAwE;IACxE,WAAkB;CAErB"}

package/build/src/app-sync/tests/services/files-service.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=files-service.test.d.ts.map

package/build/src/app-sync/tests/services/files-service.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"files-service.test.d.ts","sourceRoot":"","sources":["../../../../../src/app-sync/tests/services/files-service.test.js"],"names":[],"mappings":""}

package/build/src/app-sync/validation.d.ts

@@ -0,0 +1,3 @@
+export function validateSyncedFile(groupId: any, keyId: any, currentFile: any): "file-old-version" | "file-needs-upload" | "file-key-mismatch" | "file-has-reset" | "file-has-new-key";
+export function validateUploadedFile(groupId: any, keyId: any, currentFile: any): "file-has-reset" | "file-has-new-key";
+//# sourceMappingURL=validation.d.ts.map

package/build/src/app-sync/validation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.d.ts","sourceRoot":"","sources":["../../../src/app-sync/validation.js"],"names":[],"mappings":"AAMA,uLAwCC;AAED,wHA0BC"}

package/build/src/app-sync.d.ts

@@ -0,0 +1,3 @@
+declare const app: import("express-serve-static-core").Express;
+export { app as handlers };
+//# sourceMappingURL=app-sync.d.ts.map

package/build/src/app-sync.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"app-sync.d.ts","sourceRoot":"","sources":["../../src/app-sync.ts"],"names":[],"mappings":"AAkCA,QAAA,MAAM,GAAG,6CAAY,CAAC;AAkBtB,OAAO,EAAE,GAAG,IAAI,QAAQ,EAAE,CAAC"}

package/build/src/app-sync.js

@@ -13,7 +13,7 @@ import { config } from './load-config.js';
 import * as UserService from './services/user-service.js';
 import * as simpleSync from './sync-simple.js';
 import { errorMiddleware, requestLoggerMiddleware, validateSessionMiddleware, } from './util/middlewares.js';
-import { getPathForGroupFile, getPathForUserFile } from './util/paths.js';
+import { getPathForGroupFile, getPathForUserFile, isValidFileId, } from './util/paths.js';
 const app = express();
 app.use(validateSessionMiddleware);
 app.use(errorMiddleware);
@@ -29,13 +29,9 @@ app.use(express.raw({
 app.use(express.json({ limit: `${config.get('upload.fileSizeLimitMB')}mb` }));
 export { app as handlers };
 const OK_RESPONSE = { status: 'ok' };
-const FILE_ID_PATTERN = /^[A-Za-z0-9_-]+$/;
 function boolToInt(deleted) {
     return deleted ? 1 : 0;
 }
-function isValidFileId(fileId) {
-    return typeof fileId === 'string' && FILE_ID_PATTERN.test(fileId);
-}
 const verifyFileExists = (fileId, filesService, res, errorObject) => {
     try {
         return filesService.get(fileId);

package/build/src/app-sync.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=app-sync.test.d.ts.map

package/build/src/app-sync.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"app-sync.test.d.ts","sourceRoot":"","sources":["../../src/app-sync.test.ts"],"names":[],"mappings":""}

package/build/src/app-sync.test.js

@@ -5,7 +5,7 @@ import { SyncProtoBuf } from '@actual-app/crdt';
 import request from 'supertest';
 import { getAccountDb } from './account-db.js';
 import { handlers as app } from './app-sync.js';
-import { getPathForUserFile } from './util/paths.js';
+import { getPathForUserFile, isValidFileId } from './util/paths.js';
 const ADMIN_ROLE = 'ADMIN';
 const OTHER_USER_ID = 'otherUser';
 const createUser = (userId, userName, role, owner = 0, enabled = 1) => {
@@ -14,6 +14,13 @@ const createUser = (userId, userName, role, owner = 0, enabled = 1) => {
 const deleteUser = (userId) => {
     getAccountDb().mutate('DELETE FROM users WHERE id = ?', [userId]);
 };
+function generateFileId() {
+    const id = crypto.randomBytes(16).toString('hex');
+    if (!isValidFileId(id)) {
+        throw new Error('Generated fileId is invalid');
+    }
+    return id;
+}
 describe('/user-get-key', () => {
     it('returns 401 if the user is not authenticated', async () => {
         const res = await request(app).post('/user-get-key');
@@ -277,7 +284,7 @@ describe('/upload-user-file', () => {
         expect(res.text).toBe('invalid fileId');
     });
     it('uploads a new file successfully', async () => {
-        const fileId = crypto.randomBytes(16).toString('hex');
+        const fileId = generateFileId();
         const fileName = 'test-file.txt';
         const fileContent = 'test file content';
         const fileContentBuffer = Buffer.from(fileContent);
@@ -322,7 +329,7 @@ describe('/upload-user-file', () => {
         expect(writtenContent).toEqual(fileContent);
     });
     it('uploads and updates an existing file successfully', async () => {
-        const fileId = crypto.randomBytes(16).toString('hex');
+        const fileId = generateFileId();
         const oldGroupId = null; //sync state was reset
         const oldFileName = 'old-test-file.txt';
         const newFileName = 'new-test-file.txt';
@@ -421,7 +428,7 @@ describe('/upload-user-file', () => {
         expect(res.text).toEqual('file-has-new-key');
     });
     it('returns 403 when non-owner overwrites another user file', async () => {
-        const fileId = crypto.randomBytes(16).toString('hex');
+        const fileId = generateFileId();
         const groupId = 'group-id';
         const keyId = 'key-id';
         const syncVersion = 2;
@@ -455,7 +462,7 @@ describe('/upload-user-file', () => {
         expect(res.text).toEqual('file-access-not-allowed');
     });
     it("allows an admin to overwrite another user's file", async () => {
-        const fileId = crypto.randomBytes(16).toString('hex');
+        const fileId = generateFileId();
         const groupId = 'admin-upload-group-id';
         const keyId = 'key-id';
         const syncVersion = 2;
@@ -543,16 +550,17 @@ describe('/download-user-file', () => {
             expect(res.statusCode).toEqual(404);
         });
         it('returns an attachment file', async () => {
+            const fileId = generateFileId();
             const fileContent = 'content';
-            fs.writeFileSync(getPathForUserFile('file-id'), fileContent);
-            getAccountDb().mutate('INSERT INTO files (id, deleted) VALUES (?, FALSE)', ['file-id']);
+            fs.writeFileSync(getPathForUserFile(fileId), fileContent);
+            getAccountDb().mutate('INSERT INTO files (id, deleted) VALUES (?, FALSE)', [fileId]);
             const res = await request(app)
                 .get('/download-user-file')
                 .set('x-actual-token', 'valid-token')
-                .set('x-actual-file-id', 'file-id');
+                .set('x-actual-file-id', fileId);
             expect(res.statusCode).toEqual(200);
             expect(res.headers).toEqual(expect.objectContaining({
-                'content-disposition': 'attachment;filename=file-id',
+                'content-disposition': `attachment;filename=${fileId}`,
                 'content-type': 'application/octet-stream',
             }));
             expect(res.body).toBeInstanceOf(Buffer);
@@ -560,7 +568,7 @@ describe('/download-user-file', () => {
         });
         describe('access control', () => {
             it('returns 403 when non-owner downloads another user file', async () => {
-                const fileId = crypto.randomBytes(16).toString('hex');
+                const fileId = generateFileId();
                 const fileContent = 'sensitive content';
                 fs.writeFileSync(getPathForUserFile(fileId), fileContent);
                 getAccountDb().mutate('INSERT INTO files (id, deleted, owner) VALUES (?, FALSE, ?)', [fileId, OTHER_USER_ID]);
@@ -578,7 +586,7 @@ describe('/download-user-file', () => {
                 expect(res.text).toEqual('file-access-not-allowed');
             });
             it("allows an admin to download another user's file", async () => {
-                const fileId = crypto.randomBytes(16).toString('hex');
+                const fileId = generateFileId();
                 const fileContent = 'admin-downloaded content';
                 fs.writeFileSync(getPathForUserFile(fileId), fileContent);
                 getAccountDb().mutate('INSERT INTO files (id, deleted, owner) VALUES (?, FALSE, ?)', [fileId, OTHER_USER_ID]);
@@ -599,7 +607,7 @@ describe('/download-user-file', () => {
             it('allows non-owner with user_access to download via requireFileAccess (UserService.countUserAccess > 0)', async () => {
                 // File owned by another user; access granted only via user_access row, not owner/admin.
                 // This exercises the requireFileAccess branch that uses UserService.countUserAccess.
-                const fileId = crypto.randomBytes(16).toString('hex');
+                const fileId = generateFileId();
                 const fileContent = 'shared-user content';
                 fs.writeFileSync(getPathForUserFile(fileId), fileContent);
                 getAccountDb().mutate('INSERT INTO files (id, deleted, owner) VALUES (?, FALSE, ?)', [fileId, OTHER_USER_ID]);

package/build/src/app.d.ts

@@ -0,0 +1,2 @@
+export declare function run(): Promise<void>;
+//# sourceMappingURL=app.d.ts.map

package/build/src/app.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"app.d.ts","sourceRoot":"","sources":["../../src/app.ts"],"names":[],"mappings":"AA6KA,wBAAsB,GAAG,kBAqCxB"}

package/build/src/config-types.d.ts

@@ -0,0 +1,42 @@
+import type { ServerOptions } from 'https';
+type LoginMethod = 'password' | 'header' | 'openid';
+export type Config = {
+    mode: 'test' | 'development';
+    loginMethod?: LoginMethod;
+    allowedLoginMethods: LoginMethod[];
+    trustedProxies: string[];
+    trustedAuthProxies?: string[];
+    dataDir: string;
+    projectRoot: string;
+    port: number;
+    hostname: string;
+    serverFiles: string;
+    userFiles: string;
+    webRoot: string;
+    https?: {
+        key: string;
+        cert: string;
+    } & ServerOptions;
+    upload?: {
+        fileSizeSyncLimitMB: number;
+        syncEncryptedFileSizeLimitMB: number;
+        fileSizeLimitMB: number;
+    };
+    openId?: {
+        issuer: string | {
+            name: string;
+            authorization_endpoint: string;
+            token_endpoint: string;
+            userinfo_endpoint: string;
+        };
+        client_id: string;
+        client_secret: string;
+        server_hostname: string;
+        authMethod?: 'openid' | 'oauth2';
+    };
+    token_expiration?: 'never' | 'openid-provider' | number;
+    enforceOpenId: boolean;
+    userCreationMode?: 'manual' | 'login';
+};
+export {};
+//# sourceMappingURL=config-types.d.ts.map

package/build/src/config-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-types.d.ts","sourceRoot":"","sources":["../../src/config-types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,OAAO,CAAC;AAE3C,KAAK,WAAW,GAAG,UAAU,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAEpD,MAAM,MAAM,MAAM,GAAG;IACnB,IAAI,EAAE,MAAM,GAAG,aAAa,CAAC;IAC7B,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,mBAAmB,EAAE,WAAW,EAAE,CAAC;IACnC,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,kBAAkB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE;QACN,GAAG,EAAE,MAAM,CAAC;QACZ,IAAI,EAAE,MAAM,CAAC;KACd,GAAG,aAAa,CAAC;IAClB,MAAM,CAAC,EAAE;QACP,mBAAmB,EAAE,MAAM,CAAC;QAC5B,4BAA4B,EAAE,MAAM,CAAC;QACrC,eAAe,EAAE,MAAM,CAAC;KACzB,CAAC;IACF,MAAM,CAAC,EAAE;QACP,MAAM,EACF,MAAM,GACN;YACE,IAAI,EAAE,MAAM,CAAC;YACb,sBAAsB,EAAE,MAAM,CAAC;YAC/B,cAAc,EAAE,MAAM,CAAC;YACvB,iBAAiB,EAAE,MAAM,CAAC;SAC3B,CAAC;QACN,SAAS,EAAE,MAAM,CAAC;QAClB,aAAa,EAAE,MAAM,CAAC;QACtB,eAAe,EAAE,MAAM,CAAC;QACxB,UAAU,CAAC,EAAE,QAAQ,GAAG,QAAQ,CAAC;KAClC,CAAC;IACF,gBAAgB,CAAC,EAAE,OAAO,GAAG,iBAAiB,GAAG,MAAM,CAAC;IACxD,aAAa,EAAE,OAAO,CAAC;IACvB,gBAAgB,CAAC,EAAE,QAAQ,GAAG,OAAO,CAAC;CACvC,CAAC"}

package/build/src/db.d.ts

@@ -0,0 +1,35 @@
+/** @param {string} filename */
+export function openDatabase(filename: string): WrappedDatabase;
+declare class WrappedDatabase {
+    constructor(db: any);
+    db: any;
+    /**
+     * @param {string} sql
+     * @param {string[]} params
+     */
+    all(sql: string, params?: string[]): any;
+    /**
+     * @param {string} sql
+     * @param {string[]} params
+     */
+    first(sql: string, params?: string[]): any;
+    /**
+     * @param {string} sql
+     */
+    exec(sql: string): any;
+    /**
+     * @param {string} sql
+     * @param {string[]} params
+     */
+    mutate(sql: string, params?: string[]): {
+        changes: any;
+        insertId: any;
+    };
+    /**
+     * @param {() => void} fn
+     */
+    transaction(fn: () => void): any;
+    close(): void;
+}
+export {};
+//# sourceMappingURL=db.d.ts.map

package/build/src/db.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"db.d.ts","sourceRoot":"","sources":["../../src/db.js"],"names":[],"mappings":"AAsDA,+BAA+B;AAC/B,uCADY,MAAM,mBAGjB;AAvDD;IACE,qBAEC;IADC,QAAY;IAGd;;;OAGG;IACH,SAHW,MAAM,WACN,MAAM,EAAE,OAKlB;IAED;;;OAGG;IACH,WAHW,MAAM,WACN,MAAM,EAAE,OAKlB;IAED;;OAEG;IACH,UAFW,MAAM,OAIhB;IAED;;;OAGG;IACH,YAHW,MAAM,WACN,MAAM,EAAE;;;MAMlB;IAED;;OAEG;IACH,gBAFW,MAAM,IAAI,OAIpB;IAED,cAEC;CACF"}