@aifabrix/miso-client 4.0.0 → 4.2.0

package/CHANGELOG.md

@@ -5,12 +5,71 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
+## [4.2.0] - 2026-01-26
+
+### Added
+
+- **User Info Caching** - Added caching for `getUserInfo()` to reduce redundant controller API calls
+  - Cache key format: `user:{userId}` with configurable TTL (default 300 seconds / 5 minutes)
+  - Automatically extracts userId from JWT token for cache key generation
+  - Falls back to controller when cache miss or Redis unavailable
+  - New `clearUserCache(token)` method to invalidate cached user info
+  - `logout()` now clears user cache in addition to token cache
+  - New `userTTL` configuration option in `cache` settings
+
+### Changed
+
+- **RFC 7807 Compliance** - Improved error responses in `client-token-endpoint.ts`
+  - All 11 error responses now use RFC 7807 Problem Details format
+  - Added 504 Gateway Timeout to error type mappings
+  - Error responses include `type`, `title`, `status`, `detail`, and `instance` fields
+
+### Technical
+
+- **Code Quality Refactoring** - Refactored 13 methods across 11 files to comply with 30-line method limit
+  - `auth.service.ts`: Extracted `extractTokenFromEnvResponse()` helper
+  - `internal-http-client.ts`: Extracted `createHttpAgent()`, `extractTokenFromResponse()`, `formatTokenFetchError()`
+  - `client-token-endpoint.ts`: Extracted `extractHttpStatus()`, `isNetworkOrTimeoutError()`, `handleTokenError()`, `buildConfigResponse()`
+  - `role.service.ts`: Extracted `buildAuthStrategy()`, `getEnvironmentParams()`, `resolveUserId()`, `fetchRolesFromController()`
+  - `permission.service.ts`: Similar helper extraction pattern
+  - `config-loader.ts`: Extracted `loadRedisConfig()`, `loadAuthStrategy()`, `loadKeycloakConfig()`, `loadAllowedOrigins()`
+  - `errors.ts`: Extracted `transformErrorEnvelope()`, `transformDirectError()`
+  - `error-handler.ts`: Added lookup tables `PRISMA_ERROR_MAP`, `MESSAGE_PATTERN_MAP`, extracted `logError()`
+  - `error-types.ts`: Extracted `ERROR_TYPE_MAP`, `ERROR_TITLE_MAP` lookup tables
+  - `data-client.ts`: Extracted `checkCircuitBreaker()`, `recordFailure()`, `executeRequest()`
+  - `logger-context.middleware.ts`: Extracted `buildLoggerContext()`
+- File size reduction in `auth.service.ts` from 515 to 500 lines via JSDoc consolidation
+
+## [4.1.0] - 2026-01-21
+
+### Changed
+
+- **Encryption Key Parameter** - `encryptionKey` is now sent to the controller for server-side validation
+  - Added `encryptionKey` field to `EncryptRequest` and `DecryptRequest` interfaces
+  - `EncryptionService` validates encryption key is configured before API calls
+  - Throws `ENCRYPTION_KEY_REQUIRED` error with helpful message if key is missing
+
+### Added
+
+- `ENCRYPTION_KEY_REQUIRED` error code in `EncryptionError` class
+- Tests for encryption key validation in `EncryptionService`
+- Tests for `MISO_ENCRYPTION_KEY` environment variable loading in `config-loader`
+
+### Technical
+
+- `EncryptionError.parameterName` is now optional (not applicable for `ENCRYPTION_KEY_REQUIRED` errors)
+- `EncryptionService` constructor accepts optional `encryptionKey` parameter
+- `MisoClient` passes `config.encryptionKey` to `EncryptionService`
+
 ## [4.0.0] - 2026-01-20
 
 ### Breaking Changes
 
 - **Removed `EncryptionUtil` class** - Local encryption via `EncryptionUtil.encrypt()`/`decrypt()` is no longer supported. Use the new controller-based `client.encryption` service instead.
-- **Removed `encryptionKey` config option** - The `encryptionKey` property has been removed from `MisoClientConfig`. Encryption keys are now managed by the miso-controller.
+- **Encryption Key Required** - The `encryptionKey` config option is now required for encryption operations
+  - Load from `MISO_ENCRYPTION_KEY` environment variable
+  - Or provide `encryptionKey` in `MisoClientConfig`
+  - Throws `ENCRYPTION_KEY_REQUIRED` error if not configured when using encrypt/decrypt
 
 ### Migration Guide
 
@@ -27,12 +86,18 @@ const decrypted = EncryptionUtil.decrypt(encrypted);
 **After (v4.0) - Controller-based encryption:**
 
 ```typescript
-import { MisoClient } from '@aifabrix/miso-client';
+import { MisoClient, loadConfig } from '@aifabrix/miso-client';
+
+// Option 1: Use environment variable (recommended)
+// Set MISO_ENCRYPTION_KEY in your .env file
+const client = new MisoClient(loadConfig());
 
+// Option 2: Provide in config
 const client = new MisoClient({
   controllerUrl: 'https://miso-controller.example.com',
   clientId: 'my-app',
   clientSecret: 'secret',
+  encryptionKey: 'your-encryption-key', // Required for encryption operations
 });
 
 const result = await client.encryption.encrypt('my-secret', 'param-name');
@@ -44,24 +109,26 @@ const decrypted = await client.encryption.decrypt(result.value, 'param-name');
 
 ### Why This Change?
 
-- **Centralized key management** - Encryption keys are managed by the controller, not distributed to each application
+- **Centralized key management** - Encryption keys are managed by the controller, validated server-side
 - **Azure Key Vault support** - Production environments can use Azure Key Vault for secure secret storage
 - **Application isolation** - Each application can only access its own encrypted parameters
 - **Audit logging** - All encryption/decryption operations are logged by the controller
+- **Security** - Encryption key prevents misuse of rotated or leaked application credentials
 
 ### Added
 
 - `client.encryption.encrypt(plaintext, parameterName)` - Encrypt a value via controller
 - `client.encryption.decrypt(value, parameterName)` - Decrypt a value via controller
-- `EncryptionService` class - Service layer with parameter validation
-- `EncryptionError` class - Error class with codes: `ENCRYPTION_FAILED`, `DECRYPTION_FAILED`, `INVALID_PARAMETER_NAME`, `ACCESS_DENIED`, `PARAMETER_NOT_FOUND`
+- `EncryptionService` class - Service layer with parameter and encryption key validation
+- `EncryptionError` class - Error class with codes: `ENCRYPTION_FAILED`, `DECRYPTION_FAILED`, `INVALID_PARAMETER_NAME`, `ACCESS_DENIED`, `PARAMETER_NOT_FOUND`, `ENCRYPTION_KEY_REQUIRED`
 - `EncryptResult` type - Return type for encrypt operations
 - `EncryptionApi` class - API layer for controller communication
+- `encryptionKey` config option - For server-side encryption key validation
+- `MISO_ENCRYPTION_KEY` environment variable support in `loadConfig()`
 
 ### Removed
 
 - `EncryptionUtil` class - Use `client.encryption` instead
-- `encryptionKey` config option - No longer needed
 
 ### Technical
 

package/dist/api/types/encryption.types.d.ts

@@ -14,6 +14,8 @@ export interface EncryptRequest {
     plaintext: string;
     /** Name identifier for the parameter (alphanumeric, dots, underscores, hyphens, 1-128 chars) */
     parameterName: string;
+    /** Encryption key for server-side validation (from MISO_ENCRYPTION_KEY) */
+    encryptionKey: string;
 }
 /**
  * Encrypt response with storage reference
@@ -32,6 +34,8 @@ export interface DecryptRequest {
     value: string;
     /** Name identifier for the parameter (must match encryption) */
     parameterName: string;
+    /** Encryption key for server-side validation (from MISO_ENCRYPTION_KEY) */
+    encryptionKey: string;
 }
 /**
  * Decrypt response with plaintext value

package/dist/api/types/encryption.types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"encryption.types.d.ts","sourceRoot":"","sources":["../../../src/api/types/encryption.types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH;;GAEG;AACH,MAAM,MAAM,iBAAiB,GAAG,UAAU,GAAG,OAAO,CAAC;AAErD;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,gDAAgD;IAChD,SAAS,EAAE,MAAM,CAAC;IAClB,gGAAgG;IAChG,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,8DAA8D;IAC9D,KAAK,EAAE,MAAM,CAAC;IACd,2BAA2B;IAC3B,OAAO,EAAE,iBAAiB,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,+CAA+C;IAC/C,KAAK,EAAE,MAAM,CAAC;IACd,gEAAgE;IAChE,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,oCAAoC;IACpC,SAAS,EAAE,MAAM,CAAC;CACnB"}
+{"version":3,"file":"encryption.types.d.ts","sourceRoot":"","sources":["../../../src/api/types/encryption.types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH;;GAEG;AACH,MAAM,MAAM,iBAAiB,GAAG,UAAU,GAAG,OAAO,CAAC;AAErD;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,gDAAgD;IAChD,SAAS,EAAE,MAAM,CAAC;IAClB,gGAAgG;IAChG,aAAa,EAAE,MAAM,CAAC;IACtB,2EAA2E;IAC3E,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,8DAA8D;IAC9D,KAAK,EAAE,MAAM,CAAC;IACd,2BAA2B;IAC3B,OAAO,EAAE,iBAAiB,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,+CAA+C;IAC/C,KAAK,EAAE,MAAM,CAAC;IACd,gEAAgE;IAChE,aAAa,EAAE,MAAM,CAAC;IACtB,2EAA2E;IAC3E,aAAa,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,oCAAoC;IACpC,SAAS,EAAE,MAAM,CAAC;CACnB"}

package/dist/express/client-token-endpoint.d.ts

@@ -56,21 +56,9 @@ export declare function hasConfig(response: ClientTokenResponse): response is Cl
 };
 /**
  * Create Express route handler for client-token endpoint
- * Automatically enriches response with DataClient configuration
- *
  * @param misoClient - MisoClient instance (must be initialized)
  * @param options - Optional configuration
  * @returns Express route handler function
- *
- * @example
- * ```typescript
- * import { MisoClient, createClientTokenEndpoint } from '@aifabrix/miso-client';
- *
- * const misoClient = new MisoClient(loadConfig());
- * await misoClient.initialize();
- *
- * app.post('/api/v1/auth/client-token', createClientTokenEndpoint(misoClient));
- * ```
  */
 export declare function createClientTokenEndpoint(misoClient: MisoClient, options?: ClientTokenEndpointOptions): (req: Request, res: Response) => Promise<void>;
 //# sourceMappingURL=client-token-endpoint.d.ts.map

package/dist/express/client-token-endpoint.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client-token-endpoint.d.ts","sourceRoot":"","sources":["../../src/express/client-token-endpoint.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAItC;;;GAGG;AACH,MAAM,WAAW,wBAAwB;IACvC,0CAA0C;IAC1C,OAAO,EAAE,MAAM,CAAC;IAEhB,mDAAmD;IACnD,aAAa,EAAE,MAAM,CAAC;IAEtB,8DAA8D;IAC9D,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,yCAAyC;IACzC,QAAQ,EAAE,MAAM,CAAC;IAEjB,gCAAgC;IAChC,cAAc,EAAE,MAAM,CAAC;CACxB;AAED;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,0BAA0B;IAC1B,KAAK,EAAE,MAAM,CAAC;IAEd,uCAAuC;IACvC,SAAS,EAAE,MAAM,CAAC;IAElB,qEAAqE;IACrE,MAAM,CAAC,EAAE,wBAAwB,CAAC;CACnC;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACzC,uEAAuE;IACvE,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,uDAAuD;IACvD,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,uEAAuE;IACvE,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED;;;;;GAKG;AACH,wBAAgB,SAAS,CAAC,QAAQ,EAAE,mBAAmB,GAAG,QAAQ,IAAI,mBAAmB,GAAG;IAAE,MAAM,EAAE,wBAAwB,CAAA;CAAE,CAE/H;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,yBAAyB,CACvC,UAAU,EAAE,UAAU,EACtB,OAAO,CAAC,EAAE,0BAA0B,GACnC,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,KAAK,OAAO,CAAC,IAAI,CAAC,CAuQhD"}
+{"version":3,"file":"client-token-endpoint.d.ts","sourceRoot":"","sources":["../../src/express/client-token-endpoint.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAKtC;;;GAGG;AACH,MAAM,WAAW,wBAAwB;IACvC,0CAA0C;IAC1C,OAAO,EAAE,MAAM,CAAC;IAEhB,mDAAmD;IACnD,aAAa,EAAE,MAAM,CAAC;IAEtB,8DAA8D;IAC9D,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,yCAAyC;IACzC,QAAQ,EAAE,MAAM,CAAC;IAEjB,gCAAgC;IAChC,cAAc,EAAE,MAAM,CAAC;CACxB;AAED;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,0BAA0B;IAC1B,KAAK,EAAE,MAAM,CAAC;IAEd,uCAAuC;IACvC,SAAS,EAAE,MAAM,CAAC;IAElB,qEAAqE;IACrE,MAAM,CAAC,EAAE,wBAAwB,CAAC;CACnC;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACzC,uEAAuE;IACvE,cAAc,CAAC,EAAE,MAAM,CAAC;IAExB,uDAAuD;IACvD,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,uEAAuE;IACvE,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED;;;;;GAKG;AACH,wBAAgB,SAAS,CAAC,QAAQ,EAAE,mBAAmB,GAAG,QAAQ,IAAI,mBAAmB,GAAG;IAAE,MAAM,EAAE,wBAAwB,CAAA;CAAE,CAE/H;AAsED;;;;;GAKG;AACH,wBAAgB,yBAAyB,CACvC,UAAU,EAAE,UAAU,EACtB,OAAO,CAAC,EAAE,0BAA0B,GACnC,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,KAAK,OAAO,CAAC,IAAI,CAAC,CA0ChD"}

package/dist/express/client-token-endpoint.js

@@ -10,6 +10,7 @@ exports.hasConfig = hasConfig;
 exports.createClientTokenEndpoint = createClientTokenEndpoint;
 const environment_token_1 = require("../utils/environment-token");
 const controller_url_resolver_1 = require("../utils/controller-url-resolver");
+const error_response_1 = require("./error-response");
 /**
  * Type guard to check if response includes config
  *
@@ -19,258 +20,136 @@ const controller_url_resolver_1 = require("../utils/controller-url-resolver");
 function hasConfig(response) {
     return response.config !== undefined;
 }
+/** Extract HTTP status from error message or axios error chain */
+function extractHttpStatus(tokenError) {
+    const errorMessage = tokenError instanceof Error ? tokenError.message : "Unknown error";
+    const httpStatusMatch = errorMessage.match(/status:\s*(\d+)/i) || errorMessage.match(/status code\s+(\d+)/i) || errorMessage.match(/status\s+(\d+)/i);
+    let status = httpStatusMatch ? parseInt(httpStatusMatch[1], 10) : undefined;
+    let isNetworkError = false;
+    // Walk error chain for axios details
+    let currentError = tokenError;
+    for (let i = 0; i < 5 && currentError; i++) {
+        if (currentError && typeof currentError === "object" && "isAxiosError" in currentError && currentError.isAxiosError) {
+            const axiosError = currentError;
+            if (axiosError.response) {
+                status = axiosError.response.status;
+                break;
+            }
+            if (axiosError.request && !axiosError.response) {
+                isNetworkError = true;
+                break;
+            }
+        }
+        if (currentError && typeof currentError === "object" && "cause" in currentError) {
+            currentError = currentError.cause;
+        }
+        else
+            break;
+    }
+    return { status, isNetworkError };
+}
+/** Check if error message indicates network/timeout error */
+function isNetworkOrTimeoutError(errorMessage, isAxiosNetworkError) {
+    const isNetwork = isAxiosNetworkError || /ECONNREFUSED|ENOTFOUND|ETIMEDOUT|connect|Network Error|network error|getaddrinfo/i.test(errorMessage);
+    const isTimeout = errorMessage.includes("Request timeout: Failed to get environment token") || /timeout/i.test(errorMessage);
+    return { isNetwork, isTimeout };
+}
+/** Handle token fetch error and send appropriate response */
+function handleTokenError(tokenError, req, res, misoClient) {
+    const errorMessage = tokenError instanceof Error ? tokenError.message : "Unknown error";
+    if (errorMessage.includes("Origin validation failed")) {
+        (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)(errorMessage, 403, req));
+        return;
+    }
+    const { status, isNetworkError } = extractHttpStatus(tokenError);
+    if (status) {
+        const msg = status === 401 ? "Failed to get environment token: Invalid client credentials or application not found"
+            : status === 403 ? "Failed to get environment token: Access denied" : errorMessage;
+        (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)(msg, status, req));
+        return;
+    }
+    const { isNetwork, isTimeout } = isNetworkOrTimeoutError(errorMessage, isNetworkError);
+    if (isNetwork || isTimeout) {
+        const config = misoClient.getConfig();
+        let controllerUrl;
+        try {
+            controllerUrl = (0, controller_url_resolver_1.resolveControllerUrl)(config);
+        }
+        catch {
+            controllerUrl = config.controllerPrivateUrl || config.controllerUrl || "NOT CONFIGURED";
+        }
+        const detail = isNetwork ? `Controller is unreachable. URL: ${controllerUrl}.` : `Controller request timed out. URL: ${controllerUrl}.`;
+        (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)(`Failed to get environment token: ${detail}`, 504, req));
+        return;
+    }
+    (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)(errorMessage, 500, req));
+}
+/** Build DataClient config response */
+function buildConfigResponse(req, misoClient, clientTokenUri) {
+    const config = misoClient.getConfig();
+    const controllerUrl = config.controllerPublicUrl || config.controllerUrl;
+    if (!controllerUrl)
+        return null;
+    return {
+        baseUrl: `${req.protocol}://${req.get("host") || "localhost"}`,
+        controllerUrl, controllerPublicUrl: config.controllerPublicUrl,
+        clientId: config.clientId, clientTokenUri,
+    };
+}
 /**
  * Create Express route handler for client-token endpoint
- * Automatically enriches response with DataClient configuration
- *
  * @param misoClient - MisoClient instance (must be initialized)
  * @param options - Optional configuration
  * @returns Express route handler function
- *
- * @example
- * ```typescript
- * import { MisoClient, createClientTokenEndpoint } from '@aifabrix/miso-client';
- *
- * const misoClient = new MisoClient(loadConfig());
- * await misoClient.initialize();
- *
- * app.post('/api/v1/auth/client-token', createClientTokenEndpoint(misoClient));
- * ```
  */
 function createClientTokenEndpoint(misoClient, options) {
-    const opts = {
-        clientTokenUri: "/api/v1/auth/client-token",
-        expiresIn: 1800,
-        includeConfig: true,
-        ...options,
-    };
+    const opts = { clientTokenUri: "/api/v1/auth/client-token", expiresIn: 1800, includeConfig: true, ...options };
     return async (req, res) => {
-        // Helper to check if response was already sent
         const isResponseSent = () => res.headersSent || res.writableEnded;
         try {
-            // Check if misoClient is initialized
             if (!misoClient.isInitialized()) {
-                if (!isResponseSent()) {
-                    res.status(503).json({
-                        error: "Service Unavailable",
-                        message: "MisoClient is not initialized",
-                    });
-                }
+                if (!isResponseSent())
+                    (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)("MisoClient is not initialized", 503, req));
                 return;
             }
-            // Get token with origin validation (throws if validation fails)
-            // Wrap in Promise.race with timeout to ensure we don't hang
-            // Fail fast after 5 seconds if controller is unreachable
-            const timeoutMs = 5000; // 5 seconds - fail fast if controller is unreachable
-            const tokenPromise = (0, environment_token_1.getEnvironmentToken)(misoClient, req);
-            const timeoutPromise = new Promise((_, reject) => {
-                setTimeout(() => {
-                    reject(new Error("Request timeout: Failed to get environment token within 5 seconds"));
-                }, timeoutMs);
-            });
+            // Fetch token with timeout
+            const timeoutPromise = new Promise((_, reject) => setTimeout(() => reject(new Error("Request timeout: Failed to get environment token within 5 seconds")), 5000));
             let token;
             try {
-                token = await Promise.race([tokenPromise, timeoutPromise]);
+                token = await Promise.race([(0, environment_token_1.getEnvironmentToken)(misoClient, req), timeoutPromise]);
             }
             catch (tokenError) {
-                // If response already sent, don't try to send again
-                if (isResponseSent()) {
-                    return;
-                }
-                const errorMessage = tokenError instanceof Error ? tokenError.message : "Unknown error";
-                // Debug logging (can be removed after fixing)
-                if (process.env.NODE_ENV === 'development') {
-                    console.log('[client-token-endpoint] Error caught:', {
-                        errorMessage,
-                        errorType: tokenError instanceof Error ? tokenError.constructor.name : typeof tokenError,
-                        hasCause: tokenError && typeof tokenError === 'object' && 'cause' in tokenError,
-                    });
-                }
-                // Check if it's an origin validation error (403)
-                if (errorMessage.includes("Origin validation failed")) {
-                    res.status(403).json({
-                        error: "Forbidden",
-                        message: errorMessage,
-                    });
-                    return;
-                }
-                // Check if it's our timeout wrapper error (specific message from timeout promise)
-                const isTimeoutWrapperError = errorMessage.includes("Request timeout: Failed to get environment token within 5 seconds");
-                // Check if error message contains HTTP status codes (indicates HTTP error, not timeout)
-                // AuthService wraps axios errors with status info like "status: 401"
-                // Also check for axios error messages like "Request failed with status code 401"
-                const httpStatusMatch = errorMessage.match(/status:\s*(\d+)/i) ||
-                    errorMessage.match(/status code\s+(\d+)/i) ||
-                    errorMessage.match(/status\s+(\d+)/i);
-                const httpStatus = httpStatusMatch ? parseInt(httpStatusMatch[1], 10) : undefined;
-                const isHttpError = httpStatus !== undefined;
-                // Also try to extract axios error details from the error chain
-                let extractedHttpStatus = httpStatus;
-                let httpStatusText;
-                let isAxiosNetworkError = false;
-                // Try to extract axios error details from the error chain
-                let currentError = tokenError;
-                for (let i = 0; i < 5 && currentError; i++) {
-                    if (currentError &&
-                        typeof currentError === "object" &&
-                        "isAxiosError" in currentError &&
-                        currentError.isAxiosError) {
-                        const axiosError = currentError;
-                        if (axiosError.response) {
-                            // Has response = HTTP error (not timeout)
-                            extractedHttpStatus = axiosError.response.status;
-                            httpStatusText = axiosError.response.statusText;
-                            break;
-                        }
-                        // No response but has request = network/timeout error
-                        if (axiosError.request && !axiosError.response) {
-                            // This is a network/timeout error
-                            isAxiosNetworkError = true;
-                            break;
-                        }
-                    }
-                    // Check if error has a cause (for chained errors)
-                    if (currentError && typeof currentError === "object" && "cause" in currentError) {
-                        currentError = currentError.cause;
-                    }
-                    else {
-                        break;
-                    }
-                }
-                // Use extracted status if available, otherwise use parsed status
-                const finalHttpStatus = extractedHttpStatus || httpStatus;
-                // If it's an HTTP error (like 401), return appropriate status code
-                if (isHttpError && finalHttpStatus) {
-                    // Map common HTTP errors to appropriate status codes
-                    if (finalHttpStatus === 401) {
-                        res.status(401).json({
-                            error: "Unauthorized",
-                            message: "Failed to get environment token: Invalid client credentials or application not found",
-                        });
-                        return;
-                    }
-                    if (finalHttpStatus === 403) {
-                        res.status(403).json({
-                            error: "Forbidden",
-                            message: "Failed to get environment token: Access denied",
-                        });
-                        return;
-                    }
-                    // Other HTTP errors
-                    res.status(finalHttpStatus).json({
-                        error: httpStatusText || "Error",
-                        message: errorMessage,
-                    });
-                    return;
-                }
-                // Check if it's a network error (controller unreachable)
-                // These errors indicate the controller is not reachable and should be treated as gateway timeout
-                const isNetworkError = isAxiosNetworkError ||
-                    errorMessage.includes("ECONNREFUSED") ||
-                    errorMessage.includes("ENOTFOUND") ||
-                    errorMessage.includes("ETIMEDOUT") ||
-                    errorMessage.includes("connect") ||
-                    errorMessage.includes("Network Error") ||
-                    errorMessage.includes("network error") ||
-                    errorMessage.includes("getaddrinfo ENOTFOUND") ||
-                    errorMessage.includes("getaddrinfo EAI_AGAIN");
-                // Check if it's a timeout error (from our wrapper or axios timeout)
-                const isTimeoutError = isTimeoutWrapperError ||
-                    errorMessage.includes("timeout") ||
-                    errorMessage.includes("Timeout");
-                if (isNetworkError || isTimeoutError) {
-                    const config = misoClient.getConfig();
-                    // Use resolveControllerUrl to get the resolved URL (with localhost -> 127.0.0.1 conversion)
-                    let controllerUrl;
-                    try {
-                        controllerUrl = (0, controller_url_resolver_1.resolveControllerUrl)(config);
-                    }
-                    catch {
-                        controllerUrl = config.controllerPrivateUrl || config.controllerUrl || "NOT CONFIGURED";
-                    }
-                    res.status(504).json({
-                        error: "Gateway Timeout",
-                        message: isNetworkError
-                            ? "Failed to get environment token: Controller is unreachable"
-                            : "Failed to get environment token: Controller request timed out",
-                        details: {
-                            controllerUrl: controllerUrl || "NOT CONFIGURED",
-                            timeout: "4 seconds",
-                            suggestion: controllerUrl && controllerUrl !== "NOT CONFIGURED"
-                                ? `Controller at ${controllerUrl} is not responding. Please check if the controller is running and accessible.`
-                                : "Controller URL is not configured. Please set MISO_CONTROLLER_URL environment variable.",
-                        },
-                    });
-                    return;
-                }
-                // Other errors (500)
-                res.status(500).json({
-                    error: "Internal Server Error",
-                    message: errorMessage,
-                });
+                if (!isResponseSent())
+                    handleTokenError(tokenError, req, res, misoClient);
                 return;
             }
             // Build response
-            const response = {
-                token,
-                expiresIn: opts.expiresIn,
-            };
-            // Include config if requested
+            const response = { token, expiresIn: opts.expiresIn };
             if (opts.includeConfig) {
-                const config = misoClient.getConfig();
-                // Derive baseUrl from request
-                const baseUrl = `${req.protocol}://${req.get("host") || "localhost"}`;
-                // Get controller URL (prefer controllerPublicUrl for browser, fallback to controllerUrl)
-                const controllerUrl = config.controllerPublicUrl || config.controllerUrl;
-                if (!controllerUrl) {
-                    if (!isResponseSent()) {
-                        res.status(500).json({
-                            error: "Internal Server Error",
-                            message: "Controller URL not configured",
-                        });
-                    }
+                const configResponse = buildConfigResponse(req, misoClient, opts.clientTokenUri);
+                if (!configResponse) {
+                    if (!isResponseSent())
+                        (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)("Controller URL not configured", 500, req));
                     return;
                 }
-                response.config = {
-                    baseUrl,
-                    controllerUrl,
-                    controllerPublicUrl: config.controllerPublicUrl,
-                    clientId: config.clientId,
-                    clientTokenUri: opts.clientTokenUri,
-                };
+                response.config = configResponse;
             }
-            // Send response if not already sent
-            if (!isResponseSent()) {
+            if (!isResponseSent())
                 res.json(response);
-            }
         }
         catch (error) {
-            // Final catch-all error handler
-            if (isResponseSent()) {
+            if (isResponseSent())
                 return;
-            }
             const errorMessage = error instanceof Error ? error.message : "Unknown error";
-            // Check if it's an origin validation error (403)
             if (errorMessage.includes("Origin validation failed")) {
-                res.status(403).json({
-                    error: "Forbidden",
-                    message: errorMessage,
-                });
+                (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)(errorMessage, 403, req));
                 return;
             }
-            // Check if it's a timeout error
-            if (errorMessage.includes("timeout") || errorMessage.includes("Timeout")) {
-                res.status(504).json({
-                    error: "Gateway Timeout",
-                    message: "Failed to get environment token: Request timed out",
-                });
+            if (/timeout/i.test(errorMessage)) {
+                (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)("Failed to get environment token: Request timed out", 504, req));
                 return;
             }
-            // Other errors (500)
-            res.status(500).json({
-                error: "Internal Server Error",
-                message: errorMessage,
-            });
+            (0, error_response_1.sendErrorResponse)(res, (0, error_response_1.createErrorResponse)(errorMessage, 500, req));
         }
     };
 }

package/dist/express/client-token-endpoint.js.map

@@ -1 +1 @@
-{"version":3,"file":"client-token-endpoint.js","sourceRoot":"","sources":["../../src/express/client-token-endpoint.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AA+DH,8BAEC;AAoBD,8DA0QC;AA3VD,kEAAiE;AACjE,8EAAwE;AAoDxE;;;;;GAKG;AACH,SAAgB,SAAS,CAAC,QAA6B;IACrD,OAAO,QAAQ,CAAC,MAAM,KAAK,SAAS,CAAC;AACvC,CAAC;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,SAAgB,yBAAyB,CACvC,UAAsB,EACtB,OAAoC;IAEpC,MAAM,IAAI,GAAG;QACX,cAAc,EAAE,2BAA2B;QAC3C,SAAS,EAAE,IAAI;QACf,aAAa,EAAE,IAAI;QACnB,GAAG,OAAO;KACX,CAAC;IAEF,OAAO,KAAK,EAAE,GAAY,EAAE,GAAa,EAAiB,EAAE;QAC1D,+CAA+C;QAC/C,MAAM,cAAc,GAAG,GAAG,EAAE,CAAC,GAAG,CAAC,WAAW,IAAI,GAAG,CAAC,aAAa,CAAC;QAElE,IAAI,CAAC;YACH,qCAAqC;YACrC,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,EAAE,CAAC;gBAChC,IAAI,CAAC,cAAc,EAAE,EAAE,CAAC;oBACtB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;wBACnB,KAAK,EAAE,qBAAqB;wBAC5B,OAAO,EAAE,+BAA+B;qBACzC,CAAC,CAAC;gBACL,CAAC;gBACD,OAAO;YACT,CAAC;YAED,gEAAgE;YAChE,4DAA4D;YAC5D,yDAAyD;YACzD,MAAM,SAAS,GAAG,IAAI,CAAC,CAAC,qDAAqD;YAC7E,MAAM,YAAY,GAAG,IAAA,uCAAmB,EAAC,UAAU,EAAE,GAAG,CAAC,CAAC;YAC1D,MAAM,cAAc,GAAG,IAAI,OAAO,CAAQ,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE;gBACtD,UAAU,CAAC,GAAG,EAAE;oBACd,MAAM,CAAC,IAAI,KAAK,CAAC,mEAAmE,CAAC,CAAC,CAAC;gBACzF,CAAC,EAAE,SAAS,CAAC,CAAC;YAChB,CAAC,CAAC,CAAC;YAEH,IAAI,KAAa,CAAC;YAClB,IAAI,CAAC;gBACH,KAAK,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC,CAAC;YAC7D,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBACpB,oDAAoD;gBACpD,IAAI,cAAc,EAAE,EAAE,CAAC;oBACrB,OAAO;gBACT,CAAC;gBAED,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;gBAExF,8CAA8C;gBAC9C,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa,EAAE,CAAC;oBAC3C,OAAO,CAAC,GAAG,CAAC,uCAAuC,EAAE;wBACnD,YAAY;wBACZ,SAAS,EAAE,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,UAAU;wBACxF,QAAQ,EAAE,UAAU,IAAI,OAAO,UAAU,KAAK,QAAQ,IAAI,OAAO,IAAI,UAAU;qBAChF,CAAC,CAAC;gBACL,CAAC;gBAED,iDAAiD;gBACjD,IAAI,YAAY,CAAC,QAAQ,CAAC,0BAA0B,CAAC,EAAE,CAAC;oBACtD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;wBACnB,KAAK,EAAE,WAAW;wBAClB,OAAO,EAAE,YAAY;qBACtB,CAAC,CAAC;oBACH,OAAO;gBACT,CAAC;gBAED,kFAAkF;gBAClF,MAAM,qBAAqB,GAAG,YAAY,CAAC,QAAQ,CAAC,mEAAmE,CAAC,CAAC;gBAEzH,wFAAwF;gBACxF,qEAAqE;gBACrE,iFAAiF;gBACjF,MAAM,eAAe,GAAG,YAAY,CAAC,KAAK,CAAC,kBAAkB,CAAC;oBACtC,YAAY,CAAC,KAAK,CAAC,sBAAsB,CAAC;oBAC1C,YAAY,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;gBAC9D,MAAM,UAAU,GAAG,eAAe,CAAC,CAAC,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;gBAClF,MAAM,WAAW,GAAG,UAAU,KAAK,SAAS,CAAC;gBAE7C,+DAA+D;gBAC/D,IAAI,mBAAmB,GAAuB,UAAU,CAAC;gBACzD,IAAI,cAAkC,CAAC;gBACvC,IAAI,mBAAmB,GAAG,KAAK,CAAC;gBAEhC,0DAA0D;gBAC1D,IAAI,YAAY,GAAY,UAAU,CAAC;gBACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,IAAI,YAAY,EAAE,CAAC,EAAE,EAAE,CAAC;oBAC3C,IACE,YAAY;wBACZ,OAAO,YAAY,KAAK,QAAQ;wBAChC,cAAc,IAAI,YAAY;wBAC9B,YAAY,CAAC,YAAY,EACzB,CAAC;wBACD,MAAM,UAAU,GAAG,YAA0C,CAAC;wBAC9D,IAAI,UAAU,CAAC,QAAQ,EAAE,CAAC;4BACxB,0CAA0C;4BAC1C,mBAAmB,GAAG,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC;4BACjD,cAAc,GAAG,UAAU,CAAC,QAAQ,CAAC,UAAU,CAAC;4BAChD,MAAM;wBACR,CAAC;wBACD,sDAAsD;wBACtD,IAAI,UAAU,CAAC,OAAO,IAAI,CAAC,UAAU,CAAC,QAAQ,EAAE,CAAC;4BAC/C,kCAAkC;4BAClC,mBAAmB,GAAG,IAAI,CAAC;4BAC3B,MAAM;wBACR,CAAC;oBACH,CAAC;oBACD,kDAAkD;oBAClD,IAAI,YAAY,IAAI,OAAO,YAAY,KAAK,QAAQ,IAAI,OAAO,IAAI,YAAY,EAAE,CAAC;wBAChF,YAAY,GAAI,YAAoC,CAAC,KAAK,CAAC;oBAC7D,CAAC;yBAAM,CAAC;wBACN,MAAM;oBACR,CAAC;gBACH,CAAC;gBAED,iEAAiE;gBACjE,MAAM,eAAe,GAAG,mBAAmB,IAAI,UAAU,CAAC;gBAE1D,mEAAmE;gBACnE,IAAI,WAAW,IAAI,eAAe,EAAE,CAAC;oBACnC,qDAAqD;oBACrD,IAAI,eAAe,KAAK,GAAG,EAAE,CAAC;wBAC5B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;4BACnB,KAAK,EAAE,cAAc;4BACrB,OAAO,EAAE,sFAAsF;yBAChG,CAAC,CAAC;wBACH,OAAO;oBACT,CAAC;oBACD,IAAI,eAAe,KAAK,GAAG,EAAE,CAAC;wBAC5B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;4BACnB,KAAK,EAAE,WAAW;4BAClB,OAAO,EAAE,gDAAgD;yBAC1D,CAAC,CAAC;wBACH,OAAO;oBACT,CAAC;oBACD,oBAAoB;oBACpB,GAAG,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC;wBAC/B,KAAK,EAAE,cAAc,IAAI,OAAO;wBAChC,OAAO,EAAE,YAAY;qBACtB,CAAC,CAAC;oBACH,OAAO;gBACT,CAAC;gBAED,yDAAyD;gBACzD,iGAAiG;gBACjG,MAAM,cAAc,GAClB,mBAAmB;oBACnB,YAAY,CAAC,QAAQ,CAAC,cAAc,CAAC;oBACrC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;oBAClC,YAAY,CAAC,QAAQ,CAAC,WAAW,CAAC;oBAClC,YAAY,CAAC,QAAQ,CAAC,SAAS,CAAC;oBAChC,YAAY,CAAC,QAAQ,CAAC,eAAe,CAAC;oBACtC,YAAY,CAAC,QAAQ,CAAC,eAAe,CAAC;oBACtC,YAAY,CAAC,QAAQ,CAAC,uBAAuB,CAAC;oBAC9C,YAAY,CAAC,QAAQ,CAAC,uBAAuB,CAAC,CAAC;gBAEjD,oEAAoE;gBACpE,MAAM,cAAc,GAAG,qBAAqB;oBAC1C,YAAY,CAAC,QAAQ,CAAC,SAAS,CAAC;oBAChC,YAAY,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;gBAEnC,IAAI,cAAc,IAAI,cAAc,EAAE,CAAC;oBACrC,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,CAAC;oBACtC,4FAA4F;oBAC5F,IAAI,aAAqB,CAAC;oBAC1B,IAAI,CAAC;wBACH,aAAa,GAAG,IAAA,8CAAoB,EAAC,MAAM,CAAC,CAAC;oBAC/C,CAAC;oBAAC,MAAM,CAAC;wBACP,aAAa,GAAG,MAAM,CAAC,oBAAoB,IAAI,MAAM,CAAC,aAAa,IAAI,gBAAgB,CAAC;oBAC1F,CAAC;oBACD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;wBACnB,KAAK,EAAE,iBAAiB;wBACxB,OAAO,EAAE,cAAc;4BACrB,CAAC,CAAC,4DAA4D;4BAC9D,CAAC,CAAC,+DAA+D;wBACnE,OAAO,EAAE;4BACP,aAAa,EAAE,aAAa,IAAI,gBAAgB;4BAChD,OAAO,EAAE,WAAW;4BACpB,UAAU,EAAE,aAAa,IAAI,aAAa,KAAK,gBAAgB;gCAC7D,CAAC,CAAC,iBAAiB,aAAa,+EAA+E;gCAC/G,CAAC,CAAC,wFAAwF;yBAC7F;qBACF,CAAC,CAAC;oBACH,OAAO;gBACT,CAAC;gBAED,qBAAqB;gBACrB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACnB,KAAK,EAAE,uBAAuB;oBAC9B,OAAO,EAAE,YAAY;iBACtB,CAAC,CAAC;gBACH,OAAO;YACT,CAAC;YAED,iBAAiB;YACjB,MAAM,QAAQ,GAAwB;gBACpC,KAAK;gBACL,SAAS,EAAE,IAAI,CAAC,SAAS;aAC1B,CAAC;YAEF,8BAA8B;YAC9B,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;gBACvB,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,CAAC;gBAEtC,8BAA8B;gBAC9B,MAAM,OAAO,GAAG,GAAG,GAAG,CAAC,QAAQ,MAAM,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;gBAEtE,yFAAyF;gBACzF,MAAM,aAAa,GAAG,MAAM,CAAC,mBAAmB,IAAI,MAAM,CAAC,aAAa,CAAC;gBAEzE,IAAI,CAAC,aAAa,EAAE,CAAC;oBACnB,IAAI,CAAC,cAAc,EAAE,EAAE,CAAC;wBACtB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;4BACnB,KAAK,EAAE,uBAAuB;4BAC9B,OAAO,EAAE,+BAA+B;yBACzC,CAAC,CAAC;oBACL,CAAC;oBACD,OAAO;gBACT,CAAC;gBAED,QAAQ,CAAC,MAAM,GAAG;oBAChB,OAAO;oBACP,aAAa;oBACb,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;oBAC/C,QAAQ,EAAE,MAAM,CAAC,QAAQ;oBACzB,cAAc,EAAE,IAAI,CAAC,cAAc;iBACpC,CAAC;YACJ,CAAC;YAED,oCAAoC;YACpC,IAAI,CAAC,cAAc,EAAE,EAAE,CAAC;gBACtB,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACrB,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,gCAAgC;YAChC,IAAI,cAAc,EAAE,EAAE,CAAC;gBACrB,OAAO;YACT,CAAC;YAED,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAE9E,iDAAiD;YACjD,IAAI,YAAY,CAAC,QAAQ,CAAC,0BAA0B,CAAC,EAAE,CAAC;gBACtD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACnB,KAAK,EAAE,WAAW;oBAClB,OAAO,EAAE,YAAY;iBACtB,CAAC,CAAC;gBACH,OAAO;YACT,CAAC;YAED,gCAAgC;YAChC,IAAI,YAAY,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,YAAY,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;gBACzE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBACnB,KAAK,EAAE,iBAAiB;oBACxB,OAAO,EAAE,oDAAoD;iBAC9D,CAAC,CAAC;gBACH,OAAO;YACT,CAAC;YAED,qBAAqB;YACrB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE,uBAAuB;gBAC9B,OAAO,EAAE,YAAY;aACtB,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CAAC;AACJ,CAAC"}
+{"version":3,"file":"client-token-endpoint.js","sourceRoot":"","sources":["../../src/express/client-token-endpoint.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AAgEH,8BAEC;AA4ED,8DA6CC;AAvLD,kEAAiE;AACjE,8EAAwE;AACxE,qDAA0E;AAoD1E;;;;;GAKG;AACH,SAAgB,SAAS,CAAC,QAA6B;IACrD,OAAO,QAAQ,CAAC,MAAM,KAAK,SAAS,CAAC;AACvC,CAAC;AAED,kEAAkE;AAClE,SAAS,iBAAiB,CAAC,UAAmB;IAC5C,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;IACxF,MAAM,eAAe,GAAG,YAAY,CAAC,KAAK,CAAC,kBAAkB,CAAC,IAAI,YAAY,CAAC,KAAK,CAAC,sBAAsB,CAAC,IAAI,YAAY,CAAC,KAAK,CAAC,iBAAiB,CAAC,CAAC;IACtJ,IAAI,MAAM,GAAG,eAAe,CAAC,CAAC,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC5E,IAAI,cAAc,GAAG,KAAK,CAAC;IAE3B,qCAAqC;IACrC,IAAI,YAAY,GAAY,UAAU,CAAC;IACvC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,IAAI,YAAY,EAAE,CAAC,EAAE,EAAE,CAAC;QAC3C,IAAI,YAAY,IAAI,OAAO,YAAY,KAAK,QAAQ,IAAI,cAAc,IAAI,YAAY,IAAI,YAAY,CAAC,YAAY,EAAE,CAAC;YACpH,MAAM,UAAU,GAAG,YAA0C,CAAC;YAC9D,IAAI,UAAU,CAAC,QAAQ,EAAE,CAAC;gBAAC,MAAM,GAAG,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC;gBAAC,MAAM;YAAC,CAAC;YACxE,IAAI,UAAU,CAAC,OAAO,IAAI,CAAC,UAAU,CAAC,QAAQ,EAAE,CAAC;gBAAC,cAAc,GAAG,IAAI,CAAC;gBAAC,MAAM;YAAC,CAAC;QACnF,CAAC;QACD,IAAI,YAAY,IAAI,OAAO,YAAY,KAAK,QAAQ,IAAI,OAAO,IAAI,YAAY,EAAE,CAAC;YAChF,YAAY,GAAI,YAAoC,CAAC,KAAK,CAAC;QAC7D,CAAC;;YAAM,MAAM;IACf,CAAC;IACD,OAAO,EAAE,MAAM,EAAE,cAAc,EAAE,CAAC;AACpC,CAAC;AAED,6DAA6D;AAC7D,SAAS,uBAAuB,CAAC,YAAoB,EAAE,mBAA4B;IACjF,MAAM,SAAS,GAAG,mBAAmB,IAAI,mFAAmF,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAChJ,MAAM,SAAS,GAAG,YAAY,CAAC,QAAQ,CAAC,kDAAkD,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAC7H,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC;AAClC,CAAC;AAED,6DAA6D;AAC7D,SAAS,gBAAgB,CAAC,UAAmB,EAAE,GAAY,EAAE,GAAa,EAAE,UAAsB;IAChG,MAAM,YAAY,GAAG,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;IAExF,IAAI,YAAY,CAAC,QAAQ,CAAC,0BAA0B,CAAC,EAAE,CAAC;QACtD,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,YAAY,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;QAAC,OAAO;IAC9E,CAAC;IAED,MAAM,EAAE,MAAM,EAAE,cAAc,EAAE,GAAG,iBAAiB,CAAC,UAAU,CAAC,CAAC;IACjE,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,GAAG,GAAG,MAAM,KAAK,GAAG,CAAC,CAAC,CAAC,sFAAsF;YACjH,CAAC,CAAC,MAAM,KAAK,GAAG,CAAC,CAAC,CAAC,gDAAgD,CAAC,CAAC,CAAC,YAAY,CAAC;QACrF,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,GAAG,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;QAAC,OAAO;IACxE,CAAC;IAED,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,GAAG,uBAAuB,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;IACvF,IAAI,SAAS,IAAI,SAAS,EAAE,CAAC;QAC3B,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,CAAC;QACtC,IAAI,aAAqB,CAAC;QAC1B,IAAI,CAAC;YAAC,aAAa,GAAG,IAAA,8CAAoB,EAAC,MAAM,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC;YAAC,aAAa,GAAG,MAAM,CAAC,oBAAoB,IAAI,MAAM,CAAC,aAAa,IAAI,gBAAgB,CAAC;QAAC,CAAC;QACxJ,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC,mCAAmC,aAAa,GAAG,CAAC,CAAC,CAAC,sCAAsC,aAAa,GAAG,CAAC;QACxI,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,oCAAoC,MAAM,EAAE,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;QAAC,OAAO;IAC9G,CAAC;IAED,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,YAAY,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;AACtE,CAAC;AAED,uCAAuC;AACvC,SAAS,mBAAmB,CAAC,GAAY,EAAE,UAAsB,EAAE,cAAsB;IACvF,MAAM,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,CAAC;IACtC,MAAM,aAAa,GAAG,MAAM,CAAC,mBAAmB,IAAI,MAAM,CAAC,aAAa,CAAC;IACzE,IAAI,CAAC,aAAa;QAAE,OAAO,IAAI,CAAC;IAChC,OAAO;QACL,OAAO,EAAE,GAAG,GAAG,CAAC,QAAQ,MAAM,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,WAAW,EAAE;QAC9D,aAAa,EAAE,mBAAmB,EAAE,MAAM,CAAC,mBAAmB;QAC9D,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,cAAc;KAC1C,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,SAAgB,yBAAyB,CACvC,UAAsB,EACtB,OAAoC;IAEpC,MAAM,IAAI,GAAG,EAAE,cAAc,EAAE,2BAA2B,EAAE,SAAS,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,GAAG,OAAO,EAAE,CAAC;IAE/G,OAAO,KAAK,EAAE,GAAY,EAAE,GAAa,EAAiB,EAAE;QAC1D,MAAM,cAAc,GAAG,GAAG,EAAE,CAAC,GAAG,CAAC,WAAW,IAAI,GAAG,CAAC,aAAa,CAAC;QAElE,IAAI,CAAC;YACH,IAAI,CAAC,UAAU,CAAC,aAAa,EAAE,EAAE,CAAC;gBAChC,IAAI,CAAC,cAAc,EAAE;oBAAE,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,+BAA+B,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;gBAC9G,OAAO;YACT,CAAC;YAED,2BAA2B;YAC3B,MAAM,cAAc,GAAG,IAAI,OAAO,CAAQ,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,mEAAmE,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC;YACzK,IAAI,KAAa,CAAC;YAClB,IAAI,CAAC;gBACH,KAAK,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,IAAA,uCAAmB,EAAC,UAAU,EAAE,GAAG,CAAC,EAAE,cAAc,CAAC,CAAC,CAAC;YACrF,CAAC;YAAC,OAAO,UAAU,EAAE,CAAC;gBACpB,IAAI,CAAC,cAAc,EAAE;oBAAE,gBAAgB,CAAC,UAAU,EAAE,GAAG,EAAE,GAAG,EAAE,UAAU,CAAC,CAAC;gBAC1E,OAAO;YACT,CAAC;YAED,iBAAiB;YACjB,MAAM,QAAQ,GAAwB,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,CAAC,SAAS,EAAE,CAAC;YAC3E,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;gBACvB,MAAM,cAAc,GAAG,mBAAmB,CAAC,GAAG,EAAE,UAAU,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;gBACjF,IAAI,CAAC,cAAc,EAAE,CAAC;oBACpB,IAAI,CAAC,cAAc,EAAE;wBAAE,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,+BAA+B,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;oBAC9G,OAAO;gBACT,CAAC;gBACD,QAAQ,CAAC,MAAM,GAAG,cAAc,CAAC;YACnC,CAAC;YAED,IAAI,CAAC,cAAc,EAAE;gBAAE,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC5C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,cAAc,EAAE;gBAAE,OAAO;YAC7B,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC9E,IAAI,YAAY,CAAC,QAAQ,CAAC,0BAA0B,CAAC,EAAE,CAAC;gBAAC,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,YAAY,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YACvI,IAAI,UAAU,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;gBAAC,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,oDAAoD,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YAC3J,IAAA,kCAAiB,EAAC,GAAG,EAAE,IAAA,oCAAmB,EAAC,YAAY,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;QACtE,CAAC;IACH,CAAC,CAAC;AACJ,CAAC"}

package/dist/express/error-handler.d.ts

@@ -15,9 +15,6 @@ export interface ErrorLogger {
  * @param logger - Custom logger implementing ErrorLogger interface, or null to use stderr
  */
 export declare function setErrorLogger(logger: ErrorLogger | null): void;
-/**
- * Generic route error handler
- * Logs error and sends RFC 7807 compliant error response
- */
+/** Generic route error handler - logs error and sends RFC 7807 compliant response */
 export declare function handleRouteError(error: unknown, req: Request, res: Response, operation?: string): Promise<void>;
 //# sourceMappingURL=error-handler.d.ts.map

package/dist/express/error-handler.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"error-handler.d.ts","sourceRoot":"","sources":["../../src/express/error-handler.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAW5C;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CACnE;AAKD;;;GAGG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,WAAW,GAAG,IAAI,GAAG,IAAI,CAE/D;AA+GD;;;GAGG;AACH,wBAAsB,gBAAgB,CACpC,KAAK,EAAE,OAAO,EACd,GAAG,EAAE,OAAO,EACZ,GAAG,EAAE,QAAQ,EACb,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC,IAAI,CAAC,CAsEf"}
+{"version":3,"file":"error-handler.d.ts","sourceRoot":"","sources":["../../src/express/error-handler.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAW5C;;;GAGG;AACH,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CACnE;AAKD;;;GAGG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,WAAW,GAAG,IAAI,GAAG,IAAI,CAE/D;AAqGD,qFAAqF;AACrF,wBAAsB,gBAAgB,CAAC,KAAK,EAAE,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,SAAS,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAarH"}