@bernierllc/email-mitm-masking 1.0.0

package/dist/database.js

@@ -0,0 +1,69 @@
+"use strict";
+/*
+Copyright (c) 2025 Bernier LLC
+
+This file is licensed to the client under a limited-use license.
+The client may use and modify this code *only within the scope of the project it was delivered for*.
+Redistribution or use in other products or commercial offerings is not permitted without written consent from Bernier LLC.
+*/
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.initializeDatabase = initializeDatabase;
+/**
+ * Initialize database schema for email masking
+ */
+async function initializeDatabase(pool) {
+    await pool.query(`
+    CREATE TABLE IF NOT EXISTS proxy_addresses (
+      id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+      proxy_email TEXT UNIQUE NOT NULL,
+      real_email TEXT NOT NULL,
+      user_id TEXT NOT NULL,
+      external_email TEXT,
+      conversation_id TEXT,
+      status TEXT NOT NULL DEFAULT 'active',
+      created_at TIMESTAMP NOT NULL DEFAULT NOW(),
+      activated_at TIMESTAMP,
+      expires_at TIMESTAMP,
+      last_used_at TIMESTAMP,
+      routing_count INTEGER NOT NULL DEFAULT 0,
+      metadata JSONB
+    );
+
+    CREATE INDEX IF NOT EXISTS idx_proxy_email ON proxy_addresses(proxy_email);
+    CREATE INDEX IF NOT EXISTS idx_user_id ON proxy_addresses(user_id);
+    CREATE INDEX IF NOT EXISTS idx_real_email ON proxy_addresses(real_email);
+    CREATE INDEX IF NOT EXISTS idx_status ON proxy_addresses(status);
+    CREATE INDEX IF NOT EXISTS idx_expires_at ON proxy_addresses(expires_at) WHERE status = 'active';
+
+    CREATE TABLE IF NOT EXISTS routing_audit (
+      id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+      proxy_id UUID NOT NULL,
+      direction TEXT NOT NULL,
+      from_address TEXT NOT NULL,
+      to_address TEXT NOT NULL,
+      routed_at TIMESTAMP NOT NULL DEFAULT NOW(),
+      success BOOLEAN NOT NULL,
+      error TEXT,
+      metadata JSONB
+    );
+
+    CREATE INDEX IF NOT EXISTS idx_audit_proxy_id ON routing_audit(proxy_id);
+    CREATE INDEX IF NOT EXISTS idx_routed_at ON routing_audit(routed_at);
+    CREATE INDEX IF NOT EXISTS idx_direction ON routing_audit(direction);
+
+    CREATE TABLE IF NOT EXISTS masking_rules (
+      id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+      user_id TEXT NOT NULL,
+      type TEXT NOT NULL,
+      criteria TEXT NOT NULL,
+      action TEXT NOT NULL,
+      priority INTEGER NOT NULL DEFAULT 0,
+      enabled BOOLEAN NOT NULL DEFAULT true,
+      created_at TIMESTAMP NOT NULL DEFAULT NOW()
+    );
+
+    CREATE INDEX IF NOT EXISTS idx_rules_user_id ON masking_rules(user_id);
+    CREATE INDEX IF NOT EXISTS idx_priority ON masking_rules(priority);
+    CREATE INDEX IF NOT EXISTS idx_enabled ON masking_rules(enabled);
+  `);
+}

package/dist/index.d.ts

@@ -0,0 +1,2 @@
+export { EmailMaskingService } from './EmailMaskingService.js';
+export type { EmailMaskingConfig, DatabaseConfig, ProxyAddress, MaskingRule, RoutingResult, RoutingAudit, MaskingResult, CreateProxyOptions, EmailContent } from './types.js';

package/dist/index.js

@@ -0,0 +1,12 @@
+"use strict";
+/*
+Copyright (c) 2025 Bernier LLC
+
+This file is licensed to the client under a limited-use license.
+The client may use and modify this code *only within the scope of the project it was delivered for*.
+Redistribution or use in other products or commercial offerings is not permitted without written consent from Bernier LLC.
+*/
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EmailMaskingService = void 0;
+var EmailMaskingService_js_1 = require("./EmailMaskingService.js");
+Object.defineProperty(exports, "EmailMaskingService", { enumerable: true, get: function () { return EmailMaskingService_js_1.EmailMaskingService; } });

package/dist/types.d.ts

@@ -0,0 +1,159 @@
+/**
+ * Configuration for email masking service
+ */
+export interface EmailMaskingConfig {
+    /** Proxy domain for masked addresses (e.g., proxy.example.com) */
+    proxyDomain: string;
+    /** Database connection for proxy storage */
+    database: DatabaseConfig;
+    /** Default TTL for proxy addresses (in days, 0 = unlimited) */
+    defaultTTL?: number;
+    /** Maximum proxies per user (0 = unlimited) */
+    maxProxiesPerUser?: number;
+    /** Enable audit logging */
+    auditEnabled?: boolean;
+    /** Masking strategy */
+    strategy?: 'per-user' | 'per-contact' | 'per-conversation';
+}
+/**
+ * Database configuration
+ */
+export interface DatabaseConfig {
+    host: string;
+    port: number;
+    database: string;
+    user: string;
+    password: string;
+}
+/**
+ * Proxy email address record
+ */
+export interface ProxyAddress {
+    /** Unique proxy identifier */
+    id: string;
+    /** Proxy email address (e.g., user-abc123@proxy.domain.com) */
+    proxyEmail: string;
+    /** Real user email address */
+    realEmail: string;
+    /** User identifier */
+    userId: string;
+    /** Optional external contact email (for per-contact masking) */
+    externalEmail?: string;
+    /** Optional conversation identifier (for per-conversation masking) */
+    conversationId?: string;
+    /** Proxy status */
+    status: 'active' | 'inactive' | 'expired' | 'revoked';
+    /** Creation timestamp */
+    createdAt: Date;
+    /** Activation timestamp */
+    activatedAt?: Date;
+    /** Expiration timestamp (null = no expiration) */
+    expiresAt?: Date;
+    /** Last used timestamp */
+    lastUsedAt?: Date;
+    /** Routing count */
+    routingCount: number;
+    /** Metadata */
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Masking rule configuration
+ */
+export interface MaskingRule {
+    /** Rule identifier */
+    id: string;
+    /** User identifier */
+    userId: string;
+    /** Rule type */
+    type: 'domain' | 'address' | 'pattern';
+    /** Match criteria */
+    criteria: string;
+    /** Action (mask or allow) */
+    action: 'mask' | 'allow';
+    /** Priority (higher = evaluated first) */
+    priority: number;
+    /** Enabled flag */
+    enabled: boolean;
+}
+/**
+ * Routing result
+ */
+export interface RoutingResult {
+    success: boolean;
+    routedTo?: string;
+    proxyUsed?: string;
+    direction: 'inbound' | 'outbound';
+    error?: string;
+    auditId?: string;
+}
+/**
+ * Audit entry
+ */
+export interface RoutingAudit {
+    id: string;
+    proxyId: string;
+    direction: 'inbound' | 'outbound';
+    fromAddress: string;
+    toAddress: string;
+    routedAt: Date;
+    success: boolean;
+    error?: string;
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Result wrapper for masking operations
+ */
+export interface MaskingResult<T = unknown> {
+    success: boolean;
+    data?: T;
+    error?: string;
+}
+/**
+ * Options for creating a proxy
+ */
+export interface CreateProxyOptions {
+    externalEmail?: string;
+    conversationId?: string;
+    ttlDays?: number;
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Email content for outbound routing
+ */
+export interface EmailContent {
+    subject: string;
+    text?: string;
+    html?: string;
+}
+/**
+ * Database row type for proxy addresses
+ */
+export interface ProxyAddressRow {
+    id: string;
+    proxy_email: string;
+    real_email: string;
+    user_id: string;
+    external_email: string | null;
+    conversation_id: string | null;
+    status: string;
+    created_at: string;
+    activated_at: string | null;
+    expires_at: string | null;
+    last_used_at: string | null;
+    routing_count: string;
+    metadata: string | null;
+}
+/**
+ * Database row type for routing audit
+ */
+export interface RoutingAuditRow {
+    id: string;
+    proxy_id: string;
+    direction: string;
+    from_address: string;
+    to_address: string;
+    routed_at: string;
+    success: boolean;
+    error: string | null;
+    metadata: string | null;
+}

package/dist/types.js

@@ -0,0 +1,9 @@
+"use strict";
+/*
+Copyright (c) 2025 Bernier LLC
+
+This file is licensed to the client under a limited-use license.
+The client may use and modify this code *only within the scope of the project it was delivered for*.
+Redistribution or use in other products or commercial offerings is not permitted without written consent from Bernier LLC.
+*/
+Object.defineProperty(exports, "__esModule", { value: true });

package/jest.config.cjs

@@ -0,0 +1,28 @@
+module.exports = {
+  preset: 'ts-jest',
+  testEnvironment: 'node',
+  roots: ['<rootDir>/__tests__'],
+  testMatch: ['**/__tests__/**/*.test.ts'],
+  setupFilesAfterEnv: ['<rootDir>/__tests__/setup.ts'],
+  collectCoverageFrom: [
+    'src/**/*.{ts,tsx}',
+    '!src/**/*.d.ts',
+    '!src/index.ts'
+  ],
+  coverageThreshold: {
+    global: {
+      branches: 85,
+      functions: 85,
+      lines: 85,
+      statements: 85
+    }
+  },
+  coverageReporters: ['text', 'lcov', 'html'],
+  moduleFileExtensions: ['ts', 'tsx', 'js', 'jsx', 'json'],
+  moduleNameMapper: {
+    '^(\\.{1,2}/.*)\\.js$': '$1',
+    '^pg$': '<rootDir>/__tests__/__mocks__/database.ts',
+    '^../src/database\\.js$': '<rootDir>/__tests__/__mocks__/database.ts'
+  },
+  verbose: true
+};

package/package.json

@@ -0,0 +1,56 @@
+{
+  "name": "@bernierllc/email-mitm-masking",
+  "version": "1.0.0",
+  "description": "Email masking and man-in-the-middle routing service for privacy-focused email communication",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "scripts": {
+    "build": "tsc",
+    "test": "jest --watch",
+    "test:run": "jest",
+    "test:coverage": "jest --coverage",
+    "lint": "eslint src --ext .ts",
+    "clean": "rm -rf dist"
+  },
+  "keywords": [
+    "email",
+    "masking",
+    "privacy",
+    "proxy",
+    "routing",
+    "mitm",
+    "anonymization",
+    "email-privacy"
+  ],
+  "author": "Bernier LLC",
+  "license": "SEE LICENSE IN LICENSE",
+  "dependencies": {
+    "@bernierllc/email-parser": "^1.0.0",
+    "@bernierllc/email-sender": "^2.0.0",
+    "@bernierllc/crypto-utils": "^1.2.0",
+    "@bernierllc/logger": "^1.1.0",
+    "@bernierllc/neverhub-adapter": "^1.0.0",
+    "pg": "^8.11.0"
+  },
+  "devDependencies": {
+    "@types/jest": "^29.0.0",
+    "@types/node": "^20.0.0",
+    "@types/pg": "^8.10.0",
+    "@typescript-eslint/eslint-plugin": "^6.0.0",
+    "@typescript-eslint/parser": "^6.0.0",
+    "eslint": "^8.0.0",
+    "jest": "^29.0.0",
+    "ts-jest": "^29.0.0",
+    "typescript": "^5.0.0"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "bernierllc": {
+    "integration": {
+      "neverhub": "required",
+      "neveradmin": "not-applicable",
+      "logger": "integrated"
+    }
+  }
+}