@blazedpath/commons 0.2.1 → 0.3.1

package/dist/blz-rds-mysqlx/index.js

@@ -0,0 +1 @@
+const _=require("underscore"),{executeNonQuery:executeNonQuery}=require("./execute-non-query"),executeQuery=require("./execute-query"),executeProcedure=require("./stored-procedure"),executeBulkInsert=require("./execute-bulk-insert"),executeBulkMerge=require("./execute-bulk-merge"),{beginTransaction:beginTransaction,close:close,commitTransaction:commitTransaction,createConnection:createRdsConnection,rollbackTransaction:rollbackTransaction,terminate:terminate}=require("./connection-manager");process.on("exit",async function(){await terminate()}),module.exports={syntaxis:require("./syntaxis.json"),executeProcedure:executeProcedure,executeSql:async function(e,r,n,t={}){return-1!=r.indexOf("call")?await executeProcedure(e,r,n):_.has(t,"bulkInsert")?await executeBulkInsert(e,r,n,t):_.has(t,"bulkMerge")?await executeBulkMerge(e,r,n,t):_.has(t,"queryOne")||_.has(t,"query")?await executeQuery(e,r,n,t):await executeNonQuery(e,r,n,t)},beginTransaction:beginTransaction,close:close,createRdsConnection:createRdsConnection,commitTransaction:commitTransaction,rollbackTransaction:rollbackTransaction};

package/dist/blz-rds-mysqlx/stored-procedure.d.ts

@@ -0,0 +1,20 @@
+export = executeProcedure;
+/**
+ * @param {mysqlx.Session} session
+ * @param {string} procedure
+ * @param {[Parameter]} [parameters=[]]
+ */
+declare function executeProcedure(session: mysqlx.Session, procedure: string, parameters?: [Parameter]): Promise<{
+    outParameters: {};
+}>;
+declare namespace executeProcedure {
+    export { Parameter };
+}
+import mysqlx = require("@mysql/xdevapi");
+type Parameter = {
+    isResultSet: boolean;
+    name: string;
+    value: any;
+    direction: "in" | "out" | "in/out";
+    type: "string" | "integer" | "decimal" | "boolean" | "datetime" | "date" | "time" | "binary";
+};

package/dist/blz-rds-mysqlx/stored-procedure.js

@@ -0,0 +1 @@
+"use strict";const mysqlx=require("@mysql/xdevapi"),_=require("underscore"),BlzBase=require("./base"),toString=Object.prototype.toString;function tryDatetime(e){let t=toString.call(e);if("[object Date]"===t)return e;if("[object String]"===t){let t=/^(\d{4})-(\d{1,2})-(\d{1,2})[T,\s](\d{1,2})\:(\d{1,2})\:(\d{1,2})\.?(\d+)?Z?$/.exec(e);if(t)return new Date(Date.UTC(Number(t[1]),Number(t[2])-1,Number(t[3]),Number(t[4]),Number(t[5]),Number(t[6]||0),(r=t[7])?(r.length<3&&(r=r.padEnd(3,"0")),r.length>3&&(r=r.substr(0,3)),Number(r)):0))}var r;return null}function convertValueToDb(e){if(_.isUndefined(e))return null;if(_.isNull(e))return null;if(!0===e)return 1;if(!1===e)return 0;let t=tryDatetime(e);if(t){let e=t.toJSON();return 24===e.length&&(e=e.substring(0,19)),e}return e}async function parseOutputParameters(e,t,r,a){let n=null,s=null;try{n=await e.sql(`SELECT @${t.name}_${a};`).execute()}catch(e){throw BlzBase.error("RdsMysqlCannotConvertParameters",{parameter:t,result:r,time_stamp:a},e)}if([s]=n.fetchOne(),t.isResultSet)r[t.name]=JSON.parse(s);else switch(t.type){case"string":r[t.name]=BlzBase.convertToString(s);break;case"integer":r[t.name]=BlzBase.convertToInteger(s);break;case"decimal":r[t.name]=BlzBase.convertToDecimal(s);break;case"boolean":r[t.name]=BlzBase.convertToBoolean(s);break;case"datetime":r[t.name]=BlzBase.convertToDatetime(s);break;case"date":r[t.name]=BlzBase.convertToDate(s);break;case"time":r[t.name]=BlzBase.convertToTime(s);break;case"binary":r[t.name]=BlzBase.convertToBinary(s);break;default:throw BlzBase.error("RdsMySqlUnexpectedType",{parameter:t,result:r,value:s})}}async function parseInputParameters(e,t,r,a){for(const n of r)switch(n.direction){case"in":case"in/out":try{await e.sql(`SET @${n.name}_${a} = ?;`).bind(convertValueToDb(n.value)).execute()}catch(e){throw BlzBase.error("RdsMySqlInputParameterType",{parameters:r,time_stamp:a})}t=t.replace(`:${n.name}`,`@${n.name}_${a}`);break;case"out":try{await e.sql(`SET @${n.name}_${a} = NULL;`).execute()}catch(e){throw BlzBase.error("RdsMySqlInputParameterType",{parameters:r,time_stamp:a})}t=t.replace(`:${n.name}`,`@${n.name}_${a}`)}return t}async function executeProcedure(e,t,r){const a=Date.now();_.isArray(r)&&(t=await parseInputParameters(e,t,r,a));try{await e.sql(t).execute()}catch(a){throw BlzBase.error("RdsMysqlCannotExecuteProcedure",{session:e,procedure:t,parameters:r},a)}let n={};for(const t of r)"in"!=t.direction&&await parseOutputParameters(e,t,n,a);return{outParameters:n}}module.exports=executeProcedure;

package/dist/blz-rds-oracle/index.d.ts

@@ -0,0 +1,25 @@
+export let syntaxis: any;
+export function createRdsConnection(connection: any): Promise<any>;
+export function executeSql(connection: any, sql: any, parameters: any, options: any): Promise<{
+    rowsAffected: any;
+}>;
+export function _executeSql(connection: any, sql: any, parameters: any, options: any): Promise<{
+    rowsAffected: any;
+    outParameters: {};
+    id: any;
+    resultSet: any;
+}>;
+export function _executeBulkInsert(connection: any, sql: any, rows: any, options: any): Promise<{
+    rowsAffected: any;
+    ids: any[];
+} | {
+    rowsAffected: any;
+    ids?: undefined;
+}>;
+export function _executeBulkMerge(connection: any, sql: any, rows: any, options: any): Promise<{
+    rowsAffected: any;
+}>;
+export function close(nativeConnection: any): any;
+export function beginTransaction(nativeConnection: any): void;
+export function commitTransaction(nativeConnection: any): any;
+export function rollbackTransaction(nativeConnection: any): any;

package/dist/blz-rds-oracle/index.js

@@ -0,0 +1 @@
+const oracledb=require("oracledb"),_=require("underscore"),{h3lp:h3lp}=require("h3lp"),Path=require("path"),Fs=require("fs-extra"),blzBaseSuite=Path.resolve(__dirname,"../blz-core/sources-dual/index.js");let BlzBase=null;BlzBase=Fs.existsSync(blzBaseSuite)?require("../../blz-core/sources-dual/index.js"):require("../blz-core/index.js"),oracledb.fetchAsBuffer=[oracledb.BLOB],oracledb.fetchAsString=[oracledb.CLOB,oracledb.DATE,oracledb.NUMBER];let poolsByName=Object.create(null);const getPool=async function(e){try{if(!e.name)throw new Error("You must provide a connnection name");let t=e.name,a=poolsByName[t];return a||(e.connectString=e.dataSource,(e=_.omit(e,"dataSource","providerName")).sessionCallback=makeInitSessionCallback({schema:e.schema}),process.env.LD_LIBRARY_PATH&&oracledb.initOracleClient({libDir:process.env.LD_LIBRARY_PATH,configDir:"",thin:!1}),a=await oracledb.createPool(e),a.connectionName=e.name,poolsByName[t]=a,a)}catch(t){throw new Error("Oracle cannot create pool for "+e.name+": "+t.message)}},makeInitSessionCallback=({schema:e}={})=>(t,a,n)=>{const r=[["NLS_DATE_FORMAT","'YYYY-MM-DD\"T\"hh24:mi:ss'"],e?["CURRENT_SCHEMA",`${e}`]:void 0].filter(Boolean).map(([e,t])=>`${e}=${t}`).join(" ");t.execute(`ALTER SESSION SET ${r}`,n)},tryDatetime=function(e){let t=toString.call(e);if("[object Date]"===t)return e;if("[object String]"===t){if(/^(\d{4})-(\d{1,2})-(\d{1,2})[T,\s](\d{1,2})\:(\d{1,2})\:(\d{1,2})\.?(\d+)?Z?$/.exec(e)){const t=new Date(e);if("Invalid Date"!==t.toString())return t}}return null},convertMilliseconds=function(e){return e?(e.length<3&&(e=e.padEnd(3,"0")),e.length>3&&(e=e.substr(0,3)),Number(e)):0},convertResultSetToArray=function(e,t){return e.getRow().then(a=>a?(t.push(a),convertResultSetToArray(e,t)):e.close().then(()=>t)).catch(t=>{throw e.close(),BlzBase.error("ErrorFetchingRowsForConnection",{},t)})},getParameterType=function(e){switch(e){case"string":case"VARCHAR":case"VARCHAR2":default:return oracledb.STRING;case"integer":case"decimal":case"boolean":return oracledb.NUMBER;case"datetime":case"date":case"time":return oracledb.DATE;case"binary":return oracledb.BUFFER;case"CLOB":case"BLOB":return oracledb.CLOB}},getOraParameters=function(e,t){let a={};if(e)for(let t=0;t<e.length;t++){let n=e[t],r={};if("in"===n.direction||"in/out"===n.direction)if(void 0===n.value||null===n.value)r.val=null;else if(!0===n.value)r.val=1;else if(!1===n.value)r.val=0;else if(n.columnInfo&&"string"===n.columnInfo.type)r.val=n.value;else{let e=tryDatetime(n.value);r.val=e||n.value}if("in"===n.direction?r.dir=oracledb.BIND_IN:"in/out"===n.direction?r.dir=oracledb.BIND_INOUT:"out"===n.direction&&(r.dir=oracledb.BIND_OUT),n.isResultSet)r.type=oracledb.CURSOR;else{if(n.dbTypes){const e=n.dbTypes.find(e=>"Oracle"===e.providerName);n.dbType=getParameterType(e.dbType)}else n.type?n.dbType=getParameterType(n.type):n.dbType=inferDbTypeFromValue(n.value);r.type=n.dbType}a[n.name]=r}return t&&t.autoincrementalData&&(a.ScalarOutput={val:null,dir:oracledb.BIND_OUT,type:oracledb.NUMBER}),a},getOraOptions=function(e,t){let a={autoCommit:!e.isTransactionRequest};return e&&(e.query||e.queryOne)&&(a.resultSet=!0),t&&(a.bindDefs=t),a},convertValueFromType=async function(e,t){switch(t){case"string":return BlzBase.convertToString(e);case"integer":return BlzBase.convertToInteger(e);case"decimal":return BlzBase.convertToDecimal(e);case"boolean":return BlzBase.convertToBoolean(e);case"datetime":return BlzBase.convertToDatetime(e);case"date":return BlzBase.convertToDate(e);case"time":return BlzBase.convertToTime(e);case"binary":return BlzBase.convertToBinary(e);default:if("DB_TYPE_CLOB"===e._type.name)return await oraResult.outBinds[parameter.name].getData()}},getResult=async function(e,t,a){let n={};if(n.rowsAffected=t.rowsAffected,n.outParameters={},e)for(let a=0;a<e.length;a++){let r=e[a];if("out"===r.direction||"in/out"===r.direction){let e=t.outBinds[r.name];r.isResultSet?e=await convertResultSetToArray(e,[]):e&&"string"==typeof e.type?e=await convertValueFromType(e,e.type):e&&e._type&&"string"==typeof e._type.name&&"DB_TYPE_CLOB"===e._type.name?e=await t.outBinds[r.name].getData():r&&"string"==typeof r.type?e=await convertValueFromType(e,r.type):console.warn("Could not resolve out parameter type"),n.outParameters[r.name]=e}}return a&&a.autoincrementalData&&(n.id=null,t.outBinds&&t.outBinds.ScalarOutput&&(n.id=t.outBinds.ScalarOutput,Array.isArray(n.id)&&(n.id=n.id[0]))),a&&(a.query||a.queryOne)&&(n.resultSet=t.resultSet),n};process.on("exit",async function(){let e=[];for(let t in poolsByName){let a=poolsByName[t];e.push(a.close())}poolsByName=null,await Promise.all(e)});const getValue=function(e,t){switch((t?t.toLowerCase():typeof e).toLowerCase()){case"boolean":return e?1:0;case"string":return"string"==typeof e||null==e?e:e.toString();case"datetime":case"date":case"time":return e?new Date(e):null;default:return e}},inferDbTypeFromValue=function(e){if(null==e)return oracledb.STRING;if(Buffer.isBuffer(e))return getParameterType("binary");switch(typeof e){case"string":default:return getParameterType("string");case"number":return Number.isInteger(e)?getParameterType("integer"):getParameterType("decimal");case"boolean":return getParameterType("boolean");case"object":return e instanceof Date?getParameterType("datetime"):getParameterType("string")}},rowsToArray=function(e,t){const a=[],n=e.length;for(const r of t){const t={};for(let a=0;a<n;a++){const n=e[a],o=r[a];t[n.name]=getValue(o,n.type)}a.push(t)}return a};module.exports={syntaxis:require("./syntaxis.json"),createRdsConnection:async function(e){try{let t=await getPool(e);return await t.getConnection()}catch(e){throw e}},executeSql:async function(e,t,a,n){return _.has(n,"bulkInsert")?await this._executeBulkInsert(e,t,a,n):_.has(n,"bulkMerge")?await this._executeBulkMerge(e,t,a,n):await this._executeSql(e,t,a,n)},_executeSql:async function(e,t,a,n){try{let r=getOraParameters(a,n),o=getOraOptions(n),s=await e.execute(t,r,o);return await getResult(a,s,n)}catch(e){throw e}},_executeBulkInsert:async function(e,t,a,n){let r=null;n.autoincrementalData&&n.autoincrementalData.pkColumnName&&(r={name:n.autoincrementalData.pkColumnName,alias:n.autoincrementalData.pkColumnAlias,sequence:n.autoincrementalData.sequenceName,type:n.autoincrementalData.pkColumnType});const o=r?"INSERT INTO "+n.rdsTable.tableName+" ("+r.name+","+n.setsFields.join(", ")+") VALUES ( "+r.sequence+".NEXTVAL, "+n.setsFields.map(e=>":"+e).join(", ")+" )  RETURNING "+r.name+" INTO :"+r.name:t+"("+n.setsFields.map(e=>":"+e).join(", ")+" ) ",s=n.columns.length;for(let e=0;e<s;e++){const t=n.columns[e];"string"===t.type&&(t.size=a.reduce((t,a)=>a[e]?a[e].length>t?a[e].length:t:0,0))}const c={};for(const e of n.columns){const t={type:getDbType(e.type)};"string"===e.type&&(t.maxSize=e.size),c[e.name]=t}r&&(c[r.name]={type:getDbType(r.type),dir:oracledb.BIND_OUT});const l=getOraOptions(n,c),i=rowsToArray(n.columns,a);try{const t=await e.executeMany(o,i,l);if(r){const e=[];for(const a in t.outBinds)e.push(t.outBinds[a][r.name][0]);return{rowsAffected:t.rowsAffected,ids:e}}return{rowsAffected:t.rowsAffected}}catch(e){throw console.log(e),e}},_executeBulkMerge:async function(e,t,a,n){let r=null;n.autoincrementalData&&n.autoincrementalData.pkColumnName&&(r={name:n.autoincrementalData.pkColumnName,alias:n.autoincrementalData.pkColumnAlias,sequence:n.autoincrementalData.sequenceName,type:n.autoincrementalData.pkColumnType});const o=[];o.push("MERGE INTO "+n.rdsTable.tableName+" t USING ("),o.push("SELECT ");let s=!0;for(const e of n.columns)o.push((s?"":", ")+":"+e.name+" AS "+e.name),s=!1;o.push("FROM DUAL"),o.push(") s ON ("),s=!0;for(const e of n.mergeFields)o.push((s?"":" AND ")+"t."+e+" = s."+e),s=!1;o.push(")"),o.push("WHEN MATCHED THEN UPDATE SET "),s=!0;for(const e of n.columns)n.mergeFields.includes(e.name)||(o.push((s?"":",")+"t."+e.name+" = s."+e.name),s=!1);if(o.push("WHEN NOT MATCHED THEN INSERT ("),r){o.push(r.name);for(const e of n.columns)o.push(","+e.name);o.push(") VALUES ("),o.push(r.sequence+".NEXTVAL");for(const e of n.columns)o.push(",s."+e.name)}else{s=!0;for(const e of n.columns)o.push((s?"":",")+e.name),s=!1;o.push(") VALUES ("),s=!0;for(const e of n.columns)o.push((s?"":",")+"s."+e.name),s=!1}o.push(")");const c=o.join(" "),l=n.columns.length;for(let e=0;e<l;e++){const t=n.columns[e];"string"===t.type&&(t.size=a.reduce((t,a)=>a[e]?a[e].length>t?a[e].length:t:0,0))}const i={};for(const e of n.columns){const t={type:getDbType(e.type)};"string"===e.type&&(t.maxSize=e.size),i[e.name]=t}const u=getOraOptions(n,i),m=rowsToArray(n.columns,a);try{return{rowsAffected:(await e.executeMany(c,m,u)).rowsAffected}}catch(e){throw console.log(e),e}},close:e=>e.close(),beginTransaction(e){},commitTransaction:e=>e.commit(),rollbackTransaction:e=>e.rollback()};

package/dist/blz-rds-postgres/base.d.ts

@@ -0,0 +1,94 @@
+export function isArray(value: any): value is any[];
+export function first(array: any): any;
+export function isEmpty(value: any): boolean;
+export function scalarOutput(rs: any): any;
+export function convertValueToDb(value: any): any;
+export function replace(string: any, search: any, replace: any): any;
+export function error(code: any, data: any, innerError?: Error): Error;
+export function convertSqlAndParameters(sql: any, rdsParameters: any, options: any): {
+    query: any;
+    parameters: any[];
+};
+export function errorUndefinedArgument(argName: any): Error;
+export function tryString(value: any): any;
+export function tryInteger(value: any): any;
+export function tryDecimal(value: any): any;
+export function tryBoolean(value: any): any;
+export function tryDatetime(value: any): any;
+export function tryDate(value: any): any;
+export function tryTime(value: any): any;
+export function tryBinary(value: any): Buffer;
+export function tryObject(value: any): any;
+export function tryArray(value: any): any;
+export function ensureString(value: any): any;
+export function ensureInteger(value: any): any;
+export function ensureDecimal(value: any): any;
+export function ensureBoolean(value: any): any;
+export function ensureDatetime(value: any): any;
+export function ensureDate(value: any): any;
+export function ensureTime(value: any): any;
+export function ensureBinary(value: any): Buffer;
+export function ensureObject(value: any): any;
+export function ensureArray(value: any): any;
+export function convertToString(value: any): any;
+export function convertToInteger(value: any): any;
+export function convertToDecimal(value: any): any;
+export function convertToBoolean(value: any): any;
+export function convertToDatetime(value: any): any;
+export function convertToDate(value: any): any;
+export function convertToTime(value: any): any;
+export function convertToBinary(value: any): Buffer;
+export function convertToListOfStrings(value: any): any[];
+export function convertToListOfIntegers(value: any): any[];
+export function convertToListOfDecimals(value: any): any[];
+export function convertToListOfBooleans(value: any): any[];
+export function convertToListOfDatetimes(value: any): any[];
+export function convertToListOfDates(value: any): any[];
+export function convertToListOfTimes(value: any): any[];
+export function convertToListOfBinaries(value: any): Buffer[];
+export function httpCall(httpRequest: any): Promise<any>;
+export function isNotNull(value: any): boolean;
+export function isNull(value: any): boolean;
+export function isNullOrValue(value: any, valueToCompare: any): boolean;
+export function nvl(value: any, replacementValue: any): any;
+export function get(objOrTuple: any, codePathOrIndex: any): any;
+export function and(value1: any, value2: any): any;
+export function or(value1: any, value2: any): any;
+export function not(value: any): boolean;
+export function compare(value1: any, value2: any): any;
+export function equals(value1: any, value2: any): boolean;
+export function notEquals(value1: any, value2: any): boolean;
+export function greater(value1: any, value2: any): boolean;
+export function less(value1: any, value2: any): boolean;
+export function greaterOrEqual(value1: any, value2: any): boolean;
+export function lessOrEqual(value1: any, value2: any): boolean;
+export function concat(value1: any, value2: any): any;
+export function add(value1: any, value2: any): any;
+export function subtract(value1: any, value2: any): any;
+export function multiply(value1: any, value2: any): number;
+export function divide(value1: any, value2: any): number;
+export function remainder(value1: any, value2: any): number;
+export function lessUnary(value: any): number;
+export function datetimeAdd(value1: any, value2: any): any;
+export function datetimeDiff(value1: any, value2: any): any;
+export function dateAdd(value1: any, value2: any): any;
+export function dateDiff(value1: any, value2: any): any;
+export function timeAdd(value1: any, value2: any): any;
+export function timeDiff(value1: any, value2: any): any;
+export function jsonParse(value: any): any;
+export function jsonStringify(value: any, spaces: any): string;
+export function base64Decode(value: any): Buffer;
+export function base64Encode(value: any): string;
+export function apply(obj1: any, obj2: any): {};
+export function stringFormat(...args: any[]): any;
+export function loadResource(name: any): Promise<any>;
+export function existsPath(sourcePath: any): Promise<any>;
+export function resolvePath(source: any): any;
+export function readFile(filePath: any): Promise<any>;
+export function checkPostgresSQL(sql: any): {
+    safe: boolean;
+    reason?: undefined;
+} | {
+    safe: boolean;
+    reason: string;
+};

package/dist/blz-rds-postgres/base.js

@@ -0,0 +1 @@
+const toString=Object.prototype.toString,dayjs=require("dayjs"),utc=require("dayjs/plugin/utc"),_=require("underscore"),scalarProperty=_.property(["scalaroutput"]),Fs=require("fs-extra"),pgsql_ast_parser=require("pgsql-ast-parser");dayjs.extend(utc),module.exports={isArray:function(t){return _.isArray(t)},first:function(t){return _.first(t)},isEmpty:function(t){return _.isEmpty(t)},scalarOutput:function(t){return scalarProperty(_.first(t.rows))},convertValueToDb:function(t){if(_.isUndefined(t))return null;if(_.isNull(t))return null;if(!0===t)return 1;if(!1===t)return 0;let e=this.tryDatetime(t);return e?"1970-01-01"===dayjs(e).utc().format("YYYY-MM-DD")?dayjs(e).utc().format("HH:mm:ss"):e:t},replace:function(t,e,r){return t.split(e).join(r)},error:function(t,e,r=new Error("UndefinedError")){let n=new Error(`${t} ${r.message}`);return n.code=t,n.data=e,n.innerError=r,n},convertSqlAndParameters:function(t,e,r){let n=t;for(let t=e.length;t>0;t--){let{name:r}=e[t-1];n=this.replace(n,`:${r}`,`$${t}`)}const i=[];for(let t=0,r=e.length;r>t;t++){let{name:r,value:n}=e[t];const l=this.convertValueToDb(n);i.push(l)}return{query:n,parameters:i}},errorUndefinedArgument:function(t){return this.error("UndefinedArgument",{argName:t})},tryString:function(t){return"[object String]"===toString.call(t)?t:null},tryInteger:function(t){return"[object Number]"===toString.call(t)&&t===parseInt(t)?t:null},tryDecimal:function(t){return"[object Number]"===toString.call(t)?t:null},tryBoolean:function(t){return"[object Boolean]"===toString.call(t)?t:null},tryDatetime:function(t){let e=toString.call(t);if("[object Date]"===e)return t;if("[object String]"===e){if(/^(\d{4})-(\d{1,2})-(\d{1,2})[T,\s](\d{1,2})\:(\d{1,2})\:(\d{1,2})\.?(\d+)?Z?$/.exec(t)){const e=new Date(t);if("Invalid Date"!==e.toString())return e}}return null},tryDate:function(t){let e=toString.call(t);if("[object Date]"===e)return new Date(Date.UTC(t.getUTCFullYear(),t.getUTCMonth(),t.getUTCDate(),0,0,0,0));if("[object String]"===e){let e=/^(\d{4})-(\d{1,2})-(\d{1,2})$/.exec(t);if(e&&void 0!==e[3])return new Date(Date.UTC(Number(e[1]),Number(e[2])-1,Number(e[3]),0,0,0,0));if("Invalid Date"!==new Date(t).toString())return datetime.toISOString().split("T")[0]}return null},tryTime:function(t){let e=toString.call(t);if("[object Date]"===e)return new Date(Date.UTC(1970,0,1,t.getUTCHours(),t.getUTCMinutes(),t.getUTCSeconds(),t.getUTCMilliseconds()));if("[object String]"===e){let e=/^(\d{1,2})\:(\d{1,2})\:(\d{1,2})\.?(\d+)?$/.exec(t);if(e&&void 0!==e[3])return new Date(Date.UTC(1970,0,1,Number(e[1]),Number(e[2]),Number(e[3]),(r=e[4])?(r.length<3&&(r=r.padEnd(3,"0")),r.length>3&&(r=r.substr(0,3)),Number(r)):0));if("Invalid Date"!==new Date(t).toString())return datetime.toISOString().split("T")[1]}var r;return null},tryBinary:function(t){return Buffer.isBuffer(t)?t:Array.isArray(t)?Buffer.from(t):null},tryObject:function(t){return"[object Object]"===toString.call(t)?t:null},tryArray:function(t){return"[object Array]"===toString.call(t)?t:null},ensureString:function(t){let e=this.tryString(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"string"})},ensureInteger:function(t){let e=this.tryInteger(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"integer"})},ensureDecimal:function(t){let e=this.tryDecimal(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"decimal"})},ensureBoolean:function(t){let e=this.tryBoolean(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"boolean"})},ensureDatetime:function(t){let e=this.tryDatetime(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"datetime"})},ensureDate:function(t){let e=this.tryDate(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"date"})},ensureTime:function(t){let e=this.tryTime(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"time"})},ensureBinary:function(t){let e=this.tryBinary(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"binary"})},ensureObject:function(t){let e=this.tryObject(t);if(null!==e)return array;throw this.error("UnexpectedType",{value:e,expectedType:"object"})},ensureArray:function(t){let e=this.tryArray(t);if(null!==e)return e;throw this.error("UnexpectedType",{value:t,expectedType:"array"})},convertToString:function(t){if(null===t)return null;let e=this.tryString(t);if(null!==e)return e;let r=this.tryInteger(t);if(null!==r)return r.toString();let n=this.tryDecimal(t);if(null!==n)return n.toString();let i=this.tryBoolean(t);if(null!==i)return i?"true":"false";let l=this.tryDatetime(t);if(null!==l)return l.toJSON();throw this.error("InvalidConversion",{value:t,targetType:"string"})},convertToInteger:function(t){if(null===t)return null;let e=this.tryInteger(t);if(null!==e)return e;let r=this.tryString(t);if(null!==r&&!isNaN(r))return Math.round(Number(r));let n=this.tryDecimal(t);if(null!==n)return Math.round(n);let i=this.tryBoolean(t);if(null!==i)return i?1:0;throw this.error("InvalidConversion",{value:t,targetType:"integer"})},convertToDecimal:function(t){if(null===t)return null;let e=this.tryDecimal(t);if(null!==e)return e;let r=this.tryString(t);if(null!==r&&!isNaN(r))return Number(r);let n=this.tryInteger(t);if(null!==n)return n;let i=this.tryBoolean(t);if(null!==i)return i?1:0;throw this.error("InvalidConversion",{value:t,targetType:"decimal"})},convertToBoolean:function(t){if(null===t)return null;let e=this.tryBoolean(t);if(null!==e)return e;let r=this.tryString(t);if(null!==r&&("1"===r||"T"===r.toUpperCase()||"TRUE"===r.toUpperCase()||"Y"===r.toUpperCase()||"YES"===r.toUpperCase()))return!0;if(null!==r&&("0"===r||"F"===r.toUpperCase()||"FALSE"===r.toUpperCase()||"N"===r.toUpperCase()||"NO"===r.toUpperCase()))return!1;let n=this.tryInteger(t);if(null!==n&&1===n)return!0;if(null!==n&&0===n)return!1;throw this.error("InvalidConversion",{value:t,targetType:"boolean"})},convertToDatetime:function(t){if(null===t)return null;let e=this.tryDatetime(t);if(null!==e)return e;throw this.error("InvalidConversion",{value:t,targetType:"datetime"})},convertToDate:function(t){if(null===t)return null;let e=this.tryDate(t);if(null!==e)return e;let r=this.tryDatetime(t);if(null!==r)return new Date(Date.UTC(r.getUTCFullYear(),r.getUTCMonth(),r.getUTCDate(),0,0,0,0));throw this.error("InvalidConversion",{value:t,targetType:"date"})},convertToTime:function(t){if(null===t)return null;let e=this.tryTime(t);if(null!==e)return e;let r=this.tryDatetime(t);if(null!==r)return new Date(Date.UTC(1970,0,1,r.getUTCHours(),r.getUTCMinutes(),r.getUTCSeconds(),r.getUTCMilliseconds()));throw this.error("InvalidConversion",{value:t,targetType:"time"})},convertToBinary:function(t){if(null==t)return null;let e=this.tryBinary(t);if(null!==e)return e;throw this.error("InvalidConversion",{value:t,targetType:"binary"})},convertToListOfStrings:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToString(t[r]));return e}return[this.convertToString(t)]},convertToListOfIntegers:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToInteger(t[r]));return e}return[this.convertToInteger(t)]},convertToListOfDecimals:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToDecimal(t[r]));return e}return[this.convertToDecimal(t)]},convertToListOfBooleans:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToBoolean(t[r]));return e}return[this.convertToBoolean(t)]},convertToListOfDatetimes:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToDatetime(t[r]));return e}return[this.convertToDatetime(t)]},convertToListOfDates:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToDate(t[r]));return e}return[this.convertToDate(t)]},convertToListOfTimes:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToTime(t[r]));return e}return[this.convertToTime(t)]},convertToListOfBinaries:function(t){if(Array.isArray(t)){let e=[];for(let r=0;r<t.length;r++)e.push(this.convertToBinary(t[r]));return e}return[this.convertToBinary(t)]},httpCall:function(t){return new Promise(function(e,r){let n={method:t.method?t.method.toLowerCase():"get",headers:{},body:t.body};if(t.headers)for(let e=0;e<t.headers.length;e++){let r=t.headers[e];n.headers[r.name]=r.value}})},isNotNull:function(t){return null!==t},isNull:function(t){return null===t},isNullOrValue:function(t,e){return null===t||0===this.compare(t,e)},nvl:function(t,e){return null!==t?t:e},get:function(t,e){if(null===t)return null;{let r=this.tryObject(t);if(r){let t=e.indexOf(".");return-1===t?void 0!==r[e]?r[e]:null:this.get(r[e.substring(0,t)],e.substring(t+1,e.length))}if("[object Error]"===toString.call(t)){let r=t,n=e.indexOf(".");return-1===n?void 0!==r[e]?r[e]:null:this.get(r[e.substring(0,n)],e.substring(n+1,e.length))}let n=this.tryArray(t);return n?n[e]:null}},and:function(t,e){return this.ensureBoolean(t)&&this.ensureBoolean(e)},or:function(t,e){return this.ensureBoolean(t)||this.ensureBoolean(e)},not:function(t){return!this.ensureBoolean(t)},compare:function(t,e){let r=function(t,e){return t===e?0:t<e?-1:t>e?1:null};if(null===t&&null===e)return 0;if(null===t&&null!==e)return-1;if(null!==t&&null===e)return 1;let n=this.tryString(t),i=this.tryString(e);if(null!==n&&null!==i)return r(n,i);let l=this.tryDecimal(t),u=this.tryDecimal(e);if(null!==l&&null!==u)return r(l,u);let o=this.tryBoolean(t),s=this.tryBoolean(e);if(null!==o&&null!==s)return r(o,s);let a=this.tryDatetime(t),f=this.tryDatetime(e);if(null!==a&&null!==f)return r(a.toJSON(),f.toJSON());let c=this.tryDate(t),h=this.tryDate(e);if(null!==c&&null!==h)return r(c.toJSON(),h.toJSON());let y=this.tryTime(t),g=this.tryTime(e);if(null!==y&&null!==g)return r(y.toJSON(),g.toJSON());let d=this.tryArray(t),m=this.tryArray(e);if(null!==d&&null!==m){let t;if(t=r(d.length,m.length),0!==t)return t;for(let e=0;e<d.length;e++)if(0===t){let r=d[e],n=m[e];t=this.compare(r,n)}return t}let p=this.tryBinary(t),T=this.tryBinary(e);if(null!==p&&null!==T)return Buffer.compare(p,T);let v=this.tryObject(t),D=this.tryObject(e);return null!==v&&null!==D?r(JSON.stringify(v),JSON.stringify(D)):null},equals:function(t,e){return 0===this.compare(t,e)},notEquals:function(t,e){return 0!==this.compare(t,e)},greater:function(t,e){return this.compare(t,e)>0},less:function(t,e){return this.compare(t,e)<0},greaterOrEqual:function(t,e){return this.compare(t,e)>=0},lessOrEqual:function(t,e){return this.compare(t,e)<=0},concat:function(t,e){if(null===t)return e;if(null===e)return t;return this.ensureString(t)+this.ensureString(e)},add:function(t,e){if(null===t)return e;if(null===e)return t;let r=this.tryInteger(t),n=this.tryInteger(e);return null!==r&&null!==n?r+n:this.ensureDecimal(t)+this.ensureDecimal(e)},subtract:function(t,e){if(null===t)return null;if(null===e)return t;let r=this.tryInteger(t),n=this.tryInteger(e);return null!==r&&null!==n?r-n:this.ensureDecimal(t)-this.ensureDecimal(e)},multiply:function(t,e){if(null===t)return null;if(null===e)return null;let r=this.tryInteger(t),n=this.tryInteger(e);return null!==r&&null!==n?r*n:this.ensureDecimal(t)*this.ensureDecimal(e)},divide:function(t,e){if(null===t)return null;let r=this.ensureDecimal(t),n=this.ensureDecimal(e);if(0===n)throw this.error("DivisionByZero");return r/n},remainder:function(t,e){if(null===t)return null;let r=this.ensureDecimal(t),n=this.ensureDecimal(e);if(0===n)throw this.error("DivisionByZero");return r%n},lessUnary:function(t){if(null===t)return null;let e=this.tryInteger(t);return null!==e?-e:-this.ensureDecimal(t)},datetimeAdd:function(t,e){if(null===t)return null;if(null===e)return t;let r=this.ensureDatetime(t),n=this.ensureInteger(e);return new Date(Date.UTC(r.getUTCFullYear(),r.getUTCMonth(),r.getUTCDate(),r.getUTCHours(),r.getUTCMinutes(),r.getUTCSeconds(),r.getUTCMilliseconds()+n))},datetimeDiff:function(t,e){if(null===t)return null;if(null===e)return t;return this.ensureDatetime(t)-this.ensureDatetime(e)},dateAdd:function(t,e){if(null===t)return null;if(null===e)return t;let r=this.ensureDate(t),n=this.ensureInteger(e);return new Date(Date.UTC(r.getUTCFullYear(),r.getUTCMonth(),r.getUTCDate()+n,0,0,0,0))},dateDiff:function(t,e){if(null===t)return null;if(null===e)return t;return(this.ensureDate(t)-this.ensureDate(e))/864e5},timeAdd:function(t,e){if(null===t)return null;if(null===e)return t;let r=this.ensureTime(t),n=this.ensureInteger(e);return new Date(Date.UTC(1970,0,1,r.getUTCHours(),r.getUTCMinutes(),r.getUTCSeconds(),r.getUTCMilliseconds()+n))},timeDiff:function(t,e){if(null===t)return null;if(null===e)return t;return this.ensureTime(t)-this.ensureTime(e)},jsonParse:function(t){if(void 0===t)throw this.errorUndefinedArgument("value");if(null===t)return null;return JSON.parse(this.ensureString(t))},jsonStringify:function(t,e){if(void 0===t)throw this.errorUndefinedArgument("value");if(null===t)return null;if(null==e){return JSON.stringify(t)}{let r=this.ensureInteger(e);return JSON.stringify(t,null,r)}},base64Decode:function(t){if(void 0===t)throw this.errorUndefinedArgument("value");if(null===t)return null;let e=this.ensureString(t);return Buffer.from(e,"base64")},base64Encode:function(t){if(void 0===t)throw this.errorUndefinedArgument("value");if(null===t)return null;let e=this.ensureBinary(t);return Buffer.from(e).toString("base64")},apply:function(t,e){let r={};if(null===t)return null;let n=this.tryObject(t);if(null===n)throw fnError("InvalidObject",{value:t});for(let t in n)r[t]=n[t];if(null!==e){let t=this.tryObject(e);if(null===t)throw fnError("InvalidObject",{value:e});for(let e in t)r[e]=t[e]}return r},stringFormat:function(){if(0===arguments.length)return null;if(1===arguments.length)return arguments[0];{let t=arguments[0];for(let e=1;e<arguments.length;e++)t=t.split("%"+e+"$s").join(arguments[e]);return t}},loadResource:function(t){return Promise.resolve().then(function(){if(-1===t.indexOf("."))return require("../resources/main/"+t+".json");{let e=t.split(".");return require("../resources/edges/"+e[0]+"/"+e[1]+".json")}})},existsPath:async function(t){const e=this.resolvePath(t);return new Promise(t=>{Fs.access(e,e=>{t(!e)})})},resolvePath:function(t){const e=t.trim();return e.startsWith(".")?Path.join(process.cwd(),t):e.startsWith("~")?e.replace("~",process.env.HOME):t},readFile:async function(t){const e=this.resolvePath(t);return await this.existsPath(e)?new Promise((t,r)=>{Fs.readFile(e,(e,n)=>e?r(e):t(n.toString("utf8")))}):null},checkPostgresSQL:function(t){try{pgsql_ast_parser.parse(t);return{safe:!0}}catch(t){return{safe:!1,reason:`PostgreSQL parser error: ${t.message}`}}}};

package/dist/blz-rds-postgres/connection-manager.d.ts

@@ -0,0 +1,6 @@
+export function beginTransaction(connection: any): Promise<void>;
+export function close(connection: any): Promise<void>;
+export function commitTransaction(connection: any): Promise<void>;
+export function createConnection(config: any): Promise<any>;
+export function rollbackTransaction(connection: any): Promise<void>;
+export function terminate(): Promise<boolean>;

package/dist/blz-rds-postgres/connection-manager.js

@@ -0,0 +1 @@
+"use strict";const pg=require("pg"),types=require("pg").types,BlzBase=require("./base"),_=require("underscore"),dayjs=require("dayjs");types.setTypeParser(types.builtins.TIMESTAMPTZ,e=>(isUtcOffset(e)&&(e=dayjs(e).format("YYYY-MM-DDTHH:mm:ss")),e)),types.setTypeParser(types.builtins.DATE,e=>dayjs(e).format("YYYY-MM-DDTHH:mm:ss")),types.setTypeParser(types.builtins.TIMESTAMP,e=>dayjs(e).format("YYYY-MM-DDTHH:mm:ss"));let poolsByName=new Map;function getURI(e){let t=["postgresql://"];return e.user&&(t.push(e.user),e.password&&t.push(`:${e.password}`),t.push("@")),e.host&&t.push(e.host),e.port&&t.push(`:${e.port}`),e.database&&t.push(`/${e.database}`),t.join("")}function getCustomURI(e){if(e.url){let t=e.url.indexOf("?schema=");if(-1===t&&(t=e.url.indexOf("&schema=")),t>-1){let s=e.url.indexOf("&",t+1),n=null;n=-1===s?e.url.substring(t+1):e.url.substring(t+1,s);let r=n.split("=");2===r.length&&(e.schema=r[1])}}return`postgresql://${e.url}`}function getParameters(e={}){return _.reduce(e.properties,(e,t)=>e+","+("statementTimeout"===t.key?"statement_timeout":t.key)+"="+t.value,"").slice("1")}function getObjectConfig(e={}){if(!e.name)throw BlzBase.error("RdsPostgresException",{name:e.name});return e.customUrl?getCustomURI(e):getURI(e)}function getConnectionString(e={}){let t=[getObjectConfig(e)],s=getParameters(e);return _.isEmpty(s)||t.push(`?${s}`),t.join("")}async function getPool(e={}){let t,s=e.name,n=poolsByName.get(s);if(n)return n;let r=getConnectionString(e);if(t=_.pick(e,"max","min","connectionTimeoutMillis","idleTimeoutMillis","keepAlive","parseInputDatesAsUTC","ssl","keepAliveInitialDelayMillis"),e.queryTimeout&&(t.query_timeout=e.queryTimeout),e.idleInTransactionSessionTimeout&&(t.idle_in_transaction_session_timeout=e.idleInTransactionSessionTimeout),t.connectionString=r,e.ssl){let s={require:!0,rejectUnauthorized:!1};e.sslCertPath&&(s.cert=await BlzBase.readFile(e.sslCertPath)),e.sslKeyPath&&(s.key=await BlzBase.readFile(e.sslKeyPath)),e.sslPemPath&&(s.ca=await BlzBase.readFile(e.sslPemPath)),t.ssl=s}try{n=new pg.Pool(t),e.schema&&n.on("connect",t=>{let s=`SET search_path TO ${e.schema}`;t.query(s)})}catch(t){throw BlzBase.error("RdsPostgresCannotCreatePool",{config:e,uri:uri},t)}return n.name=e.name,poolsByName.set(s,n),n}async function getConnection(e){let t;try{t=await e.connect()}catch(t){throw BlzBase.error("RdsPostgresCannotConnectToDatabase",{name:e.name},t)}return t.name=e.name,t}async function terminate(){let e=[];for(const[,t]of poolsByName)try{await t.end()}catch(t){e.push(t)}if(poolsByName.clear(),_.isEmpty(e))return!0;throw new Error(e)}const createConnection=async e=>await getConnection(await getPool(e)),beginTransaction=async function(e){try{await e.query("BEGIN")}catch(t){throw BlzBase.error("RdsPostgresBeginTransactionError",{name:e.name},t)}},commitTransaction=async function(e){try{await e.query("COMMIT")}catch(t){throw BlzBase.error("RdsPostgresCommitTransactionError",{name:e.name},t)}},rollbackTransaction=async function(e){try{await e.query("ROLLBACK")}catch(t){throw BlzBase.error("RdsPostgresRollbackTransactionError",{name:e.name},t)}},close=async function(e){try{await e.release(!0)}catch(t){throw BlzBase.error("RdsPostgresCloseError",{name:e.name},t)}};function isUtcOffset(e){if(_.isNull(e)||_.isUndefined(e)||!_.isString(e))return!1;const t=e.match(/^(.*)([+-])(\d{2})?:?(\d{2})$/);return!_.isNull(t)&&(!_.isUndefined(t[3])&&"00"!==t[3]||!_.isUndefined(t[4])&&"00"!==t[4])}module.exports={beginTransaction:beginTransaction,close:close,commitTransaction:commitTransaction,createConnection:createConnection,rollbackTransaction:rollbackTransaction,terminate:terminate};

package/dist/blz-rds-postgres/execute-bulk-insert.d.ts

@@ -0,0 +1,5 @@
+export = executeBulkInsert;
+declare function executeBulkInsert(connection: any, sql: any, rows: any, options: any): Promise<{
+    rowsAffected: any;
+    ids: any[];
+}>;

package/dist/blz-rds-postgres/execute-bulk-insert.js

@@ -0,0 +1 @@
+"use strict";const SqlString=require("sqlstring"),{DateTime:DateTime}=require("luxon"),Base=require("./base"),dateFormat=function(e,t){const a=new Date(e).toISOString();return"ISO"===t?DateTime.fromISO(a).toISO():DateTime.fromISO(a).toFormat(t)},getValue=function(e,t){if(null==e||void 0===e)return"null";switch(t?t.toLowerCase():typeof e){case"boolean":return e?"true":"false";case"string":return e.includes("'")?`'${Base.replace(e,"'","''")}'`:`'${e}'`;case"datetime":return SqlString.escape(dateFormat(e,"yyyy-LL-dd HH:mm:ss"));case"date":return SqlString.escape(dateFormat(e,"yyyy-LL-dd"));case"time":return SqlString.escape(dateFormat(e,"HH:mm:ss"));default:return e}};async function executeBulkInsert(e,t,a,n){let r=null;n.autoincrementalData&&n.autoincrementalData.pkColumnName&&(r={name:n.autoincrementalData.pkColumnName,alias:n.autoincrementalData.pkColumnAlias,sequence:n.autoincrementalData.sequenceName});const s=[];for(let e=0;e<a.length;e++){const t=a[e],o=[];r&&o.push("nextval('"+r.sequence+"')");for(const e of n.columns){const a=getValue(t[e.alias],e.type);o.push(a)}s.push(`(${o.join(",")})`)}const o=r?"INSERT INTO "+n.rdsTable.tableName+" ("+r.name+","+n.setsFields.join(", ")+") VALUES ":t,u=r?"RETURNING "+r.name+' AS "'+r.alias+'"':"",l=`${o} ${s.join(",")} ${u};`,i=await e.query(l),c=[];if(r)for(const e in i.rows){const t=i.rows[e][r.alias];c.push(t)}return{rowsAffected:i.rowCount,ids:c}}module.exports=executeBulkInsert;

package/dist/blz-rds-postgres/execute-bulk-merge.d.ts

@@ -0,0 +1,4 @@
+export = executeBulkMerge;
+declare function executeBulkMerge(connection: any, sql: any, rows: any, options: any): Promise<{
+    rowsAffected: any;
+}>;

package/dist/blz-rds-postgres/execute-bulk-merge.js

@@ -0,0 +1 @@
+"use strict";const SqlString=require("sqlstring"),{DateTime:DateTime}=require("luxon"),Base=require("./base"),dateFormat=function(e,t){const a=new Date(e).toISOString();return"ISO"===t?DateTime.fromISO(a).toISO():DateTime.fromISO(a).toFormat(t)},getValue=function(e,t){if(null==e||void 0===e)return"null";switch(t?t.toLowerCase():typeof e){case"boolean":return e?"true":"false";case"string":return e.includes("'")?`'${Base.replace(e,"'","''")}'`:`'${e}'`;case"datetime":return SqlString.escape(dateFormat(e,"yyyy-LL-dd HH:mm:ss"))+":: timestamp";case"date":return SqlString.escape(dateFormat(e,"yyyy-LL-dd"))+":: date";case"time":return SqlString.escape(dateFormat(e,"HH:mm:ss"))+":: time";default:return e}};async function executeBulkMerge(e,t,a,s){let o=null;s.autoincrementalData&&s.autoincrementalData.pkColumnName&&(o={name:s.autoincrementalData.pkColumnName,alias:s.autoincrementalData.pkColumnAlias,sequence:s.autoincrementalData.sequenceName});const n=[];for(let e=0;e<a.length;e++){const t=a[e],o=[];for(let e=0;e<t.length;e++){const a=s.columns[e],n=getValue(t[e],a.type);o.push(n)}n.push(`(${o.join(",")})`)}const r=[];r.push("INSERT INTO "+s.rdsTable.tableName.toLowerCase()+" ("),o&&r.push(o.name.toLowerCase()+","),r.push(s.setsFields.join(", ").toLowerCase()),r.push(") SELECT "),o&&r.push("nextval('"+o.sequence.toLowerCase()+"'), "),r.push(s.setsFields.join(", ").toLowerCase()),r.push(" FROM (VALUES "),r.push(n.join(",")),r.push(") AS data("),r.push(s.setsFields.join(", ").toLowerCase()),r.push(") ON CONFLICT ("),r.push(s.mergeFields.join(", ").toLowerCase()),r.push(") DO UPDATE SET ");let u=!0;for(const e of s.setsFields)r.push((u?" ":", ")+e.toLowerCase()+" = EXCLUDED."+e.toLowerCase()),u=!1;r.push(";");const l=r.join("");return{rowsAffected:(await e.query(l)).rowCount}}module.exports=executeBulkMerge;

package/dist/blz-rds-postgres/execute-non-query.d.ts

@@ -0,0 +1,12 @@
+/**
+ * @param {pg.PoolClient} connection
+ * @param {string} sql
+ * @param {[{name: string, value}]} [rdsParameters = []]
+ * @param {boolean} [withGeneratedKey = false]
+ * @return {Promise}
+ */
+export function executeNonQuery(connection: pg.PoolClient, sql: string, rdsParameters?: [{
+    name: string;
+    value: any;
+}], options: any, withGeneratedKey?: boolean): Promise<any>;
+export declare let convertValueToDb: (value: any) => any;

package/dist/blz-rds-postgres/execute-non-query.js

@@ -0,0 +1 @@
+"use strict";const BlzBase=require("./base");async function executeNonQuery(e,t,r=[],a,u=!1){let s;if(BlzBase.isEmpty(r))s=await e.query(t);else{const{query:u,parameters:o}=BlzBase.convertSqlAndParameters(t,r,a);s=await e.query(u,o)}return{rowsAffected:s.rowCount,id:BlzBase.scalarOutput(s)}}module.exports={executeNonQuery:executeNonQuery,convertValueToDb:BlzBase.convertValueToDb};

package/dist/blz-rds-postgres/execute-query.d.ts

@@ -0,0 +1,4 @@
+export = executeQuery;
+declare function executeQuery(connection: any, sql: any, rdsParameters: any[], options: any): Promise<{
+    data: any;
+}>;

package/dist/blz-rds-postgres/execute-query.js

@@ -0,0 +1 @@
+"use strict";const Base=require("./base");async function executeQuery(e,t,r=[],a){if(Base.isEmpty(r)){const r=Base.checkPostgresSQL(t);if(!r.safe){const e=new Error("Potential SQL injection");throw e.code="SQLInjection",e.data=r.reason,e}return{data:(await e.query({text:t,rowMode:"array"})).rows}}{const{query:o,parameters:s}=Base.convertSqlAndParameters(t,r,a),n=Base.checkPostgresSQL(o);if(!n.safe){const e=new Error("Potential SQL injection");throw e.code="SQLInjection",e.data=n.reason,e}return{data:(await e.query({text:o,rowMode:"array",values:s})).rows}}}module.exports=executeQuery;

package/dist/blz-rds-postgres/index.d.ts

@@ -0,0 +1,9 @@
+import executeProcedure = require("./stored-procedure");
+import { beginTransaction } from "./connection-manager";
+import { close } from "./connection-manager";
+import { createConnection as createRdsConnection } from "./connection-manager";
+import { commitTransaction } from "./connection-manager";
+import { rollbackTransaction } from "./connection-manager";
+export declare let syntaxis: any;
+export declare function executeSql(connection: any, sql: any, parameters: any, options?: {}): Promise<any>;
+export { executeProcedure, beginTransaction, close, createRdsConnection, commitTransaction, rollbackTransaction };

package/dist/blz-rds-postgres/index.js

@@ -0,0 +1 @@
+const _=require("underscore"),{executeNonQuery:executeNonQuery}=require("./execute-non-query"),executeBulkInsert=require("./execute-bulk-insert"),executeBulkMerge=require("./execute-bulk-merge"),executeQuery=require("./execute-query"),executeProcedure=require("./stored-procedure"),{beginTransaction:beginTransaction,close:close,commitTransaction:commitTransaction,createConnection:createRdsConnection,rollbackTransaction:rollbackTransaction,terminate:terminate}=require("./connection-manager");process.on("exit",async function(){await terminate()}),module.exports={syntaxis:require("./syntaxis.json"),executeProcedure:executeProcedure,executeSql:async function(e,r,n,t={}){return-1!=r.indexOf("call")?await executeProcedure(e,r,n):_.has(t,"bulkInsert")?await executeBulkInsert(e,r,n,t):_.has(t,"bulkMerge")?await executeBulkMerge(e,r,n,t):_.has(t,"queryOne")||_.has(t,"query")?await executeQuery(e,r,n,t):await executeNonQuery(e,r,n,t)},beginTransaction:beginTransaction,close:close,createRdsConnection:createRdsConnection,commitTransaction:commitTransaction,rollbackTransaction:rollbackTransaction};

package/dist/blz-rds-postgres/result-set.js

@@ -0,0 +1 @@
+"use strict";function createResultSet(){let e=[],t=!1,l=[];return{getRow:()=>new Promise((s,n)=>{e.length>0?s(e.shift()):t?s(null):l.push(s)}),close:()=>new Promise((e,s)=>{t?e(null):l.push(e)}),addRow(s){if(t)return;let n=s;if(l.length>0){l.shift()(n)}else e.push(n)},end(){t=!0,l.length>0&&l.forEach(e=>{e(null)})}}}module.exports=createResultSet;

package/dist/blz-rds-postgres/stored-procedure.d.ts

@@ -0,0 +1,19 @@
+export = executeProcedure;
+/**
+ * @param {mysqlx.Session} client
+ * @param {string} procedure
+ * @param {[Parameter]} [parameters=[]]
+ */
+declare function executeProcedure(client: mysqlx.Session, procedure: string, parameters?: [Parameter]): Promise<{
+    outParameters: {};
+}>;
+declare namespace executeProcedure {
+    export { Parameter };
+}
+type Parameter = {
+    isResultSet: boolean;
+    name: string;
+    value: any;
+    direction: "in" | "out" | "in/out";
+    type: "string" | "integer" | "decimal" | "boolean" | "datetime" | "date" | "time" | "binary";
+};

package/dist/blz-rds-postgres/stored-procedure.js

@@ -0,0 +1 @@
+"use strict";const BlzBase=require("./base");async function parseOutputParameters(e,a,r,t,s,n){if(a.isResultSet)r[a.name]=s.shift().rows;else{let e=n.indexOf(a.name);if(-1==e)throw BlzBase.error("RdsPosgreSqlIndex",{parameter:a,result:r});let s=BlzBase.first(t.rows)[e];switch(a.type){case"string":r[a.name]=BlzBase.convertToString(s);break;case"integer":r[a.name]=BlzBase.convertToInteger(s);break;case"decimal":r[a.name]=BlzBase.convertToDecimal(s);break;case"boolean":r[a.name]=BlzBase.convertToBoolean(s);break;case"datetime":r[a.name]=BlzBase.convertToDatetime(s);break;case"date":r[a.name]=BlzBase.convertToDate(s);break;case"time":r[a.name]=BlzBase.convertToTime(s);break;case"binary":r[a.name]=BlzBase.convertToBinary(s);break;default:throw BlzBase.error("RdsMySqlUnexpectedType",{parameter:a,result:r,value:s})}}}async function parseInputParameters(e,a,r,t){let s=[],n=Date.now();for(const e of r){if(e.isResultSet&&s.push(`FETCH ALL IN ${e.name.toLowerCase()}_${n}`),"in"===e.direction){let a=-1;for(;-1!=(a=t.indexOf(e.name));)t.splice(a,1)}a="string"===e.type&&e.value?a.replace(`:${e.name}`,`'${BlzBase.convertValueToDb(e.value,e,n)}'`):a.replace(`:${e.name}`,BlzBase.convertValueToDb(e.value,e,n))}return s.unshift(a),s.join(";")}async function executeProcedure(e,a,r){let t,s,n,o={},[,c]=/\(([^\(\)]*)\)/gm.exec(a);BlzBase.isArray(r)&&(c=c.replace(/[:\s]*/g,"").split(","),t=await parseInputParameters(e,a,r,c));try{s=await e.query({text:t,rowMode:"array"})}catch(t){throw BlzBase.error("RdsPostgresCannotExecuteProcedure",{client:e,procedure:a,parameters:r},t)}BlzBase.isArray(s)&&([s,...n]=s);for(const a of r)"in"!=a.direction&&await parseOutputParameters(e,a,o,s,n,c);return{outParameters:o}}module.exports=executeProcedure;

package/dist/blz-redis/index.d.ts

@@ -0,0 +1,31 @@
+export function redisGet(connection: any, key: any): any;
+export function redisMget(connection: any, keys: any): any;
+export function redisSet(connection: any, key: any, value: any): any;
+export function redisSetex(connection: any, key: any, ttl: any, value: any): any;
+export function redisMset(connection: any, data: any): any;
+export function redisDel(connection: any, key: any): any;
+export function redisExpire(connection: any, key: any, ttl: any): any;
+export function redisTtl(connection: any, key: any): any;
+export function redisExists(connection: any, key: any): any;
+export function redisKeys(connection: any, pattern: any): any;
+export function redisDbsize(connection: any): any;
+export function redisHget(connection: any, key: any, field: any): any;
+export function redisHmget(connection: any, key: any, fields: any): any;
+export function redisHset(connection: any, key: any, field: any, value: any): any;
+export function redisHmset(connection: any, key: any, data: any): any;
+export function redisHdel(connection: any, key: any, field: any): any;
+export function redisHexists(connection: any, key: any, field: any): any;
+export function redisHkeys(connection: any, key: any): any;
+export function redisHvals(connection: any, key: any): any;
+export function redisHgetall(connection: any, key: any): any;
+export function redisHlen(connection: any, key: any): any;
+export function redisLindex(connection: any, key: any, index: any): any;
+export function redisLpop(connection: any, key: any, count: any): any;
+export function redisRpop(connection: any, key: any, count: any): any;
+export function redisLset(connection: any, key: any, index: any, element: any): any;
+export function redisLpush(connection: any, key: any, element: any): any;
+export function redisRpush(connection: any, key: any, element: any): any;
+export function redisLlen(connection: any, key: any): any;
+export function redisFlushdb(connection: any): any;
+export function redisFlushall(connection: any): any;
+export function redisPing(connection: any): any;

package/dist/blz-redis/index.js

@@ -0,0 +1 @@
+const redisCache=require("./lib/redisCache.js"),fs=require("fs-extra");let redisClients={};function getOrCreateRedisClient(e){let t=redisClients[e.name];if(t)return t;let n={connectionName:e.name,connectionOptions:{autoPipelining:!0},clusterMode:e.clusterMode,nodes:ensureNodes(e.nodes),pool:!0,poolMin:e.poolMin,poolMax:e.poolMax,poolKeepAlive:e.poolKeepAlive,poolAcquireTimeout:e.poolAcquireTimeout,poolRetryDelay:e.poolRetryDelay};return null!=e.host&&(n.connectionOptions.host=e.host),null!=e.port&&(n.connectionOptions.port=e.port),null!=e.db&&(n.connectionOptions.db=e.db),e.tls&&(n.connectionOptions.tls={},e.key&&(n.connectionOptions.tls.key=fs.readFileSync(e.key)),e.cert&&(n.connectionOptions.tls.cert=fs.readFileSync(e.cert)),e.ca&&(n.connectionOptions.tls.ca=fs.readFileSync(e.ca)),e.servername&&(n.connectionOptions.tls.servername=e.servername),e.rejectUnauthorized||(n.connectionOptions.tls.rejectUnauthorized=!1)),null!=e.user&&(n.connectionOptions.username=e.user),null!=e.password&&(n.connectionOptions.password=e.password),t=redisCache.createRedisClient(n),redisClients[e.name]=t,t}function ensureNodes(e){if(e&&!Array.isArray(e)&&"string"==typeof e){let e=e.split(",");const t=[];for(let n=0;n<e.length;n++){const n={};let r=e.split("@");if(r.length>1){let e=r[0].split(":");e.length>1&&(n.username=e[0]),n.password=n.username?e[1]:e[0]}let i=r.length>1?r[1].split(":"):r[0].split(":");n.host=i[0],n.port=i[1],t.push(n)}return t}return e}module.exports={redisGet:function(e,t){return getOrCreateRedisClient(e).get(t)},redisMget:function(e,t){return getOrCreateRedisClient(e).mget(t)},redisSet:function(e,t,n){return getOrCreateRedisClient(e).set(t,n)},redisSetex:function(e,t,n,r){return getOrCreateRedisClient(e).setex(t,n,r)},redisMset:function(e,t){return getOrCreateRedisClient(e).mset(t)},redisDel:function(e,t){return getOrCreateRedisClient(e).del(t)},redisExpire:function(e,t,n){return getOrCreateRedisClient(e).expire(t,n)},redisTtl:function(e,t){return getOrCreateRedisClient(e).ttl(t)},redisExists:function(e,t){return getOrCreateRedisClient(e).exists(t)},redisKeys:function(e,t){return getOrCreateRedisClient(e).keys(t)},redisDbsize:function(e){return getOrCreateRedisClient(e).dbsize()},redisHget:function(e,t,n){return getOrCreateRedisClient(e).hget(t,n)},redisHmget:function(e,t,n){return getOrCreateRedisClient(e).hmget(t,n)},redisHset:function(e,t,n,r){return getOrCreateRedisClient(e).hset(t,n,r)},redisHmset:function(e,t,n){return getOrCreateRedisClient(e).hmset(t,n)},redisHdel:function(e,t,n){return getOrCreateRedisClient(e).hdel(t,n)},redisHexists:function(e,t,n){return getOrCreateRedisClient(e).hexists(t,n)},redisHkeys:function(e,t){return getOrCreateRedisClient(e).hkeys(t)},redisHvals:function(e,t){return getOrCreateRedisClient(e).hvals(t)},redisHgetall:function(e,t){return getOrCreateRedisClient(e).hgetall(t)},redisHlen:function(e,t){return getOrCreateRedisClient(e).hlen(t)},redisLindex:function(e,t,n){return getOrCreateRedisClient(e).lindex(t,n)},redisLpop:function(e,t,n){return getOrCreateRedisClient(e).lpop(t,n)},redisRpop:function(e,t,n){return getOrCreateRedisClient(e).rpop(t,n)},redisLset:function(e,t,n,r){return getOrCreateRedisClient(e).lset(t,n,r)},redisLpush:function(e,t,n){return getOrCreateRedisClient(e).lpush(t,n)},redisRpush:function(e,t,n){return getOrCreateRedisClient(e).rpush(t,n)},redisLlen:function(e,t){return getOrCreateRedisClient(e).llen(t)},redisFlushdb:function(e){return getOrCreateRedisClient(e).flushdb()},redisFlushall:function(e){return getOrCreateRedisClient(e).flushall()},redisPing:function(e){return getOrCreateRedisClient(e).ping()}};

package/dist/blz-redis/lib/redisCache.d.ts

@@ -0,0 +1,33 @@
+export function createRedisClient(config: any): {
+    get: (key: any) => Promise<any>;
+    mget: (keys: any) => Promise<any>;
+    set: (key: any, value: any) => Promise<any>;
+    setex: (key: any, ttl: any, value: any) => Promise<any>;
+    mset: (data: any) => Promise<any>;
+    del: (key: any) => Promise<any>;
+    expire: (key: any, ttl: any) => Promise<any>;
+    ttl: (key: any) => Promise<any>;
+    exists: (key: any) => Promise<any>;
+    keys: (pattern: any) => Promise<any>;
+    dbsize: () => Promise<any>;
+    hget: (key: any, field: any) => Promise<any>;
+    hmget: (key: any, fields: any) => Promise<any>;
+    hset: (key: any, field: any, value: any) => Promise<any>;
+    hmset: (key: any, data: any) => Promise<any>;
+    hdel: (key: any, field: any) => Promise<any>;
+    hexists: (key: any, field: any) => Promise<any>;
+    hkeys: (key: any) => Promise<any>;
+    hvals: (key: any) => Promise<any>;
+    hgetall: (key: any) => Promise<any>;
+    hlen: (key: any) => Promise<any>;
+    lindex: (key: any, index: any) => Promise<any>;
+    lpop: (key: any, count: any) => Promise<any>;
+    rpop: (key: any, count: any) => Promise<any>;
+    lset: (key: any, index: any, element: any) => Promise<any>;
+    lpush: (key: any, element: any) => Promise<any>;
+    rpush: (key: any, element: any) => Promise<any>;
+    llen: (key: any) => Promise<any>;
+    flushdb: () => Promise<void>;
+    flushall: () => Promise<void>;
+    ping: () => Promise<boolean>;
+};

package/dist/blz-redis/lib/redisCache.js

@@ -0,0 +1 @@
+const Redis=require("ioredis"),genericPool=require("generic-pool");let poolsByName={};function createRedisClient(e){return{get:function(n){return send(e,"get",n)},mget:function(n){return send(e,"mget",n)},set:function(n,t){return send(e,"set",n,t)},setex:function(n,t,o){return send(e,"setex",n,t,o)},mset:function(n){return send(e,"mset",n)},del:function(n){return send(e,"del",n)},expire:function(n,t){return send(e,"expire",n,t)},ttl:function(n){return send(e,"ttl",n)},exists:function(n){return send(e,"exists",n)},keys:function(n){return send(e,"keys",n)},dbsize:function(){return send(e,"dbsize")},hget:function(n,t){return send(e,"hget",n,t)},hmget:function(n,t){return send(e,"hmget",n,t)},hset:function(n,t,o){return send(e,"hset",n,t,o)},hmset:function(n,t){return send(e,"hmset",n,t)},hdel:function(n,t){return send(e,"hdel",n,t)},hexists:function(n,t){return send(e,"hexists",n,t)},hkeys:function(n){return send(e,"hkeys",n)},hvals:function(n){return send(e,"hvals",n)},hgetall:function(n){return send(e,"hgetall",n)},hlen:function(n){return send(e,"hlen",n)},lindex:function(n,t){return send(e,"lindex",n,t)},lpop:function(n,t){return t?send(e,"lpop",n,t):send(e,"lpop",n)},rpop:function(n,t){return t?send(e,"rpop",n,t):send(e,"rpop",n)},lset:function(n,t,o){return send(e,"lset",n,t,o)},lpush:function(n,t){return send(e,"lpush",n,t)},rpush:function(n,t){return send(e,"rpush",n,t)},llen:function(n){return send(e,"llen",n)},flushdb:async function(){send(e,"flushdb")},flushall:async function(){send(e,"flushall")},ping:async function(){return await send(e,"ping"),!0}}}async function getConnection(e){if(!e.pool)return createConnection(e);try{return await getPool(e).acquire()}catch(n){throw error("RedisPoolAcquireError",{connectionName:e.connectionName},n)}}function createConnection(e){return new Promise(function(n,t){e.connectionOptions.retryStrategy=function(e){return null};let o=e.clusterMode?new Redis.Cluster(e.nodes,{redisOptions:e.connectionOptions}):new Redis(e.connectionOptions);o.pool=e.pool,o.connectionName=e.connectionName,o.on("error",n=>{o.active=!1,t(error("RedisConnectionError",{connectionName:e.connectionName},n))}),o.on("close",()=>{o.active=!1}),o.on("ready",()=>{o.active=!0,n(o)})})}async function send(e,n,...t){let o=null;try{return o=await getConnection(e),await executeCommand(o,n,...t)}catch(e){throw error("RedisError",null,e)}finally{o&&closeConnection(o)}}function executeCommand(e,n,...t){return e[n](...t)}function closeConnection(e){return e.pool?getPool({connectionName:e.connectionName}).release(e):destroyConnection(e)}function destroyConnection(e){return e.disconnect(),e.active=!1,Promise.resolve()}function checkConnection(e){e.ping().catch(n=>{e.active=!1})}function scheduleKeepAliveRun(e,n){e.pool&&(e.scheduledKeepAlive=setTimeout(()=>{checkConnection(e),scheduleKeepAliveRun(e,n)},n))}function descheduleKeepAliveRun(e){e.scheduledKeepAlive&&clearTimeout(e.scheduledKeepAlive),e.scheduledKeepAlive=null}function getPool(e){let n=e.connectionName,t=poolsByName[n];if(t)return t;{const o={create:async function(){try{const n=await createConnection(e);return scheduleKeepAliveRun(n,e.poolKeepAlive),n}catch(n){return await new Promise(function(t,o){setTimeout(()=>{o(n)},e.poolRetryDelay)})}},destroy:async function(e){return await destroyConnection(e),descheduleKeepAliveRun(e),!0},validate:function(e){return Promise.resolve(e.active)}},r={max:e.poolMax,min:e.poolMin,testOnBorrow:!0,acquireTimeoutMillis:e.poolAcquireTimeout||1e4};return t=genericPool.createPool(o,r),t.connectionName=e.connectionName,poolsByName[n]=t,t}}function error(e,n,t){let o=new Error;return o.code=e,n&&(o.data=n),t&&(o.innerError=t),o}module.exports={createRedisClient:createRedisClient};

package/dist/blz-regex/index.d.ts

@@ -0,0 +1,3 @@
+export function regexReplace(target: any, regex: any, newValue: any): any;
+export function regexSearch(target: any, regex: any): any;
+export function regexTest(target: any, regex: any): boolean;

package/dist/blz-regex/index.js

@@ -0,0 +1 @@
+module.exports={regexReplace:function(e,n,l){return null==e?null:null==n||null==l?e:e.replace(new RegExp(n,"g"),l)},regexSearch:function(e,n){return null==e||null==n?-1:e.search(new RegExp(n,"g"))},regexTest:function(e,n){return null!=e&&(null!=n&&new RegExp(n,"g").test(e))}};

package/dist/blz-security/__test__/autorization.test.js

@@ -0,0 +1 @@
+const{h3lp:h3lp}=require("h3lp"),Yaml=require("js-yaml"),path=require("path"),AuthorizationService=require("../authorizationService"),_=require("underscore"),logger=require("pino")();let authorizationService=null,config=null;describe("Permission Service",()=>{beforeAll(async()=>{authorizationService=new AuthorizationService(_,logger);const e=await h3lp.fs.read(path.join(__dirname,"/Security.yaml")),t=await Yaml.loadAll(e);config=authorizationService.importSecurityConfig(t[0])}),test("Permissions by Guest",()=>{const e=config.roles.find(e=>"Guest"===e.name).permissions.join(",");expect("guestAccounts,guestMenu,guestView,guestActions").toStrictEqual(e)}),test("Permissions by User",()=>{const e=config.roles.find(e=>"User"===e.name).permissions.join(",");expect("userAccounts,userMenu,userView,userActions,roleView,guestAccounts,guestMenu,guestView,guestActions").toStrictEqual(e)}),test("Permissions by Admin",()=>{const e=config.roles.find(e=>"Admin"===e.name).permissions.join(",");expect("adminAccounts,adminMenu,adminView,adminActions,roleEdit,userAccounts,userMenu,userView,userActions,roleView,guestAccounts,guestMenu,guestView,guestActions").toStrictEqual(e)}),test("authorized by Guest",()=>{expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/account","*",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/21","*",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/22","*",["Guest"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/menu-security/guest","",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/menu-security/user","",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/menu-security/admin","",["Guest"]))}),test("authorized by User",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account","*",["User"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/21","*",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/22","*",["User"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/menu-security/guest","",["User"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/menu-security/user","",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/menu-security/admin","",["User"]))}),test("authorized by Admin",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account","*",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/21","*",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/22","*",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/menu-security/guest","",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/menu-security/user","",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/menu-security/admin","",["Admin"]))}),test("authorized by Guest and User",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account","*",["Guest","User"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/21","*",["Guest","User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/22","*",["Guest","User"]))}),test("authorized by User and Admin",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account","*",["User","Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/21","*",["User","Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/account/22","*",["User","Admin"]))}),test("Role access to Guest",()=>{expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","View",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","Add",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","Edit",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","Remove",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/roles","GET",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/roles/merged","POST",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","GET",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","DELETE",["Guest"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","PATCH",["Guest"]))}),test("Role access to User",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/roles","",["User"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/roles","View",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","Add",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","Edit",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/roles","Remove",["User"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/roles","GET",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/roles/merged","POST",["User"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","GET",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","DELETE",["User"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","PATCH",["User"]))}),test("Role access to Admin",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/roles","",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/roles","View",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/roles","Add",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/roles","Edit",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/roles","Remove",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/roles","GET",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/roles/merged","POST",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","GET",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","DELETE",["Admin"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/service/role/1","PATCH",["Admin"]))})});

package/dist/blz-security/__test__/autorizationKpn.test.js

@@ -0,0 +1 @@
+const{h3lp:h3lp}=require("h3lp"),Yaml=require("js-yaml"),path=require("path"),AuthorizationService=require("../authorizationService"),_=require("underscore"),logger=require("pino")();let authorizationService=null,config=null;describe("Permission Service",()=>{beforeAll(async()=>{authorizationService=new AuthorizationService(_,logger);const i=await h3lp.fs.read(path.join(__dirname,"/AuthorizationKpn.yaml")),e=await Yaml.loadAll(i);config=authorizationService.importSecurityConfig(e[0])}),test("Permissions by Configuration.Admin",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-credit/undefined",null,["Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-credit/",null,["Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-debit/undefined",null,["Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-debit/",null,["Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-credit/undefined",null,["Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-credit/",null,["Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-debit/undefined",null,["Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-debit/",null,["Configuration.Admin"],["agent"]))}),test("Permissions by Collections.Admin, Collections.Finance, Configuration.Admin",()=>{expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-credit/undefined",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-credit/",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-debit/undefined",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-manual-debit/",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-credit/undefined",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-credit/",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-debit/undefined",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/ep-out-manual-debit/",null,["Collections.Admin","Collections.Finance","Configuration.Admin"],["agent"]))})});

package/dist/blz-security/__test__/orderManagement.test.js

@@ -0,0 +1 @@
+const{h3lp:h3lp}=require("h3lp"),Yaml=require("js-yaml"),path=require("path"),AuthorizationService=require("../authorizationService"),_=require("underscore"),logger=require("pino")();let authorizationService=null;describe("Permission Service",()=>{beforeAll(async()=>{authorizationService=new AuthorizationService(_,logger);const e=await h3lp.fs.read(path.join(__dirname,"/OrderManagement.yaml")),i=await Yaml.loadAll(e);config=authorizationService.importSecurityConfig(i[0])}),test("Paths with query parameters",()=>{expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/ext-common-business/businessDomains","GET",["OMUserMenu"])),expect(!1).toStrictEqual(authorizationService.checkAuthorize("/api/ext-common-business/businessDomains?offset=0&limit=1","GET",["OMUserMenu"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/ext-common-business/businessDomains","delete",["OMUserMenu"])),expect(!0).toStrictEqual(authorizationService.checkAuthorize("/api/ext-common-business/businessDomains?offset=0&limit=1","DELETE",["OMUserMenu"]))})});

package/dist/blz-security/__test__/secureUrl.test.js

@@ -0,0 +1 @@
+const SecureUrlService=require("../secureUrlService"),logger=require("pino")();let secureUrlService=null;describe("SecureUrlService",()=>{beforeAll(async()=>{secureUrlService=new SecureUrlService(logger)}),test("Front path",()=>{const e="N2ZkZGY4NmItYzVmYi00ZDFkLWI0OGEtMTY1MmM4YmI0ZThm",t="https://case-management-portal-beesion-dev.apps.ocp01.iplan.com.ar/#/tkt-incident/sw-2783/manage",r=secureUrlService.createToken(t,e);expect(()=>secureUrlService.validate(t,r,e,15e3)).not.toThrow(),expect(secureUrlService.validate(t,r,e,15e3)).toBeUndefined()}),test("Front path with params",()=>{const e="N2ZkZGY4NmItYzVmYi00ZDFkLWI0OGEtMTY1MmM4YmI0ZThm",t="https://case-management-portal-beesion-dev.apps.ocp01.iplan.com.ar/#/tkt-incident/sw-2783/manage?param1=1&param2=a",r=secureUrlService.createToken(t,e);expect(()=>secureUrlService.validate(t,r,e,15e3)).not.toThrow(),expect(secureUrlService.validate(t,r,e,15e3)).toBeUndefined()}),test("Api path",()=>{const e="N2ZkZGY4NmItYzVmYi00ZDFkLWI0OGEtMTY1MmM4YmI0ZThm",t="/api/case-adapter/bpm",r=secureUrlService.createToken(t,e);expect(()=>secureUrlService.validate(t,r,e,15e3)).not.toThrow(),expect(secureUrlService.validate(t,r,e,15e3)).toBeUndefined()}),test("Path with special characters with token expired",()=>{const e="2cd68756-0099-48b4-9f42-57b3553f60c7",t="/api/ms-business/party/%7BpartyId%7D",r=secureUrlService.createToken(t,e);try{secureUrlService.validate(t,r,e,-1),fail("Expected SecureUrlService.validate to throw an error")}catch(e){expect(e.message).toBe("The token has expired."),expect(e.name).toBe("SecureUrlError"),expect(e.code).toBe(410)}}),test("Path with special characters",()=>{const e="2cd68756-0099-48b4-9f42-57b3553f60c7",t="/api/ms-business/party/%7BpartyId%7D",r=secureUrlService.createToken(t,e);expect(()=>secureUrlService.validate(t,r,e,15e3)).not.toThrow(),expect(secureUrlService.validate(t,r,e,15e3)).toBeUndefined()}),test("Path with special characters and session key in base64 with token expired",()=>{const e="N2ZkZGY4NmItYzVmYi00ZDFkLWI0OGEtMTY1MmM4YmI0ZThm",t="/api/case-adapter/bpm/%7BinstanceId%7D/save-and-continue",r=secureUrlService.createToken(t,e);try{secureUrlService.validate(t,r,e,-1),fail("Expected SecureUrlService.validate to throw an error")}catch(e){expect(e.message).toBe("The token has expired."),expect(e.name).toBe("SecureUrlError"),expect(e.code).toBe(410)}}),test("Path with special characters and session key in base64",()=>{const e="N2ZkZGY4NmItYzVmYi00ZDFkLWI0OGEtMTY1MmM4YmI0ZThm",t="/api/case-adapter/bpm/%7BinstanceId%7D/save-and-continue",r=secureUrlService.createToken(t,e);expect(()=>secureUrlService.validate(t,r,e,15e3)).not.toThrow(),expect(secureUrlService.validate(t,r,e,15e3)).toBeUndefined()})});

package/dist/blz-security/__test__/solveMergeRule.test.js

@@ -0,0 +1 @@
+const AuthorizationService=require("../authorizationService"),_=require("underscore"),logger=require("pino")(),authorizationService=new AuthorizationService(_,logger),typesPreviousRules=[{path:"/api/ms-financing-setting/fnc-types",actions:"GET",enable:!0},{path:"/api/ms-financing-setting/fnc-types",actions:"POST",enable:!1}],actionPreviousRules=[{path:"/api/ms-financing-setting/fnc-action",actions:"*",enable:!1}],catalogPreviousRules=[{path:"/api/ms-financing-setting/fnc-catalog",actions:"*",enable:!0}];describe("Types use case",()=>{test("Set disable previous disable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(typesPreviousRules,{path:"/api/ms-financing-setting/fnc-types",actions:"POST",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-types","actions":"GET","enable":true},{"path":"/api/ms-financing-setting/fnc-types","actions":"POST","enable":false}]').toStrictEqual(e)}),test("Set enable previous disable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(typesPreviousRules,{path:"/api/ms-financing-setting/fnc-types",actions:"POST",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-types","actions":"GET,POST","enable":true}]').toStrictEqual(e)}),test("Add enable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(typesPreviousRules,{path:"/api/ms-financing-setting/fnc-types",actions:"PUT",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-types","actions":"GET,PUT","enable":true},{"path":"/api/ms-financing-setting/fnc-types","actions":"POST","enable":false}]').toStrictEqual(e)}),test("disable two actions, one set disable previously and other not exists",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(typesPreviousRules,{path:"/api/ms-financing-setting/fnc-types",actions:"POST,DELETE",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-types","actions":"GET","enable":true},{"path":"/api/ms-financing-setting/fnc-types","actions":"POST,DELETE","enable":false}]').toStrictEqual(e)}),test("Enable two actions, one set disable previously and other not exists",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(typesPreviousRules,{path:"/api/ms-financing-setting/fnc-types",actions:"POST,DELETE",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-types","actions":"GET,POST,DELETE","enable":true}]').toStrictEqual(e)}),test("Add enable all rule",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(typesPreviousRules,{path:"/api/ms-financing-setting/fnc-types",actions:"*",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-types","actions":"*","enable":true}]').toStrictEqual(e)}),test("Add disable all rule",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(typesPreviousRules,{path:"/api/ms-financing-setting/fnc-types",actions:"*",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-types","actions":"GET","enable":true},{"path":"/api/ms-financing-setting/fnc-types","actions":"*","enable":false}]').toStrictEqual(e)})}),describe("Action use case",()=>{test("Set disable previous disable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(actionPreviousRules,{path:"/api/ms-financing-setting/fnc-action",actions:"POST",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-action","actions":"*","enable":false}]').toStrictEqual(e)}),test("Set enable previous disable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(actionPreviousRules,{path:"/api/ms-financing-setting/fnc-action",actions:"POST",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-action","actions":"*","enable":false},{"path":"/api/ms-financing-setting/fnc-action","actions":"POST","enable":true}]').toStrictEqual(e)}),test("Add enable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(actionPreviousRules,{path:"/api/ms-financing-setting/fnc-action",actions:"PUT",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-action","actions":"*","enable":false},{"path":"/api/ms-financing-setting/fnc-action","actions":"PUT","enable":true}]').toStrictEqual(e)}),test("disable two actions, one set disable previously and other not exists",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(actionPreviousRules,{path:"/api/ms-financing-setting/fnc-action",actions:"POST,DELETE",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-action","actions":"*","enable":false}]').toStrictEqual(e)}),test("Enable two actions, one set disable previously and other not exists",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(actionPreviousRules,{path:"/api/ms-financing-setting/fnc-action",actions:"POST,DELETE",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-action","actions":"*","enable":false},{"path":"/api/ms-financing-setting/fnc-action","actions":"POST,DELETE","enable":true}]').toStrictEqual(e)}),test("Add enable all rule",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(actionPreviousRules,{path:"/api/ms-financing-setting/fnc-action",actions:"*",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-action","actions":"*","enable":true}]').toStrictEqual(e)}),test("Add disable all rule",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(actionPreviousRules,{path:"/api/ms-financing-setting/fnc-action",actions:"*",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-action","actions":"*","enable":false}]').toStrictEqual(e)})}),describe("Catalog use case",()=>{test("Set disable previous disable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(catalogPreviousRules,{path:"/api/ms-financing-setting/fnc-catalog",actions:"POST",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-catalog","actions":"*","enable":true}]').toStrictEqual(e)}),test("Set enable previous disable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(catalogPreviousRules,{path:"/api/ms-financing-setting/fnc-catalog",actions:"POST",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-catalog","actions":"*","enable":true}]').toStrictEqual(e)}),test("Add enable",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(catalogPreviousRules,{path:"/api/ms-financing-setting/fnc-catalog",actions:"PUT",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-catalog","actions":"*","enable":true}]').toStrictEqual(e)}),test("disable two actions, one set disable previously and other not exists",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(catalogPreviousRules,{path:"/api/ms-financing-setting/fnc-catalog",actions:"POST,DELETE",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-catalog","actions":"*","enable":true}]').toStrictEqual(e)}),test("Enable two actions, one set disable previously and other not exists",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(catalogPreviousRules,{path:"/api/ms-financing-setting/fnc-catalog",actions:"POST,DELETE",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-catalog","actions":"*","enable":true}]').toStrictEqual(e)}),test("Add enable all rule",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(catalogPreviousRules,{path:"/api/ms-financing-setting/fnc-catalog",actions:"*",enable:!0}));expect('[{"path":"/api/ms-financing-setting/fnc-catalog","actions":"*","enable":true}]').toStrictEqual(e)}),test("Add disable all rule",()=>{const e=JSON.stringify(authorizationService._solveMergeRule(catalogPreviousRules,{path:"/api/ms-financing-setting/fnc-catalog",actions:"*",enable:!1}));expect('[{"path":"/api/ms-financing-setting/fnc-catalog","actions":"*","enable":true}]').toStrictEqual(e)})});

package/dist/blz-security/__test__/sqlInjectionGuard.test.js

@@ -0,0 +1 @@
+const SqlInjectionGuard=require("../sqlInjectionGuard"),pino=require("pino");describe("SqlInjectionGuard",()=>{let e;beforeEach(()=>{delete process.env.blz_securityApiSanitizeOnlyLog,delete process.env.blz_securityApiSanitizeAllowedInputRegex,e=new SqlInjectionGuard(pino({level:"silent"}))}),test("accepts safe simple strings",()=>{const t=[{name:"username",value:"john_doe"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("accepts safe identifiers with dots and dashes",()=>{const t=[{name:"email",value:"test.user-name"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("blocks basic SQL injection attempt",()=>{const t=[{name:"query",value:"' OR 1=1 --"}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks semicolon followed by DROP statement",()=>{expect(()=>e.validateRawSql("SELECT * FROM users; DROP TABLE users;")).toThrow()}),test("blocks string with pg_sleep function",()=>{expect(()=>e.validateRawSql("SELECT pg_sleep(10);")).toThrow()}),test("blocks nested object with SQLi",()=>{const t={user:{comment:"'; DROP TABLE users;"}};expect(()=>e.validateObject(t)).toThrow()}),test("blocks deep object traversal with SQLi",()=>{const t={a:{b:{c:"' OR '1'='1"}}};expect(()=>e.validateObject(t)).toThrow()}),test("does not block number values",()=>{const t=[{name:"count",value:12345}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("does not block boolean values",()=>{const t=[{name:"active",value:!0}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("does not block empty string",()=>{const t=[{name:"description",value:""}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("allows <script> input when custom regex allows all characters",()=>{process.env.blz_securityApiSanitizeAllowedInputRegex="^.{1,100}$",e=new SqlInjectionGuard(pino({level:"silent"}));const t=[{name:"comment",value:'<script>alert("x")<\/script>'}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("blocks SQL injection even if allowedInputRegex allows special characters",()=>{process.env.blz_securityApiSanitizeAllowedInputRegex="^.{1,100}$",e=new SqlInjectionGuard(pino({level:"silent"}));const t=[{name:"input",value:"'; DROP TABLE users;"}];expect(()=>e.validateParamList(t)).toThrow()}),test("only logs when onlyLog mode is enabled",()=>{process.env.blz_securityApiSanitizeOnlyLog="true",e=new SqlInjectionGuard(pino({level:"silent"}));const t=[{name:"input",value:"' OR 'x'='x"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("ignores non-string values in validateObject",()=>{const t={safe:!0,count:42,list:[1,2,3],nested:{values:[!1,null,void 0]}};expect(()=>e.validateObject(t)).not.toThrow()}),test("blocks string containing EXEC",()=>{expect(()=>e.validateRawSql("EXEC('SELECT * FROM users')")).toThrow()}),test("blocks string using dbms_lock.sleep",()=>{expect(()=>e.validateRawSql("SELECT dbms_lock.sleep(10) FROM dual")).toThrow()}),test("does not block special characters like = or &",()=>{const t=[{name:"filter",value:"key=value&x=1"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("does not block values containing HTML but not SQL",()=>{const t=[{name:"html",value:"<b>bold</b>"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("throws on invalid JSON pattern in env",()=>{process.env.blz_securityApiSanitizeDangerousParamPatterns="INVALID_JSON",expect(()=>{new SqlInjectionGuard(pino({level:"silent"}))}).not.toThrow()}),test("blocks /* comment pattern in param",()=>{const t=[{name:"q",value:"*/ DROP TABLE"}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks SELECT-FROM pattern",()=>{const t=[{name:"sql",value:"SELECT * FROM users"}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks INSERT INTO pattern",()=>{const t=[{name:"payload",value:"INSERT INTO table VALUES (1)"}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks UPDATE SET = pattern",()=>{const t=[{name:"input",value:'UPDATE table SET name="x"'}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks DELETE FROM pattern",()=>{const t=[{name:"delete",value:"DELETE FROM users"}];expect(()=>e.validateParamList(t)).toThrow()}),test("allows input with only < at the end",()=>{const t=[{name:"input",value:"allowed<"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("allows input with only > at the beginning",()=>{const t=[{name:"input",value:">allowed"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("blocks OR with LIKE pattern",()=>{const t=[{name:"search",value:"' OR name LIKE '%admin%'"}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks AND with LIKE pattern",()=>{const t=[{name:"search",value:"' AND role LIKE '%user%'"}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks UNION SELECT statement",()=>{const t=[{name:"payload",value:"' UNION SELECT password FROM users --"}];expect(()=>e.validateParamList(t)).toThrow()}),test("blocks complex obfuscated SQL injection",()=>{const t=[{name:"value",value:"admin'/**/OR/**/'1'='1"}];expect(()=>e.validateParamList(t)).toThrow()}),test("does not block input that looks like markup but is valid by whitelist",()=>{const t=[{name:"input",value:"example>"}];expect(()=>e.validateParamList(t)).not.toThrow()}),test("does not block input with common punctuation",()=>{const t=[{name:"text",value:"Hello, world! How are you?"}];expect(()=>e.validateParamList(t)).not.toThrow()})});

package/dist/blz-security/__test__/xssGuard.test.js

@@ -0,0 +1 @@
+const XssGuard=require("../xssGuard"),logger=require("pino");describe("XssGuard",()=>{let t;beforeEach(()=>{t=new XssGuard(logger({level:"silent"}))}),test("sanitizes buffer as String",()=>{const e={zipBinaryString:'PK\0\b\0\b\0݄îZ\0\0\0\0\0\0\0\0\0\0\0\0:\0\0\0criteria-set-11-exported-2025-07-14T16:38:58.967Z1073.jsoníÝmSi¢à¿bñéLU3E7/B¾ù‚ÆZJ7™ÍVÊvŽg3š£fÏLmí?´³‰Aeiºy€ë›±ÛZáÊs?Ý÷óÏÒåíÕýèöêb0º/½úç×ÿ<ùXzÇQéîþâþË]éU©}º·ßi–¢Òõů£Ò«R÷âöê®Ë;.îFwn®w¿Þü}´3ÝÝï4wÊ;ÿuõëç›ÛûÑǾùG)*}Ý]Þ^}¾¿º¹.½*=þ±ÑoÓ=LJL*I­\\i–+É0Ž_ÅÍWIëÇÝVóçhçáx÷J^Õv_%ÕúÏ?Ì>\\«7†IåU%~U¯ÿب$3÷Ç^»¯âƏI¥ñó¥Eœ¢Ò«¿üq¾n®\'g«Ö¬D³NáÕÝÞçϟ®./>|Ÿ·áÙOíRTú|q;º¾?øú\b×_>}ïÞþíòӗ»éÙI÷þp;ºøûǛÿ›~kït°w0<靖¢ÒßnGÿûet}ùûð÷ÏãÃîtޖ¢ÒèãÃß|ïM¹R)¿)ÿ¹wtôþðaÛá7¿…?ŸHùæoÛïpùåöv|̓»›ñ¯þ§³RTº¹ý%=\\y¼ÇíèãÕýñ§½Ë˛/×÷éw?Ž>|ÿÍ«»£«Ëû«û«›/w7ׯ¦9}µÓ]ÇOþ»m÷·×w—ão=Ú^úË»ÒôÕ¼+ýµ•în¾Ü^Žfä×˿fÿãèÃýÍí`ò~t{óë³;\fožÞüËèùÿeôäOŸ]Ýý}üäž9ÀÃ.O?ƒÑ/¿Ž®ïŸ{Ó=ž<Âá—ëë«ë_ž9BºÇŒ#܎ÿš¾Ì>ù£ß>®ïfoKóϜþoö˜ñÈÿÞþÄ/àëžþùgöyæY<óKøv—§ñܯáÛ]fã«wË3çô»½f=›OŸn./^8ÐãfçòËÝýͯãÓ?³-yf[õ™mµg¶Õ¿Ûvu·ÿÇÁàó§«ñ‡ÓÑ^gО|@üû™>·1yncõ¹µç6Öo¼}>ùÙ7~=ÿŠ¾Ãg·U\b>û?ü©=œÛV‹;~þð¨3œþ4øÃþl†?Í5ü¼„ÐÁ:!t`ðøÀ>»a~¸cðÃþðgCýiëÏÑéÁûãÙü]]_\\_^]ÿ²s<ºÝ^]îL€Y‹&¯\fE(BÑ:R4~þ©Û›¾‰´l‘ê
‹t8¿H‡cPÖ¤C 
\tH@Òw Õž2N2U„#áh;8ª†Î‘AhD#mFIØuú{o{GG³=z=øÓNÿâ÷ñe\fÿu?ßHuqûûkÂQúʀ$ ¹’Dñò%zx>\vOí\'ŽNËGy0WwëñLŠ’¤ÒªT*³@J’jeºé\t–Æ´ŒOÒԕÅy:9=|ð®½+íu:½éWý÷‡íý“áäëL~™uâÇÂulüþtž¼Ñ_·÷:Ãד/oÃvwçätØ>>Ûö֟íÇ£3î=ó©:9iŸ¯-Ͳ0ð>‡þÛîðýÉa{¯3[Ä«ñ¦Ï¿ßfïB\b\bÇ\'ÿ¤Ó99M#Àçõû÷\v4>ã׌϶~|Ö\b·æ!ܐp2ï4>éY‡cF[T¢•¨ôH¥f€©áYž©a³Y­›b\nS˜ÚàPð +ê[«ÝÐ/¶è½?\ffƒÕ¹¹¸NÅZ›K,¦¯G†‡!\f¹èC©C€£<¡\bE(Ú\nŠÂm‹p‘èD\'ÓJ[ÈR­˜i¥…£ºÉÇv˜v®®?Ü|¹þø"OoÞ¼yóļÒÃäÑwNŕøùy¥—´:8kžL®#}™«éK–å!\nQˆBTƉ¸V¯åpåCR+ÿ¹|”Þ(4Û§þø9|¼ºÜ9¹þÇÍÕåh§¼3ý]í|¸øtq}9ÚùòùãÅýè.ÃÅñ¦Õ^\fñÇÝR‹®ŽÎ÷\f®—kÒMv2¶OßÿqåËӐ½°;×^vmòÖº¹»}üîOœð¯÷Î?,Üï?ºŠ"+|\tøÀ>ð/(øþtÜ
_žðÅàøÀ¾ àöúà˾\nøÀ>ð/(øúƒ!ør„¯ÞøÀ>ð_§}\f¾<ák‚|àøšãëwÁ—\'|»àøÀ¾°àk»¸%WøàøÀ¾ à{}¾¾<᫃|àøÂñuÝǗ+|su¬<<BqÝýä#ùÈ·åòEéÐ/J³Ï(ü‹Ò«_¢ôòÏ(½ÿ!Jo\0ŒÖïøtpµ6pfn~I9¬”]¬›O.žWë\rnr“›Ü\f¯ù¥ˆEµÇÓ¬Tâ¤Ò¨5«²#͘À&0\tÌÙ`Æqe·^KâFÌZ=&0\tL`s6˜ÆøC0Nš`Öê`˜Àæºu’ŠdW\0f­L`˜À¦Höe0›À&0\tL`Šd_s˜À&0¹n«eˆdW
f˜À&0\tL‘ìË`ց\tL`˜Àɾ\ff\r˜À&0¹në8ŠdW
¦¦`˜À¦Hv05ý\0˜À&0E²s€©é˜À&0ÃsÒ±.’\rLM?À&0\tL‘ìË`V5ý\0˜À&0E²s€©é˜À&0kúéwE²!‚©é˜À&0)’LM?À&0\tL‘ì`jú
&0\tÌÀÀl[Þ+H05ý\0˜À&0E²s€©é˜À&0)’LM?À&0˜¯Ï÷E²!‚©é˜À&0)’LM?À&0\tL‘ìË`&š~€\tL`3°9ÌnO$"˜š~€\tL`˜"Ù9ÀÔôL`˜ÀÉÎ
æ\\M?0ĊóDLb“˜Ä\\¦˜Q:™¥÷™DiP”¶³Gé™ѻҰןn?žî·ßRÜèÛk”sâ›õ–ÌñŒ£.GãÌ5Bñò‡¯gå$)ãf³Z›q\\©¬=ƃ\tÆÑ»Ò1•©Lå5SyUº‹ZùxÛ6ŽGk$ 
\tHÀ@Ç¥Çæ)`•€$ 
\t¦€“¤•€ù\t˜€$ 
Ãp2çHÀüŒ\tH@€a\n8¹ú†€ù\tX! 
\tH@®íR”Ì `Ü" 
\tH@®íÊÌ"`“€$ 
\t¸¶E«Ì"à.
\tH@pm{m\b˜EÀ ûiˆ@"ÅÕEh>•2ù\tš½S&É£à­FÁÛ&\0Úá&7¹¹y7Ò[tc`ր\tL`˜À´èÆË`V\tL`˜À´èÆË`&.ºALb“˜ÄÜêE3rò4¯U3âŒm9y]"Tu‰MiJSšº86ø²–äT›Õ†‘±aäòÖnl·àø6l•(—ö¬\0ÌJ\v˜À&0\tL—ö¼\ff˜À&0\tL—ö¼\fæ.0\tL`ӕ="ٗÁl\0˜À&0)’}Ì:0\tL`˜"ٗÁ¬
˜À&0ƒsR+’\rÌ*0\tL`˜"ٗÁL€\tL`˜Àɾ\ff\fL`˜À\f\nÌÉ]"ÙðÀÔôL`˜Àɾ\bfµ¥é˜À&0)’LM?À&0˜ö±H6D05ý\0˜À&0E²s€©é˜À&0)’LM?À&0XÓO¿+’\rLM?À&0\tL‘ì`jú
&0\tL`Šdç\0SÓ0\tL`fÛò^A‚©é˜À&0)’LM?À&0\tL‘ìË`65ý\0˜ÀfX`¾>ßɆ\b¦¦`˜À¦Hv05ý\0˜À&0E²s€©é˜À&0›ÃìöD²!‚©é˜À&0)’LM?À&0\tL‘ì`ÎÕôóð\b3Ä|8OÄ$&1‰IÌeŠ¥“™QzŸI”V\0Ei;{”.œ½+\r{ýéöãé~ûý ō¾±F9\'¾éPoÉÏ8êr4ÎX#”\vÆgåj\\ ÆI<UuC1¦ï©~ïhúÞ{ÛÅ3žñ¼aڃî¢h>Þ¶ÓÌAõZãÒ$1.]…ƒó½é]¾8Úßë …(\\\'\niºzèkB+\bE(BŠP„ºžh
Bw[\bE(BŠP„ºÂhB›\bE(BŠÐÐç4-–$¡»\bE(BŠP„\nr!´P„"¡\bE¨ wBë\bE(BŠÐÀ\tÜ\v*È\rÐBŠP„"¡‚ÜE\b­"¡\bE(B*È]„С\bE(B8¡“r?Anx„j\'B(BŠP„\nr"T;BŠP„"T»\b¡\ríD\bE(B:¡“ÕZ¹áª\b¡\bE(B*È]ˆPíD\bE(BŠPAîB„j\'B(BŠÐàۉú]Anˆ„j\'B(BŠP„\nr"T;BŠP„"T»¡Ú‰ŠP„"4xBÛ;\v’PíD\bE(BŠPAîB„j\'B(BŠP„\nr"T;BŠP„†Nèëó}An€„Öµ!¡\bE(B¹\vª\b¡\bE(B*È]ˆPíD\bE(Bü\\h·\'È\r‘PíD\bE(BŠPAîB„j\'B(BŠP„\nr"t®v¢‡G˜aèÃyb(CÊP†ækh”NŠFé].QZ[¥=ôQº°hô®4ìõ§Û§ûí÷ƒ48úvT圧ÃÁ%=ã¨Ëñ9sõQmùCܳr\\-’çf³ZÛ\\žÚí
Œa\fãuÂxLº‹ùxÛ6Lð|à_X£Ðãøò„/øÀ>ðß$N_~ðUÀ>ð|AÁ7™O_nðÕZàøÀ¾ à›\\P¾üàk‚|àøÖm!Lðeo|àøÀ·n\v‡€/\v|\rð|àߺ­‚/\v|uð|àߺӀ/\v|A̐|ä#Ÿ:™\\ëd‚’3Ÿâ—üàÌØü’S1[5¢˜­Vãúº»Ù99LßjýÞÑô½¶÷¶KR’’T¹©Ñæhfn‰ë9 ×´™.\vͳÁùÁ´Í´×;Ôf\nMhnjšu©VAhŒP„"¡\bE¨u©!´‚P„"¡\bE¨u© ´ÚB(BŠP„®!¸ w„6ŠP„"¡\bä.Bè.BŠP„"¡‚ÜE\bm ¡\bE(Bׁ+Aî*\b­#¡\bE(B*È]„ÐBŠP„"¡‚ÜE\b­"¡\bE(B×ÁfAî*\bÕN„P„"¡\bä.D¨v"„"¡\bE¨ w!Bµ!¡\bEhè„N–`äGh¢\b¡\bE(B*È]ˆPíD\bE(BŠPAîB„j\'B(BŠÐàۉú]Anˆ„j\'B(BŠP„\nr"T;BŠP„"T»¡Ú‰ŠP„"4xBÛ;\v’PíD\bE(BŠPAîB„j\'B(BŠP„\nr"T;BŠP„†Nèëó}Anˆ„j\'B(BŠP„\nr!4ÖN„P„"¡\bä.D¨v"„"¡\b\r~.´Ûä†H¨v"„"¡\bE¨ w!Bµ!¡\bE(B¹\v:W;ÑÃ#Ì0ôá<1”¡\fe(Có54J\'E£ô.—(­-ŠÒú(]X4zWöúÓíÇÓýöûA};ªrΉÓáà’žqÔåøœ¹ú¨²ü!îYÁ<7›ÕžñŒg<‡Ëó¼tEóñ¶mªVQˆB¢…¡T;(̓Â…(D!\nQ8…“…ùQ£…(D!\n§p2/‰Âü(¬ …(D!\n§pr©\ns£°ÒB!\nQˆB®ÿ¢›(ÌBa…(D!\nQ¸þ˖ 0\v…»(D!\nQˆÂõ/~Ea\n(D!\nQˆÂõ¯ÎAa\nƒ¬Àa!\vYÈB\\”¥ù”ÕäGiƶšœÊäªqùT™Ür$휜¦oµ~ïhú^Û{Û%iø’î\fOÎÛé¯l0|øÓôƒŸýöéa{úÿ¢ÃöÃ~/c›íˆ<V뺤J9£Øj%{;N%z“*z—FïùÞ´ ­F«xÂn‚]ìb»ØÅ®•¿Šb7Æ.v±‹]ìb×jaE±[\tsµ0îr—»ÜåîFº[ð\na9©œÓaI«àEWg›¼Ù—/3™ÉLf²Ûrà³$Ÿ…^³œÄS]³\fT Õý´@]Ô¬-KÉn.s³‰ŒxY &ãÑñí´¦å¨õ®]’Ž¿\rþò—¿üå/]›\\¸¿uþò—¿üå/]¤\\¸¿5þò—¿ü寋•åυû[å/ùË_þòWþ\\¸¿\tùË_þò—¿òçÂýùË_þò—¿›ìïdm!ùsxþVøË_þò—¿ü•?ío³Å_þò—¿üå¯ü¹p›üå/ùËßMöw²Æ½ü9<õ_ñ—¿üå/åÏÅû«ÿŠ¿üå/ù+.Þ_ýWüå/ù»ÑþvÚÇòçýÕÅ_þò—¿ü•?ï¯þ+þò—¿üå¯ü¹xõ_ñ—¿üåïf÷_õ»òçýÕÅ_þò—¿ü•?ï¯þ+þò—¿üå¯ü¹pwõ_ñ—¿üåïfûÛ¶þ`þê¿â/ùË_þʟ‹÷WÿùË_þòWþ\\¼¿ú¯øË_þòw£ý}}¾/Ñ_ýWüå/ùË_ùsñþê¿â/ùË_þʟ‹÷WÿùË_þnöüo·\'Ñ_ýWüå/ùË_ùsñþê¿â/ùË_þʟ‹÷w®þ«‡G˜
ðÃy0€
\f`\0\fp”NGé\rIQZŒ¥\v4DéBÁѻҰןn?žî·ßðèÛñt”s¼D—¬ûŒ£.÷Fær­Z’‡í5¶/Ëö#¤#é[Iz@$›SþšÝ&v±‹]ìb»¦’‹bw»ØÅ.v±‹]3ÈE±ÛÀ.v±‹]ìnâ¼ñ±…‚d·Ž]ìb»ØÅ®¹(vkØÅ.v±‹]ì\n™‹b·Š]ìb»ØÝ@v\'7\t™Ãc7Á.v±‹]ìbWÈ\\»1v±‹]ìb»Bæ¢Ø­`»ØÅ.v7ÝI³•98vëZª°‹]ìb»BæÂØÕR…]ìb»Ø2Æ®–*ìb»ØÝDv\'Ë(\b™ÃcWKv±‹]ìbWÈ\\»Zª°‹]ìb»BæÂØÕR…]ìb»ÙR5^³WÈ»Zª°‹]ìb»BæÂØÕR…]ìb»Ø2Æ®–*ìb»ØÝHvÛþ\v’]-UØÅ.v±‹]!sQìÖ´Ta»ØÅ.v…Ì…±«¥\n»ØÅ.v7‘Ý×çûBæÙÕR…]ìb»Ø2Æ®–*ìb»ØÅ®¹0vµTa»ØÅîFÎív{BæÙÕR…]ìb»Ø2Æ®–*ìb»ØÅ®¹0vçj©zx„î>œ\'îr—»ÜånxîFé$o”ÞQ¥õUQºVB”.̽+\r{ýéöãé~ûý ݎ¾=G9gØé°sɨÏ8êrLÏ\\U]þPú¬`қÍj\réHG:Ò7‹ô9H>è.\níãmÛ8$®àŸøÄ\'>7qD|ÜÁgŽ|V[øÄ\'>ñ‰Ï\räsã3?>›øÄ\'>ñ‰Ï\räs2ϊÏüøÜÅ\'>ñ‰O|n Ÿ“Ë•ð™Ÿ\r|âŸøÄçv.Z‹Ï,|Öñ‰O|âŸÛ¹>³ðYÃ\'>ñ‰O|ngÑ0>³ðYÅ\'>ñ‰O|ng…>³ðd?ùÉO~òs\rª‚ò7ŸÒ¢üøÍÜZ”ä2zMè»,}}£w¥c\fcÃê‹\fc—ïh…£å(G9ªÇˆ£‹:š´8ÊQŽr”£\n8º°£MŽr”£å¨f#Ž.ìè.G9ÊQŽrTÅGv´ÁQŽr”£ÕuÄх­s”£å(G•qtaGkå(G9ÊQíG]ØÑ*G9ÊQŽrT\rGv4Ô$‚¤ ©>¤-èCJ²ö!Å­ÚÒÞ/ÇÕ"®îÖã\rn#l·ô¥/}Õ ÍÐsÐýy\nt{¯3|=ýûx;¶»;\'§ÃöñÙÞ°w6•ú ½¨³ãÇiV*qRiԚÕÇGÙÆáo»ØÅ.v±‹Ý<ٍãÊn½–č»IÜÂ.v±‹]ìb7OvFe<àmV°›ÄMìb»ØÅîvv\v™WÁî.v±‹]ìb»Bæ¢Øm`»ØÅ.v±+d.ŠÝ:v±‹]ìbw;Ð2¯‚Ýv±‹]ìb»Bæ¢Ø­b»ØÅ.v±+d.ŠÝ»ØÅ.v±»«Ë\n™WÁ®–*ìb»ØÅ®¹0vµTa»ØÅ.v…ÌE±[ÑR…]ìb»›ÈîdÅ!sxìj©Â.v±‹]ì\n™\vcWKv±‹]ìbWÈ\\»Zª°‹]ìbw#[ªú]!sˆìj©Â.v±‹]ì\n™\vcWKv±‹]ìbWÈ\\»Zª°‹]ìbw#Ùm[ø/HvµTa»ØÅ.v…Ì…±«¥\n»ØÅ.v±+d.Œ]-UØÅ.v±»‰ì¾>ß2‡ÇnÜÒR…]ìb»Ø2Æ®–*ìb»ØÅ®¹0vµTa»ØÅîFÎív{BæÙÕR…]ìb»Ø2Æ®–*ìb»ØÅ®¹0vçj©zx„î>œ\'îr—»ÜånxîFé$o”ÞQ¥õUQºVB”.̽+\r{ýéöãé~ûý ݎ¾=G9gØé°sɨÏ8êrLÏ\\Õ\\þPú¬`қÍj\réHG:Ò7‹ô9H>è.\níãmÛ8$Nð‰O|⟛8">îà3O>c|âŸøÄçò9\tˆñ™Ÿ|âŸøÄçò9™gÅgn|6[øÄ\'>ñ‰Ï\räsr¹>ó㳉O|âŸøÜÎEkñ™…Ï]|âŸøÄçv.ǃÏ,|6ð‰O|âŸÛY4ŒÏ,|Öñ‰O|âŸÛY¡„Ï,|Y…ÄO~ò“Ÿü\\ƒ*¤ üͧ´(?~3·ÕyÖ.Kß³ÁùÁä­tÜëM?oö÷:<æ1õY\0\'ˆƒÄ 1ˆ-‰³:ˆcƒÄ 1ˆ-’³:ˆ+ 1ˆA\fbÁ¢é•A¼Û1ˆA\fbƒX4½:ˆ› 1ˆA\fb‹¦Wñ.ˆA\fbƒØú;¢éÕAÜ\x001ˆA\fbƒX4½:ˆë 1ˆA\fb‹¦Wq\rÄ 1ˆAlm[Ñôê Ö¬bƒÄ M¯bÍZ 1ˆA\fbÑô\n!Ö¬bƒÄÛ
ñdmÑtxkÖ1ˆA\fb‹¦WqC³ˆA\fbƒX4½Bˆ5kÄ ñ–4kõ»¢é!Ö¬bƒÄ M¯bÍZ 1ˆA\fbÑô\n!Ö¬bƒÄ[qÛ2ˆAB¬Y\vÄ 1ˆA,š^!̵@\fbƒÄ¢éB¬Y\vÄ 1ˆ·â×çû¢é!Ö¬bƒÄ M¯bÍZ 1ˆA\fbÑôê ®kÖ1ˆA\fâ-™#îöDÓ!B¬Y\vÄ 1ˆA,š^!̵@\fbƒÄ¢éB<W³ÖÃ#̐øá<‘˜Ä$&1‰×Aâ(,ŽÒû™¢´r+JW…ˆÒ…‹£w¥a¯?Ý~<Ýo¿¤äÑ·#ì(çä;š.™ùG]Žò™k»jËnŸŒ|³Y­Aò‡ü¦#?ÒÝEé}¼m‡Í5 ¨@êvŒš;@ÍÔ*P\nT u+@ÄÊ@ÍÔ¨@*Pº Nækš¨1P\nT u+@\\\bÔü@­\0¨@*P-ê\vÔÌ ÖZ@*P\nTK
5;¨M ¨@ªe fu¨@*Pªö\t¨ÙA\r²¾‰¨D%*Q‰º–õMA‰œOÑR~ glZš×ãáÙÞé`ü.ïÎ‰ò›r¥R~SÌypx¸óáâþò¿w.o®ÿvuûëäOôE}ûí·ßfâûoa¿Ã7®ÄÙñü©žµO&mbÞ«3?¯ÿS}¿\'”±!;cgäáß<þ=±×¬g“«u·%Ïl3`œß§Úò}J÷^x¸ø¦\\‰ËoþÓábtýñêú—Ááá‹F•gUžESyF„ƒó½á·CÃã‡ïtNNÓ/ú½£é›ŽÚí馣?¾3PNo»F–ÔÛÊQßôeîaß×»³p-¬†ha«U~Sî¿íßOe{b¤öùâ÷ñû¥ ú¾y›­‚¼Ã£ÎL`23Û$‚’B\bZ8-Ü8‡Ò׳Dò@\0
\b@›P8@ÿI&¸\rƒ!1ˆA\fÚ$ƒ*Å\\3ñ^ÃXË§Köçé…&“¤?u±Ä1>3/5y½+Ÿ˜ú~ÒɄ²µ:²Z{™tqµ tûyH—¤š‘Žt¤#]0Ò¹Ý,‹_™\vQ’V~U#µ<.!|é‚AØÁv«ÂnŽ;¹\fëŠaq‹XÄ"±¸ú1àË+õb±XÄ"±ˆÅ•³8Çz»X,†Å:±ˆE,bqå,αj.‹a±†E,b‹X\\9‹s¬}‹ÅbX¬b‹XÄ"W?·øò\n¶X,†Å‹XÄ"±¸zÛ.¹\t„Å‹XÄ"±¸rçXM‹Å°XÁ"±ˆE,ª£ÁâW¨…·z,¹ÈE.n¥‹ù®ìº¦®®Ù°I斜¸•CŸiª>¹ò:U©JUª®CKŽJ¸,ØíÂv°ƒìÖ¡ûvY°kÀv°ƒìÖ¡ÑvY°«Ãv°ƒìÖ¡§vY°«Áv°ƒìÖ¡}vY°«Âv°ƒìÖ¡SvY°K`;ØÁvëл,ØÅ°ƒì`»uè]ì*°ƒì`»uhu]ìâ »ZhG;ÚÑNWËÒ»Z‚ÒrÍXâŒ\r,³¬L÷^˜Ê7åV«ü¦Ü99¼?\ff[Ù¹¹¸Þ9¹¾»¿øôiüVÛ9¹»ûrq=šå™`–gQY~ÉoÞª\vØøðêÇñð¨3¤ÝèìXîñÅÍÓn!0\rÏöN{ÓÞéÜ:U*tzV§ïÑ¡•¨D¥µW©îp©·wú¾÷\fG½Û«_®®\'Së¢Ðä%!±ˆEëhÑãmZBõÀ‡F$2"\b´ýuòÞº¹½}ì?“JR/WvËqm7^U›¯êÍ[õÊÏ¥ý?PK\b­ùþ’ \0\0`]\n\0PK
-\0\b\0\b\0݄îZ­ùþ’ \0\0`]\n\0:\0\0\0\0\0\0\0\0\0 \0¤\0\0\0\0criteria-set-11-exported-2025-07-14T16:38:58.967Z1073.jsonPK\0\0\0\0
\0
\0h\0\0\0ú \0\0\0\0',criteriaSetId:null},s=t.sanitizeObject(e);expect(s.zipBinaryString).toBe(e.zipBinaryString)}),test("allows clean string without altering it",()=>{const e=t.sanitizeObject({comment:"This is a safe comment."});expect(e.comment).toBe("This is a safe comment.")}),test("sanitizes basic XSS attempt",()=>{const e=t.sanitizeObject({comment:'<script>alert("xss")<\/script>'});expect(e.comment).toBe("")}),test("sanitizes inline XSS",()=>{const e=t.sanitizeObject({title:"<img src=x onerror=alert(1)>"});expect(e.title).toBe("")}),test("sanitizes encoded XSS attempt",()=>{const e=t.sanitizeObject({encoded:"%3Cscript%3Ealert(1)%3C%2Fscript%3E"});expect(e.encoded).toBe("")}),test("sanitizes nested objects",()=>{const e=t.sanitizeObject({level1:{level2:{content:"<script>evil()<\/script>"}}});expect(e.level1.level2.content).toBe("")}),test("sanitizes arrays inside objects",()=>{const e=t.sanitizeObject({tags:["safe","<img src=x onerror=alert(1)>"]});expect(e.tags[0]).toBe("safe"),expect(e.tags[1]).toBe("")}),test("preserves clean strings in array",()=>{const e=t.sanitizeObject({tags:["tag1","tag2","tag3"]});expect(e.tags).toEqual(["tag1","tag2","tag3"])}),test("sanitizes SVG-based XSS",()=>{const e=t.sanitizeObject({x:"<svg/onload=alert(1)>"});expect(e.x).toBe("")}),test("sanitizes strings and ignores non-string values",()=>{const e={num:123,bool:!0,nullValue:null,undef:void 0,notReplace:"a < b"},s=t.sanitizeObject(e);expect(s.num).toBe(123),expect(s.bool).toBe(!0),expect(s.nullValue).toBeNull(),expect(s.undef).toBeUndefined(),expect(s.notReplace).toBe("a &lt; b")}),test("sanitizes XSS in deep mixed structures",()=>{const e=t.sanitizeObject({items:[{safe:"ok"},{unsafe:'<iframe src="javascript:alert(1)">'}]});expect(e.items[1].unsafe).toBe("")}),test("sanitizes <a> with javascript href",()=>{const e=t.sanitizeObject({link:'<a href="javascript:alert(1)">click</a>'});expect(e.link).toBe("click")}),test("removes unexpected <object> tag",()=>{const e=t.sanitizeObject({embed:'<object data="evil.swf"></object>'});expect(e.embed).toBe("")}),test("removes unexpected <iframe> tag",()=>{const e=t.sanitizeObject({iframe:'<iframe src="http://malicious.com"></iframe>'});expect(e.iframe).toBe("")}),test("removes style attribute with expression()",()=>{const e=t.sanitizeObject({style:'<div style="width:expression(alert(1))">'});expect(e.style).toBe("")}),test("encodes < in string",()=>{const e=t.sanitizeObject({text:"a < b"});expect(e.text).toBe("a &lt; b")}),test("allows > in string without encoding",()=>{const e=t.sanitizeObject({text:"a > b"});expect(e.text).toBe("a > b")}),test("allows & in string without encoding",()=>{const e=t.sanitizeObject({text:"Tom & Jerry"});expect(e.text).toBe("Tom & Jerry")}),test('allows " in string without encoding',()=>{const e=t.sanitizeObject({text:'She said "hello"'});expect(e.text).toBe('She said "hello"')}),test("allows ' in string without encoding",()=>{const e=t.sanitizeObject({text:"It's fine"});expect(e.text).toBe("It's fine")}),test("encodes only special HTML characters like < when needed",()=>{const e=t.sanitizeObject({text:'if (a < b && b > c) { console.log("yes"); }'});expect(e.text).toBe('if (a &lt; b &amp;&amp; b &gt; c) { console.log("yes"); }')}),test("sanitizes special chars inside deeply nested object",()=>{const e={user:{profile:{bio:"I'm <strong>bold</strong> & smart"}}},s=t.sanitizeObject(e);expect(s.user.profile.bio).toBe("I'm bold &amp; smart")}),test("sanitizes array of special char strings",()=>{const e=t.sanitizeObject({messages:["Hello & welcome","a < b",'Use "quotes"',"It's fine"]});expect(e.messages).toEqual(["Hello & welcome","a &lt; b",'Use "quotes"',"It's fine"])})});