@boxyhq/saml-jackson 0.4.3 → 1.0.0

package/dist/db/sql/sql.js

@@ -2,7 +2,11 @@
 /*eslint no-constant-condition: ["error", { "checkLoops": false }]*/
 var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
 }) : (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
     o[k2] = m[k];
@@ -43,8 +47,8 @@ class Sql {
         return __awaiter(this, void 0, void 0, function* () {
             while (true) {
                 try {
-                    this.connection = yield (0, typeorm_1.createConnection)({
-                        name: this.options.type + Math.floor(Math.random() * 100000),
+                    this.dataSource = new typeorm_1.DataSource({
+                        // name: this.options.type! + Math.floor(Math.random() * 100000),
                         type: this.options.type,
                         url: this.options.url,
                         synchronize: true,
@@ -52,6 +56,7 @@ class Sql {
                         logging: ['error'],
                         entities: [JacksonStore_1.JacksonStore, JacksonIndex_1.JacksonIndex, JacksonTTL_1.JacksonTTL],
                     });
+                    yield this.dataSource.initialize();
                     break;
                 }
                 catch (err) {
@@ -60,9 +65,9 @@ class Sql {
                     continue;
                 }
             }
-            this.storeRepository = this.connection.getRepository(JacksonStore_1.JacksonStore);
-            this.indexRepository = this.connection.getRepository(JacksonIndex_1.JacksonIndex);
-            this.ttlRepository = this.connection.getRepository(JacksonTTL_1.JacksonTTL);
+            this.storeRepository = this.dataSource.getRepository(JacksonStore_1.JacksonStore);
+            this.indexRepository = this.dataSource.getRepository(JacksonIndex_1.JacksonIndex);
+            this.ttlRepository = this.dataSource.getRepository(JacksonTTL_1.JacksonTTL);
             if (this.options.ttl && this.options.cleanupLimit) {
                 this.ttlCleanup = () => __awaiter(this, void 0, void 0, function* () {
                     const now = Date.now();
@@ -95,7 +100,7 @@ class Sql {
     }
     get(namespace, key) {
         return __awaiter(this, void 0, void 0, function* () {
-            const res = yield this.storeRepository.findOne({
+            const res = yield this.storeRepository.findOneBy({
                 key: dbutils.key(namespace, key),
             });
             if (res && res.value) {
@@ -108,8 +113,9 @@ class Sql {
             return null;
         });
     }
-    getAll(namespace) {
+    getAll(namespace, pageOffset, pageLimit) {
         return __awaiter(this, void 0, void 0, function* () {
+            const offsetAndLimitValueCheck = !dbutils.isNumeric(pageOffset) && !dbutils.isNumeric(pageLimit);
             const response = yield this.storeRepository.find({
                 where: { key: (0, typeorm_1.Like)(`%${namespace}%`) },
                 select: ['value', 'iv', 'tag'],
@@ -117,6 +123,8 @@ class Sql {
                     ['createdAt']: 'DESC',
                     // ['createdAt']: 'ASC',
                 },
+                take: offsetAndLimitValueCheck ? this.options.pageLimit : pageLimit,
+                skip: offsetAndLimitValueCheck ? 0 : pageOffset,
             });
             const returnValue = JSON.parse(JSON.stringify(response));
             if (returnValue)
@@ -126,7 +134,7 @@ class Sql {
     }
     getByIndex(namespace, idx) {
         return __awaiter(this, void 0, void 0, function* () {
-            const res = yield this.indexRepository.find({
+            const res = yield this.indexRepository.findBy({
                 key: dbutils.keyForIndex(namespace, idx),
             });
             const ret = [];
@@ -144,7 +152,7 @@ class Sql {
     }
     put(namespace, key, val, ttl = 0, ...indexes) {
         return __awaiter(this, void 0, void 0, function* () {
-            yield this.connection.transaction((transactionalEntityManager) => __awaiter(this, void 0, void 0, function* () {
+            yield this.dataSource.transaction((transactionalEntityManager) => __awaiter(this, void 0, void 0, function* () {
                 const dbKey = dbutils.key(namespace, key);
                 const store = new JacksonStore_1.JacksonStore();
                 store.key = dbKey;
@@ -162,7 +170,7 @@ class Sql {
                 // no ttl support for secondary indexes
                 for (const idx of indexes || []) {
                     const key = dbutils.keyForIndex(namespace, idx);
-                    const rec = yield this.indexRepository.findOne({
+                    const rec = yield this.indexRepository.findOneBy({
                         key,
                         storeKey: store.key,
                     });

package/dist/db/store.js

@@ -1,7 +1,11 @@
 "use strict";
 var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
 }) : (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
     o[k2] = m[k];
@@ -40,9 +44,9 @@ class Store {
             return yield this.db.get(this.namespace, dbutils.keyDigest(key));
         });
     }
-    getAll() {
+    getAll(pageOffset, pageLimit) {
         return __awaiter(this, void 0, void 0, function* () {
-            return yield this.db.getAll(this.namespace);
+            return yield this.db.getAll(this.namespace, pageOffset, pageLimit);
         });
     }
     getByIndex(idx) {

package/dist/db/utils.d.ts

@@ -4,4 +4,7 @@ export declare const keyForIndex: (namespace: string, idx: Index) => string;
 export declare const keyDigest: (k: string) => string;
 export declare const keyFromParts: (...parts: string[]) => string;
 export declare const sleep: (ms: number) => Promise<void>;
+export declare function isNumeric(num: any): boolean;
 export declare const indexPrefix = "_index";
+export declare const createdAtPrefix = "_createdAt";
+export declare const modifiedAtPrefix = "_modifiedAt";

package/dist/db/utils.js

@@ -3,7 +3,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.indexPrefix = exports.sleep = exports.keyFromParts = exports.keyDigest = exports.keyForIndex = exports.key = void 0;
+exports.modifiedAtPrefix = exports.createdAtPrefix = exports.indexPrefix = exports.isNumeric = exports.sleep = exports.keyFromParts = exports.keyDigest = exports.keyForIndex = exports.key = void 0;
 const ripemd160_1 = __importDefault(require("ripemd160"));
 const key = (namespace, k) => {
     return namespace + ':' + k;
@@ -26,4 +26,10 @@ const sleep = (ms) => {
     return new Promise((resolve) => setTimeout(resolve, ms));
 };
 exports.sleep = sleep;
+function isNumeric(num) {
+    return !isNaN(num);
+}
+exports.isNumeric = isNumeric;
 exports.indexPrefix = '_index';
+exports.createdAtPrefix = '_createdAt';
+exports.modifiedAtPrefix = '_modifiedAt';

package/dist/index.d.ts

@@ -1,11 +1,15 @@
+import { AdminController } from './controller/admin';
 import { APIController } from './controller/api';
 import { OAuthController } from './controller/oauth';
-import { AdminController } from './controller/admin';
+import { HealthCheckController } from './controller/health-check';
+import { LogoutController } from './controller/signout';
 import { JacksonOption } from './typings';
 export declare const controllers: (opts: JacksonOption) => Promise<{
     apiController: APIController;
     oauthController: OAuthController;
     adminController: AdminController;
+    logoutController: LogoutController;
+    healthCheckController: HealthCheckController;
 }>;
 export default controllers;
 export * from './typings';

package/dist/index.js

@@ -1,7 +1,11 @@
 "use strict";
 var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
 }) : (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
     o[k2] = m[k];
@@ -23,10 +27,13 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.controllers = void 0;
+const admin_1 = require("./controller/admin");
 const api_1 = require("./controller/api");
 const oauth_1 = require("./controller/oauth");
-const admin_1 = require("./controller/admin");
+const health_check_1 = require("./controller/health-check");
+const signout_1 = require("./controller/signout");
 const db_1 = __importDefault(require("./db/db"));
+const defaultDb_1 = __importDefault(require("./db/defaultDb"));
 const read_config_1 = __importDefault(require("./read-config"));
 const defaultOpts = (opts) => {
     const newOpts = Object.assign({}, opts);
@@ -39,13 +46,9 @@ const defaultOpts = (opts) => {
     newOpts.samlAudience = newOpts.samlAudience || 'https://saml.boxyhq.com';
     newOpts.preLoadedConfig = newOpts.preLoadedConfig || ''; // path to folder containing static SAML config that will be preloaded. This is useful for self-hosted deployments that only have to support a single tenant (or small number of known tenants).
     newOpts.idpEnabled = newOpts.idpEnabled === true;
-    newOpts.db = newOpts.db || {};
-    newOpts.db.engine = newOpts.db.engine || 'sql';
-    newOpts.db.url = newOpts.db.url || 'postgresql://postgres:postgres@localhost:5432/postgres';
-    newOpts.db.type = newOpts.db.type || 'postgres'; // Only needed if DB_ENGINE is sql.
-    newOpts.db.ttl = (newOpts.db.ttl || 300) * 1; // TTL for the code, session and token stores (in seconds)
-    newOpts.db.cleanupLimit = (newOpts.db.cleanupLimit || 1000) * 1; // Limit cleanup of TTL entries to this many items at a time
+    (0, defaultDb_1.default)(newOpts);
     newOpts.clientSecretVerifier = newOpts.clientSecretVerifier || 'dummy';
+    newOpts.db.pageLimit = newOpts.db.pageLimit || 50;
     return newOpts;
 };
 const controllers = (opts) => __awaiter(void 0, void 0, void 0, function* () {
@@ -55,8 +58,11 @@ const controllers = (opts) => __awaiter(void 0, void 0, void 0, function* () {
     const sessionStore = db.store('oauth:session', opts.db.ttl);
     const codeStore = db.store('oauth:code', opts.db.ttl);
     const tokenStore = db.store('oauth:token', opts.db.ttl);
+    const healthCheckStore = db.store('_health');
     const apiController = new api_1.APIController({ configStore });
     const adminController = new admin_1.AdminController({ configStore });
+    const healthCheckController = new health_check_1.HealthCheckController({ healthCheckStore });
+    yield healthCheckController.init();
     const oauthController = new oauth_1.OAuthController({
         configStore,
         sessionStore,
@@ -64,6 +70,11 @@ const controllers = (opts) => __awaiter(void 0, void 0, void 0, function* () {
         tokenStore,
         opts,
     });
+    const logoutController = new signout_1.LogoutController({
+        configStore,
+        sessionStore,
+        opts,
+    });
     // write pre-loaded config if present
     if (opts.preLoadedConfig && opts.preLoadedConfig.length > 0) {
         const configs = yield (0, read_config_1.default)(opts.preLoadedConfig);
@@ -78,6 +89,8 @@ const controllers = (opts) => __awaiter(void 0, void 0, void 0, function* () {
         apiController,
         oauthController,
         adminController,
+        logoutController,
+        healthCheckController,
     };
 });
 exports.controllers = controllers;

package/dist/read-config.js

@@ -1,7 +1,11 @@
 "use strict";
 var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
 }) : (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
     o[k2] = m[k];

package/dist/saml/saml.d.ts

@@ -1,5 +1,6 @@
 import { SAMLProfile, SAMLReq } from '../typings';
 export declare const stripCertHeaderAndFooter: (cert: string) => string;
+declare function PubKeyInfo(this: any, pubKey: string): void;
 declare const _default: {
     request: ({ ssoUrl, entityID, callbackUrl, isPassive, forceAuthn, identifierFormat, providerName, signingKey, publicKey, }: SAMLReq) => {
         id: string;
@@ -8,5 +9,7 @@ declare const _default: {
     parseAsync: (rawAssertion: string) => Promise<SAMLProfile>;
     validateAsync: (rawAssertion: string, options: any) => Promise<SAMLProfile>;
     parseMetadataAsync: (idpMeta: string) => Promise<Record<string, any>>;
+    PubKeyInfo: typeof PubKeyInfo;
+    certToPEM: (cert: string) => string;
 };
 export default _default;

package/dist/saml/saml.js

@@ -1,7 +1,11 @@
 "use strict";
 var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
 }) : (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
     o[k2] = m[k];
@@ -33,12 +37,12 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.stripCertHeaderAndFooter = void 0;
 const saml20_1 = __importDefault(require("@boxyhq/saml20"));
-const xml2js_1 = __importDefault(require("xml2js"));
+const crypto_1 = __importDefault(require("crypto"));
+const rambda = __importStar(require("rambda"));
 const thumbprint_1 = __importDefault(require("thumbprint"));
 const xml_crypto_1 = __importDefault(require("xml-crypto"));
-const rambda = __importStar(require("rambda"));
+const xml2js_1 = __importDefault(require("xml2js"));
 const xmlbuilder_1 = __importDefault(require("xmlbuilder"));
-const crypto_1 = __importDefault(require("crypto"));
 const claims_1 = __importDefault(require("./claims"));
 const idPrefix = '_';
 const authnXPath = '/*[local-name(.)="AuthnRequest" and namespace-uri(.)="urn:oasis:names:tc:SAML:2.0:protocol"]';
@@ -158,6 +162,8 @@ const parseMetadataAsync = (idpMeta) => __awaiter(void 0, void 0, void 0, functi
             let ssoPostUrl = null;
             let ssoRedirectUrl = null;
             let loginType = 'idp';
+            let sloRedirectUrl = null;
+            let sloPostUrl = null;
             let ssoDes = rambda.pathOr(null, 'EntityDescriptor.IDPSSODescriptor', res);
             if (!ssoDes) {
                 ssoDes = rambda.pathOr([], 'EntityDescriptor.SPSSODescriptor', res);
@@ -183,9 +189,19 @@ const parseMetadataAsync = (idpMeta) => __awaiter(void 0, void 0, void 0, functi
                         ssoRedirectUrl = rambda.path('$.Location', ssoSvcRec);
                     }
                 }
+                const sloSvc = ssoDesRec['SingleLogoutService'] || [];
+                for (const sloSvcRec of sloSvc) {
+                    if (rambda.pathOr('', '$.Binding', sloSvcRec).endsWith('HTTP-Redirect')) {
+                        sloRedirectUrl = rambda.path('$.Location', sloSvcRec);
+                    }
+                    else if (rambda.pathOr('', '$.Binding', sloSvcRec).endsWith('HTTP-POST')) {
+                        sloPostUrl = rambda.path('$.Location', sloSvcRec);
+                    }
+                }
             }
             const ret = {
                 sso: {},
+                slo: {},
             };
             if (entityID) {
                 ret.entityID = entityID;
@@ -199,9 +215,26 @@ const parseMetadataAsync = (idpMeta) => __awaiter(void 0, void 0, void 0, functi
             if (ssoRedirectUrl) {
                 ret.sso.redirectUrl = ssoRedirectUrl;
             }
+            if (sloRedirectUrl) {
+                ret.slo.redirectUrl = sloRedirectUrl;
+            }
+            if (sloPostUrl) {
+                ret.slo.postUrl = sloPostUrl;
+            }
             ret.loginType = loginType;
             resolve(ret);
         });
     });
 });
-exports.default = { request, parseAsync, validateAsync, parseMetadataAsync };
+const certToPEM = (cert) => {
+    if (cert.indexOf('BEGIN CERTIFICATE') === -1 && cert.indexOf('END CERTIFICATE') === -1) {
+        const matches = cert.match(/.{1,64}/g);
+        if (matches) {
+            cert = matches.join('\n');
+            cert = '-----BEGIN CERTIFICATE-----\n' + cert;
+            cert = cert + '\n-----END CERTIFICATE-----\n';
+        }
+    }
+    return cert;
+};
+exports.default = { request, parseAsync, validateAsync, parseMetadataAsync, PubKeyInfo, certToPEM };

package/dist/saml/x509.js

@@ -1,7 +1,11 @@
 "use strict";
 var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
 }) : (function(o, m, k, k2) {
     if (k2 === undefined) k2 = k;
     o[k2] = m[k];

package/dist/typings.d.ts

@@ -1,6 +1,6 @@
 export declare type IdPConfig = {
     defaultRedirectUrl: string;
-    redirectUrl: string;
+    redirectUrl: string[] | string;
     tenant: string;
     product: string;
     name: string;
@@ -8,14 +8,9 @@ export declare type IdPConfig = {
     rawMetadata?: string;
     encodedRawMetadata?: string;
 };
-export interface OAuth {
-    client_id: string;
-    client_secret: string;
-    provider: string;
-}
 export interface IAPIController {
-    config(body: IdPConfig): Promise<OAuth>;
-    updateConfig(body: any): Promise<void>;
+    config(body: IdPConfig): Promise<any>;
+    updateConfig(body: any): Promise<any>;
     getConfig(body: {
         clientID?: string;
         tenant?: string;
@@ -40,7 +35,13 @@ export interface IOAuthController {
     userInfo(token: string): Promise<Profile>;
 }
 export interface IAdminController {
-    getAllConfig(): any;
+    getAllConfig(pageOffset?: number, pageLimit?: number): any;
+}
+export interface IHealthCheckController {
+    status(): Promise<{
+        status: number;
+    }>;
+    init(): Promise<void>;
 }
 export interface OAuthReqBody {
     response_type: 'code';
@@ -80,14 +81,14 @@ export interface Index {
     value: string;
 }
 export interface DatabaseDriver {
-    getAll(namespace: string): Promise<unknown[]>;
+    getAll(namespace: string, pageOffset?: number, pageLimit?: number): Promise<unknown[]>;
     get(namespace: string, key: string): Promise<any>;
     put(namespace: string, key: string, val: any, ttl: number, ...indexes: Index[]): Promise<any>;
     delete(namespace: string, key: string): Promise<any>;
     getByIndex(namespace: string, idx: Index): Promise<any>;
 }
 export interface Storable {
-    getAll(): Promise<unknown[]>;
+    getAll(pageOffset?: number, pageLimit?: number): Promise<unknown[]>;
     get(key: string): Promise<any>;
     put(key: string, val: any, ...indexes: Index[]): Promise<any>;
     delete(key: string): Promise<any>;
@@ -108,6 +109,7 @@ export interface DatabaseOption {
     ttl?: number;
     cleanupLimit?: number;
     encryptionKey?: string;
+    pageLimit?: number;
 }
 export interface SAMLReq {
     ssoUrl?: string;
@@ -135,3 +137,39 @@ export interface JacksonOption {
     db: DatabaseOption;
     clientSecretVerifier?: string;
 }
+export interface SLORequestParams {
+    nameId: string;
+    tenant: string;
+    product: string;
+    redirectUrl?: string;
+}
+interface Metadata {
+    sso: {
+        postUrl?: string;
+        redirectUrl: string;
+    };
+    slo: {
+        redirectUrl?: string;
+        postUrl?: string;
+    };
+    entityID: string;
+    thumbprint: string;
+    loginType: 'idp';
+    provider: string;
+}
+export interface SAMLConfig {
+    idpMetadata: Metadata;
+    certs: {
+        privateKey: string;
+        publicKey: string;
+    };
+    defaultRedirectUrl: string;
+}
+export interface ILogoutController {
+    createRequest(body: SLORequestParams): Promise<{
+        logoutUrl: string | null;
+        logoutForm: string | null;
+    }>;
+    handleResponse(body: SAMLResponsePayload): Promise<any>;
+}
+export {};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@boxyhq/saml-jackson",
-  "version": "0.4.3",
+  "version": "1.0.0",
   "description": "SAML Jackson library",
   "keywords": [
     "SAML 2.0"
@@ -18,12 +18,12 @@
   ],
   "scripts": {
     "build": "tsc -p tsconfig.build.json",
-    "db:migration:generate:postgres": "ts-node -r tsconfig-paths/register ./node_modules/typeorm/cli.js migration:generate --config ormconfig.js  -n createdAt",
-    "db:migration:generate:mysql": "cross-env DB_TYPE=mysql DB_URL=mysql://root:mysql@localhost:3307/mysql ts-node -r tsconfig-paths/register ./node_modules/typeorm/cli.js migration:generate --config ormconfig.js  -n createdAt",
-    "db:migration:generate:mariadb": "cross-env DB_TYPE=mariadb DB_URL=mariadb://root@localhost:3306/mysql ts-node -r tsconfig-paths/register ./node_modules/typeorm/cli.js migration:generate --config ormconfig.js  -n createdAt",
-    "db:migration:run:postgres": "ts-node --transpile-only ./node_modules/typeorm/cli.js migration:run",
-    "db:migration:run:mysql": "cross-env DB_TYPE=mysql DB_URL=mysql://root:mysql@localhost:3307/mysql ts-node --transpile-only ./node_modules/typeorm/cli.js migration:run",
-    "db:migration:run:mariadb": "cross-env DB_TYPE=mariadb DB_URL=mariadb://root@localhost:3306/mysql ts-node --transpile-only ./node_modules/typeorm/cli.js migration:run",
+    "db:migration:generate:postgres": "ts-node --transpile-only ./node_modules/typeorm/cli.js migration:generate -d typeorm.ts  migration/postgres/pg_${MIGRATION_NAME}",
+    "db:migration:generate:mysql": "cross-env DB_TYPE=mysql DB_URL=mysql://root:mysql@localhost:3307/mysql ts-node --transpile-only ./node_modules/typeorm/cli.js migration:generate -d typeorm.ts migration/mysql/ms_${MIGRATION_NAME}",
+    "db:migration:generate:mariadb": "cross-env DB_TYPE=mariadb DB_URL=mariadb://root@localhost:3306/mysql ts-node --transpile-only ./node_modules/typeorm/cli.js migration:generate -d typeorm.ts migration/mariadb/md_${MIGRATION_NAME}",
+    "db:migration:run:postgres": "ts-node --transpile-only ./node_modules/typeorm/cli.js migration:run -d typeorm.ts",
+    "db:migration:run:mysql": "cross-env DB_TYPE=mysql DB_URL=mysql://root:mysql@localhost:3307/mysql ts-node --transpile-only ./node_modules/typeorm/cli.js migration:run -d typeorm.ts",
+    "db:migration:run:mariadb": "cross-env DB_TYPE=mariadb DB_URL=mariadb://root@localhost:3306/mysql ts-node --transpile-only ./node_modules/typeorm/cli.js migration:run -d typeorm.ts",
     "prepublishOnly": "npm run build",
     "test": "tap --ts --timeout=100 --coverage test/**/*.test.ts",
     "sort": "npx sort-package-json"
@@ -36,38 +36,38 @@
     "statements": 70
   },
   "dependencies": {
-    "@boxyhq/saml20": "0.2.0",
+    "@boxyhq/saml20": "0.2.1",
     "@opentelemetry/api-metrics": "0.27.0",
-    "@peculiar/webcrypto": "1.2.3",
+    "@peculiar/webcrypto": "1.3.2",
     "@peculiar/x509": "1.6.1",
-    "mongodb": "4.3.1",
+    "mongodb": "4.4.1",
     "mysql2": "2.3.3",
     "pg": "8.7.3",
-    "rambda": "7.0.2",
-    "redis": "4.0.3",
+    "rambda": "7.0.3",
+    "redis": "4.0.4",
     "reflect-metadata": "0.1.13",
     "ripemd160": "2.0.2",
     "thumbprint": "0.0.1",
-    "typeorm": "0.2.41",
+    "typeorm": "0.3.3",
     "xml-crypto": "2.1.3",
     "xml2js": "0.4.23",
     "xmlbuilder": "15.1.1"
   },
   "devDependencies": {
-    "@types/node": "17.0.17",
+    "@types/node": "17.0.23",
     "@types/sinon": "10.0.11",
-    "@types/tap": "15.0.5",
-    "@typescript-eslint/eslint-plugin": "5.11.0",
-    "@typescript-eslint/parser": "5.11.0",
+    "@types/tap": "15.0.6",
+    "@typescript-eslint/eslint-plugin": "5.16.0",
+    "@typescript-eslint/parser": "5.16.0",
     "cross-env": "7.0.3",
-    "eslint": "8.9.0",
-    "eslint-config-prettier": "8.3.0",
-    "prettier": "2.5.1",
+    "eslint": "8.11.0",
+    "eslint-config-prettier": "8.5.0",
+    "prettier": "2.6.0",
     "sinon": "13.0.1",
-    "tap": "15.1.6",
-    "ts-node": "10.5.0",
-    "tsconfig-paths": "3.12.0",
-    "typescript": "4.5.5"
+    "tap": "16.0.1",
+    "ts-node": "10.7.0",
+    "tsconfig-paths": "3.14.1",
+    "typescript": "4.6.2"
   },
   "engines": {
     "node": ">=14.18.1 <=16.x"