@budibase/backend-core 3.2.26 → 3.2.27

package/dist/src/logging/system.js

@@ -1,110 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getSingleFileMaxSizeInfo = getSingleFileMaxSizeInfo;
-exports.localFileDestination = localFileDestination;
-exports.getLogReadStream = getLogReadStream;
-const fs_1 = __importDefault(require("fs"));
-const path_1 = __importDefault(require("path"));
-const rfs = __importStar(require("rotating-file-stream"));
-const environment_1 = __importDefault(require("../environment"));
-const objectStore_1 = require("../objectStore");
-const logsFileName = `budibase.log`;
-const budibaseLogsHistoryFileName = "budibase-logs-history.txt";
-const logsPath = path_1.default.join((0, objectStore_1.budibaseTempDir)(), "systemlogs");
-function getFullPath(fileName) {
-    return path_1.default.join(logsPath, fileName);
-}
-function getSingleFileMaxSizeInfo(totalMaxSize) {
-    const regex = /(\d+)([A-Za-z])/;
-    const match = totalMaxSize === null || totalMaxSize === void 0 ? void 0 : totalMaxSize.match(regex);
-    if (!match) {
-        console.warn(`totalMaxSize does not have a valid value`, {
-            totalMaxSize,
-        });
-        return undefined;
-    }
-    const size = +match[1];
-    const unit = match[2];
-    if (size === 1) {
-        switch (unit) {
-            case "B":
-                return { size: `${size}B`, totalHistoryFiles: 1 };
-            case "K":
-                return { size: `${(size * 1000) / 2}B`, totalHistoryFiles: 1 };
-            case "M":
-                return { size: `${(size * 1000) / 2}K`, totalHistoryFiles: 1 };
-            case "G":
-                return { size: `${(size * 1000) / 2}M`, totalHistoryFiles: 1 };
-            default:
-                return undefined;
-        }
-    }
-    if (size % 2 === 0) {
-        return { size: `${size / 2}${unit}`, totalHistoryFiles: 1 };
-    }
-    return { size: `1${unit}`, totalHistoryFiles: size - 1 };
-}
-function localFileDestination() {
-    const fileInfo = getSingleFileMaxSizeInfo(environment_1.default.ROLLING_LOG_MAX_SIZE);
-    const outFile = rfs.createStream(logsFileName, {
-        // As we have a rolling size, we want to half the max size
-        size: fileInfo === null || fileInfo === void 0 ? void 0 : fileInfo.size,
-        path: logsPath,
-        maxFiles: (fileInfo === null || fileInfo === void 0 ? void 0 : fileInfo.totalHistoryFiles) || 1,
-        immutable: true,
-        history: budibaseLogsHistoryFileName,
-        initialRotation: false,
-    });
-    return outFile;
-}
-function getLogReadStream() {
-    const streams = [];
-    const historyFile = getFullPath(budibaseLogsHistoryFileName);
-    if (fs_1.default.existsSync(historyFile)) {
-        const fileContent = fs_1.default.readFileSync(historyFile, "utf-8");
-        const historyFiles = fileContent.split("\n");
-        for (const historyFile of historyFiles.filter(x => x)) {
-            streams.push(fs_1.default.readFileSync(historyFile));
-        }
-    }
-    streams.push(fs_1.default.readFileSync(getFullPath(logsFileName)));
-    const combinedContent = Buffer.concat(streams);
-    return combinedContent;
-}
-//# sourceMappingURL=system.js.map

package/dist/src/logging/system.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"system.js","sourceRoot":"","sources":["../../../src/logging/system.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAgBA,4DAgCC;AAED,oDAaC;AAED,4CAeC;AAhFD,4CAAmB;AACnB,gDAAuB;AACvB,0DAA2C;AAE3C,iEAAgC;AAChC,gDAAgD;AAEhD,MAAM,YAAY,GAAG,cAAc,CAAA;AACnC,MAAM,2BAA2B,GAAG,2BAA2B,CAAA;AAE/D,MAAM,QAAQ,GAAG,cAAI,CAAC,IAAI,CAAC,IAAA,6BAAe,GAAE,EAAE,YAAY,CAAC,CAAA;AAE3D,SAAS,WAAW,CAAC,QAAgB;IACnC,OAAO,cAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAA;AACtC,CAAC;AAED,SAAgB,wBAAwB,CAAC,YAAoB;IAC3D,MAAM,KAAK,GAAG,iBAAiB,CAAA;IAC/B,MAAM,KAAK,GAAG,YAAY,aAAZ,YAAY,uBAAZ,YAAY,CAAE,KAAK,CAAC,KAAK,CAAC,CAAA;IACxC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,CAAC,IAAI,CAAC,0CAA0C,EAAE;YACvD,YAAY;SACb,CAAC,CAAA;QACF,OAAO,SAAS,CAAA;IAClB,CAAC;IAED,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;IACtB,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAA;IACrB,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;QACf,QAAQ,IAAI,EAAE,CAAC;YACb,KAAK,GAAG;gBACN,OAAO,EAAE,IAAI,EAAE,GAAG,IAAI,GAAG,EAAE,iBAAiB,EAAE,CAAC,EAAE,CAAA;YACnD,KAAK,GAAG;gBACN,OAAO,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,iBAAiB,EAAE,CAAC,EAAE,CAAA;YAChE,KAAK,GAAG;gBACN,OAAO,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,iBAAiB,EAAE,CAAC,EAAE,CAAA;YAChE,KAAK,GAAG;gBACN,OAAO,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,iBAAiB,EAAE,CAAC,EAAE,CAAA;YAChE;gBACE,OAAO,SAAS,CAAA;QACpB,CAAC;IACH,CAAC;IAED,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;QACnB,OAAO,EAAE,IAAI,EAAE,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,EAAE,EAAE,iBAAiB,EAAE,CAAC,EAAE,CAAA;IAC7D,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,IAAI,IAAI,EAAE,EAAE,iBAAiB,EAAE,IAAI,GAAG,CAAC,EAAE,CAAA;AAC1D,CAAC;AAED,SAAgB,oBAAoB;IAClC,MAAM,QAAQ,GAAG,wBAAwB,CAAC,qBAAG,CAAC,oBAAoB,CAAC,CAAA;IACnE,MAAM,OAAO,GAAG,GAAG,CAAC,YAAY,CAAC,YAAY,EAAE;QAC7C,0DAA0D;QAC1D,IAAI,EAAE,QAAQ,aAAR,QAAQ,uBAAR,QAAQ,CAAE,IAAI;QACpB,IAAI,EAAE,QAAQ;QACd,QAAQ,EAAE,CAAA,QAAQ,aAAR,QAAQ,uBAAR,QAAQ,CAAE,iBAAiB,KAAI,CAAC;QAC1C,SAAS,EAAE,IAAI;QACf,OAAO,EAAE,2BAA2B;QACpC,eAAe,EAAE,KAAK;KACvB,CAAC,CAAA;IAEF,OAAO,OAAO,CAAA;AAChB,CAAC;AAED,SAAgB,gBAAgB;IAC9B,MAAM,OAAO,GAAG,EAAE,CAAA;IAClB,MAAM,WAAW,GAAG,WAAW,CAAC,2BAA2B,CAAC,CAAA;IAC5D,IAAI,YAAE,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAC/B,MAAM,WAAW,GAAG,YAAE,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAA;QACzD,MAAM,YAAY,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAC5C,KAAK,MAAM,WAAW,IAAI,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACtD,OAAO,CAAC,IAAI,CAAC,YAAE,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC,CAAA;QAC5C,CAAC;IACH,CAAC;IAED,OAAO,CAAC,IAAI,CAAC,YAAE,CAAC,YAAY,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC,CAAC,CAAA;IAExD,MAAM,eAAe,GAAG,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAA;IAC9C,OAAO,eAAe,CAAA;AACxB,CAAC"}

package/dist/src/middleware/adminOnly.js

@@ -1,19 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const users_1 = require("../users");
-exports.default = (ctx, next) => __awaiter(void 0, void 0, void 0, function* () {
-    if (!ctx.internal && !(0, users_1.isAdmin)(ctx.user)) {
-        ctx.throw(403, "Admin user only endpoint.");
-    }
-    return next();
-});
-//# sourceMappingURL=adminOnly.js.map

package/dist/src/middleware/adminOnly.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"adminOnly.js","sourceRoot":"","sources":["../../../src/middleware/adminOnly.ts"],"names":[],"mappings":";;;;;;;;;;;AACA,oCAAkC;AAElC,kBAAe,CAAO,GAAY,EAAE,IAAS,EAAE,EAAE;IAC/C,IAAI,CAAC,GAAG,CAAC,QAAQ,IAAI,CAAC,IAAA,eAAO,EAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;QACxC,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,2BAA2B,CAAC,CAAA;IAC7C,CAAC;IACD,OAAO,IAAI,EAAE,CAAA;AACf,CAAC,CAAA,CAAA"}

package/dist/src/middleware/auditLog.js

@@ -1,18 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-// this middleware exists purely to be overridden by middlewares supplied by the @budibase/pro library
-const middleware = ((ctx, next) => __awaiter(void 0, void 0, void 0, function* () {
-    // Placeholder for audit log middleware
-    return next();
-}));
-exports.default = middleware;
-//# sourceMappingURL=auditLog.js.map

package/dist/src/middleware/auditLog.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auditLog.js","sourceRoot":"","sources":["../../../src/middleware/auditLog.ts"],"names":[],"mappings":";;;;;;;;;;;AAGA,sGAAsG;AACtG,MAAM,UAAU,GAAG,CAAC,CAAO,GAAQ,EAAE,IAAU,EAAE,EAAE;IACjD,uCAAuC;IACvC,OAAO,IAAI,EAAE,CAAA;AACf,CAAC,CAAA,CAAe,CAAA;AAEhB,kBAAe,UAAU,CAAA"}

package/dist/src/middleware/authenticated.js

@@ -1,254 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.default = default_1;
-const constants_1 = require("../constants");
-const utils_1 = require("../utils");
-const user_1 = require("../cache/user");
-const sessions_1 = require("../security/sessions");
-const matchers_1 = require("./matchers");
-const db_1 = require("../db");
-const context_1 = require("../context");
-const encryption_1 = require("../security/encryption");
-const identity = __importStar(require("../context/identity"));
-const environment_1 = __importDefault(require("../environment"));
-const types_1 = require("@budibase/types");
-const errors_1 = require("../errors");
-const dd_trace_1 = __importDefault(require("dd-trace"));
-const ONE_MINUTE = environment_1.default.SESSION_UPDATE_PERIOD
-    ? parseInt(environment_1.default.SESSION_UPDATE_PERIOD)
-    : 60 * 1000;
-function timeMinusOneMinute() {
-    return new Date(Date.now() - ONE_MINUTE).toISOString();
-}
-function finalise(ctx, opts = {}) {
-    ctx.publicEndpoint = opts.publicEndpoint || false;
-    ctx.isAuthenticated = opts.authenticated || false;
-    ctx.loginMethod = opts.loginMethod;
-    ctx.user = opts.user;
-    ctx.internal = opts.internal || false;
-    ctx.version = opts.version;
-}
-function checkApiKey(apiKey, populateUser) {
-    return __awaiter(this, void 0, void 0, function* () {
-        // check both the primary and the fallback internal api keys
-        // this allows for rotation
-        if ((0, utils_1.isValidInternalAPIKey)(apiKey)) {
-            return { valid: true, user: undefined };
-        }
-        const decrypted = (0, encryption_1.decrypt)(apiKey);
-        const tenantId = decrypted.split(db_1.SEPARATOR)[0];
-        return (0, context_1.doInTenant)(tenantId, () => __awaiter(this, void 0, void 0, function* () {
-            let userId;
-            try {
-                const db = (0, context_1.getGlobalDB)();
-                // api key is encrypted in the database
-                userId = (yield (0, db_1.queryGlobalView)(db_1.ViewName.BY_API_KEY, {
-                    key: apiKey,
-                }, db));
-            }
-            catch (err) {
-                userId = undefined;
-            }
-            if (userId) {
-                return {
-                    valid: true,
-                    user: yield (0, user_1.getUser)({
-                        userId,
-                        tenantId,
-                        populateUser,
-                    }),
-                };
-            }
-            else {
-                throw new errors_1.InvalidAPIKeyError();
-            }
-        }));
-    });
-}
-function getHeader(ctx, header) {
-    const contents = ctx.request.headers[header];
-    if (Array.isArray(contents)) {
-        throw new Error("Unexpected header format");
-    }
-    return contents;
-}
-/**
- * This middleware is tenancy aware, so that it does not depend on other middlewares being used.
- * The tenancy modules should not be used here and it should be assumed that the tenancy context
- * has not yet been populated.
- */
-function default_1(noAuthPatterns = [], opts = {
-    publicAllowed: false,
-}) {
-    const noAuthOptions = noAuthPatterns ? (0, matchers_1.buildMatcherRegex)(noAuthPatterns) : [];
-    return ((ctx, next) => __awaiter(this, void 0, void 0, function* () {
-        let publicEndpoint = false;
-        const version = getHeader(ctx, constants_1.Header.API_VER);
-        // the path is not authenticated
-        const found = (0, matchers_1.matches)(ctx, noAuthOptions);
-        if (found) {
-            publicEndpoint = true;
-        }
-        try {
-            // check the actual user is authenticated first, try header or cookie
-            let headerToken = getHeader(ctx, constants_1.Header.TOKEN);
-            const authCookie = (0, utils_1.getCookie)(ctx, constants_1.Cookie.Auth) ||
-                (0, utils_1.openJwt)(headerToken);
-            let apiKey = getHeader(ctx, constants_1.Header.API_KEY);
-            if (!apiKey && ctx.request.headers[constants_1.Header.AUTHORIZATION]) {
-                apiKey = ctx.request.headers[constants_1.Header.AUTHORIZATION].split(" ")[1];
-            }
-            const tenantId = getHeader(ctx, constants_1.Header.TENANT_ID);
-            let authenticated = false, user = undefined, internal = false, loginMethod = undefined;
-            if (authCookie && !apiKey) {
-                const sessionId = authCookie.sessionId;
-                const userId = authCookie.userId;
-                let session;
-                try {
-                    // getting session handles error checking (if session exists etc)
-                    session = yield (0, sessions_1.getSession)(userId, sessionId);
-                    if (opts && opts.populateUser) {
-                        user = yield (0, user_1.getUser)({
-                            userId,
-                            tenantId: session.tenantId,
-                            email: session.email,
-                            populateUser: opts.populateUser(ctx),
-                        });
-                    }
-                    else {
-                        user = yield (0, user_1.getUser)({
-                            userId,
-                            tenantId: session.tenantId,
-                            email: session.email,
-                        });
-                    }
-                    // @ts-ignore
-                    user.csrfToken = session.csrfToken;
-                    loginMethod = types_1.LoginMethod.COOKIE;
-                    if ((session === null || session === void 0 ? void 0 : session.lastAccessedAt) < timeMinusOneMinute()) {
-                        // make sure we denote that the session is still in use
-                        yield (0, sessions_1.updateSessionTTL)(session);
-                    }
-                    authenticated = true;
-                }
-                catch (err) {
-                    authenticated = false;
-                    console.error(`Auth Error: ${err.message}`);
-                    // remove the cookie as the user does not exist anymore
-                    (0, utils_1.clearCookie)(ctx, constants_1.Cookie.Auth);
-                }
-            }
-            // this is an internal request, no user made it
-            if (!authenticated && apiKey) {
-                const populateUser = opts.populateUser ? opts.populateUser(ctx) : null;
-                const { valid, user: foundUser } = yield checkApiKey(apiKey, populateUser);
-                if (valid) {
-                    authenticated = true;
-                    loginMethod = types_1.LoginMethod.API_KEY;
-                    user = foundUser;
-                    internal = !foundUser;
-                }
-            }
-            if (!user && tenantId) {
-                user = { tenantId };
-            }
-            else if (user && "password" in user) {
-                delete user.password;
-            }
-            // be explicit
-            if (!authenticated) {
-                authenticated = false;
-            }
-            const isUser = (user) => {
-                return user && user.email;
-            };
-            if (isUser(user)) {
-                dd_trace_1.default.setUser({
-                    id: user._id,
-                    tenantId: user.tenantId,
-                    budibaseAccess: user.budibaseAccess,
-                    status: user.status,
-                });
-            }
-            // isAuthenticated is a function, so use a variable to be able to check authed state
-            finalise(ctx, {
-                authenticated,
-                user,
-                internal,
-                version,
-                publicEndpoint,
-                loginMethod,
-            });
-            if (isUser(user)) {
-                return identity.doInUserContext(user, ctx, next);
-            }
-            else {
-                return next();
-            }
-        }
-        catch (err) {
-            console.error(`Auth Error: ${err.message}`);
-            // invalid token, clear the cookie
-            if ((err === null || err === void 0 ? void 0 : err.name) === "JsonWebTokenError") {
-                (0, utils_1.clearCookie)(ctx, constants_1.Cookie.Auth);
-            }
-            else if ((err === null || err === void 0 ? void 0 : err.code) === errors_1.ErrorCode.INVALID_API_KEY) {
-                ctx.throw(403, err.message);
-            }
-            // allow configuring for public access
-            if ((opts && opts.publicAllowed) || publicEndpoint) {
-                finalise(ctx, { authenticated: false, version, publicEndpoint });
-                return next();
-            }
-            else {
-                ctx.throw(err.status || 403, err);
-            }
-        }
-    }));
-}
-//# sourceMappingURL=authenticated.js.map

package/dist/src/middleware/authenticated.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"authenticated.js","sourceRoot":"","sources":["../../../src/middleware/authenticated.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA8GA,4BAiJC;AA/PD,4CAA6C;AAC7C,oCAKiB;AACjB,wCAAuC;AACvC,mDAAmE;AACnE,yCAAuD;AACvD,8BAA4D;AAC5D,wCAAoD;AACpD,uDAAgD;AAChD,8DAA+C;AAC/C,iEAAgC;AAChC,2CAMwB;AACxB,sCAAyD;AACzD,wDAA6B;AAG7B,MAAM,UAAU,GAAG,qBAAG,CAAC,qBAAqB;IAC1C,CAAC,CAAC,QAAQ,CAAC,qBAAG,CAAC,qBAAqB,CAAC;IACrC,CAAC,CAAC,EAAE,GAAG,IAAI,CAAA;AAWb,SAAS,kBAAkB;IACzB,OAAO,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC,CAAC,WAAW,EAAE,CAAA;AACxD,CAAC;AAED,SAAS,QAAQ,CAAC,GAAQ,EAAE,OAAqB,EAAE;IACjD,GAAG,CAAC,cAAc,GAAG,IAAI,CAAC,cAAc,IAAI,KAAK,CAAA;IACjD,GAAG,CAAC,eAAe,GAAG,IAAI,CAAC,aAAa,IAAI,KAAK,CAAA;IACjD,GAAG,CAAC,WAAW,GAAG,IAAI,CAAC,WAAW,CAAA;IAClC,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAA;IACpB,GAAG,CAAC,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,KAAK,CAAA;IACrC,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC,OAAO,CAAA;AAC5B,CAAC;AAED,SAAe,WAAW,CACxB,MAAc,EACd,YAIkB;;QAElB,4DAA4D;QAC5D,2BAA2B;QAC3B,IAAI,IAAA,6BAAqB,EAAC,MAAM,CAAC,EAAE,CAAC;YAClC,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,CAAA;QACzC,CAAC;QACD,MAAM,SAAS,GAAG,IAAA,oBAAO,EAAC,MAAM,CAAC,CAAA;QACjC,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,cAAS,CAAC,CAAC,CAAC,CAAC,CAAA;QAC9C,OAAO,IAAA,oBAAU,EAAC,QAAQ,EAAE,GAAS,EAAE;YACrC,IAAI,MAAM,CAAA;YACV,IAAI,CAAC;gBACH,MAAM,EAAE,GAAG,IAAA,qBAAW,GAAE,CAAA;gBACxB,uCAAuC;gBACvC,MAAM,GAAG,CAAC,MAAM,IAAA,oBAAe,EAC7B,aAAQ,CAAC,UAAU,EACnB;oBACE,GAAG,EAAE,MAAM;iBACZ,EACD,EAAE,CACH,CAAW,CAAA;YACd,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,MAAM,GAAG,SAAS,CAAA;YACpB,CAAC;YACD,IAAI,MAAM,EAAE,CAAC;gBACX,OAAO;oBACL,KAAK,EAAE,IAAI;oBACX,IAAI,EAAE,MAAM,IAAA,cAAO,EAAC;wBAClB,MAAM;wBACN,QAAQ;wBACR,YAAY;qBACb,CAAC;iBACH,CAAA;YACH,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,2BAAkB,EAAE,CAAA;YAChC,CAAC;QACH,CAAC,CAAA,CAAC,CAAA;IACJ,CAAC;CAAA;AAED,SAAS,SAAS,CAAC,GAAQ,EAAE,MAAc;IACzC,MAAM,QAAQ,GAAG,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAA;IAC5C,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAA;IAC7C,CAAC;IACD,OAAO,QAAQ,CAAA;AACjB,CAAC;AAED;;;;GAIG;AACH,mBACE,iBAAoC,EAAE,EACtC,OAA6D;IAC3D,aAAa,EAAE,KAAK;CACrB;IAED,MAAM,aAAa,GAAG,cAAc,CAAC,CAAC,CAAC,IAAA,4BAAiB,EAAC,cAAc,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;IAC7E,OAAO,CAAC,CAAO,GAAQ,EAAE,IAAU,EAAE,EAAE;QACrC,IAAI,cAAc,GAAG,KAAK,CAAA;QAC1B,MAAM,OAAO,GAAG,SAAS,CAAC,GAAG,EAAE,kBAAM,CAAC,OAAO,CAAC,CAAA;QAC9C,gCAAgC;QAChC,MAAM,KAAK,GAAG,IAAA,kBAAO,EAAC,GAAG,EAAE,aAAa,CAAC,CAAA;QACzC,IAAI,KAAK,EAAE,CAAC;YACV,cAAc,GAAG,IAAI,CAAA;QACvB,CAAC;QACD,IAAI,CAAC;YACH,qEAAqE;YACrE,IAAI,WAAW,GAAG,SAAS,CAAC,GAAG,EAAE,kBAAM,CAAC,KAAK,CAAC,CAAA;YAE9C,MAAM,UAAU,GACd,IAAA,iBAAS,EAAgB,GAAG,EAAE,kBAAM,CAAC,IAAI,CAAC;gBAC1C,IAAA,eAAO,EAAgB,WAAW,CAAC,CAAA;YACrC,IAAI,MAAM,GAAG,SAAS,CAAC,GAAG,EAAE,kBAAM,CAAC,OAAO,CAAC,CAAA;YAE3C,IAAI,CAAC,MAAM,IAAI,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,kBAAM,CAAC,aAAa,CAAC,EAAE,CAAC;gBACzD,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,kBAAM,CAAC,aAAa,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAA;YAClE,CAAC;YAED,MAAM,QAAQ,GAAG,SAAS,CAAC,GAAG,EAAE,kBAAM,CAAC,SAAS,CAAC,CAAA;YACjD,IAAI,aAAa,GAAY,KAAK,EAChC,IAAI,GAA4C,SAAS,EACzD,QAAQ,GAAY,KAAK,EACzB,WAAW,GAA4B,SAAS,CAAA;YAClD,IAAI,UAAU,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC1B,MAAM,SAAS,GAAG,UAAU,CAAC,SAAS,CAAA;gBACtC,MAAM,MAAM,GAAG,UAAU,CAAC,MAAM,CAAA;gBAChC,IAAI,OAAO,CAAA;gBACX,IAAI,CAAC;oBACH,iEAAiE;oBACjE,OAAO,GAAG,MAAM,IAAA,qBAAU,EAAC,MAAM,EAAE,SAAS,CAAC,CAAA;oBAC7C,IAAI,IAAI,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;wBAC9B,IAAI,GAAG,MAAM,IAAA,cAAO,EAAC;4BACnB,MAAM;4BACN,QAAQ,EAAE,OAAO,CAAC,QAAQ;4BAC1B,KAAK,EAAE,OAAO,CAAC,KAAK;4BACpB,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;yBACrC,CAAC,CAAA;oBACJ,CAAC;yBAAM,CAAC;wBACN,IAAI,GAAG,MAAM,IAAA,cAAO,EAAC;4BACnB,MAAM;4BACN,QAAQ,EAAE,OAAO,CAAC,QAAQ;4BAC1B,KAAK,EAAE,OAAO,CAAC,KAAK;yBACrB,CAAC,CAAA;oBACJ,CAAC;oBACD,aAAa;oBACb,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAA;oBAClC,WAAW,GAAG,mBAAW,CAAC,MAAM,CAAA;oBAEhC,IAAI,CAAA,OAAO,aAAP,OAAO,uBAAP,OAAO,CAAE,cAAc,IAAG,kBAAkB,EAAE,EAAE,CAAC;wBACnD,uDAAuD;wBACvD,MAAM,IAAA,2BAAgB,EAAC,OAAO,CAAC,CAAA;oBACjC,CAAC;oBACD,aAAa,GAAG,IAAI,CAAA;gBACtB,CAAC;gBAAC,OAAO,GAAQ,EAAE,CAAC;oBAClB,aAAa,GAAG,KAAK,CAAA;oBACrB,OAAO,CAAC,KAAK,CAAC,eAAe,GAAG,CAAC,OAAO,EAAE,CAAC,CAAA;oBAC3C,uDAAuD;oBACvD,IAAA,mBAAW,EAAC,GAAG,EAAE,kBAAM,CAAC,IAAI,CAAC,CAAA;gBAC/B,CAAC;YACH,CAAC;YACD,+CAA+C;YAC/C,IAAI,CAAC,aAAa,IAAI,MAAM,EAAE,CAAC;gBAC7B,MAAM,YAAY,GAIG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAA;gBACtE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,MAAM,WAAW,CAClD,MAAM,EACN,YAAY,CACb,CAAA;gBACD,IAAI,KAAK,EAAE,CAAC;oBACV,aAAa,GAAG,IAAI,CAAA;oBACpB,WAAW,GAAG,mBAAW,CAAC,OAAO,CAAA;oBACjC,IAAI,GAAG,SAAS,CAAA;oBAChB,QAAQ,GAAG,CAAC,SAAS,CAAA;gBACvB,CAAC;YACH,CAAC;YACD,IAAI,CAAC,IAAI,IAAI,QAAQ,EAAE,CAAC;gBACtB,IAAI,GAAG,EAAE,QAAQ,EAAE,CAAA;YACrB,CAAC;iBAAM,IAAI,IAAI,IAAI,UAAU,IAAI,IAAI,EAAE,CAAC;gBACtC,OAAO,IAAI,CAAC,QAAQ,CAAA;YACtB,CAAC;YACD,cAAc;YACd,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,aAAa,GAAG,KAAK,CAAA;YACvB,CAAC;YAED,MAAM,MAAM,GAAG,CACb,IAAS,EACmC,EAAE;gBAC9C,OAAO,IAAI,IAAI,IAAI,CAAC,KAAK,CAAA;YAC3B,CAAC,CAAA;YAED,IAAI,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;gBACjB,kBAAM,CAAC,OAAO,CAAC;oBACb,EAAE,EAAE,IAAI,CAAC,GAAI;oBACb,QAAQ,EAAE,IAAI,CAAC,QAAQ;oBACvB,cAAc,EAAE,IAAI,CAAC,cAAc;oBACnC,MAAM,EAAE,IAAI,CAAC,MAAM;iBACpB,CAAC,CAAA;YACJ,CAAC;YAED,oFAAoF;YACpF,QAAQ,CAAC,GAAG,EAAE;gBACZ,aAAa;gBACb,IAAI;gBACJ,QAAQ;gBACR,OAAO;gBACP,cAAc;gBACd,WAAW;aACZ,CAAC,CAAA;YAEF,IAAI,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;gBACjB,OAAO,QAAQ,CAAC,eAAe,CAAC,IAAI,EAAE,GAAG,EAAE,IAAI,CAAC,CAAA;YAClD,CAAC;iBAAM,CAAC;gBACN,OAAO,IAAI,EAAE,CAAA;YACf,CAAC;QACH,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,KAAK,CAAC,eAAe,GAAG,CAAC,OAAO,EAAE,CAAC,CAAA;YAC3C,kCAAkC;YAClC,IAAI,CAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,MAAK,mBAAmB,EAAE,CAAC;gBACtC,IAAA,mBAAW,EAAC,GAAG,EAAE,kBAAM,CAAC,IAAI,CAAC,CAAA;YAC/B,CAAC;iBAAM,IAAI,CAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,IAAI,MAAK,kBAAS,CAAC,eAAe,EAAE,CAAC;gBACnD,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,GAAG,CAAC,OAAO,CAAC,CAAA;YAC7B,CAAC;YACD,sCAAsC;YACtC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,aAAa,CAAC,IAAI,cAAc,EAAE,CAAC;gBACnD,QAAQ,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,KAAK,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAA;gBAChE,OAAO,IAAI,EAAE,CAAA;YACf,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,IAAI,GAAG,EAAE,GAAG,CAAC,CAAA;YACnC,CAAC;QACH,CAAC;IACH,CAAC,CAAA,CAAe,CAAA;AAClB,CAAC"}

package/dist/src/middleware/builderOnly.js

@@ -1,33 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const users_1 = require("../users");
-const context_1 = require("../context");
-const environment_1 = __importDefault(require("../environment"));
-exports.default = (ctx, next) => __awaiter(void 0, void 0, void 0, function* () {
-    const appId = (0, context_1.getAppId)();
-    const builderFn = environment_1.default.isWorker() || !appId
-        ? users_1.hasBuilderPermissions
-        : environment_1.default.isApps()
-            ? users_1.isBuilder
-            : undefined;
-    if (!builderFn) {
-        throw new Error("Service name unknown - middleware inactive.");
-    }
-    if (!ctx.internal && !builderFn(ctx.user, appId)) {
-        ctx.throw(403, "Builder user only endpoint.");
-    }
-    return next();
-});
-//# sourceMappingURL=builderOnly.js.map

package/dist/src/middleware/builderOnly.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"builderOnly.js","sourceRoot":"","sources":["../../../src/middleware/builderOnly.ts"],"names":[],"mappings":";;;;;;;;;;;;;;AACA,oCAA2D;AAC3D,wCAAqC;AACrC,iEAAgC;AAEhC,kBAAe,CAAO,GAAY,EAAE,IAAS,EAAE,EAAE;IAC/C,MAAM,KAAK,GAAG,IAAA,kBAAQ,GAAE,CAAA;IACxB,MAAM,SAAS,GACb,qBAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,KAAK;QACtB,CAAC,CAAC,6BAAqB;QACvB,CAAC,CAAC,qBAAG,CAAC,MAAM,EAAE;YACd,CAAC,CAAC,iBAAS;YACX,CAAC,CAAC,SAAS,CAAA;IACf,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;IAChE,CAAC;IACD,IAAI,CAAC,GAAG,CAAC,QAAQ,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,EAAE,KAAK,CAAC,EAAE,CAAC;QACjD,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,6BAA6B,CAAC,CAAA;IAC/C,CAAC;IACD,OAAO,IAAI,EAAE,CAAA;AACf,CAAC,CAAA,CAAA"}

package/dist/src/middleware/builderOrAdmin.js

@@ -1,33 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-const users_1 = require("../users");
-const context_1 = require("../context");
-const environment_1 = __importDefault(require("../environment"));
-exports.default = (ctx, next) => __awaiter(void 0, void 0, void 0, function* () {
-    const appId = (0, context_1.getAppId)();
-    const builderFn = environment_1.default.isWorker() || !appId
-        ? users_1.hasBuilderPermissions
-        : environment_1.default.isApps()
-            ? users_1.isBuilder
-            : undefined;
-    if (!builderFn) {
-        throw new Error("Service name unknown - middleware inactive.");
-    }
-    if (!ctx.internal && !builderFn(ctx.user, appId) && !(0, users_1.isAdmin)(ctx.user)) {
-        ctx.throw(403, "Admin/Builder user only endpoint.");
-    }
-    return next();
-});
-//# sourceMappingURL=builderOrAdmin.js.map

package/dist/src/middleware/builderOrAdmin.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"builderOrAdmin.js","sourceRoot":"","sources":["../../../src/middleware/builderOrAdmin.ts"],"names":[],"mappings":";;;;;;;;;;;;;;AACA,oCAAoE;AACpE,wCAAqC;AACrC,iEAAgC;AAEhC,kBAAe,CAAO,GAAY,EAAE,IAAS,EAAE,EAAE;IAC/C,MAAM,KAAK,GAAG,IAAA,kBAAQ,GAAE,CAAA;IACxB,MAAM,SAAS,GACb,qBAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,KAAK;QACtB,CAAC,CAAC,6BAAqB;QACvB,CAAC,CAAC,qBAAG,CAAC,MAAM,EAAE;YACd,CAAC,CAAC,iBAAS;YACX,CAAC,CAAC,SAAS,CAAA;IACf,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;IAChE,CAAC;IACD,IAAI,CAAC,GAAG,CAAC,QAAQ,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,IAAA,eAAO,EAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;QACvE,GAAG,CAAC,KAAK,CAAC,GAAG,EAAE,mCAAmC,CAAC,CAAA;IACrD,CAAC;IACD,OAAO,IAAI,EAAE,CAAA;AACf,CAAC,CAAA,CAAA"}

package/dist/src/middleware/contentSecurityPolicy.js

@@ -1,124 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.contentSecurityPolicy = contentSecurityPolicy;
-const crypto_1 = __importDefault(require("crypto"));
-const CSP_DIRECTIVES = {
-    "default-src": ["'self'"],
-    "script-src": [
-        "'self'",
-        "'unsafe-eval'",
-        "https://*.budibase.net",
-        "https://cdn.budi.live",
-        "https://js.intercomcdn.com",
-        "https://widget.intercom.io",
-        "https://d2l5prqdbvm3op.cloudfront.net",
-        "https://us-assets.i.posthog.com",
-    ],
-    "style-src": [
-        "'self'",
-        "'unsafe-inline'",
-        "https://cdn.jsdelivr.net",
-        "https://fonts.googleapis.com",
-        "https://rsms.me",
-        "https://maxcdn.bootstrapcdn.com",
-    ],
-    "object-src": ["'none'"],
-    "base-uri": ["'self'"],
-    "connect-src": [
-        "'self'",
-        "https://*.budibase.app",
-        "https://*.budibaseqa.app",
-        "https://*.budibase.net",
-        "https://api-iam.intercom.io",
-        "https://api-ping.intercom.io",
-        "https://app.posthog.com",
-        "https://us.i.posthog.com",
-        "wss://nexus-websocket-a.intercom.io",
-        "wss://nexus-websocket-b.intercom.io",
-        "https://nexus-websocket-a.intercom.io",
-        "https://nexus-websocket-b.intercom.io",
-        "https://uploads.intercomcdn.com",
-        "https://uploads.intercomusercontent.com",
-        "https://*.amazonaws.com",
-        "https://*.s3.amazonaws.com",
-        "https://*.s3.us-east-2.amazonaws.com",
-        "https://*.s3.us-east-1.amazonaws.com",
-        "https://*.s3.us-west-1.amazonaws.com",
-        "https://*.s3.us-west-2.amazonaws.com",
-        "https://*.s3.af-south-1.amazonaws.com",
-        "https://*.s3.ap-east-1.amazonaws.com",
-        "https://*.s3.ap-south-1.amazonaws.com",
-        "https://*.s3.ap-northeast-2.amazonaws.com",
-        "https://*.s3.ap-southeast-1.amazonaws.com",
-        "https://*.s3.ap-southeast-2.amazonaws.com",
-        "https://*.s3.ap-northeast-1.amazonaws.com",
-        "https://*.s3.ca-central-1.amazonaws.com",
-        "https://*.s3.cn-north-1.amazonaws.com",
-        "https://*.s3.cn-northwest-1.amazonaws.com",
-        "https://*.s3.eu-central-1.amazonaws.com",
-        "https://*.s3.eu-west-1.amazonaws.com",
-        "https://*.s3.eu-west-2.amazonaws.com",
-        "https://*.s3.eu-south-1.amazonaws.com",
-        "https://*.s3.eu-west-3.amazonaws.com",
-        "https://*.s3.eu-north-1.amazonaws.com",
-        "https://*.s3.sa-east-1.amazonaws.com",
-        "https://*.s3.me-south-1.amazonaws.com",
-        "https://*.s3.us-gov-east-1.amazonaws.com",
-        "https://*.s3.us-gov-west-1.amazonaws.com",
-        "https://api.github.com",
-    ],
-    "font-src": [
-        "'self'",
-        "data:",
-        "https://cdn.jsdelivr.net",
-        "https://fonts.gstatic.com",
-        "https://rsms.me",
-        "https://maxcdn.bootstrapcdn.com",
-        "https://js.intercomcdn.com",
-        "https://fonts.intercomcdn.com",
-    ],
-    "frame-src": ["'self'", "https:"],
-    "img-src": ["http:", "https:", "data:", "blob:"],
-    "manifest-src": ["'self'"],
-    "media-src": [
-        "'self'",
-        "https://js.intercomcdn.com",
-        "https://cdn.budi.live",
-    ],
-    "worker-src": ["blob:"],
-};
-function contentSecurityPolicy(ctx, next) {
-    return __awaiter(this, void 0, void 0, function* () {
-        try {
-            const nonce = crypto_1.default.randomBytes(16).toString("base64");
-            const directives = Object.assign({}, CSP_DIRECTIVES);
-            directives["script-src"] = [
-                ...CSP_DIRECTIVES["script-src"],
-                `'nonce-${nonce}'`,
-            ];
-            ctx.state.nonce = nonce;
-            const cspHeader = Object.entries(directives)
-                .map(([key, sources]) => `${key} ${sources.join(" ")}`)
-                .join("; ");
-            ctx.set("Content-Security-Policy", cspHeader);
-            yield next();
-        }
-        catch (err) {
-            console.error(`Error occurred in Content-Security-Policy middleware: ${err}`);
-        }
-    });
-}
-exports.default = contentSecurityPolicy;
-//# sourceMappingURL=contentSecurityPolicy.js.map

package/dist/src/middleware/contentSecurityPolicy.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"contentSecurityPolicy.js","sourceRoot":"","sources":["../../../src/middleware/contentSecurityPolicy.ts"],"names":[],"mappings":";;;;;;;;;;;;;;AAwFA,sDAsBC;AA9GD,oDAA2B;AAE3B,MAAM,cAAc,GAAG;IACrB,aAAa,EAAE,CAAC,QAAQ,CAAC;IACzB,YAAY,EAAE;QACZ,QAAQ;QACR,eAAe;QACf,wBAAwB;QACxB,uBAAuB;QACvB,4BAA4B;QAC5B,4BAA4B;QAC5B,uCAAuC;QACvC,iCAAiC;KAClC;IACD,WAAW,EAAE;QACX,QAAQ;QACR,iBAAiB;QACjB,0BAA0B;QAC1B,8BAA8B;QAC9B,iBAAiB;QACjB,iCAAiC;KAClC;IACD,YAAY,EAAE,CAAC,QAAQ,CAAC;IACxB,UAAU,EAAE,CAAC,QAAQ,CAAC;IACtB,aAAa,EAAE;QACb,QAAQ;QACR,wBAAwB;QACxB,0BAA0B;QAC1B,wBAAwB;QACxB,6BAA6B;QAC7B,8BAA8B;QAC9B,yBAAyB;QACzB,0BAA0B;QAC1B,qCAAqC;QACrC,qCAAqC;QACrC,uCAAuC;QACvC,uCAAuC;QACvC,iCAAiC;QACjC,yCAAyC;QACzC,yBAAyB;QACzB,4BAA4B;QAC5B,sCAAsC;QACtC,sCAAsC;QACtC,sCAAsC;QACtC,sCAAsC;QACtC,uCAAuC;QACvC,sCAAsC;QACtC,uCAAuC;QACvC,2CAA2C;QAC3C,2CAA2C;QAC3C,2CAA2C;QAC3C,2CAA2C;QAC3C,yCAAyC;QACzC,uCAAuC;QACvC,2CAA2C;QAC3C,yCAAyC;QACzC,sCAAsC;QACtC,sCAAsC;QACtC,uCAAuC;QACvC,sCAAsC;QACtC,uCAAuC;QACvC,sCAAsC;QACtC,uCAAuC;QACvC,0CAA0C;QAC1C,0CAA0C;QAC1C,wBAAwB;KACzB;IACD,UAAU,EAAE;QACV,QAAQ;QACR,OAAO;QACP,0BAA0B;QAC1B,2BAA2B;QAC3B,iBAAiB;QACjB,iCAAiC;QACjC,4BAA4B;QAC5B,+BAA+B;KAChC;IACD,WAAW,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC;IACjC,SAAS,EAAE,CAAC,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,CAAC;IAChD,cAAc,EAAE,CAAC,QAAQ,CAAC;IAC1B,WAAW,EAAE;QACX,QAAQ;QACR,4BAA4B;QAC5B,uBAAuB;KACxB;IACD,YAAY,EAAE,CAAC,OAAO,CAAC;CACxB,CAAA;AAED,SAAsB,qBAAqB,CAAC,GAAQ,EAAE,IAAS;;QAC7D,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,gBAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;YAEvD,MAAM,UAAU,qBAAQ,cAAc,CAAE,CAAA;YACxC,UAAU,CAAC,YAAY,CAAC,GAAG;gBACzB,GAAG,cAAc,CAAC,YAAY,CAAC;gBAC/B,UAAU,KAAK,GAAG;aACnB,CAAA;YAED,GAAG,CAAC,KAAK,CAAC,KAAK,GAAG,KAAK,CAAA;YAEvB,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC;iBACzC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,OAAO,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;iBACtD,IAAI,CAAC,IAAI,CAAC,CAAA;YACb,GAAG,CAAC,GAAG,CAAC,yBAAyB,EAAE,SAAS,CAAC,CAAA;YAC7C,MAAM,IAAI,EAAE,CAAA;QACd,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,KAAK,CACX,yDAAyD,GAAG,EAAE,CAC/D,CAAA;QACH,CAAC;IACH,CAAC;CAAA;AAED,kBAAe,qBAAqB,CAAA"}