npm - @digitaldefiance/ecies-lib - Versions diffs - 4.4.2 → 4.4.4 - Mend

@digitaldefiance/ecies-lib 4.4.2 → 4.4.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (589) hide show

package/LICENSE +21 -0
package/package.json +9 -6
package/src/builders/ecies-builder.ts +39 -0
package/src/builders/{index.js → index.ts} +1 -1
package/src/builders/member-builder.ts +155 -0
package/src/constants.ts +609 -0
package/src/core/errors/crypto-error.ts +78 -0
package/src/core/{index.js → index.ts} +1 -1
package/src/core/types/result.ts +19 -0
package/src/email-string.ts +82 -0
package/src/enumerations/disposed-error-type.ts +11 -0
package/src/enumerations/ecies-cipher-suite.ts +4 -0
package/src/enumerations/ecies-encryption-type.ts +41 -0
package/src/enumerations/ecies-error-type.ts +43 -0
package/src/enumerations/ecies-string-key.ts +205 -0
package/src/enumerations/ecies-version.ts +3 -0
package/src/enumerations/guid-brand-type.ts +26 -0
package/src/enumerations/guid-error-type.ts +6 -0
package/src/enumerations/id-provider-error-type.ts +50 -0
package/src/enumerations/{index.js → index.ts} +0 -1
package/src/enumerations/invalid-email-type.ts +5 -0
package/src/enumerations/length-encoding-type.ts +6 -0
package/src/enumerations/length-error-type.ts +5 -0
package/src/enumerations/member-error-type.ts +106 -0
package/src/enumerations/{member-type.d.ts → member-type.ts} +7 -6
package/src/enumerations/password-login-error-type.ts +4 -0
package/src/enumerations/pbkdf2-error-type.ts +5 -0
package/src/enumerations/pbkdf2-profile.ts +5 -0
package/src/enumerations/secure-storage-error-type.ts +5 -0
package/src/errors/disposed.ts +36 -0
package/src/errors/ecies.ts +153 -0
package/src/errors/guid.ts +130 -0
package/src/errors/id-provider.ts +40 -0
package/src/errors/{index.d.ts → index.ts} +0 -1
package/src/errors/invalid-email.ts +23 -0
package/src/errors/length.ts +19 -0
package/src/errors/member.ts +20 -0
package/src/errors/pbkdf2.ts +20 -0
package/src/errors/secure-storage.ts +17 -0
package/src/errors/simple-ecies.ts +21 -0
package/src/errors/simple-test-error.ts +6 -0
package/src/i18n-setup.ts +130 -0
package/src/{index.js → index.ts} +64 -7
package/src/interfaces/checksum-config.ts +4 -0
package/src/interfaces/checksum-consts.ts +13 -0
package/src/interfaces/configuration-provenance.ts +54 -0
package/src/interfaces/constants.ts +75 -0
package/src/interfaces/ecies-config.ts +8 -0
package/src/interfaces/ecies-consts.ts +74 -0
package/src/interfaces/ecies-file-service.ts +6 -0
package/src/interfaces/encrypted-chunk.ts +64 -0
package/src/interfaces/encryption-state.ts +19 -0
package/src/interfaces/frontend-member-operational.ts +77 -0
package/src/interfaces/guid.ts +86 -0
package/src/interfaces/id-provider.ts +152 -0
package/src/interfaces/{index.d.ts → index.ts} +0 -1
package/src/interfaces/invariant.ts +60 -0
package/src/interfaces/library-error.ts +23 -0
package/src/interfaces/{member-storage.d.ts → member-storage.ts} +11 -10
package/src/interfaces/{member-with-mnemonic.d.ts → member-with-mnemonic.ts} +3 -3
package/src/interfaces/member.ts +84 -0
package/src/interfaces/multi-recipient-chunk.ts +61 -0
package/src/interfaces/pbkdf2-config.ts +6 -0
package/src/interfaces/pbkdf2-consts.ts +10 -0
package/src/interfaces/pbkdf2-result.ts +5 -0
package/src/interfaces/stream-config.ts +17 -0
package/src/interfaces/stream-header.ts +34 -0
package/src/interfaces/stream-progress.ts +31 -0
package/src/lib/configuration-provenance-utils.ts +26 -0
package/src/lib/crypto-container.ts +64 -0
package/src/lib/guid.ts +1097 -0
package/src/lib/id-providers/custom-provider.ts +109 -0
package/src/lib/id-providers/guidv4-provider.ts +141 -0
package/src/lib/id-providers/{index.d.ts → index.ts} +6 -5
package/src/lib/id-providers/objectid-provider.ts +125 -0
package/src/lib/id-providers/uuid-provider.ts +133 -0
package/src/lib/{index.js → index.ts} +2 -2
package/src/lib/invariant-validator.ts +133 -0
package/src/lib/invariants/encryption-algorithm-consistency.ts +73 -0
package/src/lib/invariants/{index.js → index.ts} +0 -1
package/src/lib/invariants/pbkdf2-profiles-validity.ts +78 -0
package/src/lib/invariants/recipient-id-consistency.ts +46 -0
package/src/lib/multi-recipient-chunk-utils.ts +63 -0
package/src/member.ts +495 -0
package/src/{pbkdf2-profiles.d.ts → pbkdf2-profiles.ts} +2 -2
package/src/phone-number.ts +18 -0
package/src/regexes.ts +10 -0
package/src/secure-buffer.ts +226 -0
package/src/secure-string.ts +244 -0
package/src/services/aes-gcm.ts +220 -0
package/src/services/chunk-processor.ts +188 -0
package/src/services/ecies/README.md +147 -0
package/src/services/ecies/crypto-core.ts +292 -0
package/src/services/ecies/example.ts +185 -0
package/src/services/ecies/file.ts +167 -0
package/src/services/ecies/{index.js → index.ts} +2 -1
package/src/services/ecies/integration.ts +241 -0
package/src/services/ecies/interfaces.ts +62 -0
package/src/services/ecies/manual-test.ts +219 -0
package/src/services/ecies/multi-recipient.ts +545 -0
package/src/services/ecies/service.ts +370 -0
package/src/services/ecies/signature.ts +93 -0
package/src/services/ecies/single-recipient.ts +476 -0
package/src/services/encryption-stream.ts +435 -0
package/src/services/{index.js → index.ts} +0 -1
package/src/services/multi-recipient-processor.ts +377 -0
package/src/services/password-login.ts +226 -0
package/src/services/pbkdf2.ts +169 -0
package/src/services/progress-tracker.ts +128 -0
package/src/services/resumable-encryption.ts +135 -0
package/src/services/xor.ts +65 -0
package/src/test-mocks/index.ts +1 -0
package/src/test-mocks/mock-frontend-member.ts +276 -0
package/src/{testing.js → testing.ts} +0 -1
package/src/translations/{de.js → de.ts} +112 -56
package/src/translations/{en-US.js → en-US.ts} +116 -58
package/src/translations/{es.js → es.ts} +134 -67
package/src/translations/{fr.js → fr.ts} +129 -64
package/src/translations/{ja.js → ja.ts} +111 -55
package/src/translations/{uk.js → uk.ts} +132 -67
package/src/translations/{zh-cn.js → zh-cn.ts} +60 -29
package/src/types/deep-partial.ts +11 -0
package/src/{types.d.ts → types.ts} +15 -7
package/src/utils/encryption-type-utils.ts +76 -0
package/src/utils.ts +329 -0
package/src/builders/ecies-builder.d.ts +0 -18
package/src/builders/ecies-builder.d.ts.map +0 -1
package/src/builders/ecies-builder.js +0 -30
package/src/builders/ecies-builder.js.map +0 -1
package/src/builders/index.d.ts +0 -6
package/src/builders/index.d.ts.map +0 -1
package/src/builders/index.js.map +0 -1
package/src/builders/member-builder.d.ts +0 -51
package/src/builders/member-builder.d.ts.map +0 -1
package/src/builders/member-builder.js +0 -97
package/src/builders/member-builder.js.map +0 -1
package/src/constants.d.ts +0 -60
package/src/constants.d.ts.map +0 -1
package/src/constants.js +0 -446
package/src/constants.js.map +0 -1
package/src/core/errors/crypto-error.d.ts +0 -34
package/src/core/errors/crypto-error.d.ts.map +0 -1
package/src/core/errors/crypto-error.js +0 -56
package/src/core/errors/crypto-error.js.map +0 -1
package/src/core/index.d.ts +0 -6
package/src/core/index.d.ts.map +0 -1
package/src/core/index.js.map +0 -1
package/src/core/types/result.d.ts +0 -16
package/src/core/types/result.d.ts.map +0 -1
package/src/core/types/result.js +0 -12
package/src/core/types/result.js.map +0 -1
package/src/email-string.d.ts +0 -42
package/src/email-string.d.ts.map +0 -1
package/src/email-string.js +0 -67
package/src/email-string.js.map +0 -1
package/src/enumerations/disposed-error-type.d.ts +0 -12
package/src/enumerations/disposed-error-type.d.ts.map +0 -1
package/src/enumerations/disposed-error-type.js +0 -13
package/src/enumerations/disposed-error-type.js.map +0 -1
package/src/enumerations/ecies-cipher-suite.d.ts +0 -4
package/src/enumerations/ecies-cipher-suite.d.ts.map +0 -1
package/src/enumerations/ecies-cipher-suite.js +0 -6
package/src/enumerations/ecies-cipher-suite.js.map +0 -1
package/src/enumerations/ecies-encryption-type.d.ts +0 -11
package/src/enumerations/ecies-encryption-type.d.ts.map +0 -1
package/src/enumerations/ecies-encryption-type.js +0 -27
package/src/enumerations/ecies-encryption-type.js.map +0 -1
package/src/enumerations/ecies-error-type.d.ts +0 -44
package/src/enumerations/ecies-error-type.d.ts.map +0 -1
package/src/enumerations/ecies-error-type.js +0 -45
package/src/enumerations/ecies-error-type.js.map +0 -1
package/src/enumerations/ecies-string-key.d.ts +0 -192
package/src/enumerations/ecies-string-key.d.ts.map +0 -1
package/src/enumerations/ecies-string-key.js +0 -199
package/src/enumerations/ecies-string-key.js.map +0 -1
package/src/enumerations/ecies-version.d.ts +0 -4
package/src/enumerations/ecies-version.d.ts.map +0 -1
package/src/enumerations/ecies-version.js +0 -5
package/src/enumerations/ecies-version.js.map +0 -1
package/src/enumerations/guid-brand-type.d.ts +0 -27
package/src/enumerations/guid-brand-type.d.ts.map +0 -1
package/src/enumerations/guid-brand-type.js +0 -28
package/src/enumerations/guid-brand-type.js.map +0 -1
package/src/enumerations/guid-error-type.d.ts +0 -7
package/src/enumerations/guid-error-type.d.ts.map +0 -1
package/src/enumerations/guid-error-type.js +0 -8
package/src/enumerations/guid-error-type.js.map +0 -1
package/src/enumerations/id-provider-error-type.d.ts +0 -43
package/src/enumerations/id-provider-error-type.d.ts.map +0 -1
package/src/enumerations/id-provider-error-type.js +0 -44
package/src/enumerations/id-provider-error-type.js.map +0 -1
package/src/enumerations/index.d.ts +0 -18
package/src/enumerations/index.d.ts.map +0 -1
package/src/enumerations/index.js.map +0 -1
package/src/enumerations/invalid-email-type.d.ts +0 -6
package/src/enumerations/invalid-email-type.d.ts.map +0 -1
package/src/enumerations/invalid-email-type.js +0 -7
package/src/enumerations/invalid-email-type.js.map +0 -1
package/src/enumerations/length-encoding-type.d.ts +0 -7
package/src/enumerations/length-encoding-type.d.ts.map +0 -1
package/src/enumerations/length-encoding-type.js +0 -8
package/src/enumerations/length-encoding-type.js.map +0 -1
package/src/enumerations/length-error-type.d.ts +0 -6
package/src/enumerations/length-error-type.d.ts.map +0 -1
package/src/enumerations/length-error-type.js +0 -7
package/src/enumerations/length-error-type.js.map +0 -1
package/src/enumerations/member-error-type.d.ts +0 -87
package/src/enumerations/member-error-type.d.ts.map +0 -1
package/src/enumerations/member-error-type.js +0 -88
package/src/enumerations/member-error-type.js.map +0 -1
package/src/enumerations/member-type.d.ts.map +0 -1
package/src/enumerations/member-type.js +0 -16
package/src/enumerations/member-type.js.map +0 -1
package/src/enumerations/password-login-error-type.d.ts +0 -5
package/src/enumerations/password-login-error-type.d.ts.map +0 -1
package/src/enumerations/password-login-error-type.js +0 -6
package/src/enumerations/password-login-error-type.js.map +0 -1
package/src/enumerations/pbkdf2-error-type.d.ts +0 -6
package/src/enumerations/pbkdf2-error-type.d.ts.map +0 -1
package/src/enumerations/pbkdf2-error-type.js +0 -7
package/src/enumerations/pbkdf2-error-type.js.map +0 -1
package/src/enumerations/pbkdf2-profile.d.ts +0 -6
package/src/enumerations/pbkdf2-profile.d.ts.map +0 -1
package/src/enumerations/pbkdf2-profile.js +0 -7
package/src/enumerations/pbkdf2-profile.js.map +0 -1
package/src/enumerations/secure-storage-error-type.d.ts +0 -6
package/src/enumerations/secure-storage-error-type.d.ts.map +0 -1
package/src/enumerations/secure-storage-error-type.js +0 -7
package/src/enumerations/secure-storage-error-type.js.map +0 -1
package/src/errors/disposed.d.ts +0 -22
package/src/errors/disposed.d.ts.map +0 -1
package/src/errors/disposed.js +0 -28
package/src/errors/disposed.js.map +0 -1
package/src/errors/ecies.d.ts +0 -52
package/src/errors/ecies.d.ts.map +0 -1
package/src/errors/ecies.js +0 -78
package/src/errors/ecies.js.map +0 -1
package/src/errors/guid.d.ts +0 -49
package/src/errors/guid.d.ts.map +0 -1
package/src/errors/guid.js +0 -96
package/src/errors/guid.js.map +0 -1
package/src/errors/id-provider.d.ts +0 -23
package/src/errors/id-provider.d.ts.map +0 -1
package/src/errors/id-provider.js +0 -29
package/src/errors/id-provider.js.map +0 -1
package/src/errors/index.d.ts.map +0 -1
package/src/errors/index.js +0 -10
package/src/errors/index.js.map +0 -1
package/src/errors/invalid-email.d.ts +0 -8
package/src/errors/invalid-email.d.ts.map +0 -1
package/src/errors/invalid-email.js +0 -15
package/src/errors/invalid-email.js.map +0 -1
package/src/errors/length.d.ts +0 -7
package/src/errors/length.d.ts.map +0 -1
package/src/errors/length.js +0 -11
package/src/errors/length.js.map +0 -1
package/src/errors/member.d.ts +0 -7
package/src/errors/member.d.ts.map +0 -1
package/src/errors/member.js +0 -11
package/src/errors/member.js.map +0 -1
package/src/errors/pbkdf2.d.ts +0 -7
package/src/errors/pbkdf2.d.ts.map +0 -1
package/src/errors/pbkdf2.js +0 -11
package/src/errors/pbkdf2.js.map +0 -1
package/src/errors/secure-storage.d.ts +0 -7
package/src/errors/secure-storage.d.ts.map +0 -1
package/src/errors/secure-storage.js +0 -12
package/src/errors/secure-storage.js.map +0 -1
package/src/errors/simple-ecies.d.ts +0 -6
package/src/errors/simple-ecies.d.ts.map +0 -1
package/src/errors/simple-ecies.js +0 -12
package/src/errors/simple-ecies.js.map +0 -1
package/src/errors/simple-test-error.d.ts +0 -4
package/src/errors/simple-test-error.d.ts.map +0 -1
package/src/errors/simple-test-error.js +0 -7
package/src/errors/simple-test-error.js.map +0 -1
package/src/i18n-setup.d.ts +0 -32
package/src/i18n-setup.d.ts.map +0 -1
package/src/i18n-setup.js +0 -101
package/src/i18n-setup.js.map +0 -1
package/src/index.d.ts +0 -80
package/src/index.d.ts.map +0 -1
package/src/index.js.map +0 -1
package/src/interfaces/checksum-config.d.ts +0 -5
package/src/interfaces/checksum-config.d.ts.map +0 -1
package/src/interfaces/checksum-config.js +0 -2
package/src/interfaces/checksum-config.js.map +0 -1
package/src/interfaces/checksum-consts.d.ts +0 -11
package/src/interfaces/checksum-consts.d.ts.map +0 -1
package/src/interfaces/checksum-consts.js +0 -2
package/src/interfaces/checksum-consts.js.map +0 -1
package/src/interfaces/configuration-provenance.d.ts +0 -43
package/src/interfaces/configuration-provenance.d.ts.map +0 -1
package/src/interfaces/configuration-provenance.js +0 -3
package/src/interfaces/configuration-provenance.js.map +0 -1
package/src/interfaces/constants.d.ts +0 -70
package/src/interfaces/constants.d.ts.map +0 -1
package/src/interfaces/constants.js +0 -2
package/src/interfaces/constants.js.map +0 -1
package/src/interfaces/ecies-config.d.ts +0 -9
package/src/interfaces/ecies-config.d.ts.map +0 -1
package/src/interfaces/ecies-config.js +0 -2
package/src/interfaces/ecies-config.js.map +0 -1
package/src/interfaces/ecies-consts.d.ts +0 -61
package/src/interfaces/ecies-consts.d.ts.map +0 -1
package/src/interfaces/ecies-consts.js +0 -2
package/src/interfaces/ecies-consts.js.map +0 -1
package/src/interfaces/ecies-file-service.d.ts +0 -7
package/src/interfaces/ecies-file-service.d.ts.map +0 -1
package/src/interfaces/ecies-file-service.js +0 -2
package/src/interfaces/ecies-file-service.js.map +0 -1
package/src/interfaces/encrypted-chunk.d.ts +0 -55
package/src/interfaces/encrypted-chunk.d.ts.map +0 -1
package/src/interfaces/encrypted-chunk.js +0 -12
package/src/interfaces/encrypted-chunk.js.map +0 -1
package/src/interfaces/encryption-state.d.ts +0 -18
package/src/interfaces/encryption-state.d.ts.map +0 -1
package/src/interfaces/encryption-state.js +0 -2
package/src/interfaces/encryption-state.js.map +0 -1
package/src/interfaces/frontend-member-operational.d.ts +0 -51
package/src/interfaces/frontend-member-operational.d.ts.map +0 -1
package/src/interfaces/frontend-member-operational.js +0 -2
package/src/interfaces/frontend-member-operational.js.map +0 -1
package/src/interfaces/guid.d.ts +0 -78
package/src/interfaces/guid.d.ts.map +0 -1
package/src/interfaces/guid.js +0 -2
package/src/interfaces/guid.js.map +0 -1
package/src/interfaces/id-provider.d.ts +0 -107
package/src/interfaces/id-provider.d.ts.map +0 -1
package/src/interfaces/id-provider.js +0 -52
package/src/interfaces/id-provider.js.map +0 -1
package/src/interfaces/index.d.ts.map +0 -1
package/src/interfaces/index.js +0 -13
package/src/interfaces/index.js.map +0 -1
package/src/interfaces/invariant.d.ts +0 -46
package/src/interfaces/invariant.d.ts.map +0 -1
package/src/interfaces/invariant.js +0 -18
package/src/interfaces/invariant.js.map +0 -1
package/src/interfaces/library-error.d.ts +0 -23
package/src/interfaces/library-error.d.ts.map +0 -1
package/src/interfaces/library-error.js +0 -2
package/src/interfaces/library-error.js.map +0 -1
package/src/interfaces/member-storage.d.ts.map +0 -1
package/src/interfaces/member-storage.js +0 -2
package/src/interfaces/member-storage.js.map +0 -1
package/src/interfaces/member-with-mnemonic.d.ts.map +0 -1
package/src/interfaces/member-with-mnemonic.js +0 -2
package/src/interfaces/member-with-mnemonic.js.map +0 -1
package/src/interfaces/member.d.ts +0 -55
package/src/interfaces/member.d.ts.map +0 -1
package/src/interfaces/member.js +0 -2
package/src/interfaces/member.js.map +0 -1
package/src/interfaces/multi-recipient-chunk.d.ts +0 -54
package/src/interfaces/multi-recipient-chunk.d.ts.map +0 -1
package/src/interfaces/multi-recipient-chunk.js +0 -11
package/src/interfaces/multi-recipient-chunk.js.map +0 -1
package/src/interfaces/pbkdf2-config.d.ts +0 -7
package/src/interfaces/pbkdf2-config.d.ts.map +0 -1
package/src/interfaces/pbkdf2-config.js +0 -2
package/src/interfaces/pbkdf2-config.js.map +0 -1
package/src/interfaces/pbkdf2-consts.d.ts +0 -9
package/src/interfaces/pbkdf2-consts.d.ts.map +0 -1
package/src/interfaces/pbkdf2-consts.js +0 -2
package/src/interfaces/pbkdf2-consts.js.map +0 -1
package/src/interfaces/pbkdf2-result.d.ts +0 -6
package/src/interfaces/pbkdf2-result.d.ts.map +0 -1
package/src/interfaces/pbkdf2-result.js +0 -2
package/src/interfaces/pbkdf2-result.js.map +0 -1
package/src/interfaces/stream-config.d.ts +0 -14
package/src/interfaces/stream-config.d.ts.map +0 -1
package/src/interfaces/stream-config.js +0 -8
package/src/interfaces/stream-config.js.map +0 -1
package/src/interfaces/stream-header.d.ts +0 -29
package/src/interfaces/stream-header.d.ts.map +0 -1
package/src/interfaces/stream-header.js +0 -9
package/src/interfaces/stream-header.js.map +0 -1
package/src/interfaces/stream-progress.d.ts +0 -33
package/src/interfaces/stream-progress.d.ts.map +0 -1
package/src/interfaces/stream-progress.js +0 -2
package/src/interfaces/stream-progress.js.map +0 -1
package/src/lib/configuration-provenance-utils.d.ts +0 -11
package/src/lib/configuration-provenance-utils.d.ts.map +0 -1
package/src/lib/configuration-provenance-utils.js +0 -23
package/src/lib/configuration-provenance-utils.js.map +0 -1
package/src/lib/crypto-container.d.ts +0 -25
package/src/lib/crypto-container.d.ts.map +0 -1
package/src/lib/crypto-container.js +0 -46
package/src/lib/crypto-container.js.map +0 -1
package/src/lib/guid.d.ts +0 -344
package/src/lib/guid.d.ts.map +0 -1
package/src/lib/guid.js +0 -914
package/src/lib/guid.js.map +0 -1
package/src/lib/id-providers/custom-provider.d.ts +0 -46
package/src/lib/id-providers/custom-provider.d.ts.map +0 -1
package/src/lib/id-providers/custom-provider.js +0 -85
package/src/lib/id-providers/custom-provider.js.map +0 -1
package/src/lib/id-providers/guidv4-provider.d.ts +0 -56
package/src/lib/id-providers/guidv4-provider.d.ts.map +0 -1
package/src/lib/id-providers/guidv4-provider.js +0 -122
package/src/lib/id-providers/guidv4-provider.js.map +0 -1
package/src/lib/id-providers/index.d.ts.map +0 -1
package/src/lib/id-providers/index.js +0 -29
package/src/lib/id-providers/index.js.map +0 -1
package/src/lib/id-providers/objectid-provider.d.ts +0 -43
package/src/lib/id-providers/objectid-provider.d.ts.map +0 -1
package/src/lib/id-providers/objectid-provider.js +0 -104
package/src/lib/id-providers/objectid-provider.js.map +0 -1
package/src/lib/id-providers/uuid-provider.d.ts +0 -52
package/src/lib/id-providers/uuid-provider.d.ts.map +0 -1
package/src/lib/id-providers/uuid-provider.js +0 -110
package/src/lib/id-providers/uuid-provider.js.map +0 -1
package/src/lib/index.d.ts +0 -6
package/src/lib/index.d.ts.map +0 -1
package/src/lib/index.js.map +0 -1
package/src/lib/invariant-validator.d.ts +0 -59
package/src/lib/invariant-validator.d.ts.map +0 -1
package/src/lib/invariant-validator.js +0 -97
package/src/lib/invariant-validator.js.map +0 -1
package/src/lib/invariants/encryption-algorithm-consistency.d.ts +0 -17
package/src/lib/invariants/encryption-algorithm-consistency.d.ts.map +0 -1
package/src/lib/invariants/encryption-algorithm-consistency.js +0 -49
package/src/lib/invariants/encryption-algorithm-consistency.js.map +0 -1
package/src/lib/invariants/index.d.ts +0 -4
package/src/lib/invariants/index.d.ts.map +0 -1
package/src/lib/invariants/index.js.map +0 -1
package/src/lib/invariants/pbkdf2-profiles-validity.d.ts +0 -16
package/src/lib/invariants/pbkdf2-profiles-validity.d.ts.map +0 -1
package/src/lib/invariants/pbkdf2-profiles-validity.js +0 -58
package/src/lib/invariants/pbkdf2-profiles-validity.js.map +0 -1
package/src/lib/invariants/recipient-id-consistency.d.ts +0 -18
package/src/lib/invariants/recipient-id-consistency.d.ts.map +0 -1
package/src/lib/invariants/recipient-id-consistency.js +0 -31
package/src/lib/invariants/recipient-id-consistency.js.map +0 -1
package/src/lib/multi-recipient-chunk-utils.d.ts +0 -38
package/src/lib/multi-recipient-chunk-utils.d.ts.map +0 -1
package/src/lib/multi-recipient-chunk-utils.js +0 -41
package/src/lib/multi-recipient-chunk-utils.js.map +0 -1
package/src/member.d.ts +0 -92
package/src/member.d.ts.map +0 -1
package/src/member.js +0 -322
package/src/member.js.map +0 -1
package/src/pbkdf2-profiles.d.ts.map +0 -1
package/src/pbkdf2-profiles.js +0 -2
package/src/pbkdf2-profiles.js.map +0 -1
package/src/phone-number.d.ts +0 -6
package/src/phone-number.d.ts.map +0 -1
package/src/phone-number.js +0 -18
package/src/phone-number.js.map +0 -1
package/src/regexes.d.ts +0 -7
package/src/regexes.d.ts.map +0 -1
package/src/regexes.js +0 -7
package/src/regexes.js.map +0 -1
package/src/secure-buffer.d.ts +0 -61
package/src/secure-buffer.d.ts.map +0 -1
package/src/secure-buffer.js +0 -201
package/src/secure-buffer.js.map +0 -1
package/src/secure-string.d.ts +0 -46
package/src/secure-string.d.ts.map +0 -1
package/src/secure-string.js +0 -206
package/src/secure-string.js.map +0 -1
package/src/services/aes-gcm.d.ts +0 -57
package/src/services/aes-gcm.d.ts.map +0 -1
package/src/services/aes-gcm.js +0 -142
package/src/services/aes-gcm.js.map +0 -1
package/src/services/chunk-processor.d.ts +0 -31
package/src/services/chunk-processor.d.ts.map +0 -1
package/src/services/chunk-processor.js +0 -145
package/src/services/chunk-processor.js.map +0 -1
package/src/services/ecies/crypto-core.d.ts +0 -72
package/src/services/ecies/crypto-core.d.ts.map +0 -1
package/src/services/ecies/crypto-core.js +0 -205
package/src/services/ecies/crypto-core.js.map +0 -1
package/src/services/ecies/example.d.ts +0 -25
package/src/services/ecies/example.d.ts.map +0 -1
package/src/services/ecies/example.js +0 -121
package/src/services/ecies/example.js.map +0 -1
package/src/services/ecies/file.d.ts +0 -18
package/src/services/ecies/file.d.ts.map +0 -1
package/src/services/ecies/file.js +0 -106
package/src/services/ecies/file.js.map +0 -1
package/src/services/ecies/index.d.ts +0 -38
package/src/services/ecies/index.d.ts.map +0 -1
package/src/services/ecies/index.js.map +0 -1
package/src/services/ecies/integration.d.ts +0 -59
package/src/services/ecies/integration.d.ts.map +0 -1
package/src/services/ecies/integration.js +0 -167
package/src/services/ecies/integration.js.map +0 -1
package/src/services/ecies/interfaces.d.ts +0 -54
package/src/services/ecies/interfaces.d.ts.map +0 -1
package/src/services/ecies/interfaces.js +0 -5
package/src/services/ecies/interfaces.js.map +0 -1
package/src/services/ecies/manual-test.d.ts +0 -29
package/src/services/ecies/manual-test.d.ts.map +0 -1
package/src/services/ecies/manual-test.js +0 -163
package/src/services/ecies/manual-test.js.map +0 -1
package/src/services/ecies/multi-recipient.d.ts +0 -56
package/src/services/ecies/multi-recipient.d.ts.map +0 -1
package/src/services/ecies/multi-recipient.js +0 -344
package/src/services/ecies/multi-recipient.js.map +0 -1
package/src/services/ecies/service.d.ts +0 -120
package/src/services/ecies/service.d.ts.map +0 -1
package/src/services/ecies/service.js +0 -210
package/src/services/ecies/service.js.map +0 -1
package/src/services/ecies/signature.d.ts +0 -27
package/src/services/ecies/signature.d.ts.map +0 -1
package/src/services/ecies/signature.js +0 -72
package/src/services/ecies/signature.js.map +0 -1
package/src/services/ecies/single-recipient.d.ts +0 -46
package/src/services/ecies/single-recipient.d.ts.map +0 -1
package/src/services/ecies/single-recipient.js +0 -322
package/src/services/ecies/single-recipient.js.map +0 -1
package/src/services/encryption-stream.d.ts +0 -71
package/src/services/encryption-stream.d.ts.map +0 -1
package/src/services/encryption-stream.js +0 -295
package/src/services/encryption-stream.js.map +0 -1
package/src/services/index.d.ts +0 -11
package/src/services/index.d.ts.map +0 -1
package/src/services/index.js.map +0 -1
package/src/services/multi-recipient-processor.d.ts +0 -35
package/src/services/multi-recipient-processor.d.ts.map +0 -1
package/src/services/multi-recipient-processor.js +0 -289
package/src/services/multi-recipient-processor.js.map +0 -1
package/src/services/password-login.d.ts +0 -47
package/src/services/password-login.d.ts.map +0 -1
package/src/services/password-login.js +0 -115
package/src/services/password-login.js.map +0 -1
package/src/services/pbkdf2.d.ts +0 -54
package/src/services/pbkdf2.d.ts.map +0 -1
package/src/services/pbkdf2.js +0 -108
package/src/services/pbkdf2.js.map +0 -1
package/src/services/progress-tracker.d.ts +0 -23
package/src/services/progress-tracker.d.ts.map +0 -1
package/src/services/progress-tracker.js +0 -103
package/src/services/progress-tracker.js.map +0 -1
package/src/services/resumable-encryption.d.ts +0 -19
package/src/services/resumable-encryption.d.ts.map +0 -1
package/src/services/resumable-encryption.js +0 -105
package/src/services/resumable-encryption.js.map +0 -1
package/src/services/xor.d.ts +0 -37
package/src/services/xor.d.ts.map +0 -1
package/src/services/xor.js +0 -63
package/src/services/xor.js.map +0 -1
package/src/test-mocks/index.d.ts +0 -2
package/src/test-mocks/index.d.ts.map +0 -1
package/src/test-mocks/index.js +0 -2
package/src/test-mocks/index.js.map +0 -1
package/src/test-mocks/mock-frontend-member.d.ts +0 -85
package/src/test-mocks/mock-frontend-member.d.ts.map +0 -1
package/src/test-mocks/mock-frontend-member.js +0 -190
package/src/test-mocks/mock-frontend-member.js.map +0 -1
package/src/testing.d.ts +0 -2
package/src/testing.d.ts.map +0 -1
package/src/testing.js.map +0 -1
package/src/translations/de.d.ts +0 -4
package/src/translations/de.d.ts.map +0 -1
package/src/translations/de.js.map +0 -1
package/src/translations/en-US.d.ts +0 -4
package/src/translations/en-US.d.ts.map +0 -1
package/src/translations/en-US.js.map +0 -1
package/src/translations/es.d.ts +0 -4
package/src/translations/es.d.ts.map +0 -1
package/src/translations/es.js.map +0 -1
package/src/translations/fr.d.ts +0 -4
package/src/translations/fr.d.ts.map +0 -1
package/src/translations/fr.js.map +0 -1
package/src/translations/ja.d.ts +0 -4
package/src/translations/ja.d.ts.map +0 -1
package/src/translations/ja.js.map +0 -1
package/src/translations/uk.d.ts +0 -4
package/src/translations/uk.d.ts.map +0 -1
package/src/translations/uk.js.map +0 -1
package/src/translations/zh-cn.d.ts +0 -4
package/src/translations/zh-cn.d.ts.map +0 -1
package/src/translations/zh-cn.js.map +0 -1
package/src/types/deep-partial.d.ts +0 -4
package/src/types/deep-partial.d.ts.map +0 -1
package/src/types/deep-partial.js +0 -2
package/src/types/deep-partial.js.map +0 -1
package/src/types.d.ts.map +0 -1
package/src/types.js +0 -2
package/src/types.js.map +0 -1
package/src/utils/encryption-type-utils.d.ts +0 -29
package/src/utils/encryption-type-utils.d.ts.map +0 -1
package/src/utils/encryption-type-utils.js +0 -61
package/src/utils/encryption-type-utils.js.map +0 -1
package/src/utils.d.ts +0 -68
package/src/utils.d.ts.map +0 -1
package/src/utils.js +0 -273
package/src/utils.js.map +0 -1

package/src/constants.ts ADDED Viewed

@@ -0,0 +1,609 @@
+import { ECIESErrorTypeEnum, EciesStringKey } from './enumerations';
+import { Pbkdf2ProfileEnum } from './enumerations/pbkdf2-profile';
+import { ECIESError } from './errors/ecies';
+import { EciesComponentId, getEciesI18nEngine } from './i18n-setup';
+import type { IChecksumConsts } from './interfaces/checksum-consts';
+import type { IConfigurationProvenance } from './interfaces/configuration-provenance';
+import {
+  calculateConfigChecksum,
+  captureCreationStack,
+} from './interfaces/configuration-provenance';
+import type { IConstants } from './interfaces/constants';
+import type { IECIESConstants } from './interfaces/ecies-consts';
+import type { IPBkdf2Consts } from './interfaces/pbkdf2-consts';
+import { ObjectIdProvider } from './lib/id-providers/objectid-provider';
+import { InvariantValidator } from './lib/invariant-validator';
+import type { Pbkdf2Profiles } from './pbkdf2-profiles';
+import { MNEMONIC_REGEX, PASSWORD_REGEX } from './regexes';
+import type { DeepPartial } from './types/deep-partial';
+export const UINT8_SIZE: number = 1 as const;
+export const UINT16_SIZE: number = 2 as const;
+export const UINT16_MAX: number = 65535 as const;
+export const UINT32_SIZE: number = 4 as const;
+export const UINT32_MAX: number = 4294967295 as const;
+export const UINT64_SIZE: number = 8 as const;
+export const UINT64_MAX: bigint = 18446744073709551615n as const;
+export const OBJECT_ID_LENGTH: number = 12 as const;
+if (OBJECT_ID_LENGTH !== 12) {
+  console.warn(
+    'ObjectID length may have changed, breaking encryption',
+    OBJECT_ID_LENGTH,
+  );
+}
+/**
+ * Constants for checksum operations
+ * These values are critical for data integrity and MUST NOT be changed
+ * in an already established system as it will break all existing checksums.
+ */
+export const CHECKSUM: IChecksumConsts = Object.freeze({
+  /** Default hash bits for SHA3 */
+  SHA3_DEFAULT_HASH_BITS: 512 as const,
+  /** Length of a SHA3 checksum buffer in bytes */
+  SHA3_BUFFER_LENGTH: 64 as const,
+  /** algorithm to use for checksum */
+  ALGORITHM: 'sha3-512' as const,
+  /** encoding to use for checksum */
+  ENCODING: 'hex' as const,
+} as const);
+export const PBKDF2: IPBkdf2Consts = Object.freeze({
+  ALGORITHM: 'SHA-256' as const,
+  SALT_BYTES: 32 as const,
+  /**
+   * Number of pbkdf2 iterations per second when hashing a password.
+   * This is the high-security default for user login operations.
+   */
+  ITERATIONS_PER_SECOND: 1304000 as const,
+} as const);
+export const PBKDF2_PROFILES: Pbkdf2Profiles = Object.freeze({
+  [Pbkdf2ProfileEnum.BROWSER_PASSWORD]: Object.freeze({
+    hashBytes: 32 as const,
+    saltBytes: 64 as const,
+    iterations: 2000000 as const,
+    algorithm: 'SHA-512' as const,
+  } as const),
+  [Pbkdf2ProfileEnum.HIGH_SECURITY]: Object.freeze({
+    hashBytes: 64 as const,
+    saltBytes: 32 as const,
+    iterations: 5000000 as const,
+    algorithm: 'SHA-256' as const,
+  } as const),
+  [Pbkdf2ProfileEnum.TEST_FAST]: Object.freeze({
+    hashBytes: 32 as const,
+    saltBytes: 64 as const,
+    iterations: 1000 as const,
+    algorithm: 'SHA-512' as const,
+  } as const),
+} as const);
+const ECIES_SYMMETRIC_KEY_SIZE = 32 as const;
+const ECIES_PUBLIC_KEY_LENGTH = 33 as const;
+const ECIES_RAW_PUBLIC_KEY_LENGTH = 32 as const;
+const ECIES_IV_SIZE = 12 as const;
+const ECIES_AUTH_TAG_SIZE = 16 as const;
+const ECIES_MULTIPLE_RECIPIENT_ID_SIZE = 12 as const;
+const ECIES_VERSION_SIZE = 1 as const;
+const ECIES_CIPHER_SUITE_SIZE = 1 as const;
+// Define the expected value for SIMPLE.FIXED_OVERHEAD_SIZE
+const expectedSimpleOverhead =
+  ECIES_VERSION_SIZE +
+  ECIES_CIPHER_SUITE_SIZE +
+  UINT8_SIZE +
+  ECIES_PUBLIC_KEY_LENGTH +
+  ECIES_IV_SIZE +
+  ECIES_AUTH_TAG_SIZE;
+// Define the expected value for MULTIPLE.FIXED_OVERHEAD_SIZE
+// Includes: version (1) + cipher suite (1) + type (1) + public key (33) + IV (16) + auth tag (16) = 68 (no CRC, AES-GCM provides authentication)
+const expectedMultipleOverhead =
+  ECIES_VERSION_SIZE +
+  ECIES_CIPHER_SUITE_SIZE +
+  UINT8_SIZE +
+  ECIES_PUBLIC_KEY_LENGTH +
+  ECIES_IV_SIZE +
+  ECIES_AUTH_TAG_SIZE;
+// Update ENCRYPTED_KEY_SIZE to match Simple encryption (no CRC)
+// Now only contains IV + Tag + EncryptedSymKey (Public Key is moved to global header)
+const expectedMultipleEncryptedKeySize =
+  ECIES_IV_SIZE + ECIES_AUTH_TAG_SIZE + ECIES_SYMMETRIC_KEY_SIZE;
+export const ECIES: IECIESConstants = Object.freeze({
+  /** The elliptic curve to use for all ECDSA operations */
+  CURVE_NAME: 'secp256k1' as const,
+  /** The primary key derivation path for HD wallets */
+  PRIMARY_KEY_DERIVATION_PATH: "m/44'/60'/0'/0/0" as const,
+  SYMMETRIC_ALGORITHM_CONFIGURATION: 'aes-256-gcm' as const,
+  /** Length of ECDSA signatures in bytes */
+  SIGNATURE_SIZE: 64 as const,
+  /** Length of raw public keys in bytes (without 0x04 prefix) */
+  RAW_PUBLIC_KEY_LENGTH: ECIES_RAW_PUBLIC_KEY_LENGTH,
+  /** Length of public keys in bytes (with 0x02/0x03 prefix) */
+  PUBLIC_KEY_LENGTH: ECIES_PUBLIC_KEY_LENGTH,
+  PUBLIC_KEY_MAGIC: 0x02 as const, // Compressed keys start with 0x02 or 0x03
+  /** Mnemonic strength in bits. This will produce a 32-bit key for ECDSA */
+  MNEMONIC_STRENGTH: 256 as const,
+  /** Symmetric encryption algorithm configuration */
+  SYMMETRIC: Object.freeze({
+    ALGORITHM: 'aes' as const,
+    MODE: 'gcm' as const,
+    KEY_BITS: 256 as const,
+    KEY_SIZE: ECIES_SYMMETRIC_KEY_SIZE, // KEY_BITS / 8
+  } as const),
+  IV_SIZE: ECIES_IV_SIZE,
+  AUTH_TAG_SIZE: ECIES_AUTH_TAG_SIZE,
+  MAX_RAW_DATA_SIZE: 9007199254740991 as const, // 2^53 - 1 (max safe integer for JS)
+  VERSION_SIZE: ECIES_VERSION_SIZE,
+  CIPHER_SUITE_SIZE: ECIES_CIPHER_SUITE_SIZE,
+  ENCRYPTION_TYPE_SIZE: 1 as const,
+  /**
+   * Message encrypts without data length or crc
+   */
+  SIMPLE: Object.freeze({
+    FIXED_OVERHEAD_SIZE: expectedSimpleOverhead, // version (1) + cipher suite (1) + type (1) + public key (33) + IV (16) + auth tag (16)
+    DATA_LENGTH_SIZE: 0 as const,
+  } as const),
+  /**
+   * Message encrypts with data length but no CRC (AES-GCM provides authentication)
+   */
+  SINGLE: Object.freeze({
+    FIXED_OVERHEAD_SIZE: expectedSimpleOverhead + 8, // version (1) + cipher suite (1) + type (1) + public key (33) + IV (16) + auth tag (16) + data length (8)
+    DATA_LENGTH_SIZE: 8,
+  } as const),
+  /**
+   * Message encrypts for multiple recipients
+   */
+  MULTIPLE: Object.freeze({
+    FIXED_OVERHEAD_SIZE: expectedMultipleOverhead, // version (1) + cipher suite (1) + type (1) + public key (33) + IV (16) + auth tag (16)
+    ENCRYPTED_KEY_SIZE: expectedMultipleEncryptedKeySize, // 64
+    MAX_RECIPIENTS: 65535,
+    RECIPIENT_ID_SIZE: ECIES_MULTIPLE_RECIPIENT_ID_SIZE,
+    RECIPIENT_COUNT_SIZE: 2,
+    DATA_LENGTH_SIZE: 8,
+  } as const),
+  ENCRYPTION_TYPE: Object.freeze({
+    SIMPLE: 33 as const,
+    SINGLE: 66 as const,
+    MULTIPLE: 99 as const,
+  } as const),
+});
+/**
+ * Default ID provider instance (singleton).
+ * Uses MongoDB ObjectID format (12 bytes).
+ */
+const DEFAULT_ID_PROVIDER = new ObjectIdProvider();
+export const Constants: IConstants = Object.freeze({
+  UINT8_SIZE: UINT8_SIZE,
+  UINT16_SIZE: UINT16_SIZE,
+  UINT16_MAX: UINT16_MAX,
+  UINT32_SIZE: UINT32_SIZE,
+  UINT32_MAX: UINT32_MAX,
+  UINT64_SIZE: UINT64_SIZE,
+  UINT64_MAX: UINT64_MAX,
+  HEX_RADIX: 16 as const,
+  MEMBER_ID_LENGTH: DEFAULT_ID_PROVIDER.byteLength,
+  OBJECT_ID_LENGTH: OBJECT_ID_LENGTH,
+  idProvider: DEFAULT_ID_PROVIDER,
+  CHECKSUM: CHECKSUM,
+  ECIES: ECIES,
+  PBKDF2: PBKDF2,
+  PBKDF2_PROFILES: PBKDF2_PROFILES,
+  /**
+   * Number of rounds for bcrypt hashing. Higher values increase security but also consume more CPU resources.
+   */
+  BcryptRounds: 10 as const,
+  /**
+   * Minimum password length
+   */
+  PasswordMinLength: 8 as const,
+  /**
+   * The regular expression for valid passwords.
+   */
+  PasswordRegex: PASSWORD_REGEX,
+  /**
+   * The regular expression for valid mnemonic phrases.
+   * BIP39 - supports 12, 15, 18, 21, or 24 word mnemonics
+   */
+  MnemonicRegex: MNEMONIC_REGEX,
+  /**
+   * Matches a 64-character hexadecimal string (SHA-256).
+   */
+  MnemonicHmacRegex: /^[a-f0-9]{64}$/,
+} as const);
+export type ConfigurationKey = string | symbol;
+const DEFAULT_CONFIGURATION_KEY: ConfigurationKey = Symbol.for(
+  'digitaldefiance.ecies.constants.default',
+);
+function isPlainObject(value: unknown): value is Record<string, unknown> {
+  if (value === null) {
+    return false;
+  }
+  if (typeof value !== 'object') {
+    return false;
+  }
+  if (Array.isArray(value)) {
+    return false;
+  }
+  if (value instanceof RegExp || value instanceof Date) {
+    return false;
+  }
+  return Object.getPrototypeOf(value) === Object.prototype;
+}
+function deepClone<T>(input: T): T {
+  if (input === null || input === undefined) {
+    return input;
+  }
+  if (typeof input !== 'object') {
+    return input;
+  }
+  if (Array.isArray(input)) {
+    return input.map((item) => deepClone(item)) as T;
+  }
+  if (input instanceof RegExp) {
+    return new RegExp(input.source, input.flags) as T;
+  }
+  if (input instanceof Date) {
+    return new Date(input.getTime()) as T;
+  }
+  if (isPlainObject(input)) {
+    const result: Record<string, unknown> = {};
+    for (const [key, value] of Object.entries(input)) {
+      result[key] = deepClone(value);
+    }
+    return result as T;
+  }
+  return input;
+}
+function applyOverrides<T>(target: T, overrides?: DeepPartial<T>): T {
+  if (!overrides) {
+    return target;
+  }
+  for (const [key, overrideValue] of Object.entries(overrides)) {
+    const typedKey = key as keyof T;
+    if (overrideValue === undefined) {
+      continue;
+    }
+    const currentValue = target[typedKey];
+    if (isPlainObject(currentValue) && isPlainObject(overrideValue)) {
+      (target as Record<string, unknown>)[typedKey as string] = applyOverrides(
+        currentValue,
+        overrideValue as DeepPartial<typeof currentValue>,
+      );
+    } else {
+      (target as Record<string, unknown>)[typedKey as string] =
+        deepClone(overrideValue);
+    }
+  }
+  return target;
+}
+function deepFreeze<T>(value: T): T {
+  if (value === null || typeof value !== 'object') {
+    return value;
+  }
+  if (Object.isFrozen(value)) {
+    return value;
+  }
+  Object.freeze(value);
+  for (const property of Object.getOwnPropertyNames(value)) {
+    const nestedValue = (value as Record<string, unknown>)[property];
+    if (nestedValue && typeof nestedValue === 'object') {
+      deepFreeze(nestedValue);
+    }
+  }
+  return value;
+}
+function computeMultipleEncryptedKeySize(ecies: IECIESConstants): number {
+  return ecies.IV_SIZE + ecies.AUTH_TAG_SIZE + ecies.SYMMETRIC.KEY_SIZE;
+}
+function validateConstants(config: IConstants): void {
+  const checksum = config.CHECKSUM;
+  const ecies = config.ECIES;
+  if (
+    checksum.SHA3_BUFFER_LENGTH !== checksum.SHA3_DEFAULT_HASH_BITS / 8 ||
+    checksum.SHA3_BUFFER_LENGTH !== checksum.SHA3_DEFAULT_HASH_BITS / 8
+  ) {
+    const engine = getEciesI18nEngine();
+    throw new Error(
+      engine.translate(
+        EciesComponentId,
+        EciesStringKey.Error_ECIESError_InvalidChecksumConstants,
+      ),
+    );
+  }
+  const expectedEncryptedKeySize = computeMultipleEncryptedKeySize(ecies);
+  if (ecies.MULTIPLE.ENCRYPTED_KEY_SIZE !== expectedEncryptedKeySize) {
+    throw new ECIESError(
+      ECIESErrorTypeEnum.InvalidECIESMultipleEncryptedKeySize,
+    );
+  }
+  if (ecies.PUBLIC_KEY_LENGTH !== ecies.RAW_PUBLIC_KEY_LENGTH + 1) {
+    throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESPublicKeyLength);
+  }
+  if (ecies.MULTIPLE.RECIPIENT_COUNT_SIZE !== UINT16_SIZE) {
+    throw new ECIESError(
+      ECIESErrorTypeEnum.InvalidECIESMultipleRecipientCountSize,
+    );
+  }
+  if (ecies.MULTIPLE.DATA_LENGTH_SIZE !== UINT64_SIZE) {
+    throw new ECIESError(ECIESErrorTypeEnum.InvalidECIESMultipleDataLengthSize);
+  }
+  // Validate ID provider is present and valid
+  if (!config.idProvider) {
+    throw new Error('ID provider is required in constants configuration');
+  }
+  if (
+    typeof config.idProvider.byteLength !== 'number' ||
+    config.idProvider.byteLength < 1 ||
+    config.idProvider.byteLength > 255
+  ) {
+    throw new Error(
+      `Invalid ID provider byteLength: ${config.idProvider.byteLength}. Must be between 1 and 255.`,
+    );
+  }
+  // Validate MEMBER_ID_LENGTH matches ID provider
+  if (config.MEMBER_ID_LENGTH !== config.idProvider.byteLength) {
+    throw new Error(
+      `MEMBER_ID_LENGTH (${config.MEMBER_ID_LENGTH}) must match idProvider.byteLength (${config.idProvider.byteLength})`,
+    );
+  }
+  // NOTE: We now validate against idProvider.byteLength instead of OBJECT_ID_LENGTH
+  // This allows for flexible ID sizes (12 bytes for ObjectID, 16 for GUID, 32 for legacy, etc.)
+  if (ecies.MULTIPLE.RECIPIENT_ID_SIZE !== config.idProvider.byteLength) {
+    throw new ECIESError(
+      ECIESErrorTypeEnum.InvalidECIESMultipleRecipientIdSize,
+    );
+  }
+}
+validateConstants(Constants);
+const configurationRegistry = new Map<ConfigurationKey, IConstants>();
+configurationRegistry.set(DEFAULT_CONFIGURATION_KEY, Constants);
+// Provenance tracking
+const provenanceRegistry = new Map<
+  ConfigurationKey,
+  IConfigurationProvenance
+>();
+provenanceRegistry.set(DEFAULT_CONFIGURATION_KEY, {
+  baseConfigKey: 'none',
+  overrides: {},
+  timestamp: new Date(),
+  source: 'default',
+  checksum: calculateConfigChecksum(Constants),
+  description: 'Built-in default configuration',
+});
+function isFullConstantsConfig(value: unknown): value is IConstants {
+  if (!isPlainObject(value)) {
+    return false;
+  }
+  const candidate = value as Partial<IConstants>;
+  return (
+    candidate.CHECKSUM !== undefined &&
+    candidate.ECIES !== undefined &&
+    candidate.PBKDF2 !== undefined &&
+    candidate.PBKDF2_PROFILES !== undefined &&
+    candidate.idProvider !== undefined
+  );
+}
+export function createRuntimeConfiguration(
+  overrides?: DeepPartial<IConstants>,
+  base: IConstants = Constants,
+): IConstants {
+  const merged = deepClone(base);
+  applyOverrides(merged, overrides);
+  // Auto-sync MEMBER_ID_LENGTH with idProvider.byteLength if provider changed
+  if (merged.idProvider && merged.idProvider !== base.idProvider) {
+    merged.MEMBER_ID_LENGTH = merged.idProvider.byteLength;
+  }
+  // Auto-sync ECIES.MULTIPLE.RECIPIENT_ID_SIZE with idProvider.byteLength if provider changed
+  if (merged.idProvider && merged.idProvider !== base.idProvider) {
+    merged.ECIES = {
+      ...merged.ECIES,
+      MULTIPLE: {
+        ...merged.ECIES.MULTIPLE,
+        RECIPIENT_ID_SIZE: merged.idProvider.byteLength,
+      },
+    };
+  }
+  // Validate individual properties
+  validateConstants(merged);
+  // Validate all invariants (relationships between properties)
+  InvariantValidator.validateAll(merged);
+  return deepFreeze(merged);
+}
+export class ConstantsRegistry {
+  public static readonly DEFAULT_KEY = DEFAULT_CONFIGURATION_KEY;
+  public static listKeys(): ConfigurationKey[] {
+    return Array.from(configurationRegistry.keys());
+  }
+  public static has(key: ConfigurationKey): boolean {
+    return configurationRegistry.has(key);
+  }
+  public static get(
+    key: ConfigurationKey = DEFAULT_CONFIGURATION_KEY,
+  ): IConstants {
+    return (
+      configurationRegistry.get(key) ??
+      configurationRegistry.get(DEFAULT_CONFIGURATION_KEY)!
+    );
+  }
+  /**
+   * Get provenance information for a configuration
+   */
+  public static getProvenance(
+    key: ConfigurationKey = DEFAULT_CONFIGURATION_KEY,
+  ): IConfigurationProvenance | undefined {
+    return provenanceRegistry.get(key);
+  }
+  /**
+   * List all configurations with their provenance
+   */
+  public static listWithProvenance(): Array<{
+    key: ConfigurationKey;
+    config: IConstants;
+    provenance?: IConfigurationProvenance;
+  }> {
+    return Array.from(configurationRegistry.entries()).map(([key, config]) => ({
+      key,
+      config,
+      provenance: provenanceRegistry.get(key),
+    }));
+  }
+  public static create(
+    overrides?: DeepPartial<IConstants>,
+    baseKey: ConfigurationKey = DEFAULT_CONFIGURATION_KEY,
+  ): IConstants {
+    const baseConfig = ConstantsRegistry.get(baseKey);
+    return createRuntimeConfiguration(overrides, baseConfig);
+  }
+  public static register(
+    key: ConfigurationKey,
+    configOrOverrides?: DeepPartial<IConstants> | IConstants,
+    options?: { baseKey?: ConfigurationKey; description?: string },
+  ): IConstants {
+    if (key === DEFAULT_CONFIGURATION_KEY) {
+      const engine = getEciesI18nEngine();
+      throw new Error(
+        engine.translate(
+          EciesComponentId,
+          EciesStringKey.Error_ECIESError_CannotOverwriteDefaultConfiguration,
+        ),
+      );
+    }
+    const baseKey = options?.baseKey ?? DEFAULT_CONFIGURATION_KEY;
+    const baseConfig = ConstantsRegistry.get(baseKey);
+    const isFullConfig = isFullConstantsConfig(configOrOverrides);
+    const configuration = isFullConfig
+      ? createRuntimeConfiguration(undefined, configOrOverrides)
+      : createRuntimeConfiguration(configOrOverrides, baseConfig);
+    // Track provenance
+    const provenance: IConfigurationProvenance = {
+      baseConfigKey: typeof baseKey === 'symbol' ? baseKey.toString() : baseKey,
+      overrides: isFullConfig ? {} : configOrOverrides ?? {},
+      timestamp: new Date(),
+      source: isFullConfig ? 'custom' : 'runtime',
+      checksum: calculateConfigChecksum(configuration),
+      description: options?.description,
+      creationStack: captureCreationStack(),
+    };
+    configurationRegistry.set(key, configuration);
+    provenanceRegistry.set(key, provenance);
+    return configuration;
+  }
+  public static unregister(key: ConfigurationKey): boolean {
+    if (key === DEFAULT_CONFIGURATION_KEY) {
+      return false;
+    }
+    provenanceRegistry.delete(key);
+    return configurationRegistry.delete(key);
+  }
+  public static clear(): void {
+    const defaultProvenance = provenanceRegistry.get(DEFAULT_CONFIGURATION_KEY);
+    configurationRegistry.clear();
+    provenanceRegistry.clear();
+    configurationRegistry.set(DEFAULT_CONFIGURATION_KEY, Constants);
+    if (defaultProvenance) {
+      provenanceRegistry.set(DEFAULT_CONFIGURATION_KEY, defaultProvenance);
+    }
+  }
+}
+export function getRuntimeConfiguration(
+  key: ConfigurationKey = DEFAULT_CONFIGURATION_KEY,
+): IConstants {
+  return ConstantsRegistry.get(key);
+}
+export function registerRuntimeConfiguration(
+  key: ConfigurationKey,
+  configOrOverrides?: DeepPartial<IConstants> | IConstants,
+  options?: { baseKey?: ConfigurationKey },
+): IConstants {
+  return ConstantsRegistry.register(key, configOrOverrides, options);
+}
+export function unregisterRuntimeConfiguration(key: ConfigurationKey): boolean {
+  return ConstantsRegistry.unregister(key);
+}
+export function clearRuntimeConfigurations(): void {
+  ConstantsRegistry.clear();
+}
+export { MNEMONIC_REGEX, PASSWORD_REGEX } from './regexes';

package/src/core/errors/crypto-error.ts ADDED Viewed

@@ -0,0 +1,78 @@
+/**
+ * Unified error class for all crypto operations
+ * Consolidates ECIESError, MemberError, Pbkdf2Error, etc.
+ */
+import { EciesStringKey } from '../../enumerations/ecies-string-key';
+import { EciesComponentId, getEciesI18nEngine } from '../../i18n-setup';
+export enum CryptoErrorCode {
+  // ECIES Errors
+  DECRYPTION_FAILED = 'DECRYPTION_FAILED',
+  INVALID_KEY_SIZE = 'INVALID_KEY_SIZE',
+  INVALID_ENCRYPTION_TYPE = 'INVALID_ENCRYPTION_TYPE',
+  INVALID_PUBLIC_KEY = 'INVALID_PUBLIC_KEY',
+  RECIPIENT_NOT_FOUND = 'RECIPIENT_NOT_FOUND',
+  TOO_MANY_RECIPIENTS = 'TOO_MANY_RECIPIENTS',
+  // Member Errors
+  MISSING_MEMBER_NAME = 'MISSING_MEMBER_NAME',
+  INVALID_EMAIL = 'INVALID_EMAIL',
+  WALLET_NOT_LOADED = 'WALLET_NOT_LOADED',
+  INVALID_MNEMONIC = 'INVALID_MNEMONIC',
+  // PBKDF2 Errors
+  INVALID_PROFILE = 'INVALID_PROFILE',
+  INVALID_SALT_LENGTH = 'INVALID_SALT_LENGTH',
+  INVALID_HASH_LENGTH = 'INVALID_HASH_LENGTH',
+  // Storage Errors
+  VALUE_IS_NULL = 'VALUE_IS_NULL',
+  CHECKSUM_MISMATCH = 'CHECKSUM_MISMATCH',
+  // Password Login Errors
+  PASSWORD_LOGIN_NOT_SETUP = 'PASSWORD_LOGIN_NOT_SETUP',
+  FAILED_TO_STORE_LOGIN_DATA = 'FAILED_TO_STORE_LOGIN_DATA',
+}
+export class CryptoError extends Error {
+  constructor(
+    public readonly code: CryptoErrorCode,
+    public readonly stringKey: EciesStringKey,
+    public override readonly metadata?: Record<string, string | number>,
+  ) {
+    const engine = getEciesI18nEngine();
+    const message = engine.translate(EciesComponentId, stringKey, metadata);
+    super(message);
+    this.name = 'CryptoError';
+    Object.setPrototypeOf(this, CryptoError.prototype);
+  }
+  static decryptionFailed(
+    metadata?: Record<string, string | number>,
+  ): CryptoError {
+    return new CryptoError(
+      CryptoErrorCode.DECRYPTION_FAILED,
+      EciesStringKey.Error_ECIESError_DecryptionFailed,
+      metadata,
+    );
+  }
+  static invalidProfile(
+    metadata?: Record<string, string | number>,
+  ): CryptoError {
+    return new CryptoError(
+      CryptoErrorCode.INVALID_PROFILE,
+      EciesStringKey.Error_Pbkdf2Error_InvalidProfile,
+      metadata,
+    );
+  }
+  static invalidEmail(metadata?: Record<string, string | number>): CryptoError {
+    return new CryptoError(
+      CryptoErrorCode.INVALID_EMAIL,
+      EciesStringKey.Error_MemberError_InvalidEmail,
+      metadata,
+    );
+  }
+}

package/src/core/{index.js → index.ts} RENAMED Viewed

@@ -1,6 +1,6 @@
 /**
  * Core exports for v2 architecture
  */
 export * from './errors/crypto-error';
 export * from './types/result';
-//# sourceMappingURL=index.js.map

package/src/core/types/result.ts ADDED Viewed

@@ -0,0 +1,19 @@
+/**
+ * Result pattern for better error handling
+ */
+import { CryptoError } from '../errors/crypto-error';
+export type CryptoResult<T> =
+  | { success: true; data: T }
+  | { success: false; error: CryptoError };
+export class ResultBuilder {
+  static success<T>(data: T): CryptoResult<T> {
+    return { success: true, data };
+  }
+  static failure<T>(error: CryptoError): CryptoResult<T> {
+    return { success: false, error };
+  }
+}