@etcsec-com/etc-collector 1.4.0

package/dist/providers/ldap/ldap-retry.js

@@ -0,0 +1,102 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LDAP_RETRY_OPTIONS = void 0;
+exports.isRetryableError = isRetryableError;
+exports.retryWithBackoff = retryWithBackoff;
+exports.retryable = retryable;
+const logger_1 = require("../../utils/logger");
+const DEFAULT_RETRY_OPTIONS = {
+    maxAttempts: 3,
+    initialDelay: 1000,
+    maxDelay: 30000,
+    backoffMultiplier: 2,
+    jitterFactor: 0.1,
+    shouldRetry: () => true,
+    onRetry: () => { },
+};
+const RETRYABLE_ERROR_CODES = [
+    'ECONNREFUSED',
+    'ECONNRESET',
+    'ETIMEDOUT',
+    'ENOTFOUND',
+    'ENETUNREACH',
+    'EHOSTUNREACH',
+];
+function isRetryableError(error) {
+    if ('code' in error && typeof error.code === 'string') {
+        if (RETRYABLE_ERROR_CODES.includes(error.code)) {
+            return true;
+        }
+    }
+    const message = error.message.toLowerCase();
+    if (message.includes('timeout') ||
+        message.includes('timed out') ||
+        message.includes('connection') ||
+        message.includes('network') ||
+        message.includes('unavailable')) {
+        return true;
+    }
+    if (message.includes('invalid credentials') ||
+        message.includes('authentication failed') ||
+        message.includes('bind failed')) {
+        return false;
+    }
+    return false;
+}
+function calculateDelay(attempt, options) {
+    const exponentialDelay = options.initialDelay * Math.pow(options.backoffMultiplier, attempt);
+    const cappedDelay = Math.min(exponentialDelay, options.maxDelay);
+    const jitter = cappedDelay * options.jitterFactor * (Math.random() * 2 - 1);
+    const delayWithJitter = cappedDelay + jitter;
+    return Math.max(0, delayWithJitter);
+}
+function sleep(ms) {
+    return new Promise((resolve) => setTimeout(resolve, ms));
+}
+async function retryWithBackoff(operation, options = {}) {
+    const opts = {
+        ...DEFAULT_RETRY_OPTIONS,
+        ...options,
+        shouldRetry: options.shouldRetry || DEFAULT_RETRY_OPTIONS.shouldRetry,
+        onRetry: options.onRetry || DEFAULT_RETRY_OPTIONS.onRetry,
+    };
+    let lastError;
+    let attempt = 0;
+    while (attempt < opts.maxAttempts) {
+        try {
+            return await operation();
+        }
+        catch (error) {
+            lastError = error instanceof Error ? error : new Error(String(error));
+            const isLastAttempt = attempt === opts.maxAttempts - 1;
+            const shouldRetry = opts.shouldRetry(lastError, attempt);
+            if (isLastAttempt || !shouldRetry) {
+                throw lastError;
+            }
+            const delay = calculateDelay(attempt, opts);
+            logger_1.logger.warn(`Operation failed (attempt ${attempt + 1}/${opts.maxAttempts}): ${lastError.message}. ` +
+                `Retrying in ${Math.round(delay)}ms...`);
+            opts.onRetry(lastError, attempt, delay);
+            await sleep(delay);
+            attempt++;
+        }
+    }
+    throw lastError || new Error('Operation failed after all retries');
+}
+function retryable(fn, options = {}) {
+    return async (...args) => {
+        return retryWithBackoff(() => fn(...args), options);
+    };
+}
+exports.LDAP_RETRY_OPTIONS = {
+    maxAttempts: 3,
+    initialDelay: 1000,
+    maxDelay: 10000,
+    backoffMultiplier: 2,
+    jitterFactor: 0.1,
+    shouldRetry: isRetryableError,
+    onRetry: (error, attempt, delay) => {
+        logger_1.logger.debug(`LDAP operation retry: attempt=${attempt}, error=${error.message}, delay=${delay}ms`);
+    },
+};
+//# sourceMappingURL=ldap-retry.js.map

package/dist/providers/ldap/ldap-retry.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ldap-retry.js","sourceRoot":"","sources":["../../../src/providers/ldap/ldap-retry.ts"],"names":[],"mappings":";;;AAuFA,4CA8BC;AAoDD,4CAoDC;AAqBD,8BAOC;AAzPD,+CAA4C;AA4D5C,MAAM,qBAAqB,GAA2B;IACpD,WAAW,EAAE,CAAC;IACd,YAAY,EAAE,IAAI;IAClB,QAAQ,EAAE,KAAK;IACf,iBAAiB,EAAE,CAAC;IACpB,YAAY,EAAE,GAAG;IACjB,WAAW,EAAE,GAAG,EAAE,CAAC,IAAI;IACvB,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC;CAClB,CAAC;AAKF,MAAM,qBAAqB,GAAG;IAC5B,cAAc;IACd,YAAY;IACZ,WAAW;IACX,WAAW;IACX,aAAa;IACb,cAAc;CACf,CAAC;AAOF,SAAgB,gBAAgB,CAAC,KAAY;IAE3C,IAAI,MAAM,IAAI,KAAK,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtD,IAAI,qBAAqB,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/C,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAGD,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;IAC5C,IACE,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC;QAC3B,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC;QAC7B,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;QAC9B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC;QAC3B,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,EAC/B,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAGD,IACE,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAAC;QACvC,OAAO,CAAC,QAAQ,CAAC,uBAAuB,CAAC;QACzC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,EAC/B,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AASD,SAAS,cAAc,CAAC,OAAe,EAAE,OAA+B;IAEtE,MAAM,gBAAgB,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,iBAAiB,EAAE,OAAO,CAAC,CAAC;IAG7F,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAAC,gBAAgB,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;IAGjE,MAAM,MAAM,GAAG,WAAW,GAAG,OAAO,CAAC,YAAY,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;IAC5E,MAAM,eAAe,GAAG,WAAW,GAAG,MAAM,CAAC;IAG7C,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,eAAe,CAAC,CAAC;AACtC,CAAC;AAKD,SAAS,KAAK,CAAC,EAAU;IACvB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;AAC3D,CAAC;AAuBM,KAAK,UAAU,gBAAgB,CACpC,SAA2B,EAC3B,UAAwB,EAAE;IAG1B,MAAM,IAAI,GAA2B;QACnC,GAAG,qBAAqB;QACxB,GAAG,OAAO;QACV,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,qBAAqB,CAAC,WAAW;QACrE,OAAO,EAAE,OAAO,CAAC,OAAO,IAAI,qBAAqB,CAAC,OAAO;KAC1D,CAAC;IAEF,IAAI,SAA4B,CAAC;IACjC,IAAI,OAAO,GAAG,CAAC,CAAC;IAEhB,OAAO,OAAO,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;QAClC,IAAI,CAAC;YAEH,OAAO,MAAM,SAAS,EAAE,CAAC;QAC3B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,SAAS,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YAGtE,MAAM,aAAa,GAAG,OAAO,KAAK,IAAI,CAAC,WAAW,GAAG,CAAC,CAAC;YACvD,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YAEzD,IAAI,aAAa,IAAI,CAAC,WAAW,EAAE,CAAC;gBAElC,MAAM,SAAS,CAAC;YAClB,CAAC;YAGD,MAAM,KAAK,GAAG,cAAc,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;YAG5C,eAAM,CAAC,IAAI,CACT,6BAA6B,OAAO,GAAG,CAAC,IAAI,IAAI,CAAC,WAAW,MAAM,SAAS,CAAC,OAAO,IAAI;gBACrF,eAAe,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAC1C,CAAC;YAGF,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;YAGxC,MAAM,KAAK,CAAC,KAAK,CAAC,CAAC;YAEnB,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAGD,MAAM,SAAS,IAAI,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;AACrE,CAAC;AAqBD,SAAgB,SAAS,CACvB,EAAwC,EACxC,UAAwB,EAAE;IAE1B,OAAO,KAAK,EAAE,GAAG,IAAW,EAAoB,EAAE;QAChD,OAAO,gBAAgB,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,EAAE,OAAO,CAAC,CAAC;IACtD,CAAC,CAAC;AACJ,CAAC;AAOY,QAAA,kBAAkB,GAAiB;IAC9C,WAAW,EAAE,CAAC;IACd,YAAY,EAAE,IAAI;IAClB,QAAQ,EAAE,KAAK;IACf,iBAAiB,EAAE,CAAC;IACpB,YAAY,EAAE,GAAG;IACjB,WAAW,EAAE,gBAAgB;IAC7B,OAAO,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACjC,eAAM,CAAC,KAAK,CAAC,iCAAiC,OAAO,WAAW,KAAK,CAAC,OAAO,WAAW,KAAK,IAAI,CAAC,CAAC;IACrG,CAAC;CACF,CAAC"}

package/dist/providers/ldap/ldap-sanitizer.d.ts

@@ -0,0 +1,12 @@
+export declare class LDAPSanitizer {
+    private static readonly FILTER_ESCAPE_MAP;
+    private static readonly DN_SPECIAL_CHARS;
+    static sanitizeFilter(filter: string): string;
+    static sanitizeDN(dn: string): string;
+    static isValidFilter(filter: string): boolean;
+    static isValidDN(dn: string): boolean;
+    static sanitizeAttribute(attribute: string): string;
+    static buildFilter(attribute: string, operator: '=' | '>=' | '<=' | '~=' | '=*', value: string): string;
+    static buildLogicalFilter(operator: '&' | '|' | '!', filters: string[]): string;
+}
+//# sourceMappingURL=ldap-sanitizer.d.ts.map

package/dist/providers/ldap/ldap-sanitizer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ldap-sanitizer.d.ts","sourceRoot":"","sources":["../../../src/providers/ldap/ldap-sanitizer.ts"],"names":[],"mappings":"AAcA,qBAAa,aAAa;IAIxB,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,iBAAiB,CAMvC;IAKF,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,gBAAgB,CAAkD;IAkB1F,MAAM,CAAC,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;IA8B7C,MAAM,CAAC,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,MAAM;IAqDrC,MAAM,CAAC,aAAa,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IAyD7C,MAAM,CAAC,SAAS,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;IAmBrC,MAAM,CAAC,iBAAiB,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM;IA0BnD,MAAM,CAAC,WAAW,CAChB,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,GAAG,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI,EACzC,KAAK,EAAE,MAAM,GACZ,MAAM;IAyBT,MAAM,CAAC,kBAAkB,CAAC,QAAQ,EAAE,GAAG,GAAG,GAAG,GAAG,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,MAAM;CAWhF"}

package/dist/providers/ldap/ldap-sanitizer.js

@@ -0,0 +1,104 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LDAPSanitizer = void 0;
+class LDAPSanitizer {
+    static FILTER_ESCAPE_MAP = {
+        '\\': '\\5c',
+        '*': '\\2a',
+        '(': '\\28',
+        ')': '\\29',
+        '\0': '\\00',
+    };
+    static DN_SPECIAL_CHARS = [',', '=', '+', '<', '>', '#', ';', '\\', '"'];
+    static sanitizeFilter(filter) {
+        if (!filter) {
+            return filter;
+        }
+        let sanitized = filter;
+        for (const [char, escape] of Object.entries(this.FILTER_ESCAPE_MAP)) {
+            sanitized = sanitized.split(char).join(escape);
+        }
+        return sanitized;
+    }
+    static sanitizeDN(dn) {
+        if (!dn) {
+            return dn;
+        }
+        let sanitized = dn;
+        sanitized = sanitized.replace(/\\/g, '\\\\');
+        for (const char of this.DN_SPECIAL_CHARS) {
+            if (char === '\\')
+                continue;
+            const regex = new RegExp(`\\${char}`, 'g');
+            sanitized = sanitized.replace(regex, `\\${char}`);
+        }
+        if (sanitized.startsWith(' ')) {
+            sanitized = '\\' + sanitized;
+        }
+        if (sanitized.endsWith(' ') && !sanitized.endsWith('\\ ')) {
+            sanitized = sanitized.slice(0, -1) + '\\ ';
+        }
+        if (sanitized.startsWith('#')) {
+            sanitized = '\\' + sanitized;
+        }
+        return sanitized;
+    }
+    static isValidFilter(filter) {
+        if (!filter || typeof filter !== 'string') {
+            return false;
+        }
+        if (!filter.startsWith('(') || !filter.endsWith(')')) {
+            return false;
+        }
+        let depth = 0;
+        for (const char of filter) {
+            if (char === '(') {
+                depth++;
+            }
+            else if (char === ')') {
+                depth--;
+            }
+            if (depth < 0) {
+                return false;
+            }
+        }
+        if (depth !== 0) {
+            return false;
+        }
+        const hasLogicalOp = /^(\(&|\(\||\(!)/.test(filter);
+        const hasAttribute = /\w+=/.test(filter);
+        if (!hasLogicalOp && !hasAttribute) {
+            return false;
+        }
+        return true;
+    }
+    static isValidDN(dn) {
+        if (!dn || typeof dn !== 'string') {
+            return false;
+        }
+        const dnPattern = /^([a-zA-Z][a-zA-Z0-9-]*=[^,]+)(,\s*[a-zA-Z][a-zA-Z0-9-]*=[^,]+)*$/;
+        return dnPattern.test(dn.trim());
+    }
+    static sanitizeAttribute(attribute) {
+        if (!attribute || typeof attribute !== 'string') {
+            return '';
+        }
+        return attribute.replace(/[^a-zA-Z0-9.-]/g, '');
+    }
+    static buildFilter(attribute, operator, value) {
+        const safeAttribute = this.sanitizeAttribute(attribute);
+        const safeValue = operator === '=*' ? value : this.sanitizeFilter(value);
+        return `(${safeAttribute}${operator}${safeValue})`;
+    }
+    static buildLogicalFilter(operator, filters) {
+        if (!filters || filters.length === 0) {
+            return '';
+        }
+        if (operator === '!' && filters.length !== 1) {
+            throw new Error('NOT operator requires exactly one filter');
+        }
+        return `(${operator}${filters.join('')})`;
+    }
+}
+exports.LDAPSanitizer = LDAPSanitizer;
+//# sourceMappingURL=ldap-sanitizer.js.map

package/dist/providers/ldap/ldap-sanitizer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ldap-sanitizer.js","sourceRoot":"","sources":["../../../src/providers/ldap/ldap-sanitizer.ts"],"names":[],"mappings":";;;AAcA,MAAa,aAAa;IAIhB,MAAM,CAAU,iBAAiB,GAA2B;QAClE,IAAI,EAAE,MAAM;QACZ,GAAG,EAAE,MAAM;QACX,GAAG,EAAE,MAAM;QACX,GAAG,EAAE,MAAM;QACX,IAAI,EAAE,MAAM;KACb,CAAC;IAKM,MAAM,CAAU,gBAAgB,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,CAAC,CAAC;IAkB1F,MAAM,CAAC,cAAc,CAAC,MAAc;QAClC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,IAAI,SAAS,GAAG,MAAM,CAAC;QAGvB,KAAK,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,iBAAiB,CAAC,EAAE,CAAC;YACpE,SAAS,GAAG,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjD,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;IAiBD,MAAM,CAAC,UAAU,CAAC,EAAU;QAC1B,IAAI,CAAC,EAAE,EAAE,CAAC;YACR,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,IAAI,SAAS,GAAG,EAAE,CAAC;QAGnB,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAG7C,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACzC,IAAI,IAAI,KAAK,IAAI;gBAAE,SAAS;YAC5B,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,KAAK,IAAI,EAAE,EAAE,GAAG,CAAC,CAAC;YAC3C,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;QACpD,CAAC;QAGD,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YAC9B,SAAS,GAAG,IAAI,GAAG,SAAS,CAAC;QAC/B,CAAC;QAGD,IAAI,SAAS,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAC1D,SAAS,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC;QAC7C,CAAC;QAGD,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YAC9B,SAAS,GAAG,IAAI,GAAG,SAAS,CAAC;QAC/B,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;IAoBD,MAAM,CAAC,aAAa,CAAC,MAAc;QACjC,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC1C,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACrD,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,IAAI,KAAK,GAAG,CAAC,CAAC;QACd,KAAK,MAAM,IAAI,IAAI,MAAM,EAAE,CAAC;YAC1B,IAAI,IAAI,KAAK,GAAG,EAAE,CAAC;gBACjB,KAAK,EAAE,CAAC;YACV,CAAC;iBAAM,IAAI,IAAI,KAAK,GAAG,EAAE,CAAC;gBACxB,KAAK,EAAE,CAAC;YACV,CAAC;YAED,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;gBACd,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;QAGD,IAAI,KAAK,KAAK,CAAC,EAAE,CAAC;YAChB,OAAO,KAAK,CAAC;QACf,CAAC;QAID,MAAM,YAAY,GAAG,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACpD,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAEzC,IAAI,CAAC,YAAY,IAAI,CAAC,YAAY,EAAE,CAAC;YACnC,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAkBD,MAAM,CAAC,SAAS,CAAC,EAAU;QACzB,IAAI,CAAC,EAAE,IAAI,OAAO,EAAE,KAAK,QAAQ,EAAE,CAAC;YAClC,OAAO,KAAK,CAAC;QACf,CAAC;QAGD,MAAM,SAAS,GAAG,mEAAmE,CAAC;QACtF,OAAO,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC,CAAC;IACnC,CAAC;IAWD,MAAM,CAAC,iBAAiB,CAAC,SAAiB;QACxC,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;YAChD,OAAO,EAAE,CAAC;QACZ,CAAC;QAGD,OAAO,SAAS,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC;IAClD,CAAC;IAmBD,MAAM,CAAC,WAAW,CAChB,SAAiB,EACjB,QAAyC,EACzC,KAAa;QAEb,MAAM,aAAa,GAAG,IAAI,CAAC,iBAAiB,CAAC,SAAS,CAAC,CAAC;QACxD,MAAM,SAAS,GAAG,QAAQ,KAAK,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC;QAEzE,OAAO,IAAI,aAAa,GAAG,QAAQ,GAAG,SAAS,GAAG,CAAC;IACrD,CAAC;IAoBD,MAAM,CAAC,kBAAkB,CAAC,QAAyB,EAAE,OAAiB;QACpE,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACrC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,IAAI,QAAQ,KAAK,GAAG,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC7C,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;QAC9D,CAAC;QAED,OAAO,IAAI,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC;IAC5C,CAAC;;AAjQH,sCAkQC"}

package/dist/providers/ldap/ldap.provider.d.ts

@@ -0,0 +1,21 @@
+import { ILDAPProvider, SearchOptions, ConnectionTestResult } from '../interfaces/ILDAPProvider';
+import { ADUser, ADGroup, ADComputer, ADOU } from '../../types/ad.types';
+import { LDAPConfig } from '../../types/config.types';
+export declare class LDAPProvider implements ILDAPProvider {
+    private client;
+    private config;
+    getBaseDN(): string;
+    getUrl(): string;
+    constructor(config: LDAPConfig);
+    connect(): Promise<void>;
+    disconnect(): Promise<void>;
+    testConnection(): Promise<ConnectionTestResult>;
+    searchUsers(filter?: string, attributes?: string[]): Promise<ADUser[]>;
+    searchGroups(filter?: string, attributes?: string[]): Promise<ADGroup[]>;
+    searchComputers(filter?: string, attributes?: string[]): Promise<ADComputer[]>;
+    searchOUs(filter?: string, attributes?: string[]): Promise<ADOU[]>;
+    search<T>(baseDN: string, options: SearchOptions): Promise<T[]>;
+    buildSafeFilter(attribute: string, operator: '=' | '>=' | '<=' | '~=' | '=*', value: string): string;
+    buildLogicalFilter(operator: '&' | '|' | '!', filters: string[]): string;
+}
+//# sourceMappingURL=ldap.provider.d.ts.map

package/dist/providers/ldap/ldap.provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ldap.provider.d.ts","sourceRoot":"","sources":["../../../src/providers/ldap/ldap.provider.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,oBAAoB,EAAE,MAAM,6BAA6B,CAAC;AACjG,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,sBAAsB,CAAC;AACzE,OAAO,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AActD,qBAAa,YAAa,YAAW,aAAa;IAChD,OAAO,CAAC,MAAM,CAAa;IAC3B,OAAO,CAAC,MAAM,CAAa;IAK3B,SAAS,IAAI,MAAM;IAOnB,MAAM,IAAI,MAAM;gBAIJ,MAAM,EAAE,UAAU;IAuBxB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAQxB,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAQ3B,cAAc,IAAI,OAAO,CAAC,oBAAoB,CAAC;IAiC/C,WAAW,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAuCtE,YAAY,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC;IAkCxE,eAAe,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC;IAmC9E,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;IA6BlE,MAAM,CAAC,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,CAAC,EAAE,CAAC;IA6BrE,eAAe,CACb,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,GAAG,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI,GAAG,IAAI,EACzC,KAAK,EAAE,MAAM,GACZ,MAAM;IAaT,kBAAkB,CAAC,QAAQ,EAAE,GAAG,GAAG,GAAG,GAAG,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,MAAM;CAGzE"}

package/dist/providers/ldap/ldap.provider.js

@@ -0,0 +1,165 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LDAPProvider = void 0;
+const ldap_client_1 = require("./ldap-client");
+const ldap_sanitizer_1 = require("./ldap-sanitizer");
+const ad_mappers_1 = require("./ad-mappers");
+const logger_1 = require("../../utils/logger");
+class LDAPProvider {
+    client;
+    config;
+    getBaseDN() {
+        return this.config.baseDN;
+    }
+    getUrl() {
+        return this.config.url;
+    }
+    constructor(config) {
+        this.config = config;
+        const connectionOptions = {
+            url: config.url,
+            bindDN: config.bindDN,
+            bindPassword: config.bindPassword,
+            timeout: config.timeout,
+            caCertPath: config.caCertPath,
+            tlsOptions: {
+                rejectUnauthorized: config.tlsVerify,
+            },
+            skipHostnameVerification: config.skipHostnameVerification,
+            tlsServername: config.tlsServername,
+        };
+        this.client = new ldap_client_1.LDAPClient(connectionOptions);
+    }
+    async connect() {
+        logger_1.logger.info('Connecting to LDAP server...');
+        await this.client.connect();
+    }
+    async disconnect() {
+        logger_1.logger.info('Disconnecting from LDAP server...');
+        await this.client.disconnect();
+    }
+    async testConnection() {
+        logger_1.logger.info('Testing LDAP connection...');
+        const result = await this.client.testConnection();
+        if (result.success) {
+            const protocol = this.config.url.startsWith('ldaps://') ? 'ldaps' : 'ldap';
+            return {
+                success: true,
+                message: 'Connection successful',
+                details: {
+                    url: this.config.url,
+                    baseDN: this.config.baseDN,
+                    protocol,
+                    bindDN: this.config.bindDN,
+                    responseTime: result.responseTime,
+                },
+            };
+        }
+        else {
+            return {
+                success: false,
+                message: 'Connection failed',
+            };
+        }
+    }
+    async searchUsers(filter, attributes) {
+        const userFilter = filter
+            ? `(&(objectClass=user)(objectCategory=person)${filter})`
+            : '(&(objectClass=user)(objectCategory=person))';
+        logger_1.logger.debug(`Searching for users with filter: ${userFilter}`);
+        const defaultAttributes = [
+            'dn',
+            'sAMAccountName',
+            'userPrincipalName',
+            'displayName',
+            'userAccountControl',
+            'pwdLastSet',
+            'lastLogon',
+            'adminCount',
+            'memberOf',
+        ];
+        const searchOptions = {
+            filter: userFilter,
+            scope: 'sub',
+            attributes: attributes || defaultAttributes,
+            paged: true,
+        };
+        const entries = await this.client.search(this.config.baseDN, searchOptions);
+        return entries.map(ad_mappers_1.mapToADUser);
+    }
+    async searchGroups(filter, attributes) {
+        const groupFilter = filter ? `(&(objectClass=group)${filter})` : '(objectClass=group)';
+        logger_1.logger.debug(`Searching for groups with filter: ${groupFilter}`);
+        const defaultAttributes = [
+            'dn',
+            'sAMAccountName',
+            'displayName',
+            'groupType',
+            'memberOf',
+            'member',
+        ];
+        const searchOptions = {
+            filter: groupFilter,
+            scope: 'sub',
+            attributes: attributes || defaultAttributes,
+            paged: true,
+        };
+        const entries = await this.client.search(this.config.baseDN, searchOptions);
+        return entries.map(ad_mappers_1.mapToADGroup);
+    }
+    async searchComputers(filter, attributes) {
+        const computerFilter = filter ? `(&(objectClass=computer)${filter})` : '(objectClass=computer)';
+        logger_1.logger.debug(`Searching for computers with filter: ${computerFilter}`);
+        const defaultAttributes = [
+            'dn',
+            'sAMAccountName',
+            'dNSHostName',
+            'operatingSystem',
+            'operatingSystemVersion',
+            'lastLogon',
+            'userAccountControl',
+        ];
+        const searchOptions = {
+            filter: computerFilter,
+            scope: 'sub',
+            attributes: attributes || defaultAttributes,
+            paged: true,
+        };
+        const entries = await this.client.search(this.config.baseDN, searchOptions);
+        return entries.map(ad_mappers_1.mapToADComputer);
+    }
+    async searchOUs(filter, attributes) {
+        const ouFilter = filter
+            ? `(&(objectClass=organizationalUnit)${filter})`
+            : '(objectClass=organizationalUnit)';
+        logger_1.logger.debug(`Searching for OUs with filter: ${ouFilter}`);
+        const defaultAttributes = ['dn', 'name', 'ou', 'description'];
+        const searchOptions = {
+            filter: ouFilter,
+            scope: 'sub',
+            attributes: attributes || defaultAttributes,
+            paged: true,
+        };
+        const entries = await this.client.search(this.config.baseDN, searchOptions);
+        return entries.map(ad_mappers_1.mapToADOU);
+    }
+    async search(baseDN, options) {
+        logger_1.logger.debug(`Generic LDAP search: baseDN=${baseDN}, filter=${options.filter}`);
+        if (!ldap_sanitizer_1.LDAPSanitizer.isValidFilter(options.filter)) {
+            throw new Error(`Invalid LDAP filter syntax: ${options.filter}`);
+        }
+        if (!ldap_sanitizer_1.LDAPSanitizer.isValidDN(baseDN)) {
+            throw new Error(`Invalid LDAP DN: ${baseDN}`);
+        }
+        const entries = await this.client.search(baseDN, options);
+        return entries.map((entry) => (0, ad_mappers_1.mapToGeneric)(entry));
+    }
+    buildSafeFilter(attribute, operator, value) {
+        return ldap_sanitizer_1.LDAPSanitizer.buildFilter(attribute, operator, value);
+    }
+    buildLogicalFilter(operator, filters) {
+        return ldap_sanitizer_1.LDAPSanitizer.buildLogicalFilter(operator, filters);
+    }
+}
+exports.LDAPProvider = LDAPProvider;
+//# sourceMappingURL=ldap.provider.js.map

package/dist/providers/ldap/ldap.provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ldap.provider.js","sourceRoot":"","sources":["../../../src/providers/ldap/ldap.provider.ts"],"names":[],"mappings":";;;AAGA,+CAAkE;AAClE,qDAAiD;AACjD,6CAAmG;AACnG,+CAA4C;AAU5C,MAAa,YAAY;IACf,MAAM,CAAa;IACnB,MAAM,CAAa;IAK3B,SAAS;QACP,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;IAC5B,CAAC;IAKD,MAAM;QACJ,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC;IACzB,CAAC;IAED,YAAY,MAAkB;QAC5B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QAGrB,MAAM,iBAAiB,GAA0B;YAC/C,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,UAAU,EAAE;gBACV,kBAAkB,EAAE,MAAM,CAAC,SAAS;aACrC;YACD,wBAAwB,EAAE,MAAM,CAAC,wBAAwB;YACzD,aAAa,EAAE,MAAM,CAAC,aAAa;SACpC,CAAC;QAEF,IAAI,CAAC,MAAM,GAAG,IAAI,wBAAU,CAAC,iBAAiB,CAAC,CAAC;IAClD,CAAC;IAKD,KAAK,CAAC,OAAO;QACX,eAAM,CAAC,IAAI,CAAC,8BAA8B,CAAC,CAAC;QAC5C,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;IAC9B,CAAC;IAKD,KAAK,CAAC,UAAU;QACd,eAAM,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC;QACjD,MAAM,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;IACjC,CAAC;IAKD,KAAK,CAAC,cAAc;QAClB,eAAM,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC;QAE1C,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC;QAElD,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YAEnB,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;YAE3E,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,OAAO,EAAE,uBAAuB;gBAChC,OAAO,EAAE;oBACP,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC,GAAG;oBACpB,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM;oBAC1B,QAAQ;oBACR,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM;oBAC1B,YAAY,EAAE,MAAM,CAAC,YAAY;iBAClC;aACF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,OAAO,EAAE,mBAAmB;aAC7B,CAAC;QACJ,CAAC;IACH,CAAC;IAOD,KAAK,CAAC,WAAW,CAAC,MAAe,EAAE,UAAqB;QAEtD,MAAM,UAAU,GAAG,MAAM;YACvB,CAAC,CAAC,8CAA8C,MAAM,GAAG;YACzD,CAAC,CAAC,8CAA8C,CAAC;QAEnD,eAAM,CAAC,KAAK,CAAC,oCAAoC,UAAU,EAAE,CAAC,CAAC;QAG/D,MAAM,iBAAiB,GAAG;YACxB,IAAI;YACJ,gBAAgB;YAChB,mBAAmB;YACnB,aAAa;YACb,oBAAoB;YACpB,YAAY;YACZ,WAAW;YACX,YAAY;YACZ,UAAU;SACX,CAAC;QAEF,MAAM,aAAa,GAAkB;YACnC,MAAM,EAAE,UAAU;YAClB,KAAK,EAAE,KAAK;YACZ,UAAU,EAAE,UAAU,IAAI,iBAAiB;YAC3C,KAAK,EAAE,IAAI;SACZ,CAAC;QAEF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAG5E,OAAO,OAAO,CAAC,GAAG,CAAC,wBAAW,CAAC,CAAC;IAClC,CAAC;IAOD,KAAK,CAAC,YAAY,CAAC,MAAe,EAAE,UAAqB;QAEvD,MAAM,WAAW,GAAG,MAAM,CAAC,CAAC,CAAC,wBAAwB,MAAM,GAAG,CAAC,CAAC,CAAC,qBAAqB,CAAC;QAEvF,eAAM,CAAC,KAAK,CAAC,qCAAqC,WAAW,EAAE,CAAC,CAAC;QAGjE,MAAM,iBAAiB,GAAG;YACxB,IAAI;YACJ,gBAAgB;YAChB,aAAa;YACb,WAAW;YACX,UAAU;YACV,QAAQ;SACT,CAAC;QAEF,MAAM,aAAa,GAAkB;YACnC,MAAM,EAAE,WAAW;YACnB,KAAK,EAAE,KAAK;YACZ,UAAU,EAAE,UAAU,IAAI,iBAAiB;YAC3C,KAAK,EAAE,IAAI;SACZ,CAAC;QAEF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAG5E,OAAO,OAAO,CAAC,GAAG,CAAC,yBAAY,CAAC,CAAC;IACnC,CAAC;IAOD,KAAK,CAAC,eAAe,CAAC,MAAe,EAAE,UAAqB;QAE1D,MAAM,cAAc,GAAG,MAAM,CAAC,CAAC,CAAC,2BAA2B,MAAM,GAAG,CAAC,CAAC,CAAC,wBAAwB,CAAC;QAEhG,eAAM,CAAC,KAAK,CAAC,wCAAwC,cAAc,EAAE,CAAC,CAAC;QAGvE,MAAM,iBAAiB,GAAG;YACxB,IAAI;YACJ,gBAAgB;YAChB,aAAa;YACb,iBAAiB;YACjB,wBAAwB;YACxB,WAAW;YACX,oBAAoB;SACrB,CAAC;QAEF,MAAM,aAAa,GAAkB;YACnC,MAAM,EAAE,cAAc;YACtB,KAAK,EAAE,KAAK;YACZ,UAAU,EAAE,UAAU,IAAI,iBAAiB;YAC3C,KAAK,EAAE,IAAI;SACZ,CAAC;QAEF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAG5E,OAAO,OAAO,CAAC,GAAG,CAAC,4BAAe,CAAC,CAAC;IACtC,CAAC;IAOD,KAAK,CAAC,SAAS,CAAC,MAAe,EAAE,UAAqB;QAEpD,MAAM,QAAQ,GAAG,MAAM;YACrB,CAAC,CAAC,qCAAqC,MAAM,GAAG;YAChD,CAAC,CAAC,kCAAkC,CAAC;QAEvC,eAAM,CAAC,KAAK,CAAC,kCAAkC,QAAQ,EAAE,CAAC,CAAC;QAG3D,MAAM,iBAAiB,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC;QAE9D,MAAM,aAAa,GAAkB;YACnC,MAAM,EAAE,QAAQ;YAChB,KAAK,EAAE,KAAK;YACZ,UAAU,EAAE,UAAU,IAAI,iBAAiB;YAC3C,KAAK,EAAE,IAAI;SACZ,CAAC;QAEF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAG5E,OAAO,OAAO,CAAC,GAAG,CAAC,sBAAS,CAAC,CAAC;IAChC,CAAC;IAOD,KAAK,CAAC,MAAM,CAAI,MAAc,EAAE,OAAsB;QACpD,eAAM,CAAC,KAAK,CAAC,+BAA+B,MAAM,YAAY,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;QAGhF,IAAI,CAAC,8BAAa,CAAC,aAAa,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YACjD,MAAM,IAAI,KAAK,CAAC,+BAA+B,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;QACnE,CAAC;QAGD,IAAI,CAAC,8BAAa,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;YACrC,MAAM,IAAI,KAAK,CAAC,oBAAoB,MAAM,EAAE,CAAC,CAAC;QAChD,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAG1D,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAA,yBAAY,EAAC,KAAK,CAAM,CAAC,CAAC;IAC1D,CAAC;IAYD,eAAe,CACb,SAAiB,EACjB,QAAyC,EACzC,KAAa;QAEb,OAAO,8BAAa,CAAC,WAAW,CAAC,SAAS,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;IAC/D,CAAC;IAWD,kBAAkB,CAAC,QAAyB,EAAE,OAAiB;QAC7D,OAAO,8BAAa,CAAC,kBAAkB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC7D,CAAC;CACF;AApRD,oCAoRC"}

package/dist/providers/ldap/queries/computer.queries.d.ts

@@ -0,0 +1,6 @@
+export declare const ComputerQueries: {
+    ALL_COMPUTERS: string;
+    SERVERS: string;
+    WORKSTATIONS: string;
+};
+//# sourceMappingURL=computer.queries.d.ts.map

package/dist/providers/ldap/queries/computer.queries.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"computer.queries.d.ts","sourceRoot":"","sources":["../../../../src/providers/ldap/queries/computer.queries.ts"],"names":[],"mappings":"AAIA,eAAO,MAAM,eAAe;;;;CAI3B,CAAC"}

package/dist/providers/ldap/queries/computer.queries.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ComputerQueries = void 0;
+exports.ComputerQueries = {
+    ALL_COMPUTERS: '(objectClass=computer)',
+    SERVERS: '(&(objectClass=computer)(operatingSystem=*Server*))',
+    WORKSTATIONS: '(&(objectClass=computer)(!(operatingSystem=*Server*)))',
+};
+//# sourceMappingURL=computer.queries.js.map

package/dist/providers/ldap/queries/computer.queries.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"computer.queries.js","sourceRoot":"","sources":["../../../../src/providers/ldap/queries/computer.queries.ts"],"names":[],"mappings":";;;AAIa,QAAA,eAAe,GAAG;IAC7B,aAAa,EAAE,wBAAwB;IACvC,OAAO,EAAE,qDAAqD;IAC9D,YAAY,EAAE,wDAAwD;CACvE,CAAC"}

package/dist/providers/ldap/queries/group.queries.d.ts

@@ -0,0 +1,6 @@
+export declare const GroupQueries: {
+    ALL_GROUPS: string;
+    SECURITY_GROUPS: string;
+    DISTRIBUTION_GROUPS: string;
+};
+//# sourceMappingURL=group.queries.d.ts.map

package/dist/providers/ldap/queries/group.queries.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"group.queries.d.ts","sourceRoot":"","sources":["../../../../src/providers/ldap/queries/group.queries.ts"],"names":[],"mappings":"AAIA,eAAO,MAAM,YAAY;;;;CAIxB,CAAC"}

package/dist/providers/ldap/queries/group.queries.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.GroupQueries = void 0;
+exports.GroupQueries = {
+    ALL_GROUPS: '(objectClass=group)',
+    SECURITY_GROUPS: '(&(objectClass=group)(groupType:1.2.840.113556.1.4.803:=2147483648))',
+    DISTRIBUTION_GROUPS: '(&(objectClass=group)(!(groupType:1.2.840.113556.1.4.803:=2147483648)))',
+};
+//# sourceMappingURL=group.queries.js.map

package/dist/providers/ldap/queries/group.queries.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"group.queries.js","sourceRoot":"","sources":["../../../../src/providers/ldap/queries/group.queries.ts"],"names":[],"mappings":";;;AAIa,QAAA,YAAY,GAAG;IAC1B,UAAU,EAAE,qBAAqB;IACjC,eAAe,EAAE,sEAAsE;IACvF,mBAAmB,EAAE,yEAAyE;CAC/F,CAAC"}

package/dist/providers/ldap/queries/user.queries.d.ts

@@ -0,0 +1,7 @@
+export declare const UserQueries: {
+    ALL_USERS: string;
+    ENABLED_USERS: string;
+    DISABLED_USERS: string;
+    ADMIN_USERS: string;
+};
+//# sourceMappingURL=user.queries.d.ts.map

package/dist/providers/ldap/queries/user.queries.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.queries.d.ts","sourceRoot":"","sources":["../../../../src/providers/ldap/queries/user.queries.ts"],"names":[],"mappings":"AAIA,eAAO,MAAM,WAAW;;;;;CAKvB,CAAC"}

package/dist/providers/ldap/queries/user.queries.js

@@ -0,0 +1,10 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserQueries = void 0;
+exports.UserQueries = {
+    ALL_USERS: '(objectClass=user)',
+    ENABLED_USERS: '(&(objectClass=user)(!(userAccountControl:1.2.840.113556.1.4.803:=2)))',
+    DISABLED_USERS: '(&(objectClass=user)(userAccountControl:1.2.840.113556.1.4.803:=2))',
+    ADMIN_USERS: '(&(objectClass=user)(adminCount=1))',
+};
+//# sourceMappingURL=user.queries.js.map

package/dist/providers/ldap/queries/user.queries.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.queries.js","sourceRoot":"","sources":["../../../../src/providers/ldap/queries/user.queries.ts"],"names":[],"mappings":";;;AAIa,QAAA,WAAW,GAAG;IACzB,SAAS,EAAE,oBAAoB;IAC/B,aAAa,EAAE,wEAAwE;IACvF,cAAc,EAAE,qEAAqE;IACrF,WAAW,EAAE,qCAAqC;CACnD,CAAC"}

package/dist/providers/smb/smb.provider.d.ts

@@ -0,0 +1,68 @@
+export interface SMBConfig {
+    host: string;
+    share: string;
+    domain: string;
+    username: string;
+    password: string;
+    timeout?: number;
+}
+export interface KerberosPolicy {
+    maxTicketAge: number;
+    maxRenewAge: number;
+    maxServiceAge: number;
+    maxClockSkew: number;
+    ticketValidateClient: boolean;
+}
+export interface GpoSecuritySettings {
+    ldapServerIntegrity?: number;
+    ldapChannelBinding?: number;
+    smbv1ServerEnabled?: boolean;
+    smbv1ClientEnabled?: boolean;
+    smbSigningRequired?: boolean;
+    smbClientSigningRequired?: boolean;
+    auditPolicies?: {
+        category: string;
+        subcategory?: string;
+        success: boolean;
+        failure: boolean;
+    }[];
+    powershellLogging?: {
+        moduleLogging: boolean;
+        scriptBlockLogging: boolean;
+        transcription: boolean;
+    };
+}
+export declare class SMBProvider {
+    private config;
+    constructor(config: SMBConfig);
+    connect(): Promise<void>;
+    disconnect(): Promise<void>;
+    private buildSmbCommand;
+    readFile(path: string): Promise<string>;
+    readBinaryFile(path: string): Promise<Buffer>;
+    exists(path: string): Promise<boolean>;
+    readKerberosPolicy(domainDnsName: string): Promise<KerberosPolicy | null>;
+    private parseKerberosPolicy;
+    readGpoSecuritySettings(domainDnsName: string): Promise<GpoSecuritySettings | null>;
+    private parseRegistryValues;
+    private readAuditPolicy;
+    private parseAuditCsv;
+    private getAuditCategory;
+    private readPowerShellLogging;
+    private parsePowerShellLogging;
+    testConnection(): Promise<{
+        success: boolean;
+        message: string;
+    }>;
+}
+export interface FormattedKerberosPolicy {
+    maxTicketAge: string;
+    maxRenewAge: string;
+    maxServiceAge: string;
+    maxClockSkew: string;
+    ticketValidateClient: boolean;
+    isDefault: boolean;
+}
+export declare function formatKerberosPolicy(policy: KerberosPolicy, isDefault?: boolean): FormattedKerberosPolicy;
+export declare function getDefaultKerberosPolicy(): FormattedKerberosPolicy;
+//# sourceMappingURL=smb.provider.d.ts.map

package/dist/providers/smb/smb.provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"smb.provider.d.ts","sourceRoot":"","sources":["../../../src/providers/smb/smb.provider.ts"],"names":[],"mappings":"AAqBA,MAAM,WAAW,SAAS;IAExB,IAAI,EAAE,MAAM,CAAC;IAEb,KAAK,EAAE,MAAM,CAAC;IAEd,MAAM,EAAE,MAAM,CAAC;IAEf,QAAQ,EAAE,MAAM,CAAC;IAEjB,QAAQ,EAAE,MAAM,CAAC;IAEjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAKD,MAAM,WAAW,cAAc;IAC7B,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,oBAAoB,EAAE,OAAO,CAAC;CAC/B;AAKD,MAAM,WAAW,mBAAmB;IAElC,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAE5B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAE7B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAE7B,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAE7B,wBAAwB,CAAC,EAAE,OAAO,CAAC;IAEnC,aAAa,CAAC,EAAE;QACd,QAAQ,EAAE,MAAM,CAAC;QACjB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,OAAO,EAAE,OAAO,CAAC;QACjB,OAAO,EAAE,OAAO,CAAC;KAClB,EAAE,CAAC;IAEJ,iBAAiB,CAAC,EAAE;QAClB,aAAa,EAAE,OAAO,CAAC;QACvB,kBAAkB,EAAE,OAAO,CAAC;QAC5B,aAAa,EAAE,OAAO,CAAC;KACxB,CAAC;CACH;AAUD,qBAAa,WAAW;IACtB,OAAO,CAAC,MAAM,CAAY;gBAEd,MAAM,EAAE,SAAS;IAUvB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAOxB,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAOjC,OAAO,CAAC,eAAe;IAWjB,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAyCvC,cAAc,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAoC7C,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAkCtC,kBAAkB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC;IAuB/E,OAAO,CAAC,mBAAmB;IA0DrB,uBAAuB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAAC,mBAAmB,GAAG,IAAI,CAAC;IAkDzF,OAAO,CAAC,mBAAmB;YAkEb,eAAe;IAsB7B,OAAO,CAAC,aAAa;IAyCrB,OAAO,CAAC,gBAAgB;YAkCV,qBAAqB;IAyBnC,OAAO,CAAC,sBAAsB;IAsCxB,cAAc,IAAI,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;CAmBvE;AAKD,MAAM,WAAW,uBAAuB;IACtC,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,oBAAoB,EAAE,OAAO,CAAC;IAC9B,SAAS,EAAE,OAAO,CAAC;CACpB;AAKD,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,cAAc,EAAE,SAAS,UAAQ,GAAG,uBAAuB,CASvG;AAMD,wBAAgB,wBAAwB,IAAI,uBAAuB,CASlE"}