@etcsec-com/etc-collector 1.4.0

package/dist/providers/smb/smb.provider.js

@@ -0,0 +1,382 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SMBProvider = void 0;
+exports.formatKerberosPolicy = formatKerberosPolicy;
+exports.getDefaultKerberosPolicy = getDefaultKerberosPolicy;
+const child_process_1 = require("child_process");
+const util_1 = require("util");
+const promises_1 = require("fs/promises");
+const os_1 = require("os");
+const path_1 = require("path");
+const logger_1 = require("../../utils/logger");
+const execAsync = (0, util_1.promisify)(child_process_1.exec);
+const DEFAULT_DOMAIN_POLICY_GUID = '{31B2F340-016D-11D2-945F-00C04FB984F9}';
+class SMBProvider {
+    config;
+    constructor(config) {
+        this.config = {
+            timeout: 15000,
+            ...config,
+        };
+    }
+    async connect() {
+        logger_1.logger.debug('SMB provider ready (using smbclient)', { host: this.config.host, share: this.config.share });
+    }
+    async disconnect() {
+    }
+    buildSmbCommand() {
+        const { host, share, domain, username, password } = this.config;
+        const escapedPassword = password.replace(/'/g, "'\\''");
+        return `smbclient '//${host}/${share}' -U '${domain}\\${username}%${escapedPassword}' -c`;
+    }
+    async readFile(path) {
+        const timeout = this.config.timeout || 15000;
+        const tempFile = (0, path_1.join)((0, os_1.tmpdir)(), `smb_${Date.now()}_${Math.random().toString(36).substring(7)}`);
+        const smbPath = path.replace(/\\/g, '/');
+        const cmd = `${this.buildSmbCommand()} 'get "${smbPath}" "${tempFile}"'`;
+        try {
+            logger_1.logger.debug('SMB readFile', { path: smbPath, tempFile });
+            await execAsync(cmd, { timeout });
+            const content = await (0, promises_1.readFile)(tempFile, 'utf8');
+            try {
+                await (0, promises_1.unlink)(tempFile);
+            }
+            catch {
+            }
+            return content;
+        }
+        catch (error) {
+            try {
+                await (0, promises_1.unlink)(tempFile);
+            }
+            catch {
+            }
+            const message = error instanceof Error ? error.message : 'Unknown error';
+            logger_1.logger.debug('SMB readFile failed', { path: smbPath, error: message });
+            throw new Error(`SMB readFile failed: ${message}`);
+        }
+    }
+    async readBinaryFile(path) {
+        const timeout = this.config.timeout || 15000;
+        const tempFile = (0, path_1.join)((0, os_1.tmpdir)(), `smb_${Date.now()}_${Math.random().toString(36).substring(7)}`);
+        const smbPath = path.replace(/\\/g, '/');
+        const cmd = `${this.buildSmbCommand()} 'get "${smbPath}" "${tempFile}"'`;
+        try {
+            await execAsync(cmd, { timeout });
+            const content = await (0, promises_1.readFile)(tempFile);
+            try {
+                await (0, promises_1.unlink)(tempFile);
+            }
+            catch {
+            }
+            return content;
+        }
+        catch (error) {
+            try {
+                await (0, promises_1.unlink)(tempFile);
+            }
+            catch {
+            }
+            throw error;
+        }
+    }
+    async exists(path) {
+        const timeout = this.config.timeout || 15000;
+        const smbPath = path.replace(/\\/g, '/');
+        const lastSlash = smbPath.lastIndexOf('/');
+        const dir = lastSlash > 0 ? smbPath.substring(0, lastSlash) : '';
+        const filename = lastSlash > 0 ? smbPath.substring(lastSlash + 1) : smbPath;
+        const cmd = `${this.buildSmbCommand()} 'cd "${dir}"; ls "${filename}"'`;
+        try {
+            logger_1.logger.debug('SMB exists check', { path: smbPath, dir, filename });
+            const { stdout } = await execAsync(cmd, { timeout });
+            const exists = stdout.includes(filename);
+            logger_1.logger.debug('SMB exists result', { path: smbPath, exists });
+            return exists;
+        }
+        catch (error) {
+            const message = error instanceof Error ? error.message : 'Unknown error';
+            logger_1.logger.debug('SMB exists check failed (file likely does not exist)', { path: smbPath, error: message });
+            return false;
+        }
+    }
+    async readKerberosPolicy(domainDnsName) {
+        const gptTmplPath = `${domainDnsName}/Policies/${DEFAULT_DOMAIN_POLICY_GUID}/Machine/Microsoft/Windows NT/SecEdit/GptTmpl.inf`;
+        try {
+            logger_1.logger.debug('Reading GptTmpl.inf for Kerberos policy', { path: gptTmplPath });
+            const exists = await this.exists(gptTmplPath);
+            if (!exists) {
+                logger_1.logger.warn('GptTmpl.inf not found', { path: gptTmplPath });
+                return null;
+            }
+            const content = await this.readFile(gptTmplPath);
+            return this.parseKerberosPolicy(content);
+        }
+        catch (error) {
+            logger_1.logger.warn('Failed to read Kerberos policy from SYSVOL', { error, path: gptTmplPath });
+            return null;
+        }
+    }
+    parseKerberosPolicy(content) {
+        const policy = {
+            maxTicketAge: 10,
+            maxRenewAge: 7,
+            maxServiceAge: 600,
+            maxClockSkew: 5,
+            ticketValidateClient: true,
+        };
+        const lines = content.split(/\r?\n/);
+        let inKerberosSection = false;
+        for (const line of lines) {
+            const trimmedLine = line.trim();
+            if (trimmedLine.startsWith('[')) {
+                inKerberosSection = trimmedLine.toLowerCase() === '[kerberos policy]';
+                continue;
+            }
+            if (!inKerberosSection)
+                continue;
+            const match = trimmedLine.match(/^(\w+)\s*=\s*(.+)$/);
+            if (!match || !match[1] || !match[2])
+                continue;
+            const key = match[1];
+            const value = match[2];
+            const numValue = parseInt(value, 10);
+            switch (key.toLowerCase()) {
+                case 'maxticketage':
+                    policy.maxTicketAge = numValue;
+                    break;
+                case 'maxrenewage':
+                    policy.maxRenewAge = numValue;
+                    break;
+                case 'maxserviceage':
+                    policy.maxServiceAge = numValue;
+                    break;
+                case 'maxclockskew':
+                    policy.maxClockSkew = numValue;
+                    break;
+                case 'ticketvalidateclient':
+                    policy.ticketValidateClient = numValue === 1;
+                    break;
+            }
+        }
+        return policy;
+    }
+    async readGpoSecuritySettings(domainDnsName) {
+        const DC_POLICY_GUID = '{6AC1786C-016F-11D2-945F-00C04FB984F9}';
+        const gptTmplPath = `${domainDnsName}/Policies/${DC_POLICY_GUID}/Machine/Microsoft/Windows NT/SecEdit/GptTmpl.inf`;
+        const settings = {};
+        try {
+            logger_1.logger.debug('Reading GPO security settings', { path: gptTmplPath });
+            const dcPolicyExists = await this.exists(gptTmplPath);
+            if (dcPolicyExists) {
+                const content = await this.readFile(gptTmplPath);
+                this.parseRegistryValues(content, settings);
+                logger_1.logger.debug('Parsed DC Policy GptTmpl.inf', { settings });
+            }
+            const domainPolicyPath = `${domainDnsName}/Policies/${DEFAULT_DOMAIN_POLICY_GUID}/Machine/Microsoft/Windows NT/SecEdit/GptTmpl.inf`;
+            const domainPolicyExists = await this.exists(domainPolicyPath);
+            if (domainPolicyExists) {
+                const domainContent = await this.readFile(domainPolicyPath);
+                this.parseRegistryValues(domainContent, settings);
+                logger_1.logger.debug('Parsed Domain Policy GptTmpl.inf', { settings });
+            }
+            await this.readAuditPolicy(domainDnsName, DC_POLICY_GUID, settings);
+            await this.readPowerShellLogging(domainDnsName, DC_POLICY_GUID, settings);
+            logger_1.logger.info('Successfully fetched GPO security settings', {
+                hasLdapSigning: settings.ldapServerIntegrity !== undefined,
+                hasSmbSigning: settings.smbSigningRequired !== undefined,
+                hasAuditPolicy: settings.auditPolicies !== undefined,
+                hasPsLogging: settings.powershellLogging !== undefined,
+            });
+            return settings;
+        }
+        catch (error) {
+            logger_1.logger.warn('Failed to read GPO security settings', { error });
+            return null;
+        }
+    }
+    parseRegistryValues(content, settings) {
+        const lines = content.split(/\r?\n/);
+        let inRegistrySection = false;
+        for (const line of lines) {
+            const trimmedLine = line.trim();
+            if (trimmedLine.startsWith('[')) {
+                inRegistrySection = trimmedLine.toLowerCase() === '[registry values]';
+                continue;
+            }
+            if (!inRegistrySection)
+                continue;
+            const match = trimmedLine.match(/^MACHINE\\(.+?)=(\d+),(.+)$/i);
+            if (!match || !match[1] || !match[3])
+                continue;
+            const keyPath = match[1].toLowerCase();
+            const value = match[3];
+            if (keyPath.includes('ntds\\parameters\\ldapserverintegrity')) {
+                settings.ldapServerIntegrity = parseInt(value, 10);
+            }
+            if (keyPath.includes('ntds\\parameters\\ldapenforcechannelbinding')) {
+                settings.ldapChannelBinding = parseInt(value, 10);
+            }
+            if (keyPath.includes('lanmanserver\\parameters\\smb1')) {
+                settings.smbv1ServerEnabled = value === '1';
+            }
+            if (keyPath.includes('lanmanworkstation\\parameters\\smb1')) {
+                settings.smbv1ClientEnabled = value === '1';
+            }
+            if (keyPath.includes('mrxsmb10\\start')) {
+                settings.smbv1ClientEnabled = value !== '4';
+            }
+            if (keyPath.includes('lanmanserver\\parameters\\requiresecuritysignature')) {
+                settings.smbSigningRequired = value === '1';
+            }
+            if (keyPath.includes('lanmanworkstation\\parameters\\requiresecuritysignature')) {
+                settings.smbClientSigningRequired = value === '1';
+            }
+        }
+    }
+    async readAuditPolicy(domainDnsName, gpoGuid, settings) {
+        const auditPath = `${domainDnsName}/Policies/${gpoGuid}/Machine/Microsoft/Windows NT/Audit/audit.csv`;
+        try {
+            const exists = await this.exists(auditPath);
+            if (!exists)
+                return;
+            const content = await this.readFile(auditPath);
+            settings.auditPolicies = this.parseAuditCsv(content);
+        }
+        catch (error) {
+            logger_1.logger.debug('Failed to read audit.csv', { error });
+        }
+    }
+    parseAuditCsv(content) {
+        const policies = [];
+        const lines = content.split(/\r?\n/);
+        for (let i = 1; i < lines.length; i++) {
+            const line = lines[i];
+            if (!line)
+                continue;
+            const trimmedLine = line.trim();
+            if (!trimmedLine)
+                continue;
+            const parts = trimmedLine.split(',');
+            if (parts.length < 7)
+                continue;
+            const subcategory = parts[2];
+            const settingValue = parts[6];
+            if (!subcategory || !settingValue)
+                continue;
+            const value = parseInt(settingValue, 10);
+            const category = this.getAuditCategory(subcategory);
+            policies.push({
+                category,
+                subcategory,
+                success: (value & 1) !== 0,
+                failure: (value & 2) !== 0,
+            });
+        }
+        return policies;
+    }
+    getAuditCategory(subcategory) {
+        const categoryMap = {
+            'Credential Validation': 'Account Logon',
+            'Kerberos Authentication Service': 'Account Logon',
+            'Kerberos Service Ticket Operations': 'Account Logon',
+            'Computer Account Management': 'Account Management',
+            'Security Group Management': 'Account Management',
+            'User Account Management': 'Account Management',
+            'Logon': 'Logon/Logoff',
+            'Logoff': 'Logon/Logoff',
+            'Special Logon': 'Logon/Logoff',
+            'File System': 'Object Access',
+            'Registry': 'Object Access',
+            'Kernel Object': 'Object Access',
+            'Audit Policy Change': 'Policy Change',
+            'Authentication Policy Change': 'Policy Change',
+            'Sensitive Privilege Use': 'Privilege Use',
+            'Security State Change': 'System',
+            'Security System Extension': 'System',
+            'System Integrity': 'System',
+        };
+        for (const [sub, cat] of Object.entries(categoryMap)) {
+            if (subcategory.toLowerCase().includes(sub.toLowerCase())) {
+                return cat;
+            }
+        }
+        return 'Other';
+    }
+    async readPowerShellLogging(domainDnsName, gpoGuid, settings) {
+        const registryPolPath = `${domainDnsName}/Policies/${gpoGuid}/Machine/Registry.pol`;
+        try {
+            const exists = await this.exists(registryPolPath);
+            if (!exists)
+                return;
+            const content = await this.readBinaryFile(registryPolPath);
+            settings.powershellLogging = this.parsePowerShellLogging(content);
+        }
+        catch (error) {
+            logger_1.logger.debug('Failed to read registry.pol', { error });
+        }
+    }
+    parsePowerShellLogging(content) {
+        const result = {
+            moduleLogging: false,
+            scriptBlockLogging: false,
+            transcription: false,
+        };
+        try {
+            const textContent = content.toString('utf16le');
+            if (textContent.includes('EnableScriptBlockLogging') && textContent.includes('\x01\x00\x00\x00')) {
+                result.scriptBlockLogging = true;
+            }
+            if (textContent.includes('EnableModuleLogging') && textContent.includes('\x01\x00\x00\x00')) {
+                result.moduleLogging = true;
+            }
+            if (textContent.includes('EnableTranscripting') && textContent.includes('\x01\x00\x00\x00')) {
+                result.transcription = true;
+            }
+        }
+        catch (error) {
+            logger_1.logger.debug('Failed to parse registry.pol', { error });
+        }
+        return result;
+    }
+    async testConnection() {
+        const timeout = this.config.timeout || 15000;
+        const cmd = `${this.buildSmbCommand()} 'ls'`;
+        try {
+            await execAsync(cmd, { timeout });
+            return {
+                success: true,
+                message: 'SMB connection successful',
+            };
+        }
+        catch (error) {
+            const message = error instanceof Error ? error.message : 'Unknown error';
+            return {
+                success: false,
+                message: `SMB connection failed: ${message}`,
+            };
+        }
+    }
+}
+exports.SMBProvider = SMBProvider;
+function formatKerberosPolicy(policy, isDefault = false) {
+    return {
+        maxTicketAge: `${policy.maxTicketAge} hours`,
+        maxRenewAge: `${policy.maxRenewAge} days`,
+        maxServiceAge: `${policy.maxServiceAge} min`,
+        maxClockSkew: `${policy.maxClockSkew} min`,
+        ticketValidateClient: policy.ticketValidateClient,
+        isDefault,
+    };
+}
+function getDefaultKerberosPolicy() {
+    return {
+        maxTicketAge: '10 hours',
+        maxRenewAge: '7 days',
+        maxServiceAge: '600 min',
+        maxClockSkew: '5 min',
+        ticketValidateClient: true,
+        isDefault: true,
+    };
+}
+//# sourceMappingURL=smb.provider.js.map

package/dist/providers/smb/smb.provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"smb.provider.js","sourceRoot":"","sources":["../../../src/providers/smb/smb.provider.ts"],"names":[],"mappings":";;;AAonBA,oDASC;AAMD,4DASC;AAnoBD,iDAAqC;AACrC,+BAAiC;AACjC,0CAA6D;AAC7D,2BAA4B;AAC5B,+BAA4B;AAC5B,+CAA4C;AAE5C,MAAM,SAAS,GAAG,IAAA,gBAAS,EAAC,oBAAI,CAAC,CAAC;AAiElC,MAAM,0BAA0B,GAAG,wCAAwC,CAAC;AAK5E,MAAa,WAAW;IACd,MAAM,CAAY;IAE1B,YAAY,MAAiB;QAC3B,IAAI,CAAC,MAAM,GAAG;YACZ,OAAO,EAAE,KAAK;YACd,GAAG,MAAM;SACV,CAAC;IACJ,CAAC;IAKD,KAAK,CAAC,OAAO;QACX,eAAM,CAAC,KAAK,CAAC,sCAAsC,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;IAC7G,CAAC;IAKD,KAAK,CAAC,UAAU;IAEhB,CAAC;IAKO,eAAe;QACrB,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC;QAGhE,MAAM,eAAe,GAAG,QAAQ,CAAC,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QACxD,OAAO,gBAAgB,IAAI,IAAI,KAAK,SAAS,MAAM,KAAK,QAAQ,IAAI,eAAe,MAAM,CAAC;IAC5F,CAAC;IAKD,KAAK,CAAC,QAAQ,CAAC,IAAY;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;QAC7C,MAAM,QAAQ,GAAG,IAAA,WAAI,EAAC,IAAA,WAAM,GAAE,EAAE,OAAO,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QAGhG,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAEzC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,eAAe,EAAE,UAAU,OAAO,MAAM,QAAQ,IAAI,CAAC;QAEzE,IAAI,CAAC;YACH,eAAM,CAAC,KAAK,CAAC,cAAc,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,CAAC;YAE1D,MAAM,SAAS,CAAC,GAAG,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAElC,MAAM,OAAO,GAAG,MAAM,IAAA,mBAAU,EAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YAGnD,IAAI,CAAC;gBACH,MAAM,IAAA,iBAAM,EAAC,QAAQ,CAAC,CAAC;YACzB,CAAC;YAAC,MAAM,CAAC;YAET,CAAC;YAED,OAAO,OAAO,CAAC;QACjB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAEf,IAAI,CAAC;gBACH,MAAM,IAAA,iBAAM,EAAC,QAAQ,CAAC,CAAC;YACzB,CAAC;YAAC,MAAM,CAAC;YAET,CAAC;YAED,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACzE,eAAM,CAAC,KAAK,CAAC,qBAAqB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;YACvE,MAAM,IAAI,KAAK,CAAC,wBAAwB,OAAO,EAAE,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,cAAc,CAAC,IAAY;QAC/B,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;QAC7C,MAAM,QAAQ,GAAG,IAAA,WAAI,EAAC,IAAA,WAAM,GAAE,EAAE,OAAO,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QAGhG,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAEzC,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,eAAe,EAAE,UAAU,OAAO,MAAM,QAAQ,IAAI,CAAC;QAEzE,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,GAAG,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAClC,MAAM,OAAO,GAAG,MAAM,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC;YAG3C,IAAI,CAAC;gBACH,MAAM,IAAA,iBAAM,EAAC,QAAQ,CAAC,CAAC;YACzB,CAAC;YAAC,MAAM,CAAC;YAET,CAAC;YAED,OAAO,OAAO,CAAC;QACjB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAEf,IAAI,CAAC;gBACH,MAAM,IAAA,iBAAM,EAAC,QAAQ,CAAC,CAAC;YACzB,CAAC;YAAC,MAAM,CAAC;YAET,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,MAAM,CAAC,IAAY;QACvB,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;QAG7C,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAIzC,MAAM,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;QAC3C,MAAM,GAAG,GAAG,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QACjE,MAAM,QAAQ,GAAG,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;QAE5E,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,eAAe,EAAE,SAAS,GAAG,UAAU,QAAQ,IAAI,CAAC;QAExE,IAAI,CAAC;YACH,eAAM,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,CAAC,CAAC;YAEnE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,GAAG,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAGrD,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;YACzC,eAAM,CAAC,KAAK,CAAC,mBAAmB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;YAE7D,OAAO,MAAM,CAAC;QAChB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACzE,eAAM,CAAC,KAAK,CAAC,sDAAsD,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;YACxG,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAKD,KAAK,CAAC,kBAAkB,CAAC,aAAqB;QAC5C,MAAM,WAAW,GAAG,GAAG,aAAa,aAAa,0BAA0B,mDAAmD,CAAC;QAE/H,IAAI,CAAC;YACH,eAAM,CAAC,KAAK,CAAC,yCAAyC,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,CAAC;YAE/E,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YAC9C,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,eAAM,CAAC,IAAI,CAAC,uBAAuB,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,CAAC;gBAC5D,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;YACjD,OAAO,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAC3C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,IAAI,CAAC,4CAA4C,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,CAAC;YACxF,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAKO,mBAAmB,CAAC,OAAe;QACzC,MAAM,MAAM,GAAmB;YAC7B,YAAY,EAAE,EAAE;YAChB,WAAW,EAAE,CAAC;YACd,aAAa,EAAE,GAAG;YAClB,YAAY,EAAE,CAAC;YACf,oBAAoB,EAAE,IAAI;SAC3B,CAAC;QAGF,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACrC,IAAI,iBAAiB,GAAG,KAAK,CAAC;QAE9B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;YAGhC,IAAI,WAAW,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBAChC,iBAAiB,GAAG,WAAW,CAAC,WAAW,EAAE,KAAK,mBAAmB,CAAC;gBACtE,SAAS;YACX,CAAC;YAED,IAAI,CAAC,iBAAiB;gBAAE,SAAS;YAGjC,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC;YACtD,IAAI,CAAC,KAAK,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;gBAAE,SAAS;YAE/C,MAAM,GAAG,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACrB,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACvB,MAAM,QAAQ,GAAG,QAAQ,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAErC,QAAQ,GAAG,CAAC,WAAW,EAAE,EAAE,CAAC;gBAC1B,KAAK,cAAc;oBACjB,MAAM,CAAC,YAAY,GAAG,QAAQ,CAAC;oBAC/B,MAAM;gBACR,KAAK,aAAa;oBAChB,MAAM,CAAC,WAAW,GAAG,QAAQ,CAAC;oBAC9B,MAAM;gBACR,KAAK,eAAe;oBAClB,MAAM,CAAC,aAAa,GAAG,QAAQ,CAAC;oBAChC,MAAM;gBACR,KAAK,cAAc;oBACjB,MAAM,CAAC,YAAY,GAAG,QAAQ,CAAC;oBAC/B,MAAM;gBACR,KAAK,sBAAsB;oBACzB,MAAM,CAAC,oBAAoB,GAAG,QAAQ,KAAK,CAAC,CAAC;oBAC7C,MAAM;YACV,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAMD,KAAK,CAAC,uBAAuB,CAAC,aAAqB;QAEjD,MAAM,cAAc,GAAG,wCAAwC,CAAC;QAChE,MAAM,WAAW,GAAG,GAAG,aAAa,aAAa,cAAc,mDAAmD,CAAC;QAEnH,MAAM,QAAQ,GAAwB,EAAE,CAAC;QAEzC,IAAI,CAAC;YAEH,eAAM,CAAC,KAAK,CAAC,+BAA+B,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,CAAC;YAErE,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YACtD,IAAI,cAAc,EAAE,CAAC;gBACnB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;gBACjD,IAAI,CAAC,mBAAmB,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;gBAC5C,eAAM,CAAC,KAAK,CAAC,8BAA8B,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;YAC7D,CAAC;YAGD,MAAM,gBAAgB,GAAG,GAAG,aAAa,aAAa,0BAA0B,mDAAmD,CAAC;YACpI,MAAM,kBAAkB,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC;YAC/D,IAAI,kBAAkB,EAAE,CAAC;gBACvB,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;gBAC5D,IAAI,CAAC,mBAAmB,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC;gBAClD,eAAM,CAAC,KAAK,CAAC,kCAAkC,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;YACjE,CAAC;YAGD,MAAM,IAAI,CAAC,eAAe,CAAC,aAAa,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;YAGpE,MAAM,IAAI,CAAC,qBAAqB,CAAC,aAAa,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;YAE1E,eAAM,CAAC,IAAI,CAAC,4CAA4C,EAAE;gBACxD,cAAc,EAAE,QAAQ,CAAC,mBAAmB,KAAK,SAAS;gBAC1D,aAAa,EAAE,QAAQ,CAAC,kBAAkB,KAAK,SAAS;gBACxD,cAAc,EAAE,QAAQ,CAAC,aAAa,KAAK,SAAS;gBACpD,YAAY,EAAE,QAAQ,CAAC,iBAAiB,KAAK,SAAS;aACvD,CAAC,CAAC;YAEH,OAAO,QAAQ,CAAC;QAClB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,IAAI,CAAC,sCAAsC,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;YAC/D,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAKO,mBAAmB,CAAC,OAAe,EAAE,QAA6B;QACxE,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACrC,IAAI,iBAAiB,GAAG,KAAK,CAAC;QAE9B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;YAGhC,IAAI,WAAW,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBAChC,iBAAiB,GAAG,WAAW,CAAC,WAAW,EAAE,KAAK,mBAAmB,CAAC;gBACtE,SAAS;YACX,CAAC;YAED,IAAI,CAAC,iBAAiB;gBAAE,SAAS;YAIjC,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,8BAA8B,CAAC,CAAC;YAChE,IAAI,CAAC,KAAK,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;gBAAE,SAAS;YAE/C,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;YACvC,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YAGvB,IAAI,OAAO,CAAC,QAAQ,CAAC,uCAAuC,CAAC,EAAE,CAAC;gBAC9D,QAAQ,CAAC,mBAAmB,GAAG,QAAQ,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACrD,CAAC;YAGD,IAAI,OAAO,CAAC,QAAQ,CAAC,6CAA6C,CAAC,EAAE,CAAC;gBACpE,QAAQ,CAAC,kBAAkB,GAAG,QAAQ,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YACpD,CAAC;YAGD,IAAI,OAAO,CAAC,QAAQ,CAAC,gCAAgC,CAAC,EAAE,CAAC;gBACvD,QAAQ,CAAC,kBAAkB,GAAG,KAAK,KAAK,GAAG,CAAC;YAC9C,CAAC;YAGD,IAAI,OAAO,CAAC,QAAQ,CAAC,qCAAqC,CAAC,EAAE,CAAC;gBAC5D,QAAQ,CAAC,kBAAkB,GAAG,KAAK,KAAK,GAAG,CAAC;YAC9C,CAAC;YAGD,IAAI,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAC,EAAE,CAAC;gBAExC,QAAQ,CAAC,kBAAkB,GAAG,KAAK,KAAK,GAAG,CAAC;YAC9C,CAAC;YAID,IAAI,OAAO,CAAC,QAAQ,CAAC,oDAAoD,CAAC,EAAE,CAAC;gBAC3E,QAAQ,CAAC,kBAAkB,GAAG,KAAK,KAAK,GAAG,CAAC;YAC9C,CAAC;YAID,IAAI,OAAO,CAAC,QAAQ,CAAC,yDAAyD,CAAC,EAAE,CAAC;gBAChF,QAAQ,CAAC,wBAAwB,GAAG,KAAK,KAAK,GAAG,CAAC;YACpD,CAAC;QACH,CAAC;IACH,CAAC;IAKO,KAAK,CAAC,eAAe,CAC3B,aAAqB,EACrB,OAAe,EACf,QAA6B;QAE7B,MAAM,SAAS,GAAG,GAAG,aAAa,aAAa,OAAO,+CAA+C,CAAC;QAEtG,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YAC5C,IAAI,CAAC,MAAM;gBAAE,OAAO;YAEpB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;YAC/C,QAAQ,CAAC,aAAa,GAAG,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;QACvD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAMO,aAAa,CAAC,OAAe;QACnC,MAAM,QAAQ,GAAsD,EAAE,CAAC;QACvE,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAGrC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACtB,IAAI,CAAC,IAAI;gBAAE,SAAS;YAEpB,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;YAChC,IAAI,CAAC,WAAW;gBAAE,SAAS;YAG3B,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACrC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;gBAAE,SAAS;YAE/B,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YAC7B,MAAM,YAAY,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YAE9B,IAAI,CAAC,WAAW,IAAI,CAAC,YAAY;gBAAE,SAAS;YAG5C,MAAM,KAAK,GAAG,QAAQ,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC;YAGzC,MAAM,QAAQ,GAAG,IAAI,CAAC,gBAAgB,CAAC,WAAW,CAAC,CAAC;YAEpD,QAAQ,CAAC,IAAI,CAAC;gBACZ,QAAQ;gBACR,WAAW;gBACX,OAAO,EAAE,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;gBAC1B,OAAO,EAAE,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;aAC3B,CAAC,CAAC;QACL,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAKO,gBAAgB,CAAC,WAAmB;QAC1C,MAAM,WAAW,GAA2B;YAC1C,uBAAuB,EAAE,eAAe;YACxC,iCAAiC,EAAE,eAAe;YAClD,oCAAoC,EAAE,eAAe;YACrD,6BAA6B,EAAE,oBAAoB;YACnD,2BAA2B,EAAE,oBAAoB;YACjD,yBAAyB,EAAE,oBAAoB;YAC/C,OAAO,EAAE,cAAc;YACvB,QAAQ,EAAE,cAAc;YACxB,eAAe,EAAE,cAAc;YAC/B,aAAa,EAAE,eAAe;YAC9B,UAAU,EAAE,eAAe;YAC3B,eAAe,EAAE,eAAe;YAChC,qBAAqB,EAAE,eAAe;YACtC,8BAA8B,EAAE,eAAe;YAC/C,yBAAyB,EAAE,eAAe;YAC1C,uBAAuB,EAAE,QAAQ;YACjC,2BAA2B,EAAE,QAAQ;YACrC,kBAAkB,EAAE,QAAQ;SAC7B,CAAC;QAEF,KAAK,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;YACrD,IAAI,WAAW,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;gBAC1D,OAAO,GAAG,CAAC;YACb,CAAC;QACH,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC;IAMO,KAAK,CAAC,qBAAqB,CACjC,aAAqB,EACrB,OAAe,EACf,QAA6B;QAE7B,MAAM,eAAe,GAAG,GAAG,aAAa,aAAa,OAAO,uBAAuB,CAAC;QAEpF,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;YAClD,IAAI,CAAC,MAAM;gBAAE,OAAO;YAIpB,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,eAAe,CAAC,CAAC;YAC3D,QAAQ,CAAC,iBAAiB,GAAG,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;QACpE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,6BAA6B,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QACzD,CAAC;IACH,CAAC;IAOO,sBAAsB,CAAC,OAAe;QAC5C,MAAM,MAAM,GAAG;YACb,aAAa,EAAE,KAAK;YACpB,kBAAkB,EAAE,KAAK;YACzB,aAAa,EAAE,KAAK;SACrB,CAAC;QAEF,IAAI,CAAC;YAGH,MAAM,WAAW,GAAG,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;YAOhD,IAAI,WAAW,CAAC,QAAQ,CAAC,0BAA0B,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;gBACjG,MAAM,CAAC,kBAAkB,GAAG,IAAI,CAAC;YACnC,CAAC;YAED,IAAI,WAAW,CAAC,QAAQ,CAAC,qBAAqB,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;gBAC5F,MAAM,CAAC,aAAa,GAAG,IAAI,CAAC;YAC9B,CAAC;YAED,IAAI,WAAW,CAAC,QAAQ,CAAC,qBAAqB,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;gBAC5F,MAAM,CAAC,aAAa,GAAG,IAAI,CAAC;YAC9B,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,8BAA8B,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAC1D,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAKD,KAAK,CAAC,cAAc;QAClB,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,KAAK,CAAC;QAE7C,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,eAAe,EAAE,OAAO,CAAC;QAE7C,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,GAAG,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;YAClC,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,OAAO,EAAE,2BAA2B;aACrC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACzE,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,OAAO,EAAE,0BAA0B,OAAO,EAAE;aAC7C,CAAC;QACJ,CAAC;IACH,CAAC;CACF;AA7gBD,kCA6gBC;AAiBD,SAAgB,oBAAoB,CAAC,MAAsB,EAAE,SAAS,GAAG,KAAK;IAC5E,OAAO;QACL,YAAY,EAAE,GAAG,MAAM,CAAC,YAAY,QAAQ;QAC5C,WAAW,EAAE,GAAG,MAAM,CAAC,WAAW,OAAO;QACzC,aAAa,EAAE,GAAG,MAAM,CAAC,aAAa,MAAM;QAC5C,YAAY,EAAE,GAAG,MAAM,CAAC,YAAY,MAAM;QAC1C,oBAAoB,EAAE,MAAM,CAAC,oBAAoB;QACjD,SAAS;KACV,CAAC;AACJ,CAAC;AAMD,SAAgB,wBAAwB;IACtC,OAAO;QACL,YAAY,EAAE,UAAU;QACxB,WAAW,EAAE,QAAQ;QACrB,aAAa,EAAE,SAAS;QACxB,YAAY,EAAE,OAAO;QACrB,oBAAoB,EAAE,IAAI;QAC1B,SAAS,EAAE,IAAI;KAChB,CAAC;AACJ,CAAC"}

package/dist/server.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=server.d.ts.map

package/dist/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":""}

package/dist/server.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const app_1 = require("./app");
+const config_1 = require("./config");
+const logger_1 = require("./utils/logger");
+const migration_runner_1 = require("./data/migrations/migration.runner");
+const container_1 = require("./container");
+const package_json_1 = require("../package.json");
+async function startServer() {
+    try {
+        const config = (0, config_1.getConfig)();
+        (0, logger_1.logInfo)('Configuration loaded successfully', {
+            port: config.server.port,
+            nodeEnv: config.server.nodeEnv,
+        });
+        await migration_runner_1.MigrationRunner.runMigrations(config.database.path);
+        (0, logger_1.logInfo)('Database migrations completed');
+        await container_1.DIContainer.initialize();
+        (0, logger_1.logInfo)('DI container initialized');
+        const app = (0, app_1.createApp)();
+        const server = app.listen(config.server.port, () => {
+            (0, logger_1.logInfo)('Server started successfully', {
+                port: config.server.port,
+                nodeEnv: config.server.nodeEnv,
+                version: package_json_1.version,
+            });
+        });
+        const shutdown = () => {
+            (0, logger_1.logInfo)('Shutdown signal received, closing server...');
+            server.close(() => {
+                (0, logger_1.logInfo)('Server closed successfully');
+                process.exit(0);
+            });
+        };
+        process.on('SIGTERM', shutdown);
+        process.on('SIGINT', shutdown);
+    }
+    catch (error) {
+        (0, logger_1.logError)('Failed to start server', error);
+        process.exit(1);
+    }
+}
+void startServer();
+//# sourceMappingURL=server.js.map

package/dist/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":";;AAAA,+BAAkC;AAClC,qCAAqC;AACrC,2CAAmD;AACnD,yEAAqE;AACrE,2CAA0C;AAC1C,kDAA0C;AAO1C,KAAK,UAAU,WAAW;IACxB,IAAI,CAAC;QAEH,MAAM,MAAM,GAAG,IAAA,kBAAS,GAAE,CAAC;QAC3B,IAAA,gBAAO,EAAC,mCAAmC,EAAE;YAC3C,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,IAAI;YACxB,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO;SAC/B,CAAC,CAAC;QAGH,MAAM,kCAAe,CAAC,aAAa,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC1D,IAAA,gBAAO,EAAC,+BAA+B,CAAC,CAAC;QAGzC,MAAM,uBAAW,CAAC,UAAU,EAAE,CAAC;QAC/B,IAAA,gBAAO,EAAC,0BAA0B,CAAC,CAAC;QAGpC,MAAM,GAAG,GAAG,IAAA,eAAS,GAAE,CAAC;QAGxB,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,EAAE;YACjD,IAAA,gBAAO,EAAC,6BAA6B,EAAE;gBACrC,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,IAAI;gBACxB,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO;gBAC9B,OAAO,EAAP,sBAAO;aACR,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAGH,MAAM,QAAQ,GAAG,GAAS,EAAE;YAC1B,IAAA,gBAAO,EAAC,6CAA6C,CAAC,CAAC;YACvD,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE;gBAChB,IAAA,gBAAO,EAAC,4BAA4B,CAAC,CAAC;gBACtC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC,CAAC,CAAC;QACL,CAAC,CAAC;QAEF,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;QAChC,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IACjC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAA,iBAAQ,EAAC,wBAAwB,EAAE,KAAc,CAAC,CAAC;QACnD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC;AAGD,KAAK,WAAW,EAAE,CAAC"}

package/dist/services/audit/ad-audit.service.d.ts

@@ -0,0 +1,70 @@
+import { LDAPProvider } from '../../providers/ldap/ldap.provider';
+import { Finding } from '../../types/finding.types';
+import { SecurityScore } from './scoring.service';
+import { DomainConfig } from './response-formatter';
+import { SMBConfig as AppSMBConfig, LDAPConfig } from '../../types/config.types';
+import { AttackGraphExport } from '../../types/attack-graph.types';
+export interface AuditOptions {
+    includeDetails?: boolean;
+    maxUsers?: number;
+    maxGroups?: number;
+    maxComputers?: number;
+}
+export interface AuditResult {
+    score: SecurityScore;
+    findings: Finding[];
+    stats: {
+        totalUsers: number;
+        enabledUsers: number;
+        disabledUsers: number;
+        totalGroups: number;
+        totalComputers: number;
+        enabledComputers: number;
+        disabledComputers: number;
+        totalOUs: number;
+        totalFindings: number;
+        executionTimeMs: number;
+        ldapUrl?: string;
+    };
+    timestamp: Date;
+    domainConfig?: DomainConfig;
+    attackGraph?: AttackGraphExport;
+}
+export declare class ADAuditService {
+    private ldapProvider;
+    private smbConfig?;
+    constructor(ldapProvider: LDAPProvider, smbConfig?: {
+        smb: AppSMBConfig;
+        ldap: LDAPConfig;
+    });
+    runAudit(options?: AuditOptions): Promise<AuditResult>;
+    testConnection(): Promise<{
+        success: boolean;
+        message: string;
+    }>;
+    private testAnonymousLdapAccess;
+    private fetchUsers;
+    private fetchGroups;
+    private fetchComputers;
+    private fetchDomain;
+    private fetchGpoSecuritySettings;
+    private fetchOUCount;
+    private fetchAcls;
+    private fetchAclsForObjects;
+    private fetchCertificateTemplates;
+    private fetchCertificateAuthorities;
+    private fetchGPOsWithAcls;
+    private fetchTrustsExtended;
+    private fetchDomainConfig;
+    private formatFiletimeDuration;
+    private getDomainModeName;
+    private extractDomainNameFromDN;
+    private fetchFSMORoles;
+    private extractServerFromDN;
+    private fetchTrusts;
+    private getTrustDirection;
+    private getTrustType;
+    private fetchGPOCount;
+    private fetchKerberosPolicyViaSMB;
+}
+//# sourceMappingURL=ad-audit.service.d.ts.map

package/dist/services/audit/ad-audit.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ad-audit.service.d.ts","sourceRoot":"","sources":["../../../src/services/audit/ad-audit.service.ts"],"names":[],"mappings":"AAcA,OAAO,EAAE,YAAY,EAAE,MAAM,oCAAoC,CAAC;AAIlE,OAAO,EAAE,OAAO,EAAE,MAAM,2BAA2B,CAAC;AACpD,OAAO,EAA0B,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAC1E,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AAIpD,OAAO,EAAE,SAAS,IAAI,YAAY,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AAuBjF,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAC;AAiCnE,MAAM,WAAW,YAAY;IAI3B,cAAc,CAAC,EAAE,OAAO,CAAC;IAKzB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAKlB,SAAS,CAAC,EAAE,MAAM,CAAC;IAKnB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAKD,MAAM,WAAW,WAAW;IAI1B,KAAK,EAAE,aAAa,CAAC;IAKrB,QAAQ,EAAE,OAAO,EAAE,CAAC;IAKpB,KAAK,EAAE;QACL,UAAU,EAAE,MAAM,CAAC;QACnB,YAAY,EAAE,MAAM,CAAC;QACrB,aAAa,EAAE,MAAM,CAAC;QACtB,WAAW,EAAE,MAAM,CAAC;QACpB,cAAc,EAAE,MAAM,CAAC;QACvB,gBAAgB,EAAE,MAAM,CAAC;QACzB,iBAAiB,EAAE,MAAM,CAAC;QAC1B,QAAQ,EAAE,MAAM,CAAC;QACjB,aAAa,EAAE,MAAM,CAAC;QACtB,eAAe,EAAE,MAAM,CAAC;QACxB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,CAAC;IAKF,SAAS,EAAE,IAAI,CAAC;IAKhB,YAAY,CAAC,EAAE,YAAY,CAAC;IAK5B,WAAW,CAAC,EAAE,iBAAiB,CAAC;CACjC;AAgDD,qBAAa,cAAc;IAGb,OAAO,CAAC,YAAY;IAFhC,OAAO,CAAC,SAAS,CAAC,CAA0C;gBAExC,YAAY,EAAE,YAAY,EAAE,SAAS,CAAC,EAAE;QAAE,GAAG,EAAE,YAAY,CAAC;QAAC,IAAI,EAAE,UAAU,CAAA;KAAE;IAU7F,QAAQ,CAAC,OAAO,GAAE,YAAiB,GAAG,OAAO,CAAC,WAAW,CAAC;IAoJ1D,cAAc,IAAI,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;YAiBxD,uBAAuB;YAmDvB,UAAU;YA6EV,WAAW;YA4BX,cAAc;YA2Dd,WAAW;YA+EX,wBAAwB;YAiFxB,YAAY;YA0BZ,SAAS;YAwDT,mBAAmB;YA+CnB,yBAAyB;YAgDzB,2BAA2B;YAwC3B,iBAAiB;YAmGjB,mBAAmB;YA+CnB,iBAAiB;IAiH/B,OAAO,CAAC,sBAAsB;IAuB9B,OAAO,CAAC,iBAAiB;IAoBzB,OAAO,CAAC,uBAAuB;YASjB,cAAc;IA+C5B,OAAO,CAAC,mBAAmB;YASb,WAAW;IA4BzB,OAAO,CAAC,iBAAiB;IAgBzB,OAAO,CAAC,YAAY;YAkBN,aAAa;YA0Cb,yBAAyB;CA4CxC"}