@frangoteam/fuxa-min 1.2.11 → 1.3.1

package/api/auth/index.js

@@ -10,12 +10,78 @@ const authJwt = require('../jwt-helper');
 var runtime;
 var secretCode;
 var tokenExpiresIn;
+var enableRefreshCookieAuth = false;
+var refreshTokenExpiresIn = '7d';
+const refreshCookieName = 'fuxa_refresh';
+
+function parseExpiresToMs(expiresIn) {
+    if (expiresIn === undefined || expiresIn === null) {
+        return null;
+    }
+    if (typeof expiresIn === 'number') {
+        return expiresIn * 1000;
+    }
+    if (typeof expiresIn !== 'string') {
+        return null;
+    }
+    const match = expiresIn.trim().match(/^(\d+)\s*([smhd])?$/i);
+    if (!match) {
+        return null;
+    }
+    const value = Number(match[1]);
+    const unit = (match[2] || 's').toLowerCase();
+    const multipliers = { s: 1000, m: 60000, h: 3600000, d: 86400000 };
+    return value * (multipliers[unit] || 1000);
+}
+
+function getCookieValue(req, name) {
+    const cookieHeader = req.headers.cookie;
+    if (!cookieHeader) return null;
+    const cookies = cookieHeader.split(';');
+    for (const cookie of cookies) {
+        const [key, ...rest] = cookie.trim().split('=');
+        if (key === name) {
+            return decodeURIComponent(rest.join('='));
+        }
+    }
+    return null;
+}
+
+function buildAccessToken(user) {
+    return jwt.sign({ id: user.username, groups: user.groups }, secretCode, { expiresIn: tokenExpiresIn });
+}
+
+function buildRefreshToken(user) {
+    return jwt.sign({ id: user.username, groups: user.groups, type: 'refresh' }, secretCode, { expiresIn: refreshTokenExpiresIn });
+}
+
+function setRefreshCookie(res, token) {
+    const maxAge = parseExpiresToMs(refreshTokenExpiresIn);
+    const options = {
+        httpOnly: true,
+        sameSite: 'lax',
+        secure: !!runtime?.settings?.https,
+        path: '/api/refresh'
+    };
+    if (maxAge) {
+        options.maxAge = maxAge;
+    }
+    res.cookie(refreshCookieName, token, options);
+}
+
+function clearRefreshCookie(res) {
+    res.clearCookie(refreshCookieName, { path: '/api/refresh' });
+}
 
 module.exports = {
-    init: function (_runtime, _secretCode, _tokenExpires) {
+    init: function (_runtime, _secretCode, _tokenExpires, _enableRefreshCookieAuth, _refreshTokenExpires) {
         runtime = _runtime;
         secretCode = _secretCode;
         tokenExpiresIn = _tokenExpires;
+        enableRefreshCookieAuth = !!_enableRefreshCookieAuth;
+        if (_refreshTokenExpires) {
+            refreshTokenExpiresIn = _refreshTokenExpires;
+        }
     },
     app: function () {
         var authApp = express();
@@ -35,7 +101,11 @@ module.exports = {
             runtime.users.findOne(req.body).then(function (userInfo) {
                 if (userInfo && userInfo.length && userInfo[0].password) {
                     if (bcrypt.compareSync(req.body.password, userInfo[0].password)) {
-                        const token = jwt.sign({ id: userInfo[0].username, groups: userInfo[0].groups }, secretCode, { expiresIn: tokenExpiresIn });//'1h' });
+                        const token = buildAccessToken(userInfo[0]);
+                        if (enableRefreshCookieAuth) {
+                            const refreshToken = buildRefreshToken(userInfo[0]);
+                            setRefreshCookie(res, refreshToken);
+                        }
                         res.json({
                             status: 'success',
                             message: 'user found!!!',
@@ -66,6 +136,74 @@ module.exports = {
             });
         });
 
+        /**
+         * POST Refresh
+         * Refresh access token using HttpOnly refresh cookie
+         */
+        authApp.post('/api/refresh', async function (req, res, next) {
+            if (!runtime?.settings?.secureEnabled || !enableRefreshCookieAuth) {
+                return res.status(204).end();
+            }
+            const refreshToken = getCookieValue(req, refreshCookieName);
+            if (!refreshToken) {
+                return res.status(401).json({ status: 'error', message: 'Refresh token missing' });
+            }
+            try {
+                const decoded = jwt.verify(refreshToken, secretCode);
+                if (decoded?.type !== 'refresh') {
+                    clearRefreshCookie(res);
+                    return res.status(401).json({ status: 'error', message: 'Invalid refresh token' });
+                }
+
+                let userData = null;
+                try {
+                    const users = await runtime.users.getUsers({ username: decoded.id });
+                    if (users && users.length) {
+                        userData = users[0];
+                    }
+                } catch (err) {
+                    runtime.logger.error(`api refresh: user lookup failed ${err}`);
+                }
+
+                const user = {
+                    username: decoded.id,
+                    fullname: userData?.fullname,
+                    groups: userData?.groups || decoded.groups,
+                    info: userData?.info
+                };
+
+                const newAccessToken = buildAccessToken(user);
+                const newRefreshToken = buildRefreshToken(user);
+                setRefreshCookie(res, newRefreshToken);
+
+                res.json({
+                    status: 'success',
+                    message: 'token refreshed',
+                    data: {
+                        username: user.username,
+                        fullname: user.fullname,
+                        groups: user.groups,
+                        info: user.info,
+                        token: newAccessToken
+                    }
+                });
+            } catch (err) {
+                clearRefreshCookie(res);
+                res.status(401).json({ status: 'error', message: 'Invalid refresh token' });
+            }
+        });
+
+        /**
+         * POST SignOut
+         * Clear refresh cookie
+         */
+        authApp.post('/api/signout', function (req, res, next) {
+            if (enableRefreshCookieAuth) {
+                clearRefreshCookie(res);
+            }
+            res.status(204).end();
+        });
+
         return authApp;
     }
-}
+}

package/api/command/index.js

@@ -78,7 +78,7 @@ module.exports = {
             if (res.statusCode === 403) {
                 runtime.logger.error("api get getTagValue: Tocken Expired");
             } else if (!authJwt.haveAdminPermission(permission) && !runtime.scriptsMgr.isAuthorisedByScriptName(req.query.sourceScriptName, permission)) {
-                res.status(400).json({error:"unauthorized_error", message: "Unauthorized!"});
+                res.status(401).json({error:"unauthorized_error", message: "Unauthorized!"});
                 runtime.logger.error("api get getTagValue: Unauthorized");
             } else {
                 try {

package/api/index.js

@@ -56,7 +56,7 @@ function init(_server, _runtime) {
             apiApp.use(usersApi.app());
             alarmsApi.init(runtime, authMiddleware, verifyGroups);
             apiApp.use(alarmsApi.app());
-            authApi.init(runtime, authJwt.secretCode, authJwt.tokenExpiresIn);
+            authApi.init(runtime, authJwt.secretCode, authJwt.tokenExpiresIn, runtime.settings.enableRefreshCookieAuth, runtime.settings.refreshTokenExpiresIn);
             apiApp.use(authApi.app());
             pluginsApi.init(runtime, authMiddleware, verifyGroups);
             apiApp.use(pluginsApi.app());
@@ -146,9 +146,15 @@ function init(_server, _runtime) {
                         if (!req.body.secretCode && runtime.settings.secretCode) {
                             req.body.secretCode = runtime.settings.secretCode;
                         }
+                        if (req.body.secureEnabled && !req.body.secretCode) {
+                            req.body.secretCode = utils.generateSecretCode();
+                            runtime.logger.warn('Generated random JWT secret because secureEnabled=true and no secretCode was provided.');
+                        }
                         const prevAuth = {
                             secureEnabled: runtime.settings.secureEnabled,
                             tokenExpiresIn: runtime.settings.tokenExpiresIn,
+                            enableRefreshCookieAuth: runtime.settings.enableRefreshCookieAuth,
+                            refreshTokenExpiresIn: runtime.settings.refreshTokenExpiresIn,
                             secretCode: runtime.settings.secretCode
                         };
                         if (req.body.nodeRedEnabled === true &&
@@ -160,9 +166,11 @@ function init(_server, _runtime) {
                         mergeUserSettings(req.body);
                         if (prevAuth.secureEnabled !== runtime.settings.secureEnabled ||
                             prevAuth.tokenExpiresIn !== runtime.settings.tokenExpiresIn ||
+                            prevAuth.enableRefreshCookieAuth !== runtime.settings.enableRefreshCookieAuth ||
+                            prevAuth.refreshTokenExpiresIn !== runtime.settings.refreshTokenExpiresIn ||
                             prevAuth.secretCode !== runtime.settings.secretCode) {
                             authJwt.init(runtime.settings.secureEnabled, runtime.settings.secretCode, runtime.settings.tokenExpiresIn);
-                            authApi.init(runtime, authJwt.secretCode, authJwt.tokenExpiresIn);
+                            authApi.init(runtime, authJwt.secretCode, authJwt.tokenExpiresIn, runtime.settings.enableRefreshCookieAuth, runtime.settings.refreshTokenExpiresIn);
                         }
                         runtime.restart(true).then(function(result) {
                             res.end();
@@ -221,6 +229,9 @@ function mergeUserSettings(settings) {
     if (settings.language) {
         runtime.settings.language = settings.language;
     }
+    if (!utils.isNullOrUndefined(settings.hideEditorOnboarding)) {
+        runtime.settings.hideEditorOnboarding = settings.hideEditorOnboarding;
+    }
     runtime.settings.broadcastAll = settings.broadcastAll;
     runtime.settings.secureEnabled = settings.secureEnabled;
     runtime.settings.logFull = settings.logFull;
@@ -229,6 +240,12 @@ function mergeUserSettings(settings) {
     if (!utils.isNullOrUndefined(settings.nodeRedAuthMode)) {
         runtime.settings.nodeRedAuthMode = settings.nodeRedAuthMode;
     }
+    if (!utils.isNullOrUndefined(settings.enableRefreshCookieAuth)) {
+        runtime.settings.enableRefreshCookieAuth = settings.enableRefreshCookieAuth;
+    }
+    if (!utils.isNullOrUndefined(settings.refreshTokenExpiresIn)) {
+        runtime.settings.refreshTokenExpiresIn = settings.refreshTokenExpiresIn;
+    }
     if (!utils.isNullOrUndefined(settings.nodeRedUnsafeModules)) {
         runtime.settings.nodeRedUnsafeModules = settings.nodeRedUnsafeModules;
     }
@@ -238,6 +255,8 @@ function mergeUserSettings(settings) {
     }
     if (settings.secureEnabled) {
         runtime.settings.tokenExpiresIn = settings.tokenExpiresIn;
+        runtime.settings.enableRefreshCookieAuth = settings.enableRefreshCookieAuth;
+        runtime.settings.refreshTokenExpiresIn = settings.refreshTokenExpiresIn;
     }
     if (settings.smtp) {
         runtime.settings.smtp = settings.smtp;

package/api/jwt-helper.js

@@ -1,9 +1,11 @@
 'use strict';
 
 const jwt = require('jsonwebtoken');
+const utils = require('../runtime/utils');
 
 var secureEnabled = false;
-var secretCode = 'frangoteam751';
+// Runtime fallback secret used only when no persistent secret is configured.
+var secretCode = utils.generateSecretCode();
 var tokenExpiresIn = 60 * 60;   // 60 minutes
 const adminGroups = [-1, 255];
 

package/api/resources/index.js

@@ -275,10 +275,13 @@ module.exports = {
                         var group = { name: resourcesDirs[i], items: [] };
                         var dirPath = path.resolve(runtime.settings.widgetsFileDir, resourcesDirs[i]);
                         var wwwSubDir = path.join('_widgets', resourcesDirs[i]);
-                        var files = getFiles(dirPath, ['.svg']);
+                        var files = getFilesRecursive(dirPath, ['.svg']);
                         for (var x = 0; x < files.length; x++) {
                             var filename = files[x];
-                            group.items.push({ path: path.join(wwwSubDir, files[x]).split(path.sep).join(path.posix.sep), name: filename });
+                            group.items.push({
+                                path: path.join(wwwSubDir, files[x]).split(path.sep).join(path.posix.sep),
+                                name: filename
+                            });
                         }
                         result.groups.push(group);
                     }
@@ -358,3 +361,17 @@ function getFiles(pathDir, extensions) {
         .filter((item) => extensions.indexOf(path.extname(item).toLowerCase()) !== -1);
     return filesInDIrectory;
 }
+
+function getFilesRecursive(pathDir, extensions, baseDir = pathDir) {
+    const entries = fs.readdirSync(pathDir, { withFileTypes: true });
+    const files = [];
+    for (const entry of entries) {
+        const entryPath = path.join(pathDir, entry.name);
+        if (entry.isDirectory()) {
+            files.push(...getFilesRecursive(entryPath, extensions, baseDir));
+        } else if (extensions.indexOf(path.extname(entry.name).toLowerCase()) !== -1) {
+            files.push(path.relative(baseDir, entryPath));
+        }
+    }
+    return files;
+}

package/api/scripts/index.js

@@ -32,15 +32,19 @@ module.exports = {
          */
          scriptsApp.post("/api/runscript", secureFnc, function (req, res, next) {
             const permission = checkGroupsFnc(req);
+            const script = req.body?.params?.script;
             if (res.statusCode === 403) {
                 runtime.logger.error("api post runscript: Tocken Expired");
                 //runtime.settings.secureEnabled
-            } else if (!runtime.scriptsMgr.isAuthorised(req.body.params.script, permission)) {
+            } else if (script?.test && (!req.isAuthenticated || !authJwt.haveAdminPermission(permission))) {
+                res.status(401).json({ error: "unauthorized_error", message: "Unauthorized!" });
+                runtime.logger.error("api post runscript: Unauthorized test mode");
+            } else if (!runtime.scriptsMgr.isAuthorised(script, permission)) {
                 res.status(400).json({ error: "unauthorized_error", message: "Unauthorized!" });
                 runtime.logger.error("api post runscript: Unauthorized");
             } else {
                 //req.body.params.script.parameters.permission = groups;
-                runtime.scriptsMgr.runScript(req.body.params.script, req.body.params.toLogEvent).then(function (result) {
+                runtime.scriptsMgr.runScript(script, req.body.params.toLogEvent).then(function (result) {
                     res.json(result);
                 }).catch(function (err) {
                     if (err.code) {
@@ -82,4 +86,4 @@ module.exports = {
         });
         return scriptsApp;
     }
-}
+}

package/dist/3rdpartylicenses.txt

@@ -1,11 +1,33 @@
 @angular/animations
 MIT
+The MIT License
+
+Copyright (c) 2010-2024 Google LLC. https://angular.dev/license
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+
 
 @angular/cdk
 MIT
 The MIT License
 
-Copyright (c) 2023 Google LLC.
+Copyright (c) 2024 Google LLC.
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
@@ -28,18 +50,84 @@ THE SOFTWARE.
 
 @angular/common
 MIT
+The MIT License
+
+Copyright (c) 2010-2024 Google LLC. https://angular.dev/license
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+
 
 @angular/core
 MIT
+The MIT License
+
+Copyright (c) 2010-2024 Google LLC. https://angular.dev/license
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+
 
 @angular/forms
 MIT
+The MIT License
+
+Copyright (c) 2010-2024 Google LLC. https://angular.dev/license
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+
 
 @angular/material
 MIT
 The MIT License
 
-Copyright (c) 2023 Google LLC.
+Copyright (c) 2024 Google LLC.
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
@@ -64,7 +152,7 @@ THE SOFTWARE.
 MIT
 The MIT License
 
-Copyright (c) 2023 Google LLC.
+Copyright (c) 2024 Google LLC.
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
@@ -87,9 +175,53 @@ THE SOFTWARE.
 
 @angular/platform-browser
 MIT
+The MIT License
+
+Copyright (c) 2010-2024 Google LLC. https://angular.dev/license
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+
 
 @angular/router
 MIT
+The MIT License
+
+Copyright (c) 2010-2024 Google LLC. https://angular.dev/license
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+
 
 @babel/runtime
 MIT
@@ -179,7 +311,7 @@ angular-gridster2
 MIT
 MIT License
 
-Copyright (c) 2023 Tiberiu Zuld
+Copyright (c) 2024 Tiberiu Zuld
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal
@@ -990,7 +1122,7 @@ MIT
 The MIT License (MIT)
 
 Copyright (c) 2014-2015 bpampuch
-              2016-2025 liborm85
+              2016-2026 liborm85
 
 Permission is hereby granted, free of charge, to any person obtaining a copy of
 this software and associated documentation files (the "Software"), to deal in
@@ -1222,7 +1354,7 @@ socket.io-parser
 MIT
 (The MIT License)
 
-Copyright (c) 2014 Guillermo Rauch <guillermo@learnboost.com>
+Copyright (c) 2014-present Guillermo Rauch and Socket.IO contributors
 
 Permission is hereby granted, free of charge, to any person obtaining a copy of
 this software and associated documentation files (the 'Software'), to deal in
@@ -1316,7 +1448,7 @@ zone.js
 MIT
 The MIT License
 
-Copyright (c) 2010-2023 Google LLC. https://angular.io/license
+Copyright (c) 2010-2024 Google LLC. https://angular.io/license
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

package/dist/assets/i18n/de.json

@@ -834,6 +834,8 @@
     "device.tag-daq-changed": "Wert speichern, wenn geändert",
     "device.tag-daq-interval": "Intervall für Speichern (Sek.)",
     "device.tag-format": "Ziffern formatieren (2 = #.##)",
+
+    "device.tag-uns-path": "UNS Path",
     "device.tag-scale": "Skalierungsmodus",
     "device.tag-scale-mode-undefined": "Keine Skalierung",
     "device.tag-scale-mode-undefined-tooltip": "Tag-Wert",
@@ -1240,6 +1242,11 @@
     "dlg.app-settings-daqstore": "DAQ-Speicher",
     "dlg.app-settings-daqstore-type": "Datenbanktyp",
     "dlg.app-settings-daqstore-url": "URL",
+    "dlg.app-settings-daqstore-configurl": "Config URL",
+    "dlg.app-settings-daqstore-queryconn": "Query connection (PGWire)",
+
+    "dlg.app-settings-daqstore-questdb-host": "QuestDB Host",
+    "dlg.app-settings-daqstore-ingestconn": "Ingestion connection (ILP)",
     "dlg.app-settings-daqstore-token": "Token",
     "dlg.app-settings-daqstore-bucket": "Bucket",
     "dlg.app-settings-daqstore-organization": "Organisation",
@@ -1306,3 +1313,6 @@
     "msg.report-build-error": "Senden zum Erstellen des Berichts fehlgeschlagen!",
     "msg.device-tags-request-result": "Lade {{value}} von {{current}}"
 }
+
+
+

package/dist/assets/i18n/en.json

@@ -307,6 +307,9 @@
     "chart.property-refresh-interval": "Refresh interval (min.)",
     "chart.property-hide-toolbar": "Hide toolbar",
     "chart.property-thouch-zoom": "Thouch Zoom",
+    "chart.property-mouse-wheel-scroll": "Mouse wheel scroll",
+    "chart.property-mouse-wheel-zoom": "Mouse wheel zoom",
+    "chart.property-static-chart": "Static chart",
     "chart.property-load-old-values": "Load history",
     "chart.property-date.format": "Date format",
     "chart.property-time.format": "Time format",
@@ -575,6 +578,12 @@
     "editor.controls-slider": "Slider",
     "editor.controls-slider-settings": "Slider settings",
     "editor.controls-shape-settings": "Shape settings",
+    "editor.onboarding-wizard-title": "Initial Security Setup",
+    "editor.onboarding-wizard-message": "Configure the editor's initial security now to avoid unprotected access and the use of default credentials.",
+    "editor.onboarding-wizard-hide": "Do not show this wizard again",
+    "editor.onboarding-wizard-admin-password": "Administrator password",
+    "editor.onboarding-wizard-admin-password-message": "Set a new password for the default administrator account 'admin'.",
+    "editor.onboarding-wizard-admin-password-required": "Administrator password required",
     "editor.controls-html-switch-settings": "Switch settings",
 	"editor.controls-switch": "Switch",
     "editor.controls-graphbar": "Bar Graph",
@@ -992,6 +1001,7 @@
     "device.property-name": "Name",
     "device.property-type": "Type",
     "device.property-polling": "Polling",
+    "device.property-polling-warning": "Warning: Low polling intervals may cause high CPU and network load. Use with care.",
     "device.property-enable": "Enable",
     "device.property-subscribe": "Subscribe",
     "device.property-address": "Address (IP or opc.tcp://[server]:[port])",
@@ -1153,6 +1163,8 @@
 
     "device.tag-format": "Format digits (2 = #.##)",
     "device.tag-deadband": "Deadband",
+
+    "device.tag-uns-path": "UNS Path",
     "device.tag-scale": "Scale Mode / Convertion",
     "device.tag-scale-mode-undefined": "No Scaling",
     "device.tag-scale-mode-undefined-tooltip": "Tag Value",
@@ -1615,6 +1627,7 @@
     "report.item-interval": "Interval (period)",
     "report.item-interval-min5": "5 minutes",
     "report.item-interval-min10": "10 minutes",
+    "report.item-interval-min15": "15 minutes",
     "report.item-interval-min30": "30 minutes",
     "report.item-interval-hour": "1 Hour",
     "report.item-interval-day": "1 Day",
@@ -1811,6 +1824,11 @@
     "dlg.app-settings-daqstore": "DAQ storage",
     "dlg.app-settings-daqstore-type": "Database type",
     "dlg.app-settings-daqstore-url": "URL",
+    "dlg.app-settings-daqstore-configurl": "Config URL",
+    "dlg.app-settings-daqstore-queryconn": "Query connection (PGWire)",
+
+    "dlg.app-settings-daqstore-questdb-host": "QuestDB Host",
+    "dlg.app-settings-daqstore-ingestconn": "Ingestion connection (ILP)",
     "dlg.app-settings-daqstore-token": "Token",
     "dlg.app-settings-daqstore-bucket": "Bucket",
     "dlg.app-settings-daqstore-organization": "Organization",
@@ -1868,7 +1886,7 @@
     "msg.alarmproperty-missing-value": "Some values are missing!",
     "msg.textproperty-error-exist": "Text-ID exists!",
     "msg.textproperty-missing-value": "Some values are missing!",
-    "msg.device-remove": "Would you like to remove Device?",
+    "msg.device-remove": "Would you like to remove Device '{{value}}'?",
     "msg.device-tag-remove": "Would you like to remove Tag?",
     "msg.device-tag-exist": "Tag name exists!",
     "msg.device-tag-invalid-char": "The '@' character is not allowed in tag names!",
@@ -1884,7 +1902,7 @@
     "msg.project-load-error": "Unable to read '{{value}}'",
     "msg.project": "Would you like to save the Project changes?",
     "msg.tags-remove-all": "Would you like to remove all Tags?",
-    "msg.view-remove": "Would you like to remove View '{{value}}'?",
+    "msg.view-remove": "Would you like to remove View '{{value}}' ?",
     "msg.chart-remove": "Would you like to remove Chart '{{value}}'?",
     "msg.role-remove": "Would you like to remove Role '{{value}}'?",
     "msg.graph-remove": "Would you like to remove Bar chart '{{value}}'?",
@@ -1895,7 +1913,7 @@
     "msg.sendmail-success": "Mail send successful!",
     "msg.sendmail-error": "Mail send failed!",
     "msg.users-save-error": "User save failed!",
-    "msg.user-remove": "Would you like to remove User ",
+    "msg.user-remove": "Would you like to remove User '{{value}}'?",
     "msg.project-save-success": "Project save successful!",
     "msg.project-save-error": "Project save failed!",
     "msg.project-format-error": "Project wrong format!",