npm - @harperfast/harper - Versions diffs - 5.0.0-alpha.10 → 5.0.0-beta.1 - Mend

@harperfast/harper 5.0.0-alpha.10 → 5.0.0-beta.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (444) hide show

package/bin/BinObjects.js +17 -0
package/bin/cliOperations.js +157 -0
package/bin/copyDb.ts +280 -0
package/bin/harper.js +156 -0
package/bin/install.js +15 -0
package/bin/lite.js +5 -0
package/bin/restart.js +201 -0
package/bin/run.js +409 -0
package/bin/status.js +65 -0
package/bin/stop.js +22 -0
package/bin/upgrade.js +134 -0
package/components/Application.ts +646 -0
package/components/ApplicationScope.ts +49 -0
package/components/Component.ts +53 -0
package/components/ComponentV1.ts +342 -0
package/components/DEFAULT_CONFIG.ts +18 -0
package/components/EntryHandler.ts +227 -0
package/components/Logger.ts +14 -0
package/components/OptionsWatcher.ts +354 -0
package/components/PluginModule.ts +6 -0
package/components/Scope.ts +329 -0
package/components/componentLoader.ts +529 -0
package/components/deriveCommonPatternBase.ts +31 -0
package/components/deriveGlobOptions.ts +44 -0
package/components/deriveURLPath.ts +57 -0
package/components/operations.js +658 -0
package/components/operationsValidation.js +246 -0
package/components/packageComponent.ts +39 -0
package/components/requestRestart.ts +26 -0
package/components/resolveBaseURLPath.ts +38 -0
package/components/status/ComponentStatus.ts +110 -0
package/components/status/ComponentStatusRegistry.ts +251 -0
package/components/status/api.ts +153 -0
package/components/status/crossThread.ts +405 -0
package/components/status/errors.ts +152 -0
package/components/status/index.ts +44 -0
package/components/status/internal.ts +65 -0
package/components/status/registry.ts +12 -0
package/components/status/types.ts +96 -0
package/config/RootConfigWatcher.ts +59 -0
package/config/configHelpers.ts +11 -0
package/config/configUtils.js +967 -0
package/config/harperConfigEnvVars.ts +641 -0
package/dataLayer/CreateAttributeObject.js +25 -0
package/dataLayer/CreateTableObject.js +11 -0
package/dataLayer/DataLayerObjects.js +43 -0
package/dataLayer/DeleteBeforeObject.js +22 -0
package/dataLayer/DeleteObject.js +25 -0
package/dataLayer/DropAttributeObject.js +11 -0
package/dataLayer/GetBackupObject.js +22 -0
package/dataLayer/InsertObject.js +24 -0
package/dataLayer/ReadAuditLogObject.js +24 -0
package/dataLayer/SQLSearch.js +1335 -0
package/dataLayer/SearchByConditionsObject.js +61 -0
package/dataLayer/SearchByHashObject.js +21 -0
package/dataLayer/SearchObject.js +45 -0
package/dataLayer/SqlSearchObject.js +14 -0
package/dataLayer/UpdateObject.js +23 -0
package/dataLayer/UpsertObject.js +23 -0
package/dataLayer/bulkLoad.js +813 -0
package/dataLayer/dataObjects/BulkLoadObjects.js +27 -0
package/dataLayer/dataObjects/UpsertObject.js +23 -0
package/dataLayer/delete.js +164 -0
package/dataLayer/export.js +381 -0
package/dataLayer/getBackup.js +40 -0
package/dataLayer/harperBridge/BridgeMethods.js +81 -0
package/dataLayer/harperBridge/ResourceBridge.ts +633 -0
package/dataLayer/harperBridge/bridgeUtility/insertUpdateReturnObj.js +28 -0
package/dataLayer/harperBridge/bridgeUtility/insertUpdateValidate.js +88 -0
package/dataLayer/harperBridge/harperBridge.js +21 -0
package/dataLayer/harperBridge/lmdbBridge/LMDBBridge.js +119 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/DeleteAuditLogsBeforeResults.js +19 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbCreateAttribute.js +112 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbCreateRecords.js +67 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbCreateSchema.js +31 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbCreateTable.js +94 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbDeleteAuditLogsBefore.js +98 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbDeleteRecords.js +89 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbDropAttribute.js +109 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbDropSchema.js +107 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbDropTable.js +137 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbFlush.js +35 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbGetBackup.js +111 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbGetDataByHash.js +28 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbGetDataByValue.js +29 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbReadAuditLog.js +207 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbSearchByConditions.js +156 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbSearchByHash.js +21 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbSearchByValue.js +30 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbTransaction.js +19 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbUpdateRecords.js +64 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbMethods/lmdbUpsertRecords.js +70 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/LMDBCreateAttributeObject.js +22 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/LMDBDeleteTransactionObject.js +23 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/LMDBInsertTransactionObject.js +22 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/LMDBTransactionObject.js +23 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/LMDBUpdateTransactionObject.js +24 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/LMDBUpsertTransactionObject.js +24 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/TableSizeObject.js +25 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/initializeHashSearch.js +21 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/initializePaths.js +157 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/lmdbCheckForNewAttributes.js +94 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/lmdbCreateTransactionsAuditEnvironment.js +39 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/lmdbGetTableSize.js +34 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/lmdbProcessRows.js +100 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/lmdbSearch.js +371 -0
package/dataLayer/harperBridge/lmdbBridge/lmdbUtility/lmdbWriteTransaction.js +109 -0
package/dataLayer/hdbInfoController.js +254 -0
package/dataLayer/insert.js +266 -0
package/dataLayer/readAuditLog.js +59 -0
package/dataLayer/schema.js +366 -0
package/dataLayer/schemaDescribe.js +289 -0
package/dataLayer/search.js +60 -0
package/dataLayer/transaction.js +17 -0
package/dataLayer/update.js +124 -0
package/dist/components/Logger.d.ts +12 -0
package/dist/components/Logger.js +3 -0
package/dist/components/Logger.js.map +1 -0
package/dist/components/Scope.d.ts +14 -4
package/dist/components/Scope.js +18 -10
package/dist/components/Scope.js.map +1 -1
package/dist/components/componentLoader.js +16 -9
package/dist/components/componentLoader.js.map +1 -1
package/dist/components/operations.js +2 -2
package/dist/components/operations.js.map +1 -1
package/dist/config/configUtils.d.ts +1 -1
package/dist/config/configUtils.js +1 -1
package/dist/config/configUtils.js.map +1 -1
package/dist/dataLayer/CreateTableObject.d.ts +2 -2
package/dist/dataLayer/CreateTableObject.js +2 -2
package/dist/dataLayer/CreateTableObject.js.map +1 -1
package/dist/dataLayer/delete.d.ts +1 -1
package/dist/dataLayer/schema.js +6 -5
package/dist/dataLayer/schema.js.map +1 -1
package/dist/dataLayer/schemaDescribe.js +1 -1
package/dist/dataLayer/schemaDescribe.js.map +1 -1
package/dist/index.d.ts +1 -1
package/dist/index.js +2 -0
package/dist/index.js.map +1 -1
package/dist/resources/DatabaseTransaction.d.ts +1 -1
package/dist/resources/IterableEventQueue.d.ts +1 -1
package/dist/resources/LMDBTransaction.d.ts +5 -1
package/dist/resources/Resource.d.ts +1 -1
package/dist/resources/RocksIndexStore.d.ts +3 -3
package/dist/resources/RocksTransactionLogStore.d.ts +6 -3
package/dist/resources/Table.d.ts +15 -6
package/dist/resources/Table.js +4 -1
package/dist/resources/Table.js.map +1 -1
package/dist/resources/analytics/read.js +32 -22
package/dist/resources/analytics/read.js.map +1 -1
package/dist/resources/analytics/write.js +3 -6
package/dist/resources/analytics/write.js.map +1 -1
package/dist/resources/auditStore.d.ts +3 -3
package/dist/resources/blob.d.ts +25 -2
package/dist/resources/databases.d.ts +12 -2
package/dist/resources/databases.js +22 -19
package/dist/resources/databases.js.map +1 -1
package/dist/resources/search.js +11 -5
package/dist/resources/search.js.map +1 -1
package/dist/resources/transaction.d.ts +2 -1
package/dist/security/auth.js +1 -1
package/dist/security/auth.js.map +1 -1
package/dist/security/cryptoHash.d.ts +2 -2
package/dist/security/jsLoader.js +243 -66
package/dist/security/jsLoader.js.map +1 -1
package/dist/security/keys.js +4 -5
package/dist/security/keys.js.map +1 -1
package/dist/security/user.js +3 -3
package/dist/security/user.js.map +1 -1
package/dist/server/REST.js +16 -2
package/dist/server/REST.js.map +1 -1
package/dist/server/Server.d.ts +2 -1
package/dist/server/Server.js.map +1 -1
package/dist/server/fastifyRoutes/plugins/hdbCore.d.ts +6 -1
package/dist/server/fastifyRoutes.js +2 -0
package/dist/server/fastifyRoutes.js.map +1 -1
package/dist/server/http.js +12 -6
package/dist/server/http.js.map +1 -1
package/dist/server/jobs/JobObject.d.ts +3 -3
package/dist/server/loadRootComponents.js +1 -0
package/dist/server/loadRootComponents.js.map +1 -1
package/dist/server/operationsServer.js +3 -1
package/dist/server/operationsServer.js.map +1 -1
package/dist/server/serverHelpers/JSONStream.d.ts +3 -3
package/dist/server/serverHelpers/Request.d.ts +5 -5
package/dist/server/serverHelpers/requestTimePlugin.d.ts +1 -1
package/dist/server/threads/manageThreads.d.ts +2 -2
package/dist/server/threads/manageThreads.js +50 -35
package/dist/server/threads/manageThreads.js.map +1 -1
package/dist/server/threads/socketRouter.d.ts +1 -1
package/dist/sqlTranslator/deleteTranslator.d.ts +1 -1
package/dist/utility/AWS/AWSConnector.d.ts +3 -2
package/dist/utility/common_utils.d.ts +3 -3
package/dist/utility/environment/systemInformation.d.ts +1 -0
package/dist/utility/functions/date/dateFunctions.d.ts +11 -11
package/dist/utility/globalSchema.d.ts +1 -1
package/dist/utility/hdbTerms.d.ts +3 -0
package/dist/utility/hdbTerms.js +3 -0
package/dist/utility/hdbTerms.js.map +1 -1
package/dist/utility/installation.d.ts +2 -4
package/dist/utility/installation.js.map +1 -1
package/dist/utility/lmdb/commonUtility.d.ts +1 -0
package/dist/utility/lmdb/deleteUtility.d.ts +1 -0
package/dist/utility/lmdb/environmentUtility.d.ts +1 -0
package/dist/utility/lmdb/searchUtility.d.ts +2 -1
package/dist/utility/lmdb/writeUtility.d.ts +1 -0
package/dist/utility/logging/harper_logger.d.ts +6 -6
package/dist/utility/processManagement/processManagement.d.ts +1 -1
package/dist/utility/processManagement/servicesConfig.d.ts +12 -6
package/dist/validation/common_validators.d.ts +4 -3
package/dist/validation/configValidator.d.ts +3 -2
package/index.d.ts +56 -0
package/index.js +41 -0
package/json/systemSchema.json +373 -0
package/launchServiceScripts/launchHarperDB.js +3 -0
package/launchServiceScripts/utility/checkNodeVersion.js +15 -0
package/package.json +21 -3
package/resources/DatabaseTransaction.ts +378 -0
package/resources/ErrorResource.ts +57 -0
package/resources/IterableEventQueue.ts +94 -0
package/resources/LMDBTransaction.ts +349 -0
package/resources/RecordEncoder.ts +702 -0
package/resources/RequestTarget.ts +134 -0
package/resources/Resource.ts +789 -0
package/resources/ResourceInterface.ts +221 -0
package/resources/ResourceInterfaceV2.ts +53 -0
package/resources/ResourceV2.ts +67 -0
package/resources/Resources.ts +162 -0
package/resources/RocksIndexStore.ts +70 -0
package/resources/RocksTransactionLogStore.ts +352 -0
package/resources/Table.ts +4527 -0
package/resources/analytics/hostnames.ts +72 -0
package/resources/analytics/metadata.ts +10 -0
package/resources/analytics/read.ts +252 -0
package/resources/analytics/write.ts +803 -0
package/resources/auditStore.ts +556 -0
package/resources/blob.ts +1268 -0
package/resources/crdt.ts +125 -0
package/resources/dataLoader.ts +527 -0
package/resources/databases.ts +1290 -0
package/resources/graphql.ts +221 -0
package/resources/indexes/HierarchicalNavigableSmallWorld.ts +638 -0
package/resources/indexes/customIndexes.ts +7 -0
package/resources/indexes/vector.ts +38 -0
package/resources/jsResource.ts +86 -0
package/resources/loadEnv.ts +22 -0
package/resources/login.ts +18 -0
package/resources/openApi.ts +409 -0
package/resources/registrationDeprecated.ts +8 -0
package/resources/replayLogs.ts +136 -0
package/resources/roles.ts +98 -0
package/resources/search.ts +1301 -0
package/resources/tracked.ts +584 -0
package/resources/transaction.ts +89 -0
package/resources/transactionBroadcast.ts +258 -0
package/security/auth.ts +376 -0
package/security/certificateVerification/certificateVerificationSource.ts +84 -0
package/security/certificateVerification/configValidation.ts +107 -0
package/security/certificateVerification/crlVerification.ts +623 -0
package/security/certificateVerification/index.ts +121 -0
package/security/certificateVerification/ocspVerification.ts +148 -0
package/security/certificateVerification/pkijs-ed25519-patch.ts +188 -0
package/security/certificateVerification/types.ts +128 -0
package/security/certificateVerification/verificationConfig.ts +138 -0
package/security/certificateVerification/verificationUtils.ts +447 -0
package/security/cryptoHash.js +42 -0
package/security/data_objects/PermissionAttributeResponseObject.js +15 -0
package/security/data_objects/PermissionResponseObject.js +115 -0
package/security/data_objects/PermissionTableResponseObject.js +20 -0
package/security/fastifyAuth.js +169 -0
package/security/impersonation.ts +160 -0
package/security/jsLoader.ts +716 -0
package/security/keys.js +948 -0
package/security/permissionsTranslator.js +300 -0
package/security/role.js +218 -0
package/security/tokenAuthentication.ts +228 -0
package/security/user.ts +449 -0
package/server/DurableSubscriptionsSession.ts +503 -0
package/server/REST.ts +407 -0
package/server/Server.ts +89 -0
package/server/fastifyRoutes/helpers/getCORSOptions.js +36 -0
package/server/fastifyRoutes/helpers/getHeaderTimeoutConfig.js +15 -0
package/server/fastifyRoutes/helpers/getServerOptions.js +33 -0
package/server/fastifyRoutes/plugins/hdbCore.js +39 -0
package/server/fastifyRoutes.ts +205 -0
package/server/graphqlQuerying.ts +700 -0
package/server/http.ts +640 -0
package/server/itc/serverHandlers.js +161 -0
package/server/itc/utility/ITCEventObject.js +10 -0
package/server/jobs/JobObject.js +24 -0
package/server/jobs/jobProcess.js +69 -0
package/server/jobs/jobRunner.js +162 -0
package/server/jobs/jobs.js +304 -0
package/server/loadRootComponents.js +44 -0
package/server/mqtt.ts +485 -0
package/server/nodeName.ts +75 -0
package/server/operationsServer.ts +313 -0
package/server/serverHelpers/Headers.ts +108 -0
package/server/serverHelpers/JSONStream.ts +269 -0
package/server/serverHelpers/OperationFunctionObject.ts +13 -0
package/server/serverHelpers/Request.ts +158 -0
package/server/serverHelpers/contentTypes.ts +637 -0
package/server/serverHelpers/requestTimePlugin.js +57 -0
package/server/serverHelpers/serverHandlers.js +148 -0
package/server/serverHelpers/serverUtilities.ts +473 -0
package/server/serverRegistry.ts +8 -0
package/server/static.ts +187 -0
package/server/status/definitions.ts +37 -0
package/server/status/index.ts +125 -0
package/server/storageReclamation.ts +93 -0
package/server/threads/itc.js +89 -0
package/server/threads/manageThreads.js +594 -0
package/server/threads/socketRouter.ts +360 -0
package/server/threads/threadServer.js +279 -0
package/server/throttle.ts +73 -0
package/sqlTranslator/SelectValidator.js +330 -0
package/sqlTranslator/alasqlFunctionImporter.js +62 -0
package/sqlTranslator/deleteTranslator.js +67 -0
package/sqlTranslator/index.js +242 -0
package/sqlTranslator/sql_statement_bucket.js +472 -0
package/static/defaultConfig.yaml +3 -0
package/studio/web/HDBDogOnly.svg +78 -0
package/studio/web/assets/PPRadioGrotesk-Bold-DDaUYG8E.woff +0 -0
package/studio/web/assets/fa-brands-400-CEJbCg16.woff +0 -0
package/studio/web/assets/fa-brands-400-CSYNqBb_.ttf +0 -0
package/studio/web/assets/fa-brands-400-DnkPfk3o.eot +0 -0
package/studio/web/assets/fa-brands-400-UxlILjvJ.woff2 +0 -0
package/studio/web/assets/fa-brands-400-cH1MgKbP.svg +3717 -0
package/studio/web/assets/fa-regular-400-BhTwtT8w.eot +0 -0
package/studio/web/assets/fa-regular-400-D1vz6WBx.ttf +0 -0
package/studio/web/assets/fa-regular-400-DFnMcJPd.woff +0 -0
package/studio/web/assets/fa-regular-400-DGzu1beS.woff2 +0 -0
package/studio/web/assets/fa-regular-400-gwj8Pxq-.svg +801 -0
package/studio/web/assets/fa-solid-900-B4ZZ7kfP.svg +5034 -0
package/studio/web/assets/fa-solid-900-B6Axprfb.eot +0 -0
package/studio/web/assets/fa-solid-900-BUswJgRo.woff2 +0 -0
package/studio/web/assets/fa-solid-900-DOXgCApm.woff +0 -0
package/studio/web/assets/fa-solid-900-mxuxnBEa.ttf +0 -0
package/studio/web/assets/index-BTgXJX9d.js +235 -0
package/studio/web/assets/index-BTgXJX9d.js.map +1 -0
package/studio/web/assets/index-C-GXfcup.js +37 -0
package/studio/web/assets/index-C-GXfcup.js.map +1 -0
package/studio/web/assets/index-PFlNdimM.js +2 -0
package/studio/web/assets/index-PFlNdimM.js.map +1 -0
package/studio/web/assets/index-Y2g_iFpU.css +1 -0
package/studio/web/assets/index-jiPwkrsB.css +1 -0
package/studio/web/assets/index.lazy-C3TJZJ4o.js +266 -0
package/studio/web/assets/index.lazy-C3TJZJ4o.js.map +1 -0
package/studio/web/assets/profiler-DotzgiCJ.js +2 -0
package/studio/web/assets/profiler-DotzgiCJ.js.map +1 -0
package/studio/web/assets/react-redux-VxUEx_mU.js +6 -0
package/studio/web/assets/react-redux-VxUEx_mU.js.map +1 -0
package/studio/web/assets/startRecording-B_9J9Csd.js +3 -0
package/studio/web/assets/startRecording-B_9J9Csd.js.map +1 -0
package/studio/web/fabric-signup-background.webp +0 -0
package/studio/web/fabric-signup-text.png +0 -0
package/studio/web/favicon_purple.png +0 -0
package/studio/web/github-icon.svg +15 -0
package/studio/web/harper-fabric_black.png +0 -0
package/studio/web/harper-fabric_white.png +0 -0
package/studio/web/harper-studio_white.png +0 -0
package/studio/web/index.html +16 -0
package/studio/web/running.css +148 -0
package/studio/web/running.html +147 -0
package/studio/web/running.js +111 -0
package/upgrade/UpgradeObjects.js +13 -0
package/upgrade/directives/directivesController.js +90 -0
package/upgrade/directivesManager.js +139 -0
package/upgrade/upgradePrompt.js +124 -0
package/upgrade/upgradeUtilities.js +28 -0
package/utility/AWS/AWSConnector.js +29 -0
package/utility/OperationFunctionCaller.js +63 -0
package/utility/assignCmdEnvVariables.js +62 -0
package/utility/common_utils.js +867 -0
package/utility/environment/environmentManager.js +208 -0
package/utility/environment/systemInformation.js +355 -0
package/utility/errors/commonErrors.js +267 -0
package/utility/errors/hdbError.js +146 -0
package/utility/functions/date/dateFunctions.js +65 -0
package/utility/functions/geo.js +355 -0
package/utility/functions/sql/alaSQLExtension.js +104 -0
package/utility/globalSchema.js +35 -0
package/utility/hdbTerms.ts +819 -0
package/utility/install/checkJWTTokensExist.js +62 -0
package/utility/install/harperdb.conf +15 -0
package/utility/install/harperdb.service +14 -0
package/utility/install/installer.js +635 -0
package/utility/installation.ts +30 -0
package/utility/lmdb/DBIDefinition.js +20 -0
package/utility/lmdb/DeleteRecordsResponseObject.js +25 -0
package/utility/lmdb/InsertRecordsResponseObject.js +22 -0
package/utility/lmdb/OpenDBIObject.js +31 -0
package/utility/lmdb/OpenEnvironmentObject.js +41 -0
package/utility/lmdb/UpdateRecordsResponseObject.js +25 -0
package/utility/lmdb/UpsertRecordsResponseObject.js +22 -0
package/utility/lmdb/cleanLMDBMap.js +65 -0
package/utility/lmdb/commonUtility.js +119 -0
package/utility/lmdb/deleteUtility.js +128 -0
package/utility/lmdb/environmentUtility.js +477 -0
package/utility/lmdb/searchCursorFunctions.js +187 -0
package/utility/lmdb/searchUtility.js +918 -0
package/utility/lmdb/terms.js +57 -0
package/utility/lmdb/writeUtility.js +407 -0
package/utility/logging/harper_logger.js +876 -0
package/utility/logging/logRotator.js +157 -0
package/utility/logging/logger.ts +24 -0
package/utility/logging/readLog.js +355 -0
package/utility/logging/transactionLog.js +57 -0
package/utility/mount_hdb.js +59 -0
package/utility/npmUtilities.js +102 -0
package/utility/operationPermissions.ts +112 -0
package/utility/operation_authorization.js +836 -0
package/utility/packageUtils.js +55 -0
package/utility/password.ts +99 -0
package/utility/processManagement/processManagement.js +187 -0
package/utility/processManagement/servicesConfig.js +56 -0
package/utility/scripts/restartHdb.js +24 -0
package/utility/scripts/user_data.sh +13 -0
package/utility/signalling.js +36 -0
package/utility/terms/certificates.js +81 -0
package/utility/when.ts +20 -0
package/v1.d.ts +39 -0
package/v1.js +41 -0
package/v2.d.ts +39 -0
package/v2.js +41 -0
package/validation/bulkDeleteValidator.js +24 -0
package/validation/check_permissions.js +19 -0
package/validation/common_validators.js +95 -0
package/validation/configValidator.js +331 -0
package/validation/deleteValidator.js +15 -0
package/validation/fileLoadValidator.js +153 -0
package/validation/insertValidator.js +40 -0
package/validation/installValidator.js +37 -0
package/validation/readLogValidator.js +64 -0
package/validation/role_validation.js +320 -0
package/validation/schemaMetadataValidator.js +42 -0
package/validation/searchValidator.js +166 -0
package/validation/statusValidator.ts +66 -0
package/validation/transactionLogValidator.js +33 -0
package/validation/user_validation.js +55 -0
package/validation/validationWrapper.js +105 -0
package/dist/resources/analytics/profile.d.ts +0 -2
package/dist/resources/analytics/profile.js +0 -144
package/dist/resources/analytics/profile.js.map +0 -1

package/security/certificateVerification/index.ts ADDED Viewed

@@ -0,0 +1,121 @@
+/**
+ * Certificate verification for mTLS authentication
+ *
+ * This module provides certificate revocation checking for client certificates
+ * in mutual TLS (mTLS) connections. Supports both OCSP (Online Certificate
+ * Status Protocol) and CRL (Certificate Revocation List) verification methods
+ * with automatic method selection.
+ *
+ * Features:
+ * - OCSP verification with caching
+ * - CRL verification with caching
+ * - CRL-first with OCSP fallback for optimal performance
+ * - Background CRL refresh with exponential backoff
+ * - Graceful degradation during network outages
+ * - Ed25519/Ed448 certificate support
+ *
+ * Default behavior:
+ * - Certificate verification: disabled (must be explicitly enabled)
+ * - Verification approach: CRL-first (with OCSP fallback)
+ * - CRL timeout: 10 seconds, cache TTL: 24 hours
+ * - OCSP timeout: 5 seconds, cache TTL: 1 hour
+ * - Failure mode: fail-closed (rejects connections if verification fails)
+ */
+import { loggerWithTag } from '../../utility/logging/logger.ts';
+import { extractCertificateChain, extractRevocationUrls, bufferToPem } from './verificationUtils.ts';
+import { getCachedCertificateVerificationConfig } from './verificationConfig.ts';
+import { verifyOCSP } from './ocspVerification.ts';
+import { verifyCRL } from './crlVerification.ts';
+import type { PeerCertificate, CertificateVerificationResult } from './types.ts';
+const logger = loggerWithTag('cert-verification');
+/**
+ * Verify certificate revocation status using OCSP and/or CRL
+ * @param peerCertificate - Peer certificate object from TLS connection
+ * @param mtlsConfig - The mTLS configuration from the request
+ * @returns Promise resolving to verification result
+ */
+export async function verifyCertificate(
+	peerCertificate: PeerCertificate,
+	mtlsConfig?: boolean | Record<string, any> | null
+): Promise<CertificateVerificationResult> {
+	logger.debug?.(`verifyCertificate called for: ${peerCertificate.subject?.CN || 'unknown'}`);
+	// Get the verification configuration from mtlsConfig (cached for performance)
+	const config = getCachedCertificateVerificationConfig(mtlsConfig);
+	// If config is false, verification is disabled
+	if (config === false) {
+		logger.debug?.('Certificate verification disabled');
+		return { valid: true, status: 'disabled', method: 'disabled' };
+	}
+	// Extract certificate chain
+	const certChain = extractCertificateChain(peerCertificate);
+	logger.trace?.(`Certificate chain length: ${certChain.length}`);
+	// Check if we have sufficient chain for verification (need certificate and issuer)
+	if (certChain.length < 2 || !certChain[0].issuer) {
+		logger.debug?.('Certificate chain insufficient for revocation checking - need certificate and issuer');
+		return { valid: true, status: 'no-issuer-cert', method: 'disabled' };
+	}
+	// Extract certificate revocation URLs in single parse operation
+	const certPem = bufferToPem(certChain[0].cert, 'CERTIFICATE');
+	const { crlUrls, ocspUrls } = extractRevocationUrls(certPem);
+	logger.debug?.(`Certificate extensions: CRL distribution points=${crlUrls.length}, OCSP URLs=${ocspUrls.length}`);
+	// Try CRL first (can provide definitive results)
+	if (crlUrls.length > 0) {
+		if (config.crl.enabled) {
+			try {
+				logger.debug?.('Attempting CRL verification');
+				const result = await verifyCRL(certChain[0].cert, certChain[0].issuer, config.crl, crlUrls);
+				// Return on definitive result (good or revoked)
+				if (result.status === 'good' || result.status === 'revoked') {
+					logger.debug?.(`CRL verification result: ${result.status}`);
+					return result;
+				}
+				logger.debug?.(`CRL verification inconclusive: ${result.status}, trying OCSP fallback`);
+			} catch (error) {
+				logger.warn?.(`CRL verification failed: ${error}`);
+			}
+		} else {
+			logger.debug?.('Skipping CRL - disabled in configuration');
+		}
+	} else {
+		logger.debug?.('Skipping CRL - no distribution points in certificate');
+	}
+	// Fall back to OCSP if available (real-time status)
+	if (ocspUrls.length > 0) {
+		if (config.ocsp.enabled) {
+			try {
+				logger.debug?.('Attempting OCSP verification');
+				const result = await verifyOCSP(certChain[0].cert, certChain[0].issuer, config.ocsp, ocspUrls);
+				// Return result (definitive or not)
+				logger.debug?.(`OCSP verification result: ${result.status}`);
+				return result;
+			} catch (error) {
+				logger.warn?.(`OCSP verification failed: ${error}`);
+			}
+		} else {
+			logger.debug?.('Skipping OCSP - disabled in configuration');
+		}
+	} else {
+		logger.debug?.('Skipping OCSP - no responder URLs in certificate');
+	}
+	// All methods tried or skipped - determine failure handling
+	if (config.failureMode === 'fail-closed') {
+		return { valid: false, status: 'no-verification-available', method: 'disabled' };
+	}
+	return { valid: true, status: 'verification-unavailable-allowed', method: 'disabled' };
+}

package/security/certificateVerification/ocspVerification.ts ADDED Viewed

@@ -0,0 +1,148 @@
+/**
+ * OCSP (Online Certificate Status Protocol) verification
+ */
+// Apply PKI.js Ed25519 patch before importing easy-ocsp
+import './pkijs-ed25519-patch.ts';
+import { getCertStatus } from 'easy-ocsp';
+import { loggerWithTag } from '../../utility/logging/logger.ts';
+import {
+	bufferToPem,
+	createCacheKey,
+	getCertificateCacheTable as getSharedCertificateCacheTable,
+} from './verificationUtils.ts';
+import type {
+	CertificateVerificationResult,
+	CertificateVerificationContext,
+	CertificateCacheEntry,
+	OCSPCheckResult,
+	OCSPConfig,
+} from './types.ts';
+const logger = loggerWithTag('ocsp-verification');
+// Import the shared source
+import { CertificateVerificationSource } from './certificateVerificationSource.ts';
+// Lazy-load the certificate verification cache table
+let certCacheTable: ReturnType<typeof getSharedCertificateCacheTable>;
+function getCertificateCacheTable() {
+	if (!certCacheTable) {
+		certCacheTable = getSharedCertificateCacheTable();
+		// Configure the caching source using the shared CertificateVerificationSource class
+		(certCacheTable as any).sourcedFrom(CertificateVerificationSource);
+	}
+	return certCacheTable;
+}
+/**
+ * Verify OCSP status of a client certificate
+ * @param certPem - Client certificate as Buffer (DER format)
+ * @param issuerPem - Issuer (CA) certificate as Buffer (DER format)
+ * @param config - OCSP configuration
+ * @param ocspUrls - Optional pre-extracted OCSP responder URLs (avoids re-parsing)
+ * @returns Promise resolving to verification result
+ */
+export async function verifyOCSP(
+	certPem: Buffer,
+	issuerPem: Buffer,
+	config?: OCSPConfig,
+	ocspUrls?: string[]
+): Promise<CertificateVerificationResult> {
+	// Check if OCSP verification is disabled
+	if (config?.enabled === false) {
+		return { valid: true, status: 'disabled', method: 'disabled' };
+	}
+	try {
+		// Convert DER buffers to PEM strings for certificate parsing libraries
+		// PKI.js and easy-ocsp expect PEM format for extension extraction and OCSP requests
+		const certPemStr = bufferToPem(certPem, 'CERTIFICATE');
+		const issuerPemStr = bufferToPem(issuerPem, 'CERTIFICATE');
+		// Create a cache key that includes all verification parameters
+		const cacheKey = createCacheKey(certPemStr, issuerPemStr, 'ocsp');
+		// Get the cache table - Harper will automatically handle
+		// concurrent requests and cache stampede prevention
+		// Pass certificate data as context - Harper will make it available as requestContext in the source
+		const cacheEntry = await (getCertificateCacheTable() as any).get(cacheKey, {
+			certPem: certPemStr,
+			issuerPem: issuerPemStr,
+			ocspUrls,
+			config: { ocsp: config ?? {} },
+		} as CertificateVerificationContext);
+		if (!cacheEntry) {
+			// This should not happen if the source is configured correctly
+			// but handle it gracefully
+			if (config.failureMode === 'fail-closed') {
+				return { valid: false, status: 'error', error: 'Cache fetch failed', method: 'ocsp' };
+			}
+			logger.warn?.('OCSP cache fetch failed, allowing connection (fail-open mode)');
+			return { valid: true, status: 'error-allowed', method: 'ocsp' };
+		}
+		const cached = cacheEntry as unknown as CertificateCacheEntry;
+		const wasLoadedFromSource = (cacheEntry as any).wasLoadedFromSource?.();
+		logger.trace?.(`OCSP ${wasLoadedFromSource ? 'source fetch' : 'cache hit'} for certificate`);
+		return {
+			valid: cached.status === 'good',
+			status: cached.status,
+			cached: !wasLoadedFromSource,
+			method: cached.method || 'ocsp',
+		};
+	} catch (error) {
+		logger.error?.(`OCSP verification error: ${error}`);
+		// Check failure mode
+		if (config.failureMode === 'fail-closed') {
+			return { valid: false, status: 'error', error: (error as Error).message, method: 'ocsp' };
+		}
+		// Fail open - allow connection on OCSP errors
+		logger.warn?.('OCSP check failed, allowing connection (fail-open mode)');
+		return { valid: true, status: 'error-allowed', method: 'ocsp' };
+	}
+}
+/**
+ * Perform the actual OCSP check using easy-ocsp
+ * @param certPem - Certificate in PEM format
+ * @param issuerPem - Issuer certificate in PEM format
+ * @param config - OCSP configuration
+ * @param ocspUrls - Optional pre-extracted OCSP responder URLs (avoids re-parsing)
+ * @returns OCSP check result
+ */
+export async function performOCSPCheck(
+	certPem: string,
+	issuerPem: string,
+	config: any,
+	ocspUrls?: string[]
+): Promise<OCSPCheckResult> {
+	try {
+		const response = await getCertStatus(certPem, {
+			ca: issuerPem,
+			timeout: config.timeout,
+			...(ocspUrls?.length && { ocspUrl: ocspUrls[0] }),
+		});
+		// Map response status to internal format
+		switch (response.status) {
+			case 'good':
+				return { status: 'good' };
+			case 'revoked':
+				return { status: 'revoked', reason: response.revocationReason?.toString() || 'unspecified' };
+			default:
+				return { status: 'unknown', reason: 'unknown-status' };
+		}
+	} catch (error) {
+		const err = error as Error;
+		// Return appropriate error based on type
+		const reason = err.name === 'AbortError' ? 'timeout' : 'ocsp-error';
+		return { status: 'unknown', reason };
+	}
+}

package/security/certificateVerification/pkijs-ed25519-patch.ts ADDED Viewed

@@ -0,0 +1,188 @@
+/**
+ * PKI.js Ed25519/Ed448 Support Patch
+ *
+ * This module patches PKI.js to add complete Ed25519/Ed448 support for certificate
+ * and OCSP response verification. While PKI.js has some Ed25519/Ed448 support,
+ * it currently lacks:
+ * - getHashAlgorithm() support for Ed25519/Ed448 OIDs
+ * - getAlgorithmByOID() recognition of Ed25519/Ed448
+ * - Certificate verification using Ed25519/Ed448 signatures
+ * - OCSP response signature verification with Ed25519/Ed448
+ *
+ * This patch must be loaded before any module that uses PKI.js (including easy-ocsp).
+ */
+import * as pkijs from 'pkijs';
+import { webcrypto, X509Certificate } from 'node:crypto';
+// Ed25519/Ed448 OIDs (these are standardized object identifiers, not IP addresses)
+const ED25519_OID = '1.3.101.112' as const;
+const ED448_OID = '1.3.101.113' as const;
+type EdDSAOID = typeof ED25519_OID | typeof ED448_OID;
+// Algorithm names as constants
+const ED25519_NAME = 'Ed25519' as const;
+const ED448_NAME = 'Ed448' as const;
+type EdDSAAlgorithmName = typeof ED25519_NAME | typeof ED448_NAME;
+// Apply patches only once
+let patchesApplied = false;
+function isEd25519OrEd448(oid: string): oid is EdDSAOID {
+	return oid === ED25519_OID || oid === ED448_OID;
+}
+function isEdDSAAlgorithmName(name: string): name is EdDSAAlgorithmName {
+	return name === ED25519_NAME || name === ED448_NAME;
+}
+function getEdDSAAlgorithmName(oid: string): EdDSAAlgorithmName {
+	return oid === ED25519_OID ? ED25519_NAME : ED448_NAME;
+}
+export function applyEd25519Patch(): void {
+	if (patchesApplied) return;
+	patchesApplied = true;
+	const CryptoEngine = pkijs.CryptoEngine.prototype;
+	const Certificate = pkijs.Certificate.prototype;
+	// Store original methods
+	const originals = {
+		getHashAlgorithm: CryptoEngine.getHashAlgorithm,
+		getAlgorithmByOID: CryptoEngine.getAlgorithmByOID,
+		getAlgorithmParameters: CryptoEngine.getAlgorithmParameters,
+		verifyWithPublicKey: CryptoEngine.verifyWithPublicKey,
+		certificateVerify: Certificate.verify,
+		getPublicKey: Certificate.getPublicKey,
+	};
+	// Patch getHashAlgorithm - Ed25519/Ed448 don't use separate hashes
+	CryptoEngine.getHashAlgorithm = function (
+		...params: Parameters<typeof originals.getHashAlgorithm>
+	): ReturnType<typeof originals.getHashAlgorithm> {
+		const [signatureAlgorithm] = params;
+		if (isEd25519OrEd448(signatureAlgorithm.algorithmId)) {
+			// EdDSA signatures have built-in hash functions per RFC 8032:
+			// - Ed25519 uses SHA-512 internally (Section 5.1.6)
+			// - Ed448 uses SHAKE256 internally (Section 5.2.6)
+			// The hash is not a parameter - it's part of the algorithm definition.
+			// Returning a placeholder since PKI.js expects a string, but our patched
+			// verification methods bypass any code that would use this value.
+			return 'UNUSED-EDDSA-BUILTIN-HASH';
+		}
+		return originals.getHashAlgorithm.call(this, signatureAlgorithm);
+	};
+	// Patch getAlgorithmByOID to recognize Ed25519/Ed448
+	CryptoEngine.getAlgorithmByOID = function (
+		...params: Parameters<typeof originals.getAlgorithmByOID>
+	): ReturnType<typeof originals.getAlgorithmByOID> {
+		const [oid] = params;
+		if (isEd25519OrEd448(oid)) {
+			return { name: getEdDSAAlgorithmName(oid) };
+		}
+		return originals.getAlgorithmByOID.call(this, ...params);
+	};
+	// Patch getAlgorithmParameters
+	CryptoEngine.getAlgorithmParameters = function (
+		...params: Parameters<typeof originals.getAlgorithmParameters>
+	): ReturnType<typeof originals.getAlgorithmParameters> {
+		const [algorithmName, operation] = params;
+		if (isEdDSAAlgorithmName(algorithmName)) {
+			return {
+				algorithm: { name: algorithmName },
+				usages: operation === 'sign' ? ['sign'] : ['verify'],
+			};
+		}
+		return originals.getAlgorithmParameters.call(this, ...params);
+	};
+	// Patch getPublicKey for Ed25519/Ed448
+	Certificate.getPublicKey = async function (
+		...params: Parameters<typeof originals.getPublicKey>
+	): ReturnType<typeof originals.getPublicKey> {
+		const [, cryptoEngine = pkijs.getCrypto(true)] = params;
+		const algId = this.subjectPublicKeyInfo.algorithm.algorithmId;
+		if (isEd25519OrEd448(algId)) {
+			const algorithmName = getEdDSAAlgorithmName(algId);
+			return cryptoEngine.importKey('spki', this.subjectPublicKeyInfo.toSchema().toBER(false), algorithmName, true, [
+				'verify',
+			]);
+		}
+		return originals.getPublicKey.call(this, ...params);
+	};
+	// Patch Certificate.verify for Ed25519/Ed448
+	Certificate.verify = async function (
+		...params: Parameters<typeof originals.certificateVerify>
+	): ReturnType<typeof originals.certificateVerify> {
+		const [issuerCertificate] = params;
+		if (isEd25519OrEd448(this.signatureAlgorithm.algorithmId)) {
+			try {
+				// Use Node.js X509Certificate for Ed25519/Ed448 verification
+				const certDer = this.toSchema().toBER(false);
+				const issuerDer = issuerCertificate.toSchema().toBER(false);
+				const nodeCert = new X509Certificate(Buffer.from(certDer));
+				const nodeIssuer = new X509Certificate(Buffer.from(issuerDer));
+				return nodeCert.verify(nodeIssuer.publicKey);
+			} catch {
+				// Any failure in verification should return false
+				return false;
+			}
+		}
+		return originals.certificateVerify.call(this, ...params);
+	};
+	// Patch verifyWithPublicKey for OCSP response verification
+	if (originals.verifyWithPublicKey) {
+		CryptoEngine.verifyWithPublicKey = async function (
+			...params: Parameters<typeof originals.verifyWithPublicKey>
+		): ReturnType<typeof originals.verifyWithPublicKey> {
+			const [data, signature, publicKeyInfo] = params;
+			const algId = publicKeyInfo.algorithm.algorithmId;
+			if (isEd25519OrEd448(algId)) {
+				const algorithmName = getEdDSAAlgorithmName(algId);
+				try {
+					// Get crypto.subtle from available sources
+					const cryptoSubtle =
+						(this as any).crypto?.subtle || (this as any).subtle || pkijs.getCrypto(true)?.subtle || webcrypto?.subtle;
+					if (!cryptoSubtle) {
+						throw new Error('No crypto.subtle available');
+					}
+					// Import the public key
+					const publicKey = await cryptoSubtle.importKey(
+						'spki',
+						publicKeyInfo.toSchema().toBER(false),
+						algorithmName,
+						false,
+						['verify']
+					);
+					// Handle BIT STRING signature value
+					let signatureValue = signature.valueBlock.valueHexView;
+					// Check if this is a BIT STRING with unused bits
+					if ('unusedBits' in signature.valueBlock && signature.valueBlock.unusedBits > 0) {
+						signatureValue = signatureValue.slice(0, signatureValue.length - 1);
+					}
+					// Verify the signature
+					return await cryptoSubtle.verify(algorithmName, publicKey, signatureValue, data);
+				} catch {
+					// Any failure in verification should return false
+					return false;
+				}
+			}
+			return originals.verifyWithPublicKey.call(this, ...params);
+		};
+	}
+}
+// Apply patch on module load
+applyEd25519Patch();

package/security/certificateVerification/types.ts ADDED Viewed

@@ -0,0 +1,128 @@
+/**
+ * Shared TypeScript interfaces and types for certificate verification
+ */
+import type { Context } from '../../resources/ResourceInterface.ts';
+export type CertificateStatus = 'good' | 'revoked' | 'unknown';
+export type VerificationMethod = 'ocsp' | 'crl';
+export type VerificationResultMethod = VerificationMethod | 'disabled';
+export type FailureMode = 'fail-open' | 'fail-closed';
+export interface PeerCertificate {
+	subject?: {
+		CN?: string;
+		[key: string]: any;
+	};
+	raw?: Buffer;
+	issuerCertificate?: PeerCertificate;
+}
+export interface CertificateVerificationResult {
+	valid: boolean;
+	status: string;
+	cached?: boolean;
+	error?: string;
+	method?: VerificationResultMethod;
+}
+export interface CertificateCacheEntry {
+	certificate_id: string;
+	status: CertificateStatus;
+	reason?: string;
+	checked_at: number;
+	expiresAt: number;
+	method: VerificationMethod;
+}
+export interface CRLCacheEntry {
+	distribution_point: string;
+	issuer_dn: string;
+	crl_blob: Buffer;
+	this_update: number;
+	next_update: number;
+	signature_valid: boolean;
+	expiresAt: number;
+}
+export interface RevokedCertificateEntry {
+	composite_id: string; // {issuer_hash}:{serial_number}
+	serial_number: string;
+	issuer_key_id: string;
+	revocation_date: number;
+	revocation_reason?: string;
+	crl_source: string; // Links to CRLCacheEntry.crl_id
+	crl_next_update: number;
+	expiresAt: number;
+}
+export interface CertificateChainEntry {
+	cert: Buffer;
+	issuer?: Buffer;
+}
+export interface OCSPCheckResult {
+	status: CertificateStatus;
+	reason?: string;
+}
+export interface CRLCheckResult {
+	status: CertificateStatus;
+	reason?: string;
+	source?: string; // CRL distribution point URL
+}
+// Configuration interfaces
+export interface OCSPConfig {
+	enabled?: boolean;
+	timeout?: number;
+	cacheTtl?: number;
+	errorCacheTtl?: number;
+	failureMode?: FailureMode;
+}
+export interface CRLConfig {
+	enabled?: boolean;
+	timeout?: number;
+	cacheTtl?: number;
+	failureMode?: FailureMode;
+	gracePeriod?: number;
+}
+export interface CertificateVerificationConfig {
+	failureMode?: FailureMode;
+	ocsp?: OCSPConfig;
+	crl?: CRLConfig;
+}
+// Context types for certificate verification cache requests
+export interface CertificateVerificationContext extends Context {
+	certPem: string;
+	issuerPem: string;
+	ocspUrls?: string[];
+	distributionPoint?: string;
+	config?: CertificateVerificationConfig;
+}
+export interface CRLVerificationContext extends Context {
+	distributionPoint: string;
+	issuerPem: string;
+	config?: CRLConfig;
+}
+// Default configuration values
+export interface VerificationDefaults {
+	timeout: number;
+	cacheTtl: number;
+	failureMode: FailureMode;
+}
+export interface OCSPDefaults extends VerificationDefaults {
+	errorCacheTtl: number;
+}
+export interface CRLDefaults extends VerificationDefaults {
+	gracePeriod: number;
+}