npm - @karimov-labs/backstage-plugin-devxp-backend - Versions diffs - 1.0.0 - Mend

@karimov-labs/backstage-plugin-devxp-backend 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

package/README.md +166 -0
package/dist/index.cjs.js +10 -0
package/dist/index.cjs.js.map +1 -0
package/dist/index.d.ts +5 -0
package/dist/plugin.cjs.js +29 -0
package/dist/plugin.cjs.js.map +1 -0
package/dist/router.cjs.js +114 -0
package/dist/router.cjs.js.map +1 -0
package/dist/service/MappingStore.cjs.js +53 -0
package/dist/service/MappingStore.cjs.js.map +1 -0
package/package.json +52 -0
package/src/index.ts +1 -0

package/README.md ADDED Viewed

@@ -0,0 +1,166 @@
+# @karimov-labs/backstage-plugin-devxp-backend
+Backstage backend plugin that powers the **Developer Intelligence** dashboard. It stores masked developer identity mappings, exposes REST endpoints for hashing/unmasking, and accepts bulk CSV uploads — all backed by the Backstage-managed database (SQLite or PostgreSQL).
+This plugin is the backend counterpart to [`@karimov-labs/backstage-plugin-devxp`](https://www.npmjs.com/package/@karimov-labs/backstage-plugin-devxp).
+---
+## Features
+- Persists `masked_name ↔ real_name` pairs in the Backstage database using Knex migrations
+- SHA-256 hashing algorithm compatible with [dev-xp-analyzer](https://github.com/karimov-labs/dev-xp-analyzer): `SHA-256(salt + realName)`, truncated to 16 hex characters
+- REST API for hashing, unmasking, bulk CSV upload, and listing/deleting mappings
+- Reads salt and API credentials from `app-config.yaml` (never exposes them to the frontend)
+- Runs unauthenticated (access policy: `allow: 'unauthenticated'`) so the frontend can reach it without an extra auth token
+---
+## Requirements
+| Dependency | Version |
+|---|---|
+| Backstage | >= 1.30 |
+| Node.js | >= 18 |
+---
+## Installation
+### 1. Install the package
+```bash
+# yarn (Backstage default)
+yarn workspace backend add @karimov-labs/backstage-plugin-devxp-backend
+# npm
+npm install @karimov-labs/backstage-plugin-devxp-backend
+```
+---
+### 2. Register the plugin
+Edit `packages/backend/src/index.ts`:
+```ts
+import { createBackend } from '@backstage/backend-defaults';
+const backend = createBackend();
+// ... other plugins
+backend.add(import('@karimov-labs/backstage-plugin-devxp-backend'));
+backend.start();
+```
+---
+### 3. Configure app-config.yaml
+```yaml
+devxp:
+  # Salt used for SHA-256 hashing — must match the salt used in dev-xp-analyzer
+  salt: ${DEVXP_SALT}
+  # Whether developer names are masked in the analytics tool
+  masked: true
+  # dev-xp-analyzer API credentials (optional)
+  apiToken: ${DEVXP_API_TOKEN}
+  apiEndpoint: ${DEVXP_API_ENDPOINT}
+  projectId: ${DEVXP_PROJECT_ID}
+```
+Set the corresponding environment variables before starting Backstage:
+```bash
+export DEVXP_SALT="your-secret-salt"
+export DEVXP_API_TOKEN="your-api-token"       # optional
+export DEVXP_API_ENDPOINT="https://..."        # optional
+export DEVXP_PROJECT_ID="your-project-id"     # optional
+```
+> **Security note:** `salt` and `apiToken` are read only on the backend and are never serialised into any response.
+---
+### 4. Database
+The plugin uses the standard Backstage database service. It automatically creates the `devxp_developer_mappings` table on startup — no manual migration is needed.
+```
+devxp_developer_mappings
+├── id          INTEGER  PRIMARY KEY AUTOINCREMENT
+├── masked_name TEXT     UNIQUE NOT NULL
+├── real_name   TEXT     NOT NULL
+└── created_at  DATETIME DEFAULT CURRENT_TIMESTAMP
+```
+Works with both **SQLite** (development) and **PostgreSQL** (production).
+---
+## REST API
+All endpoints are mounted at `/api/devxp/`.
+| Method | Path | Description |
+|---|---|---|
+| `GET` | `/health` | Health check — returns `{ status: 'ok' }` |
+| `GET` | `/config` | Non-sensitive configuration status (booleans — never exposes secret values) |
+| `GET` | `/mappings` | List all stored `masked_name ↔ real_name` pairs |
+| `POST` | `/mappings/upload` | Upload CSV text; hashes each line and upserts mappings |
+| `POST` | `/mappings/delete` | Delete a single mapping by `maskedName` |
+| `POST` | `/unmask` | Look up a real name from a masked name |
+| `POST` | `/hash` | Compute the masked hash for a given real name |
+### Example: upload CSV
+```bash
+curl -X POST http://localhost:7007/api/devxp/mappings/upload \
+  -H 'Content-Type: application/json' \
+  -d '{"csvContent": "Alice Smith\nBob Jones\nCarol White"}'
+```
+### Example: unmask
+```bash
+curl -X POST http://localhost:7007/api/devxp/mappings/unmask \
+  -H 'Content-Type: application/json' \
+  -d '{"maskedName": "a3f2c1d4e5b67890"}'
+# → { "maskedName": "a3f2c1d4e5b67890", "realName": "Alice Smith" }
+```
+### Example: hash
+```bash
+curl -X POST http://localhost:7007/api/devxp/hash \
+  -H 'Content-Type: application/json' \
+  -d '{"realName": "Alice Smith"}'
+# → { "realName": "Alice Smith", "maskedName": "a3f2c1d4e5b67890" }
+```
+---
+## Hashing algorithm
+```ts
+import { createHash } from 'crypto';
+function hashUsername(salt: string, username: string): string {
+  return createHash('sha256')
+    .update(salt + username)
+    .digest('hex')
+    .substring(0, 16);
+}
+```
+This matches the algorithm used in [dev-xp-analyzer](https://github.com/karimov-labs/dev-xp-analyzer). Make sure the same `salt` value is configured in both systems.
+---
+## License
+Apache-2.0

package/dist/index.cjs.js ADDED Viewed

@@ -0,0 +1,10 @@
+'use strict';
+Object.defineProperty(exports, '__esModule', { value: true });
+var plugin = require('./plugin.cjs.js');
+exports.default = plugin.devxpPlugin;
+//# sourceMappingURL=index.cjs.js.map

package/dist/index.cjs.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.cjs.js","sources":[],"sourcesContent":[],"names":[],"mappings":";;;;;;;;"}

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import * as _backstage_backend_plugin_api from '@backstage/backend-plugin-api';
+declare const devxpPlugin: _backstage_backend_plugin_api.BackendFeature;
+export { devxpPlugin as default };

package/dist/plugin.cjs.js ADDED Viewed

@@ -0,0 +1,29 @@
+'use strict';
+var backendPluginApi = require('@backstage/backend-plugin-api');
+var router = require('./router.cjs.js');
+const devxpPlugin = backendPluginApi.createBackendPlugin({
+  pluginId: "devxp",
+  register(env) {
+    env.registerInit({
+      deps: {
+        httpRouter: backendPluginApi.coreServices.httpRouter,
+        config: backendPluginApi.coreServices.rootConfig,
+        database: backendPluginApi.coreServices.database,
+        logger: backendPluginApi.coreServices.logger
+      },
+      async init({ httpRouter, config, database, logger }) {
+        const router$1 = await router.createRouter({ config, database, logger });
+        httpRouter.use(router$1);
+        httpRouter.addAuthPolicy({
+          path: "/",
+          allow: "unauthenticated"
+        });
+      }
+    });
+  }
+});
+exports.devxpPlugin = devxpPlugin;
+//# sourceMappingURL=plugin.cjs.js.map

package/dist/plugin.cjs.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"plugin.cjs.js","sources":["../src/plugin.ts"],"sourcesContent":["import {\n createBackendPlugin,\n coreServices,\n} from '@backstage/backend-plugin-api';\nimport { createRouter } from './router';\n\nexport const devxpPlugin = createBackendPlugin({\n pluginId: 'devxp',\n register(env) {\n env.registerInit({\n deps: {\n httpRouter: coreServices.httpRouter,\n config: coreServices.rootConfig,\n database: coreServices.database,\n logger: coreServices.logger,\n },\n async init({ httpRouter, config, database, logger }) {\n const router = await createRouter({ config, database, logger });\n httpRouter.use(router as any);\n httpRouter.addAuthPolicy({\n path: '/',\n allow: 'unauthenticated',\n });\n },\n });\n },\n});\n"],"names":["createBackendPlugin","coreServices","router","createRouter"],"mappings":";;;;;AAMO,MAAM,cAAcA,oCAAA,CAAoB;AAAA,EAC7C,QAAA,EAAU,OAAA;AAAA,EACV,SAAS,GAAA,EAAK;AACZ,IAAA,GAAA,CAAI,YAAA,CAAa;AAAA,MACf,IAAA,EAAM;AAAA,QACJ,YAAYC,6BAAA,CAAa,UAAA;AAAA,QACzB,QAAQA,6BAAA,CAAa,UAAA;AAAA,QACrB,UAAUA,6BAAA,CAAa,QAAA;AAAA,QACvB,QAAQA,6BAAA,CAAa;AAAA,OACvB;AAAA,MACA,MAAM,IAAA,CAAK,EAAE,YAAY,MAAA,EAAQ,QAAA,EAAU,QAAO,EAAG;AACnD,QAAA,MAAMC,WAAS,MAAMC,mBAAA,CAAa,EAAE,MAAA,EAAQ,QAAA,EAAU,QAAQ,CAAA;AAC9D,QAAA,UAAA,CAAW,IAAID,QAAa,CAAA;AAC5B,QAAA,UAAA,CAAW,aAAA,CAAc;AAAA,UACvB,IAAA,EAAM,GAAA;AAAA,UACN,KAAA,EAAO;AAAA,SACR,CAAA;AAAA,MACH;AAAA,KACD,CAAA;AAAA,EACH;AACF,CAAC;;;;"}

package/dist/router.cjs.js ADDED Viewed

@@ -0,0 +1,114 @@
+'use strict';
+var crypto = require('crypto');
+var express = require('express');
+var MappingStore = require('./service/MappingStore.cjs.js');
+function _interopDefaultCompat (e) { return e && typeof e === 'object' && 'default' in e ? e : { default: e }; }
+var express__default = /*#__PURE__*/_interopDefaultCompat(express);
+function hashUsername(salt, username) {
+  const hash = crypto.createHash("sha256").update(`${salt}${username}`).digest("hex");
+  return hash.substring(0, 16);
+}
+async function createRouter(options) {
+  const { config, database, logger } = options;
+  const salt = config.getOptionalString("devxp.salt") ?? "";
+  const masked = config.getOptionalBoolean("devxp.masked") ?? true;
+  const apiEndpoint = config.getOptionalString("devxp.apiEndpoint") ?? "";
+  const apiToken = config.getOptionalString("devxp.apiToken") ?? "";
+  const projectId = config.getOptionalString("devxp.projectId") ?? "";
+  const knex = await database.getClient();
+  const store = new MappingStore.MappingStore(knex);
+  await store.initialize();
+  logger.info("DevXP backend plugin initialized");
+  const router = express.Router();
+  router.use(express__default.default.json({ limit: "10mb" }));
+  router.get("/health", async (_req, res) => {
+    res.json({ status: "ok" });
+  });
+  router.get("/config", async (_req, res) => {
+    const mappingCount = await store.count();
+    res.json({
+      masked,
+      saltConfigured: salt.length > 0,
+      apiEndpointConfigured: apiEndpoint.length > 0,
+      apiTokenConfigured: apiToken.length > 0,
+      projectIdConfigured: projectId.length > 0,
+      mappingCount
+    });
+  });
+  router.get("/mappings", async (_req, res) => {
+    const mappings = await store.getAll();
+    res.json({ mappings });
+  });
+  router.post("/mappings/upload", async (req, res) => {
+    const { csvContent } = req.body;
+    if (!csvContent || typeof csvContent !== "string") {
+      res.status(400).json({ error: "csvContent is required as a string" });
+      return;
+    }
+    if (!salt) {
+      res.status(400).json({ error: "Salt is not configured. Set devxp.salt in app-config.yaml" });
+      return;
+    }
+    const lines = csvContent.split(/\r?\n/).map((line) => line.trim()).filter((line) => line.length > 0);
+    const startIndex = lines.length > 0 && lines[0].toLowerCase() === "name" ? 1 : 0;
+    const mappings = [];
+    for (let i = startIndex; i < lines.length; i++) {
+      const realName = lines[i];
+      const maskedName = hashUsername(salt, realName);
+      mappings.push({ maskedName, realName });
+    }
+    const count = await store.upsertBatch(mappings);
+    logger.info(`DevXP: Uploaded ${count} developer mappings`);
+    res.json({
+      message: `Successfully processed ${count} developer name mappings`,
+      count
+    });
+  });
+  router.post("/mappings/delete", async (req, res) => {
+    const { maskedName } = req.body;
+    if (!maskedName || typeof maskedName !== "string") {
+      res.status(400).json({ error: "maskedName is required" });
+      return;
+    }
+    const deleted = await store.deleteByMaskedName(maskedName);
+    if (deleted) {
+      res.json({ message: "Mapping deleted" });
+    } else {
+      res.status(404).json({ error: "Mapping not found" });
+    }
+  });
+  router.post("/unmask", async (req, res) => {
+    const { maskedName } = req.body;
+    if (!maskedName || typeof maskedName !== "string") {
+      res.status(400).json({ error: "maskedName is required" });
+      return;
+    }
+    const mapping = await store.getByMaskedName(maskedName);
+    if (mapping) {
+      res.json({ maskedName, realName: mapping.real_name });
+    } else {
+      res.json({ maskedName, realName: null, message: "No mapping found for this masked name" });
+    }
+  });
+  router.post("/hash", async (req, res) => {
+    const { realName } = req.body;
+    if (!realName || typeof realName !== "string") {
+      res.status(400).json({ error: "realName is required" });
+      return;
+    }
+    if (!salt) {
+      res.status(400).json({ error: "Salt is not configured. Set devxp.salt in app-config.yaml" });
+      return;
+    }
+    const maskedName = hashUsername(salt, realName);
+    res.json({ realName, maskedName });
+  });
+  return router;
+}
+exports.createRouter = createRouter;
+//# sourceMappingURL=router.cjs.js.map

package/dist/router.cjs.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"router.cjs.js","sources":["../src/router.ts"],"sourcesContent":["import { createHash } from 'crypto';\nimport { Router } from 'express';\nimport express from 'express';\nimport { Config } from '@backstage/config';\nimport { LoggerService, DatabaseService } from '@backstage/backend-plugin-api';\nimport { MappingStore } from './service/MappingStore';\n\n/**\n * Hash a username using the same algorithm as dev-xp-analyzer:\n * SHA-256 of (salt + username), truncated to first 16 hex chars.\n */\nfunction hashUsername(salt: string, username: string): string {\n const hash = createHash('sha256')\n .update(`${salt}${username}`)\n .digest('hex');\n return hash.substring(0, 16);\n}\n\ninterface RouterOptions {\n config: Config;\n database: DatabaseService;\n logger: LoggerService;\n}\n\nexport async function createRouter(options: RouterOptions): Promise<express.Router> {\n const { config, database, logger } = options;\n\n const salt = config.getOptionalString('devxp.salt') ?? '';\n const masked = config.getOptionalBoolean('devxp.masked') ?? true;\n const apiEndpoint = config.getOptionalString('devxp.apiEndpoint') ?? '';\n const apiToken = config.getOptionalString('devxp.apiToken') ?? '';\n const projectId = config.getOptionalString('devxp.projectId') ?? '';\n\n const knex = await database.getClient();\n const store = new MappingStore(knex);\n await store.initialize();\n\n logger.info('DevXP backend plugin initialized');\n\n const router = Router();\n router.use(express.json({ limit: '10mb' }));\n\n // Health check\n router.get('/health', async (_req, res) => {\n res.json({ status: 'ok' });\n });\n\n // Return non-sensitive configuration status\n router.get('/config', async (_req, res) => {\n const mappingCount = await store.count();\n res.json({\n masked,\n saltConfigured: salt.length > 0,\n apiEndpointConfigured: apiEndpoint.length > 0,\n apiTokenConfigured: apiToken.length > 0,\n projectIdConfigured: projectId.length > 0,\n mappingCount,\n });\n });\n\n // List all developer mappings\n router.get('/mappings', async (_req, res) => {\n const mappings = await store.getAll();\n res.json({ mappings });\n });\n\n // Upload CSV content with developer names, compute hashes, store mappings\n router.post('/mappings/upload', async (req, res) => {\n const { csvContent } = req.body;\n if (!csvContent || typeof csvContent !== 'string') {\n res.status(400).json({ error: 'csvContent is required as a string' });\n return;\n }\n\n if (!salt) {\n res.status(400).json({ error: 'Salt is not configured. Set devxp.salt in app-config.yaml' });\n return;\n }\n\n const lines = csvContent\n .split(/\\r?\\n/)\n .map(line => line.trim())\n .filter(line => line.length > 0);\n\n // Skip header row if it looks like one\n const startIndex = lines.length > 0 && lines[0].toLowerCase() === 'name' ? 1 : 0;\n\n const mappings: { maskedName: string; realName: string }[] = [];\n for (let i = startIndex; i < lines.length; i++) {\n const realName = lines[i];\n const maskedName = hashUsername(salt, realName);\n mappings.push({ maskedName, realName });\n }\n\n const count = await store.upsertBatch(mappings);\n logger.info(`DevXP: Uploaded ${count} developer mappings`);\n\n res.json({\n message: `Successfully processed ${count} developer name mappings`,\n count,\n });\n });\n\n // Delete a mapping by masked name\n router.post('/mappings/delete', async (req, res) => {\n const { maskedName } = req.body;\n if (!maskedName || typeof maskedName !== 'string') {\n res.status(400).json({ error: 'maskedName is required' });\n return;\n }\n\n const deleted = await store.deleteByMaskedName(maskedName);\n if (deleted) {\n res.json({ message: 'Mapping deleted' });\n } else {\n res.status(404).json({ error: 'Mapping not found' });\n }\n });\n\n // Unmask: given a masked name, return the real name\n router.post('/unmask', async (req, res) => {\n const { maskedName } = req.body;\n if (!maskedName || typeof maskedName !== 'string') {\n res.status(400).json({ error: 'maskedName is required' });\n return;\n }\n\n const mapping = await store.getByMaskedName(maskedName);\n if (mapping) {\n res.json({ maskedName, realName: mapping.real_name });\n } else {\n res.json({ maskedName, realName: null, message: 'No mapping found for this masked name' });\n }\n });\n\n // Hash: given a real name, compute the masked hash\n router.post('/hash', async (req, res) => {\n const { realName } = req.body;\n if (!realName || typeof realName !== 'string') {\n res.status(400).json({ error: 'realName is required' });\n return;\n }\n\n if (!salt) {\n res.status(400).json({ error: 'Salt is not configured. Set devxp.salt in app-config.yaml' });\n return;\n }\n\n const maskedName = hashUsername(salt, realName);\n res.json({ realName, maskedName });\n });\n\n return router;\n}\n"],"names":["createHash","MappingStore","Router","express"],"mappings":";;;;;;;;;;AAWA,SAAS,YAAA,CAAa,MAAc,QAAA,EAA0B;AAC5D,EAAA,MAAM,IAAA,GAAOA,iBAAA,CAAW,QAAQ,CAAA,CAC7B,MAAA,CAAO,CAAA,EAAG,IAAI,CAAA,EAAG,QAAQ,CAAA,CAAE,CAAA,CAC3B,MAAA,CAAO,KAAK,CAAA;AACf,EAAA,OAAO,IAAA,CAAK,SAAA,CAAU,CAAA,EAAG,EAAE,CAAA;AAC7B;AAQA,eAAsB,aAAa,OAAA,EAAiD;AAClF,EAAA,MAAM,EAAE,MAAA,EAAQ,QAAA,EAAU,MAAA,EAAO,GAAI,OAAA;AAErC,EAAA,MAAM,IAAA,GAAO,MAAA,CAAO,iBAAA,CAAkB,YAAY,CAAA,IAAK,EAAA;AACvD,EAAA,MAAM,MAAA,GAAS,MAAA,CAAO,kBAAA,CAAmB,cAAc,CAAA,IAAK,IAAA;AAC5D,EAAA,MAAM,WAAA,GAAc,MAAA,CAAO,iBAAA,CAAkB,mBAAmB,CAAA,IAAK,EAAA;AACrE,EAAA,MAAM,QAAA,GAAW,MAAA,CAAO,iBAAA,CAAkB,gBAAgB,CAAA,IAAK,EAAA;AAC/D,EAAA,MAAM,SAAA,GAAY,MAAA,CAAO,iBAAA,CAAkB,iBAAiB,CAAA,IAAK,EAAA;AAEjE,EAAA,MAAM,IAAA,GAAO,MAAM,QAAA,CAAS,SAAA,EAAU;AACtC,EAAA,MAAM,KAAA,GAAQ,IAAIC,yBAAA,CAAa,IAAI,CAAA;AACnC,EAAA,MAAM,MAAM,UAAA,EAAW;AAEvB,EAAA,MAAA,CAAO,KAAK,kCAAkC,CAAA;AAE9C,EAAA,MAAM,SAASC,cAAA,EAAO;AACtB,EAAA,MAAA,CAAO,IAAIC,wBAAA,CAAQ,IAAA,CAAK,EAAE,KAAA,EAAO,MAAA,EAAQ,CAAC,CAAA;AAG1C,EAAA,MAAA,CAAO,GAAA,CAAI,SAAA,EAAW,OAAO,IAAA,EAAM,GAAA,KAAQ;AACzC,IAAA,GAAA,CAAI,IAAA,CAAK,EAAE,MAAA,EAAQ,IAAA,EAAM,CAAA;AAAA,EAC3B,CAAC,CAAA;AAGD,EAAA,MAAA,CAAO,GAAA,CAAI,SAAA,EAAW,OAAO,IAAA,EAAM,GAAA,KAAQ;AACzC,IAAA,MAAM,YAAA,GAAe,MAAM,KAAA,CAAM,KAAA,EAAM;AACvC,IAAA,GAAA,CAAI,IAAA,CAAK;AAAA,MACP,MAAA;AAAA,MACA,cAAA,EAAgB,KAAK,MAAA,GAAS,CAAA;AAAA,MAC9B,qBAAA,EAAuB,YAAY,MAAA,GAAS,CAAA;AAAA,MAC5C,kBAAA,EAAoB,SAAS,MAAA,GAAS,CAAA;AAAA,MACtC,mBAAA,EAAqB,UAAU,MAAA,GAAS,CAAA;AAAA,MACxC;AAAA,KACD,CAAA;AAAA,EACH,CAAC,CAAA;AAGD,EAAA,MAAA,CAAO,GAAA,CAAI,WAAA,EAAa,OAAO,IAAA,EAAM,GAAA,KAAQ;AAC3C,IAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,MAAA,EAAO;AACpC,IAAA,GAAA,CAAI,IAAA,CAAK,EAAE,QAAA,EAAU,CAAA;AAAA,EACvB,CAAC,CAAA;AAGD,EAAA,MAAA,CAAO,IAAA,CAAK,kBAAA,EAAoB,OAAO,GAAA,EAAK,GAAA,KAAQ;AAClD,IAAA,MAAM,EAAE,UAAA,EAAW,GAAI,GAAA,CAAI,IAAA;AAC3B,IAAA,IAAI,CAAC,UAAA,IAAc,OAAO,UAAA,KAAe,QAAA,EAAU;AACjD,MAAA,GAAA,CAAI,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,sCAAsC,CAAA;AACpE,MAAA;AAAA,IACF;AAEA,IAAA,IAAI,CAAC,IAAA,EAAM;AACT,MAAA,GAAA,CAAI,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,6DAA6D,CAAA;AAC3F,MAAA;AAAA,IACF;AAEA,IAAA,MAAM,KAAA,GAAQ,UAAA,CACX,KAAA,CAAM,OAAO,EACb,GAAA,CAAI,CAAA,IAAA,KAAQ,IAAA,CAAK,IAAA,EAAM,CAAA,CACvB,MAAA,CAAO,CAAA,IAAA,KAAQ,IAAA,CAAK,SAAS,CAAC,CAAA;AAGjC,IAAA,MAAM,UAAA,GAAa,KAAA,CAAM,MAAA,GAAS,CAAA,IAAK,KAAA,CAAM,CAAC,CAAA,CAAE,WAAA,EAAY,KAAM,MAAA,GAAS,CAAA,GAAI,CAAA;AAE/E,IAAA,MAAM,WAAuD,EAAC;AAC9D,IAAA,KAAA,IAAS,CAAA,GAAI,UAAA,EAAY,CAAA,GAAI,KAAA,CAAM,QAAQ,CAAA,EAAA,EAAK;AAC9C,MAAA,MAAM,QAAA,GAAW,MAAM,CAAC,CAAA;AACxB,MAAA,MAAM,UAAA,GAAa,YAAA,CAAa,IAAA,EAAM,QAAQ,CAAA;AAC9C,MAAA,QAAA,CAAS,IAAA,CAAK,EAAE,UAAA,EAAY,QAAA,EAAU,CAAA;AAAA,IACxC;AAEA,IAAA,MAAM,KAAA,GAAQ,MAAM,KAAA,CAAM,WAAA,CAAY,QAAQ,CAAA;AAC9C,IAAA,MAAA,CAAO,IAAA,CAAK,CAAA,gBAAA,EAAmB,KAAK,CAAA,mBAAA,CAAqB,CAAA;AAEzD,IAAA,GAAA,CAAI,IAAA,CAAK;AAAA,MACP,OAAA,EAAS,0BAA0B,KAAK,CAAA,wBAAA,CAAA;AAAA,MACxC;AAAA,KACD,CAAA;AAAA,EACH,CAAC,CAAA;AAGD,EAAA,MAAA,CAAO,IAAA,CAAK,kBAAA,EAAoB,OAAO,GAAA,EAAK,GAAA,KAAQ;AAClD,IAAA,MAAM,EAAE,UAAA,EAAW,GAAI,GAAA,CAAI,IAAA;AAC3B,IAAA,IAAI,CAAC,UAAA,IAAc,OAAO,UAAA,KAAe,QAAA,EAAU;AACjD,MAAA,GAAA,CAAI,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,0BAA0B,CAAA;AACxD,MAAA;AAAA,IACF;AAEA,IAAA,MAAM,OAAA,GAAU,MAAM,KAAA,CAAM,kBAAA,CAAmB,UAAU,CAAA;AACzD,IAAA,IAAI,OAAA,EAAS;AACX,MAAA,GAAA,CAAI,IAAA,CAAK,EAAE,OAAA,EAAS,iBAAA,EAAmB,CAAA;AAAA,IACzC,CAAA,MAAO;AACL,MAAA,GAAA,CAAI,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,qBAAqB,CAAA;AAAA,IACrD;AAAA,EACF,CAAC,CAAA;AAGD,EAAA,MAAA,CAAO,IAAA,CAAK,SAAA,EAAW,OAAO,GAAA,EAAK,GAAA,KAAQ;AACzC,IAAA,MAAM,EAAE,UAAA,EAAW,GAAI,GAAA,CAAI,IAAA;AAC3B,IAAA,IAAI,CAAC,UAAA,IAAc,OAAO,UAAA,KAAe,QAAA,EAAU;AACjD,MAAA,GAAA,CAAI,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,0BAA0B,CAAA;AACxD,MAAA;AAAA,IACF;AAEA,IAAA,MAAM,OAAA,GAAU,MAAM,KAAA,CAAM,eAAA,CAAgB,UAAU,CAAA;AACtD,IAAA,IAAI,OAAA,EAAS;AACX,MAAA,GAAA,CAAI,KAAK,EAAE,UAAA,EAAY,QAAA,EAAU,OAAA,CAAQ,WAAW,CAAA;AAAA,IACtD,CAAA,MAAO;AACL,MAAA,GAAA,CAAI,KAAK,EAAE,UAAA,EAAY,UAAU,IAAA,EAAM,OAAA,EAAS,yCAAyC,CAAA;AAAA,IAC3F;AAAA,EACF,CAAC,CAAA;AAGD,EAAA,MAAA,CAAO,IAAA,CAAK,OAAA,EAAS,OAAO,GAAA,EAAK,GAAA,KAAQ;AACvC,IAAA,MAAM,EAAE,QAAA,EAAS,GAAI,GAAA,CAAI,IAAA;AACzB,IAAA,IAAI,CAAC,QAAA,IAAY,OAAO,QAAA,KAAa,QAAA,EAAU;AAC7C,MAAA,GAAA,CAAI,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,wBAAwB,CAAA;AACtD,MAAA;AAAA,IACF;AAEA,IAAA,IAAI,CAAC,IAAA,EAAM;AACT,MAAA,GAAA,CAAI,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,6DAA6D,CAAA;AAC3F,MAAA;AAAA,IACF;AAEA,IAAA,MAAM,UAAA,GAAa,YAAA,CAAa,IAAA,EAAM,QAAQ,CAAA;AAC9C,IAAA,GAAA,CAAI,IAAA,CAAK,EAAE,QAAA,EAAU,UAAA,EAAY,CAAA;AAAA,EACnC,CAAC,CAAA;AAED,EAAA,OAAO,MAAA;AACT;;;;"}

package/dist/service/MappingStore.cjs.js ADDED Viewed

@@ -0,0 +1,53 @@
+'use strict';
+class MappingStore {
+  constructor(db) {
+    this.db = db;
+  }
+  async initialize() {
+    if (!await this.db.schema.hasTable("devxp_developer_mappings")) {
+      await this.db.schema.createTable("devxp_developer_mappings", (table) => {
+        table.increments("id").primary();
+        table.string("masked_name", 255).notNullable().unique();
+        table.string("real_name", 255).notNullable();
+        table.timestamp("created_at").defaultTo(this.db.fn.now());
+      });
+    }
+  }
+  async getAll() {
+    return this.db("devxp_developer_mappings").select("*").orderBy("created_at", "desc");
+  }
+  async getByMaskedName(maskedName) {
+    return this.db("devxp_developer_mappings").where("masked_name", maskedName).first();
+  }
+  async upsert(maskedName, realName) {
+    const existing = await this.getByMaskedName(maskedName);
+    if (existing) {
+      await this.db("devxp_developer_mappings").where("masked_name", maskedName).update({ real_name: realName });
+    } else {
+      await this.db("devxp_developer_mappings").insert({
+        masked_name: maskedName,
+        real_name: realName
+      });
+    }
+  }
+  async upsertBatch(mappings) {
+    let count = 0;
+    for (const mapping of mappings) {
+      await this.upsert(mapping.maskedName, mapping.realName);
+      count++;
+    }
+    return count;
+  }
+  async deleteByMaskedName(maskedName) {
+    const deleted = await this.db("devxp_developer_mappings").where("masked_name", maskedName).delete();
+    return deleted > 0;
+  }
+  async count() {
+    const result = await this.db("devxp_developer_mappings").count("id as count").first();
+    return Number(result?.count ?? 0);
+  }
+}
+exports.MappingStore = MappingStore;
+//# sourceMappingURL=MappingStore.cjs.js.map

package/dist/service/MappingStore.cjs.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"MappingStore.cjs.js","sources":["../../src/service/MappingStore.ts"],"sourcesContent":["import { Knex } from 'knex';\n\nexport interface DeveloperMapping {\n id: number;\n masked_name: string;\n real_name: string;\n created_at: string;\n}\n\nexport class MappingStore {\n constructor(private readonly db: Knex) {}\n\n async initialize(): Promise<void> {\n if (!(await this.db.schema.hasTable('devxp_developer_mappings'))) {\n await this.db.schema.createTable('devxp_developer_mappings', table => {\n table.increments('id').primary();\n table.string('masked_name', 255).notNullable().unique();\n table.string('real_name', 255).notNullable();\n table.timestamp('created_at').defaultTo(this.db.fn.now());\n });\n }\n }\n\n async getAll(): Promise<DeveloperMapping[]> {\n return this.db<DeveloperMapping>('devxp_developer_mappings')\n .select('*')\n .orderBy('created_at', 'desc');\n }\n\n async getByMaskedName(maskedName: string): Promise<DeveloperMapping | undefined> {\n return this.db<DeveloperMapping>('devxp_developer_mappings')\n .where('masked_name', maskedName)\n .first();\n }\n\n async upsert(maskedName: string, realName: string): Promise<void> {\n const existing = await this.getByMaskedName(maskedName);\n if (existing) {\n await this.db('devxp_developer_mappings')\n .where('masked_name', maskedName)\n .update({ real_name: realName });\n } else {\n await this.db('devxp_developer_mappings').insert({\n masked_name: maskedName,\n real_name: realName,\n });\n }\n }\n\n async upsertBatch(mappings: { maskedName: string; realName: string }[]): Promise<number> {\n let count = 0;\n for (const mapping of mappings) {\n await this.upsert(mapping.maskedName, mapping.realName);\n count++;\n }\n return count;\n }\n\n async deleteByMaskedName(maskedName: string): Promise<boolean> {\n const deleted = await this.db('devxp_developer_mappings')\n .where('masked_name', maskedName)\n .delete();\n return deleted > 0;\n }\n\n async count(): Promise<number> {\n const result = await this.db('devxp_developer_mappings').count('id as count').first();\n return Number(result?.count ?? 0);\n }\n}\n"],"names":[],"mappings":";;AASO,MAAM,YAAA,CAAa;AAAA,EACxB,YAA6B,EAAA,EAAU;AAAV,IAAA,IAAA,CAAA,EAAA,GAAA,EAAA;AAAA,EAAW;AAAA,EAExC,MAAM,UAAA,GAA4B;AAChC,IAAA,IAAI,CAAE,MAAM,IAAA,CAAK,GAAG,MAAA,CAAO,QAAA,CAAS,0BAA0B,CAAA,EAAI;AAChE,MAAA,MAAM,IAAA,CAAK,EAAA,CAAG,MAAA,CAAO,WAAA,CAAY,4BAA4B,CAAA,KAAA,KAAS;AACpE,QAAA,KAAA,CAAM,UAAA,CAAW,IAAI,CAAA,CAAE,OAAA,EAAQ;AAC/B,QAAA,KAAA,CAAM,OAAO,aAAA,EAAe,GAAG,CAAA,CAAE,WAAA,GAAc,MAAA,EAAO;AACtD,QAAA,KAAA,CAAM,MAAA,CAAO,WAAA,EAAa,GAAG,CAAA,CAAE,WAAA,EAAY;AAC3C,QAAA,KAAA,CAAM,SAAA,CAAU,YAAY,CAAA,CAAE,SAAA,CAAU,KAAK,EAAA,CAAG,EAAA,CAAG,KAAK,CAAA;AAAA,MAC1D,CAAC,CAAA;AAAA,IACH;AAAA,EACF;AAAA,EAEA,MAAM,MAAA,GAAsC;AAC1C,IAAA,OAAO,IAAA,CAAK,GAAqB,0BAA0B,CAAA,CACxD,OAAO,GAAG,CAAA,CACV,OAAA,CAAQ,YAAA,EAAc,MAAM,CAAA;AAAA,EACjC;AAAA,EAEA,MAAM,gBAAgB,UAAA,EAA2D;AAC/E,IAAA,OAAO,IAAA,CAAK,GAAqB,0BAA0B,CAAA,CACxD,MAAM,aAAA,EAAe,UAAU,EAC/B,KAAA,EAAM;AAAA,EACX;AAAA,EAEA,MAAM,MAAA,CAAO,UAAA,EAAoB,QAAA,EAAiC;AAChE,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,eAAA,CAAgB,UAAU,CAAA;AACtD,IAAA,IAAI,QAAA,EAAU;AACZ,MAAA,MAAM,IAAA,CAAK,EAAA,CAAG,0BAA0B,CAAA,CACrC,KAAA,CAAM,aAAA,EAAe,UAAU,CAAA,CAC/B,MAAA,CAAO,EAAE,SAAA,EAAW,QAAA,EAAU,CAAA;AAAA,IACnC,CAAA,MAAO;AACL,MAAA,MAAM,IAAA,CAAK,EAAA,CAAG,0BAA0B,CAAA,CAAE,MAAA,CAAO;AAAA,QAC/C,WAAA,EAAa,UAAA;AAAA,QACb,SAAA,EAAW;AAAA,OACZ,CAAA;AAAA,IACH;AAAA,EACF;AAAA,EAEA,MAAM,YAAY,QAAA,EAAuE;AACvF,IAAA,IAAI,KAAA,GAAQ,CAAA;AACZ,IAAA,KAAA,MAAW,WAAW,QAAA,EAAU;AAC9B,MAAA,MAAM,IAAA,CAAK,MAAA,CAAO,OAAA,CAAQ,UAAA,EAAY,QAAQ,QAAQ,CAAA;AACtD,MAAA,KAAA,EAAA;AAAA,IACF;AACA,IAAA,OAAO,KAAA;AAAA,EACT;AAAA,EAEA,MAAM,mBAAmB,UAAA,EAAsC;AAC7D,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,EAAA,CAAG,0BAA0B,EACrD,KAAA,CAAM,aAAA,EAAe,UAAU,CAAA,CAC/B,MAAA,EAAO;AACV,IAAA,OAAO,OAAA,GAAU,CAAA;AAAA,EACnB;AAAA,EAEA,MAAM,KAAA,GAAyB;AAC7B,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,EAAA,CAAG,0BAA0B,CAAA,CAAE,KAAA,CAAM,aAAa,CAAA,CAAE,KAAA,EAAM;AACpF,IAAA,OAAO,MAAA,CAAO,MAAA,EAAQ,KAAA,IAAS,CAAC,CAAA;AAAA,EAClC;AACF;;;;"}

package/package.json ADDED Viewed

@@ -0,0 +1,52 @@
+{
+  "name": "@karimov-labs/backstage-plugin-devxp-backend",
+  "version": "1.0.0",
+  "description": "Backstage backend plugin for developer intelligence — SHA-256 identity hashing, developer name mappings, and CSV ingestion.",
+  "main": "src/index.ts",
+  "types": "src/index.ts",
+  "license": "Apache-2.0",
+  "author": "karimov-labs",
+  "homepage": "https://github.com/karimov-labs/backstage-plugin-devxp#readme",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/karimov-labs/backstage-plugin-devxp.git",
+    "directory": "plugins/devxp-backend"
+  },
+  "keywords": [
+    "backstage",
+    "plugin",
+    "backend",
+    "developer-intelligence",
+    "devxp",
+    "identity-masking"
+  ],
+  "backstage": {
+    "role": "backend-plugin",
+    "pluginId": "devxp"
+  },
+  "publishConfig": {
+    "access": "public",
+    "main": "dist/index.cjs.js",
+    "types": "dist/index.d.ts"
+  },
+  "scripts": {
+    "start": "backstage-cli package start",
+    "build": "backstage-cli package build",
+    "lint": "backstage-cli package lint",
+    "test": "backstage-cli package test",
+    "clean": "backstage-cli package clean"
+  },
+  "dependencies": {
+    "@backstage/backend-plugin-api": "^1.2.0",
+    "@backstage/config": "^1.3.6",
+    "express": "^4.18.0",
+    "knex": "^3.0.0"
+  },
+  "devDependencies": {
+    "@backstage/cli": "^0.36.0",
+    "@types/express": "*"
+  },
+  "files": [
+    "dist"
+  ]
+}

package/src/index.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { devxpPlugin as default } from './plugin';