@levrbet/shared 0.1.94 → 0.1.95

package/dist/server/middleware/index.js

@@ -1,3 +1,5 @@
+export * from "./apiKey.middleware";
+export * from "./mutiAuth.middleware";
 export * from "./privy.middleware";
 export * from "./rateLimit.middleware";
 //# sourceMappingURL=index.js.map

package/dist/server/middleware/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/server/middleware/index.ts"],"names":[],"mappings":"AAAA,cAAc,oBAAoB,CAAA;AAClC,cAAc,wBAAwB,CAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/server/middleware/index.ts"],"names":[],"mappings":"AAAA,cAAc,qBAAqB,CAAA;AACnC,cAAc,uBAAuB,CAAA;AACrC,cAAc,oBAAoB,CAAA;AAClC,cAAc,wBAAwB,CAAA"}

package/dist/server/middleware/mutiAuth.middleware.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/server/middleware/mutiAuth.middleware.js

@@ -0,0 +1,3 @@
+export {};
+// I wanna be able to use multiple auths in one middleware
+//# sourceMappingURL=mutiAuth.middleware.js.map

package/dist/server/middleware/mutiAuth.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mutiAuth.middleware.js","sourceRoot":"","sources":["../../../src/server/middleware/mutiAuth.middleware.ts"],"names":[],"mappings":";AAAA,0DAA0D"}

package/dist/server/repositories/apiKey.repository.d.ts

@@ -0,0 +1,7 @@
+import { ApiKey, Prisma } from "../../core";
+export declare const apiKeyRepository: {
+    storeApiKey(apiKey: Prisma.ApiKeyCreateInput): Promise<ApiKey>;
+    getApiKey(filter: Prisma.ApiKeyWhereUniqueInput): Promise<ApiKey | null>;
+    getApiKeys(filter: Prisma.ApiKeyWhereInput): Promise<ApiKey[]>;
+    updateApiKey(filter: Prisma.ApiKeyWhereUniqueInput, data: Prisma.ApiKeyUpdateInput): Promise<ApiKey>;
+};

package/dist/server/repositories/apiKey.repository.js

@@ -0,0 +1,16 @@
+import { prismaClientManager } from "../config/prisma";
+export const apiKeyRepository = {
+    storeApiKey(apiKey) {
+        return prismaClientManager.client.apiKey.create({ data: apiKey });
+    },
+    getApiKey(filter) {
+        return prismaClientManager.client.apiKey.findUnique({ where: { ...filter, isActive: true } });
+    },
+    getApiKeys(filter) {
+        return prismaClientManager.client.apiKey.findMany({ where: { ...filter, isActive: true } });
+    },
+    updateApiKey(filter, data) {
+        return prismaClientManager.client.apiKey.update({ where: { ...filter, isActive: true }, data });
+    },
+};
+//# sourceMappingURL=apiKey.repository.js.map

package/dist/server/repositories/apiKey.repository.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"apiKey.repository.js","sourceRoot":"","sources":["../../../src/server/repositories/apiKey.repository.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAA;AAEtD,MAAM,CAAC,MAAM,gBAAgB,GAAG;IAC5B,WAAW,CAAC,MAAgC;QACxC,OAAO,mBAAmB,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAA;IACrE,CAAC;IACD,SAAS,CAAC,MAAqC;QAC3C,OAAO,mBAAmB,CAAC,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,KAAK,EAAE,EAAE,GAAG,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,CAAC,CAAA;IACjG,CAAC;IACD,UAAU,CAAC,MAA+B;QACtC,OAAO,mBAAmB,CAAC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,KAAK,EAAE,EAAE,GAAG,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,CAAC,CAAA;IAC/F,CAAC;IACD,YAAY,CAAC,MAAqC,EAAE,IAA8B;QAC9E,OAAO,mBAAmB,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,GAAG,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,CAAC,CAAA;IACnG,CAAC;CACJ,CAAA"}

package/dist/server/repositories/index.d.ts

@@ -0,0 +1 @@
+export * from "./apiKey.repository";

package/dist/server/repositories/index.js

@@ -0,0 +1,2 @@
+export * from "./apiKey.repository";
+//# sourceMappingURL=index.js.map

package/dist/server/repositories/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/server/repositories/index.ts"],"names":[],"mappings":"AAAA,cAAc,qBAAqB,CAAA"}

package/dist/server/services/crypto.service.d.ts

@@ -0,0 +1,18 @@
+interface SignRequestParams {
+    method: string;
+    path?: string;
+    ts: number;
+    body: any;
+    nonce: string;
+    plaintext: Buffer;
+}
+export declare const cryptoService: {
+    CMK_ID: string;
+    generateDataKey(): Promise<{
+        ciphertext: string;
+        plaintext: string;
+    }>;
+    signRequest({ method, path, ts, body, nonce, plaintext }: SignRequestParams): string;
+    getPlaintextKey(apiKeyId: string, ciphertextBase64: string): Promise<Buffer>;
+};
+export {};

package/dist/server/services/crypto.service.js

@@ -0,0 +1,40 @@
+import { DecryptCommand, GenerateDataKeyCommand } from "@aws-sdk/client-kms";
+import crypto from "crypto";
+import _ from "lodash";
+import { kmsClientManager } from "../config";
+// TODO: cache with redis instead
+const keyCache = new Map();
+export const cryptoService = {
+    CMK_ID: "b6050d0f-be5b-418c-9056-c53c1d982dec", // TODO: make per env
+    async generateDataKey() {
+        const CMK_ID = "b6050d0f-be5b-418c-9056-c53c1d982dec";
+        const gdk = await kmsClientManager.client.send(new GenerateDataKeyCommand({ KeyId: CMK_ID, KeySpec: "AES_256" }));
+        if (_.isNil(gdk.Plaintext) || _.isNil(gdk.CiphertextBlob))
+            throw new Error("Failed to generate data key");
+        const plaintext = Buffer.from(gdk.Plaintext).toString("base64");
+        const ciphertext = Buffer.from(gdk.CiphertextBlob).toString("base64");
+        return { ciphertext, plaintext };
+    },
+    signRequest({ method, path, ts, body, nonce, plaintext }) {
+        const bodyString = body && Object.keys((body ?? {})).length > 0 ? JSON.stringify(body) : "";
+        const bodyHash = crypto.createHash("sha256").update(bodyString).digest("hex");
+        const toSign = `${method}\n${path ?? ""}\n${ts.toString()}\n${bodyHash}\n${nonce}`;
+        const h = crypto.createHmac("sha256", plaintext);
+        h.update(toSign);
+        return h.digest("base64");
+    },
+    async getPlaintextKey(apiKeyId, ciphertextBase64) {
+        const cache = keyCache.get(apiKeyId);
+        if (cache && cache.expiresAt > Date.now())
+            return cache.plaintext;
+        const ciphertext = Buffer.from(ciphertextBase64, "base64");
+        const resp = await kmsClientManager.client.send(new DecryptCommand({ CiphertextBlob: ciphertext }));
+        if (!resp.Plaintext)
+            throw new Error("KMS Decrypt failed: No plaintext returned");
+        const plaintext = Buffer.from(resp.Plaintext);
+        // Cache for 5 minutes
+        keyCache.set(apiKeyId, { plaintext, expiresAt: Date.now() + 5 * 60 * 1000 });
+        return plaintext;
+    },
+};
+//# sourceMappingURL=crypto.service.js.map

package/dist/server/services/crypto.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.service.js","sourceRoot":"","sources":["../../../src/server/services/crypto.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,sBAAsB,EAAE,MAAM,qBAAqB,CAAA;AAC5E,OAAO,MAAM,MAAM,QAAQ,CAAA;AAC3B,OAAO,CAAC,MAAM,QAAQ,CAAA;AACtB,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAA;AAW5C,iCAAiC;AACjC,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAoD,CAAA;AAE5E,MAAM,CAAC,MAAM,aAAa,GAAG;IACzB,MAAM,EAAE,sCAAsC,EAAE,qBAAqB;IACrE,KAAK,CAAC,eAAe;QACjB,MAAM,MAAM,GAAG,sCAAsC,CAAA;QAErD,MAAM,GAAG,GAAG,MAAM,gBAAgB,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,sBAAsB,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,CAAC,CAAC,CAAA;QACjH,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,CAAC;YAAE,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAA;QAEzG,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;QAC/D,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAA;QAErE,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,CAAA;IACpC,CAAC;IACD,WAAW,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,SAAS,EAAqB;QACvE,MAAM,UAAU,GAAG,IAAI,IAAI,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,IAAI,EAAE,CAAW,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;QACrG,MAAM,QAAQ,GAAG,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QAC7E,MAAM,MAAM,GAAG,GAAG,MAAM,KAAK,IAAI,IAAI,EAAE,KAAK,EAAE,CAAC,QAAQ,EAAE,KAAK,QAAQ,KAAK,KAAK,EAAE,CAAA;QAClF,MAAM,CAAC,GAAG,MAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAA;QAChD,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;QAChB,OAAO,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAA;IAC7B,CAAC;IACD,KAAK,CAAC,eAAe,CAAC,QAAgB,EAAE,gBAAwB;QAC5D,MAAM,KAAK,GAAG,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAA;QACpC,IAAI,KAAK,IAAI,KAAK,CAAC,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE;YAAE,OAAO,KAAK,CAAC,SAAS,CAAA;QAEjE,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,QAAQ,CAAC,CAAA;QAC1D,MAAM,IAAI,GAAG,MAAM,gBAAgB,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,cAAc,CAAC,EAAE,cAAc,EAAE,UAAU,EAAE,CAAC,CAAC,CAAA;QACnG,IAAI,CAAC,IAAI,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAA;QAEjF,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;QAE7C,sBAAsB;QACtB,QAAQ,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,EAAE,CAAC,CAAA;QAC5E,OAAO,SAAS,CAAA;IACpB,CAAC;CACJ,CAAA"}

package/dist/server/services/index.d.ts

@@ -0,0 +1 @@
+export * from "./crypto.service";

package/dist/server/services/index.js

@@ -0,0 +1,2 @@
+export * from "./crypto.service";
+//# sourceMappingURL=index.js.map

package/dist/server/services/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/server/services/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAA"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@levrbet/shared",
-  "version": "0.1.94",
+  "version": "0.1.95",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "exports": {