@manojkmfsi/monodog 1.0.23 → 1.0.24

package/.turbo/turbo-build.log

@@ -1,4 +1,4 @@
 
-> @manojkmfsi/monodog@1.0.23 build /home/runner/work/monodog/monodog/packages/monoapp
+> @manojkmfsi/monodog@1.0.24 build /home/runner/work/monodog/monodog/packages/monoapp
 > rm -rf dist && tsc
 

package/CHANGELOG.md

@@ -1,5 +1,11 @@
 # @manojkmfsi/monoapp
 
+## 1.0.24
+
+### Patch Changes
+
+- added separate folder for middleware, kebab case filename
+
 ## 1.0.23
 
 ### Patch Changes

package/dist/controllers/{commitController.js → commit-controller.js}

@@ -1,23 +1,24 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getCommitsByPath = void 0;
-const commitService_1 = require("../services/commitService");
+const commit_service_1 = require("../services/commit-service");
 const getCommitsByPath = async (_req, res) => {
     try {
         const { packagePath } = _req.params;
         const decodedPath = decodeURIComponent(packagePath);
         console.log('Fetching commits for path:', decodedPath);
         console.log('Current working directory:', process.cwd());
-        const commits = await (0, commitService_1.getCommitsByPathService)(decodedPath);
+        const commits = await (0, commit_service_1.getCommitsByPathService)(decodedPath);
         console.log(`Successfully fetched ${commits.length} commits for ${decodedPath}`);
         res.json(commits);
     }
     catch (error) {
+        const err = error;
         console.error('Error fetching commit details:', error);
         res.status(500).json({
             error: 'Failed to fetch commit details',
-            message: error.message,
-            stack: process.env.NODE_ENV === 'development' ? error.stack : undefined,
+            message: err?.message,
+            stack: process.env.NODE_ENV === 'development' ? err?.stack : undefined,
         });
     }
 };

package/dist/controllers/{configController.js → config-controller.js}

@@ -1,12 +1,12 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.updateConfigFile = exports.getConfigurationFiles = void 0;
-const configService_1 = require("../services/configService");
+const config_service_1 = require("../services/config-service");
 const getConfigurationFiles = async (_req, res) => {
     try {
         const rootDir = _req.app.locals.rootPath;
         console.log('Monorepo root directory:', rootDir);
-        const configFiles = await (0, configService_1.getConfigurationFilesService)(rootDir);
+        const configFiles = await (0, config_service_1.getConfigurationFilesService)(rootDir);
         res.json(configFiles);
     }
     catch (error) {
@@ -29,7 +29,7 @@ const updateConfigFile = async (_req, res) => {
             });
         }
         const rootDir = _req.app.locals.rootPath;
-        const result = await (0, configService_1.updateConfigFileService)(id, rootDir, content);
+        const result = await (0, config_service_1.updateConfigFileService)(id, rootDir, content);
         res.json(result);
     }
     catch (error) {

package/dist/controllers/{healthController.js → health-controller.js}

@@ -1,10 +1,10 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.refreshHealth = exports.getPackagesHealth = void 0;
-const healthService_1 = require("../services/healthService");
+const health_service_1 = require("../services/health-service");
 const getPackagesHealth = async (_req, res) => {
     try {
-        const health = await (0, healthService_1.getHealthSummaryService)();
+        const health = await (0, health_service_1.getHealthSummaryService)();
         res.json(health);
     }
     catch (error) {
@@ -17,7 +17,7 @@ const getPackagesHealth = async (_req, res) => {
 exports.getPackagesHealth = getPackagesHealth;
 const refreshHealth = async (_req, res) => {
     try {
-        const health = await (0, healthService_1.healthRefreshService)(_req.app.locals.rootPath);
+        const health = await (0, health_service_1.healthRefreshService)(_req.app.locals.rootPath);
         res.json(health);
     }
     catch (error) {

package/dist/controllers/{packageController.js → package-controller.js}

@@ -1,11 +1,11 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.updatePackageConfig = exports.getPackageDetail = exports.refreshPackages = exports.getPackages = void 0;
-const configService_1 = require("../services/configService");
-const packageService_1 = require("../services/packageService");
+const config_service_1 = require("../services/config-service");
+const package_service_1 = require("../services/package-service");
 const getPackages = async (_req, res) => {
     try {
-        const transformedPackages = await (0, packageService_1.getPackagesService)(_req.app.locals.rootPath);
+        const transformedPackages = await (0, package_service_1.getPackagesService)(_req.app.locals.rootPath);
         res.json(transformedPackages);
     }
     catch (error) {
@@ -16,7 +16,7 @@ exports.getPackages = getPackages;
 const refreshPackages = async (_req, res) => {
     console.log('Refreshing packages from source...' + _req.app.locals.rootPath);
     try {
-        const packages = await (0, packageService_1.refreshPackagesService)(_req.app.locals.rootPath);
+        const packages = await (0, package_service_1.refreshPackagesService)(_req.app.locals.rootPath);
         res.json(packages);
     }
     catch (error) {
@@ -27,7 +27,7 @@ exports.refreshPackages = refreshPackages;
 const getPackageDetail = async (_req, res) => {
     const { name } = _req.params;
     try {
-        const packageDetail = await (0, packageService_1.getPackageDetailService)(name);
+        const packageDetail = await (0, package_service_1.getPackageDetailService)(name);
         res.json(packageDetail);
     }
     catch (error) {
@@ -46,7 +46,7 @@ const updatePackageConfig = async (req, res) => {
         }
         console.log('Updating package configuration for:', packageName);
         console.log('Package path:', packagePath);
-        const updatedPackage = await (0, configService_1.updatePackageConfigurationService)(packagePath, packageName, config);
+        const updatedPackage = await (0, config_service_1.updatePackageConfigurationService)(packagePath, packageName, config);
         return res.json({
             success: true,
             message: 'Package configuration updated successfully',

package/dist/index.js

@@ -1,238 +1,13 @@
 "use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
+/**
+ * Monodog Application Entry Point
+ *
+ * This file exports the main server and dashboard startup functions
+ * All middleware, security, and error handling logic has been moved to separate files
+ */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.startServer = startServer;
-exports.serveDashboard = serveDashboard;
-const express_1 = __importDefault(require("express"));
-const cors_1 = __importDefault(require("cors"));
-const path_1 = __importDefault(require("path"));
-const body_parser_1 = require("body-parser");
-const helmet_1 = __importDefault(require("helmet"));
-const config_loader_1 = require("./config-loader");
-const packageRoutes_1 = __importDefault(require("./routes/packageRoutes"));
-const commitRoutes_1 = __importDefault(require("./routes/commitRoutes"));
-const healthRoutes_1 = __importDefault(require("./routes/healthRoutes"));
-const configRoutes_1 = __importDefault(require("./routes/configRoutes"));
-// Security constants
-const PORT_MIN = 1024;
-const PORT_MAX = 65535;
-// Validate port number
-function validatePort(port) {
-    const portNum = typeof port === 'string' ? parseInt(port, 10) : port;
-    if (isNaN(portNum) || portNum < PORT_MIN || portNum > PORT_MAX) {
-        throw new Error(`Port must be between ${PORT_MIN} and ${PORT_MAX}`);
-    }
-    return portNum;
-}
-// Global error handler
-const errorHandler = (err, req, res, _next) => {
-    const status = err.status || err.statusCode || 500;
-    console.error('[ERROR]', {
-        status,
-        method: req.method,
-        path: req.path,
-        message: err.message,
-    });
-    res.status(status).json({
-        error: 'Internal server error'
-    });
-};
-// The main function exported and called by the CLI
-function startServer(rootPath) {
-    try {
-        const port = config_loader_1.appConfig.server.port;
-        const host = config_loader_1.appConfig.server.host;
-        const validatedPort = validatePort(port);
-        const app = (0, express_1.default)();
-        // Set request timeout (30 seconds)
-        app.use((req, res, next) => {
-            req.setTimeout(30000);
-            res.setTimeout(30000);
-            next();
-        });
-        app.locals.rootPath = rootPath;
-        // Security middleware with CSP allowing API calls
-        const apiHost = host === '0.0.0.0' ? 'localhost' : host;
-        const apiUrl = process.env.API_URL || `http://${apiHost}:${validatedPort}`;
-        const dashboardHost = config_loader_1.appConfig.dashboard.host === '0.0.0.0' ? 'localhost' : config_loader_1.appConfig.dashboard.host;
-        const dashboardUrl = `http://${dashboardHost}:${config_loader_1.appConfig.dashboard.port}`;
-        app.use((0, helmet_1.default)({
-            contentSecurityPolicy: {
-                directives: {
-                    defaultSrc: ["'self'"],
-                    connectSrc: ["'self'", apiUrl, 'http://localhost:*', 'http://127.0.0.1:*'],
-                    scriptSrc: ["'self'"],
-                    imgSrc: ["'self'", 'data:', 'https:'],
-                },
-            },
-        }));
-        app.use((0, cors_1.default)({
-            origin: process.env.CORS_ORIGIN || dashboardUrl,
-            credentials: true,
-            methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'],
-            allowedHeaders: ['Content-Type', 'Authorization'],
-        }));
-        app.use((0, body_parser_1.json)({ limit: '1mb' }));
-        // Request logging middleware (safe version)
-        app.use((_req, _res, next) => {
-            console.log(`[${new Date().toISOString()}] ${_req.method} ${_req.path}`);
-            next();
-        });
-        app.use('/api/packages', packageRoutes_1.default);
-        // Get commit details
-        app.use('/api/commits/', commitRoutes_1.default);
-        // Health check endpoint
-        app.use('/api/health/', healthRoutes_1.default);
-        // Configuration endpoint
-        app.use('/api/config/', configRoutes_1.default);
-        // 404 handler
-        app.use('*', (_, res) => {
-            res.status(404).json({
-                error: 'Endpoint not found',
-                timestamp: Date.now(),
-            });
-        });
-        // Global error handler (must be last)
-        app.use(errorHandler);
-        const server = app.listen(validatedPort, host, () => {
-            console.log(`Backend server running on http://${host}:${validatedPort}`);
-            console.log(`API endpoints available:`);
-            console.log(`   - GET  /api/health`);
-            console.log(`   - GET  /api/packages/refresh`);
-            console.log(`   - GET  /api/packages`);
-            console.log(`   - GET  /api/packages/:name`);
-            console.log(`   - PUT  /api/packages/update-config`);
-            console.log(`   - GET  /api/commits/:packagePath`);
-            console.log(`   - GET  /api/health/packages`);
-            console.log(`   - PUT  /api/config/files/:id`);
-            console.log(`   - GET  /api/config/files`);
-        });
-        server.on('error', (err) => {
-            // Handle common errors like EADDRINUSE (port already in use)
-            if (err.code === 'EADDRINUSE') {
-                console.error(`Error: Port ${validatedPort} is already in use. Please specify a different port.`);
-                process.exit(1);
-            }
-            else if (err.code === 'EACCES') {
-                console.error(`Error: Permission denied to listen on port ${validatedPort}. Use a port above 1024.`);
-                process.exit(1);
-            }
-            else {
-                console.error('Server failed to start:', err.message);
-                process.exit(1);
-            }
-        });
-        // Graceful shutdown
-        process.on('SIGTERM', () => {
-            console.log('SIGTERM signal received: closing HTTP server');
-            server.close(() => {
-                console.log('HTTP server closed');
-                process.exit(0);
-            });
-        });
-    }
-    catch (error) {
-        console.error('Failed to start server:', error.message);
-        process.exit(1);
-    }
-}
-function serveDashboard(rootPath) {
-    try {
-        const port = config_loader_1.appConfig.dashboard.port;
-        const host = config_loader_1.appConfig.dashboard.host;
-        const validatedPort = validatePort(port);
-        const app = (0, express_1.default)();
-        // Security middleware
-        const serverHost = config_loader_1.appConfig.server.host === '0.0.0.0' ? 'localhost' : config_loader_1.appConfig.server.host;
-        const apiUrl = process.env.API_URL || `http://${serverHost}:${config_loader_1.appConfig.server.port}`;
-        app.use((0, helmet_1.default)({
-            contentSecurityPolicy: {
-                directives: {
-                    defaultSrc: ["'self'"],
-                    connectSrc: ["'self'", apiUrl, 'http://localhost:*', 'http://127.0.0.1:*'],
-                    scriptSrc: ["'self'"],
-                    imgSrc: ["'self'", 'data:', 'https:'],
-                },
-            },
-        }));
-        // Strict CORS for dashboard
-        app.use((0, cors_1.default)({
-            origin: false, // Don't allow any origin for static assets
-        }));
-        // Set request timeout
-        app.use((req, res, next) => {
-            req.setTimeout(30000);
-            res.setTimeout(30000);
-            next();
-        });
-        app.get('/env-config.js', (req, res) => {
-            res.setHeader('Content-Type', 'application/javascript');
-            res.setHeader('Cache-Control', 'private, no-cache, no-store, must-revalidate');
-            const serverHost = config_loader_1.appConfig.server.host === '0.0.0.0' ? 'localhost' : config_loader_1.appConfig.server.host;
-            const apiUrl = process.env.API_URL || `http://${serverHost}:${config_loader_1.appConfig.server.port}`;
-            res.send(`window.ENV = { API_URL: "${apiUrl}" };`);
-        });
-        // This code makes sure that any request that does not matches a static file
-        // in the build folder, will just serve index.html. Client side routing is
-        // going to make sure that the correct content will be loaded.
-        app.use((req, res, next) => {
-            if (/(.ico|.js|.css|.jpg|.png|.map|.woff|.woff2|.ttf)$/i.test(req.path)) {
-                next();
-            }
-            else {
-                res.header('Cache-Control', 'private, no-cache, no-store, must-revalidate');
-                res.header('Expires', '-1');
-                res.header('Pragma', 'no-cache');
-                res.sendFile('index.html', {
-                    root: path_1.default.resolve(__dirname, '..', 'monodog-dashboard', 'dist'),
-                }, (err) => {
-                    if (err) {
-                        console.error('Error serving index.html:', err.message);
-                        res.status(500).json({ error: 'Internal server error' });
-                    }
-                });
-            }
-        });
-        const staticPath = path_1.default.join(__dirname, '..', 'monodog-dashboard', 'dist');
-        console.log('Serving static files from:', staticPath);
-        app.use(express_1.default.static(staticPath, {
-            maxAge: '1d',
-            etag: false,
-            dotfiles: 'deny', // Don't serve dot files
-        }));
-        // Global error handler
-        app.use(errorHandler);
-        const server = app.listen(validatedPort, host, () => {
-            console.log(`Dashboard listening on http://${host}:${validatedPort}`);
-            console.log('Press Ctrl+C to quit.');
-        });
-        server.on('error', (err) => {
-            if (err.code === 'EADDRINUSE') {
-                console.error(`Error: Port ${validatedPort} is already in use.`);
-                process.exit(1);
-            }
-            else if (err.code === 'EACCES') {
-                console.error(`Error: Permission denied to listen on port ${validatedPort}.`);
-                process.exit(1);
-            }
-            else {
-                console.error('Server failed to start:', err.message);
-                process.exit(1);
-            }
-        });
-        // Graceful shutdown
-        process.on('SIGTERM', () => {
-            console.log('SIGTERM signal received: closing dashboard server');
-            server.close(() => {
-                console.log('Dashboard server closed');
-                process.exit(0);
-            });
-        });
-    }
-    catch (error) {
-        console.error('Failed to start dashboard:', error.message);
-        process.exit(1);
-    }
-}
+exports.serveDashboard = exports.startServer = void 0;
+var server_startup_1 = require("./middleware/server-startup");
+Object.defineProperty(exports, "startServer", { enumerable: true, get: function () { return server_startup_1.startServer; } });
+var dashboard_startup_1 = require("./middleware/dashboard-startup");
+Object.defineProperty(exports, "serveDashboard", { enumerable: true, get: function () { return dashboard_startup_1.serveDashboard; } });

package/dist/middleware/dashboard-startup.js

@@ -0,0 +1,122 @@
+"use strict";
+/**
+ * Dashboard server startup logic
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.serveDashboard = serveDashboard;
+const express_1 = __importDefault(require("express"));
+const path_1 = __importDefault(require("path"));
+const config_loader_1 = require("../config-loader");
+const error_handler_1 = require("./error-handler");
+const security_1 = require("./security");
+// Security constants
+const PORT_MIN = 1024;
+const PORT_MAX = 65535;
+/**
+ * Validate port number
+ */
+function validatePort(port) {
+    const portNum = typeof port === 'string' ? parseInt(port, 10) : port;
+    if (isNaN(portNum) || portNum < PORT_MIN || portNum > PORT_MAX) {
+        throw new Error(`Port must be between ${PORT_MIN} and ${PORT_MAX}`);
+    }
+    return portNum;
+}
+/**
+ * Create Express app for dashboard with middleware
+ */
+function createDashboardApp() {
+    const app = (0, express_1.default)();
+    // Timeout middleware
+    app.use((0, security_1.createTimeoutMiddleware)());
+    // Security setup
+    const serverHost = config_loader_1.appConfig.server.host === '0.0.0.0'
+        ? 'localhost'
+        : config_loader_1.appConfig.server.host;
+    const apiUrl = (0, security_1.buildApiUrl)(serverHost, config_loader_1.appConfig.server.port);
+    app.use((0, security_1.createHelmetMiddleware)(apiUrl));
+    app.use((0, security_1.createDashboardCorsMiddleware)());
+    // Environment config endpoint
+    app.get('/env-config.js', (_req, res) => {
+        res.setHeader('Content-Type', 'application/javascript');
+        res.setHeader('Cache-Control', 'private, no-cache, no-store, must-revalidate');
+        res.send(`window.ENV = { API_URL: "${apiUrl}" };`);
+    });
+    // Request logging
+    app.use(error_handler_1.requestLogger);
+    // SPA routing: serve index.html for non-static routes
+    app.use((_req, _res, next) => {
+        if (/(.ico|.js|.css|.jpg|.png|.map|.woff|.woff2|.ttf)$/i.test(_req.path)) {
+            next();
+        }
+        else {
+            _res.header('Cache-Control', 'private, no-cache, no-store, must-revalidate');
+            _res.header('Expires', '-1');
+            _res.header('Pragma', 'no-cache');
+            _res.sendFile('index.html', {
+                root: path_1.default.resolve(__dirname, '..', '..', 'monodog-dashboard', 'dist'),
+            }, (err) => {
+                if (err) {
+                    console.error('Error serving index.html:', err?.message);
+                    _res.status(500).json({ error: 'Internal server error' });
+                }
+            });
+        }
+    });
+    // Static files
+    const staticPath = path_1.default.join(__dirname, '..', '..', 'monodog-dashboard', 'dist');
+    console.log('Serving static files from:', staticPath);
+    app.use(express_1.default.static(staticPath, {
+        maxAge: '1d',
+        etag: false,
+        dotfiles: 'deny',
+    }));
+    // Global error handler (must be last)
+    app.use(error_handler_1.errorHandler);
+    return app;
+}
+/**
+ * Start the dashboard server
+ */
+function serveDashboard(rootPath) {
+    try {
+        const port = config_loader_1.appConfig.dashboard.port;
+        const host = config_loader_1.appConfig.dashboard.host;
+        const validatedPort = validatePort(port);
+        const app = createDashboardApp();
+        const server = app.listen(validatedPort, host, () => {
+            console.log(`Dashboard listening on http://${host}:${validatedPort}`);
+            console.log('Press Ctrl+C to quit.');
+        });
+        server.on('error', (err) => {
+            if (err.code === 'EADDRINUSE') {
+                console.error(`Error: Port ${validatedPort} is already in use.`);
+                process.exit(1);
+            }
+            else if (err.code === 'EACCES') {
+                console.error(`Error: Permission denied to listen on port ${validatedPort}.`);
+                process.exit(1);
+            }
+            else {
+                console.error('Server failed to start:', err.message);
+                process.exit(1);
+            }
+        });
+        // Graceful shutdown
+        process.on('SIGTERM', () => {
+            console.log('SIGTERM signal received: closing dashboard server');
+            server.close(() => {
+                console.log('Dashboard server closed');
+                process.exit(0);
+            });
+        });
+    }
+    catch (error) {
+        const err = error;
+        console.error('Failed to start dashboard:', err?.message || String(error));
+        process.exit(1);
+    }
+}

package/dist/middleware/error-handler.js

@@ -0,0 +1,43 @@
+"use strict";
+/**
+ * Error handling middleware for Express
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.requestLogger = exports.notFoundHandler = exports.errorHandler = void 0;
+/**
+ * Global error handler middleware
+ * Must be registered last in the middleware chain
+ */
+const errorHandler = (err, req, res, _next) => {
+    const status = err.status || err.statusCode || 500;
+    console.error('[ERROR]', {
+        status,
+        method: req.method,
+        path: req.path,
+        message: err.message,
+        timestamp: new Date().toISOString(),
+    });
+    res.status(status).json({
+        error: 'Internal server error',
+        timestamp: Date.now(),
+    });
+};
+exports.errorHandler = errorHandler;
+/**
+ * 404 Not Found handler
+ */
+const notFoundHandler = (_req, res) => {
+    res.status(404).json({
+        error: 'Endpoint not found',
+        timestamp: Date.now(),
+    });
+};
+exports.notFoundHandler = notFoundHandler;
+/**
+ * Request logging middleware
+ */
+const requestLogger = (req, _res, next) => {
+    console.log(`[${new Date().toISOString()}] ${req.method} ${req.path}`);
+    next();
+};
+exports.requestLogger = requestLogger;

package/dist/middleware/index.js

@@ -0,0 +1,21 @@
+"use strict";
+/**
+ * Middleware exports
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.serveDashboard = exports.startServer = exports.buildDashboardUrl = exports.buildApiUrl = exports.createTimeoutMiddleware = exports.createDashboardCorsMiddleware = exports.createApiCorsMiddleware = exports.createHelmetMiddleware = exports.requestLogger = exports.notFoundHandler = exports.errorHandler = void 0;
+var error_handler_1 = require("./error-handler");
+Object.defineProperty(exports, "errorHandler", { enumerable: true, get: function () { return error_handler_1.errorHandler; } });
+Object.defineProperty(exports, "notFoundHandler", { enumerable: true, get: function () { return error_handler_1.notFoundHandler; } });
+Object.defineProperty(exports, "requestLogger", { enumerable: true, get: function () { return error_handler_1.requestLogger; } });
+var security_1 = require("./security");
+Object.defineProperty(exports, "createHelmetMiddleware", { enumerable: true, get: function () { return security_1.createHelmetMiddleware; } });
+Object.defineProperty(exports, "createApiCorsMiddleware", { enumerable: true, get: function () { return security_1.createApiCorsMiddleware; } });
+Object.defineProperty(exports, "createDashboardCorsMiddleware", { enumerable: true, get: function () { return security_1.createDashboardCorsMiddleware; } });
+Object.defineProperty(exports, "createTimeoutMiddleware", { enumerable: true, get: function () { return security_1.createTimeoutMiddleware; } });
+Object.defineProperty(exports, "buildApiUrl", { enumerable: true, get: function () { return security_1.buildApiUrl; } });
+Object.defineProperty(exports, "buildDashboardUrl", { enumerable: true, get: function () { return security_1.buildDashboardUrl; } });
+var server_startup_1 = require("./server-startup");
+Object.defineProperty(exports, "startServer", { enumerable: true, get: function () { return server_startup_1.startServer; } });
+var dashboard_startup_1 = require("./dashboard-startup");
+Object.defineProperty(exports, "serveDashboard", { enumerable: true, get: function () { return dashboard_startup_1.serveDashboard; } });

package/dist/middleware/security.js

@@ -0,0 +1,78 @@
+"use strict";
+/**
+ * Security middleware and configuration
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createHelmetMiddleware = createHelmetMiddleware;
+exports.createApiCorsMiddleware = createApiCorsMiddleware;
+exports.createDashboardCorsMiddleware = createDashboardCorsMiddleware;
+exports.createTimeoutMiddleware = createTimeoutMiddleware;
+exports.buildApiUrl = buildApiUrl;
+exports.buildDashboardUrl = buildDashboardUrl;
+const helmet_1 = __importDefault(require("helmet"));
+const cors_1 = __importDefault(require("cors"));
+/**
+ * Create Helmet security middleware with Content Security Policy
+ */
+function createHelmetMiddleware(apiUrl) {
+    return (0, helmet_1.default)({
+        contentSecurityPolicy: {
+            directives: {
+                defaultSrc: ["'self'"],
+                connectSrc: ["'self'", apiUrl, 'http://localhost:*', 'http://127.0.0.1:*'],
+                scriptSrc: ["'self'"],
+                imgSrc: ["'self'", 'data:', 'https:'],
+            },
+        },
+    });
+}
+/**
+ * Create CORS middleware for API server
+ */
+function createApiCorsMiddleware(dashboardUrl) {
+    const corsOptions = {
+        origin: process.env.CORS_ORIGIN || dashboardUrl,
+        credentials: true,
+        methods: ['GET', 'POST', 'PUT', 'DELETE', 'OPTIONS'],
+        allowedHeaders: ['Content-Type', 'Authorization'],
+    };
+    return (0, cors_1.default)(corsOptions);
+}
+/**
+ * Create CORS middleware for dashboard (no cross-origin)
+ */
+function createDashboardCorsMiddleware() {
+    const corsOptions = {
+        origin: false, // Don't allow any origin for static assets
+    };
+    return (0, cors_1.default)(corsOptions);
+}
+/**
+ * Request timeout middleware (30 seconds)
+ */
+function createTimeoutMiddleware() {
+    return (req, res, next) => {
+        req.setTimeout(30000);
+        res.setTimeout(30000);
+        next();
+    };
+}
+/**
+ * Build API URL based on config
+ */
+function buildApiUrl(host, port) {
+    const apiHost = host === '0.0.0.0' ? 'localhost' : host;
+    return process.env.API_URL || `http://${apiHost}:${port}`;
+}
+/**
+ * Build dashboard URL based on config
+ */
+function buildDashboardUrl(config) {
+    const dashboardHost = config.dashboard.host === '0.0.0.0'
+        ? 'localhost'
+        : config.dashboard.host;
+    return `http://${dashboardHost}:${config.dashboard.port}`;
+}