@naylence/advanced-security 0.3.5-test.101 → 0.3.6
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/browser/index.js +3438 -1058
- package/dist/browser/index.js.map +1 -1
- package/dist/cjs/browser.js +5 -18
- package/dist/cjs/browser.js.map +1 -1
- package/dist/cjs/index.js +6 -5
- package/dist/cjs/index.js.map +1 -1
- package/dist/cjs/naylence/fame/factory-manifest.js +4 -1
- package/dist/cjs/naylence/fame/factory-manifest.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/ca-service-client.js +15 -9
- package/dist/cjs/naylence/fame/security/cert/ca-service-client.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/ca-service-factory.js +11 -7
- package/dist/cjs/naylence/fame/security/cert/ca-service-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/ca-types.js +7 -2
- package/dist/cjs/naylence/fame/security/cert/ca-types.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/default-ca-service-factory.js +10 -6
- package/dist/cjs/naylence/fame/security/cert/default-ca-service-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/default-ca-service.js +66 -29
- package/dist/cjs/naylence/fame/security/cert/default-ca-service.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/default-certificate-manager-factory.js +16 -12
- package/dist/cjs/naylence/fame/security/cert/default-certificate-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/default-certificate-manager.js +59 -22
- package/dist/cjs/naylence/fame/security/cert/default-certificate-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/grants.js +4 -1
- package/dist/cjs/naylence/fame/security/cert/grants.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/index.js +50 -10
- package/dist/cjs/naylence/fame/security/cert/index.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/internal-ca-service.js +122 -79
- package/dist/cjs/naylence/fame/security/cert/internal-ca-service.js.map +1 -1
- package/dist/cjs/naylence/fame/security/cert/util.js +30 -26
- package/dist/cjs/naylence/fame/security/cert/util.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/channel/channel-encryption-manager-factory.js +14 -10
- package/dist/cjs/naylence/fame/security/encryption/channel/channel-encryption-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/channel/channel-encryption-manager.js +48 -59
- package/dist/cjs/naylence/fame/security/encryption/channel/channel-encryption-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/channel/index.js +7 -2
- package/dist/cjs/naylence/fame/security/encryption/channel/index.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/composite-encryption-manager-factory.js +14 -10
- package/dist/cjs/naylence/fame/security/encryption/composite-encryption-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/composite-encryption-manager.js +11 -7
- package/dist/cjs/naylence/fame/security/encryption/composite-encryption-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/default-secure-channel-manager-factory.js +11 -7
- package/dist/cjs/naylence/fame/security/encryption/default-secure-channel-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/default-secure-channel-manager.js +23 -19
- package/dist/cjs/naylence/fame/security/encryption/default-secure-channel-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/encryption-manager-registry.js +15 -9
- package/dist/cjs/naylence/fame/security/encryption/encryption-manager-registry.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/index.js +15 -6
- package/dist/cjs/naylence/fame/security/encryption/index.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/sealed/index.js +7 -2
- package/dist/cjs/naylence/fame/security/encryption/sealed/index.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/sealed/x25519-encryption-manager-factory.js +12 -8
- package/dist/cjs/naylence/fame/security/encryption/sealed/x25519-encryption-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/encryption/sealed/x25519-encryption-manager.js +30 -26
- package/dist/cjs/naylence/fame/security/encryption/sealed/x25519-encryption-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/security/index.js +10 -5
- package/dist/cjs/naylence/fame/security/index.js.map +1 -1
- package/dist/cjs/naylence/fame/security/keys/index.js +8 -2
- package/dist/cjs/naylence/fame/security/keys/index.js.map +1 -1
- package/dist/cjs/naylence/fame/security/keys/x5c-key-manager-factory.js +13 -9
- package/dist/cjs/naylence/fame/security/keys/x5c-key-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/keys/x5c-key-manager.js +52 -16
- package/dist/cjs/naylence/fame/security/keys/x5c-key-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/security/register-advanced-security-factories.js +45 -36
- package/dist/cjs/naylence/fame/security/register-advanced-security-factories.js.map +1 -1
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-signer-factory.js +43 -6
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-signer-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-verifier-factory.js +12 -8
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-verifier-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-verifier.js +70 -33
- package/dist/cjs/naylence/fame/security/signing/eddsa-envelope-verifier.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-helper.js +13 -8
- package/dist/cjs/naylence/fame/stickiness/aft-helper.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-load-balancer-stickiness-manager-factory.js +16 -12
- package/dist/cjs/naylence/fame/stickiness/aft-load-balancer-stickiness-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-load-balancer-stickiness-manager.js +14 -10
- package/dist/cjs/naylence/fame/stickiness/aft-load-balancer-stickiness-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-model.js +14 -6
- package/dist/cjs/naylence/fame/stickiness/aft-model.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-replica-stickiness-manager-factory.js +16 -12
- package/dist/cjs/naylence/fame/stickiness/aft-replica-stickiness-manager-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-replica-stickiness-manager.js +18 -13
- package/dist/cjs/naylence/fame/stickiness/aft-replica-stickiness-manager.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-signer.js +30 -23
- package/dist/cjs/naylence/fame/stickiness/aft-signer.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-utils.js +8 -3
- package/dist/cjs/naylence/fame/stickiness/aft-utils.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/aft-verifier.js +28 -21
- package/dist/cjs/naylence/fame/stickiness/aft-verifier.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/index.js +39 -10
- package/dist/cjs/naylence/fame/stickiness/index.js.map +1 -1
- package/dist/cjs/naylence/fame/stickiness/stickiness-mode.js +7 -3
- package/dist/cjs/naylence/fame/stickiness/stickiness-mode.js.map +1 -1
- package/dist/cjs/naylence/fame/welcome/advanced-welcome-service-factory.js +18 -14
- package/dist/cjs/naylence/fame/welcome/advanced-welcome-service-factory.js.map +1 -1
- package/dist/cjs/naylence/fame/welcome/advanced-welcome-service.js +18 -14
- package/dist/cjs/naylence/fame/welcome/advanced-welcome-service.js.map +1 -1
- package/dist/cjs/naylence/fame/welcome/index.js +8 -2
- package/dist/cjs/naylence/fame/welcome/index.js.map +1 -1
- package/dist/cjs/plugin.js +10 -8
- package/dist/cjs/plugin.js.map +1 -1
- package/dist/esm/browser.js +2 -18
- package/dist/esm/browser.js.map +1 -1
- package/dist/esm/index.js +0 -2
- package/dist/esm/index.js.map +1 -1
- package/dist/esm/naylence/fame/security/cert/default-certificate-manager-factory.js +2 -2
- package/dist/esm/naylence/fame/security/cert/default-certificate-manager-factory.js.map +1 -1
- package/dist/esm/naylence/fame/security/cert/default-certificate-manager.js +1 -1
- package/dist/esm/naylence/fame/security/cert/default-certificate-manager.js.map +1 -1
- package/dist/esm/naylence/fame/security/cert/internal-ca-service.js +1 -1
- package/dist/esm/naylence/fame/security/cert/internal-ca-service.js.map +1 -1
- package/dist/esm/naylence/fame/security/cert/util.js +1 -1
- package/dist/esm/naylence/fame/security/cert/util.js.map +1 -1
- package/dist/esm/naylence/fame/security/encryption/channel/channel-encryption-manager.js +12 -27
- package/dist/esm/naylence/fame/security/encryption/channel/channel-encryption-manager.js.map +1 -1
- package/dist/esm/naylence/fame/security/register-advanced-security-factories.js +1 -28
- package/dist/esm/naylence/fame/security/register-advanced-security-factories.js.map +1 -1
- package/dist/esm/plugin.js +0 -2
- package/dist/esm/plugin.js.map +1 -1
- package/dist/types/browser.d.ts +1 -17
- package/dist/types/browser.d.ts.map +1 -1
- package/dist/types/index.d.ts +0 -1
- package/dist/types/index.d.ts.map +1 -1
- package/dist/types/naylence/fame/security/cert/default-certificate-manager-factory.d.ts +3 -3
- package/dist/types/naylence/fame/security/cert/default-certificate-manager-factory.d.ts.map +1 -1
- package/dist/types/naylence/fame/security/cert/default-certificate-manager.d.ts +1 -1
- package/dist/types/naylence/fame/security/cert/default-certificate-manager.d.ts.map +1 -1
- package/dist/types/naylence/fame/security/encryption/channel/channel-encryption-manager.d.ts.map +1 -1
- package/dist/types/naylence/fame/security/register-advanced-security-factories.d.ts.map +1 -1
- package/dist/types/plugin.d.ts.map +1 -1
- package/package.json +6 -6
- package/dist/cjs/version.js +0 -8
- package/dist/cjs/version.js.map +0 -1
- package/dist/esm/version.js +0 -8
- package/dist/esm/version.js.map +0 -1
- package/dist/types/version.d.ts +0 -6
- package/dist/types/version.d.ts.map +0 -1
|
@@ -1,34 +1,47 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
1
|
+
"use strict";
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || (function () {
|
|
19
|
+
var ownKeys = function(o) {
|
|
20
|
+
ownKeys = Object.getOwnPropertyNames || function (o) {
|
|
21
|
+
var ar = [];
|
|
22
|
+
for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
|
|
23
|
+
return ar;
|
|
24
|
+
};
|
|
25
|
+
return ownKeys(o);
|
|
26
|
+
};
|
|
27
|
+
return function (mod) {
|
|
28
|
+
if (mod && mod.__esModule) return mod;
|
|
29
|
+
var result = {};
|
|
30
|
+
if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
|
|
31
|
+
__setModuleDefault(result, mod);
|
|
32
|
+
return result;
|
|
33
|
+
};
|
|
34
|
+
})();
|
|
35
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
36
|
+
exports.registerAdvancedSecurityFactories = registerAdvancedSecurityFactories;
|
|
37
|
+
const factory_1 = require("@naylence/factory");
|
|
38
|
+
const factory_manifest_js_1 = require("../factory-manifest.js");
|
|
39
|
+
const encryption_manager_registry_js_1 = require("./encryption/encryption-manager-registry.js");
|
|
4
40
|
const SECURITY_PREFIX = "./security/";
|
|
5
|
-
const SECURITY_MODULES = MODULES.filter((spec) => spec.startsWith(SECURITY_PREFIX));
|
|
6
|
-
const EXTRA_MODULES = MODULES.filter((spec) => !spec.startsWith(SECURITY_PREFIX));
|
|
7
|
-
const NODE_ONLY_MODULES = new Set([
|
|
8
|
-
"./security/cert/default-ca-service-factory.js",
|
|
9
|
-
"./security/cert/default-certificate-manager-factory.js",
|
|
10
|
-
]);
|
|
41
|
+
const SECURITY_MODULES = factory_manifest_js_1.MODULES.filter((spec) => spec.startsWith(SECURITY_PREFIX));
|
|
42
|
+
const EXTRA_MODULES = factory_manifest_js_1.MODULES.filter((spec) => !spec.startsWith(SECURITY_PREFIX));
|
|
11
43
|
const registeredModules = new Set();
|
|
12
44
|
const inflightModules = new Map();
|
|
13
|
-
const browserSkippedModules = new Set();
|
|
14
|
-
function isNodeEnvironment() {
|
|
15
|
-
return (typeof process !== "undefined" &&
|
|
16
|
-
typeof process.release !== "undefined" &&
|
|
17
|
-
process.release?.name === "node");
|
|
18
|
-
}
|
|
19
|
-
function shouldSkipModule(spec) {
|
|
20
|
-
if (isNodeEnvironment()) {
|
|
21
|
-
return false;
|
|
22
|
-
}
|
|
23
|
-
if (!NODE_ONLY_MODULES.has(spec)) {
|
|
24
|
-
return false;
|
|
25
|
-
}
|
|
26
|
-
if (!browserSkippedModules.has(spec)) {
|
|
27
|
-
console.warn("[advanced-security:factory-manifest] skipped browser-incompatible module", spec);
|
|
28
|
-
browserSkippedModules.add(spec);
|
|
29
|
-
}
|
|
30
|
-
return true;
|
|
31
|
-
}
|
|
32
45
|
function resolveModuleCandidates(spec) {
|
|
33
46
|
const base = spec.startsWith("./") ? `../${spec.slice(2)}` : spec;
|
|
34
47
|
if (base.endsWith(".js")) {
|
|
@@ -40,7 +53,7 @@ async function registerModule(spec, registrar) {
|
|
|
40
53
|
const candidates = resolveModuleCandidates(spec);
|
|
41
54
|
for (const candidate of candidates) {
|
|
42
55
|
try {
|
|
43
|
-
const mod = await
|
|
56
|
+
const mod = await Promise.resolve(`${candidate}`).then(s => __importStar(require(s)));
|
|
44
57
|
const meta = mod.FACTORY_META;
|
|
45
58
|
const Ctor = mod.default;
|
|
46
59
|
if (!meta?.base || !meta?.key || typeof Ctor !== "function") {
|
|
@@ -103,17 +116,13 @@ async function registerModules(modules, registrar) {
|
|
|
103
116
|
if (modules.length === 0) {
|
|
104
117
|
return 0;
|
|
105
118
|
}
|
|
106
|
-
const
|
|
107
|
-
if (eligibleModules.length === 0) {
|
|
108
|
-
return 0;
|
|
109
|
-
}
|
|
110
|
-
const results = await Promise.all(eligibleModules.map((spec) => registerModuleOnce(spec, registrar)));
|
|
119
|
+
const results = await Promise.all(modules.map((spec) => registerModuleOnce(spec, registrar)));
|
|
111
120
|
return results.reduce((count, registered) => (registered ? count + 1 : count), 0);
|
|
112
121
|
}
|
|
113
|
-
|
|
122
|
+
async function registerAdvancedSecurityFactories(registrar = factory_1.Registry, options) {
|
|
114
123
|
const newlyRegisteredSecurity = await registerModules(SECURITY_MODULES, registrar);
|
|
115
124
|
if (newlyRegisteredSecurity > 0) {
|
|
116
|
-
getEncryptionManagerFactoryRegistry().forceRediscovery();
|
|
125
|
+
(0, encryption_manager_registry_js_1.getEncryptionManagerFactoryRegistry)().forceRediscovery();
|
|
117
126
|
}
|
|
118
127
|
if (options?.includeExtras === true) {
|
|
119
128
|
await registerModules(EXTRA_MODULES, registrar);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"register-advanced-security-factories.js","sourceRoot":"","sources":["../../../../../src/naylence/fame/security/register-advanced-security-factories.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"register-advanced-security-factories.js","sourceRoot":"","sources":["../../../../../src/naylence/fame/security/register-advanced-security-factories.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA0JA,8EAgBC;AAzKD,+CAA6C;AAE7C,gEAAyE;AACzE,gGAAkG;AAclG,MAAM,eAAe,GAAG,aAAsB,CAAC;AAC/C,MAAM,gBAAgB,GAAG,6BAAO,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAC/C,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,CACjC,CAAC;AACF,MAAM,aAAa,GAAG,6BAAO,CAAC,MAAM,CAClC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,CAC5C,CAAC;AAEF,MAAM,iBAAiB,GAAG,IAAI,GAAG,EAAqB,CAAC;AACvD,MAAM,eAAe,GAAG,IAAI,GAAG,EAAuC,CAAC;AAEvE,SAAS,uBAAuB,CAAC,IAAuB;IACtD,MAAM,IAAI,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IAElE,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,KAAK,CAAC,EAAE,IAAI,CAAC,CAAC;IAC/C,CAAC;IAED,OAAO,CAAC,IAAI,CAAC,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,cAAc,CAC3B,IAAuB,EACvB,SAA2B;IAE3B,MAAM,UAAU,GAAG,uBAAuB,CAAC,IAAI,CAAC,CAAC;IAEjD,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;QACnC,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,yBAAa,SAAS,uCAAC,CAAC;YACpC,MAAM,IAAI,GAAI,GAA+B,CAAC,YAEjC,CAAC;YACd,MAAM,IAAI,GAAI,GAA+B,CAAC,OAEjC,CAAC;YAEd,IAAI,CAAC,IAAI,EAAE,IAAI,IAAI,CAAC,IAAI,EAAE,GAAG,IAAI,OAAO,IAAI,KAAK,UAAU,EAAE,CAAC;gBAC5D,OAAO,CAAC,IAAI,CAAC,gCAAgC,EAAE,IAAI,EAAE;oBACnD,IAAI;oBACJ,OAAO,EAAE,OAAO,IAAI,KAAK,UAAU;iBACpC,CAAC,CAAC;gBACH,OAAO,CAAC,IAAI,CACV,8CAA8C,EAC9C,IAAI,EACJ,+CAA+C,CAChD,CAAC;gBACF,OAAO,KAAK,CAAC;YACf,CAAC;YAED,MAAM,EAAE,IAAI,EAAE,GAAG,EAAE,GAAG,QAAQ,EAAE,GAAG,IAAI,CAAC;YACxC,MAAM,aAAa,GACjB,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAE1D,0FAA0F;YAC1F,SAAS,CAAC,eAAe,CAAC,IAAI,EAAE,GAAG,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC;YAC1D,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACvE,MAAM,cAAc,GAClB,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAC;gBACtC,OAAO,CAAC,QAAQ,CAAC,sBAAsB,CAAC;gBACxC,OAAO,CAAC,QAAQ,CAAC,wBAAwB,CAAC,CAAC;YAE7C,MAAM,eAAe,GAAG,SAAS,KAAK,UAAU,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YACxE,IAAI,CAAC,cAAc,IAAI,eAAe,EAAE,CAAC;gBACvC,OAAO,CAAC,IAAI,CAAC,oCAAoC,EAAE;oBACjD,IAAI;oBACJ,SAAS;oBACT,OAAO;iBACR,CAAC,CAAC;gBACH,OAAO,CAAC,IAAI,CACV,8CAA8C,EAC9C,IAAI,EACJ,GAAG,EACH,OAAO,CACR,CAAC;gBACF,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,KAAK,UAAU,kBAAkB,CAC/B,IAAuB,EACvB,SAA2B;IAE3B,IAAI,iBAAiB,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;QAChC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,QAAQ,GAAG,eAAe,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC3C,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,MAAM,YAAY,GAAG,CAAC,KAAK,IAAI,EAAE;QAC/B,MAAM,UAAU,GAAG,MAAM,cAAc,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;QACzD,IAAI,UAAU,EAAE,CAAC;YACf,iBAAiB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC9B,CAAC;QACD,OAAO,UAAU,CAAC;IACpB,CAAC,CAAC,EAAE,CAAC;IAEL,eAAe,CAAC,GAAG,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;IAExC,IAAI,CAAC;QACH,OAAO,MAAM,YAAY,CAAC;IAC5B,CAAC;YAAS,CAAC;QACT,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IAC/B,CAAC;AACH,CAAC;AAED,KAAK,UAAU,eAAe,CAC5B,OAAqC,EACrC,SAA2B;IAE3B,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,CAAC,CAAC;IACX,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAC/B,OAAO,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,kBAAkB,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC,CAC3D,CAAC;IACF,OAAO,OAAO,CAAC,MAAM,CACnB,CAAC,KAAK,EAAE,UAAU,EAAE,EAAE,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,EACvD,CAAC,CACF,CAAC;AACJ,CAAC;AAMM,KAAK,UAAU,iCAAiC,CACrD,YAA8B,kBAAQ,EACtC,OAAkD;IAElD,MAAM,uBAAuB,GAAG,MAAM,eAAe,CACnD,gBAAgB,EAChB,SAAS,CACV,CAAC;IAEF,IAAI,uBAAuB,GAAG,CAAC,EAAE,CAAC;QAChC,IAAA,oEAAmC,GAAE,CAAC,gBAAgB,EAAE,CAAC;IAC3D,CAAC;IAED,IAAI,OAAO,EAAE,aAAa,KAAK,IAAI,EAAE,CAAC;QACpC,MAAM,eAAe,CAAC,aAAa,EAAE,SAAS,CAAC,CAAC;IAClD,CAAC;AACH,CAAC"}
|
|
@@ -1,6 +1,42 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
1
|
+
"use strict";
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || (function () {
|
|
19
|
+
var ownKeys = function(o) {
|
|
20
|
+
ownKeys = Object.getOwnPropertyNames || function (o) {
|
|
21
|
+
var ar = [];
|
|
22
|
+
for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
|
|
23
|
+
return ar;
|
|
24
|
+
};
|
|
25
|
+
return ownKeys(o);
|
|
26
|
+
};
|
|
27
|
+
return function (mod) {
|
|
28
|
+
if (mod && mod.__esModule) return mod;
|
|
29
|
+
var result = {};
|
|
30
|
+
if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
|
|
31
|
+
__setModuleDefault(result, mod);
|
|
32
|
+
return result;
|
|
33
|
+
};
|
|
34
|
+
})();
|
|
35
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
36
|
+
exports.AdvancedEdDSAEnvelopeSignerFactory = exports.FACTORY_META = void 0;
|
|
37
|
+
const runtime_1 = require("@naylence/runtime");
|
|
38
|
+
exports.FACTORY_META = {
|
|
39
|
+
base: runtime_1.ENVELOPE_SIGNER_FACTORY_BASE_TYPE,
|
|
4
40
|
key: "EdDSAEnvelopeSigner",
|
|
5
41
|
isDefault: true,
|
|
6
42
|
priority: 100,
|
|
@@ -8,11 +44,11 @@ export const FACTORY_META = {
|
|
|
8
44
|
let eddsaEnvelopeSignerModulePromise = null;
|
|
9
45
|
async function getEdDSAEnvelopeSignerModule() {
|
|
10
46
|
if (!eddsaEnvelopeSignerModulePromise) {
|
|
11
|
-
eddsaEnvelopeSignerModulePromise =
|
|
47
|
+
eddsaEnvelopeSignerModulePromise = Promise.resolve().then(() => __importStar(require("@naylence/runtime/naylence/fame/security/signing/eddsa-envelope-signer.js")));
|
|
12
48
|
}
|
|
13
49
|
return eddsaEnvelopeSignerModulePromise;
|
|
14
50
|
}
|
|
15
|
-
|
|
51
|
+
class AdvancedEdDSAEnvelopeSignerFactory extends runtime_1.EnvelopeSignerFactory {
|
|
16
52
|
constructor() {
|
|
17
53
|
super(...arguments);
|
|
18
54
|
this.type = "EdDSAEnvelopeSigner";
|
|
@@ -30,5 +66,6 @@ export class AdvancedEdDSAEnvelopeSignerFactory extends EnvelopeSignerFactory {
|
|
|
30
66
|
return new EdDSAEnvelopeSigner(resolved);
|
|
31
67
|
}
|
|
32
68
|
}
|
|
33
|
-
|
|
69
|
+
exports.AdvancedEdDSAEnvelopeSignerFactory = AdvancedEdDSAEnvelopeSignerFactory;
|
|
70
|
+
exports.default = AdvancedEdDSAEnvelopeSignerFactory;
|
|
34
71
|
//# sourceMappingURL=eddsa-envelope-signer-factory.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-signer-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":"AACA
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-signer-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-signer-factory.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AACA,+CAI2B;AAQd,QAAA,YAAY,GAAG;IAC1B,IAAI,EAAE,2CAAiC;IACvC,GAAG,EAAE,qBAAqB;IAC1B,SAAS,EAAE,IAAI;IACf,QAAQ,EAAE,GAAG;CACL,CAAC;AAKX,IAAI,gCAAgC,GAClC,IAAI,CAAC;AAEP,KAAK,UAAU,4BAA4B;IACzC,IAAI,CAAC,gCAAgC,EAAE,CAAC;QACtC,gCAAgC,qDAC9B,2EAA2E,GAC5E,CAAC;IACJ,CAAC;IAED,OAAO,gCAAgC,CAAC;AAC1C,CAAC;AAED,MAAa,kCAAmC,SAAQ,+BAAgD;IAAxG;;QACkB,SAAI,GAAG,qBAAqB,CAAC;QAC7B,cAAS,GAAG,IAAI,CAAC;QACjB,aAAQ,GAAG,GAAG,CAAC;IAiBjC,CAAC;IAfQ,KAAK,CAAC,MAAM,CACjB,OAAoE,EACpE,OAA2C;QAE3C,MAAM,QAAQ,GAA+B;YAC3C,cAAc,EAAE,OAAO,EAAE,cAAc,IAAI,IAAI;YAC/C,aAAa,EAAE,OAAO,EAAE,aAAa,IAAI,IAAI;YAC7C,aAAa,EAAE,OAAO,EAAE,aAAa;YACrC,KAAK,EAAE,OAAO,EAAE,KAAK;SACtB,CAAC;QAEF,MAAM,EAAE,mBAAmB,EAAE,GAAG,MAAM,4BAA4B,EAAE,CAAC;QAErE,OAAO,IAAI,mBAAmB,CAAC,QAAQ,CAAC,CAAC;IAC3C,CAAC;CACF;AApBD,gFAoBC;AAED,kBAAe,kCAAkC,CAAC"}
|
|
@@ -1,12 +1,15 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.AdvancedEdDSAEnvelopeVerifierFactory = exports.FACTORY_META = void 0;
|
|
4
|
+
const runtime_1 = require("@naylence/runtime");
|
|
5
|
+
const eddsa_envelope_verifier_js_1 = require("./eddsa-envelope-verifier.js");
|
|
6
|
+
exports.FACTORY_META = {
|
|
7
|
+
base: runtime_1.ENVELOPE_VERIFIER_FACTORY_BASE_TYPE,
|
|
5
8
|
key: "EdDSAEnvelopeVerifier",
|
|
6
9
|
isDefault: true,
|
|
7
10
|
priority: 100,
|
|
8
11
|
};
|
|
9
|
-
|
|
12
|
+
class AdvancedEdDSAEnvelopeVerifierFactory extends runtime_1.EnvelopeVerifierFactory {
|
|
10
13
|
constructor() {
|
|
11
14
|
super(...arguments);
|
|
12
15
|
this.type = "EdDSAEnvelopeVerifier";
|
|
@@ -18,10 +21,11 @@ export class AdvancedEdDSAEnvelopeVerifierFactory extends EnvelopeVerifierFactor
|
|
|
18
21
|
throw new Error("EdDSAEnvelopeVerifierFactory requires a key provider");
|
|
19
22
|
}
|
|
20
23
|
const resolved = {
|
|
21
|
-
signingConfig: options.signingConfig ?? signingConfig ?? new SigningConfigClass(),
|
|
24
|
+
signingConfig: options.signingConfig ?? signingConfig ?? new runtime_1.SigningConfigClass(),
|
|
22
25
|
};
|
|
23
|
-
return new EdDSAEnvelopeVerifier(keyProvider, resolved);
|
|
26
|
+
return new eddsa_envelope_verifier_js_1.EdDSAEnvelopeVerifier(keyProvider, resolved);
|
|
24
27
|
}
|
|
25
28
|
}
|
|
26
|
-
|
|
29
|
+
exports.AdvancedEdDSAEnvelopeVerifierFactory = AdvancedEdDSAEnvelopeVerifierFactory;
|
|
30
|
+
exports.default = AdvancedEdDSAEnvelopeVerifierFactory;
|
|
27
31
|
//# sourceMappingURL=eddsa-envelope-verifier-factory.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-verifier-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier-factory.ts"],"names":[],"mappings":"AACA
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-verifier-factory.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier-factory.ts"],"names":[],"mappings":";;;AACA,+CAM2B;AAE3B,6EAIsC;AAMzB,QAAA,YAAY,GAAG;IAC1B,IAAI,EAAE,6CAAmC;IACzC,GAAG,EAAE,uBAAuB;IAC5B,SAAS,EAAE,IAAI;IACf,QAAQ,EAAE,GAAG;CACL,CAAC;AAIX,MAAa,oCAAqC,SAAQ,iCAAoD;IAA9G;;QACkB,SAAI,GAAG,uBAAuB,CAAC;QAC/B,cAAS,GAAG,IAAI,CAAC;QACjB,aAAQ,GAAG,GAAG,CAAC;IAmBjC,CAAC;IAjBQ,KAAK,CAAC,MAAM,CACjB,OAAsE,EACtE,WAAgC,EAChC,aAAoC,EACpC,UAAwC,EAAE;QAE1C,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;QAC1E,CAAC;QAED,MAAM,QAAQ,GAAiC;YAC7C,aAAa,EACX,OAAO,CAAC,aAAa,IAAI,aAAa,IAAI,IAAI,4BAAkB,EAAE;SACrE,CAAC;QAEF,OAAO,IAAI,kDAAqB,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IAC1D,CAAC;CACF;AAtBD,oFAsBC;AAED,kBAAe,oCAAoC,CAAC"}
|
|
@@ -1,11 +1,47 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
1
|
+
"use strict";
|
|
2
|
+
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
3
|
+
if (k2 === undefined) k2 = k;
|
|
4
|
+
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
5
|
+
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
6
|
+
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
7
|
+
}
|
|
8
|
+
Object.defineProperty(o, k2, desc);
|
|
9
|
+
}) : (function(o, m, k, k2) {
|
|
10
|
+
if (k2 === undefined) k2 = k;
|
|
11
|
+
o[k2] = m[k];
|
|
12
|
+
}));
|
|
13
|
+
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
14
|
+
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
15
|
+
}) : function(o, v) {
|
|
16
|
+
o["default"] = v;
|
|
17
|
+
});
|
|
18
|
+
var __importStar = (this && this.__importStar) || (function () {
|
|
19
|
+
var ownKeys = function(o) {
|
|
20
|
+
ownKeys = Object.getOwnPropertyNames || function (o) {
|
|
21
|
+
var ar = [];
|
|
22
|
+
for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
|
|
23
|
+
return ar;
|
|
24
|
+
};
|
|
25
|
+
return ownKeys(o);
|
|
26
|
+
};
|
|
27
|
+
return function (mod) {
|
|
28
|
+
if (mod && mod.__esModule) return mod;
|
|
29
|
+
var result = {};
|
|
30
|
+
if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
|
|
31
|
+
__setModuleDefault(result, mod);
|
|
32
|
+
return result;
|
|
33
|
+
};
|
|
34
|
+
})();
|
|
35
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
36
|
+
exports.EdDSAEnvelopeVerifier = void 0;
|
|
37
|
+
const ed25519_1 = require("@noble/ed25519");
|
|
38
|
+
const sha2_js_1 = require("@noble/hashes/sha2.js");
|
|
39
|
+
const core_1 = require("@naylence/core");
|
|
40
|
+
const runtime_1 = require("@naylence/runtime");
|
|
41
|
+
const eddsa_signer_verifier_js_1 = require("@naylence/runtime/naylence/fame/security/signing/eddsa-signer-verifier.js");
|
|
42
|
+
const eddsa_utils_js_1 = require("@naylence/runtime/naylence/fame/security/signing/eddsa-utils.js");
|
|
43
|
+
const runtime_2 = require("@naylence/runtime");
|
|
44
|
+
const util_js_1 = require("../cert/util.js");
|
|
9
45
|
function assertString(value, field) {
|
|
10
46
|
if (typeof value !== "string" || value.length === 0) {
|
|
11
47
|
throw new Error(`${field} must be a non-empty string`);
|
|
@@ -36,17 +72,17 @@ function encodeBase64Url(value) {
|
|
|
36
72
|
throw new Error("No base64 encoder available in this environment");
|
|
37
73
|
}
|
|
38
74
|
function ensureNobleSha512Fallback() {
|
|
39
|
-
const etcPatch =
|
|
75
|
+
const etcPatch = ed25519_1.etc;
|
|
40
76
|
if (!etcPatch.sha512) {
|
|
41
|
-
etcPatch.sha512 = (message) => sha512(message);
|
|
77
|
+
etcPatch.sha512 = (message) => (0, sha2_js_1.sha512)(message);
|
|
42
78
|
}
|
|
43
79
|
if (!etcPatch.sha512Sync) {
|
|
44
80
|
etcPatch.sha512Sync = (...messages) => {
|
|
45
81
|
if (messages.length === 1) {
|
|
46
|
-
return sha512(messages[0]);
|
|
82
|
+
return (0, sha2_js_1.sha512)(messages[0]);
|
|
47
83
|
}
|
|
48
|
-
const combined =
|
|
49
|
-
return sha512(combined);
|
|
84
|
+
const combined = ed25519_1.etc.concatBytes(...messages);
|
|
85
|
+
return (0, sha2_js_1.sha512)(combined);
|
|
50
86
|
};
|
|
51
87
|
}
|
|
52
88
|
}
|
|
@@ -54,13 +90,13 @@ function normalizeCertificateKey(jwk, signingConfig, trustStorePem) {
|
|
|
54
90
|
if (!Array.isArray(jwk.x5c) || jwk.x5c.length === 0) {
|
|
55
91
|
return null;
|
|
56
92
|
}
|
|
57
|
-
if (signingConfig.signingMaterial !== SigningMaterial.X509_CHAIN) {
|
|
93
|
+
if (signingConfig.signingMaterial !== core_1.SigningMaterial.X509_CHAIN) {
|
|
58
94
|
throw new Error("Certificate keys are disabled by signing policy");
|
|
59
95
|
}
|
|
60
96
|
if (!trustStorePem) {
|
|
61
97
|
throw new Error("FAME_CA_CERTS environment variable must be set to a PEM file containing trusted CA certs when using certificate-based verification");
|
|
62
98
|
}
|
|
63
|
-
const publicKey = publicKeyFromX5c(jwk.x5c, {
|
|
99
|
+
const publicKey = (0, util_js_1.publicKeyFromX5c)(jwk.x5c, {
|
|
64
100
|
enforceNameConstraints: signingConfig.validateCertNameConstraints,
|
|
65
101
|
trustStorePem,
|
|
66
102
|
});
|
|
@@ -81,7 +117,7 @@ async function loadPublicKey(jwk, signingConfig) {
|
|
|
81
117
|
if (typeof candidate !== "string") {
|
|
82
118
|
throw new Error("JWK missing public key material");
|
|
83
119
|
}
|
|
84
|
-
return decodeBase64Url(candidate);
|
|
120
|
+
return (0, eddsa_signer_verifier_js_1.decodeBase64Url)(candidate);
|
|
85
121
|
}
|
|
86
122
|
function hasProcessEnv() {
|
|
87
123
|
return typeof process !== "undefined" && typeof process.env !== "undefined";
|
|
@@ -107,7 +143,7 @@ async function resolveTrustStorePem() {
|
|
|
107
143
|
throw new Error("FAME_CA_CERTS must contain PEM-encoded certificates when running outside of Node.js");
|
|
108
144
|
}
|
|
109
145
|
try {
|
|
110
|
-
const fs = await
|
|
146
|
+
const fs = await Promise.resolve().then(() => __importStar(require("node:fs/promises")));
|
|
111
147
|
const content = await fs.readFile(trimmed, "utf8");
|
|
112
148
|
return content.replace(/\r/gu, "").trim();
|
|
113
149
|
}
|
|
@@ -116,10 +152,10 @@ async function resolveTrustStorePem() {
|
|
|
116
152
|
throw new Error(`Failed to read trust store from ${trimmed}: ${reason}`);
|
|
117
153
|
}
|
|
118
154
|
}
|
|
119
|
-
|
|
155
|
+
class EdDSAEnvelopeVerifier {
|
|
120
156
|
constructor(keyProvider, options = {}) {
|
|
121
157
|
this.keyProvider = keyProvider;
|
|
122
|
-
this.signingConfig = options.signingConfig ?? new SigningConfigClass();
|
|
158
|
+
this.signingConfig = options.signingConfig ?? new runtime_1.SigningConfigClass();
|
|
123
159
|
ensureNobleSha512Fallback();
|
|
124
160
|
}
|
|
125
161
|
async verifyEnvelope(envelope, options = {}) {
|
|
@@ -134,10 +170,10 @@ export class EdDSAEnvelopeVerifier {
|
|
|
134
170
|
throw new Error(`Unknown key id: ${kid}`);
|
|
135
171
|
}
|
|
136
172
|
try {
|
|
137
|
-
validateSigningKey(jwk);
|
|
173
|
+
(0, runtime_2.validateSigningKey)(jwk);
|
|
138
174
|
}
|
|
139
175
|
catch (error) {
|
|
140
|
-
if (error instanceof JWKValidationError) {
|
|
176
|
+
if (error instanceof runtime_2.JWKValidationError) {
|
|
141
177
|
throw new Error(`Key ${kid} is not valid for signing: ${error.message}`);
|
|
142
178
|
}
|
|
143
179
|
throw error;
|
|
@@ -150,8 +186,8 @@ export class EdDSAEnvelopeVerifier {
|
|
|
150
186
|
throw new Error("DataFrame missing payload digest (pd field)");
|
|
151
187
|
}
|
|
152
188
|
const payload = envelope.frame.payload ?? "";
|
|
153
|
-
const payloadString = payload === "" ? "" : canonicalJson(payload);
|
|
154
|
-
const actualDigest = secureDigest(payloadString);
|
|
189
|
+
const payloadString = payload === "" ? "" : (0, eddsa_signer_verifier_js_1.canonicalJson)(payload);
|
|
190
|
+
const actualDigest = (0, runtime_1.secureDigest)(payloadString);
|
|
155
191
|
if (actualDigest !== envelope.frame.pd) {
|
|
156
192
|
throw new Error("Payload digest mismatch in DataFrame");
|
|
157
193
|
}
|
|
@@ -165,18 +201,18 @@ export class EdDSAEnvelopeVerifier {
|
|
|
165
201
|
}
|
|
166
202
|
}
|
|
167
203
|
else {
|
|
168
|
-
trustedDigest = frameDigest(envelope.frame);
|
|
204
|
+
trustedDigest = (0, eddsa_signer_verifier_js_1.frameDigest)(envelope.frame);
|
|
169
205
|
}
|
|
170
206
|
const sid = assertString(jwk.sid, "Signing key missing sid");
|
|
171
|
-
const immutable = canonicalJson(immutableHeaders(envelope));
|
|
172
|
-
const tbs = new Uint8Array(encodeUtf8(sid).length +
|
|
207
|
+
const immutable = (0, eddsa_signer_verifier_js_1.canonicalJson)((0, eddsa_signer_verifier_js_1.immutableHeaders)(envelope));
|
|
208
|
+
const tbs = new Uint8Array((0, eddsa_utils_js_1.encodeUtf8)(sid).length +
|
|
173
209
|
1 +
|
|
174
|
-
encodeUtf8(immutable).length +
|
|
210
|
+
(0, eddsa_utils_js_1.encodeUtf8)(immutable).length +
|
|
175
211
|
1 +
|
|
176
|
-
encodeUtf8(trustedDigest).length);
|
|
177
|
-
const sidBytes = encodeUtf8(sid);
|
|
178
|
-
const immBytes = encodeUtf8(immutable);
|
|
179
|
-
const digestBytes = encodeUtf8(trustedDigest);
|
|
212
|
+
(0, eddsa_utils_js_1.encodeUtf8)(trustedDigest).length);
|
|
213
|
+
const sidBytes = (0, eddsa_utils_js_1.encodeUtf8)(sid);
|
|
214
|
+
const immBytes = (0, eddsa_utils_js_1.encodeUtf8)(immutable);
|
|
215
|
+
const digestBytes = (0, eddsa_utils_js_1.encodeUtf8)(trustedDigest);
|
|
180
216
|
let offset = 0;
|
|
181
217
|
tbs.set(sidBytes, offset);
|
|
182
218
|
offset += sidBytes.length;
|
|
@@ -187,7 +223,7 @@ export class EdDSAEnvelopeVerifier {
|
|
|
187
223
|
tbs[offset] = 0x1f;
|
|
188
224
|
offset += 1;
|
|
189
225
|
tbs.set(digestBytes, offset);
|
|
190
|
-
const signatureBytes = decodeBase64Url(signatureValue);
|
|
226
|
+
const signatureBytes = (0, eddsa_signer_verifier_js_1.decodeBase64Url)(signatureValue);
|
|
191
227
|
if (signatureBytes.length !== 64) {
|
|
192
228
|
throw new Error("Signature must be 64 bytes for Ed25519");
|
|
193
229
|
}
|
|
@@ -195,11 +231,12 @@ export class EdDSAEnvelopeVerifier {
|
|
|
195
231
|
if (publicKey.length !== 32) {
|
|
196
232
|
throw new Error("Ed25519 public key must be 32 bytes");
|
|
197
233
|
}
|
|
198
|
-
const valid = await verify(signatureBytes, tbs, publicKey);
|
|
234
|
+
const valid = await (0, ed25519_1.verify)(signatureBytes, tbs, publicKey);
|
|
199
235
|
if (!valid) {
|
|
200
236
|
throw new Error("Envelope signature verification failed");
|
|
201
237
|
}
|
|
202
238
|
return true;
|
|
203
239
|
}
|
|
204
240
|
}
|
|
241
|
+
exports.EdDSAEnvelopeVerifier = EdDSAEnvelopeVerifier;
|
|
205
242
|
//# sourceMappingURL=eddsa-envelope-verifier.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"eddsa-envelope-verifier.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":"AAAA,
|
|
1
|
+
{"version":3,"file":"eddsa-envelope-verifier.js","sourceRoot":"","sources":["../../../../../../src/naylence/fame/security/signing/eddsa-envelope-verifier.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,4CAAsD;AACtD,mDAA+C;AAE/C,yCAAiD;AACjD,+CAI2B;AAC3B,wHAKmF;AACnF,oGAA6F;AAC7F,+CAA2E;AAC3E,6CAAmD;AAanD,SAAS,YAAY,CAAC,KAAc,EAAE,KAAa;IACjD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,6BAA6B,CAAC,CAAC;IACzD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,WAAW,CAAC,KAA4B;IAC/C,OAAQ,KAA2B,CAAC,IAAI,KAAK,MAAM,CAAC;AACtD,CAAC;AAED,SAAS,eAAe,CAAC,KAAiB;IACxC,IAAI,OAAO,MAAM,KAAK,WAAW,EAAE,CAAC;QAClC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC;aACtB,QAAQ,CAAC,QAAQ,CAAC;aAClB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzB,CAAC;IAED,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,IAAI,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC;IAED,IAAI,OAAO,IAAI,KAAK,UAAU,EAAE,CAAC;QAC/B,OAAO,IAAI,CAAC,MAAM,CAAC;aAChB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACzB,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;AACrE,CAAC;AAED,SAAS,yBAAyB;IAChC,MAAM,QAAQ,GAAG,aAGhB,CAAC;IAEF,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;QACrB,QAAQ,CAAC,MAAM,GAAG,CAAC,OAAmB,EAAE,EAAE,CAAC,IAAA,gBAAM,EAAC,OAAO,CAAC,CAAC;IAC7D,CAAC;IAED,IAAI,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC;QACzB,QAAQ,CAAC,UAAU,GAAG,CAAC,GAAG,QAAsB,EAAc,EAAE;YAC9D,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC1B,OAAO,IAAA,gBAAM,EAAC,QAAQ,CAAC,CAAC,CAAE,CAAC,CAAC;YAC9B,CAAC;YAED,MAAM,QAAQ,GAAG,aAAK,CAAC,WAAW,CAAC,GAAG,QAAQ,CAAC,CAAC;YAChD,OAAO,IAAA,gBAAM,EAAC,QAAQ,CAAC,CAAC;QAC1B,CAAC,CAAC;IACJ,CAAC;AACH,CAAC;AAED,SAAS,uBAAuB,CAC9B,GAAgB,EAChB,aAA4B,EAC5B,aAA4B;IAE5B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,aAAa,CAAC,eAAe,KAAK,sBAAe,CAAC,UAAU,EAAE,CAAC;QACjE,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;IACrE,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CACb,oIAAoI,CACrI,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,IAAA,0BAAgB,EAAC,GAAG,CAAC,GAAe,EAAE;QACtD,sBAAsB,EAAE,aAAa,CAAC,2BAA2B;QACjE,aAAa;KACd,CAAC,CAAC;IAEH,IAAI,SAAS,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;QAC5B,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;IACzE,CAAC;IAED,OAAO,eAAe,CAAC,SAAS,CAAC,CAAC;AACpC,CAAC;AAED,KAAK,UAAU,aAAa,CAC1B,GAAgB,EAChB,aAA4B;IAE5B,MAAM,aAAa,GAAG,MAAM,oBAAoB,EAAE,CAAC;IACnD,MAAM,cAAc,GAAG,uBAAuB,CAC5C,GAAG,EACH,aAAa,EACb,aAAa,CACd,CAAC;IAEF,MAAM,SAAS,GACb,cAAc;QACd,CAAC,OAAO,GAAG,CAAC,CAAC,KAAK,QAAQ;YACxB,CAAC,CAAC,GAAG,CAAC,CAAC;YACP,CAAC,CAAC,OAAO,GAAG,CAAC,KAAK,KAAK,QAAQ;gBAC7B,CAAC,CAAC,GAAG,CAAC,KAAK;gBACX,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAEjB,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QAClC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;IACrD,CAAC;IAED,OAAO,IAAA,0CAAe,EAAC,SAAS,CAAC,CAAC;AACpC,CAAC;AAED,SAAS,aAAa;IACpB,OAAO,OAAO,OAAO,KAAK,WAAW,IAAI,OAAO,OAAO,CAAC,GAAG,KAAK,WAAW,CAAC;AAC9E,CAAC;AAED,SAAS,aAAa;IACpB,OAAO,CACL,OAAO,OAAO,KAAK,WAAW;QAC9B,OAAO,OAAO,CAAC,OAAO,KAAK,WAAW;QACtC,OAAO,CAAC,OAAO,EAAE,IAAI,KAAK,MAAM,CACjC,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,oBAAoB;IACjC,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC;QACrB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,EAAE,aAAa,IAAI,IAAI,CAAC;IACpD,IAAI,CAAC,QAAQ,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC9C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,OAAO,GAAG,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IACpD,IAAI,OAAO,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;QACrC,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CACb,qFAAqF,CACtF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC;QACH,MAAM,EAAE,GAAG,wDAAa,kBAAkB,GAAC,CAAC;QAC5C,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QACnD,OAAO,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IAC5C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,MAAM,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACtE,MAAM,IAAI,KAAK,CAAC,mCAAmC,OAAO,KAAK,MAAM,EAAE,CAAC,CAAC;IAC3E,CAAC;AACH,CAAC;AAMD,MAAa,qBAAqB;IAKhC,YACE,WAAwB,EACxB,UAAwC,EAAE;QAE1C,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;QAC/B,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,IAAI,4BAAkB,EAAE,CAAC;QACvE,yBAAyB,EAAE,CAAC;IAC9B,CAAC;IAEM,KAAK,CAAC,cAAc,CACzB,QAAsB,EACtB,UAAwD,EAAE;QAE1D,MAAM,eAAe,GAAG,QAAQ,CAAC,GAAG,EAAE,GAAG,CAAC;QAC1C,IAAI,CAAC,eAAe,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,GAAG,GAAG,YAAY,CACtB,eAAe,CAAC,GAAG,EACnB,gCAAgC,CACjC,CAAC;QACF,MAAM,cAAc,GAAG,YAAY,CACjC,eAAe,CAAC,GAAG,EACnB,gCAAgC,CACjC,CAAC;QAEF,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAuB,CAAC;QACvE,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,EAAE,CAAC,CAAC;QAC5C,CAAC;QAED,IAAI,CAAC;YACH,IAAA,4BAAkB,EAAC,GAAG,CAAC,CAAC;QAC1B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,4BAAkB,EAAE,CAAC;gBACxC,MAAM,IAAI,KAAK,CACb,OAAO,GAAG,8BAA8B,KAAK,CAAC,OAAO,EAAE,CACxD,CAAC;YACJ,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;QAED,MAAM,YAAY,GAAG,OAAO,CAAC,YAAY,IAAI,IAAI,CAAC;QAElD,IAAI,aAAqB,CAAC;QAC1B,IAAI,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YAChC,IAAI,YAAY,EAAE,CAAC;gBACjB,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvB,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;gBACjE,CAAC;gBACD,MAAM,OAAO,GAAG,QAAQ,CAAC,KAAK,CAAC,OAAO,IAAI,EAAE,CAAC;gBAC7C,MAAM,aAAa,GAAG,OAAO,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAA,wCAAa,EAAC,OAAO,CAAC,CAAC;gBACnE,MAAM,YAAY,GAAG,IAAA,sBAAY,EAAC,aAAa,CAAC,CAAC;gBACjD,IAAI,YAAY,KAAK,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvC,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;gBAC1D,CAAC;gBACD,aAAa,GAAG,YAAY,CAAC;YAC/B,CAAC;iBAAM,CAAC;gBACN,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,CAAC;oBACvB,MAAM,IAAI,KAAK,CACb,2EAA2E,CAC5E,CAAC;gBACJ,CAAC;gBACD,aAAa,GAAG,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;YACpC,CAAC;QACH,CAAC;aAAM,CAAC;YACN,aAAa,GAAG,IAAA,sCAAW,EAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC9C,CAAC;QAED,MAAM,GAAG,GAAG,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,yBAAyB,CAAC,CAAC;QAC7D,MAAM,SAAS,GAAG,IAAA,wCAAa,EAAC,IAAA,2CAAgB,EAAC,QAAQ,CAAC,CAAC,CAAC;QAC5D,MAAM,GAAG,GAAG,IAAI,UAAU,CACxB,IAAA,2BAAU,EAAC,GAAG,CAAC,CAAC,MAAM;YACpB,CAAC;YACD,IAAA,2BAAU,EAAC,SAAS,CAAC,CAAC,MAAM;YAC5B,CAAC;YACD,IAAA,2BAAU,EAAC,aAAa,CAAC,CAAC,MAAM,CACnC,CAAC;QAEF,MAAM,QAAQ,GAAG,IAAA,2BAAU,EAAC,GAAG,CAAC,CAAC;QACjC,MAAM,QAAQ,GAAG,IAAA,2BAAU,EAAC,SAAS,CAAC,CAAC;QACvC,MAAM,WAAW,GAAG,IAAA,2BAAU,EAAC,aAAa,CAAC,CAAC;QAC9C,IAAI,MAAM,GAAG,CAAC,CAAC;QAEf,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC1B,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC;QAC1B,GAAG,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC;QAEZ,GAAG,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAC1B,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC;QAC1B,GAAG,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC;QAEZ,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QAE7B,MAAM,cAAc,GAAG,IAAA,0CAAe,EAAC,cAAc,CAAC,CAAC;QACvD,IAAI,cAAc,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YACjC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC;QAC/D,IAAI,SAAS,CAAC,MAAM,KAAK,EAAE,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;QACzD,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,IAAA,gBAAM,EAAC,cAAc,EAAE,GAAG,EAAE,SAAS,CAAC,CAAC;QAC3D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAvHD,sDAuHC"}
|
|
@@ -1,8 +1,12 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.DEFAULT_STICKINESS_SECURITY_LEVEL = exports.AFTHelper = void 0;
|
|
4
|
+
exports.createAftHelper = createAftHelper;
|
|
5
|
+
const runtime_1 = require("@naylence/runtime");
|
|
6
|
+
const aft_signer_js_1 = require("./aft-signer.js");
|
|
7
|
+
const stickiness_mode_js_1 = require("./stickiness-mode.js");
|
|
8
|
+
const logger = (0, runtime_1.getLogger)("naylence.fame.stickiness.aft_helper");
|
|
9
|
+
class AFTHelper {
|
|
6
10
|
constructor(options) {
|
|
7
11
|
this.signer = options.signer;
|
|
8
12
|
this.nodeSid = options.nodeSid;
|
|
@@ -63,10 +67,11 @@ export class AFTHelper {
|
|
|
63
67
|
return this.requestStickiness(envelope, { ...options, scope: "sess" });
|
|
64
68
|
}
|
|
65
69
|
}
|
|
66
|
-
|
|
70
|
+
exports.AFTHelper = AFTHelper;
|
|
71
|
+
function createAftHelper(options) {
|
|
67
72
|
const { nodeSid, maxTtlSec = 7200 } = options;
|
|
68
|
-
const signer = createAftSigner(options);
|
|
73
|
+
const signer = (0, aft_signer_js_1.createAftSigner)(options);
|
|
69
74
|
return new AFTHelper({ signer, nodeSid, maxTtlSec });
|
|
70
75
|
}
|
|
71
|
-
|
|
76
|
+
exports.DEFAULT_STICKINESS_SECURITY_LEVEL = stickiness_mode_js_1.StickinessMode.SIGNED_OPTIONAL;
|
|
72
77
|
//# sourceMappingURL=aft-helper.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"aft-helper.js","sourceRoot":"","sources":["../../../../../src/naylence/fame/stickiness/aft-helper.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"aft-helper.js","sourceRoot":"","sources":["../../../../../src/naylence/fame/stickiness/aft-helper.ts"],"names":[],"mappings":";;;AAoHA,0CAIC;AAvHD,+CAA8C;AAG9C,mDAA+E;AAC/E,6DAAsD;AAEtD,MAAM,MAAM,GAAG,IAAA,mBAAS,EAAC,qCAAqC,CAAC,CAAC;AAQhE,MAAa,SAAS;IAKpB,YAAmB,OAIlB;QACC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAC/B,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;IACrC,CAAC;IAEM,KAAK,CAAC,iBAAiB,CAC5B,QAAsB,EACtB,UAAoC,EAAE;QAEtC,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,IAAI,CAAC,SAAS,CAAC;QAChD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,IAAI,CAAC;QACpC,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,IAAI,CAAC;QAExC,IAAI,SAA6B,CAAC;QAClC,IAAI,OAAO,EAAE,SAAS,EAAE,CAAC;YACvB,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;YAC9B,MAAM,CAAC,KAAK,CAAC,6BAA6B,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE,CAAC,CAAC;QACzE,CAAC;QAED,MAAM,WAAW,GAAmB;YAClC,GAAG,EAAE,IAAI,CAAC,OAAO;YACjB,MAAM;YACN,KAAK;YACL,SAAS,EAAE,SAAS,IAAI,IAAI;SAC7B,CAAC;QAEF,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;YAExD,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,OAAO,KAAK,CAAC;YACf,CAAC;YAED,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACnB,QAAQ,CAAC,IAAI,GAAG,EAAE,CAAC;YACrB,CAAC;YAED,IAAI,OAAO,GAAG,QAAQ,CAAC,IAAI,CAAC,GAA0C,CAAC;YACvE,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;gBAC5C,OAAO,GAAG,EAAE,CAAC;gBACb,QAAQ,CAAC,IAAI,CAAC,GAAG,GAAG,OAGnB,CAAC;YACJ,CAAC;YAEA,OAAmC,CAAC,GAAG,GAAG,QAAQ,CAAC;YAEpD,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE;gBACpC,WAAW,EAAE,QAAQ,CAAC,EAAE;gBACxB,OAAO,EAAE,MAAM;gBACf,KAAK;gBACL,cAAc,EAAE,IAAI,CAAC,MAAM,CAAC,aAAa;aAC1C,CAAC,CAAC;YAEH,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE;gBACpC,WAAW,EAAE,QAAQ,CAAC,EAAE;gBACxB,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;aAC9D,CAAC,CAAC;YACH,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAEM,qBAAqB,CAC1B,QAAsB,EACtB,UAAmD,EAAE;QAErD,OAAO,IAAI,CAAC,iBAAiB,CAAC,QAAQ,EAAE,EAAE,GAAG,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;IACzE,CAAC;IAEM,qBAAqB,CAC1B,QAAsB,EACtB,UAAmD,EAAE;QAErD,OAAO,IAAI,CAAC,iBAAiB,CAAC,QAAQ,EAAE,EAAE,GAAG,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;IACzE,CAAC;IAEM,wBAAwB,CAC7B,QAAsB,EACtB,UAAmD,EAAE;QAErD,OAAO,IAAI,CAAC,iBAAiB,CAAC,QAAQ,EAAE,EAAE,GAAG,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;IACzE,CAAC;CACF;AA/FD,8BA+FC;AAMD,SAAgB,eAAe,CAAC,OAA+B;IAC7D,MAAM,EAAE,OAAO,EAAE,SAAS,GAAG,IAAI,EAAE,GAAG,OAAO,CAAC;IAC9C,MAAM,MAAM,GAAG,IAAA,+BAAe,EAAC,OAAO,CAAC,CAAC;IACxC,OAAO,IAAI,SAAS,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,CAAC,CAAC;AACvD,CAAC;AAEY,QAAA,iCAAiC,GAAG,mCAAc,CAAC,eAAe,CAAC"}
|
|
@@ -1,9 +1,12 @@
|
|
|
1
|
-
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.AFTLoadBalancerStickinessManagerFactory = exports.FACTORY_META = void 0;
|
|
4
|
+
const runtime_1 = require("@naylence/runtime");
|
|
5
|
+
const aft_load_balancer_stickiness_manager_js_1 = require("./aft-load-balancer-stickiness-manager.js");
|
|
6
|
+
const aft_verifier_js_1 = require("./aft-verifier.js");
|
|
7
|
+
const stickiness_mode_js_1 = require("./stickiness-mode.js");
|
|
8
|
+
exports.FACTORY_META = {
|
|
9
|
+
base: runtime_1.LOAD_BALANCER_STICKINESS_MANAGER_FACTORY_BASE_TYPE,
|
|
7
10
|
key: "AFTLoadBalancerStickinessManager",
|
|
8
11
|
};
|
|
9
12
|
const DEFAULT_VALUES = {
|
|
@@ -11,7 +14,7 @@ const DEFAULT_VALUES = {
|
|
|
11
14
|
clientEcho: false,
|
|
12
15
|
defaultTtlSec: 30,
|
|
13
16
|
cacheMax: 100000,
|
|
14
|
-
securityLevel: StickinessMode.SIGNED_OPTIONAL,
|
|
17
|
+
securityLevel: stickiness_mode_js_1.StickinessMode.SIGNED_OPTIONAL,
|
|
15
18
|
maxTtlSec: 7200,
|
|
16
19
|
};
|
|
17
20
|
function toBoolean(value, fallback) {
|
|
@@ -26,7 +29,7 @@ function toNumber(value, fallback) {
|
|
|
26
29
|
function normalizeConfig(config) {
|
|
27
30
|
const record = (config ?? {});
|
|
28
31
|
const normalizedSecurity = record.securityLevel
|
|
29
|
-
? normalizeStickinessMode(record.securityLevel)
|
|
32
|
+
? (0, stickiness_mode_js_1.normalizeStickinessMode)(record.securityLevel)
|
|
30
33
|
: DEFAULT_VALUES.securityLevel;
|
|
31
34
|
return {
|
|
32
35
|
...record,
|
|
@@ -39,7 +42,7 @@ function normalizeConfig(config) {
|
|
|
39
42
|
maxTtlSec: toNumber(record.maxTtlSec, DEFAULT_VALUES.maxTtlSec),
|
|
40
43
|
};
|
|
41
44
|
}
|
|
42
|
-
|
|
45
|
+
class AFTLoadBalancerStickinessManagerFactory extends runtime_1.LoadBalancerStickinessManagerFactory {
|
|
43
46
|
constructor() {
|
|
44
47
|
super(...arguments);
|
|
45
48
|
this.type = "AFTLoadBalancerStickinessManager";
|
|
@@ -49,7 +52,7 @@ export class AFTLoadBalancerStickinessManagerFactory extends LoadBalancerStickin
|
|
|
49
52
|
const resolvedConfig = normalizeConfig(config);
|
|
50
53
|
let effectiveVerifier = verifier ?? null;
|
|
51
54
|
if (!effectiveVerifier && keyProvider) {
|
|
52
|
-
effectiveVerifier = createAftVerifier({
|
|
55
|
+
effectiveVerifier = (0, aft_verifier_js_1.createAftVerifier)({
|
|
53
56
|
securityLevel: resolvedConfig.securityLevel ?? DEFAULT_VALUES.securityLevel,
|
|
54
57
|
keyProvider,
|
|
55
58
|
defaultTtlSec: resolvedConfig.defaultTtlSec ?? DEFAULT_VALUES.defaultTtlSec,
|
|
@@ -58,8 +61,9 @@ export class AFTLoadBalancerStickinessManagerFactory extends LoadBalancerStickin
|
|
|
58
61
|
if (!effectiveVerifier) {
|
|
59
62
|
throw new Error("AFTLoadBalancerStickinessManagerFactory requires an AFT verifier or key provider");
|
|
60
63
|
}
|
|
61
|
-
return new AFTLoadBalancerStickinessManager(resolvedConfig, effectiveVerifier);
|
|
64
|
+
return new aft_load_balancer_stickiness_manager_js_1.AFTLoadBalancerStickinessManager(resolvedConfig, effectiveVerifier);
|
|
62
65
|
}
|
|
63
66
|
}
|
|
64
|
-
|
|
67
|
+
exports.AFTLoadBalancerStickinessManagerFactory = AFTLoadBalancerStickinessManagerFactory;
|
|
68
|
+
exports.default = AFTLoadBalancerStickinessManagerFactory;
|
|
65
69
|
//# sourceMappingURL=aft-load-balancer-stickiness-manager-factory.js.map
|
package/dist/cjs/naylence/fame/stickiness/aft-load-balancer-stickiness-manager-factory.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"aft-load-balancer-stickiness-manager-factory.js","sourceRoot":"","sources":["../../../../../src/naylence/fame/stickiness/aft-load-balancer-stickiness-manager-factory.ts"],"names":[],"mappings":"AACA
|
|
1
|
+
{"version":3,"file":"aft-load-balancer-stickiness-manager-factory.js","sourceRoot":"","sources":["../../../../../src/naylence/fame/stickiness/aft-load-balancer-stickiness-manager-factory.ts"],"names":[],"mappings":";;;AACA,+CAI2B;AAG3B,uGAA6F;AAC7F,uDAAsD;AAEtD,6DAA+E;AAalE,QAAA,YAAY,GAAG;IAC1B,IAAI,EAAE,4DAAkD;IACxD,GAAG,EAAE,kCAAkC;CAC/B,CAAC;AAEX,MAAM,cAAc,GAAG;IACrB,OAAO,EAAE,IAAI;IACb,UAAU,EAAE,KAAK;IACjB,aAAa,EAAE,EAAE;IACjB,QAAQ,EAAE,MAAO;IACjB,aAAa,EAAE,mCAAc,CAAC,eAAe;IAC7C,SAAS,EAAE,IAAI;CACP,CAAC;AAEX,SAAS,SAAS,CAAC,KAAc,EAAE,QAAiB;IAClD,OAAO,OAAO,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC;AACvD,CAAC;AAED,SAAS,QAAQ,CAAC,KAAc,EAAE,QAAgB;IAChD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACxD,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,eAAe,CACtB,MAGQ;IAER,MAAM,MAAM,GAAG,CAAC,MAAM,IAAI,EAAE,CAA4B,CAAC;IAEzD,MAAM,kBAAkB,GAAG,MAAM,CAAC,aAAa;QAC7C,CAAC,CAAC,IAAA,4CAAuB,EAAC,MAAM,CAAC,aAAwC,CAAC;QAC1E,CAAC,CAAC,cAAc,CAAC,aAAa,CAAC;IAEjC,OAAO;QACL,GAAG,MAAM;QACT,IAAI,EAAE,kCAAkC;QACxC,OAAO,EAAE,SAAS,CAAC,MAAM,CAAC,OAAO,EAAE,cAAc,CAAC,OAAO,CAAC;QAC1D,UAAU,EAAE,SAAS,CAAC,MAAM,CAAC,UAAU,EAAE,cAAc,CAAC,UAAU,CAAC;QACnE,aAAa,EAAE,QAAQ,CAAC,MAAM,CAAC,aAAa,EAAE,cAAc,CAAC,aAAa,CAAC;QAC3E,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC,QAAQ,EAAE,cAAc,CAAC,QAAQ,CAAC;QAC5D,aAAa,EAAE,kBAAkB;QACjC,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,SAAS,EAAE,cAAc,CAAC,SAAS,CAAC;KACtB,CAAC;AAC9C,CAAC;AAED,MAAa,uCAAwC,SAAQ,8CAA4E;IAAzI;;QACkB,SAAI,GAAG,kCAAkC,CAAC;QAC1C,cAAS,GAAG,KAAK,CAAC;IAkCpC,CAAC;IAhCQ,KAAK,CAAC,MAAM,CACjB,MAGQ,EACR,WAAgC,EAChC,QAA6B;QAE7B,MAAM,cAAc,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;QAE/C,IAAI,iBAAiB,GAAG,QAAQ,IAAI,IAAI,CAAC;QACzC,IAAI,CAAC,iBAAiB,IAAI,WAAW,EAAE,CAAC;YACtC,iBAAiB,GAAG,IAAA,mCAAiB,EAAC;gBACpC,aAAa,EACX,cAAc,CAAC,aAAa,IAAI,cAAc,CAAC,aAAa;gBAC9D,WAAW;gBACX,aAAa,EACX,cAAc,CAAC,aAAa,IAAI,cAAc,CAAC,aAAa;aAC/D,CAAC,CAAC;QACL,CAAC;QAED,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CACb,kFAAkF,CACnF,CAAC;QACJ,CAAC;QAED,OAAO,IAAI,0EAAgC,CACzC,cAAc,EACd,iBAAiB,CAClB,CAAC;IACJ,CAAC;CACF;AApCD,0FAoCC;AAED,kBAAe,uCAAuC,CAAC"}
|