npm - @nextera.one/axis-server-sdk - Versions diffs - 2.3.22 → 2.3.23 - Mend

@nextera.one/axis-server-sdk 2.3.22 → 2.3.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (15) hide show

package/dist/{index-CjHt1HEv.d.ts → index-BOTVLcqR.d.ts} +37 -29
package/dist/{index-OpaG6R6E.d.mts → index-dMZDesmq.d.mts} +37 -29
package/dist/index.d.mts +20 -4
package/dist/index.d.ts +20 -4
package/dist/index.js +70 -3
package/dist/index.js.map +1 -1
package/dist/index.mjs +69 -2
package/dist/index.mjs.map +1 -1
package/dist/sensors/index.d.mts +1 -1
package/dist/sensors/index.d.ts +1 -1
package/dist/sensors/index.js +69 -3
package/dist/sensors/index.js.map +1 -1
package/dist/sensors/index.mjs +68 -2
package/dist/sensors/index.mjs.map +1 -1
package/package.json +1 -1

package/dist/sensors/index.d.mts CHANGED Viewed

@@ -1,4 +1,4 @@
-export { o as AccessProfileResolverSensor, a4 as BodyBudgetSensor, a7 as CapabilityEnforcementSensor, ac as ChunkHashSensor, af as EntropySensor, ah as ExecutionTimeoutSensor, aj as FrameBudgetSensor, ak as FrameHeaderSanitySensor, al as HeaderTLVLimitSensor, ap as IntentAllowlistSensor, as as IntentRegistrySensor, au as LawArticlePresenceMode, av as LawArticlePresenceSensor, aw as LawArticlePresenceSensorOptions, ax as LawEvaluationSensor, aD as ProofPresenceSensor, aE as ProtocolStrictSensor, aG as ReceiptPolicySensor, aL as RiskGateSensor, aM as RiskGateSensorOptions, aO as RiskSignalCollector, aQ as SchemaValidationSensor, aU as StreamScopeSensor, aV as TLVParseSensor, aY as TickAuthCapsuleRef, aZ as TickAuthSensor, a_ as TickAuthSensorOptions, a$ as TickAuthVerifier, ba as TpsSensor, bb as TpsSensorOptions, bc as VarintHardeningSensor } from '../index-OpaG6R6E.mjs';
+export { o as AccessProfileResolverSensor, a4 as BodyBudgetSensor, a7 as CapabilityEnforcementSensor, ac as ChunkHashSensor, af as EntropySensor, ah as ExecutionTimeoutSensor, aj as FrameBudgetSensor, ak as FrameHeaderSanitySensor, al as HeaderTLVLimitSensor, ap as IntentAllowlistSensor, as as IntentRegistrySensor, au as LawArticlePresenceMode, av as LawArticlePresenceSensor, aw as LawArticlePresenceSensorOptions, ax as LawEvaluationSensor, aD as ProofPresenceSensor, aE as ProtocolStrictSensor, aG as ReceiptPolicySensor, aL as RiskGateSensor, aM as RiskGateSensorOptions, aO as RiskSignalCollector, aQ as SchemaValidationSensor, aU as StreamScopeSensor, aV as TLVParseSensor, aY as TickAuthCapsuleRef, aZ as TickAuthSensor, a_ as TickAuthSensorOptions, a$ as TickAuthVerifier, bc as TpsSensor, bd as TpsSensorOptions, be as VarintHardeningSensor } from '../index-dMZDesmq.mjs';
 import '../axis-sensor-BLUemDiZ.mjs';
 import 'zod';
 import '@nextera.one/axis-protocol';

package/dist/sensors/index.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-export { o as AccessProfileResolverSensor, a4 as BodyBudgetSensor, a7 as CapabilityEnforcementSensor, ac as ChunkHashSensor, af as EntropySensor, ah as ExecutionTimeoutSensor, aj as FrameBudgetSensor, ak as FrameHeaderSanitySensor, al as HeaderTLVLimitSensor, ap as IntentAllowlistSensor, as as IntentRegistrySensor, au as LawArticlePresenceMode, av as LawArticlePresenceSensor, aw as LawArticlePresenceSensorOptions, ax as LawEvaluationSensor, aD as ProofPresenceSensor, aE as ProtocolStrictSensor, aG as ReceiptPolicySensor, aL as RiskGateSensor, aM as RiskGateSensorOptions, aO as RiskSignalCollector, aQ as SchemaValidationSensor, aU as StreamScopeSensor, aV as TLVParseSensor, aY as TickAuthCapsuleRef, aZ as TickAuthSensor, a_ as TickAuthSensorOptions, a$ as TickAuthVerifier, ba as TpsSensor, bb as TpsSensorOptions, bc as VarintHardeningSensor } from '../index-CjHt1HEv.js';
+export { o as AccessProfileResolverSensor, a4 as BodyBudgetSensor, a7 as CapabilityEnforcementSensor, ac as ChunkHashSensor, af as EntropySensor, ah as ExecutionTimeoutSensor, aj as FrameBudgetSensor, ak as FrameHeaderSanitySensor, al as HeaderTLVLimitSensor, ap as IntentAllowlistSensor, as as IntentRegistrySensor, au as LawArticlePresenceMode, av as LawArticlePresenceSensor, aw as LawArticlePresenceSensorOptions, ax as LawEvaluationSensor, aD as ProofPresenceSensor, aE as ProtocolStrictSensor, aG as ReceiptPolicySensor, aL as RiskGateSensor, aM as RiskGateSensorOptions, aO as RiskSignalCollector, aQ as SchemaValidationSensor, aU as StreamScopeSensor, aV as TLVParseSensor, aY as TickAuthCapsuleRef, aZ as TickAuthSensor, a_ as TickAuthSensorOptions, a$ as TickAuthVerifier, bc as TpsSensor, bd as TpsSensorOptions, be as VarintHardeningSensor } from '../index-BOTVLcqR.js';
 import '../axis-sensor-BLUemDiZ.js';
 import 'zod';
 import '@nextera.one/axis-protocol';

package/dist/sensors/index.js CHANGED Viewed

@@ -902,7 +902,8 @@ var require_dto_schema_util = __commonJS({
           required: m.options.required,
           maxLen: m.options.maxLen,
           max: m.options.max,
-          scope: m.options.scope
+          scope: m.options.scope,
+          encode: m.options.encode
         };
       });
       const validatorMetas = Reflect.getMetadata(tlv_field_decorator_1.TLV_VALIDATORS_KEY, dto) || [];
@@ -8915,9 +8916,11 @@ var init_axis_observation = __esm({
 });
 // src/security/axis-sensor-chain.service.ts
-var AxisSensorChainService;
+var import_reflect_metadata13, AxisSensorChainService;
 var init_axis_sensor_chain_service = __esm({
   "src/security/axis-sensor-chain.service.ts"() {
+    import_reflect_metadata13 = require("reflect-metadata");
+    init_sensor_decorator();
     init_axis_sensor();
     init_axis_observation();
     AxisSensorChainService = class {
@@ -8960,6 +8963,9 @@ var init_axis_sensor_chain_service = __esm({
       async evaluateSensors(sensors, input, baseDecision) {
         const relevantSensors = [];
         for (const sensor of sensors) {
+          if (!this.matchesProofKind(sensor, input)) {
+            continue;
+          }
           if (!sensor.supports) {
             relevantSensors.push(sensor);
             continue;
@@ -9059,6 +9065,28 @@ var init_axis_sensor_chain_service = __esm({
           } : void 0
         };
       }
+      matchesProofKind(sensor, input) {
+        const meta = Reflect.getMetadata(
+          SENSOR_METADATA_KEY,
+          sensor.constructor
+        );
+        if (!meta || meta === true) return true;
+        const currentProofKinds = this.normalizeProofKinds(
+          input.metadata?.proofKind ?? input.requiredProof
+        );
+        const excludedProofKinds = this.normalizeProofKinds(meta.excludeProofKind);
+        if (excludedProofKinds.length > 0 && currentProofKinds.some((kind) => excludedProofKinds.includes(kind))) {
+          return false;
+        }
+        const requiredProofKinds = this.normalizeProofKinds(meta.proofKind);
+        if (requiredProofKinds.length === 0) return true;
+        return currentProofKinds.some((kind) => requiredProofKinds.includes(kind));
+      }
+      normalizeProofKinds(value) {
+        if (value === void 0 || value === null) return [];
+        const items = Array.isArray(value) ? value : [value];
+        return items.map((item) => String(item).trim().toUpperCase()).filter(Boolean);
+      }
     };
   }
 });
@@ -9432,10 +9460,11 @@ var init_timeline_store = __esm({
 });
 // src/utils/axis-tlv-codec.ts
-function encodeAxisTlvDto(dtoClass, data) {
+function encodeAxisTlvDto(dtoClass, data, context = {}) {
   const schema = (0, import_dto_schema2.extractDtoSchema)(dtoClass);
   const items = schema.fields.flatMap((field) => {
     const value = data[field.name];
+    if (!shouldEncodeField(field, value, data, context)) return [];
     if (value === void 0 || value === null) {
       if (field.required) {
         throw new Error(`Missing required TLV response field: ${field.name}`);
@@ -9446,6 +9475,42 @@ function encodeAxisTlvDto(dtoClass, data) {
   });
   return buildTLVs(items);
 }
+function projectAxisTlvDto(dtoClass, data, context = {}) {
+  const schema = (0, import_dto_schema2.extractDtoSchema)(dtoClass);
+  const result = {};
+  for (const field of schema.fields) {
+    const value = data[field.name];
+    if (!shouldEncodeField(field, value, data, context)) continue;
+    if (value === void 0 || value === null) continue;
+    result[field.name] = value;
+  }
+  return result;
+}
+function shouldEncodeField(field, value, data, context) {
+  const rule = field.encode;
+  if (rule === void 0) return true;
+  if (rule === false) return false;
+  if (rule.onlyRoles?.length && !hasAnyRole(context, rule.onlyRoles)) {
+    return false;
+  }
+  if (rule.exceptRoles?.length && hasAnyRole(context, rule.exceptRoles)) {
+    return false;
+  }
+  if (rule.policy) {
+    const policy = context.policies?.[rule.policy];
+    if (!policy) {
+      throw new Error(`Missing TLV encode policy: ${rule.policy}`);
+    }
+    if (!policy({ field, value, data, context })) {
+      return false;
+    }
+  }
+  return true;
+}
+function hasAnyRole(context, expectedRoles) {
+  const actualRoles = context.roles ?? [];
+  return expectedRoles.some((role) => actualRoles.includes(role));
+}
 function encodeField(field, value) {
   switch (field.kind) {
     case "utf8":
@@ -11192,6 +11257,7 @@ __export(index_exports, {
   parseScope: () => parseScope,
   parseStreamEntries: () => parseStreamEntries,
   projectAt: () => projectAt,
+  projectAxisTlvDto: () => projectAxisTlvDto,
   queryFabric: () => queryFabric,
   recordOccurrence: () => recordOccurrence,
   recordSensor: () => recordSensor,