@open-rlb/nestjs-amqp 1.0.0

package/modules/proxy/proxy.module.js

@@ -0,0 +1,38 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var ProxyModule_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ProxyModule = void 0;
+const axios_1 = require("@nestjs/axios");
+const common_1 = require("@nestjs/common");
+const config_1 = require("@nestjs/config");
+const broker_1 = require("../broker");
+const http_auth_handler_service_1 = require("./services/http-auth-handler.service");
+const http_handler_service_1 = require("./services/http-handler.service");
+const jwt_service_1 = require("./services/jwt.service");
+const websocket_service_1 = require("./services/websocket.service");
+let ProxyModule = ProxyModule_1 = class ProxyModule {
+    static forRoot(providers) {
+        return {
+            module: ProxyModule_1,
+            imports: [],
+            providers: [...(providers || [])],
+            exports: [http_handler_service_1.HttpHandlerService],
+        };
+    }
+};
+exports.ProxyModule = ProxyModule;
+exports.ProxyModule = ProxyModule = ProxyModule_1 = __decorate([
+    (0, common_1.Global)(),
+    (0, common_1.Module)({
+        imports: [config_1.ConfigModule, broker_1.BrokerModule, axios_1.HttpModule],
+        providers: [http_handler_service_1.HttpHandlerService, jwt_service_1.JwtService, http_auth_handler_service_1.HttpAuthHandlerService, websocket_service_1.WebSocketService],
+        exports: [http_handler_service_1.HttpHandlerService]
+    })
+], ProxyModule);
+//# sourceMappingURL=proxy.module.js.map

package/modules/proxy/proxy.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"proxy.module.js","sourceRoot":"","sources":["../../../libs/rlb-nestjs-amqp/src/modules/proxy/proxy.module.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,yCAA2C;AAC3C,2CAAyE;AACzE,2CAA8C;AAC9C,sCAAyC;AACzC,oFAA8E;AAC9E,0EAAqE;AACrE,wDAAoD;AACpD,oEAAgE;AASzD,IAAM,WAAW,mBAAjB,MAAM,WAAW;IAEtB,MAAM,CAAC,OAAO,CAAC,SAAqB;QAElC,OAAO;YACL,MAAM,EAAE,aAAW;YACnB,OAAO,EAAE,EAAE;YACX,SAAS,EAAE,CAAC,GAAG,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC;YACjC,OAAO,EAAE,CAAC,yCAAkB,CAAC;SAC9B,CAAC;IACJ,CAAC;CACF,CAAA;AAXY,kCAAW;sBAAX,WAAW;IANvB,IAAA,eAAM,GAAE;IACR,IAAA,eAAM,EAAC;QACN,OAAO,EAAE,CAAC,qBAAY,EAAE,qBAAY,EAAE,kBAAU,CAAC;QACjD,SAAS,EAAE,CAAC,yCAAkB,EAAE,wBAAU,EAAE,kDAAsB,EAAE,oCAAgB,CAAC;QACrF,OAAO,EAAE,CAAC,yCAAkB,CAAC;KAC9B,CAAC;GACW,WAAW,CAWvB"}

package/modules/proxy/services/acl.service.d.ts

@@ -0,0 +1,4 @@
+export declare const RLB_GTW_ACL_ROLE_SERVICE = "RLB_GTW_ACL_ROLE_SERVICE";
+export interface IAclRoleService {
+    canUserDo(topic: string, action: string, userId: string): Promise<boolean>;
+}

package/modules/proxy/services/acl.service.js

@@ -0,0 +1,5 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RLB_GTW_ACL_ROLE_SERVICE = void 0;
+exports.RLB_GTW_ACL_ROLE_SERVICE = 'RLB_GTW_ACL_ROLE_SERVICE';
+//# sourceMappingURL=acl.service.js.map

package/modules/proxy/services/acl.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"acl.service.js","sourceRoot":"","sources":["../../../../libs/rlb-nestjs-amqp/src/modules/proxy/services/acl.service.ts"],"names":[],"mappings":";;;AAAa,QAAA,wBAAwB,GAAG,0BAA0B,CAAC"}

package/modules/proxy/services/http-auth-handler.service.d.ts

@@ -0,0 +1,19 @@
+import { Request } from 'express';
+import { ProcessedAuthData } from '..';
+import { HandlerAuthConfig } from '../../broker/config/handler-auth.config';
+import { PathDefinition } from '../config/path-definition.config';
+import { IAclRoleService } from './acl.service';
+import { JwtService } from './jwt.service';
+export declare class HttpAuthHandlerService {
+    private readonly aclRoleService;
+    private readonly authProviders;
+    private readonly jwtService;
+    constructor(aclRoleService: IAclRoleService, authProviders: HandlerAuthConfig[], jwtService: JwtService);
+    processAuthData(req: Request, path: PathDefinition): Promise<ProcessedAuthData>;
+    checkJwt(req: Request, authConfig: HandlerAuthConfig): Promise<ProcessedAuthData>;
+    checkBasicAuth(req: Request, authConfig: HandlerAuthConfig): Promise<ProcessedAuthData>;
+    checkStringCompare(req: Request, authConfig: HandlerAuthConfig): Promise<ProcessedAuthData>;
+    checkRoles(data: {
+        [key: string]: any;
+    }, path: PathDefinition): Promise<boolean>;
+}

package/modules/proxy/services/http-auth-handler.service.js

@@ -0,0 +1,146 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.HttpAuthHandlerService = void 0;
+const common_1 = require("@nestjs/common");
+const const_1 = require("../../broker/const");
+const acl_service_1 = require("./acl.service");
+const jwt_service_1 = require("./jwt.service");
+let HttpAuthHandlerService = class HttpAuthHandlerService {
+    constructor(aclRoleService, authProviders, jwtService) {
+        this.aclRoleService = aclRoleService;
+        this.authProviders = authProviders;
+        this.jwtService = jwtService;
+    }
+    async processAuthData(req, path) {
+        let out = { success: false };
+        if (!path?.auth)
+            return out;
+        const authConfig = this.authProviders.find(o => o.name === path.auth);
+        if (!authConfig)
+            throw new Error(`Auth provider ${path.auth} not found`);
+        switch (authConfig.type) {
+            case 'basic':
+                out = await this.checkBasicAuth(req, authConfig);
+                break;
+            case 'jwt':
+                out = await this.checkJwt(req, authConfig);
+                break;
+            case 'jwks':
+                out = await this.checkJwt(req, authConfig);
+                break;
+            case 'str-compare':
+                await this.checkStringCompare(req, authConfig);
+                break;
+            default:
+                break;
+        }
+        return out;
+    }
+    async checkJwt(req, authConfig) {
+        let decoded;
+        let out = { success: false };
+        const jwt = req.headers.authorization?.split(" ")[1];
+        if (!jwt)
+            return out;
+        if (authConfig.type === 'jwt') {
+            decoded = await this.jwtService.verifyTokenSecret(authConfig, jwt);
+        }
+        if (authConfig.type === 'jwks') {
+            decoded = await this.jwtService.verifyTokenJwks(authConfig, jwt);
+        }
+        if (!decoded) {
+            return out;
+        }
+        else {
+            if (!authConfig.jwtMap) {
+                out = decoded;
+                out.success = true;
+            }
+            else {
+                authConfig.jwtMap.map(o => o.split(':')).forEach(([source, dest]) => {
+                    if (decoded?.[source])
+                        out[`${authConfig.headerPrefix}${dest.trim().toUpperCase()}`] = decoded?.[source];
+                });
+                out.success = true;
+            }
+            return out;
+        }
+    }
+    async checkBasicAuth(req, authConfig) {
+        let out = { success: false };
+        const authHeader = req.headers.authorization;
+        if (!authHeader || !authHeader.startsWith('Basic ')) {
+            return out;
+        }
+        const base64Credentials = authHeader.split(' ')[1];
+        const credentials = Buffer.from(base64Credentials, 'base64').toString('ascii');
+        const [username, password] = credentials.split(':');
+        if (username === authConfig.clientId && password === authConfig.clientSecret) {
+            out[`${authConfig.headerPrefix}USERNAME`] = username;
+            out.success = true;
+            return out;
+        }
+        return out;
+    }
+    async checkStringCompare(req, authConfig) {
+        let out = { success: false };
+        const authHeader = req.headers.authorization;
+        if (!authHeader || !authHeader.startsWith(authConfig.headerPrefix)) {
+            return out;
+        }
+        const token = authHeader.substring(authConfig.headerPrefix.length).trim();
+        if (token === authConfig.secret) {
+            out[`${authConfig.headerPrefix}TOKEN`] = token;
+            out.success = true;
+            return out;
+        }
+        return out;
+    }
+    async checkRoles(data, path) {
+        if (!path?.auth)
+            return true;
+        if (!path?.roles)
+            return true;
+        const authConfig = this.authProviders.find(o => o.name === path.auth);
+        if (!authConfig)
+            throw new Error(`Auth provider ${path.auth} not found`);
+        if (authConfig.type !== 'jwt' && authConfig.type !== 'jwks')
+            throw new Error(`Auth provider ${path.auth} is not a JWT or JWKS provider`);
+        if (!authConfig.usernameClaim)
+            throw new Error(`Auth provider ${path.auth} has no username claim defined`);
+        if (!authConfig.aclTopic)
+            throw new Error(`Auth provider ${path.auth} has no ACL topic defined`);
+        if (!authConfig.aclAction)
+            throw new Error(`Auth provider ${path.auth} has no ACL action defined`);
+        if (!this.aclRoleService)
+            throw new Error(`ACL Role Service not found. Please check AppModule.`);
+        if (!data)
+            return false;
+        const userId = data[`${authConfig.headerPrefix}${authConfig.uidClaim}`];
+        if (!userId)
+            return false;
+        const canUserDo = await this.aclRoleService.canUserDo(authConfig.aclTopic, authConfig.aclAction, userId);
+        return canUserDo;
+    }
+};
+exports.HttpAuthHandlerService = HttpAuthHandlerService;
+exports.HttpAuthHandlerService = HttpAuthHandlerService = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, common_1.Optional)()),
+    __param(0, (0, common_1.Inject)(acl_service_1.RLB_GTW_ACL_ROLE_SERVICE)),
+    __param(1, (0, common_1.Inject)(const_1.RLB_AMQP_AUTH_OPTIONS)),
+    __metadata("design:paramtypes", [Object, Array, jwt_service_1.JwtService])
+], HttpAuthHandlerService);
+//# sourceMappingURL=http-auth-handler.service.js.map

package/modules/proxy/services/http-auth-handler.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-auth-handler.service.js","sourceRoot":"","sources":["../../../../libs/rlb-nestjs-amqp/src/modules/proxy/services/http-auth-handler.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAA8D;AAI9D,8CAA2D;AAE3D,+CAA0E;AAC1E,+CAA2C;AAGpC,IAAM,sBAAsB,GAA5B,MAAM,sBAAsB;IACjC,YACiE,cAA+B,EAC9C,aAAkC,EACjE,UAAsB;QAFwB,mBAAc,GAAd,cAAc,CAAiB;QAC9C,kBAAa,GAAb,aAAa,CAAqB;QACjE,eAAU,GAAV,UAAU,CAAY;IACzC,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,GAAY,EAAE,IAAoB;QAEtD,IAAI,GAAG,GAAsB,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;QAChD,IAAI,CAAC,IAAI,EAAE,IAAI;YAAE,OAAO,GAAG,CAAC;QAC5B,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,CAAC;QACtE,IAAI,CAAC,UAAU;YAAE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,IAAI,YAAY,CAAC,CAAC;QAEzE,QAAQ,UAAU,CAAC,IAAI,EAAE,CAAC;YACxB,KAAK,OAAO;gBAAE,GAAG,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;gBAAC,MAAM;YACtE,KAAK,KAAK;gBAAE,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;gBAAC,MAAM;YAC9D,KAAK,MAAM;gBAAE,GAAG,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;gBAAC,MAAM;YAC/D,KAAK,aAAa;gBAAE,MAAM,IAAI,CAAC,kBAAkB,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;gBAAC,MAAM;YAC1E;gBACE,MAAM;QACV,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,GAAY,EAAE,UAA6B;QACxD,IAAI,OAAY,CAAC;QACjB,IAAI,GAAG,GAAsB,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;QAChD,MAAM,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACrD,IAAI,CAAC,GAAG;YAAE,OAAO,GAAG,CAAC;QACrB,IAAI,UAAU,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;YAC9B,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,iBAAiB,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,UAAU,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;YAC/B,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;QACnE,CAAC;QACD,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,GAAG,CAAC;QACb,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;gBACvB,GAAG,GAAG,OAAO,CAAC;gBACd,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC;YACrB,CAAC;iBAAM,CAAC;gBACN,UAAU,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE;oBAClE,IAAI,OAAO,EAAE,CAAC,MAAM,CAAC;wBACnB,GAAG,CAAC,GAAG,UAAU,CAAC,YAAY,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC,GAAG,OAAO,EAAE,CAAC,MAAM,CAAC,CAAC;gBACtF,CAAC,CAAC,CAAC;gBACH,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC;YACrB,CAAC;YACD,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,GAAY,EAAE,UAA6B;QAC9D,IAAI,GAAG,GAAsB,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;QAChD,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC;QAC7C,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YACpD,OAAO,GAAG,CAAC;QACb,CAAC;QAED,MAAM,iBAAiB,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACnD,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QAC/E,MAAM,CAAC,QAAQ,EAAE,QAAQ,CAAC,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAEpD,IAAI,QAAQ,KAAK,UAAU,CAAC,QAAQ,IAAI,QAAQ,KAAK,UAAU,CAAC,YAAY,EAAE,CAAC;YAC7E,GAAG,CAAC,GAAG,UAAU,CAAC,YAAY,UAAU,CAAC,GAAG,QAAQ,CAAC;YACrD,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC;YACnB,OAAO,GAAG,CAAC;QACb,CAAC;QAED,OAAO,GAAG,CAAC;IACb,CAAC;IAED,KAAK,CAAC,kBAAkB,CAAC,GAAY,EAAE,UAA6B;QAClE,IAAI,GAAG,GAAsB,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;QAChD,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC;QAC7C,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YACnE,OAAO,GAAG,CAAC;QACb,CAAC;QAED,MAAM,KAAK,GAAG,UAAU,CAAC,SAAS,CAAC,UAAU,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;QAC1E,IAAI,KAAK,KAAK,UAAU,CAAC,MAAM,EAAE,CAAC;YAChC,GAAG,CAAC,GAAG,UAAU,CAAC,YAAY,OAAO,CAAC,GAAG,KAAK,CAAC;YAC/C,GAAG,CAAC,OAAO,GAAG,IAAI,CAAC;YACnB,OAAO,GAAG,CAAC;QACb,CAAC;QAED,OAAO,GAAG,CAAC;IACb,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,IAA6B,EAAE,IAAoB;QAClE,IAAI,CAAC,IAAI,EAAE,IAAI;YAAE,OAAO,IAAI,CAAC;QAC7B,IAAI,CAAC,IAAI,EAAE,KAAK;YAAE,OAAO,IAAI,CAAC;QAC9B,MAAM,UAAU,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,CAAC;QACtE,IAAI,CAAC,UAAU;YAAE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,IAAI,YAAY,CAAC,CAAC;QACzE,IAAI,UAAU,CAAC,IAAI,KAAK,KAAK,IAAI,UAAU,CAAC,IAAI,KAAK,MAAM;YAAE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,IAAI,gCAAgC,CAAC,CAAC;QACzI,IAAI,CAAC,UAAU,CAAC,aAAa;YAAE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,IAAI,gCAAgC,CAAC,CAAC;QAC3G,IAAI,CAAC,UAAU,CAAC,QAAQ;YAAE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,IAAI,2BAA2B,CAAC,CAAC;QACjG,IAAI,CAAC,UAAU,CAAC,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,IAAI,4BAA4B,CAAC,CAAC;QACnG,IAAI,CAAC,IAAI,CAAC,cAAc;YAAE,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;QACjG,IAAI,CAAC,IAAI;YAAE,OAAO,KAAK,CAAC;QACxB,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,UAAU,CAAC,YAAY,GAAG,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC;QACxE,IAAI,CAAC,MAAM;YAAE,OAAO,KAAK,CAAC;QAC1B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,UAAU,CAAC,QAAQ,EAAE,UAAU,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QACzG,OAAO,SAAS,CAAC;IACnB,CAAC;CACF,CAAA;AA1GY,wDAAsB;iCAAtB,sBAAsB;IADlC,IAAA,mBAAU,GAAE;IAGR,WAAA,IAAA,iBAAQ,GAAE,CAAA;IAAE,WAAA,IAAA,eAAM,EAAC,sCAAwB,CAAC,CAAA;IAC5C,WAAA,IAAA,eAAM,EAAC,6BAAqB,CAAC,CAAA;oDACD,wBAAU;GAJ9B,sBAAsB,CA0GlC"}

package/modules/proxy/services/http-handler.service.d.ts

@@ -0,0 +1,21 @@
+import { OnModuleInit } from "@nestjs/common";
+import { HttpAdapterHost } from "@nestjs/core";
+import { BrokerService } from "../../broker";
+import { AppConfig, UtilsService } from "../../broker/services/utils.service";
+import { GatewayConfig, PathDefinition } from "../config/path-definition.config";
+import { HttpAuthHandlerService } from "./http-auth-handler.service";
+export declare class HttpHandlerService implements OnModuleInit {
+    private readonly httpAdapterHost;
+    private readonly broker;
+    private readonly utils;
+    private readonly httpAuthHandlerService;
+    private readonly appConfig;
+    private readonly gatewayConfig;
+    private server;
+    private readonly logger;
+    private readonly multer;
+    constructor(httpAdapterHost: HttpAdapterHost, broker: BrokerService, utils: UtilsService, httpAuthHandlerService: HttpAuthHandlerService, appConfig: AppConfig, gatewayConfig: GatewayConfig);
+    onModuleInit(): Promise<void>;
+    registerPath(path: PathDefinition): void;
+    private httpHeaders;
+}

package/modules/proxy/services/http-handler.service.js

@@ -0,0 +1,210 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+var HttpHandlerService_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.HttpHandlerService = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+const multer = require("multer");
+const broker_1 = require("../../broker");
+const const_1 = require("../../broker/const");
+const utils_service_1 = require("../../broker/services/utils.service");
+const http_auth_handler_service_1 = require("./http-auth-handler.service");
+let HttpHandlerService = HttpHandlerService_1 = class HttpHandlerService {
+    constructor(httpAdapterHost, broker, utils, httpAuthHandlerService, appConfig, gatewayConfig) {
+        this.httpAdapterHost = httpAdapterHost;
+        this.broker = broker;
+        this.utils = utils;
+        this.httpAuthHandlerService = httpAuthHandlerService;
+        this.appConfig = appConfig;
+        this.gatewayConfig = gatewayConfig;
+        this.logger = new common_1.Logger(HttpHandlerService_1.name);
+        this.multer = multer({
+            storage: multer.memoryStorage(),
+        });
+    }
+    async onModuleInit() {
+        this.server = this.httpAdapterHost.httpAdapter.getInstance();
+        const extPath = [];
+        if (this.gatewayConfig.loadConfig?.paths) {
+            const o = await this.broker.requestData(this.gatewayConfig.loadConfig.paths.topic, this.gatewayConfig.loadConfig.paths.action, {});
+            extPath.push(...o);
+        }
+        const paths = [...this.gatewayConfig?.paths || [], ...extPath];
+        for (const path of paths) {
+            this.registerPath(path);
+        }
+    }
+    registerPath(path) {
+        if (!path.method)
+            throw new Error("Method is required for path definition");
+        if (!path.path)
+            throw new Error("Path is required for path definition");
+        if (!path.topic)
+            throw new Error("Topic is required for path definition");
+        if (!path.mode)
+            throw new Error("Mode is required for path definition");
+        this.server[path.method.toLowerCase()](path.path, this.multer.any(), async (req, res) => {
+            const authData = await this.httpAuthHandlerService.processAuthData(req, path);
+            if (path.auth && !authData?.success && path.allowAnonymous !== true) {
+                res.status(401).json({ message: "Unauthorized" });
+                return;
+            }
+            if (!(await this.httpAuthHandlerService.checkRoles(authData, path))) {
+                res.status(403).json({ message: "Forbidden" });
+                return;
+            }
+            const httpHeaders = this.httpHeaders(req, path);
+            let data = req[path.dataSource] || req.body || {};
+            if (path.dataSource === 'body') {
+                data = { ...req.params, ...(req.body || {}) };
+            }
+            else if (path.dataSource === 'query') {
+                data = { ...req.params, ...(req.query || {}) };
+            }
+            else if (path.dataSource === 'params') {
+                data = req.params || {};
+            }
+            else if (path.dataSource === 'body-query') {
+                data = { ...req.params, ...(req.query || {}), ...(req.body || {}) };
+            }
+            else if (path.dataSource === 'query-body') {
+                data = { ...req.params, ...(req.body || {}), ...(req.query || {}) };
+            }
+            else {
+                data = { ...req.params, ...(req.body || {}), ...(req.query || {}) };
+            }
+            if (path.parseRaw) {
+                Object.assign(data, { $raw: req.rawBody });
+            }
+            if (req.files) {
+                Object.assign(data, { $files: req.files });
+            }
+            Object.assign(data, req.params);
+            if (data['$files']) {
+                for (const file of data['$files']) {
+                    const o = file.buffer;
+                    file.buffer = o.toString('binary');
+                }
+            }
+            try {
+                if (path.mode === "event") {
+                    this.broker.publishMessage(path.topic, data, { ...authData, ...httpHeaders, "X-GTW-METHOD": req.method, "X-GTW-PATH": path.path });
+                    res.status(202).end();
+                    this.logger.log(`[${path.mode.toUpperCase()}] [${path.method.toUpperCase()}] '${path.path}' => ${path.topic} | PROCESSED 'EVENT'`);
+                }
+                else if (path.mode === "rpc") {
+                    try {
+                        const headers = new Map();
+                        if (path.headers) {
+                            for (const key in path.headers) {
+                                headers.set(key, path.headers[key]);
+                            }
+                        }
+                        const resp = await this.broker.requestData(path.topic, path.action, data, { ...authData, ...httpHeaders, "X-GTW-METHOD": req.method, "X-GTW-PATH": path.path }, path.timeout);
+                        if (resp) {
+                            if (path.redirect) {
+                                res.redirect(path.redirect, resp);
+                                this.logger.log(`[${path.mode.toUpperCase()}] [${path.method.toUpperCase()}] '${path.path}' => ${path.topic} | REDIRECT '${path.redirect}'`);
+                                return;
+                            }
+                            if (!headers.has("Content-Type"))
+                                headers.set("Content-Type", "application/json");
+                            if (headers.get("Content-Type").toString().includes('json')) {
+                                res.status(200).setHeaders(headers).json(resp);
+                                this.logger.log(`[${path.mode.toUpperCase()}] [${path.method.toUpperCase()}] '${path.path}' => ${path.topic} | PROCESSED 'JSON'`);
+                                return;
+                            }
+                            if (path.binary) {
+                                res.status(200).setHeaders(headers).end(Buffer.from(resp.toString(), 'base64'));
+                            }
+                            else {
+                                res.status(200).setHeaders(headers).end(resp);
+                            }
+                            this.logger.log(`[${path.mode.toUpperCase()}] [${path.method.toUpperCase()}] '${path.path}' => ${path.topic} | PROCESSED 'RAW'`);
+                            return;
+                        }
+                        res.status(204).end();
+                        this.logger.log(`[${path.mode.toUpperCase()}] [${path.method.toUpperCase()}] '${path.path}' => ${path.topic} | PROCESSED 'NO CONTENT'`);
+                        return;
+                    }
+                    catch (error) {
+                        switch (error.name) {
+                            case "BadRequestError":
+                                res.status(400).json(this.utils.error2Object(error, this.appConfig.environment !== 'production'));
+                                break;
+                            case "ForbiddenError":
+                                res.status(403).json(this.utils.error2Object(error, this.appConfig.environment !== 'production'));
+                                break;
+                            case "InvalidParamsErrror":
+                                res.status(400).json(this.utils.error2Object(error, this.appConfig.environment !== 'production'));
+                                break;
+                            case "NotFoundError":
+                                res.status(404).json(this.utils.error2Object(error, this.appConfig.environment !== 'production'));
+                                break;
+                            case "UnauthorizedError":
+                                res.status(401).json(this.utils.error2Object(error, this.appConfig.environment !== 'production'));
+                                break;
+                            default:
+                                res.status(500).json(this.utils.error2Object(error, this.appConfig.environment !== 'production'));
+                                break;
+                        }
+                        this.logger.log(`[${path.mode.toUpperCase()}] [${path.method.toUpperCase()}] '${path.path}' => ${path.topic} | ERROR '${error.name}' ${error.message}`);
+                    }
+                }
+                else {
+                    throw new Error(`Invalid mode '${path.mode}' for path definition`);
+                }
+            }
+            catch (error) {
+                if (this.appConfig.environment === "development") {
+                    this.logger.error(error.message);
+                    res.status(500).json(error);
+                }
+                else {
+                    res.status(500).json({ message: "Internal server error", name: error.name });
+                }
+            }
+        });
+    }
+    httpHeaders(req, path) {
+        const data = {};
+        if (path.forwardHeaders) {
+            for (const key in path.forwardHeaders) {
+                const header = path.forwardHeaders[key]?.toLocaleLowerCase().trim();
+                const headerValue = Object.keys(req.headers).find(h => h.toLowerCase().trim() === header);
+                if (headerValue) {
+                    if (this.gatewayConfig.headerPrefix) {
+                        data[`${this.gatewayConfig.headerPrefix}${key}`] = req.headers[headerValue];
+                    }
+                    else {
+                        data[`${key}`] = req.headers[headerValue];
+                    }
+                }
+            }
+        }
+        return data;
+    }
+};
+exports.HttpHandlerService = HttpHandlerService;
+exports.HttpHandlerService = HttpHandlerService = HttpHandlerService_1 = __decorate([
+    (0, common_1.Injectable)(),
+    __param(4, (0, common_1.Inject)(const_1.RLB_AMQP_APP_OPTIONS)),
+    __param(5, (0, common_1.Inject)(const_1.RLB_AMQP_GATEWAY_OPTIONS)),
+    __metadata("design:paramtypes", [core_1.HttpAdapterHost,
+        broker_1.BrokerService,
+        utils_service_1.UtilsService,
+        http_auth_handler_service_1.HttpAuthHandlerService, Object, Object])
+], HttpHandlerService);
+//# sourceMappingURL=http-handler.service.js.map

package/modules/proxy/services/http-handler.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-handler.service.js","sourceRoot":"","sources":["../../../../libs/rlb-nestjs-amqp/src/modules/proxy/services/http-handler.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAA0E;AAC1E,uCAA+C;AAG/C,iCAAiC;AACjC,yCAA6C;AAC7C,8CAAoF;AACpF,uEAA8E;AAE9E,2EAAqE;AAG9D,IAAM,kBAAkB,0BAAxB,MAAM,kBAAkB;IAO7B,YACmB,eAAgC,EAChC,MAAqB,EACrB,KAAmB,EACnB,sBAA8C,EAChB,SAAoB,EAChB,aAA4B;QAL9D,oBAAe,GAAf,eAAe,CAAiB;QAChC,WAAM,GAAN,MAAM,CAAe;QACrB,UAAK,GAAL,KAAK,CAAc;QACnB,2BAAsB,GAAtB,sBAAsB,CAAwB;QAChB,cAAS,GAAT,SAAS,CAAW;QAChB,kBAAa,GAAb,aAAa,CAAe;QAE/E,IAAI,CAAC,MAAM,GAAG,IAAI,eAAM,CAAC,oBAAkB,CAAC,IAAI,CAAC,CAAC;QAClD,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;YACnB,OAAO,EAAE,MAAM,CAAC,aAAa,EAAE;SAChC,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,YAAY;QAChB,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,eAAe,CAAC,WAAW,CAAC,WAAW,EAAkB,CAAC;QAC7E,MAAM,OAAO,GAAqB,EAAE,CAAC;QACrC,IAAI,IAAI,CAAC,aAAa,CAAC,UAAU,EAAE,KAAK,EAAE,CAAC;YACzC,MAAM,CAAC,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,EAAE,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YACnI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QACrB,CAAC;QACD,MAAM,KAAK,GAAG,CAAC,GAAG,IAAI,CAAC,aAAa,EAAE,KAAK,IAAI,EAAE,EAAE,GAAG,OAAO,CAAC,CAAC;QAC/D,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAED,YAAY,CAAC,IAAoB;QAC/B,IAAI,CAAC,IAAI,CAAC,MAAM;YAAE,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5E,IAAI,CAAC,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;QACxE,IAAI,CAAC,IAAI,CAAC,KAAK;YAAE,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;QAC1E,IAAI,CAAC,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;QAExE,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;YACzG,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,sBAAsB,CAAC,eAAe,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;YAE9E,IAAI,IAAI,CAAC,IAAI,IAAI,CAAC,QAAQ,EAAE,OAAO,IAAI,IAAI,CAAC,cAAc,KAAK,IAAI,EAAE,CAAC;gBACpE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAC;gBAClD,OAAO;YACT,CAAC;YACD,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,sBAAsB,CAAC,UAAU,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,EAAE,CAAC;gBACpE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC,CAAC;gBAC/C,OAAO;YACT,CAAC;YACD,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;YAEhD,IAAI,IAAI,GAAG,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC;YAClD,IAAI,IAAI,CAAC,UAAU,KAAK,MAAM,EAAE,CAAC;gBAC/B,IAAI,GAAG,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,EAAE,CAAC;YAChD,CAAC;iBAAM,IAAI,IAAI,CAAC,UAAU,KAAK,OAAO,EAAE,CAAC;gBACvC,IAAI,GAAG,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,EAAE,CAAC;YACjD,CAAC;iBAAM,IAAI,IAAI,CAAC,UAAU,KAAK,QAAQ,EAAE,CAAC;gBACxC,IAAI,GAAG,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC;YAC1B,CAAC;iBAAM,IAAI,IAAI,CAAC,UAAU,KAAK,YAAY,EAAE,CAAC;gBAC5C,IAAI,GAAG,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,EAAE,CAAC;YACtE,CAAC;iBAAM,IAAI,IAAI,CAAC,UAAU,KAAK,YAAY,EAAE,CAAC;gBAC5C,IAAI,GAAG,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,EAAE,CAAC;YACtE,CAAC;iBAAM,CAAC;gBACN,IAAI,GAAG,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,EAAE,CAAC;YACtE,CAAC;YACD,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;gBAClB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,IAAI,EAAG,GAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YACtD,CAAC;YACD,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;gBACd,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,MAAM,EAAE,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC;YAC7C,CAAC;YACD,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;YAChC,IAAI,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACnB,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAClC,MAAM,CAAC,GAAW,IAAI,CAAC,MAAM,CAAC;oBAC9B,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;gBACrC,CAAC;YACH,CAAC;YACD,IAAI,CAAC;gBACH,IAAI,IAAI,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;oBAC1B,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE,GAAG,QAAQ,EAAE,GAAG,WAAW,EAAE,cAAc,EAAE,GAAG,CAAC,MAAM,EAAE,YAAY,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;oBACnI,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC;oBACtB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,IAAI,QAAQ,IAAI,CAAC,KAAK,sBAAsB,CAAC,CAAC;gBACrI,CAAC;qBAAM,IAAI,IAAI,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;oBAC/B,IAAI,CAAC;wBACH,MAAM,OAAO,GAAG,IAAI,GAAG,EAAsC,CAAC;wBAC9D,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;4BACjB,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;gCAC/B,OAAO,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC;4BACtC,CAAC;wBACH,CAAC;wBACD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,EAAE,GAAG,QAAQ,EAAE,GAAG,WAAW,EAAE,cAAc,EAAE,GAAG,CAAC,MAAM,EAAE,YAAY,EAAE,IAAI,CAAC,IAAI,EAAE,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;wBAC9K,IAAI,IAAI,EAAE,CAAC;4BACT,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;gCAClB,GAAG,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;gCAClC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,IAAI,QAAQ,IAAI,CAAC,KAAK,gBAAgB,IAAI,CAAC,QAAQ,GAAG,CAAC,CAAC;gCAC7I,OAAO;4BACT,CAAC;4BACD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;gCAAE,OAAO,CAAC,GAAG,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;4BAClF,IAAI,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gCAC5D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gCAC/C,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,IAAI,QAAQ,IAAI,CAAC,KAAK,qBAAqB,CAAC,CAAC;gCAClI,OAAO;4BACT,CAAC;4BACD,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gCAChB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,QAAQ,CAAC,CAAC,CAAC;4BAClF,CAAC;iCAAM,CAAC;gCACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;4BAChD,CAAC;4BACD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,IAAI,QAAQ,IAAI,CAAC,KAAK,oBAAoB,CAAC,CAAC;4BACjI,OAAO;wBACT,CAAC;wBACD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC;wBACtB,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,IAAI,QAAQ,IAAI,CAAC,KAAK,2BAA2B,CAAC,CAAC;wBACxI,OAAO;oBACT,CAAC;oBAAC,OAAO,KAAK,EAAE,CAAC;wBACf,QAAQ,KAAK,CAAC,IAAI,EAAE,CAAC;4BACnB,KAAK,iBAAiB;gCAAE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,KAAK,YAAY,CAAC,CAAC,CAAC;gCAAC,MAAM;4BACjI,KAAK,gBAAgB;gCAAE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,KAAK,YAAY,CAAC,CAAC,CAAC;gCAAC,MAAM;4BAChI,KAAK,qBAAqB;gCAAE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,KAAK,YAAY,CAAC,CAAC,CAAC;gCAAC,MAAM;4BACrI,KAAK,eAAe;gCAAE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,KAAK,YAAY,CAAC,CAAC,CAAC;gCAAC,MAAM;4BAC/H,KAAK,mBAAmB;gCAAE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,KAAK,YAAY,CAAC,CAAC,CAAC;gCAAC,MAAM;4BACnI;gCAAS,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,KAAK,YAAY,CAAC,CAAC,CAAC;gCAAC,MAAM;wBACpH,CAAC;wBACD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,MAAM,IAAI,CAAC,IAAI,QAAQ,IAAI,CAAC,KAAK,aAAa,KAAK,CAAC,IAAI,KAAK,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;oBAC1J,CAAC;gBACH,CAAC;qBACI,CAAC;oBACJ,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,CAAC,IAAI,uBAAuB,CAAC,CAAC;gBACrE,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,IAAI,IAAI,CAAC,SAAS,CAAC,WAAW,KAAK,aAAa,EAAE,CAAC;oBACjD,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;oBACjC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC9B,CAAC;qBACI,CAAC;oBACJ,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,uBAAuB,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;gBAC/E,CAAC;YACH,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,WAAW,CAAC,GAAY,EAAE,IAAoB;QACpD,MAAM,IAAI,GAAiD,EAAE,CAAC;QAC9D,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YACxB,KAAK,MAAM,GAAG,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;gBACtC,MAAM,MAAM,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,EAAE,iBAAiB,EAAE,CAAC,IAAI,EAAE,CAAC;gBACpE,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,KAAK,MAAM,CAAC,CAAC;gBAC1F,IAAI,WAAW,EAAE,CAAC;oBAChB,IAAI,IAAI,CAAC,aAAa,CAAC,YAAY,EAAE,CAAC;wBACpC,IAAI,CAAC,GAAG,IAAI,CAAC,aAAa,CAAC,YAAY,GAAG,GAAG,EAAE,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;oBAC9E,CAAC;yBAAM,CAAC;wBACN,IAAI,CAAC,GAAG,GAAG,EAAE,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;oBAC5C,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;CACF,CAAA;AAjKY,gDAAkB;6BAAlB,kBAAkB;IAD9B,IAAA,mBAAU,GAAE;IAaR,WAAA,IAAA,eAAM,EAAC,4BAAoB,CAAC,CAAA;IAC5B,WAAA,IAAA,eAAM,EAAC,gCAAwB,CAAC,CAAA;qCALC,sBAAe;QACxB,sBAAa;QACd,4BAAY;QACK,kDAAsB;GAXtD,kBAAkB,CAiK9B"}

package/modules/proxy/services/jwt.service.d.ts

@@ -0,0 +1,12 @@
+import { OnModuleInit } from "@nestjs/common";
+import { JwtPayload } from "jsonwebtoken";
+import { HandlerAuthConfig } from "../../broker/config/handler-auth.config";
+export declare class JwtService implements OnModuleInit {
+    private readonly authConfig;
+    private readonly jwksClients;
+    private readonly logger;
+    constructor(authConfig: HandlerAuthConfig[]);
+    onModuleInit(): void;
+    verifyTokenJwks<T = JwtPayload>(authConfig: HandlerAuthConfig, token: string): Promise<T | undefined>;
+    verifyTokenSecret<T = JwtPayload>(authConfig: HandlerAuthConfig, token: string): Promise<T | undefined>;
+}

package/modules/proxy/services/jwt.service.js

@@ -0,0 +1,107 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+var JwtService_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtService = void 0;
+const common_1 = require("@nestjs/common");
+const https_1 = require("https");
+const jsonwebtoken_1 = require("jsonwebtoken");
+const jwks_rsa_1 = require("jwks-rsa");
+const const_1 = require("../../broker/const");
+let JwtService = JwtService_1 = class JwtService {
+    constructor(authConfig) {
+        this.authConfig = authConfig;
+        this.logger = new common_1.Logger(JwtService_1.name);
+        this.jwksClients = {};
+    }
+    onModuleInit() {
+        for (const authConfig of this.authConfig) {
+            if (authConfig.type === "jwks") {
+                this.jwksClients[authConfig.name] = new jwks_rsa_1.JwksClient({
+                    jwksUri: authConfig.jwksUri,
+                    cache: true,
+                    rateLimit: true,
+                    jwksRequestsPerMinute: 10,
+                    requestAgent: new https_1.Agent({ rejectUnauthorized: false })
+                });
+            }
+        }
+    }
+    verifyTokenJwks(authConfig, token) {
+        if (!authConfig) {
+            this.logger.warn("No auth config provided for JWT verification");
+            return Promise.resolve(undefined);
+        }
+        if (!this.jwksClients[authConfig.name]) {
+            this.logger.warn(`No jwks client found for ${authConfig.name}`);
+            return Promise.resolve(undefined);
+        }
+        return new Promise((resolve, reject) => {
+            if (!token) {
+                this.logger.warn("No token provided for JWT verification");
+                resolve(undefined);
+            }
+            (0, jsonwebtoken_1.verify)(token, (header, callback) => {
+                this.jwksClients[authConfig.name].getSigningKey(header.kid, (err, key) => {
+                    if (err) {
+                        this.logger.error(`[JWKS] [${authConfig.name}] Error getting signing key`, err);
+                        callback(err);
+                    }
+                    else {
+                        const signingKey = key.getPublicKey();
+                        callback(null, signingKey);
+                    }
+                });
+            }, {
+                issuer: authConfig.issuer,
+                audience: authConfig.audience,
+                algorithms: authConfig.algorithms
+            }, (err, decoded) => {
+                if (err) {
+                    resolve(undefined);
+                    return;
+                }
+                resolve(decoded);
+            });
+        });
+    }
+    verifyTokenSecret(authConfig, token) {
+        if (!authConfig) {
+            return Promise.resolve(undefined);
+        }
+        return new Promise((resolve, reject) => {
+            if (!token) {
+                resolve(undefined);
+            }
+            (0, jsonwebtoken_1.verify)(token, authConfig.secret, {
+                issuer: authConfig.issuer,
+                audience: authConfig.audience,
+                algorithms: authConfig.algorithms
+            }, (err, decoded) => {
+                if (err) {
+                    resolve(undefined);
+                    return;
+                }
+                resolve(decoded);
+            });
+        });
+    }
+};
+exports.JwtService = JwtService;
+exports.JwtService = JwtService = JwtService_1 = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, common_1.Inject)(const_1.RLB_AMQP_AUTH_OPTIONS)),
+    __metadata("design:paramtypes", [Array])
+], JwtService);
+//# sourceMappingURL=jwt.service.js.map

package/modules/proxy/services/jwt.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.service.js","sourceRoot":"","sources":["../../../../libs/rlb-nestjs-amqp/src/modules/proxy/services/jwt.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAA0E;AAC1E,iCAA8B;AAC9B,+CAAiF;AACjF,uCAAsC;AAEtC,8CAA2D;AAGpD,IAAM,UAAU,kBAAhB,MAAM,UAAU;IAKrB,YAA4D,UAA+B;QAA/B,eAAU,GAAV,UAAU,CAAqB;QACzF,IAAI,CAAC,MAAM,GAAG,IAAI,eAAM,CAAC,YAAU,CAAC,IAAI,CAAC,CAAC;QAC1C,IAAI,CAAC,WAAW,GAAG,EAAE,CAAC;IACxB,CAAC;IAED,YAAY;QACV,KAAK,MAAM,UAAU,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YACzC,IAAI,UAAU,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC/B,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,IAAI,qBAAU,CAAC;oBACjD,OAAO,EAAE,UAAU,CAAC,OAAO;oBAC3B,KAAK,EAAE,IAAI;oBACX,SAAS,EAAE,IAAI;oBACf,qBAAqB,EAAE,EAAE;oBACzB,YAAY,EAAE,IAAI,aAAK,CAAC,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC;iBACvD,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,eAAe,CAAiB,UAA6B,EAAE,KAAa;QAC1E,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,8CAA8C,CAAC,CAAC;YACjE,OAAO,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACvC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,4BAA4B,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC;YAChE,OAAO,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC;QAED,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;gBAC3D,OAAO,CAAC,SAAS,CAAC,CAAC;YACrB,CAAC;YAED,IAAA,qBAAM,EAAC,KAAK,EACV,CAAC,MAAiB,EAAE,QAA4B,EAAE,EAAE;gBAClD,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,aAAa,CAAC,MAAM,CAAC,GAAG,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;oBACvE,IAAI,GAAG,EAAE,CAAC;wBACR,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,UAAU,CAAC,IAAI,6BAA6B,EAAE,GAAG,CAAC,CAAC;wBAChF,QAAQ,CAAC,GAAG,CAAC,CAAC;oBAChB,CAAC;yBAAM,CAAC;wBACN,MAAM,UAAU,GAAG,GAAG,CAAC,YAAY,EAAE,CAAC;wBACtC,QAAQ,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;oBAC7B,CAAC;gBACH,CAAC,CAAC,CAAC;YACL,CAAC,EACD;gBACE,MAAM,EAAE,UAAU,CAAC,MAAM;gBACzB,QAAQ,EAAE,UAAU,CAAC,QAAQ;gBAC7B,UAAU,EAAE,UAAU,CAAC,UAAiB;aACzC,EACD,CAAC,GAAG,EAAE,OAAO,EAAE,EAAE;gBACf,IAAI,GAAG,EAAE,CAAC;oBACR,OAAO,CAAC,SAAS,CAAC,CAAC;oBACnB,OAAO;gBACT,CAAC;gBACD,OAAO,CAAC,OAAY,CAAC,CAAC;YACxB,CAAC,CAAC,CAAC;QACP,CAAC,CAAC,CAAC;IACL,CAAC;IAED,iBAAiB,CAAiB,UAA6B,EAAE,KAAa;QAC5E,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,OAAO,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC;QAED,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,CAAC,SAAS,CAAC,CAAC;YACrB,CAAC;YAED,IAAA,qBAAM,EAAC,KAAK,EACV,UAAU,CAAC,MAAM,EACjB;gBACE,MAAM,EAAE,UAAU,CAAC,MAAM;gBACzB,QAAQ,EAAE,UAAU,CAAC,QAAQ;gBAC7B,UAAU,EAAE,UAAU,CAAC,UAAiB;aACzC,EACD,CAAC,GAAG,EAAE,OAAO,EAAE,EAAE;gBACf,IAAI,GAAG,EAAE,CAAC;oBACR,OAAO,CAAC,SAAS,CAAC,CAAC;oBACnB,OAAO;gBACT,CAAC;gBACD,OAAO,CAAC,OAAY,CAAC,CAAC;YACxB,CAAC,CAAC,CAAC;QACP,CAAC,CAAC,CAAC;IACL,CAAC;CACF,CAAA;AA7FY,gCAAU;qBAAV,UAAU;IADtB,IAAA,mBAAU,GAAE;IAME,WAAA,IAAA,eAAM,EAAC,6BAAqB,CAAC,CAAA;;GAL/B,UAAU,CA6FtB"}

package/modules/proxy/services/websocket.service.d.ts

@@ -0,0 +1,21 @@
+import { HttpService } from '@nestjs/axios';
+import { OnModuleInit } from '@nestjs/common';
+import { AmqpConnection } from "../../../amqp-lib";
+import { BrokerConfig, BrokerService } from '../../broker';
+import { GatewayConfig } from '../config/path-definition.config';
+export declare class WebSocketService implements OnModuleInit {
+    private readonly amqpConnection;
+    private readonly httpClient;
+    private readonly broker;
+    private readonly gatewayConfig;
+    private readonly brokerConfig;
+    private server;
+    private readonly logger;
+    private readonly subjects;
+    private readonly subscriptions;
+    constructor(amqpConnection: AmqpConnection, httpClient: HttpService, broker: BrokerService, gatewayConfig: GatewayConfig, brokerConfig: BrokerConfig);
+    private handleDisconnect;
+    private handleConnection;
+    private getQueryParams;
+    onModuleInit(): Promise<void>;
+}