@opentdf/sdk 0.1.0-beta.1701

package/dist/cjs/tdf3/src/client/builders.js

@@ -0,0 +1,561 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EncryptParamsBuilder = exports.DecryptParamsBuilder = exports.DEFAULT_SEGMENT_SIZE = void 0;
+const validation_js_1 = require("./validation.js");
+const errors_js_1 = require("../../../src/errors.js");
+exports.DEFAULT_SEGMENT_SIZE = 1024 * 1024;
+// 'Readonly<EncryptParams>': scope, metadata, offline, windowSize, asHtml
+// deep copy is expensive, could be faster is Immer used, but to keep SDK work
+// stable we can just make this object readonly
+function freeze(obj) {
+    return Object.freeze(obj);
+}
+/**
+ * A builder capable of constructing the necessary parameters object for a
+ * {@link Client#encrypt|encrypt} operation. Must be built before use via the {@link EncryptParamsBuilder#build|build()} function.
+ */
+class EncryptParamsBuilder {
+    constructor(params = {
+        scope: {
+            dissem: [],
+            attributes: [],
+        },
+        keypair: undefined,
+        offline: false,
+        windowSize: exports.DEFAULT_SEGMENT_SIZE,
+        asHtml: false,
+        assertionConfigs: [],
+    }) {
+        this._params = { ...params };
+    }
+    getStreamSource() {
+        return this._params.source;
+    }
+    /**
+     * Specify the content to encrypt, in stream form.
+     * @param {Readable} readStream - a Readable Stream to encrypt.
+     */
+    setStreamSource(readStream) {
+        this._params.source = readStream;
+    }
+    /**
+     * Specify the content to encrypt, in stream form. Returns this object for method chaining.
+     * @param {Readable} readStream - a Readable Stream to encrypt.
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withStreamSource(readStream) {
+        if (!readStream?.getReader) {
+            throw new errors_js_1.ConfigurationError(`Source must be a WebReadableStream. Run node streams through stream.Readable.toWeb()`);
+        }
+        this.setStreamSource(readStream);
+        return this;
+    }
+    /**
+     * Specify the content to encrypt, in string form.
+     * @param {string} string - a string to encrypt.
+     */
+    setStringSource(string) {
+        const stream = new ReadableStream({
+            pull(controller) {
+                controller.enqueue(new TextEncoder().encode(string));
+                controller.close();
+            },
+        });
+        this.setStreamSource(stream);
+    }
+    /**
+     * Specify the content to encrypt, in string form. Returns this object for method chaining.
+     * @param {string} string - a string to encrypt.
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withStringSource(string) {
+        this.setStringSource(string);
+        return this;
+    }
+    /**
+     * If set, the encrypt method will use the KAS Grants from the
+     * policy service to configure the Key Access Object array, instead
+     * of the client object's default `kasEndpoint`.
+     */
+    withAutoconfigure(enabled = true) {
+        this._params.autoconfigure = enabled;
+        return this;
+    }
+    /**
+     * Specify the content to encrypt, in buffer form.
+     * @param buf to encrypt.
+     */
+    setBufferSource(buf) {
+        const stream = new ReadableStream({
+            pull(controller) {
+                controller.enqueue(buf);
+                controller.close();
+            },
+        });
+        this.setStreamSource(stream);
+    }
+    /**
+     * Specify the content to encrypt, in buffer form. Returns this object for method chaining.
+     * @param buf - a buffer to encrypt
+     */
+    withBufferSource(buf) {
+        this.setBufferSource(buf);
+        return this;
+    }
+    /**
+     * Specify the content to encrypt using an ArrayBuffer reference, which must have already
+     * loaded the file content. Using the below linked example, e.target.result is the ArrayBuffer.
+     * <br/><br/>
+     * Example: https://developer.mozilla.org/en-US/docs/Web/API/FileReader/onload
+     *
+     * @param {ArrayBuffer} arraybuffer - the array buffer containing the file to encrypt.
+     * @return {EncryptParamsBuilder} - this object
+     */
+    setArrayBufferSource(arraybuffer) {
+        this.setBufferSource(arraybuffer);
+    }
+    /**
+     * Specify the content to encrypt using an ArrayBuffer reference. Returns this object for method chaining.
+     *
+     * @param  {ArrayBuffer} arraybuffer - the ArrayBuffer used to load file content from a browser
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withArrayBufferSource(arraybuffer) {
+        this.setArrayBufferSource(arraybuffer);
+        return this;
+    }
+    getAttributes() {
+        return this._params?.scope?.attributes || [];
+    }
+    /**
+     * @param attributes URIs of the form `<authority namespace>/attr/<name>/value/<value>`
+     */
+    setAttributes(attributes) {
+        if (!attributes) {
+            if (this._params.scope) {
+                delete this._params.scope.attributes;
+                if (!Object.keys(this._params.scope).length) {
+                    delete this._params.scope;
+                }
+            }
+            return;
+        }
+        attributes.forEach((a) => {
+            if (typeof a === 'string') {
+                (0, validation_js_1.validateAttribute)(a);
+            }
+            else {
+                (0, validation_js_1.validateAttributeObject)(a);
+            }
+        });
+        if (this._params.scope) {
+            this._params.scope.attributes = attributes;
+        }
+        else {
+            this._params.scope = { attributes, dissem: [] };
+        }
+    }
+    /**
+     * @param {Object} attributes
+     * @param {String} attributes.attribute URI of the form `<authority namespace>/attr/<name>/value/<value>`
+     * @returns {EncryptParamsBuilder} with attributes set
+     */
+    withAttributes(attributes) {
+        this.setAttributes(attributes);
+        return this;
+    }
+    /**
+     * Get the users configured to access (decrypt) the encrypted data.
+     * @return {array} - array of users (e.g., email addresses).
+     */
+    getUsersWithAccess() {
+        return this._params?.scope?.dissem || [];
+    }
+    /**
+     * Specify the full list of users configured to access (decrypt) the encrypted data.
+     * @param {array} users - varargs or array of users (e.g., email addresses).
+     */
+    setUsersWithAccess(users) {
+        if (this._params.scope) {
+            this._params.scope.dissem = users;
+        }
+        else {
+            this._params.scope = { attributes: [], dissem: users };
+        }
+    }
+    /**
+     * Specify the full list of users configured to access (decrypt) the encrypted data. Returns this object for method chaining.
+     * <br/><br/>
+     * @param {array} users - varargs or array of users (e.g., email addresses).
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withUsersWithAccess(users) {
+        this.setUsersWithAccess(users);
+        return this;
+    }
+    /**
+     * Get the metadata (arbitrary key-value pairs) to be associated with the encrypted blob.
+     * </br></br>
+     * This metadata is encrypted alongside the content and stored in the TDF ciphertext.
+     * @return {object} - object containing metadata as key-value pairs.
+     */
+    getMetadata() {
+        return this._params.metadata;
+    }
+    /**
+     * Specify the metadata (arbitrary key-value pairs) to be associated with the encrypted blob.
+     * </br></br>
+     * This metadata is encrypted alongside the content and stored in the TDF ciphertext.
+     * @param {object} metadata - object containing metadata as key-value pairs.
+     */
+    setMetadata(metadata) {
+        this._params.metadata = metadata;
+    }
+    /**
+     * Specify the metadata (arbitrary key-value pairs) to be associated with the encrypted blob.
+     * Returns this object for method chaining.
+     * </br></br>
+     * This metadata is encrypted alongside the content and stored in the TDF ciphertext.
+     * @param {object} metadata - object containing metadata as key-value pairs.
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withMetadata(metadata) {
+        this.setMetadata(metadata);
+        return this;
+    }
+    getPolicyId() {
+        return this._params.scope?.policyId;
+    }
+    setPolicyId(policyId) {
+        if (this._params.scope) {
+            this._params.scope.policyId = policyId;
+        }
+        else {
+            this._params.scope = { attributes: [], dissem: [], policyId };
+        }
+    }
+    withPolicyId(policyId) {
+        this.setPolicyId(policyId);
+        return this;
+    }
+    isOnline() {
+        return !this._params.offline;
+    }
+    setOnline() {
+        this._params.offline = false;
+    }
+    setOffline() {
+        this._params.offline = true;
+    }
+    withOffline() {
+        this.setOffline();
+        return this;
+    }
+    withOnline() {
+        this.setOnline();
+        return this;
+    }
+    /**
+     * Get the size of the sliding window to use when writing out the encrypted ciphertext.
+     * Used to bound the memory used by the client for large files.
+     * <br/><br/>
+     * This window will match the "segment size" defined in the
+     * <a href="https://github.com/virtru/tdf3-spec">TDF spec</a>, so a larger window
+     * will result in more compact ciphertext.
+     * @return {number} The sliding window size, in bytes (1MB by default).
+     */
+    getStreamWindowSize() {
+        return this._params.windowSize;
+    }
+    /**
+     * Set the size of the sliding window to use when writing out the encrypted ciphertext.
+     * Used to bound the memory used by the client for large files.
+     * <br/><br/>
+     * This window will match the "segment size" defined in the
+     * <a href="https://github.com/virtru/tdf3-spec">TDF spec</a>, so a larger window
+     * will result in more compact ciphertext.
+     * @param {number} numBytes sliding window size, in bytes (1MB by default).
+     */
+    setStreamWindowSize(numBytes) {
+        if (numBytes <= 0) {
+            throw new errors_js_1.ConfigurationError('Stream window size must be positive');
+        }
+        this._params.windowSize = numBytes;
+    }
+    /**
+     * Set the size of the sliding window to use when writing out the encrypted ciphertext.
+     * Used to bound the memory used by the client for large files. Returns this object for method chaining.
+     * <br/><br/>
+     * This window will match the "segment size" defined in the
+     * <a href="https://github.com/virtru/tdf3-spec">TDF spec</a>, so a larger window
+     * will result in more compact ciphertext.
+     * @param {number} numBytes sliding window size, in bytes (1MB by default).
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withStreamWindowSize(numBytes) {
+        this.setStreamWindowSize(numBytes);
+        return this;
+    }
+    /**
+     * Whether the encrypted data should be formatted using html. This allows authorized users to
+     * double click and read using the Virtru Secure Reader, at the cost of reduced space efficiency.
+     * <br/><br/>
+     * This is enabled by default.
+     * @return {boolean} true if the encrypted data will be in html format.
+     */
+    hasHtmlFormat() {
+        return !!this._params.asHtml;
+    }
+    /**
+     * Specify that the encrypted data should be formatted using html. This allows authorized users to
+     * double click and read using the Virtru Secure Reader, at the cost of reduced space efficiency.
+     * <br/><br/>
+     * This is enabled by default.
+     */
+    setHtmlFormat() {
+        this._params.asHtml = true;
+    }
+    /**
+     * Specify that the encrypted data should be formatted using html. This allows authorized users to
+     * double click and read using the Virtru Secure Reader, at the cost of reduced space efficiency.
+     * Returns this object for method chaining.
+     * <br/><br/>
+     * This is enabled by default.
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withHtmlFormat() {
+        this.setHtmlFormat();
+        return this;
+    }
+    /**
+     * Whether the encrypted data should be formatted using zip. This is more space efficient than html,
+     * but authorized users must leverage the Virtru SDK to decrypt.
+     * <br/><br/>
+     * This is disabled by default (html is enabled by default).
+     * @return {boolean} true if the encrypted data will be in zip format.
+     */
+    hasZipFormat() {
+        return !this._params.asHtml;
+    }
+    /**
+     * Whether the encrypted data should be formatted using zip. This is more space efficient than html,
+     * but authorized users must leverage the Virtru SDK to decrypt.
+     * <br/><br/>
+     * This is disabled by default (html is enabled by default).
+     */
+    setZipFormat() {
+        this._params.asHtml = false;
+    }
+    /**
+     * Whether the encrypted data should be formatted using zip. This is more space efficient than html,
+     * but authorized users must leverage the Virtru SDK to decrypt. Returns this object for method chaining.
+     * <br/><br/>
+     * This is disabled by default (html is enabled by default).
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withZipFormat() {
+        this.setZipFormat();
+        return this;
+    }
+    /**
+     * Gets the (consumer provided) mime type of the file to be protected
+     */
+    getMimeType() {
+        return this._params.mimeType;
+    }
+    /**
+     * Sets the mime type of the underlying file.
+     * @param {string} mimeType - the content type string to be applied during decrypt
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    setMimeType(mimeType) {
+        this._params.mimeType = mimeType;
+    }
+    /**
+     * Sets the mime type of the underlying file.
+     * @param {string} mimeType - the content type string to be applied during decrypt
+     * @return {EncryptParamsBuilder} - this object.
+     */
+    withMimeType(mimeType) {
+        this.setMimeType(mimeType);
+        return this;
+    }
+    _deepCopy(_params) {
+        return freeze({ ..._params, getPolicyId: () => _params.scope?.policyId });
+    }
+    /**
+     * Generate a parameters object in the form expected by <code>{@link EncryptParamsBuilder#build|build()}</code>.
+     * <br/><br/>
+     * Creates a deep copy to prevent tricky call-by-reference and async execution bugs.
+     */
+    build() {
+        return this._deepCopy(this._params);
+    }
+    /**
+     * Sets the assertion configurations for the encryption parameters.
+     *
+     * @param {AssertionConfig[]} assertionConfigs - An array of assertion configurations to be set.
+     * @returns {EncryptParamsBuilder} The current instance of the EncryptParamsBuilder for method chaining.
+     */
+    withAssertions(assertionConfigs) {
+        this._params.assertionConfigs = assertionConfigs;
+        return this;
+    }
+}
+exports.EncryptParamsBuilder = EncryptParamsBuilder;
+/**
+ * A builder capable of constructing the necessary parameters object for a
+ * <code>{@link Client#decrypt|decrypt}</code> operation. Must be built using the <code>{@link DecryptParamsBuilder#build|build()}</code> function.
+ * <br/><br/>
+ * Decrypt does not currently allow for setting a {@link EncryptParamsBuilder#getStreamWindowSize|stream window size}. Support for this configuration will be added in the near future.
+ * <br/><br/>
+ * Example usage:
+ * <pre>
+ // Configure the parameters to decrypt a local file.
+ const decryptParams = new Virtru.DecryptParamsBuilder()
+ .withFileSource("encrypted.html")
+ .build();
+
+ // Run the decrypt and write the result to stdout (node-style).
+ (await client.decrypt(decryptParams)).pipe(process.stdout);
+ </pre>
+ */
+class DecryptParamsBuilder {
+    constructor(to_copy = {}) {
+        this._params = {
+            ...to_copy,
+        };
+    }
+    getStreamSource() {
+        return this._params.source;
+    }
+    /**
+     * Set the TDF ciphertext to decrypt, in buffer form.
+     * @param buffer to decrypt.
+     */
+    setBufferSource(buffer) {
+        this._params.source = { type: 'buffer', location: buffer };
+    }
+    /**
+     * Set the TDF ciphertext to decrypt, in buffer form. Returns this object for method chaining.
+     * @param buffer to decrypt.
+     */
+    withBufferSource(buffer) {
+        this.setBufferSource(buffer);
+        return this;
+    }
+    /**
+     * Specify the TDF ciphertext to decrypt, from an http(s) URL.
+     * TODO: add support for TDF.html encoding
+     * @param {string} url - a url pointing to a tdf3 file
+     */
+    setUrlSource(url) {
+        if (!/^https?/.exec(url)) {
+            throw new errors_js_1.ConfigurationError(`stream source must be a web url, not [${url}]`);
+        }
+        this._params.source = { type: 'remote', location: url };
+    }
+    /**
+     * Specify the TDF ciphertext to decrypt, as a URL.
+     * @param {string} url - a tdf3 remote URL.
+     * @return {DecryptParamsBuilder} - this object.
+     */
+    withUrlSource(url) {
+        this.setUrlSource(url);
+        return this;
+    }
+    /**
+     * Specify the TDF ciphertext to decrypt, in stream form.
+     * @param {Readable} stream - a Readable stream to decrypt.
+     */
+    setStreamSource(stream) {
+        this._params.source = { type: 'stream', location: stream };
+    }
+    /**
+     * Specify the TDF ciphertext to decrypt, in stream form. Returns this object for method chaining.
+     * @param stream to decrypt.
+     */
+    withStreamSource(stream) {
+        if (!stream?.getReader) {
+            throw new errors_js_1.ConfigurationError(`Source must be a WebReadableStream. Run node streams through stream.Readable.toWeb()`);
+        }
+        this.setStreamSource(stream);
+        return this;
+    }
+    /**
+     * Specify the TDF ciphertext to decrypt, in string form.
+     * @param {string} string - a string to decrypt.
+     */
+    setStringSource(string) {
+        this.setBufferSource(new TextEncoder().encode(string));
+    }
+    /**
+     * Specify the TDF ciphertext to decrypt, in string form. Returns this object for method chaining.
+     * @param {string} string - a string to decrypt.
+     * @return {DecryptParamsBuilder} - this object.
+     */
+    withStringSource(string) {
+        this.setStringSource(string);
+        return this;
+    }
+    /**
+     * Specify a reference to a local file with the TDF ciphertext to decrypt.
+     * Only works with node.
+     * @param source (node) the path of the local file to decrypt, or the Blob (browser/node)
+     */
+    setFileSource(source) {
+        this._params.source = { type: 'file-browser', location: source };
+    }
+    /**
+     * Specify a reference to a local file with the TDF ciphertext to decrypt. Only works with node.
+     * Returns this object for method chaining.
+     * @param source (node) the path of the local file to decrypt, or the Blob (browser/node)
+     */
+    withFileSource(source) {
+        this.setFileSource(source);
+        return this;
+    }
+    /**
+     * Specify the content to decrypt using an ArrayBuffer reference, which must have already
+     * loaded the file content. Using the below linked example, e.target.result is the ArrayBuffer
+     * <br/><br/>
+     * Example: https://developer.mozilla.org/en-US/docs/Web/API/FileReader/onload
+     *
+     * @param {ArrayBuffer} arraybuffer - the array buffer containing the file to decrypt.
+     * @return {DecryptParamsBuilder} - this object
+     */
+    setArrayBufferSource(arraybuffer) {
+        this.setBufferSource(new Uint8Array(arraybuffer));
+    }
+    /**
+     * Specify the content to decrypt using an ArrayBuffer reference. Returns this object for method chaining.
+     *
+     * @param  {ArrayBuffer} arraybuffer - the ArrayBuffer used to load file content from a browser
+     * @return {DecryptParamsBuilder} - this object.
+     */
+    withArrayBufferSource(arraybuffer) {
+        this.setArrayBufferSource(arraybuffer);
+        return this;
+    }
+    /** Skip assertion verification */
+    withNoVerifyAssertions(v) {
+        this._params.noVerifyAssertions = v;
+        return this;
+    }
+    _deepCopy(_params) {
+        return freeze({ ..._params });
+    }
+    /**
+     * Generate a parameters object in the form expected by <code>{@link Client#decrypt|decrypt}</code>.
+     * <br/><br/>
+     * Creates a deep copy to prevent tricky call-by-reference and async execution bugs.
+     */
+    build() {
+        if (!this._params.source) {
+            throw new errors_js_1.ConfigurationError('No source specified');
+        }
+        return this._deepCopy(this._params);
+    }
+}
+exports.DecryptParamsBuilder = DecryptParamsBuilder;
+//# sourceMappingURL=data:application/json;base64,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