npm - @paakd/config - Versions diffs - 0.0.2 - Mend

@paakd/config 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (140) hide show

package/dist/src/index.js +20 -0
package/gen/go/addresses/Address.pkl.go +10 -0
package/gen/go/addresses/Addresses.pkl.go +43 -0
package/gen/go/addresses/BillingAddress.pkl.go +8 -0
package/gen/go/addresses/Field.pkl.go +43 -0
package/gen/go/addresses/addressgroup/AddressGroup.pkl.go +43 -0
package/gen/go/addresses/fieldtype/FieldType.pkl.go +61 -0
package/gen/go/addresses/init.pkl.go +11 -0
package/gen/go/cloudflare/Cloudflare.pkl.go +37 -0
package/gen/go/cloudflare/R2Bucket.pkl.go +22 -0
package/gen/go/cloudflare/TerraformBackend.pkl.go +16 -0
package/gen/go/cloudflare/Turnstile.pkl.go +8 -0
package/gen/go/cloudflare/init.pkl.go +11 -0
package/gen/go/db/DB.pkl.go +43 -0
package/gen/go/db/DBConnection.pkl.go +12 -0
package/gen/go/db/init.pkl.go +9 -0
package/gen/go/dune/Dune.pkl.go +47 -0
package/gen/go/dune/init.pkl.go +8 -0
package/gen/go/enterprise/Enterprise.pkl.go +118 -0
package/gen/go/enterprise/init.pkl.go +8 -0
package/gen/go/enterprise/taxonomyversion/TaxonomyVersion.pkl.go +37 -0
package/gen/go/redis/Redis.pkl.go +41 -0
package/gen/go/redis/init.pkl.go +8 -0
package/gen/go/shared/Build.pkl.go +46 -0
package/gen/go/shared/Shared.pkl.go +35 -0
package/gen/go/shared/init.pkl.go +9 -0
package/gen/go/worker/Worker.pkl.go +55 -0
package/gen/go/worker/WorkerConnect.pkl.go +6 -0
package/gen/go/worker/init.pkl.go +9 -0
package/gen/js/development/basket_eco_packages_config_addresses.pkl.ts +106 -0
package/gen/js/development/basket_eco_packages_config_checkout.pkl.ts +73 -0
package/gen/js/development/basket_eco_packages_config_cloudflare.pkl.ts +69 -0
package/gen/js/development/basket_eco_packages_config_cms.pkl.ts +119 -0
package/gen/js/development/basket_eco_packages_config_db.pkl.ts +47 -0
package/gen/js/development/basket_eco_packages_config_dune.pkl.ts +36 -0
package/gen/js/development/basket_eco_packages_config_enterprise.pkl.ts +290 -0
package/gen/js/development/basket_eco_packages_config_feature.pkl.ts +58 -0
package/gen/js/development/basket_eco_packages_config_redis.pkl.ts +30 -0
package/gen/js/development/basket_eco_packages_config_renderer_development_cms.pkl.ts +28 -0
package/gen/js/development/basket_eco_packages_config_shared.pkl.ts +73 -0
package/gen/js/development/basket_eco_packages_config_worker.pkl.ts +53 -0
package/gen/js/production/basket_eco_packages_config_addresses.pkl.ts +106 -0
package/gen/js/production/basket_eco_packages_config_checkout.pkl.ts +73 -0
package/gen/js/production/basket_eco_packages_config_cloudflare.pkl.ts +69 -0
package/gen/js/production/basket_eco_packages_config_cms.pkl.ts +119 -0
package/gen/js/production/basket_eco_packages_config_db.pkl.ts +47 -0
package/gen/js/production/basket_eco_packages_config_dune.pkl.ts +36 -0
package/gen/js/production/basket_eco_packages_config_enterprise.pkl.ts +290 -0
package/gen/js/production/basket_eco_packages_config_feature.pkl.ts +58 -0
package/gen/js/production/basket_eco_packages_config_kiosk_host.pkl.ts +72 -0
package/gen/js/production/basket_eco_packages_config_redis.pkl.ts +30 -0
package/gen/js/production/basket_eco_packages_config_renderer_production_cms.pkl.ts +28 -0
package/gen/js/production/basket_eco_packages_config_renderer_production_dune_config.pkl.ts +29 -0
package/gen/js/production/basket_eco_packages_config_renderer_production_workflow_config.pkl.ts +29 -0
package/gen/js/production/basket_eco_packages_config_renderer_staging_dune_config.pkl.ts +29 -0
package/gen/js/production/basket_eco_packages_config_shared.pkl.ts +73 -0
package/gen/js/production/basket_eco_packages_config_worker.pkl.ts +49 -0
package/gen/js/staging/basket_eco_packages_config_addresses.pkl.ts +106 -0
package/gen/js/staging/basket_eco_packages_config_checkout.pkl.ts +77 -0
package/gen/js/staging/basket_eco_packages_config_cloudflare.pkl.ts +74 -0
package/gen/js/staging/basket_eco_packages_config_cms.pkl.ts +119 -0
package/gen/js/staging/basket_eco_packages_config_db.pkl.ts +47 -0
package/gen/js/staging/basket_eco_packages_config_dune.pkl.ts +40 -0
package/gen/js/staging/basket_eco_packages_config_enterprise.pkl.ts +290 -0
package/gen/js/staging/basket_eco_packages_config_feature.pkl.ts +58 -0
package/gen/js/staging/basket_eco_packages_config_redis.pkl.ts +30 -0
package/gen/js/staging/basket_eco_packages_config_renderer_staging_cms.pkl.ts +28 -0
package/gen/js/staging/basket_eco_packages_config_renderer_staging_dune_config.pkl.ts +29 -0
package/gen/js/staging/basket_eco_packages_config_renderer_staging_workflow_config.pkl.ts +29 -0
package/gen/js/staging/basket_eco_packages_config_shared.pkl.ts +69 -0
package/gen/js/staging/basket_eco_packages_config_worker.pkl.ts +53 -0
package/package.json +66 -0
package/src/addresses.ts +90 -0
package/src/authorization/policy.conf +15 -0
package/src/authorization/policy.csv +26 -0
package/src/chk.spec.ts +61 -0
package/src/chk.ts +88 -0
package/src/cms.test.ts +52 -0
package/src/cms.ts +65 -0
package/src/index.ts +4 -0
package/src/pkl/PklProject +21 -0
package/src/pkl/development/Addresses.pkl +2114 -0
package/src/pkl/development/CMS.pkl +37 -0
package/src/pkl/development/Checkout.pkl +32 -0
package/src/pkl/development/Cloudflare.pkl +20 -0
package/src/pkl/development/Db.pkl +14 -0
package/src/pkl/development/Dune.pkl +12 -0
package/src/pkl/development/Enterprise.pkl +158 -0
package/src/pkl/development/Feature.pkl +4 -0
package/src/pkl/development/Redis.pkl +6 -0
package/src/pkl/development/Shared.pkl +16 -0
package/src/pkl/development/Worker.pkl +43 -0
package/src/pkl/development/renderer/CMS.pkl +59 -0
package/src/pkl/production/Addresses.pkl +2114 -0
package/src/pkl/production/CMS.pkl +34 -0
package/src/pkl/production/Checkout.pkl +32 -0
package/src/pkl/production/Cloudflare.pkl +20 -0
package/src/pkl/production/Db.pkl +14 -0
package/src/pkl/production/Dune.pkl +12 -0
package/src/pkl/production/Enterprise.pkl +158 -0
package/src/pkl/production/Feature.pkl +8 -0
package/src/pkl/production/KioskHost.pkl +5 -0
package/src/pkl/production/Redis.pkl +6 -0
package/src/pkl/production/Shared.pkl +15 -0
package/src/pkl/production/Worker.pkl +43 -0
package/src/pkl/production/renderer/CMS.pkl +59 -0
package/src/pkl/production/renderer/Dune.pkl +52 -0
package/src/pkl/production/renderer/Feature.pkl +51 -0
package/src/pkl/production/renderer/Workflow.pkl +51 -0
package/src/pkl/staging/Addresses.pkl +2114 -0
package/src/pkl/staging/CMS.pkl +35 -0
package/src/pkl/staging/Checkout.pkl +32 -0
package/src/pkl/staging/Cloudflare.pkl +20 -0
package/src/pkl/staging/Db.pkl +14 -0
package/src/pkl/staging/Dune.pkl +12 -0
package/src/pkl/staging/Enterprise.pkl +158 -0
package/src/pkl/staging/Feature.pkl +8 -0
package/src/pkl/staging/Redis.pkl +6 -0
package/src/pkl/staging/Shared.pkl +16 -0
package/src/pkl/staging/Worker.pkl +43 -0
package/src/pkl/staging/renderer/CMS.pkl +59 -0
package/src/pkl/staging/renderer/Dune.pkl +52 -0
package/src/pkl/staging/renderer/Feature.pkl +51 -0
package/src/pkl/staging/renderer/Workflow.pkl +51 -0
package/src/pkl/tmpl/AddressesTmpl.pkl +44 -0
package/src/pkl/tmpl/CMSTmpl.pkl +64 -0
package/src/pkl/tmpl/CheckoutTmpl.pkl +34 -0
package/src/pkl/tmpl/CloudflareTmpl.pkl +33 -0
package/src/pkl/tmpl/DbTmpl.pkl +18 -0
package/src/pkl/tmpl/DuneTmpl.pkl +124 -0
package/src/pkl/tmpl/EnterpriseTmpl.pkl +105 -0
package/src/pkl/tmpl/FeatureTmpl.pkl +90 -0
package/src/pkl/tmpl/KioskHostTmpl.pkl +194 -0
package/src/pkl/tmpl/RedisTmpl.pkl +9 -0
package/src/pkl/tmpl/SharedTmpl.pkl +40 -0
package/src/pkl/tmpl/WorkerTmpl.pkl +27 -0
package/src/pkl-reader/main.go +167 -0
package/src/shared.ts +65 -0
package/src/vault.spec.ts +62 -0
package/src/vault.ts +68 -0

package/src/pkl/tmpl/SharedTmpl.pkl ADDED Viewed

@@ -0,0 +1,40 @@
+@go.Package { name = "paakd.com/packages/config/gen/go/shared" }
+module paakd.com.packages.config.Shared
+import "package://pkg.pkl-lang.org/pkl-go/pkl.golang@0.12.1#/go.pkl"
+class Build {
+  enterpriseEnv: String
+  envPath: String
+  hidden envFileContent:Mapping = read*(envPath)
+  hidden envData = envFileContent[envPath].text.split("\n").map((it) -> it.split("=")).toMap((it) -> it[0].trim(), (it) -> if (it.length == 2) it[1].trim() else  "")
+  const binUser: String = "owe"
+  const binUserGroup: String = "kiosk"
+  const binUserId: UInt16  = 10001
+  certPath: String
+  const serviceDomainName: String = "shofluent.com"
+  vaultUrl: String = "https://vault.shofluent.xyz"
+  goEnv: String
+  nodeEnv: String
+  shopId: String = envData.getOrNull("SHOP_ID")
+  hidden vaultToken: String = envData.getOrNull("VAULT_TOKEN")
+  tenant: String = "\(shopId).\(serviceDomainName)"
+  envFilePath: String
+  shopBucketName: String = "shop-bucket-\(shopId)"
+  const productTaxonomyIndexBucket: String = "taxonomy-index"
+  fixed apiVersion: String = "v0.1"
+  envFile: String
+  version: String
+  storefrontHost: String
+  storefrontPort: UInt16
+  secureCookiePassword: String
+  function getAssetsDomain(): String = "assets.\(shopId).\(serviceDomainName)"
+  function getAssetsURL():String = "https://\(getAssetsDomain())"
+  function shopVaultEnvPath(val: String): String = "vault:\(vaultToken)~shops/\(shopId)/env~\(val)"
+  function shopVaultThirdpartyPath(val: String): String = "vault:\(vaultToken)~services/third_party~\(val)"
+  function shopVaultInternalEnvPath(val: String): String = "vault:\(vaultToken)~shops/\(shopId)/internal/env~\(val)"
+}
+build: Build

package/src/pkl/tmpl/WorkerTmpl.pkl ADDED Viewed

@@ -0,0 +1,27 @@
+@go.Package { name = "paakd.com/packages/config/gen/go/worker" }
+module paakd.com.packages.config.Worker
+import "package://pkg.pkl-lang.org/pkl-go/pkl.golang@0.12.1#/go.pkl"
+class WorkerConnect {
+    endpoint: String
+    hidden user: String
+    hidden password: String
+    local baseValue: String = "\(user):\(password)".base64
+    function getBasicAuth(): String  =  "Basic \(baseValue)"
+}
+breeze:WorkerConnect
+orchestrator:WorkerConnect
+mesh:WorkerConnect
+tfState:WorkerConnect
+tfStateShopBackend:WorkerConnect
+tfStateServiceBackend:WorkerConnect
+tfStateHostsBackend:WorkerConnect
+orchestratorAuth: String
+shopBackendAuth: String
+serviceBackendAuth: String
+hostBackendAuth: String

package/src/pkl-reader/main.go ADDED Viewed

@@ -0,0 +1,167 @@
+package main
+import (
+	"errors"
+	"fmt"
+	"io"
+	"net/http"
+	"net/url"
+	"os"
+	"strings"
+	"sync"
+	"time"
+	"github.com/apple/pkl-go/pkl"
+	json_encoding "github.com/segmentio/encoding/json"
+	"go.uber.org/zap"
+)
+var (
+	VAULT_ADDR    = os.Getenv("VAULT_ADDR")
+	VAULT_TOKEN   = os.Getenv("VAULT_TOKEN")
+	CACHE_TTL_MIN = 15 * time.Minute
+)
+type (
+	vaultReader struct {
+		logger *zap.Logger
+	}
+	ResStore struct {
+		Data      map[string]map[string]interface{}
+		CreatedAt time.Time
+		sync.Mutex
+	}
+	VaultRes struct {
+		Data map[string]interface{} `json:"data"`
+	}
+)
+var (
+	_ pkl.ResourceReader = &vaultReader{logger: zap.NewNop()}
+	responseCache = ResStore{
+		Data: make(map[string]map[string]interface{}),
+	}
+)
+func main() {
+	if VAULT_ADDR == "" {
+		VAULT_ADDR = "https://vault.shofluent.xyz"
+	}
+	logger, _ := zap.NewDevelopment()
+	client, err := pkl.NewExternalReaderClient(pkl.WithExternalClientResourceReader(vaultReader{
+		logger: logger,
+	}))
+	if err != nil {
+		logger.Fatal("create pkl client", zap.Error(err))
+	}
+	if err := client.Run(); err != nil {
+		logger.Fatal("run pkl client", zap.Error(err))
+	}
+}
+func (r vaultReader) Scheme() string {
+	return "vault"
+}
+func (r vaultReader) HasHierarchicalUris() bool {
+	return false
+}
+func (r vaultReader) IsGlobbable() bool {
+	return false
+}
+func (r vaultReader) ListElements(baseURI url.URL) ([]pkl.PathElement, error) {
+	r.logger.Debug("vaultReader.ListElements", zap.String("baseURI", baseURI.String()))
+	return nil, nil
+}
+func (r vaultReader) makeAPICallToVault(vaultToken, path string) (map[string]interface{}, error) {
+	if VAULT_TOKEN == "" {
+		VAULT_TOKEN = vaultToken
+	}
+	var (
+		header = map[string]string{
+			"X-Vault-Token": VAULT_TOKEN,
+		}
+		url = VAULT_ADDR + "/v1/secret/data/" + path
+	)
+	responseCache.Lock()
+	defer responseCache.Unlock()
+	if data, found := responseCache.Data[url]; found && time.Since(responseCache.CreatedAt) < CACHE_TTL_MIN {
+		return data, nil
+	}
+	r.logger.Debug("vaultReader.makeAPICallToVault", zap.String("url", url))
+	req, err := http.NewRequest("GET", url, nil)
+	if err != nil {
+		r.logger.Error("create request", zap.Error(err))
+		return nil, err
+	}
+	for key, value := range header {
+		req.Header.Add(key, value)
+	}
+	client := &http.Client{}
+	resp, err := client.Do(req)
+	if err != nil {
+		r.logger.Error("make request", zap.Error(err))
+		return nil, err
+	}
+	defer func() { _ = resp.Body.Close() }()
+	if resp.StatusCode != http.StatusOK {
+		// ready body string
+		bodyBytes, _ := io.ReadAll(resp.Body)
+		r.logger.Error("get data from vault", zap.String("body", string(bodyBytes)))
+		return nil, fmt.Errorf("get data from vault %w", err)
+	}
+	var res VaultRes
+	if err := json_encoding.NewDecoder(resp.Body).Decode(&res); err != nil {
+		r.logger.Error("decode response", zap.Error(err))
+		return nil, err
+	}
+	if res.Data == nil {
+		r.logger.Error("no data found in vault")
+		return nil, errors.New("no data found in vault")
+	}
+	if data, ok := res.Data["data"].(map[string]interface{}); ok {
+		responseCache.Data[url] = data
+		responseCache.CreatedAt = time.Now()
+		return data, nil
+	} else {
+		return nil, errors.New("invalid data format")
+	}
+}
+func (r vaultReader) Read(uri url.URL) ([]byte, error) {
+	path := strings.Split(uri.Opaque, "~")
+	if len(path) != 3 {
+		r.logger.Error("invalid vault path", zap.String("path", uri.Opaque))
+		return nil, errors.New("invalid vault path")
+	}
+	if os.Getenv("ENTERPRISE_ENV") == "docker" || os.Getenv("CI") != "" {
+		return []byte(path[2]), nil
+	}
+	data, err := r.makeAPICallToVault(path[0], path[1])
+	if err != nil {
+		r.logger.Error("read vault secret", zap.Error(err))
+		return nil, err
+	}
+	switch data[path[2]].(type) {
+	case string:
+		return []byte(data[path[2]].(string)), nil
+	case []byte:
+		return data[path[2]].([]byte), nil
+	case nil:
+		return nil, nil
+	default:
+		return nil, errors.New("invalid data type")
+	}
+}

package/src/shared.ts ADDED Viewed

@@ -0,0 +1,65 @@
+import * as pklTypescript from '@pkl-community/pkl-typescript'
+import { load as devLoad } from '../gen/js/development/basket_eco_packages_config_shared.pkl'
+import {
+  load as prodLoad,
+  type Shared,
+} from '../gen/js/production/basket_eco_packages_config_shared.pkl'
+import { load as stgLoad } from '../gen/js/staging/basket_eco_packages_config_shared.pkl'
+import { vaultReader } from './vault'
+export const getSharedConfig: () => Promise<Shared> = async () => {
+  const evaluator = await pklTypescript.newEvaluator({
+    allowedResources: [
+      'http:',
+      'https:',
+      'file:',
+      'env:',
+      'prop:',
+      'modulepath:',
+      'package:',
+      'projectpackage:',
+      'vault:',
+    ],
+    allowedModules: [
+      'pkl:',
+      'repl:',
+      'file:',
+      'http:',
+      'https:',
+      'modulepath:',
+      'package:',
+      'projectpackage:',
+    ],
+    projectDir: '../../packages/config/src/pkl/production',
+    declaredProjectDependencies: {
+      localDependencies: {},
+      remoteDependencies: {},
+    },
+    resourceReaders: [
+      {
+        scheme: 'vault',
+        isGlobbable: false,
+        hasHierarchicalUris: false,
+        listElements: (uri: URL): any => {
+          return []
+        },
+        read: vaultReader,
+      },
+    ],
+  })
+  try {
+    let load = devLoad
+    let sourcePath = '../../packages/config/src/pkl/development/Shared.pkl'
+    if (process.env.BUILD_ENV === 'staging') {
+      load = stgLoad
+      sourcePath = '../../packages/config/src/pkl/staging/Shared.pkl'
+    } else if (process.env.BUILD_ENV === 'production') {
+      load = prodLoad
+      sourcePath = '../../packages/config/src/pkl/production/Shared.pkl'
+    }
+    const result = await load(evaluator, pklTypescript.FileSource(sourcePath))
+    return result
+  } finally {
+    evaluator.close()
+  }
+}

package/src/vault.spec.ts ADDED Viewed

@@ -0,0 +1,62 @@
+import { vaultReader } from './vault'
+describe('vaultReader', () => {
+  const OLD_ENV = process.env
+  beforeEach(() => {
+    process.env = { ...OLD_ENV }
+  })
+  afterEach(() => {
+    process.env = OLD_ENV
+  })
+  it('returns CI_ENVIRONMENT buffer in CI', async () => {
+    process.env.CI = '1'
+    const olVal = process.env.VITEST
+    delete process.env.VITEST // Ensure VITEST is not set
+    const uri = new URL('vault://dummy/vaultkey~datapath~field')
+    const result = await vaultReader(uri)
+    expect(Buffer.from(result).toString()).toBe('CI_ENVIRONMENT')
+    process.env.VITEST = olVal // Restore VITEST
+  })
+  it('returns empty Uint8Array for invalid path', async () => {
+    const uri = new URL('vault://dummy/vaultkey~datapath')
+    const result = await vaultReader(uri)
+    expect(result).toBeInstanceOf(Uint8Array)
+    expect(result.length).toBe(0)
+  })
+  it('returns empty Uint8Array for non-ok fetch', async () => {
+    global.fetch = vi.fn().mockResolvedValue({ ok: false, statusText: 'fail' })
+    const uri = new URL('vault://dummy/vaultkey~datapath~field')
+    delete process.env.CI
+    const result = await vaultReader(uri)
+    expect(result).toBeInstanceOf(Uint8Array)
+    expect(result.length).toBe(0)
+  })
+  it('returns empty Uint8Array for missing field', async () => {
+    global.fetch = vi.fn().mockResolvedValue({
+      ok: true,
+      json: async () => ({ data: { data: { other: 'value' } } }),
+    })
+    const uri = new URL('vault://dummy/vaultkey~datapath~field')
+    const result = await vaultReader(uri)
+    expect(result).toBeInstanceOf(Uint8Array)
+    expect(result.length).toBe(0)
+  })
+  it('returns decoded buffer for valid field', async () => {
+    global.fetch = vi.fn().mockResolvedValue({
+      ok: true,
+      json: async () => ({
+        data: { data: { field2: Buffer.from('hello').toString() } },
+      }),
+    })
+    const uri = new URL('vault://dummy/vaultkey2~datapath2~field2')
+    const result = await vaultReader(uri)
+    expect(Buffer.from(result).toString()).toBe('hello')
+  })
+})

package/src/vault.ts ADDED Viewed

@@ -0,0 +1,68 @@
+// Simple in-memory cache using a Map
+export const vaultPathCache = new Map()
+// const vaultPathCache = new Map<string, Uint8Array>();
+export const vaultReader = async (uri: URL): Promise<Uint8Array> => {
+  // Remove leading slash if present
+  const cleanPath = uri.pathname.startsWith('/')
+    ? uri.pathname.slice(1)
+    : uri.pathname
+  const path = cleanPath.split('~')
+  if (path.length !== 3) {
+    console.error(`Invalid vault path: ${uri}`)
+    return new Uint8Array()
+  }
+  if (process.env.CI && !process.env.VITEST) {
+    // In CI, we don't want to access the vault, so we return an empty Uint8Array
+    // This is useful for testing purposes where we don't want to hit the actual vault
+    console.warn('Skipping vault access in CI environment')
+    return new Uint8Array(Buffer.from('CI_ENVIRONMENT', 'utf-8'))
+  }
+  const [vaultKey, dataPath, fieldName] = path
+  let resData = vaultPathCache.get(`${vaultKey}~${dataPath}`)
+  if (!resData || process.env.CI) {
+    const vaultAddr = process.env.VAULT_PATH || 'https://vault.shofluent.xyz'
+    const url = `${vaultAddr}/v1/secret/data/${dataPath}`
+    const headers = {
+      'X-Vault-Token': vaultKey,
+      'Content-Type': 'application/json',
+      Accept: 'application/json',
+    }
+    const res = await fetch(url, {
+      method: 'GET',
+      headers,
+    })
+    if (!res.ok) {
+      console.error(`fetch from vault: ${res.statusText}`)
+      return new Uint8Array()
+    }
+    const { data } = await res.json()
+    resData = data?.data
+    // Store value with timestamp for manual expiration
+    vaultPathCache.set(`${vaultKey}~${dataPath}`, {
+      value: resData,
+      expires: Date.now() + 15 * 60 * 1000, // 15 minutes
+    })
+  } else if (resData.expires && resData.expires < Date.now()) {
+    // Expired, remove and fetch again
+    vaultPathCache.delete(`${vaultKey}~${dataPath}`)
+    return vaultReader(uri) // Recursively re-fetch
+  } else {
+    resData = resData.value
+  }
+  if (!resData?.[fieldName]) {
+    console.error(
+      `Invalid data from vault: ${JSON.stringify(resData)}, ${Object.keys(resData)}`
+    )
+    return new Uint8Array()
+  }
+  const fieldData = resData[fieldName]
+  if (typeof fieldData !== 'string') {
+    console.error(`Invalid field data from vault: ${JSON.stringify(fieldData)}`)
+    return new Uint8Array()
+  }
+  const decodedData = Buffer.from(fieldData)
+  return decodedData as Uint8Array
+}