npm - @pawells/nestjs-shared - Versions diffs - 1.0.0-dev.4c8c698 - Mend

@pawells/nestjs-shared 1.0.0-dev.4c8c698

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (286) hide show

package/build/common/guards/csrf.guard.d.ts ADDED Viewed

@@ -0,0 +1,53 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { ModuleRef } from '@nestjs/core';
+import { LazyModuleRefService } from '../utils/lazy-getter.types.js';
+/**
+ * CSRF Guard.
+ * Validates CSRF tokens on requests to prevent Cross-Site Request Forgery attacks.
+ * Automatically bypasses validation for safe HTTP methods (GET, HEAD, OPTIONS) and enforces
+ * token validation for state-changing operations (POST, PUT, DELETE, PATCH).
+ *
+ * CSRF validation:
+ * - Safe methods (GET, HEAD, OPTIONS): Always allowed
+ * - State-changing methods (POST, PUT, DELETE, PATCH): Token validation required
+ *
+ * @remarks
+ * - Registered globally by CommonModule
+ * - Uses CSRFService for token generation and validation
+ * - Logs failed validations via AppLogger and AuditLoggerService
+ * - Throws ForbiddenException (403) on token validation failure
+ * - CSRF_SECRET environment variable required (validated by CSRFService.onModuleInit)
+ *
+ * @example
+ * ```typescript
+ * // Automatically applied globally when CommonModule is imported
+ * // No decorator needed on endpoints
+ *
+ * // Manual application to specific controller
+ * @UseGuards(CSRFGuard)
+ * @Controller('api')
+ * export class ApiController {
+ *   @Post()
+ *   updateData() { ... }
+ * }
+ * ```
+ */
+export declare class CSRFGuard implements CanActivate, LazyModuleRefService {
+    readonly Module: ModuleRef;
+    constructor(module: ModuleRef);
+    private get CsrfService();
+    private get Logger();
+    private get AuditLogger();
+    /**
+     * Evaluate whether the current request is authorized based on CSRF token validity.
+     * Allows safe methods (GET, HEAD, OPTIONS) without validation. For state-changing
+     * requests, validates the CSRF token and logs failures for audit trails.
+     *
+     * @param context - The execution context containing request/response objects
+     * @returns true if request is authorized or safe method; throws ForbiddenException if validation fails
+     *
+     * @throws ForbiddenException when CSRF token validation fails on state-changing requests
+     */
+    canActivate(context: ExecutionContext): boolean;
+}
+//# sourceMappingURL=csrf.guard.d.ts.map

package/build/common/guards/csrf.guard.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"csrf.guard.d.ts","sourceRoot":"","sources":["../../../src/common/guards/csrf.guard.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,WAAW,EAAE,gBAAgB,EAAsB,MAAM,gBAAgB,CAAC;AAC/F,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAKzC,OAAO,EAAE,oBAAoB,EAAE,MAAM,+BAA+B,CAAC;AAErE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AAEH,qBACa,SAAU,YAAW,WAAW,EAAE,oBAAoB;IAClE,SAAgB,MAAM,EAAE,SAAS,CAAC;gBAEtB,MAAM,EAAE,SAAS;IAI7B,OAAO,KAAK,WAAW,GAEtB;IAED,OAAO,KAAK,MAAM,GAMjB;IAED,OAAO,KAAK,WAAW,GAMtB;IAED;;;;;;;;;OASG;IAEI,WAAW,CAAC,OAAO,EAAE,gBAAgB,GAAG,OAAO;CA6BtD"}

package/build/common/guards/csrf.guard.js ADDED Viewed

@@ -0,0 +1,109 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Injectable, ForbiddenException } from '@nestjs/common';
+import { ModuleRef } from '@nestjs/core';
+import { CSRFService } from '../services/csrf.service.js';
+import { AppLogger } from '../services/logger.service.js';
+import { AuditLoggerService } from '../services/audit-logger.service.js';
+/**
+ * CSRF Guard.
+ * Validates CSRF tokens on requests to prevent Cross-Site Request Forgery attacks.
+ * Automatically bypasses validation for safe HTTP methods (GET, HEAD, OPTIONS) and enforces
+ * token validation for state-changing operations (POST, PUT, DELETE, PATCH).
+ *
+ * CSRF validation:
+ * - Safe methods (GET, HEAD, OPTIONS): Always allowed
+ * - State-changing methods (POST, PUT, DELETE, PATCH): Token validation required
+ *
+ * @remarks
+ * - Registered globally by CommonModule
+ * - Uses CSRFService for token generation and validation
+ * - Logs failed validations via AppLogger and AuditLoggerService
+ * - Throws ForbiddenException (403) on token validation failure
+ * - CSRF_SECRET environment variable required (validated by CSRFService.onModuleInit)
+ *
+ * @example
+ * ```typescript
+ * // Automatically applied globally when CommonModule is imported
+ * // No decorator needed on endpoints
+ *
+ * // Manual application to specific controller
+ * @UseGuards(CSRFGuard)
+ * @Controller('api')
+ * export class ApiController {
+ *   @Post()
+ *   updateData() { ... }
+ * }
+ * ```
+ */
+let CSRFGuard = class CSRFGuard {
+    Module;
+    constructor(module) {
+        this.Module = module;
+    }
+    get CsrfService() {
+        return this.Module.get(CSRFService);
+    }
+    get Logger() {
+        try {
+            return this.Module.get(AppLogger, { strict: false });
+        }
+        catch {
+            return undefined;
+        }
+    }
+    get AuditLogger() {
+        try {
+            return this.Module.get(AuditLoggerService, { strict: false });
+        }
+        catch {
+            return undefined;
+        }
+    }
+    /**
+     * Evaluate whether the current request is authorized based on CSRF token validity.
+     * Allows safe methods (GET, HEAD, OPTIONS) without validation. For state-changing
+     * requests, validates the CSRF token and logs failures for audit trails.
+     *
+     * @param context - The execution context containing request/response objects
+     * @returns true if request is authorized or safe method; throws ForbiddenException if validation fails
+     *
+     * @throws ForbiddenException when CSRF token validation fails on state-changing requests
+     */
+    canActivate(context) {
+        const request = context.switchToHttp().getRequest();
+        // Skip CSRF validation for GET, HEAD, OPTIONS
+        if (['GET', 'HEAD', 'OPTIONS'].includes(request.method)) {
+            return true;
+        }
+        // Validate CSRF token
+        if (!this.CsrfService.validateToken(request)) {
+            // Extract IP address from request — prefer request.ip which respects trustProxy
+            const ipAddress = request.ip ?? request.socket?.remoteAddress ?? 'unknown';
+            const endpoint = request.path ?? request.url ?? 'unknown';
+            // Log via audit logger if available
+            this.AuditLogger?.logCsrfViolation(ipAddress, endpoint);
+            // Also log via app logger for backward compatibility
+            this.Logger?.warn('CSRF token validation failed', 'CSRFGuard', {
+                ip: ipAddress,
+                path: endpoint,
+                method: request.method,
+            });
+            throw new ForbiddenException('Invalid CSRF token');
+        }
+        return true;
+    }
+};
+CSRFGuard = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [ModuleRef])
+], CSRFGuard);
+export { CSRFGuard };
+//# sourceMappingURL=csrf.guard.js.map

package/build/common/guards/csrf.guard.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"csrf.guard.js","sourceRoot":"","sources":["../../../src/common/guards/csrf.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,UAAU,EAAiC,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAC/F,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAEzC,OAAO,EAAE,WAAW,EAAE,MAAM,6BAA6B,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,MAAM,+BAA+B,CAAC;AAC1D,OAAO,EAAE,kBAAkB,EAAE,MAAM,qCAAqC,CAAC;AAGzE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AAGI,IAAM,SAAS,GAAf,MAAM,SAAS;IACL,MAAM,CAAY;IAElC,YAAY,MAAiB;QAC5B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACtB,CAAC;IAED,IAAY,WAAW;QACtB,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACrC,CAAC;IAED,IAAY,MAAM;QACjB,IAAI,CAAC;YACJ,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,SAAS,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QACtD,CAAC;QAAC,MAAM,CAAC;YACR,OAAO,SAAS,CAAC;QAClB,CAAC;IACF,CAAC;IAED,IAAY,WAAW;QACtB,IAAI,CAAC;YACJ,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,kBAAkB,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAC/D,CAAC;QAAC,MAAM,CAAC;YACR,OAAO,SAAS,CAAC;QAClB,CAAC;IACF,CAAC;IAED;;;;;;;;;OASG;IAEI,WAAW,CAAC,OAAyB;QAC3C,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAW,CAAC;QAE7D,8CAA8C;QAC9C,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YACzD,OAAO,IAAI,CAAC;QACb,CAAC;QAED,sBAAsB;QACtB,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,OAAO,CAAC,EAAE,CAAC;YAC9C,gFAAgF;YAChF,MAAM,SAAS,GAAG,OAAO,CAAC,EAAE,IAAK,OAAO,CAAC,MAAiD,EAAE,aAAa,IAAI,SAAS,CAAC;YACvH,MAAM,QAAQ,GAAG,OAAO,CAAC,IAAI,IAAI,OAAO,CAAC,GAAG,IAAI,SAAS,CAAC;YAE1D,oCAAoC;YACpC,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;YAExD,qDAAqD;YACrD,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,8BAA8B,EAAE,WAAW,EAAE;gBAC9D,EAAE,EAAE,SAAS;gBACb,IAAI,EAAE,QAAQ;gBACd,MAAM,EAAE,OAAO,CAAC,MAAM;aACtB,CAAC,CAAC;YAEH,MAAM,IAAI,kBAAkB,CAAC,oBAAoB,CAAC,CAAC;QACpD,CAAC;QAED,OAAO,IAAI,CAAC;IACb,CAAC;CACD,CAAA;AAnEY,SAAS;IADrB,UAAU,EAAE;qCAIQ,SAAS;GAHjB,SAAS,CAmErB"}

package/build/common/guards/metrics.guard.d.ts ADDED Viewed

@@ -0,0 +1,42 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { ModuleRef } from '@nestjs/core';
+import { LazyModuleRefService } from '../utils/lazy-getter.types.js';
+/**
+ * Optional API key guard for the /metrics endpoint
+ *
+ * This guard checks for a configurable API key if the METRICS_API_KEY environment
+ * variable is set. If METRICS_API_KEY is not configured, all requests are allowed
+ * (backward compatible behavior).
+ *
+ * Usage:
+ * ```typescript
+ * @Controller()
+ * export class MetricsController {
+ *   @Get('metrics')
+ *   @UseGuards(MetricsGuard)
+ *   getMetrics(@Res() response: Response) {
+ *     // ...
+ *   }
+ * }
+ * ```
+ *
+ * Environment Variables:
+ * - METRICS_API_KEY: Optional. If set, requires this API key in the Authorization header
+ *   or X-API-Key header. Format: "Bearer <api-key>" or header "X-API-Key: <api-key>"
+ */
+export declare class MetricsGuard implements CanActivate, LazyModuleRefService {
+    readonly Module: ModuleRef;
+    constructor(module: ModuleRef);
+    private get Config();
+    private get AuditLogger();
+    private get metricsApiKey();
+    /**
+     * Timing-safe comparison of two strings to prevent timing attacks
+     * @param a First string to compare
+     * @param b Second string to compare
+     * @returns true if strings are equal, false otherwise
+     */
+    private timingSafeCompare;
+    canActivate(context: ExecutionContext): boolean;
+}
+//# sourceMappingURL=metrics.guard.d.ts.map

package/build/common/guards/metrics.guard.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"metrics.guard.d.ts","sourceRoot":"","sources":["../../../src/common/guards/metrics.guard.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,WAAW,EAAE,gBAAgB,EAAsB,MAAM,gBAAgB,CAAC;AAC/F,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAKzC,OAAO,EAAE,oBAAoB,EAAE,MAAM,+BAA+B,CAAC;AAErE;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,qBACa,YAAa,YAAW,WAAW,EAAE,oBAAoB;IACrE,SAAgB,MAAM,EAAE,SAAS,CAAC;gBAEtB,MAAM,EAAE,SAAS;IAI7B,OAAO,KAAK,MAAM,GAEjB;IAED,OAAO,KAAK,WAAW,GAMtB;IAED,OAAO,KAAK,aAAa,GAExB;IAED;;;;;OAKG;IACH,OAAO,CAAC,iBAAiB;IAmBlB,WAAW,CAAC,OAAO,EAAE,gBAAgB,GAAG,OAAO;CA2CtD"}

package/build/common/guards/metrics.guard.js ADDED Viewed

@@ -0,0 +1,124 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Injectable, ForbiddenException } from '@nestjs/common';
+import { ModuleRef } from '@nestjs/core';
+import { timingSafeEqual } from 'crypto';
+import { ConfigService } from '../../config/config.service.js';
+import { AuditLoggerService } from '../services/audit-logger.service.js';
+/**
+ * Optional API key guard for the /metrics endpoint
+ *
+ * This guard checks for a configurable API key if the METRICS_API_KEY environment
+ * variable is set. If METRICS_API_KEY is not configured, all requests are allowed
+ * (backward compatible behavior).
+ *
+ * Usage:
+ * ```typescript
+ * @Controller()
+ * export class MetricsController {
+ *   @Get('metrics')
+ *   @UseGuards(MetricsGuard)
+ *   getMetrics(@Res() response: Response) {
+ *     // ...
+ *   }
+ * }
+ * ```
+ *
+ * Environment Variables:
+ * - METRICS_API_KEY: Optional. If set, requires this API key in the Authorization header
+ *   or X-API-Key header. Format: "Bearer <api-key>" or header "X-API-Key: <api-key>"
+ */
+let MetricsGuard = class MetricsGuard {
+    Module;
+    constructor(module) {
+        this.Module = module;
+    }
+    get Config() {
+        return this.Module.get(ConfigService);
+    }
+    get AuditLogger() {
+        try {
+            return this.Module.get(AuditLoggerService, { strict: false });
+        }
+        catch {
+            return undefined;
+        }
+    }
+    get metricsApiKey() {
+        return this.Config.get('METRICS_API_KEY');
+    }
+    /**
+     * Timing-safe comparison of two strings to prevent timing attacks
+     * @param a First string to compare
+     * @param b Second string to compare
+     * @returns true if strings are equal, false otherwise
+     */
+    timingSafeCompare(a, b) {
+        if (!b) {
+            return false;
+        }
+        try {
+            const bufferA = Buffer.from(a);
+            const bufferB = Buffer.from(b);
+            if (bufferA.length !== bufferB.length) {
+                return false;
+            }
+            return timingSafeEqual(bufferA, bufferB);
+        }
+        catch {
+            return false;
+        }
+    }
+    canActivate(context) {
+        // If no API key is configured, allow all requests
+        if (!this.metricsApiKey) {
+            return true;
+        }
+        const request = context.switchToHttp().getRequest();
+        // Check Authorization header (Bearer token)
+        const authHeader = request.headers.authorization;
+        if (authHeader) {
+            const [scheme, token] = authHeader.split(' ');
+            if (scheme?.toLowerCase() === 'bearer' && token && this.timingSafeCompare(token, this.metricsApiKey)) {
+                this.AuditLogger?.logSecurityEvent({
+                    timestamp: new Date(),
+                    action: 'metrics_access',
+                    resource: '/metrics',
+                    result: 'success',
+                    ipAddress: request.ip,
+                    userAgent: request.get('User-Agent'),
+                    details: { authMethod: 'bearer' },
+                });
+                return true;
+            }
+        }
+        // Check X-API-Key header
+        const apiKeyHeader = request.headers['x-api-key'];
+        if (apiKeyHeader && this.timingSafeCompare(apiKeyHeader, this.metricsApiKey)) {
+            this.AuditLogger?.logSecurityEvent({
+                timestamp: new Date(),
+                action: 'metrics_access',
+                resource: '/metrics',
+                result: 'success',
+                ipAddress: request.ip,
+                userAgent: request.get('User-Agent'),
+                details: { authMethod: 'x-api-key' },
+            });
+            return true;
+        }
+        throw new ForbiddenException('Invalid or missing metrics API key');
+    }
+};
+MetricsGuard = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [ModuleRef])
+], MetricsGuard);
+export { MetricsGuard };
+//# sourceMappingURL=metrics.guard.js.map

package/build/common/guards/metrics.guard.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"metrics.guard.js","sourceRoot":"","sources":["../../../src/common/guards/metrics.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,UAAU,EAAiC,kBAAkB,EAAE,MAAM,gBAAgB,CAAC;AAC/F,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAEzC,OAAO,EAAE,aAAa,EAAE,MAAM,gCAAgC,CAAC;AAC/D,OAAO,EAAE,kBAAkB,EAAE,MAAM,qCAAqC,CAAC;AAGzE;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEI,IAAM,YAAY,GAAlB,MAAM,YAAY;IACR,MAAM,CAAY;IAElC,YAAY,MAAiB;QAC5B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACtB,CAAC;IAED,IAAY,MAAM;QACjB,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC;IACvC,CAAC;IAED,IAAY,WAAW;QACtB,IAAI,CAAC;YACJ,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,kBAAkB,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;QAC/D,CAAC;QAAC,MAAM,CAAC;YACR,OAAO,SAAS,CAAC;QAClB,CAAC;IACF,CAAC;IAED,IAAY,aAAa;QACxB,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;IAC3C,CAAC;IAED;;;;;OAKG;IACK,iBAAiB,CAAC,CAAS,EAAE,CAAqB;QACzD,IAAI,CAAC,CAAC,EAAE,CAAC;YACR,OAAO,KAAK,CAAC;QACd,CAAC;QAED,IAAI,CAAC;YACJ,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAC/B,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAE/B,IAAI,OAAO,CAAC,MAAM,KAAK,OAAO,CAAC,MAAM,EAAE,CAAC;gBACvC,OAAO,KAAK,CAAC;YACd,CAAC;YAED,OAAO,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAC1C,CAAC;QAAC,MAAM,CAAC;YACR,OAAO,KAAK,CAAC;QACd,CAAC;IACF,CAAC;IAEM,WAAW,CAAC,OAAyB;QAC3C,kDAAkD;QAClD,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC;YACzB,OAAO,IAAI,CAAC;QACb,CAAC;QAED,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAW,CAAC;QAE7D,4CAA4C;QAC5C,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;QACjD,IAAI,UAAU,EAAE,CAAC;YAChB,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC9C,IAAI,MAAM,EAAE,WAAW,EAAE,KAAK,QAAQ,IAAI,KAAK,IAAI,IAAI,CAAC,iBAAiB,CAAC,KAAK,EAAE,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC;gBACtG,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC;oBAClC,SAAS,EAAE,IAAI,IAAI,EAAE;oBACrB,MAAM,EAAE,gBAAgB;oBACxB,QAAQ,EAAE,UAAU;oBACpB,MAAM,EAAE,SAAS;oBACjB,SAAS,EAAE,OAAO,CAAC,EAAE;oBACrB,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;oBACpC,OAAO,EAAE,EAAE,UAAU,EAAE,QAAQ,EAAE;iBACjC,CAAC,CAAC;gBACH,OAAO,IAAI,CAAC;YACb,CAAC;QACF,CAAC;QAED,yBAAyB;QACzB,MAAM,YAAY,GAAG,OAAO,CAAC,OAAO,CAAC,WAAW,CAAuB,CAAC;QACxE,IAAI,YAAY,IAAI,IAAI,CAAC,iBAAiB,CAAC,YAAY,EAAE,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC;YAC9E,IAAI,CAAC,WAAW,EAAE,gBAAgB,CAAC;gBAClC,SAAS,EAAE,IAAI,IAAI,EAAE;gBACrB,MAAM,EAAE,gBAAgB;gBACxB,QAAQ,EAAE,UAAU;gBACpB,MAAM,EAAE,SAAS;gBACjB,SAAS,EAAE,OAAO,CAAC,EAAE;gBACrB,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;gBACpC,OAAO,EAAE,EAAE,UAAU,EAAE,WAAW,EAAE;aACpC,CAAC,CAAC;YACH,OAAO,IAAI,CAAC;QACb,CAAC;QAED,MAAM,IAAI,kBAAkB,CAAC,oCAAoC,CAAC,CAAC;IACpE,CAAC;CACD,CAAA;AA3FY,YAAY;IADxB,UAAU,EAAE;qCAIQ,SAAS;GAHjB,YAAY,CA2FxB"}

package/build/common/index.d.ts ADDED Viewed

@@ -0,0 +1,43 @@
+export { GlobalExceptionFilter } from './filters/global-exception.filter.js';
+export { HttpExceptionFilter } from './filters/http-exception.filter.js';
+export { LoggingInterceptor } from './interceptors/logging.interceptor.js';
+export { HTTPMetricsInterceptor } from './interceptors/http-metrics.interceptor.js';
+export { BaseValidationPipe } from './pipes/base-validation.pipe.js';
+export { ValidationPipe } from './pipes/validation.pipe.js';
+export * from './decorators/index.js';
+export type { BaseDecoratorOptions } from './decorators/index.js';
+export * from './decorators/metric.decorators.js';
+export type { LogContext, LogEntry, LogMetadata } from './interfaces/index.js';
+export { LogLevel, LOG_LEVEL_STRINGS } from './interfaces/index.js';
+export type { ILogger, IContextualLogger } from './interfaces/index.js';
+export type { ICacheProvider } from './interfaces/index.js';
+export { CACHE_PROVIDER } from './interfaces/index.js';
+export { AppLogger } from './services/logger.service.js';
+export { NestLoggerAdapter } from './services/nest-logger-adapter.service.js';
+export { AuditLoggerService } from './services/audit-logger.service.js';
+export { ErrorSanitizerService, ERROR_SANITIZER_OPTIONS, type ErrorSanitizerOptions } from './services/error-sanitizer.service.js';
+export { ErrorCategorizerService } from './services/error-categorizer.service.js';
+export { HttpClientService } from './services/http-client.service.js';
+export { CSRFService } from './services/csrf.service.js';
+export { MetricsRegistryService } from './services/metrics-registry.service.js';
+export { HealthCheckService, HealthStatus, type IHealthCheck } from './services/health-check.service.js';
+export { BaseMetricsCollector } from './metrics/index.js';
+export { MetricsController } from './controllers/metrics.controller.js';
+export { CSRFGuard } from './guards/csrf.guard.js';
+export { MetricsGuard } from './guards/metrics.guard.js';
+export { CommonModule } from './common.module.js';
+export { MetricsModule } from './metrics.module.js';
+export { SharedThrottlerModule, type SharedThrottlerConfig } from './modules/throttler.module.js';
+export * from './factories/module-factory.js';
+export { ApplySecurityMiddleware } from './factories/security-bootstrap.factory.js';
+export type { SecurityBootstrapOptions } from './factories/security-bootstrap.factory.js';
+export { CreateRateLimitConfig } from './factories/rate-limit-config.factory.js';
+export type { RateLimitConfig, RateLimitDescriptor } from './factories/rate-limit-config.factory.js';
+export * from './utils/lazy-getter.types.js';
+export { escapeNewlines, sanitizeObject, sanitizeXss, MAX_SANITIZE_DEPTH } from './utils/sanitization.utils.js';
+export { getErrorStack, getErrorMessage } from './utils/error.utils.js';
+export { AsyncModuleOptions, createAsyncOptionsProvider, createAsyncProviders } from './utils/module.utils.js';
+export * from './constants/http-status.constants.js';
+export { GRAFANA_TIMEOUT, LOKI_TIMEOUT, PROMETHEUS_TIMEOUT, HTTP_CLIENT_TIMEOUT, CONFIG_VALIDATION_TIMEOUT, } from './constants/timeout.constants.js';
+export * from './errors/index.js';
+//# sourceMappingURL=index.d.ts.map

package/build/common/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/common/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,qBAAqB,EAAE,MAAM,sCAAsC,CAAC;AAC7E,OAAO,EAAE,mBAAmB,EAAE,MAAM,oCAAoC,CAAC;AAGzE,OAAO,EAAE,kBAAkB,EAAE,MAAM,uCAAuC,CAAC;AAC3E,OAAO,EAAE,sBAAsB,EAAE,MAAM,4CAA4C,CAAC;AAGpF,OAAO,EAAE,kBAAkB,EAAE,MAAM,iCAAiC,CAAC;AACrE,OAAO,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AAG5D,cAAc,uBAAuB,CAAC;AACtC,YAAY,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAClE,cAAc,mCAAmC,CAAC;AAGlD,YAAY,EAAE,UAAU,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAC/E,OAAO,EAAE,QAAQ,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AACpE,YAAY,EAAE,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AACxE,YAAY,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAC5D,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAGvD,OAAO,EAAE,SAAS,EAAE,MAAM,8BAA8B,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,MAAM,2CAA2C,CAAC;AAC9E,OAAO,EAAE,kBAAkB,EAAE,MAAM,oCAAoC,CAAC;AACxE,OAAO,EAAE,qBAAqB,EAAE,uBAAuB,EAAE,KAAK,qBAAqB,EAAE,MAAM,uCAAuC,CAAC;AACnI,OAAO,EAAE,uBAAuB,EAAE,MAAM,yCAAyC,CAAC;AAClF,OAAO,EAAE,iBAAiB,EAAE,MAAM,mCAAmC,CAAC;AACtE,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,wCAAwC,CAAC;AAChF,OAAO,EAAE,kBAAkB,EAAE,YAAY,EAAE,KAAK,YAAY,EAAE,MAAM,oCAAoC,CAAC;AAGzG,OAAO,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAG1D,OAAO,EAAE,iBAAiB,EAAE,MAAM,qCAAqC,CAAC;AAGxE,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,2BAA2B,CAAC;AAGzD,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,qBAAqB,EAAE,KAAK,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AAGlG,cAAc,+BAA+B,CAAC;AAC9C,OAAO,EAAE,uBAAuB,EAAE,MAAM,2CAA2C,CAAC;AACpF,YAAY,EAAE,wBAAwB,EAAE,MAAM,2CAA2C,CAAC;AAC1F,OAAO,EAAE,qBAAqB,EAAE,MAAM,0CAA0C,CAAC;AACjF,YAAY,EAAE,eAAe,EAAE,mBAAmB,EAAE,MAAM,0CAA0C,CAAC;AAGrG,cAAc,8BAA8B,CAAC;AAC7C,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,WAAW,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAChH,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACxE,OAAO,EAAE,kBAAkB,EAAE,0BAA0B,EAAE,oBAAoB,EAAE,MAAM,yBAAyB,CAAC;AAG/G,cAAc,sCAAsC,CAAC;AACrD,OAAO,EACN,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,mBAAmB,EACnB,yBAAyB,GACzB,MAAM,kCAAkC,CAAC;AAG1C,cAAc,mBAAmB,CAAC"}

package/build/common/index.js ADDED Viewed

@@ -0,0 +1,50 @@
+// Filters
+export { GlobalExceptionFilter } from './filters/global-exception.filter.js';
+export { HttpExceptionFilter } from './filters/http-exception.filter.js';
+// Interceptors
+export { LoggingInterceptor } from './interceptors/logging.interceptor.js';
+export { HTTPMetricsInterceptor } from './interceptors/http-metrics.interceptor.js';
+// Pipes
+export { BaseValidationPipe } from './pipes/base-validation.pipe.js';
+export { ValidationPipe } from './pipes/validation.pipe.js';
+// Decorators
+export * from './decorators/index.js';
+export * from './decorators/metric.decorators.js';
+export { LogLevel, LOG_LEVEL_STRINGS } from './interfaces/index.js';
+export { CACHE_PROVIDER } from './interfaces/index.js';
+// Services
+export { AppLogger } from './services/logger.service.js';
+export { NestLoggerAdapter } from './services/nest-logger-adapter.service.js';
+export { AuditLoggerService } from './services/audit-logger.service.js';
+export { ErrorSanitizerService, ERROR_SANITIZER_OPTIONS } from './services/error-sanitizer.service.js';
+export { ErrorCategorizerService } from './services/error-categorizer.service.js';
+export { HttpClientService } from './services/http-client.service.js';
+export { CSRFService } from './services/csrf.service.js';
+export { MetricsRegistryService } from './services/metrics-registry.service.js';
+export { HealthCheckService, HealthStatus } from './services/health-check.service.js';
+// Metrics
+export { BaseMetricsCollector } from './metrics/index.js';
+// Controllers
+export { MetricsController } from './controllers/metrics.controller.js';
+// Guards
+export { CSRFGuard } from './guards/csrf.guard.js';
+export { MetricsGuard } from './guards/metrics.guard.js';
+// Modules
+export { CommonModule } from './common.module.js';
+export { MetricsModule } from './metrics.module.js';
+export { SharedThrottlerModule } from './modules/throttler.module.js';
+// Factories
+export * from './factories/module-factory.js';
+export { ApplySecurityMiddleware } from './factories/security-bootstrap.factory.js';
+export { CreateRateLimitConfig } from './factories/rate-limit-config.factory.js';
+// Utils - Lazy Module Ref Pattern
+export * from './utils/lazy-getter.types.js';
+export { escapeNewlines, sanitizeObject, sanitizeXss, MAX_SANITIZE_DEPTH } from './utils/sanitization.utils.js';
+export { getErrorStack, getErrorMessage } from './utils/error.utils.js';
+export { createAsyncOptionsProvider, createAsyncProviders } from './utils/module.utils.js';
+// Constants
+export * from './constants/http-status.constants.js';
+export { GRAFANA_TIMEOUT, LOKI_TIMEOUT, PROMETHEUS_TIMEOUT, HTTP_CLIENT_TIMEOUT, CONFIG_VALIDATION_TIMEOUT, } from './constants/timeout.constants.js';
+// Errors
+export * from './errors/index.js';
+//# sourceMappingURL=index.js.map

package/build/common/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/common/index.ts"],"names":[],"mappings":"AAAA,UAAU;AACV,OAAO,EAAE,qBAAqB,EAAE,MAAM,sCAAsC,CAAC;AAC7E,OAAO,EAAE,mBAAmB,EAAE,MAAM,oCAAoC,CAAC;AAEzE,eAAe;AACf,OAAO,EAAE,kBAAkB,EAAE,MAAM,uCAAuC,CAAC;AAC3E,OAAO,EAAE,sBAAsB,EAAE,MAAM,4CAA4C,CAAC;AAEpF,QAAQ;AACR,OAAO,EAAE,kBAAkB,EAAE,MAAM,iCAAiC,CAAC;AACrE,OAAO,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AAE5D,aAAa;AACb,cAAc,uBAAuB,CAAC;AAEtC,cAAc,mCAAmC,CAAC;AAIlD,OAAO,EAAE,QAAQ,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAGpE,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAEvD,WAAW;AACX,OAAO,EAAE,SAAS,EAAE,MAAM,8BAA8B,CAAC;AACzD,OAAO,EAAE,iBAAiB,EAAE,MAAM,2CAA2C,CAAC;AAC9E,OAAO,EAAE,kBAAkB,EAAE,MAAM,oCAAoC,CAAC;AACxE,OAAO,EAAE,qBAAqB,EAAE,uBAAuB,EAA8B,MAAM,uCAAuC,CAAC;AACnI,OAAO,EAAE,uBAAuB,EAAE,MAAM,yCAAyC,CAAC;AAClF,OAAO,EAAE,iBAAiB,EAAE,MAAM,mCAAmC,CAAC;AACtE,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AACzD,OAAO,EAAE,sBAAsB,EAAE,MAAM,wCAAwC,CAAC;AAChF,OAAO,EAAE,kBAAkB,EAAE,YAAY,EAAqB,MAAM,oCAAoC,CAAC;AAEzG,UAAU;AACV,OAAO,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAE1D,cAAc;AACd,OAAO,EAAE,iBAAiB,EAAE,MAAM,qCAAqC,CAAC;AAExE,SAAS;AACT,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,2BAA2B,CAAC;AAEzD,UAAU;AACV,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,qBAAqB,EAA8B,MAAM,+BAA+B,CAAC;AAElG,YAAY;AACZ,cAAc,+BAA+B,CAAC;AAC9C,OAAO,EAAE,uBAAuB,EAAE,MAAM,2CAA2C,CAAC;AAEpF,OAAO,EAAE,qBAAqB,EAAE,MAAM,0CAA0C,CAAC;AAGjF,kCAAkC;AAClC,cAAc,8BAA8B,CAAC;AAC7C,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,WAAW,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAChH,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACxE,OAAO,EAAsB,0BAA0B,EAAE,oBAAoB,EAAE,MAAM,yBAAyB,CAAC;AAE/G,YAAY;AACZ,cAAc,sCAAsC,CAAC;AACrD,OAAO,EACN,eAAe,EACf,YAAY,EACZ,kBAAkB,EAClB,mBAAmB,EACnB,yBAAyB,GACzB,MAAM,kCAAkC,CAAC;AAE1C,SAAS;AACT,cAAc,mBAAmB,CAAC"}

package/build/common/interceptors/http-client.interceptor.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import { NestInterceptor, ExecutionContext, CallHandler } from '@nestjs/common';
+import { Observable } from 'rxjs';
+import { AppLogger } from '../services/logger.service.js';
+export declare class HttpClientInterceptor implements NestInterceptor {
+    private readonly contextualLogger;
+    private readonly logger;
+    constructor(logger: AppLogger);
+    intercept(context: ExecutionContext, next: CallHandler): Observable<any>;
+    private sanitizeHeaders;
+}
+//# sourceMappingURL=http-client.interceptor.d.ts.map

package/build/common/interceptors/http-client.interceptor.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"http-client.interceptor.d.ts","sourceRoot":"","sources":["../../../src/common/interceptors/http-client.interceptor.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,eAAe,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC5F,OAAO,EAAE,UAAU,EAAE,MAAM,MAAM,CAAC;AAElC,OAAO,EAAE,SAAS,EAAE,MAAM,+BAA+B,CAAC;AAE1D,qBACa,qBAAsB,YAAW,eAAe;IAC5D,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAY;IAE7C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAY;gBAEvB,MAAM,EAAE,SAAS;IAKtB,SAAS,CAAC,OAAO,EAAE,gBAAgB,EAAE,IAAI,EAAE,WAAW,GAAG,UAAU,CAAC,GAAG,CAAC;IAsC/E,OAAO,CAAC,eAAe;CAYvB"}

package/build/common/interceptors/http-client.interceptor.js ADDED Viewed

@@ -0,0 +1,69 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var HttpClientInterceptor_1;
+import { Injectable } from '@nestjs/common';
+import { tap, catchError } from 'rxjs/operators';
+import { AppLogger } from '../services/logger.service.js';
+let HttpClientInterceptor = HttpClientInterceptor_1 = class HttpClientInterceptor {
+    contextualLogger;
+    logger;
+    constructor(logger) {
+        this.logger = logger;
+        this.contextualLogger = this.logger.createContextualLogger(HttpClientInterceptor_1.name);
+    }
+    intercept(context, next) {
+        const request = context.switchToHttp().getRequest();
+        const startTime = Date.now();
+        // Log outgoing request
+        this.contextualLogger.debug('HTTP request', JSON.stringify({
+            method: request.method,
+            url: request.url,
+            headers: this.sanitizeHeaders(request.headers),
+            correlationId: request.correlationId ?? 'unknown',
+        }));
+        return next.handle().pipe(tap((response) => {
+            const duration = Date.now() - startTime;
+            this.contextualLogger.info('HTTP response', JSON.stringify({
+                method: request.method,
+                url: request.url,
+                statusCode: response.statusCode ?? response.status,
+                durationMs: duration,
+                correlationId: request.correlationId ?? 'unknown',
+            }));
+        }), catchError((error) => {
+            const duration = Date.now() - startTime;
+            this.contextualLogger.error('HTTP request failed', JSON.stringify({
+                method: request.method,
+                url: request.url,
+                statusCode: error.status ?? error.response?.status,
+                error: error.message,
+                durationMs: duration,
+                correlationId: request.correlationId ?? 'unknown',
+            }));
+            throw error;
+        }));
+    }
+    sanitizeHeaders(headers) {
+        const sanitized = { ...headers };
+        const sensitiveHeaders = ['authorization', 'x-api-key', 'cookie', 'set-cookie'];
+        for (const header of sensitiveHeaders) {
+            if (sanitized[header]) {
+                sanitized[header] = '[REDACTED]';
+            }
+        }
+        return sanitized;
+    }
+};
+HttpClientInterceptor = HttpClientInterceptor_1 = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [AppLogger])
+], HttpClientInterceptor);
+export { HttpClientInterceptor };
+//# sourceMappingURL=http-client.interceptor.js.map

package/build/common/interceptors/http-client.interceptor.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"http-client.interceptor.js","sourceRoot":"","sources":["../../../src/common/interceptors/http-client.interceptor.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,OAAO,EAAE,UAAU,EAAkD,MAAM,gBAAgB,CAAC;AAE5F,OAAO,EAAE,GAAG,EAAE,UAAU,EAAE,MAAM,gBAAgB,CAAC;AACjD,OAAO,EAAE,SAAS,EAAE,MAAM,+BAA+B,CAAC;AAGnD,IAAM,qBAAqB,6BAA3B,MAAM,qBAAqB;IAChB,gBAAgB,CAAY;IAE5B,MAAM,CAAY;IAEnC,YAAY,MAAiB;QAC5B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,MAAM,CAAC,sBAAsB,CAAC,uBAAqB,CAAC,IAAI,CAAC,CAAC;IACxF,CAAC;IAEM,SAAS,CAAC,OAAyB,EAAE,IAAiB;QAC5D,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;QACpD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,uBAAuB;QACvB,IAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,cAAc,EAAE,IAAI,CAAC,SAAS,CAAC;YAC1D,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,GAAG,EAAE,OAAO,CAAC,GAAG;YAChB,OAAO,EAAE,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,OAAO,CAAC;YAC9C,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,SAAS;SACjD,CAAC,CAAC,CAAC;QAEJ,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC,IAAI,CACxB,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE;YAChB,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YACxC,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,eAAe,EAAE,IAAI,CAAC,SAAS,CAAC;gBAC1D,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,GAAG,EAAE,OAAO,CAAC,GAAG;gBAChB,UAAU,EAAE,QAAQ,CAAC,UAAU,IAAI,QAAQ,CAAC,MAAM;gBAClD,UAAU,EAAE,QAAQ;gBACpB,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,SAAS;aACjD,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,EACF,UAAU,CAAC,CAAC,KAAK,EAAE,EAAE;YACpB,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YACxC,IAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,qBAAqB,EAAE,IAAI,CAAC,SAAS,CAAC;gBACjE,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,GAAG,EAAE,OAAO,CAAC,GAAG;gBAChB,UAAU,EAAE,KAAK,CAAC,MAAM,IAAI,KAAK,CAAC,QAAQ,EAAE,MAAM;gBAClD,KAAK,EAAE,KAAK,CAAC,OAAO;gBACpB,UAAU,EAAE,QAAQ;gBACpB,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,SAAS;aACjD,CAAC,CAAC,CAAC;YACJ,MAAM,KAAK,CAAC;QACb,CAAC,CAAC,CACF,CAAC;IACH,CAAC;IAEO,eAAe,CAAC,OAA+B;QACtD,MAAM,SAAS,GAAG,EAAE,GAAG,OAAO,EAAE,CAAC;QACjC,MAAM,gBAAgB,GAAG,CAAC,eAAe,EAAE,WAAW,EAAE,QAAQ,EAAE,YAAY,CAAC,CAAC;QAEhF,KAAK,MAAM,MAAM,IAAI,gBAAgB,EAAE,CAAC;YACvC,IAAI,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;gBACvB,SAAS,CAAC,MAAM,CAAC,GAAG,YAAY,CAAC;YAClC,CAAC;QACF,CAAC;QAED,OAAO,SAAS,CAAC;IAClB,CAAC;CACD,CAAA;AA5DY,qBAAqB;IADjC,UAAU,EAAE;qCAMQ,SAAS;GALjB,qBAAqB,CA4DjC"}

package/build/common/interceptors/http-instrumentation.interceptor.d.ts ADDED Viewed

@@ -0,0 +1,64 @@
+import { NestInterceptor, ExecutionContext, CallHandler } from '@nestjs/common';
+import { ModuleRef } from '@nestjs/core';
+import { Observable } from 'rxjs';
+import { LazyModuleRefService } from '../utils/lazy-getter.types.js';
+/**
+ * HTTP Instrumentation Interceptor
+ *
+ * Backend-agnostic HTTP request metrics collection using InstrumentationRegistry.
+ * Records request duration, status code, and request size for all HTTP requests.
+ * Skips metrics collection for non-HTTP contexts (GraphQL, WebSocket, RPC, etc.).
+ *
+ * Metrics recorded:
+ * - `http_request_duration_seconds` — Request duration in seconds (histogram)
+ * - `http_requests_total` — Total HTTP requests (counter)
+ * - `http_request_size_bytes` — Request body size in bytes (histogram, when available)
+ *
+ * @injectable
+ *
+ * @example
+ * ```typescript
+ * // Register in your module
+ * @Module({
+ *   providers: [HTTPInstrumentationInterceptor],
+ * })
+ * export class MyModule {}
+ *
+ * // Apply globally in main.ts
+ * app.useGlobalInterceptors(app.get(HTTPInstrumentationInterceptor));
+ * ```
+ */
+export declare class HTTPInstrumentationInterceptor implements NestInterceptor, LazyModuleRefService {
+    readonly Module: ModuleRef;
+    constructor(module: ModuleRef);
+    private get Registry();
+    /**
+     * Intercept HTTP requests and record instrumentation metrics.
+     * Records request duration, status code, and content length.
+     * Skips metrics collection for non-HTTP contexts.
+     *
+     * @param context - The execution context containing request/response
+     * @param next - The next handler in the chain
+     * @returns Observable of the response
+     */
+    intercept(context: ExecutionContext, next: CallHandler): Observable<unknown>;
+    /**
+     * Extract route path from request
+     * Tries to get the route from Express first, then falls back to URL path
+     *
+     * @private
+     * @param request - The Express request object
+     * @returns The route path or fallback value
+     */
+    private getRoute;
+    /**
+     * Get request content length from headers
+     * Parses the content-length header and returns it as a number
+     *
+     * @private
+     * @param request - The Express request object
+     * @returns The content length in bytes, or undefined if not available
+     */
+    private getContentLength;
+}
+//# sourceMappingURL=http-instrumentation.interceptor.d.ts.map

package/build/common/interceptors/http-instrumentation.interceptor.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"http-instrumentation.interceptor.d.ts","sourceRoot":"","sources":["../../../src/common/interceptors/http-instrumentation.interceptor.ts"],"names":[],"mappings":"AAAA,OAAO,EAEN,eAAe,EACf,gBAAgB,EAChB,WAAW,EAEX,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,UAAU,EAAc,MAAM,MAAM,CAAC;AAK9C,OAAO,EAAE,oBAAoB,EAAE,MAAM,+BAA+B,CAAC;AAErE;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,qBACa,8BAA+B,YAAW,eAAe,EAAE,oBAAoB;IAC3F,SAAgB,MAAM,EAAE,SAAS,CAAC;gBAEtB,MAAM,EAAE,SAAS;IAI7B,OAAO,KAAK,QAAQ,GAEnB;IAED;;;;;;;;OAQG;IACI,SAAS,CAAC,OAAO,EAAE,gBAAgB,EAAE,IAAI,EAAE,WAAW,GAAG,UAAU,CAAC,OAAO,CAAC;IA2DnF;;;;;;;OAOG;IACH,OAAO,CAAC,QAAQ;IAWhB;;;;;;;OAOG;IACH,OAAO,CAAC,gBAAgB;CAQxB"}