@positronic/cli 0.0.57 → 0.0.59

package/dist/src/lib/request-signer.js

@@ -1,208 +0,0 @@
-function _class_call_check(instance, Constructor) {
-    if (!(instance instanceof Constructor)) {
-        throw new TypeError("Cannot call a class as a function");
-    }
-}
-function _defineProperties(target, props) {
-    for(var i = 0; i < props.length; i++){
-        var descriptor = props[i];
-        descriptor.enumerable = descriptor.enumerable || false;
-        descriptor.configurable = true;
-        if ("value" in descriptor) descriptor.writable = true;
-        Object.defineProperty(target, descriptor.key, descriptor);
-    }
-}
-function _create_class(Constructor, protoProps, staticProps) {
-    if (protoProps) _defineProperties(Constructor.prototype, protoProps);
-    if (staticProps) _defineProperties(Constructor, staticProps);
-    return Constructor;
-}
-function _define_property(obj, key, value) {
-    if (key in obj) {
-        Object.defineProperty(obj, key, {
-            value: value,
-            enumerable: true,
-            configurable: true,
-            writable: true
-        });
-    } else {
-        obj[key] = value;
-    }
-    return obj;
-}
-function _instanceof(left, right) {
-    if (right != null && typeof Symbol !== "undefined" && right[Symbol.hasInstance]) {
-        return !!right[Symbol.hasInstance](left);
-    } else {
-        return left instanceof right;
-    }
-}
-import { loadPrivateKey, getPrivateKeyFingerprint, signWithPrivateKey, resolvePrivateKeyPath } from './ssh-key-utils.js';
-import { existsSync } from 'fs';
-import { ProjectConfigManager } from '../commands/project-config-manager.js';
-/**
- * Request signer for RFC 9421 HTTP Message Signatures
- */ export var RequestSigner = /*#__PURE__*/ function() {
-    "use strict";
-    function RequestSigner() {
-        _class_call_check(this, RequestSigner);
-        _define_property(this, "privateKey", null);
-        _define_property(this, "fingerprint", null);
-        _define_property(this, "initialized", false);
-        _define_property(this, "initError", null);
-        this.initialize();
-    }
-    _create_class(RequestSigner, [
-        {
-            key: "initialize",
-            value: function initialize() {
-                try {
-                    // Get configured path from project config manager
-                    var configManager = new ProjectConfigManager();
-                    var configuredPath = configManager.getPrivateKeyPath();
-                    var keyPath = resolvePrivateKeyPath(configuredPath);
-                    if (!existsSync(keyPath)) {
-                        this.initError = new Error("Private key not found at ".concat(keyPath, ". Run 'px auth login' to configure your SSH key, or set POSITRONIC_PRIVATE_KEY environment variable."));
-                        return;
-                    }
-                    this.privateKey = loadPrivateKey(keyPath);
-                    this.fingerprint = getPrivateKeyFingerprint(this.privateKey);
-                    this.initialized = true;
-                } catch (error) {
-                    this.initError = _instanceof(error, Error) ? error : new Error('Failed to initialize request signer');
-                }
-            }
-        },
-        {
-            /**
-   * Check if the signer is ready to sign requests
-   */ key: "isReady",
-            value: function isReady() {
-                return this.initialized && this.privateKey !== null;
-            }
-        },
-        {
-            /**
-   * Get the error that occurred during initialization, if any
-   */ key: "getError",
-            value: function getError() {
-                return this.initError;
-            }
-        },
-        {
-            /**
-   * Get the fingerprint of the loaded private key
-   */ key: "getFingerprint",
-            value: function getFingerprint() {
-                return this.fingerprint;
-            }
-        },
-        {
-            /**
-   * Sign an HTTP request and return the signature headers
-   */ key: "signRequest",
-            value: function signRequest(method, url) {
-                var headers = arguments.length > 2 && arguments[2] !== void 0 ? arguments[2] : {};
-                if (!this.privateKey || !this.fingerprint) {
-                    throw new Error('Request signer not initialized');
-                }
-                var parsedUrl = new URL(url);
-                var created = Math.floor(Date.now() / 1000);
-                // Build the signature base
-                var coveredComponents = [
-                    '"@method"',
-                    '"@path"',
-                    '"@authority"'
-                ];
-                // Add content-type if present
-                if (headers['Content-Type'] || headers['content-type']) {
-                    coveredComponents.push('"content-type"');
-                }
-                // Create the signature base string
-                var signatureBaseLines = [];
-                var _iteratorNormalCompletion = true, _didIteratorError = false, _iteratorError = undefined;
-                try {
-                    for(var _iterator = coveredComponents[Symbol.iterator](), _step; !(_iteratorNormalCompletion = (_step = _iterator.next()).done); _iteratorNormalCompletion = true){
-                        var component = _step.value;
-                        var componentName = component.replace(/"/g, '');
-                        if (componentName === '@method') {
-                            signatureBaseLines.push('"@method": '.concat(method.toUpperCase()));
-                        } else if (componentName === '@path') {
-                            signatureBaseLines.push('"@path": '.concat(parsedUrl.pathname));
-                        } else if (componentName === '@authority') {
-                            signatureBaseLines.push('"@authority": '.concat(parsedUrl.host));
-                        } else {
-                            // Regular header
-                            var headerValue = headers[componentName] || headers[componentName.toLowerCase()] || headers[componentName.charAt(0).toUpperCase() + componentName.slice(1)];
-                            if (headerValue) {
-                                signatureBaseLines.push('"'.concat(componentName.toLowerCase(), '": ').concat(headerValue));
-                            }
-                        }
-                    }
-                } catch (err) {
-                    _didIteratorError = true;
-                    _iteratorError = err;
-                } finally{
-                    try {
-                        if (!_iteratorNormalCompletion && _iterator.return != null) {
-                            _iterator.return();
-                        }
-                    } finally{
-                        if (_didIteratorError) {
-                            throw _iteratorError;
-                        }
-                    }
-                }
-                // Create the signature-params line
-                var signatureParams = "(".concat(coveredComponents.join(' '), ");created=").concat(created, ';keyid="').concat(this.fingerprint, '"');
-                signatureBaseLines.push('"@signature-params": '.concat(signatureParams));
-                var signatureBase = signatureBaseLines.join('\n');
-                // Sign the base
-                var signatureBytes = signWithPrivateKey(this.privateKey, signatureBase);
-                var signatureValue = signatureBytes.toString('base64');
-                return {
-                    Signature: "sig1=:".concat(signatureValue, ":"),
-                    'Signature-Input': "sig1=".concat(signatureParams)
-                };
-            }
-        }
-    ]);
-    return RequestSigner;
-}();
-// Singleton instance
-var signerInstance = null;
-/**
- * Get the singleton request signer instance
- */ export function getRequestSigner() {
-    if (!signerInstance) {
-        signerInstance = new RequestSigner();
-    }
-    return signerInstance;
-}
-/**
- * Reset the request signer singleton
- * Call this after auth config changes to force reinitialization with new key
- */ export function resetRequestSigner() {
-    signerInstance = null;
-}
-/**
- * Check if request signing is available
- */ export function isSigningAvailable() {
-    return getRequestSigner().isReady();
-}
-/**
- * Sign an HTTP request if signing is available
- * Returns the additional headers to add, or empty object if signing is not available
- */ export function maybeSignRequest(method, url) {
-    var headers = arguments.length > 2 && arguments[2] !== void 0 ? arguments[2] : {};
-    var signer = getRequestSigner();
-    if (!signer.isReady()) {
-        return {};
-    }
-    try {
-        return signer.signRequest(method, url, headers);
-    } catch (error) {
-        console.error('Warning: Failed to sign request:', error);
-        return {};
-    }
-}

package/dist/types/lib/request-signer.d.ts

@@ -1,51 +0,0 @@
-export type SignedHeaders = {
-    Signature: string;
-    'Signature-Input': string;
-    [key: string]: string;
-};
-/**
- * Request signer for RFC 9421 HTTP Message Signatures
- */
-export declare class RequestSigner {
-    private privateKey;
-    private fingerprint;
-    private initialized;
-    private initError;
-    constructor();
-    private initialize;
-    /**
-     * Check if the signer is ready to sign requests
-     */
-    isReady(): boolean;
-    /**
-     * Get the error that occurred during initialization, if any
-     */
-    getError(): Error | null;
-    /**
-     * Get the fingerprint of the loaded private key
-     */
-    getFingerprint(): string | null;
-    /**
-     * Sign an HTTP request and return the signature headers
-     */
-    signRequest(method: string, url: string, headers?: Record<string, string>): SignedHeaders;
-}
-/**
- * Get the singleton request signer instance
- */
-export declare function getRequestSigner(): RequestSigner;
-/**
- * Reset the request signer singleton
- * Call this after auth config changes to force reinitialization with new key
- */
-export declare function resetRequestSigner(): void;
-/**
- * Check if request signing is available
- */
-export declare function isSigningAvailable(): boolean;
-/**
- * Sign an HTTP request if signing is available
- * Returns the additional headers to add, or empty object if signing is not available
- */
-export declare function maybeSignRequest(method: string, url: string, headers?: Record<string, string>): Record<string, string>;
-//# sourceMappingURL=request-signer.d.ts.map

package/dist/types/lib/request-signer.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"request-signer.d.ts","sourceRoot":"","sources":["../../../src/lib/request-signer.ts"],"names":[],"mappings":"AAUA,MAAM,MAAM,aAAa,GAAG;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;CACvB,CAAC;AAEF;;GAEG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,UAAU,CAAiC;IACnD,OAAO,CAAC,WAAW,CAAuB;IAC1C,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,SAAS,CAAsB;;IAMvC,OAAO,CAAC,UAAU;IA0BlB;;OAEG;IACH,OAAO,IAAI,OAAO;IAIlB;;OAEG;IACH,QAAQ,IAAI,KAAK,GAAG,IAAI;IAIxB;;OAEG;IACH,cAAc,IAAI,MAAM,GAAG,IAAI;IAI/B;;OAEG;IACH,WAAW,CACT,MAAM,EAAE,MAAM,EACd,GAAG,EAAE,MAAM,EACX,OAAO,GAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAM,GACnC,aAAa;CAuDjB;AAKD;;GAEG;AACH,wBAAgB,gBAAgB,IAAI,aAAa,CAKhD;AAED;;;GAGG;AACH,wBAAgB,kBAAkB,IAAI,IAAI,CAEzC;AAED;;GAEG;AACH,wBAAgB,kBAAkB,IAAI,OAAO,CAE5C;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAC9B,MAAM,EAAE,MAAM,EACd,GAAG,EAAE,MAAM,EACX,OAAO,GAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAM,GACnC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAYxB"}