@prosopo/provider 3.13.0 → 3.13.6

package/CHANGELOG.md

@@ -1,5 +1,103 @@
 # @prosopo/provider
 
+## 3.13.6
+### Patch Changes
+
+- 93d92a7: little bump for publish all
+- Updated dependencies [93d92a7]
+  - @prosopo/api@3.1.36
+  - @prosopo/api-express-router@3.0.39
+  - @prosopo/api-route@2.6.33
+  - @prosopo/common@3.1.25
+  - @prosopo/database@3.5.5
+  - @prosopo/datasets@3.0.48
+  - @prosopo/env@3.2.27
+  - @prosopo/keyring@2.8.39
+  - @prosopo/load-balancer@2.8.12
+  - @prosopo/locale@3.1.25
+  - @prosopo/types@3.6.3
+  - @prosopo/types-database@4.0.5
+  - @prosopo/types-env@2.7.52
+  - @prosopo/user-access-policy@3.5.31
+  - @prosopo/util@3.2.3
+  - @prosopo/util-crypto@13.5.27
+
+## 3.13.5
+### Patch Changes
+
+- 8ee8434: bump node engines to 24 and npm version to 11
+- cfee479: make @prosopo/config a dev dep
+- e843e62: Adding more sensible punishment for invalid decryption key
+- Updated dependencies [8ee8434]
+- Updated dependencies [cfee479]
+  - @prosopo/api-express-router@3.0.38
+  - @prosopo/user-access-policy@3.5.30
+  - @prosopo/types-database@4.0.4
+  - @prosopo/load-balancer@2.8.11
+  - @prosopo/util-crypto@13.5.26
+  - @prosopo/api-route@2.6.32
+  - @prosopo/types-env@2.7.51
+  - @prosopo/database@3.5.4
+  - @prosopo/datasets@3.0.47
+  - @prosopo/keyring@2.8.38
+  - @prosopo/common@3.1.24
+  - @prosopo/locale@3.1.24
+  - @prosopo/types@3.6.2
+  - @prosopo/util@3.2.2
+  - @prosopo/api@3.1.35
+  - @prosopo/env@3.2.26
+
+## 3.13.4
+### Patch Changes
+
+- e926831: mega mini bump for all to trigger publish all
+- Updated dependencies [e926831]
+  - @prosopo/config@3.1.23
+  - @prosopo/api@3.1.34
+  - @prosopo/api-express-router@3.0.37
+  - @prosopo/api-route@2.6.31
+  - @prosopo/common@3.1.23
+  - @prosopo/database@3.5.3
+  - @prosopo/datasets@3.0.46
+  - @prosopo/env@3.2.25
+  - @prosopo/keyring@2.8.37
+  - @prosopo/load-balancer@2.8.10
+  - @prosopo/locale@3.1.23
+  - @prosopo/types@3.6.1
+  - @prosopo/types-database@4.0.3
+  - @prosopo/types-env@2.7.50
+  - @prosopo/user-access-policy@3.5.29
+  - @prosopo/util@3.2.1
+  - @prosopo/util-crypto@13.5.25
+
+## 3.13.3
+### Patch Changes
+
+- 3be9174: Create scheduled task status
+- Updated dependencies [0a9887c]
+  - @prosopo/types-database@4.0.2
+  - @prosopo/database@3.5.2
+  - @prosopo/datasets@3.0.45
+  - @prosopo/types-env@2.7.49
+  - @prosopo/env@3.2.24
+  - @prosopo/api-express-router@3.0.36
+
+## 3.13.2
+### Patch Changes
+
+- Updated dependencies [3e5d80a]
+  - @prosopo/types-database@4.0.1
+  - @prosopo/database@3.5.1
+  - @prosopo/datasets@3.0.44
+  - @prosopo/types-env@2.7.48
+  - @prosopo/env@3.2.23
+  - @prosopo/api-express-router@3.0.35
+
+## 3.13.1
+### Patch Changes
+
+- 447179c: Fix config and client getter
+
 ## 3.13.0
 ### Minor Changes
 

package/dist/api/captcha/getFrictionlessCaptchaChallenge.js

@@ -90,7 +90,8 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
       userAgent,
       webView,
       iFrame,
-      decryptedHeadHash
+      decryptedHeadHash,
+      decryptionFailed
     } = await tasks.frictionlessManager.decryptPayload(token, headHash);
     req.logger.debug(() => ({
       msg: "Decrypted payload",
@@ -160,29 +161,6 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
       dapp,
       userScope
     ))[0];
-    const headersUserAgent = req.headers["user-agent"];
-    const hashedHeadersUserAgent = headersUserAgent ? hashUserAgent(headersUserAgent) : "";
-    const headersProsopoUser = req.headers["prosopo-user"];
-    if (hashedHeadersUserAgent !== userAgent || headersProsopoUser !== userId) {
-      req.logger.info(() => ({
-        msg: "User agent or user id does not match",
-        data: {
-          headersUserAgent,
-          hashedHeadersUserAgent,
-          userAgent,
-          // This is the hashed user agent from the token
-          headersProsopoUser,
-          userId
-        }
-      }));
-      return res.json(
-        await tasks.frictionlessManager.sendImageCaptcha({
-          solvedImagesCount: timestampDecayFunction(timestamp),
-          userSitekeyIpHash,
-          reason: FrictionlessReason.USER_AGENT_MISMATCH
-        })
-      );
-    }
     if (userAccessPolicy) {
       const scoreUpdate = tasks.frictionlessManager.scoreIncreaseAccessPolicy(
         userAccessPolicy,
@@ -211,6 +189,32 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
         );
       }
     }
+    const headersUserAgent = req.headers["user-agent"];
+    const hashedHeadersUserAgent = headersUserAgent ? hashUserAgent(headersUserAgent) : "";
+    const headersProsopoUser = req.headers["prosopo-user"];
+    if (hashedHeadersUserAgent !== userAgent || headersProsopoUser !== userId) {
+      req.logger.info(() => ({
+        msg: "User agent or user id does not match",
+        data: {
+          headersUserAgent,
+          hashedHeadersUserAgent,
+          userAgent,
+          // This is the hashed user agent from the token
+          headersProsopoUser,
+          userId
+        }
+      }));
+      return res.json(
+        await tasks.frictionlessManager.sendImageCaptcha({
+          solvedImagesCount: timestampDecayFunction(
+            timestamp,
+            decryptionFailed
+          ),
+          userSitekeyIpHash,
+          reason: FrictionlessReason.USER_AGENT_MISMATCH
+        })
+      );
+    }
     if (clientRecord.settings.contextAware?.enabled) {
       const clientEntropy = await tasks.frictionlessManager.getClientEntropy(
         clientRecord.account
@@ -277,7 +281,10 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
       tasks.frictionlessManager.updateScore(botScore, scoreComponents);
       return res.json(
         await tasks.frictionlessManager.sendImageCaptcha({
-          solvedImagesCount: timestampDecayFunction(timestamp),
+          solvedImagesCount: timestampDecayFunction(
+            timestamp,
+            decryptionFailed
+          ),
           userSitekeyIpHash,
           reason: FrictionlessReason.OLD_TIMESTAMP
         })

package/dist/cjs/api/captcha/getFrictionlessCaptchaChallenge.cjs

@@ -91,7 +91,8 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
       userAgent,
       webView,
       iFrame,
-      decryptedHeadHash
+      decryptedHeadHash,
+      decryptionFailed
     } = await tasks$1.frictionlessManager.decryptPayload(token, headHash);
     req.logger.debug(() => ({
       msg: "Decrypted payload",
@@ -161,29 +162,6 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
       dapp,
       userScope
     ))[0];
-    const headersUserAgent = req.headers["user-agent"];
-    const hashedHeadersUserAgent = headersUserAgent ? hashUserAgent.hashUserAgent(headersUserAgent) : "";
-    const headersProsopoUser = req.headers["prosopo-user"];
-    if (hashedHeadersUserAgent !== userAgent || headersProsopoUser !== userId) {
-      req.logger.info(() => ({
-        msg: "User agent or user id does not match",
-        data: {
-          headersUserAgent,
-          hashedHeadersUserAgent,
-          userAgent,
-          // This is the hashed user agent from the token
-          headersProsopoUser,
-          userId
-        }
-      }));
-      return res.json(
-        await tasks$1.frictionlessManager.sendImageCaptcha({
-          solvedImagesCount: frictionlessTasksUtils.timestampDecayFunction(timestamp),
-          userSitekeyIpHash,
-          reason: frictionlessTasks.FrictionlessReason.USER_AGENT_MISMATCH
-        })
-      );
-    }
     if (userAccessPolicy) {
       const scoreUpdate = tasks$1.frictionlessManager.scoreIncreaseAccessPolicy(
         userAccessPolicy,
@@ -212,6 +190,32 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
         );
       }
     }
+    const headersUserAgent = req.headers["user-agent"];
+    const hashedHeadersUserAgent = headersUserAgent ? hashUserAgent.hashUserAgent(headersUserAgent) : "";
+    const headersProsopoUser = req.headers["prosopo-user"];
+    if (hashedHeadersUserAgent !== userAgent || headersProsopoUser !== userId) {
+      req.logger.info(() => ({
+        msg: "User agent or user id does not match",
+        data: {
+          headersUserAgent,
+          hashedHeadersUserAgent,
+          userAgent,
+          // This is the hashed user agent from the token
+          headersProsopoUser,
+          userId
+        }
+      }));
+      return res.json(
+        await tasks$1.frictionlessManager.sendImageCaptcha({
+          solvedImagesCount: frictionlessTasksUtils.timestampDecayFunction(
+            timestamp,
+            decryptionFailed
+          ),
+          userSitekeyIpHash,
+          reason: frictionlessTasks.FrictionlessReason.USER_AGENT_MISMATCH
+        })
+      );
+    }
     if (clientRecord.settings.contextAware?.enabled) {
       const clientEntropy = await tasks$1.frictionlessManager.getClientEntropy(
         clientRecord.account
@@ -278,7 +282,10 @@ const getFrictionlessCaptchaChallenge = (env, userAccessRulesStorage) => async (
       tasks$1.frictionlessManager.updateScore(botScore, scoreComponents);
       return res.json(
         await tasks$1.frictionlessManager.sendImageCaptcha({
-          solvedImagesCount: frictionlessTasksUtils.timestampDecayFunction(timestamp),
+          solvedImagesCount: frictionlessTasksUtils.timestampDecayFunction(
+            timestamp,
+            decryptionFailed
+          ),
           userSitekeyIpHash,
           reason: frictionlessTasks.FrictionlessReason.OLD_TIMESTAMP
         })

package/dist/cjs/tasks/client/clientTasks.cjs

@@ -163,7 +163,13 @@ class ClientTaskManager {
         this.logger
       );
       const tenMinuteWindow = 10 * 60 * 1e3;
-      const updatedAtTimestamp = lastTask?.updated ? lastTask.updated.getTime() - tenMinuteWindow || 0 : 0;
+      const updatedAtTimestamp = (() => {
+        const raw = lastTask?.updated;
+        if (!raw) return 0;
+        const ts = raw instanceof Date ? raw.getTime() : Date.parse(String(raw));
+        if (Number.isNaN(ts)) return 0;
+        return Math.max(ts - tenMinuteWindow, 0);
+      })();
       this.logger.info(() => ({
         msg: `Getting updated client records since ${new Date(updatedAtTimestamp).toDateString()}`
       }));
@@ -201,14 +207,46 @@ class ClientTaskManager {
    * @returns Promise<void>
    */
   async calculateClientEntropy() {
-    const clients = await this.providerDB.getAllClientRecords();
-    for (const client of clients) {
-      const sampleEntropies = await this.providerDB.sampleEntropy(
-        100,
-        client.account
+    const taskID = await this.providerDB.createScheduledTaskStatus(
+      types.ScheduledTaskNames.SetClientEntropy,
+      types.ScheduledTaskStatus.Running
+    );
+    try {
+      const clients = await this.providerDB.getAllClientRecords();
+      for (const client of clients) {
+        const sampleEntropies = await this.providerDB.sampleEntropy(
+          100,
+          client.account
+        );
+        const avgEntropy = util.majorityAverage(sampleEntropies);
+        await this.providerDB.setClientEntropy(client.account, avgEntropy);
+      }
+      await this.providerDB.updateScheduledTaskStatus(
+        taskID,
+        types.ScheduledTaskStatus.Completed,
+        {
+          data: {
+            clientRecords: clients.length
+          }
+        }
+      );
+    } catch (e) {
+      const calculateClientEntropiesError = new common.ProsopoApiError(
+        "DATABASE.UNKNOWN",
+        {
+          context: { error: e },
+          logger: this.logger
+        }
+      );
+      this.logger.error(() => ({
+        err: calculateClientEntropiesError,
+        msg: "Error calculating client entropy"
+      }));
+      await this.providerDB.updateScheduledTaskStatus(
+        taskID,
+        types.ScheduledTaskStatus.Failed,
+        { error: String(e) }
       );
-      const avgEntropy = util.majorityAverage(sampleEntropies);
-      await this.providerDB.setClientEntropy(client.account, avgEntropy);
     }
   }
   async registerSiteKey(siteKey, tier, settings) {

package/dist/cjs/tasks/frictionless/frictionlessTasks.cjs

@@ -249,6 +249,7 @@ class FrictionlessManager extends captchaManager.CaptchaManager {
     let webView;
     let iFrame;
     let decryptedHeadHash = "";
+    let decryptionFailed = false;
     for (const [keyIndex, key] of decryptKeys.entries()) {
       try {
         this.logger.info(() => ({
@@ -296,6 +297,7 @@ class FrictionlessManager extends captchaManager.CaptchaManager {
           timestamp = 0;
           providerSelectEntropy = DEFAULT_ENTROPY + 1;
           decryptedHeadHash = "";
+          decryptionFailed = true;
         }
       }
     }
@@ -311,6 +313,7 @@ class FrictionlessManager extends captchaManager.CaptchaManager {
       timestamp = 0;
       providerSelectEntropy = DEFAULT_ENTROPY - undefinedCount;
       decryptedHeadHash = "";
+      decryptionFailed = true;
     }
     this.logger.info(() => ({
       msg: "decryptPayload result",
@@ -322,7 +325,8 @@ class FrictionlessManager extends captchaManager.CaptchaManager {
         userAgent,
         webView,
         iFrame,
-        decryptedHeadHash
+        decryptedHeadHash,
+        decryptionFailed
       }
     }));
     return {
@@ -333,7 +337,8 @@ class FrictionlessManager extends captchaManager.CaptchaManager {
       userAgent,
       webView: webView || false,
       iFrame: iFrame || false,
-      decryptedHeadHash
+      decryptedHeadHash,
+      decryptionFailed
     };
   }
   async getClientEntropy(siteKey) {

package/dist/cjs/tasks/frictionless/frictionlessTasksUtils.cjs

@@ -8,7 +8,10 @@ const computeFrictionlessScore = (scoreComponents) => {
     ).toFixed(2)
   );
 };
-const timestampDecayFunction = (timestamp) => {
+const timestampDecayFunction = (timestamp, decryptionFailed) => {
+  if (decryptionFailed) {
+    return 6;
+  }
   const max = (/* @__PURE__ */ new Date()).getTime();
   if (max - timestamp > 36e5) {
     return 12;

package/dist/tasks/client/clientTasks.js

@@ -161,7 +161,13 @@ class ClientTaskManager {
         this.logger
       );
       const tenMinuteWindow = 10 * 60 * 1e3;
-      const updatedAtTimestamp = lastTask?.updated ? lastTask.updated.getTime() - tenMinuteWindow || 0 : 0;
+      const updatedAtTimestamp = (() => {
+        const raw = lastTask?.updated;
+        if (!raw) return 0;
+        const ts = raw instanceof Date ? raw.getTime() : Date.parse(String(raw));
+        if (Number.isNaN(ts)) return 0;
+        return Math.max(ts - tenMinuteWindow, 0);
+      })();
       this.logger.info(() => ({
         msg: `Getting updated client records since ${new Date(updatedAtTimestamp).toDateString()}`
       }));
@@ -199,14 +205,46 @@ class ClientTaskManager {
    * @returns Promise<void>
    */
   async calculateClientEntropy() {
-    const clients = await this.providerDB.getAllClientRecords();
-    for (const client of clients) {
-      const sampleEntropies = await this.providerDB.sampleEntropy(
-        100,
-        client.account
+    const taskID = await this.providerDB.createScheduledTaskStatus(
+      ScheduledTaskNames.SetClientEntropy,
+      ScheduledTaskStatus.Running
+    );
+    try {
+      const clients = await this.providerDB.getAllClientRecords();
+      for (const client of clients) {
+        const sampleEntropies = await this.providerDB.sampleEntropy(
+          100,
+          client.account
+        );
+        const avgEntropy = majorityAverage(sampleEntropies);
+        await this.providerDB.setClientEntropy(client.account, avgEntropy);
+      }
+      await this.providerDB.updateScheduledTaskStatus(
+        taskID,
+        ScheduledTaskStatus.Completed,
+        {
+          data: {
+            clientRecords: clients.length
+          }
+        }
+      );
+    } catch (e) {
+      const calculateClientEntropiesError = new ProsopoApiError(
+        "DATABASE.UNKNOWN",
+        {
+          context: { error: e },
+          logger: this.logger
+        }
+      );
+      this.logger.error(() => ({
+        err: calculateClientEntropiesError,
+        msg: "Error calculating client entropy"
+      }));
+      await this.providerDB.updateScheduledTaskStatus(
+        taskID,
+        ScheduledTaskStatus.Failed,
+        { error: String(e) }
       );
-      const avgEntropy = majorityAverage(sampleEntropies);
-      await this.providerDB.setClientEntropy(client.account, avgEntropy);
     }
   }
   async registerSiteKey(siteKey, tier, settings) {

package/dist/tasks/frictionless/frictionlessTasks.js

@@ -247,6 +247,7 @@ class FrictionlessManager extends CaptchaManager {
     let webView;
     let iFrame;
     let decryptedHeadHash = "";
+    let decryptionFailed = false;
     for (const [keyIndex, key] of decryptKeys.entries()) {
       try {
         this.logger.info(() => ({
@@ -294,6 +295,7 @@ class FrictionlessManager extends CaptchaManager {
           timestamp = 0;
           providerSelectEntropy = DEFAULT_ENTROPY + 1;
           decryptedHeadHash = "";
+          decryptionFailed = true;
         }
       }
     }
@@ -309,6 +311,7 @@ class FrictionlessManager extends CaptchaManager {
       timestamp = 0;
       providerSelectEntropy = DEFAULT_ENTROPY - undefinedCount;
       decryptedHeadHash = "";
+      decryptionFailed = true;
     }
     this.logger.info(() => ({
       msg: "decryptPayload result",
@@ -320,7 +323,8 @@ class FrictionlessManager extends CaptchaManager {
         userAgent,
         webView,
         iFrame,
-        decryptedHeadHash
+        decryptedHeadHash,
+        decryptionFailed
       }
     }));
     return {
@@ -331,7 +335,8 @@ class FrictionlessManager extends CaptchaManager {
       userAgent,
       webView: webView || false,
       iFrame: iFrame || false,
-      decryptedHeadHash
+      decryptedHeadHash,
+      decryptionFailed
     };
   }
   async getClientEntropy(siteKey) {

package/dist/tasks/frictionless/frictionlessTasksUtils.js

@@ -6,7 +6,10 @@ const computeFrictionlessScore = (scoreComponents) => {
     ).toFixed(2)
   );
 };
-const timestampDecayFunction = (timestamp) => {
+const timestampDecayFunction = (timestamp, decryptionFailed) => {
+  if (decryptionFailed) {
+    return 6;
+  }
   const max = (/* @__PURE__ */ new Date()).getTime();
   if (max - timestamp > 36e5) {
     return 12;

package/package.json

@@ -1,12 +1,12 @@
 {
 	"name": "@prosopo/provider",
-	"version": "3.13.0",
+	"version": "3.13.6",
 	"author": "PROSOPO LIMITED <info@prosopo.io>",
 	"license": "Apache-2.0",
 	"type": "module",
 	"engines": {
-		"node": ">=v20.0.0",
-		"npm": ">=10.6.0"
+		"node": "^24",
+		"npm": "^11"
 	},
 	"scripts": {
 		"clean": "del-cli --verbose dist tsconfig.tsbuildinfo",
@@ -22,23 +22,22 @@
 	"dependencies": {
 		"@noble/hashes": "1.8.0",
 		"@polkadot/util": "13.5.7",
-		"@prosopo/api": "3.1.33",
-		"@prosopo/api-express-router": "3.0.34",
-		"@prosopo/api-route": "2.6.30",
-		"@prosopo/common": "3.1.22",
-		"@prosopo/config": "3.1.22",
-		"@prosopo/database": "3.5.0",
-		"@prosopo/datasets": "3.0.43",
-		"@prosopo/env": "3.2.22",
-		"@prosopo/keyring": "2.8.36",
-		"@prosopo/load-balancer": "2.8.9",
-		"@prosopo/locale": "3.1.22",
-		"@prosopo/types": "3.6.0",
-		"@prosopo/types-database": "4.0.0",
-		"@prosopo/types-env": "2.7.47",
-		"@prosopo/user-access-policy": "3.5.28",
-		"@prosopo/util": "3.2.0",
-		"@prosopo/util-crypto": "13.5.24",
+		"@prosopo/api": "3.1.36",
+		"@prosopo/api-express-router": "3.0.39",
+		"@prosopo/api-route": "2.6.33",
+		"@prosopo/common": "3.1.25",
+		"@prosopo/database": "3.5.5",
+		"@prosopo/datasets": "3.0.48",
+		"@prosopo/env": "3.2.27",
+		"@prosopo/keyring": "2.8.39",
+		"@prosopo/load-balancer": "2.8.12",
+		"@prosopo/locale": "3.1.25",
+		"@prosopo/types": "3.6.3",
+		"@prosopo/types-database": "4.0.5",
+		"@prosopo/types-env": "2.7.52",
+		"@prosopo/user-access-policy": "3.5.31",
+		"@prosopo/util": "3.2.3",
+		"@prosopo/util-crypto": "13.5.27",
 		"cron": "3.1.7",
 		"express": "4.21.2",
 		"geolib": "3.3.4",
@@ -50,6 +49,7 @@
 		"zod": "3.23.8"
 	},
 	"devDependencies": {
+		"@prosopo/config": "3.1.25",
 		"@types/node": "22.5.5",
 		"@types/uuid": "10.0.0",
 		"@vitest/coverage-v8": "3.2.4",