@push.rocks/smartproxy 22.6.0 → 23.1.0

package/dist_ts/proxies/smart-proxy/acme-state-manager.js

@@ -1,101 +0,0 @@
-/**
- * Global state store for ACME operations
- * Tracks active challenge routes and port allocations
- */
-export class AcmeStateManager {
-    constructor() {
-        this.activeChallengeRoutes = new Map();
-        this.acmePortAllocations = new Set();
-        this.primaryChallengeRoute = null;
-    }
-    /**
-     * Check if a challenge route is active
-     */
-    isChallengeRouteActive() {
-        return this.activeChallengeRoutes.size > 0;
-    }
-    /**
-     * Register a challenge route as active
-     */
-    addChallengeRoute(route) {
-        this.activeChallengeRoutes.set(route.name, route);
-        // Track the primary challenge route
-        if (!this.primaryChallengeRoute || route.priority > (this.primaryChallengeRoute.priority || 0)) {
-            this.primaryChallengeRoute = route;
-        }
-        // Track port allocations
-        const ports = Array.isArray(route.match.ports) ? route.match.ports : [route.match.ports];
-        ports.forEach(port => this.acmePortAllocations.add(port));
-    }
-    /**
-     * Remove a challenge route
-     */
-    removeChallengeRoute(routeName) {
-        const route = this.activeChallengeRoutes.get(routeName);
-        if (!route)
-            return;
-        this.activeChallengeRoutes.delete(routeName);
-        // Update primary challenge route if needed
-        if (this.primaryChallengeRoute?.name === routeName) {
-            this.primaryChallengeRoute = null;
-            // Find new primary route with highest priority
-            let highestPriority = -1;
-            for (const [_, activeRoute] of this.activeChallengeRoutes) {
-                const priority = activeRoute.priority || 0;
-                if (priority > highestPriority) {
-                    highestPriority = priority;
-                    this.primaryChallengeRoute = activeRoute;
-                }
-            }
-        }
-        // Update port allocations - only remove if no other routes use this port
-        const ports = Array.isArray(route.match.ports) ? route.match.ports : [route.match.ports];
-        ports.forEach(port => {
-            let portStillUsed = false;
-            for (const [_, activeRoute] of this.activeChallengeRoutes) {
-                const activePorts = Array.isArray(activeRoute.match.ports) ?
-                    activeRoute.match.ports : [activeRoute.match.ports];
-                if (activePorts.includes(port)) {
-                    portStillUsed = true;
-                    break;
-                }
-            }
-            if (!portStillUsed) {
-                this.acmePortAllocations.delete(port);
-            }
-        });
-    }
-    /**
-     * Get all active challenge routes
-     */
-    getActiveChallengeRoutes() {
-        return Array.from(this.activeChallengeRoutes.values());
-    }
-    /**
-     * Get the primary challenge route
-     */
-    getPrimaryChallengeRoute() {
-        return this.primaryChallengeRoute;
-    }
-    /**
-     * Check if a port is allocated for ACME
-     */
-    isPortAllocatedForAcme(port) {
-        return this.acmePortAllocations.has(port);
-    }
-    /**
-     * Get all ACME ports
-     */
-    getAcmePorts() {
-        return Array.from(this.acmePortAllocations);
-    }
-    /**
-     * Clear all state (for shutdown or reset)
-     */
-    clear() {
-        this.activeChallengeRoutes.clear();
-        this.acmePortAllocations.clear();
-        this.primaryChallengeRoute = null;
-    }
-}
-//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiYWNtZS1zdGF0ZS1tYW5hZ2VyLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vLi4vdHMvcHJveGllcy9zbWFydC1wcm94eS9hY21lLXN0YXRlLW1hbmFnZXIudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBRUE7OztHQUdHO0FBQ0gsTUFBTSxPQUFPLGdCQUFnQjtJQUE3QjtRQUNVLDBCQUFxQixHQUE4QixJQUFJLEdBQUcsRUFBRSxDQUFDO1FBQzdELHdCQUFtQixHQUFnQixJQUFJLEdBQUcsRUFBRSxDQUFDO1FBQzdDLDBCQUFxQixHQUF3QixJQUFJLENBQUM7SUFzRzVELENBQUM7SUFwR0M7O09BRUc7SUFDSSxzQkFBc0I7UUFDM0IsT0FBTyxJQUFJLENBQUMscUJBQXFCLENBQUMsSUFBSSxHQUFHLENBQUMsQ0FBQztJQUM3QyxDQUFDO0lBRUQ7O09BRUc7SUFDSSxpQkFBaUIsQ0FBQyxLQUFtQjtRQUMxQyxJQUFJLENBQUMscUJBQXFCLENBQUMsR0FBRyxDQUFDLEtBQUssQ0FBQyxJQUFJLEVBQUUsS0FBSyxDQUFDLENBQUM7UUFFbEQsb0NBQW9DO1FBQ3BDLElBQUksQ0FBQyxJQUFJLENBQUMscUJBQXFCLElBQUksS0FBSyxDQUFDLFFBQVEsR0FBRyxDQUFDLElBQUksQ0FBQyxxQkFBcUIsQ0FBQyxRQUFRLElBQUksQ0FBQyxDQUFDLEVBQUUsQ0FBQztZQUMvRixJQUFJLENBQUMscUJBQXFCLEdBQUcsS0FBSyxDQUFDO1FBQ3JDLENBQUM7UUFFRCx5QkFBeUI7UUFDekIsTUFBTSxLQUFLLEdBQUcsS0FBSyxDQUFDLE9BQU8sQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLEtBQUssQ0FBQyxDQUFDO1FBQ3pGLEtBQUssQ0FBQyxPQUFPLENBQUMsSUFBSSxDQUFDLEVBQUUsQ0FBQyxJQUFJLENBQUMsbUJBQW1CLENBQUMsR0FBRyxDQUFDLElBQUksQ0FBQyxDQUFDLENBQUM7SUFDNUQsQ0FBQztJQUVEOztPQUVHO0lBQ0ksb0JBQW9CLENBQUMsU0FBaUI7UUFDM0MsTUFBTSxLQUFLLEdBQUcsSUFBSSxDQUFDLHFCQUFxQixDQUFDLEdBQUcsQ0FBQyxTQUFTLENBQUMsQ0FBQztRQUN4RCxJQUFJLENBQUMsS0FBSztZQUFFLE9BQU87UUFFbkIsSUFBSSxDQUFDLHFCQUFxQixDQUFDLE1BQU0sQ0FBQyxTQUFTLENBQUMsQ0FBQztRQUU3QywyQ0FBMkM7UUFDM0MsSUFBSSxJQUFJLENBQUMscUJBQXFCLEVBQUUsSUFBSSxLQUFLLFNBQVMsRUFBRSxDQUFDO1lBQ25ELElBQUksQ0FBQyxxQkFBcUIsR0FBRyxJQUFJLENBQUM7WUFDbEMsK0NBQStDO1lBQy9DLElBQUksZUFBZSxHQUFHLENBQUMsQ0FBQyxDQUFDO1lBQ3pCLEtBQUssTUFBTSxDQUFDLENBQUMsRUFBRSxXQUFXLENBQUMsSUFBSSxJQUFJLENBQUMscUJBQXFCLEVBQUUsQ0FBQztnQkFDMUQsTUFBTSxRQUFRLEdBQUcsV0FBVyxDQUFDLFFBQVEsSUFBSSxDQUFDLENBQUM7Z0JBQzNDLElBQUksUUFBUSxHQUFHLGVBQWUsRUFBRSxDQUFDO29CQUMvQixlQUFlLEdBQUcsUUFBUSxDQUFDO29CQUMzQixJQUFJLENBQUMscUJBQXFCLEdBQUcsV0FBVyxDQUFDO2dCQUMzQyxDQUFDO1lBQ0gsQ0FBQztRQUNILENBQUM7UUFFRCx5RUFBeUU7UUFDekUsTUFBTSxLQUFLLEdBQUcsS0FBSyxDQUFDLE9BQU8sQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLEtBQUssQ0FBQyxDQUFDO1FBQ3pGLEtBQUssQ0FBQyxPQUFPLENBQUMsSUFBSSxDQUFDLEVBQUU7WUFDbkIsSUFBSSxhQUFhLEdBQUcsS0FBSyxDQUFDO1lBQzFCLEtBQUssTUFBTSxDQUFDLENBQUMsRUFBRSxXQUFXLENBQUMsSUFBSSxJQUFJLENBQUMscUJBQXFCLEVBQUUsQ0FBQztnQkFDMUQsTUFBTSxXQUFXLEdBQUcsS0FBSyxDQUFDLE9BQU8sQ0FBQyxXQUFXLENBQUMsS0FBSyxDQUFDLEtBQUssQ0FBQyxDQUFDLENBQUM7b0JBQzFELFdBQVcsQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLENBQUMsQ0FBQyxDQUFDLFdBQVcsQ0FBQyxLQUFLLENBQUMsS0FBSyxDQUFDLENBQUM7Z0JBQ3RELElBQUksV0FBVyxDQUFDLFFBQVEsQ0FBQyxJQUFJLENBQUMsRUFBRSxDQUFDO29CQUMvQixhQUFhLEdBQUcsSUFBSSxDQUFDO29CQUNyQixNQUFNO2dCQUNSLENBQUM7WUFDSCxDQUFDO1lBQ0QsSUFBSSxDQUFDLGFBQWEsRUFBRSxDQUFDO2dCQUNuQixJQUFJLENBQUMsbUJBQW1CLENBQUMsTUFBTSxDQUFDLElBQUksQ0FBQyxDQUFDO1lBQ3hDLENBQUM7UUFDSCxDQUFDLENBQUMsQ0FBQztJQUNMLENBQUM7SUFFRDs7T0FFRztJQUNJLHdCQUF3QjtRQUM3QixPQUFPLEtBQUssQ0FBQyxJQUFJLENBQUMsSUFBSSxDQUFDLHFCQUFxQixDQUFDLE1BQU0sRUFBRSxDQUFDLENBQUM7SUFDekQsQ0FBQztJQUVEOztPQUVHO0lBQ0ksd0JBQXdCO1FBQzdCLE9BQU8sSUFBSSxDQUFDLHFCQUFxQixDQUFDO0lBQ3BDLENBQUM7SUFFRDs7T0FFRztJQUNJLHNCQUFzQixDQUFDLElBQVk7UUFDeEMsT0FBTyxJQUFJLENBQUMsbUJBQW1CLENBQUMsR0FBRyxDQUFDLElBQUksQ0FBQyxDQUFDO0lBQzVDLENBQUM7SUFFRDs7T0FFRztJQUNJLFlBQVk7UUFDakIsT0FBTyxLQUFLLENBQUMsSUFBSSxDQUFDLElBQUksQ0FBQyxtQkFBbUIsQ0FBQyxDQUFDO0lBQzlDLENBQUM7SUFFRDs7T0FFRztJQUNJLEtBQUs7UUFDVixJQUFJLENBQUMscUJBQXFCLENBQUMsS0FBSyxFQUFFLENBQUM7UUFDbkMsSUFBSSxDQUFDLG1CQUFtQixDQUFDLEtBQUssRUFBRSxDQUFDO1FBQ2pDLElBQUksQ0FBQyxxQkFBcUIsR0FBRyxJQUFJLENBQUM7SUFDcEMsQ0FBQztDQUNGIn0=

package/dist_ts/proxies/smart-proxy/cert-store.d.ts

@@ -1,10 +0,0 @@
-import type { ICertificateData } from './certificate-manager.js';
-export declare class CertStore {
-    private certDir;
-    constructor(certDir: string);
-    initialize(): Promise<void>;
-    getCertificate(routeName: string): Promise<ICertificateData | null>;
-    saveCertificate(routeName: string, certData: ICertificateData): Promise<void>;
-    deleteCertificate(routeName: string): Promise<void>;
-    private getCertPath;
-}

package/dist_ts/proxies/smart-proxy/cert-store.js

@@ -1,72 +0,0 @@
-import * as plugins from '../../plugins.js';
-import { AsyncFileSystem } from '../../core/utils/fs-utils.js';
-export class CertStore {
-    constructor(certDir) {
-        this.certDir = certDir;
-    }
-    async initialize() {
-        await AsyncFileSystem.ensureDir(this.certDir);
-    }
-    async getCertificate(routeName) {
-        const certPath = this.getCertPath(routeName);
-        const metaPath = `${certPath}/meta.json`;
-        if (!await AsyncFileSystem.exists(metaPath)) {
-            return null;
-        }
-        try {
-            const meta = await AsyncFileSystem.readJSON(metaPath);
-            const [cert, key] = await Promise.all([
-                AsyncFileSystem.readFile(`${certPath}/cert.pem`),
-                AsyncFileSystem.readFile(`${certPath}/key.pem`)
-            ]);
-            let ca;
-            const caPath = `${certPath}/ca.pem`;
-            if (await AsyncFileSystem.exists(caPath)) {
-                ca = await AsyncFileSystem.readFile(caPath);
-            }
-            return {
-                cert,
-                key,
-                ca,
-                expiryDate: new Date(meta.expiryDate),
-                issueDate: new Date(meta.issueDate)
-            };
-        }
-        catch (error) {
-            console.error(`Failed to load certificate for ${routeName}: ${error}`);
-            return null;
-        }
-    }
-    async saveCertificate(routeName, certData) {
-        const certPath = this.getCertPath(routeName);
-        await AsyncFileSystem.ensureDir(certPath);
-        // Save certificate files in parallel
-        const savePromises = [
-            AsyncFileSystem.writeFile(`${certPath}/cert.pem`, certData.cert),
-            AsyncFileSystem.writeFile(`${certPath}/key.pem`, certData.key)
-        ];
-        if (certData.ca) {
-            savePromises.push(AsyncFileSystem.writeFile(`${certPath}/ca.pem`, certData.ca));
-        }
-        // Save metadata
-        const meta = {
-            expiryDate: certData.expiryDate.toISOString(),
-            issueDate: certData.issueDate.toISOString(),
-            savedAt: new Date().toISOString()
-        };
-        savePromises.push(AsyncFileSystem.writeJSON(`${certPath}/meta.json`, meta));
-        await Promise.all(savePromises);
-    }
-    async deleteCertificate(routeName) {
-        const certPath = this.getCertPath(routeName);
-        if (await AsyncFileSystem.isDirectory(certPath)) {
-            await AsyncFileSystem.removeDir(certPath);
-        }
-    }
-    getCertPath(routeName) {
-        // Sanitize route name for filesystem
-        const safeName = routeName.replace(/[^a-zA-Z0-9-_]/g, '_');
-        return `${this.certDir}/${safeName}`;
-    }
-}
-//# sourceMappingURL=data:application/json;base64,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

package/dist_ts/proxies/smart-proxy/certificate-manager.d.ts

@@ -1,164 +0,0 @@
-import * as plugins from '../../plugins.js';
-import { HttpProxy } from '../http-proxy/index.js';
-import type { IRouteConfig } from './models/route-types.js';
-import type { IAcmeOptions } from './models/interfaces.js';
-import type { AcmeStateManager } from './acme-state-manager.js';
-export interface ICertStatus {
-    domain: string;
-    status: 'valid' | 'pending' | 'expired' | 'error';
-    expiryDate?: Date;
-    issueDate?: Date;
-    source: 'static' | 'acme' | 'custom';
-    error?: string;
-}
-export interface ICertificateData {
-    cert: string;
-    key: string;
-    ca?: string;
-    expiryDate: Date;
-    issueDate: Date;
-    source?: 'static' | 'acme' | 'custom';
-}
-export declare class SmartCertManager {
-    private routes;
-    private certDir;
-    private acmeOptions?;
-    private initialState?;
-    private certStore;
-    private smartAcme;
-    private httpProxy;
-    private renewalTimer;
-    private pendingChallenges;
-    private challengeRoute;
-    private certStatus;
-    private globalAcmeDefaults;
-    private updateRoutesCallback?;
-    private challengeRouteActive;
-    private isProvisioning;
-    private acmeStateManager;
-    private certProvisionFunction?;
-    private certProvisionFallbackToAcme;
-    constructor(routes: IRouteConfig[], certDir?: string, acmeOptions?: {
-        email?: string;
-        useProduction?: boolean;
-        port?: number;
-    }, initialState?: {
-        challengeRouteActive?: boolean;
-    });
-    setHttpProxy(httpProxy: HttpProxy): void;
-    /**
-     * Set the ACME state manager
-     */
-    setAcmeStateManager(stateManager: AcmeStateManager): void;
-    /**
-     * Set global ACME defaults from top-level configuration
-     */
-    setGlobalAcmeDefaults(defaults: IAcmeOptions): void;
-    /**
-     * Set custom certificate provision function
-     */
-    setCertProvisionFunction(fn: (domain: string) => Promise<plugins.tsclass.network.ICert | 'http01'>): void;
-    /**
-     * Set whether to fallback to ACME if custom provision fails
-     */
-    setCertProvisionFallbackToAcme(fallback: boolean): void;
-    /**
-     * Update the routes array to keep it in sync with SmartProxy
-     * This prevents stale route data when adding/removing challenge routes
-     */
-    setRoutes(routes: IRouteConfig[]): void;
-    /**
-     * Set callback for updating routes (used for challenge routes)
-     */
-    setUpdateRoutesCallback(callback: (routes: IRouteConfig[]) => Promise<void>): void;
-    /**
-     * Initialize certificate manager and provision certificates for all routes
-     */
-    initialize(): Promise<void>;
-    /**
-     * Provision certificates for all routes that need them
-     */
-    provisionAllCertificates(): Promise<void>;
-    /**
-     * Provision certificate for a single route
-     */
-    provisionCertificate(route: IRouteConfig, allowConcurrent?: boolean): Promise<void>;
-    /**
-     * Provision ACME certificate
-     */
-    private provisionAcmeCertificate;
-    /**
-     * Provision static certificate
-     */
-    private provisionStaticCertificate;
-    /**
-     * Apply certificate to HttpProxy
-     */
-    private applyCertificate;
-    /**
-     * Extract domains from route configuration
-     */
-    private extractDomainsFromRoute;
-    /**
-     * Check if certificate is valid
-     */
-    private isCertificateValid;
-    /**
-     * Extract expiry date from a PEM certificate
-     */
-    private extractExpiryDate;
-    /**
-     * Add challenge route to SmartProxy
-     *
-     * This method adds a special route for ACME HTTP-01 challenges, which typically uses port 80.
-     * Since we may already be listening on port 80 for regular routes, we need to be
-     * careful about how we add this route to avoid binding conflicts.
-     */
-    private addChallengeRoute;
-    /**
-     * Remove challenge route from SmartProxy
-     */
-    private removeChallengeRoute;
-    /**
-     * Start renewal timer
-     */
-    private startRenewalTimer;
-    /**
-     * Check and renew certificates that are expiring
-     */
-    private checkAndRenewCertificates;
-    /**
-     * Update certificate status
-     */
-    private updateCertStatus;
-    /**
-     * Get certificate status for a route
-     */
-    getCertificateStatus(routeName: string): ICertStatus | undefined;
-    /**
-     * Force renewal of a certificate
-     */
-    renewCertificate(routeName: string): Promise<void>;
-    /**
-     * Setup challenge handler integration with SmartProxy routing
-     */
-    private setupChallengeHandler;
-    /**
-     * Stop certificate manager
-     */
-    stop(): Promise<void>;
-    /**
-     * Get ACME options (for recreating after route updates)
-     */
-    getAcmeOptions(): {
-        email?: string;
-        useProduction?: boolean;
-        port?: number;
-    } | undefined;
-    /**
-     * Get certificate manager state
-     */
-    getState(): {
-        challengeRouteActive: boolean;
-    };
-}