@relazio/plugin-sdk 0.1.0

package/dist/jobs/progress.js

@@ -0,0 +1,165 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JobQueue = exports.InMemorySecretProvider = exports.JobProgressTracker = void 0;
+const hmac_1 = require("../security/hmac");
+/**
+ * Implementazione del contesto job per transform asincrone
+ */
+class JobProgressTracker {
+    constructor(jobId, callbackUrl, webhookSecret) {
+        this.currentProgress = 0;
+        this.jobId = jobId;
+        this.callbackUrl = callbackUrl;
+        this.hmac = new hmac_1.HMACUtils(webhookSecret);
+    }
+    /**
+     * Aggiorna il progresso del job
+     */
+    async updateProgress(progress, message) {
+        this.currentProgress = Math.min(100, Math.max(0, progress));
+        await this.sendWebhook({
+            jobId: this.jobId,
+            status: 'processing',
+            progress: this.currentProgress,
+            progressMessage: message,
+            timestamp: new Date().toISOString(),
+        });
+    }
+    /**
+     * Marca il job come completato
+     */
+    async complete(result) {
+        await this.sendWebhook({
+            jobId: this.jobId,
+            status: 'completed',
+            progress: 100,
+            result,
+            timestamp: new Date().toISOString(),
+        });
+    }
+    /**
+     * Marca il job come fallito
+     */
+    async fail(error) {
+        await this.sendWebhook({
+            jobId: this.jobId,
+            status: 'failed',
+            error,
+            timestamp: new Date().toISOString(),
+        });
+    }
+    /**
+     * Cancella il job
+     */
+    async cancel() {
+        // TODO: Implementare logica di cancellazione
+        console.log(`Job ${this.jobId} cancellation requested`);
+    }
+    /**
+     * Invia webhook alla piattaforma
+     */
+    async sendWebhook(payload) {
+        const body = JSON.stringify(payload);
+        const signature = this.hmac.generateHeader(body);
+        try {
+            const response = await fetch(this.callbackUrl, {
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/json',
+                    'X-Plugin-Signature': signature,
+                },
+                body,
+            });
+            if (!response.ok) {
+                console.error(`Webhook failed: ${response.status} ${response.statusText}`);
+            }
+        }
+        catch (error) {
+            console.error('Failed to send webhook:', error);
+            // Non rilanciare l'errore per non bloccare il job
+        }
+    }
+}
+exports.JobProgressTracker = JobProgressTracker;
+/**
+ * Provider in-memory (per sviluppo/testing)
+ */
+class InMemorySecretProvider {
+    constructor() {
+        this.secrets = new Map();
+    }
+    setSecret(organizationId, secret) {
+        this.secrets.set(organizationId, secret);
+    }
+    async getSecret(organizationId) {
+        return this.secrets.get(organizationId) || null;
+    }
+}
+exports.InMemorySecretProvider = InMemorySecretProvider;
+/**
+ * Job queue per gestire transform asincrone (multi-tenant)
+ */
+class JobQueue {
+    constructor(webhookSecretOrProvider) {
+        this.activeJobs = new Map();
+        if (typeof webhookSecretOrProvider === 'string') {
+            // Single-tenant mode (legacy)
+            this.webhookSecret = webhookSecretOrProvider;
+        }
+        else if (webhookSecretOrProvider) {
+            // Multi-tenant mode
+            this.secretProvider = webhookSecretOrProvider;
+        }
+    }
+    /**
+     * Crea un nuovo job (single-tenant)
+     */
+    createJob(jobId, callbackUrl) {
+        if (!this.webhookSecret) {
+            throw new Error('Webhook secret not configured for single-tenant mode');
+        }
+        const job = new JobProgressTracker(jobId, callbackUrl, this.webhookSecret);
+        this.activeJobs.set(jobId, job);
+        return job;
+    }
+    /**
+     * Crea un nuovo job (multi-tenant)
+     */
+    async createJobForOrganization(jobId, callbackUrl, organizationId) {
+        if (!this.secretProvider) {
+            throw new Error('Secret provider not configured for multi-tenant mode');
+        }
+        const secret = await this.secretProvider.getSecret(organizationId);
+        if (!secret) {
+            throw new Error(`Webhook secret not found for organization: ${organizationId}`);
+        }
+        const job = new JobProgressTracker(jobId, callbackUrl, secret);
+        this.activeJobs.set(jobId, job);
+        return job;
+    }
+    /**
+     * Ottieni un job esistente
+     */
+    getJob(jobId) {
+        return this.activeJobs.get(jobId);
+    }
+    /**
+     * Rimuovi un job completato
+     */
+    removeJob(jobId) {
+        this.activeJobs.delete(jobId);
+    }
+    /**
+     * Conta job attivi
+     */
+    getActiveJobCount() {
+        return this.activeJobs.size;
+    }
+    /**
+     * Verifica se è multi-tenant
+     */
+    isMultiTenant() {
+        return !!this.secretProvider;
+    }
+}
+exports.JobQueue = JobQueue;

package/dist/registry/installation.d.ts

@@ -0,0 +1,101 @@
+import type { WebhookSecretProvider } from '../jobs/progress';
+/**
+ * Installazione di un'organizzazione
+ */
+export interface Installation {
+    organizationId: string;
+    organizationName?: string;
+    webhookSecret: string;
+    platformUrl: string;
+    platformVersion?: string;
+    installedAt: Date;
+    lastUsed?: Date;
+}
+/**
+ * Request per registrare un'installazione
+ */
+export interface RegistrationRequest {
+    organizationId: string;
+    organizationName?: string;
+    platformUrl: string;
+    platformVersion?: string;
+}
+/**
+ * Response della registrazione
+ */
+export interface RegistrationResponse {
+    webhookSecret: string;
+    pluginId: string;
+    pluginVersion: string;
+    message: string;
+}
+/**
+ * Storage interface per le installazioni
+ */
+export interface InstallationStorage {
+    get(organizationId: string): Promise<Installation | null>;
+    set(organizationId: string, installation: Installation): Promise<void>;
+    delete(organizationId: string): Promise<boolean>;
+    getAll(): Promise<Installation[]>;
+}
+/**
+ * In-memory storage (default)
+ * Per produzione usare Redis, Database, etc.
+ */
+export declare class MemoryStorage implements InstallationStorage {
+    private storage;
+    get(organizationId: string): Promise<Installation | null>;
+    set(organizationId: string, installation: Installation): Promise<void>;
+    delete(organizationId: string): Promise<boolean>;
+    getAll(): Promise<Installation[]>;
+}
+/**
+ * Registry per gestire installazioni multi-tenant
+ */
+export declare class InstallationRegistry implements WebhookSecretProvider {
+    private storage;
+    private pluginId;
+    private pluginVersion;
+    constructor(pluginId: string, pluginVersion: string, storage?: InstallationStorage);
+    /**
+     * Implementazione WebhookSecretProvider
+     * Richiesto dalla JobQueue per supporto multi-tenant
+     */
+    getSecret(organizationId: string): Promise<string | null>;
+    /**
+     * Versione sincrona per backward compatibility
+     */
+    getSecretSync(organizationId: string): string | null;
+    /**
+     * Registra una nuova installazione
+     */
+    register(req: RegistrationRequest): Promise<RegistrationResponse>;
+    /**
+     * Ottieni webhook secret per un'organizzazione
+     */
+    getWebhookSecret(organizationId: string): Promise<string | null>;
+    /**
+     * Aggiorna timestamp ultimo uso
+     */
+    updateLastUsed(organizationId: string): Promise<void>;
+    /**
+     * Rimuovi un'installazione
+     */
+    unregister(organizationId: string): Promise<boolean>;
+    /**
+     * Ottieni tutte le installazioni
+     */
+    getAllInstallations(): Promise<Installation[]>;
+    /**
+     * Ottieni statistiche
+     */
+    getStats(): Promise<{
+        totalInstallations: number;
+        activeInstallations: number;
+    }>;
+    /**
+     * Genera secret sicuro
+     */
+    private generateSecret;
+}
+//# sourceMappingURL=installation.d.ts.map

package/dist/registry/installation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"installation.d.ts","sourceRoot":"","sources":["../../src/registry/installation.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,kBAAkB,CAAC;AAE9D;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,cAAc,EAAE,MAAM,CAAC;IACvB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,EAAE,IAAI,CAAC;IAClB,QAAQ,CAAC,EAAE,IAAI,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,cAAc,EAAE,MAAM,CAAC;IACvB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,GAAG,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAAC;IAC1D,GAAG,CAAC,cAAc,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACvE,MAAM,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACjD,MAAM,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC,CAAC;CACnC;AAED;;;GAGG;AACH,qBAAa,aAAc,YAAW,mBAAmB;IACvD,OAAO,CAAC,OAAO,CAAmC;IAE5C,GAAG,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC;IAIzD,GAAG,CAAC,cAAc,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC;IAItE,MAAM,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAIhD,MAAM,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;CAGxC;AAED;;GAEG;AACH,qBAAa,oBAAqB,YAAW,qBAAqB;IAChE,OAAO,CAAC,OAAO,CAAsB;IACrC,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,aAAa,CAAS;gBAElB,QAAQ,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,mBAAmB;IAMlF;;;OAGG;IACG,SAAS,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAI/D;;OAEG;IACH,aAAa,CAAC,cAAc,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAMpD;;OAEG;IACG,QAAQ,CAAC,GAAG,EAAE,mBAAmB,GAAG,OAAO,CAAC,oBAAoB,CAAC;IA2CvE;;OAEG;IACG,gBAAgB,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IAKtE;;OAEG;IACG,cAAc,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAQ3D;;OAEG;IACG,UAAU,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAQ1D;;OAEG;IACG,mBAAmB,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;IAIpD;;OAEG;IACG,QAAQ,IAAI,OAAO,CAAC;QACxB,kBAAkB,EAAE,MAAM,CAAC;QAC3B,mBAAmB,EAAE,MAAM,CAAC;KAC7B,CAAC;IAgBF;;OAEG;IACH,OAAO,CAAC,cAAc;CAGvB"}

package/dist/registry/installation.js

@@ -0,0 +1,148 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InstallationRegistry = exports.MemoryStorage = void 0;
+const crypto_1 = __importDefault(require("crypto"));
+/**
+ * In-memory storage (default)
+ * Per produzione usare Redis, Database, etc.
+ */
+class MemoryStorage {
+    constructor() {
+        this.storage = new Map();
+    }
+    async get(organizationId) {
+        return this.storage.get(organizationId) || null;
+    }
+    async set(organizationId, installation) {
+        this.storage.set(organizationId, installation);
+    }
+    async delete(organizationId) {
+        return this.storage.delete(organizationId);
+    }
+    async getAll() {
+        return Array.from(this.storage.values());
+    }
+}
+exports.MemoryStorage = MemoryStorage;
+/**
+ * Registry per gestire installazioni multi-tenant
+ */
+class InstallationRegistry {
+    constructor(pluginId, pluginVersion, storage) {
+        this.pluginId = pluginId;
+        this.pluginVersion = pluginVersion;
+        this.storage = storage || new MemoryStorage();
+    }
+    /**
+     * Implementazione WebhookSecretProvider
+     * Richiesto dalla JobQueue per supporto multi-tenant
+     */
+    async getSecret(organizationId) {
+        return this.getSecretSync(organizationId);
+    }
+    /**
+     * Versione sincrona per backward compatibility
+     */
+    getSecretSync(organizationId) {
+        // Per MemoryStorage possiamo fare una chiamata sincrona
+        const installation = this.storage.storage?.get(organizationId);
+        return installation?.webhookSecret || null;
+    }
+    /**
+     * Registra una nuova installazione
+     */
+    async register(req) {
+        const { organizationId, organizationName, platformUrl, platformVersion } = req;
+        console.log(`[REGISTRY] Registration request from org: ${organizationId}`);
+        // Verifica se già registrato
+        const existing = await this.storage.get(organizationId);
+        if (existing) {
+            console.log(`[REGISTRY] Organization ${organizationId} already registered`);
+            return {
+                webhookSecret: existing.webhookSecret,
+                pluginId: this.pluginId,
+                pluginVersion: this.pluginVersion,
+                message: 'Organization already registered',
+            };
+        }
+        // Genera webhook secret univoco
+        const webhookSecret = this.generateSecret();
+        // Crea installazione
+        const installation = {
+            organizationId,
+            organizationName,
+            webhookSecret,
+            platformUrl,
+            platformVersion,
+            installedAt: new Date(),
+        };
+        // Salva
+        await this.storage.set(organizationId, installation);
+        console.log(`[REGISTRY] Successfully registered org ${organizationId}`);
+        return {
+            webhookSecret,
+            pluginId: this.pluginId,
+            pluginVersion: this.pluginVersion,
+            message: 'Organization registered successfully',
+        };
+    }
+    /**
+     * Ottieni webhook secret per un'organizzazione
+     */
+    async getWebhookSecret(organizationId) {
+        const installation = await this.storage.get(organizationId);
+        return installation?.webhookSecret || null;
+    }
+    /**
+     * Aggiorna timestamp ultimo uso
+     */
+    async updateLastUsed(organizationId) {
+        const installation = await this.storage.get(organizationId);
+        if (installation) {
+            installation.lastUsed = new Date();
+            await this.storage.set(organizationId, installation);
+        }
+    }
+    /**
+     * Rimuovi un'installazione
+     */
+    async unregister(organizationId) {
+        const deleted = await this.storage.delete(organizationId);
+        if (deleted) {
+            console.log(`[REGISTRY] Organization ${organizationId} unregistered`);
+        }
+        return deleted;
+    }
+    /**
+     * Ottieni tutte le installazioni
+     */
+    async getAllInstallations() {
+        return this.storage.getAll();
+    }
+    /**
+     * Ottieni statistiche
+     */
+    async getStats() {
+        const all = await this.storage.getAll();
+        const now = Date.now();
+        const thirtyDaysAgo = now - 30 * 24 * 60 * 60 * 1000;
+        const active = all.filter((inst) => {
+            const lastUsed = inst.lastUsed?.getTime() || inst.installedAt.getTime();
+            return lastUsed > thirtyDaysAgo;
+        });
+        return {
+            totalInstallations: all.length,
+            activeInstallations: active.length,
+        };
+    }
+    /**
+     * Genera secret sicuro
+     */
+    generateSecret() {
+        return `whs_${crypto_1.default.randomBytes(32).toString('hex')}`;
+    }
+}
+exports.InstallationRegistry = InstallationRegistry;

package/dist/security/hmac.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Utility per gestire la firma HMAC-SHA256
+ */
+export declare class HMACUtils {
+    private secret;
+    constructor(secret: string);
+    /**
+     * Genera signature HMAC-SHA256 per un payload
+     */
+    sign(payload: string): string;
+    /**
+     * Verifica una signature HMAC (timing-safe)
+     */
+    verify(payload: string, signature: string): boolean;
+    /**
+     * Genera header signature per webhook
+     */
+    generateHeader(payload: string): string;
+    /**
+     * Estrae signature da header
+     */
+    static extractSignature(header: string | null): string | null;
+}
+/**
+ * Verifica signature da webhook ricevuto
+ */
+export declare function verifyWebhookSignature(payload: string, signatureHeader: string | null, secret: string): boolean;
+//# sourceMappingURL=hmac.d.ts.map

package/dist/security/hmac.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hmac.d.ts","sourceRoot":"","sources":["../../src/security/hmac.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,qBAAa,SAAS;IACpB,OAAO,CAAC,MAAM,CAAS;gBAEX,MAAM,EAAE,MAAM;IAO1B;;OAEG;IACH,IAAI,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM;IAO7B;;OAEG;IACH,MAAM,CAAC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO;IAcnD;;OAEG;IACH,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM;IAKvC;;OAEG;IACH,MAAM,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,GAAG,MAAM,GAAG,IAAI;CAM9D;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,EAAE,MAAM,EACf,eAAe,EAAE,MAAM,GAAG,IAAI,EAC9B,MAAM,EAAE,MAAM,GACb,OAAO,CAMT"}

package/dist/security/hmac.js

@@ -0,0 +1,68 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.HMACUtils = void 0;
+exports.verifyWebhookSignature = verifyWebhookSignature;
+const crypto_1 = __importDefault(require("crypto"));
+/**
+ * Utility per gestire la firma HMAC-SHA256
+ */
+class HMACUtils {
+    constructor(secret) {
+        if (!secret) {
+            throw new Error('HMAC secret is required');
+        }
+        this.secret = secret;
+    }
+    /**
+     * Genera signature HMAC-SHA256 per un payload
+     */
+    sign(payload) {
+        return crypto_1.default
+            .createHmac('sha256', this.secret)
+            .update(payload)
+            .digest('hex');
+    }
+    /**
+     * Verifica una signature HMAC (timing-safe)
+     */
+    verify(payload, signature) {
+        const expected = this.sign(payload);
+        try {
+            // Timing-safe comparison
+            return crypto_1.default.timingSafeEqual(Buffer.from(signature), Buffer.from(expected));
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * Genera header signature per webhook
+     */
+    generateHeader(payload) {
+        const signature = this.sign(payload);
+        return `sha256=${signature}`;
+    }
+    /**
+     * Estrae signature da header
+     */
+    static extractSignature(header) {
+        if (!header)
+            return null;
+        const match = header.match(/^sha256=([a-f0-9]+)$/i);
+        return match ? match[1] : null;
+    }
+}
+exports.HMACUtils = HMACUtils;
+/**
+ * Verifica signature da webhook ricevuto
+ */
+function verifyWebhookSignature(payload, signatureHeader, secret) {
+    const signature = HMACUtils.extractSignature(signatureHeader);
+    if (!signature)
+        return false;
+    const hmac = new HMACUtils(secret);
+    return hmac.verify(payload, signature);
+}

package/dist/server/express.d.ts

@@ -0,0 +1,43 @@
+import { Express } from 'express';
+import type { RelazioPlugin } from '../core/plugin';
+import type { StartOptions } from '../core/types';
+/**
+ * Server Express per il plugin
+ */
+export declare class ExpressServer {
+    private app;
+    private server?;
+    private plugin;
+    private options;
+    constructor(plugin: RelazioPlugin, options: StartOptions);
+    /**
+     * Setup middleware
+     */
+    private setupMiddleware;
+    /**
+     * Setup routes
+     */
+    private setupRoutes;
+    /**
+     * Handler per transform
+     */
+    private handleTransform;
+    /**
+     * Ottieni base URL del server
+     */
+    private getBaseUrl;
+    /**
+     * Avvia il server
+     */
+    start(): Promise<void>;
+    /**
+     * Ferma il server
+     */
+    stop(): Promise<void>;
+    /**
+     * Ottieni Express app (per customizzazione)
+     */
+    getApp(): Express;
+}
+export type Server = ExpressServer;
+//# sourceMappingURL=express.d.ts.map

package/dist/server/express.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"express.d.ts","sourceRoot":"","sources":["../../src/server/express.ts"],"names":[],"mappings":"AAAA,OAAgB,EAAE,OAAO,EAAmC,MAAM,SAAS,CAAC;AAK5E,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AACpD,OAAO,KAAK,EAAE,YAAY,EAAuC,MAAM,eAAe,CAAC;AAEvF;;GAEG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,GAAG,CAAU;IACrB,OAAO,CAAC,MAAM,CAAC,CAA2B;IAC1C,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,OAAO,CAAe;gBAElB,MAAM,EAAE,aAAa,EAAE,OAAO,EAAE,YAAY;IAQxD;;OAEG;IACH,OAAO,CAAC,eAAe;IAiCvB;;OAEG;IACH,OAAO,CAAC,WAAW;IAmHnB;;OAEG;YACW,eAAe;IA+D7B;;OAEG;IACH,OAAO,CAAC,UAAU;IAOlB;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IA8B5B;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAkB3B;;OAEG;IACH,MAAM,IAAI,OAAO;CAGlB;AAED,MAAM,MAAM,MAAM,GAAG,aAAa,CAAC"}