@riocrypto/common-server 1.0.2480 → 1.0.2481

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (3) hide show
  1. package/build/clients/secret-manager-client.d.ts +19 -7
  2. package/build/clients/secret-manager-client.js +75 -60
  3. package/package.json +1 -1
package/build/clients/secret-manager-client.d.ts CHANGED
@@ -8,22 +8,34 @@ declare class SecretManagerClient {
8
8
  private readonly POLL_INTERVAL_MS;
9
9
  constructor(env: RioEnv);
10
10
  /**
11
- * Get a secret value from cache or fetch it from Secret Manager
12
- * Once fetched, the secret will be cached and automatically refreshed every 15 seconds
11
+ * Get a secret value from cache or fetch the entire secret file
12
+ * Once fetched, all secrets are cached and automatically refreshed every hour
13
13
  */
14
14
  getSecretValue(secretId: string): Promise<string | null>;
15
15
  /**
16
- * Fetch a secret value directly from Secret Manager without using the cache
16
+ * Refresh the entire secret cache by fetching the complete secret file
17
17
  */
18
- private fetchSecretValue;
18
+ private refreshSecretCache;
19
19
  /**
20
- * Set up cache entry with polling for a secret
20
+ * Set up cache with polling for the entire secret file
21
21
  */
22
22
  private setupCacheWithPolling;
23
23
  /**
24
- * Clear the cache for a specific secret or all secrets
24
+ * Clear the entire secret cache
25
25
  */
26
- clearCache(secretId?: string): void;
26
+ clearCache(): void;
27
+ /**
28
+ * Get all cached secrets (useful for debugging)
29
+ */
30
+ getAllSecrets(): Record<string, string> | null;
31
+ /**
32
+ * Get cache status information
33
+ */
34
+ getCacheStatus(): {
35
+ isLoaded: boolean;
36
+ secretCount: number;
37
+ lastFetched: Date | null;
38
+ };
27
39
  }
28
40
  export declare const secretManagerClient: SecretManagerClient;
29
41
  export {};
package/build/clients/secret-manager-client.js CHANGED
@@ -39,7 +39,7 @@ const fs = __importStar(require("fs"));
39
39
  class SecretManagerClient {
40
40
  constructor(env) {
41
41
  this.env = env;
42
- this.secretCache = new Map();
42
+ this.secretCache = null;
43
43
  this.POLL_INTERVAL_MS = 60 * 60 * 1000; // 1 hour
44
44
  const secretFilePath = "/etc/secrets/secret-manager/secret-manager-service-account-key.json";
45
45
  const secretFileContents = fs.readFileSync(secretFilePath, "utf8");
@@ -56,29 +56,34 @@ class SecretManagerClient {
56
56
  });
57
57
  }
58
58
  /**
59
- * Get a secret value from cache or fetch it from Secret Manager
60
- * Once fetched, the secret will be cached and automatically refreshed every 15 seconds
59
+ * Get a secret value from cache or fetch the entire secret file
60
+ * Once fetched, all secrets are cached and automatically refreshed every hour
61
61
  */
62
62
  getSecretValue(secretId) {
63
63
  return __awaiter(this, void 0, void 0, function* () {
64
- // Check if the secret is already in the cache
65
- const cachedSecret = this.secretCache.get(secretId);
66
- if (cachedSecret) {
67
- return cachedSecret.value;
64
+ // Check if we have a cache and the secret exists
65
+ if (this.secretCache && this.secretCache.secrets[secretId]) {
66
+ return this.secretCache.secrets[secretId];
68
67
  }
69
- // If not in cache, fetch it and set up polling
70
- const value = yield this.fetchSecretValue(secretId);
71
- if (value) {
72
- this.setupCacheWithPolling(secretId, value);
68
+ // If not in cache or cache doesn't exist, fetch entire secret file
69
+ const success = yield this.refreshSecretCache();
70
+ if (!success) {
71
+ return null;
73
72
  }
74
- return value;
73
+ // Check again after refresh
74
+ if (this.secretCache && this.secretCache.secrets[secretId]) {
75
+ return this.secretCache.secrets[secretId];
76
+ }
77
+ // Secret not found even after refresh
78
+ console.error(`Secret ${secretId} not found in secret file`);
79
+ return null;
75
80
  });
76
81
  }
77
82
  /**
78
- * Fetch a secret value directly from Secret Manager without using the cache
83
+ * Refresh the entire secret cache by fetching the complete secret file
79
84
  */
80
- fetchSecretValue(secretId) {
81
- var _a, _b;
85
+ refreshSecretCache() {
86
+ var _a, _b, _c;
82
87
  return __awaiter(this, void 0, void 0, function* () {
83
88
  let file;
84
89
  if (this.env === common_1.RioEnv.Development) {
@@ -105,7 +110,14 @@ class SecretManagerClient {
105
110
  throw new Error("No payload data");
106
111
  }
107
112
  const secrets = JSON.parse(version.payload.data.toString());
108
- return secrets[secretId];
113
+ // Clear existing polling if it exists
114
+ if ((_c = this.secretCache) === null || _c === void 0 ? void 0 : _c.pollingInterval) {
115
+ clearInterval(this.secretCache.pollingInterval);
116
+ }
117
+ // Set up new cache with polling
118
+ this.setupCacheWithPolling(secrets);
119
+ console.info(`Refreshed ${Object.keys(secrets).length} secrets from ${file}`);
120
+ return true;
109
121
  }
110
122
  catch (err) {
111
123
  attempt++;
@@ -117,74 +129,77 @@ class SecretManagerClient {
117
129
  continue;
118
130
  }
119
131
  else {
120
- console.error(`Failed to access secret ${secretId}:`, err);
121
- return null;
132
+ console.error(`Failed to access secret file ${file}:`, err);
133
+ return false;
122
134
  }
123
135
  }
124
136
  }
125
- console.error(`Failed to access secret ${secretId} after ${maxRetries} attempts.`);
126
- return null;
137
+ console.error(`Failed to access secret file ${file} after ${maxRetries} attempts.`);
138
+ return false;
127
139
  });
128
140
  }
129
141
  /**
130
- * Set up cache entry with polling for a secret
142
+ * Set up cache with polling for the entire secret file
131
143
  */
132
- setupCacheWithPolling(secretId, initialValue) {
144
+ setupCacheWithPolling(secrets) {
133
145
  // Only set up polling in non-test environments
134
146
  if (process.env.NODE_ENV === "test") {
135
- // For test environments, just cache the value without polling
136
- this.secretCache.set(secretId, {
137
- value: initialValue,
147
+ // For test environments, just cache the secrets without polling
148
+ this.secretCache = {
149
+ secrets,
138
150
  pollingInterval: null,
139
- });
151
+ lastFetched: new Date(),
152
+ };
140
153
  return;
141
154
  }
142
- // Set up polling interval to refresh the secret
155
+ // Set up polling interval to refresh all secrets
143
156
  const pollingInterval = setInterval(() => __awaiter(this, void 0, void 0, function* () {
144
157
  try {
145
- const newValue = yield this.fetchSecretValue(secretId);
146
- if (newValue) {
147
- const currentCached = this.secretCache.get(secretId);
148
- // Only update and log if the value has changed
149
- if (currentCached && currentCached.value !== newValue) {
150
- console.info(`Secret ${secretId} has been updated`);
151
- this.secretCache.set(secretId, {
152
- value: newValue,
153
- pollingInterval: currentCached.pollingInterval,
154
- });
155
- }
158
+ const success = yield this.refreshSecretCache();
159
+ if (!success) {
160
+ console.error("Failed to refresh secret cache during polling");
156
161
  }
157
162
  }
158
163
  catch (error) {
159
- console.error(`Error polling secret ${secretId}:`, error);
164
+ console.error("Error polling secrets:", error);
160
165
  }
161
166
  }), this.POLL_INTERVAL_MS);
162
- // Store the initial value and polling interval
163
- this.secretCache.set(secretId, {
164
- value: initialValue,
167
+ // Store the cache with polling interval
168
+ this.secretCache = {
169
+ secrets,
165
170
  pollingInterval,
166
- });
171
+ lastFetched: new Date(),
172
+ };
167
173
  }
168
174
  /**
169
- * Clear the cache for a specific secret or all secrets
175
+ * Clear the entire secret cache
170
176
  */
171
- clearCache(secretId) {
172
- if (secretId) {
173
- const cached = this.secretCache.get(secretId);
174
- if (cached && cached.pollingInterval) {
175
- clearInterval(cached.pollingInterval);
176
- }
177
- this.secretCache.delete(secretId);
178
- }
179
- else {
180
- // Clear all cached secrets
181
- this.secretCache.forEach((cached) => {
182
- if (cached.pollingInterval) {
183
- clearInterval(cached.pollingInterval);
184
- }
185
- });
186
- this.secretCache.clear();
177
+ clearCache() {
178
+ var _a;
179
+ if ((_a = this.secretCache) === null || _a === void 0 ? void 0 : _a.pollingInterval) {
180
+ clearInterval(this.secretCache.pollingInterval);
187
181
  }
182
+ this.secretCache = null;
183
+ }
184
+ /**
185
+ * Get all cached secrets (useful for debugging)
186
+ */
187
+ getAllSecrets() {
188
+ var _a;
189
+ return ((_a = this.secretCache) === null || _a === void 0 ? void 0 : _a.secrets) || null;
190
+ }
191
+ /**
192
+ * Get cache status information
193
+ */
194
+ getCacheStatus() {
195
+ var _a;
196
+ return {
197
+ isLoaded: !!this.secretCache,
198
+ secretCount: this.secretCache
199
+ ? Object.keys(this.secretCache.secrets).length
200
+ : 0,
201
+ lastFetched: ((_a = this.secretCache) === null || _a === void 0 ? void 0 : _a.lastFetched) || null,
202
+ };
188
203
  }
189
204
  }
190
205
  exports.secretManagerClient = new SecretManagerClient(process.env.RIO_ENV || process.env.NEXT_PUBLIC_RIO_ENV);
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@riocrypto/common-server",
3
- "version": "1.0.2480",
3
+ "version": "1.0.2481",
4
4
  "description": "",
5
5
  "main": "./build/index.js",
6
6
  "types": "./build/index.d.ts",