npm - @sdux-vault/engine - Versions diffs - 0.8.0 → 0.11.0 - Mend

@sdux-vault/engine 0.8.0 → 0.11.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/fesm2022/sdux-vault-engine.mjs +30 -6
package/fesm2022/sdux-vault-engine.mjs.map +1 -1
package/package.json +3 -3
package/types/sdux-vault-engine.d.ts +30 -1

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@sdux-vault/engine",
-  "version": "0.8.0",
+  "version": "0.11.0",
   "license": "MIT",
   "repository": {
     "type": "git",
@@ -11,8 +11,8 @@
   },
   "homepage": "https://www.sdux-vault.com",
   "dependencies": {
-    "@sdux-vault/devtools": "0.4.0",
-    "@sdux-vault/shared": "0.3.0",
+    "@sdux-vault/devtools": "0.5.0",
+    "@sdux-vault/shared": "0.4.0",
     "tslib": "^2.3.0"
   },
   "peerDependencies": {

package/types/sdux-vault-engine.d.ts CHANGED Viewed

@@ -325,6 +325,34 @@ declare class FeatureCellClass<T> extends FeatureCellBuilder<T> {
     build(): FeatureCellShape<T>;
 }
+/**
+ * Static license verification utility used to validate signed license tokens
+ * against tier-specific public keys. Tokens use a dot-separated format:
+ * `base64(payload).base64(signature)`.
+ *
+ * The verification process:
+ *  - Splits the token on `.` to extract the encoded payload and signature
+ *  - Decodes the payload from base64 to determine the license tier
+ *  - Rejects tokens with missing or unrecognized tier
+ *  - Loads the appropriate PEM-encoded public key for the tier
+ *  - Uses `crypto.subtle.verify()` (RSA-SHA256) to validate the signature
+ *    against the raw base64-encoded payload string
+ *
+ * Verification failures return `false` rather than throwing.
+ */
+declare const VerifyLicenseToken: {
+    /**
+     * Verifies the supplied signed license token using the public key associated
+     * with its declared tier.
+     *
+     * @param token - A dot-separated token in the format
+     * `base64(payload).base64(signature)`.
+     * @returns A promise resolving to `true` if the signature validates;
+     * otherwise `false`.
+     */
+    verify: (token: string) => Promise<boolean>;
+};
 interface RegisteredFeatureCellShape {
     key: string;
 }
@@ -344,6 +372,7 @@ declare function resetVaultForTests(): void;
 declare function resetFeatureCellRegistry(): void;
 declare function getVaultRegistryForTests(): ReadonlyMap<string, VaultRegistrationShape> | undefined;
 declare function isAuthorizedKey(key: string): boolean;
+declare function isBypassLicensing(): boolean;
 declare function hasVaultLicense(): boolean;
 declare abstract class LicensingAbstract<T> {
@@ -386,5 +415,5 @@ declare function getFeatureCellToken(key: string): FeatureCellToken;
  */
 declare const isPipelineTerminal: <T>(current: FinalState<T>) => boolean;
-export { Conductor, FeatureCellClass, LicensingAbstract, VAULT_LICENSE_ID, VaultCore, createFeatureCellToken, getFeatureCellToken, getLicensePayload, getVaultRegistryForTests, hasVaultLicense, isAuthorizedKey, isPipelineTerminal, registerFeatureCell, registerVaultSettled, resetFeatureCellRegistry, resetVaultForTests, vaultAllSettled, vaultSettled };
+export { Conductor, FeatureCellClass, LicensingAbstract, VAULT_LICENSE_ID, VaultCore, VerifyLicenseToken, createFeatureCellToken, getFeatureCellToken, getLicensePayload, getVaultRegistryForTests, hasVaultLicense, isAuthorizedKey, isBypassLicensing, isPipelineTerminal, registerFeatureCell, registerVaultSettled, resetFeatureCellRegistry, resetVaultForTests, vaultAllSettled, vaultSettled };
 export type { ConductorConfig, FeatureCellConfig, FeatureCellShape, VaultStateRef };