@serve.zone/dcrouter 7.4.3 → 8.1.0

package/dist_ts/opsserver/handlers/admin.handler.d.ts

@@ -1,31 +0,0 @@
-import * as plugins from '../../plugins.js';
-import type { OpsServer } from '../classes.opsserver.js';
-import * as interfaces from '../../../dist_ts_interfaces/index.js';
-export interface IJwtData {
-    userId: string;
-    status: 'loggedIn' | 'loggedOut';
-    expiresAt: number;
-}
-export declare class AdminHandler {
-    private opsServerRef;
-    typedrouter: plugins.typedrequest.TypedRouter;
-    smartjwtInstance: plugins.smartjwt.SmartJwt<IJwtData>;
-    private users;
-    constructor(opsServerRef: OpsServer);
-    initialize(): Promise<void>;
-    private initializeJwt;
-    private initializeDefaultUsers;
-    private registerHandlers;
-    /**
-     * Create a guard for valid identity (matching cloudly pattern)
-     */
-    validIdentityGuard: plugins.smartguard.Guard<{
-        identity: interfaces.data.IIdentity;
-    }>;
-    /**
-     * Create a guard for admin identity (matching cloudly pattern)
-     */
-    adminIdentityGuard: plugins.smartguard.Guard<{
-        identity: interfaces.data.IIdentity;
-    }>;
-}

package/dist_ts/opsserver/handlers/admin.handler.js

@@ -1,180 +0,0 @@
-import * as plugins from '../../plugins.js';
-import * as interfaces from '../../../dist_ts_interfaces/index.js';
-export class AdminHandler {
-    opsServerRef;
-    typedrouter = new plugins.typedrequest.TypedRouter();
-    // JWT instance
-    smartjwtInstance;
-    // Simple in-memory user storage (in production, use proper database)
-    users = new Map();
-    constructor(opsServerRef) {
-        this.opsServerRef = opsServerRef;
-        // Add this handler's router to the parent
-        this.opsServerRef.typedrouter.addTypedRouter(this.typedrouter);
-    }
-    async initialize() {
-        await this.initializeJwt();
-        this.initializeDefaultUsers();
-        this.registerHandlers();
-    }
-    async initializeJwt() {
-        this.smartjwtInstance = new plugins.smartjwt.SmartJwt();
-        await this.smartjwtInstance.init();
-        // For development, create new keypair each time
-        // In production, load from storage like cloudly does
-        await this.smartjwtInstance.createNewKeyPair();
-    }
-    initializeDefaultUsers() {
-        // Add default admin user
-        const adminId = plugins.uuid.v4();
-        this.users.set(adminId, {
-            id: adminId,
-            username: 'admin',
-            password: 'admin',
-            role: 'admin',
-        });
-    }
-    registerHandlers() {
-        // Admin Login Handler
-        this.typedrouter.addTypedHandler(new plugins.typedrequest.TypedHandler('adminLoginWithUsernameAndPassword', async (dataArg) => {
-            try {
-                // Find user by username and password
-                let user = null;
-                for (const [_, userData] of this.users) {
-                    if (userData.username === dataArg.username && userData.password === dataArg.password) {
-                        user = userData;
-                        break;
-                    }
-                }
-                if (!user) {
-                    throw new plugins.typedrequest.TypedResponseError('login failed');
-                }
-                const expiresAtTimestamp = Date.now() + 3600 * 1000 * 24; // 24 hours
-                const jwt = await this.smartjwtInstance.createJWT({
-                    userId: user.id,
-                    status: 'loggedIn',
-                    expiresAt: expiresAtTimestamp,
-                });
-                return {
-                    identity: {
-                        jwt,
-                        userId: user.id,
-                        name: user.username,
-                        expiresAt: expiresAtTimestamp,
-                        role: user.role,
-                        type: 'user',
-                    },
-                };
-            }
-            catch (error) {
-                if (error instanceof plugins.typedrequest.TypedResponseError) {
-                    throw error;
-                }
-                throw new plugins.typedrequest.TypedResponseError('login failed');
-            }
-        }));
-        // Admin Logout Handler
-        this.typedrouter.addTypedHandler(new plugins.typedrequest.TypedHandler('adminLogout', async (dataArg) => {
-            // In a real implementation, you might want to blacklist the JWT
-            // For now, just return success
-            return {
-                success: true,
-            };
-        }));
-        // Verify Identity Handler
-        this.typedrouter.addTypedHandler(new plugins.typedrequest.TypedHandler('verifyIdentity', async (dataArg) => {
-            if (!dataArg.identity?.jwt) {
-                return {
-                    valid: false,
-                };
-            }
-            try {
-                const jwtData = await this.smartjwtInstance.verifyJWTAndGetData(dataArg.identity.jwt);
-                // Check if expired
-                if (jwtData.expiresAt < Date.now()) {
-                    return {
-                        valid: false,
-                    };
-                }
-                // Check if logged in
-                if (jwtData.status !== 'loggedIn') {
-                    return {
-                        valid: false,
-                    };
-                }
-                // Find user
-                const user = this.users.get(jwtData.userId);
-                if (!user) {
-                    return {
-                        valid: false,
-                    };
-                }
-                return {
-                    valid: true,
-                    identity: {
-                        jwt: dataArg.identity.jwt,
-                        userId: user.id,
-                        name: user.username,
-                        expiresAt: jwtData.expiresAt,
-                        role: user.role,
-                        type: 'user',
-                    },
-                };
-            }
-            catch (error) {
-                return {
-                    valid: false,
-                };
-            }
-        }));
-    }
-    /**
-     * Create a guard for valid identity (matching cloudly pattern)
-     */
-    validIdentityGuard = new plugins.smartguard.Guard(async (dataArg) => {
-        if (!dataArg.identity?.jwt) {
-            return false;
-        }
-        try {
-            const jwtData = await this.smartjwtInstance.verifyJWTAndGetData(dataArg.identity.jwt);
-            // Check expiration
-            if (jwtData.expiresAt < Date.now()) {
-                return false;
-            }
-            // Check status
-            if (jwtData.status !== 'loggedIn') {
-                return false;
-            }
-            // Verify data hasn't been tampered with
-            if (dataArg.identity.expiresAt !== jwtData.expiresAt) {
-                return false;
-            }
-            if (dataArg.identity.userId !== jwtData.userId) {
-                return false;
-            }
-            return true;
-        }
-        catch (error) {
-            return false;
-        }
-    }, {
-        failedHint: 'identity is not valid',
-        name: 'validIdentityGuard',
-    });
-    /**
-     * Create a guard for admin identity (matching cloudly pattern)
-     */
-    adminIdentityGuard = new plugins.smartguard.Guard(async (dataArg) => {
-        // First check if identity is valid
-        const isValid = await this.validIdentityGuard.exec(dataArg);
-        if (!isValid) {
-            return false;
-        }
-        // Check if user has admin role
-        return dataArg.identity.role === 'admin';
-    }, {
-        failedHint: 'user is not admin',
-        name: 'adminIdentityGuard',
-    });
-}
-//# sourceMappingURL=data:application/json;base64,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

package/dist_ts/opsserver/handlers/certificate.handler.d.ts

@@ -1,34 +0,0 @@
-import * as plugins from '../../plugins.js';
-import type { OpsServer } from '../classes.opsserver.js';
-export declare class CertificateHandler {
-    private opsServerRef;
-    typedrouter: plugins.typedrequest.TypedRouter;
-    constructor(opsServerRef: OpsServer);
-    private registerHandlers;
-    /**
-     * Build domain-centric certificate overview.
-     * Instead of one row per route, we produce one row per unique domain.
-     */
-    private buildCertificateOverview;
-    private buildSummary;
-    /**
-     * Legacy route-based reprovisioning
-     */
-    private reprovisionCertificateByRoute;
-    /**
-     * Domain-based reprovisioning — clears backoff first, then triggers provision
-     */
-    private reprovisionCertificateDomain;
-    /**
-     * Delete certificate data for a domain from storage
-     */
-    private deleteCertificate;
-    /**
-     * Export certificate data for a domain as ICert-shaped JSON
-     */
-    private exportCertificate;
-    /**
-     * Import a certificate from ICert-shaped JSON
-     */
-    private importCertificate;
-}