npm - @solidxai/core - Versions diffs - 0.1.8-beta.9 → 0.1.8 - Mend

@solidxai/core 0.1.8-beta.9 → 0.1.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (131) hide show

package/README.md +197 -0
package/dist/controllers/authentication.controller.d.ts +32 -2
package/dist/controllers/authentication.controller.d.ts.map +1 -1
package/dist/controllers/authentication.controller.js +80 -3
package/dist/controllers/authentication.controller.js.map +1 -1
package/dist/dtos/create-api-key.dto.d.ts +5 -0
package/dist/dtos/create-api-key.dto.d.ts.map +1 -0
package/dist/dtos/create-api-key.dto.js +34 -0
package/dist/dtos/create-api-key.dto.js.map +1 -0
package/dist/dtos/register-private.dto.d.ts +3 -5
package/dist/dtos/register-private.dto.d.ts.map +1 -1
package/dist/dtos/register-private.dto.js +6 -18
package/dist/dtos/register-private.dto.js.map +1 -1
package/dist/dtos/sso-exchange.dto.d.ts +4 -0
package/dist/dtos/sso-exchange.dto.d.ts.map +1 -0
package/dist/dtos/sso-exchange.dto.js +26 -0
package/dist/dtos/sso-exchange.dto.js.map +1 -0
package/dist/dtos/update-api-key.dto.d.ts +4 -0
package/dist/dtos/update-api-key.dto.d.ts.map +1 -0
package/dist/dtos/update-api-key.dto.js +28 -0
package/dist/dtos/update-api-key.dto.js.map +1 -0
package/dist/entities/setting.entity.d.ts +1 -0
package/dist/entities/setting.entity.d.ts.map +1 -1
package/dist/entities/setting.entity.js +5 -1
package/dist/entities/setting.entity.js.map +1 -1
package/dist/entities/user-api-key.entity.d.ts +12 -0
package/dist/entities/user-api-key.entity.d.ts.map +1 -0
package/dist/entities/user-api-key.entity.js +62 -0
package/dist/entities/user-api-key.entity.js.map +1 -0
package/dist/entities/user.entity.d.ts +3 -0
package/dist/entities/user.entity.d.ts.map +1 -1
package/dist/entities/user.entity.js +12 -1
package/dist/entities/user.entity.js.map +1 -1
package/dist/enums/auth-type.enum.d.ts +2 -1
package/dist/enums/auth-type.enum.d.ts.map +1 -1
package/dist/enums/auth-type.enum.js +2 -1
package/dist/enums/auth-type.enum.js.map +1 -1
package/dist/guards/api-key.guard.d.ts +11 -0
package/dist/guards/api-key.guard.d.ts.map +1 -0
package/dist/guards/api-key.guard.js +43 -0
package/dist/guards/api-key.guard.js.map +1 -0
package/dist/guards/authentication.guard.d.ts +4 -2
package/dist/guards/authentication.guard.d.ts.map +1 -1
package/dist/guards/authentication.guard.js +7 -3
package/dist/guards/authentication.guard.js.map +1 -1
package/dist/index.d.ts +2 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +2 -0
package/dist/index.js.map +1 -1
package/dist/interfaces.d.ts +12 -0
package/dist/interfaces.d.ts.map +1 -1
package/dist/interfaces.js.map +1 -1
package/dist/jobs/database/chatter-queue-publisher-database.service.d.ts +1 -1
package/dist/jobs/database/chatter-queue-publisher-database.service.d.ts.map +1 -1
package/dist/jobs/database/chatter-queue-publisher-database.service.js.map +1 -1
package/dist/jobs/database/chatter-queue-subscriber-database.service.d.ts +1 -1
package/dist/jobs/database/chatter-queue-subscriber-database.service.d.ts.map +1 -1
package/dist/jobs/database/chatter-queue-subscriber-database.service.js.map +1 -1
package/dist/jobs/rabbitmq/chatter-queue-publisher.service.d.ts +1 -12
package/dist/jobs/rabbitmq/chatter-queue-publisher.service.d.ts.map +1 -1
package/dist/jobs/rabbitmq/chatter-queue-publisher.service.js.map +1 -1
package/dist/jobs/rabbitmq/chatter-queue-subscriber.service.d.ts +1 -1
package/dist/jobs/rabbitmq/chatter-queue-subscriber.service.d.ts.map +1 -1
package/dist/jobs/rabbitmq/chatter-queue-subscriber.service.js.map +1 -1
package/dist/jobs/redis/chatter-queue-subscriber-redis.service.d.ts +1 -1
package/dist/jobs/redis/chatter-queue-subscriber-redis.service.d.ts.map +1 -1
package/dist/jobs/redis/chatter-queue-subscriber-redis.service.js.map +1 -1
package/dist/repository/user-api-key.repository.d.ts +12 -0
package/dist/repository/user-api-key.repository.d.ts.map +1 -0
package/dist/repository/user-api-key.repository.js +34 -0
package/dist/repository/user-api-key.repository.js.map +1 -0
package/dist/seeders/seed-data/solid-core-metadata.json +128 -0
package/dist/services/api-key.service.d.ts +20 -0
package/dist/services/api-key.service.d.ts.map +1 -0
package/dist/services/api-key.service.js +98 -0
package/dist/services/api-key.service.js.map +1 -0
package/dist/services/authentication.service.d.ts +19 -1
package/dist/services/authentication.service.d.ts.map +1 -1
package/dist/services/authentication.service.js +31 -5
package/dist/services/authentication.service.js.map +1 -1
package/dist/services/encryption.service.d.ts +8 -0
package/dist/services/encryption.service.d.ts.map +1 -0
package/dist/services/encryption.service.js +75 -0
package/dist/services/encryption.service.js.map +1 -0
package/dist/services/setting.service.d.ts +1 -0
package/dist/services/setting.service.d.ts.map +1 -1
package/dist/services/setting.service.js +35 -7
package/dist/services/setting.service.js.map +1 -1
package/dist/services/settings/default-settings-provider.service.d.ts +12 -0
package/dist/services/settings/default-settings-provider.service.d.ts.map +1 -1
package/dist/services/settings/default-settings-provider.service.js +4 -3
package/dist/services/settings/default-settings-provider.service.js.map +1 -1
package/dist/services/sso-code-storage.service.d.ts +15 -0
package/dist/services/sso-code-storage.service.d.ts.map +1 -0
package/dist/services/sso-code-storage.service.js +47 -0
package/dist/services/sso-code-storage.service.js.map +1 -0
package/dist/solid-core.module.d.ts.map +1 -1
package/dist/solid-core.module.js +10 -0
package/dist/solid-core.module.js.map +1 -1
package/dist/subscribers/audit.subscriber.d.ts +1 -1
package/dist/subscribers/audit.subscriber.d.ts.map +1 -1
package/dist/subscribers/audit.subscriber.js.map +1 -1
package/package.json +1 -1
package/src/controllers/authentication.controller.ts +59 -3
package/src/dtos/create-api-key.dto.ts +14 -0
package/src/dtos/register-private.dto.ts +5 -14
package/src/dtos/sso-exchange.dto.ts +7 -0
package/src/dtos/update-api-key.dto.ts +9 -0
package/src/entities/setting.entity.ts +3 -0
package/src/entities/user-api-key.entity.ts +37 -0
package/src/entities/user.entity.ts +8 -0
package/src/enums/auth-type.enum.ts +1 -0
package/src/guards/api-key.guard.ts +32 -0
package/src/guards/authentication.guard.ts +6 -3
package/src/index.ts +2 -0
package/src/interfaces.ts +16 -0
package/src/jobs/database/chatter-queue-publisher-database.service.ts +1 -1
package/src/jobs/database/chatter-queue-subscriber-database.service.ts +1 -1
package/src/jobs/rabbitmq/chatter-queue-publisher.service.ts +1 -15
package/src/jobs/rabbitmq/chatter-queue-subscriber.service.ts +1 -1
package/src/jobs/redis/chatter-queue-subscriber-redis.service.ts +1 -1
package/src/repository/user-api-key.repository.ts +17 -0
package/src/seeders/seed-data/solid-core-metadata.json +128 -0
package/src/services/api-key.service.ts +111 -0
package/src/services/authentication.service.ts +35 -3
package/src/services/encryption.service.ts +43 -0
package/src/services/setting.service.ts +38 -9
package/src/services/settings/default-settings-provider.service.ts +4 -3
package/src/services/sso-code-storage.service.ts +36 -0
package/src/solid-core.module.ts +10 -0
package/src/subscribers/audit.subscriber.ts +1 -1

package/src/services/setting.service.ts CHANGED Viewed

@@ -15,6 +15,7 @@ import { ISettingsProvider, NoInfer, SettingDefinition, SettingLevel } from '../
 import { ModuleMetadataRepository } from 'src/repository/module-metadata.repository';
 import type { SolidCoreSetting } from './settings/default-settings-provider.service';
 import { Logger } from '@nestjs/common';
+import { EncryptionService } from './encryption.service';
 @Injectable()
@@ -23,6 +24,7 @@ export class SettingService {
   private settings: SettingDefinition[] = [];
   private settingsByKey = new Map<string, SettingDefinition>();
+  private readonly encryptionService: EncryptionService | null;
   private readonly arrayKeysToSkip = new Set([
     'authenticationPasswordRegex',
@@ -38,7 +40,11 @@ export class SettingService {
     readonly moduleMetadataRepo: ModuleMetadataRepository,
     private readonly requestContextService: RequestContextService,
     @InjectRepository(User) private readonly userRepository: Repository<User>,
-  ) { }
+  ) {
+    const encKey = process.env.APP_ENCRYPTION_KEY;
+    this.encryptionService = encKey ? new EncryptionService(encKey) : null;
+    if (!encKey) this._logger.warn('APP_ENCRYPTION_KEY is not set — encrypted settings will not be decrypted');
+  }
   private async getSettingsFromDb(): Promise<Setting[]> {
     const settings = await this.repo.find({ relations: ['user'] });
@@ -112,7 +118,15 @@ export class SettingService {
       const settingFromDb = settingsFromDbByKey.get(setting.key);
       const valueFromDb = settingFromDb?.value;
       if (settingFromDb?.key && valueFromDb !== undefined && valueFromDb !== null) {
-        const parsedValue = typeof valueFromDb === 'string' ? this.parseSettingValue(valueFromDb, settingFromDb.key) : valueFromDb;
+        let rawValue = valueFromDb;
+        if (settingFromDb.encrypted && this.encryptionService) {
+          try {
+            rawValue = this.encryptionService.decrypt(rawValue);
+          } catch {
+            this._logger.warn(`Failed to decrypt setting "${setting.key}" — using raw value`);
+          }
+        }
+        const parsedValue = typeof rawValue === 'string' ? this.parseSettingValue(rawValue, settingFromDb.key) : rawValue;
         return { ...setting, value: parsedValue };
       }
       return setting;
@@ -149,30 +163,38 @@ export class SettingService {
     const settingsToMutate: Setting[] = [];
     // const settingsToUpdate: Setting[] = [];
-    for (const { key, value, level, moduleName } of saEditableAndAbove) {
+    for (const { key, value, level, moduleName, encrypted } of saEditableAndAbove) {
       const moduleMetadata = await this.moduleMetadataRepo.findOneBy({ name: moduleName });
       if (!existingSettingsFromDbByKey.has(key)) {
         const setting = new Setting();
         setting.key = key;
         setting.level = level;
+        setting.encrypted = !!encrypted;
         if (moduleMetadata)
           setting.moduleMetadata = moduleMetadata;
+        let rawValue: string | null;
         if (typeof value === 'boolean') {
-          setting.value = value.toString();
+          rawValue = value.toString();
         } else if (Array.isArray(value)) {
-          setting.value = value.join(',');
+          rawValue = value.join(',');
         } else if (value === null || value === undefined) {
-          setting.value = null;
+          rawValue = null;
         } else {
-          setting.value = String(value);
+          rawValue = String(value);
         }
+        if (encrypted && this.encryptionService && rawValue !== null) {
+          rawValue = this.encryptionService.encrypt(rawValue);
+        }
+        setting.value = rawValue;
         settingsToMutate.push(setting);
       }
       else {
         const setting = existingSettingsFromDbByKey.get(key);
         setting.level = level;
+        setting.encrypted = !!encrypted;
         if (moduleMetadata)
           setting.moduleMetadata = moduleMetadata;
         settingsToMutate.push(setting);
@@ -289,22 +311,29 @@ export class SettingService {
       }
       const key = settingDto.key;
-      // const value = settingDto.value ?? '';
       const rawValue = settingDto.value;
-      const value = rawValue === null || rawValue === undefined ? null : String(rawValue);
+      let value = rawValue === null || rawValue === undefined ? null : String(rawValue);
       const settingType = settingDto.type ?? 'system';
+      const definition = this.settingsByKey.get(key);
+      const shouldEncrypt = !!definition?.encrypted && this.encryptionService !== null && value !== null;
+      if (shouldEncrypt) {
+        value = this.encryptionService.encrypt(value);
+      }
       const existingSetting = existingSettings.find(s => s.key === key);
       if (existingSetting) {
         existingSetting.value = value;
         existingSetting.type = settingType;
+        existingSetting.encrypted = shouldEncrypt;
         settingsToUpdate.push(existingSetting);
       } else {
         const newSetting = new Setting();
         newSetting.key = key;
         newSetting.value = value;
         newSetting.type = settingType;
+        newSetting.encrypted = shouldEncrypt;
         if (settingType === 'user' && user) {
           newSetting.user = user;

package/src/services/settings/default-settings-provider.service.ts CHANGED Viewed

@@ -35,12 +35,13 @@ const getSolidCoreSettings = (isProd: boolean) => ([
   {
     moduleName: "solid-core", key: "solidXGenAiCodeBuilderConfig", value: JSON.stringify({
       models: {
-        default: { providerKey: "", behavior: { streaming: false, custom: "" } },
-        fast: { providerKey: "", behavior: { streaming: false, custom: "" } },
+        default: { providerId: "", model: "", behavior: { streaming: false, custom: "" } },
+        fast: { providerId: "", model: "", behavior: { streaming: false, custom: "" } },
       },
       providers: {},
-    }), level: SettingLevel.SystemAdminEditable
+    }), level: SettingLevel.SystemAdminEditable, encrypted: true
   },
+  { moduleName: "solid-core", key: "appEncryptionKey", value: process.env.APP_ENCRYPTION_KEY, level: SettingLevel.SystemEnv },
   { moduleName: "solid-core", key: "mcpEnabled", value: process.env.MCP_ENABLED || false, level: SettingLevel.SystemAdminReadonly },
   { moduleName: "solid-core", key: "mcpServerUrl", value: process.env.MCP_SERVER_URL, level: SettingLevel.SystemAdminReadonly },
   { moduleName: "solid-core", key: "mcpApiKey", value: process.env.MCP_API_KEY, level: SettingLevel.SystemEnv },

package/src/services/sso-code-storage.service.ts ADDED Viewed

@@ -0,0 +1,36 @@
+import { CACHE_MANAGER } from '@nestjs/cache-manager';
+import { Inject, Injectable, UnauthorizedException } from '@nestjs/common';
+import { Cache } from 'cache-manager';
+import { randomBytes } from 'crypto';
+const SSO_CODE_TTL_MS = 60 * 1000; // 60 seconds
+interface SsoCodeEntry {
+    userId: number;
+    accessToken: string;
+    refreshToken: string;
+}
+@Injectable()
+export class SsoCodeStorageService {
+    constructor(@Inject(CACHE_MANAGER) private cacheManager: Cache) {}
+    async generateCode(userId: number, accessToken: string, refreshToken: string): Promise<string> {
+        const code = randomBytes(32).toString('hex');
+        await this.cacheManager.set(this.getKey(code), { userId, accessToken, refreshToken }, SSO_CODE_TTL_MS);
+        return code;
+    }
+    async consumeCode(code: string): Promise<SsoCodeEntry> {
+        const entry = await this.cacheManager.get<SsoCodeEntry>(this.getKey(code));
+        if (!entry) {
+            throw new UnauthorizedException('Invalid or expired SSO code');
+        }
+        await this.cacheManager.del(this.getKey(code));
+        return entry;
+    }
+    private getKey(code: string): string {
+        return `sso-code-${code}`;
+    }
+}

package/src/solid-core.module.ts CHANGED Viewed

@@ -78,6 +78,7 @@ import { MqMessageQueue } from './entities/mq-message-queue.entity';
 import { MqMessage } from './entities/mq-message.entity';
 import { SmsTemplate } from './entities/sms-template.entity';
 import { AccessTokenGuard } from './guards/access-token.guard';
+import { ApiKeyGuard } from './guards/api-key.guard';
 import { AuthenticationGuard } from './guards/authentication.guard';
 import { PermissionsGuard } from './guards/permissions.guard';
 import { SolidRegistry } from './helpers/solid-registry';
@@ -126,6 +127,7 @@ import { TwilioSmsQueuePublisherRedis } from './jobs/redis/twilio-sms-publisher-
 import { TwilioSmsQueueSubscriberRedis } from './jobs/redis/twilio-sms-subscriber-redis.service';
 import { UserRegistrationListener } from './listeners/user-registration.listener';
 import { GoogleOauthStrategy } from './passport-strategies/google-oauth.strategy';
+import { ApiKeyService } from './services/api-key.service';
 import { AuthenticationService } from './services/authentication.service';
 import { BcryptService } from './services/bcrypt.service';
 import { UuidExternalIdEntityComputedFieldProvider } from './services/computed-fields/entity/uuid-externalid-entity-computed-field-provider.service';
@@ -140,6 +142,7 @@ import { MqMessageQueueService } from './services/mq-message-queue.service';
 import { MqMessageService } from './services/mq-message.service';
 import { PdfService } from './services/pdf.service';
 import { RefreshTokenIdsStorageService } from './services/refresh-token-ids-storage.service';
+import { SsoCodeStorageService } from './services/sso-code-storage.service';
 import { ListOfModelsSelectionProvider } from './services/selection-providers/list-of-models-selection-provider.service';
 import { TinyUrlService } from './services/short-url/tiny-url.service';
 import { SmsTemplateService } from './services/sms-template.service';
@@ -205,6 +208,7 @@ import { SecurityRule } from './entities/security-rule.entity';
 import { Setting } from './entities/setting.entity';
 import { UserActivityHistory } from './entities/user-activity-history.entity';
 import { UserViewMetadata } from './entities/user-view-metadata.entity';
+import { UserApiKey } from './entities/user-api-key.entity';
 import { User } from './entities/user.entity';
 import { HttpExceptionFilter } from './filters/http-exception.filter';
 import { ModelMetadataHelperService } from './helpers/model-metadata-helper.service';
@@ -284,6 +288,7 @@ import { SettingRepository } from './repository/setting.repository';
 import { SmsTemplateRepository } from './repository/sms-template.repository';
 import { UserActivityHistoryRepository } from './repository/user-activity-history.repository';
 import { UserViewMetadataRepository } from './repository/user-view-metadata.repository';
+import { UserApiKeyRepository } from './repository/user-api-key.repository';
 import { UserRepository } from './repository/user.repository';
 import { ViewMetadataRepository } from './repository/view-metadata.repository';
 import { PermissionMetadataSeederService } from './seeders/permission-metadata-seeder.service';
@@ -415,6 +420,7 @@ import { Entity } from 'typeorm';
       Setting,
       SmsTemplate,
       User,
+      UserApiKey,
       UserActivityHistory,
       UserViewMetadata,
       ViewMetadata,
@@ -627,9 +633,12 @@ import { Entity } from 'typeorm';
     LocaleListSelectionProvider,
     SoftDeleteAwareEventSubscriber,
     AccessTokenGuard,
+    ApiKeyGuard,
+    ApiKeyService,
     AuthenticationService,
     GoogleAuthenticationController,
     RefreshTokenIdsStorageService,
+    SsoCodeStorageService,
     GoogleOauthStrategy,
     UserRegistrationListener,
     TestQueuePublisher,
@@ -679,6 +688,7 @@ import { Entity } from 'typeorm';
     RoleMetadataService,
     PermissionMetadataSeederService,
     UserService,
+    UserApiKeyRepository,
     UserRepository,
     SettingService,
     ConcatComputedFieldProvider,

package/src/subscribers/audit.subscriber.ts CHANGED Viewed

@@ -2,7 +2,7 @@ import { Injectable, Logger, Scope } from '@nestjs/common';
 import { lowerFirst } from 'src/helpers/string.helper';
 import { SolidRegistry } from 'src/helpers/solid-registry';
 import { DataSource, EntityMetadata, EntitySubscriberInterface, InsertEvent, RemoveEvent, UpdateEvent } from 'typeorm';
-import { AuditQueuePayload } from 'src/jobs/rabbitmq/chatter-queue-publisher.service';
+import { AuditQueuePayload } from 'src/interfaces';
 import { RequestContextService } from 'src/services/request-context.service';
 import { PublisherFactory } from 'src/services/queues/publisher-factory.service';