npm - @storacha/encrypt-upload-client - Versions diffs - 1.1.56 → 1.1.58 - Mend

@storacha/encrypt-upload-client 1.1.56 → 1.1.58

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (72) hide show

package/dist/config/constants.d.ts +3 -3
package/dist/config/constants.js +4 -3
package/dist/config/env.d.ts +9 -6
package/dist/config/service.d.ts +13 -13
package/dist/core/client.d.ts +54 -41
package/dist/core/client.js +68 -56
package/dist/core/errors.d.ts +6 -6
package/dist/core/metadata/encrypted-metadata.d.ts +13 -8
package/dist/core/metadata/kms-metadata.d.ts +68 -36
package/dist/core/metadata/lit-metadata.d.ts +63 -28
package/dist/crypto/adapters/kms-crypto-adapter.d.ts +172 -137
package/dist/crypto/adapters/lit-crypto-adapter.d.ts +107 -86
package/dist/crypto/factories.browser.d.ts +9 -5
package/dist/crypto/factories.browser.js +15 -7
package/dist/crypto/factories.node.d.ts +13 -6
package/dist/crypto/factories.node.js +19 -13
package/dist/crypto/index.d.ts +5 -5
package/dist/crypto/index.js +5 -5
package/dist/crypto/symmetric/generic-aes-ctr-streaming-crypto.d.ts +58 -54
package/dist/crypto/symmetric/generic-aes-ctr-streaming-crypto.js +174 -146
package/dist/crypto/symmetric/node-aes-cbc-crypto.d.ts +36 -32
package/dist/crypto/symmetric/node-aes-cbc-crypto.js +101 -95
package/dist/examples/decrypt-test.d.ts +2 -2
package/dist/examples/decrypt-test.js +78 -69
package/dist/examples/encrypt-test.d.ts +5 -3
package/dist/examples/encrypt-test.js +58 -55
package/dist/handlers/decrypt-handler.d.ts +19 -5
package/dist/handlers/encrypt-handler.d.ts +9 -3
package/dist/handlers/encrypt-handler.js +93 -57
package/dist/index.d.ts +2 -2
package/dist/index.js +2 -2
package/dist/protocols/lit.d.ts +33 -9
package/dist/protocols/lit.js +134 -98
package/dist/test/cid-verification.spec.d.ts +2 -2
package/dist/test/cid-verification.spec.js +341 -313
package/dist/test/crypto-compatibility.spec.d.ts +2 -2
package/dist/test/crypto-compatibility.spec.js +184 -120
package/dist/test/crypto-counter-security.spec.d.ts +2 -2
package/dist/test/crypto-counter-security.spec.js +177 -138
package/dist/test/crypto-streaming.spec.d.ts +2 -2
package/dist/test/crypto-streaming.spec.js +208 -126
package/dist/test/encrypted-metadata.spec.d.ts +2 -2
package/dist/test/encrypted-metadata.spec.js +89 -62
package/dist/test/factories.spec.d.ts +2 -2
package/dist/test/factories.spec.js +275 -139
package/dist/test/file-metadata.spec.d.ts +2 -2
package/dist/test/file-metadata.spec.js +472 -416
package/dist/test/fixtures/test-fixtures.d.ts +25 -20
package/dist/test/fixtures/test-fixtures.js +61 -53
package/dist/test/helpers/test-file-utils.d.ts +19 -14
package/dist/test/helpers/test-file-utils.js +78 -76
package/dist/test/https-enforcement.spec.d.ts +2 -2
package/dist/test/https-enforcement.spec.js +278 -124
package/dist/test/kms-crypto-adapter.spec.d.ts +2 -2
package/dist/test/kms-crypto-adapter.spec.js +473 -304
package/dist/test/lit-crypto-adapter.spec.d.ts +2 -2
package/dist/test/lit-crypto-adapter.spec.js +206 -118
package/dist/test/memory-efficiency.spec.d.ts +2 -2
package/dist/test/memory-efficiency.spec.js +100 -87
package/dist/test/mocks/key-manager.d.ts +71 -38
package/dist/test/mocks/key-manager.js +129 -113
package/dist/test/node-crypto-adapter.spec.d.ts +2 -2
package/dist/test/node-crypto-adapter.spec.js +155 -102
package/dist/test/node-generic-crypto-adapter.spec.d.ts +2 -2
package/dist/test/node-generic-crypto-adapter.spec.js +134 -94
package/dist/test/setup.d.ts +2 -2
package/dist/test/setup.js +8 -9
package/dist/tsconfig.spec.tsbuildinfo +1 -1
package/dist/types.d.ts +219 -181
package/dist/utils/file-metadata.d.ts +19 -13
package/dist/utils.d.ts +14 -5
package/package.json +4 -4

package/dist/test/mocks/key-manager.d.ts CHANGED Viewed

@@ -9,42 +9,70 @@
  * @param {Function} [options.onKeyDecrypt] - Optional callback for decrypt calls
  */
 export function createMockKeyManagerService(options: {
-    mockPublicKey: string;
-    mockProvider?: string | undefined;
-    mockAlgorithm?: string | undefined;
-    onEncryptionSetup?: Function | undefined;
-    onKeyDecrypt?: Function | undefined;
+  mockPublicKey: string
+  mockProvider?: string | undefined
+  mockAlgorithm?: string | undefined
+  onEncryptionSetup?: Function | undefined
+  onKeyDecrypt?: Function | undefined
 }): {
-    space: {
-        encryption: {
-            setup: Server.ServiceMethod<Server.API.Capability<"space/encryption/setup", `did:key:${string}` & `did:${string}` & Server.API.Phantom<{
-                protocol: "did:";
-            }>, Partial<Pick<{
-                location: string | undefined;
-                keyring: string | undefined;
-            }, "location" | "keyring">>>, {
-                publicKey: string;
-                provider: string;
-                algorithm: string;
-            }, Server.API.Failure & {
-                name: string;
-                message: string;
-            }>;
-            key: {
-                decrypt: Server.ServiceMethod<Server.API.Capability<"space/encryption/key/decrypt", `did:key:${string}` & `did:${string}` & Server.API.Phantom<{
-                    protocol: "did:";
-                }>, Pick<{
-                    key: Uint8Array<ArrayBufferLike>;
-                }, "key">>, {
-                    decryptedSymmetricKey: string;
-                }, Server.API.Failure & {
-                    name: string;
-                    message: string;
-                }>;
-            };
-        };
-    };
-};
+  space: {
+    encryption: {
+      setup: Server.ServiceMethod<
+        Server.API.Capability<
+          'space/encryption/setup',
+          `did:key:${string}` &
+            `did:${string}` &
+            Server.API.Phantom<{
+              protocol: 'did:'
+            }>,
+          Partial<
+            Pick<
+              {
+                location: string | undefined
+                keyring: string | undefined
+              },
+              'location' | 'keyring'
+            >
+          >
+        >,
+        {
+          publicKey: string
+          provider: string
+          algorithm: string
+        },
+        Server.API.Failure & {
+          name: string
+          message: string
+        }
+      >
+      key: {
+        decrypt: Server.ServiceMethod<
+          Server.API.Capability<
+            'space/encryption/key/decrypt',
+            `did:key:${string}` &
+              `did:${string}` &
+              Server.API.Phantom<{
+                protocol: 'did:'
+              }>,
+            Pick<
+              {
+                key: Uint8Array<ArrayBufferLike>
+              },
+              'key'
+            >
+          >,
+          {
+            decryptedSymmetricKey: string
+          },
+          Server.API.Failure & {
+            name: string
+            message: string
+          }
+        >
+      }
+    }
+  }
+}
 /**
  * Create a mock key manager service server
  *
@@ -53,6 +81,11 @@ export function createMockKeyManagerService(options: {
  * @param {number} port - The port to listen on
  * @param {boolean} [useHttps] - Whether to use HTTPS URLs (testing HTTPS scenarios)
  */
-export function createMockKeyManagerServer(service: object, keyManagerServiceDID: any, port: number, useHttps?: boolean): Promise<any>;
-import * as Server from '@ucanto/server';
-//# sourceMappingURL=key-manager.d.ts.map
+export function createMockKeyManagerServer(
+  service: object,
+  keyManagerServiceDID: any,
+  port: number,
+  useHttps?: boolean
+): Promise<any>
+import * as Server from '@ucanto/server'
+//# sourceMappingURL=key-manager.d.ts.map

package/dist/test/mocks/key-manager.js CHANGED Viewed

@@ -1,8 +1,8 @@
-import { createServer } from 'node:http';
-import * as Server from '@ucanto/server';
-import { CAR } from '@ucanto/transport';
-import * as Space from '@storacha/capabilities/space';
-import { base64 } from 'multiformats/bases/base64';
+import { createServer } from 'node:http'
+import * as Server from '@ucanto/server'
+import { CAR } from '@ucanto/transport'
+import * as Space from '@storacha/capabilities/space'
+import { base64 } from 'multiformats/bases/base64'
 /**
  * Create mock KMS service with proper capability handlers
  *
@@ -14,62 +14,68 @@ import { base64 } from 'multiformats/bases/base64';
  * @param {Function} [options.onKeyDecrypt] - Optional callback for decrypt calls
  */
 export function createMockKeyManagerService(options) {
-    const { mockPublicKey, mockProvider = 'google-kms', mockAlgorithm = 'RSA-OAEP-2048-SHA256', onEncryptionSetup, onKeyDecrypt, } = options;
-    return {
-        space: {
-            encryption: {
-                setup: Server.provide(Space.EncryptionSetup, async (input) => {
-                    // Call optional callback for testing
-                    if (onEncryptionSetup) {
-                        onEncryptionSetup(input);
-                    }
-                    // Validate the space DID format
-                    if (!input.capability.with.startsWith('did:key:')) {
-                        return Server.error({
-                            name: 'InvalidSpace',
-                            message: 'Space DID must be a did:key',
-                        });
-                    }
-                    // Return mock RSA public key and metadata
-                    return Server.ok({
-                        publicKey: mockPublicKey,
-                        provider: mockProvider,
-                        algorithm: mockAlgorithm,
-                    });
-                }),
-                key: {
-                    decrypt: Server.provide(Space.EncryptionKeyDecrypt, async (input) => {
-                        // Call optional callback for testing
-                        if (onKeyDecrypt) {
-                            onKeyDecrypt(input);
-                        }
-                        // Validate the space DID
-                        if (!input.capability.with.startsWith('did:key:')) {
-                            return Server.error({
-                                name: 'InvalidSpace',
-                                message: 'Space DID must be a did:key',
-                            });
-                        }
-                        // Validate encrypted key is provided
-                        if (!input.capability.nb.key) {
-                            return Server.error({
-                                name: 'KeyNotFound',
-                                message: 'key is required',
-                            });
-                        }
-                        // For testing purposes, "decrypt" by converting bytes back to base64 string
-                        // In real implementation, this would call Google KMS
-                        const keyBytes = input.capability.nb.key;
-                        // No base64 decode here, just return the bytes as base64 string for mock
-                        const mockDecryptedKey = base64.encode(keyBytes);
-                        return Server.ok({
-                            decryptedSymmetricKey: mockDecryptedKey,
-                        });
-                    }),
-                },
-            },
+  const {
+    mockPublicKey,
+    mockProvider = 'google-kms',
+    mockAlgorithm = 'RSA-OAEP-2048-SHA256',
+    onEncryptionSetup,
+    onKeyDecrypt,
+  } = options
+  return {
+    space: {
+      encryption: {
+        setup: Server.provide(Space.EncryptionSetup, async (input) => {
+          // Call optional callback for testing
+          if (onEncryptionSetup) {
+            onEncryptionSetup(input)
+          }
+          // Validate the space DID format
+          if (!input.capability.with.startsWith('did:key:')) {
+            return Server.error({
+              name: 'InvalidSpace',
+              message: 'Space DID must be a did:key',
+            })
+          }
+          // Return mock RSA public key and metadata
+          return Server.ok({
+            publicKey: mockPublicKey,
+            provider: mockProvider,
+            algorithm: mockAlgorithm,
+          })
+        }),
+        key: {
+          decrypt: Server.provide(Space.EncryptionKeyDecrypt, async (input) => {
+            // Call optional callback for testing
+            if (onKeyDecrypt) {
+              onKeyDecrypt(input)
+            }
+            // Validate the space DID
+            if (!input.capability.with.startsWith('did:key:')) {
+              return Server.error({
+                name: 'InvalidSpace',
+                message: 'Space DID must be a did:key',
+              })
+            }
+            // Validate encrypted key is provided
+            if (!input.capability.nb.key) {
+              return Server.error({
+                name: 'KeyNotFound',
+                message: 'key is required',
+              })
+            }
+            // For testing purposes, "decrypt" by converting bytes back to base64 string
+            // In real implementation, this would call Google KMS
+            const keyBytes = input.capability.nb.key
+            // No base64 decode here, just return the bytes as base64 string for mock
+            const mockDecryptedKey = base64.encode(keyBytes)
+            return Server.ok({
+              decryptedSymmetricKey: mockDecryptedKey,
+            })
+          }),
         },
-    };
+      },
+    },
+  }
 }
 /**
  * Create a mock key manager service server
@@ -79,59 +85,69 @@ export function createMockKeyManagerService(options) {
  * @param {number} port - The port to listen on
  * @param {boolean} [useHttps] - Whether to use HTTPS URLs (testing HTTPS scenarios)
  */
-export function createMockKeyManagerServer(service, keyManagerServiceDID, port, useHttps = false) {
-    const ucantoServer = Server.create({
-        id: keyManagerServiceDID,
-        service,
-        codec: CAR.inbound,
-        validateAuthorization: () => ({ ok: {} }), // Skip auth validation for tests
-    });
-    const httpServer = createServer(async (req, res) => {
-        res.setHeader('Access-Control-Allow-Origin', '*');
-        res.setHeader('Access-Control-Allow-Methods', '*');
-        res.setHeader('Access-Control-Allow-Headers', '*');
-        if (req.method === 'OPTIONS')
-            return res.end();
-        if (req.method === 'POST') {
-            const bodyBuffer = Buffer.concat(await collect(req));
-            const reqHeaders = /** @type {Record<string, string>} */ (Object.fromEntries(Object.entries(req.headers)));
-            const { headers, body, status } = await ucantoServer.request({
-                body: new Uint8Array(bodyBuffer.buffer, bodyBuffer.byteOffset, bodyBuffer.byteLength),
-                headers: reqHeaders,
-            });
-            for (const [key, value] of Object.entries(headers)) {
-                res.setHeader(key, value);
-            }
-            res.writeHead(status ?? 200);
-            res.end(body);
-        }
-        else {
-            res.end();
-        }
-    });
-    return new Promise((resolve, reject) => {
-        httpServer.listen(port, (/** @type {Error | undefined} */ err) => {
-            if (err) {
-                reject(err);
-            }
-            else {
-                const protocol = useHttps ? 'https' : 'http';
-                resolve({
-                    server: httpServer,
-                    url: `${protocol}://localhost:${port}`,
-                    close: () => new Promise((resolve) => httpServer.close(resolve)),
-                });
-            }
-        });
-    });
+export function createMockKeyManagerServer(
+  service,
+  keyManagerServiceDID,
+  port,
+  useHttps = false
+) {
+  const ucantoServer = Server.create({
+    id: keyManagerServiceDID,
+    service,
+    codec: CAR.inbound,
+    validateAuthorization: () => ({ ok: {} }), // Skip auth validation for tests
+  })
+  const httpServer = createServer(async (req, res) => {
+    res.setHeader('Access-Control-Allow-Origin', '*')
+    res.setHeader('Access-Control-Allow-Methods', '*')
+    res.setHeader('Access-Control-Allow-Headers', '*')
+    if (req.method === 'OPTIONS') return res.end()
+    if (req.method === 'POST') {
+      const bodyBuffer = Buffer.concat(await collect(req))
+      const reqHeaders = /** @type {Record<string, string>} */ (
+        Object.fromEntries(Object.entries(req.headers))
+      )
+      const { headers, body, status } = await ucantoServer.request({
+        body: new Uint8Array(
+          bodyBuffer.buffer,
+          bodyBuffer.byteOffset,
+          bodyBuffer.byteLength
+        ),
+        headers: reqHeaders,
+      })
+      for (const [key, value] of Object.entries(headers)) {
+        res.setHeader(key, value)
+      }
+      res.writeHead(status ?? 200)
+      res.end(body)
+    } else {
+      res.end()
+    }
+  })
+  return new Promise((resolve, reject) => {
+    httpServer.listen(port, (/** @type {Error | undefined} */ err) => {
+      if (err) {
+        reject(err)
+      } else {
+        const protocol = useHttps ? 'https' : 'http'
+        resolve({
+          server: httpServer,
+          url: `${protocol}://localhost:${port}`,
+          close: () => new Promise((resolve) => httpServer.close(resolve)),
+        })
+      }
+    })
+  })
 }
 /** @param {import('node:stream').Readable} stream */
 const collect = (stream) => {
-    return /** @type {Promise<Buffer[]>} */ (new Promise((resolve, reject) => {
-        const chunks = /** @type {Buffer[]} */ ([]);
-        stream.on('data', (chunk) => chunks.push(Buffer.from(chunk)));
-        stream.on('error', (err) => reject(err));
-        stream.on('end', () => resolve(chunks));
-    }));
-};
-//# sourceMappingURL=key-manager.js.map
+  return /** @type {Promise<Buffer[]>} */ (
+    new Promise((resolve, reject) => {
+      const chunks = /** @type {Buffer[]} */ ([])
+      stream.on('data', (chunk) => chunks.push(Buffer.from(chunk)))
+      stream.on('error', (err) => reject(err))
+      stream.on('end', () => resolve(chunks))
+    })
+  )
+}
+//# sourceMappingURL=key-manager.js.map

package/dist/test/node-crypto-adapter.spec.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-export {};
-//# sourceMappingURL=node-crypto-adapter.spec.d.ts.map
+export {}
+//# sourceMappingURL=node-crypto-adapter.spec.d.ts.map