npm - @storacha/encrypt-upload-client - Versions diffs - 1.1.58 → 1.1.60 - Mend

@storacha/encrypt-upload-client 1.1.58 → 1.1.60

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (72) hide show

package/dist/config/constants.d.ts +3 -3
package/dist/config/constants.js +3 -4
package/dist/config/env.d.ts +6 -9
package/dist/config/service.d.ts +13 -13
package/dist/core/client.d.ts +41 -54
package/dist/core/client.js +56 -68
package/dist/core/errors.d.ts +6 -6
package/dist/core/metadata/encrypted-metadata.d.ts +8 -13
package/dist/core/metadata/kms-metadata.d.ts +36 -68
package/dist/core/metadata/lit-metadata.d.ts +28 -63
package/dist/crypto/adapters/kms-crypto-adapter.d.ts +137 -172
package/dist/crypto/adapters/lit-crypto-adapter.d.ts +86 -107
package/dist/crypto/factories.browser.d.ts +5 -9
package/dist/crypto/factories.browser.js +7 -15
package/dist/crypto/factories.node.d.ts +6 -13
package/dist/crypto/factories.node.js +13 -19
package/dist/crypto/index.d.ts +5 -5
package/dist/crypto/index.js +5 -5
package/dist/crypto/symmetric/generic-aes-ctr-streaming-crypto.d.ts +54 -58
package/dist/crypto/symmetric/generic-aes-ctr-streaming-crypto.js +146 -174
package/dist/crypto/symmetric/node-aes-cbc-crypto.d.ts +32 -36
package/dist/crypto/symmetric/node-aes-cbc-crypto.js +95 -101
package/dist/examples/decrypt-test.d.ts +2 -2
package/dist/examples/decrypt-test.js +69 -78
package/dist/examples/encrypt-test.d.ts +3 -5
package/dist/examples/encrypt-test.js +55 -58
package/dist/handlers/decrypt-handler.d.ts +5 -19
package/dist/handlers/encrypt-handler.d.ts +3 -9
package/dist/handlers/encrypt-handler.js +57 -93
package/dist/index.d.ts +2 -2
package/dist/index.js +2 -2
package/dist/protocols/lit.d.ts +9 -33
package/dist/protocols/lit.js +98 -134
package/dist/test/cid-verification.spec.d.ts +2 -2
package/dist/test/cid-verification.spec.js +313 -341
package/dist/test/crypto-compatibility.spec.d.ts +2 -2
package/dist/test/crypto-compatibility.spec.js +120 -184
package/dist/test/crypto-counter-security.spec.d.ts +2 -2
package/dist/test/crypto-counter-security.spec.js +138 -177
package/dist/test/crypto-streaming.spec.d.ts +2 -2
package/dist/test/crypto-streaming.spec.js +126 -208
package/dist/test/encrypted-metadata.spec.d.ts +2 -2
package/dist/test/encrypted-metadata.spec.js +62 -89
package/dist/test/factories.spec.d.ts +2 -2
package/dist/test/factories.spec.js +139 -275
package/dist/test/file-metadata.spec.d.ts +2 -2
package/dist/test/file-metadata.spec.js +416 -472
package/dist/test/fixtures/test-fixtures.d.ts +20 -25
package/dist/test/fixtures/test-fixtures.js +53 -61
package/dist/test/helpers/test-file-utils.d.ts +14 -19
package/dist/test/helpers/test-file-utils.js +76 -78
package/dist/test/https-enforcement.spec.d.ts +2 -2
package/dist/test/https-enforcement.spec.js +124 -278
package/dist/test/kms-crypto-adapter.spec.d.ts +2 -2
package/dist/test/kms-crypto-adapter.spec.js +304 -473
package/dist/test/lit-crypto-adapter.spec.d.ts +2 -2
package/dist/test/lit-crypto-adapter.spec.js +118 -206
package/dist/test/memory-efficiency.spec.d.ts +2 -2
package/dist/test/memory-efficiency.spec.js +87 -100
package/dist/test/mocks/key-manager.d.ts +38 -71
package/dist/test/mocks/key-manager.js +113 -129
package/dist/test/node-crypto-adapter.spec.d.ts +2 -2
package/dist/test/node-crypto-adapter.spec.js +102 -155
package/dist/test/node-generic-crypto-adapter.spec.d.ts +2 -2
package/dist/test/node-generic-crypto-adapter.spec.js +94 -134
package/dist/test/setup.d.ts +2 -2
package/dist/test/setup.js +9 -8
package/dist/tsconfig.spec.tsbuildinfo +1 -1
package/dist/types.d.ts +181 -219
package/dist/utils/file-metadata.d.ts +13 -19
package/dist/utils.d.ts +5 -14
package/package.json +2 -2

package/dist/test/mocks/key-manager.d.ts CHANGED Viewed

@@ -9,70 +9,42 @@
  * @param {Function} [options.onKeyDecrypt] - Optional callback for decrypt calls
  */
 export function createMockKeyManagerService(options: {
-  mockPublicKey: string
-  mockProvider?: string | undefined
-  mockAlgorithm?: string | undefined
-  onEncryptionSetup?: Function | undefined
-  onKeyDecrypt?: Function | undefined
+    mockPublicKey: string;
+    mockProvider?: string | undefined;
+    mockAlgorithm?: string | undefined;
+    onEncryptionSetup?: Function | undefined;
+    onKeyDecrypt?: Function | undefined;
 }): {
-  space: {
-    encryption: {
-      setup: Server.ServiceMethod<
-        Server.API.Capability<
-          'space/encryption/setup',
-          `did:key:${string}` &
-            `did:${string}` &
-            Server.API.Phantom<{
-              protocol: 'did:'
-            }>,
-          Partial<
-            Pick<
-              {
-                location: string | undefined
-                keyring: string | undefined
-              },
-              'location' | 'keyring'
-            >
-          >
-        >,
-        {
-          publicKey: string
-          provider: string
-          algorithm: string
-        },
-        Server.API.Failure & {
-          name: string
-          message: string
-        }
-      >
-      key: {
-        decrypt: Server.ServiceMethod<
-          Server.API.Capability<
-            'space/encryption/key/decrypt',
-            `did:key:${string}` &
-              `did:${string}` &
-              Server.API.Phantom<{
-                protocol: 'did:'
-              }>,
-            Pick<
-              {
-                key: Uint8Array<ArrayBufferLike>
-              },
-              'key'
-            >
-          >,
-          {
-            decryptedSymmetricKey: string
-          },
-          Server.API.Failure & {
-            name: string
-            message: string
-          }
-        >
-      }
-    }
-  }
-}
+    space: {
+        encryption: {
+            setup: Server.ServiceMethod<Server.API.Capability<"space/encryption/setup", `did:key:${string}` & `did:${string}` & Server.API.Phantom<{
+                protocol: "did:";
+            }>, Partial<Pick<{
+                location: string | undefined;
+                keyring: string | undefined;
+            }, "location" | "keyring">>>, {
+                publicKey: string;
+                provider: string;
+                algorithm: string;
+            }, Server.API.Failure & {
+                name: string;
+                message: string;
+            }>;
+            key: {
+                decrypt: Server.ServiceMethod<Server.API.Capability<"space/encryption/key/decrypt", `did:key:${string}` & `did:${string}` & Server.API.Phantom<{
+                    protocol: "did:";
+                }>, Pick<{
+                    key: Uint8Array<ArrayBufferLike>;
+                }, "key">>, {
+                    decryptedSymmetricKey: string;
+                }, Server.API.Failure & {
+                    name: string;
+                    message: string;
+                }>;
+            };
+        };
+    };
+};
 /**
  * Create a mock key manager service server
  *
@@ -81,11 +53,6 @@ export function createMockKeyManagerService(options: {
  * @param {number} port - The port to listen on
  * @param {boolean} [useHttps] - Whether to use HTTPS URLs (testing HTTPS scenarios)
  */
-export function createMockKeyManagerServer(
-  service: object,
-  keyManagerServiceDID: any,
-  port: number,
-  useHttps?: boolean
-): Promise<any>
-import * as Server from '@ucanto/server'
-//# sourceMappingURL=key-manager.d.ts.map
+export function createMockKeyManagerServer(service: object, keyManagerServiceDID: any, port: number, useHttps?: boolean): Promise<any>;
+import * as Server from '@ucanto/server';
+//# sourceMappingURL=key-manager.d.ts.map

package/dist/test/mocks/key-manager.js CHANGED Viewed

@@ -1,8 +1,8 @@
-import { createServer } from 'node:http'
-import * as Server from '@ucanto/server'
-import { CAR } from '@ucanto/transport'
-import * as Space from '@storacha/capabilities/space'
-import { base64 } from 'multiformats/bases/base64'
+import { createServer } from 'node:http';
+import * as Server from '@ucanto/server';
+import { CAR } from '@ucanto/transport';
+import * as Space from '@storacha/capabilities/space';
+import { base64 } from 'multiformats/bases/base64';
 /**
  * Create mock KMS service with proper capability handlers
  *
@@ -14,68 +14,62 @@ import { base64 } from 'multiformats/bases/base64'
  * @param {Function} [options.onKeyDecrypt] - Optional callback for decrypt calls
  */
 export function createMockKeyManagerService(options) {
-  const {
-    mockPublicKey,
-    mockProvider = 'google-kms',
-    mockAlgorithm = 'RSA-OAEP-2048-SHA256',
-    onEncryptionSetup,
-    onKeyDecrypt,
-  } = options
-  return {
-    space: {
-      encryption: {
-        setup: Server.provide(Space.EncryptionSetup, async (input) => {
-          // Call optional callback for testing
-          if (onEncryptionSetup) {
-            onEncryptionSetup(input)
-          }
-          // Validate the space DID format
-          if (!input.capability.with.startsWith('did:key:')) {
-            return Server.error({
-              name: 'InvalidSpace',
-              message: 'Space DID must be a did:key',
-            })
-          }
-          // Return mock RSA public key and metadata
-          return Server.ok({
-            publicKey: mockPublicKey,
-            provider: mockProvider,
-            algorithm: mockAlgorithm,
-          })
-        }),
-        key: {
-          decrypt: Server.provide(Space.EncryptionKeyDecrypt, async (input) => {
-            // Call optional callback for testing
-            if (onKeyDecrypt) {
-              onKeyDecrypt(input)
-            }
-            // Validate the space DID
-            if (!input.capability.with.startsWith('did:key:')) {
-              return Server.error({
-                name: 'InvalidSpace',
-                message: 'Space DID must be a did:key',
-              })
-            }
-            // Validate encrypted key is provided
-            if (!input.capability.nb.key) {
-              return Server.error({
-                name: 'KeyNotFound',
-                message: 'key is required',
-              })
-            }
-            // For testing purposes, "decrypt" by converting bytes back to base64 string
-            // In real implementation, this would call Google KMS
-            const keyBytes = input.capability.nb.key
-            // No base64 decode here, just return the bytes as base64 string for mock
-            const mockDecryptedKey = base64.encode(keyBytes)
-            return Server.ok({
-              decryptedSymmetricKey: mockDecryptedKey,
-            })
-          }),
+    const { mockPublicKey, mockProvider = 'google-kms', mockAlgorithm = 'RSA-OAEP-2048-SHA256', onEncryptionSetup, onKeyDecrypt, } = options;
+    return {
+        space: {
+            encryption: {
+                setup: Server.provide(Space.EncryptionSetup, async (input) => {
+                    // Call optional callback for testing
+                    if (onEncryptionSetup) {
+                        onEncryptionSetup(input);
+                    }
+                    // Validate the space DID format
+                    if (!input.capability.with.startsWith('did:key:')) {
+                        return Server.error({
+                            name: 'InvalidSpace',
+                            message: 'Space DID must be a did:key',
+                        });
+                    }
+                    // Return mock RSA public key and metadata
+                    return Server.ok({
+                        publicKey: mockPublicKey,
+                        provider: mockProvider,
+                        algorithm: mockAlgorithm,
+                    });
+                }),
+                key: {
+                    decrypt: Server.provide(Space.EncryptionKeyDecrypt, async (input) => {
+                        // Call optional callback for testing
+                        if (onKeyDecrypt) {
+                            onKeyDecrypt(input);
+                        }
+                        // Validate the space DID
+                        if (!input.capability.with.startsWith('did:key:')) {
+                            return Server.error({
+                                name: 'InvalidSpace',
+                                message: 'Space DID must be a did:key',
+                            });
+                        }
+                        // Validate encrypted key is provided
+                        if (!input.capability.nb.key) {
+                            return Server.error({
+                                name: 'KeyNotFound',
+                                message: 'key is required',
+                            });
+                        }
+                        // For testing purposes, "decrypt" by converting bytes back to base64 string
+                        // In real implementation, this would call Google KMS
+                        const keyBytes = input.capability.nb.key;
+                        // No base64 decode here, just return the bytes as base64 string for mock
+                        const mockDecryptedKey = base64.encode(keyBytes);
+                        return Server.ok({
+                            decryptedSymmetricKey: mockDecryptedKey,
+                        });
+                    }),
+                },
+            },
         },
-      },
-    },
-  }
+    };
 }
 /**
  * Create a mock key manager service server
@@ -85,69 +79,59 @@ export function createMockKeyManagerService(options) {
  * @param {number} port - The port to listen on
  * @param {boolean} [useHttps] - Whether to use HTTPS URLs (testing HTTPS scenarios)
  */
-export function createMockKeyManagerServer(
-  service,
-  keyManagerServiceDID,
-  port,
-  useHttps = false
-) {
-  const ucantoServer = Server.create({
-    id: keyManagerServiceDID,
-    service,
-    codec: CAR.inbound,
-    validateAuthorization: () => ({ ok: {} }), // Skip auth validation for tests
-  })
-  const httpServer = createServer(async (req, res) => {
-    res.setHeader('Access-Control-Allow-Origin', '*')
-    res.setHeader('Access-Control-Allow-Methods', '*')
-    res.setHeader('Access-Control-Allow-Headers', '*')
-    if (req.method === 'OPTIONS') return res.end()
-    if (req.method === 'POST') {
-      const bodyBuffer = Buffer.concat(await collect(req))
-      const reqHeaders = /** @type {Record<string, string>} */ (
-        Object.fromEntries(Object.entries(req.headers))
-      )
-      const { headers, body, status } = await ucantoServer.request({
-        body: new Uint8Array(
-          bodyBuffer.buffer,
-          bodyBuffer.byteOffset,
-          bodyBuffer.byteLength
-        ),
-        headers: reqHeaders,
-      })
-      for (const [key, value] of Object.entries(headers)) {
-        res.setHeader(key, value)
-      }
-      res.writeHead(status ?? 200)
-      res.end(body)
-    } else {
-      res.end()
-    }
-  })
-  return new Promise((resolve, reject) => {
-    httpServer.listen(port, (/** @type {Error | undefined} */ err) => {
-      if (err) {
-        reject(err)
-      } else {
-        const protocol = useHttps ? 'https' : 'http'
-        resolve({
-          server: httpServer,
-          url: `${protocol}://localhost:${port}`,
-          close: () => new Promise((resolve) => httpServer.close(resolve)),
-        })
-      }
-    })
-  })
+export function createMockKeyManagerServer(service, keyManagerServiceDID, port, useHttps = false) {
+    const ucantoServer = Server.create({
+        id: keyManagerServiceDID,
+        service,
+        codec: CAR.inbound,
+        validateAuthorization: () => ({ ok: {} }), // Skip auth validation for tests
+    });
+    const httpServer = createServer(async (req, res) => {
+        res.setHeader('Access-Control-Allow-Origin', '*');
+        res.setHeader('Access-Control-Allow-Methods', '*');
+        res.setHeader('Access-Control-Allow-Headers', '*');
+        if (req.method === 'OPTIONS')
+            return res.end();
+        if (req.method === 'POST') {
+            const bodyBuffer = Buffer.concat(await collect(req));
+            const reqHeaders = /** @type {Record<string, string>} */ (Object.fromEntries(Object.entries(req.headers)));
+            const { headers, body, status } = await ucantoServer.request({
+                body: new Uint8Array(bodyBuffer.buffer, bodyBuffer.byteOffset, bodyBuffer.byteLength),
+                headers: reqHeaders,
+            });
+            for (const [key, value] of Object.entries(headers)) {
+                res.setHeader(key, value);
+            }
+            res.writeHead(status ?? 200);
+            res.end(body);
+        }
+        else {
+            res.end();
+        }
+    });
+    return new Promise((resolve, reject) => {
+        httpServer.listen(port, (/** @type {Error | undefined} */ err) => {
+            if (err) {
+                reject(err);
+            }
+            else {
+                const protocol = useHttps ? 'https' : 'http';
+                resolve({
+                    server: httpServer,
+                    url: `${protocol}://localhost:${port}`,
+                    close: () => new Promise((resolve) => httpServer.close(resolve)),
+                });
+            }
+        });
+    });
 }
 /** @param {import('node:stream').Readable} stream */
 const collect = (stream) => {
-  return /** @type {Promise<Buffer[]>} */ (
-    new Promise((resolve, reject) => {
-      const chunks = /** @type {Buffer[]} */ ([])
-      stream.on('data', (chunk) => chunks.push(Buffer.from(chunk)))
-      stream.on('error', (err) => reject(err))
-      stream.on('end', () => resolve(chunks))
-    })
-  )
-}
-//# sourceMappingURL=key-manager.js.map
+    return /** @type {Promise<Buffer[]>} */ (new Promise((resolve, reject) => {
+        const chunks = /** @type {Buffer[]} */ ([]);
+        stream.on('data', (chunk) => chunks.push(Buffer.from(chunk)));
+        stream.on('error', (err) => reject(err));
+        stream.on('end', () => resolve(chunks));
+    }));
+};
+//# sourceMappingURL=key-manager.js.map

package/dist/test/node-crypto-adapter.spec.d.ts CHANGED Viewed

@@ -1,2 +1,2 @@
-export {}
-//# sourceMappingURL=node-crypto-adapter.spec.d.ts.map
+export {};
+//# sourceMappingURL=node-crypto-adapter.spec.d.ts.map