npm - @striae-org/striae - Versions diffs - 3.0.4 - Mend

@striae-org/striae 3.0.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (223) hide show

package/.env.example +100 -0
package/LICENSE +190 -0
package/NOTICE +18 -0
package/README.md +133 -0
package/app/components/actions/case-export/core-export.ts +328 -0
package/app/components/actions/case-export/data-processing.ts +167 -0
package/app/components/actions/case-export/download-handlers.ts +900 -0
package/app/components/actions/case-export/index.ts +41 -0
package/app/components/actions/case-export/metadata-helpers.ts +107 -0
package/app/components/actions/case-export/types-constants.ts +56 -0
package/app/components/actions/case-export/validation-utils.ts +25 -0
package/app/components/actions/case-export.ts +4 -0
package/app/components/actions/case-import/annotation-import.ts +35 -0
package/app/components/actions/case-import/confirmation-import.ts +363 -0
package/app/components/actions/case-import/image-operations.ts +61 -0
package/app/components/actions/case-import/index.ts +39 -0
package/app/components/actions/case-import/orchestrator.ts +420 -0
package/app/components/actions/case-import/storage-operations.ts +270 -0
package/app/components/actions/case-import/validation.ts +189 -0
package/app/components/actions/case-import/zip-processing.ts +413 -0
package/app/components/actions/case-manage.ts +524 -0
package/app/components/actions/case-review.ts +4 -0
package/app/components/actions/confirm-export.ts +351 -0
package/app/components/actions/generate-pdf.ts +210 -0
package/app/components/actions/image-manage.ts +385 -0
package/app/components/actions/notes-manage.ts +33 -0
package/app/components/actions/signout.module.css +15 -0
package/app/components/actions/signout.tsx +50 -0
package/app/components/audit/user-audit-viewer.tsx +975 -0
package/app/components/audit/user-audit.module.css +568 -0
package/app/components/auth/auth-provider.tsx +78 -0
package/app/components/auth/mfa-enrollment.module.css +268 -0
package/app/components/auth/mfa-enrollment.tsx +398 -0
package/app/components/auth/mfa-verification.module.css +251 -0
package/app/components/auth/mfa-verification.tsx +295 -0
package/app/components/button/button.module.css +63 -0
package/app/components/button/button.tsx +46 -0
package/app/components/canvas/box-annotations/box-annotations.module.css +170 -0
package/app/components/canvas/box-annotations/box-annotations.tsx +634 -0
package/app/components/canvas/canvas.module.css +314 -0
package/app/components/canvas/canvas.tsx +449 -0
package/app/components/canvas/confirmation/confirmation.module.css +187 -0
package/app/components/canvas/confirmation/confirmation.tsx +214 -0
package/app/components/colors/colors.module.css +59 -0
package/app/components/colors/colors.tsx +68 -0
package/app/components/form/base-form.tsx +21 -0
package/app/components/form/form-button.tsx +28 -0
package/app/components/form/form-field.tsx +53 -0
package/app/components/form/form-message.tsx +17 -0
package/app/components/form/form-toggle.tsx +23 -0
package/app/components/form/form.module.css +427 -0
package/app/components/form/index.ts +6 -0
package/app/components/icon/icon.module.css +3 -0
package/app/components/icon/icon.tsx +27 -0
package/app/components/icon/icons.svg +102 -0
package/app/components/icon/manifest.json +110 -0
package/app/components/sidebar/case-export/case-export.module.css +386 -0
package/app/components/sidebar/case-export/case-export.tsx +317 -0
package/app/components/sidebar/case-import/case-import.module.css +626 -0
package/app/components/sidebar/case-import/case-import.tsx +404 -0
package/app/components/sidebar/case-import/components/CasePreviewSection.tsx +72 -0
package/app/components/sidebar/case-import/components/ConfirmationDialog.tsx +72 -0
package/app/components/sidebar/case-import/components/ConfirmationPreviewSection.tsx +71 -0
package/app/components/sidebar/case-import/components/ExistingCaseSection.tsx +40 -0
package/app/components/sidebar/case-import/components/FileSelector.tsx +161 -0
package/app/components/sidebar/case-import/components/ProgressSection.tsx +46 -0
package/app/components/sidebar/case-import/hooks/useFilePreview.ts +101 -0
package/app/components/sidebar/case-import/hooks/useImportExecution.ts +152 -0
package/app/components/sidebar/case-import/hooks/useImportState.ts +88 -0
package/app/components/sidebar/case-import/index.ts +18 -0
package/app/components/sidebar/case-import/utils/file-validation.ts +43 -0
package/app/components/sidebar/cases/case-sidebar.tsx +827 -0
package/app/components/sidebar/cases/cases-modal.module.css +166 -0
package/app/components/sidebar/cases/cases-modal.tsx +201 -0
package/app/components/sidebar/cases/cases.module.css +713 -0
package/app/components/sidebar/files/files-modal.module.css +209 -0
package/app/components/sidebar/files/files-modal.tsx +239 -0
package/app/components/sidebar/hash/hash-utility.module.css +366 -0
package/app/components/sidebar/hash/hash-utility.tsx +982 -0
package/app/components/sidebar/notes/notes-modal.tsx +51 -0
package/app/components/sidebar/notes/notes-sidebar.tsx +491 -0
package/app/components/sidebar/notes/notes.module.css +360 -0
package/app/components/sidebar/sidebar-container.tsx +149 -0
package/app/components/sidebar/sidebar.module.css +321 -0
package/app/components/sidebar/sidebar.tsx +215 -0
package/app/components/sidebar/upload/image-upload-zone.module.css +123 -0
package/app/components/sidebar/upload/image-upload-zone.tsx +330 -0
package/app/components/theme-provider/theme-provider.tsx +131 -0
package/app/components/theme-provider/theme.ts +155 -0
package/app/components/toast/toast.module.css +137 -0
package/app/components/toast/toast.tsx +56 -0
package/app/components/toolbar/toolbar-color-selector.module.css +171 -0
package/app/components/toolbar/toolbar-color-selector.tsx +129 -0
package/app/components/toolbar/toolbar.module.css +42 -0
package/app/components/toolbar/toolbar.tsx +167 -0
package/app/components/user/delete-account.module.css +274 -0
package/app/components/user/delete-account.tsx +471 -0
package/app/components/user/inactivity-warning.module.css +145 -0
package/app/components/user/inactivity-warning.tsx +84 -0
package/app/components/user/manage-profile.module.css +190 -0
package/app/components/user/manage-profile.tsx +253 -0
package/app/components/user/mfa-phone-update.tsx +739 -0
package/app/config-example/admin-service.json +13 -0
package/app/config-example/config.json +17 -0
package/app/config-example/firebase.ts +21 -0
package/app/config-example/inactivity.ts +13 -0
package/app/config-example/meta-config.json +6 -0
package/app/contexts/auth.context.ts +12 -0
package/app/entry.client.tsx +12 -0
package/app/entry.server.tsx +44 -0
package/app/hooks/useInactivityTimeout.ts +110 -0
package/app/root.tsx +170 -0
package/app/routes/_index.tsx +16 -0
package/app/routes/auth/emailActionHandler.module.css +232 -0
package/app/routes/auth/emailActionHandler.tsx +405 -0
package/app/routes/auth/emailVerification.tsx +120 -0
package/app/routes/auth/login.module.css +523 -0
package/app/routes/auth/login.tsx +654 -0
package/app/routes/auth/passwordReset.module.css +274 -0
package/app/routes/auth/passwordReset.tsx +154 -0
package/app/routes/auth/route.ts +16 -0
package/app/routes/mobile-prevented/mobilePrevented.module.css +47 -0
package/app/routes/mobile-prevented/mobilePrevented.tsx +26 -0
package/app/routes/mobile-prevented/route.ts +14 -0
package/app/routes/striae/striae.module.css +30 -0
package/app/routes/striae/striae.tsx +417 -0
package/app/services/audit-export.service.ts +755 -0
package/app/services/audit.service.ts +1454 -0
package/app/services/firebase-errors.ts +106 -0
package/app/services/firebase.ts +15 -0
package/app/styles/legal-pages.module.css +113 -0
package/app/styles/root.module.css +146 -0
package/app/tailwind.css +225 -0
package/app/types/annotations.ts +45 -0
package/app/types/audit.ts +301 -0
package/app/types/case.ts +90 -0
package/app/types/export.ts +8 -0
package/app/types/file.ts +30 -0
package/app/types/import.ts +107 -0
package/app/types/index.ts +24 -0
package/app/types/user.ts +38 -0
package/app/utils/SHA256.ts +461 -0
package/app/utils/annotation-timestamp.ts +25 -0
package/app/utils/audit-export-signature.ts +117 -0
package/app/utils/auth-action-settings.ts +48 -0
package/app/utils/auth.ts +34 -0
package/app/utils/batch-operations.ts +135 -0
package/app/utils/confirmation-signature.ts +193 -0
package/app/utils/data-operations.ts +871 -0
package/app/utils/device-detection.ts +5 -0
package/app/utils/html-sanitizer.ts +80 -0
package/app/utils/id-generator.ts +36 -0
package/app/utils/meta.ts +48 -0
package/app/utils/mfa-phone.ts +97 -0
package/app/utils/mfa.ts +79 -0
package/app/utils/password-policy.ts +28 -0
package/app/utils/permissions.ts +562 -0
package/app/utils/signature-utils.ts +160 -0
package/app/utils/style.ts +83 -0
package/app/utils/version.ts +5 -0
package/firebase.json +11 -0
package/functions/[[path]].ts +10 -0
package/package.json +138 -0
package/postcss.config.js +6 -0
package/public/.well-known/publickey.info@striae.org.asc +17 -0
package/public/.well-known/security.txt +7 -0
package/public/_headers +28 -0
package/public/_routes.json +13 -0
package/public/assets/striae.jpg +0 -0
package/public/clear.jpg +0 -0
package/public/favicon.ico +0 -0
package/public/favicon.svg +9 -0
package/public/icon-256.png +0 -0
package/public/icon-512.png +0 -0
package/public/logo-dark.png +0 -0
package/public/manifest.json +25 -0
package/public/oin-badge.png +0 -0
package/public/shortcut.png +0 -0
package/public/social-image.png +0 -0
package/public/striae-ascii.txt +10 -0
package/scripts/deploy-all.sh +100 -0
package/scripts/deploy-config.sh +940 -0
package/scripts/deploy-pages.sh +34 -0
package/scripts/deploy-worker-secrets.sh +215 -0
package/scripts/dev.cjs +23 -0
package/scripts/install-workers.sh +88 -0
package/scripts/run-eslint.cjs +35 -0
package/scripts/update-compatibility-dates.cjs +124 -0
package/scripts/update-markdown-versions.cjs +43 -0
package/tailwind.config.ts +22 -0
package/tsconfig.json +33 -0
package/vite.config.ts +35 -0
package/worker-configuration.d.ts +7490 -0
package/workers/audit-worker/package.json +17 -0
package/workers/audit-worker/src/audit-worker.example.ts +195 -0
package/workers/audit-worker/worker-configuration.d.ts +7448 -0
package/workers/audit-worker/wrangler.jsonc.example +29 -0
package/workers/data-worker/package.json +17 -0
package/workers/data-worker/src/data-worker.example.ts +267 -0
package/workers/data-worker/src/signature-utils.ts +79 -0
package/workers/data-worker/src/signing-payload-utils.ts +290 -0
package/workers/data-worker/worker-configuration.d.ts +7448 -0
package/workers/data-worker/wrangler.jsonc.example +30 -0
package/workers/image-worker/package.json +17 -0
package/workers/image-worker/src/image-worker.example.ts +180 -0
package/workers/image-worker/worker-configuration.d.ts +7447 -0
package/workers/image-worker/wrangler.jsonc.example +22 -0
package/workers/keys-worker/package.json +17 -0
package/workers/keys-worker/src/keys.example.ts +66 -0
package/workers/keys-worker/src/keys.ts +66 -0
package/workers/keys-worker/worker-configuration.d.ts +7447 -0
package/workers/keys-worker/wrangler.jsonc.example +22 -0
package/workers/pdf-worker/package.json +17 -0
package/workers/pdf-worker/src/format-striae.ts +534 -0
package/workers/pdf-worker/src/pdf-worker.example.ts +119 -0
package/workers/pdf-worker/src/report-types.ts +69 -0
package/workers/pdf-worker/worker-configuration.d.ts +7448 -0
package/workers/pdf-worker/wrangler.jsonc.example +26 -0
package/workers/user-worker/package.json +17 -0
package/workers/user-worker/src/user-worker.example.ts +636 -0
package/workers/user-worker/worker-configuration.d.ts +7448 -0
package/workers/user-worker/wrangler.jsonc.example +29 -0
package/wrangler.toml.example +8 -0

package/app/utils/batch-operations.ts ADDED Viewed

@@ -0,0 +1,135 @@
+/**
+ * Utility functions for batched operations with rate limiting protection
+ */
+interface BatchOperationOptions {
+  batchSize: number;
+  baseDelay: number;
+  maxRetries: number;
+  retryMultiplier: number;
+}
+interface BatchResult<T> {
+  successful: Array<{ item: T; result: any }>;
+  failed: Array<{ item: T; error: string; retryCount: number }>;
+  totalProcessed: number;
+}
+/**
+ * Execute operations in batches with exponential backoff on failures
+ */
+export const executeBatchOperations = async <T>(
+  items: T[],
+  operation: (item: T) => Promise<any>,
+  options: Partial<BatchOperationOptions> = {}
+): Promise<BatchResult<T>> => {
+  const config = {
+    batchSize: 3,
+    baseDelay: 300,
+    maxRetries: 2,
+    retryMultiplier: 2,
+    ...options
+  };
+  const successful: Array<{ item: T; result: any }> = [];
+  const failed: Array<{ item: T; error: string; retryCount: number }> = [];
+  let totalProcessed = 0;
+  // Process items in batches
+  for (let i = 0; i < items.length; i += config.batchSize) {
+    const batch = items.slice(i, i + config.batchSize);
+    const batchNumber = Math.floor(i / config.batchSize) + 1;
+    const totalBatches = Math.ceil(items.length / config.batchSize);
+    console.log(`📦 Processing batch ${batchNumber}/${totalBatches} (${batch.length} items)...`);
+    // Process batch with retry logic
+    const batchResults = await Promise.allSettled(
+      batch.map(async item => {
+        let lastError: Error | null = null;
+        for (let retryCount = 0; retryCount <= config.maxRetries; retryCount++) {
+          try {
+            const result = await operation(item);
+            return { item, result };
+          } catch (error) {
+            lastError = error instanceof Error ? error : new Error('Unknown error');
+            if (retryCount < config.maxRetries) {
+              // Wait before retry with exponential backoff
+              const retryDelay = config.baseDelay * Math.pow(config.retryMultiplier, retryCount);
+              console.warn(`⚠️  Operation failed, retrying in ${retryDelay}ms (attempt ${retryCount + 2}/${config.maxRetries + 1})`);
+              await new Promise(resolve => setTimeout(resolve, retryDelay));
+            }
+          }
+        }
+        // All retries exhausted
+        throw lastError;
+      })
+    );
+    // Process batch results
+    batchResults.forEach((result, index) => {
+      totalProcessed++;
+      if (result.status === 'fulfilled') {
+        successful.push(result.value);
+      } else {
+        failed.push({
+          item: batch[index],
+          error: result.reason?.message || 'Unknown error',
+          retryCount: config.maxRetries
+        });
+      }
+    });
+    // Add delay between batches if not the last batch
+    if (i + config.batchSize < items.length) {
+      const delay = config.baseDelay + (failed.length > 0 ? config.baseDelay : 0); // Extra delay if failures occurred
+      console.log(`⏱️  Waiting ${delay}ms before next batch...`);
+      await new Promise(resolve => setTimeout(resolve, delay));
+    }
+  }
+  return {
+    successful,
+    failed,
+    totalProcessed
+  };
+};
+/**
+ * Rate-limited audit logging to prevent overwhelming the audit service
+ */
+export const batchedAuditLog = async (
+  auditEntries: Array<() => Promise<void>>,
+  options: { batchSize?: number; delay?: number } = {}
+): Promise<{ successful: number; failed: number }> => {
+  const { batchSize = 2, delay = 500 } = options;
+  let successful = 0;
+  let failed = 0;
+  for (let i = 0; i < auditEntries.length; i += batchSize) {
+    const batch = auditEntries.slice(i, i + batchSize);
+    const results = await Promise.allSettled(
+      batch.map(auditFn => auditFn())
+    );
+    results.forEach(result => {
+      if (result.status === 'fulfilled') {
+        successful++;
+      } else {
+        failed++;
+        console.error('Audit logging failed:', result.reason);
+      }
+    });
+    // Add delay between audit batches
+    if (i + batchSize < auditEntries.length) {
+      await new Promise(resolve => setTimeout(resolve, delay));
+    }
+  }
+  return { successful, failed };
+};

package/app/utils/confirmation-signature.ts ADDED Viewed

@@ -0,0 +1,193 @@
+import { ConfirmationImportData } from '~/types';
+import {
+  ForensicManifestSignature,
+  FORENSIC_MANIFEST_SIGNATURE_ALGORITHM,
+  ManifestSignatureVerificationResult
+} from './SHA256';
+import { verifySignaturePayload } from './signature-utils';
+export const CONFIRMATION_SIGNATURE_VERSION = '2.0';
+const SHA256_HEX_REGEX = /^[a-f0-9]{64}$/i;
+type ConfirmationEntry = {
+  fullName: string;
+  badgeId: string;
+  timestamp: string;
+  confirmationId: string;
+  confirmedBy: string;
+  confirmedByEmail: string;
+  confirmedByCompany: string;
+  confirmedAt: string;
+};
+type ConfirmationMap = Record<string, ConfirmationEntry[]>;
+function hasValidConfirmationEntry(entry: Partial<ConfirmationEntry>): entry is ConfirmationEntry {
+  return (
+    typeof entry.fullName === 'string' &&
+    typeof entry.badgeId === 'string' &&
+    typeof entry.timestamp === 'string' &&
+    typeof entry.confirmationId === 'string' &&
+    typeof entry.confirmedBy === 'string' &&
+    typeof entry.confirmedByEmail === 'string' &&
+    typeof entry.confirmedByCompany === 'string' &&
+    typeof entry.confirmedAt === 'string' &&
+    !Number.isNaN(Date.parse(entry.confirmedAt))
+  );
+}
+function isValidConfirmationData(candidate: Partial<ConfirmationImportData>): candidate is ConfirmationImportData {
+  if (!candidate || !candidate.metadata || !candidate.confirmations) {
+    return false;
+  }
+  const { metadata } = candidate;
+  if (
+    typeof metadata.caseNumber !== 'string' ||
+    typeof metadata.exportDate !== 'string' ||
+    typeof metadata.exportedBy !== 'string' ||
+    typeof metadata.exportedByUid !== 'string' ||
+    typeof metadata.exportedByName !== 'string' ||
+    typeof metadata.exportedByCompany !== 'string' ||
+    typeof metadata.totalConfirmations !== 'number' ||
+    metadata.totalConfirmations < 0 ||
+    typeof metadata.version !== 'string' ||
+    typeof metadata.hash !== 'string' ||
+    !SHA256_HEX_REGEX.test(metadata.hash)
+  ) {
+    return false;
+  }
+  if (Number.isNaN(Date.parse(metadata.exportDate))) {
+    return false;
+  }
+  if (
+    typeof metadata.originalExportCreatedAt === 'string' &&
+    Number.isNaN(Date.parse(metadata.originalExportCreatedAt))
+  ) {
+    return false;
+  }
+  const confirmations = candidate.confirmations as Record<string, unknown>;
+  for (const [imageId, confirmationList] of Object.entries(confirmations)) {
+    if (!imageId || !Array.isArray(confirmationList)) {
+      return false;
+    }
+    for (const confirmationEntry of confirmationList) {
+      if (
+        typeof confirmationEntry !== 'object' ||
+        confirmationEntry === null ||
+        !hasValidConfirmationEntry(confirmationEntry as Partial<ConfirmationEntry>)
+      ) {
+        return false;
+      }
+    }
+  }
+  return true;
+}
+function normalizeConfirmationEntries(entries: ConfirmationEntry[]): ConfirmationEntry[] {
+  return [...entries]
+    .map((entry) => ({
+      fullName: entry.fullName,
+      badgeId: entry.badgeId,
+      timestamp: entry.timestamp,
+      confirmationId: entry.confirmationId,
+      confirmedBy: entry.confirmedBy,
+      confirmedByEmail: entry.confirmedByEmail,
+      confirmedByCompany: entry.confirmedByCompany,
+      confirmedAt: entry.confirmedAt
+    }))
+    .sort((left, right) => {
+      const leftKey = `${left.confirmationId}|${left.confirmedAt}|${left.confirmedBy}`;
+      const rightKey = `${right.confirmationId}|${right.confirmedAt}|${right.confirmedBy}`;
+      return leftKey.localeCompare(rightKey);
+    });
+}
+function normalizeConfirmations(confirmations: ConfirmationMap): ConfirmationMap {
+  const normalized: ConfirmationMap = {};
+  const sortedImageIds = Object.keys(confirmations).sort();
+  for (const imageId of sortedImageIds) {
+    normalized[imageId] = normalizeConfirmationEntries(confirmations[imageId] || []);
+  }
+  return normalized;
+}
+export function createConfirmationSigningPayload(
+  confirmationData: ConfirmationImportData,
+  signatureVersion: string = CONFIRMATION_SIGNATURE_VERSION
+): string {
+  const canonicalPayload = {
+    signatureVersion,
+    metadata: {
+      caseNumber: confirmationData.metadata.caseNumber,
+      exportDate: confirmationData.metadata.exportDate,
+      exportedBy: confirmationData.metadata.exportedBy,
+      exportedByUid: confirmationData.metadata.exportedByUid,
+      exportedByName: confirmationData.metadata.exportedByName,
+      exportedByCompany: confirmationData.metadata.exportedByCompany,
+      totalConfirmations: confirmationData.metadata.totalConfirmations,
+      version: confirmationData.metadata.version,
+      hash: confirmationData.metadata.hash.toUpperCase(),
+      ...(confirmationData.metadata.originalExportCreatedAt
+        ? { originalExportCreatedAt: confirmationData.metadata.originalExportCreatedAt }
+        : {})
+    },
+    confirmations: normalizeConfirmations(confirmationData.confirmations)
+  };
+  return JSON.stringify(canonicalPayload);
+}
+export async function verifyConfirmationSignature(
+  confirmationData: Partial<ConfirmationImportData>
+): Promise<ManifestSignatureVerificationResult> {
+  const signature = confirmationData.metadata?.signature as ForensicManifestSignature | undefined;
+  const signatureVersion = confirmationData.metadata?.signatureVersion;
+  if (!signature) {
+    return {
+      isValid: false,
+      error: 'Missing confirmation signature'
+    };
+  }
+  if (signatureVersion !== CONFIRMATION_SIGNATURE_VERSION) {
+    return {
+      isValid: false,
+      keyId: signature.keyId,
+      error: `Unsupported confirmation signature version: ${signatureVersion || 'unknown'}`
+    };
+  }
+  if (!isValidConfirmationData(confirmationData)) {
+    return {
+      isValid: false,
+      keyId: signature.keyId,
+      error: 'Confirmation content is malformed'
+    };
+  }
+  const payload = createConfirmationSigningPayload(confirmationData, signatureVersion);
+  return verifySignaturePayload(
+    payload,
+    signature,
+    FORENSIC_MANIFEST_SIGNATURE_ALGORITHM,
+    {
+      unsupportedAlgorithmPrefix: 'Unsupported confirmation signature algorithm',
+      missingKeyOrValueError: 'Missing confirmation signature key ID or value',
+      noVerificationKeyPrefix: 'No verification key configured for key ID',
+      invalidPublicKeyError: 'Confirmation signature verification failed: invalid public key',
+      verificationFailedError: 'Confirmation signature verification failed'
+    }
+  );
+}