npm - @telia-ace/alliance-internal-node-utilities - Versions diffs - 1.0.6 → 1.1.0 - Mend

@telia-ace/alliance-internal-node-utilities 1.0.6 → 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

package/dist/chunk-26VIM55J.js +23 -0
package/dist/chunk-JG7V63GM.js +1 -0
package/dist/chunk-UNKGNXJ3.js +32 -0
package/dist/compile-distribution.d.ts +1 -0
package/dist/compile-distribution.js +301 -0
package/dist/index.d.ts +18 -5
package/dist/index.js +4 -737
package/dist/main-FN5JZTIU.js +9 -0
package/dist/prompt-YMONYGAG.js +45 -0
package/package.json +12 -9
package/CHANGELOG.md +0 -158
package/dist/index.js.map +0 -1

package/dist/index.js CHANGED Viewed

@@ -1,737 +1,4 @@
-import jwt from 'jsonwebtoken';
-import { createPublicKey } from 'node:crypto';
-import { z } from 'zod';
-import { validate } from 'jsonschema';
-import { existsSync, mkdirSync, writeFileSync, readFileSync, rmSync } from 'node:fs';
-import { resolve } from 'node:path';
-import _slugify from 'slugify';
-import pino from 'pino';
-// src/auth/tokens.ts
-var zBooleanEnum = z.enum(["true", "false"]).transform((strBool) => strBool === "true");
-var zNonEmptyString = z.string().min(1);
-var zSharedConfig = z.object({
-  /**
-   * Name for the cookie storing the user session
-   *
-   * Optional, defaults to "alliance-auth"
-   */
-  AUTH_COOKIE_NAME: zNonEmptyString.default("alliance-auth"),
-  /**
-   * Secret to use when signing the user session cookie
-   *
-   * Optional, defaults to "zlLZBlk7wt8lypP5lA4D"
-   */
-  AUTH_COOKIE_SECRET: zNonEmptyString.default("zlLZBlk7wt8lypP5lA4D"),
-  /**
-   * Endpoint to use when communicating with the Data API
-   */
-  DB_ENDPOINT: zNonEmptyString,
-  /**
-   * Private key to use when signing JWT tokens
-   *
-   * Optional, defaults to "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"
-   */
-  JWT_PRIVATE_KEY: zNonEmptyString.default(
-    "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"
-  ),
-  /**
-   * Public key type used by old versions of .NET.
-   *
-   * Optional, defaults to "BgIAAACkAABSU0ExAAgAAAEAAQDFBQ9thkQ01wvaRFcDRPpOrbd6hsXHAAiEdjof2NPPY02VZZMTW3MXxYJZkMm4suCbyeqc6FUI2kZ4DzUBHCQY/pQYRk3SiBhCYbvFvMNrxAmRzqk22FLAHedKEnJPgZpU9J6LCrfgw/do/d5YFk2vE/PYWD8rqev+LaegJ2DCwkklOMoaBByPGQj+0BoXZVRx7qLYRdq1IgNk/yHvDu5OkLyt97E/G2l7zdW04i9SiPF+yaEKJ8NEjViowY0tAdNYpLFsezhrLU3ev0rVeUrDEq+8f8uPUaYnAT8t+tmgcgkFi+SzQr2YQmrZ7SMKTuIqJ2CAoTqUmNBC3znOjmqw"
-   */
-  JWT_PUBLIC_CSP_KEY: z.string().min(1).default(
-    "BgIAAACkAABSU0ExAAgAAAEAAQDFBQ9thkQ01wvaRFcDRPpOrbd6hsXHAAiEdjof2NPPY02VZZMTW3MXxYJZkMm4suCbyeqc6FUI2kZ4DzUBHCQY/pQYRk3SiBhCYbvFvMNrxAmRzqk22FLAHedKEnJPgZpU9J6LCrfgw/do/d5YFk2vE/PYWD8rqev+LaegJ2DCwkklOMoaBByPGQj+0BoXZVRx7qLYRdq1IgNk/yHvDu5OkLyt97E/G2l7zdW04i9SiPF+yaEKJ8NEjViowY0tAdNYpLFsezhrLU3ev0rVeUrDEq+8f8uPUaYnAT8t+tmgcgkFi+SzQr2YQmrZ7SMKTuIqJ2CAoTqUmNBC3znOjmqw"
-  ),
-  /**
-   * Log level to output
-   *
-   * Supports "silent" | "fatal" | "error" | "warn" | "info" | "debug" | "trace"
-   *
-   * Optional, defaults to "trace"
-   */
-  SERVICE_LOG_LEVEL: z.enum(["silent", "fatal", "error", "warn", "info", "debug", "trace"]).default("trace"),
-  /**
-   * Port to run the service on.
-   *
-   * Optional, defaults to "3000"
-   */
-  SERVICE_PORT: zNonEmptyString.transform(Number).default("3000"),
-  /**
-   * Url to redis server to use when storing / reading user session information.
-   */
-  REDIS_HOST: zNonEmptyString,
-  /**
-   * Password to redis server to use when storing / reading user session information.
-   *
-   * Optional
-   */
-  REDIS_PASSWORD: zNonEmptyString.optional()
-});
-// src/constants/headers.ts
-var AllianceHeaders = /* @__PURE__ */ ((AllianceHeaders2) => {
-  AllianceHeaders2["TargetUrl"] = "alliance-target-url";
-  AllianceHeaders2["TargetApp"] = "alliance-target-app";
-  AllianceHeaders2["TargetWorkspace"] = "alliance-target-workspace";
-  return AllianceHeaders2;
-})(AllianceHeaders || {});
-// src/auth/tokens.ts
-zSharedConfig.pick({ JWT_PRIVATE_KEY: true, JWT_PUBLIC_CSP_KEY: true });
-function createBearerToken({
-  privateKey,
-  aud,
-  sub,
-  name,
-  user,
-  workspace,
-  expiration = "1h"
-}) {
-  const token = jwt.sign(
-    {
-      iss: "Alliance",
-      aud,
-      sub,
-      name,
-      "https://alliance.teliacompany.net/user_type": user.type,
-      "https://alliance.teliacompany.net/user_email": user.email,
-      "https://alliance.teliacompany.net/user_privileges": user.permissions,
-      "https://alliance.teliacompany.net/workspace": workspace.slug,
-      "https://alliance.teliacompany.net/workspace_name": workspace.name,
-      "https://alliance.teliacompany.net/tenant": workspace.slug,
-      "https://alliance.teliacompany.net/tenant_name": workspace.name
-    },
-    privateKey,
-    {
-      expiresIn: expiration,
-      algorithm: "RS256"
-    }
-  );
-  return `Bearer ${token}`;
-}
-function getPrivateKey(config) {
-  return "-----BEGIN RSA PRIVATE KEY-----\n" + config.JWT_PRIVATE_KEY + "\n-----END RSA PRIVATE KEY-----";
-}
-function createSystemUserToken(config) {
-  return createBearerToken({
-    aud: "system",
-    sub: "system",
-    name: "system",
-    workspace: {
-      slug: "system",
-      name: "system"
-    },
-    user: {
-      type: "system",
-      permissions: [],
-      email: "system"
-    },
-    privateKey: getPrivateKey(config)
-  });
-}
-function createPublicKeys(config) {
-  const priv = getPrivateKey(config);
-  const generatedKey = createPublicKey(priv);
-  return {
-    pkcs: generatedKey.export({ type: "pkcs1", format: "pem" }).toString().trim(),
-    spki: generatedKey.export({ type: "spki", format: "pem" }).toString().trim(),
-    csp: config.JWT_PUBLIC_CSP_KEY
-  };
-}
-function getCleanPublicKey(type, keys) {
-  return keys[type].replace("-----BEGIN RSA PUBLIC KEY-----", "").replace("-----END RSA PUBLIC KEY-----", "").replace("-----BEGIN PUBLIC KEY-----", "").replace("-----END PUBLIC KEY-----", "").trim().replaceAll("\n", "");
-}
-// src/distribution/cookie-policy.ts
-function generateCookiePolicyHtml(appManifests) {
-  const cookiePolicyTableRows = [];
-  for (const appName in appManifests) {
-    const manifest = appManifests[appName];
-    if (!manifest.storage) {
-      continue;
-    }
-    for (const [key, value] of Object.entries(manifest.storage)) {
-      const tableRow = createCookiePolicyTableRow(key, value);
-      cookiePolicyTableRows.push(tableRow);
-    }
-  }
-  return cookiePolicyHtml.replace("{APP_COOKIES}", cookiePolicyTableRows.join(""));
-}
-function createCookiePolicyTableRow(key, claimEntry) {
-  const rows = ["<tr>"];
-  const { category, purpose, lifespan } = claimEntry;
-  rows.push(`<td>${key}</td>`);
-  rows.push(`<td>${category}</td>`);
-  rows.push(`<td>${purpose}</td>`);
-  rows.push(`<td>${lifespan}</td>`);
-  rows.push("</tr>");
-  return rows.join("");
-}
-var cookiePolicyHtml = `
-<!DOCTYPE html>
-<html lang="en">
-    <head>
-        <meta charset="UTF-8" />
-        <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-        <title>ACE Alliance - Cookie Policy</title>
-        <link
-            rel="icon"
-            href="data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAACAAAAAgCAYAAABzenr0AAAGcElEQVRYha2Xe4xUVx3HP7/fPTOzDLO7sw8RlzWlZEtp2dCy0qIVWltKU/UPDZH6ijXWEK2odPcPa2qbhpi2kSa7blSStsFUjNq0lWCMaVMx8rAm22IJMJRHCqFC6BJ22eEx+5p7z88/7sywC7uwgCe5mXsz5/y+j/M753eOcJ2tK5sDyBrME2gBmkBq43/tnMERgXdAjrbn518yXq4RNA3cB/J54HNiMhfEicm4oAYghmHexN4Dew5k01giUybQlc1h0CbI9zC+Imi9mCAIYhoHsnI4KcNjYoDhxWPxsxFY1Z5vHQVwVwSu3Qdid4E8rSb3i6mqKYwBjpWX1V/QZBiYYWIIiifCw8Mm/vS7L/W237FqJno58M5srgmxP4npjsAHDwTeaeAdagGBdwQWoBYgFqCmqGlMqvTE3+U+ipbeE+ngB42Lde6kDnRmcwisAHlBfdBYCYxStp3y7xjTJ51RA0XxgGCkasQFSfkW8NQlBDqzORVYK6ZPqAU6ThUyqd0TN7mQDRZ/CULzvVVeRO68xIGubE6BbjH9oVqA+thaQccpvjLwRDTit2RG/fxVGR3sLc4ELuRAV90+gJ/G4K4EHpRs1wr7qwW/uH36uaxPzwz0xNZhHUfAzJZgsjZWrqXEiTP9WlRP1Bb+pCacs2KaCwvmD/5+cLhCoCubU0G61QJXyWYkVv9/Av/UEzVh2+PVDmDPr875ob4oD6UcMLhfTdqU8dket+sDD6rwS7vrfMs30i4qRhzfMhwe3FhwQG+FgMDKytIyKe1o1zffZlB3swvve7mehgVJZ95zatdouG31gHpvoHYUwHVmc4AsqoCXYK9HtzhYsDoTLnqyRl1a1QxOvjMavrmyT4sFr6hhsA/AZUbqKKTy9ZfCXhuFpntS4WfWZWloTcTTa8bh14fCrY/2a3E4UlOLt2jYCeCGE+cBBuPhdk2gZjDjjmS46KkampelnEhMPhwy3/PkGb/vhXPO4zGJ60KyTo5nPpk8wg5wPz57M13Z3PuGzRtTxEovV3BBoXlZKrytvZqmpSknKhVCJ3tGwu2rBxjYHzrEymUZw9Py0LQtD6yb7aG8CoR/mNgKs1LHEomJ4M2M9McDf9PX0n7eI9OpbXEVxQCFE5F/d+0Zf+iPgy7e/GPDjVj9rGXJcO7D6b+yLu7vABavrd10/O8jz5/cFqXNFBGr1HYzQ0SoviEIm5dXceOXpvGJpSkNEjJuGy+ciPzu7nN+/4aCRkM2vsaUrM/coH7ed9Ond3WffbPyF8CxQ/1Y5F8b/C9fHthlFPvFB05JNzqtvSnBxxYmmN4UVCwe60b/7mK4d/15Dr82qH50fHkva/fiSc00v/SlGr97fX79ytdb1owjAHDwX71tVbWuJ9OQdMl0gmTKESQUVWGsxQDD/ZE/snnIH/xdgVP/KU5yqCnBi2f6bPF3b6jxe17Mhx9sKizsyLceKPeqDP7bF/rfa2xLvHrLN6sfmr08o0GDqAaCIYRD3g/sD/1Hb49w7K1hev89otEoTi6To+V5n3l3Mryru1r3vpjn8KbCZjU5MLbfuBCd2VyzIHsTgauZ3pAkkXIanScc6Tf1RfRiJyYHN4Iq/O2PZ/zc71Rpz89P+30bz4QmdltHvvXQpARKJB5R0w0XSvL4cjwV+FnLU+HiZ2tUpxtbf9Tnj20vOJPo2fZ8688u7n3pmdB42Yt/xUuESVQ+yVJexZNtVmbQ2JYIH9zcGC5/pd71Hxjxm5f1cnzboDPx7xs8M9G4CSV1ZnOZICE7GNXbKweTMU7EA6USoemeVLhgTYame1Nu4MBI2PN0ng+3DDovIZFG5w37bEe+dc+UCQC8/ZtjzX07i/88saU4J8yLXiAhaCC+fn7Sz/7iNFq+mqZ6TuD6do+Gu7vPcuQvBRf62LlIQ2/Y1zvyra9OhnPZSf1g58k5I6ftDSnqnNFTaOACqmclfP0tSa3KBjrc5/2Hbwz7Q38ocHLniDM8XjxeIrxG3rA16vXXj529dVKMK2bVL2fkmhrmJ/9cPy91Z2ZGwhMqQx95TudC8gdCZx4obbMVAhqNGvaoCr99bKD1svGntK4647vg84J8X021PBXlK5gJGJWr11GDb3fkW7dPJfaUi3539iARxSUCz4AsERMVpHwDxMTyhq0HftGRbz071bhXfeooXVJvBR4EbgSGgR6Bt9qvArjc/gfZzPoCTDB+AgAAAABJRU5ErkJggg=="
-        />
-        <style>
-            @charset "UTF-8";
-            @import 'https://cdn.voca.teliacompany.com/fonts/TeliaSansV10/TeliaSans.css';
-            @import 'https://fonts.googleapis.com/css?family=Reenie+Beanie';
-            body {
-                font-family: TeliaSans, Helvetica, Arial, Lucida Grande, sans-serif;
-            }
-            body > div {
-                max-width: 1000px;
-                margin: 0 auto;
-                padding: 0 40px 40px;
-            }
-        </style>
-    </head>
-    <body>
-        <div>
-            <h1>Cookie Policy</h1>
-            <p>
-                On our websites, we use cookies and other similar technologies. You can choose
-                whether you want to allow our websites to store cookies on your computer or not. You
-                can change your choices at any time.
-            </p>
-            <h2>Your consent is required</h2>
-            <p>
-                You choose whether you want to accept cookies on your device or not. Your consent is
-                required for the use of cookies, but not for such cookies that are necessary to
-                enable the service that you as a user have requested. If you do not accept our use
-                of cookies, or if you have previously approved our use and have changed your mind,
-                you can return to your cookie settings at any time and change your choices. You do
-                this by clicking on the cookie button/link. You may also need to change the settings
-                in your browser and manually delete cookies to clear your device of previously
-                stored cookies.
-            </p>
-            <h2>What are cookies?</h2>
-            <p>
-                A cookie is a small text file that is stored on your computer by the web browser
-                while browsing a website. When we refer to cookies (\u201Ccookies\u201D) in this policy, other
-                similar technologies and tools that retrieve and store information in your browser,
-                and in some cases forward such information to third parties, in a manner similar to
-                cookies. Examples are pixels, local storage, session storage and fingerprinting.
-            </p>
-            <p>
-                The websites will \u201Cremember\u201D and \u201Crecognize\u201D you. This can be done by placing
-                cookies in three different ways;
-            </p>
-            <ul>
-                <li>The session ends, ie until you close the window in your browser.</li>
-                <li>
-                    Time-limited, ie the cookie has a predetermined lifespan. The time may vary
-                    between different cookies.
-                </li>
-                <li>
-                    Until further notice, ie the information remains until you choose to delete it
-                    yourself. This applies to local storage.
-                </li>
-            </ul>
-            <p>You can always go into your browser and delete already stored cookies yourself.</p>
-            <h3>Third Party Cookies</h3>
-            <p>
-                We use third-party cookies on our websites. Third-party cookies are stored by
-                someone other than the person responsible for the website, in this case by a company
-                other than Telia.
-            </p>
-            <p>
-                Telia uses external platforms to communicate digitally, these include the Google
-                Marketing Platform and others. The platforms use both first- and third-party cookies
-                as well as similar techniques to advertise and follow up the results of the
-                advertising.
-            </p>
-            <p>
-                A third-party cookie can be used by several websites to understand and track how you
-                browse between different websites. Telia receives information from these cookies,
-                but the information can also be used for other purposes determined by third parties.
-                Third-party cookies found on our website are covered by each third-party privacy
-                policy. Feel free to read these to understand what other purposes the information
-                can be used for. Links are in our Cookie Table.
-            </p>
-            <p>
-                For information about which third-party cookies are used on our websites, see our
-                Cookie Table. For more information on how Telia handles personal data in connection
-                with transfers to third parties, read our Privacy Policy.
-            </p>
-            <h2>Cookies on our websites</h2>
-            <p>
-                In order for you to have better control over which cookies are used on the websites,
-                and thus be able to more easily decide how cookies should be used when you visit our
-                websites, we have identified four different categories of cookies. These categories
-                are defined based on the purposes for the use of the cookies.
-            </p>
-            <p>
-                In our Cookie Table, you can also see which category each cookie belongs to, for
-                what purposes it is used and for how long it is active.
-            </p>
-            <p>
-                We have identified the following four categories of cookies. All categories contain
-                cookies which means that data is shared with third parties.
-            </p>
-            <h3>Necessary</h3>
-            <p>
-                These cookies are needed for our app to work in a secure and correct way. Necessary
-                cookies enable you to use our app and us to provide the service you request.
-                Necessary cookies make basic functions of the app possible, for example, identifying
-                you when you log into My Telia, detecting repeated failed login attempts,
-                identifying where you are in the buying process and remembering the items put into
-                your shopping basket.
-            </p>
-            <h3>Functionality</h3>
-            <p>
-                These cookies let us to enable some useful functionalities to make the user
-                experience better, for example, to remember your login details and settings.
-            </p>
-            <h3>Analytics</h3>
-            <p>
-                These cookies give us information about how you use our app and allow us to improve
-                the user experience.
-            </p>
-            <h3>Marketing</h3>
-            <p>
-                These cookies help us and our partners to display personalized and relevant ads
-                based on your browsing behavior on our website and in our app, even when you later
-                visit other (third parties\u2019) websites. These cookies are used to evaluate the
-                effectiveness of our marketingcampaigns, as well as for targeted marketing and
-                profiling, regardless of which device(s) you have used. Information collected for
-                this purpose may also be combined with other customer and traffic data we have about
-                you, if you have given your consent that we may use your traffic data for marketing
-                purpose and have not objected to the use of your customer data for marketing
-                purposes.
-            </p>
-            <h2>Manage settings</h2>
-            <p>
-                We save your cookie consent for 12 months. Then we will ask you again. Please note
-                that some cookies have a lifespan that exceeds these 12 months. You may therefore
-                need to change the settings in your browser and manually delete all cookies.
-            </p>
-            <p>
-                More information on how to turn off cookies can be found in the instructions for
-                your browser.
-            </p>
-            <ul>
-                <li>
-                    <a
-                        href="https://support.google.com/accounts/answer/61416?co=GENIE.Platform%3DDesktop&amp;hl=en"
-                        target="_blank"
-                        rel="noopener noreferrer"
-                        >Google Chrome</a
-                    >
-                </li>
-                <li>
-                    <a
-                        href="https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy"
-                        target="_blank"
-                        rel="noopener noreferrer"
-                        >Microsoft Edge</a
-                    >
-                </li>
-                <li>
-                    <a
-                        href="https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences"
-                        target="_blank"
-                        rel="noopener noreferrer"
-                        >Mozilla Firefox</a
-                    >
-                </li>
-                <li>
-                    <a
-                        href="https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies"
-                        target="_blank"
-                        rel="noopener noreferrer"
-                        >Microsoft Internet Explorer</a
-                    >
-                </li>
-                <li>
-                    <a
-                        href="https://www.opera.com/help/tutorials/security/privacy/"
-                        target="_blank"
-                        rel="noopener noreferrer"
-                        >Opera</a
-                    >
-                </li>
-                <li>
-                    <a
-                        href="https://support.apple.com/guide/safari/manage-cookies-and-website-data-sfri11471/mac"
-                        target="_blank"
-                        rel="noopener noreferrer"
-                        >Apple Safari</a
-                    >
-                </li>
-            </ul>
-            <h3>Do Not Track-signals</h3>
-            <p>
-                If you have chosen to turn on the Do Not Track function in your browser, we will not
-                automatically place cookies for marketing on your device. You make other choices in
-                your cookie settings.
-            </p>
-            <h3>If you block cookies</h3>
-            <p>
-                If you choose not to accept our use of cookies, the functionality and performance of
-                our websites may deteriorate as certain functions are dependent on cookies. A
-                blocking of cookies can therefore mean that the websites\u2019 services do not work as
-                they should.
-            </p>
-            <h3>Your security with us</h3>
-            <p>
-                If you want to read more about your rights and how we protect your privacy, go to
-                our privacy policy for
-                <a
-                    href="https://www.telia.se/dam/jcr:df2eeb83-50ce-4383-89fc-0613f7615796/Integritetspolicy-privatkunder.pdf"
-                    >private customers</a
-                >
-                (C2B) or
-                <a
-                    href="https://www.telia.se/dam/jcr:95b2b4a5-82ca-436b-90e0-873e0a864118/Telia-integritetspolicy-foretag.pdf"
-                    >corporate customers</a
-                >
-                (B2B). You are always welcome to contact us at
-                <a href="mailto:dpo-se@teliacompany.com">dpo-se@teliacompany.com</a> if you have any
-                questions.
-            </p>
-            <p>Our cookie policy may change in the future.</p>
-            <p>
-                More information about cookies can be found at the Swedish Post and Telecom
-                Authority (PTS).
-            </p>
-            <h2>Our Cookie Table</h2>
-            <p>
-                Below, you will find a list of the cookies and similar technologies that we use on
-                this website. These cookies are stored on your device by us.
-            </p>
-            <table>
-                <thead>
-                    <tr>
-                        <th>Cookie</th>
-                        <th>Category</th>
-                        <th>Purpose</th>
-                        <th>Lifespan</th>
-                    </tr>
-                </thead>
-                <tbody>
-                    <tr>
-                        <td>alliance-session-v1</td>
-                        <td>necessary</td>
-                        <td>Contains the authenticated user.</td>
-                        <td>1 day</td>
-                    </tr>
-                    {APP_COOKIES}
-                </tbody>
-            </table>
-            <style>
-                table {
-                    width: 100%;
-                    border: 1px solid rgba(0, 0, 0, 0.15);
-                }
-                th, td {
-                    text-align: left;
-                    padding: 3px;
-                }
-            </style>
-        </div>
-    </body>
-</html>
-`;
-function getJsonSchemas() {
-  const frameworkDistDirPath = resolve(
-    process.cwd(),
-    "node_modules",
-    "@telia-ace/alliance-framework",
-    "dist"
-  );
-  const appConfigSchemaPath = resolve(frameworkDistDirPath, "config.schema.json");
-  const appManifestSchemaPath = resolve(frameworkDistDirPath, "manifest.schema.json");
-  const appConfigSchemaFile = readFileSync(appConfigSchemaPath).toString();
-  const appManifestSchemaFile = readFileSync(appManifestSchemaPath).toString();
-  const appConfig = JSON.parse(appConfigSchemaFile);
-  const appManifest = JSON.parse(appManifestSchemaFile);
-  return {
-    appConfig,
-    appManifest
-  };
-}
-async function createTempModuleAndImport(moduleString, fileName) {
-  const file = resolve(process.cwd(), `${fileName}.mjs`);
-  writeFileSync(file, moduleString);
-  const importedModule = await import(`file:///${file}`);
-  rmSync(file, { force: true });
-  return importedModule;
-}
-async function getAppManifests(apps) {
-  const moduleStringParts = [];
-  const manifestImportVariables = [];
-  for (const packageName of apps) {
-    const manifestImportVariable = `app${apps.indexOf(packageName)}`;
-    manifestImportVariables.push(manifestImportVariable);
-    moduleStringParts.push(`import ${manifestImportVariable} from '${packageName}/manifest';`);
-  }
-  moduleStringParts.push(`export default [${manifestImportVariables.join(", ")}];`);
-  const result = await createTempModuleAndImport(
-    moduleStringParts.join("\n"),
-    "app-manifests"
-  );
-  return result.default;
-}
-// src/distribution/pkg-json.ts
-function getPkgJson() {
-  const packageJson = resolve(process.cwd(), "package.json");
-  const pkgJsonFile = readFileSync(packageJson).toString();
-  return JSON.parse(pkgJsonFile);
-}
-async function getManifests(pkgJson) {
-  if (!pkgJson || !pkgJson.alliance || !pkgJson.alliance.apps) {
-    throw new Error("Alliance apps not defined in package.json.");
-  }
-  const manifestArray = await getAppManifests(pkgJson.alliance.apps);
-  return manifestArray.reduce((acc, curr) => {
-    acc[curr.name] = curr;
-    return acc;
-  }, {});
-}
-// src/distribution/create-public-files.ts
-var PUBLIC_DIR_NAME = "public";
-var MANIFESTS_FILE_NAME = "manifests.json";
-var COOKIE_POLICY_FILE_NAME = "cookie-policy.html";
-var APP_CONFIG_SCHEMA_FILE_NAME = "config.schema.json";
-var APP_MANIFEST_SCHEMA_FILE_NAME = "manifest.schema.json";
-async function createPublicDistributionFiles() {
-  const pkgJson = getPkgJson();
-  const manifests = await getManifests(pkgJson);
-  const schemas = getJsonSchemas();
-  for (const appName in manifests) {
-    const manifest = manifests[appName];
-    const validationResult = validate(manifest, schemas.appManifest);
-    if (validationResult.errors.length) {
-      const errors2 = validationResult.errors.map((e) => JSON.stringify(e, null, 2));
-      throw new Error(
-        `Validation of app manifest for app '${appName}' failed with the following errors:
-${errors2.join(
-          "\n"
-        )}`
-      );
-    }
-  }
-  const publicDirPath = resolve(process.cwd(), PUBLIC_DIR_NAME);
-  if (!existsSync(publicDirPath)) {
-    mkdirSync(publicDirPath);
-  }
-  const manifestsFilePath = resolve(publicDirPath, MANIFESTS_FILE_NAME);
-  writeFileSync(manifestsFilePath, JSON.stringify(manifests));
-  const cookiePolicyFilePath = resolve(publicDirPath, COOKIE_POLICY_FILE_NAME);
-  writeFileSync(cookiePolicyFilePath, generateCookiePolicyHtml(manifests));
-  const appConfigSchemaFilePath = resolve(publicDirPath, APP_CONFIG_SCHEMA_FILE_NAME);
-  const appManifestSchemaFilePath = resolve(publicDirPath, APP_MANIFEST_SCHEMA_FILE_NAME);
-  writeFileSync(appConfigSchemaFilePath, JSON.stringify(schemas.appConfig));
-  writeFileSync(appManifestSchemaFilePath, JSON.stringify(schemas.appManifest));
-}
-function slugify(value, replacement = "-") {
-  return _slugify(value, { strict: true, replacement, lower: true });
-}
-function logFn(instance) {
-  return (level) => {
-    return (msg, data) => instance[level]({ ...data, msg });
-  };
-}
-function createLogger(config) {
-  const instance = pino({
-    level: config.SERVICE_LOG_LEVEL,
-    redact: [
-      "authorization",
-      "headers.authorization",
-      "req.headers.authorization",
-      "res.headers.authorization",
-      "req.headers.cookie",
-      'res.headers["set-cookie"]'
-    ]
-  });
-  return {
-    fatal: logFn(instance)("fatal"),
-    error: logFn(instance)("error"),
-    warn: logFn(instance)("warn"),
-    info: logFn(instance)("info"),
-    debug: logFn(instance)("debug"),
-    trace: logFn(instance)("trace"),
-    silent: logFn(instance)("silent"),
-    child: () => createLogger(config),
-    level: config.SERVICE_LOG_LEVEL
-  };
-}
-function requestLoggerHandler(logger) {
-  return (req, _, next) => {
-    logger.trace("received request", {
-      url: req.url,
-      params: req.params,
-      query: req.query,
-      body: req.body
-    });
-    return next();
-  };
-}
-// src/errors/codes.ts
-var GatewayErrorCode = /* @__PURE__ */ ((GatewayErrorCode2) => {
-  GatewayErrorCode2[GatewayErrorCode2["NoObjectId"] = 10001] = "NoObjectId";
-  GatewayErrorCode2[GatewayErrorCode2["NoTargetAppHeader"] = 10002] = "NoTargetAppHeader";
-  GatewayErrorCode2[GatewayErrorCode2["NoTargetWorkspaceHeader"] = 10003] = "NoTargetWorkspaceHeader";
-  GatewayErrorCode2[GatewayErrorCode2["NoManifestsInCache"] = 10004] = "NoManifestsInCache";
-  GatewayErrorCode2[GatewayErrorCode2["NoDevSessionInCache"] = 10005] = "NoDevSessionInCache";
-  GatewayErrorCode2[GatewayErrorCode2["NoManifest"] = 10006] = "NoManifest";
-  GatewayErrorCode2[GatewayErrorCode2["NoRequestContext"] = 10007] = "NoRequestContext";
-  GatewayErrorCode2[GatewayErrorCode2["NoUserInRequestContext"] = 10008] = "NoUserInRequestContext";
-  GatewayErrorCode2[GatewayErrorCode2["NoAppInRequestContext"] = 10009] = "NoAppInRequestContext";
-  GatewayErrorCode2[GatewayErrorCode2["NoWorkspaceInRequestContext"] = 10010] = "NoWorkspaceInRequestContext";
-  GatewayErrorCode2[GatewayErrorCode2["NoUserPermissionsInRequestContext"] = 10012] = "NoUserPermissionsInRequestContext";
-  GatewayErrorCode2[GatewayErrorCode2["WorkspacePermissionDenied"] = 10013] = "WorkspacePermissionDenied";
-  GatewayErrorCode2[GatewayErrorCode2["NoTargetUrlHeader"] = 10014] = "NoTargetUrlHeader";
-  GatewayErrorCode2[GatewayErrorCode2["NoSessionInRedisCache"] = 10015] = "NoSessionInRedisCache";
-  return GatewayErrorCode2;
-})(GatewayErrorCode || {});
-var DataErrorCode = /* @__PURE__ */ ((DataErrorCode2) => {
-  DataErrorCode2[DataErrorCode2["NoPublicKey"] = 11e3] = "NoPublicKey";
-  DataErrorCode2[DataErrorCode2["NoAuthHeader"] = 11001] = "NoAuthHeader";
-  DataErrorCode2[DataErrorCode2["FailedFileUpload"] = 11002] = "FailedFileUpload";
-  DataErrorCode2[DataErrorCode2["FailedFileDownload"] = 11003] = "FailedFileDownload";
-  return DataErrorCode2;
-})(DataErrorCode || {});
-var errors = {
-  [10001 /* NoObjectId */]: {
-    statusCode: 401,
-    msg: "No object id available on authenticated user."
-  },
-  [10002 /* NoTargetAppHeader */]: {
-    statusCode: 400,
-    msg: `Request missing header '${"alliance-target-app" /* TargetApp */}'.`
-  },
-  [10003 /* NoTargetWorkspaceHeader */]: {
-    statusCode: 400,
-    msg: `Request missing header '${"alliance-target-workspace" /* TargetWorkspace */}'.`
-  },
-  [10014 /* NoTargetUrlHeader */]: {
-    statusCode: 400,
-    msg: `Request missing header '${"alliance-target-url" /* TargetUrl */}'.`
-  },
-  [10004 /* NoManifestsInCache */]: {
-    statusCode: 500,
-    msg: "App manifests missing in cache."
-  },
-  [10005 /* NoDevSessionInCache */]: {
-    statusCode: 500,
-    msg: "No dev session in memory cache."
-  },
-  [10015 /* NoSessionInRedisCache */]: {
-    statusCode: 401,
-    msg: "Could not find user session in Redis server."
-  },
-  [10006 /* NoManifest */]: {
-    statusCode: 500,
-    msg: "Could not find manifest for app '{{appSlug}}'."
-  },
-  [10007 /* NoRequestContext */]: {
-    statusCode: 500,
-    msg: "No request context."
-  },
-  [10008 /* NoUserInRequestContext */]: {
-    statusCode: 500,
-    msg: "No user in request context."
-  },
-  [10009 /* NoAppInRequestContext */]: {
-    statusCode: 500,
-    msg: "No app in request context."
-  },
-  [10010 /* NoWorkspaceInRequestContext */]: {
-    statusCode: 500,
-    msg: "No workspace in request context."
-  },
-  [10012 /* NoUserPermissionsInRequestContext */]: {
-    statusCode: 500,
-    msg: "No user permissions in request context."
-  },
-  [10013 /* WorkspacePermissionDenied */]: {
-    statusCode: 403,
-    msg: "User does not have access to the current workspace."
-  },
-  [11e3 /* NoPublicKey */]: {
-    statusCode: 401,
-    msg: "No public key available to decode JWT."
-  },
-  [11001 /* NoAuthHeader */]: {
-    statusCode: 401,
-    msg: "No authorization header found."
-  },
-  [11002 /* FailedFileUpload */]: {
-    statusCode: 500,
-    msg: "Something went wrong when trying to upload a file to the S3 storage."
-  },
-  [11003 /* FailedFileDownload */]: {
-    statusCode: 500,
-    msg: "Something went wrong when trying to download a file to the S3 storage."
-  },
-  [12e3 /* NoObjectId */]: {
-    statusCode: 401,
-    msg: "No object id found in user claims."
-  }
-};
-// src/errors/errors.ts
-var AllianceError = class extends Error {
-  constructor(errorCode, variables = {}) {
-    const { msg, statusCode } = errors[errorCode];
-    const message = parseTemplates(msg, variables);
-    super(message);
-    this.errorCode = errorCode;
-    this.info = `https://github.com/telia-company/ace-alliance-sdk/wiki/error-codes#${this.errorCode}`;
-    this.message = message;
-    this.statusCode = statusCode;
-  }
-};
-function parseTemplates(message, variables) {
-  return Object.entries(variables).reduce((acc, [key, value]) => {
-    return acc.replaceAll(`{{${key}}}`, value);
-  }, message);
-}
-function requestErrorHandler(logger) {
-  return (err, req, res, _next) => {
-    const error = {
-      cause: err.cause,
-      message: err.message,
-      status: err.status || err.statusCode || err.code,
-      info: err.info
-    };
-    logger.error("error when processing request", {
-      url: req.url,
-      body: req.body,
-      error
-    });
-    return res.status(error.status).json(error);
-  };
-}
-export { AllianceError, AllianceHeaders, DataErrorCode, GatewayErrorCode, createBearerToken, createLogger, createPublicDistributionFiles, createPublicKeys, createSystemUserToken, getCleanPublicKey, getPrivateKey, requestErrorHandler, requestLoggerHandler, slugify, zBooleanEnum, zNonEmptyString, zSharedConfig };
-//# sourceMappingURL=out.js.map
-//# sourceMappingURL=index.js.map
+import{a as E,b as ue,c as ce,d as le}from"./chunk-UNKGNXJ3.js";import"./chunk-26VIM55J.js";import"./chunk-JG7V63GM.js";import pe from"jsonwebtoken";import{createPublicKey as fe}from"node:crypto";var me=E.enum(["true","false"]).transform(e=>e==="true"),y=E.string().min(1),T=E.object({AUTH_COOKIE_NAME:y.default("alliance-auth"),AUTH_COOKIE_SECRET:y.default("zlLZBlk7wt8lypP5lA4D"),DB_ENDPOINT:y,JWT_PRIVATE_KEY:y.default("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"),JWT_PUBLIC_CSP_KEY:E.string().min(1).default("BgIAAACkAABSU0ExAAgAAAEAAQDFBQ9thkQ01wvaRFcDRPpOrbd6hsXHAAiEdjof2NPPY02VZZMTW3MXxYJZkMm4suCbyeqc6FUI2kZ4DzUBHCQY/pQYRk3SiBhCYbvFvMNrxAmRzqk22FLAHedKEnJPgZpU9J6LCrfgw/do/d5YFk2vE/PYWD8rqev+LaegJ2DCwkklOMoaBByPGQj+0BoXZVRx7qLYRdq1IgNk/yHvDu5OkLyt97E/G2l7zdW04i9SiPF+yaEKJ8NEjViowY0tAdNYpLFsezhrLU3ev0rVeUrDEq+8f8uPUaYnAT8t+tmgcgkFi+SzQr2YQmrZ7SMKTuIqJ2CAoTqUmNBC3znOjmqw"),SERVICE_LOG_LEVEL:E.enum(["silent","fatal","error","warn","info","debug","trace"]).default("trace"),SERVICE_PORT:y.transform(Number).default("3000"),REDIS_HOST:y,REDIS_PASSWORD:y.optional()});var K=(u=>(u.TargetUrl="alliance-target-url",u.TargetApp="alliance-target-app",u.TargetWorkspace="alliance-target-workspace",u))(K||{});var Xe=T.pick({JWT_PRIVATE_KEY:!0,JWT_PUBLIC_CSP_KEY:!0});function j({privateKey:e,aud:t,sub:n,name:u,user:c,workspace:m,expiration:g="1h"}){return`Bearer ${pe.sign({iss:"Alliance",aud:t,sub:n,name:u,"https://alliance.teliacompany.net/user_type":c.type,"https://alliance.teliacompany.net/user_email":c.email,"https://alliance.teliacompany.net/user_privileges":c.permissions,"https://alliance.teliacompany.net/workspace":m.slug,"https://alliance.teliacompany.net/workspace_name":m.name,"https://alliance.teliacompany.net/tenant":m.slug,"https://alliance.teliacompany.net/tenant_name":m.name},e,{expiresIn:g,algorithm:"RS256"})}`}function L(e){return`-----BEGIN RSA PRIVATE KEY-----
+`+e.JWT_PRIVATE_KEY+`
+-----END RSA PRIVATE KEY-----`}function ge(e){return j({aud:"system",sub:"system",name:"system",workspace:{slug:"system",name:"system"},user:{type:"system",permissions:[],email:"system"},privateKey:L(e)})}function de(e){let t=L(e),n=fe(t);return{pkcs:n.export({type:"pkcs1",format:"pem"}).toString().trim(),spki:n.export({type:"spki",format:"pem"}).toString().trim(),csp:e.JWT_PUBLIC_CSP_KEY}}function ye(e,t){return t[e].replace("-----BEGIN RSA PUBLIC KEY-----","").replace("-----END RSA PUBLIC KEY-----","").replace("-----BEGIN PUBLIC KEY-----","").replace("-----END PUBLIC KEY-----","").trim().replaceAll(`
+`,"")}import{homedir as Oe,tmpdir as ze}from"node:os";import{resolve as Fe}from"node:path";var he=/"(?:_|\\u0{2}5[Ff]){2}(?:p|\\u0{2}70)(?:r|\\u0{2}72)(?:o|\\u0{2}6[Ff])(?:t|\\u0{2}74)(?:o|\\u0{2}6[Ff])(?:_|\\u0{2}5[Ff]){2}"\s*:/,Ie=/"(?:c|\\u0063)(?:o|\\u006[Ff])(?:n|\\u006[Ee])(?:s|\\u0073)(?:t|\\u0074)(?:r|\\u0072)(?:u|\\u0075)(?:c|\\u0063)(?:t|\\u0074)(?:o|\\u006[Ff])(?:r|\\u0072)"\s*:/,ve=/^\s*["[{]|^\s*-?\d{1,16}(\.\d{1,17})?([Ee][+-]?\d+)?\s*$/;function we(e,t){if(e==="__proto__"||e==="constructor"&&t&&typeof t=="object"&&"prototype"in t){Ee(e);return}return t}function Ee(e){console.warn(`[destr] Dropping "${e}" key to prevent prototype pollution.`)}function C(e,t={}){if(typeof e!="string")return e;let n=e.trim();if(e[0]==='"'&&e.at(-1)==='"'&&!e.includes("\\"))return n.slice(1,-1);if(n.length<=9){let u=n.toLowerCase();if(u==="true")return!0;if(u==="false")return!1;if(u==="undefined")return;if(u==="null")return null;if(u==="nan")return Number.NaN;if(u==="infinity")return Number.POSITIVE_INFINITY;if(u==="-infinity")return Number.NEGATIVE_INFINITY}if(!ve.test(e)){if(t.strict)throw new SyntaxError("[destr] Invalid JSON");return e}try{if(he.test(e)||Ie.test(e)){if(t.strict)throw new Error("[destr] Possible prototype pollution");return JSON.parse(e,we)}return JSON.parse(e)}catch(u){if(t.strict)throw u;return e}}function xe(e){return!e||typeof e.then!="function"?Promise.resolve(e):e}function p(e,...t){try{return xe(e(...t))}catch(n){return Promise.reject(n)}}function Ce(e){let t=typeof e;return e===null||t!=="object"&&t!=="function"}function Ae(e){let t=Object.getPrototypeOf(e);return!t||t.isPrototypeOf(Object)}function A(e){if(Ce(e))return String(e);if(Ae(e)||Array.isArray(e))return JSON.stringify(e);if(typeof e.toJSON=="function")return A(e.toJSON());throw new Error("[unstorage] Cannot stringify value!")}function M(){if(typeof Buffer===void 0)throw new TypeError("[unstorage] Buffer is not supported!")}var b="base64:";function V(e){if(typeof e=="string")return e;M();let t=Buffer.from(e).toString("base64");return b+t}function Y(e){return typeof e!="string"||!e.startsWith(b)?e:(M(),Buffer.from(e.slice(b.length),"base64"))}var Se=["hasItem","getItem","getItemRaw","setItem","setItemRaw","removeItem","getMeta","setMeta","removeMeta","getKeys","clear","mount","unmount"];function B(e,t){if(t=x(t),!t)return e;let n={...e};for(let u of Se)n[u]=(c="",...m)=>e[u](t+c,...m);return n.getKeys=(u="",...c)=>e.getKeys(t+u,...c).then(m=>m.map(g=>g.slice(t.length))),n}function f(e){return e?e.split("?")[0].replace(/[/\\]/g,":").replace(/:+/g,":").replace(/^:|:$/g,""):""}function D(...e){return f(e.join(":"))}function x(e){return e=f(e),e?e+":":""}var Re="memory",Ne=()=>{let e=new Map;return{name:Re,options:{},hasItem(t){return e.has(t)},getItem(t){return e.get(t)??null},getItemRaw(t){return e.get(t)??null},setItem(t,n){e.set(t,n)},setItemRaw(t,n){e.set(t,n)},removeItem(t){e.delete(t)},getKeys(){return Array.from(e.keys())},clear(){e.clear()},dispose(){e.clear()}}};function Q(e={}){let t={mounts:{"":e.driver||Ne()},mountpoints:[""],watching:!1,watchListeners:[],unwatch:{}},n=r=>{for(let o of t.mountpoints)if(r.startsWith(o))return{base:o,relativeKey:r.slice(o.length),driver:t.mounts[o]};return{base:"",relativeKey:r,driver:t.mounts[""]}},u=(r,o)=>t.mountpoints.filter(s=>s.startsWith(r)||o&&r.startsWith(s)).map(s=>({relativeBase:r.length>s.length?r.slice(s.length):void 0,mountpoint:s,driver:t.mounts[s]})),c=(r,o)=>{if(t.watching){o=f(o);for(let s of t.watchListeners)s(r,o)}},m=async()=>{if(!t.watching){t.watching=!0;for(let r in t.mounts)t.unwatch[r]=await J(t.mounts[r],c,r)}},g=async()=>{if(t.watching){for(let r in t.unwatch)await t.unwatch[r]();t.unwatch={},t.watching=!1}},h=(r,o,s)=>{let a=new Map,i=l=>{let d=a.get(l.base);return d||(d={driver:l.driver,base:l.base,items:[]},a.set(l.base,d)),d};for(let l of r){let d=typeof l=="string",R=f(d?l:l.key),I=d?void 0:l.value,P=d||!l.options?o:{...o,...l.options},W=n(R);i(W).items.push({key:R,value:I,relativeKey:W.relativeKey,options:P})}return Promise.all([...a.values()].map(l=>s(l))).then(l=>l.flat())},S={hasItem(r,o={}){r=f(r);let{relativeKey:s,driver:a}=n(r);return p(a.hasItem,s,o)},getItem(r,o={}){r=f(r);let{relativeKey:s,driver:a}=n(r);return p(a.getItem,s,o).then(i=>C(i))},getItems(r,o){return h(r,o,s=>s.driver.getItems?p(s.driver.getItems,s.items.map(a=>({key:a.relativeKey,options:a.options})),o).then(a=>a.map(i=>({key:D(s.base,i.key),value:C(i.value)}))):Promise.all(s.items.map(a=>p(s.driver.getItem,a.relativeKey,a.options).then(i=>({key:a.key,value:C(i)})))))},getItemRaw(r,o={}){r=f(r);let{relativeKey:s,driver:a}=n(r);return a.getItemRaw?p(a.getItemRaw,s,o):p(a.getItem,s,o).then(i=>Y(i))},async setItem(r,o,s={}){if(o===void 0)return S.removeItem(r);r=f(r);let{relativeKey:a,driver:i}=n(r);i.setItem&&(await p(i.setItem,a,A(o),s),i.watch||c("update",r))},async setItems(r,o){await h(r,o,async s=>{s.driver.setItems&&await p(s.driver.setItems,s.items.map(a=>({key:a.relativeKey,value:A(a.value),options:a.options})),o),s.driver.setItem&&await Promise.all(s.items.map(a=>p(s.driver.setItem,a.relativeKey,A(a.value),a.options)))})},async setItemRaw(r,o,s={}){if(o===void 0)return S.removeItem(r,s);r=f(r);let{relativeKey:a,driver:i}=n(r);if(i.setItemRaw)await p(i.setItemRaw,a,o,s);else if(i.setItem)await p(i.setItem,a,V(o),s);else return;i.watch||c("update",r)},async removeItem(r,o={}){typeof o=="boolean"&&(o={removeMeta:o}),r=f(r);let{relativeKey:s,driver:a}=n(r);a.removeItem&&(await p(a.removeItem,s,o),(o.removeMeta||o.removeMata)&&await p(a.removeItem,s+"$",o),a.watch||c("remove",r))},async getMeta(r,o={}){typeof o=="boolean"&&(o={nativeOnly:o}),r=f(r);let{relativeKey:s,driver:a}=n(r),i=Object.create(null);if(a.getMeta&&Object.assign(i,await p(a.getMeta,s,o)),!o.nativeOnly){let l=await p(a.getItem,s+"$",o).then(d=>C(d));l&&typeof l=="object"&&(typeof l.atime=="string"&&(l.atime=new Date(l.atime)),typeof l.mtime=="string"&&(l.mtime=new Date(l.mtime)),Object.assign(i,l))}return i},setMeta(r,o,s={}){return this.setItem(r+"$",o,s)},removeMeta(r,o={}){return this.removeItem(r+"$",o)},async getKeys(r,o={}){r=x(r);let s=u(r,!0),a=[],i=[];for(let l of s){let R=(await p(l.driver.getKeys,l.relativeBase,o)).map(I=>l.mountpoint+f(I)).filter(I=>!a.some(P=>I.startsWith(P)));i.push(...R),a=[l.mountpoint,...a.filter(I=>!I.startsWith(l.mountpoint))]}return r?i.filter(l=>l.startsWith(r)&&!l.endsWith("$")):i.filter(l=>!l.endsWith("$"))},async clear(r,o={}){r=x(r),await Promise.all(u(r,!1).map(async s=>{if(s.driver.clear)return p(s.driver.clear,s.relativeBase,o);if(s.driver.removeItem){let a=await s.driver.getKeys(s.relativeBase||"",o);return Promise.all(a.map(i=>s.driver.removeItem(i,o)))}}))},async dispose(){await Promise.all(Object.values(t.mounts).map(r=>H(r)))},async watch(r){return await m(),t.watchListeners.push(r),async()=>{t.watchListeners=t.watchListeners.filter(o=>o!==r),t.watchListeners.length===0&&await g()}},async unwatch(){t.watchListeners=[],await g()},mount(r,o){if(r=x(r),r&&t.mounts[r])throw new Error(`already mounted at ${r}`);return r&&(t.mountpoints.push(r),t.mountpoints.sort((s,a)=>a.length-s.length)),t.mounts[r]=o,t.watching&&Promise.resolve(J(o,c,r)).then(s=>{t.unwatch[r]=s}).catch(console.error),S},async unmount(r,o=!0){r=x(r),!(!r||!t.mounts[r])&&(t.watching&&r in t.unwatch&&(t.unwatch[r](),delete t.unwatch[r]),o&&await H(t.mounts[r]),t.mountpoints=t.mountpoints.filter(s=>s!==r),delete t.mounts[r])},getMount(r=""){r=f(r)+":";let o=n(r);return{driver:o.driver,base:o.base}},getMounts(r="",o={}){return r=f(r),u(r,o.parents).map(a=>({driver:a.driver,base:a.mountpoint}))}};return S}function J(e,t,n){return e.watch?e.watch((u,c)=>t(u,n+c)):()=>{}}async function H(e){typeof e.dispose=="function"&&await p(e.dispose)}import{existsSync as Te,promises as Ke}from"fs";import{resolve as Le,join as be}from"path";function N(e,t,n){return new Error(`[unstorage] [${e}] ${t}`,n)}function G(e,t){return Array.isArray(t)?N(e,`Missing some of the required options ${t.map(n=>"`"+n+"`").join(", ")}`):N(e,`Missing required option \`${t}\`.`)}import{existsSync as Pe,promises as v}from"fs";import{resolve as X,dirname as $}from"path";function O(e){return e.code==="ENOENT"||e.code==="EISDIR"?null:e}function Z(e){return e.code==="EEXIST"?null:e}async function z(e,t,n){return await re($(e)),v.writeFile(e,t,n)}function F(e,t){return v.readFile(e,t).catch(O)}function ee(e){return v.unlink(e).catch(O)}function te(e){return v.readdir(e,{withFileTypes:!0}).catch(O).then(t=>t||[])}async function re(e){Pe(e)||(await re($(e)).catch(Z),await v.mkdir(e).catch(Z))}async function q(e,t){if(t&&t(e))return[];let n=await te(e),u=[];return await Promise.all(n.map(async c=>{let m=X(e,c.name);if(c.isDirectory()){let g=await q(m,t);u.push(...g.map(h=>c.name+"/"+h))}else t&&t(c.name)||u.push(c.name)})),u}async function _(e){let t=await te(e);await Promise.all(t.map(n=>{let u=X(e,n.name);return n.isDirectory()?_(u).then(()=>v.rmdir(u)):v.unlink(u)}))}var Be=/\.\.\:|\.\.$/,k="fs-lite",ne=(e={})=>{if(!e.base)throw G(k,"base");e.base=Le(e.base);let t=n=>{if(Be.test(n))throw N(k,`Invalid key: ${JSON.stringify(n)}. It should not contain .. segments`);return be(e.base,n.replace(/:/g,"/"))};return{name:k,options:e,hasItem(n){return Te(t(n))},getItem(n){return F(t(n),"utf8")},getItemRaw(n){return F(t(n))},async getMeta(n){let{atime:u,mtime:c,size:m,birthtime:g,ctime:h}=await Ke.stat(t(n)).catch(()=>({}));return{atime:u,mtime:c,size:m,birthtime:g,ctime:h}},setItem(n,u){if(!e.readOnly)return z(t(n),u,"utf8")},setItemRaw(n,u){if(!e.readOnly)return z(t(n),u)},removeItem(n){if(!e.readOnly)return ee(t(n))},getKeys(){return q(t("."),e.ignore)},async clear(){e.readOnly||e.noClear||await _(t("."))}}};function qe({prefix:e,logger:t}){return B(Q({driver:ne({base:_e({logger:t})})}),e)}function _e({logger:e}){let t="";try{t=Oe()}catch(n){e.error("could not use homedir, trying tmpdir",{error:n?.message})}if(!t)try{t=ze()}catch(n){e.error("could not use tmpdir, trying process.cwd",{error:n?.message})}if(!t)try{t=process.cwd()}catch(n){e.error("could not use process.cwd, exiting",{error:n?.message}),process.exit(1)}return Fe(t,".alliance")}import ke from"pino";function w(e){return t=>(n,u)=>e[t]({...u,msg:n})}function oe(e){let t=ke({level:e.SERVICE_LOG_LEVEL,redact:["authorization","headers.authorization","req.headers.authorization","res.headers.authorization","req.headers.cookie",'res.headers["set-cookie"]']});return{fatal:w(t)("fatal"),error:w(t)("error"),warn:w(t)("warn"),info:w(t)("info"),debug:w(t)("debug"),trace:w(t)("trace"),silent:w(t)("silent"),child:()=>oe(e),level:e.SERVICE_LOG_LEVEL}}function Ue(e){return(t,n,u)=>(e.trace("received request",{url:t.url,params:t.params,query:t.query,body:t.body}),u())}var se=(i=>(i[i.NoObjectId=10001]="NoObjectId",i[i.NoTargetAppHeader=10002]="NoTargetAppHeader",i[i.NoTargetWorkspaceHeader=10003]="NoTargetWorkspaceHeader",i[i.NoManifest=10006]="NoManifest",i[i.NoRequestContext=10007]="NoRequestContext",i[i.NoUserInRequestContext=10008]="NoUserInRequestContext",i[i.NoAppInRequestContext=10009]="NoAppInRequestContext",i[i.NoWorkspaceInRequestContext=10010]="NoWorkspaceInRequestContext",i[i.NoUserPermissionsInRequestContext=10012]="NoUserPermissionsInRequestContext",i[i.WorkspacePermissionDenied=10013]="WorkspacePermissionDenied",i[i.NoTargetUrlHeader=10014]="NoTargetUrlHeader",i[i.NoSessionInRedisCache=10015]="NoSessionInRedisCache",i[i.ProhibitedTargetDomain=10016]="ProhibitedTargetDomain",i))(se||{}),ie=(c=>(c[c.NoPublicKey=11e3]="NoPublicKey",c[c.NoAuthHeader=11001]="NoAuthHeader",c[c.FailedFileUpload=11002]="FailedFileUpload",c[c.FailedFileDownload=11003]="FailedFileDownload",c))(ie||{});var ae={10001:{statusCode:401,msg:"No object id available on authenticated user."},10002:{statusCode:400,msg:"Request missing header 'alliance-target-app'."},10003:{statusCode:400,msg:"Request missing header 'alliance-target-workspace'."},10014:{statusCode:400,msg:"Request missing header 'alliance-target-url'."},10015:{statusCode:401,msg:"Could not find user session in Redis server."},10006:{statusCode:500,msg:"Could not find manifest for app '{{appSlug}}'."},10007:{statusCode:500,msg:"No request context."},10008:{statusCode:500,msg:"No user in request context."},10009:{statusCode:500,msg:"No app in request context."},10010:{statusCode:500,msg:"No workspace in request context."},10012:{statusCode:500,msg:"No user permissions in request context."},10013:{statusCode:403,msg:"User does not have access to the current workspace."},10016:{statusCode:403,msg:"Request prohibited - REQUEST_DOMAIN_WHITE_LIST does not contain '{{domain}}'."},11e3:{statusCode:401,msg:"No public key available to decode JWT."},11001:{statusCode:401,msg:"No authorization header found."},11002:{statusCode:500,msg:"Something went wrong when trying to upload a file to the S3 storage."},11003:{statusCode:500,msg:"Something went wrong when trying to download a file to the S3 storage."},12e3:{statusCode:401,msg:"No object id found in user claims."}};var U=class extends Error{constructor(n,u={}){let{msg:c,statusCode:m}=ae[n],g=We(c,u);super(g);this.errorCode=n;this.message=g,this.statusCode=m,this.info=`https://github.com/telia-company/ace-alliance-sdk/wiki/error-codes#${this.errorCode}`}info;statusCode};function We(e,t){return Object.entries(t).reduce((n,[u,c])=>n.replaceAll(`{{${u}}}`,c),e)}function je(e){return(t,n,u,c)=>{let m={cause:t.cause,message:t.message,status:t.status||t.statusCode||t.code,info:t.info};return e.error("error when processing request",{url:n.url,body:n.body,error:m}),u.status(m.status).json(m)}}export{U as AllianceError,K as AllianceHeaders,ie as DataErrorCode,se as GatewayErrorCode,j as createBearerToken,qe as createFileStorage,ce as createIndexHtml,oe as createLogger,de as createPublicKeys,ge as createSystemUserToken,le as getAppManifests,ye as getCleanPublicKey,L as getPrivateKey,je as requestErrorHandler,Ue as requestLoggerHandler,ue as slugify,me as zBooleanEnum,y as zNonEmptyString,T as zSharedConfig};