npm - @thefirstspine/certificate-authority - Versions diffs - 1.0.11 → 1.0.13 - Mend

@thefirstspine/certificate-authority 1.0.11 → 1.0.13

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -2,12 +2,6 @@
 Self-signed certificate authority to automate & check secure layer for protected endpoints.
-## Install
-```bash
-npm i @thefirstspine/certificate-authority
-```
 ## Philosophy
 Here in TFS we strongly believe that services calls must be verified through private / public key pairs to ensure that the calls are from the good service: IPs are not sufficient for distributed service and DNS can be compromised.
@@ -25,7 +19,15 @@ INCOMING REQUEST                               REQUEST GUARD
 INCOMING REQUEST                               REQUEST GUARD                         PROTECTED RESOURCE
 ```
-## Configuration
+## Service documentation
+### Installation
+```bash
+npm i @thefirstspine/certificate-authority
+```
+### Configuration
 As part of TFS Platform, the validation service will use environment variable.
@@ -33,8 +35,6 @@ As part of TFS Platform, the validation service will use environment variable.
 |-|-|
 | PRIVATE_KEY | The pivate key to use to validate incoming requests |
-## Service documentation
 ### ValidatorService
 Global service to validate incoming requests. This service will use the environment variable `PRIVATE_KEY` to fetch the private key.
@@ -51,13 +51,9 @@ Challenge the certificate against the private key.
 ## CLI documentation
-In order to use the CLI, the dependency should be installed globally.
-### tfs-ca-generate
 Generates files to be validated in the services.
-Example: `-m=pair -k=private.key -c=public.cert`
+Example: `npx @thefirstspine/certificate-authority -m=pair -k=private.key -c=public.cert`
 **Options:**
@@ -84,18 +80,3 @@ npm run lint
 ```bash
 npm publish
 ```
-# How it is used in the TFS Platform?
-In TFS we use GCP buckets along with Secret Manager to store these generated certificates:
-```bash
-for SERVICE in arena bots
-do
-  tfs-ca-generate --mode=pair --key=private.key --certificate=public.cert --force
-  gsutil cp public.cert gs://bucket-artefacts-eu/$SERVICE.cert
-  gcloud secrets versions add "secret-$SERVICE-private-key-eu" --data-file=private.key
-done
-```
-These generated pairs are copied & loaded during the build to ensure that there is no human access to these credentials. Moreover, all the credentials are updated in the Appengines every day at 2:00 AM UTC and stored in environement variables.

package/lib/tsconfig.tsbuildinfo CHANGED Viewed

	@@ -1 +1 @@
1	- {"root":["../src/index.ts","../src/commands/generate.command.ts","../src/commands/generate.ts","../src/service/validator.service.ts"],"version":"5.8.3"}
1	+ {"root":["../src/index.ts","../src/commands/generate.command.ts","../src/commands/generate.ts","../src/service/validator.service.ts"],"version":"5.9.2"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@thefirstspine/certificate-authority",
-  "version": "1.0.11",
+  "version": "1.0.13",
   "description": "Self-signed certificate authority to automate & check secure layer for protected endpoints.",
   "main": "./lib/index.js",
   "types": "./lib/index.d.ts",
@@ -11,12 +11,12 @@
     "minimist": "^1.2.8"
   },
   "devDependencies": {
-    "@types/node": "^22.15.19",
+    "@types/node": "^24.5.2",
     "eslint": "^9.9.1",
-    "jest": "^29.7.0",
+    "jest": "^30.1.3",
     "rimraf": "^6.0.1",
-    "ts-jest": "^29.3.4",
-    "typescript": "^5.8.3"
+    "ts-jest": "^29.4.4",
+    "typescript": "^5.9.2"
   },
   "scripts": {
     "build": "rimraf ./lib && tsc -b",