@things-factory/shell 9.0.20 → 9.0.24

package/dist-server/typeorm/encrypt-json-transform.d.ts

@@ -0,0 +1,7 @@
+import { ValueTransformer } from 'typeorm';
+/**
+ * ValueTransformer object for encrypting and decrypting JSON objects.
+ * Used in TypeORM entities to encrypt JSON field values before storing them in the database
+ * and decrypt values when retrieving them from the database.
+ */
+export declare const encryptJsonTransformer: ValueTransformer;

package/dist-server/typeorm/encrypt-json-transform.js

@@ -0,0 +1,95 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.encryptJsonTransformer = void 0;
+const crypto_1 = require("crypto");
+const get_data_encryption_key_js_1 = require("./get-data-encryption-key.js");
+const ALGORITHM = 'aes-256-cbc';
+const KEY_LENGTH = 32;
+const IV_LENGTH = 16;
+/**
+ * ValueTransformer object for encrypting and decrypting JSON objects.
+ * Used in TypeORM entities to encrypt JSON field values before storing them in the database
+ * and decrypt values when retrieving them from the database.
+ */
+exports.encryptJsonTransformer = {
+    /**
+     * Encrypts the JSON object before storing it in the database.
+     * @param {any} entityValue - JSON object to encrypt
+     * @returns {string} - Encrypted string
+     */
+    to: (entityValue) => encryptJson(entityValue),
+    /**
+     * Decrypts the encrypted JSON string when retrieving it from the database.
+     * @param {string} databaseValue - Encrypted JSON string
+     * @returns {any} - Decrypted JSON object
+     */
+    from: (databaseValue) => decryptJson(databaseValue)
+};
+/**
+ * Encrypts the given JSON object using the AES-256-CBC algorithm.
+ * @param {any} jsonObj - JSON object to encrypt
+ * @returns {string} - Encrypted string
+ */
+function encryptJson(jsonObj) {
+    if (!jsonObj) {
+        return null;
+    }
+    try {
+        // JSON 객체를 문자열로 변환
+        const jsonString = JSON.stringify(jsonObj);
+        const iv = (0, crypto_1.randomBytes)(IV_LENGTH);
+        const cipher = (0, crypto_1.createCipheriv)(ALGORITHM, get_data_encryption_key_js_1.dataEncryptionKey, iv);
+        const encrypted = Buffer.concat([cipher.update(jsonString, 'utf8'), cipher.final()]);
+        return `${iv.toString('hex')}:${encrypted.toString('hex')}`;
+    }
+    catch (err) {
+        console.error('Failed to encrypt JSON object:', err);
+        return null;
+    }
+}
+/**
+ * Decrypts the given encrypted JSON string.
+ * @param {string} text - Encrypted JSON string to decrypt
+ * @returns {any} - Decrypted JSON object
+ */
+function decryptJson(text) {
+    if (!text) {
+        return null;
+    }
+    try {
+        // 암호화된 데이터인지 확인 (iv:encrypted 형식)
+        if (!text.includes(':')) {
+            // 암호화되지 않은 기존 데이터인 경우 JSON 파싱 시도
+            try {
+                const parsedData = JSON.parse(text);
+                console.warn('Found unencrypted data in database. This data should be encrypted for security.');
+                return parsedData;
+            }
+            catch (parseErr) {
+                // JSON 파싱도 실패하면 원본 문자열 반환
+                console.warn('Found unencrypted non-JSON data in database. This data should be encrypted for security.');
+                return text;
+            }
+        }
+        const parts = text.split(':');
+        const iv = Buffer.from(parts.shift(), 'hex');
+        const encryptedText = Buffer.from(parts.join(':'), 'hex');
+        const decipher = (0, crypto_1.createDecipheriv)(ALGORITHM, get_data_encryption_key_js_1.dataEncryptionKey, iv);
+        const decryptedString = Buffer.concat([decipher.update(encryptedText), decipher.final()]).toString('utf8');
+        // JSON 문자열을 객체로 파싱
+        return JSON.parse(decryptedString);
+    }
+    catch (err) {
+        // 복호화 실패 시 원본 데이터 반환 시도
+        try {
+            const parsedData = JSON.parse(text);
+            console.warn('Failed to decrypt data, but found valid JSON. Data may be unencrypted or corrupted.');
+            return parsedData;
+        }
+        catch (parseErr) {
+            console.warn('Failed to decrypt data and not valid JSON. Returning original text.');
+            return text;
+        }
+    }
+}
+//# sourceMappingURL=encrypt-json-transform.js.map

package/dist-server/typeorm/encrypt-json-transform.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encrypt-json-transform.js","sourceRoot":"","sources":["../../server/typeorm/encrypt-json-transform.ts"],"names":[],"mappings":";;;AACA,mCAAsE;AAEtE,6EAAgE;AAEhE,MAAM,SAAS,GAAG,aAAa,CAAA;AAC/B,MAAM,UAAU,GAAG,EAAE,CAAA;AACrB,MAAM,SAAS,GAAG,EAAE,CAAA;AAEpB;;;;GAIG;AACU,QAAA,sBAAsB,GAAqB;IACtD;;;;OAIG;IACH,EAAE,EAAE,CAAC,WAAgB,EAAE,EAAE,CAAC,WAAW,CAAC,WAAW,CAAC;IAElD;;;;OAIG;IACH,IAAI,EAAE,CAAC,aAAqB,EAAE,EAAE,CAAC,WAAW,CAAC,aAAa,CAAC;CAC5D,CAAA;AAED;;;;GAIG;AACH,SAAS,WAAW,CAAC,OAAY;IAC/B,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,IAAI,CAAA;IACb,CAAC;IAED,IAAI,CAAC;QACH,mBAAmB;QACnB,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAA;QAE1C,MAAM,EAAE,GAAG,IAAA,oBAAW,EAAC,SAAS,CAAC,CAAA;QACjC,MAAM,MAAM,GAAG,IAAA,uBAAc,EAAC,SAAS,EAAE,8CAAiB,EAAE,EAAE,CAAC,CAAA;QAC/D,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAA;QAEpF,OAAO,GAAG,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAA;IAC7D,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,gCAAgC,EAAE,GAAG,CAAC,CAAA;QACpD,OAAO,IAAI,CAAA;IACb,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,SAAS,WAAW,CAAC,IAAY;IAC/B,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,IAAI,CAAA;IACb,CAAC;IAED,IAAI,CAAC;QACH,kCAAkC;QAClC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,iCAAiC;YACjC,IAAI,CAAC;gBACH,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;gBACnC,OAAO,CAAC,IAAI,CAAC,iFAAiF,CAAC,CAAA;gBAC/F,OAAO,UAAU,CAAA;YACnB,CAAC;YAAC,OAAO,QAAQ,EAAE,CAAC;gBAClB,0BAA0B;gBAC1B,OAAO,CAAC,IAAI,CAAC,0FAA0F,CAAC,CAAA;gBACxG,OAAO,IAAI,CAAA;YACb,CAAC;QACH,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QAC7B,MAAM,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,KAAK,CAAC,CAAA;QAC5C,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,KAAK,CAAC,CAAA;QACzD,MAAM,QAAQ,GAAG,IAAA,yBAAgB,EAAC,SAAS,EAAE,8CAAiB,EAAE,EAAE,CAAC,CAAA;QAEnE,MAAM,eAAe,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,EAAE,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAA;QAE1G,mBAAmB;QACnB,OAAO,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,CAAA;IACpC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,wBAAwB;QACxB,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;YACnC,OAAO,CAAC,IAAI,CAAC,qFAAqF,CAAC,CAAA;YACnG,OAAO,UAAU,CAAA;QACnB,CAAC;QAAC,OAAO,QAAQ,EAAE,CAAC;YAClB,OAAO,CAAC,IAAI,CAAC,qEAAqE,CAAC,CAAA;YACnF,OAAO,IAAI,CAAA;QACb,CAAC;IACH,CAAC;AACH,CAAC","sourcesContent":["import { ValueTransformer } from 'typeorm'\nimport { createCipheriv, createDecipheriv, randomBytes } from 'crypto'\n\nimport { dataEncryptionKey } from './get-data-encryption-key.js'\n\nconst ALGORITHM = 'aes-256-cbc'\nconst KEY_LENGTH = 32\nconst IV_LENGTH = 16\n\n/**\n * ValueTransformer object for encrypting and decrypting JSON objects.\n * Used in TypeORM entities to encrypt JSON field values before storing them in the database\n * and decrypt values when retrieving them from the database.\n */\nexport const encryptJsonTransformer: ValueTransformer = {\n  /**\n   * Encrypts the JSON object before storing it in the database.\n   * @param {any} entityValue - JSON object to encrypt\n   * @returns {string} - Encrypted string\n   */\n  to: (entityValue: any) => encryptJson(entityValue),\n\n  /**\n   * Decrypts the encrypted JSON string when retrieving it from the database.\n   * @param {string} databaseValue - Encrypted JSON string\n   * @returns {any} - Decrypted JSON object\n   */\n  from: (databaseValue: string) => decryptJson(databaseValue)\n}\n\n/**\n * Encrypts the given JSON object using the AES-256-CBC algorithm.\n * @param {any} jsonObj - JSON object to encrypt\n * @returns {string} - Encrypted string\n */\nfunction encryptJson(jsonObj: any): string {\n  if (!jsonObj) {\n    return null\n  }\n\n  try {\n    // JSON 객체를 문자열로 변환\n    const jsonString = JSON.stringify(jsonObj)\n\n    const iv = randomBytes(IV_LENGTH)\n    const cipher = createCipheriv(ALGORITHM, dataEncryptionKey, iv)\n    const encrypted = Buffer.concat([cipher.update(jsonString, 'utf8'), cipher.final()])\n\n    return `${iv.toString('hex')}:${encrypted.toString('hex')}`\n  } catch (err) {\n    console.error('Failed to encrypt JSON object:', err)\n    return null\n  }\n}\n\n/**\n * Decrypts the given encrypted JSON string.\n * @param {string} text - Encrypted JSON string to decrypt\n * @returns {any} - Decrypted JSON object\n */\nfunction decryptJson(text: string): any {\n  if (!text) {\n    return null\n  }\n\n  try {\n    // 암호화된 데이터인지 확인 (iv:encrypted 형식)\n    if (!text.includes(':')) {\n      // 암호화되지 않은 기존 데이터인 경우 JSON 파싱 시도\n      try {\n        const parsedData = JSON.parse(text)\n        console.warn('Found unencrypted data in database. This data should be encrypted for security.')\n        return parsedData\n      } catch (parseErr) {\n        // JSON 파싱도 실패하면 원본 문자열 반환\n        console.warn('Found unencrypted non-JSON data in database. This data should be encrypted for security.')\n        return text\n      }\n    }\n\n    const parts = text.split(':')\n    const iv = Buffer.from(parts.shift(), 'hex')\n    const encryptedText = Buffer.from(parts.join(':'), 'hex')\n    const decipher = createDecipheriv(ALGORITHM, dataEncryptionKey, iv)\n\n    const decryptedString = Buffer.concat([decipher.update(encryptedText), decipher.final()]).toString('utf8')\n\n    // JSON 문자열을 객체로 파싱\n    return JSON.parse(decryptedString)\n  } catch (err) {\n    // 복호화 실패 시 원본 데이터 반환 시도\n    try {\n      const parsedData = JSON.parse(text)\n      console.warn('Failed to decrypt data, but found valid JSON. Data may be unencrypted or corrupted.')\n      return parsedData\n    } catch (parseErr) {\n      console.warn('Failed to decrypt data and not valid JSON. Returning original text.')\n      return text\n    }\n  }\n}\n"]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@things-factory/shell",
-  "version": "9.0.20",
+  "version": "9.0.24",
   "description": "Core module for framework",
   "bin": {
     "things-factory": "bin/things-factory",
@@ -129,5 +129,5 @@
     "pg": "^8.7.3",
     "sqlite3": "^5.0.8"
   },
-  "gitHead": "d66d7047d01d82c6c676f8f02ecf1233fe55eaab"
+  "gitHead": "5b0961255631f7b6bb0c83e66d3d8021e15658bd"
 }

package/translations/en.json

@@ -23,6 +23,7 @@
   "field.brand_image": "brand_image",
   "field.content_image": "content_image",
   "field.theme": "theme",
+  "label.env-var": "environment variable",
   "prompt.sure to navigate away?": "You have unsaved changes. Are you sure you want to navigate away?",
   "text.are_you_sure": "are you sure?",
   "text.data_created_successfully": "data created successfully",

package/translations/ja.json

@@ -23,6 +23,7 @@
   "field.brand_image": "ブランド写真",
   "field.content_image": "コンテンツ イメージ",
   "field.theme": "テーマ",
+  "label.env-var": "環境変数",
   "prompt.sure to navigate away?": "未保存の変更があります。本当に移動しますか？",
   "text.are_you_sure": "進行しますか?",
   "text.data_created_successfully": "資料が正常に作成されました.",

package/translations/ko.json

@@ -23,6 +23,7 @@
   "field.brand_image": "브랜드 사진",
   "field.content_image": "컨텐츠 이미지",
   "field.theme": "테마",
+  "label.env-var": "환경 변수",
   "prompt.sure to navigate away?": "변경 사항이 저장되지 않았습니다. 정말 이동하시겠습니까?",
   "text.are_you_sure": "진행하시겠습니까?",
   "text.data_created_successfully": "성공적으로 자료를 생성하였습니다.",

package/translations/ms.json

@@ -23,6 +23,7 @@
   "field.brand_image": "imej",
   "field.content_image": "isian imej",
   "field.theme": "tema",
+  "label.env-var": "pengubahsuaian persekitaran",
   "prompt.sure to navigate away?": "Anda mempunyai perubahan yang belum disimpan. Adakah anda pasti mahu berpindah?",
   "text.are_you_sure": "adakah anda pasti?",
   "text.data_created_successfully": "data berjaya dicipta",

package/translations/zh.json

@@ -23,6 +23,7 @@
   "field.brand_image": "品牌图片",
   "field.content_image": "内容图片",
   "field.theme": "主题",
+  "label.env-var": "环境变量",
   "prompt.sure to navigate away?": "更改未保存。您确定要离开吗？",
   "text.are_you_sure": "您确定要进行吗？",
   "text.data_created_successfully": "数据创建成功。",