@trackunit/iris-app-api 0.0.158 → 0.0.160

package/CHANGELOG.md

@@ -2,6 +2,10 @@
 
 This file was generated using [@jscutlery/semver](https://github.com/jscutlery/semver).
 
+## [0.0.160](https://github.com/Trackunit/manager/compare/iris-app-api/0.0.159...iris-app-api/0.0.160) (2024-03-21)
+
+## [0.0.159](https://github.com/Trackunit/manager/compare/iris-app-api/0.0.158...iris-app-api/0.0.159) (2024-03-21)
+
 ## [0.0.158](https://github.com/Trackunit/manager/compare/iris-app-api/0.0.157...iris-app-api/0.0.158) (2024-03-17)
 
 ## [0.0.157](https://github.com/Trackunit/manager/compare/iris-app-api/0.0.156...iris-app-api/0.0.157) (2024-03-12)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@trackunit/iris-app-api",
-  "version": "0.0.158",
+  "version": "0.0.160",
   "license": "SEE LICENSE IN LICENSE.txt",
   "repository": "https://github.com/Trackunit/manager",
   "engines": {

package/src/types/cspDirectives.d.ts

@@ -0,0 +1,54 @@
+export declare const ALLOW_DOWNLOADS_WITHOUT_USER_ACTIVATION = "allow-downloads-without-user-activation";
+export declare const ALLOW_DUPLICATES = "'allow-duplicates'";
+export declare const ALLOW_FORMS = "allow-forms";
+export declare const ALLOW_MODALS = "allow-modals";
+export declare const ALLOW_ORIENTATION_LOCK = "allow-orientation-lock";
+export declare const ALLOW_POINTER_LOCK = "allow-pointer-lock";
+export declare const ALLOW_POPUPS = "allow-popups";
+export declare const ALLOW_POPUPS_TO_ESCAPE_SANDBOX = "allow-popups-to-escape-sandbox";
+export declare const ALLOW_PRESENTATION = "allow-presentation";
+export declare const ALLOW_SAME_ORIGIN = "allow-same-origin";
+export declare const ALLOW_STORAGE_ACCESS_BY_USER_ACTIVATION = "allow-storage-access-by-user-activation";
+export declare const ALLOW_SCRIPTS = "allow-allow-scripts";
+export declare const ALLOW_TOP_NAVIGATION = "allow-top-navigation";
+export declare const ALLOW_TOP_NAVIGATION_BY_USER_ACTIVATION = "allow-top-navigation-by-user-activation";
+type TSource = string;
+type TNonce = `nonce-${string}`;
+type THash = `sha${"256" | "384" | "512"}-${string}`;
+type TAttrDirective = THash | typeof NONE | typeof UNSAFE_INLINE | typeof UNSAFE_HASHES;
+type TFetchDirective = TSource | TNonce | THash | typeof NONE | typeof SELF | typeof UNSAFE_EVAL | typeof UNSAFE_HASHES | typeof UNSAFE_INLINE;
+type TNavigationDirective = TSource | TNonce | THash | typeof NONE | typeof SELF | typeof UNSAFE_EVAL | typeof UNSAFE_HASHES | typeof UNSAFE_INLINE | typeof STRICT_DYNAMIC;
+export declare const NONE = "'none'";
+export declare const SELF = "'self'";
+export declare const STRICT_DYNAMIC = "'strict-dynamic'";
+export declare const REPORT_SAMPLE = "'report-sample'";
+export declare const UNSAFE_EVAL = "'unsafe-eval'";
+export declare const UNSAFE_HASHES = "'unsafe-hashes'";
+export declare const UNSAFE_INLINE = "'unsafe-inline'";
+export declare const WASM_UNSAFE_EVAL = "'wasm-unsafe-eval'";
+export type CSPDirectives = {
+    "child-src": TFetchDirective[];
+    "connect-src": TFetchDirective[];
+    "default-src": (TFetchDirective | typeof STRICT_DYNAMIC)[];
+    "font-src": TFetchDirective[];
+    "form-action": TNavigationDirective[];
+    "frame-src": TFetchDirective[];
+    "img-src": (TFetchDirective | typeof STRICT_DYNAMIC)[];
+    "manifest-src": TFetchDirective[];
+    "media-src": TFetchDirective[];
+    "object-src": TFetchDirective[];
+    sandbox: (typeof ALLOW_DOWNLOADS_WITHOUT_USER_ACTIVATION | typeof ALLOW_FORMS | typeof ALLOW_MODALS | typeof ALLOW_ORIENTATION_LOCK | typeof ALLOW_POINTER_LOCK | typeof ALLOW_POPUPS | typeof ALLOW_POPUPS_TO_ESCAPE_SANDBOX | typeof ALLOW_PRESENTATION | typeof ALLOW_SAME_ORIGIN | typeof ALLOW_SCRIPTS | typeof ALLOW_STORAGE_ACCESS_BY_USER_ACTIVATION | typeof ALLOW_TOP_NAVIGATION | typeof ALLOW_TOP_NAVIGATION_BY_USER_ACTIVATION)[];
+    "script-src": (TFetchDirective | typeof STRICT_DYNAMIC | typeof REPORT_SAMPLE | typeof WASM_UNSAFE_EVAL)[];
+    "script-src-attr": (TAttrDirective | typeof REPORT_SAMPLE)[];
+    "script-src-elem": (TFetchDirective | typeof STRICT_DYNAMIC | typeof REPORT_SAMPLE)[];
+    "style-src": TFetchDirective[] | typeof REPORT_SAMPLE;
+    "style-src-attr": (TAttrDirective | typeof REPORT_SAMPLE)[];
+    "style-src-elem": (TFetchDirective | typeof REPORT_SAMPLE)[];
+    "upgrade-insecure-requests": boolean;
+    "worker-src": TFetchDirective[];
+    /**
+     * @deprecated
+     */
+    "report-uri": string;
+};
+export {};

package/src/types/cspDirectives.js

@@ -0,0 +1,29 @@
+"use strict";
+//
+// Based on types from https://www.npmjs.com/package/csp-header but adjusted to our needs
+//
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.WASM_UNSAFE_EVAL = exports.UNSAFE_INLINE = exports.UNSAFE_HASHES = exports.UNSAFE_EVAL = exports.REPORT_SAMPLE = exports.STRICT_DYNAMIC = exports.SELF = exports.NONE = exports.ALLOW_TOP_NAVIGATION_BY_USER_ACTIVATION = exports.ALLOW_TOP_NAVIGATION = exports.ALLOW_SCRIPTS = exports.ALLOW_STORAGE_ACCESS_BY_USER_ACTIVATION = exports.ALLOW_SAME_ORIGIN = exports.ALLOW_PRESENTATION = exports.ALLOW_POPUPS_TO_ESCAPE_SANDBOX = exports.ALLOW_POPUPS = exports.ALLOW_POINTER_LOCK = exports.ALLOW_ORIENTATION_LOCK = exports.ALLOW_MODALS = exports.ALLOW_FORMS = exports.ALLOW_DUPLICATES = exports.ALLOW_DOWNLOADS_WITHOUT_USER_ACTIVATION = void 0;
+exports.ALLOW_DOWNLOADS_WITHOUT_USER_ACTIVATION = "allow-downloads-without-user-activation";
+exports.ALLOW_DUPLICATES = "'allow-duplicates'";
+exports.ALLOW_FORMS = "allow-forms";
+exports.ALLOW_MODALS = "allow-modals";
+exports.ALLOW_ORIENTATION_LOCK = "allow-orientation-lock";
+exports.ALLOW_POINTER_LOCK = "allow-pointer-lock";
+exports.ALLOW_POPUPS = "allow-popups";
+exports.ALLOW_POPUPS_TO_ESCAPE_SANDBOX = "allow-popups-to-escape-sandbox";
+exports.ALLOW_PRESENTATION = "allow-presentation";
+exports.ALLOW_SAME_ORIGIN = "allow-same-origin";
+exports.ALLOW_STORAGE_ACCESS_BY_USER_ACTIVATION = "allow-storage-access-by-user-activation";
+exports.ALLOW_SCRIPTS = "allow-allow-scripts";
+exports.ALLOW_TOP_NAVIGATION = "allow-top-navigation";
+exports.ALLOW_TOP_NAVIGATION_BY_USER_ACTIVATION = "allow-top-navigation-by-user-activation";
+exports.NONE = "'none'";
+exports.SELF = "'self'";
+exports.STRICT_DYNAMIC = "'strict-dynamic'";
+exports.REPORT_SAMPLE = "'report-sample'";
+exports.UNSAFE_EVAL = "'unsafe-eval'";
+exports.UNSAFE_HASHES = "'unsafe-hashes'";
+exports.UNSAFE_INLINE = "'unsafe-inline'";
+exports.WASM_UNSAFE_EVAL = "'wasm-unsafe-eval'";
+//# sourceMappingURL=cspDirectives.js.map

package/src/types/cspDirectives.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cspDirectives.js","sourceRoot":"","sources":["../../../../../../libs/iris-app-sdk/iris-app-api/src/types/cspDirectives.ts"],"names":[],"mappings":";AAAA,EAAE;AACF,yFAAyF;AACzF,EAAE;;;AAEW,QAAA,uCAAuC,GAAG,yCAAyC,CAAC;AACpF,QAAA,gBAAgB,GAAG,oBAAoB,CAAC;AACxC,QAAA,WAAW,GAAG,aAAa,CAAC;AAC5B,QAAA,YAAY,GAAG,cAAc,CAAC;AAC9B,QAAA,sBAAsB,GAAG,wBAAwB,CAAC;AAClD,QAAA,kBAAkB,GAAG,oBAAoB,CAAC;AAC1C,QAAA,YAAY,GAAG,cAAc,CAAC;AAC9B,QAAA,8BAA8B,GAAG,gCAAgC,CAAC;AAClE,QAAA,kBAAkB,GAAG,oBAAoB,CAAC;AAC1C,QAAA,iBAAiB,GAAG,mBAAmB,CAAC;AACxC,QAAA,uCAAuC,GAAG,yCAAyC,CAAC;AACpF,QAAA,aAAa,GAAG,qBAAqB,CAAC;AACtC,QAAA,oBAAoB,GAAG,sBAAsB,CAAC;AAC9C,QAAA,uCAAuC,GAAG,yCAAyC,CAAC;AA0BpF,QAAA,IAAI,GAAG,QAAQ,CAAC;AAChB,QAAA,IAAI,GAAG,QAAQ,CAAC;AAChB,QAAA,cAAc,GAAG,kBAAkB,CAAC;AACpC,QAAA,aAAa,GAAG,iBAAiB,CAAC;AAClC,QAAA,WAAW,GAAG,eAAe,CAAC;AAC9B,QAAA,aAAa,GAAG,iBAAiB,CAAC;AAClC,QAAA,aAAa,GAAG,iBAAiB,CAAC;AAClC,QAAA,gBAAgB,GAAG,oBAAoB,CAAC","sourcesContent":["//\n// Based on types from https://www.npmjs.com/package/csp-header but adjusted to our needs\n//\n\nexport const ALLOW_DOWNLOADS_WITHOUT_USER_ACTIVATION = \"allow-downloads-without-user-activation\";\nexport const ALLOW_DUPLICATES = \"'allow-duplicates'\";\nexport const ALLOW_FORMS = \"allow-forms\";\nexport const ALLOW_MODALS = \"allow-modals\";\nexport const ALLOW_ORIENTATION_LOCK = \"allow-orientation-lock\";\nexport const ALLOW_POINTER_LOCK = \"allow-pointer-lock\";\nexport const ALLOW_POPUPS = \"allow-popups\";\nexport const ALLOW_POPUPS_TO_ESCAPE_SANDBOX = \"allow-popups-to-escape-sandbox\";\nexport const ALLOW_PRESENTATION = \"allow-presentation\";\nexport const ALLOW_SAME_ORIGIN = \"allow-same-origin\";\nexport const ALLOW_STORAGE_ACCESS_BY_USER_ACTIVATION = \"allow-storage-access-by-user-activation\";\nexport const ALLOW_SCRIPTS = \"allow-allow-scripts\";\nexport const ALLOW_TOP_NAVIGATION = \"allow-top-navigation\";\nexport const ALLOW_TOP_NAVIGATION_BY_USER_ACTIVATION = \"allow-top-navigation-by-user-activation\";\n\ntype TSource = string;\ntype TNonce = `nonce-${string}`;\ntype THash = `sha${\"256\" | \"384\" | \"512\"}-${string}`;\ntype TAttrDirective = THash | typeof NONE | typeof UNSAFE_INLINE | typeof UNSAFE_HASHES;\ntype TFetchDirective =\n  | TSource\n  | TNonce\n  | THash\n  | typeof NONE\n  | typeof SELF\n  | typeof UNSAFE_EVAL\n  | typeof UNSAFE_HASHES\n  | typeof UNSAFE_INLINE;\ntype TNavigationDirective =\n  | TSource\n  | TNonce\n  | THash\n  | typeof NONE\n  | typeof SELF\n  | typeof UNSAFE_EVAL\n  | typeof UNSAFE_HASHES\n  | typeof UNSAFE_INLINE\n  | typeof STRICT_DYNAMIC;\n\nexport const NONE = \"'none'\";\nexport const SELF = \"'self'\";\nexport const STRICT_DYNAMIC = \"'strict-dynamic'\";\nexport const REPORT_SAMPLE = \"'report-sample'\";\nexport const UNSAFE_EVAL = \"'unsafe-eval'\";\nexport const UNSAFE_HASHES = \"'unsafe-hashes'\";\nexport const UNSAFE_INLINE = \"'unsafe-inline'\";\nexport const WASM_UNSAFE_EVAL = \"'wasm-unsafe-eval'\";\n\nexport type CSPDirectives = {\n  \"child-src\": TFetchDirective[];\n  \"connect-src\": TFetchDirective[];\n  \"default-src\": (TFetchDirective | typeof STRICT_DYNAMIC)[];\n  \"font-src\": TFetchDirective[];\n  \"form-action\": TNavigationDirective[];\n  \"frame-src\": TFetchDirective[];\n  \"img-src\": (TFetchDirective | typeof STRICT_DYNAMIC)[];\n  \"manifest-src\": TFetchDirective[];\n  \"media-src\": TFetchDirective[];\n  \"object-src\": TFetchDirective[];\n  sandbox: (\n    | typeof ALLOW_DOWNLOADS_WITHOUT_USER_ACTIVATION\n    | typeof ALLOW_FORMS\n    | typeof ALLOW_MODALS\n    | typeof ALLOW_ORIENTATION_LOCK\n    | typeof ALLOW_POINTER_LOCK\n    | typeof ALLOW_POPUPS\n    | typeof ALLOW_POPUPS_TO_ESCAPE_SANDBOX\n    | typeof ALLOW_PRESENTATION\n    | typeof ALLOW_SAME_ORIGIN\n    | typeof ALLOW_SCRIPTS\n    | typeof ALLOW_STORAGE_ACCESS_BY_USER_ACTIVATION\n    | typeof ALLOW_TOP_NAVIGATION\n    | typeof ALLOW_TOP_NAVIGATION_BY_USER_ACTIVATION\n  )[];\n  \"script-src\": (TFetchDirective | typeof STRICT_DYNAMIC | typeof REPORT_SAMPLE | typeof WASM_UNSAFE_EVAL)[];\n  \"script-src-attr\": (TAttrDirective | typeof REPORT_SAMPLE)[];\n  \"script-src-elem\": (TFetchDirective | typeof STRICT_DYNAMIC | typeof REPORT_SAMPLE)[];\n  \"style-src\": TFetchDirective[] | typeof REPORT_SAMPLE;\n  \"style-src-attr\": (TAttrDirective | typeof REPORT_SAMPLE)[];\n  \"style-src-elem\": (TFetchDirective | typeof REPORT_SAMPLE)[];\n  \"upgrade-insecure-requests\": boolean;\n  \"worker-src\": TFetchDirective[];\n  /**\n   * @deprecated\n   */\n  \"report-uri\": string;\n};\n"]}

package/src/types/defaultValidHosts.d.ts

@@ -6,3 +6,15 @@
  * @returns {string[]} - Array of valid hosts for CSP
  */
 export declare const defaultValidHosts: () => string[];
+/**
+ * Returns default CSP config
+ *
+ * ! Internal use only !
+ */
+export declare const defaultCspConfig: () => {
+    "default-src": string[];
+    "script-src": string[];
+    "img-src": string[];
+    "worker-src": string[];
+    "connect-src": string[];
+};

package/src/types/defaultValidHosts.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.defaultValidHosts = void 0;
+exports.defaultCspConfig = exports.defaultValidHosts = void 0;
 /**
  * Returns default valid hosts for CSP for manager.
  *
@@ -38,4 +38,19 @@ const defaultValidHosts = () => {
     ];
 };
 exports.defaultValidHosts = defaultValidHosts;
+/**
+ * Returns default CSP config
+ *
+ * ! Internal use only !
+ */
+const defaultCspConfig = () => {
+    return {
+        "default-src": (0, exports.defaultValidHosts)(),
+        "script-src": (0, exports.defaultValidHosts)(),
+        "img-src": (0, exports.defaultValidHosts)(),
+        "worker-src": (0, exports.defaultValidHosts)(),
+        "connect-src": (0, exports.defaultValidHosts)(),
+    };
+};
+exports.defaultCspConfig = defaultCspConfig;
 //# sourceMappingURL=defaultValidHosts.js.map

package/src/types/defaultValidHosts.js.map

@@ -1 +1 @@
-{"version":3,"file":"defaultValidHosts.js","sourceRoot":"","sources":["../../../../../../libs/iris-app-sdk/iris-app-api/src/types/defaultValidHosts.ts"],"names":[],"mappings":";;;AAAA;;;;;;GAMG;AACI,MAAM,iBAAiB,GAAG,GAAG,EAAE;IACpC,2EAA2E;IAC3E,OAAO;QACL,mCAAmC;QACnC,qCAAqC;QACrC,mCAAmC;QACnC,wBAAwB;QACxB,wBAAwB;QACxB,wBAAwB;QACxB,8BAA8B;QAC9B,OAAO;QACP,QAAQ;QACR,mCAAmC;QACnC,iCAAiC;QACjC,QAAQ;QACR,gCAAgC;QAChC,QAAQ;QACR,uBAAuB;QACvB,0BAA0B;QAC1B,qBAAqB;QACrB,SAAS;QACT,uBAAuB;QACvB,WAAW;QACX,yBAAyB;QACzB,WAAW;QACX,yBAAyB;QACzB,yBAAyB;KAC1B,CAAC;AACJ,CAAC,CAAC;AA5BW,QAAA,iBAAiB,qBA4B5B","sourcesContent":["/**\n * Returns default valid hosts for CSP for manager.\n *\n * ! Internal use only !\n *\n * @returns {string[]} - Array of valid hosts for CSP\n */\nexport const defaultValidHosts = () => {\n  // TRY TO KEEP IN SYNC WITH CHANGES IN server.js from manager (CSP headers)\n  return [\n    \"https://dev.manager.trackunit.com\",\n    \"https://stage.manager.trackunit.com\",\n    \"https://new.manager.trackunit.com\",\n    \"http://localhost:5005/\",\n    \"http://localhost:5010/\",\n    \"http://localhost:5011/\",\n    //Allow inline data like icons\n    \"data:\",\n    //IMAGES\n    \"https://images.iris.trackunit.com\",\n    \"https://*.awsapi.trackunit.com/\", // loading images from machines api\n    //SENTRY\n    \"https://browser.sentry-cdn.com\",\n    //GOOGLE\n    \"https://*.gstatic.com\",\n    \"https://*.googleapis.com\",\n    \"https://*.ggpht.com\",\n    //APPCUES\n    \"https://*.appcues.com\",\n    //AMPLITUDE\n    \"https://*.amplitude.com\",\n    //SPECCHECK\n    \"https://*.speccheck.com\",\n    \"https://api.hsforms.com\",\n  ];\n};\n"]}
+{"version":3,"file":"defaultValidHosts.js","sourceRoot":"","sources":["../../../../../../libs/iris-app-sdk/iris-app-api/src/types/defaultValidHosts.ts"],"names":[],"mappings":";;;AAAA;;;;;;GAMG;AACI,MAAM,iBAAiB,GAAG,GAAG,EAAE;IACpC,2EAA2E;IAC3E,OAAO;QACL,mCAAmC;QACnC,qCAAqC;QACrC,mCAAmC;QACnC,wBAAwB;QACxB,wBAAwB;QACxB,wBAAwB;QACxB,8BAA8B;QAC9B,OAAO;QACP,QAAQ;QACR,mCAAmC;QACnC,iCAAiC;QACjC,QAAQ;QACR,gCAAgC;QAChC,QAAQ;QACR,uBAAuB;QACvB,0BAA0B;QAC1B,qBAAqB;QACrB,SAAS;QACT,uBAAuB;QACvB,WAAW;QACX,yBAAyB;QACzB,WAAW;QACX,yBAAyB;QACzB,yBAAyB;KAC1B,CAAC;AACJ,CAAC,CAAC;AA5BW,QAAA,iBAAiB,qBA4B5B;AAEF;;;;GAIG;AACI,MAAM,gBAAgB,GAAG,GAAG,EAAE;IACnC,OAAO;QACL,aAAa,EAAE,IAAA,yBAAiB,GAAE;QAClC,YAAY,EAAE,IAAA,yBAAiB,GAAE;QACjC,SAAS,EAAE,IAAA,yBAAiB,GAAE;QAC9B,YAAY,EAAE,IAAA,yBAAiB,GAAE;QACjC,aAAa,EAAE,IAAA,yBAAiB,GAAE;KACnC,CAAC;AACJ,CAAC,CAAC;AARW,QAAA,gBAAgB,oBAQ3B","sourcesContent":["/**\n * Returns default valid hosts for CSP for manager.\n *\n * ! Internal use only !\n *\n * @returns {string[]} - Array of valid hosts for CSP\n */\nexport const defaultValidHosts = () => {\n  // TRY TO KEEP IN SYNC WITH CHANGES IN server.js from manager (CSP headers)\n  return [\n    \"https://dev.manager.trackunit.com\",\n    \"https://stage.manager.trackunit.com\",\n    \"https://new.manager.trackunit.com\",\n    \"http://localhost:5005/\",\n    \"http://localhost:5010/\",\n    \"http://localhost:5011/\",\n    //Allow inline data like icons\n    \"data:\",\n    //IMAGES\n    \"https://images.iris.trackunit.com\",\n    \"https://*.awsapi.trackunit.com/\", // loading images from machines api\n    //SENTRY\n    \"https://browser.sentry-cdn.com\",\n    //GOOGLE\n    \"https://*.gstatic.com\",\n    \"https://*.googleapis.com\",\n    \"https://*.ggpht.com\",\n    //APPCUES\n    \"https://*.appcues.com\",\n    //AMPLITUDE\n    \"https://*.amplitude.com\",\n    //SPECCHECK\n    \"https://*.speccheck.com\",\n    \"https://api.hsforms.com\",\n  ];\n};\n\n/**\n * Returns default CSP config\n *\n * ! Internal use only !\n */\nexport const defaultCspConfig = () => {\n  return {\n    \"default-src\": defaultValidHosts(),\n    \"script-src\": defaultValidHosts(),\n    \"img-src\": defaultValidHosts(),\n    \"worker-src\": defaultValidHosts(),\n    \"connect-src\": defaultValidHosts(),\n  };\n};\n"]}

package/src/types/irisAppCspInput.d.ts

@@ -1,3 +1,4 @@
+import { CSPDirectives } from "./cspDirectives";
 /**
  * This type is used to generate the CSP input for the Iris Apps Csp Header
  */
@@ -16,9 +17,16 @@ export type CspDirectives = {
 /**
  * This function is used to generate the CSP input for the Iris Apps Csp Header
  *
- * @param validDomains input valid domains to add to the CSP header
- * @param frameAncestors input frame ancestors to add to the CSP header
- * @param extraScriptSrc input extra script src to add to the CSP header
- * @returns { CspDirectives } the CSP input for the Iris Apps Csp Header
+ * @param validDomains input legacy validDomains from manifest
+ * @param cspHeader input cspHeader from manifest
+ * @returns the CSP input for the Iris Apps Csp Header
  */
-export declare const irisAppCspInput: (validDomains: string[], frameAncestors?: string[], extraScriptSrc?: string) => CspDirectives;
+export declare const irisAppCspInput: (validDomains?: string[], cspHeader?: Partial<CSPDirectives>) => Partial<CSPDirectives>;
+export declare const irisAppDefaultCsp: {
+    "default-src": string[];
+    "script-src": string[];
+    "img-src": string[];
+    "worker-src": string[];
+    "style-src": string[];
+    "connect-src": string[];
+};

package/src/types/irisAppCspInput.js

@@ -1,6 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.irisAppCspInput = void 0;
+exports.irisAppDefaultCsp = exports.irisAppCspInput = void 0;
+const cspDirectives_1 = require("./cspDirectives");
 const BrandedUrls = [
     "https://*.trackunit.com",
     "https://*.wackerneuson.com",
@@ -16,30 +17,34 @@ const BrandedUrls = [
 /**
  * This function is used to generate the CSP input for the Iris Apps Csp Header
  *
- * @param validDomains input valid domains to add to the CSP header
- * @param frameAncestors input frame ancestors to add to the CSP header
- * @param extraScriptSrc input extra script src to add to the CSP header
- * @returns { CspDirectives } the CSP input for the Iris Apps Csp Header
+ * @param validDomains input legacy validDomains from manifest
+ * @param cspHeader input cspHeader from manifest
+ * @returns the CSP input for the Iris Apps Csp Header
  */
-const irisAppCspInput = (validDomains, frameAncestors, extraScriptSrc) => {
-    const cspInput = {
-        directives: {
-            "default-src": ["'self'", ...validDomains],
-            "script-src": ["'self'", ...validDomains],
-            "img-src": ["'self'", "https://images.iris.trackunit.com", "https://*.awsapi.trackunit.com/", ...validDomains],
-            "worker-src": ["'self'", ...validDomains],
-            "style-src": ["'unsafe-inline'", "https://fonts.googleapis.com"],
-            "connect-src": ["'self'", "https://*.sentry.io", "https://sentry.io", ...BrandedUrls, ...validDomains],
-        },
-        reportUri: "https://o343335.ingest.sentry.io/api/1888181/security/?sentry_key=62900a1fa49748d8ba12f4ffbdbd8e07",
-    };
-    if (extraScriptSrc) {
-        cspInput.directives["script-src"].push(extraScriptSrc);
+const irisAppCspInput = (validDomains, cspHeader) => {
+    if (cspHeader) {
+        return cspHeader;
     }
-    if (frameAncestors && frameAncestors.length > 0) {
-        cspInput.directives["frame-ancestors"] = frameAncestors;
+    else if (validDomains) {
+        return {
+            "default-src": validDomains,
+            "script-src": validDomains,
+            "img-src": validDomains,
+            "worker-src": validDomains,
+            "connect-src": validDomains,
+        };
+    }
+    else {
+        return {};
     }
-    return cspInput;
 };
 exports.irisAppCspInput = irisAppCspInput;
+exports.irisAppDefaultCsp = {
+    "default-src": [cspDirectives_1.SELF],
+    "script-src": [cspDirectives_1.SELF],
+    "img-src": [cspDirectives_1.SELF, "https://images.iris.trackunit.com", "https://*.awsapi.trackunit.com/"],
+    "worker-src": [cspDirectives_1.SELF],
+    "style-src": [cspDirectives_1.UNSAFE_INLINE, "https://fonts.googleapis.com"],
+    "connect-src": [cspDirectives_1.SELF, "https://*.sentry.io", "https://sentry.io", ...BrandedUrls],
+};
 //# sourceMappingURL=irisAppCspInput.js.map

package/src/types/irisAppCspInput.js.map

@@ -1 +1 @@
-{"version":3,"file":"irisAppCspInput.js","sourceRoot":"","sources":["../../../../../../libs/iris-app-sdk/iris-app-api/src/types/irisAppCspInput.ts"],"names":[],"mappings":";;;AAAA,MAAM,WAAW,GAAG;IAClB,yBAAyB;IACzB,4BAA4B;IAC5B,uBAAuB;IACvB,gCAAgC;IAChC,uBAAuB;IACvB,2BAA2B;IAC3B,uBAAuB;IACvB,uBAAuB;IACvB,yBAAyB;IACzB,sBAAsB;CACvB,CAAC;AAkBF;;;;;;;GAOG;AACI,MAAM,eAAe,GAAG,CAC7B,YAAsB,EACtB,cAAyB,EACzB,cAAuB,EACR,EAAE;IACjB,MAAM,QAAQ,GAAkB;QAC9B,UAAU,EAAE;YACV,aAAa,EAAE,CAAC,QAAQ,EAAE,GAAG,YAAY,CAAC;YAC1C,YAAY,EAAE,CAAC,QAAQ,EAAE,GAAG,YAAY,CAAC;YACzC,SAAS,EAAE,CAAC,QAAQ,EAAE,mCAAmC,EAAE,iCAAiC,EAAE,GAAG,YAAY,CAAC;YAC9G,YAAY,EAAE,CAAC,QAAQ,EAAE,GAAG,YAAY,CAAC;YACzC,WAAW,EAAE,CAAC,iBAAiB,EAAE,8BAA8B,CAAC;YAChE,aAAa,EAAE,CAAC,QAAQ,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,GAAG,WAAW,EAAE,GAAG,YAAY,CAAC;SACvG;QACD,SAAS,EAAE,oGAAoG;KAChH,CAAC;IACF,IAAI,cAAc,EAAE;QAClB,QAAQ,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;KACxD;IACD,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE;QAC/C,QAAQ,CAAC,UAAU,CAAC,iBAAiB,CAAC,GAAG,cAAc,CAAC;KACzD;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC,CAAC;AAvBW,QAAA,eAAe,mBAuB1B","sourcesContent":["const BrandedUrls = [\n  \"https://*.trackunit.com\",\n  \"https://*.wackerneuson.com\",\n  \"https://*.manitou.com\",\n  \"https://*.niftylinkmanager.com\",\n  \"https://*.skyjack.com\",\n  \"https://*.ahernaccess.com\",\n  \"https://*.magnith.com\",\n  \"https://*.terberg.com\",\n  \"https://*.mymecalac.com\",\n  \"https://*.delille.be\",\n];\n\n/**\n * This type is used to generate the CSP input for the Iris Apps Csp Header\n */\nexport type CspDirectives = {\n  directives: {\n    \"default-src\": string[];\n    \"script-src\": string[];\n    \"worker-src\": string[];\n    \"style-src\": string[];\n    \"img-src\": string[];\n    \"connect-src\": string[];\n    \"frame-ancestors\"?: string[];\n  };\n  reportUri?: string;\n};\n\n/**\n * This function is used to generate the CSP input for the Iris Apps Csp Header\n *\n * @param validDomains input valid domains to add to the CSP header\n * @param frameAncestors input frame ancestors to add to the CSP header\n * @param extraScriptSrc input extra script src to add to the CSP header\n * @returns { CspDirectives } the CSP input for the Iris Apps Csp Header\n */\nexport const irisAppCspInput = (\n  validDomains: string[],\n  frameAncestors?: string[],\n  extraScriptSrc?: string\n): CspDirectives => {\n  const cspInput: CspDirectives = {\n    directives: {\n      \"default-src\": [\"'self'\", ...validDomains],\n      \"script-src\": [\"'self'\", ...validDomains],\n      \"img-src\": [\"'self'\", \"https://images.iris.trackunit.com\", \"https://*.awsapi.trackunit.com/\", ...validDomains],\n      \"worker-src\": [\"'self'\", ...validDomains],\n      \"style-src\": [\"'unsafe-inline'\", \"https://fonts.googleapis.com\"],\n      \"connect-src\": [\"'self'\", \"https://*.sentry.io\", \"https://sentry.io\", ...BrandedUrls, ...validDomains],\n    },\n    reportUri: \"https://o343335.ingest.sentry.io/api/1888181/security/?sentry_key=62900a1fa49748d8ba12f4ffbdbd8e07\",\n  };\n  if (extraScriptSrc) {\n    cspInput.directives[\"script-src\"].push(extraScriptSrc);\n  }\n  if (frameAncestors && frameAncestors.length > 0) {\n    cspInput.directives[\"frame-ancestors\"] = frameAncestors;\n  }\n  return cspInput;\n};\n"]}
+{"version":3,"file":"irisAppCspInput.js","sourceRoot":"","sources":["../../../../../../libs/iris-app-sdk/iris-app-api/src/types/irisAppCspInput.ts"],"names":[],"mappings":";;;AAAA,mDAAqE;AAErE,MAAM,WAAW,GAAG;IAClB,yBAAyB;IACzB,4BAA4B;IAC5B,uBAAuB;IACvB,gCAAgC;IAChC,uBAAuB;IACvB,2BAA2B;IAC3B,uBAAuB;IACvB,uBAAuB;IACvB,yBAAyB;IACzB,sBAAsB;CACvB,CAAC;AAkBF;;;;;;GAMG;AACI,MAAM,eAAe,GAAG,CAC7B,YAAuB,EACvB,SAAkC,EACV,EAAE;IAC1B,IAAI,SAAS,EAAE;QACb,OAAO,SAAS,CAAC;KAClB;SAAM,IAAI,YAAY,EAAE;QACvB,OAAO;YACL,aAAa,EAAE,YAAY;YAC3B,YAAY,EAAE,YAAY;YAC1B,SAAS,EAAE,YAAY;YACvB,YAAY,EAAE,YAAY;YAC1B,aAAa,EAAE,YAAY;SAC5B,CAAC;KACH;SAAM;QACL,OAAO,EAAE,CAAC;KACX;AACH,CAAC,CAAC;AAjBW,QAAA,eAAe,mBAiB1B;AAEW,QAAA,iBAAiB,GAAG;IAC/B,aAAa,EAAE,CAAC,oBAAI,CAAC;IACrB,YAAY,EAAE,CAAC,oBAAI,CAAC;IACpB,SAAS,EAAE,CAAC,oBAAI,EAAE,mCAAmC,EAAE,iCAAiC,CAAC;IACzF,YAAY,EAAE,CAAC,oBAAI,CAAC;IACpB,WAAW,EAAE,CAAC,6BAAa,EAAE,8BAA8B,CAAC;IAC5D,aAAa,EAAE,CAAC,oBAAI,EAAE,qBAAqB,EAAE,mBAAmB,EAAE,GAAG,WAAW,CAAC;CAClF,CAAC","sourcesContent":["import { CSPDirectives, SELF, UNSAFE_INLINE } from \"./cspDirectives\";\n\nconst BrandedUrls = [\n  \"https://*.trackunit.com\",\n  \"https://*.wackerneuson.com\",\n  \"https://*.manitou.com\",\n  \"https://*.niftylinkmanager.com\",\n  \"https://*.skyjack.com\",\n  \"https://*.ahernaccess.com\",\n  \"https://*.magnith.com\",\n  \"https://*.terberg.com\",\n  \"https://*.mymecalac.com\",\n  \"https://*.delille.be\",\n];\n\n/**\n * This type is used to generate the CSP input for the Iris Apps Csp Header\n */\nexport type CspDirectives = {\n  directives: {\n    \"default-src\": string[];\n    \"script-src\": string[];\n    \"worker-src\": string[];\n    \"style-src\": string[];\n    \"img-src\": string[];\n    \"connect-src\": string[];\n    \"frame-ancestors\"?: string[];\n  };\n  reportUri?: string;\n};\n\n/**\n * This function is used to generate the CSP input for the Iris Apps Csp Header\n *\n * @param validDomains input legacy validDomains from manifest\n * @param cspHeader input cspHeader from manifest\n * @returns the CSP input for the Iris Apps Csp Header\n */\nexport const irisAppCspInput = (\n  validDomains?: string[],\n  cspHeader?: Partial<CSPDirectives>\n): Partial<CSPDirectives> => {\n  if (cspHeader) {\n    return cspHeader;\n  } else if (validDomains) {\n    return {\n      \"default-src\": validDomains,\n      \"script-src\": validDomains,\n      \"img-src\": validDomains,\n      \"worker-src\": validDomains,\n      \"connect-src\": validDomains,\n    };\n  } else {\n    return {};\n  }\n};\n\nexport const irisAppDefaultCsp = {\n  \"default-src\": [SELF],\n  \"script-src\": [SELF],\n  \"img-src\": [SELF, \"https://images.iris.trackunit.com\", \"https://*.awsapi.trackunit.com/\"],\n  \"worker-src\": [SELF],\n  \"style-src\": [UNSAFE_INLINE, \"https://fonts.googleapis.com\"],\n  \"connect-src\": [SELF, \"https://*.sentry.io\", \"https://sentry.io\", ...BrandedUrls],\n};\n"]}

package/src/types/irisAppManifest.d.ts

@@ -1,3 +1,4 @@
+import { CSPDirectives } from "./cspDirectives";
 import { AdminExtensionManifest, AssetEventsActionsExtensionManifest, AssetHomeExtensionManifest, FleetExtensionManifest, IrisAppSettingsExtensionManifest, ReportExtensionManifest, SiteHomeExtensionManifest } from "./extensions";
 import { WidgetExtensionManifest } from "./extensions/widgetExtensionManifest";
 import { BooleanFieldDefinition, DateFieldDefinition, DecimalNumberFieldDefinition, DropDownFieldDefinition, EmailFieldDefinition, IntegerNumberFieldDefinition, JsonFieldDefinition, MonetaryFieldDefinition, PhoneNumberFieldDefinition, StringFieldDefinition, WebAddressFieldDefinition } from "./irisAppCustomFields";
@@ -31,6 +32,7 @@ export interface IrisAppManifest extends Omit<IrisAppManifest_1_0, "specVersion"
     tokenCallback?: {
         url: string;
     };
+    cspHeader?: Partial<CSPDirectives>;
 }
 export type RequiredOrOptionalScope = {
     scope: Scope;
@@ -83,6 +85,8 @@ export interface IrisAppManifest_1_0 {
     moduleFederationName: string;
     /**
      * A configuration object for handling scoped token acquisition.
+     *
+     * @deprecated Use `scopes` instead.
      */
     consentConfig?: ConsentConfig | "inherit";
     /**
@@ -98,6 +102,8 @@ export interface IrisAppManifest_1_0 {
      * - CONTROLLED_AUTOMATIC_INSTALLATION then it will be controlled by the team that activates the subscription package for the customer, also adding.
      *
      * All modes will take into consideration both {@link IrisAppManifest_1_0.validForAccountIds} and {@link IrisAppManifest_1_0.marketplace}.allowForPackage
+     *
+     * @deprecated Use `installation.policy` instead.
      */
     activationMode: ActivationMode;
     /**
@@ -105,8 +111,10 @@ export interface IrisAppManifest_1_0 {
      * The list is audited in the approval step of the app and every external API call
      * must be listed here to get through the verification process.
      * Even if it goes through without being listed, your app will fail to call the endpoint.
+     *
+     * @deprecated Use `cspHeader` instead
      */
-    validDomains: string[];
+    validDomains?: string[];
     /**
      * Put `ALL_ACCOUNTS` in if your app is available to all users.
      * If you want to only make it available to certain users, provide a list of account ID's as strings.

package/src/types/irisAppManifest.js.map

@@ -1 +1 @@
-{"version":3,"file":"irisAppManifest.js","sourceRoot":"","sources":["../../../../../../libs/iris-app-sdk/iris-app-api/src/types/irisAppManifest.ts"],"names":[],"mappings":"","sourcesContent":["import {\n  AdminExtensionManifest,\n  AssetEventsActionsExtensionManifest,\n  AssetHomeExtensionManifest,\n  FleetExtensionManifest,\n  IrisAppSettingsExtensionManifest,\n  ReportExtensionManifest,\n  SiteHomeExtensionManifest,\n} from \"./extensions\";\nimport { WidgetExtensionManifest } from \"./extensions/widgetExtensionManifest\";\nimport {\n  BooleanFieldDefinition,\n  DateFieldDefinition,\n  DecimalNumberFieldDefinition,\n  DropDownFieldDefinition,\n  EmailFieldDefinition,\n  IntegerNumberFieldDefinition,\n  JsonFieldDefinition,\n  MonetaryFieldDefinition,\n  PhoneNumberFieldDefinition,\n  StringFieldDefinition,\n  WebAddressFieldDefinition,\n} from \"./irisAppCustomFields\";\nimport { InstallationConfig } from \"./irisAppInstallationConfig\";\nimport { Marketplace, Marketplace_1_0 } from \"./irisAppMarketplace\";\nimport { Scope } from \"./scopes\";\n\nexport interface IrisAppManifest\n  extends Omit<\n    IrisAppManifest_1_0,\n    \"specVersion\" | \"activationMode\" | \"marketplace\" | \"validForAccountIds\" | \"consentConfig\"\n  > {\n  /**\n   * A spec version for the manifest.\n   * This should not be changed manually.\n   */\n  specVersion: \"1.1\";\n\n  /**\n   * Configuration for the installation of the app.\n   *\n   * Each parameter can be combined to create rules to target specific customers.\n   * Each parameter works as a filter to decide if an app is available to a specific customer.\n   */\n  installation: InstallationConfig;\n\n  /**\n   * A configuration object for the Marketplace entry\n   */\n  marketplace: Marketplace;\n\n  /**\n   * Scopes needed in app tokens, these scopes are used from the token - when contacting Trackunits backend.\n   */\n  scopes?: RequiredOrOptionalScope | RequiredOrOptionalScope[];\n\n  /**\n   * Configuration of callback to get credentials to call the API after app installation.\n   */\n  tokenCallback?: {\n    url: string;\n  };\n}\n\nexport type RequiredOrOptionalScope = { scope: Scope; optional?: boolean };\n\nexport declare type IrisAppExtension =\n  | AssetHomeExtensionManifest\n  | IrisAppSettingsExtensionManifest\n  | AdminExtensionManifest\n  | FleetExtensionManifest\n  | SiteHomeExtensionManifest\n  | WidgetExtensionManifest\n  | ReportExtensionManifest\n  | AssetEventsActionsExtensionManifest;\n\nexport declare type CustomFieldDefinition =\n  | BooleanFieldDefinition\n  | DecimalNumberFieldDefinition\n  | IntegerNumberFieldDefinition\n  | DateFieldDefinition\n  | DropDownFieldDefinition\n  | StringFieldDefinition\n  | EmailFieldDefinition\n  | PhoneNumberFieldDefinition\n  | WebAddressFieldDefinition\n  | JsonFieldDefinition\n  | MonetaryFieldDefinition;\n\n/**\n * @deprecated\n */\nexport interface ConsentConfig {\n  /**\n   * The application type. Should be one of WEB or BROWSER.\n   */\n  applicationType: \"WEB\" | \"BROWSER\";\n  /**\n   * List of scopes required by the application.\n   */\n  scopes: string[];\n  /**\n   * List of redirect URIs to be used when returning an authorization code.\n   */\n  redirectUris?: string[];\n}\n\nexport interface Dependencies {\n  [packageName: string]: string;\n}\n\nexport type PublicIrisAppManifest = Omit<IrisAppManifest, \"dependencies\" | \"devDependencies\" | \"installation\"> & {\n  /**\n   * Relative path for this iris app.\n   *\n   * @returns {string} the path to the iris app\n   */\n  irisAppPath: string;\n\n  installation: Omit<InstallationConfig, \"accountIds\">;\n};\n\n/**\n * @deprecated\n */\nexport interface IrisAppManifest_1_0 {\n  /**\n   * A spec version for the manifest.\n   * This should not be changed manually.\n   */\n  specVersion: \"1.0\";\n  /**\n   * The name of the exposed module from module federation build into the remoteEntry.js.\n   * Basically the name of your app including workspace name, automatically parsed from your app-specific package.json.\n   */\n  moduleFederationName: string;\n\n  /**\n   * A configuration object for handling scoped token acquisition.\n   */\n  consentConfig?: ConsentConfig | \"inherit\";\n\n  /**\n   * Controls the visibility of your app and how it is installed.\n   * The different modes are:\n   * - Enabled means its enabled on the subscription when this Iris app is approved.\n   * - Visible means it will be visible to the customer to choose for them selves to enable/disable it.\n   *\n   * - FORCE_ENABLE then it can not be removed by the end customer, and will be installed based on the selected subscription package.\n   * - DEFAULT_ENABLE means it will be enabled when a customer activates a new subscription package.\n   * - ALWAYS_VISIBLE then it will always be visible for all customers.\n   * - CONTROLLED_MANUAL_INSTALLATION then it will be controlled by the team that activates the subscription package for the customer, not activating the app.\n   * - CONTROLLED_AUTOMATIC_INSTALLATION then it will be controlled by the team that activates the subscription package for the customer, also adding.\n   *\n   * All modes will take into consideration both {@link IrisAppManifest_1_0.validForAccountIds} and {@link IrisAppManifest_1_0.marketplace}.allowForPackage\n   */\n  activationMode: ActivationMode;\n\n  /**\n   * A list of any external domains that the app needs to communicate with.\n   * The list is audited in the approval step of the app and every external API call\n   * must be listed here to get through the verification process.\n   * Even if it goes through without being listed, your app will fail to call the endpoint.\n   */\n  validDomains: string[];\n  /**\n   * Put `ALL_ACCOUNTS` in if your app is available to all users.\n   * If you want to only make it available to certain users, provide a list of account ID's as strings.\n   */\n  validForAccountIds: \"ALL_ACCOUNTS\" | string[];\n  /**\n   * A configuration object for the Marketplace entry.\n   * Holds all the settings associated with your apps listing on the marketplace.\n   */\n  marketplace: Marketplace_1_0;\n  /**\n   * A full list of runtime dependencies for the App.\n   * Used for performance optimization and security scans.\n   * It is automatically parsed from the package.json in root.\n   */\n  dependencies: Dependencies;\n\n  /**\n   * A full list of dev dependencies for the App.\n   * Used for security scans.\n   */\n  devDependencies: Dependencies;\n\n  /**\n   * A list of extensions to the UI that this app manifest exposes.\n   * Extensions are automatically added when a new extension is generated.\n   * The array contains an import of the extension manifest within the extension.\n   * If an extension is required in multiple apps, the you must manually add it to the arrays of those apps.\n   */\n  extensions: IrisAppExtension[];\n\n  /**\n   * A list of custom field definitions.\n   */\n  customFieldDefinitions?: CustomFieldDefinition[];\n}\n\n/**\n * @deprecated\n */\nexport type ActivationMode =\n  | \"FORCE_ENABLE\"\n  | \"DEFAULT_ENABLE\"\n  | \"ALWAYS_VISIBLE\"\n  | \"CONTROLLED_MANUAL_INSTALLATION\"\n  | \"CONTROLLED_AUTOMATIC_INSTALLATION\";\n"]}
+{"version":3,"file":"irisAppManifest.js","sourceRoot":"","sources":["../../../../../../libs/iris-app-sdk/iris-app-api/src/types/irisAppManifest.ts"],"names":[],"mappings":"","sourcesContent":["import { CSPDirectives } from \"./cspDirectives\";\nimport {\n  AdminExtensionManifest,\n  AssetEventsActionsExtensionManifest,\n  AssetHomeExtensionManifest,\n  FleetExtensionManifest,\n  IrisAppSettingsExtensionManifest,\n  ReportExtensionManifest,\n  SiteHomeExtensionManifest,\n} from \"./extensions\";\nimport { WidgetExtensionManifest } from \"./extensions/widgetExtensionManifest\";\nimport {\n  BooleanFieldDefinition,\n  DateFieldDefinition,\n  DecimalNumberFieldDefinition,\n  DropDownFieldDefinition,\n  EmailFieldDefinition,\n  IntegerNumberFieldDefinition,\n  JsonFieldDefinition,\n  MonetaryFieldDefinition,\n  PhoneNumberFieldDefinition,\n  StringFieldDefinition,\n  WebAddressFieldDefinition,\n} from \"./irisAppCustomFields\";\nimport { InstallationConfig } from \"./irisAppInstallationConfig\";\nimport { Marketplace, Marketplace_1_0 } from \"./irisAppMarketplace\";\nimport { Scope } from \"./scopes\";\n\nexport interface IrisAppManifest\n  extends Omit<\n    IrisAppManifest_1_0,\n    \"specVersion\" | \"activationMode\" | \"marketplace\" | \"validForAccountIds\" | \"consentConfig\"\n  > {\n  /**\n   * A spec version for the manifest.\n   * This should not be changed manually.\n   */\n  specVersion: \"1.1\";\n\n  /**\n   * Configuration for the installation of the app.\n   *\n   * Each parameter can be combined to create rules to target specific customers.\n   * Each parameter works as a filter to decide if an app is available to a specific customer.\n   */\n  installation: InstallationConfig;\n\n  /**\n   * A configuration object for the Marketplace entry\n   */\n  marketplace: Marketplace;\n\n  /**\n   * Scopes needed in app tokens, these scopes are used from the token - when contacting Trackunits backend.\n   */\n  scopes?: RequiredOrOptionalScope | RequiredOrOptionalScope[];\n\n  /**\n   * Configuration of callback to get credentials to call the API after app installation.\n   */\n  tokenCallback?: {\n    url: string;\n  };\n\n  cspHeader?: Partial<CSPDirectives>;\n}\n\nexport type RequiredOrOptionalScope = { scope: Scope; optional?: boolean };\n\nexport declare type IrisAppExtension =\n  | AssetHomeExtensionManifest\n  | IrisAppSettingsExtensionManifest\n  | AdminExtensionManifest\n  | FleetExtensionManifest\n  | SiteHomeExtensionManifest\n  | WidgetExtensionManifest\n  | ReportExtensionManifest\n  | AssetEventsActionsExtensionManifest;\n\nexport declare type CustomFieldDefinition =\n  | BooleanFieldDefinition\n  | DecimalNumberFieldDefinition\n  | IntegerNumberFieldDefinition\n  | DateFieldDefinition\n  | DropDownFieldDefinition\n  | StringFieldDefinition\n  | EmailFieldDefinition\n  | PhoneNumberFieldDefinition\n  | WebAddressFieldDefinition\n  | JsonFieldDefinition\n  | MonetaryFieldDefinition;\n\n/**\n * @deprecated\n */\nexport interface ConsentConfig {\n  /**\n   * The application type. Should be one of WEB or BROWSER.\n   */\n  applicationType: \"WEB\" | \"BROWSER\";\n  /**\n   * List of scopes required by the application.\n   */\n  scopes: string[];\n  /**\n   * List of redirect URIs to be used when returning an authorization code.\n   */\n  redirectUris?: string[];\n}\n\nexport interface Dependencies {\n  [packageName: string]: string;\n}\n\nexport type PublicIrisAppManifest = Omit<IrisAppManifest, \"dependencies\" | \"devDependencies\" | \"installation\"> & {\n  /**\n   * Relative path for this iris app.\n   *\n   * @returns {string} the path to the iris app\n   */\n  irisAppPath: string;\n\n  installation: Omit<InstallationConfig, \"accountIds\">;\n};\n\n/**\n * @deprecated\n */\nexport interface IrisAppManifest_1_0 {\n  /**\n   * A spec version for the manifest.\n   * This should not be changed manually.\n   */\n  specVersion: \"1.0\";\n  /**\n   * The name of the exposed module from module federation build into the remoteEntry.js.\n   * Basically the name of your app including workspace name, automatically parsed from your app-specific package.json.\n   */\n  moduleFederationName: string;\n\n  /**\n   * A configuration object for handling scoped token acquisition.\n   *\n   * @deprecated Use `scopes` instead.\n   */\n  consentConfig?: ConsentConfig | \"inherit\";\n\n  /**\n   * Controls the visibility of your app and how it is installed.\n   * The different modes are:\n   * - Enabled means its enabled on the subscription when this Iris app is approved.\n   * - Visible means it will be visible to the customer to choose for them selves to enable/disable it.\n   *\n   * - FORCE_ENABLE then it can not be removed by the end customer, and will be installed based on the selected subscription package.\n   * - DEFAULT_ENABLE means it will be enabled when a customer activates a new subscription package.\n   * - ALWAYS_VISIBLE then it will always be visible for all customers.\n   * - CONTROLLED_MANUAL_INSTALLATION then it will be controlled by the team that activates the subscription package for the customer, not activating the app.\n   * - CONTROLLED_AUTOMATIC_INSTALLATION then it will be controlled by the team that activates the subscription package for the customer, also adding.\n   *\n   * All modes will take into consideration both {@link IrisAppManifest_1_0.validForAccountIds} and {@link IrisAppManifest_1_0.marketplace}.allowForPackage\n   *\n   * @deprecated Use `installation.policy` instead.\n   */\n  activationMode: ActivationMode;\n\n  /**\n   * A list of any external domains that the app needs to communicate with.\n   * The list is audited in the approval step of the app and every external API call\n   * must be listed here to get through the verification process.\n   * Even if it goes through without being listed, your app will fail to call the endpoint.\n   *\n   * @deprecated Use `cspHeader` instead\n   */\n  validDomains?: string[];\n  /**\n   * Put `ALL_ACCOUNTS` in if your app is available to all users.\n   * If you want to only make it available to certain users, provide a list of account ID's as strings.\n   */\n  validForAccountIds: \"ALL_ACCOUNTS\" | string[];\n  /**\n   * A configuration object for the Marketplace entry.\n   * Holds all the settings associated with your apps listing on the marketplace.\n   */\n  marketplace: Marketplace_1_0;\n  /**\n   * A full list of runtime dependencies for the App.\n   * Used for performance optimization and security scans.\n   * It is automatically parsed from the package.json in root.\n   */\n  dependencies: Dependencies;\n\n  /**\n   * A full list of dev dependencies for the App.\n   * Used for security scans.\n   */\n  devDependencies: Dependencies;\n\n  /**\n   * A list of extensions to the UI that this app manifest exposes.\n   * Extensions are automatically added when a new extension is generated.\n   * The array contains an import of the extension manifest within the extension.\n   * If an extension is required in multiple apps, the you must manually add it to the arrays of those apps.\n   */\n  extensions: IrisAppExtension[];\n\n  /**\n   * A list of custom field definitions.\n   */\n  customFieldDefinitions?: CustomFieldDefinition[];\n}\n\n/**\n * @deprecated\n */\nexport type ActivationMode =\n  | \"FORCE_ENABLE\"\n  | \"DEFAULT_ENABLE\"\n  | \"ALWAYS_VISIBLE\"\n  | \"CONTROLLED_MANUAL_INSTALLATION\"\n  | \"CONTROLLED_AUTOMATIC_INSTALLATION\";\n"]}