@twin.org/api-service 0.0.3-next.43 → 0.0.3-next.44

package/dist/es/index.js

@@ -5,14 +5,14 @@ export * from "./healthService.js";
 export * from "./hostingService.js";
 export * from "./informationRoutes.js";
 export * from "./informationService.js";
-export * from "./urlTransformerService.js";
 export * from "./models/IHealthServiceConfig.js";
 export * from "./models/IHealthServiceConstructorOptions.js";
 export * from "./models/IHostingServiceConfig.js";
 export * from "./models/IHostingServiceConstructorOptions.js";
 export * from "./models/IInformationServiceConfig.js";
 export * from "./models/IInformationServiceConstructorOptions.js";
-export * from "./models/IUrlTransformerServiceConfig.js";
-export * from "./models/IUrlTransformerServiceConstructorOptions.js";
+export * from "./models/IPlatformServiceConfig.js";
+export * from "./models/IPlatformServiceConstructorOptions.js";
+export * from "./platformService.js";
 export * from "./restEntryPoints.js";
 //# sourceMappingURL=index.js.map

package/dist/es/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,uCAAuC;AACvC,cAAc,mBAAmB,CAAC;AAClC,cAAc,oBAAoB,CAAC;AACnC,cAAc,qBAAqB,CAAC;AACpC,cAAc,wBAAwB,CAAC;AACvC,cAAc,yBAAyB,CAAC;AACxC,cAAc,4BAA4B,CAAC;AAC3C,cAAc,kCAAkC,CAAC;AACjD,cAAc,8CAA8C,CAAC;AAC7D,cAAc,mCAAmC,CAAC;AAClD,cAAc,+CAA+C,CAAC;AAC9D,cAAc,uCAAuC,CAAC;AACtD,cAAc,mDAAmD,CAAC;AAClE,cAAc,0CAA0C,CAAC;AACzD,cAAc,sDAAsD,CAAC;AACrE,cAAc,sBAAsB,CAAC","sourcesContent":["// Copyright 2024 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\nexport * from \"./healthRoutes.js\";\nexport * from \"./healthService.js\";\nexport * from \"./hostingService.js\";\nexport * from \"./informationRoutes.js\";\nexport * from \"./informationService.js\";\nexport * from \"./urlTransformerService.js\";\nexport * from \"./models/IHealthServiceConfig.js\";\nexport * from \"./models/IHealthServiceConstructorOptions.js\";\nexport * from \"./models/IHostingServiceConfig.js\";\nexport * from \"./models/IHostingServiceConstructorOptions.js\";\nexport * from \"./models/IInformationServiceConfig.js\";\nexport * from \"./models/IInformationServiceConstructorOptions.js\";\nexport * from \"./models/IUrlTransformerServiceConfig.js\";\nexport * from \"./models/IUrlTransformerServiceConstructorOptions.js\";\nexport * from \"./restEntryPoints.js\";\n"]}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,uCAAuC;AACvC,cAAc,mBAAmB,CAAC;AAClC,cAAc,oBAAoB,CAAC;AACnC,cAAc,qBAAqB,CAAC;AACpC,cAAc,wBAAwB,CAAC;AACvC,cAAc,yBAAyB,CAAC;AACxC,cAAc,kCAAkC,CAAC;AACjD,cAAc,8CAA8C,CAAC;AAC7D,cAAc,mCAAmC,CAAC;AAClD,cAAc,+CAA+C,CAAC;AAC9D,cAAc,uCAAuC,CAAC;AACtD,cAAc,mDAAmD,CAAC;AAClE,cAAc,oCAAoC,CAAC;AACnD,cAAc,gDAAgD,CAAC;AAC/D,cAAc,sBAAsB,CAAC;AACrC,cAAc,sBAAsB,CAAC","sourcesContent":["// Copyright 2024 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\nexport * from \"./healthRoutes.js\";\nexport * from \"./healthService.js\";\nexport * from \"./hostingService.js\";\nexport * from \"./informationRoutes.js\";\nexport * from \"./informationService.js\";\nexport * from \"./models/IHealthServiceConfig.js\";\nexport * from \"./models/IHealthServiceConstructorOptions.js\";\nexport * from \"./models/IHostingServiceConfig.js\";\nexport * from \"./models/IHostingServiceConstructorOptions.js\";\nexport * from \"./models/IInformationServiceConfig.js\";\nexport * from \"./models/IInformationServiceConstructorOptions.js\";\nexport * from \"./models/IPlatformServiceConfig.js\";\nexport * from \"./models/IPlatformServiceConstructorOptions.js\";\nexport * from \"./platformService.js\";\nexport * from \"./restEntryPoints.js\";\n"]}

package/dist/es/models/IPlatformServiceConfig.js

@@ -0,0 +1,4 @@
+// Copyright 2026 IOTA Stiftung.
+// SPDX-License-Identifier: Apache-2.0.
+export {};
+//# sourceMappingURL=IPlatformServiceConfig.js.map

package/dist/es/models/IPlatformServiceConfig.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"IPlatformServiceConfig.js","sourceRoot":"","sources":["../../../src/models/IPlatformServiceConfig.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,uCAAuC","sourcesContent":["// Copyright 2026 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\n\n/**\n * Configuration for the platform service\n */\nexport interface IPlatformServiceConfig {\n\t/**\n\t * Indicates whether the service is running in a multi-tenant environment.\n\t * @default false\n\t */\n\tisMultiTenant?: boolean;\n}\n"]}

package/dist/es/models/IPlatformServiceConstructorOptions.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=IPlatformServiceConstructorOptions.js.map

package/dist/es/models/IPlatformServiceConstructorOptions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"IPlatformServiceConstructorOptions.js","sourceRoot":"","sources":["../../../src/models/IPlatformServiceConstructorOptions.ts"],"names":[],"mappings":"","sourcesContent":["// Copyright 2026 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\nimport type { IPlatformServiceConfig } from \"./IPlatformServiceConfig.js\";\n\n/**\n * Options for the Platform Service constructor.\n */\nexport interface IPlatformServiceConstructorOptions {\n\t/**\n\t * The entity storage for the tenants.\n\t * @default tenant\n\t */\n\ttenantEntityStorageType?: string;\n\n\t/**\n\t * Configuration for the service.\n\t */\n\tconfig?: IPlatformServiceConfig;\n}\n"]}

package/dist/es/platformService.js

@@ -0,0 +1,76 @@
+import { ContextIdKeys, ContextIdStore } from "@twin.org/context";
+import { Is } from "@twin.org/core";
+import { EntityStorageConnectorFactory } from "@twin.org/entity-storage-models";
+/**
+ * Service for performing platform operations.
+ */
+export class PlatformService {
+    /**
+     * Runtime name for the class.
+     */
+    static CLASS_NAME = "PlatformService";
+    /**
+     * The type of entity storage connector to use for tenant lookups, if multi-tenant.
+     * @internal
+     */
+    _entityStorageConnectorType;
+    /**
+     * Entity storage connector used by the service.
+     * @internal
+     */
+    _entityStorageConnector;
+    /**
+     * Indicates whether the service is running in a multi-tenant environment.
+     * @internal
+     */
+    _isMultiTenant;
+    /**
+     * Create a new instance of PlatformService.
+     * @param options The options for the connector.
+     */
+    constructor(options) {
+        this._entityStorageConnectorType = options?.tenantEntityStorageType ?? "tenant";
+        this._isMultiTenant = options?.config?.isMultiTenant ?? false;
+    }
+    /**
+     * Returns the class name of the component.
+     * @returns The class name of the component.
+     */
+    className() {
+        return PlatformService.CLASS_NAME;
+    }
+    /**
+     * Indicates whether the component is running in a multi-tenant environment.
+     * @returns True if the component is running in a multi-tenant environment, false otherwise.
+     */
+    isMultiTenant() {
+        return this._isMultiTenant;
+    }
+    /**
+     * Execute a method, if single tenant will run once, if multi-tenant will run for each tenant.
+     * @param method The method to run for each tenant.
+     * @returns Nothing.
+     */
+    async execute(method) {
+        if (this._isMultiTenant) {
+            if (Is.empty(this._entityStorageConnector)) {
+                this._entityStorageConnector = EntityStorageConnectorFactory.get(this._entityStorageConnectorType);
+            }
+            let cursor;
+            const baseContextIds = (await ContextIdStore.getContextIds()) ?? {};
+            do {
+                const result = await this._entityStorageConnector.query(undefined, undefined, ["id"], cursor);
+                for (const tenant of result.entities) {
+                    await ContextIdStore.run({ ...baseContextIds, [ContextIdKeys.Tenant]: tenant.id }, async () => {
+                        await method();
+                    });
+                }
+                cursor = result.cursor;
+            } while (Is.stringValue(cursor));
+        }
+        else {
+            await method();
+        }
+    }
+}
+//# sourceMappingURL=platformService.js.map

package/dist/es/platformService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"platformService.js","sourceRoot":"","sources":["../../src/platformService.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAClE,OAAO,EAAE,EAAE,EAAE,MAAM,gBAAgB,CAAC;AACpC,OAAO,EACN,6BAA6B,EAE7B,MAAM,iCAAiC,CAAC;AAIzC;;GAEG;AACH,MAAM,OAAO,eAAe;IAC3B;;OAEG;IACI,MAAM,CAAU,UAAU,qBAAqC;IAEtE;;;OAGG;IACc,2BAA2B,CAAS;IAErD;;;OAGG;IACK,uBAAuB,CAAoC;IAEnE;;;OAGG;IACc,cAAc,CAAU;IAEzC;;;OAGG;IACH,YAAY,OAA4C;QACvD,IAAI,CAAC,2BAA2B,GAAG,OAAO,EAAE,uBAAuB,IAAI,QAAQ,CAAC;QAChF,IAAI,CAAC,cAAc,GAAG,OAAO,EAAE,MAAM,EAAE,aAAa,IAAI,KAAK,CAAC;IAC/D,CAAC;IAED;;;OAGG;IACI,SAAS;QACf,OAAO,eAAe,CAAC,UAAU,CAAC;IACnC,CAAC;IAED;;;OAGG;IACI,aAAa;QACnB,OAAO,IAAI,CAAC,cAAc,CAAC;IAC5B,CAAC;IAED;;;;OAIG;IACI,KAAK,CAAC,OAAO,CAAC,MAA2B;QAC/C,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YACzB,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,uBAAuB,CAAC,EAAE,CAAC;gBAC5C,IAAI,CAAC,uBAAuB,GAAG,6BAA6B,CAAC,GAAG,CAC/D,IAAI,CAAC,2BAA2B,CAChC,CAAC;YACH,CAAC;YAED,IAAI,MAA0B,CAAC;YAE/B,MAAM,cAAc,GAAG,CAAC,MAAM,cAAc,CAAC,aAAa,EAAE,CAAC,IAAI,EAAE,CAAC;YAEpE,GAAG,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,uBAAuB,CAAC,KAAK,CACtD,SAAS,EACT,SAAS,EACT,CAAC,IAAI,CAAC,EACN,MAAM,CACN,CAAC;gBAEF,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;oBACtC,MAAM,cAAc,CAAC,GAAG,CACvB,EAAE,GAAG,cAAc,EAAE,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC,EAAE,EAAE,EACxD,KAAK,IAAI,EAAE;wBACV,MAAM,MAAM,EAAE,CAAC;oBAChB,CAAC,CACD,CAAC;gBACH,CAAC;gBAED,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;YACxB,CAAC,QAAQ,EAAE,CAAC,WAAW,CAAC,MAAM,CAAC,EAAE;QAClC,CAAC;aAAM,CAAC;YACP,MAAM,MAAM,EAAE,CAAC;QAChB,CAAC;IACF,CAAC","sourcesContent":["// Copyright 2026 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\nimport type { IPlatformComponent, ITenant } from \"@twin.org/api-models\";\nimport { ContextIdKeys, ContextIdStore } from \"@twin.org/context\";\nimport { Is } from \"@twin.org/core\";\nimport {\n\tEntityStorageConnectorFactory,\n\ttype IEntityStorageConnector\n} from \"@twin.org/entity-storage-models\";\nimport { nameof } from \"@twin.org/nameof\";\nimport type { IPlatformServiceConstructorOptions } from \"./models/IPlatformServiceConstructorOptions.js\";\n\n/**\n * Service for performing platform operations.\n */\nexport class PlatformService implements IPlatformComponent {\n\t/**\n\t * Runtime name for the class.\n\t */\n\tpublic static readonly CLASS_NAME: string = nameof<PlatformService>();\n\n\t/**\n\t * The type of entity storage connector to use for tenant lookups, if multi-tenant.\n\t * @internal\n\t */\n\tprivate readonly _entityStorageConnectorType: string;\n\n\t/**\n\t * Entity storage connector used by the service.\n\t * @internal\n\t */\n\tprivate _entityStorageConnector?: IEntityStorageConnector<ITenant>;\n\n\t/**\n\t * Indicates whether the service is running in a multi-tenant environment.\n\t * @internal\n\t */\n\tprivate readonly _isMultiTenant: boolean;\n\n\t/**\n\t * Create a new instance of PlatformService.\n\t * @param options The options for the connector.\n\t */\n\tconstructor(options?: IPlatformServiceConstructorOptions) {\n\t\tthis._entityStorageConnectorType = options?.tenantEntityStorageType ?? \"tenant\";\n\t\tthis._isMultiTenant = options?.config?.isMultiTenant ?? false;\n\t}\n\n\t/**\n\t * Returns the class name of the component.\n\t * @returns The class name of the component.\n\t */\n\tpublic className(): string {\n\t\treturn PlatformService.CLASS_NAME;\n\t}\n\n\t/**\n\t * Indicates whether the component is running in a multi-tenant environment.\n\t * @returns True if the component is running in a multi-tenant environment, false otherwise.\n\t */\n\tpublic isMultiTenant(): boolean {\n\t\treturn this._isMultiTenant;\n\t}\n\n\t/**\n\t * Execute a method, if single tenant will run once, if multi-tenant will run for each tenant.\n\t * @param method The method to run for each tenant.\n\t * @returns Nothing.\n\t */\n\tpublic async execute(method: () => Promise<void>): Promise<void> {\n\t\tif (this._isMultiTenant) {\n\t\t\tif (Is.empty(this._entityStorageConnector)) {\n\t\t\t\tthis._entityStorageConnector = EntityStorageConnectorFactory.get(\n\t\t\t\t\tthis._entityStorageConnectorType\n\t\t\t\t);\n\t\t\t}\n\n\t\t\tlet cursor: string | undefined;\n\n\t\t\tconst baseContextIds = (await ContextIdStore.getContextIds()) ?? {};\n\n\t\t\tdo {\n\t\t\t\tconst result = await this._entityStorageConnector.query(\n\t\t\t\t\tundefined,\n\t\t\t\t\tundefined,\n\t\t\t\t\t[\"id\"],\n\t\t\t\t\tcursor\n\t\t\t\t);\n\n\t\t\t\tfor (const tenant of result.entities) {\n\t\t\t\t\tawait ContextIdStore.run(\n\t\t\t\t\t\t{ ...baseContextIds, [ContextIdKeys.Tenant]: tenant.id },\n\t\t\t\t\t\tasync () => {\n\t\t\t\t\t\t\tawait method();\n\t\t\t\t\t\t}\n\t\t\t\t\t);\n\t\t\t\t}\n\n\t\t\t\tcursor = result.cursor;\n\t\t\t} while (Is.stringValue(cursor));\n\t\t} else {\n\t\t\tawait method();\n\t\t}\n\t}\n}\n"]}

package/dist/types/index.d.ts

@@ -3,13 +3,13 @@ export * from "./healthService.js";
 export * from "./hostingService.js";
 export * from "./informationRoutes.js";
 export * from "./informationService.js";
-export * from "./urlTransformerService.js";
 export * from "./models/IHealthServiceConfig.js";
 export * from "./models/IHealthServiceConstructorOptions.js";
 export * from "./models/IHostingServiceConfig.js";
 export * from "./models/IHostingServiceConstructorOptions.js";
 export * from "./models/IInformationServiceConfig.js";
 export * from "./models/IInformationServiceConstructorOptions.js";
-export * from "./models/IUrlTransformerServiceConfig.js";
-export * from "./models/IUrlTransformerServiceConstructorOptions.js";
+export * from "./models/IPlatformServiceConfig.js";
+export * from "./models/IPlatformServiceConstructorOptions.js";
+export * from "./platformService.js";
 export * from "./restEntryPoints.js";

package/dist/types/models/IPlatformServiceConfig.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Configuration for the platform service
+ */
+export interface IPlatformServiceConfig {
+    /**
+     * Indicates whether the service is running in a multi-tenant environment.
+     * @default false
+     */
+    isMultiTenant?: boolean;
+}

package/dist/types/models/IPlatformServiceConstructorOptions.d.ts

@@ -0,0 +1,15 @@
+import type { IPlatformServiceConfig } from "./IPlatformServiceConfig.js";
+/**
+ * Options for the Platform Service constructor.
+ */
+export interface IPlatformServiceConstructorOptions {
+    /**
+     * The entity storage for the tenants.
+     * @default tenant
+     */
+    tenantEntityStorageType?: string;
+    /**
+     * Configuration for the service.
+     */
+    config?: IPlatformServiceConfig;
+}

package/dist/types/platformService.d.ts

@@ -0,0 +1,32 @@
+import type { IPlatformComponent } from "@twin.org/api-models";
+import type { IPlatformServiceConstructorOptions } from "./models/IPlatformServiceConstructorOptions.js";
+/**
+ * Service for performing platform operations.
+ */
+export declare class PlatformService implements IPlatformComponent {
+    /**
+     * Runtime name for the class.
+     */
+    static readonly CLASS_NAME: string;
+    /**
+     * Create a new instance of PlatformService.
+     * @param options The options for the connector.
+     */
+    constructor(options?: IPlatformServiceConstructorOptions);
+    /**
+     * Returns the class name of the component.
+     * @returns The class name of the component.
+     */
+    className(): string;
+    /**
+     * Indicates whether the component is running in a multi-tenant environment.
+     * @returns True if the component is running in a multi-tenant environment, false otherwise.
+     */
+    isMultiTenant(): boolean;
+    /**
+     * Execute a method, if single tenant will run once, if multi-tenant will run for each tenant.
+     * @param method The method to run for each tenant.
+     * @returns Nothing.
+     */
+    execute(method: () => Promise<void>): Promise<void>;
+}

package/docs/changelog.md

@@ -1,5 +1,19 @@
 # Changelog
 
+## [0.0.3-next.44](https://github.com/iotaledger/twin-api/compare/api-service-v0.0.3-next.43...api-service-v0.0.3-next.44) (2026-06-11)
+
+
+### Features
+
+* organization identifiers ([#158](https://github.com/iotaledger/twin-api/issues/158)) ([ce13244](https://github.com/iotaledger/twin-api/commit/ce13244aaacbf82d9e5f87d905e283b36ad63bbf))
+
+
+### Dependencies
+
+* The following workspace dependencies were updated
+  * dependencies
+    * @twin.org/api-models bumped from 0.0.3-next.43 to 0.0.3-next.44
+
 ## [0.0.3-next.43](https://github.com/iotaledger/twin-api/compare/api-service-v0.0.3-next.42...api-service-v0.0.3-next.43) (2026-06-10)
 
 

package/docs/reference/classes/PlatformService.md

@@ -0,0 +1,97 @@
+# Class: PlatformService
+
+Service for performing platform operations.
+
+## Implements
+
+- `IPlatformComponent`
+
+## Constructors
+
+### Constructor
+
+> **new PlatformService**(`options?`): `PlatformService`
+
+Create a new instance of PlatformService.
+
+#### Parameters
+
+##### options?
+
+[`IPlatformServiceConstructorOptions`](../interfaces/IPlatformServiceConstructorOptions.md)
+
+The options for the connector.
+
+#### Returns
+
+`PlatformService`
+
+## Properties
+
+### CLASS\_NAME {#class_name}
+
+> `readonly` `static` **CLASS\_NAME**: `string`
+
+Runtime name for the class.
+
+## Methods
+
+### className() {#classname}
+
+> **className**(): `string`
+
+Returns the class name of the component.
+
+#### Returns
+
+`string`
+
+The class name of the component.
+
+#### Implementation of
+
+`IPlatformComponent.className`
+
+***
+
+### isMultiTenant() {#ismultitenant}
+
+> **isMultiTenant**(): `boolean`
+
+Indicates whether the component is running in a multi-tenant environment.
+
+#### Returns
+
+`boolean`
+
+True if the component is running in a multi-tenant environment, false otherwise.
+
+#### Implementation of
+
+`IPlatformComponent.isMultiTenant`
+
+***
+
+### execute() {#execute}
+
+> **execute**(`method`): `Promise`\<`void`\>
+
+Execute a method, if single tenant will run once, if multi-tenant will run for each tenant.
+
+#### Parameters
+
+##### method
+
+() => `Promise`\<`void`\>
+
+The method to run for each tenant.
+
+#### Returns
+
+`Promise`\<`void`\>
+
+Nothing.
+
+#### Implementation of
+
+`IPlatformComponent.execute`

package/docs/reference/index.md

@@ -5,7 +5,7 @@
 - [HealthService](classes/HealthService.md)
 - [HostingService](classes/HostingService.md)
 - [InformationService](classes/InformationService.md)
-- [UrlTransformerService](classes/UrlTransformerService.md)
+- [PlatformService](classes/PlatformService.md)
 
 ## Interfaces
 
@@ -15,8 +15,8 @@
 - [IHostingServiceConstructorOptions](interfaces/IHostingServiceConstructorOptions.md)
 - [IInformationServiceConfig](interfaces/IInformationServiceConfig.md)
 - [IInformationServiceConstructorOptions](interfaces/IInformationServiceConstructorOptions.md)
-- [IUrlTransformerServiceConfig](interfaces/IUrlTransformerServiceConfig.md)
-- [IUrlTransformerServiceConstructorOptions](interfaces/IUrlTransformerServiceConstructorOptions.md)
+- [IPlatformServiceConfig](interfaces/IPlatformServiceConfig.md)
+- [IPlatformServiceConstructorOptions](interfaces/IPlatformServiceConstructorOptions.md)
 
 ## Variables
 

package/docs/reference/interfaces/IPlatformServiceConfig.md

@@ -0,0 +1,17 @@
+# Interface: IPlatformServiceConfig
+
+Configuration for the platform service
+
+## Properties
+
+### isMultiTenant? {#ismultitenant}
+
+> `optional` **isMultiTenant?**: `boolean`
+
+Indicates whether the service is running in a multi-tenant environment.
+
+#### Default
+
+```ts
+false
+```

package/docs/reference/interfaces/IPlatformServiceConstructorOptions.md

@@ -0,0 +1,25 @@
+# Interface: IPlatformServiceConstructorOptions
+
+Options for the Platform Service constructor.
+
+## Properties
+
+### tenantEntityStorageType? {#tenantentitystoragetype}
+
+> `optional` **tenantEntityStorageType?**: `string`
+
+The entity storage for the tenants.
+
+#### Default
+
+```ts
+tenant
+```
+
+***
+
+### config? {#config}
+
+> `optional` **config?**: [`IPlatformServiceConfig`](IPlatformServiceConfig.md)
+
+Configuration for the service.

package/locales/en.json

@@ -1,11 +1,5 @@
 {
 	"error": {
-		"urlTransformerService": {
-			"encryptionUnavailable": "Encryption is unavailable because no nodeId is configured",
-			"decryptionUnavailable": "Decryption is unavailable because no nodeId is configured",
-			"encryptionFailed": "An error occurred during encryption",
-			"decryptionFailed": "An error occurred during decryption"
-		},
 		"healthService": {
 			"componentHealthCheckFailed": "Health check failed for component \"{className}\""
 		}

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@twin.org/api-service",
-	"version": "0.0.3-next.43",
+	"version": "0.0.3-next.44",
 	"description": "Information and hosting service implementations with generated REST route handlers.",
 	"repository": {
 		"type": "git",
@@ -14,10 +14,11 @@
 		"node": ">=20.0.0"
 	},
 	"dependencies": {
-		"@twin.org/api-models": "0.0.3-next.43",
+		"@twin.org/api-models": "0.0.3-next.44",
 		"@twin.org/context": "next",
 		"@twin.org/core": "next",
 		"@twin.org/engine-models": "next",
+		"@twin.org/entity-storage-models": "next",
 		"@twin.org/logging-models": "next",
 		"@twin.org/nameof": "next",
 		"@twin.org/vault-models": "next",

package/dist/es/models/IUrlTransformerServiceConfig.js

@@ -1,4 +0,0 @@
-// Copyright 2024 IOTA Stiftung.
-// SPDX-License-Identifier: Apache-2.0.
-export {};
-//# sourceMappingURL=IUrlTransformerServiceConfig.js.map

package/dist/es/models/IUrlTransformerServiceConfig.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"IUrlTransformerServiceConfig.js","sourceRoot":"","sources":["../../../src/models/IUrlTransformerServiceConfig.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAChC,uCAAuC","sourcesContent":["// Copyright 2024 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\n\n/**\n * Configuration for the URL transformer service.\n */\nexport interface IUrlTransformerServiceConfig {\n\t/**\n\t * The name of the key to retrieve from the vault for encryption/decryption of parameters.\n\t * @default param-encryption\n\t */\n\tparamEncryptionKeyName?: string;\n\n\t/**\n\t * A dictionary mapping logical token identifiers to their URL query parameter names.\n\t * For example: tenant => tenant-token maps the logical id \"tenant\" to the\n\t * query param \"tenant-token\". When an id is not present the id itself is used as\n\t * the param name.\n\t */\n\tqueryParamNames?: { [id: string]: string };\n}\n"]}

package/dist/es/models/IUrlTransformerServiceConstructorOptions.js

@@ -1,2 +0,0 @@
-export {};
-//# sourceMappingURL=IUrlTransformerServiceConstructorOptions.js.map

package/dist/es/models/IUrlTransformerServiceConstructorOptions.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"IUrlTransformerServiceConstructorOptions.js","sourceRoot":"","sources":["../../../src/models/IUrlTransformerServiceConstructorOptions.ts"],"names":[],"mappings":"","sourcesContent":["// Copyright 2024 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\nimport type { IUrlTransformerServiceConfig } from \"./IUrlTransformerServiceConfig.js\";\n\n/**\n * Options for the UrlTransformerService constructor.\n */\nexport interface IUrlTransformerServiceConstructorOptions {\n\t/**\n\t * The vault connector type.\n\t * @default vault\n\t */\n\tvaultConnectorType?: string;\n\n\t/**\n\t * The configuration for the service.\n\t */\n\tconfig?: IUrlTransformerServiceConfig;\n}\n"]}

package/dist/es/urlTransformerService.js

@@ -1,256 +0,0 @@
-import { ContextIdKeys, ContextIdStore } from "@twin.org/context";
-import { BaseError, Converter, GeneralError, Guards, Is, ObjectHelper, RandomHelper, Uint8ArrayHelper } from "@twin.org/core";
-import { VaultConnectorFactory, VaultEncryptionType } from "@twin.org/vault-models";
-/**
- * The URL transformer service for encrypting and decrypting URL parameters.
- */
-export class UrlTransformerService {
-    /**
-     * Runtime name for the class.
-     */
-    static CLASS_NAME = "UrlTransformerService";
-    /**
-     * The prefix to use for encrypted query parameters.
-     * @internal
-     */
-    static _KEY_PREFIX = "x-enc-";
-    /**
-     * The default name for the parameter encryption key query parameter.
-     * @internal
-     */
-    static _DEFAULT_PARAM_ENCRYPTION_KEY_NAME = "param-encryption";
-    /**
-     * The vault connector.
-     * @internal
-     */
-    _vaultConnector;
-    /**
-     * The name of the key to retrieve from the vault for encryption/decryption of parameters.
-     * @internal
-     */
-    _paramEncryptionKeyName;
-    /**
-     * Maps logical token ids to their URL query parameter names.
-     * @internal
-     */
-    _queryParamNames;
-    /**
-     * The node identity, captured at start.
-     * @internal
-     */
-    _nodeId;
-    /**
-     * Create a new instance of UrlTransformerService.
-     * @param options The options to create the service.
-     */
-    constructor(options) {
-        this._vaultConnector = VaultConnectorFactory.get(options?.vaultConnectorType ?? "vault");
-        this._paramEncryptionKeyName =
-            options?.config?.paramEncryptionKeyName ??
-                UrlTransformerService._DEFAULT_PARAM_ENCRYPTION_KEY_NAME;
-        this._queryParamNames = options?.config?.queryParamNames ?? {};
-    }
-    /**
-     * Returns the class name of the component.
-     * @returns The class name of the component.
-     */
-    className() {
-        return UrlTransformerService.CLASS_NAME;
-    }
-    /**
-     * The component needs to be started when the node is initialized.
-     * @returns Nothing.
-     */
-    async start() {
-        const contextIds = await ContextIdStore.getContextIds();
-        this._nodeId = contextIds?.[ContextIdKeys.Node];
-    }
-    /**
-     * Encrypt a named token value and append it as a query parameter to the given URL.
-     * @param url The URL to append the encrypted token to.
-     * @param id The logical token identifier (e.g. "tenant").
-     * @param value The value to encrypt and add.
-     * @returns The URL with the encrypted token added as a query parameter.
-     */
-    async addEncryptedQueryParamToUrl(url, id, value) {
-        const paramName = this._queryParamNames[id] ?? id;
-        return this.addEncryptedToUrl(url, { [paramName]: value });
-    }
-    /**
-     * Get a named token value from the query parameters.
-     * @param queryParams The HTTP request query containing the parameters.
-     * @param id The logical token identifier (e.g. "tenant").
-     * @returns The decrypted token value if it exists.
-     */
-    async getEncryptedQueryParam(queryParams, id) {
-        const paramName = this._queryParamNames[id] ?? id;
-        const decrypted = await this.getDecryptedFromQueryParams(queryParams, [paramName]);
-        return decrypted[paramName];
-    }
-    /**
-     * Add encrypted key/value pairs to a URL's query string.
-     * @param url The base URL to add parameters to.
-     * @param params The key/value pairs to encrypt and append.
-     * @returns The URL with the encrypted parameters added.
-     */
-    async addEncryptedToUrl(url, params) {
-        let urlObj;
-        try {
-            urlObj = new URL(url);
-        }
-        catch {
-            return url;
-        }
-        const query = {};
-        for (const [key, value] of urlObj.searchParams.entries()) {
-            query[key] = value;
-        }
-        const keysToEncrypt = Object.keys(params);
-        for (const [key, value] of Object.entries(params)) {
-            query[key] = value;
-        }
-        await this.encryptQueryParams(query, keysToEncrypt);
-        urlObj.search = "";
-        for (const [key, value] of Object.entries(query)) {
-            urlObj.searchParams.set(key, value);
-        }
-        return urlObj.toString();
-    }
-    /**
-     * Get an encrypted value from a URL's query string.
-     * @param url The URL to extract the encrypted value from.
-     * @param id The logical identifier for the value to retrieve (e.g. "tenant").
-     * @returns The decrypted value if it exists.
-     */
-    async getEncryptedFromUrl(url, id) {
-        let urlObj;
-        try {
-            urlObj = new URL(url);
-        }
-        catch {
-            return undefined;
-        }
-        const name = this.getParamName(id);
-        if (!Is.stringValue(name)) {
-            return undefined;
-        }
-        if (urlObj.searchParams.has(name)) {
-            const encryptedValue = urlObj.searchParams.get(name);
-            if (Is.stringValue(encryptedValue)) {
-                return this.decryptParam(encryptedValue);
-            }
-            return undefined;
-        }
-    }
-    /**
-     * Decrypt specified keys from a query parameter object and return their plain-text values.
-     * @param queryParams The HTTP request query containing the encrypted parameters.
-     * @param keys The keys to decrypt.
-     * @returns A map of the decrypted key/value pairs that were present.
-     */
-    async getDecryptedFromQueryParams(queryParams, keys) {
-        const queryParamsClone = ObjectHelper.clone(queryParams) ?? {};
-        await this.decryptQueryParams(queryParamsClone, keys);
-        const result = {};
-        for (const key of keys) {
-            if (Is.stringValue(queryParamsClone[key])) {
-                result[key] = queryParamsClone[key];
-            }
-        }
-        return result;
-    }
-    /**
-     * Encrypt query parameters.
-     * @param httpRequestQuery The HTTP request query containing the parameters to encrypt.
-     * @param keys The keys of the parameters to encrypt.
-     * @returns A promise that resolves when the query parameters have been encrypted.
-     */
-    async encryptQueryParams(httpRequestQuery, keys) {
-        if (Is.empty(httpRequestQuery)) {
-            return;
-        }
-        for (const key of keys) {
-            if (Is.stringValue(httpRequestQuery[key])) {
-                const encryptedValue = await this.encryptParam(httpRequestQuery[key]);
-                httpRequestQuery[`${UrlTransformerService._KEY_PREFIX}${key}`] = encryptedValue;
-                delete httpRequestQuery[key];
-            }
-        }
-    }
-    /**
-     * Decrypt query parameters.
-     * @param httpRequestQuery The HTTP request query containing the encrypted values.
-     * @param keys The keys of the parameters to decrypt.
-     * @returns A promise that resolves when the query parameters have been decrypted.
-     */
-    async decryptQueryParams(httpRequestQuery, keys) {
-        if (Is.empty(httpRequestQuery)) {
-            return;
-        }
-        for (const key of Object.keys(httpRequestQuery)) {
-            if (key.startsWith(UrlTransformerService._KEY_PREFIX)) {
-                const originalKey = key.slice(UrlTransformerService._KEY_PREFIX.length);
-                if (keys.includes(originalKey)) {
-                    const decryptedValue = await this.decryptParam(httpRequestQuery[key]);
-                    httpRequestQuery[originalKey] = decryptedValue;
-                    delete httpRequestQuery[key];
-                }
-            }
-        }
-    }
-    /**
-     * Encrypt a parameter value.
-     * @param paramValue The value of the parameter to encrypt.
-     * @returns A promise that resolves to the encrypted value of the parameter.
-     */
-    async encryptParam(paramValue) {
-        Guards.stringValue(UrlTransformerService.CLASS_NAME, "paramValue", paramValue);
-        if (Is.empty(this._nodeId)) {
-            throw new GeneralError(UrlTransformerService.CLASS_NAME, "encryptionUnavailable");
-        }
-        try {
-            const salt = RandomHelper.generate(8);
-            const encryptedParamValue = await this._vaultConnector.encrypt(`${this._nodeId}/${this._paramEncryptionKeyName}`, VaultEncryptionType.ChaCha20Poly1305, Uint8ArrayHelper.concat([salt, Converter.utf8ToBytes(paramValue)]));
-            if (!Is.uint8Array(encryptedParamValue)) {
-                throw new GeneralError(UrlTransformerService.CLASS_NAME, "encryptionFailed");
-            }
-            return Converter.bytesToBase64Url(encryptedParamValue);
-        }
-        catch (err) {
-            throw new GeneralError(UrlTransformerService.CLASS_NAME, "encryptionFailed", undefined, BaseError.fromError(err));
-        }
-    }
-    /**
-     * Decrypt a parameter value.
-     * @param encryptedValue The encrypted value of the parameter.
-     * @returns A promise that resolves to the decrypted value of the parameter.
-     */
-    async decryptParam(encryptedValue) {
-        Guards.stringValue(UrlTransformerService.CLASS_NAME, "encryptedValue", encryptedValue);
-        if (Is.empty(this._nodeId)) {
-            throw new GeneralError(UrlTransformerService.CLASS_NAME, "decryptionUnavailable");
-        }
-        try {
-            const encryptedBytes = Converter.base64UrlToBytes(encryptedValue);
-            const decryptedBytes = await this._vaultConnector.decrypt(`${this._nodeId}/${this._paramEncryptionKeyName}`, VaultEncryptionType.ChaCha20Poly1305, encryptedBytes);
-            if (!Is.uint8Array(decryptedBytes)) {
-                throw new GeneralError(UrlTransformerService.CLASS_NAME, "decryptionFailed");
-            }
-            return Converter.bytesToUtf8(decryptedBytes.slice(8));
-        }
-        catch (err) {
-            throw new GeneralError(UrlTransformerService.CLASS_NAME, "decryptionFailed", undefined, BaseError.fromError(err));
-        }
-    }
-    /**
-     * Get the parameter name for a given key.
-     * @param key The key of the parameter.
-     * @returns The parameter name.
-     */
-    getParamName(key) {
-        return Is.stringValue(this._queryParamNames[key])
-            ? `${UrlTransformerService._KEY_PREFIX}${this._queryParamNames[key]}`
-            : undefined;
-    }
-}
-//# sourceMappingURL=urlTransformerService.js.map

package/dist/es/urlTransformerService.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"urlTransformerService.js","sourceRoot":"","sources":["../../src/urlTransformerService.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAClE,OAAO,EACN,SAAS,EACT,SAAS,EACT,YAAY,EACZ,MAAM,EACN,EAAE,EACF,YAAY,EACZ,YAAY,EACZ,gBAAgB,EAChB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAEN,qBAAqB,EACrB,mBAAmB,EACnB,MAAM,wBAAwB,CAAC;AAGhC;;GAEG;AACH,MAAM,OAAO,qBAAqB;IACjC;;OAEG;IACI,MAAM,CAAU,UAAU,2BAA2C;IAE5E;;;OAGG;IACK,MAAM,CAAU,WAAW,GAAG,QAAQ,CAAC;IAE/C;;;OAGG;IACK,MAAM,CAAU,kCAAkC,GAAW,kBAAkB,CAAC;IAExF;;;OAGG;IACc,eAAe,CAAkB;IAElD;;;OAGG;IACc,uBAAuB,CAAS;IAEjD;;;OAGG;IACc,gBAAgB,CAA2B;IAE5D;;;OAGG;IACK,OAAO,CAAU;IAEzB;;;OAGG;IACH,YAAY,OAAkD;QAC7D,IAAI,CAAC,eAAe,GAAG,qBAAqB,CAAC,GAAG,CAAC,OAAO,EAAE,kBAAkB,IAAI,OAAO,CAAC,CAAC;QACzF,IAAI,CAAC,uBAAuB;YAC3B,OAAO,EAAE,MAAM,EAAE,sBAAsB;gBACvC,qBAAqB,CAAC,kCAAkC,CAAC;QAC1D,IAAI,CAAC,gBAAgB,GAAG,OAAO,EAAE,MAAM,EAAE,eAAe,IAAI,EAAE,CAAC;IAChE,CAAC;IAED;;;OAGG;IACI,SAAS;QACf,OAAO,qBAAqB,CAAC,UAAU,CAAC;IACzC,CAAC;IAED;;;OAGG;IACI,KAAK,CAAC,KAAK;QACjB,MAAM,UAAU,GAAG,MAAM,cAAc,CAAC,aAAa,EAAE,CAAC;QACxD,IAAI,CAAC,OAAO,GAAG,UAAU,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;IACjD,CAAC;IAED;;;;;;OAMG;IACI,KAAK,CAAC,2BAA2B,CACvC,GAAW,EACX,EAAU,EACV,KAAa;QAEb,MAAM,SAAS,GAAG,IAAI,CAAC,gBAAgB,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC;QAClD,OAAO,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,EAAE,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;IAC5D,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,sBAAsB,CAClC,WAA0C,EAC1C,EAAU;QAEV,MAAM,SAAS,GAAG,IAAI,CAAC,gBAAgB,CAAC,EAAE,CAAC,IAAI,EAAE,CAAC;QAClD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,2BAA2B,CAAC,WAAW,EAAE,CAAC,SAAS,CAAC,CAAC,CAAC;QACnF,OAAO,SAAS,CAAC,SAAS,CAAC,CAAC;IAC7B,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,iBAAiB,CAAC,GAAW,EAAE,MAAyB;QACpE,IAAI,MAAW,CAAC;QAChB,IAAI,CAAC;YACJ,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QACvB,CAAC;QAAC,MAAM,CAAC;YACR,OAAO,GAAG,CAAC;QACZ,CAAC;QAED,MAAM,KAAK,GAAsB,EAAE,CAAC;QACpC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,YAAY,CAAC,OAAO,EAAE,EAAE,CAAC;YAC1D,KAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACpB,CAAC;QACD,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YACnD,KAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACpB,CAAC;QACD,MAAM,IAAI,CAAC,kBAAkB,CAAC,KAAK,EAAE,aAAa,CAAC,CAAC;QACpD,MAAM,CAAC,MAAM,GAAG,EAAE,CAAC;QACnB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YAClD,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QACrC,CAAC;QACD,OAAO,MAAM,CAAC,QAAQ,EAAE,CAAC;IAC1B,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,mBAAmB,CAAC,GAAW,EAAE,EAAU;QACvD,IAAI,MAAW,CAAC;QAChB,IAAI,CAAC;YACJ,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QACvB,CAAC;QAAC,MAAM,CAAC;YACR,OAAO,SAAS,CAAC;QAClB,CAAC;QAED,MAAM,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;QACnC,IAAI,CAAC,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3B,OAAO,SAAS,CAAC;QAClB,CAAC;QAED,IAAI,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YACnC,MAAM,cAAc,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YACrD,IAAI,EAAE,CAAC,WAAW,CAAC,cAAc,CAAC,EAAE,CAAC;gBACpC,OAAO,IAAI,CAAC,YAAY,CAAC,cAAc,CAAC,CAAC;YAC1C,CAAC;YACD,OAAO,SAAS,CAAC;QAClB,CAAC;IACF,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,2BAA2B,CACvC,WAA0C,EAC1C,IAAc;QAEd,MAAM,gBAAgB,GAAG,YAAY,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;QAC/D,MAAM,IAAI,CAAC,kBAAkB,CAAC,gBAAgB,EAAE,IAAI,CAAC,CAAC;QACtD,MAAM,MAAM,GAAsB,EAAE,CAAC;QACrC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;YACxB,IAAI,EAAE,CAAC,WAAW,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;gBAC3C,MAAM,CAAC,GAAG,CAAC,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAC;YACrC,CAAC;QACF,CAAC;QACD,OAAO,MAAM,CAAC;IACf,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,kBAAkB,CAC9B,gBAA+C,EAC/C,IAAc;QAEd,IAAI,EAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,EAAE,CAAC;YAChC,OAAO;QACR,CAAC;QAED,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;YACxB,IAAI,EAAE,CAAC,WAAW,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;gBAC3C,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC;gBACtE,gBAAgB,CAAC,GAAG,qBAAqB,CAAC,WAAW,GAAG,GAAG,EAAE,CAAC,GAAG,cAAc,CAAC;gBAChF,OAAO,gBAAgB,CAAC,GAAG,CAAC,CAAC;YAC9B,CAAC;QACF,CAAC;IACF,CAAC;IAED;;;;;OAKG;IACI,KAAK,CAAC,kBAAkB,CAC9B,gBAA+C,EAC/C,IAAc;QAEd,IAAI,EAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,EAAE,CAAC;YAChC,OAAO;QACR,CAAC;QACD,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,EAAE,CAAC;YACjD,IAAI,GAAG,CAAC,UAAU,CAAC,qBAAqB,CAAC,WAAW,CAAC,EAAE,CAAC;gBACvD,MAAM,WAAW,GAAG,GAAG,CAAC,KAAK,CAAC,qBAAqB,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;gBAExE,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;oBAChC,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC;oBACtE,gBAAgB,CAAC,WAAW,CAAC,GAAG,cAAc,CAAC;oBAC/C,OAAO,gBAAgB,CAAC,GAAG,CAAC,CAAC;gBAC9B,CAAC;YACF,CAAC;QACF,CAAC;IACF,CAAC;IAED;;;;OAIG;IACI,KAAK,CAAC,YAAY,CAAC,UAAkB;QAC3C,MAAM,CAAC,WAAW,CAAC,qBAAqB,CAAC,UAAU,gBAAsB,UAAU,CAAC,CAAC;QAErF,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,YAAY,CAAC,qBAAqB,CAAC,UAAU,EAAE,uBAAuB,CAAC,CAAC;QACnF,CAAC;QAED,IAAI,CAAC;YACJ,MAAM,IAAI,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;YAEtC,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,CAC7D,GAAG,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,uBAAuB,EAAE,EACjD,mBAAmB,CAAC,gBAAgB,EACpC,gBAAgB,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,SAAS,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC,CAAC,CAClE,CAAC;YAEF,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,mBAAmB,CAAC,EAAE,CAAC;gBACzC,MAAM,IAAI,YAAY,CAAC,qBAAqB,CAAC,UAAU,EAAE,kBAAkB,CAAC,CAAC;YAC9E,CAAC;YAED,OAAO,SAAS,CAAC,gBAAgB,CAAC,mBAAmB,CAAC,CAAC;QACxD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,MAAM,IAAI,YAAY,CACrB,qBAAqB,CAAC,UAAU,EAChC,kBAAkB,EAClB,SAAS,EACT,SAAS,CAAC,SAAS,CAAC,GAAG,CAAC,CACxB,CAAC;QACH,CAAC;IACF,CAAC;IAED;;;;OAIG;IACI,KAAK,CAAC,YAAY,CAAC,cAAsB;QAC/C,MAAM,CAAC,WAAW,CAAC,qBAAqB,CAAC,UAAU,oBAA0B,cAAc,CAAC,CAAC;QAE7F,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC5B,MAAM,IAAI,YAAY,CAAC,qBAAqB,CAAC,UAAU,EAAE,uBAAuB,CAAC,CAAC;QACnF,CAAC;QAED,IAAI,CAAC;YACJ,MAAM,cAAc,GAAG,SAAS,CAAC,gBAAgB,CAAC,cAAc,CAAC,CAAC;YAClE,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,OAAO,CACxD,GAAG,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,uBAAuB,EAAE,EACjD,mBAAmB,CAAC,gBAAgB,EACpC,cAAc,CACd,CAAC;YAEF,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;gBACpC,MAAM,IAAI,YAAY,CAAC,qBAAqB,CAAC,UAAU,EAAE,kBAAkB,CAAC,CAAC;YAC9E,CAAC;YAED,OAAO,SAAS,CAAC,WAAW,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QACvD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACd,MAAM,IAAI,YAAY,CACrB,qBAAqB,CAAC,UAAU,EAChC,kBAAkB,EAClB,SAAS,EACT,SAAS,CAAC,SAAS,CAAC,GAAG,CAAC,CACxB,CAAC;QACH,CAAC;IACF,CAAC;IAED;;;;OAIG;IACI,YAAY,CAAC,GAAW;QAC9B,OAAO,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC;YAChD,CAAC,CAAC,GAAG,qBAAqB,CAAC,WAAW,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,EAAE;YACrE,CAAC,CAAC,SAAS,CAAC;IACd,CAAC","sourcesContent":["// Copyright 2026 IOTA Stiftung.\n// SPDX-License-Identifier: Apache-2.0.\nimport type { IHttpRequestQuery, IUrlTransformerComponent } from \"@twin.org/api-models\";\nimport { ContextIdKeys, ContextIdStore } from \"@twin.org/context\";\nimport {\n\tBaseError,\n\tConverter,\n\tGeneralError,\n\tGuards,\n\tIs,\n\tObjectHelper,\n\tRandomHelper,\n\tUint8ArrayHelper\n} from \"@twin.org/core\";\nimport { nameof } from \"@twin.org/nameof\";\nimport {\n\ttype IVaultConnector,\n\tVaultConnectorFactory,\n\tVaultEncryptionType\n} from \"@twin.org/vault-models\";\nimport type { IUrlTransformerServiceConstructorOptions } from \"./models/IUrlTransformerServiceConstructorOptions.js\";\n\n/**\n * The URL transformer service for encrypting and decrypting URL parameters.\n */\nexport class UrlTransformerService implements IUrlTransformerComponent {\n\t/**\n\t * Runtime name for the class.\n\t */\n\tpublic static readonly CLASS_NAME: string = nameof<UrlTransformerService>();\n\n\t/**\n\t * The prefix to use for encrypted query parameters.\n\t * @internal\n\t */\n\tprivate static readonly _KEY_PREFIX = \"x-enc-\";\n\n\t/**\n\t * The default name for the parameter encryption key query parameter.\n\t * @internal\n\t */\n\tprivate static readonly _DEFAULT_PARAM_ENCRYPTION_KEY_NAME: string = \"param-encryption\";\n\n\t/**\n\t * The vault connector.\n\t * @internal\n\t */\n\tprivate readonly _vaultConnector: IVaultConnector;\n\n\t/**\n\t * The name of the key to retrieve from the vault for encryption/decryption of parameters.\n\t * @internal\n\t */\n\tprivate readonly _paramEncryptionKeyName: string;\n\n\t/**\n\t * Maps logical token ids to their URL query parameter names.\n\t * @internal\n\t */\n\tprivate readonly _queryParamNames: { [id: string]: string };\n\n\t/**\n\t * The node identity, captured at start.\n\t * @internal\n\t */\n\tprivate _nodeId?: string;\n\n\t/**\n\t * Create a new instance of UrlTransformerService.\n\t * @param options The options to create the service.\n\t */\n\tconstructor(options?: IUrlTransformerServiceConstructorOptions) {\n\t\tthis._vaultConnector = VaultConnectorFactory.get(options?.vaultConnectorType ?? \"vault\");\n\t\tthis._paramEncryptionKeyName =\n\t\t\toptions?.config?.paramEncryptionKeyName ??\n\t\t\tUrlTransformerService._DEFAULT_PARAM_ENCRYPTION_KEY_NAME;\n\t\tthis._queryParamNames = options?.config?.queryParamNames ?? {};\n\t}\n\n\t/**\n\t * Returns the class name of the component.\n\t * @returns The class name of the component.\n\t */\n\tpublic className(): string {\n\t\treturn UrlTransformerService.CLASS_NAME;\n\t}\n\n\t/**\n\t * The component needs to be started when the node is initialized.\n\t * @returns Nothing.\n\t */\n\tpublic async start(): Promise<void> {\n\t\tconst contextIds = await ContextIdStore.getContextIds();\n\t\tthis._nodeId = contextIds?.[ContextIdKeys.Node];\n\t}\n\n\t/**\n\t * Encrypt a named token value and append it as a query parameter to the given URL.\n\t * @param url The URL to append the encrypted token to.\n\t * @param id The logical token identifier (e.g. \"tenant\").\n\t * @param value The value to encrypt and add.\n\t * @returns The URL with the encrypted token added as a query parameter.\n\t */\n\tpublic async addEncryptedQueryParamToUrl(\n\t\turl: string,\n\t\tid: string,\n\t\tvalue: string\n\t): Promise<string> {\n\t\tconst paramName = this._queryParamNames[id] ?? id;\n\t\treturn this.addEncryptedToUrl(url, { [paramName]: value });\n\t}\n\n\t/**\n\t * Get a named token value from the query parameters.\n\t * @param queryParams The HTTP request query containing the parameters.\n\t * @param id The logical token identifier (e.g. \"tenant\").\n\t * @returns The decrypted token value if it exists.\n\t */\n\tpublic async getEncryptedQueryParam(\n\t\tqueryParams: IHttpRequestQuery | undefined,\n\t\tid: string\n\t): Promise<string | undefined> {\n\t\tconst paramName = this._queryParamNames[id] ?? id;\n\t\tconst decrypted = await this.getDecryptedFromQueryParams(queryParams, [paramName]);\n\t\treturn decrypted[paramName];\n\t}\n\n\t/**\n\t * Add encrypted key/value pairs to a URL's query string.\n\t * @param url The base URL to add parameters to.\n\t * @param params The key/value pairs to encrypt and append.\n\t * @returns The URL with the encrypted parameters added.\n\t */\n\tpublic async addEncryptedToUrl(url: string, params: IHttpRequestQuery): Promise<string> {\n\t\tlet urlObj: URL;\n\t\ttry {\n\t\t\turlObj = new URL(url);\n\t\t} catch {\n\t\t\treturn url;\n\t\t}\n\n\t\tconst query: IHttpRequestQuery = {};\n\t\tfor (const [key, value] of urlObj.searchParams.entries()) {\n\t\t\tquery[key] = value;\n\t\t}\n\t\tconst keysToEncrypt = Object.keys(params);\n\t\tfor (const [key, value] of Object.entries(params)) {\n\t\t\tquery[key] = value;\n\t\t}\n\t\tawait this.encryptQueryParams(query, keysToEncrypt);\n\t\turlObj.search = \"\";\n\t\tfor (const [key, value] of Object.entries(query)) {\n\t\t\turlObj.searchParams.set(key, value);\n\t\t}\n\t\treturn urlObj.toString();\n\t}\n\n\t/**\n\t * Get an encrypted value from a URL's query string.\n\t * @param url The URL to extract the encrypted value from.\n\t * @param id The logical identifier for the value to retrieve (e.g. \"tenant\").\n\t * @returns The decrypted value if it exists.\n\t */\n\tpublic async getEncryptedFromUrl(url: string, id: string): Promise<string | undefined> {\n\t\tlet urlObj: URL;\n\t\ttry {\n\t\t\turlObj = new URL(url);\n\t\t} catch {\n\t\t\treturn undefined;\n\t\t}\n\n\t\tconst name = this.getParamName(id);\n\t\tif (!Is.stringValue(name)) {\n\t\t\treturn undefined;\n\t\t}\n\n\t\tif (urlObj.searchParams.has(name)) {\n\t\t\tconst encryptedValue = urlObj.searchParams.get(name);\n\t\t\tif (Is.stringValue(encryptedValue)) {\n\t\t\t\treturn this.decryptParam(encryptedValue);\n\t\t\t}\n\t\t\treturn undefined;\n\t\t}\n\t}\n\n\t/**\n\t * Decrypt specified keys from a query parameter object and return their plain-text values.\n\t * @param queryParams The HTTP request query containing the encrypted parameters.\n\t * @param keys The keys to decrypt.\n\t * @returns A map of the decrypted key/value pairs that were present.\n\t */\n\tpublic async getDecryptedFromQueryParams(\n\t\tqueryParams: IHttpRequestQuery | undefined,\n\t\tkeys: string[]\n\t): Promise<IHttpRequestQuery> {\n\t\tconst queryParamsClone = ObjectHelper.clone(queryParams) ?? {};\n\t\tawait this.decryptQueryParams(queryParamsClone, keys);\n\t\tconst result: IHttpRequestQuery = {};\n\t\tfor (const key of keys) {\n\t\t\tif (Is.stringValue(queryParamsClone[key])) {\n\t\t\t\tresult[key] = queryParamsClone[key];\n\t\t\t}\n\t\t}\n\t\treturn result;\n\t}\n\n\t/**\n\t * Encrypt query parameters.\n\t * @param httpRequestQuery The HTTP request query containing the parameters to encrypt.\n\t * @param keys The keys of the parameters to encrypt.\n\t * @returns A promise that resolves when the query parameters have been encrypted.\n\t */\n\tpublic async encryptQueryParams(\n\t\thttpRequestQuery: IHttpRequestQuery | undefined,\n\t\tkeys: string[]\n\t): Promise<void> {\n\t\tif (Is.empty(httpRequestQuery)) {\n\t\t\treturn;\n\t\t}\n\n\t\tfor (const key of keys) {\n\t\t\tif (Is.stringValue(httpRequestQuery[key])) {\n\t\t\t\tconst encryptedValue = await this.encryptParam(httpRequestQuery[key]);\n\t\t\t\thttpRequestQuery[`${UrlTransformerService._KEY_PREFIX}${key}`] = encryptedValue;\n\t\t\t\tdelete httpRequestQuery[key];\n\t\t\t}\n\t\t}\n\t}\n\n\t/**\n\t * Decrypt query parameters.\n\t * @param httpRequestQuery The HTTP request query containing the encrypted values.\n\t * @param keys The keys of the parameters to decrypt.\n\t * @returns A promise that resolves when the query parameters have been decrypted.\n\t */\n\tpublic async decryptQueryParams(\n\t\thttpRequestQuery: IHttpRequestQuery | undefined,\n\t\tkeys: string[]\n\t): Promise<void> {\n\t\tif (Is.empty(httpRequestQuery)) {\n\t\t\treturn;\n\t\t}\n\t\tfor (const key of Object.keys(httpRequestQuery)) {\n\t\t\tif (key.startsWith(UrlTransformerService._KEY_PREFIX)) {\n\t\t\t\tconst originalKey = key.slice(UrlTransformerService._KEY_PREFIX.length);\n\n\t\t\t\tif (keys.includes(originalKey)) {\n\t\t\t\t\tconst decryptedValue = await this.decryptParam(httpRequestQuery[key]);\n\t\t\t\t\thttpRequestQuery[originalKey] = decryptedValue;\n\t\t\t\t\tdelete httpRequestQuery[key];\n\t\t\t\t}\n\t\t\t}\n\t\t}\n\t}\n\n\t/**\n\t * Encrypt a parameter value.\n\t * @param paramValue The value of the parameter to encrypt.\n\t * @returns A promise that resolves to the encrypted value of the parameter.\n\t */\n\tpublic async encryptParam(paramValue: string): Promise<string> {\n\t\tGuards.stringValue(UrlTransformerService.CLASS_NAME, nameof(paramValue), paramValue);\n\n\t\tif (Is.empty(this._nodeId)) {\n\t\t\tthrow new GeneralError(UrlTransformerService.CLASS_NAME, \"encryptionUnavailable\");\n\t\t}\n\n\t\ttry {\n\t\t\tconst salt = RandomHelper.generate(8);\n\n\t\t\tconst encryptedParamValue = await this._vaultConnector.encrypt(\n\t\t\t\t`${this._nodeId}/${this._paramEncryptionKeyName}`,\n\t\t\t\tVaultEncryptionType.ChaCha20Poly1305,\n\t\t\t\tUint8ArrayHelper.concat([salt, Converter.utf8ToBytes(paramValue)])\n\t\t\t);\n\n\t\t\tif (!Is.uint8Array(encryptedParamValue)) {\n\t\t\t\tthrow new GeneralError(UrlTransformerService.CLASS_NAME, \"encryptionFailed\");\n\t\t\t}\n\n\t\t\treturn Converter.bytesToBase64Url(encryptedParamValue);\n\t\t} catch (err) {\n\t\t\tthrow new GeneralError(\n\t\t\t\tUrlTransformerService.CLASS_NAME,\n\t\t\t\t\"encryptionFailed\",\n\t\t\t\tundefined,\n\t\t\t\tBaseError.fromError(err)\n\t\t\t);\n\t\t}\n\t}\n\n\t/**\n\t * Decrypt a parameter value.\n\t * @param encryptedValue The encrypted value of the parameter.\n\t * @returns A promise that resolves to the decrypted value of the parameter.\n\t */\n\tpublic async decryptParam(encryptedValue: string): Promise<string> {\n\t\tGuards.stringValue(UrlTransformerService.CLASS_NAME, nameof(encryptedValue), encryptedValue);\n\n\t\tif (Is.empty(this._nodeId)) {\n\t\t\tthrow new GeneralError(UrlTransformerService.CLASS_NAME, \"decryptionUnavailable\");\n\t\t}\n\n\t\ttry {\n\t\t\tconst encryptedBytes = Converter.base64UrlToBytes(encryptedValue);\n\t\t\tconst decryptedBytes = await this._vaultConnector.decrypt(\n\t\t\t\t`${this._nodeId}/${this._paramEncryptionKeyName}`,\n\t\t\t\tVaultEncryptionType.ChaCha20Poly1305,\n\t\t\t\tencryptedBytes\n\t\t\t);\n\n\t\t\tif (!Is.uint8Array(decryptedBytes)) {\n\t\t\t\tthrow new GeneralError(UrlTransformerService.CLASS_NAME, \"decryptionFailed\");\n\t\t\t}\n\n\t\t\treturn Converter.bytesToUtf8(decryptedBytes.slice(8));\n\t\t} catch (err) {\n\t\t\tthrow new GeneralError(\n\t\t\t\tUrlTransformerService.CLASS_NAME,\n\t\t\t\t\"decryptionFailed\",\n\t\t\t\tundefined,\n\t\t\t\tBaseError.fromError(err)\n\t\t\t);\n\t\t}\n\t}\n\n\t/**\n\t * Get the parameter name for a given key.\n\t * @param key The key of the parameter.\n\t * @returns The parameter name.\n\t */\n\tpublic getParamName(key: string): string | undefined {\n\t\treturn Is.stringValue(this._queryParamNames[key])\n\t\t\t? `${UrlTransformerService._KEY_PREFIX}${this._queryParamNames[key]}`\n\t\t\t: undefined;\n\t}\n}\n"]}

package/dist/types/models/IUrlTransformerServiceConfig.d.ts

@@ -1,19 +0,0 @@
-/**
- * Configuration for the URL transformer service.
- */
-export interface IUrlTransformerServiceConfig {
-    /**
-     * The name of the key to retrieve from the vault for encryption/decryption of parameters.
-     * @default param-encryption
-     */
-    paramEncryptionKeyName?: string;
-    /**
-     * A dictionary mapping logical token identifiers to their URL query parameter names.
-     * For example: tenant => tenant-token maps the logical id "tenant" to the
-     * query param "tenant-token". When an id is not present the id itself is used as
-     * the param name.
-     */
-    queryParamNames?: {
-        [id: string]: string;
-    };
-}

package/dist/types/models/IUrlTransformerServiceConstructorOptions.d.ts

@@ -1,15 +0,0 @@
-import type { IUrlTransformerServiceConfig } from "./IUrlTransformerServiceConfig.js";
-/**
- * Options for the UrlTransformerService constructor.
- */
-export interface IUrlTransformerServiceConstructorOptions {
-    /**
-     * The vault connector type.
-     * @default vault
-     */
-    vaultConnectorType?: string;
-    /**
-     * The configuration for the service.
-     */
-    config?: IUrlTransformerServiceConfig;
-}

package/dist/types/urlTransformerService.d.ts

@@ -1,94 +0,0 @@
-import type { IHttpRequestQuery, IUrlTransformerComponent } from "@twin.org/api-models";
-import type { IUrlTransformerServiceConstructorOptions } from "./models/IUrlTransformerServiceConstructorOptions.js";
-/**
- * The URL transformer service for encrypting and decrypting URL parameters.
- */
-export declare class UrlTransformerService implements IUrlTransformerComponent {
-    /**
-     * Runtime name for the class.
-     */
-    static readonly CLASS_NAME: string;
-    /**
-     * Create a new instance of UrlTransformerService.
-     * @param options The options to create the service.
-     */
-    constructor(options?: IUrlTransformerServiceConstructorOptions);
-    /**
-     * Returns the class name of the component.
-     * @returns The class name of the component.
-     */
-    className(): string;
-    /**
-     * The component needs to be started when the node is initialized.
-     * @returns Nothing.
-     */
-    start(): Promise<void>;
-    /**
-     * Encrypt a named token value and append it as a query parameter to the given URL.
-     * @param url The URL to append the encrypted token to.
-     * @param id The logical token identifier (e.g. "tenant").
-     * @param value The value to encrypt and add.
-     * @returns The URL with the encrypted token added as a query parameter.
-     */
-    addEncryptedQueryParamToUrl(url: string, id: string, value: string): Promise<string>;
-    /**
-     * Get a named token value from the query parameters.
-     * @param queryParams The HTTP request query containing the parameters.
-     * @param id The logical token identifier (e.g. "tenant").
-     * @returns The decrypted token value if it exists.
-     */
-    getEncryptedQueryParam(queryParams: IHttpRequestQuery | undefined, id: string): Promise<string | undefined>;
-    /**
-     * Add encrypted key/value pairs to a URL's query string.
-     * @param url The base URL to add parameters to.
-     * @param params The key/value pairs to encrypt and append.
-     * @returns The URL with the encrypted parameters added.
-     */
-    addEncryptedToUrl(url: string, params: IHttpRequestQuery): Promise<string>;
-    /**
-     * Get an encrypted value from a URL's query string.
-     * @param url The URL to extract the encrypted value from.
-     * @param id The logical identifier for the value to retrieve (e.g. "tenant").
-     * @returns The decrypted value if it exists.
-     */
-    getEncryptedFromUrl(url: string, id: string): Promise<string | undefined>;
-    /**
-     * Decrypt specified keys from a query parameter object and return their plain-text values.
-     * @param queryParams The HTTP request query containing the encrypted parameters.
-     * @param keys The keys to decrypt.
-     * @returns A map of the decrypted key/value pairs that were present.
-     */
-    getDecryptedFromQueryParams(queryParams: IHttpRequestQuery | undefined, keys: string[]): Promise<IHttpRequestQuery>;
-    /**
-     * Encrypt query parameters.
-     * @param httpRequestQuery The HTTP request query containing the parameters to encrypt.
-     * @param keys The keys of the parameters to encrypt.
-     * @returns A promise that resolves when the query parameters have been encrypted.
-     */
-    encryptQueryParams(httpRequestQuery: IHttpRequestQuery | undefined, keys: string[]): Promise<void>;
-    /**
-     * Decrypt query parameters.
-     * @param httpRequestQuery The HTTP request query containing the encrypted values.
-     * @param keys The keys of the parameters to decrypt.
-     * @returns A promise that resolves when the query parameters have been decrypted.
-     */
-    decryptQueryParams(httpRequestQuery: IHttpRequestQuery | undefined, keys: string[]): Promise<void>;
-    /**
-     * Encrypt a parameter value.
-     * @param paramValue The value of the parameter to encrypt.
-     * @returns A promise that resolves to the encrypted value of the parameter.
-     */
-    encryptParam(paramValue: string): Promise<string>;
-    /**
-     * Decrypt a parameter value.
-     * @param encryptedValue The encrypted value of the parameter.
-     * @returns A promise that resolves to the decrypted value of the parameter.
-     */
-    decryptParam(encryptedValue: string): Promise<string>;
-    /**
-     * Get the parameter name for a given key.
-     * @param key The key of the parameter.
-     * @returns The parameter name.
-     */
-    getParamName(key: string): string | undefined;
-}

package/docs/reference/classes/UrlTransformerService.md

@@ -1,379 +0,0 @@
-# Class: UrlTransformerService
-
-The URL transformer service for encrypting and decrypting URL parameters.
-
-## Implements
-
-- `IUrlTransformerComponent`
-
-## Constructors
-
-### Constructor
-
-> **new UrlTransformerService**(`options?`): `UrlTransformerService`
-
-Create a new instance of UrlTransformerService.
-
-#### Parameters
-
-##### options?
-
-[`IUrlTransformerServiceConstructorOptions`](../interfaces/IUrlTransformerServiceConstructorOptions.md)
-
-The options to create the service.
-
-#### Returns
-
-`UrlTransformerService`
-
-## Properties
-
-### CLASS\_NAME {#class_name}
-
-> `readonly` `static` **CLASS\_NAME**: `string`
-
-Runtime name for the class.
-
-## Methods
-
-### className() {#classname}
-
-> **className**(): `string`
-
-Returns the class name of the component.
-
-#### Returns
-
-`string`
-
-The class name of the component.
-
-#### Implementation of
-
-`IUrlTransformerComponent.className`
-
-***
-
-### start() {#start}
-
-> **start**(): `Promise`\<`void`\>
-
-The component needs to be started when the node is initialized.
-
-#### Returns
-
-`Promise`\<`void`\>
-
-Nothing.
-
-#### Implementation of
-
-`IUrlTransformerComponent.start`
-
-***
-
-### addEncryptedQueryParamToUrl() {#addencryptedqueryparamtourl}
-
-> **addEncryptedQueryParamToUrl**(`url`, `id`, `value`): `Promise`\<`string`\>
-
-Encrypt a named token value and append it as a query parameter to the given URL.
-
-#### Parameters
-
-##### url
-
-`string`
-
-The URL to append the encrypted token to.
-
-##### id
-
-`string`
-
-The logical token identifier (e.g. "tenant").
-
-##### value
-
-`string`
-
-The value to encrypt and add.
-
-#### Returns
-
-`Promise`\<`string`\>
-
-The URL with the encrypted token added as a query parameter.
-
-#### Implementation of
-
-`IUrlTransformerComponent.addEncryptedQueryParamToUrl`
-
-***
-
-### getEncryptedQueryParam() {#getencryptedqueryparam}
-
-> **getEncryptedQueryParam**(`queryParams`, `id`): `Promise`\<`string` \| `undefined`\>
-
-Get a named token value from the query parameters.
-
-#### Parameters
-
-##### queryParams
-
-`IHttpRequestQuery` \| `undefined`
-
-The HTTP request query containing the parameters.
-
-##### id
-
-`string`
-
-The logical token identifier (e.g. "tenant").
-
-#### Returns
-
-`Promise`\<`string` \| `undefined`\>
-
-The decrypted token value if it exists.
-
-#### Implementation of
-
-`IUrlTransformerComponent.getEncryptedQueryParam`
-
-***
-
-### addEncryptedToUrl() {#addencryptedtourl}
-
-> **addEncryptedToUrl**(`url`, `params`): `Promise`\<`string`\>
-
-Add encrypted key/value pairs to a URL's query string.
-
-#### Parameters
-
-##### url
-
-`string`
-
-The base URL to add parameters to.
-
-##### params
-
-`IHttpRequestQuery`
-
-The key/value pairs to encrypt and append.
-
-#### Returns
-
-`Promise`\<`string`\>
-
-The URL with the encrypted parameters added.
-
-#### Implementation of
-
-`IUrlTransformerComponent.addEncryptedToUrl`
-
-***
-
-### getEncryptedFromUrl() {#getencryptedfromurl}
-
-> **getEncryptedFromUrl**(`url`, `id`): `Promise`\<`string` \| `undefined`\>
-
-Get an encrypted value from a URL's query string.
-
-#### Parameters
-
-##### url
-
-`string`
-
-The URL to extract the encrypted value from.
-
-##### id
-
-`string`
-
-The logical identifier for the value to retrieve (e.g. "tenant").
-
-#### Returns
-
-`Promise`\<`string` \| `undefined`\>
-
-The decrypted value if it exists.
-
-#### Implementation of
-
-`IUrlTransformerComponent.getEncryptedFromUrl`
-
-***
-
-### getDecryptedFromQueryParams() {#getdecryptedfromqueryparams}
-
-> **getDecryptedFromQueryParams**(`queryParams`, `keys`): `Promise`\<`IHttpRequestQuery`\>
-
-Decrypt specified keys from a query parameter object and return their plain-text values.
-
-#### Parameters
-
-##### queryParams
-
-`IHttpRequestQuery` \| `undefined`
-
-The HTTP request query containing the encrypted parameters.
-
-##### keys
-
-`string`[]
-
-The keys to decrypt.
-
-#### Returns
-
-`Promise`\<`IHttpRequestQuery`\>
-
-A map of the decrypted key/value pairs that were present.
-
-#### Implementation of
-
-`IUrlTransformerComponent.getDecryptedFromQueryParams`
-
-***
-
-### encryptQueryParams() {#encryptqueryparams}
-
-> **encryptQueryParams**(`httpRequestQuery`, `keys`): `Promise`\<`void`\>
-
-Encrypt query parameters.
-
-#### Parameters
-
-##### httpRequestQuery
-
-`IHttpRequestQuery` \| `undefined`
-
-The HTTP request query containing the parameters to encrypt.
-
-##### keys
-
-`string`[]
-
-The keys of the parameters to encrypt.
-
-#### Returns
-
-`Promise`\<`void`\>
-
-A promise that resolves when the query parameters have been encrypted.
-
-#### Implementation of
-
-`IUrlTransformerComponent.encryptQueryParams`
-
-***
-
-### decryptQueryParams() {#decryptqueryparams}
-
-> **decryptQueryParams**(`httpRequestQuery`, `keys`): `Promise`\<`void`\>
-
-Decrypt query parameters.
-
-#### Parameters
-
-##### httpRequestQuery
-
-`IHttpRequestQuery` \| `undefined`
-
-The HTTP request query containing the encrypted values.
-
-##### keys
-
-`string`[]
-
-The keys of the parameters to decrypt.
-
-#### Returns
-
-`Promise`\<`void`\>
-
-A promise that resolves when the query parameters have been decrypted.
-
-#### Implementation of
-
-`IUrlTransformerComponent.decryptQueryParams`
-
-***
-
-### encryptParam() {#encryptparam}
-
-> **encryptParam**(`paramValue`): `Promise`\<`string`\>
-
-Encrypt a parameter value.
-
-#### Parameters
-
-##### paramValue
-
-`string`
-
-The value of the parameter to encrypt.
-
-#### Returns
-
-`Promise`\<`string`\>
-
-A promise that resolves to the encrypted value of the parameter.
-
-#### Implementation of
-
-`IUrlTransformerComponent.encryptParam`
-
-***
-
-### decryptParam() {#decryptparam}
-
-> **decryptParam**(`encryptedValue`): `Promise`\<`string`\>
-
-Decrypt a parameter value.
-
-#### Parameters
-
-##### encryptedValue
-
-`string`
-
-The encrypted value of the parameter.
-
-#### Returns
-
-`Promise`\<`string`\>
-
-A promise that resolves to the decrypted value of the parameter.
-
-#### Implementation of
-
-`IUrlTransformerComponent.decryptParam`
-
-***
-
-### getParamName() {#getparamname}
-
-> **getParamName**(`key`): `string` \| `undefined`
-
-Get the parameter name for a given key.
-
-#### Parameters
-
-##### key
-
-`string`
-
-The key of the parameter.
-
-#### Returns
-
-`string` \| `undefined`
-
-The parameter name.
-
-#### Implementation of
-
-`IUrlTransformerComponent.getParamName`

package/docs/reference/interfaces/IUrlTransformerServiceConfig.md

@@ -1,32 +0,0 @@
-# Interface: IUrlTransformerServiceConfig
-
-Configuration for the URL transformer service.
-
-## Properties
-
-### paramEncryptionKeyName? {#paramencryptionkeyname}
-
-> `optional` **paramEncryptionKeyName?**: `string`
-
-The name of the key to retrieve from the vault for encryption/decryption of parameters.
-
-#### Default
-
-```ts
-param-encryption
-```
-
-***
-
-### queryParamNames? {#queryparamnames}
-
-> `optional` **queryParamNames?**: `object`
-
-A dictionary mapping logical token identifiers to their URL query parameter names.
-For example: tenant => tenant-token maps the logical id "tenant" to the
-query param "tenant-token". When an id is not present the id itself is used as
-the param name.
-
-#### Index Signature
-
-\[`id`: `string`\]: `string`

package/docs/reference/interfaces/IUrlTransformerServiceConstructorOptions.md

@@ -1,25 +0,0 @@
-# Interface: IUrlTransformerServiceConstructorOptions
-
-Options for the UrlTransformerService constructor.
-
-## Properties
-
-### vaultConnectorType? {#vaultconnectortype}
-
-> `optional` **vaultConnectorType?**: `string`
-
-The vault connector type.
-
-#### Default
-
-```ts
-vault
-```
-
-***
-
-### config? {#config}
-
-> `optional` **config?**: [`IUrlTransformerServiceConfig`](IUrlTransformerServiceConfig.md)
-
-The configuration for the service.