@uniai-fe/uds-templates 0.6.16 → 0.6.18

package/LICENSE

@@ -0,0 +1,27 @@
+MIT License
+
+Copyright (c) 2025 UNIAI
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+---
+
+This project includes third-party software governed by additional licenses,
+including Apache License 2.0. Refer to `THIRD_PARTY_NOTICES.md` for the full
+text of those notices and any required attributions.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@uniai-fe/uds-templates",
-  "version": "0.6.16",
+  "version": "0.6.18",
   "description": "UNIAI Design System; UI Templates Package",
   "type": "module",
   "private": false,

package/src/cctv/apis/server.ts

@@ -206,6 +206,7 @@ export async function getServerCctvToken({
   queryUrl,
   req,
   headers,
+  tokenPreset,
 }: API_Req_GetCctvTokenParams): Promise<{
   res: API_Res_CctvRtcToken;
   domain: string;
@@ -224,7 +225,15 @@ export async function getServerCctvToken({
     token: "",
   };
 
-  if (!reqBody || !reqBody.username || !reqBody.company_id || !reqBody.cam_id) {
+  const password = reqBody?.password || tokenPreset?.password || "";
+
+  if (
+    !reqBody ||
+    !reqBody.username ||
+    !reqBody.company_id ||
+    !reqBody.cam_id ||
+    !password
+  ) {
     nextAPILog("POST", routeUrl, query_url, { reqBody });
     return {
       res: alternateResponse,
@@ -240,7 +249,6 @@ export async function getServerCctvToken({
     ? `farm${reqBody.company_id}`
     : String(reqBody.company_id);
   const username = reqBody.username;
-  const password = reqBody.password || reqBody.username;
   const path = !isNaN(Number(reqBody.cam_id))
     ? `cam${reqBody.cam_id}`
     : String(reqBody.cam_id);
@@ -252,8 +260,8 @@ export async function getServerCctvToken({
     password,
     action: "read",
     path,
-    ttl_seconds: 3600,
-    kid: "streaming-auth-1",
+    ttl_seconds: tokenPreset?.ttl_seconds ?? 3600,
+    kid: tokenPreset?.kid ?? "streaming-auth-1",
   };
 
   nextAPILog("POST", routeUrl, query_url, { bodyData });

package/src/cctv/types/api.ts

@@ -298,6 +298,7 @@ export type API_Res_CctvCompany = API_Res_Base<API_Res_CctvCompanyData>;
  * @property {string} company_id 업체 id코드
  * @property {string} cam_id 카메라 id코드
  * @property {string} username 사용자 계정 아이디
+ * @property {string} [password] 사용자 계정 비밀번호. 서버 route에서 tokenPreset.password를 주입하는 경우 생략 가능
  */
 export interface API_Req_CctvRtcToken {
   /**
@@ -314,6 +315,7 @@ export interface API_Req_CctvRtcToken {
   username: string;
   /**
    * 사용자 계정 비밀번호
+   * - 서버 route에서 tokenPreset.password를 주입하는 경우 생략 가능
    */
   password?: string;
 }
@@ -322,7 +324,7 @@ export interface API_Req_CctvRtcToken {
  * CCTV; 실시간 스트리밍 토큰 요청 (백엔드 요청)
  * @property {string} site company_id 맵핑 (ex. farm102)
  * @property {string} username 사용자 계정 아이디
- * @property {string} password 사용자 계정 비밀번호 (대체로 계정 아이디 맵핑)
+ * @property {string} password 사용자 계정 비밀번호
  * @property {string} action "read"
  * @property {string} path cam_id 맵핑 (ex. cam3)
  * @property {number} ttl_seconds 시간? (default 3600)
@@ -340,7 +342,6 @@ export interface API_Req_CctvRtcTokenOrigin {
   username: string;
   /**
    * 사용자 계정 비밀번호
-   * - 대체로 계정 아이디 맵핑
    */
   password: string;
   /**
@@ -419,7 +420,7 @@ export interface API_Req_CctvStreamToken {
  * @property {string} username 사용자 아이디
  * @property {string} company_id 업체 id코드(site)
  * @property {string} cam_id 카메라 id코드
- * @property {string} [password] 사용자 비밀번호 (없으면 username 사용)
+ * @property {string} [password] 서버 route에서 주입할 사용자 비밀번호
  * @property {number} [ttl_seconds] 토큰 만료시간
  * @property {string} [kid] 키 id
  * @property {Record<string, string>} [headers] 추가 요청 헤더
@@ -449,4 +450,8 @@ export interface API_Req_GetCctvTokenParams {
    * 추가 요청 헤더
    */
   headers?: Record<string, string>;
+  /**
+   * 서버 route에서 주입할 CCTV 토큰 요청 preset
+   */
+  tokenPreset?: API_Req_CctvTokenPreset;
 }

package/src/service-inquiry/hooks/useNetworkError.ts

@@ -3,6 +3,7 @@
 import { useCallback } from "react";
 import { useAtom } from "jotai";
 import { serviceInquiryNetworkErrorsAtom } from "../jotai";
+import { redactServiceInquiryNetworkError } from "../utils/redaction";
 import type {
   ServiceInquiryNetworkError,
   UseServiceInquiryNetworkErrorReturn,
@@ -26,10 +27,10 @@ export function useServiceInquiryNetworkError(): UseServiceInquiryNetworkErrorRe
       (nextError: ServiceInquiryNetworkError) => {
         setNetworkErrors(currentErrors =>
           [
-            {
+            redactServiceInquiryNetworkError({
               ...nextError,
               timestamp: nextError.timestamp ?? new Date().toISOString(),
-            },
+            }),
             ...currentErrors,
           ].slice(0, 5),
         );

package/src/service-inquiry/utils/network-debug.ts

@@ -1,4 +1,10 @@
 import type { ServiceInquiryNetworkErrorHeaders } from "../types";
+import { redactServiceInquiryText } from "./redaction";
+
+const redactServiceInquiryHeader = (
+  value: string | null,
+): string | undefined =>
+  typeof value === "string" ? redactServiceInquiryText(value) : undefined;
 
 /**
  * Service Inquiry Utility; Authorization 헤더 존재 여부 판별
@@ -34,11 +40,18 @@ const pickServiceInquiryDebugHeaders = (
   requestHeaders?: HeadersInit,
 ): ServiceInquiryNetworkErrorHeaders | undefined => {
   const headers: ServiceInquiryNetworkErrorHeaders = {
-    uniai_native_domain:
-      responseHeaders.get("Uniai-Native-Domain") ?? undefined,
-    uniai_native_path: responseHeaders.get("Uniai-Native-Path") ?? undefined,
-    uniai_native_url: responseHeaders.get("Uniai-Native-URL") ?? undefined,
-    content_type: responseHeaders.get("content-type") ?? undefined,
+    uniai_native_domain: redactServiceInquiryHeader(
+      responseHeaders.get("Uniai-Native-Domain"),
+    ),
+    uniai_native_path: redactServiceInquiryHeader(
+      responseHeaders.get("Uniai-Native-Path"),
+    ),
+    uniai_native_url: redactServiceInquiryHeader(
+      responseHeaders.get("Uniai-Native-URL"),
+    ),
+    content_type: redactServiceInquiryHeader(
+      responseHeaders.get("content-type"),
+    ),
     has_authorization: resolveServiceInquiryHasAuthorization(requestHeaders),
   };
 

package/src/service-inquiry/utils/redaction.ts

@@ -0,0 +1,113 @@
+import type { ServiceInquiryNetworkError } from "../types";
+
+const REDACTED_SERVICE_INQUIRY_VALUE = "[REDACTED]";
+const SERVICE_INQUIRY_SENSITIVE_KEY_PATTERN =
+  /authorization|cookie|token|password|passwd|pwd|secret|api[-_]?key|service[-_]?key|auth[-_]?key|request[-_]?body|response[-_]?body|bodydata|\bbody\b|contact|email|phone|farm[-_]?name|text|user[-_]?context/i;
+const SERVICE_INQUIRY_SENSITIVE_QUERY_KEY_PATTERN =
+  /^(authorization|cookie|token|password|passwd|pwd|secret|api[-_]?key|service[-_]?key|auth[-_]?key|key|contact|email|phone)$/i;
+
+/**
+ * Service Inquiry Utility; 문자열 내 민감 토큰 redaction
+ * @util
+ * @param {string} value redaction 대상 문자열
+ * @returns {string} 민감 query/token 값이 제거된 문자열
+ * @example
+ * redactServiceInquiryText("/api?token=abc");
+ */
+export function redactServiceInquiryText(value: string): string {
+  const redactedBearer = value.replace(
+    /(Bearer\s+)[^\s"',]+/gi,
+    `$1${REDACTED_SERVICE_INQUIRY_VALUE}`,
+  );
+
+  try {
+    const url = new URL(redactedBearer);
+    url.searchParams.forEach((_, key) => {
+      if (SERVICE_INQUIRY_SENSITIVE_QUERY_KEY_PATTERN.test(key)) {
+        url.searchParams.set(key, REDACTED_SERVICE_INQUIRY_VALUE);
+      }
+    });
+    return url.toString();
+  } catch {
+    return redactedBearer.replace(
+      /([?&](?:authorization|cookie|token|password|passwd|pwd|secret|api[-_]?key|service[-_]?key|auth[-_]?key|key|contact|email|phone)=)[^&#\s"']+/gi,
+      `$1${REDACTED_SERVICE_INQUIRY_VALUE}`,
+    );
+  }
+}
+
+/**
+ * Service Inquiry Utility; 객체/배열/Headers/Error redaction
+ * @util
+ * @param {unknown} value redaction 대상 값
+ * @param {string} [key] 현재 객체 key
+ * @returns {unknown} 민감 field가 제거된 값
+ * @example
+ * redactServiceInquiryValue({ request_body: { password: "secret" } });
+ */
+export function redactServiceInquiryValue(
+  value: unknown,
+  key?: string,
+  seen = new WeakSet<object>(),
+): unknown {
+  if (
+    typeof key === "string" &&
+    SERVICE_INQUIRY_SENSITIVE_KEY_PATTERN.test(key)
+  ) {
+    return REDACTED_SERVICE_INQUIRY_VALUE;
+  }
+
+  if (typeof value === "string") return redactServiceInquiryText(value);
+  if (value === null || typeof value !== "object") return value;
+
+  if (value instanceof URLSearchParams) {
+    const params = new URLSearchParams(value);
+    params.forEach((_, paramKey) => {
+      if (SERVICE_INQUIRY_SENSITIVE_QUERY_KEY_PATTERN.test(paramKey)) {
+        params.set(paramKey, REDACTED_SERVICE_INQUIRY_VALUE);
+      }
+    });
+    return Object.fromEntries(params.entries());
+  }
+
+  if (typeof Headers !== "undefined" && value instanceof Headers) {
+    return redactServiceInquiryValue(Object.fromEntries(value.entries()));
+  }
+
+  if (value instanceof Error) {
+    return {
+      name: value.name,
+      message: redactServiceInquiryText(value.message),
+    };
+  }
+
+  if (seen.has(value)) return "[Circular]";
+  seen.add(value);
+
+  if (Array.isArray(value)) {
+    return value.map(item => redactServiceInquiryValue(item, undefined, seen));
+  }
+
+  return Object.fromEntries(
+    Object.entries(value as Record<string, unknown>).map(
+      ([entryKey, entry]) => [
+        entryKey,
+        redactServiceInquiryValue(entry, entryKey, seen),
+      ],
+    ),
+  );
+}
+
+/**
+ * Service Inquiry Utility; 네트워크 오류 기록 redaction
+ * @util
+ * @param {ServiceInquiryNetworkError} error 네트워크 오류 기록
+ * @returns {ServiceInquiryNetworkError} 민감 payload가 제거된 네트워크 오류 기록
+ * @example
+ * redactServiceInquiryNetworkError({ route: "/api?token=abc" });
+ */
+export function redactServiceInquiryNetworkError(
+  error: ServiceInquiryNetworkError,
+): ServiceInquiryNetworkError {
+  return redactServiceInquiryValue(error) as ServiceInquiryNetworkError;
+}

package/src/weather/_legacy/types/api.ts

@@ -31,22 +31,22 @@ export type API_Req_WeatherKoreaAlert = { farm_idx: number | null };
 export type API_Res_WeatherKoreaAlertEach = {
   /**
    * 상위 지역 코드
-   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0&authKey=njld-D40Rb25Xfg-NAW9hA
+   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0
    */
   upper_region_code: string;
   /**
    * 상위 지역 이름
-   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0&authKey=njld-D40Rb25Xfg-NAW9hA
+   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0
    */
   upper_region_name: string;
   /**
    * 특보 지역 코드
-   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0&authKey=njld-D40Rb25Xfg-NAW9hA
+   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0
    */
   alert_region_code: string;
   /**
    * 특보 지역 이름
-   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0&authKey=njld-D40Rb25Xfg-NAW9hA
+   * @see https://apihub.kma.go.kr/api/typ01/url/wrn_reg.php?tmfc=0
    */
   alert_region_name: string;
   /**