@uniai-fe/uds-templates 0.6.17 → 0.6.19

package/LICENSE

@@ -0,0 +1,27 @@
+MIT License
+
+Copyright (c) 2025 UNIAI
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+---
+
+This project includes third-party software governed by additional licenses,
+including Apache License 2.0. Refer to `THIRD_PARTY_NOTICES.md` for the full
+text of those notices and any required attributions.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@uniai-fe/uds-templates",
-  "version": "0.6.17",
+  "version": "0.6.19",
   "description": "UNIAI Design System; UI Templates Package",
   "type": "module",
   "private": false,

package/src/cctv/apis/server.ts

@@ -225,7 +225,8 @@ export async function getServerCctvToken({
     token: "",
   };
 
-  const password = reqBody?.password || tokenPreset?.password || "";
+  const password =
+    reqBody?.password || tokenPreset?.password || reqBody?.username || "";
 
   if (
     !reqBody ||

package/src/cctv/types/api.ts

@@ -298,7 +298,7 @@ export type API_Res_CctvCompany = API_Res_Base<API_Res_CctvCompanyData>;
  * @property {string} company_id 업체 id코드
  * @property {string} cam_id 카메라 id코드
  * @property {string} username 사용자 계정 아이디
- * @property {string} [password] 사용자 계정 비밀번호. 서버 route에서 tokenPreset.password를 주입하는 경우 생략 가능
+ * @property {string} [password] 사용자 계정 비밀번호. 생략 시 서버 route에서 tokenPreset.password 또는 username fallback을 사용
  */
 export interface API_Req_CctvRtcToken {
   /**
@@ -315,7 +315,7 @@ export interface API_Req_CctvRtcToken {
   username: string;
   /**
    * 사용자 계정 비밀번호
-   * - 서버 route에서 tokenPreset.password를 주입하는 경우 생략 가능
+   * - 서버 route에서 tokenPreset.password 또는 username fallback을 사용하는 경우 생략 가능
    */
   password?: string;
 }

package/src/service-inquiry/hooks/useNetworkError.ts

@@ -3,6 +3,7 @@
 import { useCallback } from "react";
 import { useAtom } from "jotai";
 import { serviceInquiryNetworkErrorsAtom } from "../jotai";
+import { redactServiceInquiryNetworkError } from "../utils/redaction";
 import type {
   ServiceInquiryNetworkError,
   UseServiceInquiryNetworkErrorReturn,
@@ -26,10 +27,10 @@ export function useServiceInquiryNetworkError(): UseServiceInquiryNetworkErrorRe
       (nextError: ServiceInquiryNetworkError) => {
         setNetworkErrors(currentErrors =>
           [
-            {
+            redactServiceInquiryNetworkError({
               ...nextError,
               timestamp: nextError.timestamp ?? new Date().toISOString(),
-            },
+            }),
             ...currentErrors,
           ].slice(0, 5),
         );

package/src/service-inquiry/utils/network-debug.ts

@@ -1,4 +1,10 @@
 import type { ServiceInquiryNetworkErrorHeaders } from "../types";
+import { redactServiceInquiryText } from "./redaction";
+
+const redactServiceInquiryHeader = (
+  value: string | null,
+): string | undefined =>
+  typeof value === "string" ? redactServiceInquiryText(value) : undefined;
 
 /**
  * Service Inquiry Utility; Authorization 헤더 존재 여부 판별
@@ -34,11 +40,18 @@ const pickServiceInquiryDebugHeaders = (
   requestHeaders?: HeadersInit,
 ): ServiceInquiryNetworkErrorHeaders | undefined => {
   const headers: ServiceInquiryNetworkErrorHeaders = {
-    uniai_native_domain:
-      responseHeaders.get("Uniai-Native-Domain") ?? undefined,
-    uniai_native_path: responseHeaders.get("Uniai-Native-Path") ?? undefined,
-    uniai_native_url: responseHeaders.get("Uniai-Native-URL") ?? undefined,
-    content_type: responseHeaders.get("content-type") ?? undefined,
+    uniai_native_domain: redactServiceInquiryHeader(
+      responseHeaders.get("Uniai-Native-Domain"),
+    ),
+    uniai_native_path: redactServiceInquiryHeader(
+      responseHeaders.get("Uniai-Native-Path"),
+    ),
+    uniai_native_url: redactServiceInquiryHeader(
+      responseHeaders.get("Uniai-Native-URL"),
+    ),
+    content_type: redactServiceInquiryHeader(
+      responseHeaders.get("content-type"),
+    ),
     has_authorization: resolveServiceInquiryHasAuthorization(requestHeaders),
   };
 

package/src/service-inquiry/utils/redaction.ts

@@ -0,0 +1,113 @@
+import type { ServiceInquiryNetworkError } from "../types";
+
+const REDACTED_SERVICE_INQUIRY_VALUE = "[REDACTED]";
+const SERVICE_INQUIRY_SENSITIVE_KEY_PATTERN =
+  /authorization|cookie|token|password|passwd|pwd|secret|api[-_]?key|service[-_]?key|auth[-_]?key|request[-_]?body|response[-_]?body|bodydata|\bbody\b|contact|email|phone|farm[-_]?name|text|user[-_]?context/i;
+const SERVICE_INQUIRY_SENSITIVE_QUERY_KEY_PATTERN =
+  /^(authorization|cookie|token|password|passwd|pwd|secret|api[-_]?key|service[-_]?key|auth[-_]?key|key|contact|email|phone)$/i;
+
+/**
+ * Service Inquiry Utility; 문자열 내 민감 토큰 redaction
+ * @util
+ * @param {string} value redaction 대상 문자열
+ * @returns {string} 민감 query/token 값이 제거된 문자열
+ * @example
+ * redactServiceInquiryText("/api?token=abc");
+ */
+export function redactServiceInquiryText(value: string): string {
+  const redactedBearer = value.replace(
+    /(Bearer\s+)[^\s"',]+/gi,
+    `$1${REDACTED_SERVICE_INQUIRY_VALUE}`,
+  );
+
+  try {
+    const url = new URL(redactedBearer);
+    url.searchParams.forEach((_, key) => {
+      if (SERVICE_INQUIRY_SENSITIVE_QUERY_KEY_PATTERN.test(key)) {
+        url.searchParams.set(key, REDACTED_SERVICE_INQUIRY_VALUE);
+      }
+    });
+    return url.toString();
+  } catch {
+    return redactedBearer.replace(
+      /([?&](?:authorization|cookie|token|password|passwd|pwd|secret|api[-_]?key|service[-_]?key|auth[-_]?key|key|contact|email|phone)=)[^&#\s"']+/gi,
+      `$1${REDACTED_SERVICE_INQUIRY_VALUE}`,
+    );
+  }
+}
+
+/**
+ * Service Inquiry Utility; 객체/배열/Headers/Error redaction
+ * @util
+ * @param {unknown} value redaction 대상 값
+ * @param {string} [key] 현재 객체 key
+ * @returns {unknown} 민감 field가 제거된 값
+ * @example
+ * redactServiceInquiryValue({ request_body: { password: "secret" } });
+ */
+export function redactServiceInquiryValue(
+  value: unknown,
+  key?: string,
+  seen = new WeakSet<object>(),
+): unknown {
+  if (
+    typeof key === "string" &&
+    SERVICE_INQUIRY_SENSITIVE_KEY_PATTERN.test(key)
+  ) {
+    return REDACTED_SERVICE_INQUIRY_VALUE;
+  }
+
+  if (typeof value === "string") return redactServiceInquiryText(value);
+  if (value === null || typeof value !== "object") return value;
+
+  if (value instanceof URLSearchParams) {
+    const params = new URLSearchParams(value);
+    params.forEach((_, paramKey) => {
+      if (SERVICE_INQUIRY_SENSITIVE_QUERY_KEY_PATTERN.test(paramKey)) {
+        params.set(paramKey, REDACTED_SERVICE_INQUIRY_VALUE);
+      }
+    });
+    return Object.fromEntries(params.entries());
+  }
+
+  if (typeof Headers !== "undefined" && value instanceof Headers) {
+    return redactServiceInquiryValue(Object.fromEntries(value.entries()));
+  }
+
+  if (value instanceof Error) {
+    return {
+      name: value.name,
+      message: redactServiceInquiryText(value.message),
+    };
+  }
+
+  if (seen.has(value)) return "[Circular]";
+  seen.add(value);
+
+  if (Array.isArray(value)) {
+    return value.map(item => redactServiceInquiryValue(item, undefined, seen));
+  }
+
+  return Object.fromEntries(
+    Object.entries(value as Record<string, unknown>).map(
+      ([entryKey, entry]) => [
+        entryKey,
+        redactServiceInquiryValue(entry, entryKey, seen),
+      ],
+    ),
+  );
+}
+
+/**
+ * Service Inquiry Utility; 네트워크 오류 기록 redaction
+ * @util
+ * @param {ServiceInquiryNetworkError} error 네트워크 오류 기록
+ * @returns {ServiceInquiryNetworkError} 민감 payload가 제거된 네트워크 오류 기록
+ * @example
+ * redactServiceInquiryNetworkError({ route: "/api?token=abc" });
+ */
+export function redactServiceInquiryNetworkError(
+  error: ServiceInquiryNetworkError,
+): ServiceInquiryNetworkError {
+  return redactServiceInquiryValue(error) as ServiceInquiryNetworkError;
+}