npm - @uofx/cli - Versions diffs - 1.0.0 - Mend

@uofx/cli 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (238) hide show

package/dist/domain/value-objects/mssql-password.value-object.js ADDED Viewed

@@ -0,0 +1,140 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MssqlPassword = void 0;
+const crypto_1 = __importDefault(require("crypto"));
+/**
+ * MSSQL 密碼 Value Object
+ *
+ * 封裝 MSSQL 密碼的生成與驗證邏輯
+ * 規則：
+ * - 長度至少 16 字元
+ * - 必須包含大寫、小寫、數字、特殊符號中的至少三種
+ * - 特殊符號限定於：!@#%_+-=
+ */
+class MssqlPassword {
+    constructor(value) {
+        this.value = value;
+    }
+    /**
+     * 生成符合 MSSQL 複雜度要求的隨機密碼
+     * @param length - 密碼長度（預設：16）
+     * @returns 密碼物件
+     * @throws 若長度小於 16 或生成失敗
+     */
+    static generate(length = 16) {
+        if (length < this.MIN_LENGTH) {
+            throw new Error(`Password length must be at least ${this.MIN_LENGTH} characters`);
+        }
+        try {
+            // 確保包含所有必要字元類型
+            let password = '';
+            password += this.getRandomChar(this.UPPERCASE);
+            password += this.getRandomChar(this.LOWERCASE);
+            password += this.getRandomChar(this.NUMBERS);
+            password += this.getRandomChar(this.SPECIALS);
+            // 填充剩餘長度
+            const allChars = this.UPPERCASE + this.LOWERCASE + this.NUMBERS + this.SPECIALS;
+            for (let i = password.length; i < length; i++) {
+                password += this.getRandomChar(allChars);
+            }
+            // 打亂順序 (Fisher-Yates Shuffle)
+            const shuffled = this.shuffleString(password);
+            // 驗證生成的密碼
+            if (!this.isValid(shuffled)) {
+                throw new Error('Generated password does not meet MSSQL complexity requirements');
+            }
+            return new MssqlPassword(shuffled);
+        }
+        catch (error) {
+            throw new Error(`Failed to generate MSSQL password: ${error instanceof Error ? error.message : String(error)}`);
+        }
+    }
+    /**
+     * 從現有密碼建立密碼物件
+     * @param password - 密碼字串
+     * @returns 密碼物件
+     * @throws 若密碼不符合規則
+     */
+    static create(password) {
+        if (!this.isValid(password)) {
+            throw new Error(`Invalid MSSQL password. Must be at least ${this.MIN_LENGTH} characters ` +
+                `and contain at least 3 of: uppercase, lowercase, numbers, special characters.`);
+        }
+        return new MssqlPassword(password);
+    }
+    /**
+     * 驗證密碼是否符合 MSSQL 複雜度要求
+     * @param password - 要驗證的密碼
+     * @returns 若符合要求則回傳 true
+     */
+    static isValid(password) {
+        if (!password || password.length < this.MIN_LENGTH) {
+            return false;
+        }
+        const hasUppercase = /[A-Z]/.test(password);
+        const hasLowercase = /[a-z]/.test(password);
+        const hasNumber = /[0-9]/.test(password);
+        const hasSpecial = /[!@#$%^&*()_+\-=[\]{}|;:,.<>?]/.test(password);
+        const categoryCount = [hasUppercase, hasLowercase, hasNumber, hasSpecial].filter(Boolean).length;
+        return categoryCount >= 3;
+    }
+    /**
+     * 從字元集中隨機取得一個字元
+     * @param charset - 字元集字串
+     * @returns 隨機字元
+     */
+    static getRandomChar(charset) {
+        const randomIndex = crypto_1.default.randomInt(0, charset.length);
+        return charset[randomIndex];
+    }
+    /**
+     * 將字串隨機打亂（Fisher-Yates Shuffle）
+     * @param str - 原始字串
+     * @returns 打亂後的字串
+     */
+    static shuffleString(str) {
+        const arr = str.split('');
+        for (let i = arr.length - 1; i > 0; i--) {
+            const j = crypto_1.default.randomInt(0, i + 1);
+            [arr[i], arr[j]] = [arr[j], arr[i]];
+        }
+        return arr.join('');
+    }
+    /**
+     * 取得密碼明文
+     * @returns 密碼字串
+     */
+    toString() {
+        return this.value;
+    }
+    /**
+     * 取得遮罩後的密碼（僅顯示前後 4 碼）
+     * @returns 遮罩後的密碼
+     */
+    toMasked() {
+        if (this.value.length <= 8) {
+            return '******';
+        }
+        const prefix = this.value.substring(0, 4);
+        const suffix = this.value.substring(this.value.length - 4);
+        return `${prefix}******${suffix}`;
+    }
+    /**
+     * 比較兩個密碼是否相等
+     * @param other - 另一個密碼
+     * @returns 若相等則回傳 true
+     */
+    equals(other) {
+        return this.value === other.value;
+    }
+}
+exports.MssqlPassword = MssqlPassword;
+MssqlPassword.MIN_LENGTH = 16;
+MssqlPassword.UPPERCASE = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ';
+MssqlPassword.LOWERCASE = 'abcdefghijklmnopqrstuvwxyz';
+MssqlPassword.NUMBERS = '0123456789';
+MssqlPassword.SPECIALS = '!@#%_+-=';
+//# sourceMappingURL=mssql-password.value-object.js.map

package/dist/domain/value-objects/rsa-key-pair.value-object.js ADDED Viewed

@@ -0,0 +1,181 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RsaKeyPair = void 0;
+const crypto_1 = __importDefault(require("crypto"));
+/**
+ * RSA 金鑰對 Value Object
+ *
+ * 封裝 RSA 金鑰對的生成、驗證與格式化邏輯
+ * 格式：PKCS#1 PEM
+ */
+class RsaKeyPair {
+    constructor(privateKey, publicKey) {
+        this.privateKey = privateKey;
+        this.publicKey = publicKey;
+    }
+    /**
+     * 生成 RSA 金鑰對
+     * @param modulusLength - 金鑰長度（預設：2048）
+     * @returns RSA 金鑰對物件
+     * @throws 若生成失敗
+     */
+    static generate(modulusLength = 2048) {
+        try {
+            const { privateKey, publicKey } = crypto_1.default.generateKeyPairSync('rsa', {
+                modulusLength,
+                publicKeyEncoding: { type: 'pkcs1', format: 'pem' },
+                privateKeyEncoding: { type: 'pkcs1', format: 'pem' },
+            });
+            const keyPair = new RsaKeyPair(privateKey, publicKey);
+            // 驗證生成的金鑰對
+            if (!keyPair.validate()) {
+                throw new Error('Generated RSA key pair validation failed');
+            }
+            return keyPair;
+        }
+        catch (error) {
+            throw new Error(`Failed to generate RSA key pair: ${error instanceof Error ? error.message : String(error)}`);
+        }
+    }
+    /**
+     * 從現有金鑰建立金鑰對物件
+     * @param privateKey - 私鑰 (PEM)
+     * @param publicKey - 公鑰 (PEM)
+     * @returns RSA 金鑰對物件
+     * @throws 若金鑰對無效
+     */
+    static create(privateKey, publicKey) {
+        const keyPair = new RsaKeyPair(privateKey, publicKey);
+        if (!keyPair.validate()) {
+            throw new Error('Invalid RSA key pair: keys do not match');
+        }
+        return keyPair;
+    }
+    /**
+     * 驗證 RSA 金鑰對是否匹配
+     * 透過簽章與驗證流程測試
+     * @returns 若金鑰對有效且匹配則回傳 true
+     */
+    validate() {
+        try {
+            const testData = 'test data for RSA key pair validation';
+            // 使用私鑰簽章
+            const sign = crypto_1.default.createSign('SHA256');
+            sign.update(testData);
+            sign.end();
+            const signature = sign.sign(this.privateKey);
+            // 使用公鑰驗證
+            const verify = crypto_1.default.createVerify('SHA256');
+            verify.update(testData);
+            verify.end();
+            return verify.verify(this.publicKey, signature);
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * 格式化 SignInRSASettings 金鑰 (PKCS#1 PEM -> Base64)
+     * @param type - 金鑰類型 ('private' 或 'public')
+     * @returns 格式化並編碼後的金鑰字串
+     */
+    toBase64ForSignIn(type) {
+        const pem = type === 'private' ? this.privateKey : this.publicKey;
+        // 將換行符號正規化為 \n
+        const normalized = pem.replace(/\r\n/g, '\n');
+        const headerMatch = normalized.match(/-----BEGIN [^-]+-----/);
+        const footerMatch = normalized.match(/-----END [^-]+-----/);
+        if (!headerMatch || !footerMatch) {
+            // 若非標準 PEM 則直接編碼
+            return this.encodeToBase64(normalized);
+        }
+        const header = headerMatch[0];
+        const footer = footerMatch[0];
+        // 提取主體：移除標頭、結尾和所有空白（包含換行）
+        const body = normalized
+            .replace(header, '')
+            .replace(footer, '')
+            .replace(/\s/g, '');
+        // 將主體分割為 64 字元的區塊以符合嚴格的 PEM 格式
+        const chunks = body.match(/.{1,64}/g);
+        const formattedBody = chunks ? chunks.join('\\n') : body;
+        // 重新組合並使用跳脫的換行符 (\\n)
+        // Helm 解碼 Base64 -> 得到包含 "\n" 字串的字串
+        // Helm 寫入 JSON -> "Key": "...\\n...\\n..."
+        // App 解析 JSON -> 得到包含真實換行符 (0x0A) 的字串
+        const safePem = `${header}\\n${formattedBody}\\n${footer}`;
+        return this.encodeToBase64(safePem);
+    }
+    /**
+     * 格式化 UofxRsaKey 金鑰 (PKCS#1 PEM -> XML -> Base64 -> Base64)
+     * @param type - 金鑰類型 ('private' 或 'public')
+     * @returns 格式化並雙重編碼後的金鑰字串
+     */
+    toBase64ForUofx(type) {
+        const xml = this.toXml(type);
+        return this.doubleEncodeToBase64(xml);
+    }
+    /**
+     * 將 PEM 格式金鑰轉換為 XML 格式 (相容 .NET RSA)
+     * @param type - 金鑰類型 ('private' 或 'public')
+     * @returns XML 格式字串
+     */
+    toXml(type) {
+        const pem = type === 'private' ? this.privateKey : this.publicKey;
+        const keyObject = type === 'private'
+            ? crypto_1.default.createPrivateKey(pem)
+            : crypto_1.default.createPublicKey(pem);
+        const jwk = keyObject.export({ format: 'jwk' });
+        const toBase64 = (base64Url) => {
+            if (!base64Url)
+                return '';
+            return Buffer.from(base64Url, 'base64url').toString('base64');
+        };
+        let xml = '<RSAKeyValue>';
+        xml += `<Modulus>${toBase64(jwk.n)}</Modulus>`;
+        xml += `<Exponent>${toBase64(jwk.e)}</Exponent>`;
+        if (type === 'private') {
+            xml += `<P>${toBase64(jwk.p)}</P>`;
+            xml += `<Q>${toBase64(jwk.q)}</Q>`;
+            xml += `<DP>${toBase64(jwk.dp)}</DP>`;
+            xml += `<DQ>${toBase64(jwk.dq)}</DQ>`;
+            xml += `<InverseQ>${toBase64(jwk.qi)}</InverseQ>`;
+            xml += `<D>${toBase64(jwk.d)}</D>`;
+        }
+        xml += '</RSAKeyValue>';
+        return xml;
+    }
+    /**
+     * 將字串編碼為 Base64
+     * @param data - 原始字串
+     * @returns Base64 編碼字串
+     */
+    encodeToBase64(data) {
+        return Buffer.from(data).toString('base64');
+    }
+    /**
+     * 雙重 Base64 編碼 (ASCII -> Base64 -> UTF8 -> Base64)
+     * 用於處理 Helm 參數傳遞的特殊需求
+     * @param data - 原始字串
+     * @returns 雙重編碼後的字串
+     */
+    doubleEncodeToBase64(data) {
+        // 第一次 Base64 編碼使用 ASCII (模擬 C# RsaHelper 行為)
+        const first = Buffer.from(data, 'ascii').toString('base64');
+        // 第二次 Base64 編碼使用 UTF-8 (Helm 參數需求)
+        return Buffer.from(first, 'utf8').toString('base64');
+    }
+    /**
+     * 比較兩個金鑰對是否相等
+     * @param other - 另一個金鑰對
+     * @returns 若相等則回傳 true
+     */
+    equals(other) {
+        return this.privateKey === other.privateKey && this.publicKey === other.publicKey;
+    }
+}
+exports.RsaKeyPair = RsaKeyPair;
+//# sourceMappingURL=rsa-key-pair.value-object.js.map

package/dist/index.js ADDED Viewed

@@ -0,0 +1,6 @@
+#!/usr/bin/env node
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const cli_1 = require("./cli");
+(0, cli_1.run)(process.argv);
+//# sourceMappingURL=index.js.map

package/dist/infrastructure/config/app-config.interface.js ADDED Viewed

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=app-config.interface.js.map

package/dist/infrastructure/config/app-config.service.js ADDED Viewed

@@ -0,0 +1,280 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AppConfig = void 0;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const os = __importStar(require("os"));
+const tsyringe_1 = require("tsyringe");
+const config_validator_1 = require("./config-validator");
+const acr_credentials_value_object_1 = require("../../domain/value-objects/acr-credentials.value-object");
+const tokens_1 = require("../../di/tokens");
+const crypto_service_1 = require("./crypto.service");
+/**
+ * 混淆用字典字串
+ */
+const DICT = 'Kp9Xw4LmNrT2vQcYbU7sE0oA5gHdI3lJfZ6WxjMyS8nVuROe1tCaBkFhGqDiP=/+z';
+const OFFSET = 23;
+/**
+ * 編碼後的 ACR 預設值
+ */
+// ACR 名稱: "uofxcontainer"
+const ENCODED_ACR_NAME = [67, 45, 55, 59, 37, 45, 65, 72, 74, 82, 65, 70, 32];
+// ACR 帳戶: "clipull"
+const ENCODED_ACR_ACCOUNT = [37, 53, 82, 24, 67, 53, 53];
+// ACR 密碼
+const ENCODED_ACR_PASSWORD = [28, 44, 67, 42, 54, 42, 59, 65, 44, 37, 68, 75, 68, 77, 54, 57, 33, 37, 73, 76, 42, 26, 39, 40, 71, 75, 81, 82, 80, 56, 67, 87, 62, 70, 52, 26, 45, 25, 73, 35, 71, 82, 86, 46, 73, 68, 75, 56, 69, 60, 78, 68];
+/**
+ * 解碼混淆字串
+ */
+function decodeObfuscated(indices) {
+    return indices.map(i => DICT[i - OFFSET]).join('');
+}
+/**
+ * 設定服務實作
+ * 負責載入、合併與驗證配置
+ *
+ * 實作：
+ * - IAppConfig: Infrastructure 層內部介面（完整配置功能）
+ * - IAppConfigPort: Domain Port（供 Application 層使用）
+ */
+let AppConfig = class AppConfig {
+    constructor(logger) {
+        this.logger = logger;
+    }
+    /**
+     * 載入預設設定
+     * @returns 預設設定物件
+     *
+     * 回傳內嵌於程式碼中的預設設定（使用混淆方式儲存敏感值）
+     */
+    loadDefaultConfig() {
+        return {
+            logLevel: 'error',
+            acr: {
+                name: decodeObfuscated(ENCODED_ACR_NAME),
+                account: decodeObfuscated(ENCODED_ACR_ACCOUNT),
+                password: decodeObfuscated(ENCODED_ACR_PASSWORD),
+            },
+        };
+    }
+    /**
+     * 載入使用者設定
+     * @returns 使用者設定物件（部分），若檔案不存在返回空物件
+     *
+     * 如果密碼欄位已加密，會自動解密
+     */
+    loadUserConfig() {
+        const configPath = path.join(os.homedir(), '.uofx', 'config.json');
+        if (!fs.existsSync(configPath)) {
+            return {}; // 使用者設定可選
+        }
+        try {
+            const content = fs.readFileSync(configPath, 'utf-8');
+            const config = JSON.parse(content);
+            // 解密密碼欄位（如果已加密）
+            if (config.acr?.password && crypto_service_1.CryptoService.isEncrypted(config.acr.password)) {
+                config.acr = {
+                    ...config.acr,
+                    password: crypto_service_1.CryptoService.decrypt(config.acr.password),
+                };
+            }
+            return config;
+        }
+        catch (error) {
+            this.logger.warn('Failed to load user config, using defaults', { configPath, error });
+            return {};
+        }
+    }
+    /**
+     * 獲取最終設定（合併預設、使用者和命令列選項）
+     * @param cmdOptions 命令列選項
+     * @returns 最終設定物件
+     */
+    getConfig(_cmdOptions = {}) {
+        const defaultConfig = this.loadDefaultConfig();
+        const userConfig = this.loadUserConfig();
+        const merged = this.mergeConfigs(defaultConfig, userConfig);
+        // 驗證設定
+        (0, config_validator_1.validateConfig)(merged, this.logger);
+        return merged;
+    }
+    /**
+     * 確保使用者設定目錄存在
+     */
+    ensureUserConfigDir() {
+        const configDir = path.join(os.homedir(), '.uofx');
+        if (!fs.existsSync(configDir)) {
+            fs.mkdirSync(configDir, { recursive: true });
+        }
+    }
+    /**
+     * 儲存使用者設定
+     * @param config 要儲存的設定物件
+     *
+     * 密碼欄位會自動加密後儲存
+     */
+    saveConfig(config) {
+        const configPath = path.join(os.homedir(), '.uofx', 'config.json');
+        const configDir = path.dirname(configPath);
+        // 確保目錄存在
+        if (!fs.existsSync(configDir)) {
+            fs.mkdirSync(configDir, { recursive: true });
+        }
+        // 複製設定物件，加密密碼欄位
+        const configToSave = { ...config };
+        if (configToSave.acr?.password && !crypto_service_1.CryptoService.isEncrypted(configToSave.acr.password)) {
+            configToSave.acr = {
+                ...configToSave.acr,
+                password: crypto_service_1.CryptoService.encrypt(configToSave.acr.password),
+            };
+        }
+        fs.writeFileSync(configPath, JSON.stringify(configToSave, null, 2), 'utf-8');
+        this.logger.debug('Configuration saved', { configPath });
+    }
+    /**
+     * 取得 CLI 版本
+     * @returns CLI 版本號（如 1.0.0）
+     */
+    getCliVersion() {
+        try {
+            // 目錄結構：dist/infrastructure/config/app-config.service.js
+            // 需要往上 3 層才能到達專案根目錄
+            const possiblePaths = [
+                path.resolve(__dirname, '../../../package.json'), // dist 環境
+                path.resolve(__dirname, '../../../../package.json'), // 備用路徑
+            ];
+            for (const pkgPath of possiblePaths) {
+                if (fs.existsSync(pkgPath)) {
+                    const pkg = JSON.parse(fs.readFileSync(pkgPath, 'utf8'));
+                    return pkg.version || '1.0.0';
+                }
+            }
+        }
+        catch {
+            // 忽略錯誤，返回預設值
+        }
+        return '1.0.0';
+    }
+    /**
+     * 取得實例安裝路徑
+     * @param instanceName - 實例名稱
+     * @returns 完整安裝路徑
+     */
+    getInstallPath(instanceName) {
+        return path.join(os.homedir(), '.uofx', 'instances', instanceName);
+    }
+    /**
+     * 取得日誌級別
+     * @returns 日誌級別
+     */
+    getLogLevel() {
+        const config = this.getConfig();
+        return config.logLevel;
+    }
+    /**
+     * 取得 ACR 憑證（從合併後的配置）
+     * @returns ACR 憑證物件，若未配置則返回 null
+     */
+    getAcrCredentials() {
+        const config = this.getConfig();
+        const acr = config.acr;
+        if (acr_credentials_value_object_1.AcrCredentials.isValid(acr.name, acr.account, acr.password)) {
+            return acr_credentials_value_object_1.AcrCredentials.create(acr.name, acr.account, acr.password);
+        }
+        return null;
+    }
+    /**
+     * 從指定檔案載入 ACR 憑證
+     * @param filePath - 憑證檔案路徑
+     * @returns ACR 憑證物件
+     * @throws 若檔案不存在或格式不正確
+     */
+    loadAcrCredentialsFromFile(filePath) {
+        if (!fs.existsSync(filePath)) {
+            throw new Error(`ACR credentials file not found: ${filePath}`);
+        }
+        try {
+            const content = fs.readFileSync(filePath, 'utf-8');
+            const data = JSON.parse(content);
+            if (!acr_credentials_value_object_1.AcrCredentials.isValid(data.name, data.account, data.password)) {
+                throw new Error('Invalid ACR credentials format: name, account, and password are required');
+            }
+            return acr_credentials_value_object_1.AcrCredentials.create(data.name, data.account, data.password);
+        }
+        catch (error) {
+            if (error instanceof SyntaxError) {
+                throw new Error(`Invalid JSON in ACR credentials file: ${filePath}`);
+            }
+            throw error;
+        }
+    }
+    /**
+     * 深度合併設定物件
+     * @param defaultConfig 預設設定
+     * @param userConfig 使用者設定（部分）
+     * @returns 合併後的設定
+     */
+    mergeConfigs(defaultConfig, userConfig) {
+        // 使用簡單的深度合併
+        return {
+            ...defaultConfig,
+            ...userConfig,
+            acr: {
+                ...defaultConfig.acr,
+                ...(userConfig.acr || {}),
+            }
+        };
+    }
+};
+exports.AppConfig = AppConfig;
+exports.AppConfig = AppConfig = __decorate([
+    (0, tsyringe_1.injectable)(),
+    __param(0, (0, tsyringe_1.inject)(tokens_1.TOKENS.ILoggerPort)),
+    __metadata("design:paramtypes", [Object])
+], AppConfig);
+//# sourceMappingURL=app-config.service.js.map

package/dist/infrastructure/config/config-validator.js ADDED Viewed

@@ -0,0 +1,31 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.validateLogLevel = validateLogLevel;
+exports.validateConfig = validateConfig;
+/**
+ * 驗證 logLevel 值
+ * 接受 'debug', 'info', 'error' 三個等級
+ * @param level 日誌等級
+ * @returns 是否有效
+ */
+function validateLogLevel(level) {
+    const validLevels = ['debug', 'info', 'error'];
+    return validLevels.includes(level);
+}
+/**
+ * 驗證完整設定物件
+ * 無效的值會被警告並替換為預設值
+ * @param config 設定物件
+ * @param logger 可選的日誌記錄器，用於記錄警告
+ */
+function validateConfig(config, logger) {
+    // 驗證 logLevel
+    if (!validateLogLevel(config.logLevel)) {
+        const message = `Invalid logLevel '${config.logLevel}', using 'error'`;
+        if (logger) {
+            logger.warn(message, { providedValue: config.logLevel, fallback: 'error' });
+        }
+        config.logLevel = 'error';
+    }
+}
+//# sourceMappingURL=config-validator.js.map