npm - @uofx/cli - Versions diffs - 1.0.0 - Mend

@uofx/cli 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (238) hide show

package/dist/infrastructure/deployment/services/secret-manager.service.js ADDED Viewed

@@ -0,0 +1,179 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SecretManagerService = void 0;
+const tsyringe_1 = require("tsyringe");
+const tokens_1 = require("../../../di/tokens");
+const sensitive_decorator_1 = require("../../../domain/decorators/sensitive.decorator");
+/**
+ * Secret 管理服務
+ *
+ * 管理 Kubernetes Secret 的建立與讀取
+ * 透過 DI 注入 CommandExecutorService，所有操作需傳入 instanceName 指定目標 WSL 實例
+ *
+ * 實作 ISecretManagerService
+ */
+let SecretManagerService = class SecretManagerService {
+    constructor(envFactory, logger) {
+        this.envFactory = envFactory;
+        this.logger = logger;
+    }
+    /**
+     * 檢查命名空間是否存在
+     */
+    async checkNamespaceExists(instanceName, namespace) {
+        try {
+            const env = this.envFactory.getForInstance(instanceName);
+            const builder = env.kubectl('get namespace')
+                .arg(namespace);
+            const res = await builder.exec();
+            return res.exitCode === 0;
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * 建立命名空間
+     */
+    async createNamespace(instanceName, namespace) {
+        const env = this.envFactory.getForInstance(instanceName);
+        const builder = env.kubectl('create namespace')
+            .arg(namespace);
+        const result = await builder.exec();
+        if (result.exitCode !== 0) {
+            throw new Error(`Failed to create namespace: ${result.stderr}`);
+        }
+    }
+    /**
+     * 建立全域設定 Secret
+     * @param instanceName 實例名稱
+     * @param saPassword SA 密碼
+     * @param adminPassword 管理員密碼
+     * @param rsaKeys RSA 金鑰組
+     * @param jwtKey JWT 金鑰
+     * @param progress 進度通知回調
+     */
+    async createGlobalConfigSecret(instanceName, saPassword, adminPassword, rsaKeys, jwtKey, output) {
+        const secretName = 'uofx-install-config';
+        const namespace = 'uofx-system';
+        // 確保命名空間存在
+        if (!(await this.checkNamespaceExists(instanceName, namespace))) {
+            this.logger.debug(`[Secret] Creating namespace ${namespace}...`);
+            await this.createNamespace(instanceName, namespace);
+        }
+        // 使用 stringData 建立 Secret (kubectl 會處理 base64 編碼)
+        this.logger.debug(`[Secret] Creating global config secret...`);
+        const secretManifest = {
+            apiVersion: 'v1',
+            kind: 'Secret',
+            metadata: {
+                name: secretName,
+                namespace: namespace,
+            },
+            type: 'Opaque',
+            stringData: {
+                'sa-password': saPassword,
+                'admin-password': adminPassword,
+                'rsa-signin-private': rsaKeys.signInRsa.privateKey,
+                'rsa-signin-public': rsaKeys.signInRsa.publicKey,
+                'rsa-uofx-private': rsaKeys.uofxRsa.privateKey,
+                'rsa-uofx-public': rsaKeys.uofxRsa.publicKey,
+                'jwt-signing-key': jwtKey,
+            },
+        };
+        // 使用 kubectl apply -f - 從 stdin 輸入
+        const env = this.envFactory.getForInstance(instanceName);
+        const builder = env.kubectl('apply')
+            .arg('-f', '-')
+            .sensitiveStdin(JSON.stringify(secretManifest));
+        const result = await builder.exec();
+        if (result.exitCode !== 0) {
+            throw new Error(`Failed to create global config secret: ${result.stderr}`);
+        }
+        output?.success(`Global config secret created in ${namespace}`).flush();
+    }
+    /**
+     * 取得全域設定 Secret
+     * @param instanceName 實例名稱
+     * @returns 全域設定物件，若不存在則回傳 null
+     */
+    async getGlobalConfigSecret(instanceName) {
+        const secretName = 'uofx-install-config';
+        const namespace = 'uofx-system';
+        try {
+            const env = this.envFactory.getForInstance(instanceName);
+            const builder = env.kubectl('get secret')
+                .arg(secretName)
+                .arg('-n', namespace)
+                .arg('-o', 'json');
+            const result = await builder.exec();
+            if (result.exitCode !== 0) {
+                this.logger.error(new Error(`kubectl exited with code ${result.exitCode}`));
+                this.logger.error(new Error(`Stderr: ${result.stderr}`));
+                return null;
+            }
+            const secret = JSON.parse(result.stdout);
+            const data = secret.data;
+            // 驗證必要欄位
+            if (!data['sa-password']) {
+                this.logger.error(new Error('sa-password not found in secret data'));
+                return null;
+            }
+            if (!data['admin-password']) {
+                this.logger.error(new Error('admin-password not found in secret data'));
+                return null;
+            }
+            return {
+                instanceName,
+                saPassword: Buffer.from(data['sa-password'], 'base64').toString('utf-8'),
+                adminPassword: Buffer.from(data['admin-password'], 'base64').toString('utf-8'),
+                signInRsaPrivateKey: Buffer.from(data['rsa-signin-private'], 'base64').toString('utf-8'),
+                signInRsaPublicKey: Buffer.from(data['rsa-signin-public'], 'base64').toString('utf-8'),
+                uofxRsaPrivateKey: Buffer.from(data['rsa-uofx-private'], 'base64').toString('utf-8'),
+                uofxRsaPublicKey: Buffer.from(data['rsa-uofx-public'], 'base64').toString('utf-8'),
+                jwtSigningKey: Buffer.from(data['jwt-signing-key'], 'base64').toString('utf-8'),
+                connectionStringUofxDb: Buffer.from(data['connection-string-uofxdb'] || '', 'base64').toString('utf-8'),
+                connectionStringUofxSearchDb: Buffer.from(data['connection-string-uofxsearchdb'] || '', 'base64').toString('utf-8')
+            };
+        }
+        catch (error) {
+            this.logger.error(error, { context: 'Error reading global config secret' });
+            return null;
+        }
+    }
+};
+exports.SecretManagerService = SecretManagerService;
+__decorate([
+    __param(1, (0, sensitive_decorator_1.Sensitive)()),
+    __param(2, (0, sensitive_decorator_1.Sensitive)()),
+    __param(3, (0, sensitive_decorator_1.Sensitive)()),
+    __param(4, (0, sensitive_decorator_1.Sensitive)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String, String, String, Object, String, Object]),
+    __metadata("design:returntype", Promise)
+], SecretManagerService.prototype, "createGlobalConfigSecret", null);
+__decorate([
+    (0, sensitive_decorator_1.SensitiveReturn)(),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String]),
+    __metadata("design:returntype", Promise)
+], SecretManagerService.prototype, "getGlobalConfigSecret", null);
+exports.SecretManagerService = SecretManagerService = __decorate([
+    (0, tsyringe_1.injectable)(),
+    __param(0, (0, tsyringe_1.inject)(tokens_1.TOKENS.Internal.IExecutionEnvironmentFactory)),
+    __param(1, (0, tsyringe_1.inject)(tokens_1.TOKENS.ILoggerPort)),
+    __metadata("design:paramtypes", [Object, Object])
+], SecretManagerService);
+//# sourceMappingURL=secret-manager.service.js.map

package/dist/infrastructure/deployment/services/service-manager.service.js ADDED Viewed

@@ -0,0 +1,82 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ServiceManagerService = void 0;
+const tsyringe_1 = require("tsyringe");
+const tokens_1 = require("../../../di/tokens");
+const deployment_parameters_entity_1 = require("../../../domain/entities/deployment-parameters.entity");
+const sensitive_decorator_1 = require("../../../domain/decorators/sensitive.decorator");
+const base_helm_deployment_service_1 = require("./base-helm-deployment.service");
+/**
+ * Service Manager Service
+ *
+ * 負責 uofx-service Helm chart 的部署管理
+ * 繼承 BaseHelmDeploymentService 使用模板方法模式
+ */
+let ServiceManagerService = class ServiceManagerService extends base_helm_deployment_service_1.BaseHelmDeploymentService {
+    constructor(envFactory, helmRegistry, logger) {
+        super(helmRegistry, logger, envFactory);
+    }
+    /**
+     * 部署 uofx-service 服務定義
+     */
+    async deployService(instanceName, params, chartVersion, output) {
+        output?.item('arrow', 'Deploying uofx-service chart...').flush();
+        await this.deployWithHelm(instanceName, params, chartVersion, output);
+    }
+    // =========================================================================
+    // BaseHelmDeploymentService 抽象方法實作
+    // =========================================================================
+    getServiceName() {
+        return 'Service';
+    }
+    getDeploymentConfig(chartVersion) {
+        return {
+            chartName: 'uofx-service',
+            chartVersion,
+        };
+    }
+    async installChart(instanceName, chartPath, _params, output) {
+        const builder = this.createHelmUpgradeBuilder(instanceName, {
+            releaseName: 'uofx-service',
+            chartPath,
+            wait: true,
+            timeout: '10m',
+            setArgs: ['podspec.selector.deploy=blue'],
+        });
+        this.logger.debug('[Service] Deploying service definition chart', {
+            chart: 'uofx-service',
+            chartPath: chartPath,
+            namespace: 'uofx',
+            instance: instanceName,
+        });
+        output?.indent().item('arrow', 'Installing uofx-service chart...').outdent().flush();
+        await this.executeWithRetry(builder, 'uofx-service', output);
+    }
+};
+exports.ServiceManagerService = ServiceManagerService;
+__decorate([
+    __param(1, (0, sensitive_decorator_1.Sensitive)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String, deployment_parameters_entity_1.DeploymentParameters, String, Object]),
+    __metadata("design:returntype", Promise)
+], ServiceManagerService.prototype, "deployService", null);
+exports.ServiceManagerService = ServiceManagerService = __decorate([
+    (0, tsyringe_1.injectable)(),
+    __param(0, (0, tsyringe_1.inject)(tokens_1.TOKENS.Internal.IExecutionEnvironmentFactory)),
+    __param(1, (0, tsyringe_1.inject)(tokens_1.TOKENS.Internal.IHelmRegistry)),
+    __param(2, (0, tsyringe_1.inject)(tokens_1.TOKENS.ILoggerPort)),
+    __metadata("design:paramtypes", [Object, Object, Object])
+], ServiceManagerService);
+//# sourceMappingURL=service-manager.service.js.map

package/dist/infrastructure/deployment/services/version-compatibility.service.js ADDED Viewed

@@ -0,0 +1,291 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.VersionCompatibilityService = void 0;
+const tsyringe_1 = require("tsyringe");
+const semver = __importStar(require("semver"));
+const tokens_1 = require("../../../di/tokens");
+const sensitive_decorator_1 = require("../../../domain/decorators/sensitive.decorator");
+const errors_1 = require("../../errors");
+const index_1 = require("../../../constants/index");
+/**
+ * 版本相容性檢查服務
+ *
+ * 負責檢查 Chart 版本與當前 CLI 版本的相容性，包含：
+ * - 檢查 Chart 相容性清單
+ * - 驗證 Chart 版本
+ * - 解析最新的相容 Chart 版本
+ *
+ * 實作 IVersionCompatibility Domain Port
+ */
+let VersionCompatibilityService = class VersionCompatibilityService {
+    constructor(httpClient, appConfig, acrCreds, logger) {
+        this.httpClient = httpClient;
+        this.appConfig = appConfig;
+        this.acrCreds = acrCreds;
+        this.logger = logger;
+        this.cachedManifest = null;
+        this.cliVersion = this.appConfig.getCliVersion();
+    }
+    /**
+     * 取得 Chart 相容性資訊
+     * @returns Chart 相容性物件
+     */
+    async getCompatibility() {
+        try {
+            const manifest = await this.fetchCompatibilityManifest(index_1.OCI_ARTIFACTS.CHART_COMPATIBILITY);
+            return this.parseCompatibility(manifest);
+        }
+        catch (error) {
+            this.logger.error(error instanceof Error ? error : new Error(String(error)), {
+                message: 'Failed to fetch chart compatibility'
+            });
+            // 失敗時拋出錯誤，讓呼叫者處理
+            throw error;
+        }
+    }
+    /**
+     * 驗證 Chart 版本是否與當前 CLI 相容
+     * @param chartVersion - Chart 版本
+     * @throws AppBusinessError 若版本不相容
+     */
+    async validateChartVersion(chartVersion) {
+        // 如果版本是 'latest' 或本地路徑，跳過檢查
+        if (chartVersion === 'latest' || chartVersion.startsWith('.') || chartVersion.startsWith('/') || chartVersion.match(/^[a-zA-Z]:/)) {
+            this.logger.debug(`Skipping compatibility check for version: ${chartVersion}`);
+            return;
+        }
+        const compatibility = await this.getCompatibility();
+        // 如果找不到兼容的 Chart（例如配置遺失或提取失敗但未拋出錯誤），我們假設 getCompatibility 成功執行
+        if (compatibility.compatibleCharts.length === 0) {
+            // 找不到符合此 CLI 版本的規則
+            // 或者相容性清單為空
+            this.logger.warn(`No compatibility rules found for CLI v${this.cliVersion}`);
+            return;
+        }
+        if (!compatibility.compatibleCharts.includes(chartVersion)) {
+            throw new errors_1.AppError(`Chart version ${chartVersion} is not compatible with CLI v${this.cliVersion}`, {
+                exitCode: errors_1.EXIT_CODES.BUSINESS_ERROR,
+                solution: `Use one of these compatible versions: ${compatibility.compatibleCharts.join(', ')}`,
+                context: {
+                    chartVersion,
+                    cliVersion: this.cliVersion,
+                    compatibleCharts: compatibility.compatibleCharts
+                }
+            });
+        }
+    }
+    /**
+     * 取得與當前 CLI 相容的最新 Chart 版本
+     * @returns 最新的相容版本字串
+     * @throws AppBusinessError 若無相容版本
+     */
+    async getLatestCompatibleVersion() {
+        const compatibility = await this.getCompatibility();
+        if (compatibility.compatibleCharts.length === 0) {
+            throw new errors_1.AppError(`No compatible chart versions available for CLI v${this.cliVersion}`, {
+                exitCode: errors_1.EXIT_CODES.BUSINESS_ERROR,
+                solution: 'Check the compatibility manifest configuration or consider updating the CLI version',
+                context: {
+                    cliVersion: this.cliVersion
+                }
+            });
+        }
+        // 過濾出有效的語義化版本
+        const validVersions = compatibility.compatibleCharts.filter((v) => semver.valid(v));
+        if (validVersions.length === 0) {
+            throw new errors_1.AppError(`No valid semver versions in compatibility list for CLI v${this.cliVersion}`, {
+                exitCode: errors_1.EXIT_CODES.BUSINESS_ERROR,
+                solution: 'Check the compatibility manifest - all chart versions must follow semantic versioning format (e.g., 1.0.0)',
+                context: {
+                    cliVersion: this.cliVersion,
+                    rawVersions: compatibility.compatibleCharts
+                }
+            });
+        }
+        // 降冪排序並返回第一個（最新）版本
+        const sorted = semver.rsort(validVersions);
+        const latestVersion = sorted[0];
+        this.logger.debug(`Latest compatible version selected: ${latestVersion}`, {
+            cliVersion: this.cliVersion,
+            allCompatibleVersions: validVersions
+        });
+        return latestVersion;
+    }
+    /**
+     * 解析相容性清單，找出符合當前 CLI 的規則
+     * @param manifest - 相容性清單
+     * @returns Chart 相容性物件
+     */
+    parseCompatibility(manifest) {
+        // 尋找符合當前 CLI 版本的規則
+        const rule = manifest.compatibility.find(r => semver.satisfies(this.cliVersion, r.cliRange));
+        if (!rule) {
+            this.logger.warn(`No compatibility rule matches CLI v${this.cliVersion}`);
+            return {
+                cliVersion: this.cliVersion,
+                compatibleCharts: []
+            };
+        }
+        return {
+            cliVersion: this.cliVersion,
+            compatibleCharts: rule.charts
+        };
+    }
+    /**
+     * 從 ACR 獲取相容性清單 (Manifest)
+     * 使用快取避免重複請求
+     * @param repo - Repository 名稱
+     * @returns 相容性清單物件
+     */
+    async fetchCompatibilityManifest(repo) {
+        // 使用快取
+        if (this.cachedManifest) {
+            return this.cachedManifest;
+        }
+        const creds = this.acrCreds.getDefaultCredentials();
+        if (!creds) {
+            throw new Error('ACR credentials not found');
+        }
+        const registry = `${creds.name}.azurecr.io`;
+        const scope = `repository:${repo}:pull`;
+        // 1. 取得 Token
+        const token = await this.getAcrToken(registry, scope, creds.account, creds.password);
+        // 2. 取得 Manifest 以查找 Blob Digest
+        const tag = index_1.OCI_ARTIFACT_TAGS.CHART_COMPATIBILITY;
+        const manifestUrl = `https://${registry}/v2/${repo}/manifests/${tag}`;
+        const manifestResponse = await this.httpClient.getJson(manifestUrl, {
+            Authorization: `Bearer ${token}`,
+            Accept: 'application/vnd.docker.distribution.manifest.v2+json, application/vnd.oci.image.manifest.v1+json'
+        });
+        // 3. 取得 Config Blob
+        // Manifest 包含 Layers。我們預期 JSON 檔案是其中一層或 Config Blob。
+        // 故事需求: "Blob: GET /v2/<repo>/blobs/<digest>"
+        // 我們需要知道是哪個 digest。
+        // 如果是單一檔案的神器，通常是第一層。
+        let digest = '';
+        if (manifestResponse.layers && manifestResponse.layers.length > 0) {
+            digest = manifestResponse.layers[0].digest;
+        }
+        else if (manifestResponse.config) {
+            // 有時 Config Blob 本身包含資訊，但對於 chart-compatibility，通常是 Layer。
+            // 如果它是作為單一檔案推播的，它會是一個 Layer。
+            digest = manifestResponse.config.digest;
+        }
+        if (!digest) {
+            throw new Error('Could not find digest in manifest');
+        }
+        const blobUrl = `https://${registry}/v2/${repo}/blobs/${digest}`;
+        const blob = await this.httpClient.getJson(blobUrl, {
+            Authorization: `Bearer ${token}`
+        });
+        // 存入快取
+        this.cachedManifest = blob;
+        return blob;
+    }
+    /**
+     * 獲取 ACR 存取 Token
+     * @param registry - Registry Host
+     * @param scope - 權限範圍
+     * @param user - 使用者名稱
+     * @param pass - 密碼
+     * @returns Access Token
+     */
+    async getAcrToken(registry, scope, user, pass) {
+        const auth = Buffer.from(`${user}:${pass}`).toString('base64');
+        const url = `https://${registry}/oauth2/token?service=${registry}&scope=${scope}`;
+        const response = await this.httpClient.getJson(url, {
+            Authorization: `Basic ${auth}`
+        });
+        return response.access_token;
+    }
+    /**
+     * 取得指定 Chart 版本對應的 Environment 版本
+     * @param chartVersion - Chart 版本（如 "2.123.301"）
+     * @returns Environment 版本（如 "1.26.100"）
+     * @throws AppError 若找不到對應的 environment 規則
+     */
+    async getEnvironmentVersion(chartVersion) {
+        const manifest = await this.fetchCompatibilityManifest(index_1.OCI_ARTIFACTS.CHART_COMPATIBILITY);
+        // 如果沒有 environment 規則，使用預設版本
+        if (!manifest.environment || manifest.environment.length === 0) {
+            this.logger.warn('No environment rules in compatibility manifest, using default');
+            // 預設回傳 K8s 1.26 對應的版本
+            return '1.26.100';
+        }
+        // 使用 semver.satisfies 匹配 chart 版本到 environment 規則
+        const rule = manifest.environment.find(r => semver.satisfies(chartVersion, r.chartRange));
+        if (!rule) {
+            throw new errors_1.AppError(`No environment version found for chart ${chartVersion}`, {
+                exitCode: errors_1.EXIT_CODES.BUSINESS_ERROR,
+                solution: 'Check the compatibility manifest for environment rules',
+                context: {
+                    chartVersion,
+                    availableRules: manifest.environment.map(r => r.chartRange)
+                }
+            });
+        }
+        this.logger.debug(`Environment version for chart ${chartVersion}: ${rule.version}`);
+        return rule.version;
+    }
+};
+exports.VersionCompatibilityService = VersionCompatibilityService;
+__decorate([
+    __param(3, (0, sensitive_decorator_1.Sensitive)()),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [String, String, String, String]),
+    __metadata("design:returntype", Promise)
+], VersionCompatibilityService.prototype, "getAcrToken", null);
+exports.VersionCompatibilityService = VersionCompatibilityService = __decorate([
+    (0, tsyringe_1.injectable)(),
+    __param(0, (0, tsyringe_1.inject)(tokens_1.TOKENS.Internal.IHttpClient)),
+    __param(1, (0, tsyringe_1.inject)(tokens_1.TOKENS.IAppConfig)),
+    __param(2, (0, tsyringe_1.inject)(tokens_1.TOKENS.Internal.IAcrCredentialManager)),
+    __param(3, (0, tsyringe_1.inject)(tokens_1.TOKENS.ILoggerPort)),
+    __metadata("design:paramtypes", [Object, Object, Object, Object])
+], VersionCompatibilityService);
+//# sourceMappingURL=version-compatibility.service.js.map

package/dist/infrastructure/environment/interfaces/hardware-info.interface.js ADDED Viewed

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=hardware-info.interface.js.map

package/dist/infrastructure/environment/interfaces/network-checker.interface.js ADDED Viewed

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=network-checker.interface.js.map