npm - @vafast/request-logger - Versions diffs - 0.1.3 → 0.1.5 - Mend

@vafast/request-logger 0.1.3 → 0.1.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/README.md CHANGED Viewed

@@ -16,7 +16,7 @@ API request logging middleware for Vafast with automatic sensitive data sanitiza
 ```bash
 npm install @vafast/request-logger
 # or
-bun add @vafast/request-logger
+npm install @vafast/request-logger
 ```
 ## Quick Start

package/dist/index.d.mts ADDED Viewed

@@ -0,0 +1,165 @@
+import { Middleware } from "vafast";
+//#region src/sanitize.d.ts
+/**
+ * 敏感数据清洗工具
+ *
+ * 用于在记录日志前移除或脱敏敏感信息
+ */
+interface SanitizeConfig {
+  /** 需要完全移除的字段（小写） */
+  removeFields?: string[];
+  /** 需要脱敏的字段（小写，部分匹配） */
+  maskFields?: string[];
+  /** 脱敏占位符 @default '[REDACTED]' */
+  placeholder?: string;
+  /** 最大递归深度 @default 10 */
+  maxDepth?: number;
+}
+/**
+ * 深度清洗对象中的敏感数据
+ *
+ * @example
+ * ```typescript
+ * const data = { password: '123456', token: 'eyJhbG...' }
+ * const sanitized = sanitize(data)
+ * // { password: '[REDACTED]', token: 'eyJh****...' }
+ * ```
+ */
+declare function sanitize<T>(data: T, config?: SanitizeConfig, depth?: number): T;
+/**
+ * 清洗 HTTP 请求头
+ *
+ * @example
+ * ```typescript
+ * const headers = { Authorization: 'Bearer eyJhbG...', Cookie: 'session=xxx' }
+ * const sanitized = sanitizeHeaders(headers)
+ * // { Authorization: 'Bearer eyJh****...', Cookie: '[REDACTED]' }
+ * ```
+ */
+declare function sanitizeHeaders(headers: Record<string, string>, config?: SanitizeConfig): Record<string, string>;
+//#endregion
+//#region src/index.d.ts
+interface RequestLog {
+  method: string;
+  url: string;
+  path: string;
+  headers: Record<string, string>;
+  body: unknown;
+  query: Record<string, string>;
+  response: {
+    success?: boolean;
+    message?: string;
+    code?: number;
+  };
+  status: number;
+  duration: number;
+  userId?: string;
+  appId?: string;
+  /** 服务标识（区分不同服务，如 auth-server、ones-server） */
+  service?: string;
+  createdAt: Date;
+}
+interface ResponseLog {
+  requestLogId: string;
+  success?: boolean;
+  message?: string;
+  code?: number;
+  data?: unknown;
+  createdAt: Date;
+}
+/**
+ * 存储适配器接口
+ */
+interface StorageAdapter {
+  /** 存储请求日志 */
+  saveRequestLog(log: RequestLog): Promise<string>;
+  /** 存储响应详情 */
+  saveResponseLog(log: ResponseLog): Promise<void>;
+}
+interface RequestLoggerConfig {
+  /** 存储适配器 */
+  storage: StorageAdapter;
+  /** 排除的路径（支持字符串或正则） */
+  excludePaths?: (string | RegExp)[];
+  /** 敏感数据清洗配置 */
+  sanitize?: SanitizeConfig;
+  /** 获取用户 ID 的函数 */
+  getUserId?: (req: Request) => string | undefined;
+  /** 获取应用 ID 的函数（用于多租户） */
+  getAppId?: (req: Request) => string | undefined;
+  /** 服务标识（区分不同服务，如 auth-server、ones-server） */
+  service?: string;
+  /**
+   * API 路径前缀，用于在查询路由注册表时匹配正确的路径
+   * 例如：'/restfulApi' → 请求路径 '/restfulApi/auth/signIn' 会在注册表中查找 '/auth/signIn'
+   */
+  pathPrefix?: string;
+  /** 错误回调 */
+  onError?: (error: Error) => void;
+  /** 是否启用 @default true */
+  enabled?: boolean;
+}
+/**
+ * 创建请求日志中间件
+ *
+ * 日志排除机制：
+ * 1. excludePaths: 手动指定需要排除的路径（字符串或正则）
+ * 2. 路由配置 log: false: 在路由定义中设置 log: false，中间件会自动查询 RouteRegistry
+ *
+ * @example
+ * ```typescript
+ * import { createRequestLogger, createMongoAdapter } from '@vafast/request-logger'
+ * import { mongoDb } from './mongodb'
+ *
+ * const requestLogger = createRequestLogger({
+ *   storage: createMongoAdapter(mongoDb, 'logs', 'logsResponse'),
+ *   // 手动指定排除路径（正则或字符串）
+ *   excludePaths: ['/health', /^\/metrics/],
+ *   // API 路径前缀（用于路由注册表查询）
+ *   pathPrefix: '/restfulApi',
+ *   getUserId: (req) => getLocals(req)?.userInfo?.id,
+ * })
+ *
+ * server.use(requestLogger)
+ * ```
+ *
+ * 在路由定义中使用 log: false：
+ * ```typescript
+ * export const healthRoutes: Route[] = [{
+ *   method: 'GET',
+ *   path: '/health',
+ *   log: false,  // 此路由不记录日志
+ *   handler: () => success({ status: 'ok' })
+ * }]
+ * ```
+ */
+declare function createRequestLogger(config: RequestLoggerConfig): Middleware;
+/**
+ * 创建 MongoDB 存储适配器
+ *
+ * @example
+ * ```typescript
+ * import { Db } from 'mongodb'
+ * import { createMongoAdapter } from '@vafast/request-logger'
+ *
+ * const adapter = createMongoAdapter(db, 'logs', 'logsResponse')
+ * ```
+ */
+declare function createMongoAdapter(db: {
+  collection: (name: string) => {
+    insertOne: (doc: any) => Promise<{
+      insertedId: {
+        toHexString: () => string;
+      };
+    }>;
+  };
+}, logsCollection?: string, logsResponseCollection?: string): StorageAdapter;
+/**
+ * 创建控制台存储适配器（用于开发调试）
+ */
+declare function createConsoleAdapter(): StorageAdapter;
+//#endregion
+export { RequestLog, RequestLoggerConfig, ResponseLog, type SanitizeConfig, StorageAdapter, createConsoleAdapter, createMongoAdapter, createRequestLogger, createRequestLogger as default, sanitize, sanitizeHeaders };
+//# sourceMappingURL=index.d.mts.map

package/dist/index.d.mts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.mts","names":[],"sources":["../src/sanitize.ts","../src/index.ts"],"sourcesContent":[],"mappings":";;;;;;;AAQA;AA+DA;AAAkC,UA/DjB,cAAA,CA+DiB;EAAY;EAA4B,YAAA,CAAA,EAAA,MAAA,EAAA;EAAC;EA+D3D,UAAA,CAAA,EAAA,MAAe,EAAA;EACpB;EACA,WAAA,CAAA,EAAA,MAAA;EACR;EAAM,QAAA,CAAA,EAAA,MAAA;;;;ACtHT;;;;;AAqBA;AAYA;;AAEmC,iBDiBnB,QCjBmB,CAAA,CAAA,CAAA,CAAA,IAAA,EDiBD,CCjBC,EAAA,MAAA,CAAA,EDiBW,cCjBX,EAAA,KAAA,CAAA,EAAA,MAAA,CAAA,EDiBuC,CCjBvC;;;;AAKnC;;;;;;;AAmByB,iBDwDT,eAAA,CCxDS,OAAA,EDyDd,MCzDc,CAAA,MAAA,EAAA,MAAA,CAAA,EAAA,MAAA,CAAA,ED0Dd,cC1Dc,CAAA,ED2DtB,MC3DsB,CAAA,MAAA,EAAA,MAAA,CAAA;;;UA3DR,UAAA;;EAAA,GAAA,EAAA,MAAA;EAIN,IAAA,EAAA,MAAA;EAEF,OAAA,EAFE,MAEF,CAAA,MAAA,EAAA,MAAA,CAAA;EAYI,IAAA,EAAA,OAAA;EAAI,KAAA,EAZR,MAYQ,CAAA,MAAA,EAAA,MAAA,CAAA;EAGA,QAAA,EAAA;IAYA,OAAA,CAAA,EAAA,OAAc;IAET,OAAA,CAAA,EAAA,MAAA;IAAa,IAAA,CAAA,EAAA,MAAA;EAEZ,CAAA;EAAc,MAAA,EAAA,MAAA;EAAO,QAAA,EAAA,MAAA;EAG3B,MAAA,CAAA,EAAA,MAAA;EAEN,KAAA,CAAA,EAAA,MAAA;EAEgB;EAEd,OAAA,CAAA,EAAA,MAAA;EAEO,SAAA,EA9BP,IA8BO;;AAWA,UAtCH,WAAA,CAsCG;EAAK,YAAA,EAAA,MAAA;EAyCT,OAAA,CAAA,EAAA,OAAA;EAkLA,OAAA,CAAA,EAAA,MAAA;EA+BA,IAAA,CAAA,EAAA,MAAA;;aA1RH;;;;;UAMI,cAAA;;sBAEK,aAAa;;uBAEZ,cAAc;;UAGpB,mBAAA;;WAEN;;2BAEgB;;aAEd;;oBAEO;;mBAED;;;;;;;;;oBASC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;iBAyCJ,mBAAA,SAA4B,sBAAsB;;;;;;;;;;;;iBAkLlD,kBAAA;;6BACiD;;;;;;8DAG9D;;;;iBA2Ba,oBAAA,CAAA,GAAwB"}

package/dist/index.mjs ADDED Viewed

@@ -0,0 +1,278 @@
+import { getRoute } from "vafast";
+//#region src/sanitize.ts
+/** 默认需要完全移除的敏感字段 */
+const DEFAULT_REMOVE_FIELDS = [
+	"password",
+	"newpassword",
+	"oldpassword",
+	"confirmpassword",
+	"secret",
+	"secretkey",
+	"privatekey",
+	"apisecret",
+	"clientsecret"
+];
+/** 默认需要脱敏的字段（保留部分信息） */
+const DEFAULT_MASK_FIELDS = [
+	"token",
+	"accesstoken",
+	"refreshtoken",
+	"authorization",
+	"apikey",
+	"api_key",
+	"x-api-key",
+	"idtoken",
+	"sessiontoken",
+	"bearer"
+];
+const DEFAULT_PLACEHOLDER = "[REDACTED]";
+const DEFAULT_MAX_DEPTH = 10;
+/**
+* 部分脱敏（保留前4后4位）
+*/
+function partialMask(value, placeholder) {
+	if (value.length <= 8) return placeholder;
+	return value.slice(0, 4) + "****" + value.slice(-4);
+}
+/**
+* 深度清洗对象中的敏感数据
+*
+* @example
+* ```typescript
+* const data = { password: '123456', token: 'eyJhbG...' }
+* const sanitized = sanitize(data)
+* // { password: '[REDACTED]', token: 'eyJh****...' }
+* ```
+*/
+function sanitize(data, config, depth = 0) {
+	const { removeFields = DEFAULT_REMOVE_FIELDS, maskFields = DEFAULT_MASK_FIELDS, placeholder = DEFAULT_PLACEHOLDER, maxDepth = DEFAULT_MAX_DEPTH } = config ?? {};
+	if (depth > maxDepth) return data;
+	if (data === null || data === void 0) return data;
+	if (Array.isArray(data)) return data.map((item) => sanitize(item, config, depth + 1));
+	if (typeof data === "object") {
+		const result = {};
+		for (const [key, value] of Object.entries(data)) {
+			const lowerKey = key.toLowerCase();
+			if (removeFields.some((field) => lowerKey === field)) {
+				result[key] = placeholder;
+				continue;
+			}
+			if (maskFields.some((field) => lowerKey.includes(field))) {
+				if (typeof value === "string") result[key] = partialMask(value, placeholder);
+				else result[key] = placeholder;
+				continue;
+			}
+			result[key] = sanitize(value, config, depth + 1);
+		}
+		return result;
+	}
+	return data;
+}
+/**
+* 清洗 HTTP 请求头
+*
+* @example
+* ```typescript
+* const headers = { Authorization: 'Bearer eyJhbG...', Cookie: 'session=xxx' }
+* const sanitized = sanitizeHeaders(headers)
+* // { Authorization: 'Bearer eyJh****...', Cookie: '[REDACTED]' }
+* ```
+*/
+function sanitizeHeaders(headers, config) {
+	const { maskFields = DEFAULT_MASK_FIELDS, placeholder = DEFAULT_PLACEHOLDER } = config ?? {};
+	const result = {};
+	for (const [key, value] of Object.entries(headers)) {
+		const lowerKey = key.toLowerCase();
+		if (lowerKey === "authorization") {
+			if (value.startsWith("Bearer ")) result[key] = "Bearer " + partialMask(value.slice(7), placeholder);
+			else result[key] = partialMask(value, placeholder);
+			continue;
+		}
+		if (lowerKey === "cookie" || lowerKey === "set-cookie") {
+			result[key] = placeholder;
+			continue;
+		}
+		if (maskFields.some((field) => lowerKey.includes(field))) {
+			result[key] = partialMask(value, placeholder);
+			continue;
+		}
+		result[key] = value;
+	}
+	return result;
+}
+//#endregion
+//#region src/index.ts
+/**
+* 创建请求日志中间件
+*
+* 日志排除机制：
+* 1. excludePaths: 手动指定需要排除的路径（字符串或正则）
+* 2. 路由配置 log: false: 在路由定义中设置 log: false，中间件会自动查询 RouteRegistry
+*
+* @example
+* ```typescript
+* import { createRequestLogger, createMongoAdapter } from '@vafast/request-logger'
+* import { mongoDb } from './mongodb'
+*
+* const requestLogger = createRequestLogger({
+*   storage: createMongoAdapter(mongoDb, 'logs', 'logsResponse'),
+*   // 手动指定排除路径（正则或字符串）
+*   excludePaths: ['/health', /^\/metrics/],
+*   // API 路径前缀（用于路由注册表查询）
+*   pathPrefix: '/restfulApi',
+*   getUserId: (req) => getLocals(req)?.userInfo?.id,
+* })
+*
+* server.use(requestLogger)
+* ```
+*
+* 在路由定义中使用 log: false：
+* ```typescript
+* export const healthRoutes: Route[] = [{
+*   method: 'GET',
+*   path: '/health',
+*   log: false,  // 此路由不记录日志
+*   handler: () => success({ status: 'ok' })
+* }]
+* ```
+*/
+function createRequestLogger(config) {
+	const { storage, excludePaths = [], sanitize: sanitizeConfig, getUserId, getAppId, service, pathPrefix = "", onError = console.error, enabled = true } = config;
+	return async (req, next) => {
+		if (!enabled) return next();
+		const startTime = Date.now();
+		const response = await next();
+		recordLog(req, response, startTime, {
+			storage,
+			excludePaths,
+			pathPrefix,
+			sanitizeConfig,
+			getUserId,
+			getAppId,
+			service,
+			onError
+		}).catch(onError);
+		return response;
+	};
+}
+/**
+* 检查路由是否配置了 log: false
+* 使用 vafast RouteRegistry 查询路由配置
+*/
+function shouldSkipLogByRoute(method, path, pathPrefix) {
+	try {
+		return getRoute(method, pathPrefix ? path.replace(/* @__PURE__ */ new RegExp(`^${pathPrefix}`), "") : path)?.log === false;
+	} catch {
+		return false;
+	}
+}
+async function recordLog(req, response, startTime, options) {
+	const { storage, excludePaths, pathPrefix, sanitizeConfig, getUserId, getAppId, service } = options;
+	const url = new URL(req.url);
+	const path = url.pathname;
+	if (excludePaths.some((pattern) => {
+		if (typeof pattern === "string") return path.includes(pattern);
+		return pattern.test(path);
+	})) return;
+	if (shouldSkipLogByRoute(req.method, path, pathPrefix)) return;
+	let body = null;
+	try {
+		const clonedReq = req.clone();
+		if ((req.headers.get("content-type") || "").includes("application/json")) body = await clonedReq.json();
+	} catch {}
+	let responseData = {};
+	try {
+		responseData = await response.clone().json();
+	} catch {}
+	const headers = {};
+	req.headers.forEach((value, key) => {
+		headers[key] = value;
+	});
+	const sanitizedHeaders = sanitizeHeaders(headers, sanitizeConfig);
+	const sanitizedBody = sanitize(body, sanitizeConfig);
+	const sanitizedResponseData = sanitize(responseData.data, sanitizeConfig);
+	const now = /* @__PURE__ */ new Date();
+	const duration = Date.now() - startTime;
+	const userId = getUserId?.(req);
+	const appId = getAppId?.(req);
+	const requestLogId = await storage.saveRequestLog({
+		method: req.method,
+		url: req.url,
+		path,
+		headers: sanitizedHeaders,
+		body: sanitizedBody,
+		query: Object.fromEntries(url.searchParams),
+		response: {
+			success: responseData.success,
+			message: responseData.message,
+			code: responseData.code
+		},
+		status: response.status,
+		duration,
+		userId,
+		appId,
+		service,
+		createdAt: now
+	});
+	await storage.saveResponseLog({
+		requestLogId,
+		success: responseData.success,
+		message: responseData.message,
+		code: responseData.code,
+		data: sanitizedResponseData,
+		createdAt: now
+	});
+}
+/**
+* 创建 MongoDB 存储适配器
+*
+* @example
+* ```typescript
+* import { Db } from 'mongodb'
+* import { createMongoAdapter } from '@vafast/request-logger'
+*
+* const adapter = createMongoAdapter(db, 'logs', 'logsResponse')
+* ```
+*/
+function createMongoAdapter(db, logsCollection = "logs", logsResponseCollection = "logsResponse") {
+	return {
+		async saveRequestLog(log) {
+			return (await db.collection(logsCollection).insertOne({
+				...log,
+				createAt: log.createdAt,
+				updateAt: log.createdAt
+			})).insertedId.toHexString();
+		},
+		async saveResponseLog(log) {
+			await db.collection(logsResponseCollection).insertOne({
+				logsId: log.requestLogId,
+				...log,
+				createAt: log.createdAt,
+				updateAt: log.createdAt
+			});
+		}
+	};
+}
+/**
+* 创建控制台存储适配器（用于开发调试）
+*/
+function createConsoleAdapter() {
+	let idCounter = 0;
+	return {
+		async saveRequestLog(log) {
+			const id = `log_${++idCounter}`;
+			console.log(`[REQUEST] ${log.method} ${log.path} ${log.status} ${log.duration}ms`);
+			return id;
+		},
+		async saveResponseLog(log) {
+			if (!log.success) console.log(`[RESPONSE ERROR] ${log.message}`);
+		}
+	};
+}
+var src_default = createRequestLogger;
+//#endregion
+export { createConsoleAdapter, createMongoAdapter, createRequestLogger, src_default as default, sanitize, sanitizeHeaders };
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.mjs","names":[],"sources":["../src/sanitize.ts","../src/index.ts"],"sourcesContent":["/**\n * 敏感数据清洗工具\n * \n * 用于在记录日志前移除或脱敏敏感信息\n */\n\n// ============ Types ============\n\nexport interface SanitizeConfig {\n /** 需要完全移除的字段（小写） */\n removeFields?: string[]\n /** 需要脱敏的字段（小写，部分匹配） */\n maskFields?: string[]\n /** 脱敏占位符 @default '[REDACTED]' */\n placeholder?: string\n /** 最大递归深度 @default 10 */\n maxDepth?: number\n}\n\n// ============ Default Config ============\n\n/** 默认需要完全移除的敏感字段 */\nconst DEFAULT_REMOVE_FIELDS = [\n 'password',\n 'newpassword',\n 'oldpassword',\n 'confirmpassword',\n 'secret',\n 'secretkey',\n 'privatekey',\n 'apisecret',\n 'clientsecret',\n]\n\n/** 默认需要脱敏的字段（保留部分信息） */\nconst DEFAULT_MASK_FIELDS = [\n 'token',\n 'accesstoken',\n 'refreshtoken',\n 'authorization',\n 'apikey',\n 'api_key',\n 'x-api-key',\n 'idtoken',\n 'sessiontoken',\n 'bearer',\n]\n\nconst DEFAULT_PLACEHOLDER = '[REDACTED]'\nconst DEFAULT_MAX_DEPTH = 10\n\n// ============ Sanitize Functions ============\n\n/**\n * 部分脱敏（保留前4后4位）\n */\nfunction partialMask(value: string, placeholder: string): string {\n if (value.length <= 8) return placeholder\n return value.slice(0, 4) + '****' + value.slice(-4)\n}\n\n/**\n * 深度清洗对象中的敏感数据\n * \n * @example\n * ```typescript\n * const data = { password: '123456', token: 'eyJhbG...' }\n * const sanitized = sanitize(data)\n * // { password: '[REDACTED]', token: 'eyJh****...' }\n * ```\n */\nexport function sanitize<T>(data: T, config?: SanitizeConfig, depth = 0): T {\n const {\n removeFields = DEFAULT_REMOVE_FIELDS,\n maskFields = DEFAULT_MASK_FIELDS,\n placeholder = DEFAULT_PLACEHOLDER,\n maxDepth = DEFAULT_MAX_DEPTH,\n } = config ?? {}\n\n // 防止无限递归\n if (depth > maxDepth) return data\n \n if (data === null || data === undefined) {\n return data\n }\n\n // 处理数组\n if (Array.isArray(data)) {\n return data.map(item => sanitize(item, config, depth + 1)) as T\n }\n\n // 处理对象\n if (typeof data === 'object') {\n const result: Record<string, unknown> = {}\n \n for (const [key, value] of Object.entries(data)) {\n const lowerKey = key.toLowerCase()\n \n // 完全移除的字段\n if (removeFields.some(field => lowerKey === field)) {\n result[key] = placeholder\n continue\n }\n \n // 部分脱敏的字段\n if (maskFields.some(field => lowerKey.includes(field))) {\n if (typeof value === 'string') {\n result[key] = partialMask(value, placeholder)\n } else {\n result[key] = placeholder\n }\n continue\n }\n \n // 递归处理嵌套对象\n result[key] = sanitize(value, config, depth + 1)\n }\n \n return result as T\n }\n\n return data\n}\n\n/**\n * 清洗 HTTP 请求头\n * \n * @example\n * ```typescript\n * const headers = { Authorization: 'Bearer eyJhbG...', Cookie: 'session=xxx' }\n * const sanitized = sanitizeHeaders(headers)\n * // { Authorization: 'Bearer eyJh****...', Cookie: '[REDACTED]' }\n * ```\n */\nexport function sanitizeHeaders(\n headers: Record<string, string>,\n config?: SanitizeConfig\n): Record<string, string> {\n const {\n maskFields = DEFAULT_MASK_FIELDS,\n placeholder = DEFAULT_PLACEHOLDER,\n } = config ?? {}\n\n const result: Record<string, string> = {}\n \n for (const [key, value] of Object.entries(headers)) {\n const lowerKey = key.toLowerCase()\n \n // Authorization 头部分脱敏\n if (lowerKey === 'authorization') {\n if (value.startsWith('Bearer ')) {\n result[key] = 'Bearer ' + partialMask(value.slice(7), placeholder)\n } else {\n result[key] = partialMask(value, placeholder)\n }\n continue\n }\n \n // Cookie 完全脱敏\n if (lowerKey === 'cookie' || lowerKey === 'set-cookie') {\n result[key] = placeholder\n continue\n }\n \n // API Key 相关头脱敏\n if (maskFields.some(field => lowerKey.includes(field))) {\n result[key] = partialMask(value, placeholder)\n continue\n }\n \n result[key] = value\n }\n \n return result\n}\n\n/**\n * 检查值是否为敏感字段\n */\nexport function isSensitiveField(fieldName: string, config?: SanitizeConfig): boolean {\n const {\n removeFields = DEFAULT_REMOVE_FIELDS,\n maskFields = DEFAULT_MASK_FIELDS,\n } = config ?? {}\n\n const lowerName = fieldName.toLowerCase()\n \n return (\n removeFields.some(field => lowerName === field) ||\n maskFields.some(field => lowerName.includes(field))\n )\n}\n\n","/**\n * @vafast/request-logger - API request logging middleware for Vafast\n * \n * Features:\n * - Automatic sensitive data sanitization\n * - Pluggable storage adapters (MongoDB, custom)\n * - Async logging (non-blocking)\n * - Path exclusion support\n * - Route-level log control (log: false in route definition)\n * \n * Uses vafast RouteRegistry to query route configurations at runtime,\n * similar to @vafast/webhook implementation.\n */\nimport type { Middleware } from 'vafast'\nimport { getRoute } from 'vafast'\nimport { sanitize, sanitizeHeaders, type SanitizeConfig } from './sanitize'\n\n// ============ Types ============\n\nexport interface RequestLog {\n method: string\n url: string\n path: string\n headers: Record<string, string>\n body: unknown\n query: Record<string, string>\n response: {\n success?: boolean\n message?: string\n code?: number\n }\n status: number\n duration: number\n userId?: string\n appId?: string\n /** 服务标识（区分不同服务，如 auth-server、ones-server） */\n service?: string\n createdAt: Date\n}\n\nexport interface ResponseLog {\n requestLogId: string\n success?: boolean\n message?: string\n code?: number\n data?: unknown\n createdAt: Date\n}\n\n/**\n * 存储适配器接口\n */\nexport interface StorageAdapter {\n /** 存储请求日志 */\n saveRequestLog(log: RequestLog): Promise<string>\n /** 存储响应详情 */\n saveResponseLog(log: ResponseLog): Promise<void>\n}\n\nexport interface RequestLoggerConfig {\n /** 存储适配器 */\n storage: StorageAdapter\n /** 排除的路径（支持字符串或正则） */\n excludePaths?: (string | RegExp)[]\n /** 敏感数据清洗配置 */\n sanitize?: SanitizeConfig\n /** 获取用户 ID 的函数 */\n getUserId?: (req: Request) => string | undefined\n /** 获取应用 ID 的函数（用于多租户） */\n getAppId?: (req: Request) => string | undefined\n /** 服务标识（区分不同服务，如 auth-server、ones-server） */\n service?: string\n /** \n * API 路径前缀，用于在查询路由注册表时匹配正确的路径\n * 例如：'/restfulApi' → 请求路径 '/restfulApi/auth/signIn' 会在注册表中查找 '/auth/signIn'\n */\n pathPrefix?: string\n /** 错误回调 */\n onError?: (error: Error) => void\n /** 是否启用 @default true */\n enabled?: boolean\n}\n\n// ============ Middleware Factory ============\n\n/**\n * 创建请求日志中间件\n * \n * 日志排除机制：\n * 1. excludePaths: 手动指定需要排除的路径（字符串或正则）\n * 2. 路由配置 log: false: 在路由定义中设置 log: false，中间件会自动查询 RouteRegistry\n * \n * @example\n * ```typescript\n * import { createRequestLogger, createMongoAdapter } from '@vafast/request-logger'\n * import { mongoDb } from './mongodb'\n * \n * const requestLogger = createRequestLogger({\n * storage: createMongoAdapter(mongoDb, 'logs', 'logsResponse'),\n * // 手动指定排除路径（正则或字符串）\n * excludePaths: ['/health', /^\\/metrics/],\n * // API 路径前缀（用于路由注册表查询）\n * pathPrefix: '/restfulApi',\n * getUserId: (req) => getLocals(req)?.userInfo?.id,\n * })\n * \n * server.use(requestLogger)\n * ```\n * \n * 在路由定义中使用 log: false：\n * ```typescript\n * export const healthRoutes: Route[] = [{\n * method: 'GET',\n * path: '/health',\n * log: false, // 此路由不记录日志\n * handler: () => success({ status: 'ok' })\n * }]\n * ```\n */\nexport function createRequestLogger(config: RequestLoggerConfig): Middleware {\n const {\n storage,\n excludePaths = [],\n sanitize: sanitizeConfig,\n getUserId,\n getAppId,\n service,\n pathPrefix = '',\n onError = console.error,\n enabled = true,\n } = config\n\n return async (req: Request, next: () => Promise<Response>) => {\n if (!enabled) {\n return next()\n }\n\n const startTime = Date.now()\n const response = await next()\n\n // 异步记录日志，不阻塞响应\n recordLog(req, response, startTime, {\n storage,\n excludePaths,\n pathPrefix,\n sanitizeConfig,\n getUserId,\n getAppId,\n service,\n onError,\n }).catch(onError)\n\n return response\n }\n}\n\n// ============ Internal Functions ============\n\ninterface RecordLogOptions {\n storage: StorageAdapter\n excludePaths: (string | RegExp)[]\n pathPrefix: string\n sanitizeConfig?: SanitizeConfig\n getUserId?: (req: Request) => string | undefined\n getAppId?: (req: Request) => string | undefined\n service?: string\n onError: (error: Error) => void\n}\n\n/**\n * 检查路由是否配置了 log: false\n * 使用 vafast RouteRegistry 查询路由配置\n */\nfunction shouldSkipLogByRoute(method: string, path: string, pathPrefix: string): boolean {\n try {\n // 移除 pathPrefix 以匹配路由注册表中的路径\n const routePath = pathPrefix ? path.replace(new RegExp(`^${pathPrefix}`), '') : path\n const route = getRoute<{ log?: boolean }>(method, routePath)\n return route?.log === false\n } catch {\n // RouteRegistry 未初始化时忽略错误\n return false\n }\n}\n\nasync function recordLog(\n req: Request,\n response: Response,\n startTime: number,\n options: RecordLogOptions\n) {\n const { storage, excludePaths, pathPrefix, sanitizeConfig, getUserId, getAppId, service } = options\n\n const url = new URL(req.url)\n const path = url.pathname\n\n // 检查1: 手动配置的 excludePaths\n const shouldExcludeByPath = excludePaths.some(pattern => {\n if (typeof pattern === 'string') {\n return path.includes(pattern)\n }\n return pattern.test(path)\n })\n\n if (shouldExcludeByPath) {\n return\n }\n\n // 检查2: 路由定义中的 log: false（通过 RouteRegistry 查询）\n if (shouldSkipLogByRoute(req.method, path, pathPrefix)) {\n return\n }\n\n // 解析请求体\n let body: unknown = null\n try {\n const clonedReq = req.clone()\n const contentType = req.headers.get('content-type') || ''\n if (contentType.includes('application/json')) {\n body = await clonedReq.json()\n }\n } catch {\n // 忽略解析错误\n }\n\n // 解析响应体\n let responseData: { success?: boolean; message?: string; code?: number; data?: unknown } = {}\n try {\n const clonedRes = response.clone()\n responseData = await clonedRes.json()\n } catch {\n // 忽略解析错误\n }\n\n // 提取请求头\n const headers: Record<string, string> = {}\n req.headers.forEach((value, key) => {\n headers[key] = value\n })\n\n // 清洗敏感数据\n const sanitizedHeaders = sanitizeHeaders(headers, sanitizeConfig)\n const sanitizedBody = sanitize(body, sanitizeConfig)\n const sanitizedResponseData = sanitize(responseData.data, sanitizeConfig)\n\n const now = new Date()\n const duration = Date.now() - startTime\n\n // 获取用户 ID 和应用 ID\n const userId = getUserId?.(req)\n const appId = getAppId?.(req)\n\n // 存储请求日志\n const requestLogId = await storage.saveRequestLog({\n method: req.method,\n url: req.url,\n path,\n headers: sanitizedHeaders,\n body: sanitizedBody,\n query: Object.fromEntries(url.searchParams),\n response: {\n success: responseData.success,\n message: responseData.message,\n code: responseData.code,\n },\n status: response.status,\n duration,\n userId,\n appId,\n service,\n createdAt: now,\n })\n\n // 存储响应详情\n await storage.saveResponseLog({\n requestLogId,\n success: responseData.success,\n message: responseData.message,\n code: responseData.code,\n data: sanitizedResponseData,\n createdAt: now,\n })\n}\n\n// ============ MongoDB Adapter ============\n\n/**\n * 创建 MongoDB 存储适配器\n * \n * @example\n * ```typescript\n * import { Db } from 'mongodb'\n * import { createMongoAdapter } from '@vafast/request-logger'\n * \n * const adapter = createMongoAdapter(db, 'logs', 'logsResponse')\n * ```\n */\nexport function createMongoAdapter(\n db: { collection: (name: string) => { insertOne: (doc: any) => Promise<{ insertedId: { toHexString: () => string } }> } },\n logsCollection: string = 'logs',\n logsResponseCollection: string = 'logsResponse'\n): StorageAdapter {\n return {\n async saveRequestLog(log: RequestLog): Promise<string> {\n const result = await db.collection(logsCollection).insertOne({\n ...log,\n createAt: log.createdAt,\n updateAt: log.createdAt,\n })\n return result.insertedId.toHexString()\n },\n\n async saveResponseLog(log: ResponseLog): Promise<void> {\n await db.collection(logsResponseCollection).insertOne({\n logsId: log.requestLogId,\n ...log,\n createAt: log.createdAt,\n updateAt: log.createdAt,\n })\n },\n }\n}\n\n// ============ Console Adapter (for development) ============\n\n/**\n * 创建控制台存储适配器（用于开发调试）\n */\nexport function createConsoleAdapter(): StorageAdapter {\n let idCounter = 0\n\n return {\n async saveRequestLog(log: RequestLog): Promise<string> {\n const id = `log_${++idCounter}`\n console.log(`[REQUEST] ${log.method} ${log.path} ${log.status} ${log.duration}ms`)\n return id\n },\n\n async saveResponseLog(log: ResponseLog): Promise<void> {\n if (!log.success) {\n console.log(`[RESPONSE ERROR] ${log.message}`)\n }\n },\n }\n}\n\n// ============ Re-exports ============\n\nexport { sanitize, sanitizeHeaders, type SanitizeConfig } from './sanitize'\nexport default createRequestLogger\n\n"],"mappings":";;;;AAsBA,MAAM,wBAAwB;CAC5B;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD;;AAGD,MAAM,sBAAsB;CAC1B;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD;AAED,MAAM,sBAAsB;AAC5B,MAAM,oBAAoB;;;;AAO1B,SAAS,YAAY,OAAe,aAA6B;AAC/D,KAAI,MAAM,UAAU,EAAG,QAAO;AAC9B,QAAO,MAAM,MAAM,GAAG,EAAE,GAAG,SAAS,MAAM,MAAM,GAAG;;;;;;;;;;;;AAarD,SAAgB,SAAY,MAAS,QAAyB,QAAQ,GAAM;CAC1E,MAAM,EACJ,eAAe,uBACf,aAAa,qBACb,cAAc,qBACd,WAAW,sBACT,UAAU,EAAE;AAGhB,KAAI,QAAQ,SAAU,QAAO;AAE7B,KAAI,SAAS,QAAQ,SAAS,OAC5B,QAAO;AAIT,KAAI,MAAM,QAAQ,KAAK,CACrB,QAAO,KAAK,KAAI,SAAQ,SAAS,MAAM,QAAQ,QAAQ,EAAE,CAAC;AAI5D,KAAI,OAAO,SAAS,UAAU;EAC5B,MAAM,SAAkC,EAAE;AAE1C,OAAK,MAAM,CAAC,KAAK,UAAU,OAAO,QAAQ,KAAK,EAAE;GAC/C,MAAM,WAAW,IAAI,aAAa;AAGlC,OAAI,aAAa,MAAK,UAAS,aAAa,MAAM,EAAE;AAClD,WAAO,OAAO;AACd;;AAIF,OAAI,WAAW,MAAK,UAAS,SAAS,SAAS,MAAM,CAAC,EAAE;AACtD,QAAI,OAAO,UAAU,SACnB,QAAO,OAAO,YAAY,OAAO,YAAY;QAE7C,QAAO,OAAO;AAEhB;;AAIF,UAAO,OAAO,SAAS,OAAO,QAAQ,QAAQ,EAAE;;AAGlD,SAAO;;AAGT,QAAO;;;;;;;;;;;;AAaT,SAAgB,gBACd,SACA,QACwB;CACxB,MAAM,EACJ,aAAa,qBACb,cAAc,wBACZ,UAAU,EAAE;CAEhB,MAAM,SAAiC,EAAE;AAEzC,MAAK,MAAM,CAAC,KAAK,UAAU,OAAO,QAAQ,QAAQ,EAAE;EAClD,MAAM,WAAW,IAAI,aAAa;AAGlC,MAAI,aAAa,iBAAiB;AAChC,OAAI,MAAM,WAAW,UAAU,CAC7B,QAAO,OAAO,YAAY,YAAY,MAAM,MAAM,EAAE,EAAE,YAAY;OAElE,QAAO,OAAO,YAAY,OAAO,YAAY;AAE/C;;AAIF,MAAI,aAAa,YAAY,aAAa,cAAc;AACtD,UAAO,OAAO;AACd;;AAIF,MAAI,WAAW,MAAK,UAAS,SAAS,SAAS,MAAM,CAAC,EAAE;AACtD,UAAO,OAAO,YAAY,OAAO,YAAY;AAC7C;;AAGF,SAAO,OAAO;;AAGhB,QAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;ACtDT,SAAgB,oBAAoB,QAAyC;CAC3E,MAAM,EACJ,SACA,eAAe,EAAE,EACjB,UAAU,gBACV,WACA,UACA,SACA,aAAa,IACb,UAAU,QAAQ,OAClB,UAAU,SACR;AAEJ,QAAO,OAAO,KAAc,SAAkC;AAC5D,MAAI,CAAC,QACH,QAAO,MAAM;EAGf,MAAM,YAAY,KAAK,KAAK;EAC5B,MAAM,WAAW,MAAM,MAAM;AAG7B,YAAU,KAAK,UAAU,WAAW;GAClC;GACA;GACA;GACA;GACA;GACA;GACA;GACA;GACD,CAAC,CAAC,MAAM,QAAQ;AAEjB,SAAO;;;;;;;AAqBX,SAAS,qBAAqB,QAAgB,MAAc,YAA6B;AACvF,KAAI;AAIF,SADc,SAA4B,QADxB,aAAa,KAAK,wBAAQ,IAAI,OAAO,IAAI,aAAa,EAAE,GAAG,GAAG,KACpB,EAC9C,QAAQ;SAChB;AAEN,SAAO;;;AAIX,eAAe,UACb,KACA,UACA,WACA,SACA;CACA,MAAM,EAAE,SAAS,cAAc,YAAY,gBAAgB,WAAW,UAAU,YAAY;CAE5F,MAAM,MAAM,IAAI,IAAI,IAAI,IAAI;CAC5B,MAAM,OAAO,IAAI;AAUjB,KAP4B,aAAa,MAAK,YAAW;AACvD,MAAI,OAAO,YAAY,SACrB,QAAO,KAAK,SAAS,QAAQ;AAE/B,SAAO,QAAQ,KAAK,KAAK;GACzB,CAGA;AAIF,KAAI,qBAAqB,IAAI,QAAQ,MAAM,WAAW,CACpD;CAIF,IAAI,OAAgB;AACpB,KAAI;EACF,MAAM,YAAY,IAAI,OAAO;AAE7B,OADoB,IAAI,QAAQ,IAAI,eAAe,IAAI,IACvC,SAAS,mBAAmB,CAC1C,QAAO,MAAM,UAAU,MAAM;SAEzB;CAKR,IAAI,eAAuF,EAAE;AAC7F,KAAI;AAEF,iBAAe,MADG,SAAS,OAAO,CACH,MAAM;SAC/B;CAKR,MAAM,UAAkC,EAAE;AAC1C,KAAI,QAAQ,SAAS,OAAO,QAAQ;AAClC,UAAQ,OAAO;GACf;CAGF,MAAM,mBAAmB,gBAAgB,SAAS,eAAe;CACjE,MAAM,gBAAgB,SAAS,MAAM,eAAe;CACpD,MAAM,wBAAwB,SAAS,aAAa,MAAM,eAAe;CAEzE,MAAM,sBAAM,IAAI,MAAM;CACtB,MAAM,WAAW,KAAK,KAAK,GAAG;CAG9B,MAAM,SAAS,YAAY,IAAI;CAC/B,MAAM,QAAQ,WAAW,IAAI;CAG7B,MAAM,eAAe,MAAM,QAAQ,eAAe;EAChD,QAAQ,IAAI;EACZ,KAAK,IAAI;EACT;EACA,SAAS;EACT,MAAM;EACN,OAAO,OAAO,YAAY,IAAI,aAAa;EAC3C,UAAU;GACR,SAAS,aAAa;GACtB,SAAS,aAAa;GACtB,MAAM,aAAa;GACpB;EACD,QAAQ,SAAS;EACjB;EACA;EACA;EACA;EACA,WAAW;EACZ,CAAC;AAGF,OAAM,QAAQ,gBAAgB;EAC5B;EACA,SAAS,aAAa;EACtB,SAAS,aAAa;EACtB,MAAM,aAAa;EACnB,MAAM;EACN,WAAW;EACZ,CAAC;;;;;;;;;;;;;AAgBJ,SAAgB,mBACd,IACA,iBAAyB,QACzB,yBAAiC,gBACjB;AAChB,QAAO;EACL,MAAM,eAAe,KAAkC;AAMrD,WALe,MAAM,GAAG,WAAW,eAAe,CAAC,UAAU;IAC3D,GAAG;IACH,UAAU,IAAI;IACd,UAAU,IAAI;IACf,CAAC,EACY,WAAW,aAAa;;EAGxC,MAAM,gBAAgB,KAAiC;AACrD,SAAM,GAAG,WAAW,uBAAuB,CAAC,UAAU;IACpD,QAAQ,IAAI;IACZ,GAAG;IACH,UAAU,IAAI;IACd,UAAU,IAAI;IACf,CAAC;;EAEL;;;;;AAQH,SAAgB,uBAAuC;CACrD,IAAI,YAAY;AAEhB,QAAO;EACL,MAAM,eAAe,KAAkC;GACrD,MAAM,KAAK,OAAO,EAAE;AACpB,WAAQ,IAAI,aAAa,IAAI,OAAO,GAAG,IAAI,KAAK,GAAG,IAAI,OAAO,GAAG,IAAI,SAAS,IAAI;AAClF,UAAO;;EAGT,MAAM,gBAAgB,KAAiC;AACrD,OAAI,CAAC,IAAI,QACP,SAAQ,IAAI,oBAAoB,IAAI,UAAU;;EAGnD;;AAMH,kBAAe"}

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@vafast/request-logger",
-  "version": "0.1.3",
+  "version": "0.1.5",
   "description": "API request logging middleware for Vafast with sensitive data sanitization",
   "type": "module",
   "main": "./dist/index.js",
@@ -22,7 +22,7 @@
     "typescript"
   ],
   "scripts": {
-    "build": "tsup",
+    "build": "tsdown",
     "dev": "npx tsx watch example/index.ts",
     "test": "npx vitest run",
     "release": "npm run build && npm run test && npx bumpp && npm publish --access=public"
@@ -38,12 +38,12 @@
     "@types/node": "^22.15.30",
     "mongodb": "^6.16.0",
     "rimraf": "^6.0.1",
-    "tsup": "^8.5.1",
+    "tsdown": "^0.19.0-beta.4",
     "typescript": "^5.4.5",
-    "vafast": "^0.3.9"
+    "vafast": ">=0.3.11"
   },
   "peerDependencies": {
-    "vafast": ">= 0.3.0",
+    "vafast": ">=0.3.11",
     "mongodb": ">= 6.0.0"
   },
   "peerDependenciesMeta": {

package/dist/index.d.ts DELETED Viewed

@@ -1,149 +0,0 @@
-import { Middleware } from 'vafast';
-/**
- * 敏感数据清洗工具
- *
- * 用于在记录日志前移除或脱敏敏感信息
- */
-interface SanitizeConfig {
-    /** 需要完全移除的字段（小写） */
-    removeFields?: string[];
-    /** 需要脱敏的字段（小写，部分匹配） */
-    maskFields?: string[];
-    /** 脱敏占位符 @default '[REDACTED]' */
-    placeholder?: string;
-    /** 最大递归深度 @default 10 */
-    maxDepth?: number;
-}
-/**
- * 深度清洗对象中的敏感数据
- *
- * @example
- * ```typescript
- * const data = { password: '123456', token: 'eyJhbG...' }
- * const sanitized = sanitize(data)
- * // { password: '[REDACTED]', token: 'eyJh****...' }
- * ```
- */
-declare function sanitize<T>(data: T, config?: SanitizeConfig, depth?: number): T;
-/**
- * 清洗 HTTP 请求头
- *
- * @example
- * ```typescript
- * const headers = { Authorization: 'Bearer eyJhbG...', Cookie: 'session=xxx' }
- * const sanitized = sanitizeHeaders(headers)
- * // { Authorization: 'Bearer eyJh****...', Cookie: '[REDACTED]' }
- * ```
- */
-declare function sanitizeHeaders(headers: Record<string, string>, config?: SanitizeConfig): Record<string, string>;
-/**
- * @vafast/request-logger - API request logging middleware for Vafast
- *
- * Features:
- * - Automatic sensitive data sanitization
- * - Pluggable storage adapters (MongoDB, custom)
- * - Async logging (non-blocking)
- * - Path exclusion support
- */
-interface RequestLog {
-    method: string;
-    url: string;
-    path: string;
-    headers: Record<string, string>;
-    body: unknown;
-    query: Record<string, string>;
-    response: {
-        success?: boolean;
-        message?: string;
-        code?: number;
-    };
-    status: number;
-    duration: number;
-    userId?: string;
-    appId?: string;
-    /** 服务标识（区分不同服务，如 auth-server、ones-server） */
-    service?: string;
-    createdAt: Date;
-}
-interface ResponseLog {
-    requestLogId: string;
-    success?: boolean;
-    message?: string;
-    code?: number;
-    data?: unknown;
-    createdAt: Date;
-}
-/**
- * 存储适配器接口
- */
-interface StorageAdapter {
-    /** 存储请求日志 */
-    saveRequestLog(log: RequestLog): Promise<string>;
-    /** 存储响应详情 */
-    saveResponseLog(log: ResponseLog): Promise<void>;
-}
-interface RequestLoggerConfig {
-    /** 存储适配器 */
-    storage: StorageAdapter;
-    /** 排除的路径（支持字符串或正则） */
-    excludePaths?: (string | RegExp)[];
-    /** 敏感数据清洗配置 */
-    sanitize?: SanitizeConfig;
-    /** 获取用户 ID 的函数 */
-    getUserId?: (req: Request) => string | undefined;
-    /** 获取应用 ID 的函数（用于多租户） */
-    getAppId?: (req: Request) => string | undefined;
-    /** 服务标识（区分不同服务，如 auth-server、ones-server） */
-    service?: string;
-    /** 错误回调 */
-    onError?: (error: Error) => void;
-    /** 是否启用 @default true */
-    enabled?: boolean;
-}
-/**
- * 创建请求日志中间件
- *
- * @example
- * ```typescript
- * import { createRequestLogger, createMongoAdapter } from '@vafast/request-logger'
- * import { mongoDb } from './mongodb'
- *
- * const requestLogger = createRequestLogger({
- *   storage: createMongoAdapter(mongoDb, 'logs', 'logsResponse'),
- *   excludePaths: ['/health', '/metrics'],
- *   getUserId: (req) => getLocals(req)?.userInfo?.id,
- * })
- *
- * server.use(requestLogger)
- * ```
- */
-declare function createRequestLogger(config: RequestLoggerConfig): Middleware;
-/**
- * 创建 MongoDB 存储适配器
- *
- * @example
- * ```typescript
- * import { Db } from 'mongodb'
- * import { createMongoAdapter } from '@vafast/request-logger'
- *
- * const adapter = createMongoAdapter(db, 'logs', 'logsResponse')
- * ```
- */
-declare function createMongoAdapter(db: {
-    collection: (name: string) => {
-        insertOne: (doc: any) => Promise<{
-            insertedId: {
-                toHexString: () => string;
-            };
-        }>;
-    };
-}, logsCollection?: string, logsResponseCollection?: string): StorageAdapter;
-/**
- * 创建控制台存储适配器（用于开发调试）
- */
-declare function createConsoleAdapter(): StorageAdapter;
-export { type RequestLog, type RequestLoggerConfig, type ResponseLog, type SanitizeConfig, type StorageAdapter, createConsoleAdapter, createMongoAdapter, createRequestLogger, createRequestLogger as default, sanitize, sanitizeHeaders };

package/dist/index.js DELETED Viewed

@@ -1,237 +0,0 @@
-// src/sanitize.ts
-var DEFAULT_REMOVE_FIELDS = [
-  "password",
-  "newpassword",
-  "oldpassword",
-  "confirmpassword",
-  "secret",
-  "secretkey",
-  "privatekey",
-  "apisecret",
-  "clientsecret"
-];
-var DEFAULT_MASK_FIELDS = [
-  "token",
-  "accesstoken",
-  "refreshtoken",
-  "authorization",
-  "apikey",
-  "api_key",
-  "x-api-key",
-  "idtoken",
-  "sessiontoken",
-  "bearer"
-];
-var DEFAULT_PLACEHOLDER = "[REDACTED]";
-var DEFAULT_MAX_DEPTH = 10;
-function partialMask(value, placeholder) {
-  if (value.length <= 8) return placeholder;
-  return value.slice(0, 4) + "****" + value.slice(-4);
-}
-function sanitize(data, config, depth = 0) {
-  const {
-    removeFields = DEFAULT_REMOVE_FIELDS,
-    maskFields = DEFAULT_MASK_FIELDS,
-    placeholder = DEFAULT_PLACEHOLDER,
-    maxDepth = DEFAULT_MAX_DEPTH
-  } = config ?? {};
-  if (depth > maxDepth) return data;
-  if (data === null || data === void 0) {
-    return data;
-  }
-  if (Array.isArray(data)) {
-    return data.map((item) => sanitize(item, config, depth + 1));
-  }
-  if (typeof data === "object") {
-    const result = {};
-    for (const [key, value] of Object.entries(data)) {
-      const lowerKey = key.toLowerCase();
-      if (removeFields.some((field) => lowerKey === field)) {
-        result[key] = placeholder;
-        continue;
-      }
-      if (maskFields.some((field) => lowerKey.includes(field))) {
-        if (typeof value === "string") {
-          result[key] = partialMask(value, placeholder);
-        } else {
-          result[key] = placeholder;
-        }
-        continue;
-      }
-      result[key] = sanitize(value, config, depth + 1);
-    }
-    return result;
-  }
-  return data;
-}
-function sanitizeHeaders(headers, config) {
-  const {
-    maskFields = DEFAULT_MASK_FIELDS,
-    placeholder = DEFAULT_PLACEHOLDER
-  } = config ?? {};
-  const result = {};
-  for (const [key, value] of Object.entries(headers)) {
-    const lowerKey = key.toLowerCase();
-    if (lowerKey === "authorization") {
-      if (value.startsWith("Bearer ")) {
-        result[key] = "Bearer " + partialMask(value.slice(7), placeholder);
-      } else {
-        result[key] = partialMask(value, placeholder);
-      }
-      continue;
-    }
-    if (lowerKey === "cookie" || lowerKey === "set-cookie") {
-      result[key] = placeholder;
-      continue;
-    }
-    if (maskFields.some((field) => lowerKey.includes(field))) {
-      result[key] = partialMask(value, placeholder);
-      continue;
-    }
-    result[key] = value;
-  }
-  return result;
-}
-// src/index.ts
-function createRequestLogger(config) {
-  const {
-    storage,
-    excludePaths = [],
-    sanitize: sanitizeConfig,
-    getUserId,
-    getAppId,
-    service,
-    onError = console.error,
-    enabled = true
-  } = config;
-  return async (req, next) => {
-    if (!enabled) {
-      return next();
-    }
-    const startTime = Date.now();
-    const response = await next();
-    recordLog(req, response, startTime, {
-      storage,
-      excludePaths,
-      sanitizeConfig,
-      getUserId,
-      getAppId,
-      service,
-      onError
-    }).catch(onError);
-    return response;
-  };
-}
-async function recordLog(req, response, startTime, options) {
-  const { storage, excludePaths, sanitizeConfig, getUserId, getAppId, service } = options;
-  const url = new URL(req.url);
-  const path = url.pathname;
-  const shouldExclude = excludePaths.some((pattern) => {
-    if (typeof pattern === "string") {
-      return path.includes(pattern);
-    }
-    return pattern.test(path);
-  });
-  if (shouldExclude) {
-    return;
-  }
-  let body = null;
-  try {
-    const clonedReq = req.clone();
-    const contentType = req.headers.get("content-type") || "";
-    if (contentType.includes("application/json")) {
-      body = await clonedReq.json();
-    }
-  } catch {
-  }
-  let responseData = {};
-  try {
-    const clonedRes = response.clone();
-    responseData = await clonedRes.json();
-  } catch {
-  }
-  const headers = {};
-  req.headers.forEach((value, key) => {
-    headers[key] = value;
-  });
-  const sanitizedHeaders = sanitizeHeaders(headers, sanitizeConfig);
-  const sanitizedBody = sanitize(body, sanitizeConfig);
-  const sanitizedResponseData = sanitize(responseData.data, sanitizeConfig);
-  const now = /* @__PURE__ */ new Date();
-  const duration = Date.now() - startTime;
-  const userId = getUserId?.(req);
-  const appId = getAppId?.(req);
-  const requestLogId = await storage.saveRequestLog({
-    method: req.method,
-    url: req.url,
-    path,
-    headers: sanitizedHeaders,
-    body: sanitizedBody,
-    query: Object.fromEntries(url.searchParams),
-    response: {
-      success: responseData.success,
-      message: responseData.message,
-      code: responseData.code
-    },
-    status: response.status,
-    duration,
-    userId,
-    appId,
-    service,
-    createdAt: now
-  });
-  await storage.saveResponseLog({
-    requestLogId,
-    success: responseData.success,
-    message: responseData.message,
-    code: responseData.code,
-    data: sanitizedResponseData,
-    createdAt: now
-  });
-}
-function createMongoAdapter(db, logsCollection = "logs", logsResponseCollection = "logsResponse") {
-  return {
-    async saveRequestLog(log) {
-      const result = await db.collection(logsCollection).insertOne({
-        ...log,
-        createAt: log.createdAt,
-        updateAt: log.createdAt
-      });
-      return result.insertedId.toHexString();
-    },
-    async saveResponseLog(log) {
-      await db.collection(logsResponseCollection).insertOne({
-        logsId: log.requestLogId,
-        ...log,
-        createAt: log.createdAt,
-        updateAt: log.createdAt
-      });
-    }
-  };
-}
-function createConsoleAdapter() {
-  let idCounter = 0;
-  return {
-    async saveRequestLog(log) {
-      const id = `log_${++idCounter}`;
-      console.log(`[REQUEST] ${log.method} ${log.path} ${log.status} ${log.duration}ms`);
-      return id;
-    },
-    async saveResponseLog(log) {
-      if (!log.success) {
-        console.log(`[RESPONSE ERROR] ${log.message}`);
-      }
-    }
-  };
-}
-var index_default = createRequestLogger;
-export {
-  createConsoleAdapter,
-  createMongoAdapter,
-  createRequestLogger,
-  index_default as default,
-  sanitize,
-  sanitizeHeaders
-};
-//# sourceMappingURL=index.js.map

package/dist/index.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"sources":["../src/sanitize.ts","../src/index.ts"],"sourcesContent":["/**\n * 敏感数据清洗工具\n * \n * 用于在记录日志前移除或脱敏敏感信息\n */\n\n// ============ Types ============\n\nexport interface SanitizeConfig {\n /** 需要完全移除的字段（小写） */\n removeFields?: string[]\n /** 需要脱敏的字段（小写，部分匹配） */\n maskFields?: string[]\n /** 脱敏占位符 @default '[REDACTED]' */\n placeholder?: string\n /** 最大递归深度 @default 10 */\n maxDepth?: number\n}\n\n// ============ Default Config ============\n\n/** 默认需要完全移除的敏感字段 */\nconst DEFAULT_REMOVE_FIELDS = [\n 'password',\n 'newpassword',\n 'oldpassword',\n 'confirmpassword',\n 'secret',\n 'secretkey',\n 'privatekey',\n 'apisecret',\n 'clientsecret',\n]\n\n/** 默认需要脱敏的字段（保留部分信息） */\nconst DEFAULT_MASK_FIELDS = [\n 'token',\n 'accesstoken',\n 'refreshtoken',\n 'authorization',\n 'apikey',\n 'api_key',\n 'x-api-key',\n 'idtoken',\n 'sessiontoken',\n 'bearer',\n]\n\nconst DEFAULT_PLACEHOLDER = '[REDACTED]'\nconst DEFAULT_MAX_DEPTH = 10\n\n// ============ Sanitize Functions ============\n\n/**\n * 部分脱敏（保留前4后4位）\n */\nfunction partialMask(value: string, placeholder: string): string {\n if (value.length <= 8) return placeholder\n return value.slice(0, 4) + '****' + value.slice(-4)\n}\n\n/**\n * 深度清洗对象中的敏感数据\n * \n * @example\n * ```typescript\n * const data = { password: '123456', token: 'eyJhbG...' }\n * const sanitized = sanitize(data)\n * // { password: '[REDACTED]', token: 'eyJh****...' }\n * ```\n */\nexport function sanitize<T>(data: T, config?: SanitizeConfig, depth = 0): T {\n const {\n removeFields = DEFAULT_REMOVE_FIELDS,\n maskFields = DEFAULT_MASK_FIELDS,\n placeholder = DEFAULT_PLACEHOLDER,\n maxDepth = DEFAULT_MAX_DEPTH,\n } = config ?? {}\n\n // 防止无限递归\n if (depth > maxDepth) return data\n \n if (data === null || data === undefined) {\n return data\n }\n\n // 处理数组\n if (Array.isArray(data)) {\n return data.map(item => sanitize(item, config, depth + 1)) as T\n }\n\n // 处理对象\n if (typeof data === 'object') {\n const result: Record<string, unknown> = {}\n \n for (const [key, value] of Object.entries(data)) {\n const lowerKey = key.toLowerCase()\n \n // 完全移除的字段\n if (removeFields.some(field => lowerKey === field)) {\n result[key] = placeholder\n continue\n }\n \n // 部分脱敏的字段\n if (maskFields.some(field => lowerKey.includes(field))) {\n if (typeof value === 'string') {\n result[key] = partialMask(value, placeholder)\n } else {\n result[key] = placeholder\n }\n continue\n }\n \n // 递归处理嵌套对象\n result[key] = sanitize(value, config, depth + 1)\n }\n \n return result as T\n }\n\n return data\n}\n\n/**\n * 清洗 HTTP 请求头\n * \n * @example\n * ```typescript\n * const headers = { Authorization: 'Bearer eyJhbG...', Cookie: 'session=xxx' }\n * const sanitized = sanitizeHeaders(headers)\n * // { Authorization: 'Bearer eyJh****...', Cookie: '[REDACTED]' }\n * ```\n */\nexport function sanitizeHeaders(\n headers: Record<string, string>,\n config?: SanitizeConfig\n): Record<string, string> {\n const {\n maskFields = DEFAULT_MASK_FIELDS,\n placeholder = DEFAULT_PLACEHOLDER,\n } = config ?? {}\n\n const result: Record<string, string> = {}\n \n for (const [key, value] of Object.entries(headers)) {\n const lowerKey = key.toLowerCase()\n \n // Authorization 头部分脱敏\n if (lowerKey === 'authorization') {\n if (value.startsWith('Bearer ')) {\n result[key] = 'Bearer ' + partialMask(value.slice(7), placeholder)\n } else {\n result[key] = partialMask(value, placeholder)\n }\n continue\n }\n \n // Cookie 完全脱敏\n if (lowerKey === 'cookie' || lowerKey === 'set-cookie') {\n result[key] = placeholder\n continue\n }\n \n // API Key 相关头脱敏\n if (maskFields.some(field => lowerKey.includes(field))) {\n result[key] = partialMask(value, placeholder)\n continue\n }\n \n result[key] = value\n }\n \n return result\n}\n\n/**\n * 检查值是否为敏感字段\n */\nexport function isSensitiveField(fieldName: string, config?: SanitizeConfig): boolean {\n const {\n removeFields = DEFAULT_REMOVE_FIELDS,\n maskFields = DEFAULT_MASK_FIELDS,\n } = config ?? {}\n\n const lowerName = fieldName.toLowerCase()\n \n return (\n removeFields.some(field => lowerName === field) ||\n maskFields.some(field => lowerName.includes(field))\n )\n}\n\n","/**\n * @vafast/request-logger - API request logging middleware for Vafast\n * \n * Features:\n * - Automatic sensitive data sanitization\n * - Pluggable storage adapters (MongoDB, custom)\n * - Async logging (non-blocking)\n * - Path exclusion support\n */\nimport type { Middleware } from 'vafast'\nimport { sanitize, sanitizeHeaders, type SanitizeConfig } from './sanitize'\n\n// ============ Types ============\n\nexport interface RequestLog {\n method: string\n url: string\n path: string\n headers: Record<string, string>\n body: unknown\n query: Record<string, string>\n response: {\n success?: boolean\n message?: string\n code?: number\n }\n status: number\n duration: number\n userId?: string\n appId?: string\n /** 服务标识（区分不同服务，如 auth-server、ones-server） */\n service?: string\n createdAt: Date\n}\n\nexport interface ResponseLog {\n requestLogId: string\n success?: boolean\n message?: string\n code?: number\n data?: unknown\n createdAt: Date\n}\n\n/**\n * 存储适配器接口\n */\nexport interface StorageAdapter {\n /** 存储请求日志 */\n saveRequestLog(log: RequestLog): Promise<string>\n /** 存储响应详情 */\n saveResponseLog(log: ResponseLog): Promise<void>\n}\n\nexport interface RequestLoggerConfig {\n /** 存储适配器 */\n storage: StorageAdapter\n /** 排除的路径（支持字符串或正则） */\n excludePaths?: (string | RegExp)[]\n /** 敏感数据清洗配置 */\n sanitize?: SanitizeConfig\n /** 获取用户 ID 的函数 */\n getUserId?: (req: Request) => string | undefined\n /** 获取应用 ID 的函数（用于多租户） */\n getAppId?: (req: Request) => string | undefined\n /** 服务标识（区分不同服务，如 auth-server、ones-server） */\n service?: string\n /** 错误回调 */\n onError?: (error: Error) => void\n /** 是否启用 @default true */\n enabled?: boolean\n}\n\n// ============ Middleware Factory ============\n\n/**\n * 创建请求日志中间件\n * \n * @example\n * ```typescript\n * import { createRequestLogger, createMongoAdapter } from '@vafast/request-logger'\n * import { mongoDb } from './mongodb'\n * \n * const requestLogger = createRequestLogger({\n * storage: createMongoAdapter(mongoDb, 'logs', 'logsResponse'),\n * excludePaths: ['/health', '/metrics'],\n * getUserId: (req) => getLocals(req)?.userInfo?.id,\n * })\n * \n * server.use(requestLogger)\n * ```\n */\nexport function createRequestLogger(config: RequestLoggerConfig): Middleware {\n const {\n storage,\n excludePaths = [],\n sanitize: sanitizeConfig,\n getUserId,\n getAppId,\n service,\n onError = console.error,\n enabled = true,\n } = config\n\n return async (req: Request, next: () => Promise<Response>) => {\n if (!enabled) {\n return next()\n }\n\n const startTime = Date.now()\n const response = await next()\n\n // 异步记录日志，不阻塞响应\n recordLog(req, response, startTime, {\n storage,\n excludePaths,\n sanitizeConfig,\n getUserId,\n getAppId,\n service,\n onError,\n }).catch(onError)\n\n return response\n }\n}\n\n// ============ Internal Functions ============\n\ninterface RecordLogOptions {\n storage: StorageAdapter\n excludePaths: (string | RegExp)[]\n sanitizeConfig?: SanitizeConfig\n getUserId?: (req: Request) => string | undefined\n getAppId?: (req: Request) => string | undefined\n service?: string\n onError: (error: Error) => void\n}\n\nasync function recordLog(\n req: Request,\n response: Response,\n startTime: number,\n options: RecordLogOptions\n) {\n const { storage, excludePaths, sanitizeConfig, getUserId, getAppId, service } = options\n\n const url = new URL(req.url)\n const path = url.pathname\n\n // 检查是否需要排除\n const shouldExclude = excludePaths.some(pattern => {\n if (typeof pattern === 'string') {\n return path.includes(pattern)\n }\n return pattern.test(path)\n })\n\n if (shouldExclude) {\n return\n }\n\n // 解析请求体\n let body: unknown = null\n try {\n const clonedReq = req.clone()\n const contentType = req.headers.get('content-type') || ''\n if (contentType.includes('application/json')) {\n body = await clonedReq.json()\n }\n } catch {\n // 忽略解析错误\n }\n\n // 解析响应体\n let responseData: { success?: boolean; message?: string; code?: number; data?: unknown } = {}\n try {\n const clonedRes = response.clone()\n responseData = await clonedRes.json()\n } catch {\n // 忽略解析错误\n }\n\n // 提取请求头\n const headers: Record<string, string> = {}\n req.headers.forEach((value, key) => {\n headers[key] = value\n })\n\n // 清洗敏感数据\n const sanitizedHeaders = sanitizeHeaders(headers, sanitizeConfig)\n const sanitizedBody = sanitize(body, sanitizeConfig)\n const sanitizedResponseData = sanitize(responseData.data, sanitizeConfig)\n\n const now = new Date()\n const duration = Date.now() - startTime\n\n // 获取用户 ID 和应用 ID\n const userId = getUserId?.(req)\n const appId = getAppId?.(req)\n\n // 存储请求日志\n const requestLogId = await storage.saveRequestLog({\n method: req.method,\n url: req.url,\n path,\n headers: sanitizedHeaders,\n body: sanitizedBody,\n query: Object.fromEntries(url.searchParams),\n response: {\n success: responseData.success,\n message: responseData.message,\n code: responseData.code,\n },\n status: response.status,\n duration,\n userId,\n appId,\n service,\n createdAt: now,\n })\n\n // 存储响应详情\n await storage.saveResponseLog({\n requestLogId,\n success: responseData.success,\n message: responseData.message,\n code: responseData.code,\n data: sanitizedResponseData,\n createdAt: now,\n })\n}\n\n// ============ MongoDB Adapter ============\n\n/**\n * 创建 MongoDB 存储适配器\n * \n * @example\n * ```typescript\n * import { Db } from 'mongodb'\n * import { createMongoAdapter } from '@vafast/request-logger'\n * \n * const adapter = createMongoAdapter(db, 'logs', 'logsResponse')\n * ```\n */\nexport function createMongoAdapter(\n db: { collection: (name: string) => { insertOne: (doc: any) => Promise<{ insertedId: { toHexString: () => string } }> } },\n logsCollection: string = 'logs',\n logsResponseCollection: string = 'logsResponse'\n): StorageAdapter {\n return {\n async saveRequestLog(log: RequestLog): Promise<string> {\n const result = await db.collection(logsCollection).insertOne({\n ...log,\n createAt: log.createdAt,\n updateAt: log.createdAt,\n })\n return result.insertedId.toHexString()\n },\n\n async saveResponseLog(log: ResponseLog): Promise<void> {\n await db.collection(logsResponseCollection).insertOne({\n logsId: log.requestLogId,\n ...log,\n createAt: log.createdAt,\n updateAt: log.createdAt,\n })\n },\n }\n}\n\n// ============ Console Adapter (for development) ============\n\n/**\n * 创建控制台存储适配器（用于开发调试）\n */\nexport function createConsoleAdapter(): StorageAdapter {\n let idCounter = 0\n\n return {\n async saveRequestLog(log: RequestLog): Promise<string> {\n const id = `log_${++idCounter}`\n console.log(`[REQUEST] ${log.method} ${log.path} ${log.status} ${log.duration}ms`)\n return id\n },\n\n async saveResponseLog(log: ResponseLog): Promise<void> {\n if (!log.success) {\n console.log(`[RESPONSE ERROR] ${log.message}`)\n }\n },\n }\n}\n\n// ============ Re-exports ============\n\nexport { sanitize, sanitizeHeaders, type SanitizeConfig } from './sanitize'\nexport default createRequestLogger\n\n"],"mappings":";AAsBA,IAAM,wBAAwB;AAAA,EAC5B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAGA,IAAM,sBAAsB;AAAA,EAC1B;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAEA,IAAM,sBAAsB;AAC5B,IAAM,oBAAoB;AAO1B,SAAS,YAAY,OAAe,aAA6B;AAC/D,MAAI,MAAM,UAAU,EAAG,QAAO;AAC9B,SAAO,MAAM,MAAM,GAAG,CAAC,IAAI,SAAS,MAAM,MAAM,EAAE;AACpD;AAYO,SAAS,SAAY,MAAS,QAAyB,QAAQ,GAAM;AAC1E,QAAM;AAAA,IACJ,eAAe;AAAA,IACf,aAAa;AAAA,IACb,cAAc;AAAA,IACd,WAAW;AAAA,EACb,IAAI,UAAU,CAAC;AAGf,MAAI,QAAQ,SAAU,QAAO;AAE7B,MAAI,SAAS,QAAQ,SAAS,QAAW;AACvC,WAAO;AAAA,EACT;AAGA,MAAI,MAAM,QAAQ,IAAI,GAAG;AACvB,WAAO,KAAK,IAAI,UAAQ,SAAS,MAAM,QAAQ,QAAQ,CAAC,CAAC;AAAA,EAC3D;AAGA,MAAI,OAAO,SAAS,UAAU;AAC5B,UAAM,SAAkC,CAAC;AAEzC,eAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,IAAI,GAAG;AAC/C,YAAM,WAAW,IAAI,YAAY;AAGjC,UAAI,aAAa,KAAK,WAAS,aAAa,KAAK,GAAG;AAClD,eAAO,GAAG,IAAI;AACd;AAAA,MACF;AAGA,UAAI,WAAW,KAAK,WAAS,SAAS,SAAS,KAAK,CAAC,GAAG;AACtD,YAAI,OAAO,UAAU,UAAU;AAC7B,iBAAO,GAAG,IAAI,YAAY,OAAO,WAAW;AAAA,QAC9C,OAAO;AACL,iBAAO,GAAG,IAAI;AAAA,QAChB;AACA;AAAA,MACF;AAGA,aAAO,GAAG,IAAI,SAAS,OAAO,QAAQ,QAAQ,CAAC;AAAA,IACjD;AAEA,WAAO;AAAA,EACT;AAEA,SAAO;AACT;AAYO,SAAS,gBACd,SACA,QACwB;AACxB,QAAM;AAAA,IACJ,aAAa;AAAA,IACb,cAAc;AAAA,EAChB,IAAI,UAAU,CAAC;AAEf,QAAM,SAAiC,CAAC;AAExC,aAAW,CAAC,KAAK,KAAK,KAAK,OAAO,QAAQ,OAAO,GAAG;AAClD,UAAM,WAAW,IAAI,YAAY;AAGjC,QAAI,aAAa,iBAAiB;AAChC,UAAI,MAAM,WAAW,SAAS,GAAG;AAC/B,eAAO,GAAG,IAAI,YAAY,YAAY,MAAM,MAAM,CAAC,GAAG,WAAW;AAAA,MACnE,OAAO;AACL,eAAO,GAAG,IAAI,YAAY,OAAO,WAAW;AAAA,MAC9C;AACA;AAAA,IACF;AAGA,QAAI,aAAa,YAAY,aAAa,cAAc;AACtD,aAAO,GAAG,IAAI;AACd;AAAA,IACF;AAGA,QAAI,WAAW,KAAK,WAAS,SAAS,SAAS,KAAK,CAAC,GAAG;AACtD,aAAO,GAAG,IAAI,YAAY,OAAO,WAAW;AAC5C;AAAA,IACF;AAEA,WAAO,GAAG,IAAI;AAAA,EAChB;AAEA,SAAO;AACT;;;AClFO,SAAS,oBAAoB,QAAyC;AAC3E,QAAM;AAAA,IACJ;AAAA,IACA,eAAe,CAAC;AAAA,IAChB,UAAU;AAAA,IACV;AAAA,IACA;AAAA,IACA;AAAA,IACA,UAAU,QAAQ;AAAA,IAClB,UAAU;AAAA,EACZ,IAAI;AAEJ,SAAO,OAAO,KAAc,SAAkC;AAC5D,QAAI,CAAC,SAAS;AACZ,aAAO,KAAK;AAAA,IACd;AAEA,UAAM,YAAY,KAAK,IAAI;AAC3B,UAAM,WAAW,MAAM,KAAK;AAG5B,cAAU,KAAK,UAAU,WAAW;AAAA,MAClC;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF,CAAC,EAAE,MAAM,OAAO;AAEhB,WAAO;AAAA,EACT;AACF;AAcA,eAAe,UACb,KACA,UACA,WACA,SACA;AACA,QAAM,EAAE,SAAS,cAAc,gBAAgB,WAAW,UAAU,QAAQ,IAAI;AAEhF,QAAM,MAAM,IAAI,IAAI,IAAI,GAAG;AAC3B,QAAM,OAAO,IAAI;AAGjB,QAAM,gBAAgB,aAAa,KAAK,aAAW;AACjD,QAAI,OAAO,YAAY,UAAU;AAC/B,aAAO,KAAK,SAAS,OAAO;AAAA,IAC9B;AACA,WAAO,QAAQ,KAAK,IAAI;AAAA,EAC1B,CAAC;AAED,MAAI,eAAe;AACjB;AAAA,EACF;AAGA,MAAI,OAAgB;AACpB,MAAI;AACF,UAAM,YAAY,IAAI,MAAM;AAC5B,UAAM,cAAc,IAAI,QAAQ,IAAI,cAAc,KAAK;AACvD,QAAI,YAAY,SAAS,kBAAkB,GAAG;AAC5C,aAAO,MAAM,UAAU,KAAK;AAAA,IAC9B;AAAA,EACF,QAAQ;AAAA,EAER;AAGA,MAAI,eAAuF,CAAC;AAC5F,MAAI;AACF,UAAM,YAAY,SAAS,MAAM;AACjC,mBAAe,MAAM,UAAU,KAAK;AAAA,EACtC,QAAQ;AAAA,EAER;AAGA,QAAM,UAAkC,CAAC;AACzC,MAAI,QAAQ,QAAQ,CAAC,OAAO,QAAQ;AAClC,YAAQ,GAAG,IAAI;AAAA,EACjB,CAAC;AAGD,QAAM,mBAAmB,gBAAgB,SAAS,cAAc;AAChE,QAAM,gBAAgB,SAAS,MAAM,cAAc;AACnD,QAAM,wBAAwB,SAAS,aAAa,MAAM,cAAc;AAExE,QAAM,MAAM,oBAAI,KAAK;AACrB,QAAM,WAAW,KAAK,IAAI,IAAI;AAG9B,QAAM,SAAS,YAAY,GAAG;AAC9B,QAAM,QAAQ,WAAW,GAAG;AAG5B,QAAM,eAAe,MAAM,QAAQ,eAAe;AAAA,IAChD,QAAQ,IAAI;AAAA,IACZ,KAAK,IAAI;AAAA,IACT;AAAA,IACA,SAAS;AAAA,IACT,MAAM;AAAA,IACN,OAAO,OAAO,YAAY,IAAI,YAAY;AAAA,IAC1C,UAAU;AAAA,MACR,SAAS,aAAa;AAAA,MACtB,SAAS,aAAa;AAAA,MACtB,MAAM,aAAa;AAAA,IACrB;AAAA,IACA,QAAQ,SAAS;AAAA,IACjB;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA,WAAW;AAAA,EACb,CAAC;AAGD,QAAM,QAAQ,gBAAgB;AAAA,IAC5B;AAAA,IACA,SAAS,aAAa;AAAA,IACtB,SAAS,aAAa;AAAA,IACtB,MAAM,aAAa;AAAA,IACnB,MAAM;AAAA,IACN,WAAW;AAAA,EACb,CAAC;AACH;AAeO,SAAS,mBACd,IACA,iBAAyB,QACzB,yBAAiC,gBACjB;AAChB,SAAO;AAAA,IACL,MAAM,eAAe,KAAkC;AACrD,YAAM,SAAS,MAAM,GAAG,WAAW,cAAc,EAAE,UAAU;AAAA,QAC3D,GAAG;AAAA,QACH,UAAU,IAAI;AAAA,QACd,UAAU,IAAI;AAAA,MAChB,CAAC;AACD,aAAO,OAAO,WAAW,YAAY;AAAA,IACvC;AAAA,IAEA,MAAM,gBAAgB,KAAiC;AACrD,YAAM,GAAG,WAAW,sBAAsB,EAAE,UAAU;AAAA,QACpD,QAAQ,IAAI;AAAA,QACZ,GAAG;AAAA,QACH,UAAU,IAAI;AAAA,QACd,UAAU,IAAI;AAAA,MAChB,CAAC;AAAA,IACH;AAAA,EACF;AACF;AAOO,SAAS,uBAAuC;AACrD,MAAI,YAAY;AAEhB,SAAO;AAAA,IACL,MAAM,eAAe,KAAkC;AACrD,YAAM,KAAK,OAAO,EAAE,SAAS;AAC7B,cAAQ,IAAI,aAAa,IAAI,MAAM,IAAI,IAAI,IAAI,IAAI,IAAI,MAAM,IAAI,IAAI,QAAQ,IAAI;AACjF,aAAO;AAAA,IACT;AAAA,IAEA,MAAM,gBAAgB,KAAiC;AACrD,UAAI,CAAC,IAAI,SAAS;AAChB,gBAAQ,IAAI,oBAAoB,IAAI,OAAO,EAAE;AAAA,MAC/C;AAAA,IACF;AAAA,EACF;AACF;AAKA,IAAO,gBAAQ;","names":[]}