@vlian/framework 1.2.25 → 1.2.38

package/dist/library/storage/encryption.cjs

@@ -8,14 +8,13 @@ Object.defineProperty(exports, "EncryptionUtils", {
         return EncryptionUtils;
     }
 });
-const _security = require("../../utils/security");
-const _errors = require("../../utils/errors");
+const _utils = require("@vlian/utils");
 let EncryptionUtils = class EncryptionUtils {
     /**
    * 生成加密密钥
    */ static async generateKey() {
         if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {
-            throw new _errors.StorageError('加密功能需要浏览器支持 Web Crypto API');
+            throw new _utils.StorageError('加密功能需要浏览器支持 Web Crypto API');
         }
         try {
             return await window.crypto.subtle.generateKey({
@@ -26,14 +25,14 @@ let EncryptionUtils = class EncryptionUtils {
                 'decrypt'
             ]);
         } catch (error) {
-            throw new _errors.StorageError('生成加密密钥失败', error instanceof Error ? error : undefined);
+            throw new _utils.StorageError('生成加密密钥失败', error instanceof Error ? error : undefined);
         }
     }
     /**
    * 使用 PBKDF2 派生密钥
    */ static async deriveKey(password, salt, iterations = 100000) {
         if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {
-            throw new _errors.StorageError('加密功能需要浏览器支持 Web Crypto API');
+            throw new _utils.StorageError('加密功能需要浏览器支持 Web Crypto API');
         }
         try {
             // 导入密码
@@ -58,7 +57,7 @@ let EncryptionUtils = class EncryptionUtils {
                 'decrypt'
             ]);
         } catch (error) {
-            throw new _errors.StorageError('密钥派生失败', error instanceof Error ? error : undefined);
+            throw new _utils.StorageError('密钥派生失败', error instanceof Error ? error : undefined);
         }
     }
     /**
@@ -68,7 +67,7 @@ let EncryptionUtils = class EncryptionUtils {
    * 建议在生产环境中使用固定的 salt 或从安全存储中获取。
    */ static async importKey(keyString, salt) {
         if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {
-            throw new _errors.StorageError('加密功能需要浏览器支持 Web Crypto API');
+            throw new _utils.StorageError('加密功能需要浏览器支持 Web Crypto API');
         }
         try {
             // 如果没有提供 salt，尝试从 sessionStorage 获取或生成一个固定的
@@ -90,14 +89,14 @@ let EncryptionUtils = class EncryptionUtils {
             // 使用 PBKDF2 派生密钥
             return await this.deriveKey(keyString, keySalt);
         } catch (error) {
-            throw new _errors.StorageError('导入加密密钥失败', error instanceof Error ? error : undefined);
+            throw new _utils.StorageError('导入加密密钥失败', error instanceof Error ? error : undefined);
         }
     }
     /**
    * 加密数据
    */ static async encrypt(data, key) {
         if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {
-            throw new _errors.StorageError('加密功能需要浏览器支持 Web Crypto API');
+            throw new _utils.StorageError('加密功能需要浏览器支持 Web Crypto API');
         }
         try {
             const encoder = new TextEncoder();
@@ -115,14 +114,14 @@ let EncryptionUtils = class EncryptionUtils {
             // 转换为 Base64
             return btoa(String.fromCharCode(...combined));
         } catch (error) {
-            throw new _errors.StorageError('加密数据失败', error instanceof Error ? error : undefined);
+            throw new _utils.StorageError('加密数据失败', error instanceof Error ? error : undefined);
         }
     }
     /**
    * 解密数据
    */ static async decrypt(encryptedData, key) {
         if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {
-            throw new _errors.StorageError('解密功能需要浏览器支持 Web Crypto API');
+            throw new _utils.StorageError('解密功能需要浏览器支持 Web Crypto API');
         }
         try {
             // 从 Base64 解码
@@ -137,13 +136,13 @@ let EncryptionUtils = class EncryptionUtils {
             const decoder = new TextDecoder();
             return decoder.decode(decrypted);
         } catch (error) {
-            throw new _errors.StorageError('解密数据失败', error instanceof Error ? error : undefined);
+            throw new _utils.StorageError('解密数据失败', error instanceof Error ? error : undefined);
         }
     }
     /**
    * 检查字段是否需要加密
    */ static shouldEncrypt(key) {
-        return _security.SecurityUtils.isSensitiveField(key);
+        return _utils.SecurityUtils.isSensitiveField(key);
     }
 };
 

package/dist/library/storage/encryption.cjs.map

@@ -1 +1 @@
-{"version":3,"sources":["../../../src/library/storage/encryption.ts"],"sourcesContent":["import { SecurityUtils } from '../../utils/security';\nimport { StorageError } from '../../utils/errors';\n\n/**\n * 加密配置\n */\nexport interface EncryptionConfig {\n  /**\n   * 是否启用加密\n   */\n  enabled: boolean;\n  /**\n   * 加密密钥（可选，如果不提供则使用默认密钥）\n   */\n  key?: string;\n}\n\n/**\n * 加密工具类\n */\nexport class EncryptionUtils {\n\n  /**\n   * 生成加密密钥\n   */\n  static async generateKey(): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      return await window.crypto.subtle.generateKey(\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        true,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('生成加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 使用 PBKDF2 派生密钥\n   */\n  static async deriveKey(\n    password: string,\n    salt: Uint8Array,\n    iterations: number = 100000\n  ): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 导入密码\n      const encoder = new TextEncoder();\n      const passwordKey = await window.crypto.subtle.importKey(\n        'raw',\n        encoder.encode(password),\n        'PBKDF2',\n        false,\n        ['deriveBits', 'deriveKey']\n      );\n\n      // 使用 PBKDF2 派生密钥\n      // 确保 salt 是 BufferSource 类型（使用类型断言）\n      const saltBuffer: BufferSource = (salt instanceof Uint8Array \n        ? salt \n        : new Uint8Array(salt)) as BufferSource;\n      return await window.crypto.subtle.deriveKey(\n        {\n          name: 'PBKDF2',\n          salt: saltBuffer,\n          iterations: iterations,\n          hash: 'SHA-256',\n        },\n        passwordKey,\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        false,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('密钥派生失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 从字符串导入密钥（使用 PBKDF2 派生）\n   * \n   * 注意：如果没有提供 salt，每次调用都会生成新的 salt，导致密钥不一致。\n   * 建议在生产环境中使用固定的 salt 或从安全存储中获取。\n   */\n  static async importKey(keyString: string, salt?: Uint8Array): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 如果没有提供 salt，尝试从 sessionStorage 获取或生成一个固定的\n      let keySalt = salt;\n      \n      if (!keySalt) {\n        // 尝试从 sessionStorage 获取固定的 salt（用于当前会话）\n        const saltKey = '__encryption_salt__';\n        const storedSalt = sessionStorage.getItem(saltKey);\n        \n        if (storedSalt) {\n          // 从存储中恢复 salt\n          const saltArray = Uint8Array.from(JSON.parse(storedSalt));\n          keySalt = saltArray;\n        } else {\n          // 生成新的 salt 并存储（用于当前会话）\n          keySalt = window.crypto.getRandomValues(new Uint8Array(16));\n          sessionStorage.setItem(saltKey, JSON.stringify(Array.from(keySalt)));\n        }\n      }\n      \n      // 使用 PBKDF2 派生密钥\n      return await this.deriveKey(keyString, keySalt);\n    } catch (error) {\n      throw new StorageError('导入加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 加密数据\n   */\n  static async encrypt(data: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      const encoder = new TextEncoder();\n      const dataBuffer = encoder.encode(data);\n\n      // 生成随机 IV\n      const iv = window.crypto.getRandomValues(new Uint8Array(12));\n\n      const encrypted = await window.crypto.subtle.encrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        dataBuffer\n      );\n\n      // 将 IV 和加密数据组合\n      const combined = new Uint8Array(iv.length + encrypted.byteLength);\n      combined.set(iv);\n      combined.set(new Uint8Array(encrypted), iv.length);\n\n      // 转换为 Base64\n      return btoa(String.fromCharCode(...combined));\n    } catch (error) {\n      throw new StorageError('加密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 解密数据\n   */\n  static async decrypt(encryptedData: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('解密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 从 Base64 解码\n      const combined = Uint8Array.from(atob(encryptedData), (c) => c.charCodeAt(0));\n\n      // 提取 IV 和加密数据\n      const iv = combined.slice(0, 12);\n      const encrypted = combined.slice(12);\n\n      const decrypted = await window.crypto.subtle.decrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        encrypted\n      );\n\n      const decoder = new TextDecoder();\n      return decoder.decode(decrypted);\n    } catch (error) {\n      throw new StorageError('解密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 检查字段是否需要加密\n   */\n  static shouldEncrypt(key: string): boolean {\n    return SecurityUtils.isSensitiveField(key);\n  }\n}\n"],"names":["EncryptionUtils","generateKey","window","crypto","subtle","StorageError","name","length","error","Error","undefined","deriveKey","password","salt","iterations","encoder","TextEncoder","passwordKey","importKey","encode","saltBuffer","Uint8Array","hash","keyString","keySalt","saltKey","storedSalt","sessionStorage","getItem","saltArray","from","JSON","parse","getRandomValues","setItem","stringify","Array","encrypt","data","key","dataBuffer","iv","encrypted","combined","byteLength","set","btoa","String","fromCharCode","decrypt","encryptedData","atob","c","charCodeAt","slice","decrypted","decoder","TextDecoder","decode","shouldEncrypt","SecurityUtils","isSensitiveField"],"mappings":";;;;+BAoBaA;;;eAAAA;;;0BApBiB;wBACD;AAmBtB,IAAA,AAAMA,kBAAN,MAAMA;IAEX;;GAEC,GACD,aAAaC,cAAkC;QAC7C,IAAI,OAAOC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,oBAAY,CAAC;QACzB;QAEA,IAAI;YACF,OAAO,MAAMH,OAAOC,MAAM,CAACC,MAAM,CAACH,WAAW,CAC3C;gBACEK,MAAM;gBACNC,QAAQ;YACV,GACA,MACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIH,oBAAY,CAAC,YAAYG,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAaC,UACXC,QAAgB,EAChBC,IAAgB,EAChBC,aAAqB,MAAM,EACP;QACpB,IAAI,OAAOZ,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,oBAAY,CAAC;QACzB;QAEA,IAAI;YACF,OAAO;YACP,MAAMU,UAAU,IAAIC;YACpB,MAAMC,cAAc,MAAMf,OAAOC,MAAM,CAACC,MAAM,CAACc,SAAS,CACtD,OACAH,QAAQI,MAAM,CAACP,WACf,UACA,OACA;gBAAC;gBAAc;aAAY;YAG7B,iBAAiB;YACjB,oCAAoC;YACpC,MAAMQ,aAA4BP,gBAAgBQ,aAC9CR,OACA,IAAIQ,WAAWR;YACnB,OAAO,MAAMX,OAAOC,MAAM,CAACC,MAAM,CAACO,SAAS,CACzC;gBACEL,MAAM;gBACNO,MAAMO;gBACNN,YAAYA;gBACZQ,MAAM;YACR,GACAL,aACA;gBACEX,MAAM;gBACNC,QAAQ;YACV,GACA,OACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIH,oBAAY,CAAC,UAAUG,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;;;;GAKC,GACD,aAAaQ,UAAUK,SAAiB,EAAEV,IAAiB,EAAsB;QAC/E,IAAI,OAAOX,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,oBAAY,CAAC;QACzB;QAEA,IAAI;YACF,4CAA4C;YAC5C,IAAImB,UAAUX;YAEd,IAAI,CAACW,SAAS;gBACZ,wCAAwC;gBACxC,MAAMC,UAAU;gBAChB,MAAMC,aAAaC,eAAeC,OAAO,CAACH;gBAE1C,IAAIC,YAAY;oBACd,cAAc;oBACd,MAAMG,YAAYR,WAAWS,IAAI,CAACC,KAAKC,KAAK,CAACN;oBAC7CF,UAAUK;gBACZ,OAAO;oBACL,wBAAwB;oBACxBL,UAAUtB,OAAOC,MAAM,CAAC8B,eAAe,CAAC,IAAIZ,WAAW;oBACvDM,eAAeO,OAAO,CAACT,SAASM,KAAKI,SAAS,CAACC,MAAMN,IAAI,CAACN;gBAC5D;YACF;YAEA,iBAAiB;YACjB,OAAO,MAAM,IAAI,CAACb,SAAS,CAACY,WAAWC;QACzC,EAAE,OAAOhB,OAAO;YACd,MAAM,IAAIH,oBAAY,CAAC,YAAYG,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAa2B,QAAQC,IAAY,EAAEC,GAAc,EAAmB;QAClE,IAAI,OAAOrC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,oBAAY,CAAC;QACzB;QAEA,IAAI;YACF,MAAMU,UAAU,IAAIC;YACpB,MAAMwB,aAAazB,QAAQI,MAAM,CAACmB;YAElC,UAAU;YACV,MAAMG,KAAKvC,OAAOC,MAAM,CAAC8B,eAAe,CAAC,IAAIZ,WAAW;YAExD,MAAMqB,YAAY,MAAMxC,OAAOC,MAAM,CAACC,MAAM,CAACiC,OAAO,CAClD;gBACE/B,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAC;YAGF,eAAe;YACf,MAAMG,WAAW,IAAItB,WAAWoB,GAAGlC,MAAM,GAAGmC,UAAUE,UAAU;YAChED,SAASE,GAAG,CAACJ;YACbE,SAASE,GAAG,CAAC,IAAIxB,WAAWqB,YAAYD,GAAGlC,MAAM;YAEjD,aAAa;YACb,OAAOuC,KAAKC,OAAOC,YAAY,IAAIL;QACrC,EAAE,OAAOnC,OAAO;YACd,MAAM,IAAIH,oBAAY,CAAC,UAAUG,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,aAAauC,QAAQC,aAAqB,EAAEX,GAAc,EAAmB;QAC3E,IAAI,OAAOrC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,oBAAY,CAAC;QACzB;QAEA,IAAI;YACF,cAAc;YACd,MAAMsC,WAAWtB,WAAWS,IAAI,CAACqB,KAAKD,gBAAgB,CAACE,IAAMA,EAAEC,UAAU,CAAC;YAE1E,cAAc;YACd,MAAMZ,KAAKE,SAASW,KAAK,CAAC,GAAG;YAC7B,MAAMZ,YAAYC,SAASW,KAAK,CAAC;YAEjC,MAAMC,YAAY,MAAMrD,OAAOC,MAAM,CAACC,MAAM,CAAC6C,OAAO,CAClD;gBACE3C,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAG;YAGF,MAAMc,UAAU,IAAIC;YACpB,OAAOD,QAAQE,MAAM,CAACH;QACxB,EAAE,OAAO/C,OAAO;YACd,MAAM,IAAIH,oBAAY,CAAC,UAAUG,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,OAAOiD,cAAcpB,GAAW,EAAW;QACzC,OAAOqB,uBAAa,CAACC,gBAAgB,CAACtB;IACxC;AACF"}
+{"version":3,"sources":["../../../src/library/storage/encryption.ts"],"sourcesContent":["import { SecurityUtils, StorageError } from '@vlian/utils';\n\n/**\n * 加密配置\n */\nexport interface EncryptionConfig {\n  /**\n   * 是否启用加密\n   */\n  enabled: boolean;\n  /**\n   * 加密密钥（可选，如果不提供则使用默认密钥）\n   */\n  key?: string;\n}\n\n/**\n * 加密工具类\n */\nexport class EncryptionUtils {\n\n  /**\n   * 生成加密密钥\n   */\n  static async generateKey(): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      return await window.crypto.subtle.generateKey(\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        true,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('生成加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 使用 PBKDF2 派生密钥\n   */\n  static async deriveKey(\n    password: string,\n    salt: Uint8Array,\n    iterations: number = 100000\n  ): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 导入密码\n      const encoder = new TextEncoder();\n      const passwordKey = await window.crypto.subtle.importKey(\n        'raw',\n        encoder.encode(password),\n        'PBKDF2',\n        false,\n        ['deriveBits', 'deriveKey']\n      );\n\n      // 使用 PBKDF2 派生密钥\n      // 确保 salt 是 BufferSource 类型（使用类型断言）\n      const saltBuffer: BufferSource = (salt instanceof Uint8Array \n        ? salt \n        : new Uint8Array(salt)) as BufferSource;\n      return await window.crypto.subtle.deriveKey(\n        {\n          name: 'PBKDF2',\n          salt: saltBuffer,\n          iterations: iterations,\n          hash: 'SHA-256',\n        },\n        passwordKey,\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        false,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('密钥派生失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 从字符串导入密钥（使用 PBKDF2 派生）\n   * \n   * 注意：如果没有提供 salt，每次调用都会生成新的 salt，导致密钥不一致。\n   * 建议在生产环境中使用固定的 salt 或从安全存储中获取。\n   */\n  static async importKey(keyString: string, salt?: Uint8Array): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 如果没有提供 salt，尝试从 sessionStorage 获取或生成一个固定的\n      let keySalt = salt;\n      \n      if (!keySalt) {\n        // 尝试从 sessionStorage 获取固定的 salt（用于当前会话）\n        const saltKey = '__encryption_salt__';\n        const storedSalt = sessionStorage.getItem(saltKey);\n        \n        if (storedSalt) {\n          // 从存储中恢复 salt\n          const saltArray = Uint8Array.from(JSON.parse(storedSalt));\n          keySalt = saltArray;\n        } else {\n          // 生成新的 salt 并存储（用于当前会话）\n          keySalt = window.crypto.getRandomValues(new Uint8Array(16));\n          sessionStorage.setItem(saltKey, JSON.stringify(Array.from(keySalt)));\n        }\n      }\n      \n      // 使用 PBKDF2 派生密钥\n      return await this.deriveKey(keyString, keySalt);\n    } catch (error) {\n      throw new StorageError('导入加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 加密数据\n   */\n  static async encrypt(data: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      const encoder = new TextEncoder();\n      const dataBuffer = encoder.encode(data);\n\n      // 生成随机 IV\n      const iv = window.crypto.getRandomValues(new Uint8Array(12));\n\n      const encrypted = await window.crypto.subtle.encrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        dataBuffer\n      );\n\n      // 将 IV 和加密数据组合\n      const combined = new Uint8Array(iv.length + encrypted.byteLength);\n      combined.set(iv);\n      combined.set(new Uint8Array(encrypted), iv.length);\n\n      // 转换为 Base64\n      return btoa(String.fromCharCode(...combined));\n    } catch (error) {\n      throw new StorageError('加密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 解密数据\n   */\n  static async decrypt(encryptedData: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('解密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 从 Base64 解码\n      const combined = Uint8Array.from(atob(encryptedData), (c) => c.charCodeAt(0));\n\n      // 提取 IV 和加密数据\n      const iv = combined.slice(0, 12);\n      const encrypted = combined.slice(12);\n\n      const decrypted = await window.crypto.subtle.decrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        encrypted\n      );\n\n      const decoder = new TextDecoder();\n      return decoder.decode(decrypted);\n    } catch (error) {\n      throw new StorageError('解密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 检查字段是否需要加密\n   */\n  static shouldEncrypt(key: string): boolean {\n    return SecurityUtils.isSensitiveField(key);\n  }\n}\n"],"names":["EncryptionUtils","generateKey","window","crypto","subtle","StorageError","name","length","error","Error","undefined","deriveKey","password","salt","iterations","encoder","TextEncoder","passwordKey","importKey","encode","saltBuffer","Uint8Array","hash","keyString","keySalt","saltKey","storedSalt","sessionStorage","getItem","saltArray","from","JSON","parse","getRandomValues","setItem","stringify","Array","encrypt","data","key","dataBuffer","iv","encrypted","combined","byteLength","set","btoa","String","fromCharCode","decrypt","encryptedData","atob","c","charCodeAt","slice","decrypted","decoder","TextDecoder","decode","shouldEncrypt","SecurityUtils","isSensitiveField"],"mappings":";;;;+BAmBaA;;;eAAAA;;;uBAnB+B;AAmBrC,IAAA,AAAMA,kBAAN,MAAMA;IAEX;;GAEC,GACD,aAAaC,cAAkC;QAC7C,IAAI,OAAOC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,mBAAY,CAAC;QACzB;QAEA,IAAI;YACF,OAAO,MAAMH,OAAOC,MAAM,CAACC,MAAM,CAACH,WAAW,CAC3C;gBACEK,MAAM;gBACNC,QAAQ;YACV,GACA,MACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIH,mBAAY,CAAC,YAAYG,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAaC,UACXC,QAAgB,EAChBC,IAAgB,EAChBC,aAAqB,MAAM,EACP;QACpB,IAAI,OAAOZ,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,mBAAY,CAAC;QACzB;QAEA,IAAI;YACF,OAAO;YACP,MAAMU,UAAU,IAAIC;YACpB,MAAMC,cAAc,MAAMf,OAAOC,MAAM,CAACC,MAAM,CAACc,SAAS,CACtD,OACAH,QAAQI,MAAM,CAACP,WACf,UACA,OACA;gBAAC;gBAAc;aAAY;YAG7B,iBAAiB;YACjB,oCAAoC;YACpC,MAAMQ,aAA4BP,gBAAgBQ,aAC9CR,OACA,IAAIQ,WAAWR;YACnB,OAAO,MAAMX,OAAOC,MAAM,CAACC,MAAM,CAACO,SAAS,CACzC;gBACEL,MAAM;gBACNO,MAAMO;gBACNN,YAAYA;gBACZQ,MAAM;YACR,GACAL,aACA;gBACEX,MAAM;gBACNC,QAAQ;YACV,GACA,OACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIH,mBAAY,CAAC,UAAUG,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;;;;GAKC,GACD,aAAaQ,UAAUK,SAAiB,EAAEV,IAAiB,EAAsB;QAC/E,IAAI,OAAOX,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,mBAAY,CAAC;QACzB;QAEA,IAAI;YACF,4CAA4C;YAC5C,IAAImB,UAAUX;YAEd,IAAI,CAACW,SAAS;gBACZ,wCAAwC;gBACxC,MAAMC,UAAU;gBAChB,MAAMC,aAAaC,eAAeC,OAAO,CAACH;gBAE1C,IAAIC,YAAY;oBACd,cAAc;oBACd,MAAMG,YAAYR,WAAWS,IAAI,CAACC,KAAKC,KAAK,CAACN;oBAC7CF,UAAUK;gBACZ,OAAO;oBACL,wBAAwB;oBACxBL,UAAUtB,OAAOC,MAAM,CAAC8B,eAAe,CAAC,IAAIZ,WAAW;oBACvDM,eAAeO,OAAO,CAACT,SAASM,KAAKI,SAAS,CAACC,MAAMN,IAAI,CAACN;gBAC5D;YACF;YAEA,iBAAiB;YACjB,OAAO,MAAM,IAAI,CAACb,SAAS,CAACY,WAAWC;QACzC,EAAE,OAAOhB,OAAO;YACd,MAAM,IAAIH,mBAAY,CAAC,YAAYG,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAa2B,QAAQC,IAAY,EAAEC,GAAc,EAAmB;QAClE,IAAI,OAAOrC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,mBAAY,CAAC;QACzB;QAEA,IAAI;YACF,MAAMU,UAAU,IAAIC;YACpB,MAAMwB,aAAazB,QAAQI,MAAM,CAACmB;YAElC,UAAU;YACV,MAAMG,KAAKvC,OAAOC,MAAM,CAAC8B,eAAe,CAAC,IAAIZ,WAAW;YAExD,MAAMqB,YAAY,MAAMxC,OAAOC,MAAM,CAACC,MAAM,CAACiC,OAAO,CAClD;gBACE/B,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAC;YAGF,eAAe;YACf,MAAMG,WAAW,IAAItB,WAAWoB,GAAGlC,MAAM,GAAGmC,UAAUE,UAAU;YAChED,SAASE,GAAG,CAACJ;YACbE,SAASE,GAAG,CAAC,IAAIxB,WAAWqB,YAAYD,GAAGlC,MAAM;YAEjD,aAAa;YACb,OAAOuC,KAAKC,OAAOC,YAAY,IAAIL;QACrC,EAAE,OAAOnC,OAAO;YACd,MAAM,IAAIH,mBAAY,CAAC,UAAUG,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,aAAauC,QAAQC,aAAqB,EAAEX,GAAc,EAAmB;QAC3E,IAAI,OAAOrC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIC,mBAAY,CAAC;QACzB;QAEA,IAAI;YACF,cAAc;YACd,MAAMsC,WAAWtB,WAAWS,IAAI,CAACqB,KAAKD,gBAAgB,CAACE,IAAMA,EAAEC,UAAU,CAAC;YAE1E,cAAc;YACd,MAAMZ,KAAKE,SAASW,KAAK,CAAC,GAAG;YAC7B,MAAMZ,YAAYC,SAASW,KAAK,CAAC;YAEjC,MAAMC,YAAY,MAAMrD,OAAOC,MAAM,CAACC,MAAM,CAAC6C,OAAO,CAClD;gBACE3C,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAG;YAGF,MAAMc,UAAU,IAAIC;YACpB,OAAOD,QAAQE,MAAM,CAACH;QACxB,EAAE,OAAO/C,OAAO;YACd,MAAM,IAAIH,mBAAY,CAAC,UAAUG,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,OAAOiD,cAAcpB,GAAW,EAAW;QACzC,OAAOqB,oBAAa,CAACC,gBAAgB,CAACtB;IACxC;AACF"}

package/dist/library/storage/encryption.js

@@ -1,5 +1,4 @@
-import { SecurityUtils } from "../../utils/security";
-import { StorageError } from "../../utils/errors";
+import { SecurityUtils, StorageError } from "@vlian/utils";
 /**
  * 加密工具类
  */ export class EncryptionUtils {

package/dist/library/storage/encryption.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../../../src/library/storage/encryption.ts"],"sourcesContent":["import { SecurityUtils } from '../../utils/security';\nimport { StorageError } from '../../utils/errors';\n\n/**\n * 加密配置\n */\nexport interface EncryptionConfig {\n  /**\n   * 是否启用加密\n   */\n  enabled: boolean;\n  /**\n   * 加密密钥（可选，如果不提供则使用默认密钥）\n   */\n  key?: string;\n}\n\n/**\n * 加密工具类\n */\nexport class EncryptionUtils {\n\n  /**\n   * 生成加密密钥\n   */\n  static async generateKey(): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      return await window.crypto.subtle.generateKey(\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        true,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('生成加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 使用 PBKDF2 派生密钥\n   */\n  static async deriveKey(\n    password: string,\n    salt: Uint8Array,\n    iterations: number = 100000\n  ): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 导入密码\n      const encoder = new TextEncoder();\n      const passwordKey = await window.crypto.subtle.importKey(\n        'raw',\n        encoder.encode(password),\n        'PBKDF2',\n        false,\n        ['deriveBits', 'deriveKey']\n      );\n\n      // 使用 PBKDF2 派生密钥\n      // 确保 salt 是 BufferSource 类型（使用类型断言）\n      const saltBuffer: BufferSource = (salt instanceof Uint8Array \n        ? salt \n        : new Uint8Array(salt)) as BufferSource;\n      return await window.crypto.subtle.deriveKey(\n        {\n          name: 'PBKDF2',\n          salt: saltBuffer,\n          iterations: iterations,\n          hash: 'SHA-256',\n        },\n        passwordKey,\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        false,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('密钥派生失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 从字符串导入密钥（使用 PBKDF2 派生）\n   * \n   * 注意：如果没有提供 salt，每次调用都会生成新的 salt，导致密钥不一致。\n   * 建议在生产环境中使用固定的 salt 或从安全存储中获取。\n   */\n  static async importKey(keyString: string, salt?: Uint8Array): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 如果没有提供 salt，尝试从 sessionStorage 获取或生成一个固定的\n      let keySalt = salt;\n      \n      if (!keySalt) {\n        // 尝试从 sessionStorage 获取固定的 salt（用于当前会话）\n        const saltKey = '__encryption_salt__';\n        const storedSalt = sessionStorage.getItem(saltKey);\n        \n        if (storedSalt) {\n          // 从存储中恢复 salt\n          const saltArray = Uint8Array.from(JSON.parse(storedSalt));\n          keySalt = saltArray;\n        } else {\n          // 生成新的 salt 并存储（用于当前会话）\n          keySalt = window.crypto.getRandomValues(new Uint8Array(16));\n          sessionStorage.setItem(saltKey, JSON.stringify(Array.from(keySalt)));\n        }\n      }\n      \n      // 使用 PBKDF2 派生密钥\n      return await this.deriveKey(keyString, keySalt);\n    } catch (error) {\n      throw new StorageError('导入加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 加密数据\n   */\n  static async encrypt(data: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      const encoder = new TextEncoder();\n      const dataBuffer = encoder.encode(data);\n\n      // 生成随机 IV\n      const iv = window.crypto.getRandomValues(new Uint8Array(12));\n\n      const encrypted = await window.crypto.subtle.encrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        dataBuffer\n      );\n\n      // 将 IV 和加密数据组合\n      const combined = new Uint8Array(iv.length + encrypted.byteLength);\n      combined.set(iv);\n      combined.set(new Uint8Array(encrypted), iv.length);\n\n      // 转换为 Base64\n      return btoa(String.fromCharCode(...combined));\n    } catch (error) {\n      throw new StorageError('加密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 解密数据\n   */\n  static async decrypt(encryptedData: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('解密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 从 Base64 解码\n      const combined = Uint8Array.from(atob(encryptedData), (c) => c.charCodeAt(0));\n\n      // 提取 IV 和加密数据\n      const iv = combined.slice(0, 12);\n      const encrypted = combined.slice(12);\n\n      const decrypted = await window.crypto.subtle.decrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        encrypted\n      );\n\n      const decoder = new TextDecoder();\n      return decoder.decode(decrypted);\n    } catch (error) {\n      throw new StorageError('解密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 检查字段是否需要加密\n   */\n  static shouldEncrypt(key: string): boolean {\n    return SecurityUtils.isSensitiveField(key);\n  }\n}\n"],"names":["SecurityUtils","StorageError","EncryptionUtils","generateKey","window","crypto","subtle","name","length","error","Error","undefined","deriveKey","password","salt","iterations","encoder","TextEncoder","passwordKey","importKey","encode","saltBuffer","Uint8Array","hash","keyString","keySalt","saltKey","storedSalt","sessionStorage","getItem","saltArray","from","JSON","parse","getRandomValues","setItem","stringify","Array","encrypt","data","key","dataBuffer","iv","encrypted","combined","byteLength","set","btoa","String","fromCharCode","decrypt","encryptedData","atob","c","charCodeAt","slice","decrypted","decoder","TextDecoder","decode","shouldEncrypt","isSensitiveField"],"mappings":"AAAA,SAASA,aAAa,QAAQ,uBAAuB;AACrD,SAASC,YAAY,QAAQ,qBAAqB;AAgBlD;;CAEC,GACD,OAAO,MAAMC;IAEX;;GAEC,GACD,aAAaC,cAAkC;QAC7C,IAAI,OAAOC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,OAAO,MAAMG,OAAOC,MAAM,CAACC,MAAM,CAACH,WAAW,CAC3C;gBACEI,MAAM;gBACNC,QAAQ;YACV,GACA,MACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIR,aAAa,YAAYQ,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAaC,UACXC,QAAgB,EAChBC,IAAgB,EAChBC,aAAqB,MAAM,EACP;QACpB,IAAI,OAAOX,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,OAAO;YACP,MAAMe,UAAU,IAAIC;YACpB,MAAMC,cAAc,MAAMd,OAAOC,MAAM,CAACC,MAAM,CAACa,SAAS,CACtD,OACAH,QAAQI,MAAM,CAACP,WACf,UACA,OACA;gBAAC;gBAAc;aAAY;YAG7B,iBAAiB;YACjB,oCAAoC;YACpC,MAAMQ,aAA4BP,gBAAgBQ,aAC9CR,OACA,IAAIQ,WAAWR;YACnB,OAAO,MAAMV,OAAOC,MAAM,CAACC,MAAM,CAACM,SAAS,CACzC;gBACEL,MAAM;gBACNO,MAAMO;gBACNN,YAAYA;gBACZQ,MAAM;YACR,GACAL,aACA;gBACEX,MAAM;gBACNC,QAAQ;YACV,GACA,OACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIR,aAAa,UAAUQ,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;;;;GAKC,GACD,aAAaQ,UAAUK,SAAiB,EAAEV,IAAiB,EAAsB;QAC/E,IAAI,OAAOV,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,4CAA4C;YAC5C,IAAIwB,UAAUX;YAEd,IAAI,CAACW,SAAS;gBACZ,wCAAwC;gBACxC,MAAMC,UAAU;gBAChB,MAAMC,aAAaC,eAAeC,OAAO,CAACH;gBAE1C,IAAIC,YAAY;oBACd,cAAc;oBACd,MAAMG,YAAYR,WAAWS,IAAI,CAACC,KAAKC,KAAK,CAACN;oBAC7CF,UAAUK;gBACZ,OAAO;oBACL,wBAAwB;oBACxBL,UAAUrB,OAAOC,MAAM,CAAC6B,eAAe,CAAC,IAAIZ,WAAW;oBACvDM,eAAeO,OAAO,CAACT,SAASM,KAAKI,SAAS,CAACC,MAAMN,IAAI,CAACN;gBAC5D;YACF;YAEA,iBAAiB;YACjB,OAAO,MAAM,IAAI,CAACb,SAAS,CAACY,WAAWC;QACzC,EAAE,OAAOhB,OAAO;YACd,MAAM,IAAIR,aAAa,YAAYQ,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAa2B,QAAQC,IAAY,EAAEC,GAAc,EAAmB;QAClE,IAAI,OAAOpC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,MAAMe,UAAU,IAAIC;YACpB,MAAMwB,aAAazB,QAAQI,MAAM,CAACmB;YAElC,UAAU;YACV,MAAMG,KAAKtC,OAAOC,MAAM,CAAC6B,eAAe,CAAC,IAAIZ,WAAW;YAExD,MAAMqB,YAAY,MAAMvC,OAAOC,MAAM,CAACC,MAAM,CAACgC,OAAO,CAClD;gBACE/B,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAC;YAGF,eAAe;YACf,MAAMG,WAAW,IAAItB,WAAWoB,GAAGlC,MAAM,GAAGmC,UAAUE,UAAU;YAChED,SAASE,GAAG,CAACJ;YACbE,SAASE,GAAG,CAAC,IAAIxB,WAAWqB,YAAYD,GAAGlC,MAAM;YAEjD,aAAa;YACb,OAAOuC,KAAKC,OAAOC,YAAY,IAAIL;QACrC,EAAE,OAAOnC,OAAO;YACd,MAAM,IAAIR,aAAa,UAAUQ,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,aAAauC,QAAQC,aAAqB,EAAEX,GAAc,EAAmB;QAC3E,IAAI,OAAOpC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,cAAc;YACd,MAAM2C,WAAWtB,WAAWS,IAAI,CAACqB,KAAKD,gBAAgB,CAACE,IAAMA,EAAEC,UAAU,CAAC;YAE1E,cAAc;YACd,MAAMZ,KAAKE,SAASW,KAAK,CAAC,GAAG;YAC7B,MAAMZ,YAAYC,SAASW,KAAK,CAAC;YAEjC,MAAMC,YAAY,MAAMpD,OAAOC,MAAM,CAACC,MAAM,CAAC4C,OAAO,CAClD;gBACE3C,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAG;YAGF,MAAMc,UAAU,IAAIC;YACpB,OAAOD,QAAQE,MAAM,CAACH;QACxB,EAAE,OAAO/C,OAAO;YACd,MAAM,IAAIR,aAAa,UAAUQ,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,OAAOiD,cAAcpB,GAAW,EAAW;QACzC,OAAOxC,cAAc6D,gBAAgB,CAACrB;IACxC;AACF"}
+{"version":3,"sources":["../../../src/library/storage/encryption.ts"],"sourcesContent":["import { SecurityUtils, StorageError } from '@vlian/utils';\n\n/**\n * 加密配置\n */\nexport interface EncryptionConfig {\n  /**\n   * 是否启用加密\n   */\n  enabled: boolean;\n  /**\n   * 加密密钥（可选，如果不提供则使用默认密钥）\n   */\n  key?: string;\n}\n\n/**\n * 加密工具类\n */\nexport class EncryptionUtils {\n\n  /**\n   * 生成加密密钥\n   */\n  static async generateKey(): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      return await window.crypto.subtle.generateKey(\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        true,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('生成加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 使用 PBKDF2 派生密钥\n   */\n  static async deriveKey(\n    password: string,\n    salt: Uint8Array,\n    iterations: number = 100000\n  ): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 导入密码\n      const encoder = new TextEncoder();\n      const passwordKey = await window.crypto.subtle.importKey(\n        'raw',\n        encoder.encode(password),\n        'PBKDF2',\n        false,\n        ['deriveBits', 'deriveKey']\n      );\n\n      // 使用 PBKDF2 派生密钥\n      // 确保 salt 是 BufferSource 类型（使用类型断言）\n      const saltBuffer: BufferSource = (salt instanceof Uint8Array \n        ? salt \n        : new Uint8Array(salt)) as BufferSource;\n      return await window.crypto.subtle.deriveKey(\n        {\n          name: 'PBKDF2',\n          salt: saltBuffer,\n          iterations: iterations,\n          hash: 'SHA-256',\n        },\n        passwordKey,\n        {\n          name: 'AES-GCM',\n          length: 256,\n        },\n        false,\n        ['encrypt', 'decrypt']\n      );\n    } catch (error) {\n      throw new StorageError('密钥派生失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 从字符串导入密钥（使用 PBKDF2 派生）\n   * \n   * 注意：如果没有提供 salt，每次调用都会生成新的 salt，导致密钥不一致。\n   * 建议在生产环境中使用固定的 salt 或从安全存储中获取。\n   */\n  static async importKey(keyString: string, salt?: Uint8Array): Promise<CryptoKey> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 如果没有提供 salt，尝试从 sessionStorage 获取或生成一个固定的\n      let keySalt = salt;\n      \n      if (!keySalt) {\n        // 尝试从 sessionStorage 获取固定的 salt（用于当前会话）\n        const saltKey = '__encryption_salt__';\n        const storedSalt = sessionStorage.getItem(saltKey);\n        \n        if (storedSalt) {\n          // 从存储中恢复 salt\n          const saltArray = Uint8Array.from(JSON.parse(storedSalt));\n          keySalt = saltArray;\n        } else {\n          // 生成新的 salt 并存储（用于当前会话）\n          keySalt = window.crypto.getRandomValues(new Uint8Array(16));\n          sessionStorage.setItem(saltKey, JSON.stringify(Array.from(keySalt)));\n        }\n      }\n      \n      // 使用 PBKDF2 派生密钥\n      return await this.deriveKey(keyString, keySalt);\n    } catch (error) {\n      throw new StorageError('导入加密密钥失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 加密数据\n   */\n  static async encrypt(data: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('加密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      const encoder = new TextEncoder();\n      const dataBuffer = encoder.encode(data);\n\n      // 生成随机 IV\n      const iv = window.crypto.getRandomValues(new Uint8Array(12));\n\n      const encrypted = await window.crypto.subtle.encrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        dataBuffer\n      );\n\n      // 将 IV 和加密数据组合\n      const combined = new Uint8Array(iv.length + encrypted.byteLength);\n      combined.set(iv);\n      combined.set(new Uint8Array(encrypted), iv.length);\n\n      // 转换为 Base64\n      return btoa(String.fromCharCode(...combined));\n    } catch (error) {\n      throw new StorageError('加密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 解密数据\n   */\n  static async decrypt(encryptedData: string, key: CryptoKey): Promise<string> {\n    if (typeof window === 'undefined' || !window.crypto || !window.crypto.subtle) {\n      throw new StorageError('解密功能需要浏览器支持 Web Crypto API');\n    }\n\n    try {\n      // 从 Base64 解码\n      const combined = Uint8Array.from(atob(encryptedData), (c) => c.charCodeAt(0));\n\n      // 提取 IV 和加密数据\n      const iv = combined.slice(0, 12);\n      const encrypted = combined.slice(12);\n\n      const decrypted = await window.crypto.subtle.decrypt(\n        {\n          name: 'AES-GCM',\n          iv: iv,\n        },\n        key,\n        encrypted\n      );\n\n      const decoder = new TextDecoder();\n      return decoder.decode(decrypted);\n    } catch (error) {\n      throw new StorageError('解密数据失败', error instanceof Error ? error : undefined);\n    }\n  }\n\n  /**\n   * 检查字段是否需要加密\n   */\n  static shouldEncrypt(key: string): boolean {\n    return SecurityUtils.isSensitiveField(key);\n  }\n}\n"],"names":["SecurityUtils","StorageError","EncryptionUtils","generateKey","window","crypto","subtle","name","length","error","Error","undefined","deriveKey","password","salt","iterations","encoder","TextEncoder","passwordKey","importKey","encode","saltBuffer","Uint8Array","hash","keyString","keySalt","saltKey","storedSalt","sessionStorage","getItem","saltArray","from","JSON","parse","getRandomValues","setItem","stringify","Array","encrypt","data","key","dataBuffer","iv","encrypted","combined","byteLength","set","btoa","String","fromCharCode","decrypt","encryptedData","atob","c","charCodeAt","slice","decrypted","decoder","TextDecoder","decode","shouldEncrypt","isSensitiveField"],"mappings":"AAAA,SAASA,aAAa,EAAEC,YAAY,QAAQ,eAAe;AAgB3D;;CAEC,GACD,OAAO,MAAMC;IAEX;;GAEC,GACD,aAAaC,cAAkC;QAC7C,IAAI,OAAOC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,OAAO,MAAMG,OAAOC,MAAM,CAACC,MAAM,CAACH,WAAW,CAC3C;gBACEI,MAAM;gBACNC,QAAQ;YACV,GACA,MACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIR,aAAa,YAAYQ,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAaC,UACXC,QAAgB,EAChBC,IAAgB,EAChBC,aAAqB,MAAM,EACP;QACpB,IAAI,OAAOX,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,OAAO;YACP,MAAMe,UAAU,IAAIC;YACpB,MAAMC,cAAc,MAAMd,OAAOC,MAAM,CAACC,MAAM,CAACa,SAAS,CACtD,OACAH,QAAQI,MAAM,CAACP,WACf,UACA,OACA;gBAAC;gBAAc;aAAY;YAG7B,iBAAiB;YACjB,oCAAoC;YACpC,MAAMQ,aAA4BP,gBAAgBQ,aAC9CR,OACA,IAAIQ,WAAWR;YACnB,OAAO,MAAMV,OAAOC,MAAM,CAACC,MAAM,CAACM,SAAS,CACzC;gBACEL,MAAM;gBACNO,MAAMO;gBACNN,YAAYA;gBACZQ,MAAM;YACR,GACAL,aACA;gBACEX,MAAM;gBACNC,QAAQ;YACV,GACA,OACA;gBAAC;gBAAW;aAAU;QAE1B,EAAE,OAAOC,OAAO;YACd,MAAM,IAAIR,aAAa,UAAUQ,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;;;;GAKC,GACD,aAAaQ,UAAUK,SAAiB,EAAEV,IAAiB,EAAsB;QAC/E,IAAI,OAAOV,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,4CAA4C;YAC5C,IAAIwB,UAAUX;YAEd,IAAI,CAACW,SAAS;gBACZ,wCAAwC;gBACxC,MAAMC,UAAU;gBAChB,MAAMC,aAAaC,eAAeC,OAAO,CAACH;gBAE1C,IAAIC,YAAY;oBACd,cAAc;oBACd,MAAMG,YAAYR,WAAWS,IAAI,CAACC,KAAKC,KAAK,CAACN;oBAC7CF,UAAUK;gBACZ,OAAO;oBACL,wBAAwB;oBACxBL,UAAUrB,OAAOC,MAAM,CAAC6B,eAAe,CAAC,IAAIZ,WAAW;oBACvDM,eAAeO,OAAO,CAACT,SAASM,KAAKI,SAAS,CAACC,MAAMN,IAAI,CAACN;gBAC5D;YACF;YAEA,iBAAiB;YACjB,OAAO,MAAM,IAAI,CAACb,SAAS,CAACY,WAAWC;QACzC,EAAE,OAAOhB,OAAO;YACd,MAAM,IAAIR,aAAa,YAAYQ,iBAAiBC,QAAQD,QAAQE;QACtE;IACF;IAEA;;GAEC,GACD,aAAa2B,QAAQC,IAAY,EAAEC,GAAc,EAAmB;QAClE,IAAI,OAAOpC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,MAAMe,UAAU,IAAIC;YACpB,MAAMwB,aAAazB,QAAQI,MAAM,CAACmB;YAElC,UAAU;YACV,MAAMG,KAAKtC,OAAOC,MAAM,CAAC6B,eAAe,CAAC,IAAIZ,WAAW;YAExD,MAAMqB,YAAY,MAAMvC,OAAOC,MAAM,CAACC,MAAM,CAACgC,OAAO,CAClD;gBACE/B,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAC;YAGF,eAAe;YACf,MAAMG,WAAW,IAAItB,WAAWoB,GAAGlC,MAAM,GAAGmC,UAAUE,UAAU;YAChED,SAASE,GAAG,CAACJ;YACbE,SAASE,GAAG,CAAC,IAAIxB,WAAWqB,YAAYD,GAAGlC,MAAM;YAEjD,aAAa;YACb,OAAOuC,KAAKC,OAAOC,YAAY,IAAIL;QACrC,EAAE,OAAOnC,OAAO;YACd,MAAM,IAAIR,aAAa,UAAUQ,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,aAAauC,QAAQC,aAAqB,EAAEX,GAAc,EAAmB;QAC3E,IAAI,OAAOpC,WAAW,eAAe,CAACA,OAAOC,MAAM,IAAI,CAACD,OAAOC,MAAM,CAACC,MAAM,EAAE;YAC5E,MAAM,IAAIL,aAAa;QACzB;QAEA,IAAI;YACF,cAAc;YACd,MAAM2C,WAAWtB,WAAWS,IAAI,CAACqB,KAAKD,gBAAgB,CAACE,IAAMA,EAAEC,UAAU,CAAC;YAE1E,cAAc;YACd,MAAMZ,KAAKE,SAASW,KAAK,CAAC,GAAG;YAC7B,MAAMZ,YAAYC,SAASW,KAAK,CAAC;YAEjC,MAAMC,YAAY,MAAMpD,OAAOC,MAAM,CAACC,MAAM,CAAC4C,OAAO,CAClD;gBACE3C,MAAM;gBACNmC,IAAIA;YACN,GACAF,KACAG;YAGF,MAAMc,UAAU,IAAIC;YACpB,OAAOD,QAAQE,MAAM,CAACH;QACxB,EAAE,OAAO/C,OAAO;YACd,MAAM,IAAIR,aAAa,UAAUQ,iBAAiBC,QAAQD,QAAQE;QACpE;IACF;IAEA;;GAEC,GACD,OAAOiD,cAAcpB,GAAW,EAAW;QACzC,OAAOxC,cAAc6D,gBAAgB,CAACrB;IACxC;AACF"}

package/dist/request/adapter.d.ts

@@ -0,0 +1 @@
+export * from '@vlian/request/adapter';

package/dist/request/core.d.ts

@@ -0,0 +1 @@
+export * from '@vlian/request/core';

package/dist/request/index.d.ts

@@ -1,42 +1 @@
-/**
- * 请求库主入口
- *
- * 提供企业级、可扩展、类型安全的 HTTP 请求能力
- */
-export type { RequestOptions, Response, RequestContext, RequestHeaders, RequestQuery, RequestBody, HttpMethod, RetryConfig, CacheConfig, ValidationConfig, AdapterCapabilities, } from './types';
-export { RequestError, RequestErrorType, RequestErrorCode, } from './types';
-export { RequestClient } from './core/RequestClient';
-export type { RequestClientConfig } from './types';
-export type { RequestAdapter, AdapterFactory } from './adapter/RequestAdapter';
-export { adapterRegistry } from './adapter/RequestAdapter';
-export { fetchAdapter, kyAdapter, axiosAdapter } from './adapter';
-export declare function undiciAdapter(): Promise<import("./adapter").RequestAdapter>;
-export type { RequestPlugin } from './plugin/RequestPlugin';
-export { PluginManager, PluginLifecycleStage, PluginPriority } from './plugin/RequestPlugin';
-export { createCachePlugin, createRetryPlugin, createValidationPlugin, createMonitoringPlugin, createQueuePlugin, } from './plugin';
-export type { CachePluginConfig, RetryPluginConfig, ValidationPluginConfig, MonitoringPluginConfig, MonitoringEvent, MonitoringReporter, QueuePluginConfig, QueueTriggerCondition, } from './plugin';
-export { MonitoringEventType } from './plugin';
-export { createRequestContext, updateRequestContext, completeRequestContext, failRequestContext, cancelRequestContext, } from './runtime/RequestContext';
-/**
- * 创建请求客户端实例
- *
- * @param config - 请求客户端配置
- * @returns 请求客户端实例
- *
- * @example
- * ```typescript
- * import { createRequestClient } from '@vlian/framework/request';
- *
- * const client = createRequestClient({
- *   baseURL: 'https://api.example.com',
- *   defaultTimeout: 5000,
- *   plugins: [
- *     createCachePlugin(),
- *     createRetryPlugin(),
- *   ],
- * });
- *
- * const response = await client.get<User>('/user/1');
- * ```
- */
-export declare function createRequestClient(config?: import('./types').RequestClientConfig): Promise<import(".").RequestClient>;
+export * from '@vlian/request';

package/dist/request/plugin/csrfPlugin.d.ts

@@ -8,8 +8,8 @@ import type { RequestPlugin } from './RequestPlugin';
  *
  * @example
  * ```typescript
- * import { createRequestClient } from '@vlian/framework/request';
- * import { createCSRFPlugin } from '@vlian/framework/request/plugin';
+ * import { createRequestClient } from '@vlian/request';
+ * import { createCSRFPlugin } from '@vlian/request/plugin';
  *
  * const client = await createRequestClient({
  *   plugins: [

package/dist/request/plugin/queue.d.ts

@@ -69,8 +69,8 @@ export interface QueuePluginConfig {
  *
  * @example
  * ```typescript
- * import { createRequestClient } from '@vlian/framework/request';
- * import { createQueuePlugin } from '@vlian/framework/request/plugin';
+ * import { createRequestClient } from '@vlian/request';
+ * import { createQueuePlugin } from '@vlian/request/plugin';
  *
  * const client = await createRequestClient({
  *   plugins: [

package/dist/request/plugin.d.ts

@@ -0,0 +1 @@
+export * from '@vlian/request/plugin';

package/dist/request/runtime.d.ts

@@ -0,0 +1 @@
+export * from '@vlian/request/runtime';