@xbg.solutions/backend-core 1.0.0

package/lib/core/src/middleware/error.middleware.js

@@ -0,0 +1,174 @@
+"use strict";
+/**
+ * Error Handling Middleware
+ * Global error handler and custom error classes
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ConflictError = exports.ForbiddenError = exports.UnauthorizedError = exports.ValidationError = exports.NotFoundError = exports.AppError = void 0;
+exports.errorHandler = errorHandler;
+exports.notFoundHandler = notFoundHandler;
+exports.asyncHandler = asyncHandler;
+const utils_logger_1 = require("@xbg/utils-logger");
+const app_config_1 = require("../config/app.config");
+/**
+ * Custom application errors
+ */
+class AppError extends Error {
+    constructor(code, message, statusCode = 500, details) {
+        super(message);
+        this.code = code;
+        this.message = message;
+        this.statusCode = statusCode;
+        this.details = details;
+        this.name = 'AppError';
+        Error.captureStackTrace(this, this.constructor);
+    }
+}
+exports.AppError = AppError;
+class NotFoundError extends AppError {
+    constructor(resource, id) {
+        super('NOT_FOUND', `${resource} not found${id ? `: ${id}` : ''}`, 404, { resource, id });
+        this.name = 'NotFoundError';
+    }
+}
+exports.NotFoundError = NotFoundError;
+class ValidationError extends AppError {
+    constructor(message, details) {
+        super('VALIDATION_ERROR', message, 400, details);
+        this.name = 'ValidationError';
+    }
+}
+exports.ValidationError = ValidationError;
+class UnauthorizedError extends AppError {
+    constructor(message = 'Authentication required') {
+        super('UNAUTHORIZED', message, 401);
+        this.name = 'UnauthorizedError';
+    }
+}
+exports.UnauthorizedError = UnauthorizedError;
+class ForbiddenError extends AppError {
+    constructor(message = 'Access denied') {
+        super('FORBIDDEN', message, 403);
+        this.name = 'ForbiddenError';
+    }
+}
+exports.ForbiddenError = ForbiddenError;
+class ConflictError extends AppError {
+    constructor(message, details) {
+        super('CONFLICT', message, 409, details);
+        this.name = 'ConflictError';
+    }
+}
+exports.ConflictError = ConflictError;
+/**
+ * Global error handling middleware
+ * Must be registered last in middleware chain
+ */
+function errorHandler() {
+    return (err, req, res, _next) => {
+        const requestId = req.headers['x-request-id'] || 'unknown';
+        // Log error
+        utils_logger_1.logger.error('Request error', err, {
+            requestId,
+            path: req.path,
+            method: req.method,
+        });
+        // Handle known AppErrors
+        if (err instanceof AppError) {
+            return res.status(err.statusCode).json({
+                success: false,
+                error: {
+                    code: err.code,
+                    message: err.message,
+                    details: err.details,
+                },
+                metadata: {
+                    requestId,
+                    timestamp: new Date().toISOString(),
+                    version: '1.0.0',
+                },
+            });
+        }
+        // Handle validation errors from express-validator
+        if (err.name === 'ValidationError') {
+            return res.status(400).json({
+                success: false,
+                error: {
+                    code: 'VALIDATION_ERROR',
+                    message: err.message,
+                },
+                metadata: {
+                    requestId,
+                    timestamp: new Date().toISOString(),
+                    version: '1.0.0',
+                },
+            });
+        }
+        // Handle Firestore errors
+        if (err.message.includes('PERMISSION_DENIED')) {
+            return res.status(403).json({
+                success: false,
+                error: {
+                    code: 'PERMISSION_DENIED',
+                    message: 'Database permission denied',
+                },
+                metadata: {
+                    requestId,
+                    timestamp: new Date().toISOString(),
+                    version: '1.0.0',
+                },
+            });
+        }
+        // Default to 500 Internal Server Error
+        const isDevelopment = app_config_1.APP_CONFIG.app.environment === 'development';
+        return res.status(500).json({
+            success: false,
+            error: {
+                code: 'INTERNAL_ERROR',
+                message: isDevelopment ? err.message : 'An unexpected error occurred',
+                details: isDevelopment ? { stack: err.stack } : undefined,
+            },
+            metadata: {
+                requestId,
+                timestamp: new Date().toISOString(),
+                version: '1.0.0',
+            },
+        });
+    };
+}
+/**
+ * 404 Not Found handler
+ * For unmatched routes
+ */
+function notFoundHandler() {
+    return (req, res) => {
+        const requestId = req.headers['x-request-id'] || 'unknown';
+        utils_logger_1.logger.warn('Route not found', {
+            requestId,
+            path: req.path,
+            method: req.method,
+        });
+        res.status(404).json({
+            success: false,
+            error: {
+                code: 'NOT_FOUND',
+                message: `Route not found: ${req.method} ${req.path}`,
+            },
+            metadata: {
+                requestId,
+                timestamp: new Date().toISOString(),
+                version: '1.0.0',
+            },
+        });
+    };
+}
+/**
+ * Async handler wrapper
+ * Catches async errors and passes to error middleware
+ */
+function asyncHandler(fn) {
+    return (req, res, next) => {
+        Promise.resolve(fn(req, res, next)).catch(next);
+    };
+}
+//# sourceMappingURL=error.middleware.js.map

package/lib/core/src/middleware/error.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"error.middleware.js","sourceRoot":"","sources":["../../../../src/middleware/error.middleware.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAkEH,oCA6EC;AAMD,0CAuBC;AAMD,oCAIC;AAnLD,oDAA2C;AAC3C,qDAAkD;AAElD;;GAEG;AACH,MAAa,QAAS,SAAQ,KAAK;IACjC,YACS,IAAY,EACZ,OAAe,EACf,aAAqB,GAAG,EACxB,OAA6B;QAEpC,KAAK,CAAC,OAAO,CAAC,CAAC;QALR,SAAI,GAAJ,IAAI,CAAQ;QACZ,YAAO,GAAP,OAAO,CAAQ;QACf,eAAU,GAAV,UAAU,CAAc;QACxB,YAAO,GAAP,OAAO,CAAsB;QAGpC,IAAI,CAAC,IAAI,GAAG,UAAU,CAAC;QACvB,KAAK,CAAC,iBAAiB,CAAC,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;IAClD,CAAC;CACF;AAXD,4BAWC;AAED,MAAa,aAAc,SAAQ,QAAQ;IACzC,YAAY,QAAgB,EAAE,EAAW;QACvC,KAAK,CACH,WAAW,EACX,GAAG,QAAQ,aAAa,EAAE,CAAC,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAC7C,GAAG,EACH,EAAE,QAAQ,EAAE,EAAE,EAAE,CACjB,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,eAAe,CAAC;IAC9B,CAAC;CACF;AAVD,sCAUC;AAED,MAAa,eAAgB,SAAQ,QAAQ;IAC3C,YAAY,OAAe,EAAE,OAA6B;QACxD,KAAK,CAAC,kBAAkB,EAAE,OAAO,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;QACjD,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;IAChC,CAAC;CACF;AALD,0CAKC;AAED,MAAa,iBAAkB,SAAQ,QAAQ;IAC7C,YAAY,OAAO,GAAG,yBAAyB;QAC7C,KAAK,CAAC,cAAc,EAAE,OAAO,EAAE,GAAG,CAAC,CAAC;QACpC,IAAI,CAAC,IAAI,GAAG,mBAAmB,CAAC;IAClC,CAAC;CACF;AALD,8CAKC;AAED,MAAa,cAAe,SAAQ,QAAQ;IAC1C,YAAY,OAAO,GAAG,eAAe;QACnC,KAAK,CAAC,WAAW,EAAE,OAAO,EAAE,GAAG,CAAC,CAAC;QACjC,IAAI,CAAC,IAAI,GAAG,gBAAgB,CAAC;IAC/B,CAAC;CACF;AALD,wCAKC;AAED,MAAa,aAAc,SAAQ,QAAQ;IACzC,YAAY,OAAe,EAAE,OAA6B;QACxD,KAAK,CAAC,UAAU,EAAE,OAAO,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;QACzC,IAAI,CAAC,IAAI,GAAG,eAAe,CAAC;IAC9B,CAAC;CACF;AALD,sCAKC;AAED;;;GAGG;AACH,SAAgB,YAAY;IAC1B,OAAO,CAAC,GAAU,EAAE,GAAY,EAAE,GAAa,EAAE,KAAmB,EAAE,EAAE;QACtE,MAAM,SAAS,GAAI,GAAG,CAAC,OAAO,CAAC,cAAc,CAAY,IAAI,SAAS,CAAC;QAEvE,YAAY;QACZ,qBAAM,CAAC,KAAK,CAAC,eAAe,EAAE,GAAG,EAAE;YACjC,SAAS;YACT,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,MAAM,EAAE,GAAG,CAAC,MAAM;SACnB,CAAC,CAAC;QAEH,yBAAyB;QACzB,IAAI,GAAG,YAAY,QAAQ,EAAE,CAAC;YAC5B,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC;gBACrC,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,GAAG,CAAC,IAAI;oBACd,OAAO,EAAE,GAAG,CAAC,OAAO;oBACpB,OAAO,EAAE,GAAG,CAAC,OAAO;iBACrB;gBACD,QAAQ,EAAE;oBACR,SAAS;oBACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;oBACnC,OAAO,EAAE,OAAO;iBACjB;aACF,CAAC,CAAC;QACL,CAAC;QAED,kDAAkD;QAClD,IAAI,GAAG,CAAC,IAAI,KAAK,iBAAiB,EAAE,CAAC;YACnC,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC1B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,kBAAkB;oBACxB,OAAO,EAAE,GAAG,CAAC,OAAO;iBACrB;gBACD,QAAQ,EAAE;oBACR,SAAS;oBACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;oBACnC,OAAO,EAAE,OAAO;iBACjB;aACF,CAAC,CAAC;QACL,CAAC;QAED,0BAA0B;QAC1B,IAAI,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;YAC9C,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBAC1B,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,mBAAmB;oBACzB,OAAO,EAAE,4BAA4B;iBACtC;gBACD,QAAQ,EAAE;oBACR,SAAS;oBACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;oBACnC,OAAO,EAAE,OAAO;iBACjB;aACF,CAAC,CAAC;QACL,CAAC;QAED,uCAAuC;QACvC,MAAM,aAAa,GAAG,uBAAU,CAAC,GAAG,CAAC,WAAW,KAAK,aAAa,CAAC;QAEnE,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YAC1B,OAAO,EAAE,KAAK;YACd,KAAK,EAAE;gBACL,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,8BAA8B;gBACrE,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS;aAC1D;YACD,QAAQ,EAAE;gBACR,SAAS;gBACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,OAAO,EAAE,OAAO;aACjB;SACF,CAAC,CAAC;IACL,CAAC,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,SAAgB,eAAe;IAC7B,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;QACrC,MAAM,SAAS,GAAI,GAAG,CAAC,OAAO,CAAC,cAAc,CAAY,IAAI,SAAS,CAAC;QAEvE,qBAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE;YAC7B,SAAS;YACT,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,MAAM,EAAE,GAAG,CAAC,MAAM;SACnB,CAAC,CAAC;QAEH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,OAAO,EAAE,KAAK;YACd,KAAK,EAAE;gBACL,IAAI,EAAE,WAAW;gBACjB,OAAO,EAAE,oBAAoB,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,IAAI,EAAE;aACtD;YACD,QAAQ,EAAE;gBACR,SAAS;gBACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,OAAO,EAAE,OAAO;aACjB;SACF,CAAC,CAAC;IACL,CAAC,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,SAAgB,YAAY,CAAC,EAAqE;IAChG,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACzD,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClD,CAAC,CAAC;AACJ,CAAC"}

package/lib/core/src/middleware/index.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Middleware barrel export
+ */
+export * from './auth.middleware';
+export * from './cors.middleware';
+export * from './rateLimit.middleware';
+export * from './validation.middleware';
+export * from './error.middleware';
+export * from './requestId.middleware';
+export * from './logging.middleware';
+//# sourceMappingURL=index.d.ts.map

package/lib/core/src/middleware/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/middleware/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,cAAc,mBAAmB,CAAC;AAClC,cAAc,mBAAmB,CAAC;AAClC,cAAc,wBAAwB,CAAC;AACvC,cAAc,yBAAyB,CAAC;AACxC,cAAc,oBAAoB,CAAC;AACnC,cAAc,wBAAwB,CAAC;AACvC,cAAc,sBAAsB,CAAC"}

package/lib/core/src/middleware/index.js

@@ -0,0 +1,27 @@
+"use strict";
+/**
+ * Middleware barrel export
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./auth.middleware"), exports);
+__exportStar(require("./cors.middleware"), exports);
+__exportStar(require("./rateLimit.middleware"), exports);
+__exportStar(require("./validation.middleware"), exports);
+__exportStar(require("./error.middleware"), exports);
+__exportStar(require("./requestId.middleware"), exports);
+__exportStar(require("./logging.middleware"), exports);
+//# sourceMappingURL=index.js.map

package/lib/core/src/middleware/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/middleware/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;;;;;;;;;;;;;AAEH,oDAAkC;AAClC,oDAAkC;AAClC,yDAAuC;AACvC,0DAAwC;AACxC,qDAAmC;AACnC,yDAAuC;AACvC,uDAAqC"}

package/lib/core/src/middleware/logging.middleware.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Request Logging Middleware
+ * Logs all HTTP requests with configurable detail level
+ */
+import { Request, Response, NextFunction } from 'express';
+/**
+ * Request logging middleware
+ */
+export declare function requestLoggingMiddleware(): (req: Request, res: Response, next: NextFunction) => void;
+//# sourceMappingURL=logging.middleware.d.ts.map

package/lib/core/src/middleware/logging.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logging.middleware.d.ts","sourceRoot":"","sources":["../../../../src/middleware/logging.middleware.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAI1D;;GAEG;AACH,wBAAgB,wBAAwB,KAC9B,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,UA0CxD"}

package/lib/core/src/middleware/logging.middleware.js

@@ -0,0 +1,87 @@
+"use strict";
+/**
+ * Request Logging Middleware
+ * Logs all HTTP requests with configurable detail level
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.requestLoggingMiddleware = requestLoggingMiddleware;
+const utils_logger_1 = require("@xbg/utils-logger");
+const middleware_config_1 = require("../config/middleware.config");
+/**
+ * Request logging middleware
+ */
+function requestLoggingMiddleware() {
+    return (req, res, next) => {
+        const startTime = Date.now();
+        const requestId = req.headers['x-request-id'] || 'unknown';
+        // Log request
+        const logData = {
+            requestId,
+            method: req.method,
+            path: req.path,
+            query: req.query,
+            ip: req.ip,
+            userAgent: req.headers['user-agent'],
+        };
+        if (middleware_config_1.MIDDLEWARE_CONFIG.logging.logHeaders) {
+            logData.headers = filterSensitiveHeaders(req.headers);
+        }
+        if (middleware_config_1.MIDDLEWARE_CONFIG.logging.logBody && req.body) {
+            logData.body = filterSensitiveData(req.body);
+        }
+        utils_logger_1.logger.info('Incoming request', logData);
+        // Log response
+        const originalSend = res.send;
+        res.send = function (data) {
+            const duration = Date.now() - startTime;
+            utils_logger_1.logger.info('Outgoing response', {
+                requestId,
+                method: req.method,
+                path: req.path,
+                statusCode: res.statusCode,
+                duration: `${duration}ms`,
+            });
+            return originalSend.call(this, data);
+        };
+        next();
+    };
+}
+/**
+ * Filter sensitive headers
+ */
+function filterSensitiveHeaders(headers) {
+    const filtered = {};
+    const sensitiveHeaders = middleware_config_1.MIDDLEWARE_CONFIG.logging.sensitiveHeaders;
+    for (const [key, value] of Object.entries(headers)) {
+        if (sensitiveHeaders.includes(key.toLowerCase())) {
+            filtered[key] = '[REDACTED]';
+        }
+        else {
+            filtered[key] = value;
+        }
+    }
+    return filtered;
+}
+/**
+ * Filter sensitive data from request body
+ */
+function filterSensitiveData(body) {
+    if (typeof body !== 'object' || body === null) {
+        return body;
+    }
+    const filtered = Array.isArray(body) ? [] : {};
+    const sensitiveFields = ['password', 'token', 'secret', 'apiKey', 'creditCard'];
+    for (const [key, value] of Object.entries(body)) {
+        if (sensitiveFields.some((field) => key.toLowerCase().includes(field.toLowerCase()))) {
+            filtered[key] = '[REDACTED]';
+        }
+        else if (typeof value === 'object' && value !== null) {
+            filtered[key] = filterSensitiveData(value);
+        }
+        else {
+            filtered[key] = value;
+        }
+    }
+    return filtered;
+}
+//# sourceMappingURL=logging.middleware.js.map

package/lib/core/src/middleware/logging.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logging.middleware.js","sourceRoot":"","sources":["../../../../src/middleware/logging.middleware.ts"],"names":[],"mappings":";AAAA;;;GAGG;;AASH,4DA2CC;AAjDD,oDAA2C;AAC3C,mEAAgE;AAEhE;;GAEG;AACH,SAAgB,wBAAwB;IACtC,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACzD,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,cAAc,CAAW,IAAI,SAAS,CAAC;QAErE,cAAc;QACd,MAAM,OAAO,GAAwB;YACnC,SAAS;YACT,MAAM,EAAE,GAAG,CAAC,MAAM;YAClB,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,KAAK,EAAE,GAAG,CAAC,KAAK;YAChB,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,SAAS,EAAE,GAAG,CAAC,OAAO,CAAC,YAAY,CAAC;SACrC,CAAC;QAEF,IAAI,qCAAiB,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;YACzC,OAAO,CAAC,OAAO,GAAG,sBAAsB,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACxD,CAAC;QAED,IAAI,qCAAiB,CAAC,OAAO,CAAC,OAAO,IAAI,GAAG,CAAC,IAAI,EAAE,CAAC;YAClD,OAAO,CAAC,IAAI,GAAG,mBAAmB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC/C,CAAC;QAED,qBAAM,CAAC,IAAI,CAAC,kBAAkB,EAAE,OAAO,CAAC,CAAC;QAEzC,eAAe;QACf,MAAM,YAAY,GAAG,GAAG,CAAC,IAAI,CAAC;QAC9B,GAAG,CAAC,IAAI,GAAG,UAAU,IAAS;YAC5B,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAExC,qBAAM,CAAC,IAAI,CAAC,mBAAmB,EAAE;gBAC/B,SAAS;gBACT,MAAM,EAAE,GAAG,CAAC,MAAM;gBAClB,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,QAAQ,EAAE,GAAG,QAAQ,IAAI;aAC1B,CAAC,CAAC;YAEH,OAAO,YAAY,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;QACvC,CAAC,CAAC;QAEF,IAAI,EAAE,CAAC;IACT,CAAC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,sBAAsB,CAAC,OAA4B;IAC1D,MAAM,QAAQ,GAAwB,EAAE,CAAC;IACzC,MAAM,gBAAgB,GAAG,qCAAiB,CAAC,OAAO,CAAC,gBAAgB,CAAC;IAEpE,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QACnD,IAAI,gBAAgB,CAAC,QAAQ,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACjD,QAAQ,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;QAC/B,CAAC;aAAM,CAAC;YACN,QAAQ,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACxB,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,IAAS;IACpC,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;QAC9C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,QAAQ,GAAQ,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;IACpD,MAAM,eAAe,GAAG,CAAC,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,YAAY,CAAC,CAAC;IAEhF,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAChD,IAAI,eAAe,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,CAAC,EAAE,CAAC;YACrF,QAAQ,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;QAC/B,CAAC;aAAM,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;YACvD,QAAQ,CAAC,GAAG,CAAC,GAAG,mBAAmB,CAAC,KAAK,CAAC,CAAC;QAC7C,CAAC;aAAM,CAAC;YACN,QAAQ,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACxB,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/lib/core/src/middleware/rateLimit.middleware.d.ts

@@ -0,0 +1,26 @@
+/**
+ * Rate Limiting Middleware
+ *
+ * IMPORTANT: express-rate-limit uses an in-memory store by default.
+ * In serverless environments (Cloud Functions), each instance has its own
+ * memory and rate limits reset on cold starts. This means rate limiting
+ * is per-instance and won't protect against distributed abuse at scale.
+ *
+ * For production hardening, replace the default store with a shared store:
+ *   - Redis: use rate-limit-redis with the existing redis-cache-provider
+ *   - Firestore: implement a custom store using firestore-connector
+ *   - Firebase App Check: for client-side abuse prevention
+ */
+/**
+ * Create standard rate limiter
+ */
+export declare function createRateLimiter(): import("express-rate-limit").RateLimitRequestHandler;
+/**
+ * Create strict rate limiter for sensitive endpoints
+ */
+export declare function createStrictRateLimiter(): import("express-rate-limit").RateLimitRequestHandler;
+/**
+ * Create per-user rate limiter
+ */
+export declare function createPerUserRateLimiter(max?: number, windowMs?: number): import("express-rate-limit").RateLimitRequestHandler;
+//# sourceMappingURL=rateLimit.middleware.d.ts.map

package/lib/core/src/middleware/rateLimit.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rateLimit.middleware.d.ts","sourceRoot":"","sources":["../../../../src/middleware/rateLimit.middleware.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAMH;;GAEG;AACH,wBAAgB,iBAAiB,yDAuBhC;AAED;;GAEG;AACH,wBAAgB,uBAAuB,yDAqBtC;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,GAAG,SAAM,EAAE,QAAQ,SAAiB,wDA0B5E"}

package/lib/core/src/middleware/rateLimit.middleware.js

@@ -0,0 +1,105 @@
+"use strict";
+/**
+ * Rate Limiting Middleware
+ *
+ * IMPORTANT: express-rate-limit uses an in-memory store by default.
+ * In serverless environments (Cloud Functions), each instance has its own
+ * memory and rate limits reset on cold starts. This means rate limiting
+ * is per-instance and won't protect against distributed abuse at scale.
+ *
+ * For production hardening, replace the default store with a shared store:
+ *   - Redis: use rate-limit-redis with the existing redis-cache-provider
+ *   - Firestore: implement a custom store using firestore-connector
+ *   - Firebase App Check: for client-side abuse prevention
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createRateLimiter = createRateLimiter;
+exports.createStrictRateLimiter = createStrictRateLimiter;
+exports.createPerUserRateLimiter = createPerUserRateLimiter;
+const express_rate_limit_1 = __importDefault(require("express-rate-limit"));
+const middleware_config_1 = require("../config/middleware.config");
+const utils_logger_1 = require("@xbg/utils-logger");
+/**
+ * Create standard rate limiter
+ */
+function createRateLimiter() {
+    return (0, express_rate_limit_1.default)({
+        windowMs: middleware_config_1.MIDDLEWARE_CONFIG.rateLimit.windowMs,
+        max: middleware_config_1.MIDDLEWARE_CONFIG.rateLimit.max,
+        standardHeaders: true,
+        legacyHeaders: false,
+        skipSuccessfulRequests: middleware_config_1.MIDDLEWARE_CONFIG.rateLimit.skipSuccessfulRequests,
+        skipFailedRequests: middleware_config_1.MIDDLEWARE_CONFIG.rateLimit.skipFailedRequests,
+        handler: (req, res) => {
+            utils_logger_1.logger.warn('Rate limit exceeded', {
+                ip: req.ip,
+                path: req.path,
+            });
+            res.status(429).json({
+                success: false,
+                error: {
+                    code: 'RATE_LIMIT_EXCEEDED',
+                    message: 'Too many requests, please try again later',
+                },
+            });
+        },
+    });
+}
+/**
+ * Create strict rate limiter for sensitive endpoints
+ */
+function createStrictRateLimiter() {
+    return (0, express_rate_limit_1.default)({
+        windowMs: 15 * 60 * 1000, // 15 minutes
+        max: 5, // 5 requests per window
+        standardHeaders: true,
+        legacyHeaders: false,
+        handler: (req, res) => {
+            utils_logger_1.logger.warn('Strict rate limit exceeded', {
+                ip: req.ip,
+                path: req.path,
+            });
+            res.status(429).json({
+                success: false,
+                error: {
+                    code: 'RATE_LIMIT_EXCEEDED',
+                    message: 'Too many attempts, please try again later',
+                },
+            });
+        },
+    });
+}
+/**
+ * Create per-user rate limiter
+ */
+function createPerUserRateLimiter(max = 100, windowMs = 15 * 60 * 1000) {
+    return (0, express_rate_limit_1.default)({
+        windowMs,
+        max,
+        standardHeaders: true,
+        legacyHeaders: false,
+        keyGenerator: (req) => {
+            const user = req.user;
+            return (user === null || user === void 0 ? void 0 : user.uid) || req.ip || 'anonymous';
+        },
+        handler: (req, res) => {
+            var _a;
+            utils_logger_1.logger.warn('Per-user rate limit exceeded', {
+                userId: (_a = req.user) === null || _a === void 0 ? void 0 : _a.uid,
+                ip: req.ip,
+                path: req.path,
+            });
+            res.status(429).json({
+                success: false,
+                error: {
+                    code: 'RATE_LIMIT_EXCEEDED',
+                    message: 'Too many requests, please try again later',
+                },
+            });
+        },
+    });
+}
+//# sourceMappingURL=rateLimit.middleware.js.map

package/lib/core/src/middleware/rateLimit.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rateLimit.middleware.js","sourceRoot":"","sources":["../../../../src/middleware/rateLimit.middleware.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;GAYG;;;;;AASH,8CAuBC;AAKD,0DAqBC;AAKD,4DA0BC;AAvFD,4EAA2C;AAC3C,mEAAgE;AAChE,oDAA2C;AAE3C;;GAEG;AACH,SAAgB,iBAAiB;IAC/B,OAAO,IAAA,4BAAS,EAAC;QACf,QAAQ,EAAE,qCAAiB,CAAC,SAAS,CAAC,QAAQ;QAC9C,GAAG,EAAE,qCAAiB,CAAC,SAAS,CAAC,GAAG;QACpC,eAAe,EAAE,IAAI;QACrB,aAAa,EAAE,KAAK;QACpB,sBAAsB,EAAE,qCAAiB,CAAC,SAAS,CAAC,sBAAsB;QAC1E,kBAAkB,EAAE,qCAAiB,CAAC,SAAS,CAAC,kBAAkB;QAClE,OAAO,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACpB,qBAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE;gBACjC,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,IAAI,EAAE,GAAG,CAAC,IAAI;aACf,CAAC,CAAC;YAEH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,qBAAqB;oBAC3B,OAAO,EAAE,2CAA2C;iBACrD;aACF,CAAC,CAAC;QACL,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,SAAgB,uBAAuB;IACrC,OAAO,IAAA,4BAAS,EAAC;QACf,QAAQ,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,aAAa;QACvC,GAAG,EAAE,CAAC,EAAE,wBAAwB;QAChC,eAAe,EAAE,IAAI;QACrB,aAAa,EAAE,KAAK;QACpB,OAAO,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACpB,qBAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE;gBACxC,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,IAAI,EAAE,GAAG,CAAC,IAAI;aACf,CAAC,CAAC;YAEH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,qBAAqB;oBAC3B,OAAO,EAAE,2CAA2C;iBACrD;aACF,CAAC,CAAC;QACL,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,SAAgB,wBAAwB,CAAC,GAAG,GAAG,GAAG,EAAE,QAAQ,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI;IAC3E,OAAO,IAAA,4BAAS,EAAC;QACf,QAAQ;QACR,GAAG;QACH,eAAe,EAAE,IAAI;QACrB,aAAa,EAAE,KAAK;QACpB,YAAY,EAAE,CAAC,GAAG,EAAE,EAAE;YACpB,MAAM,IAAI,GAAI,GAAW,CAAC,IAAI,CAAC;YAC/B,OAAO,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,GAAG,KAAI,GAAG,CAAC,EAAE,IAAI,WAAW,CAAC;QAC5C,CAAC;QACD,OAAO,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;;YACpB,qBAAM,CAAC,IAAI,CAAC,8BAA8B,EAAE;gBAC1C,MAAM,EAAE,MAAC,GAAW,CAAC,IAAI,0CAAE,GAAG;gBAC9B,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,IAAI,EAAE,GAAG,CAAC,IAAI;aACf,CAAC,CAAC;YAEH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,qBAAqB;oBAC3B,OAAO,EAAE,2CAA2C;iBACrD;aACF,CAAC,CAAC;QACL,CAAC;KACF,CAAC,CAAC;AACL,CAAC"}

package/lib/core/src/middleware/requestId.middleware.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Request ID Middleware
+ * Adds unique request ID to each request for tracing
+ */
+import { Request, Response, NextFunction } from 'express';
+/**
+ * Request ID middleware
+ * Generates or uses existing request ID for correlation tracking
+ */
+export declare function requestIdMiddleware(): (req: Request, res: Response, next: NextFunction) => void;
+//# sourceMappingURL=requestId.middleware.d.ts.map

package/lib/core/src/middleware/requestId.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"requestId.middleware.d.ts","sourceRoot":"","sources":["../../../../src/middleware/requestId.middleware.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAI1D;;;GAGG;AACH,wBAAgB,mBAAmB,KACzB,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,UAcxD"}

package/lib/core/src/middleware/requestId.middleware.js

@@ -0,0 +1,26 @@
+"use strict";
+/**
+ * Request ID Middleware
+ * Adds unique request ID to each request for tracing
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.requestIdMiddleware = requestIdMiddleware;
+const uuid_1 = require("uuid");
+const middleware_config_1 = require("../config/middleware.config");
+/**
+ * Request ID middleware
+ * Generates or uses existing request ID for correlation tracking
+ */
+function requestIdMiddleware() {
+    return (req, res, next) => {
+        const headerName = middleware_config_1.MIDDLEWARE_CONFIG.requestId.headerName;
+        // Get existing request ID or generate new one
+        const requestId = req.headers[headerName.toLowerCase()] || (0, uuid_1.v4)();
+        // Set request ID on request object
+        req.headers[headerName.toLowerCase()] = requestId;
+        // Set request ID in response header
+        res.setHeader(headerName, requestId);
+        next();
+    };
+}
+//# sourceMappingURL=requestId.middleware.js.map

package/lib/core/src/middleware/requestId.middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"requestId.middleware.js","sourceRoot":"","sources":["../../../../src/middleware/requestId.middleware.ts"],"names":[],"mappings":";AAAA;;;GAGG;;AAUH,kDAeC;AAtBD,+BAAoC;AACpC,mEAAgE;AAEhE;;;GAGG;AACH,SAAgB,mBAAmB;IACjC,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACzD,MAAM,UAAU,GAAG,qCAAiB,CAAC,SAAS,CAAC,UAAU,CAAC;QAE1D,8CAA8C;QAC9C,MAAM,SAAS,GAAI,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,WAAW,EAAE,CAAY,IAAI,IAAA,SAAM,GAAE,CAAC;QAEhF,mCAAmC;QACnC,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,WAAW,EAAE,CAAC,GAAG,SAAS,CAAC;QAElD,oCAAoC;QACpC,GAAG,CAAC,SAAS,CAAC,UAAU,EAAE,SAAS,CAAC,CAAC;QAErC,IAAI,EAAE,CAAC;IACT,CAAC,CAAC;AACJ,CAAC"}

package/lib/core/src/middleware/validation.middleware.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Validation Middleware
+ * Input validation and sanitization
+ */
+import { Request, Response, NextFunction } from 'express';
+import { ValidationChain } from 'express-validator';
+/**
+ * Validation middleware factory
+ * Runs express-validator chains and returns errors
+ */
+export declare function validate(validations: ValidationChain[]): (req: Request, res: Response, next: NextFunction) => Promise<void | Response<any, Record<string, any>>>;
+/**
+ * Sanitize request body
+ * Remove potentially dangerous characters
+ */
+export declare function sanitizeBody(): (req: Request, _res: Response, next: NextFunction) => void;
+/**
+ * Validate pagination parameters
+ */
+export declare function validatePagination(): (req: Request, res: Response, next: NextFunction) => void | Response<any, Record<string, any>>;
+/**
+ * Validate UUID parameter
+ */
+export declare function validateUUID(paramName?: string): (req: Request, res: Response, next: NextFunction) => void | Response<any, Record<string, any>>;
+//# sourceMappingURL=validation.middleware.d.ts.map

package/lib/core/src/middleware/validation.middleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.middleware.d.ts","sourceRoot":"","sources":["../../../../src/middleware/validation.middleware.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAC1D,OAAO,EAAoB,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAGtE;;;GAGG;AACH,wBAAgB,QAAQ,CAAC,WAAW,EAAE,eAAe,EAAE,IACvC,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,wDA4B9D;AAED;;;GAGG;AACH,wBAAgB,YAAY,KAClB,KAAK,OAAO,EAAE,MAAM,QAAQ,EAAE,MAAM,YAAY,UAMzD;AAmCD;;GAEG;AACH,wBAAgB,kBAAkB,KACxB,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,+CA6BxD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,SAAS,SAAO,IAGnC,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,+CAexD"}