@xfilecom/backend-core 1.0.0

package/dist/utils/crypto.utils.js

@@ -0,0 +1,53 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PBKDF2_SALT_BYTES = exports.PBKDF2_DEFAULT_DIGEST = exports.PBKDF2_DEFAULT_KEYLEN = exports.PBKDF2_DEFAULT_ITERATIONS = void 0;
+exports.pbkdf2HashPassword = pbkdf2HashPassword;
+exports.pbkdf2VerifyPassword = pbkdf2VerifyPassword;
+exports.deriveKeySha256 = deriveKeySha256;
+const crypto = require("crypto");
+exports.PBKDF2_DEFAULT_ITERATIONS = 100_000;
+exports.PBKDF2_DEFAULT_KEYLEN = 64;
+exports.PBKDF2_DEFAULT_DIGEST = 'sha512';
+exports.PBKDF2_SALT_BYTES = 32;
+function pbkdf2HashPassword(password, salt, options = {}) {
+    if (password == null || typeof password !== 'string') {
+        throw new Error('password must be a non-empty string');
+    }
+    const iterations = options.iterations ?? exports.PBKDF2_DEFAULT_ITERATIONS;
+    const keylen = options.keylen ?? exports.PBKDF2_DEFAULT_KEYLEN;
+    const digest = options.digest ?? exports.PBKDF2_DEFAULT_DIGEST;
+    const saltBuf = salt instanceof Buffer
+        ? salt
+        : typeof salt === 'string' && salt.length > 0
+            ? Buffer.from(salt, 'hex')
+            : crypto.randomBytes(exports.PBKDF2_SALT_BYTES);
+    const hash = crypto.pbkdf2Sync(password, saltBuf, iterations, keylen, digest);
+    return `${saltBuf.toString('hex')}:${hash.toString('hex')}`;
+}
+function pbkdf2VerifyPassword(plainPassword, stored, options = {}) {
+    if (!stored || plainPassword == null)
+        return false;
+    const colonIndex = stored.indexOf(':');
+    if (colonIndex <= 0 || colonIndex === stored.length - 1)
+        return false;
+    try {
+        const saltHex = stored.slice(0, colonIndex);
+        const hashHex = stored.slice(colonIndex + 1);
+        const salt = Buffer.from(saltHex, 'hex');
+        const iterations = options.iterations ?? exports.PBKDF2_DEFAULT_ITERATIONS;
+        const keylen = options.keylen ?? exports.PBKDF2_DEFAULT_KEYLEN;
+        const digest = options.digest ?? exports.PBKDF2_DEFAULT_DIGEST;
+        const computed = crypto.pbkdf2Sync(plainPassword, salt, iterations, keylen, digest);
+        const storedBuf = Buffer.from(hashHex, 'hex');
+        if (computed.length !== storedBuf.length)
+            return false;
+        return crypto.timingSafeEqual(computed, storedBuf);
+    }
+    catch {
+        return false;
+    }
+}
+function deriveKeySha256(secret) {
+    return crypto.createHash('sha256').update(secret).digest();
+}
+//# sourceMappingURL=crypto.utils.js.map

package/dist/utils/crypto.utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.utils.js","sourceRoot":"","sources":["../../src/utils/crypto.utils.ts"],"names":[],"mappings":";;;AAkBA,gDAqBC;AAMD,oDAuBC;AAKD,0CAEC;AA3ED,iCAAiC;AAGpB,QAAA,yBAAyB,GAAG,OAAO,CAAC;AACpC,QAAA,qBAAqB,GAAG,EAAE,CAAC;AAC3B,QAAA,qBAAqB,GAAG,QAAQ,CAAC;AACjC,QAAA,iBAAiB,GAAG,EAAE,CAAC;AAYpC,SAAgB,kBAAkB,CAChC,QAAgB,EAChB,IAAsB,EACtB,UAAyB,EAAE;IAE3B,IAAI,QAAQ,IAAI,IAAI,IAAI,OAAO,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACrD,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;IACzD,CAAC;IACD,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,iCAAyB,CAAC;IACnE,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,6BAAqB,CAAC;IACvD,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,6BAAqB,CAAC;IAEvD,MAAM,OAAO,GACX,IAAI,YAAY,MAAM;QACpB,CAAC,CAAC,IAAI;QACN,CAAC,CAAC,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC;YAC3C,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,KAAK,CAAC;YAC1B,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,yBAAiB,CAAC,CAAC;IAE9C,MAAM,IAAI,GAAG,MAAM,CAAC,UAAU,CAAC,QAAQ,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9E,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;AAC9D,CAAC;AAMD,SAAgB,oBAAoB,CAClC,aAAqB,EACrB,MAAc,EACd,UAAyB,EAAE;IAE3B,IAAI,CAAC,MAAM,IAAI,aAAa,IAAI,IAAI;QAAE,OAAO,KAAK,CAAC;IACnD,MAAM,UAAU,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACvC,IAAI,UAAU,IAAI,CAAC,IAAI,UAAU,KAAK,MAAM,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC;IACtE,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;QAC5C,MAAM,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC;QAC7C,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QACzC,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,iCAAyB,CAAC;QACnE,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,6BAAqB,CAAC;QACvD,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,6BAAqB,CAAC;QAEvD,MAAM,QAAQ,GAAG,MAAM,CAAC,UAAU,CAAC,aAAa,EAAE,IAAI,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;QACpF,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QAC9C,IAAI,QAAQ,CAAC,MAAM,KAAK,SAAS,CAAC,MAAM;YAAE,OAAO,KAAK,CAAC;QACvD,OAAO,MAAM,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IACrD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAKD,SAAgB,eAAe,CAAC,MAAc;IAC5C,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,CAAC;AAC7D,CAAC"}

package/dist/utils/env.utils.d.ts

@@ -0,0 +1,8 @@
+export type AppEnv = 'development' | 'staging' | 'production';
+export declare const getAppEnv: () => AppEnv;
+export declare function isDevelopment(): boolean;
+export declare function isProduction(): boolean;
+export declare function isStaging(): boolean;
+export declare const currentAppEnv: AppEnv;
+export declare const isDev: boolean;
+export declare const isProd: boolean;

package/dist/utils/env.utils.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isProd = exports.isDev = exports.currentAppEnv = exports.getAppEnv = void 0;
+exports.isDevelopment = isDevelopment;
+exports.isProduction = isProduction;
+exports.isStaging = isStaging;
+const raw = (typeof process !== 'undefined' && (process.env.APP_ENV ?? process.env.NODE_ENV)) || 'development';
+const normalized = raw.toLowerCase();
+const getAppEnv = () => normalized === 'production' || normalized === 'prod'
+    ? 'production'
+    : normalized === 'staging' || normalized === 'stage'
+        ? 'staging'
+        : 'development';
+exports.getAppEnv = getAppEnv;
+function isDevelopment() {
+    return (0, exports.getAppEnv)() === 'development';
+}
+function isProduction() {
+    return (0, exports.getAppEnv)() === 'production';
+}
+function isStaging() {
+    return (0, exports.getAppEnv)() === 'staging';
+}
+exports.currentAppEnv = (0, exports.getAppEnv)();
+exports.isDev = exports.currentAppEnv === 'development';
+exports.isProd = exports.currentAppEnv === 'production';
+//# sourceMappingURL=env.utils.js.map

package/dist/utils/env.utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"env.utils.js","sourceRoot":"","sources":["../../src/utils/env.utils.ts"],"names":[],"mappings":";;;AAmBA,sCAEC;AAGD,oCAEC;AAGD,8BAEC;AAzBD,MAAM,GAAG,GACP,CAAC,OAAO,OAAO,KAAK,WAAW,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,IAAI,aAAa,CAAC;AACrG,MAAM,UAAU,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;AAG9B,MAAM,SAAS,GAAG,GAAW,EAAE,CACpC,UAAU,KAAK,YAAY,IAAI,UAAU,KAAK,MAAM;IAClD,CAAC,CAAC,YAAY;IACd,CAAC,CAAC,UAAU,KAAK,SAAS,IAAI,UAAU,KAAK,OAAO;QAClD,CAAC,CAAC,SAAS;QACX,CAAC,CAAC,aAAa,CAAC;AALT,QAAA,SAAS,aAKA;AAGtB,SAAgB,aAAa;IAC3B,OAAO,IAAA,iBAAS,GAAE,KAAK,aAAa,CAAC;AACvC,CAAC;AAGD,SAAgB,YAAY;IAC1B,OAAO,IAAA,iBAAS,GAAE,KAAK,YAAY,CAAC;AACtC,CAAC;AAGD,SAAgB,SAAS;IACvB,OAAO,IAAA,iBAAS,GAAE,KAAK,SAAS,CAAC;AACnC,CAAC;AAGY,QAAA,aAAa,GAAW,IAAA,iBAAS,GAAE,CAAC;AAGpC,QAAA,KAAK,GAAG,qBAAa,KAAK,aAAa,CAAC;AAExC,QAAA,MAAM,GAAG,qBAAa,KAAK,YAAY,CAAC"}

package/dist/utils/error.utils.d.ts

@@ -0,0 +1,7 @@
+import { CommonErrorDto } from './controller.helpers';
+export declare class ErrorUtils {
+    createError(code: number, message: string | object): CommonErrorDto;
+    private normalizeMessage;
+    private getErrorCode;
+    fromException(exception: unknown): CommonErrorDto;
+}

package/dist/utils/error.utils.js

@@ -0,0 +1,72 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ErrorUtils = void 0;
+const common_1 = require("@nestjs/common");
+const controller_helpers_1 = require("./controller.helpers");
+let ErrorUtils = class ErrorUtils {
+    createError(code, message) {
+        const errorCode = code === 0 ? 500 : code;
+        const messageStr = this.normalizeMessage(message);
+        return new controller_helpers_1.CommonErrorDto(errorCode, messageStr, []);
+    }
+    normalizeMessage(message) {
+        if (typeof message === 'string') {
+            return message;
+        }
+        if (message && typeof message === 'object' && 'message' in message) {
+            const m = message.message;
+            if (typeof m === 'string')
+                return m;
+            if (Array.isArray(m) && m.length > 0 && typeof m[0] === 'string')
+                return m[0];
+        }
+        return typeof message === 'object' ? JSON.stringify(message) : String(message);
+    }
+    getErrorCode(statusCode) {
+        const codes = {
+            400: 'BAD_REQUEST',
+            401: 'UNAUTHORIZED',
+            403: 'FORBIDDEN',
+            404: 'NOT_FOUND',
+            409: 'CONFLICT',
+            422: 'UNPROCESSABLE_ENTITY',
+            500: 'INTERNAL_SERVER_ERROR',
+            503: 'SERVICE_UNAVAILABLE',
+        };
+        return codes[statusCode] || 'UNKNOWN_ERROR';
+    }
+    fromException(exception) {
+        if (exception && typeof exception === 'object' && 'code' in exception && 'error' in exception && 'data' in exception) {
+            return exception;
+        }
+        if (exception &&
+            typeof exception === 'object' &&
+            'getStatus' in exception &&
+            'getResponse' in exception) {
+            const httpException = exception;
+            const statusCode = httpException.getStatus();
+            const response = httpException.getResponse();
+            const message = typeof response === 'string'
+                ? response
+                : response?.message || 'Internal server error';
+            return this.createError(statusCode, message);
+        }
+        if (exception instanceof Error) {
+            const statusCode = exception.status || 500;
+            const message = exception.message || 'Internal server error';
+            return this.createError(statusCode, message);
+        }
+        return this.createError(500, 'Internal server error');
+    }
+};
+exports.ErrorUtils = ErrorUtils;
+exports.ErrorUtils = ErrorUtils = __decorate([
+    (0, common_1.Injectable)()
+], ErrorUtils);
+//# sourceMappingURL=error.utils.js.map

package/dist/utils/error.utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"error.utils.js","sourceRoot":"","sources":["../../src/utils/error.utils.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAA4C;AAC5C,6DAAsD;AAW/C,IAAM,UAAU,GAAhB,MAAM,UAAU;IAcrB,WAAW,CAAC,IAAY,EAAE,OAAwB;QAChD,MAAM,SAAS,GAAG,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC;QAC1C,MAAM,UAAU,GAAG,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;QAClD,OAAO,IAAI,mCAAc,CAAC,SAAS,EAAE,UAAU,EAAE,EAAE,CAAC,CAAC;IACvD,CAAC;IAKO,gBAAgB,CAAC,OAAwB;QAC/C,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAChC,OAAO,OAAO,CAAC;QACjB,CAAC;QACD,IAAI,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,SAAS,IAAI,OAAO,EAAE,CAAC;YACnE,MAAM,CAAC,GAAI,OAA2C,CAAC,OAAO,CAAC;YAC/D,IAAI,OAAO,CAAC,KAAK,QAAQ;gBAAE,OAAO,CAAC,CAAC;YACpC,IAAI,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,GAAG,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC,KAAK,QAAQ;gBAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;QAChF,CAAC;QACD,OAAO,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACjF,CAAC;IAKO,YAAY,CAAC,UAAkB;QACrC,MAAM,KAAK,GAA2B;YACpC,GAAG,EAAE,aAAa;YAClB,GAAG,EAAE,cAAc;YACnB,GAAG,EAAE,WAAW;YAChB,GAAG,EAAE,WAAW;YAChB,GAAG,EAAE,UAAU;YACf,GAAG,EAAE,sBAAsB;YAC3B,GAAG,EAAE,uBAAuB;YAC5B,GAAG,EAAE,qBAAqB;SAC3B,CAAC;QACF,OAAO,KAAK,CAAC,UAAU,CAAC,IAAI,eAAe,CAAC;IAC9C,CAAC;IAKD,aAAa,CAAC,SAAkB;QAE9B,IAAI,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,IAAI,MAAM,IAAI,SAAS,IAAI,OAAO,IAAI,SAAS,IAAI,MAAM,IAAI,SAAS,EAAE,CAAC;YACrH,OAAO,SAA2B,CAAC;QACrC,CAAC;QAGD,IACE,SAAS;YACT,OAAO,SAAS,KAAK,QAAQ;YAC7B,WAAW,IAAI,SAAS;YACxB,aAAa,IAAI,SAAS,EAC1B,CAAC;YACD,MAAM,aAAa,GAAG,SAAgE,CAAC;YACvF,MAAM,UAAU,GAAG,aAAa,CAAC,SAAS,EAAE,CAAC;YAC7C,MAAM,QAAQ,GAAG,aAAa,CAAC,WAAW,EAAE,CAAC;YAC7C,MAAM,OAAO,GACX,OAAO,QAAQ,KAAK,QAAQ;gBAC1B,CAAC,CAAC,QAAQ;gBACV,CAAC,CAAE,QAAgB,EAAE,OAAO,IAAI,uBAAuB,CAAC;YAE5D,OAAO,IAAI,CAAC,WAAW,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QAC/C,CAAC;QAGD,IAAI,SAAS,YAAY,KAAK,EAAE,CAAC;YAC/B,MAAM,UAAU,GAAI,SAAiB,CAAC,MAAM,IAAI,GAAG,CAAC;YACpD,MAAM,OAAO,GAAG,SAAS,CAAC,OAAO,IAAI,uBAAuB,CAAC;YAC7D,OAAO,IAAI,CAAC,WAAW,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QAC/C,CAAC;QAGD,OAAO,IAAI,CAAC,WAAW,CAAC,GAAG,EAAE,uBAAuB,CAAC,CAAC;IACxD,CAAC;CACF,CAAA;AAzFY,gCAAU;qBAAV,UAAU;IADtB,IAAA,mBAAU,GAAE;GACA,UAAU,CAyFtB"}

package/dist/utils/hash-verification.utils.d.ts

@@ -0,0 +1,35 @@
+export interface HashVerificationConfig {
+    algorithm?: string;
+    secret?: string;
+    encoding?: 'hex' | 'base64';
+    normalizer?: 'email' | 'digits';
+    keyDerivation?: 'none' | 'sha256';
+}
+export interface HashVerificationConfigMap {
+    default?: HashVerificationConfig;
+    profiles?: Record<string, HashVerificationConfig>;
+    [key: string]: HashVerificationConfig | Record<string, HashVerificationConfig> | undefined;
+}
+export declare function hashValue(value: string, config?: HashVerificationConfig | null, options?: {
+    normalizer?: (s: string) => string;
+    fallbackEnvKey?: string;
+}): string;
+export declare function compareValue(plain: string, storedHash: string, config?: HashVerificationConfig | null, options?: {
+    normalizer?: (s: string) => string;
+    fallbackEnvKey?: string;
+}): boolean;
+export declare const emailNormalizer: (s: string) => string;
+export declare const digitsNormalizer: (s: string) => string;
+export declare const BUILT_IN_NORMALIZERS: Record<string, (s: string) => string>;
+export declare function getProfileConfig(key: string, configMap: HashVerificationConfigMap | null | undefined): HashVerificationConfig | null;
+export declare function hashByKey(key: string, value: string, configMap: HashVerificationConfigMap | null | undefined): string;
+export declare function compareByKey(key: string, plain: string, storedHash: string, configMap: HashVerificationConfigMap | null | undefined): boolean;
+export declare function hashEmail(email: string, config?: HashVerificationConfig | null): string;
+export declare function compareEmail(plainEmail: string, storedHash: string, config?: HashVerificationConfig | null): boolean;
+export interface LookupHashOptions {
+    keyDerivation?: 'none' | 'sha256';
+    normalizer?: (s: string) => string;
+    fallbackEnvKey?: string;
+}
+export declare function lookupHash(value: string, secret?: string | null, options?: LookupHashOptions): string;
+export declare function compareLookupHash(plain: string, storedHash: string, secret?: string | null, options?: LookupHashOptions): boolean;

package/dist/utils/hash-verification.utils.js

@@ -0,0 +1,133 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.BUILT_IN_NORMALIZERS = exports.digitsNormalizer = exports.emailNormalizer = void 0;
+exports.hashValue = hashValue;
+exports.compareValue = compareValue;
+exports.getProfileConfig = getProfileConfig;
+exports.hashByKey = hashByKey;
+exports.compareByKey = compareByKey;
+exports.hashEmail = hashEmail;
+exports.compareEmail = compareEmail;
+exports.lookupHash = lookupHash;
+exports.compareLookupHash = compareLookupHash;
+const crypto = require("crypto");
+const crypto_utils_1 = require("./crypto.utils");
+const DEFAULT_ALGORITHM = 'sha256';
+const DEFAULT_ENCODING = 'hex';
+function resolveSecret(config, fallbackEnv) {
+    const envKey = fallbackEnv ?? 'HASH_VERIFICATION_SECRET';
+    const secret = config?.secret ?? (typeof process !== 'undefined' ? process.env[envKey] : undefined);
+    if (!secret || typeof secret !== 'string') {
+        throw new Error(`Hash secret is required. Set hashVerification.*.secret in application.yml or ${envKey} env.`);
+    }
+    return secret;
+}
+function hashValue(value, config, options) {
+    if (value == null || typeof value !== 'string') {
+        throw new Error('value must be a non-empty string');
+    }
+    const raw = options?.normalizer ? options.normalizer(value) : value;
+    if (!raw)
+        throw new Error('value is empty after normalizer');
+    const secret = resolveSecret(config, options?.fallbackEnvKey);
+    const algorithm = config?.algorithm ?? DEFAULT_ALGORITHM;
+    const encoding = config?.encoding ?? DEFAULT_ENCODING;
+    const keyDerivation = config?.keyDerivation ?? 'none';
+    const hmacKey = keyDerivation === 'sha256' ? (0, crypto_utils_1.deriveKeySha256)(secret) : secret;
+    const hmac = crypto.createHmac(algorithm, hmacKey);
+    hmac.update(raw);
+    return hmac.digest(encoding);
+}
+function compareValue(plain, storedHash, config, options) {
+    if (!storedHash || plain == null)
+        return false;
+    try {
+        const computed = hashValue(plain, config, options);
+        const encoding = config?.encoding ?? DEFAULT_ENCODING;
+        const a = Buffer.from(computed, encoding);
+        const b = Buffer.from(storedHash, encoding);
+        if (a.length !== b.length)
+            return false;
+        return crypto.timingSafeEqual(a, b);
+    }
+    catch {
+        return false;
+    }
+}
+const emailNormalizer = (s) => s.trim().toLowerCase();
+exports.emailNormalizer = emailNormalizer;
+const digitsNormalizer = (s) => s.replace(/\D/g, '');
+exports.digitsNormalizer = digitsNormalizer;
+exports.BUILT_IN_NORMALIZERS = {
+    email: exports.emailNormalizer,
+    digits: exports.digitsNormalizer,
+};
+function getProfileConfig(key, configMap) {
+    if (!configMap || typeof configMap !== 'object')
+        return null;
+    if (key === 'profiles')
+        return null;
+    if (key === 'default')
+        return configMap.default ?? null;
+    const profiles = configMap.profiles;
+    if (profiles && typeof profiles[key] === 'object')
+        return profiles[key];
+    const root = configMap[key];
+    if (root && typeof root === 'object' && !('default' in root) && !('profiles' in root))
+        return root;
+    if (configMap.default)
+        return configMap.default;
+    return null;
+}
+function hashByKey(key, value, configMap) {
+    const config = getProfileConfig(key, configMap);
+    const normalizerName = config?.normalizer;
+    const normalizer = normalizerName ? exports.BUILT_IN_NORMALIZERS[normalizerName] : undefined;
+    const fallbackEnv = key === 'email' ? 'EMAIL_HASH_SECRET' : 'HASH_VERIFICATION_SECRET';
+    return hashValue(value, config ?? undefined, {
+        normalizer,
+        fallbackEnvKey: fallbackEnv,
+    });
+}
+function compareByKey(key, plain, storedHash, configMap) {
+    const config = getProfileConfig(key, configMap);
+    const normalizerName = config?.normalizer;
+    const normalizer = normalizerName ? exports.BUILT_IN_NORMALIZERS[normalizerName] : undefined;
+    const fallbackEnv = key === 'email' ? 'EMAIL_HASH_SECRET' : 'HASH_VERIFICATION_SECRET';
+    return compareValue(plain, storedHash, config ?? undefined, {
+        normalizer,
+        fallbackEnvKey: fallbackEnv,
+    });
+}
+function hashEmail(email, config) {
+    return hashValue(email, config, { normalizer: exports.emailNormalizer, fallbackEnvKey: 'EMAIL_HASH_SECRET' });
+}
+function compareEmail(plainEmail, storedHash, config) {
+    return compareValue(plainEmail, storedHash, config, {
+        normalizer: exports.emailNormalizer,
+        fallbackEnvKey: 'EMAIL_HASH_SECRET',
+    });
+}
+function lookupHash(value, secret, options = {}) {
+    const keyDerivation = options.keyDerivation ?? 'none';
+    const config = {
+        secret: secret ?? undefined,
+        keyDerivation: keyDerivation === 'sha256' ? 'sha256' : 'none',
+    };
+    return hashValue(value, config, {
+        normalizer: options.normalizer,
+        fallbackEnvKey: options.fallbackEnvKey ?? 'HASH_VERIFICATION_SECRET',
+    });
+}
+function compareLookupHash(plain, storedHash, secret, options = {}) {
+    const keyDerivation = options.keyDerivation ?? 'none';
+    const config = {
+        secret: secret ?? undefined,
+        keyDerivation: keyDerivation === 'sha256' ? 'sha256' : 'none',
+    };
+    return compareValue(plain, storedHash, config, {
+        normalizer: options.normalizer,
+        fallbackEnvKey: options.fallbackEnvKey ?? 'HASH_VERIFICATION_SECRET',
+    });
+}
+//# sourceMappingURL=hash-verification.utils.js.map

package/dist/utils/hash-verification.utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hash-verification.utils.js","sourceRoot":"","sources":["../../src/utils/hash-verification.utils.ts"],"names":[],"mappings":";;;AA4EA,8BAoBC;AAUD,oCAiBC;AAkBD,4CAcC;AAkBD,8BAaC;AAKD,oCAcC;AAOD,8BAKC;AAKD,oCASC;AAgBD,gCAcC;AAKD,8CAeC;AAzRD,iCAAiC;AACjC,iDAAiD;AA4CjD,MAAM,iBAAiB,GAAG,QAAQ,CAAC;AACnC,MAAM,gBAAgB,GAAqB,KAAK,CAAC;AAEjD,SAAS,aAAa,CAAC,MAAsC,EAAE,WAAoB;IACjF,MAAM,MAAM,GAAG,WAAW,IAAI,0BAA0B,CAAC;IACzD,MAAM,MAAM,GAAG,MAAM,EAAE,MAAM,IAAI,CAAC,OAAO,OAAO,KAAK,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IACpG,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;QAC1C,MAAM,IAAI,KAAK,CACb,gFAAgF,MAAM,OAAO,CAC9F,CAAC;IACJ,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAmBD,SAAgB,SAAS,CACvB,KAAa,EACb,MAAsC,EACtC,OAAyE;IAEzE,IAAI,KAAK,IAAI,IAAI,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC/C,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;IACtD,CAAC;IACD,MAAM,GAAG,GAAG,OAAO,EAAE,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;IACpE,IAAI,CAAC,GAAG;QAAE,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;IAE7D,MAAM,MAAM,GAAG,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,cAAc,CAAC,CAAC;IAC9D,MAAM,SAAS,GAAG,MAAM,EAAE,SAAS,IAAI,iBAAiB,CAAC;IACzD,MAAM,QAAQ,GAAG,MAAM,EAAE,QAAQ,IAAI,gBAAgB,CAAC;IACtD,MAAM,aAAa,GAAG,MAAM,EAAE,aAAa,IAAI,MAAM,CAAC;IACtD,MAAM,OAAO,GACX,aAAa,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAA,8BAAe,EAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;IAChE,MAAM,IAAI,GAAG,MAAM,CAAC,UAAU,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;IACnD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IACjB,OAAO,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;AAC/B,CAAC;AAUD,SAAgB,YAAY,CAC1B,KAAa,EACb,UAAkB,EAClB,MAAsC,EACtC,OAAyE;IAEzE,IAAI,CAAC,UAAU,IAAI,KAAK,IAAI,IAAI;QAAE,OAAO,KAAK,CAAC;IAC/C,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QACnD,MAAM,QAAQ,GAAG,MAAM,EAAE,QAAQ,IAAI,gBAAgB,CAAC;QACtD,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAC1C,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;QAC5C,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;YAAE,OAAO,KAAK,CAAC;QACxC,OAAO,MAAM,CAAC,eAAe,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACtC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAGM,MAAM,eAAe,GAAG,CAAC,CAAS,EAAU,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;AAAhE,QAAA,eAAe,mBAAiD;AAGtE,MAAM,gBAAgB,GAAG,CAAC,CAAS,EAAU,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AAA/D,QAAA,gBAAgB,oBAA+C;AAG/D,QAAA,oBAAoB,GAA0C;IACzE,KAAK,EAAE,uBAAe;IACtB,MAAM,EAAE,wBAAgB;CACzB,CAAC;AAMF,SAAgB,gBAAgB,CAC9B,GAAW,EACX,SAAuD;IAEvD,IAAI,CAAC,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IAC7D,IAAI,GAAG,KAAK,UAAU;QAAE,OAAO,IAAI,CAAC;IACpC,IAAI,GAAG,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC,OAAO,IAAI,IAAI,CAAC;IACxD,MAAM,QAAQ,GAAI,SAAiB,CAAC,QAAQ,CAAC;IAC7C,IAAI,QAAQ,IAAI,OAAO,QAAQ,CAAC,GAAG,CAAC,KAAK,QAAQ;QAAE,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC;IACxE,MAAM,IAAI,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;IAC5B,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,CAAC,CAAC,SAAS,IAAI,IAAI,CAAC,IAAI,CAAC,CAAC,UAAU,IAAI,IAAI,CAAC;QACnF,OAAO,IAA8B,CAAC;IACxC,IAAI,SAAS,CAAC,OAAO;QAAE,OAAO,SAAS,CAAC,OAAO,CAAC;IAChD,OAAO,IAAI,CAAC;AACd,CAAC;AAkBD,SAAgB,SAAS,CACvB,GAAW,EACX,KAAa,EACb,SAAuD;IAEvD,MAAM,MAAM,GAAG,gBAAgB,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAChD,MAAM,cAAc,GAAG,MAAM,EAAE,UAAU,CAAC;IAC1C,MAAM,UAAU,GAAG,cAAc,CAAC,CAAC,CAAC,4BAAoB,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACrF,MAAM,WAAW,GAAG,GAAG,KAAK,OAAO,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,0BAA0B,CAAC;IACvF,OAAO,SAAS,CAAC,KAAK,EAAE,MAAM,IAAI,SAAS,EAAE;QAC3C,UAAU;QACV,cAAc,EAAE,WAAW;KAC5B,CAAC,CAAC;AACL,CAAC;AAKD,SAAgB,YAAY,CAC1B,GAAW,EACX,KAAa,EACb,UAAkB,EAClB,SAAuD;IAEvD,MAAM,MAAM,GAAG,gBAAgB,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;IAChD,MAAM,cAAc,GAAG,MAAM,EAAE,UAAU,CAAC;IAC1C,MAAM,UAAU,GAAG,cAAc,CAAC,CAAC,CAAC,4BAAoB,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACrF,MAAM,WAAW,GAAG,GAAG,KAAK,OAAO,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,0BAA0B,CAAC;IACvF,OAAO,YAAY,CAAC,KAAK,EAAE,UAAU,EAAE,MAAM,IAAI,SAAS,EAAE;QAC1D,UAAU;QACV,cAAc,EAAE,WAAW;KAC5B,CAAC,CAAC;AACL,CAAC;AAOD,SAAgB,SAAS,CACvB,KAAa,EACb,MAAsC;IAEtC,OAAO,SAAS,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE,UAAU,EAAE,uBAAe,EAAE,cAAc,EAAE,mBAAmB,EAAE,CAAC,CAAC;AACxG,CAAC;AAKD,SAAgB,YAAY,CAC1B,UAAkB,EAClB,UAAkB,EAClB,MAAsC;IAEtC,OAAO,YAAY,CAAC,UAAU,EAAE,UAAU,EAAE,MAAM,EAAE;QAClD,UAAU,EAAE,uBAAe;QAC3B,cAAc,EAAE,mBAAmB;KACpC,CAAC,CAAC;AACL,CAAC;AAgBD,SAAgB,UAAU,CACxB,KAAa,EACb,MAAsB,EACtB,UAA6B,EAAE;IAE/B,MAAM,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,MAAM,CAAC;IACtD,MAAM,MAAM,GAA2B;QACrC,MAAM,EAAE,MAAM,IAAI,SAAS;QAC3B,aAAa,EAAE,aAAa,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM;KAC9D,CAAC;IACF,OAAO,SAAS,CAAC,KAAK,EAAE,MAAM,EAAE;QAC9B,UAAU,EAAE,OAAO,CAAC,UAAU;QAC9B,cAAc,EAAE,OAAO,CAAC,cAAc,IAAI,0BAA0B;KACrE,CAAC,CAAC;AACL,CAAC;AAKD,SAAgB,iBAAiB,CAC/B,KAAa,EACb,UAAkB,EAClB,MAAsB,EACtB,UAA6B,EAAE;IAE/B,MAAM,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,MAAM,CAAC;IACtD,MAAM,MAAM,GAA2B;QACrC,MAAM,EAAE,MAAM,IAAI,SAAS;QAC3B,aAAa,EAAE,aAAa,KAAK,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM;KAC9D,CAAC;IACF,OAAO,YAAY,CAAC,KAAK,EAAE,UAAU,EAAE,MAAM,EAAE;QAC7C,UAAU,EAAE,OAAO,CAAC,UAAU;QAC9B,cAAc,EAAE,OAAO,CAAC,cAAc,IAAI,0BAA0B;KACrE,CAAC,CAAC;AACL,CAAC"}

package/dist/utils/logger.helpers.d.ts

@@ -0,0 +1,71 @@
+import { LoggerService } from '@nestjs/common';
+export interface LogContext {
+    userId?: number | string;
+    requestId?: string;
+    ipAddress?: string;
+    userAgent?: string;
+    method?: string;
+    url?: string;
+    [key: string]: any;
+}
+export declare enum LogLevel {
+    ERROR = "error",
+    WARN = "warn",
+    LOG = "log",
+    DEBUG = "debug",
+    VERBOSE = "verbose"
+}
+export declare const LOG_LEVEL_ORDER: Record<string, number>;
+export type LogLevelName = keyof typeof LOG_LEVEL_ORDER;
+export declare function isLevelEnabled(messageLevel: LogLevelName | string, minLevel: LogLevelName | string): boolean;
+export interface ILogWriter {
+    write(level: 'log' | 'warn' | 'error' | 'debug' | 'verbose', message: string, context?: string): void;
+}
+export declare class ConsoleLogWriter implements ILogWriter {
+    private logger;
+    constructor(context?: string);
+    write(level: 'log' | 'warn' | 'error' | 'debug' | 'verbose', message: string, context?: string): void;
+    setContext(context: string): void;
+}
+export interface FileLogWriterOptions {
+    logDir?: string;
+    fileLogLevel?: 'log' | 'warn' | 'error';
+}
+export declare class FileLogWriter implements ILogWriter {
+    private logDir;
+    private fileLogLevel;
+    constructor(options?: FileLogWriterOptions);
+    private ensureLogDirectory;
+    private getLogFilePath;
+    write(level: 'log' | 'warn' | 'error' | 'debug' | 'verbose', message: string, context?: string): void;
+}
+export interface LoggerOptions {
+    logLevel?: LogLevelName;
+    enableFileLogging?: boolean;
+    logDir?: string;
+    fileLogLevel?: 'log' | 'warn' | 'error';
+    enableConsoleLogging?: boolean;
+}
+export declare class LoggerHelpers implements LoggerService {
+    private contextName;
+    private consoleWriter?;
+    private fileWriter?;
+    private minLevel;
+    constructor(context?: string, consoleWriter?: ILogWriter, fileWriter?: ILogWriter, options?: LoggerOptions);
+    isLevelEnabled(level: LogLevelName): boolean;
+    setContext(context: string): void;
+    log(message: string, context?: LogContext): void;
+    error(message: string, trace?: string | Error, context?: LogContext): void;
+    warn(message: string, context?: LogContext): void;
+    debug(message: string, context?: LogContext): void;
+    verbose(message: string, context?: LogContext): void;
+    logRequest(method: string, url: string, context?: LogContext): void;
+    logResponse(method: string, url: string, statusCode: number, duration?: number, context?: LogContext): void;
+    logQuery(query: string, params?: any[], context?: LogContext): void;
+    logBusiness(action: string, details?: any, context?: LogContext): void;
+    logSecurity(event: string, details?: any, context?: LogContext): void;
+    logPerformance(operation: string, duration: number, context?: LogContext): void;
+    private formatMessage;
+    logStructured(level: LogLevel, message: string, data?: any, context?: LogContext): void;
+}
+export declare function createLogger(context: string, options?: LoggerOptions): LoggerHelpers;