npm - @zetra/citrineos-certificates - Versions diffs - 1.8.3-fork.1 - Mend

@zetra/citrineos-certificates 1.8.3-fork.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (19) hide show

package/dist/index.d.ts +5 -0
package/dist/index.js +8 -0
package/dist/index.js.map +1 -0
package/dist/module/2.0.1/MessageApi.d.ts +35 -0
package/dist/module/2.0.1/MessageApi.js +108 -0
package/dist/module/2.0.1/MessageApi.js.map +1 -0
package/dist/module/DataApi.d.ts +72 -0
package/dist/module/DataApi.js +321 -0
package/dist/module/DataApi.js.map +1 -0
package/dist/module/installCertificateHelperService.d.ts +49 -0
package/dist/module/installCertificateHelperService.js +282 -0
package/dist/module/installCertificateHelperService.js.map +1 -0
package/dist/module/interface.d.ts +5 -0
package/dist/module/interface.js +5 -0
package/dist/module/interface.js.map +1 -0
package/dist/module/module.d.ts +93 -0
package/dist/module/module.js +429 -0
package/dist/module/module.js.map +1 -0
package/package.json +28 -0

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export { CertificatesOcpp201Api } from './module/2.0.1/MessageApi.js';
+export { CertificatesDataApi } from './module/DataApi.js';
+export type { ICertificatesModuleApi } from './module/interface.js';
+export { CertificatesModule } from './module/module.js';
+export { InstallCertificateHelperService } from './module/installCertificateHelperService.js';

package/dist/index.js ADDED Viewed

@@ -0,0 +1,8 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+export { CertificatesOcpp201Api } from './module/2.0.1/MessageApi.js';
+export { CertificatesDataApi } from './module/DataApi.js';
+export { CertificatesModule } from './module/module.js';
+export { InstallCertificateHelperService } from './module/installCertificateHelperService.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AAEtC,OAAO,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AACtE,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAE1D,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AACxD,OAAO,EAAE,+BAA+B,EAAE,MAAM,6CAA6C,CAAC"}

package/dist/module/2.0.1/MessageApi.d.ts ADDED Viewed

@@ -0,0 +1,35 @@
+import type { CallAction, IMessageConfirmation } from '@citrineos/base';
+import { AbstractModuleApi, OCPP2_0_1 } from '@citrineos/base';
+import type { FastifyInstance } from 'fastify';
+import type { ILogObj } from 'tslog';
+import { Logger } from 'tslog';
+import type { ICertificatesModuleApi } from '../interface.js';
+import { CertificatesModule } from '../module.js';
+/**
+ * Server API for the Certificates module.
+ */
+export declare class CertificatesOcpp201Api extends AbstractModuleApi<CertificatesModule> implements ICertificatesModuleApi {
+    /**
+     * Constructs a new instance of the class.
+     *
+     * @param {CertificatesModule} certificatesModule - The Certificates module.
+     * @param {FastifyInstance} server - The Fastify server instance.
+     * @param {Logger<ILogObj>} [logger] - The logger instance.
+     */
+    constructor(certificatesModule: CertificatesModule, server: FastifyInstance, logger?: Logger<ILogObj>);
+    /**
+     * Interface implementation
+     */
+    certificateSigned(identifier: string[], request: OCPP2_0_1.CertificateSignedRequest, callbackUrl?: string, tenantId?: number): Promise<IMessageConfirmation[]>;
+    installCertificate(identifier: string[], request: OCPP2_0_1.InstallCertificateRequest, callbackUrl?: string, tenantId?: number): Promise<IMessageConfirmation[]>;
+    getInstalledCertificateIds(identifier: string[], request: OCPP2_0_1.GetInstalledCertificateIdsRequest, callbackUrl?: string, tenantId?: number): Promise<IMessageConfirmation[]>;
+    deleteCertificate(identifier: string[], request: OCPP2_0_1.DeleteCertificateRequest, callbackUrl?: string, tenantId?: number): Promise<IMessageConfirmation[]>;
+    /**
+     * Overrides superclass method to generate the URL path based on the input {@link CallAction}
+     * and the module's endpoint prefix configuration.
+     *
+     * @param {CallAction} input - The input {@link CallAction}.
+     * @return {string} - The generated URL path.
+     */
+    protected _toMessagePath(input: CallAction): string;
+}

package/dist/module/2.0.1/MessageApi.js ADDED Viewed

@@ -0,0 +1,108 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { AbstractModuleApi, AsMessageEndpoint, DEFAULT_TENANT_ID, OCPP2_0_1, OCPP2_0_1_CallAction, OCPPVersion, } from '@citrineos/base';
+import { Logger } from 'tslog';
+import { CertificatesModule } from '../module.js';
+import { DeleteCertificateAttempt } from '@citrineos/data';
+/**
+ * Server API for the Certificates module.
+ */
+export class CertificatesOcpp201Api extends AbstractModuleApi {
+    /**
+     * Constructs a new instance of the class.
+     *
+     * @param {CertificatesModule} certificatesModule - The Certificates module.
+     * @param {FastifyInstance} server - The Fastify server instance.
+     * @param {Logger<ILogObj>} [logger] - The logger instance.
+     */
+    constructor(certificatesModule, server, logger) {
+        super(certificatesModule, server, OCPPVersion.OCPP2_0_1, logger);
+    }
+    /**
+     * Interface implementation
+     */
+    certificateSigned(identifier, request, callbackUrl, tenantId = DEFAULT_TENANT_ID) {
+        const results = identifier.map((id) => this._module.sendCall(id, tenantId, OCPPVersion.OCPP2_0_1, OCPP2_0_1_CallAction.CertificateSigned, request, callbackUrl));
+        return Promise.all(results);
+    }
+    installCertificate(identifier, request, callbackUrl, tenantId = DEFAULT_TENANT_ID) {
+        const results = identifier.map(async (id) => {
+            await this._module.installCertificateHelperService.prepareToInstallCertificate(tenantId, id, request.certificate, request.certificateType);
+            return this._module.sendCall(id, tenantId, OCPPVersion.OCPP2_0_1, OCPP2_0_1_CallAction.InstallCertificate, request, callbackUrl);
+        });
+        return Promise.all(results);
+    }
+    getInstalledCertificateIds(identifier, request, callbackUrl, tenantId = DEFAULT_TENANT_ID) {
+        const results = identifier.map((id) => this._module.sendCall(id, tenantId, OCPPVersion.OCPP2_0_1, OCPP2_0_1_CallAction.GetInstalledCertificateIds, request, callbackUrl));
+        return Promise.all(results);
+    }
+    deleteCertificate(identifier, request, callbackUrl, tenantId = DEFAULT_TENANT_ID) {
+        const results = identifier.map(async (id) => {
+            const certificateHashData = request.certificateHashData;
+            const existingPendingDeleteCertificateAttempt = await this._module.deleteCertificateAttemptRepository.readOnlyOneByQuery(tenantId, {
+                where: {
+                    stationId: id,
+                    hashAlgorithm: certificateHashData.hashAlgorithm,
+                    issuerNameHash: certificateHashData.issuerNameHash,
+                    issuerKeyHash: certificateHashData.issuerKeyHash,
+                    serialNumber: certificateHashData.serialNumber,
+                    status: null,
+                },
+            });
+            if (!existingPendingDeleteCertificateAttempt) {
+                const deleteCertificateAttempt = new DeleteCertificateAttempt();
+                deleteCertificateAttempt.stationId = id;
+                deleteCertificateAttempt.hashAlgorithm = certificateHashData.hashAlgorithm;
+                deleteCertificateAttempt.issuerNameHash = certificateHashData.issuerNameHash;
+                deleteCertificateAttempt.issuerKeyHash = certificateHashData.issuerKeyHash;
+                deleteCertificateAttempt.serialNumber = certificateHashData.serialNumber;
+                await deleteCertificateAttempt.save();
+            }
+            return this._module.sendCall(id, tenantId, OCPPVersion.OCPP2_0_1, OCPP2_0_1_CallAction.DeleteCertificate, request, callbackUrl);
+        });
+        return Promise.all(results);
+    }
+    /**
+     * Overrides superclass method to generate the URL path based on the input {@link CallAction}
+     * and the module's endpoint prefix configuration.
+     *
+     * @param {CallAction} input - The input {@link CallAction}.
+     * @return {string} - The generated URL path.
+     */
+    _toMessagePath(input) {
+        const endpointPrefix = this._module.config.modules.certificates?.endpointPrefix;
+        return super._toMessagePath(input, endpointPrefix);
+    }
+}
+__decorate([
+    AsMessageEndpoint(OCPP2_0_1_CallAction.CertificateSigned, OCPP2_0_1.CertificateSignedRequestSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Array, Object, String, Number]),
+    __metadata("design:returntype", Promise)
+], CertificatesOcpp201Api.prototype, "certificateSigned", null);
+__decorate([
+    AsMessageEndpoint(OCPP2_0_1_CallAction.InstallCertificate, OCPP2_0_1.InstallCertificateRequestSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Array, Object, String, Number]),
+    __metadata("design:returntype", Promise)
+], CertificatesOcpp201Api.prototype, "installCertificate", null);
+__decorate([
+    AsMessageEndpoint(OCPP2_0_1_CallAction.GetInstalledCertificateIds, OCPP2_0_1.GetInstalledCertificateIdsRequestSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Array, Object, String, Number]),
+    __metadata("design:returntype", Promise)
+], CertificatesOcpp201Api.prototype, "getInstalledCertificateIds", null);
+__decorate([
+    AsMessageEndpoint(OCPP2_0_1_CallAction.DeleteCertificate, OCPP2_0_1.DeleteCertificateRequestSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Array, Object, String, Number]),
+    __metadata("design:returntype", Promise)
+], CertificatesOcpp201Api.prototype, "deleteCertificate", null);
+//# sourceMappingURL=MessageApi.js.map

package/dist/module/2.0.1/MessageApi.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"MessageApi.js","sourceRoot":"","sources":["../../../src/module/2.0.1/MessageApi.ts"],"names":[],"mappings":";;;;;;;;;AAIA,OAAO,EACL,iBAAiB,EACjB,iBAAiB,EACjB,iBAAiB,EACjB,SAAS,EACT,oBAAoB,EACpB,WAAW,GACZ,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EAAE,MAAM,EAAE,MAAM,OAAO,CAAC;AAE/B,OAAO,EAAE,kBAAkB,EAAE,MAAM,cAAc,CAAC;AAClD,OAAO,EAAE,wBAAwB,EAAE,MAAM,iBAAiB,CAAC;AAE3D;;GAEG;AACH,MAAM,OAAO,sBACX,SAAQ,iBAAqC;IAG7C;;;;;;OAMG;IACH,YACE,kBAAsC,EACtC,MAAuB,EACvB,MAAwB;QAExB,KAAK,CAAC,kBAAkB,EAAE,MAAM,EAAE,WAAW,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IACnE,CAAC;IAED;;OAEG;IAMH,iBAAiB,CACf,UAAoB,EACpB,OAA2C,EAC3C,WAAoB,EACpB,WAAmB,iBAAiB;QAEpC,MAAM,OAAO,GAAoC,UAAU,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CACrE,IAAI,CAAC,OAAO,CAAC,QAAQ,CACnB,EAAE,EACF,QAAQ,EACR,WAAW,CAAC,SAAS,EACrB,oBAAoB,CAAC,iBAAiB,EACtC,OAAO,EACP,WAAW,CACZ,CACF,CAAC;QACF,OAAO,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAC9B,CAAC;IAMD,kBAAkB,CAChB,UAAoB,EACpB,OAA4C,EAC5C,WAAoB,EACpB,WAAmB,iBAAiB;QAEpC,MAAM,OAAO,GAAoC,UAAU,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,EAAE,EAAE;YAC3E,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,2BAA2B,CAC5E,QAAQ,EACR,EAAE,EACF,OAAO,CAAC,WAAW,EACnB,OAAO,CAAC,eAAe,CACxB,CAAC;YACF,OAAO,IAAI,CAAC,OAAO,CAAC,QAAQ,CAC1B,EAAE,EACF,QAAQ,EACR,WAAW,CAAC,SAAS,EACrB,oBAAoB,CAAC,kBAAkB,EACvC,OAAO,EACP,WAAW,CACZ,CAAC;QACJ,CAAC,CAAC,CAAC;QACH,OAAO,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAC9B,CAAC;IAMD,0BAA0B,CACxB,UAAoB,EACpB,OAAoD,EACpD,WAAoB,EACpB,WAAmB,iBAAiB;QAEpC,MAAM,OAAO,GAAoC,UAAU,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CACrE,IAAI,CAAC,OAAO,CAAC,QAAQ,CACnB,EAAE,EACF,QAAQ,EACR,WAAW,CAAC,SAAS,EACrB,oBAAoB,CAAC,0BAA0B,EAC/C,OAAO,EACP,WAAW,CACZ,CACF,CAAC;QACF,OAAO,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAC9B,CAAC;IAMD,iBAAiB,CACf,UAAoB,EACpB,OAA2C,EAC3C,WAAoB,EACpB,WAAmB,iBAAiB;QAEpC,MAAM,OAAO,GAAoC,UAAU,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,EAAE,EAAE;YAC3E,MAAM,mBAAmB,GAAG,OAAO,CAAC,mBAAmB,CAAC;YACxD,MAAM,uCAAuC,GAC3C,MAAM,IAAI,CAAC,OAAO,CAAC,kCAAkC,CAAC,kBAAkB,CAAC,QAAQ,EAAE;gBACjF,KAAK,EAAE;oBACL,SAAS,EAAE,EAAE;oBACb,aAAa,EAAE,mBAAmB,CAAC,aAAa;oBAChD,cAAc,EAAE,mBAAmB,CAAC,cAAc;oBAClD,aAAa,EAAE,mBAAmB,CAAC,aAAa;oBAChD,YAAY,EAAE,mBAAmB,CAAC,YAAY;oBAC9C,MAAM,EAAE,IAAI;iBACb;aACF,CAAC,CAAC;YACL,IAAI,CAAC,uCAAuC,EAAE,CAAC;gBAC7C,MAAM,wBAAwB,GAAG,IAAI,wBAAwB,EAAE,CAAC;gBAChE,wBAAwB,CAAC,SAAS,GAAG,EAAE,CAAC;gBACxC,wBAAwB,CAAC,aAAa,GAAG,mBAAmB,CAAC,aAAa,CAAC;gBAC3E,wBAAwB,CAAC,cAAc,GAAG,mBAAmB,CAAC,cAAc,CAAC;gBAC7E,wBAAwB,CAAC,aAAa,GAAG,mBAAmB,CAAC,aAAa,CAAC;gBAC3E,wBAAwB,CAAC,YAAY,GAAG,mBAAmB,CAAC,YAAY,CAAC;gBACzE,MAAM,wBAAwB,CAAC,IAAI,EAAE,CAAC;YACxC,CAAC;YACD,OAAO,IAAI,CAAC,OAAO,CAAC,QAAQ,CAC1B,EAAE,EACF,QAAQ,EACR,WAAW,CAAC,SAAS,EACrB,oBAAoB,CAAC,iBAAiB,EACtC,OAAO,EACP,WAAW,CACZ,CAAC;QACJ,CAAC,CAAC,CAAC;QACH,OAAO,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAC9B,CAAC;IAED;;;;;;OAMG;IACO,cAAc,CAAC,KAAiB;QACxC,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,YAAY,EAAE,cAAc,CAAC;QAChF,OAAO,KAAK,CAAC,cAAc,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;IACrD,CAAC;CACF;AA9HC;IAJC,iBAAiB,CAChB,oBAAoB,CAAC,iBAAiB,EACtC,SAAS,CAAC,8BAA8B,CACzC;;;;+DAkBA;AAMD;IAJC,iBAAiB,CAChB,oBAAoB,CAAC,kBAAkB,EACvC,SAAS,CAAC,+BAA+B,CAC1C;;;;gEAwBA;AAMD;IAJC,iBAAiB,CAChB,oBAAoB,CAAC,0BAA0B,EAC/C,SAAS,CAAC,uCAAuC,CAClD;;;;wEAkBA;AAMD;IAJC,iBAAiB,CAChB,oBAAoB,CAAC,iBAAiB,EACtC,SAAS,CAAC,8BAA8B,CACzC;;;;+DAuCA"}

package/dist/module/DataApi.d.ts ADDED Viewed

@@ -0,0 +1,72 @@
+import { AbstractModuleApi, type IFileStorage, type IMessageConfirmation, type IMessageQuerystring, Namespace, OCPP1_6_Namespace, OCPP2_0_1_Namespace, type WebsocketServerConfig } from '@citrineos/base';
+import { Certificate, GenerateCertificateChainRequest, InstalledCertificate, InstallRootCertificateRequest, RegenerateExistingCertificate, type TenantQueryString, TlsCertificatesRequest, type UpdateTlsCertificateQueryString, UploadExistingCertificate } from '@citrineos/data';
+import type { FastifyInstance, FastifyRequest } from 'fastify';
+import type { ILogObj } from 'tslog';
+import { Logger } from 'tslog';
+import type { ICertificatesModuleApi } from './interface.js';
+import { CertificatesModule } from './module.js';
+/**
+ * Server API for the Certificates module.
+ */
+export declare class CertificatesDataApi extends AbstractModuleApi<CertificatesModule> implements ICertificatesModuleApi {
+    private readonly _websocketServersConfig;
+    private readonly _fileStorage;
+    /**
+     * Constructs a new instance of the class.
+     *
+     * @param {CertificatesModule} certificatesModule - The Certificates module.
+     * @param {FastifyInstance} server - The Fastify server instance.
+     * @param {IFileStorage} fileStorage - The fileStorage
+     * @param {WebsocketServerConfig[]} websocketServersConfig - Configuration for websocket servers
+     * @param {Logger<ILogObj>} [logger] - The logger instance.
+     */
+    constructor(certificatesModule: CertificatesModule, server: FastifyInstance, fileStorage: IFileStorage, websocketServersConfig: WebsocketServerConfig[], logger?: Logger<ILogObj>);
+    /**
+     * Data Endpoint Methods
+     */
+    putTlsCertificates(request: FastifyRequest<{
+        Body: TlsCertificatesRequest;
+        Querystring: UpdateTlsCertificateQueryString;
+    }>): Promise<void>;
+    /**
+     * This endpoint is used to create certificate chain, root CA, sub CA and leaf certificate
+     *
+     * @param request - GenerateRootCertificatesRequest
+     * @return Promise<Certificate[]> - An array of generated certificates
+     */
+    generateCertificateChain(request: FastifyRequest<{
+        Body: GenerateCertificateChainRequest;
+        Querystring: TenantQueryString;
+    }>): Promise<Certificate[]>;
+    installRootCertificate(request: FastifyRequest<{
+        Body: InstallRootCertificateRequest;
+    }>): Promise<IMessageConfirmation>;
+    /**
+     * Endpoint to upload an existing certificate that is already installed on a given station to the CSMS
+     * @param request - UploadExistingCertificateSchema
+     * @return Promise<InstalledCertificate> - the installed certificate record
+     */
+    uploadExistingCertificate(request: FastifyRequest<{
+        Body: UploadExistingCertificate;
+        Querystring: IMessageQuerystring;
+    }>): Promise<InstalledCertificate[]>;
+    /**
+     * Endpoint to regenerate an existing certificate that is already installed on a given station.
+     * Updates the InstalledCertificate record with the new certificate.
+     *
+     * @param request RegenerateInstalledCertificateSchema
+     * @return Promise<InstalledCertificate> - the updated installed certificate record
+     */
+    regenerateExistingCertificate(request: FastifyRequest<{
+        Body: RegenerateExistingCertificate;
+        Querystring: IMessageQuerystring;
+    }>): Promise<InstalledCertificate>;
+    /**
+     * Overrides superclass method to generate the URL path based on the input {@link Namespace}
+     * and the module's endpoint prefix configuration.
+     *
+     * @param {Namespace} input - The input {@link Namespace}.
+     * @return {string} - The generated URL path.
+     */
+    protected _toDataPath(input: OCPP2_0_1_Namespace | OCPP1_6_Namespace | Namespace): string;
+}

package/dist/module/DataApi.js ADDED Viewed

@@ -0,0 +1,321 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+import { AbstractModuleApi, AsDataEndpoint, DEFAULT_TENANT_ID, HttpMethod, IMessageQuerystringSchema, Namespace, OCPP1_6_Namespace, OCPP2_0_1, OCPP2_0_1_CallAction, OCPP2_0_1_Namespace, OCPPVersion, } from '@citrineos/base';
+import { Certificate, CountryNameEnumType, GenerateCertificateChainRequest, GenerateCertificateChainSchema, InstalledCertificate, InstallRootCertificateRequest, InstallRootCertificateSchema, RegenerateExistingCertificate, RegenerateInstalledCertificateSchema, SignatureAlgorithmEnumType, TenantQuerySchema, TlsCertificateSchema, TlsCertificatesRequest, UpdateTlsCertificateQuerySchema, UploadExistingCertificate, UploadExistingCertificateSchema, } from '@citrineos/data';
+import { generateCertificate } from '@citrineos/util';
+import jsrsasign from 'jsrsasign';
+import moment from 'moment';
+import { Logger } from 'tslog';
+import { CertificatesModule } from './module.js';
+import { PemType } from './installCertificateHelperService.js';
+/**
+ * Server API for the Certificates module.
+ */
+export class CertificatesDataApi extends AbstractModuleApi {
+    _websocketServersConfig;
+    _fileStorage;
+    /**
+     * Constructs a new instance of the class.
+     *
+     * @param {CertificatesModule} certificatesModule - The Certificates module.
+     * @param {FastifyInstance} server - The Fastify server instance.
+     * @param {IFileStorage} fileStorage - The fileStorage
+     * @param {WebsocketServerConfig[]} websocketServersConfig - Configuration for websocket servers
+     * @param {Logger<ILogObj>} [logger] - The logger instance.
+     */
+    constructor(certificatesModule, server, fileStorage, websocketServersConfig, logger) {
+        super(certificatesModule, server, OCPPVersion.OCPP2_0_1, logger);
+        this._fileStorage = fileStorage;
+        this._websocketServersConfig = websocketServersConfig;
+    }
+    /**
+     * Data Endpoint Methods
+     */
+    async putTlsCertificates(request) {
+        const serverId = request.query.id;
+        this._logger.info(`Receive update TLS certificates request for server ${serverId}`);
+        const certRequest = request.body;
+        const serverConfig = this._websocketServersConfig.find((config) => config.id === serverId);
+        if (!serverConfig) {
+            throw new Error(`websocketServer id ${serverId} does not exist.`);
+        }
+        else if (serverConfig && serverConfig.securityProfile < 2) {
+            throw new Error(`websocketServer ${serverId} is not tls or mtls server.`);
+        }
+        else if (serverConfig.securityProfile === 3 && !certRequest.subCAKey) {
+            throw new Error(`WebsocketServer ${serverId} is mtls server but subCAKey is missing.`);
+        }
+        const tlsKey = (await this._fileStorage.getFile(certRequest.privateKey)).toString();
+        let tlsCertificateChain = '';
+        for (const fileId of certRequest.certificateChain) {
+            tlsCertificateChain += (await this._fileStorage.getFile(fileId)).toString();
+        }
+        const rootCA = certRequest.rootCA
+            ? (await this._fileStorage.getFile(certRequest.rootCA)).toString()
+            : undefined;
+        const subCAKey = certRequest.subCAKey
+            ? (await this._fileStorage.getFile(certRequest.subCAKey)).toString()
+            : undefined;
+        this._module.installCertificateHelperService.updateCertificates(serverConfig, serverId, tlsKey, tlsCertificateChain, subCAKey, rootCA);
+    }
+    /**
+     * This endpoint is used to create certificate chain, root CA, sub CA and leaf certificate
+     *
+     * @param request - GenerateRootCertificatesRequest
+     * @return Promise<Certificate[]> - An array of generated certificates
+     */
+    async generateCertificateChain(request) {
+        this._logger.info(`Receiving generate certificate chain request ${JSON.stringify(request.body)}`);
+        const tenantId = request.query.tenantId;
+        const certRequest = request.body;
+        let certificateFromReq = new Certificate();
+        certificateFromReq.serialNumber = moment().valueOf();
+        certificateFromReq.keyLength = certRequest.keyLength ? certRequest.keyLength : 2048;
+        certificateFromReq.organizationName = certRequest.organizationName;
+        certificateFromReq.commonName = certRequest.commonName + ` ${PemType.Root}`;
+        if (certRequest.validBefore) {
+            certificateFromReq.validBefore = certRequest.validBefore;
+        }
+        else {
+            const defaultValidityDate = new Date();
+            defaultValidityDate.setFullYear(defaultValidityDate.getFullYear() + 1);
+            certificateFromReq.validBefore = defaultValidityDate.toISOString();
+        }
+        certificateFromReq.countryName = certRequest.countryName
+            ? certRequest.countryName
+            : CountryNameEnumType.US;
+        certificateFromReq.signatureAlgorithm = certRequest.signatureAlgorithm
+            ? certRequest.signatureAlgorithm
+            : SignatureAlgorithmEnumType.ECDSA;
+        certificateFromReq.isCA = true;
+        certificateFromReq.pathLen = certRequest.pathLen ? certRequest.pathLen : 1;
+        let responseBody;
+        if (certRequest.selfSigned) {
+            // Generate self-signed root CA certificate
+            const [rootCertificatePem, rootPrivateKeyPem] = generateCertificate(certificateFromReq, this._logger);
+            certificateFromReq =
+                await this._module.installCertificateHelperService.storeCertificateAndKey(tenantId, certificateFromReq, rootCertificatePem, rootPrivateKeyPem, PemType.Root, certRequest.filePath);
+            // Generate sub CA certificate
+            let subCertificate = new Certificate();
+            subCertificate.serialNumber = certificateFromReq.serialNumber + 1;
+            subCertificate.keyLength = certificateFromReq.keyLength;
+            subCertificate.organizationName = certificateFromReq.organizationName;
+            subCertificate.commonName = certRequest.commonName + ` ${PemType.SubCA}`;
+            subCertificate.validBefore = certificateFromReq.validBefore;
+            subCertificate.signedBy = certificateFromReq.id;
+            subCertificate.countryName = certificateFromReq.countryName;
+            subCertificate.signatureAlgorithm = certificateFromReq.signatureAlgorithm;
+            subCertificate.isCA = true;
+            subCertificate.pathLen = 0;
+            const [subCertificatePem, subPrivateKeyPem] = generateCertificate(subCertificate, this._logger, rootPrivateKeyPem, rootCertificatePem);
+            subCertificate = await this._module.installCertificateHelperService.storeCertificateAndKey(tenantId, subCertificate, subCertificatePem, subPrivateKeyPem, PemType.SubCA, certRequest.filePath);
+            // Generate leaf certificate
+            let leafCertificate = new Certificate();
+            leafCertificate.serialNumber = subCertificate.serialNumber + 1;
+            leafCertificate.keyLength = subCertificate.keyLength;
+            leafCertificate.organizationName = subCertificate.organizationName;
+            leafCertificate.commonName = certRequest.commonName;
+            leafCertificate.validBefore = subCertificate.validBefore;
+            leafCertificate.signedBy = subCertificate.id;
+            leafCertificate.countryName = subCertificate.countryName;
+            leafCertificate.signatureAlgorithm = subCertificate.signatureAlgorithm;
+            leafCertificate.isCA = false;
+            const [leafCertificatePem, leafPrivateKeyPem] = generateCertificate(leafCertificate, this._logger, subPrivateKeyPem, subCertificatePem);
+            leafCertificate = await this._module.installCertificateHelperService.storeCertificateAndKey(tenantId, leafCertificate, leafCertificatePem, leafPrivateKeyPem, PemType.Leaf, certRequest.filePath);
+            responseBody = [leafCertificate, subCertificate, certificateFromReq];
+        }
+        else {
+            // Generate sub CA certificate and private key signed by external CA server
+            // commonName should be a valid domain name
+            certificateFromReq.commonName = certRequest.commonName;
+            certificateFromReq.pathLen = 0;
+            const [certificatePem, privateKeyPem] = await this._module.installCertificateHelperService.generateSubCACertificateSignedByCAServer(certificateFromReq);
+            certificateFromReq =
+                await this._module.installCertificateHelperService.storeCertificateAndKey(tenantId, certificateFromReq, certificatePem, privateKeyPem, PemType.SubCA, certRequest.filePath);
+            // Generate leaf certificate
+            let leafCertificate = new Certificate();
+            leafCertificate.serialNumber = certificateFromReq.serialNumber + 1;
+            leafCertificate.keyLength = certificateFromReq.keyLength;
+            leafCertificate.organizationName = certificateFromReq.organizationName;
+            leafCertificate.commonName = certRequest.commonName;
+            leafCertificate.validBefore = certificateFromReq.validBefore;
+            leafCertificate.signedBy = certificateFromReq.id;
+            leafCertificate.countryName = certificateFromReq.countryName;
+            leafCertificate.signatureAlgorithm = certificateFromReq.signatureAlgorithm;
+            leafCertificate.isCA = false;
+            leafCertificate.pathLen = undefined;
+            const [leafCertificatePem, leafPrivateKeyPem] = generateCertificate(leafCertificate, this._logger, privateKeyPem, certificatePem);
+            leafCertificate = await this._module.installCertificateHelperService.storeCertificateAndKey(tenantId, leafCertificate, leafCertificatePem, leafPrivateKeyPem, PemType.Leaf, certRequest.filePath);
+            responseBody = [leafCertificate, certificateFromReq];
+        }
+        return responseBody;
+    }
+    async installRootCertificate(request) {
+        const installReq = request.body;
+        this._logger.info(`Installing ${installReq.certificateType} on charger ${installReq.stationId}`);
+        let rootCAPem;
+        if (installReq.fileId) {
+            rootCAPem = (await this._fileStorage.getFile(installReq.fileId)).toString();
+        }
+        else {
+            rootCAPem = await this._module.certificateAuthorityService.getRootCACertificateFromExternalCA(installReq.certificateType);
+        }
+        await this._module
+            .sendCall(installReq.stationId, installReq.tenantId, OCPPVersion.OCPP2_0_1, OCPP2_0_1_CallAction.InstallCertificate, {
+            certificateType: installReq.certificateType,
+            certificate: rootCAPem,
+        }, installReq.callbackUrl)
+            .then((confirmation) => {
+            if (!confirmation.success) {
+                throw new Error(`Send InstallCertificateRequest failed: ${confirmation.payload}`);
+            }
+            this._logger.debug('InstallCertificate confirmation sent:', confirmation);
+        });
+        return {
+            success: true,
+        };
+    }
+    /**
+     * Endpoint to upload an existing certificate that is already installed on a given station to the CSMS
+     * @param request - UploadExistingCertificateSchema
+     * @return Promise<InstalledCertificate> - the installed certificate record
+     */
+    async uploadExistingCertificate(request) {
+        const uploadExistingCertificate = request.body;
+        const messageQuerystring = request.query;
+        const tenantId = messageQuerystring.tenantId || DEFAULT_TENANT_ID;
+        const identifier = messageQuerystring.identifier;
+        const isIdentifierList = Array.isArray(identifier);
+        if (isIdentifierList) {
+            const promises = [];
+            for (const identifierElement of identifier) {
+                promises.push(this._module.installCertificateHelperService.handleUploadExistingCertificate(tenantId, identifierElement, uploadExistingCertificate, request.body.filePath));
+            }
+            return await Promise.all(promises);
+        }
+        else {
+            return [
+                await this._module.installCertificateHelperService.handleUploadExistingCertificate(tenantId, identifier, uploadExistingCertificate, request.body.filePath),
+            ];
+        }
+    }
+    /**
+     * Endpoint to regenerate an existing certificate that is already installed on a given station.
+     * Updates the InstalledCertificate record with the new certificate.
+     *
+     * @param request RegenerateInstalledCertificateSchema
+     * @return Promise<InstalledCertificate> - the updated installed certificate record
+     */
+    async regenerateExistingCertificate(request) {
+        const installedCertificateId = request.body.installedCertificateId;
+        const validBeforeParam = request.body.validBefore;
+        const stationId = request.query.identifier;
+        const tenantId = request.query.tenantId || DEFAULT_TENANT_ID;
+        this._logger.info(`Regenerating existing certificate ${installedCertificateId} for charger ${stationId}`);
+        const existingInstalledCertificate = await this._module.installedCertificateRepository.readOnlyOneByQuery(tenantId, {
+            where: {
+                id: installedCertificateId,
+                stationId: stationId,
+            },
+        });
+        if (!existingInstalledCertificate) {
+            throw new Error('Installed certificate not found');
+        }
+        const existingCertificateRecord = await existingInstalledCertificate.$get('certificate');
+        if (!existingCertificateRecord) {
+            throw new Error('Certificate not found');
+        }
+        const fileId = existingCertificateRecord.certificateFileId;
+        if (!fileId) {
+            throw new Error('Certificate file not found');
+        }
+        const privateKeyFileId = existingCertificateRecord.privateKeyFileId;
+        if (!privateKeyFileId) {
+            throw new Error('Certificate privateKeyFileId not found');
+        }
+        const existingCertificateBuffer = await this._fileStorage.getFile(fileId);
+        const existingPrivateKeyBuffer = await this._fileStorage.getFile(privateKeyFileId);
+        if (!existingCertificateBuffer || !existingPrivateKeyBuffer) {
+            throw new Error('Certificate files not found');
+        }
+        const existingCertificateString = existingCertificateBuffer.toString();
+        const existingPrivateKey = existingPrivateKeyBuffer.toString();
+        const existingCertificate = new jsrsasign.X509();
+        existingCertificate.readCertPEM(existingCertificateString);
+        const existingSubjectString = existingCertificate.getSubjectString();
+        let newCertificateRecord = new Certificate();
+        newCertificateRecord.serialNumber = moment().valueOf();
+        newCertificateRecord.issuerName = existingSubjectString;
+        newCertificateRecord.organizationName = existingCertificateRecord.organizationName;
+        newCertificateRecord.commonName = existingCertificateRecord.commonName;
+        newCertificateRecord.keyLength = existingCertificateRecord.keyLength;
+        newCertificateRecord.validBefore = validBeforeParam;
+        newCertificateRecord.signatureAlgorithm = existingCertificateRecord.signatureAlgorithm;
+        newCertificateRecord.countryName = existingCertificateRecord.countryName;
+        newCertificateRecord.isCA = existingCertificateRecord.isCA;
+        newCertificateRecord.pathLen = existingCertificateRecord.pathLen;
+        newCertificateRecord.signedBy = existingCertificateRecord.id;
+        newCertificateRecord.certificateFileHash = existingCertificateRecord.certificateFileHash;
+        const [newCertificatePem, newPrivateKeyPem] = generateCertificate(newCertificateRecord, this._logger, existingPrivateKey, existingCertificateString);
+        newCertificateRecord.certificateFileHash =
+            this._module.installCertificateHelperService.getCertificateHash(newCertificatePem);
+        newCertificateRecord.certificateFileId = await this._fileStorage.saveFile(`Regenerated_Cert_${newCertificateRecord.serialNumber}.pem`, Buffer.from(newCertificatePem));
+        newCertificateRecord.privateKeyFileId = await this._fileStorage.saveFile(`Regenerated_Key_${newCertificateRecord.serialNumber}.pem`, Buffer.from(newPrivateKeyPem));
+        newCertificateRecord = await newCertificateRecord.save();
+        existingInstalledCertificate.certificateId = newCertificateRecord.id;
+        await existingInstalledCertificate.save();
+        return existingInstalledCertificate;
+    }
+    /**
+     * Overrides superclass method to generate the URL path based on the input {@link Namespace}
+     * and the module's endpoint prefix configuration.
+     *
+     * @param {Namespace} input - The input {@link Namespace}.
+     * @return {string} - The generated URL path.
+     */
+    _toDataPath(input) {
+        const endpointPrefix = this._module.config.modules.certificates?.endpointPrefix;
+        return super._toDataPath(input, endpointPrefix);
+    }
+}
+__decorate([
+    AsDataEndpoint(OCPP2_0_1_Namespace.TlsCertificates, HttpMethod.Put, UpdateTlsCertificateQuerySchema, TlsCertificateSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object]),
+    __metadata("design:returntype", Promise)
+], CertificatesDataApi.prototype, "putTlsCertificates", null);
+__decorate([
+    AsDataEndpoint(OCPP2_0_1_Namespace.CertificateChain, HttpMethod.Post, TenantQuerySchema, GenerateCertificateChainSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object]),
+    __metadata("design:returntype", Promise)
+], CertificatesDataApi.prototype, "generateCertificateChain", null);
+__decorate([
+    AsDataEndpoint(OCPP2_0_1_Namespace.RootCertificate, HttpMethod.Put, undefined, InstallRootCertificateSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object]),
+    __metadata("design:returntype", Promise)
+], CertificatesDataApi.prototype, "installRootCertificate", null);
+__decorate([
+    AsDataEndpoint(OCPP2_0_1_Namespace.UploadExistingCertificate, HttpMethod.Post, IMessageQuerystringSchema, UploadExistingCertificateSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object]),
+    __metadata("design:returntype", Promise)
+], CertificatesDataApi.prototype, "uploadExistingCertificate", null);
+__decorate([
+    AsDataEndpoint(OCPP2_0_1_Namespace.RegenerateExistingCertificate, HttpMethod.Post, IMessageQuerystringSchema, RegenerateInstalledCertificateSchema),
+    __metadata("design:type", Function),
+    __metadata("design:paramtypes", [Object]),
+    __metadata("design:returntype", Promise)
+], CertificatesDataApi.prototype, "regenerateExistingCertificate", null);
+//# sourceMappingURL=DataApi.js.map

package/dist/module/DataApi.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"DataApi.js","sourceRoot":"","sources":["../../src/module/DataApi.ts"],"names":[],"mappings":";;;;;;;;;AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC,OAAO,EACL,iBAAiB,EACjB,cAAc,EACd,iBAAiB,EACjB,UAAU,EAIV,yBAAyB,EACzB,SAAS,EACT,iBAAiB,EACjB,SAAS,EACT,oBAAoB,EACpB,mBAAmB,EACnB,WAAW,GAEZ,MAAM,iBAAiB,CAAC;AACzB,OAAO,EACL,WAAW,EACX,mBAAmB,EACnB,+BAA+B,EAC/B,8BAA8B,EAC9B,oBAAoB,EACpB,6BAA6B,EAC7B,4BAA4B,EAC5B,6BAA6B,EAC7B,oCAAoC,EACpC,0BAA0B,EAC1B,iBAAiB,EAEjB,oBAAoB,EACpB,sBAAsB,EACtB,+BAA+B,EAE/B,yBAAyB,EACzB,+BAA+B,GAChC,MAAM,iBAAiB,CAAC;AACzB,OAAO,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AAEtD,OAAO,SAAS,MAAM,WAAW,CAAC;AAClC,OAAO,MAAM,MAAM,QAAQ,CAAC;AAE5B,OAAO,EAAE,MAAM,EAAE,MAAM,OAAO,CAAC;AAE/B,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,OAAO,EAAE,MAAM,sCAAsC,CAAC;AAE/D;;GAEG;AACH,MAAM,OAAO,mBACX,SAAQ,iBAAqC;IAG5B,uBAAuB,CAA0B;IACjD,YAAY,CAAe;IAE5C;;;;;;;;OAQG;IACH,YACE,kBAAsC,EACtC,MAAuB,EACvB,WAAyB,EACzB,sBAA+C,EAC/C,MAAwB;QAExB,KAAK,CAAC,kBAAkB,EAAE,MAAM,EAAE,WAAW,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QACjE,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC;QAChC,IAAI,CAAC,uBAAuB,GAAG,sBAAsB,CAAC;IACxD,CAAC;IAED;;OAEG;IAOG,AAAN,KAAK,CAAC,kBAAkB,CACtB,OAGE;QAEF,MAAM,QAAQ,GAAI,OAAO,CAAC,KAAyC,CAAC,EAAY,CAAC;QACjF,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,sDAAsD,QAAQ,EAAE,CAAC,CAAC;QAEpF,MAAM,WAAW,GAAG,OAAO,CAAC,IAA8B,CAAC;QAC3D,MAAM,YAAY,GAAsC,IAAI,CAAC,uBAAuB,CAAC,IAAI,CACvF,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,CAAC,EAAE,KAAK,QAAQ,CACnC,CAAC;QAEF,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,sBAAsB,QAAQ,kBAAkB,CAAC,CAAC;QACpE,CAAC;aAAM,IAAI,YAAY,IAAI,YAAY,CAAC,eAAe,GAAG,CAAC,EAAE,CAAC;YAC5D,MAAM,IAAI,KAAK,CAAC,mBAAmB,QAAQ,6BAA6B,CAAC,CAAC;QAC5E,CAAC;aAAM,IAAI,YAAY,CAAC,eAAe,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC;YACvE,MAAM,IAAI,KAAK,CAAC,mBAAmB,QAAQ,0CAA0C,CAAC,CAAC;QACzF,CAAC;QAED,MAAM,MAAM,GAAW,CAAC,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,WAAW,CAAC,UAAU,CAAC,CAAE,CAAC,QAAQ,EAAE,CAAC;QAC7F,IAAI,mBAAmB,GAAG,EAAE,CAAC;QAC7B,KAAK,MAAM,MAAM,IAAI,WAAW,CAAC,gBAAgB,EAAE,CAAC;YAClD,mBAAmB,IAAI,CAAC,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,MAAM,CAAC,CAAE,CAAC,QAAQ,EAAE,CAAC;QAC/E,CAAC;QACD,MAAM,MAAM,GAAuB,WAAW,CAAC,MAAM;YACnD,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,CAAE,CAAC,QAAQ,EAAE;YACnE,CAAC,CAAC,SAAS,CAAC;QACd,MAAM,QAAQ,GAAuB,WAAW,CAAC,QAAQ;YACvD,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAE,CAAC,QAAQ,EAAE;YACrE,CAAC,CAAC,SAAS,CAAC;QAEd,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,kBAAkB,CAC7D,YAAY,EACZ,QAAQ,EACR,MAAM,EACN,mBAAmB,EACnB,QAAQ,EACR,MAAM,CACP,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IAOG,AAAN,KAAK,CAAC,wBAAwB,CAC5B,OAGE;QAEF,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,gDAAgD,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAC/E,CAAC;QAEF,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC;QACxC,MAAM,WAAW,GAAG,OAAO,CAAC,IAAuC,CAAC;QAEpE,IAAI,kBAAkB,GAAG,IAAI,WAAW,EAAE,CAAC;QAC3C,kBAAkB,CAAC,YAAY,GAAG,MAAM,EAAE,CAAC,OAAO,EAAE,CAAC;QACrD,kBAAkB,CAAC,SAAS,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC;QACpF,kBAAkB,CAAC,gBAAgB,GAAG,WAAW,CAAC,gBAAgB,CAAC;QACnE,kBAAkB,CAAC,UAAU,GAAG,WAAW,CAAC,UAAU,GAAG,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;QAC5E,IAAI,WAAW,CAAC,WAAW,EAAE,CAAC;YAC5B,kBAAkB,CAAC,WAAW,GAAG,WAAW,CAAC,WAAW,CAAC;QAC3D,CAAC;aAAM,CAAC;YACN,MAAM,mBAAmB,GAAS,IAAI,IAAI,EAAE,CAAC;YAC7C,mBAAmB,CAAC,WAAW,CAAC,mBAAmB,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC,CAAC;YACvE,kBAAkB,CAAC,WAAW,GAAG,mBAAmB,CAAC,WAAW,EAAE,CAAC;QACrE,CAAC;QACD,kBAAkB,CAAC,WAAW,GAAG,WAAW,CAAC,WAAW;YACtD,CAAC,CAAC,WAAW,CAAC,WAAW;YACzB,CAAC,CAAC,mBAAmB,CAAC,EAAE,CAAC;QAC3B,kBAAkB,CAAC,kBAAkB,GAAG,WAAW,CAAC,kBAAkB;YACpE,CAAC,CAAC,WAAW,CAAC,kBAAkB;YAChC,CAAC,CAAC,0BAA0B,CAAC,KAAK,CAAC;QACrC,kBAAkB,CAAC,IAAI,GAAG,IAAI,CAAC;QAC/B,kBAAkB,CAAC,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;QAE3E,IAAI,YAA2B,CAAC;QAChC,IAAI,WAAW,CAAC,UAAU,EAAE,CAAC;YAC3B,2CAA2C;YAC3C,MAAM,CAAC,kBAAkB,EAAE,iBAAiB,CAAC,GAAG,mBAAmB,CACjE,kBAAkB,EAClB,IAAI,CAAC,OAAO,CACb,CAAC;YACF,kBAAkB;gBAChB,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,sBAAsB,CACvE,QAAQ,EACR,kBAAkB,EAClB,kBAAkB,EAClB,iBAAiB,EACjB,OAAO,CAAC,IAAI,EACZ,WAAW,CAAC,QAAQ,CACrB,CAAC;YAEJ,8BAA8B;YAC9B,IAAI,cAAc,GAAgB,IAAI,WAAW,EAAE,CAAC;YACpD,cAAc,CAAC,YAAY,GAAG,kBAAkB,CAAC,YAAY,GAAG,CAAC,CAAC;YAClE,cAAc,CAAC,SAAS,GAAG,kBAAkB,CAAC,SAAS,CAAC;YACxD,cAAc,CAAC,gBAAgB,GAAG,kBAAkB,CAAC,gBAAgB,CAAC;YACtE,cAAc,CAAC,UAAU,GAAG,WAAW,CAAC,UAAU,GAAG,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YACzE,cAAc,CAAC,WAAW,GAAG,kBAAkB,CAAC,WAAW,CAAC;YAC5D,cAAc,CAAC,QAAQ,GAAG,kBAAkB,CAAC,EAAE,CAAC;YAChD,cAAc,CAAC,WAAW,GAAG,kBAAkB,CAAC,WAAW,CAAC;YAC5D,cAAc,CAAC,kBAAkB,GAAG,kBAAkB,CAAC,kBAAkB,CAAC;YAC1E,cAAc,CAAC,IAAI,GAAG,IAAI,CAAC;YAC3B,cAAc,CAAC,OAAO,GAAG,CAAC,CAAC;YAC3B,MAAM,CAAC,iBAAiB,EAAE,gBAAgB,CAAC,GAAG,mBAAmB,CAC/D,cAAc,EACd,IAAI,CAAC,OAAO,EACZ,iBAAiB,EACjB,kBAAkB,CACnB,CAAC;YACF,cAAc,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,sBAAsB,CACxF,QAAQ,EACR,cAAc,EACd,iBAAiB,EACjB,gBAAgB,EAChB,OAAO,CAAC,KAAK,EACb,WAAW,CAAC,QAAQ,CACrB,CAAC;YAEF,4BAA4B;YAC5B,IAAI,eAAe,GAAgB,IAAI,WAAW,EAAE,CAAC;YACrD,eAAe,CAAC,YAAY,GAAG,cAAc,CAAC,YAAY,GAAG,CAAC,CAAC;YAC/D,eAAe,CAAC,SAAS,GAAG,cAAc,CAAC,SAAS,CAAC;YACrD,eAAe,CAAC,gBAAgB,GAAG,cAAc,CAAC,gBAAgB,CAAC;YACnE,eAAe,CAAC,UAAU,GAAG,WAAW,CAAC,UAAU,CAAC;YACpD,eAAe,CAAC,WAAW,GAAG,cAAc,CAAC,WAAW,CAAC;YACzD,eAAe,CAAC,QAAQ,GAAG,cAAc,CAAC,EAAE,CAAC;YAC7C,eAAe,CAAC,WAAW,GAAG,cAAc,CAAC,WAAW,CAAC;YACzD,eAAe,CAAC,kBAAkB,GAAG,cAAc,CAAC,kBAAkB,CAAC;YACvE,eAAe,CAAC,IAAI,GAAG,KAAK,CAAC;YAC7B,MAAM,CAAC,kBAAkB,EAAE,iBAAiB,CAAC,GAAG,mBAAmB,CACjE,eAAe,EACf,IAAI,CAAC,OAAO,EACZ,gBAAgB,EAChB,iBAAiB,CAClB,CAAC;YACF,eAAe,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,sBAAsB,CACzF,QAAQ,EACR,eAAe,EACf,kBAAkB,EAClB,iBAAiB,EACjB,OAAO,CAAC,IAAI,EACZ,WAAW,CAAC,QAAQ,CACrB,CAAC;YAEF,YAAY,GAAG,CAAC,eAAe,EAAE,cAAc,EAAE,kBAAkB,CAAC,CAAC;QACvE,CAAC;aAAM,CAAC;YACN,2EAA2E;YAC3E,2CAA2C;YAC3C,kBAAkB,CAAC,UAAU,GAAG,WAAW,CAAC,UAAU,CAAC;YACvD,kBAAkB,CAAC,OAAO,GAAG,CAAC,CAAC;YAC/B,MAAM,CAAC,cAAc,EAAE,aAAa,CAAC,GACnC,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,wCAAwC,CACzF,kBAAkB,CACnB,CAAC;YACJ,kBAAkB;gBAChB,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,sBAAsB,CACvE,QAAQ,EACR,kBAAkB,EAClB,cAAc,EACd,aAAa,EACb,OAAO,CAAC,KAAK,EACb,WAAW,CAAC,QAAQ,CACrB,CAAC;YAEJ,4BAA4B;YAC5B,IAAI,eAAe,GAAgB,IAAI,WAAW,EAAE,CAAC;YACrD,eAAe,CAAC,YAAY,GAAG,kBAAkB,CAAC,YAAY,GAAG,CAAC,CAAC;YACnE,eAAe,CAAC,SAAS,GAAG,kBAAkB,CAAC,SAAS,CAAC;YACzD,eAAe,CAAC,gBAAgB,GAAG,kBAAkB,CAAC,gBAAgB,CAAC;YACvE,eAAe,CAAC,UAAU,GAAG,WAAW,CAAC,UAAU,CAAC;YACpD,eAAe,CAAC,WAAW,GAAG,kBAAkB,CAAC,WAAW,CAAC;YAC7D,eAAe,CAAC,QAAQ,GAAG,kBAAkB,CAAC,EAAE,CAAC;YACjD,eAAe,CAAC,WAAW,GAAG,kBAAkB,CAAC,WAAW,CAAC;YAC7D,eAAe,CAAC,kBAAkB,GAAG,kBAAkB,CAAC,kBAAkB,CAAC;YAC3E,eAAe,CAAC,IAAI,GAAG,KAAK,CAAC;YAC7B,eAAe,CAAC,OAAO,GAAG,SAAS,CAAC;YACpC,MAAM,CAAC,kBAAkB,EAAE,iBAAiB,CAAC,GAAG,mBAAmB,CACjE,eAAe,EACf,IAAI,CAAC,OAAO,EACZ,aAAa,EACb,cAAc,CACf,CAAC;YACF,eAAe,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,sBAAsB,CACzF,QAAQ,EACR,eAAe,EACf,kBAAkB,EAClB,iBAAiB,EACjB,OAAO,CAAC,IAAI,EACZ,WAAW,CAAC,QAAQ,CACrB,CAAC;YAEF,YAAY,GAAG,CAAC,eAAe,EAAE,kBAAkB,CAAC,CAAC;QACvD,CAAC;QAED,OAAO,YAAY,CAAC;IACtB,CAAC;IAQK,AAAN,KAAK,CAAC,sBAAsB,CAC1B,OAEE;QAEF,MAAM,UAAU,GAAG,OAAO,CAAC,IAAqC,CAAC;QACjE,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,cAAc,UAAU,CAAC,eAAe,eAAe,UAAU,CAAC,SAAS,EAAE,CAC9E,CAAC;QAEF,IAAI,SAAiB,CAAC;QACtB,IAAI,UAAU,CAAC,MAAM,EAAE,CAAC;YACtB,SAAS,GAAG,CAAC,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,CAAE,CAAC,QAAQ,EAAE,CAAC;QAC/E,CAAC;aAAM,CAAC;YACN,SAAS,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,2BAA2B,CAAC,kCAAkC,CAC3F,UAAU,CAAC,eAAe,CAC3B,CAAC;QACJ,CAAC;QAED,MAAM,IAAI,CAAC,OAAO;aACf,QAAQ,CACP,UAAU,CAAC,SAAS,EACpB,UAAU,CAAC,QAAQ,EACnB,WAAW,CAAC,SAAS,EACrB,oBAAoB,CAAC,kBAAkB,EACvC;YACE,eAAe,EAAE,UAAU,CAAC,eAAe;YAC3C,WAAW,EAAE,SAAS;SACgB,EACxC,UAAU,CAAC,WAAW,CACvB;aACA,IAAI,CAAC,CAAC,YAAY,EAAE,EAAE;YACrB,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;gBAC1B,MAAM,IAAI,KAAK,CAAC,0CAA0C,YAAY,CAAC,OAAO,EAAE,CAAC,CAAC;YACpF,CAAC;YACD,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,uCAAuC,EAAE,YAAY,CAAC,CAAC;QAC5E,CAAC,CAAC,CAAC;QAEL,OAAO;YACL,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED;;;;OAIG;IAOG,AAAN,KAAK,CAAC,yBAAyB,CAC7B,OAGE;QAEF,MAAM,yBAAyB,GAAG,OAAO,CAAC,IAAiC,CAAC;QAC5E,MAAM,kBAAkB,GAAG,OAAO,CAAC,KAA4B,CAAC;QAChE,MAAM,QAAQ,GAAG,kBAAkB,CAAC,QAAQ,IAAI,iBAAiB,CAAC;QAClE,MAAM,UAAU,GAAG,kBAAkB,CAAC,UAAU,CAAC;QACjD,MAAM,gBAAgB,GAAG,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;QACnD,IAAI,gBAAgB,EAAE,CAAC;YACrB,MAAM,QAAQ,GAAoC,EAAE,CAAC;YACrD,KAAK,MAAM,iBAAiB,IAAI,UAAU,EAAE,CAAC;gBAC3C,QAAQ,CAAC,IAAI,CACX,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,+BAA+B,CAC1E,QAAQ,EACR,iBAAiB,EACjB,yBAAyB,EACzB,OAAO,CAAC,IAAI,CAAC,QAAQ,CACtB,CACF,CAAC;YACJ,CAAC;YACD,OAAO,MAAM,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACrC,CAAC;aAAM,CAAC;YACN,OAAO;gBACL,MAAM,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,+BAA+B,CAChF,QAAQ,EACR,UAAU,EACV,yBAAyB,EACzB,OAAO,CAAC,IAAI,CAAC,QAAQ,CACtB;aACF,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;OAMG;IAOG,AAAN,KAAK,CAAC,6BAA6B,CACjC,OAGE;QAEF,MAAM,sBAAsB,GAAG,OAAO,CAAC,IAAI,CAAC,sBAAsB,CAAC;QACnE,MAAM,gBAAgB,GAAG,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC;QAClD,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC;QAC3C,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,QAAQ,IAAI,iBAAiB,CAAC;QAC7D,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,qCAAqC,sBAAsB,gBAAgB,SAAS,EAAE,CACvF,CAAC;QACF,MAAM,4BAA4B,GAChC,MAAM,IAAI,CAAC,OAAO,CAAC,8BAA8B,CAAC,kBAAkB,CAAC,QAAQ,EAAE;YAC7E,KAAK,EAAE;gBACL,EAAE,EAAE,sBAAsB;gBAC1B,SAAS,EAAE,SAAS;aACrB;SACF,CAAC,CAAC;QACL,IAAI,CAAC,4BAA4B,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QACD,MAAM,yBAAyB,GAAG,MAAM,4BAA4B,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACzF,IAAI,CAAC,yBAAyB,EAAE,CAAC;YAC/B,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;QAC3C,CAAC;QACD,MAAM,MAAM,GAAG,yBAAyB,CAAC,iBAAiB,CAAC;QAC3D,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAChD,CAAC;QACD,MAAM,gBAAgB,GAAG,yBAAyB,CAAC,gBAAgB,CAAC;QACpE,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QACD,MAAM,yBAAyB,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QAC1E,MAAM,wBAAwB,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;QACnF,IAAI,CAAC,yBAAyB,IAAI,CAAC,wBAAwB,EAAE,CAAC;YAC5D,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACjD,CAAC;QACD,MAAM,yBAAyB,GAAG,yBAAyB,CAAC,QAAQ,EAAE,CAAC;QACvE,MAAM,kBAAkB,GAAG,wBAAwB,CAAC,QAAQ,EAAE,CAAC;QAC/D,MAAM,mBAAmB,GAAG,IAAI,SAAS,CAAC,IAAI,EAAE,CAAC;QACjD,mBAAmB,CAAC,WAAW,CAAC,yBAAyB,CAAC,CAAC;QAC3D,MAAM,qBAAqB,GAAG,mBAAmB,CAAC,gBAAgB,EAAE,CAAC;QACrE,IAAI,oBAAoB,GAAG,IAAI,WAAW,EAAE,CAAC;QAC7C,oBAAoB,CAAC,YAAY,GAAG,MAAM,EAAE,CAAC,OAAO,EAAE,CAAC;QACvD,oBAAoB,CAAC,UAAU,GAAG,qBAAqB,CAAC;QACxD,oBAAoB,CAAC,gBAAgB,GAAG,yBAAyB,CAAC,gBAAgB,CAAC;QACnF,oBAAoB,CAAC,UAAU,GAAG,yBAAyB,CAAC,UAAU,CAAC;QACvE,oBAAoB,CAAC,SAAS,GAAG,yBAAyB,CAAC,SAAS,CAAC;QACrE,oBAAoB,CAAC,WAAW,GAAG,gBAAgB,CAAC;QACpD,oBAAoB,CAAC,kBAAkB,GAAG,yBAAyB,CAAC,kBAAkB,CAAC;QACvF,oBAAoB,CAAC,WAAW,GAAG,yBAAyB,CAAC,WAAW,CAAC;QACzE,oBAAoB,CAAC,IAAI,GAAG,yBAAyB,CAAC,IAAI,CAAC;QAC3D,oBAAoB,CAAC,OAAO,GAAG,yBAAyB,CAAC,OAAO,CAAC;QACjE,oBAAoB,CAAC,QAAQ,GAAG,yBAAyB,CAAC,EAAE,CAAC;QAC7D,oBAAoB,CAAC,mBAAmB,GAAG,yBAAyB,CAAC,mBAAmB,CAAC;QACzF,MAAM,CAAC,iBAAiB,EAAE,gBAAgB,CAAC,GAAG,mBAAmB,CAC/D,oBAAoB,EACpB,IAAI,CAAC,OAAO,EACZ,kBAAkB,EAClB,yBAAyB,CAC1B,CAAC;QACF,oBAAoB,CAAC,mBAAmB;YACtC,IAAI,CAAC,OAAO,CAAC,+BAA+B,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;QACrF,oBAAoB,CAAC,iBAAiB,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,QAAQ,CACvE,oBAAoB,oBAAoB,CAAC,YAAY,MAAM,EAC3D,MAAM,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAC/B,CAAC;QACF,oBAAoB,CAAC,gBAAgB,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,QAAQ,CACtE,mBAAmB,oBAAoB,CAAC,YAAY,MAAM,EAC1D,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAC9B,CAAC;QACF,oBAAoB,GAAG,MAAM,oBAAoB,CAAC,IAAI,EAAE,CAAC;QACzD,4BAA4B,CAAC,aAAa,GAAG,oBAAoB,CAAC,EAAE,CAAC;QACrE,MAAM,4BAA4B,CAAC,IAAI,EAAE,CAAC;QAC1C,OAAO,4BAA4B,CAAC;IACtC,CAAC;IAED;;;;;;OAMG;IACO,WAAW,CAAC,KAA0D;QAC9E,MAAM,cAAc,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,YAAY,EAAE,cAAc,CAAC;QAChF,OAAO,KAAK,CAAC,WAAW,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;IAClD,CAAC;CACF;AA7ZO;IANL,cAAc,CACb,mBAAmB,CAAC,eAAe,EACnC,UAAU,CAAC,GAAG,EACd,+BAA+B,EAC/B,oBAAoB,CACrB;;;;6DA2CA;AAcK;IANL,cAAc,CACb,mBAAmB,CAAC,gBAAgB,EACpC,UAAU,CAAC,IAAI,EACf,iBAAiB,EACjB,8BAA8B,CAC/B;;;;mEA4JA;AAQK;IANL,cAAc,CACb,mBAAmB,CAAC,eAAe,EACnC,UAAU,CAAC,GAAG,EACd,SAAS,EACT,4BAA4B,CAC7B;;;;iEA0CA;AAaK;IANL,cAAc,CACb,mBAAmB,CAAC,yBAAyB,EAC7C,UAAU,CAAC,IAAI,EACf,yBAAyB,EACzB,+BAA+B,CAChC;;;;oEAmCA;AAeK;IANL,cAAc,CACb,mBAAmB,CAAC,6BAA6B,EACjD,UAAU,CAAC,IAAI,EACf,yBAAyB,EACzB,oCAAoC,CACrC;;;;wEA+EA"}

package/dist/module/installCertificateHelperService.d.ts ADDED Viewed

@@ -0,0 +1,49 @@
+import { Certificate, CountryNameEnumType, type ICertificateRepository, type IDeleteCertificateAttemptRepository, type IInstallCertificateAttemptRepository, type IInstalledCertificateRepository, InstalledCertificate, SignatureAlgorithmEnumType, UploadExistingCertificate } from '@citrineos/data';
+import { type CertificateAuthorityService, WebsocketNetworkConnection } from '@citrineos/util';
+import { type IFileStorage, OCPP2_0_1, type WebsocketServerConfig } from '@citrineos/base';
+import { type ILogObj, Logger } from 'tslog';
+export declare const enum PemType {
+    Root = "Root",
+    SubCA = "SubCA",
+    Leaf = "Leaf"
+}
+export declare class InstallCertificateHelperService {
+    protected certificateRepository: ICertificateRepository;
+    protected installedCertificateRepository: IInstalledCertificateRepository;
+    protected installCertificateAttemptRepository: IInstallCertificateAttemptRepository;
+    protected deleteCertificateAttemptRepository: IDeleteCertificateAttemptRepository;
+    protected certificateAuthorityService: CertificateAuthorityService;
+    protected networkConnection: WebsocketNetworkConnection;
+    protected fileStorage: IFileStorage;
+    protected logger: Logger<ILogObj>;
+    constructor(certificateRepository: ICertificateRepository, installedCertificateRepository: IInstalledCertificateRepository, installCertificateAttemptRepository: IInstallCertificateAttemptRepository, deleteCertificateAttemptRepository: IDeleteCertificateAttemptRepository, certificateAuthorityService: CertificateAuthorityService, networkConnection: WebsocketNetworkConnection, fileStorage: IFileStorage, logger: Logger<ILogObj>);
+    prepareToInstallCertificate(tenantId: number, stationId: string, certificate: string, certificateType: OCPP2_0_1.InstallCertificateUseEnumType): Promise<void>;
+    finalizeInstalledCertificate(tenantId: number, stationId: string, status: OCPP2_0_1.InstallCertificateStatusEnumType): Promise<void>;
+    createNewCertificate(certificate: string, serialNumber: number | null, issuerName: string | null, organizationName: string | null, commonName: string | null, countryName: CountryNameEnumType | null, validBefore: Date | null, signatureAlgorithm: SignatureAlgorithmEnumType | null): Promise<Certificate>;
+    handleUploadExistingCertificate(tenantId: number, identifier: string, uploadExistingCertificate: UploadExistingCertificate, filePath?: string): Promise<InstalledCertificate>;
+    /**
+     * Generates a sub CA certificate signed by a CA server.
+     *
+     * @param {Certificate} certificate - The certificate information used for generating the root certificate.
+     * @return {Promise<[string, string]>} An array containing the signed certificate and the private key.
+     */
+    generateSubCACertificateSignedByCAServer(certificate: Certificate): Promise<[string, string]>;
+    /**
+     * Store certificate in file storage and db.
+     * @param certificateEntity certificate to be stored in db
+     * @param certPem certificate pem to be stored in file storage
+     * @param keyPem private key pem to be stored in file storage
+     * @param filePrefix prefix for file name to be stored in file storage
+     * @param filePath file path in file storage
+     * @return certificate stored in db
+     */
+    storeCertificateAndKey(tenantId: number, certificateEntity: Certificate, certPem: string, keyPem: string, filePrefix: PemType, filePath?: string): Promise<Certificate>;
+    updateCertificates(serverConfig: WebsocketServerConfig, serverId: string, tlsKey: string, tlsCertificateChain: string, subCAKey?: string, rootCA?: string): void;
+    private replaceFile;
+    /**
+     * Generate a hash (fingerprint) from a certificate PEM string.
+     * @param pemString The certificate PEM string.
+     * @returns A SHA-256 hash of the certificate's DER encoding.
+     */
+    getCertificateHash(pemString: string): string;
+}