@zetra/citrineos-util 1.8.3-fork.1

package/dist/queue/rabbit-mq/sender.js

@@ -0,0 +1,251 @@
+import { AbstractMessageSender, CircuitBreaker, MessageState, OcppError } from '@citrineos/base';
+import * as amqplib from 'amqplib';
+import { instanceToPlain } from 'class-transformer';
+import { Logger } from 'tslog';
+/**
+ * Implementation of a {@link IMessageSender} using RabbitMQ as the underlying transport.
+ */
+export class RabbitMqSender extends AbstractMessageSender {
+    /**
+     * Constants
+     */
+    static QUEUE_PREFIX = 'amqp_queue_';
+    static RECONNECT_DELAY = 5000;
+    /**
+     * Fields
+     */
+    _connection;
+    _channel;
+    _reconnecting = false;
+    _abortReconnectController;
+    _circuitBreaker;
+    _reconnectInterval;
+    /**
+     * Constructor for the class.
+     *
+     * @param {SystemConfig} config - The system configuration.
+     * @param {Logger<ILogObj>} [logger] - The logger object.
+     */
+    constructor(config, logger, circuitBreaker) {
+        super(config, logger);
+        this._circuitBreaker = circuitBreaker ?? new CircuitBreaker();
+        this._circuitBreaker.onStateChange(this._onCircuitBreakerStateChange.bind(this));
+        this._connectWithRetry()
+            .then((channel) => {
+            this._channel = channel;
+        })
+            .catch((error) => {
+            this._logger.error('Failed to connect to RabbitMQ', error);
+        });
+    }
+    /**
+     * Methods
+     */
+    /**
+     * Sends a request message with an optional payload and returns a promise that resolves to the confirmation message.
+     *
+     * @param {IMessage<OcppRequest>} message - The message to be sent.
+     * @param {OcppRequest | undefined} payload - The optional payload to be sent with the message.
+     * @return {Promise<IMessageConfirmation>} A promise that resolves to the confirmation message.
+     */
+    sendRequest(message, payload) {
+        return this.send(message, payload, MessageState.Request);
+    }
+    /**
+     * Sends a response message and returns a promise of the message confirmation.
+     *
+     * @param {IMessage<OcppResponse | OcppError>} message - The message to send.
+     * @param {OcppResponse | OcppError} payload - The payload to include in the response.
+     * @return {Promise<IMessageConfirmation>} - A promise that resolves to the message confirmation.
+     */
+    sendResponse(message, payload) {
+        return this.send(message, payload, MessageState.Response);
+    }
+    /**
+     * Sends a message and returns a promise that resolves to a message confirmation.
+     *
+     * @param {IMessage<OcppRequest | OcppResponse | OcppError>} message - The message to be sent.
+     * @param {OcppRequest | OcppResponse | OcppError} [payload] - The payload to be included in the message.
+     * @param {MessageState} [state] - The state of the message.
+     * @return {Promise<IMessageConfirmation>} - A promise that resolves to a message confirmation.
+     */
+    async send(message, payload, state) {
+        if (this._circuitBreaker.state === 'CLOSED') {
+            return { success: false, payload: 'Circuit breaker is CLOSED. Cannot send message.' };
+        }
+        if (payload) {
+            message.payload = payload;
+        }
+        if (state) {
+            message.state = state;
+        }
+        if (!message.state) {
+            return { success: false, payload: 'Message state must be set' };
+        }
+        if (!message.payload) {
+            return { success: false, payload: 'Message payload must be set' };
+        }
+        const exchange = this._config.util.messageBroker.amqp?.exchange;
+        if (!this._channel) {
+            throw new Error('RabbitMQ is down: cannot unsubscribe.');
+        }
+        const channel = this._channel;
+        this._logger.debug(`Publishing to ${exchange}:`, message);
+        const success = channel.publish(exchange || '', '', Buffer.from(JSON.stringify(instanceToPlain(message)), 'utf-8'), {
+            contentEncoding: 'utf-8',
+            contentType: 'application/json',
+            headers: {
+                origin: message.origin.toString(),
+                eventGroup: message.eventGroup.toString(),
+                action: message.action.toString(),
+                state: message.state.toString(),
+                ...message.context,
+                tenantId: message.context.tenantId.toString(),
+            },
+        });
+        return { success };
+    }
+    /**
+     * Shuts down the sender by closing the client.
+     *
+     * @return {Promise<void>} A promise that resolves when the client is closed.
+     */
+    shutdown() {
+        this._abortReconnectController?.abort();
+        return Promise.resolve();
+    }
+    /**
+     * Protected Methods
+     */
+    /**
+     * Connect to RabbitMQ with retry logic.
+     * This method will keep trying to connect until successful, unless aborted.
+     *
+     * @param {AbortSignal} [abortSignal] - Optional abort signal to stop retrying.
+     * @return {Promise<amqplib.Channel>} A promise that resolves to the AMQP channel.
+     */
+    async _connectWithRetry(abortSignal) {
+        const url = this._config.util.messageBroker.amqp?.url;
+        if (!url) {
+            throw new Error('RabbitMQ URL is not configured');
+        }
+        while (true) {
+            if (abortSignal?.aborted) {
+                this._logger.warn('RabbitMQ reconnect aborted by signal.');
+                throw new Error('RabbitMQ reconnect aborted');
+            }
+            if (this._circuitBreaker.state === 'CLOSED') {
+                throw new Error('Circuit breaker is CLOSED. Cannot connect to RabbitMQ.');
+            }
+            try {
+                const connection = await amqplib.connect(url);
+                this._connection = connection;
+                const channel = await connection.createChannel();
+                channel.on('error', (err) => {
+                    this._logger.error('AMQP channel error', err);
+                });
+                this._setupConnectionListeners();
+                this._circuitBreaker.triggerSuccess();
+                return channel;
+            }
+            catch (err) {
+                this._logger.error('RabbitMQ connect failed, triggering circuit breaker failure', err);
+                this._circuitBreaker.triggerFailure(err?.message);
+                await new Promise((res) => setTimeout(res, 1000));
+            }
+        }
+    }
+    _startReconnectInterval() {
+        if (this._reconnectInterval) {
+            clearInterval(this._reconnectInterval);
+        }
+        const delay = (this._config.maxReconnectDelay || 30) * 1000;
+        this._logger.warn(`Starting continuous reconnect attempts every ${delay / 1000} seconds while circuit breaker is CLOSED.`);
+        this._reconnectInterval = setInterval(() => {
+            this._logger.info('Attempting RabbitMQ reconnect due to circuit breaker CLOSED...');
+            this._connectWithRetry()
+                .then((channel) => {
+                this._logger.info('RabbitMQ reconnect attempt succeeded.');
+                this._channel = channel;
+                this._circuitBreaker.triggerSuccess();
+            })
+                .catch((err) => {
+                this._logger.error('RabbitMQ reconnect attempt failed.', err);
+            });
+        }, delay);
+    }
+    _onCircuitBreakerStateChange(state, reason) {
+        this._logger.info(`[CircuitBreaker] State changed to ${state}${reason ? `: ${reason}` : ''}`);
+        switch (state) {
+            case 'CLOSED': {
+                this._logger.error('Circuit breaker CLOSED: shutting down RabbitMQ sender. Reason:', reason);
+                void this.shutdown();
+                if (this._reconnectInterval) {
+                    this._logger.info('Clearing reconnect interval as circuit breaker is now CLOSED.');
+                    clearInterval(this._reconnectInterval);
+                    this._reconnectInterval = undefined;
+                }
+                break;
+            }
+            case 'OPEN': {
+                this._logger.info('Circuit breaker is OPEN. Will attempt to (re)initialize RabbitMQ connection.');
+                if (this._reconnectInterval) {
+                    this._logger.info('Clearing reconnect interval as circuit breaker is now OPEN.');
+                    clearInterval(this._reconnectInterval);
+                    this._reconnectInterval = undefined;
+                }
+                this._connectWithRetry()
+                    .then((channel) => {
+                    this._logger.info('RabbitMQ connection (re)initialized.');
+                    this._channel = channel;
+                    this._circuitBreaker.triggerSuccess();
+                })
+                    .catch((err) => {
+                    this._logger.error('RabbitMQ (re)init failed.', err);
+                });
+                break;
+            }
+            case 'FAILING': {
+                this._logger.warn('Circuit breaker is FAILING. RabbitMQ sender will not send messages until recovery. Reason:', reason);
+                this._logger.info('Attempting to start reconnect interval after circuit breaker FAILING.');
+                this._startReconnectInterval();
+                break;
+            }
+            default:
+                this._logger.warn('Unknown circuit breaker state:', state);
+                break;
+        }
+    }
+    /**
+     * Setup listeners for connection and channel events.
+     * This will handle disconnections and errors.
+     * Ensures listeners are not attached multiple times to the same connection.
+     */
+    _setupConnectionListeners() {
+        if (this._connection) {
+            // Only attach listeners if not already attached to this connection
+            if (this._connection._listenersAttached)
+                return;
+            this._connection.removeAllListeners('close');
+            this._connection.removeAllListeners('error');
+            this._connection.on('close', () => this._handleDisconnect());
+            this._connection.on('error', () => this._handleDisconnect());
+            this._connection._listenersAttached = true;
+        }
+    }
+    /**
+     * Handle RabbitMQ disconnection.
+     * This method will attempt to reconnect to RabbitMQ when the connection is lost.
+     * Debounces concurrent reconnects.
+     */
+    async _handleDisconnect() {
+        this._logger.warn('RabbitMQ connection lost. Triggering circuit breaker failure.');
+        this._connection = undefined;
+        this._channel = undefined;
+        this._circuitBreaker.triggerFailure('RabbitMQ connection lost');
+        if (this._circuitBreaker.state === 'CLOSED' || this._circuitBreaker.state === 'FAILING') {
+            this._startReconnectInterval();
+        }
+    }
+}
+//# sourceMappingURL=sender.js.map

package/dist/queue/rabbit-mq/sender.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sender.js","sourceRoot":"","sources":["../../../src/queue/rabbit-mq/sender.ts"],"names":[],"mappings":"AAYA,OAAO,EAAE,qBAAqB,EAAE,cAAc,EAAE,YAAY,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AACjG,OAAO,KAAK,OAAO,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAEpD,OAAO,EAAE,MAAM,EAAE,MAAM,OAAO,CAAC;AAE/B;;GAEG;AACH,MAAM,OAAO,cAAe,SAAQ,qBAAqB;IACvD;;OAEG;IACK,MAAM,CAAU,YAAY,GAAG,aAAa,CAAC;IAC7C,MAAM,CAAU,eAAe,GAAG,IAAI,CAAC;IAE/C;;OAEG;IACO,WAAW,CAAsB;IACjC,QAAQ,CAAmB;IAC7B,aAAa,GAAG,KAAK,CAAC;IACtB,yBAAyB,CAAmB;IAC5C,eAAe,CAAiB;IAChC,kBAAkB,CAAkB;IAE5C;;;;;OAKG;IACH,YAAY,MAAoB,EAAE,MAAwB,EAAE,cAA+B;QACzF,KAAK,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACtB,IAAI,CAAC,eAAe,GAAG,cAAc,IAAI,IAAI,cAAc,EAAE,CAAC;QAC9D,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,IAAI,CAAC,4BAA4B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QACjF,IAAI,CAAC,iBAAiB,EAAE;aACrB,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE;YAChB,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;QAC1B,CAAC,CAAC;aACD,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;YACf,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,+BAA+B,EAAE,KAAK,CAAC,CAAC;QAC7D,CAAC,CAAC,CAAC;IACP,CAAC;IAED;;OAEG;IAEH;;;;;;OAMG;IACH,WAAW,CACT,OAA8B,EAC9B,OAAiC;QAEjC,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,EAAE,YAAY,CAAC,OAAO,CAAC,CAAC;IAC3D,CAAC;IAED;;;;;;OAMG;IACH,YAAY,CACV,OAA2C,EAC3C,OAAkC;QAElC,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,EAAE,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC5D,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,IAAI,CACR,OAAyD,EACzD,OAAgD,EAChD,KAAoB;QAEpB,IAAI,IAAI,CAAC,eAAe,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC5C,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,iDAAiD,EAAE,CAAC;QACxF,CAAC;QAED,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,CAAC,OAAO,GAAG,OAAO,CAAC;QAC5B,CAAC;QAED,IAAI,KAAK,EAAE,CAAC;YACV,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC;QACxB,CAAC;QAED,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;YACnB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,2BAA2B,EAAE,CAAC;QAClE,CAAC;QAED,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;YACrB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,6BAA6B,EAAE,CAAC;QACpE,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,QAAkB,CAAC;QAC1E,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,MAAM,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;QAC3D,CAAC;QACD,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC;QAE9B,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,iBAAiB,QAAQ,GAAG,EAAE,OAAO,CAAC,CAAC;QAE1D,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAC7B,QAAQ,IAAI,EAAE,EACd,EAAE,EACF,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC,EAAE,OAAO,CAAC,EAC9D;YACE,eAAe,EAAE,OAAO;YACxB,WAAW,EAAE,kBAAkB;YAC/B,OAAO,EAAE;gBACP,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE;gBACjC,UAAU,EAAE,OAAO,CAAC,UAAU,CAAC,QAAQ,EAAE;gBACzC,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE;gBACjC,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,QAAQ,EAAE;gBAC/B,GAAG,OAAO,CAAC,OAAO;gBAClB,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,EAAE;aAC9C;SACF,CACF,CAAC;QACF,OAAO,EAAE,OAAO,EAAE,CAAC;IACrB,CAAC;IAED;;;;OAIG;IACH,QAAQ;QACN,IAAI,CAAC,yBAAyB,EAAE,KAAK,EAAE,CAAC;QACxC,OAAO,OAAO,CAAC,OAAO,EAAE,CAAC;IAC3B,CAAC;IAED;;OAEG;IAEH;;;;;;OAMG;IACO,KAAK,CAAC,iBAAiB,CAAC,WAAyB;QACzD,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,GAAG,CAAC;QACtD,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACpD,CAAC;QACD,OAAO,IAAI,EAAE,CAAC;YACZ,IAAI,WAAW,EAAE,OAAO,EAAE,CAAC;gBACzB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;gBAC3D,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;YAChD,CAAC;YACD,IAAI,IAAI,CAAC,eAAe,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC5C,MAAM,IAAI,KAAK,CAAC,wDAAwD,CAAC,CAAC;YAC5E,CAAC;YACD,IAAI,CAAC;gBACH,MAAM,UAAU,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;gBAC9C,IAAI,CAAC,WAAW,GAAG,UAAU,CAAC;gBAC9B,MAAM,OAAO,GAAG,MAAM,UAAU,CAAC,aAAa,EAAE,CAAC;gBACjD,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;oBAC1B,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,oBAAoB,EAAE,GAAG,CAAC,CAAC;gBAChD,CAAC,CAAC,CAAC;gBACH,IAAI,CAAC,yBAAyB,EAAE,CAAC;gBACjC,IAAI,CAAC,eAAe,CAAC,cAAc,EAAE,CAAC;gBACtC,OAAO,OAAO,CAAC;YACjB,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,6DAA6D,EAAE,GAAG,CAAC,CAAC;gBACvF,IAAI,CAAC,eAAe,CAAC,cAAc,CAAE,GAAa,EAAE,OAAO,CAAC,CAAC;gBAC7D,MAAM,IAAI,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC,CAAC;YACpD,CAAC;QACH,CAAC;IACH,CAAC;IAEO,uBAAuB;QAC7B,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC5B,aAAa,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;QACzC,CAAC;QACD,MAAM,KAAK,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,iBAAiB,IAAI,EAAE,CAAC,GAAG,IAAI,CAAC;QAC5D,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,gDAAgD,KAAK,GAAG,IAAI,2CAA2C,CACxG,CAAC;QACF,IAAI,CAAC,kBAAkB,GAAG,WAAW,CAAC,GAAG,EAAE;YACzC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,gEAAgE,CAAC,CAAC;YACpF,IAAI,CAAC,iBAAiB,EAAE;iBACrB,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE;gBAChB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;gBAC3D,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;gBACxB,IAAI,CAAC,eAAe,CAAC,cAAc,EAAE,CAAC;YACxC,CAAC,CAAC;iBACD,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;gBACb,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,oCAAoC,EAAE,GAAG,CAAC,CAAC;YAChE,CAAC,CAAC,CAAC;QACP,CAAC,EAAE,KAAK,CAAC,CAAC;IACZ,CAAC;IAEO,4BAA4B,CAAC,KAA0B,EAAE,MAAe;QAC9E,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,qCAAqC,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,KAAK,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAE9F,QAAQ,KAAK,EAAE,CAAC;YACd,KAAK,QAAQ,CAAC,CAAC,CAAC;gBACd,IAAI,CAAC,OAAO,CAAC,KAAK,CAChB,gEAAgE,EAChE,MAAM,CACP,CAAC;gBACF,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACrB,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;oBAC5B,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,+DAA+D,CAAC,CAAC;oBACnF,aAAa,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;oBACvC,IAAI,CAAC,kBAAkB,GAAG,SAAS,CAAC;gBACtC,CAAC;gBACD,MAAM;YACR,CAAC;YACD,KAAK,MAAM,CAAC,CAAC,CAAC;gBACZ,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,8EAA8E,CAC/E,CAAC;gBACF,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;oBAC5B,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,6DAA6D,CAAC,CAAC;oBACjF,aAAa,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;oBACvC,IAAI,CAAC,kBAAkB,GAAG,SAAS,CAAC;gBACtC,CAAC;gBACD,IAAI,CAAC,iBAAiB,EAAE;qBACrB,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE;oBAChB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,sCAAsC,CAAC,CAAC;oBAC1D,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC;oBACxB,IAAI,CAAC,eAAe,CAAC,cAAc,EAAE,CAAC;gBACxC,CAAC,CAAC;qBACD,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;oBACb,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,2BAA2B,EAAE,GAAG,CAAC,CAAC;gBACvD,CAAC,CAAC,CAAC;gBACL,MAAM;YACR,CAAC;YACD,KAAK,SAAS,CAAC,CAAC,CAAC;gBACf,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,4FAA4F,EAC5F,MAAM,CACP,CAAC;gBACF,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,uEAAuE,CAAC,CAAC;gBAC3F,IAAI,CAAC,uBAAuB,EAAE,CAAC;gBAC/B,MAAM;YACR,CAAC;YACD;gBACE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,gCAAgC,EAAE,KAAK,CAAC,CAAC;gBAC3D,MAAM;QACV,CAAC;IACH,CAAC;IAED;;;;OAIG;IACK,yBAAyB;QAC/B,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,mEAAmE;YACnE,IAAK,IAAI,CAAC,WAAmB,CAAC,kBAAkB;gBAAE,OAAO;YACzD,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC;YAC7C,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC;YAC7C,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC;YAC7D,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC;YAC5D,IAAI,CAAC,WAAmB,CAAC,kBAAkB,GAAG,IAAI,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;;;OAIG;IACK,KAAK,CAAC,iBAAiB;QAC7B,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,+DAA+D,CAAC,CAAC;QACnF,IAAI,CAAC,WAAW,GAAG,SAAS,CAAC;QAC7B,IAAI,CAAC,QAAQ,GAAG,SAAS,CAAC;QAC1B,IAAI,CAAC,eAAe,CAAC,cAAc,CAAC,0BAA0B,CAAC,CAAC;QAChE,IAAI,IAAI,CAAC,eAAe,CAAC,KAAK,KAAK,QAAQ,IAAI,IAAI,CAAC,eAAe,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;YACxF,IAAI,CAAC,uBAAuB,EAAE,CAAC;QACjC,CAAC;IACH,CAAC"}

package/dist/security/SignedMeterValuesUtil.d.ts

@@ -0,0 +1,44 @@
+import type { BootstrapConfig, IFileStorage, SystemConfig } from '@citrineos/base';
+import { OCPP2_0_1 } from '@citrineos/base';
+import type { ILogObj } from 'tslog';
+import { Logger } from 'tslog';
+/**
+ * Util to process and validate signed meter values.
+ */
+export declare class SignedMeterValuesUtil {
+    private readonly _fileStorage;
+    private readonly _logger;
+    private readonly _chargingStationSecurityInfoRepository;
+    private readonly _signedMeterValuesConfiguration;
+    /**
+     * @param {IFileStorage} [fileStorage] - The `fileStorage` allows access to the configured file storage.
+     *
+     * @param {BootstrapConfig & SystemConfig} config - The `config` contains the current system configuration settings.
+     *
+     * @param {Logger<ILogObj>} [logger] - The `logger` represents an instance of {@link Logger<ILogObj>}.
+     *
+     */
+    constructor(fileStorage: IFileStorage, config: BootstrapConfig & SystemConfig, logger: Logger<ILogObj>);
+    /**
+     * Checks the validity of a meter value.
+     *
+     * If a meter value is unsigned, it is valid.
+     *
+     * If a meter value is signed, it is valid if:
+     * - SignedMeterValuesConfig is configured
+     * AND
+     * - The incoming signed meter value's signing method matches the configured signing method
+     * AND
+     * - The incoming signed meter value's public key is empty but there is a public key stored for that charging station
+     * OR
+     * - The incoming signed meter value's public key isn't empty and it matches the configured public key
+     *
+     * @param stationId - The charging station the meter values belong to
+     * @param meterValues - The list of meter values
+     */
+    validateMeterValues(tenantId: number, stationId: string, meterValues: [OCPP2_0_1.MeterValueType, ...OCPP2_0_1.MeterValueType[]]): Promise<boolean>;
+    private validateSignedSampledValue;
+    private validateSignedMeterValueSignature;
+    private validateRsaSignature;
+    private formatKey;
+}

package/dist/security/SignedMeterValuesUtil.js

@@ -0,0 +1,135 @@
+import { sequelize } from '@citrineos/data';
+import { OCPP2_0_1, SignedMeterValuesConfig } from '@citrineos/base';
+import { Logger } from 'tslog';
+import * as crypto from 'node:crypto';
+import { stringToArrayBuffer } from 'pvutils';
+/**
+ * Util to process and validate signed meter values.
+ */
+export class SignedMeterValuesUtil {
+    _fileStorage;
+    _logger;
+    _chargingStationSecurityInfoRepository;
+    _signedMeterValuesConfiguration;
+    /**
+     * @param {IFileStorage} [fileStorage] - The `fileStorage` allows access to the configured file storage.
+     *
+     * @param {BootstrapConfig & SystemConfig} config - The `config` contains the current system configuration settings.
+     *
+     * @param {Logger<ILogObj>} [logger] - The `logger` represents an instance of {@link Logger<ILogObj>}.
+     *
+     */
+    constructor(fileStorage, config, logger) {
+        this._fileStorage = fileStorage;
+        this._logger = logger;
+        this._chargingStationSecurityInfoRepository =
+            new sequelize.SequelizeChargingStationSecurityInfoRepository(config, logger);
+        this._signedMeterValuesConfiguration =
+            config.modules.transactions.signedMeterValuesConfiguration;
+    }
+    /**
+     * Checks the validity of a meter value.
+     *
+     * If a meter value is unsigned, it is valid.
+     *
+     * If a meter value is signed, it is valid if:
+     * - SignedMeterValuesConfig is configured
+     * AND
+     * - The incoming signed meter value's signing method matches the configured signing method
+     * AND
+     * - The incoming signed meter value's public key is empty but there is a public key stored for that charging station
+     * OR
+     * - The incoming signed meter value's public key isn't empty and it matches the configured public key
+     *
+     * @param stationId - The charging station the meter values belong to
+     * @param meterValues - The list of meter values
+     */
+    async validateMeterValues(tenantId, stationId, meterValues) {
+        for (const meterValue of meterValues) {
+            for (const sampledValue of meterValue.sampledValue) {
+                if (sampledValue.signedMeterValue) {
+                    const validMeterValues = await this.validateSignedSampledValue(tenantId, stationId, sampledValue.signedMeterValue);
+                    if (!validMeterValues) {
+                        return false;
+                    }
+                }
+            }
+        }
+        return true;
+    }
+    async validateSignedSampledValue(tenantId, stationId, signedMeterValue) {
+        if (signedMeterValue.publicKey && signedMeterValue.publicKey.length > 0) {
+            const incomingPublicKeyIsValid = await this.validateSignedMeterValueSignature(signedMeterValue);
+            if (this._signedMeterValuesConfiguration && incomingPublicKeyIsValid) {
+                await this._chargingStationSecurityInfoRepository.readOrCreateChargingStationInfo(tenantId, stationId, this._signedMeterValuesConfiguration.publicKeyFileId);
+                return true;
+            }
+            else {
+                return false;
+            }
+        }
+        else {
+            const chargingStationPublicKeyFileId = await this._chargingStationSecurityInfoRepository.readChargingStationPublicKeyFileId(tenantId, stationId);
+            return await this.validateSignedMeterValueSignature(signedMeterValue, chargingStationPublicKeyFileId);
+        }
+    }
+    async validateSignedMeterValueSignature(signedMeterValue, publicKeyFileId) {
+        const incomingPublicKeyString = signedMeterValue.publicKey;
+        const signingMethod = signedMeterValue.signingMethod;
+        if (!this._signedMeterValuesConfiguration?.publicKeyFileId) {
+            this._logger.warn('Invalid signature because public key is missing from system config.');
+            return false;
+        }
+        if (publicKeyFileId &&
+            publicKeyFileId !== this._signedMeterValuesConfiguration?.publicKeyFileId) {
+            this._logger.warn('Invalid signature because incoming public key does not match configured public key.');
+            return false;
+        }
+        if (!publicKeyFileId && incomingPublicKeyString.length === 0) {
+            this._logger.warn('Invalid signature because no configured public key and incoming signed meter values has no public key.');
+            return false;
+        }
+        if (this._signedMeterValuesConfiguration?.signingMethod !== signingMethod) {
+            this._logger.warn('Invalid signature because incoming signing method does not match configured signing method.');
+            return false;
+        }
+        const configuredPublicKey = this.formatKey(await this._fileStorage.getFile(this._signedMeterValuesConfiguration.publicKeyFileId));
+        if (incomingPublicKeyString.length > 0) {
+            const signedMeterValuePublicKey = Buffer.from(signedMeterValue.publicKey, 'base64').toString();
+            if (configuredPublicKey !== signedMeterValuePublicKey) {
+                return false;
+            }
+        }
+        switch (signingMethod) {
+            case 'RSASSA-PKCS1-v1_5':
+                return await this.validateRsaSignature(configuredPublicKey, signingMethod, signedMeterValue.encodingMethod, signedMeterValue.signedMeterData);
+            default:
+                this._logger.warn(`${signingMethod} is not supported for Signed Meter Values.`);
+                return false;
+        }
+    }
+    async validateRsaSignature(configuredPublicKey, signingMethod, encodingMethod, signatureData) {
+        try {
+            const cryptoPublicKey = await crypto.subtle.importKey('spki', stringToArrayBuffer(atob(configuredPublicKey)), { name: signingMethod, hash: encodingMethod }, true, ['verify']);
+            const signatureBuffer = Buffer.from(signatureData, 'base64');
+            // For now, we only care that the signature could be read, regardless of the value in the signature.
+            await crypto.subtle.verify(signingMethod, cryptoPublicKey, signatureBuffer, signatureBuffer);
+            return true;
+        }
+        catch (e) {
+            const errorMessage = e instanceof DOMException ? e.message : JSON.stringify(e);
+            this._logger.warn(`Error decrypting public key or verifying signature from Signed Meter Value. Error: ${errorMessage}`);
+            return false;
+        }
+    }
+    formatKey(key) {
+        if (!key) {
+            throw new Error('Public key file is missing.');
+        }
+        return key
+            .replace('-----BEGIN PUBLIC KEY-----', '')
+            .replace('-----END PUBLIC KEY-----', '')
+            .replace(/(\r\n|\n|\r)/gm, '');
+    }
+}
+//# sourceMappingURL=SignedMeterValuesUtil.js.map

package/dist/security/SignedMeterValuesUtil.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SignedMeterValuesUtil.js","sourceRoot":"","sources":["../../src/security/SignedMeterValuesUtil.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C,OAAO,EAAE,SAAS,EAAE,uBAAuB,EAAE,MAAM,iBAAiB,CAAC;AAErE,OAAO,EAAE,MAAM,EAAE,MAAM,OAAO,CAAC;AAC/B,OAAO,KAAK,MAAM,MAAM,aAAa,CAAC;AACtC,OAAO,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAE9C;;GAEG;AACH,MAAM,OAAO,qBAAqB;IACf,YAAY,CAAe;IAC3B,OAAO,CAAkB;IACzB,sCAAsC,CAAyC;IAE/E,+BAA+B,CAAsC;IAEtF;;;;;;;OAOG;IACH,YACE,WAAyB,EACzB,MAAsC,EACtC,MAAuB;QAEvB,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC;QAChC,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,sCAAsC;YACzC,IAAI,SAAS,CAAC,8CAA8C,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAE/E,IAAI,CAAC,+BAA+B;YAClC,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,8BAA8B,CAAC;IAC/D,CAAC;IAED;;;;;;;;;;;;;;;;OAgBG;IACI,KAAK,CAAC,mBAAmB,CAC9B,QAAgB,EAChB,SAAiB,EACjB,WAAsE;QAEtE,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;YACrC,KAAK,MAAM,YAAY,IAAI,UAAU,CAAC,YAAY,EAAE,CAAC;gBACnD,IAAI,YAAY,CAAC,gBAAgB,EAAE,CAAC;oBAClC,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,0BAA0B,CAC5D,QAAQ,EACR,SAAS,EACT,YAAY,CAAC,gBAAgB,CAC9B,CAAC;oBACF,IAAI,CAAC,gBAAgB,EAAE,CAAC;wBACtB,OAAO,KAAK,CAAC;oBACf,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,KAAK,CAAC,0BAA0B,CACtC,QAAgB,EAChB,SAAiB,EACjB,gBAAgD;QAEhD,IAAI,gBAAgB,CAAC,SAAS,IAAI,gBAAgB,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxE,MAAM,wBAAwB,GAC5B,MAAM,IAAI,CAAC,iCAAiC,CAAC,gBAAgB,CAAC,CAAC;YAEjE,IAAI,IAAI,CAAC,+BAA+B,IAAI,wBAAwB,EAAE,CAAC;gBACrE,MAAM,IAAI,CAAC,sCAAsC,CAAC,+BAA+B,CAC/E,QAAQ,EACR,SAAS,EACT,IAAI,CAAC,+BAA+B,CAAC,eAAe,CACrD,CAAC;gBAEF,OAAO,IAAI,CAAC;YACd,CAAC;iBAAM,CAAC;gBACN,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,8BAA8B,GAClC,MAAM,IAAI,CAAC,sCAAsC,CAAC,kCAAkC,CAClF,QAAQ,EACR,SAAS,CACV,CAAC;YACJ,OAAO,MAAM,IAAI,CAAC,iCAAiC,CACjD,gBAAgB,EAChB,8BAA8B,CAC/B,CAAC;QACJ,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,iCAAiC,CAC7C,gBAAgD,EAChD,eAAwB;QAExB,MAAM,uBAAuB,GAAG,gBAAgB,CAAC,SAAS,CAAC;QAC3D,MAAM,aAAa,GAAG,gBAAgB,CAAC,aAAa,CAAC;QAErD,IAAI,CAAC,IAAI,CAAC,+BAA+B,EAAE,eAAe,EAAE,CAAC;YAC3D,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,qEAAqE,CAAC,CAAC;YACzF,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IACE,eAAe;YACf,eAAe,KAAK,IAAI,CAAC,+BAA+B,EAAE,eAAe,EACzE,CAAC;YACD,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,qFAAqF,CACtF,CAAC;YACF,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,CAAC,eAAe,IAAI,uBAAuB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC7D,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,wGAAwG,CACzG,CAAC;YACF,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,IAAI,CAAC,+BAA+B,EAAE,aAAa,KAAK,aAAa,EAAE,CAAC;YAC1E,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,6FAA6F,CAC9F,CAAC;YACF,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,mBAAmB,GAAG,IAAI,CAAC,SAAS,CACxC,MAAM,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,+BAA+B,CAAC,eAAe,CAAC,CACtF,CAAC;QAEF,IAAI,uBAAuB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvC,MAAM,yBAAyB,GAAG,MAAM,CAAC,IAAI,CAC3C,gBAAgB,CAAC,SAAS,EAC1B,QAAQ,CACT,CAAC,QAAQ,EAAE,CAAC;YAEb,IAAI,mBAAmB,KAAK,yBAAyB,EAAE,CAAC;gBACtD,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;QAED,QAAQ,aAAa,EAAE,CAAC;YACtB,KAAK,mBAAmB;gBACtB,OAAO,MAAM,IAAI,CAAC,oBAAoB,CACpC,mBAAmB,EACnB,aAAa,EACb,gBAAgB,CAAC,cAAc,EAC/B,gBAAgB,CAAC,eAAe,CACjC,CAAC;YACJ;gBACE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,aAAa,4CAA4C,CAAC,CAAC;gBAChF,OAAO,KAAK,CAAC;QACjB,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,oBAAoB,CAChC,mBAA2B,EAC3B,aAAqB,EACrB,cAAsB,EACtB,aAAqB;QAErB,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CACnD,MAAM,EACN,mBAAmB,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,EAC9C,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,cAAc,EAAE,EAC7C,IAAI,EACJ,CAAC,QAAQ,CAAC,CACX,CAAC;YAEF,MAAM,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC;YAC7D,oGAAoG;YACpG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,aAAa,EAAE,eAAe,EAAE,eAAe,EAAE,eAAe,CAAC,CAAC;YAC7F,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,YAAY,GAAG,CAAC,YAAY,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;YAC/E,IAAI,CAAC,OAAO,CAAC,IAAI,CACf,sFAAsF,YAAY,EAAE,CACrG,CAAC;YACF,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAEO,SAAS,CAAC,GAAuB;QACvC,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACjD,CAAC;QACD,OAAO,GAAG;aACP,OAAO,CAAC,4BAA4B,EAAE,EAAE,CAAC;aACzC,OAAO,CAAC,0BAA0B,EAAE,EAAE,CAAC;aACvC,OAAO,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC;IACnC,CAAC;CACF"}

package/dist/security/authentication.d.ts

@@ -0,0 +1,2 @@
+export declare function generatePassword(): string;
+export declare function isValidPassword(password: string): boolean;

package/dist/security/authentication.js

@@ -0,0 +1,26 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+import { randomBytes } from 'node:crypto';
+const MIN_LENGTH = 16;
+const MAX_LENGTH = 40;
+const LOWERCASE = 'abcdefghijklmnopqrstuvwxyz';
+const UPPERCASE = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ';
+const DIGITS = '0123456789';
+const SYMBOLS = '*-_=:+|@.';
+const CHARSET = [...LOWERCASE, ...UPPERCASE, ...DIGITS, ...SYMBOLS];
+export function generatePassword() {
+    return [...randomBytes(MAX_LENGTH)].map((value) => CHARSET[value % CHARSET.length]).join('');
+}
+export function isValidPassword(password) {
+    if (password.length < MIN_LENGTH || password.length > MAX_LENGTH) {
+        return false;
+    }
+    for (const char of password) {
+        if (!CHARSET.includes(char)) {
+            return false;
+        }
+    }
+    return true;
+}
+//# sourceMappingURL=authentication.js.map

package/dist/security/authentication.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authentication.js","sourceRoot":"","sources":["../../src/security/authentication.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE1C,MAAM,UAAU,GAAG,EAAE,CAAC;AACtB,MAAM,UAAU,GAAG,EAAE,CAAC;AAEtB,MAAM,SAAS,GAAG,4BAA4B,CAAC;AAC/C,MAAM,SAAS,GAAG,4BAA4B,CAAC;AAC/C,MAAM,MAAM,GAAG,YAAY,CAAC;AAC5B,MAAM,OAAO,GAAG,WAAW,CAAC;AAC5B,MAAM,OAAO,GAAG,CAAC,GAAG,SAAS,EAAE,GAAG,SAAS,EAAE,GAAG,MAAM,EAAE,GAAG,OAAO,CAAC,CAAC;AAEpE,MAAM,UAAU,gBAAgB;IAC9B,OAAO,CAAC,GAAG,WAAW,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,OAAO,CAAC,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AAC/F,CAAC;AAED,MAAM,UAAU,eAAe,CAAC,QAAgB;IAC9C,IAAI,QAAQ,CAAC,MAAM,GAAG,UAAU,IAAI,QAAQ,CAAC,MAAM,GAAG,UAAU,EAAE,CAAC;QACjE,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;QAC5B,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5B,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/util/RequestOperations.d.ts

@@ -0,0 +1,14 @@
+import { IncomingMessage } from 'http';
+/**
+ * Extracts credentials from the Authorization header.
+ *
+ * The Authorization header is formatted as follows:
+ * AUTHORIZATION: Basic <Base64 encoded(<Configured ChargingStationId>:<Configured BasicAuthPassword>)>
+ *
+ * @param {http.IncomingMessage} req - The request object.
+ * @returns Extracted credentials.
+ */
+export declare function extractBasicCredentials(req: IncomingMessage): {
+    username?: string;
+    password?: string;
+};

package/dist/util/RequestOperations.js

@@ -0,0 +1,25 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+import { IncomingMessage } from 'http';
+import { splitOnce } from './StringOperations.js';
+/**
+ * Extracts credentials from the Authorization header.
+ *
+ * The Authorization header is formatted as follows:
+ * AUTHORIZATION: Basic <Base64 encoded(<Configured ChargingStationId>:<Configured BasicAuthPassword>)>
+ *
+ * @param {http.IncomingMessage} req - The request object.
+ * @returns Extracted credentials.
+ */
+export function extractBasicCredentials(req) {
+    const authHeader = req.headers.authorization;
+    if (!authHeader?.startsWith('Basic ')) {
+        return {};
+    }
+    const base64Credentials = authHeader.split(' ')[1];
+    const decodedCredentials = Buffer.from(base64Credentials, 'base64').toString();
+    const [username, password] = splitOnce(decodedCredentials, ':');
+    return { username, password };
+}
+//# sourceMappingURL=RequestOperations.js.map

package/dist/util/RequestOperations.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"RequestOperations.js","sourceRoot":"","sources":["../../src/util/RequestOperations.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC,OAAO,EAAE,eAAe,EAAE,MAAM,MAAM,CAAC;AACvC,OAAO,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AAElD;;;;;;;;GAQG;AACH,MAAM,UAAU,uBAAuB,CAAC,GAAoB;IAI1D,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC;IAC7C,IAAI,CAAC,UAAU,EAAE,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QACtC,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,MAAM,iBAAiB,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACnD,MAAM,kBAAkB,GAAG,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,QAAQ,CAAC,CAAC,QAAQ,EAAE,CAAC;IAE/E,MAAM,CAAC,QAAQ,EAAE,QAAQ,CAAC,GAAG,SAAS,CAAC,kBAAkB,EAAE,GAAG,CAAC,CAAC;IAEhE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC;AAChC,CAAC"}

package/dist/util/StringOperations.d.ts

@@ -0,0 +1 @@
+export declare function splitOnce(value: string, separator: string): [string, string?];

package/dist/util/StringOperations.js

@@ -0,0 +1,8 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+export function splitOnce(value, separator) {
+    const idx = value.indexOf(separator);
+    return idx == -1 ? [value] : [value.substring(0, idx), value.substring(idx + separator.length)];
+}
+//# sourceMappingURL=StringOperations.js.map

package/dist/util/StringOperations.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"StringOperations.js","sourceRoot":"","sources":["../../src/util/StringOperations.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC,MAAM,UAAU,SAAS,CAAC,KAAa,EAAE,SAAiB;IACxD,MAAM,GAAG,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACrC,OAAO,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC,GAAG,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC;AAClG,CAAC"}

package/dist/util/emaidCheckDigitCalculator.d.ts

@@ -0,0 +1,15 @@
+/**
+ * Calculate check digit for eMAID according to eMI³ specification
+ * Based on the algorithm described in "Check Digit Calculation for Contract-IDs"
+ *
+ * This implementation can detect five most frequent error types:
+ * 1. Single error: one character is wrong
+ * 2. Adjacent transposition: two adjacent characters are swapped
+ * 3. Twin error: two identical adjacent characters are both changed
+ * 4. Jump transposition: abc becomes cba
+ * 5. Jump twin error: aca becomes bcb
+ *
+ * @param emaidWithoutCheckDigit - The first 14 characters of the eMAID (without check digit)
+ * @returns The calculated check digit character
+ */
+export declare function calculateCheckDigit(emaidWithoutCheckDigit: string): string;