@zetra/citrineos-util 1.8.3-fork.1

package/dist/authorization/rbac/RbacRulesLoader.js

@@ -0,0 +1,105 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+import * as fs from 'fs';
+import { Logger } from 'tslog';
+import { RbacRulesSchema } from '@citrineos/base';
+import { UrlMatcher } from './UrlMatcher.js';
+import path from 'path';
+/**
+ * Class to load and validate RBAC rules
+ */
+export class RbacRulesLoader {
+    _rules = {};
+    _logger;
+    /**
+     * Creates a new RBAC rules loader
+     *
+     * @param rulesFilePath Path to the JSON rules file
+     * @param logger Logger instance
+     */
+    constructor(rulesFilePath, logger) {
+        this._logger = logger.getSubLogger({ name: 'RbacRulesLoader' });
+        this.loadRules(rulesFilePath);
+    }
+    /**
+     * Load and validate rules from a JSON file
+     *
+     * @param filePath Path to the JSON rules file
+     */
+    loadRules(filePath) {
+        const absoluteFilePath = path.join(process.cwd(), filePath);
+        try {
+            if (!fs.existsSync(absoluteFilePath)) {
+                this._logger.warn(`Rules file not found at ${absoluteFilePath}, using empty rules`);
+                return;
+            }
+            const rulesContent = fs.readFileSync(absoluteFilePath, 'utf8');
+            const parsedRules = JSON.parse(rulesContent);
+            // Validate rules against the schema
+            const validationResult = RbacRulesSchema.safeParse(parsedRules);
+            if (!validationResult.success) {
+                this._logger.error('Invalid RBAC rules format:', validationResult.error);
+                throw new Error('Invalid RBAC rules format');
+            }
+            // Store the validated rules
+            this._rules = validationResult.data;
+            this._logger.info(`Successfully loaded RBAC rules from ${filePath}`);
+            this._logger.debug(`Loaded ${Object.keys(this._rules).length} tenants with rules`);
+        }
+        catch (error) {
+            if (error instanceof Error && error.message === 'Invalid RBAC rules format') {
+                throw error; // Re-throw validation errors
+            }
+            this._logger.error('Failed to load RBAC rules:', error);
+            throw new Error(`Failed to load RBAC rules: ${error instanceof Error ? error.message : String(error)}`);
+        }
+    }
+    /**
+     * Get the required roles for a specific tenant, URL, and HTTP method
+     *
+     * @param tenantId Tenant identifier
+     * @param url URL path
+     * @param method HTTP method
+     * @returns Array of required roles or null if no matching rule
+     */
+    getRequiredRoles(tenantId, url, method) {
+        // Normalize method to uppercase
+        method = method.toUpperCase();
+        const cleanUrl = this.normalizeUrl(url);
+        const tenantRules = this._rules[tenantId];
+        if (!tenantRules) {
+            return null;
+        }
+        // Try exact URL match first
+        const exactUrlRules = tenantRules[cleanUrl];
+        if (exactUrlRules) {
+            return exactUrlRules[method] || exactUrlRules['*'] || null;
+        }
+        // Pattern matching
+        for (const pattern in tenantRules) {
+            if (UrlMatcher.match(cleanUrl, pattern)) {
+                const methodRules = tenantRules[pattern];
+                const roles = methodRules[method] || methodRules['*'];
+                if (roles) {
+                    return roles;
+                }
+            }
+        }
+        return null;
+    }
+    normalizeUrl(url) {
+        // Remove query parameters and fragments
+        let cleanUrl = url.split('?')[0].split('#')[0];
+        // Remove trailing slash (optional, depends on your URL patterns)
+        if (cleanUrl.length > 1 && cleanUrl.endsWith('/')) {
+            cleanUrl = cleanUrl.slice(0, -1);
+        }
+        // Ensure it starts with /
+        if (!cleanUrl.startsWith('/')) {
+            cleanUrl = '/' + cleanUrl;
+        }
+        return cleanUrl;
+    }
+}
+//# sourceMappingURL=RbacRulesLoader.js.map

package/dist/authorization/rbac/RbacRulesLoader.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"RbacRulesLoader.js","sourceRoot":"","sources":["../../../src/authorization/rbac/RbacRulesLoader.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AAEzB,OAAO,EAAE,MAAM,EAAE,MAAM,OAAO,CAAC;AAE/B,OAAO,EAAE,eAAe,EAAE,MAAM,iBAAiB,CAAC;AAClD,OAAO,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAC7C,OAAO,IAAI,MAAM,MAAM,CAAC;AAExB;;GAEG;AACH,MAAM,OAAO,eAAe;IAClB,MAAM,GAAc,EAAE,CAAC;IACd,OAAO,CAAkB;IAE1C;;;;;OAKG;IACH,YAAY,aAAqB,EAAE,MAAuB;QACxD,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,YAAY,CAAC,EAAE,IAAI,EAAE,iBAAiB,EAAE,CAAC,CAAC;QAChE,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;IAChC,CAAC;IAED;;;;OAIG;IACK,SAAS,CAAC,QAAgB;QAChC,MAAM,gBAAgB,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,QAAQ,CAAC,CAAC;QAC5D,IAAI,CAAC;YACH,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,gBAAgB,CAAC,EAAE,CAAC;gBACrC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,2BAA2B,gBAAgB,qBAAqB,CAAC,CAAC;gBACpF,OAAO;YACT,CAAC;YAED,MAAM,YAAY,GAAG,EAAE,CAAC,YAAY,CAAC,gBAAgB,EAAE,MAAM,CAAC,CAAC;YAC/D,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;YAE7C,oCAAoC;YACpC,MAAM,gBAAgB,GAAG,eAAe,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;YAEhE,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,CAAC;gBAC9B,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,4BAA4B,EAAE,gBAAgB,CAAC,KAAK,CAAC,CAAC;gBACzE,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;YAC/C,CAAC;YAED,4BAA4B;YAC5B,IAAI,CAAC,MAAM,GAAG,gBAAgB,CAAC,IAAI,CAAC;YAEpC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,uCAAuC,QAAQ,EAAE,CAAC,CAAC;YACrE,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,UAAU,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,MAAM,qBAAqB,CAAC,CAAC;QACrF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,OAAO,KAAK,2BAA2B,EAAE,CAAC;gBAC5E,MAAM,KAAK,CAAC,CAAC,6BAA6B;YAC5C,CAAC;YACD,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,4BAA4B,EAAE,KAAK,CAAC,CAAC;YACxD,MAAM,IAAI,KAAK,CACb,8BAA8B,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACvF,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;;;;;;OAOG;IACI,gBAAgB,CAAC,QAAgB,EAAE,GAAW,EAAE,MAAc;QACnE,gCAAgC;QAChC,MAAM,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;QAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC;QACxC,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC1C,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,4BAA4B;QAC5B,MAAM,aAAa,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,aAAa,EAAE,CAAC;YAClB,OAAO,aAAa,CAAC,MAAM,CAAC,IAAI,aAAa,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC;QAC7D,CAAC;QAED,mBAAmB;QACnB,KAAK,MAAM,OAAO,IAAI,WAAW,EAAE,CAAC;YAClC,IAAI,UAAU,CAAC,KAAK,CAAC,QAAQ,EAAE,OAAO,CAAC,EAAE,CAAC;gBACxC,MAAM,WAAW,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;gBACzC,MAAM,KAAK,GAAG,WAAW,CAAC,MAAM,CAAC,IAAI,WAAW,CAAC,GAAG,CAAC,CAAC;gBACtD,IAAI,KAAK,EAAE,CAAC;oBACV,OAAO,KAAK,CAAC;gBACf,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,YAAY,CAAC,GAAW;QAC9B,wCAAwC;QACxC,IAAI,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAE/C,iEAAiE;QACjE,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YAClD,QAAQ,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QACnC,CAAC;QAED,0BAA0B;QAC1B,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YAC9B,QAAQ,GAAG,GAAG,GAAG,QAAQ,CAAC;QAC5B,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;CACF"}

package/dist/authorization/rbac/UrlMatcher.d.ts

@@ -0,0 +1,14 @@
+/**
+ * Utility for matching URLs against patterns
+ */
+export declare class UrlMatcher {
+    /**
+     * Check if a URL matches a pattern
+     * Supports exact matches, wildcards, and path parameters
+     *
+     * @param url URL to check
+     * @param pattern Pattern to match against
+     * @returns True if URL matches pattern
+     */
+    static match(url: string, pattern: string): boolean;
+}

package/dist/authorization/rbac/UrlMatcher.js

@@ -0,0 +1,44 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+/**
+ * Utility for matching URLs against patterns
+ */
+export class UrlMatcher {
+    /**
+     * Check if a URL matches a pattern
+     * Supports exact matches, wildcards, and path parameters
+     *
+     * @param url URL to check
+     * @param pattern Pattern to match against
+     * @returns True if URL matches pattern
+     */
+    static match(url, pattern) {
+        // Handle exact matches
+        if (url === pattern) {
+            return true;
+        }
+        // Handle wildcard patterns
+        if (pattern.endsWith('/*')) {
+            const basePattern = pattern.slice(0, -1);
+            return url === basePattern || url.startsWith(basePattern);
+        }
+        // Handle path parameters (e.g., /users/:id)
+        const patternSegments = pattern.split('/').filter(Boolean);
+        const urlSegments = url.split('/').filter(Boolean);
+        if (patternSegments.length !== urlSegments.length) {
+            return false;
+        }
+        for (let i = 0; i < patternSegments.length; i++) {
+            // Skip path parameters (starting with :)
+            if (patternSegments[i].startsWith(':')) {
+                continue;
+            }
+            if (patternSegments[i] !== urlSegments[i]) {
+                return false;
+            }
+        }
+        return true;
+    }
+}
+//# sourceMappingURL=UrlMatcher.js.map

package/dist/authorization/rbac/UrlMatcher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"UrlMatcher.js","sourceRoot":"","sources":["../../../src/authorization/rbac/UrlMatcher.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC;;GAEG;AACH,MAAM,OAAO,UAAU;IACrB;;;;;;;OAOG;IACI,MAAM,CAAC,KAAK,CAAC,GAAW,EAAE,OAAe;QAC9C,uBAAuB;QACvB,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;YACpB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,2BAA2B;QAC3B,IAAI,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3B,MAAM,WAAW,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;YACzC,OAAO,GAAG,KAAK,WAAW,IAAI,GAAG,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;QAC5D,CAAC;QAED,4CAA4C;QAC5C,MAAM,eAAe,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAC3D,MAAM,WAAW,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAEnD,IAAI,eAAe,CAAC,MAAM,KAAK,WAAW,CAAC,MAAM,EAAE,CAAC;YAClD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,eAAe,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAChD,yCAAyC;YACzC,IAAI,eAAe,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBACvC,SAAS;YACX,CAAC;YACD,IAAI,eAAe,CAAC,CAAC,CAAC,KAAK,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC;gBAC1C,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}

package/dist/authorizer/RealTimeAuthorizer.d.ts

@@ -0,0 +1,28 @@
+import { type AuthorizationStatusEnumType, type ConnectorDto, type EvseDto, type IAuthorizer, type IdTokenEnumType, type IMessageContext, type SystemConfig } from '@citrineos/base';
+import type { Authorization, ILocationRepository } from '@citrineos/data';
+import type { ILogObj } from 'tslog';
+import { Logger } from 'tslog';
+export interface RealTimeAuthorizationRequestBody {
+    tenantPartnerId: number;
+    idToken: string;
+    idTokenType: IdTokenEnumType;
+    locationId?: string;
+    stationId: string;
+    evseId: number;
+    connectorId: number;
+}
+export interface RealTimeAuthorizationResponse {
+    timestamp: string;
+    data: {
+        allowed: string;
+        reason?: string;
+    };
+}
+export declare class RealTimeAuthorizer implements IAuthorizer {
+    private _locationRepository;
+    private _config;
+    private readonly _logger;
+    private readonly _oidcTokenProvider?;
+    constructor(locationRepository: ILocationRepository, config: SystemConfig, logger?: Logger<ILogObj>);
+    authorize(authorization: Authorization, context: IMessageContext, evse?: EvseDto, connector?: ConnectorDto): Promise<AuthorizationStatusEnumType>;
+}

package/dist/authorizer/RealTimeAuthorizer.js

@@ -0,0 +1,152 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+import { AuthorizationStatusEnum, AuthorizationWhitelistEnum, } from '@citrineos/base';
+import { Logger } from 'tslog';
+import { OidcTokenProvider } from '../authorization/index.js';
+export class RealTimeAuthorizer {
+    _locationRepository;
+    _config;
+    _logger;
+    _oidcTokenProvider;
+    constructor(locationRepository, config, logger) {
+        this._locationRepository = locationRepository;
+        this._config = config;
+        this._logger = logger
+            ? logger.getSubLogger({ name: this.constructor.name })
+            : new Logger({ name: this.constructor.name });
+        if (config.oidcClient) {
+            this._oidcTokenProvider = new OidcTokenProvider(config.oidcClient, this._logger);
+        }
+    }
+    async authorize(authorization, context, evse, connector) {
+        if (!authorization.realTimeAuthUrl) {
+            this._logger.debug(`No Realtime Auth URL from authorization ${authorization.id}`);
+            return authorization.status;
+        }
+        else if (!authorization.realTimeAuth ||
+            authorization.realTimeAuth === AuthorizationWhitelistEnum.Allowed) {
+            this._logger.debug(`Realtime Auth whitelisted for authorization ${authorization.id}`);
+            return authorization.status;
+        }
+        else if (authorization.status !== AuthorizationStatusEnum.Accepted) {
+            this._logger.debug(`Skipping Realtime Auth for authorization ${authorization.id} with status ${authorization.status}`);
+            return authorization.status;
+        }
+        let evseId = undefined;
+        let connectorId = undefined;
+        let result = AuthorizationStatusEnum.Invalid;
+        try {
+            const chargingStation = await this._locationRepository.readChargingStationByStationId(context.tenantId, context.stationId);
+            // Determine evseId and connectorId
+            // Priority: provided evse and connector > provided evse with single connector > station with single evse and single connector
+            if (evse && connector) {
+                evseId = evse.id;
+                connectorId = connector.id;
+            }
+            else if (evse && !connector && evse.connectors?.length === 1) {
+                evseId = evse.id;
+                connectorId = evse.connectors[0].id;
+            }
+            else if (chargingStation &&
+                chargingStation.evses &&
+                chargingStation.evses.length === 1 &&
+                chargingStation.evses[0].connectors?.length === 1) {
+                evseId = chargingStation.evses[0].id;
+                connectorId = chargingStation.evses[0].connectors[0].id;
+            }
+            if (evseId === undefined || connectorId === undefined) {
+                this._logger.error(`Cannot determine evseId and connectorId for Realtime Auth of authorization ${authorization.id}`);
+                return authorization.status;
+            }
+            else if (authorization.realTimeAuthLastAttempt) {
+                const realTimeAuthLastAttempt = authorization.realTimeAuthLastAttempt;
+                // Check if last attempt was at the same station and connector within the timeout period
+                if (context.stationId === realTimeAuthLastAttempt.stationId &&
+                    connectorId === realTimeAuthLastAttempt.connectorId) {
+                    const lastAttempt = new Date(realTimeAuthLastAttempt.timestamp);
+                    const timeout = authorization.realTimeAuthTimeout ?? this._config.realTimeAuthDefaultTimeoutSeconds;
+                    const now = new Date();
+                    const diffInSeconds = (now.getTime() - lastAttempt.getTime()) / 1000;
+                    if (diffInSeconds < timeout) {
+                        this._logger.debug(`Skipping Realtime Auth for authorization ${authorization.id} due to timeout (${diffInSeconds}s < ${timeout}s)`);
+                        return realTimeAuthLastAttempt.result;
+                    }
+                }
+            }
+            const payload = {
+                tenantPartnerId: authorization.tenantPartnerId, // Required if authorization has RealTimeAuth
+                idToken: authorization.idToken,
+                idTokenType: authorization.idTokenType,
+                locationId: chargingStation.locationId.toString(),
+                stationId: context.stationId,
+                evseId: evseId,
+                connectorId: connectorId,
+            };
+            this._logger.debug(`Sending Realtime Auth request for authorization ${authorization.id} to url: ${authorization.realTimeAuthUrl}`);
+            const headers = {
+                'Content-Type': 'application/json',
+            };
+            if (this._oidcTokenProvider) {
+                try {
+                    const token = await this._oidcTokenProvider.getToken();
+                    headers['Authorization'] = `Bearer ${token}`;
+                }
+                catch (error) {
+                    this._logger.error('Failed to get OIDC token:', error);
+                    return AuthorizationStatusEnum.Invalid;
+                }
+            }
+            const response = await fetch(authorization.realTimeAuthUrl, {
+                method: 'POST',
+                headers,
+                body: JSON.stringify(payload),
+            });
+            const responseJson = await response.json();
+            const realTimeAuth = responseJson;
+            this._logger.debug(`Real time auth response: ${realTimeAuth.data.allowed}`);
+            if (realTimeAuth) {
+                switch (realTimeAuth.data.allowed) {
+                    case 'ALLOWED':
+                        result = AuthorizationStatusEnum.Accepted;
+                        break;
+                    case 'BLOCKED':
+                        result = AuthorizationStatusEnum.Blocked;
+                        break;
+                    case 'EXPIRED':
+                        result = AuthorizationStatusEnum.Expired;
+                        break;
+                    case 'NO_CREDIT':
+                        result = AuthorizationStatusEnum.NoCredit;
+                        break;
+                    case 'NOT_ALLOWED':
+                        result = AuthorizationStatusEnum.NotAtThisLocation;
+                        break;
+                    default:
+                        result = AuthorizationStatusEnum.Unknown;
+                }
+            }
+            else {
+                result = AuthorizationStatusEnum.Unknown;
+            }
+        }
+        catch (error) {
+            this._logger.error(`Real-Time Auth failed: ${error}`);
+            if (authorization.realTimeAuth === 'AllowedOffline') {
+                result = AuthorizationStatusEnum.Accepted;
+            }
+        }
+        authorization.realTimeAuthLastAttempt = {
+            timestamp: new Date().toISOString(),
+            result,
+            stationId: context.stationId,
+            evseId: evseId,
+            connectorId: connectorId,
+        };
+        authorization.save().catch((error) => {
+            this._logger.error(`Failed to save realTimeAuthLastAttempt for authorization ${authorization.id}: ${error}`);
+        });
+        return result;
+    }
+}
+//# sourceMappingURL=RealTimeAuthorizer.js.map

package/dist/authorizer/RealTimeAuthorizer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"RealTimeAuthorizer.js","sourceRoot":"","sources":["../../src/authorizer/RealTimeAuthorizer.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC,OAAO,EACL,uBAAuB,EACvB,0BAA0B,GAQ3B,MAAM,iBAAiB,CAAC;AAGzB,OAAO,EAAE,MAAM,EAAE,MAAM,OAAO,CAAC;AAC/B,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAoB9D,MAAM,OAAO,kBAAkB;IACrB,mBAAmB,CAAsB;IACzC,OAAO,CAAe;IACb,OAAO,CAAkB;IACzB,kBAAkB,CAAqB;IAExD,YACE,kBAAuC,EACvC,MAAoB,EACpB,MAAwB;QAExB,IAAI,CAAC,mBAAmB,GAAG,kBAAkB,CAAC;QAC9C,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,OAAO,GAAG,MAAM;YACnB,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;YACtD,CAAC,CAAC,IAAI,MAAM,CAAU,EAAE,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC;QACzD,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;YACtB,IAAI,CAAC,kBAAkB,GAAG,IAAI,iBAAiB,CAAC,MAAM,CAAC,UAAU,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QACnF,CAAC;IACH,CAAC;IAED,KAAK,CAAC,SAAS,CACb,aAA4B,EAC5B,OAAwB,EACxB,IAAc,EACd,SAAwB;QAExB,IAAI,CAAC,aAAa,CAAC,eAAe,EAAE,CAAC;YACnC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,2CAA2C,aAAa,CAAC,EAAE,EAAE,CAAC,CAAC;YAClF,OAAO,aAAa,CAAC,MAAM,CAAC;QAC9B,CAAC;aAAM,IACL,CAAC,aAAa,CAAC,YAAY;YAC3B,aAAa,CAAC,YAAY,KAAK,0BAA0B,CAAC,OAAO,EACjE,CAAC;YACD,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,+CAA+C,aAAa,CAAC,EAAE,EAAE,CAAC,CAAC;YACtF,OAAO,aAAa,CAAC,MAAM,CAAC;QAC9B,CAAC;aAAM,IAAI,aAAa,CAAC,MAAM,KAAK,uBAAuB,CAAC,QAAQ,EAAE,CAAC;YACrE,IAAI,CAAC,OAAO,CAAC,KAAK,CAChB,4CAA4C,aAAa,CAAC,EAAE,gBAAgB,aAAa,CAAC,MAAM,EAAE,CACnG,CAAC;YACF,OAAO,aAAa,CAAC,MAAM,CAAC;QAC9B,CAAC;QAED,IAAI,MAAM,GAAG,SAAS,CAAC;QACvB,IAAI,WAAW,GAAG,SAAS,CAAC;QAC5B,IAAI,MAAM,GAAgC,uBAAuB,CAAC,OAAO,CAAC;QAC1E,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,8BAA8B,CACnF,OAAO,CAAC,QAAQ,EAChB,OAAO,CAAC,SAAS,CAClB,CAAC;YAEF,mCAAmC;YACnC,8HAA8H;YAC9H,IAAI,IAAI,IAAI,SAAS,EAAE,CAAC;gBACtB,MAAM,GAAG,IAAI,CAAC,EAAG,CAAC;gBAClB,WAAW,GAAG,SAAS,CAAC,EAAG,CAAC;YAC9B,CAAC;iBAAM,IAAI,IAAI,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,UAAU,EAAE,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC/D,MAAM,GAAG,IAAI,CAAC,EAAG,CAAC;gBAClB,WAAW,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,EAAG,CAAC;YACvC,CAAC;iBAAM,IACL,eAAe;gBACf,eAAe,CAAC,KAAK;gBACrB,eAAe,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC;gBAClC,eAAe,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,UAAU,EAAE,MAAM,KAAK,CAAC,EACjD,CAAC;gBACD,MAAM,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAG,CAAC;gBACtC,WAAW,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,UAAW,CAAC,CAAC,CAAC,CAAC,EAAG,CAAC;YAC5D,CAAC;YAED,IAAI,MAAM,KAAK,SAAS,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;gBACtD,IAAI,CAAC,OAAO,CAAC,KAAK,CAChB,8EAA8E,aAAa,CAAC,EAAE,EAAE,CACjG,CAAC;gBACF,OAAO,aAAa,CAAC,MAAM,CAAC;YAC9B,CAAC;iBAAM,IAAI,aAAa,CAAC,uBAAuB,EAAE,CAAC;gBACjD,MAAM,uBAAuB,GAAG,aAAa,CAAC,uBAAuB,CAAC;gBACtE,wFAAwF;gBACxF,IACE,OAAO,CAAC,SAAS,KAAK,uBAAuB,CAAC,SAAS;oBACvD,WAAY,KAAK,uBAAuB,CAAC,WAAW,EACpD,CAAC;oBACD,MAAM,WAAW,GAAG,IAAI,IAAI,CAAC,uBAAuB,CAAC,SAAS,CAAC,CAAC;oBAChE,MAAM,OAAO,GACX,aAAa,CAAC,mBAAmB,IAAI,IAAI,CAAC,OAAO,CAAC,iCAAiC,CAAC;oBACtF,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;oBACvB,MAAM,aAAa,GAAG,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,WAAW,CAAC,OAAO,EAAE,CAAC,GAAG,IAAI,CAAC;oBACrE,IAAI,aAAa,GAAG,OAAO,EAAE,CAAC;wBAC5B,IAAI,CAAC,OAAO,CAAC,KAAK,CAChB,4CAA4C,aAAa,CAAC,EAAE,oBAAoB,aAAa,OAAO,OAAO,IAAI,CAChH,CAAC;wBACF,OAAO,uBAAuB,CAAC,MAAM,CAAC;oBACxC,CAAC;gBACH,CAAC;YACH,CAAC;YAED,MAAM,OAAO,GAAqC;gBAChD,eAAe,EAAE,aAAa,CAAC,eAAgB,EAAE,6CAA6C;gBAC9F,OAAO,EAAE,aAAa,CAAC,OAAO;gBAC9B,WAAW,EAAE,aAAa,CAAC,WAAY;gBACvC,UAAU,EAAE,eAAgB,CAAC,UAAW,CAAC,QAAQ,EAAE;gBACnD,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,MAAM,EAAE,MAAM;gBACd,WAAW,EAAE,WAAW;aACzB,CAAC;YAEF,IAAI,CAAC,OAAO,CAAC,KAAK,CAChB,mDAAmD,aAAa,CAAC,EAAE,YAAY,aAAa,CAAC,eAAe,EAAE,CAC/G,CAAC;YAEF,MAAM,OAAO,GAA8B;gBACzC,cAAc,EAAE,kBAAkB;aACnC,CAAC;YAEF,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;gBAC5B,IAAI,CAAC;oBACH,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,CAAC;oBACvD,OAAO,CAAC,eAAe,CAAC,GAAG,UAAU,KAAK,EAAE,CAAC;gBAC/C,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,2BAA2B,EAAE,KAAK,CAAC,CAAC;oBACvD,OAAO,uBAAuB,CAAC,OAAO,CAAC;gBACzC,CAAC;YACH,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,aAAa,CAAC,eAAe,EAAE;gBAC1D,MAAM,EAAE,MAAM;gBACd,OAAO;gBACP,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;aAC9B,CAAC,CAAC;YAEH,MAAM,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAE3C,MAAM,YAAY,GAChB,YAA6C,CAAC;YAChD,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,4BAA4B,YAAY,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;YAC5E,IAAI,YAAY,EAAE,CAAC;gBACjB,QAAQ,YAAY,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;oBAClC,KAAK,SAAS;wBACZ,MAAM,GAAG,uBAAuB,CAAC,QAAQ,CAAC;wBAC1C,MAAM;oBACR,KAAK,SAAS;wBACZ,MAAM,GAAG,uBAAuB,CAAC,OAAO,CAAC;wBACzC,MAAM;oBACR,KAAK,SAAS;wBACZ,MAAM,GAAG,uBAAuB,CAAC,OAAO,CAAC;wBACzC,MAAM;oBACR,KAAK,WAAW;wBACd,MAAM,GAAG,uBAAuB,CAAC,QAAQ,CAAC;wBAC1C,MAAM;oBACR,KAAK,aAAa;wBAChB,MAAM,GAAG,uBAAuB,CAAC,iBAAiB,CAAC;wBACnD,MAAM;oBACR;wBACE,MAAM,GAAG,uBAAuB,CAAC,OAAO,CAAC;gBAC7C,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,MAAM,GAAG,uBAAuB,CAAC,OAAO,CAAC;YAC3C,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,0BAA0B,KAAK,EAAE,CAAC,CAAC;YACtD,IAAI,aAAa,CAAC,YAAY,KAAK,gBAAgB,EAAE,CAAC;gBACpD,MAAM,GAAG,uBAAuB,CAAC,QAAQ,CAAC;YAC5C,CAAC;QACH,CAAC;QAED,aAAa,CAAC,uBAAuB,GAAG;YACtC,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,MAAM;YACN,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,MAAM,EAAE,MAAM;YACd,WAAW,EAAE,WAAY;SAC1B,CAAC;QACF,aAAa,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;YACnC,IAAI,CAAC,OAAO,CAAC,KAAK,CAChB,4DAA4D,aAAa,CAAC,EAAE,KAAK,KAAK,EAAE,CACzF,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,OAAO,MAAM,CAAC;IAChB,CAAC;CACF"}

package/dist/authorizer/index.d.ts

@@ -0,0 +1 @@
+export * from './RealTimeAuthorizer.js';

package/dist/authorizer/index.js

@@ -0,0 +1,5 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+export * from './RealTimeAuthorizer.js';
+//# sourceMappingURL=index.js.map

package/dist/authorizer/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/authorizer/index.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AACtC,cAAc,yBAAyB,CAAC"}

package/dist/cache/memory.d.ts

@@ -0,0 +1,19 @@
+import type { ICache } from '@citrineos/base';
+import type { ClassConstructor } from 'class-transformer';
+/**
+ * Implementation of cache interface with memory storage
+ */
+export declare class MemoryCache implements ICache {
+    private _cache;
+    private _keySubscriptionMap;
+    private _keySubscriptionPromiseMap;
+    private _timeoutMap;
+    constructor();
+    exists(key: string, namespace?: string): Promise<boolean>;
+    remove(key: string, namespace?: string): Promise<boolean>;
+    onChange<T>(key: string, waitSeconds: number, namespace?: string, classConstructor?: () => ClassConstructor<T>): Promise<T | null>;
+    get<T>(key: string, namespace?: string, classConstructor?: () => ClassConstructor<T>): Promise<T | null>;
+    set(key: string, value: string, namespace?: string, expireSeconds?: number): Promise<boolean>;
+    setIfNotExist(key: string, value: string, namespace?: string, expireSeconds?: number): Promise<boolean>;
+    private resolveOnChange;
+}

package/dist/cache/memory.js

@@ -0,0 +1,147 @@
+// SPDX-FileCopyrightText: 2025 Contributors to the CitrineOS Project
+//
+// SPDX-License-Identifier: Apache-2.0
+import { plainToInstance } from 'class-transformer';
+/**
+ * Implementation of cache interface with memory storage
+ */
+export class MemoryCache {
+    _cache;
+    _keySubscriptionMap;
+    _keySubscriptionPromiseMap;
+    _timeoutMap;
+    constructor() {
+        const keySubscriptionMap = new Map();
+        const subscriptionHandler = {
+            // Returns value on keySubscriptions when Map.set(key, value) is called
+            set(target, property, value) {
+                const setOutcome = Reflect.set(target, property, value);
+                if (typeof property === 'string' && keySubscriptionMap.has(property) && setOutcome) {
+                    (keySubscriptionMap?.get(property))(value);
+                }
+                return setOutcome;
+            },
+            // Returns null on keySubscriptions when Map.delete(key) is called
+            deleteProperty(target, property) {
+                const deleteOutcome = Reflect.deleteProperty(target, property);
+                if (typeof property === 'string' && keySubscriptionMap.has(property) && deleteOutcome) {
+                    (keySubscriptionMap?.get(property))(null);
+                }
+                return deleteOutcome;
+            },
+            // Here to support Map.get and Map.has, does not alter behavior
+            get(target, property) {
+                const value = Reflect.get(target, property);
+                if (typeof value === 'function') {
+                    // Return a bound version of the method to the original target
+                    return value.bind(target);
+                }
+                return value;
+            },
+        };
+        this._cache = new Proxy(new Map(), subscriptionHandler);
+        this._keySubscriptionMap = keySubscriptionMap;
+        this._keySubscriptionPromiseMap = new Map();
+        this._timeoutMap = new Map();
+    }
+    exists(key, namespace) {
+        namespace = namespace || 'default';
+        const namespaceKey = `${namespace}:${key}`;
+        return Promise.resolve(this._cache.has(namespaceKey));
+    }
+    async remove(key, namespace) {
+        namespace = namespace || 'default';
+        const namespaceKey = `${namespace}:${key}`;
+        return this._cache.delete(namespaceKey);
+    }
+    onChange(key, waitSeconds, namespace, classConstructor) {
+        namespace = namespace || 'default';
+        const namespaceKey = `${namespace}:${key}`;
+        // Either get existing promise awaiting change on this key or create a new one and store it.
+        // This way, any number of threads can wait for the same key at the same time.
+        // Type must include 'undefined' due to Map.get(key)'s return type, however in no case can it actually be undefined.
+        const onChangeValuePromise = this._keySubscriptionPromiseMap.has(namespaceKey)
+            ? this._keySubscriptionPromiseMap.get(namespaceKey)
+            : this._keySubscriptionPromiseMap
+                .set(namespaceKey, new Promise((resolve) => {
+                this._keySubscriptionMap.set(namespaceKey, (value) => {
+                    resolve(value);
+                    this._keySubscriptionMap.delete(namespaceKey);
+                    this._keySubscriptionPromiseMap.delete(namespaceKey);
+                });
+            }))
+                .get(namespaceKey);
+        return Promise.race([
+            onChangeValuePromise?.then((value) => {
+                if (typeof value === 'string') {
+                    if (classConstructor) {
+                        return plainToInstance(classConstructor(), JSON.parse(value));
+                    }
+                    else {
+                        return value;
+                    }
+                }
+                else {
+                    return value;
+                }
+            }),
+            new Promise((resolve) => {
+                setTimeout(() => {
+                    resolve(this.get(key, namespace, classConstructor));
+                }, waitSeconds * 1000);
+            }),
+        ]);
+    }
+    async get(key, namespace, classConstructor) {
+        namespace = namespace || 'default';
+        const namespaceKey = `${namespace}:${key}`;
+        const result = this._cache.get(namespaceKey);
+        if (result) {
+            if (classConstructor) {
+                return plainToInstance(classConstructor(), JSON.parse(result));
+            }
+            return result;
+        }
+        return null;
+    }
+    async set(key, value, namespace, expireSeconds) {
+        namespace = namespace || 'default';
+        const namespaceKey = `${namespace}:${key}`;
+        this._cache.set(namespaceKey, value);
+        if (this._timeoutMap.has(namespaceKey)) {
+            clearTimeout(this._timeoutMap.get(namespaceKey));
+        }
+        if (expireSeconds) {
+            this._timeoutMap.set(namespaceKey, setTimeout(() => {
+                this._cache.delete(namespaceKey);
+            }, expireSeconds * 1000));
+        }
+        this.resolveOnChange(namespaceKey, value);
+        return true;
+    }
+    async setIfNotExist(key, value, namespace, expireSeconds) {
+        namespace = namespace || 'default';
+        const namespaceKey = `${namespace}:${key}`;
+        if (this._cache.has(namespaceKey)) {
+            return false;
+        }
+        this._cache.set(namespaceKey, value);
+        if (this._timeoutMap.has(namespaceKey)) {
+            clearTimeout(this._timeoutMap.get(namespaceKey));
+        }
+        if (expireSeconds) {
+            this._timeoutMap.set(namespaceKey, setTimeout(() => {
+                this._cache.delete(namespaceKey);
+            }, expireSeconds * 1000));
+        }
+        this.resolveOnChange(namespaceKey, value);
+        return true;
+    }
+    resolveOnChange(namespaceKey, value) {
+        const resolveOnChangeCallback = this._keySubscriptionMap.get(namespaceKey);
+        if (resolveOnChangeCallback) {
+            resolveOnChangeCallback(value);
+        }
+    }
+}
+//# sourceMappingURL=memory.js.map

package/dist/cache/memory.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"memory.js","sourceRoot":"","sources":["../../src/cache/memory.ts"],"names":[],"mappings":"AAAA,qEAAqE;AACrE,EAAE;AACF,sCAAsC;AAItC,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAEpD;;GAEG;AACH,MAAM,OAAO,WAAW;IACd,MAAM,CAAsB;IAC5B,mBAAmB,CAA4C;IAC/D,0BAA0B,CAAsC;IAChE,WAAW,CAA8B;IAEjD;QACE,MAAM,kBAAkB,GAA8C,IAAI,GAAG,EAAE,CAAC;QAChF,MAAM,mBAAmB,GAAsC;YAC7D,uEAAuE;YACvE,GAAG,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK;gBACzB,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;gBACxD,IAAI,OAAO,QAAQ,KAAK,QAAQ,IAAI,kBAAkB,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,UAAU,EAAE,CAAC;oBACnF,CAAC,kBAAkB,EAAE,GAAG,CAAC,QAAQ,CAAS,CAAA,CAAC,KAAK,CAAC,CAAC;gBACpD,CAAC;gBACD,OAAO,UAAU,CAAC;YACpB,CAAC;YACD,kEAAkE;YAClE,cAAc,CAAC,MAAM,EAAE,QAAQ;gBAC7B,MAAM,aAAa,GAAG,OAAO,CAAC,cAAc,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;gBAC/D,IAAI,OAAO,QAAQ,KAAK,QAAQ,IAAI,kBAAkB,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,aAAa,EAAE,CAAC;oBACtF,CAAC,kBAAkB,EAAE,GAAG,CAAC,QAAQ,CAAS,CAAA,CAAC,IAAI,CAAC,CAAC;gBACnD,CAAC;gBACD,OAAO,aAAa,CAAC;YACvB,CAAC;YACD,+DAA+D;YAC/D,GAAG,CAAC,MAAM,EAAE,QAAQ;gBAClB,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;gBAC5C,IAAI,OAAO,KAAK,KAAK,UAAU,EAAE,CAAC;oBAChC,8DAA8D;oBAC9D,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBAC5B,CAAC;gBACD,OAAO,KAAK,CAAC;YACf,CAAC;SACF,CAAC;QAEF,IAAI,CAAC,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,GAAG,EAAE,EAAE,mBAAmB,CAAC,CAAC;QACxD,IAAI,CAAC,mBAAmB,GAAG,kBAAkB,CAAC;QAC9C,IAAI,CAAC,0BAA0B,GAAG,IAAI,GAAG,EAAE,CAAC;QAC5C,IAAI,CAAC,WAAW,GAAG,IAAI,GAAG,EAAE,CAAC;IAC/B,CAAC;IAED,MAAM,CAAC,GAAW,EAAE,SAAkB;QACpC,SAAS,GAAG,SAAS,IAAI,SAAS,CAAC;QACnC,MAAM,YAAY,GAAG,GAAG,SAAS,IAAI,GAAG,EAAE,CAAC;QAC3C,OAAO,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW,EAAE,SAAkB;QAC1C,SAAS,GAAG,SAAS,IAAI,SAAS,CAAC;QACnC,MAAM,YAAY,GAAG,GAAG,SAAS,IAAI,GAAG,EAAE,CAAC;QAC3C,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;IAC1C,CAAC;IAED,QAAQ,CACN,GAAW,EACX,WAAmB,EACnB,SAAkB,EAClB,gBAA4C;QAE5C,SAAS,GAAG,SAAS,IAAI,SAAS,CAAC;QACnC,MAAM,YAAY,GAAG,GAAG,SAAS,IAAI,GAAG,EAAE,CAAC;QAE3C,4FAA4F;QAC5F,8EAA8E;QAC9E,oHAAoH;QACpH,MAAM,oBAAoB,GACxB,IAAI,CAAC,0BAA0B,CAAC,GAAG,CAAC,YAAY,CAAC;YAC/C,CAAC,CAAC,IAAI,CAAC,0BAA0B,CAAC,GAAG,CAAC,YAAY,CAAC;YACnD,CAAC,CAAC,IAAI,CAAC,0BAA0B;iBAC5B,GAAG,CACF,YAAY,EACZ,IAAI,OAAO,CAAgB,CAAC,OAAO,EAAE,EAAE;gBACrC,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,KAAoB,EAAE,EAAE;oBAClE,OAAO,CAAC,KAAK,CAAC,CAAC;oBACf,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;oBAC9C,IAAI,CAAC,0BAA0B,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBACvD,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CACH;iBACA,GAAG,CAAC,YAAY,CAAC,CAAC;QAE3B,OAAO,OAAO,CAAC,IAAI,CAAC;YAClB,oBAAoB,EAAE,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE;gBACnC,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;oBAC9B,IAAI,gBAAgB,EAAE,CAAC;wBACrB,OAAO,eAAe,CAAC,gBAAgB,EAAE,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC;oBAChE,CAAC;yBAAM,CAAC;wBACN,OAAO,KAAU,CAAC;oBACpB,CAAC;gBACH,CAAC;qBAAM,CAAC;oBACN,OAAO,KAAK,CAAC;gBACf,CAAC;YACH,CAAC,CAAC;YACF,IAAI,OAAO,CAAW,CAAC,OAAO,EAAE,EAAE;gBAChC,UAAU,CAAC,GAAG,EAAE;oBACd,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,EAAE,gBAAgB,CAAC,CAAC,CAAC;gBACtD,CAAC,EAAE,WAAW,GAAG,IAAI,CAAC,CAAC;YACzB,CAAC,CAAC;SACH,CAAe,CAAC;IACnB,CAAC;IAED,KAAK,CAAC,GAAG,CACP,GAAW,EACX,SAAkB,EAClB,gBAA4C;QAE5C,SAAS,GAAG,SAAS,IAAI,SAAS,CAAC;QACnC,MAAM,YAAY,GAAG,GAAG,SAAS,IAAI,GAAG,EAAE,CAAC;QAC3C,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC7C,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,gBAAgB,EAAE,CAAC;gBACrB,OAAO,eAAe,CAAC,gBAAgB,EAAE,EAAE,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC;YACjE,CAAC;YACD,OAAO,MAAW,CAAC;QACrB,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK,CAAC,GAAG,CACP,GAAW,EACX,KAAa,EACb,SAAkB,EAClB,aAAsB;QAEtB,SAAS,GAAG,SAAS,IAAI,SAAS,CAAC;QACnC,MAAM,YAAY,GAAG,GAAG,SAAS,IAAI,GAAG,EAAE,CAAC;QAC3C,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QACrC,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC;YACvC,YAAY,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC;QACnD,CAAC;QACD,IAAI,aAAa,EAAE,CAAC;YAClB,IAAI,CAAC,WAAW,CAAC,GAAG,CAClB,YAAY,EACZ,UAAU,CAAC,GAAG,EAAE;gBACd,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;YACnC,CAAC,EAAE,aAAa,GAAG,IAAI,CAAC,CACzB,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,eAAe,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QAC1C,OAAO,IAAI,CAAC;IACd,CAAC;IAED,KAAK,CAAC,aAAa,CACjB,GAAW,EACX,KAAa,EACb,SAAkB,EAClB,aAAsB;QAEtB,SAAS,GAAG,SAAS,IAAI,SAAS,CAAC;QACnC,MAAM,YAAY,GAAG,GAAG,SAAS,IAAI,GAAG,EAAE,CAAC;QAC3C,IAAI,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC;YAClC,OAAO,KAAK,CAAC;QACf,CAAC;QACD,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QACrC,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC;YACvC,YAAY,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC;QACnD,CAAC;QACD,IAAI,aAAa,EAAE,CAAC;YAClB,IAAI,CAAC,WAAW,CAAC,GAAG,CAClB,YAAY,EACZ,UAAU,CAAC,GAAG,EAAE;gBACd,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;YACnC,CAAC,EAAE,aAAa,GAAG,IAAI,CAAC,CACzB,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,eAAe,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QAC1C,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,eAAe,CAAC,YAAoB,EAAE,KAAa;QACzD,MAAM,uBAAuB,GAAG,IAAI,CAAC,mBAAmB,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC3E,IAAI,uBAAuB,EAAE,CAAC;YAC5B,uBAAuB,CAAC,KAAK,CAAC,CAAC;QACjC,CAAC;IACH,CAAC;CACF"}

package/dist/cache/redis.d.ts

@@ -0,0 +1,16 @@
+import type { ICache } from '@citrineos/base';
+import type { ClassConstructor } from 'class-transformer';
+import type { RedisClientOptions } from 'redis';
+/**
+ * Implementation of cache interface with redis storage
+ */
+export declare class RedisCache implements ICache {
+    private _client;
+    constructor(clientOptions?: RedisClientOptions);
+    exists(key: string, namespace?: string): Promise<boolean>;
+    remove(key: string, namespace?: string | undefined): Promise<boolean>;
+    onChange<T>(key: string, waitSeconds: number, namespace?: string | undefined, classConstructor?: (() => ClassConstructor<T>) | undefined): Promise<T | null>;
+    get<T>(key: string, namespace?: string, classConstructor?: () => ClassConstructor<T>): Promise<T | null>;
+    set(key: string, value: string, namespace?: string, expireSeconds?: number): Promise<boolean>;
+    setIfNotExist(key: string, value: string, namespace?: string, expireSeconds?: number): Promise<boolean>;
+}