capacitor-freerasp 1.0.0

package/android/src/main/java/com/aheaditec/freerasp/FreeraspPlugin.kt

@@ -0,0 +1,120 @@
+package com.aheaditec.freerasp
+
+import com.aheaditec.talsec_security.security.api.Talsec
+import com.aheaditec.talsec_security.security.api.TalsecConfig
+import com.aheaditec.talsec_security.security.api.ThreatListener
+import com.getcapacitor.JSObject
+import com.getcapacitor.Plugin
+import com.getcapacitor.PluginCall
+import com.getcapacitor.PluginMethod
+import com.getcapacitor.annotation.CapacitorPlugin
+import java.lang.Exception
+
+@CapacitorPlugin(name = "Freerasp")
+class FreeraspPlugin : Plugin(), ThreatListener.DeviceState, ThreatListener.ThreatDetected {
+
+    private val listener = ThreatListener(this, this)
+    private var registered = true
+    private val emptyData = JSObject()
+
+    @PluginMethod()
+    fun talsecStart(call: PluginCall) {
+        val config = call.getObject("config")
+        if (config == null) {
+            call.reject("Missing config parameter in freeRASP Native Plugin")
+            return
+        }
+        try {
+            val talsecConfig = parseTalsecConfigThrowing(config)
+            listener.registerListener(context)
+            Talsec.start(context, talsecConfig)
+            call.resolve(JSObject().put("started", true))
+        } catch (e: Exception) {
+            call.reject("Error during Talsec Native plugin initialization - ${e.message}", null, e)
+        }
+    }
+
+    override fun handleOnPause() {
+        super.handleOnPause()
+        listener.unregisterListener(context)
+        registered = false
+    }
+
+    override fun handleOnResume() {
+        super.handleOnResume()
+        if (!registered) {
+            registered = true
+            listener.registerListener(context)
+        }
+    }
+
+    override fun onRootDetected() {
+        notifyListeners("privilegedAccess", emptyData, true)
+    }
+
+    override fun onDebuggerDetected() {
+        notifyListeners("debug", emptyData, true)
+    }
+
+    override fun onEmulatorDetected() {
+        notifyListeners("simulator", emptyData, true)
+    }
+
+    override fun onTamperDetected() {
+        notifyListeners("appIntegrity", emptyData, true)
+    }
+
+    override fun onUntrustedInstallationSourceDetected() {
+        notifyListeners("unofficialStore", emptyData, true)
+    }
+
+    override fun onHookDetected() {
+        notifyListeners("hooks", emptyData, true)
+    }
+
+    override fun onDeviceBindingDetected() {
+        notifyListeners("deviceBinding", emptyData, true)
+    }
+
+    override fun onUnlockedDeviceDetected() {
+        notifyListeners("passcode", emptyData, true)
+    }
+
+    override fun onHardwareBackedKeystoreNotAvailableDetected() {
+        notifyListeners("secureHardwareNotAvailable", emptyData, true)
+    }
+
+   override fun onObfuscationIssuesDetected() {
+       notifyListeners("obfuscationIssues", emptyData, true)
+   }
+
+    private fun parseTalsecConfigThrowing(configJson: JSObject): TalsecConfig {
+        val androidConfig = configJson.getJSONObject("androidConfig")
+        val packageName = androidConfig.getString("packageName")
+        val certificateHashes = mutableListOf<String>()
+        val hashes = androidConfig.getJSONArray("certificateHashes")
+        if (hashes.length() == 0) {
+            throw IllegalArgumentException("At least 1 certificate hash is required.")
+        }
+        for (i in 0 until hashes.length()) {
+            certificateHashes.add(hashes.getString(i))
+        }
+        val watcherMail = configJson.getString("watcherMail")
+        val alternativeStores = mutableListOf<String>()
+        if (androidConfig.has("supportedAlternativeStores")) {
+            val stores = androidConfig.getJSONArray("supportedAlternativeStores")
+            for (i in 0 until stores.length()) {
+                alternativeStores.add(stores.getString(i))
+            }
+        }
+        val isProd = configJson.getBool("isProd") ?: true
+
+        return TalsecConfig(
+            packageName,
+            certificateHashes.toTypedArray(),
+            watcherMail,
+            alternativeStores.toTypedArray(),
+            isProd
+        )
+    }
+}

package/dist/esm/definitions.d.ts

@@ -0,0 +1,36 @@
+export interface FreeraspPlugin {
+    addListener(listener: string, callback: () => any): any;
+    talsecStart(options: {
+        config: FreeraspConfig;
+    }): Promise<{
+        started: boolean;
+    }>;
+}
+export declare type FreeraspConfig = {
+    androidConfig?: AndroidConfig;
+    iosConfig?: IOSConfig;
+    watcherMail: string;
+    isProd?: boolean;
+};
+export declare type AndroidConfig = {
+    packageName: string;
+    certificateHashes: string[];
+    supportedAlternativeStores?: string[];
+};
+export declare type IOSConfig = {
+    appBundleId: string;
+    appTeamId: string;
+};
+export declare type NativeEventEmitterActions = {
+    privilegedAccess?: () => any;
+    debug?: () => any;
+    simulator?: () => any;
+    appIntegrity?: () => any;
+    unofficialStore?: () => any;
+    hooks?: () => any;
+    deviceBinding?: () => any;
+    deviceID?: () => any;
+    passcode?: () => any;
+    secureHardwareNotAvailable?: () => any;
+    obfuscationIssues?: () => any;
+};

package/dist/esm/definitions.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=definitions.js.map

package/dist/esm/definitions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"definitions.js","sourceRoot":"","sources":["../../src/definitions.ts"],"names":[],"mappings":"","sourcesContent":["export interface FreeraspPlugin {\n  addListener(listener: string, callback: () => any): any;\n  talsecStart(options: { config: FreeraspConfig }): Promise<{ started: boolean }>;\n}\n\nexport type FreeraspConfig = {\n  androidConfig?: AndroidConfig;\n  iosConfig?: IOSConfig;\n  watcherMail: string;\n  isProd?: boolean;\n}\n\nexport type AndroidConfig = {\n  packageName: string;\n  certificateHashes: string[];\n  supportedAlternativeStores?: string[];\n}\n\nexport type IOSConfig = {\n  appBundleId: string;\n  appTeamId: string;\n}\n\nexport type NativeEventEmitterActions = {\n  privilegedAccess?: () => any;\n  debug?: () => any;\n  simulator?: () => any;\n  appIntegrity?: () => any;\n  unofficialStore?: () => any;\n  hooks?: () => any;\n  deviceBinding?: () => any;\n  deviceID?: () => any;\n  passcode?: () => any;\n  secureHardwareNotAvailable?: () => any;\n  obfuscationIssues?: () => any;\n};\n"]}

package/dist/esm/index.d.ts

@@ -0,0 +1,7 @@
+import type { FreeraspPlugin, FreeraspConfig, NativeEventEmitterActions } from './definitions';
+declare const Freerasp: FreeraspPlugin;
+declare const setThreatListeners: <T extends NativeEventEmitterActions>(callbacks: T & Record<Exclude<keyof T, "privilegedAccess" | "debug" | "simulator" | "appIntegrity" | "unofficialStore" | "hooks" | "deviceBinding" | "deviceID" | "passcode" | "secureHardwareNotAvailable" | "obfuscationIssues">, []>) => Promise<void>;
+declare const removeThreatListeners: () => void;
+declare const startFreeRASP: <T extends NativeEventEmitterActions>(config: FreeraspConfig, reactions: T & Record<Exclude<keyof T, "privilegedAccess" | "debug" | "simulator" | "appIntegrity" | "unofficialStore" | "hooks" | "deviceBinding" | "deviceID" | "passcode" | "secureHardwareNotAvailable" | "obfuscationIssues">, []>) => Promise<boolean>;
+export * from './definitions';
+export { Freerasp, startFreeRASP, setThreatListeners, removeThreatListeners };

package/dist/esm/index.js

@@ -0,0 +1,25 @@
+import { Capacitor, registerPlugin } from '@capacitor/core';
+const activeListeners = [];
+const Freerasp = registerPlugin('Freerasp', {
+    web: () => import('./web').then(m => new m.FreeraspWeb()),
+});
+const setThreatListeners = async (callbacks) => {
+    for (const [threat, action] of Object.entries(callbacks)) {
+        if ((threat === 'obfuscationIssues' && Capacitor.getPlatform() === 'ios') || (action === undefined)) {
+            continue;
+        }
+        const listener = await Freerasp.addListener(threat, action);
+        activeListeners.push(listener);
+    }
+};
+const removeThreatListeners = () => {
+    activeListeners.forEach((listener) => listener.remove());
+};
+const startFreeRASP = async (config, reactions) => {
+    await setThreatListeners(reactions);
+    const { started } = await Freerasp.talsecStart({ config });
+    return started;
+};
+export * from './definitions';
+export { Freerasp, startFreeRASP, setThreatListeners, removeThreatListeners };
+//# sourceMappingURL=index.js.map

package/dist/esm/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAI5D,MAAM,eAAe,GAAU,EAAE,CAAC;AAElC,MAAM,QAAQ,GAAG,cAAc,CAAiB,UAAU,EAAE;IAC1D,GAAG,EAAE,GAAG,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;CAC1D,CAAC,CAAC;AAEH,MAAM,kBAAkB,GAAG,KAAK,EAC9B,SAA4E,EAC5E,EAAE;IAEF,KAAK,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;QACxD,IAAI,CAAC,MAAM,KAAK,mBAAmB,IAAI,SAAS,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC,IAAI,CAAC,MAAM,KAAK,SAAS,CAAC,EAAE;YACnG,SAAS;SACV;QACD,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAC5D,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;KAChC;AACH,CAAC,CAAC;AAEF,MAAM,qBAAqB,GAAG,GAAG,EAAE;IACjC,eAAe,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;AAC3D,CAAC,CAAC;AAEF,MAAM,aAAa,GAAG,KAAK,EAAuC,MAAsB,EAAE,SAA6E,EAAE,EAAE;IAEzK,MAAM,kBAAkB,CAAC,SAAS,CAAC,CAAC;IACpC,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,EAAC,MAAM,EAAC,CAAC,CAAA;IAExD,OAAO,OAAO,CAAA;AAChB,CAAC,CAAA;AAED,cAAc,eAAe,CAAC;AAC9B,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,CAAC","sourcesContent":["import { Capacitor, registerPlugin } from '@capacitor/core';\n\nimport type { FreeraspPlugin, FreeraspConfig, NativeEventEmitterActions } from './definitions';\n\nconst activeListeners: any[] = [];\n\nconst Freerasp = registerPlugin<FreeraspPlugin>('Freerasp', {\n  web: () => import('./web').then(m => new m.FreeraspWeb()),\n});\n\nconst setThreatListeners = async <T extends NativeEventEmitterActions>(\n  callbacks: T & Record<Exclude<keyof T, keyof NativeEventEmitterActions>, []>\n) => {\n\n  for (const [threat, action] of Object.entries(callbacks)) {\n    if ((threat === 'obfuscationIssues' && Capacitor.getPlatform() === 'ios') || (action === undefined)) {\n      continue;\n    }\n    const listener = await Freerasp.addListener(threat, action);\n    activeListeners.push(listener);\n  }\n};\n\nconst removeThreatListeners = () => {\n  activeListeners.forEach((listener) => listener.remove());\n};\n\nconst startFreeRASP = async <T extends NativeEventEmitterActions>(config: FreeraspConfig, reactions:  T & Record<Exclude<keyof T, keyof NativeEventEmitterActions>, []>) => {\n  \n  await setThreatListeners(reactions);\n  const { started } = await Freerasp.talsecStart({config})\n\n  return started\n}\n\nexport * from './definitions';\nexport { Freerasp, startFreeRASP, setThreatListeners, removeThreatListeners };\n"]}

package/dist/esm/web.d.ts

@@ -0,0 +1,9 @@
+import { WebPlugin } from '@capacitor/core';
+import type { FreeraspPlugin, FreeraspConfig } from './definitions';
+export declare class FreeraspWeb extends WebPlugin implements FreeraspPlugin {
+    talsecStart(_options: {
+        config: FreeraspConfig;
+    }): Promise<{
+        started: boolean;
+    }>;
+}

package/dist/esm/web.js

@@ -0,0 +1,8 @@
+import { WebPlugin } from '@capacitor/core';
+export class FreeraspWeb extends WebPlugin {
+    // eslint-disable-next-line @typescript-eslint/no-unused-vars
+    async talsecStart(_options) {
+        throw new Error('Method not implemented.');
+    }
+}
+//# sourceMappingURL=web.js.map

package/dist/esm/web.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"web.js","sourceRoot":"","sources":["../../src/web.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAI5C,MAAM,OAAO,WAAY,SAAQ,SAAS;IACxC,6DAA6D;IAC7D,KAAK,CAAC,WAAW,CAAC,QAAoC;QACpD,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;CACF","sourcesContent":["import { WebPlugin } from '@capacitor/core';\n\nimport type { FreeraspPlugin, FreeraspConfig } from './definitions';\n\nexport class FreeraspWeb extends WebPlugin implements FreeraspPlugin {\n  // eslint-disable-next-line @typescript-eslint/no-unused-vars\n  async talsecStart(_options: { config: FreeraspConfig }): Promise<{ started: boolean }> {\n    throw new Error('Method not implemented.');\n  }\n}\n"]}

package/dist/plugin.cjs.js

@@ -0,0 +1,45 @@
+'use strict';
+
+Object.defineProperty(exports, '__esModule', { value: true });
+
+var core = require('@capacitor/core');
+
+const activeListeners = [];
+const Freerasp = core.registerPlugin('Freerasp', {
+    web: () => Promise.resolve().then(function () { return web; }).then(m => new m.FreeraspWeb()),
+});
+const setThreatListeners = async (callbacks) => {
+    for (const [threat, action] of Object.entries(callbacks)) {
+        if ((threat === 'obfuscationIssues' && core.Capacitor.getPlatform() === 'ios') || (action === undefined)) {
+            continue;
+        }
+        const listener = await Freerasp.addListener(threat, action);
+        activeListeners.push(listener);
+    }
+};
+const removeThreatListeners = () => {
+    activeListeners.forEach((listener) => listener.remove());
+};
+const startFreeRASP = async (config, reactions) => {
+    await setThreatListeners(reactions);
+    const { started } = await Freerasp.talsecStart({ config });
+    return started;
+};
+
+class FreeraspWeb extends core.WebPlugin {
+    // eslint-disable-next-line @typescript-eslint/no-unused-vars
+    async talsecStart(_options) {
+        throw new Error('Method not implemented.');
+    }
+}
+
+var web = /*#__PURE__*/Object.freeze({
+    __proto__: null,
+    FreeraspWeb: FreeraspWeb
+});
+
+exports.Freerasp = Freerasp;
+exports.removeThreatListeners = removeThreatListeners;
+exports.setThreatListeners = setThreatListeners;
+exports.startFreeRASP = startFreeRASP;
+//# sourceMappingURL=plugin.cjs.js.map

package/dist/plugin.cjs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin.cjs.js","sources":["esm/index.js","esm/web.js"],"sourcesContent":["import { Capacitor, registerPlugin } from '@capacitor/core';\nconst activeListeners = [];\nconst Freerasp = registerPlugin('Freerasp', {\n    web: () => import('./web').then(m => new m.FreeraspWeb()),\n});\nconst setThreatListeners = async (callbacks) => {\n    for (const [threat, action] of Object.entries(callbacks)) {\n        if ((threat === 'obfuscationIssues' && Capacitor.getPlatform() === 'ios') || (action === undefined)) {\n            continue;\n        }\n        const listener = await Freerasp.addListener(threat, action);\n        activeListeners.push(listener);\n    }\n};\nconst removeThreatListeners = () => {\n    activeListeners.forEach((listener) => listener.remove());\n};\nconst startFreeRASP = async (config, reactions) => {\n    await setThreatListeners(reactions);\n    const { started } = await Freerasp.talsecStart({ config });\n    return started;\n};\nexport * from './definitions';\nexport { Freerasp, startFreeRASP, setThreatListeners, removeThreatListeners };\n//# sourceMappingURL=index.js.map","import { WebPlugin } from '@capacitor/core';\nexport class FreeraspWeb extends WebPlugin {\n    // eslint-disable-next-line @typescript-eslint/no-unused-vars\n    async talsecStart(_options) {\n        throw new Error('Method not implemented.');\n    }\n}\n//# sourceMappingURL=web.js.map"],"names":["registerPlugin","Capacitor","WebPlugin"],"mappings":";;;;;;AACA,MAAM,eAAe,GAAG,EAAE,CAAC;AACtB,MAAC,QAAQ,GAAGA,mBAAc,CAAC,UAAU,EAAE;AAC5C,IAAI,GAAG,EAAE,MAAM,mDAAe,CAAC,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;AAC7D,CAAC,EAAE;AACE,MAAC,kBAAkB,GAAG,OAAO,SAAS,KAAK;AAChD,IAAI,KAAK,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;AAC9D,QAAQ,IAAI,CAAC,MAAM,KAAK,mBAAmB,IAAIC,cAAS,CAAC,WAAW,EAAE,KAAK,KAAK,MAAM,MAAM,KAAK,SAAS,CAAC,EAAE;AAC7G,YAAY,SAAS;AACrB,SAAS;AACT,QAAQ,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;AACpE,QAAQ,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;AACvC,KAAK;AACL,EAAE;AACG,MAAC,qBAAqB,GAAG,MAAM;AACpC,IAAI,eAAe,CAAC,OAAO,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;AAC7D,EAAE;AACG,MAAC,aAAa,GAAG,OAAO,MAAM,EAAE,SAAS,KAAK;AACnD,IAAI,MAAM,kBAAkB,CAAC,SAAS,CAAC,CAAC;AACxC,IAAI,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;AAC/D,IAAI,OAAO,OAAO,CAAC;AACnB;;ACpBO,MAAM,WAAW,SAASC,cAAS,CAAC;AAC3C;AACA,IAAI,MAAM,WAAW,CAAC,QAAQ,EAAE;AAChC,QAAQ,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;AACnD,KAAK;AACL;;;;;;;;;;;;"}

package/dist/plugin.js

@@ -0,0 +1,48 @@
+var capacitorFreerasp = (function (exports, core) {
+    'use strict';
+
+    const activeListeners = [];
+    const Freerasp = core.registerPlugin('Freerasp', {
+        web: () => Promise.resolve().then(function () { return web; }).then(m => new m.FreeraspWeb()),
+    });
+    const setThreatListeners = async (callbacks) => {
+        for (const [threat, action] of Object.entries(callbacks)) {
+            if ((threat === 'obfuscationIssues' && core.Capacitor.getPlatform() === 'ios') || (action === undefined)) {
+                continue;
+            }
+            const listener = await Freerasp.addListener(threat, action);
+            activeListeners.push(listener);
+        }
+    };
+    const removeThreatListeners = () => {
+        activeListeners.forEach((listener) => listener.remove());
+    };
+    const startFreeRASP = async (config, reactions) => {
+        await setThreatListeners(reactions);
+        const { started } = await Freerasp.talsecStart({ config });
+        return started;
+    };
+
+    class FreeraspWeb extends core.WebPlugin {
+        // eslint-disable-next-line @typescript-eslint/no-unused-vars
+        async talsecStart(_options) {
+            throw new Error('Method not implemented.');
+        }
+    }
+
+    var web = /*#__PURE__*/Object.freeze({
+        __proto__: null,
+        FreeraspWeb: FreeraspWeb
+    });
+
+    exports.Freerasp = Freerasp;
+    exports.removeThreatListeners = removeThreatListeners;
+    exports.setThreatListeners = setThreatListeners;
+    exports.startFreeRASP = startFreeRASP;
+
+    Object.defineProperty(exports, '__esModule', { value: true });
+
+    return exports;
+
+})({}, capacitorExports);
+//# sourceMappingURL=plugin.js.map

package/dist/plugin.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"plugin.js","sources":["esm/index.js","esm/web.js"],"sourcesContent":["import { Capacitor, registerPlugin } from '@capacitor/core';\nconst activeListeners = [];\nconst Freerasp = registerPlugin('Freerasp', {\n    web: () => import('./web').then(m => new m.FreeraspWeb()),\n});\nconst setThreatListeners = async (callbacks) => {\n    for (const [threat, action] of Object.entries(callbacks)) {\n        if ((threat === 'obfuscationIssues' && Capacitor.getPlatform() === 'ios') || (action === undefined)) {\n            continue;\n        }\n        const listener = await Freerasp.addListener(threat, action);\n        activeListeners.push(listener);\n    }\n};\nconst removeThreatListeners = () => {\n    activeListeners.forEach((listener) => listener.remove());\n};\nconst startFreeRASP = async (config, reactions) => {\n    await setThreatListeners(reactions);\n    const { started } = await Freerasp.talsecStart({ config });\n    return started;\n};\nexport * from './definitions';\nexport { Freerasp, startFreeRASP, setThreatListeners, removeThreatListeners };\n//# sourceMappingURL=index.js.map","import { WebPlugin } from '@capacitor/core';\nexport class FreeraspWeb extends WebPlugin {\n    // eslint-disable-next-line @typescript-eslint/no-unused-vars\n    async talsecStart(_options) {\n        throw new Error('Method not implemented.');\n    }\n}\n//# sourceMappingURL=web.js.map"],"names":["registerPlugin","Capacitor","WebPlugin"],"mappings":";;;IACA,MAAM,eAAe,GAAG,EAAE,CAAC;AACtB,UAAC,QAAQ,GAAGA,mBAAc,CAAC,UAAU,EAAE;IAC5C,IAAI,GAAG,EAAE,MAAM,mDAAe,CAAC,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;IAC7D,CAAC,EAAE;AACE,UAAC,kBAAkB,GAAG,OAAO,SAAS,KAAK;IAChD,IAAI,KAAK,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE;IAC9D,QAAQ,IAAI,CAAC,MAAM,KAAK,mBAAmB,IAAIC,cAAS,CAAC,WAAW,EAAE,KAAK,KAAK,MAAM,MAAM,KAAK,SAAS,CAAC,EAAE;IAC7G,YAAY,SAAS;IACrB,SAAS;IACT,QAAQ,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACpE,QAAQ,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACvC,KAAK;IACL,EAAE;AACG,UAAC,qBAAqB,GAAG,MAAM;IACpC,IAAI,eAAe,CAAC,OAAO,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7D,EAAE;AACG,UAAC,aAAa,GAAG,OAAO,MAAM,EAAE,SAAS,KAAK;IACnD,IAAI,MAAM,kBAAkB,CAAC,SAAS,CAAC,CAAC;IACxC,IAAI,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;IAC/D,IAAI,OAAO,OAAO,CAAC;IACnB;;ICpBO,MAAM,WAAW,SAASC,cAAS,CAAC;IAC3C;IACA,IAAI,MAAM,WAAW,CAAC,QAAQ,EAAE;IAChC,QAAQ,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IACnD,KAAK;IACL;;;;;;;;;;;;;;;;;;;;"}

package/ios/Plugin/Freerasp.swift

@@ -0,0 +1,8 @@
+import Foundation
+
+@objc public class Freerasp: NSObject {
+    @objc public func echo(_ value: String) -> String {
+        print(value)
+        return value
+    }
+}

package/ios/Plugin/FreeraspPlugin.h

@@ -0,0 +1,10 @@
+#import <UIKit/UIKit.h>
+
+//! Project version number for Plugin.
+FOUNDATION_EXPORT double PluginVersionNumber;
+
+//! Project version string for Plugin.
+FOUNDATION_EXPORT const unsigned char PluginVersionString[];
+
+// In this header, you should import all the public headers of your framework using statements like #import <Plugin/PublicHeader.h>
+

package/ios/Plugin/FreeraspPlugin.m

@@ -0,0 +1,9 @@
+#import <Foundation/Foundation.h>
+#import <Capacitor/Capacitor.h>
+
+// Define the plugin using the CAP_PLUGIN Macro, and
+// each method the plugin supports using the CAP_PLUGIN_METHOD macro.
+CAP_PLUGIN(FreeraspPlugin, "Freerasp",
+           CAP_PLUGIN_METHOD(echo, CAPPluginReturnPromise);
+           CAP_PLUGIN_METHOD(talsecStart, CAPPluginReturnPromise);
+)

package/ios/Plugin/FreeraspPlugin.swift

@@ -0,0 +1,66 @@
+import Foundation
+import Capacitor
+import TalsecRuntime
+
+@objc(FreeraspPlugin)
+public class FreeraspPlugin: CAPPlugin {
+
+    public static var shared:FreeraspPlugin?
+    
+    override public func load() {
+        FreeraspPlugin.shared = self
+    }
+    
+    /// Runs Talsec with given configuration
+    @objc func talsecStart(_ call: CAPPluginCall) {
+        guard let config = call.getObject("config") else {
+            call.reject("Missing config parameter in freeRASP Native Plugin")
+            return
+        }
+        
+        do {
+            try initializeTalsec(talsecConfig: config)
+        } catch let error as NSError {
+            call.reject(error.localizedDescription)
+            return
+        }
+        call.resolve([
+            "started": true
+        ])
+    }
+    
+    private func initializeTalsec(talsecConfig: JSObject) throws {
+        guard let iosConfig = talsecConfig["iosConfig"] as? JSObject else {
+            throw NSError(domain: "Missing iosConfig parameter in Talsec Native Plugin", code: 1)
+        }
+        guard let appBundleIds = iosConfig["appBundleId"] as? String else {
+            throw NSError(domain: "Missing appBundleId parameter in Talsec Native Plugin", code: 2)
+        }
+        guard let appTeamId = iosConfig["appTeamId"] as? String else {
+            throw NSError(domain: "Missing appTeamId parameter in Talsec Native Plugin", code: 3)
+        }
+        guard let watcherMailAddress = talsecConfig["watcherMail"] as? String else {
+            throw NSError(domain: "Missing watcherMail parameter in Talsec Native Plugin", code: 4)
+        }
+        let isProd = talsecConfig["isProd"] as? Bool ?? true
+        
+        let config = TalsecConfig(appBundleIds: [appBundleIds], appTeamId: appTeamId, watcherMailAddress: watcherMailAddress, isProd: isProd)
+        Talsec.start(config: config)
+    }
+}
+
+extension SecurityThreatCenter: SecurityThreatHandler {
+    
+    static let threatEventMap: [String: String] = [
+        "missingSecureEnclave": "secureHardwareNotAvailable",
+        "device binding": "deviceBinding",
+    ]
+    
+    public func threatDetected(_ securityThreat: TalsecRuntime.SecurityThreat) {
+        let threatName = SecurityThreatCenter.threatEventMap[securityThreat.rawValue] ?? securityThreat.rawValue
+        if (threatName == "passcodeChange") {
+            return
+        }
+        FreeraspPlugin.shared!.notifyListeners(threatName, data: [:])
+    }
+}

package/ios/Plugin/Info.plist

@@ -0,0 +1,24 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>CFBundleDevelopmentRegion</key>
+	<string>$(DEVELOPMENT_LANGUAGE)</string>
+	<key>CFBundleExecutable</key>
+	<string>$(EXECUTABLE_NAME)</string>
+	<key>CFBundleIdentifier</key>
+	<string>$(PRODUCT_BUNDLE_IDENTIFIER)</string>
+	<key>CFBundleInfoDictionaryVersion</key>
+	<string>6.0</string>
+	<key>CFBundleName</key>
+	<string>$(PRODUCT_NAME)</string>
+	<key>CFBundlePackageType</key>
+	<string>FMWK</string>
+	<key>CFBundleShortVersionString</key>
+	<string>1.0</string>
+	<key>CFBundleVersion</key>
+	<string>$(CURRENT_PROJECT_VERSION)</string>
+	<key>NSPrincipalClass</key>
+	<string></string>
+</dict>
+</plist>

package/ios/Plugin/TalsecRuntime.xcframework/Info.plist

@@ -0,0 +1,40 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
+<plist version="1.0">
+<dict>
+	<key>AvailableLibraries</key>
+	<array>
+		<dict>
+			<key>LibraryIdentifier</key>
+			<string>ios-arm64_x86_64-simulator</string>
+			<key>LibraryPath</key>
+			<string>TalsecRuntime.framework</string>
+			<key>SupportedArchitectures</key>
+			<array>
+				<string>arm64</string>
+				<string>x86_64</string>
+			</array>
+			<key>SupportedPlatform</key>
+			<string>ios</string>
+			<key>SupportedPlatformVariant</key>
+			<string>simulator</string>
+		</dict>
+		<dict>
+			<key>LibraryIdentifier</key>
+			<string>ios-arm64</string>
+			<key>LibraryPath</key>
+			<string>TalsecRuntime.framework</string>
+			<key>SupportedArchitectures</key>
+			<array>
+				<string>arm64</string>
+			</array>
+			<key>SupportedPlatform</key>
+			<string>ios</string>
+		</dict>
+	</array>
+	<key>CFBundlePackageType</key>
+	<string>XFWK</string>
+	<key>XCFrameworkFormatVersion</key>
+	<string>1.0</string>
+</dict>
+</plist>

package/ios/Plugin/TalsecRuntime.xcframework/ios-arm64/TalsecRuntime.framework/Headers/CryptoBridgingHeader.h

@@ -0,0 +1,14 @@
+//
+//  CryptoBridgingHeader.h
+//  Talsec
+//
+//  Created by Jakub Mejtský on 05/08/2019.
+//  Copyright © 2019 AHEAD iTec, s.r.o. All rights reserved.
+//
+
+#ifndef Crypto_h
+#define Crypto_h
+
+#import <CommonCrypto/CommonCrypto.h>
+
+#endif /* Crypto_h */

package/ios/Plugin/TalsecRuntime.xcframework/ios-arm64/TalsecRuntime.framework/Headers/CurlWrapper.h

@@ -0,0 +1,25 @@
+//
+//  CurlWrapper.h
+//  Talsec
+//
+//  Created by Jakub Mejtský on 23/07/2019.
+//  Copyright © 2019 AHEAD iTec, s.r.o. All rights reserved.
+//
+
+#ifndef CurlWrapper_h
+#define CurlWrapper_h
+
+#include "curl.h"
+#include <stdio.h>
+#include <stdlib.h>
+#include <sys/sysctl.h>
+#include <unistd.h>
+#include <string.h>
+
+struct csYOEBgTUKWQ {
+    char *memory;
+    size_t size;
+    CURLcode ret;
+};
+
+#endif /* CurlWrapper_h */