cipher-kit 2.0.0 → 2.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (40) hide show
  1. package/README.md +26 -28
  2. package/dist/{chunk-N2EW2FDZ.cjs → chunk-56PVVFVM.cjs} +187 -152
  3. package/dist/chunk-56PVVFVM.cjs.map +1 -0
  4. package/dist/{chunk-FKSYSPJR.js → chunk-6C4NIWQ4.js} +24 -22
  5. package/dist/chunk-6C4NIWQ4.js.map +1 -0
  6. package/dist/{chunk-4MFF6V3R.js → chunk-FSEA3UXJ.js} +80 -45
  7. package/dist/chunk-FSEA3UXJ.js.map +1 -0
  8. package/dist/{chunk-CVCDAHDW.cjs → chunk-LTVOIZP5.cjs} +193 -158
  9. package/dist/chunk-LTVOIZP5.cjs.map +1 -0
  10. package/dist/{chunk-ACFPMIXO.js → chunk-PWTFVMW6.js} +79 -44
  11. package/dist/chunk-PWTFVMW6.js.map +1 -0
  12. package/dist/{chunk-3UX5MZ2P.cjs → chunk-X4CS7UXE.cjs} +25 -22
  13. package/dist/chunk-X4CS7UXE.cjs.map +1 -0
  14. package/dist/{export-55tHE0Bw.d.cts → export-C4DbO5zM.d.ts} +200 -26
  15. package/dist/{export-llM6c7Do.d.ts → export-CpZ7s25O.d.cts} +200 -26
  16. package/dist/{export-CQNsJFh_.d.cts → export-DO9n7Np-.d.cts} +200 -26
  17. package/dist/{export-BMvZq46v.d.ts → export-DUgIcobC.d.ts} +200 -26
  18. package/dist/index.cjs +12 -12
  19. package/dist/index.cjs.map +1 -1
  20. package/dist/index.d.cts +3 -3
  21. package/dist/index.d.ts +3 -3
  22. package/dist/index.js +3 -3
  23. package/dist/index.js.map +1 -1
  24. package/dist/node.cjs +33 -33
  25. package/dist/node.d.cts +2 -2
  26. package/dist/node.d.ts +2 -2
  27. package/dist/node.js +2 -2
  28. package/dist/{validate-EHuJC5QQ.d.cts → validate-cJEdGlj1.d.cts} +54 -67
  29. package/dist/{validate-EHuJC5QQ.d.ts → validate-cJEdGlj1.d.ts} +54 -67
  30. package/dist/web-api.cjs +33 -33
  31. package/dist/web-api.d.cts +2 -2
  32. package/dist/web-api.d.ts +2 -2
  33. package/dist/web-api.js +2 -2
  34. package/package.json +6 -7
  35. package/dist/chunk-3UX5MZ2P.cjs.map +0 -1
  36. package/dist/chunk-4MFF6V3R.js.map +0 -1
  37. package/dist/chunk-ACFPMIXO.js.map +0 -1
  38. package/dist/chunk-CVCDAHDW.cjs.map +0 -1
  39. package/dist/chunk-FKSYSPJR.js.map +0 -1
  40. package/dist/chunk-N2EW2FDZ.cjs.map +0 -1
package/dist/chunk-56PVVFVM.cjs.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"sources":["../src/node/kit.ts","../src/node/node-encode.ts","../src/node/node-encrypt.ts"],"names":["__export","$isStr","$err","ENCODING","$ok","Buffer","$fmtError","nodeCrypto","title","$isPlainObj","ENCRYPTION_ALGORITHMS","DIGEST_ALGORITHMS","CIPHER_ENCODING","$isSecretKey","$fmtResultErr","error","matchEncryptedPattern","$stringifyObj","$parseToObj","hash"],"mappings":";;;;;;;;;;;AAAA,IAAA,WAAA,GAAA;AAAAA,0BAAA,CAAA,WAAA,EAAA;AAAA,EAAA,iBAAA,EAAA,MAAA,iBAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,iBAAA,EAAA,MAAA,iBAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,OAAA,EAAA,MAAA,OAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,OAAA,EAAA,MAAA,OAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,YAAA,EAAA,MAAA,YAAA;AAAA,EAAA,IAAA,EAAA,MAAA,IAAA;AAAA,EAAA,YAAA,EAAA,MAAA,YAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,oBAAA,EAAA,MAAA,oBAAA;AAAA,EAAA,kBAAA,EAAA,MAAA,kBAAA;AAAA,EAAA,oBAAA,EAAA,MAAA,oBAAA;AAAA,EAAA,kBAAA,EAAA,MAAA,kBAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,aAAA,EAAA,MAAA,aAAA;AAAA,EAAA,UAAA,EAAA,MAAA,UAAA;AAAA,EAAA,aAAA,EAAA,MAAA,aAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,OAAA,EAAA,MAAA,OAAA;AAAA,EAAA,eAAA,EAAA,MAAA,eAAA;AAAA,EAAA,cAAA,EAAA,MAAA;AAAA,CAAA,CAAA;ACMO,SAAS,kBAAA,CAAmB,IAAA,EAAc,aAAA,GAA0B,MAAA,EAAoC;AAC7G,EAAA,IAAI,CAACC,wBAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,iDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI,CAACC,0BAAA,CAAS,QAAA,CAAS,aAAa,CAAA,EAAG;AACrC,IAAA,OAAOD,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,8DAA8D,aAAa,CAAA,CAAA;AAAA,MAChF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI;AACF,IAAA,OAAOE,qBAAA,CAAI,EAAE,MAAA,EAAQC,aAAA,CAAO,KAAK,IAAA,EAAM,aAAa,GAAG,CAAA;AAAA,EACzD,SAAS,KAAA,EAAO;AACd,IAAA,OAAOH,sBAAA,CAAK,EAAE,GAAA,EAAK,6DAAA,EAA+D,MAAMI,2BAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC5G;AACF;AAEO,SAAS,kBAAA,CAAmB,IAAA,EAAc,cAAA,GAA2B,MAAA,EAAwB;AAClG,EAAA,IAAI,EAAE,gBAAgBD,aAAA,CAAA,EAAS;AAC7B,IAAA,OAAOH,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,wDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI,CAACC,0BAAA,CAAS,QAAA,CAAS,cAAc,CAAA,EAAG;AACtC,IAAA,OAAOD,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,8DAA8D,cAAc,CAAA,CAAA;AAAA,MACjF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,IAAI;AACF,IAAA,OAAOE,sBAAIC,aAAA,CAAO,IAAA,CAAK,IAAI,CAAA,CAAE,QAAA,CAAS,cAAc,CAAC,CAAA;AAAA,EACvD,SAAS,KAAA,EAAO;AACd,IAAA,OAAOH,sBAAA,CAAK,EAAE,GAAA,EAAK,6DAAA,EAA+D,MAAMI,2BAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC5G;AACF;AAEO,SAAS,gBAAA,CAAiB,IAAA,EAAc,IAAA,EAAgB,EAAA,EAA8B;AAC3F,EAAA,IAAI,CAACL,wBAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,gDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,CAACC,2BAAS,QAAA,CAAS,IAAI,KAAK,CAACA,0BAAA,CAAS,QAAA,CAAS,EAAE,CAAA,EAAG;AACtD,IAAA,OAAOD,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,+DAAA,EAAkE,IAAI,CAAA,IAAA,EAAO,EAAE,CAAA,CAAA;AAAA,MACpF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,KAAA,GAAQ,kBAAA,CAAmB,IAAA,EAAM,IAAI,CAAA;AAC3C,EAAA,IAAI,KAAA,CAAM,KAAA,EAAO,OAAOA,sBAAA,CAAK,EAAE,GAAA,EAAK,KAAA,CAAM,KAAA,CAAM,OAAA,EAAS,IAAA,EAAM,KAAA,CAAM,KAAA,CAAM,aAAa,CAAA;AAExF,EAAA,MAAM,GAAA,GAAM,kBAAA,CAAmB,KAAA,CAAM,MAAA,EAAQ,EAAE,CAAA;AAC/C,EAAA,IAAI,GAAA,CAAI,KAAA,EAAO,OAAOA,sBAAA,CAAK,EAAE,GAAA,EAAK,GAAA,CAAI,KAAA,CAAM,OAAA,EAAS,IAAA,EAAM,GAAA,CAAI,KAAA,CAAM,aAAa,CAAA;AAElF,EAAA,OAAOE,qBAAA,CAAI,EAAE,MAAA,EAAQ,GAAA,CAAI,QAAQ,CAAA;AACnC;ACnDO,SAAS,aAAA,GAAgC;AAC9C,EAAA,IAAI;AACF,IAAA,OAAOA,qBAAA,CAAIG,2BAAA,CAAW,UAAA,EAAY,CAAA;AAAA,EACpC,SAAS,KAAA,EAAO;AACd,IAAA,OAAOL,sBAAA,CAAK,EAAE,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,iBAAiB,CAAC,CAAA,yBAAA,CAAA,EAA6B,IAAA,EAAMF,2BAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC7G;AACF;AAEO,SAAS,gBAAA,CACd,QACA,OAAA,EACuC;AACvC,EAAA,IAAI,CAACL,wBAAA,CAAO,MAAA,EAAQ,CAAC,CAAA,EAAG;AACtB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,gBAAgB,CAAC,CAAA,cAAA,CAAA;AAAA,MACvC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,CAACC,6BAAA,CAAoC,OAAO,CAAA,EAAG;AACjD,IAAA,OAAOP,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,gBAAgB,CAAC,CAAA,iBAAA,CAAA;AAAA,MACvC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,SAAA,GAAY,QAAQ,SAAA,IAAa,WAAA;AACvC,EAAA,IAAI,EAAE,aAAaE,uCAAA,CAAA,EAAwB;AACzC,IAAA,OAAOR,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,gBAAgB,CAAC,4BAA4B,SAAS,CAAA,CAAA;AAAA,MAC5E,IAAA,EAAM,6BAA6B,MAAA,CAAO,IAAA,CAAKE,uCAAqB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KACjF,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,UAAUC,mCAAA,CAAA,EAAoB;AAClC,IAAA,OAAOT,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,gBAAgB,CAAC,yBAAyB,MAAM,CAAA,CAAA;AAAA,MACtE,IAAA,EAAM,0BAA0B,MAAA,CAAO,IAAA,CAAKG,mCAAiB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KAC1E,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,IAAQ,iBAAA;AAC7B,EAAA,IAAI,CAACV,wBAAA,CAAO,IAAA,EAAM,CAAC,CAAA,EAAG;AACpB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,gBAAgB,CAAC,CAAA,WAAA,CAAA;AAAA,MACvC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,IAAQ,YAAA;AAC7B,EAAA,IAAI,CAACP,wBAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,gBAAgB,CAAC,CAAA,cAAA,CAAA;AAAA,MACvC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,WAAA,GAAcE,wCAAsB,SAAS,CAAA;AACnD,EAAA,MAAM,UAAA,GAAaC,oCAAkB,MAAM,CAAA;AAE3C,EAAA,IAAI;AACF,IAAA,MAAM,aAAaJ,2BAAA,CAAW,QAAA;AAAA,MAC5B,UAAA,CAAW,IAAA;AAAA,MACX,MAAA,CAAO,UAAU,MAAM,CAAA;AAAA,MACvB,IAAA,CAAK,UAAU,MAAM,CAAA;AAAA,MACrB,IAAA,CAAK,UAAU,MAAM,CAAA;AAAA,MACrB,WAAA,CAAY;AAAA,KACd;AACA,IAAA,MAAM,MAAMA,2BAAA,CAAW,eAAA,CAAgBF,aAAAA,CAAO,IAAA,CAAK,UAAU,CAAC,CAAA;AAC9D,IAAA,MAAM,SAAA,GAAY,OAAO,MAAA,CAAO;AAAA,MAC9B,QAAA,EAAU,MAAA;AAAA,MACV,MAAA;AAAA,MACA,SAAA;AAAA,MACA;AAAA,KACD,CAAA;AAED,IAAA,OAAOD,qBAAA,CAAI,EAAE,MAAA,EAAQ,SAAA,EAAW,CAAA;AAAA,EAClC,SAAS,KAAA,EAAO;AACd,IAAA,OAAOF,sBAAA,CAAK,EAAE,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,gBAAgB,CAAC,CAAA,6BAAA,CAAA,EAAiC,IAAA,EAAMF,2BAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAChH;AACF;AAEO,SAAS,QAAA,CAAS,IAAA,EAAc,SAAA,EAA8B,OAAA,EAAyC;AAC5G,EAAA,IAAI,CAACL,wBAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,2BAAA,CAAA;AAAA,MACnC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,CAACC,6BAAA,CAA4B,OAAO,CAAA,EAAG;AACzC,IAAA,OAAOP,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,iBAAA,CAAA;AAAA,MACnC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,cAAA,GAAiB,QAAQ,cAAA,IAAkB,WAAA;AACjD,EAAA,IAAI,CAACI,iCAAA,CAAgB,QAAA,CAAS,cAAc,CAAA,EAAG;AAC7C,IAAA,OAAOV,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,YAAY,CAAC,kCAAkC,cAAc,CAAA,CAAA;AAAA,MACnF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,WAAA,GAAcK,8BAAA,CAAa,SAAA,EAAW,MAAM,CAAA;AAClD,EAAA,IAAI,CAAC,WAAA,EAAa;AAChB,IAAA,OAAOX,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,oBAAA,CAAA;AAAA,MACnC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,MAAM,CAAA;AACzD,EAAA,IAAI,KAAA,EAAO,OAAON,sBAAA,CAAK,KAAK,CAAA;AAE5B,EAAA,IAAI;AACF,IAAA,MAAM,EAAA,GAAKK,2BAAA,CAAW,WAAA,CAAY,WAAA,CAAY,SAAS,QAAQ,CAAA;AAC/D,IAAA,MAAM,MAAA,GAASA,4BAAW,cAAA,CAAe,WAAA,CAAY,SAAS,IAAA,EAAM,WAAA,CAAY,KAAK,EAAE,CAAA;AACvF,IAAA,MAAM,SAAA,GAAYF,aAAAA,CAAO,MAAA,CAAO,CAAC,MAAA,CAAO,MAAA,CAAO,MAAM,CAAA,EAAG,MAAA,CAAO,KAAA,EAAO,CAAC,CAAA;AACvE,IAAA,MAAM,GAAA,GAAM,OAAO,UAAA,EAAW;AAE9B,IAAA,MAAM,KAAA,GAAQ,kBAAA,CAAmB,EAAA,EAAI,cAAc,CAAA;AACnD,IAAA,MAAM,SAAA,GAAY,kBAAA,CAAmB,SAAA,EAAW,cAAc,CAAA;AAC9D,IAAA,MAAM,MAAA,GAAS,kBAAA,CAAmB,GAAA,EAAK,cAAc,CAAA;AAErD,IAAA,IAAI,KAAA,CAAM,KAAA,IAAS,SAAA,CAAU,KAAA,IAAS,OAAO,KAAA,EAAO;AAClD,MAAA,OAAOH,sBAAA,CAAK;AAAA,QACV,GAAA,EAAK,+EAAA;AAAA,QACL,IAAA,EAAM,qBAAqBY,+BAAA,CAAc,KAAA,CAAM,SAAS,SAAA,CAAU,KAAA,IAAS,MAAA,CAAO,KAAK,CAAC,CAAA;AAAA,OACzF,CAAA;AAAA,IACH;AAEA,IAAA,OAAOV,qBAAA,CAAI,CAAA,EAAG,KAAA,CAAM,MAAM,CAAA,CAAA,EAAI,UAAU,MAAM,CAAA,CAAA,EAAI,MAAA,CAAO,MAAM,CAAA,CAAA,CAAG,CAAA;AAAA,EACpE,SAASW,MAAAA,EAAO;AACd,IAAA,OAAOb,sBAAA,CAAK,EAAE,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,wBAAA,CAAA,EAA4B,IAAA,EAAMF,2BAAA,CAAUS,MAAK,GAAG,CAAA;AAAA,EACvG;AACF;AAEO,SAAS,QAAA,CAAS,SAAA,EAAmB,SAAA,EAA8B,OAAA,EAAyC;AACjH,EAAA,IAAI,CAACC,uCAAA,CAAsB,SAAA,EAAW,MAAM,CAAA,EAAG;AAC7C,IAAA,OAAOd,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,+BAAA,CAAA;AAAA,MACnC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,CAACC,6BAAA,CAA4B,OAAO,CAAA,EAAG;AACzC,IAAA,OAAOP,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,iBAAA,CAAA;AAAA,MACnC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,aAAA,GAAgB,QAAQ,aAAA,IAAiB,WAAA;AAC/C,EAAA,IAAI,CAACI,iCAAA,CAAgB,QAAA,CAAS,aAAa,CAAA,EAAG;AAC5C,IAAA,OAAOV,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,YAAY,CAAC,iCAAiC,aAAa,CAAA,CAAA;AAAA,MACjF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,CAAC,IAAI,MAAA,EAAQ,GAAG,IAAI,SAAA,CAAU,KAAA,CAAM,KAAK,CAAC,CAAA;AAChD,EAAA,IAAI,CAACP,wBAAA,CAAO,EAAE,CAAA,IAAK,CAACA,wBAAA,CAAO,MAAM,CAAA,IAAK,CAACA,wBAAA,CAAO,GAAG,CAAA,EAAG;AAClD,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,wBAAA,CAAA;AAAA,MACnC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,WAAA,GAAcK,8BAAA,CAAa,SAAA,EAAW,MAAM,CAAA;AAClD,EAAA,IAAI,CAAC,WAAA,EAAa;AAChB,IAAA,OAAOX,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,oDAAA;AAAA,MACL,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,OAAA,GAAU,kBAAA,CAAmB,EAAA,EAAI,aAAa,CAAA;AACpD,EAAA,MAAM,WAAA,GAAc,kBAAA,CAAmB,MAAA,EAAQ,aAAa,CAAA;AAC5D,EAAA,MAAM,QAAA,GAAW,kBAAA,CAAmB,GAAA,EAAK,aAAa,CAAA;AAEtD,EAAA,IAAI,OAAA,CAAQ,KAAA,IAAS,WAAA,CAAY,KAAA,IAAS,SAAS,KAAA,EAAO;AACxD,IAAA,OAAOA,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,+CAAA,CAAA;AAAA,MACnC,IAAA,EAAM,qBAAqBM,+BAAA,CAAc,OAAA,CAAQ,SAAS,WAAA,CAAY,KAAA,IAAS,QAAA,CAAS,KAAK,CAAC,CAAA;AAAA,KAC/F,CAAA;AAAA,EACH;AAEA,EAAA,IAAI;AACF,IAAA,MAAM,QAAA,GAAWP,4BAAW,gBAAA,CAAiB,WAAA,CAAY,SAAS,IAAA,EAAM,WAAA,CAAY,GAAA,EAAK,OAAA,CAAQ,MAAM,CAAA;AACvG,IAAA,QAAA,CAAS,UAAA,CAAW,SAAS,MAAM,CAAA;AACnC,IAAA,MAAM,SAAA,GAAYF,aAAAA,CAAO,MAAA,CAAO,CAAC,QAAA,CAAS,MAAA,CAAO,WAAA,CAAY,MAAM,CAAA,EAAG,QAAA,CAAS,KAAA,EAAO,CAAC,CAAA;AAEvF,IAAA,OAAO,kBAAA,CAAmB,WAAW,MAAM,CAAA;AAAA,EAC7C,SAAS,KAAA,EAAO;AACd,IAAA,OAAOH,sBAAA,CAAK,EAAE,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,YAAY,CAAC,CAAA,wBAAA,CAAA,EAA4B,IAAA,EAAMF,2BAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EACvG;AACF;AACO,SAAS,WAAA,CACd,IAAA,EACA,SAAA,EACA,OAAA,EACgB;AAChB,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAIW,gCAAc,IAAI,CAAA;AAC5C,EAAA,IAAI,KAAA,EAAO,OAAOf,sBAAA,CAAK,KAAK,CAAA;AAC5B,EAAA,OAAO,QAAA,CAAS,MAAA,EAAQ,SAAA,EAAW,OAAO,CAAA;AAC5C;AAEO,SAAS,WAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,EACuB;AACvB,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,QAAA,CAAS,SAAA,EAAW,WAAW,OAAO,CAAA;AAChE,EAAA,IAAI,KAAA,EAAO,OAAOA,sBAAA,CAAK,KAAK,CAAA;AAC5B,EAAA,OAAOgB,8BAAe,MAAM,CAAA;AAC9B;AAEO,SAAS,KAAA,CAAM,IAAA,EAAc,OAAA,GAAuB,EAAC,EAAmB;AAC7E,EAAA,IAAI,CAACjB,wBAAA,CAAO,IAAI,CAAA,EAAG;AACjB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,SAAS,CAAC,CAAA,wBAAA,CAAA;AAAA,MAChC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,CAACC,6BAAA,CAAyB,OAAO,CAAA,EAAG;AACtC,IAAA,OAAOP,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,SAAS,CAAC,CAAA,iBAAA,CAAA;AAAA,MAChC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,cAAA,GAAiB,QAAQ,cAAA,IAAkB,WAAA;AACjD,EAAA,IAAI,CAACI,iCAAA,CAAgB,QAAA,CAAS,cAAc,CAAA,EAAG;AAC7C,IAAA,OAAOV,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,SAAS,CAAC,kCAAkC,cAAc,CAAA,CAAA;AAAA,MAChF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,UAAUG,mCAAA,CAAA,EAAoB;AAClC,IAAA,OAAOT,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,SAAS,CAAC,yBAAyB,MAAM,CAAA,CAAA;AAAA,MAC/D,IAAA,EAAM,0BAA0B,MAAA,CAAO,IAAA,CAAKG,mCAAiB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KAC1E,CAAA;AAAA,EACH;AACA,EAAA,MAAM,UAAA,GAAaA,oCAAkB,MAAM,CAAA;AAE3C,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,MAAM,CAAA;AACzD,EAAA,IAAI,KAAA,EAAO,OAAOT,sBAAA,CAAK,KAAK,CAAA;AAE5B,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAASK,4BAAW,UAAA,CAAW,UAAA,CAAW,IAAI,CAAA,CAAE,MAAA,CAAO,MAAM,CAAA,CAAE,MAAA,EAAO;AAC5E,IAAA,OAAO,kBAAA,CAAmB,QAAQ,cAAc,CAAA;AAAA,EAClD,SAASQ,MAAAA,EAAO;AACd,IAAA,OAAOb,sBAAA,CAAK,EAAE,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,SAAS,CAAC,CAAA,wCAAA,CAAA,EAA4C,IAAA,EAAMF,2BAAA,CAAUS,MAAK,GAAG,CAAA;AAAA,EACpH;AACF;AAEO,SAAS,aAAA,CACd,UACA,OAAA,EAC0C;AAC1C,EAAA,IAAI,CAACd,wBAAA,CAAO,QAAQ,CAAA,EAAG;AACrB,IAAA,OAAOC,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,kBAAkB,CAAC,CAAA,4BAAA,CAAA;AAAA,MACzC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,CAACC,6BAAA,CAAiC,OAAO,CAAA,EAAG;AAC9C,IAAA,OAAOP,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,kBAAkB,CAAC,CAAA,iBAAA,CAAA;AAAA,MACzC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,UAAUG,mCAAA,CAAA,EAAoB;AAClC,IAAA,OAAOT,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,kBAAkB,CAAC,yBAAyB,MAAM,CAAA,CAAA;AAAA,MACxE,IAAA,EAAM,0BAA0B,MAAA,CAAO,IAAA,CAAKG,mCAAiB,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KAC1E,CAAA;AAAA,EACH;AACA,EAAA,MAAM,UAAA,GAAaA,oCAAkB,MAAM,CAAA;AAE3C,EAAA,MAAM,cAAA,GAAiB,QAAQ,cAAA,IAAkB,WAAA;AACjD,EAAA,IAAI,CAACC,iCAAA,CAAgB,QAAA,CAAS,cAAc,CAAA,EAAG;AAC7C,IAAA,OAAOV,sBAAA,CAAK;AAAA,MACV,KAAK,CAAA,EAAGM,uBAAA,CAAM,QAAQ,kBAAkB,CAAC,2BAA2B,cAAc,CAAA,CAAA;AAAA,MAClF,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,UAAA,GAAa,QAAQ,UAAA,IAAc,EAAA;AACzC,EAAA,IAAI,OAAO,UAAA,KAAe,QAAA,IAAY,UAAA,GAAa,CAAA,EAAG;AACpD,IAAA,OAAON,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,kBAAkB,CAAC,CAAA,kBAAA,CAAA;AAAA,MACzC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,UAAA,GAAa,QAAQ,UAAA,IAAc,IAAA;AACzC,EAAA,IAAI,OAAO,UAAA,KAAe,QAAA,IAAY,UAAA,GAAa,GAAA,EAAM;AACvD,IAAA,OAAON,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,kBAAkB,CAAC,CAAA,uBAAA,CAAA;AAAA,MACzC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,MAAM,SAAA,GAAY,QAAQ,SAAA,IAAa,EAAA;AACvC,EAAA,IAAI,OAAO,SAAA,KAAc,QAAA,IAAY,SAAA,GAAY,EAAA,EAAI;AACnD,IAAA,OAAON,sBAAA,CAAK;AAAA,MACV,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,kBAAkB,CAAC,CAAA,oBAAA,CAAA;AAAA,MACzC,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AAEA,EAAA,IAAI;AACF,IAAA,MAAM,IAAA,GAAOD,2BAAA,CAAW,WAAA,CAAY,UAAU,CAAA;AAC9C,IAAA,MAAMY,KAAAA,GAAOZ,2BAAA,CAAW,UAAA,CAAW,QAAA,CAAS,SAAA,CAAU,MAAM,CAAA,EAAG,IAAA,EAAM,UAAA,EAAY,SAAA,EAAW,UAAA,CAAW,IAAI,CAAA;AAE3G,IAAA,OAAOH,qBAAA,CAAI,EAAE,MAAA,EAAQe,KAAAA,CAAK,QAAA,CAAS,cAAc,CAAA,EAAG,IAAA,EAAM,IAAA,CAAK,QAAA,CAAS,cAAc,CAAA,EAAG,CAAA;AAAA,EAC3F,SAAS,KAAA,EAAO;AACd,IAAA,OAAOjB,sBAAA,CAAK,EAAE,GAAA,EAAK,CAAA,EAAGM,uBAAA,CAAM,MAAA,EAAQ,kBAAkB,CAAC,CAAA,yBAAA,CAAA,EAA6B,IAAA,EAAMF,2BAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EAC9G;AACF;AAEO,SAAS,eAAA,CACd,QAAA,EACA,cAAA,EACA,IAAA,EACA,OAAA,EACS;AACT,EAAA,IAAI,CAACL,wBAAA,CAAO,QAAQ,CAAA,IAAK,CAACA,wBAAA,CAAO,cAAc,CAAA,IAAK,CAACA,yBAAO,IAAI,CAAA,IAAK,CAACQ,6BAAA,CAAmC,OAAO,CAAA,EAAG;AACjH,IAAA,OAAO,KAAA;AAAA,EACT;AAEA,EAAA,MAAM,MAAA,GAAS,QAAQ,MAAA,IAAU,QAAA;AACjC,EAAA,IAAI,EAAE,MAAA,IAAUE,mCAAA,CAAA,EAAoB,OAAO,KAAA;AAC3C,EAAA,MAAM,UAAA,GAAaA,oCAAkB,MAAM,CAAA;AAE3C,EAAA,MAAM,aAAA,GAAgB,QAAQ,aAAA,IAAiB,WAAA;AAC/C,EAAA,IAAI,CAACC,iCAAA,CAAgB,QAAA,CAAS,aAAa,GAAG,OAAO,KAAA;AAErD,EAAA,MAAM,UAAA,GAAa,QAAQ,UAAA,IAAc,IAAA;AACzC,EAAA,IAAI,OAAO,UAAA,KAAe,QAAA,IAAY,UAAA,GAAa,KAAM,OAAO,KAAA;AAEhE,EAAA,MAAM,SAAA,GAAY,QAAQ,SAAA,IAAa,EAAA;AACvC,EAAA,IAAI,OAAO,SAAA,KAAc,QAAA,IAAY,SAAA,GAAY,IAAI,OAAO,KAAA;AAE5D,EAAA,MAAM,SAAA,GAAY,kBAAA,CAAmB,IAAA,EAAM,aAAa,CAAA;AACxD,EAAA,IAAI,SAAA,CAAU,OAAO,OAAO,KAAA;AAE5B,EAAA,MAAM,mBAAA,GAAsB,kBAAA,CAAmB,cAAA,EAAgB,aAAa,CAAA;AAC5E,EAAA,IAAI,mBAAA,CAAoB,OAAO,OAAO,KAAA;AAEtC,EAAA,IAAI;AACF,IAAA,OAAOL,2BAAA,CAAW,eAAA;AAAA,MAChBA,2BAAA,CAAW,UAAA,CAAW,QAAA,CAAS,SAAA,CAAU,MAAM,CAAA,EAAG,SAAA,CAAU,MAAA,EAAQ,UAAA,EAAY,SAAA,EAAW,UAAA,CAAW,IAAI,CAAA;AAAA,MAC1G,mBAAA,CAAoB;AAAA,KACtB;AAAA,EACF,CAAA,CAAA,MAAQ;AACN,IAAA,OAAO,KAAA;AAAA,EACT;AACF;;;AFxVO,SAAS,gBAAgB,CAAA,EAAoC;AAClE,EAAA,OAAOM,8BAAA,CAAa,CAAA,EAAG,MAAM,CAAA,KAAM,IAAA;AACrC;AAmBO,SAAS,eAAA,GAAkC;AAChD,EAAA,OAAO,aAAA,EAAc;AACvB;AAiBO,SAAS,YAAA,GAAuB;AACrC,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,aAAA,EAAc;AACxC,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMC,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AA0BO,SAAS,kBAAA,CACd,MAAA,EACA,OAAA,GAAkC,EAAC,EACI;AACvC,EAAA,OAAO,gBAAA,CAAiB,QAAQ,OAAO,CAAA;AACzC;AAwBO,SAAS,eAAA,CAAgB,MAAA,EAAgB,OAAA,GAAkC,EAAC,EAAsB;AACvG,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,gBAAA,CAAiB,QAAQ,OAAO,CAAA;AAC1D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAyBO,SAAS,UAAA,CAAW,IAAA,EAAc,SAAA,EAA8B,OAAA,GAA0B,EAAC,EAAmB;AACnH,EAAA,OAAO,QAAA,CAAS,IAAA,EAAM,SAAA,EAAW,OAAO,CAAA;AAC1C;AAuBO,SAAS,OAAA,CAAQ,IAAA,EAAc,SAAA,EAA8B,OAAA,GAA0B,EAAC,EAAW;AACxG,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,QAAA,CAAS,IAAA,EAAM,WAAW,OAAO,CAAA;AAC3D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AA0BO,SAAS,UAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,OAAO,QAAA,CAAS,SAAA,EAAW,SAAA,EAAW,OAAO,CAAA;AAC/C;AAwBO,SAAS,OAAA,CAAQ,SAAA,EAAmB,SAAA,EAA8B,OAAA,GAA0B,EAAC,EAAW;AAC7G,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,QAAA,CAAS,SAAA,EAAW,WAAW,OAAO,CAAA;AAChE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AA6BO,SAAS,aAAA,CACd,GAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACX;AAChB,EAAA,OAAO,WAAA,CAAY,GAAA,EAAK,SAAA,EAAW,OAAO,CAAA;AAC5C;AA2BO,SAAS,UAAA,CACd,GAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACnB;AACR,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,WAAA,CAAY,GAAA,EAAK,WAAW,OAAO,CAAA;AAC7D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AA2BO,SAAS,aAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACJ;AACvB,EAAA,OAAO,WAAA,CAAe,SAAA,EAAW,SAAA,EAAW,OAAO,CAAA;AACrD;AAyBO,SAAS,UAAA,CACd,SAAA,EACA,SAAA,EACA,OAAA,GAA0B,EAAC,EACxB;AACH,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,WAAA,CAAe,SAAA,EAAW,WAAW,OAAO,CAAA;AACtE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAyBO,SAAS,OAAA,CAAQ,IAAA,EAAc,OAAA,GAAuB,EAAC,EAAmB;AAC/E,EAAA,OAAO,KAAA,CAAM,MAAM,OAAO,CAAA;AAC5B;AAuBO,SAAS,IAAA,CAAK,IAAA,EAAc,OAAA,GAAuB,EAAC,EAAW;AACpE,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,KAAA,CAAM,MAAM,OAAO,CAAA;AAC7C,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AA4BO,SAAS,eAAA,CACd,QAAA,EACA,OAAA,GAA+B,EAAC,EACU;AAC1C,EAAA,OAAO,aAAA,CAAc,UAAU,OAAO,CAAA;AACxC;AA0BO,SAAS,YAAA,CAAa,QAAA,EAAkB,OAAA,GAA+B,EAAC,EAAqC;AAClH,EAAA,MAAM,EAAE,MAAA,EAAQ,IAAA,EAAM,OAAM,GAAI,aAAA,CAAc,UAAU,OAAO,CAAA;AAC/D,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,EAAE,QAAQ,IAAA,EAAK;AACxB;AA4BO,SAAS,eACd,QAAA,EACA,cAAA,EACA,IAAA,EACA,OAAA,GAAiC,EAAC,EACzB;AACT,EAAA,OAAO,eAAA,CAAgB,QAAA,EAAU,cAAA,EAAgB,IAAA,EAAM,OAAO,CAAA;AAChE;AAsBO,SAAS,oBAAA,CAAqB,IAAA,EAAc,aAAA,GAA0B,MAAA,EAAoC;AAC/G,EAAA,OAAO,kBAAA,CAAmB,MAAM,aAAa,CAAA;AAC/C;AAoBO,SAAS,iBAAA,CAAkB,IAAA,EAAc,aAAA,GAA0B,MAAA,EAAgB;AACxF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,aAAa,CAAA;AAChE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAuBO,SAAS,oBAAA,CAAqB,IAAA,EAAc,cAAA,GAA2B,MAAA,EAAwB;AACpG,EAAA,OAAO,kBAAA,CAAmB,MAAM,cAAc,CAAA;AAChD;AAqBO,SAAS,iBAAA,CAAkB,IAAA,EAAc,cAAA,GAA2B,MAAA,EAAgB;AACzF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,kBAAA,CAAmB,MAAM,cAAc,CAAA;AACjE,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAuBO,SAAS,kBAAA,CAAmB,IAAA,EAAc,IAAA,EAAgB,EAAA,EAA8B;AAC7F,EAAA,OAAO,gBAAA,CAAiB,IAAA,EAAM,IAAA,EAAM,EAAE,CAAA;AACxC;AAqBO,SAAS,eAAA,CAAgB,IAAA,EAAc,IAAA,EAAgB,EAAA,EAAsB;AAClF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,KAAU,gBAAA,CAAiB,IAAA,EAAM,MAAM,EAAE,CAAA;AACzD,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAMA,+BAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT","file":"chunk-56PVVFVM.cjs","sourcesContent":["import type { Buffer } from \"node:buffer\";\r\nimport { $fmtResultErr, type Result } from \"~/helpers/error\";\r\nimport type {\r\n CreateSecretKeyOptions,\r\n DecryptOptions,\r\n Encoding,\r\n EncryptOptions,\r\n HashOptions,\r\n HashPasswordOptions,\r\n SecretKey,\r\n VerifyPasswordOptions,\r\n} from \"~/helpers/types\";\r\nimport { $isSecretKey } from \"~/helpers/validate\";\r\nimport { $convertBytesToStr, $convertEncoding, $convertStrToBytes } from \"./node-encode\";\r\nimport {\r\n $createSecretKey,\r\n $decrypt,\r\n $decryptObj,\r\n $encrypt,\r\n $encryptObj,\r\n $generateUuid,\r\n $hash,\r\n $hashPassword,\r\n $verifyPassword,\r\n} from \"./node-encrypt\";\r\n\r\n/**\r\n * Type guard to check if the provided value is a SecretKey object for Node.js environment.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * Checking if the key in your hand is the right kind of key for the lock.\r\n *\r\n * @param x - The value to check.\r\n * @returns True if the value is a SecretKey object for Node.js, false otherwise.\r\n *\r\n * @example\r\n * ```ts\r\n * isNodeSecretKey(nodeKey); // true\r\n * isNodeSecretKey(webKey); // false\r\n * isNodeSecretKey({}); // false\r\n * ```\r\n */\r\nexport function isNodeSecretKey(x: unknown): x is SecretKey<\"node\"> {\r\n return $isSecretKey(x, \"node\") !== null;\r\n}\r\n\r\n/**\r\n * Safely generates a UUID (v4) (non-throwing).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * It's like giving your pet a name tag with a super random name made of numbers and letters.\r\n * The chance of two pets getting the same name tag is practically zero, and it's very hard to guess!\r\n *\r\n * @returns A `Result` containing the UUID string or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const {result, error, success} = tryGenerateUuid();\r\n *\r\n * if (success) console.log(result); // \"...\" (a UUID string)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryGenerateUuid(): Result<string> {\r\n return $generateUuid();\r\n}\r\n\r\n/**\r\n * Generates a UUID (v4) (throwing).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * It's like giving your pet a name tag with a super random name made of numbers and letters.\r\n * The chance of two pets getting the same name tag is practically zero, and it's very hard to guess!\r\n *\r\n * @returns A UUID string.\r\n * @throws {Error} If UUID generation fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const uuid = generateUuid(); // \"...\" (a UUID string)\r\n * ```\r\n */\r\nexport function generateUuid(): string {\r\n const { result, error } = $generateUuid();\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely derives a `SecretKey` from the provided string for encryption/decryption (non-throwing).\r\n *\r\n * Uses HKDF to derive a key from the input string.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * Imagine you want to create a special key for future use to lock your treasure box (data).\r\n * So, you stir in some secret ingredients (like salt and info) to make sure your key is one-of-a-kind.\r\n *\r\n * @param secret - The input string to derive the `SecretKey` from, must be at least 8 characters.\r\n * @param options.algorithm - The encryption algorithm to use (default: `'aes256gcm'`).\r\n * @param options.digest - The hash algorithm for HKDF (default: `'sha256'`).\r\n * @param options.salt - A salt string (default: `'cipher-kit-salt'`, must be ≥ 8 chars).\r\n * @param options.info - An info string (default: `'cipher-kit'`).\r\n * @returns A `Result` containing the derived `SecretKey` or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const {result, error, success} = tryCreateSecretKey(\"my-secret\");\r\n *\r\n * if (success) console.log(result); // SecretKey object\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryCreateSecretKey(\r\n secret: string,\r\n options: CreateSecretKeyOptions = {},\r\n): Result<{ result: SecretKey<\"node\"> }> {\r\n return $createSecretKey(secret, options);\r\n}\r\n\r\n/**\r\n * Derives a `SecretKey` from the provided string for encryption/decryption (throwing).\r\n *\r\n * Uses HKDF to derive a key from the input string.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * Imagine you want to create a special key for future use to lock your treasure box (data).\r\n * So, you stir in some secret ingredients (like salt and info) to make sure your key is one-of-a-kind.\r\n *\r\n * @param secret - The input string to derive the `SecretKey` from, must be at least 8 characters.\r\n * @param options.algorithm - The encryption algorithm to use (default: `'aes256gcm'`).\r\n * @param options.digest - The hash algorithm for HKDF (default: `'sha256'`).\r\n * @param options.salt - A salt string (default: `'cipher-kit-salt'`, must be ≥ 8 chars).\r\n * @param options.info - An info string (default: `'cipher-kit'`).\r\n * @returns The derived `SecretKey`.\r\n * @throws {Error} If key derivation fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\"); // SecretKey object\r\n * ```\r\n */\r\nexport function createSecretKey(secret: string, options: CreateSecretKeyOptions = {}): SecretKey<\"node\"> {\r\n const { result, error } = $createSecretKey(secret, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely encrypts a UTF-8 string using the provided `SecretKey` (non-throwing).\r\n *\r\n * Output format: \"iv.cipher.tag.\"\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You scramble a secret message with your special key,\r\n * creating a jumbled code that only someone with the right key can read.\r\n *\r\n * @param data - A UTF-8 string to encrypt.\r\n * @param secretKey - The `SecretKey` object used for encryption.\r\n * @param options.outputEncoding - The encoding format for the output ciphertext (default: `'base64url'`).\r\n * @returns A `Result` containing the encrypted string in the specified format or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const {result, error, success} = tryEncrypt(\"Hello, World!\", secretKey);\r\n *\r\n * if (success) console.log(result); // \"iv.cipher.tag.\" (Encrypted string)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryEncrypt(data: string, secretKey: SecretKey<\"node\">, options: EncryptOptions = {}): Result<string> {\r\n return $encrypt(data, secretKey, options);\r\n}\r\n\r\n/**\r\n * Encrypts a UTF-8 string using the provided `SecretKey` (throwing).\r\n *\r\n * Output format: \"iv.cipher.tag.\"\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You scramble a secret message with your special key,\r\n * creating a jumbled code that only someone with the right key can read.\r\n *\r\n * @param data - A UTF-8 string to encrypt.\r\n * @param secretKey - The `SecretKey` object used for encryption.\r\n * @param options.outputEncoding - The encoding format for the output ciphertext (default: `'base64url'`).\r\n * @returns The encrypted string in the specified format.\r\n * @throws {Error} If the input data or key is invalid, or if encryption fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const encrypted = encrypt(\"Hello, World!\", secretKey); // \"iv.cipher.tag.\" (Encrypted string)\r\n * ```\r\n */\r\nexport function encrypt(data: string, secretKey: SecretKey<\"node\">, options: EncryptOptions = {}): string {\r\n const { result, error } = $encrypt(data, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely decrypts the input string using the provided `SecretKey` (non-throwing).\r\n *\r\n * Expects input in the format \"iv.cipher.tag.\" and returns the decrypted UTF-8 string.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You take a scrambled secret message and use your special key to unscramble it,\r\n * revealing the original message inside.\r\n *\r\n * @param encrypted - The input string to decrypt, in the format \"iv.cipher.tag.\".\r\n * @param secretKey - The `SecretKey` object used for decryption.\r\n * @param options.inputEncoding - The encoding format for the input ciphertext (default: `'base64url'`).\r\n * @returns A `Result` containing the decrypted UTF-8 string or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const encrypted = encrypt(\"Hello, World!\", secretKey);\r\n * const {result, error, success} = tryDecrypt(encrypted, secretKey);\r\n *\r\n * if (success) console.log(result); // \"Hello, World!\" (Decrypted string)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryDecrypt(\r\n encrypted: string,\r\n secretKey: SecretKey<\"node\">,\r\n options: DecryptOptions = {},\r\n): Result<string> {\r\n return $decrypt(encrypted, secretKey, options);\r\n}\r\n\r\n/**\r\n * Decrypts the input string using the provided `SecretKey` (throwing).\r\n *\r\n * Expects input in the format \"iv.cipher.tag.\" and returns the decrypted UTF-8 string.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You take a scrambled secret message and use your special key to unscramble it,\r\n * revealing the original message inside.\r\n *\r\n * @param encrypted - The input string to decrypt, in the format \"iv.cipher.tag.\".\r\n * @param secretKey - The `SecretKey` object used for decryption.\r\n * @param options.inputEncoding - The encoding format for the input ciphertext (default: `'base64url'`).\r\n * @returns The decrypted UTF-8 string.\r\n * @throws {Error} If the input data or key is invalid, or if decryption fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const encrypted = encrypt(\"Hello, World!\", secretKey);\r\n * const decrypted = decrypt(encrypted, secretKey); // \"Hello, World!\" (Decrypted string)\r\n * ```\r\n */\r\nexport function decrypt(encrypted: string, secretKey: SecretKey<\"node\">, options: DecryptOptions = {}): string {\r\n const { result, error } = $decrypt(encrypted, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely encrypts a plain object using the provided `SecretKey` (non-throwing).\r\n *\r\n * Only plain objects (POJOs) are accepted. Class instances, Maps, Sets, etc. are rejected.\r\n *\r\n * Output format: \"iv.cipher.tag.\"\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * Imagine you have a toy box (an object) that you want to keep secret.\r\n * So, you take a picture of your toy box (convert it to JSON), and scramble that with\r\n * your special key, creating a jumbled code that only someone with the right key can read.\r\n *\r\n * @template T - The type of the plain object to encrypt.\r\n * @param obj - A plain object to encrypt.\r\n * @param secretKey - The `SecretKey` object used for encryption.\r\n * @param options.outputEncoding - The encoding format for the output ciphertext (default: `'base64url'`).\r\n * @returns A `Result` containing the encrypted string in the specified format or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const {result, error, success} = tryEncryptObj({ a: 1 }, secretKey);\r\n *\r\n * if (success) console.log(result); // \"iv.cipher.tag.\" (Encrypted string)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryEncryptObj<T extends object = Record<string, unknown>>(\r\n obj: T,\r\n secretKey: SecretKey<\"node\">,\r\n options: EncryptOptions = {},\r\n): Result<string> {\r\n return $encryptObj(obj, secretKey, options);\r\n}\r\n\r\n/**\r\n * Encrypts a plain object using the provided `SecretKey` (throwing).\r\n *\r\n * Only plain objects (POJOs) are accepted. Class instances, Maps, Sets, etc. are rejected.\r\n *\r\n * Output format: \"iv.cipher.tag.\"\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * Imagine you have a toy box (an object) that you want to keep secret.\r\n * So, you take a picture of your toy box (convert it to JSON), and scramble that with\r\n * your special key, creating a jumbled code that only someone with the right key can read.\r\n *\r\n * @template T - The type of the plain object to encrypt.\r\n * @param obj - A plain object to encrypt.\r\n * @param secretKey - The `SecretKey` object used for encryption.\r\n * @param options.outputEncoding - The encoding format for the output ciphertext (default: `'base64url'`).\r\n * @returns The encrypted string in the specified format.\r\n * @throws {Error} If the input data or key is invalid, or if encryption fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const encrypted = encryptObj({ a: 1 }, secretKey); // \"iv.cipher.tag.\" (Encrypted string)\r\n * ```\r\n */\r\nexport function encryptObj<T extends object = Record<string, unknown>>(\r\n obj: T,\r\n secretKey: SecretKey<\"node\">,\r\n options: EncryptOptions = {},\r\n): string {\r\n const { result, error } = $encryptObj(obj, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely decrypts an encrypted JSON string into a plain object (non-throwing).\r\n *\r\n * Expects input in the format `\"iv.cipher.tag.\"` and returns a plain object.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You rebuild your toy box (an object) by unscrambling the jumbled code (encrypted text),\r\n * using your special key to open it.\r\n *\r\n * @template T - The expected shape of the decrypted object.\r\n * @param encrypted - The encrypted string (format: `\"iv.cipher.tag.\"`).\r\n * @param secretKey - The `SecretKey` used for decryption.\r\n * @param options.inputEncoding - Input ciphertext encoding (default: `'base64url'`).\r\n * @returns A `Result` with the decrypted object on success, or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const encrypted = encryptObj({ a: 1 }, secretKey);\r\n * const {result, error, success} = tryDecryptObj<{ a: number }>(encrypted, secretKey);\r\n *\r\n * if (success) console.log(result); // { a: 1 } (Decrypted object)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryDecryptObj<T extends object = Record<string, unknown>>(\r\n encrypted: string,\r\n secretKey: SecretKey<\"node\">,\r\n options: DecryptOptions = {},\r\n): Result<{ result: T }> {\r\n return $decryptObj<T>(encrypted, secretKey, options);\r\n}\r\n\r\n/**\r\n * Decrypts an encrypted JSON string into a plain object (throwing).\r\n *\r\n * Expects input in the format `\"iv.cipher.tag.\"` and returns a plain object.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You rebuild your toy box (an object) by unscrambling the jumbled code (encrypted text),\r\n * using your special key to open it.\r\n *\r\n * @template T - The expected shape of the decrypted object.\r\n * @param encrypted - The encrypted string (format: `\"iv.cipher.tag.\"`).\r\n * @param secretKey - The `SecretKey` used for decryption.\r\n * @param options.inputEncoding - Input ciphertext encoding (default: `'base64url'`).\r\n * @returns The decrypted object.\r\n * @throws {Error} If decryption or JSON parsing fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const secretKey = createSecretKey(\"my-secret\");\r\n * const encrypted = encryptObj({ a: 1 }, secretKey);\r\n * const obj = decryptObj<{ a: number }>(encrypted, secretKey); // obj.a === 1\r\n * ```\r\n */\r\nexport function decryptObj<T extends object = Record<string, unknown>>(\r\n encrypted: string,\r\n secretKey: SecretKey<\"node\">,\r\n options: DecryptOptions = {},\r\n): T {\r\n const { result, error } = $decryptObj<T>(encrypted, secretKey, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely hashes a UTF-8 string (non-throwing).\r\n *\r\n * Uses the selected digest (default: `'sha256'`) and returns the hash\r\n * in the chosen encoding (default: `'base64url'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * Like putting something in a blender and getting a smoothie, you can’t get the original ingredients back,\r\n * but the smoothie is always the same if you use the same ingredients.\r\n *\r\n * @param data - The input string to hash.\r\n * @param options.digest - Hash algorithm (`'sha256' | 'sha384' | 'sha512'`, default: `'sha256'`).\r\n * @param options.outputEncoding - Output encoding (`'base64' | 'base64url' | 'hex'`, default: `'base64url'`).\r\n * @returns A `Result` with the hash string or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const {result, error, success} = tryHash(\"my data\");\r\n *\r\n * if (success) console.log(result); // \"...\" (Hashed string)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryHash(data: string, options: HashOptions = {}): Result<string> {\r\n return $hash(data, options);\r\n}\r\n\r\n/**\r\n * Hashes a UTF-8 string (throwing).\r\n *\r\n * Uses the selected digest (default: `'sha256'`) and returns the hash\r\n * in the chosen encoding (default: `'base64url'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * Like putting something in a blender and getting a smoothie, you can’t get the original ingredients back,\r\n * but the smoothie is always the same if you use the same ingredients.\r\n *\r\n * @param data - The input string to hash.\r\n * @param options.digest - Hash algorithm (`'sha256' | 'sha384' | 'sha512'`; default: `'sha256'`).\r\n * @param options.outputEncoding - Output encoding (`'base64' | 'base64url' | 'hex'`; default: `'base64url'`).\r\n * @returns The hashed string.\r\n * @throws {Error} If input is invalid or hashing fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const hash = hash(\"my data\"); // \"...\" (Hashed string)\r\n * ```\r\n */\r\nexport function hash(data: string, options: HashOptions = {}): string {\r\n const { result, error } = $hash(data, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely hashes a password using PBKDF2 (non-throwing).\r\n *\r\n * Uses strong defaults (`sha512`, 320k iterations, 64-byte key, 16-byte salt) and\r\n * returns `{ hash, salt }` encoded (default: `'base64url'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * We take your password, mix in some random salt, and stir many times.\r\n * The result is a super-secret soup that’s hard to copy.\r\n *\r\n * @param password - The password to hash.\r\n * @param options.digest - Hash algorithm (`'sha256' | 'sha384' | 'sha512'`; default: `'sha512'`).\r\n * @param options.outputEncoding - Output encoding (`'base64' | 'base64url' | 'hex'`; default: `'base64url'`).\r\n * @param options.saltLength - Length of the random salt in bytes (default: `16` bytes, min: `8` bytes).\r\n * @param options.iterations - Number of iterations (default: `320000`, min: `1000`).\r\n * @param options.keyLength - Length of the derived key in bytes (default: `64` bytes, min: `16` bytes).\r\n * @returns A `Result` with `{ result, salt }` or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const {result, salt, error, success} = tryHashPassword(\"my-password\");\r\n *\r\n * if (success) console.log(result, salt); // \"...\" (Hashed password string), \"...\" (salt)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryHashPassword(\r\n password: string,\r\n options: HashPasswordOptions = {},\r\n): Result<{ result: string; salt: string }> {\r\n return $hashPassword(password, options);\r\n}\r\n\r\n/**\r\n * Hashes a password using PBKDF2 (throwing).\r\n *\r\n * Uses strong defaults (`sha512`, 320k iterations, 64-byte key, 16-byte salt) and\r\n * returns `{ hash, salt }` encoded (default: `'base64url'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * We take your password, mix in some random salt, and stir many times.\r\n * The result is a super-secret soup that’s hard to copy.\r\n *\r\n * @param password - The password to hash.\r\n * @param options.digest - Hash algorithm (`'sha256' | 'sha384' | 'sha512'`; default: `'sha512'`).\r\n * @param options.outputEncoding - Output encoding (`'base64' | 'base64url' | 'hex'`; default: `'base64url'`).\r\n * @param options.saltLength - Length of the random salt in bytes (default: `16` bytes, min: `8` bytes).\r\n * @param options.iterations - Number of iterations (default: `320000`, min: `1000`).\r\n * @param options.keyLength - Length of the derived key in bytes (default: `64` bytes, min: `16` bytes).\r\n * @returns `{ result, salt }` for storage.\r\n * @throws {Error} If inputs are invalid or hashing fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const { result, salt } = hashPassword(\"my-password\"); // \"...\" (Hashed password string), \"...\" (salt)\r\n * ```\r\n */\r\nexport function hashPassword(password: string, options: HashPasswordOptions = {}): { result: string; salt: string } {\r\n const { result, salt, error } = $hashPassword(password, options);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return { result, salt };\r\n}\r\n\r\n/**\r\n * Verifies a password against a stored PBKDF2 hash (non-throwing).\r\n *\r\n * Re-derives the key using the same parameters and compares in constant time, to prevent timing attacks.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * We follow the same recipe as when we made the secret.\r\n * If the new soup tastes exactly the same, the password is correct.\r\n *\r\n * @param password - The plain password to verify.\r\n * @param hashedPassword - The stored hash (encoded).\r\n * @param salt - The stored salt (encoded).\r\n * @param options.digest - Hash algorithm used during hashing (`'sha256' | 'sha384' | 'sha512'`; default: `'sha512'`).\r\n * @param options.inputEncoding - Encoding of the stored hash and salt (`'base64' | 'base64url' | 'hex'`; default: `'base64url'`).\r\n * @param options.iterations - Number of iterations used during hashing (default: `320000`).\r\n * @param options.keyLength - Length of the derived key in bytes used during hashing (default: `64` bytes).\r\n * @returns `true` if the password matches, otherwise `false`.\r\n *\r\n * @example\r\n * ```ts\r\n * const { result, salt } = hashPassword(\"my-password\");\r\n *\r\n * verifyPassword(\"my-password\", result, salt); // true\r\n * verifyPassword(\"wrong-password\", result, salt); // false\r\n * ```\r\n */\r\nexport function verifyPassword(\r\n password: string,\r\n hashedPassword: string,\r\n salt: string,\r\n options: VerifyPasswordOptions = {},\r\n): boolean {\r\n return $verifyPassword(password, hashedPassword, salt, options);\r\n}\r\n\r\n/**\r\n * Safely converts a string to a Node.js `Buffer` using the specified encoding (non-throwing).\r\n *\r\n * Supported encodings: `'base64' | 'base64url' | 'hex' | 'utf8' | 'latin1'` (default: `'utf8'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * This turns your words into tiny computer building blocks (bytes) so computers can work with them.\r\n *\r\n * @param data - The input string to convert.\r\n * @param inputEncoding - The encoding of the input string (default: `'utf8'`).\r\n * @returns A `Result` with `{ result: Buffer }` or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const {result, error, success} = tryConvertStrToBytes(\"Hello\", \"utf8\");\r\n *\r\n * if (success) console.log(result); // <Buffer ...>\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryConvertStrToBytes(data: string, inputEncoding: Encoding = \"utf8\"): Result<{ result: Buffer }> {\r\n return $convertStrToBytes(data, inputEncoding);\r\n}\r\n\r\n/**\r\n * Converts a string to a Node.js `Buffer` using the specified encoding (throwing).\r\n *\r\n * Supported encodings: `'base64' | 'base64url' | 'hex' | 'utf8' | 'latin1'` (default: `'utf8'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * This turns your words into tiny computer building blocks (bytes) so computers can work with them.\r\n *\r\n * @param data - The input string to convert.\r\n * @param inputEncoding - The encoding of the input string (default: `'utf8'`).\r\n * @returns A `Buffer` containing the bytes.\r\n * @throws {Error} If input is invalid or conversion fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const bytes = convertStrToBytes(\"Hello\", \"utf8\"); // <Buffer ...>\r\n * ```\r\n */\r\nexport function convertStrToBytes(data: string, inputEncoding: Encoding = \"utf8\"): Buffer {\r\n const { result, error } = $convertStrToBytes(data, inputEncoding);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely converts a Node.js `Buffer` to a string using the specified encoding (non-throwing).\r\n *\r\n * Supported encodings: `'base64' | 'base64url' | 'hex' | 'utf8' | 'latin1'` (default: `'utf8'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * This turns the tiny computer building blocks (bytes) back into a readable sentence.\r\n *\r\n * @param data - The `Buffer` to convert.\r\n * @param outputEncoding - The output encoding (default: `'utf8'`).\r\n * @returns A `Result` with the string or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const bytes = convertStrToBytes(\"Hello\", \"utf8\"); // <Buffer ...>\r\n * const {result, error, success} = tryConvertBytesToStr(bytes, \"utf8\");\r\n *\r\n * if (success) console.log(result); // \"Hello\"\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryConvertBytesToStr(data: Buffer, outputEncoding: Encoding = \"utf8\"): Result<string> {\r\n return $convertBytesToStr(data, outputEncoding);\r\n}\r\n\r\n/**\r\n * Converts a Node.js `Buffer` to a string using the specified encoding (throwing).\r\n *\r\n * Supported encodings: `'base64' | 'base64url' | 'hex' | 'utf8' | 'latin1'` (default: `'utf8'`).\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * This turns the tiny computer building blocks (bytes) back into a readable sentence.\r\n *\r\n * @param data - The `Buffer` to convert.\r\n * @param outputEncoding - The output encoding (default: `'utf8'`).\r\n * @returns The encoded string.\r\n * @throws {Error} If input is invalid or conversion fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const bytes = convertStrToBytes(\"Hello\", \"utf8\"); // <Buffer ...>\r\n * const str = convertBytesToStr(bytes, \"utf8\"); // \"Hello\"\r\n * ```\r\n */\r\nexport function convertBytesToStr(data: Buffer, outputEncoding: Encoding = \"utf8\"): string {\r\n const { result, error } = $convertBytesToStr(data, outputEncoding);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely converts text between encodings (non-throwing).\r\n *\r\n * Example: convert `'utf8'` text to `'base64url'`, or `'hex'` to `'utf8'`.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * It’s like translating your sentence from one alphabet to another.\r\n *\r\n * @param data - The input string to convert.\r\n * @param from - The current encoding of `data`.\r\n * @param to - The target encoding for `data`.\r\n * @returns A `Result` with a string or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const {result, error, success} = tryConvertEncoding(\"Hello\", \"utf8\", \"base64url\");\r\n *\r\n * if (success) console.log(result); // \"...\" (Base64url encoded string)\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryConvertEncoding(data: string, from: Encoding, to: Encoding): Result<string> {\r\n return $convertEncoding(data, from, to);\r\n}\r\n\r\n/**\r\n * Converts text between encodings (throwing).\r\n *\r\n * Example: convert `'utf8'` text to `'base64url'`, or `'hex'` to `'utf8'`.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * It’s like translating your sentence from one alphabet to another.\r\n *\r\n * @param data - The input string to convert.\r\n * @param from - The current encoding of `data`.\r\n * @param to - The target encoding for `data`.\r\n * @returns The converted string.\r\n * @throws {Error} If encodings are invalid or conversion fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const encoded = convertEncoding(\"Hello\", \"utf8\", \"base64url\"); // \"...\" (Base64url encoded string)\r\n * ```\r\n */\r\nexport function convertEncoding(data: string, from: Encoding, to: Encoding): string {\r\n const { result, error } = $convertEncoding(data, from, to);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n","import { Buffer } from \"node:buffer\";\r\nimport { ENCODING } from \"~/helpers/consts\";\r\nimport { $err, $fmtError, $ok, type Result } from \"~/helpers/error\";\r\nimport type { Encoding } from \"~/helpers/types\";\r\nimport { $isStr } from \"~/helpers/validate\";\r\n\r\nexport function $convertStrToBytes(data: string, inputEncoding: Encoding = \"utf8\"): Result<{ result: Buffer }> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: \"Crypto NodeJS API - String to Bytes: Empty data\",\r\n desc: \"Data must be a non-empty string\",\r\n });\r\n }\r\n if (!ENCODING.includes(inputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - String to Bytes: Unsupported encoding: ${inputEncoding}`,\r\n desc: \"Use base64, base64url, hex, utf8, or latin1\",\r\n });\r\n }\r\n try {\r\n return $ok({ result: Buffer.from(data, inputEncoding) });\r\n } catch (error) {\r\n return $err({ msg: \"Crypto NodeJS API - String to Bytes: Failed to convert data\", desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $convertBytesToStr(data: Buffer, outputEncoding: Encoding = \"utf8\"): Result<string> {\r\n if (!(data instanceof Buffer)) {\r\n return $err({\r\n msg: \"Crypto NodeJS API - Bytes to String: Invalid data type\",\r\n desc: \"Data must be a Buffer\",\r\n });\r\n }\r\n if (!ENCODING.includes(outputEncoding)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Bytes to String: Unsupported encoding: ${outputEncoding}`,\r\n desc: \"Use base64, base64url, hex, utf8, or latin1\",\r\n });\r\n }\r\n try {\r\n return $ok(Buffer.from(data).toString(outputEncoding));\r\n } catch (error) {\r\n return $err({ msg: \"Crypto NodeJS API - Bytes to String: Failed to convert data\", desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $convertEncoding(data: string, from: Encoding, to: Encoding): Result<string> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: \"Crypto NodeJS API - Convert Format: Empty data\",\r\n desc: \"Data must be a non-empty string\",\r\n });\r\n }\r\n\r\n if (!ENCODING.includes(from) || !ENCODING.includes(to)) {\r\n return $err({\r\n msg: `Crypto NodeJS API - Convert Format: Unsupported encoding: from ${from} to ${to}`,\r\n desc: \"Use base64, base64url, hex, utf8, or latin1\",\r\n });\r\n }\r\n\r\n const bytes = $convertStrToBytes(data, from);\r\n if (bytes.error) return $err({ msg: bytes.error.message, desc: bytes.error.description });\r\n\r\n const str = $convertBytesToStr(bytes.result, to);\r\n if (str.error) return $err({ msg: str.error.message, desc: str.error.description });\r\n\r\n return $ok({ result: str.result });\r\n}\r\n","import { Buffer } from \"node:buffer\";\r\nimport nodeCrypto from \"node:crypto\";\r\nimport { CIPHER_ENCODING, DIGEST_ALGORITHMS, ENCRYPTION_ALGORITHMS } from \"~/helpers/consts\";\r\nimport { $err, $fmtError, $fmtResultErr, $ok, type Result, title } from \"~/helpers/error\";\r\nimport { $parseToObj, $stringifyObj } from \"~/helpers/object\";\r\nimport type {\r\n CreateSecretKeyOptions,\r\n DecryptOptions,\r\n EncryptOptions,\r\n HashOptions,\r\n HashPasswordOptions,\r\n SecretKey,\r\n VerifyPasswordOptions,\r\n} from \"~/helpers/types\";\r\nimport { $isPlainObj, $isSecretKey, $isStr, matchEncryptedPattern } from \"~/helpers/validate\";\r\nimport { $convertBytesToStr, $convertStrToBytes } from \"./node-encode\";\r\n\r\nexport function $generateUuid(): Result<string> {\r\n try {\r\n return $ok(nodeCrypto.randomUUID());\r\n } catch (error) {\r\n return $err({ msg: `${title(\"node\", \"UUID Generation\")}: Failed to generate UUID`, desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $createSecretKey(\r\n secret: string,\r\n options: CreateSecretKeyOptions,\r\n): Result<{ result: SecretKey<\"node\"> }> {\r\n if (!$isStr(secret, 8)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Key Generation\")}: Empty Secret`,\r\n desc: \"Secret must be a non-empty string with at least 8 characters\",\r\n });\r\n }\r\n\r\n if (!$isPlainObj<CreateSecretKeyOptions>(options)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Key Generation\")}: Invalid options`,\r\n desc: \"Options must be an object\",\r\n });\r\n }\r\n\r\n const algorithm = options.algorithm ?? \"aes256gcm\";\r\n if (!(algorithm in ENCRYPTION_ALGORITHMS)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Key Generation\")}: Unsupported algorithm: ${algorithm}`,\r\n desc: `Supported algorithms are: ${Object.keys(ENCRYPTION_ALGORITHMS).join(\", \")}`,\r\n });\r\n }\r\n\r\n const digest = options.digest ?? \"sha256\";\r\n if (!(digest in DIGEST_ALGORITHMS)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Key Generation\")}: Unsupported digest: ${digest}`,\r\n desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(\", \")}`,\r\n });\r\n }\r\n\r\n const salt = options.salt ?? \"cipher-kit-salt\";\r\n if (!$isStr(salt, 8)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Key Generation\")}: Weak salt`,\r\n desc: \"Salt must be a non-empty string with at least 8 characters\",\r\n });\r\n }\r\n\r\n const info = options.info ?? \"cipher-kit\";\r\n if (!$isStr(info)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Key Generation\")}: Invalid info`,\r\n desc: \"Info must be a non-empty string\",\r\n });\r\n }\r\n\r\n const encryptAlgo = ENCRYPTION_ALGORITHMS[algorithm];\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n try {\r\n const derivedKey = nodeCrypto.hkdfSync(\r\n digestAlgo.node,\r\n secret.normalize(\"NFKC\"),\r\n salt.normalize(\"NFKC\"),\r\n info.normalize(\"NFKC\"),\r\n encryptAlgo.keyBytes,\r\n );\r\n const key = nodeCrypto.createSecretKey(Buffer.from(derivedKey));\r\n const secretKey = Object.freeze({\r\n platform: \"node\",\r\n digest: digest,\r\n algorithm: algorithm,\r\n key: key,\r\n }) as SecretKey<\"node\">;\r\n\r\n return $ok({ result: secretKey });\r\n } catch (error) {\r\n return $err({ msg: `${title(\"node\", \"Key Generation\")}: Failed to create secret key`, desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $encrypt(data: string, secretKey: SecretKey<\"node\">, options: EncryptOptions): Result<string> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Encryption\")}: Empty data for encryption`,\r\n desc: \"Data must be a non-empty string\",\r\n });\r\n }\r\n\r\n if (!$isPlainObj<EncryptOptions>(options)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Encryption\")}: Invalid options`,\r\n desc: \"Options must be an object\",\r\n });\r\n }\r\n\r\n const outputEncoding = options.outputEncoding ?? \"base64url\";\r\n if (!CIPHER_ENCODING.includes(outputEncoding)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Encryption\")}: Unsupported output encoding: ${outputEncoding}`,\r\n desc: \"Use base64, base64url, or hex\",\r\n });\r\n }\r\n\r\n const injectedKey = $isSecretKey(secretKey, \"node\");\r\n if (!injectedKey) {\r\n return $err({\r\n msg: `${title(\"node\", \"Encryption\")}: Invalid Secret Key`,\r\n desc: \"Expected a Node SecretKey\",\r\n });\r\n }\r\n\r\n const { result, error } = $convertStrToBytes(data, \"utf8\");\r\n if (error) return $err(error);\r\n\r\n try {\r\n const iv = nodeCrypto.randomBytes(injectedKey.injected.ivLength);\r\n const cipher = nodeCrypto.createCipheriv(injectedKey.injected.node, injectedKey.key, iv);\r\n const encrypted = Buffer.concat([cipher.update(result), cipher.final()]);\r\n const tag = cipher.getAuthTag();\r\n\r\n const ivStr = $convertBytesToStr(iv, outputEncoding);\r\n const cipherStr = $convertBytesToStr(encrypted, outputEncoding);\r\n const tagStr = $convertBytesToStr(tag, outputEncoding);\r\n\r\n if (ivStr.error || cipherStr.error || tagStr.error) {\r\n return $err({\r\n msg: \"Crypto NodeJS API - Encryption: Failed to convert IV or encrypted data or tag\",\r\n desc: `Conversion error: ${$fmtResultErr(ivStr.error || cipherStr.error || tagStr.error)}`,\r\n });\r\n }\r\n\r\n return $ok(`${ivStr.result}.${cipherStr.result}.${tagStr.result}.`);\r\n } catch (error) {\r\n return $err({ msg: `${title(\"node\", \"Encryption\")}: Failed to encrypt data`, desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $decrypt(encrypted: string, secretKey: SecretKey<\"node\">, options: DecryptOptions): Result<string> {\r\n if (!matchEncryptedPattern(encrypted, \"node\")) {\r\n return $err({\r\n msg: `${title(\"node\", \"Decryption\")}: Invalid encrypted data format`,\r\n desc: 'Encrypted data must be in the format \"iv.cipher.tag.\"',\r\n });\r\n }\r\n\r\n if (!$isPlainObj<DecryptOptions>(options)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Decryption\")}: Invalid options`,\r\n desc: \"Options must be an object\",\r\n });\r\n }\r\n\r\n const inputEncoding = options.inputEncoding ?? \"base64url\";\r\n if (!CIPHER_ENCODING.includes(inputEncoding)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Decryption\")}: Unsupported input encoding: ${inputEncoding}`,\r\n desc: \"Use base64, base64url, or hex\",\r\n });\r\n }\r\n\r\n const [iv, cipher, tag] = encrypted.split(\".\", 4);\r\n if (!$isStr(iv) || !$isStr(cipher) || !$isStr(tag)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Decryption\")}: Invalid encrypted data`,\r\n desc: \"Encrypted data must contain valid IV, encrypted data, and tag components\",\r\n });\r\n }\r\n\r\n const injectedKey = $isSecretKey(secretKey, \"node\");\r\n if (!injectedKey) {\r\n return $err({\r\n msg: \"Crypto NodeJS API - Decryption: Invalid Secret Key\",\r\n desc: \"Expected a Node SecretKey\",\r\n });\r\n }\r\n\r\n const ivBytes = $convertStrToBytes(iv, inputEncoding);\r\n const cipherBytes = $convertStrToBytes(cipher, inputEncoding);\r\n const tagBytes = $convertStrToBytes(tag, inputEncoding);\r\n\r\n if (ivBytes.error || cipherBytes.error || tagBytes.error) {\r\n return $err({\r\n msg: `${title(\"node\", \"Decryption\")}: Failed to convert IV or encrypted data or tag`,\r\n desc: `Conversion error: ${$fmtResultErr(ivBytes.error || cipherBytes.error || tagBytes.error)}`,\r\n });\r\n }\r\n\r\n try {\r\n const decipher = nodeCrypto.createDecipheriv(injectedKey.injected.node, injectedKey.key, ivBytes.result);\r\n decipher.setAuthTag(tagBytes.result);\r\n const decrypted = Buffer.concat([decipher.update(cipherBytes.result), decipher.final()]);\r\n\r\n return $convertBytesToStr(decrypted, \"utf8\");\r\n } catch (error) {\r\n return $err({ msg: `${title(\"node\", \"Decryption\")}: Failed to decrypt data`, desc: $fmtError(error) });\r\n }\r\n}\r\nexport function $encryptObj<T extends object = Record<string, unknown>>(\r\n data: T,\r\n secretKey: SecretKey<\"node\">,\r\n options: EncryptOptions,\r\n): Result<string> {\r\n const { result, error } = $stringifyObj(data);\r\n if (error) return $err(error);\r\n return $encrypt(result, secretKey, options);\r\n}\r\n\r\nexport function $decryptObj<T extends object = Record<string, unknown>>(\r\n encrypted: string,\r\n secretKey: SecretKey<\"node\">,\r\n options: DecryptOptions,\r\n): Result<{ result: T }> {\r\n const { result, error } = $decrypt(encrypted, secretKey, options);\r\n if (error) return $err(error);\r\n return $parseToObj<T>(result);\r\n}\r\n\r\nexport function $hash(data: string, options: HashOptions = {}): Result<string> {\r\n if (!$isStr(data)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Hashing\")}: Empty data for hashing`,\r\n desc: \"Data must be a non-empty string\",\r\n });\r\n }\r\n\r\n if (!$isPlainObj<HashOptions>(options)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Hashing\")}: Invalid options`,\r\n desc: \"Options must be an object\",\r\n });\r\n }\r\n\r\n const outputEncoding = options.outputEncoding ?? \"base64url\";\r\n if (!CIPHER_ENCODING.includes(outputEncoding)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Hashing\")}: Unsupported output encoding: ${outputEncoding}`,\r\n desc: \"Use base64, base64url, or hex\",\r\n });\r\n }\r\n\r\n const digest = options.digest ?? \"sha256\";\r\n if (!(digest in DIGEST_ALGORITHMS)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Hashing\")}: Unsupported digest: ${digest}`,\r\n desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(\", \")}`,\r\n });\r\n }\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n const { result, error } = $convertStrToBytes(data, \"utf8\");\r\n if (error) return $err(error);\r\n\r\n try {\r\n const hashed = nodeCrypto.createHash(digestAlgo.node).update(result).digest();\r\n return $convertBytesToStr(hashed, outputEncoding);\r\n } catch (error) {\r\n return $err({ msg: `${title(\"node\", \"Hashing\")}: Failed to hash data with Crypto NodeJS`, desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $hashPassword(\r\n password: string,\r\n options: HashPasswordOptions,\r\n): Result<{ result: string; salt: string }> {\r\n if (!$isStr(password)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Password Hashing\")}: Empty password for hashing`,\r\n desc: \"Password must be a non-empty string\",\r\n });\r\n }\r\n\r\n if (!$isPlainObj<HashPasswordOptions>(options)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Password Hashing\")}: Invalid options`,\r\n desc: \"Options must be an object\",\r\n });\r\n }\r\n\r\n const digest = options.digest ?? \"sha512\";\r\n if (!(digest in DIGEST_ALGORITHMS)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Password Hashing\")}: Unsupported digest: ${digest}`,\r\n desc: `Supported digests are: ${Object.keys(DIGEST_ALGORITHMS).join(\", \")}`,\r\n });\r\n }\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n const outputEncoding = options.outputEncoding ?? \"base64url\";\r\n if (!CIPHER_ENCODING.includes(outputEncoding)) {\r\n return $err({\r\n msg: `${title(\"node\", \"Password Hashing\")}: Unsupported encoding: ${outputEncoding}`,\r\n desc: \"Use base64, base64url, or hex\",\r\n });\r\n }\r\n\r\n const saltLength = options.saltLength ?? 16;\r\n if (typeof saltLength !== \"number\" || saltLength < 8) {\r\n return $err({\r\n msg: `${title(\"node\", \"Password Hashing\")}: Weak salt length`,\r\n desc: \"Salt length must be a number and at least 8 bytes (recommended 16 or more)\",\r\n });\r\n }\r\n\r\n const iterations = options.iterations ?? 320_000;\r\n if (typeof iterations !== \"number\" || iterations < 1000) {\r\n return $err({\r\n msg: `${title(\"node\", \"Password Hashing\")}: Weak iterations count`,\r\n desc: \"Iterations must be a number and at least 1000 (recommended 320,000 or more)\",\r\n });\r\n }\r\n\r\n const keyLength = options.keyLength ?? 64;\r\n if (typeof keyLength !== \"number\" || keyLength < 16) {\r\n return $err({\r\n msg: `${title(\"node\", \"Password Hashing\")}: Invalid key length`,\r\n desc: \"Key length must be a number and at least 16 bytes (recommended 64 or more)\",\r\n });\r\n }\r\n\r\n try {\r\n const salt = nodeCrypto.randomBytes(saltLength);\r\n const hash = nodeCrypto.pbkdf2Sync(password.normalize(\"NFKC\"), salt, iterations, keyLength, digestAlgo.node);\r\n\r\n return $ok({ result: hash.toString(outputEncoding), salt: salt.toString(outputEncoding) });\r\n } catch (error) {\r\n return $err({ msg: `${title(\"node\", \"Password Hashing\")}: Failed to hash password`, desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $verifyPassword(\r\n password: string,\r\n hashedPassword: string,\r\n salt: string,\r\n options: VerifyPasswordOptions,\r\n): boolean {\r\n if (!$isStr(password) || !$isStr(hashedPassword) || !$isStr(salt) || !$isPlainObj<VerifyPasswordOptions>(options)) {\r\n return false;\r\n }\r\n\r\n const digest = options.digest ?? \"sha512\";\r\n if (!(digest in DIGEST_ALGORITHMS)) return false;\r\n const digestAlgo = DIGEST_ALGORITHMS[digest];\r\n\r\n const inputEncoding = options.inputEncoding ?? \"base64url\";\r\n if (!CIPHER_ENCODING.includes(inputEncoding)) return false;\r\n\r\n const iterations = options.iterations ?? 320_000;\r\n if (typeof iterations !== \"number\" || iterations < 1000) return false;\r\n\r\n const keyLength = options.keyLength ?? 64;\r\n if (typeof keyLength !== \"number\" || keyLength < 16) return false;\r\n\r\n const saltBytes = $convertStrToBytes(salt, inputEncoding);\r\n if (saltBytes.error) return false;\r\n\r\n const hashedPasswordBytes = $convertStrToBytes(hashedPassword, inputEncoding);\r\n if (hashedPasswordBytes.error) return false;\r\n\r\n try {\r\n return nodeCrypto.timingSafeEqual(\r\n nodeCrypto.pbkdf2Sync(password.normalize(\"NFKC\"), saltBytes.result, iterations, keyLength, digestAlgo.node),\r\n hashedPasswordBytes.result,\r\n );\r\n } catch {\r\n return false;\r\n }\r\n}\r\n"]}
package/dist/{chunk-FKSYSPJR.js → chunk-6C4NIWQ4.js} RENAMED
@@ -24,22 +24,22 @@ var ENCRYPTION_ALGORITHMS = Object.freeze({
24
24
  function $isStr(x, min = 1) {
25
25
  return x !== null && x !== void 0 && typeof x === "string" && x.trim().length >= min;
26
26
  }
27
- function $isObj(x) {
27
+ function $isPlainObj(x) {
28
28
  if (typeof x !== "object" || x === null || x === void 0) return false;
29
29
  const proto = Object.getPrototypeOf(x);
30
30
  return proto === Object.prototype || proto === null;
31
31
  }
32
- function $isLooseObj(x) {
32
+ function $isObj(x) {
33
33
  return typeof x === "object" && x !== null && x !== void 0;
34
34
  }
35
35
  var expectedKeys = /* @__PURE__ */ new Set(["platform", "digest", "algorithm", "key"]);
36
36
  function $isSecretKey(x, platform) {
37
- if (!$isLooseObj(x) || platform !== "node" && platform !== "web" || x.platform !== platform) return null;
37
+ if (!$isObj(x) || platform !== "node" && platform !== "web" || x.platform !== platform) return null;
38
38
  const keys = Object.keys(x);
39
39
  if (keys.length !== expectedKeys.size) return null;
40
40
  for (const key of keys) if (!expectedKeys.has(key)) return null;
41
41
  for (const key of expectedKeys) if (!Object.hasOwn(x, key)) return null;
42
- if (typeof x.digest !== "string" || !(x.digest in DIGEST_ALGORITHMS) || typeof x.algorithm !== "string" || !(x.algorithm in ENCRYPTION_ALGORITHMS) || !$isLooseObj(x.key) || x.key.type !== "secret") {
42
+ if (typeof x.digest !== "string" || !(x.digest in DIGEST_ALGORITHMS) || typeof x.algorithm !== "string" || !(x.algorithm in ENCRYPTION_ALGORITHMS) || !$isObj(x.key) || x.key.type !== "secret") {
43
43
  return null;
44
44
  }
45
45
  const algorithm = ENCRYPTION_ALGORITHMS[x.algorithm];
@@ -49,7 +49,7 @@ function $isSecretKey(x, platform) {
49
49
  }
50
50
  return Object.freeze({ ...x, injected: algorithm });
51
51
  }
52
- if (!$isLooseObj(x.key.algorithm) || x.key.algorithm.name !== algorithm.web || typeof x.key.algorithm.length === "number" && x.key.algorithm.length !== algorithm.keyBytes * 8 || typeof x.key.extractable !== "boolean" || !Array.isArray(x.key.usages) || x.key.usages.length !== 2 || !(x.key.usages.includes("encrypt") && x.key.usages.includes("decrypt"))) {
52
+ if (!$isObj(x.key.algorithm) || x.key.algorithm.name !== algorithm.web || typeof x.key.algorithm.length === "number" && x.key.algorithm.length !== algorithm.keyBytes * 8 || typeof x.key.extractable !== "boolean" || !Array.isArray(x.key.usages) || x.key.usages.length !== 2 || !(x.key.usages.includes("encrypt") && x.key.usages.includes("decrypt"))) {
53
53
  return null;
54
54
  }
55
55
  return Object.freeze({ ...x, injected: algorithm });
@@ -59,7 +59,7 @@ var ENCRYPTED_REGEX = Object.freeze({
59
59
  web: /^([^.]+)\.([^.]+)\.$/,
60
60
  general: /^([^.]+)\.([^.]+)(?:\.([^.]+))?\.$/
61
61
  });
62
- function matchPattern(data, format) {
62
+ function matchEncryptedPattern(data, format) {
63
63
  if (typeof data !== "string") return false;
64
64
  if (!(format in ENCRYPTED_REGEX)) throw new Error(`Unknown format: ${format}`);
65
65
  return ENCRYPTED_REGEX[format].test(data);
@@ -67,7 +67,7 @@ function matchPattern(data, format) {
67
67
 
68
68
  // src/helpers/error.ts
69
69
  function $ok(result) {
70
- if ($isObj(result)) return { success: true, ...result };
70
+ if ($isPlainObj(result)) return { success: true, ...result };
71
71
  return { success: true, result };
72
72
  }
73
73
  function $err(err) {
@@ -95,10 +95,22 @@ function title(platform, title2) {
95
95
  // src/helpers/object.ts
96
96
  function $stringifyObj(obj) {
97
97
  try {
98
- if (!$isObj(obj)) return $err({ msg: "Invalid object", desc: "Input is not a plain object" });
98
+ if (!$isPlainObj(obj)) return $err({ msg: "JSON: Invalid object", desc: "Input is not a plain object" });
99
99
  return $ok(JSON.stringify(obj));
100
100
  } catch (error) {
101
- return $err({ msg: "Utility: Stringify error", desc: $fmtError(error) });
101
+ return $err({ msg: "JSON: Stringify error", desc: $fmtError(error) });
102
+ }
103
+ }
104
+ function $parseToObj(str) {
105
+ try {
106
+ if (!$isStr(str)) return $err({ msg: "JSON: Invalid input", desc: "Input is not a valid string" });
107
+ const obj = JSON.parse(str);
108
+ if (!$isPlainObj(obj)) {
109
+ return $err({ msg: "JSON: Invalid object format", desc: "Parsed data is not a plain object" });
110
+ }
111
+ return $ok({ result: obj });
112
+ } catch (error) {
113
+ return $err({ msg: "JSON: Invalid format", desc: $fmtError(error) });
102
114
  }
103
115
  }
104
116
  function tryStringifyObj(obj) {
@@ -109,16 +121,6 @@ function stringifyObj(obj) {
109
121
  if (error) throw new Error($fmtResultErr(error));
110
122
  return result;
111
123
  }
112
- function $parseToObj(str) {
113
- try {
114
- if (!$isStr(str)) return $err({ msg: "Utility: Invalid input", desc: "Input is not a valid string" });
115
- const obj = JSON.parse(str);
116
- if (!$isObj(obj)) return $err({ msg: "Utility: Invalid object format", desc: "Parsed data is not a plain object" });
117
- return $ok({ result: obj });
118
- } catch (error) {
119
- return $err({ msg: "Utility: Invalid format", desc: $fmtError(error) });
120
- }
121
- }
122
124
  function tryParseToObj(str) {
123
125
  return $parseToObj(str);
124
126
  }
@@ -128,6 +130,6 @@ function parseToObj(str) {
128
130
  return result;
129
131
  }
130
132
 
131
- export { $err, $fmtError, $fmtResultErr, $isSecretKey, $isStr, $ok, $parseToObj, $stringifyObj, CIPHER_ENCODING, DIGEST_ALGORITHMS, ENCODING, ENCRYPTED_REGEX, ENCRYPTION_ALGORITHMS, __export, matchPattern, parseToObj, stringifyObj, title, tryParseToObj, tryStringifyObj };
132
- //# sourceMappingURL=chunk-FKSYSPJR.js.map
133
- //# sourceMappingURL=chunk-FKSYSPJR.js.map
133
+ export { $err, $fmtError, $fmtResultErr, $isPlainObj, $isSecretKey, $isStr, $ok, $parseToObj, $stringifyObj, CIPHER_ENCODING, DIGEST_ALGORITHMS, ENCODING, ENCRYPTED_REGEX, ENCRYPTION_ALGORITHMS, __export, matchEncryptedPattern, parseToObj, stringifyObj, title, tryParseToObj, tryStringifyObj };
134
+ //# sourceMappingURL=chunk-6C4NIWQ4.js.map
135
+ //# sourceMappingURL=chunk-6C4NIWQ4.js.map
package/dist/chunk-6C4NIWQ4.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"sources":["../src/helpers/consts.ts","../src/helpers/validate.ts","../src/helpers/error.ts","../src/helpers/object.ts"],"names":["title"],"mappings":";;;;;;;;;AAAO,IAAM,QAAA,GAAW,OAAO,MAAA,CAAO,CAAC,UAAU,WAAA,EAAa,KAAA,EAAO,MAAA,EAAQ,QAAQ,CAAU;AAExF,IAAM,kBAAkB,MAAA,CAAO,MAAA,CAAO,CAAC,QAAA,EAAU,WAAA,EAAa,KAAK,CAAU;AAE7E,IAAM,iBAAA,GAAoB,OAAO,MAAA,CAAO;AAAA,EAC7C,MAAA,EAAQ,EAAE,IAAA,EAAM,QAAA,EAAU,KAAK,SAAA,EAAU;AAAA,EACzC,MAAA,EAAQ,EAAE,IAAA,EAAM,QAAA,EAAU,KAAK,SAAA,EAAU;AAAA,EACzC,MAAA,EAAQ,EAAE,IAAA,EAAM,QAAA,EAAU,KAAK,SAAA;AACjC,CAAU;AAEH,IAAM,qBAAA,GAAwB,OAAO,MAAA,CAAO;AAAA,EACjD,SAAA,EAAW,EAAE,QAAA,EAAU,EAAA,EAAI,UAAU,EAAA,EAAI,IAAA,EAAM,aAAA,EAAe,GAAA,EAAK,SAAA,EAAU;AAAA,EAC7E,SAAA,EAAW,EAAE,QAAA,EAAU,EAAA,EAAI,UAAU,EAAA,EAAI,IAAA,EAAM,aAAA,EAAe,GAAA,EAAK,SAAA,EAAU;AAAA,EAC7E,SAAA,EAAW,EAAE,QAAA,EAAU,EAAA,EAAI,UAAU,EAAA,EAAI,IAAA,EAAM,aAAA,EAAe,GAAA,EAAK,SAAA;AACrE,CAAU;;;ACVH,SAAS,MAAA,CAAO,CAAA,EAAY,GAAA,GAAM,CAAA,EAAgB;AACvD,EAAA,OAAO,CAAA,KAAM,IAAA,IAAQ,CAAA,KAAM,MAAA,IAAa,OAAO,MAAM,QAAA,IAAY,CAAA,CAAE,IAAA,EAAK,CAAE,MAAA,IAAU,GAAA;AACtF;AAEO,SAAS,YAAwD,CAAA,EAAoB;AAC1F,EAAA,IAAI,OAAO,CAAA,KAAM,QAAA,IAAY,MAAM,IAAA,IAAQ,CAAA,KAAM,QAAW,OAAO,KAAA;AACnE,EAAA,MAAM,KAAA,GAAQ,MAAA,CAAO,cAAA,CAAe,CAAC,CAAA;AACrC,EAAA,OAAO,KAAA,KAAU,MAAA,CAAO,SAAA,IAAa,KAAA,KAAU,IAAA;AACjD;AAEO,SAAS,OAAO,CAAA,EAA0C;AAC/D,EAAA,OAAO,OAAO,CAAA,KAAM,QAAA,IAAY,CAAA,KAAM,QAAQ,CAAA,KAAM,MAAA;AACtD;AAMA,IAAM,YAAA,uBAAmB,GAAA,CAAI,CAAC,YAAY,QAAA,EAAU,WAAA,EAAa,KAAK,CAAC,CAAA;AAEhE,SAAS,YAAA,CACd,GACA,QAAA,EACoC;AACpC,EAAA,IAAI,CAAC,MAAA,CAAO,CAAC,CAAA,IAAM,QAAA,KAAa,MAAA,IAAU,QAAA,KAAa,KAAA,IAAU,CAAA,CAAE,QAAA,KAAa,QAAA,EAAU,OAAO,IAAA;AAEjG,EAAA,MAAM,IAAA,GAAO,MAAA,CAAO,IAAA,CAAK,CAAC,CAAA;AAC1B,EAAA,IAAI,IAAA,CAAK,MAAA,KAAW,YAAA,CAAa,IAAA,EAAM,OAAO,IAAA;AAC9C,EAAA,KAAA,MAAW,GAAA,IAAO,MAAM,IAAI,CAAC,aAAa,GAAA,CAAI,GAAG,GAAG,OAAO,IAAA;AAC3D,EAAA,KAAA,MAAW,GAAA,IAAO,cAAc,IAAI,CAAC,OAAO,MAAA,CAAO,CAAA,EAAG,GAAG,CAAA,EAAG,OAAO,IAAA;AAEnE,EAAA,IACE,OAAO,CAAA,CAAE,MAAA,KAAW,QAAA,IACpB,EAAE,EAAE,MAAA,IAAU,iBAAA,CAAA,IACd,OAAO,CAAA,CAAE,SAAA,KAAc,QAAA,IACvB,EAAE,CAAA,CAAE,SAAA,IAAa,qBAAA,CAAA,IACjB,CAAC,MAAA,CAAO,CAAA,CAAE,GAAG,CAAA,IACb,CAAA,CAAE,GAAA,CAAI,IAAA,KAAS,QAAA,EACf;AACA,IAAA,OAAO,IAAA;AAAA,EACT;AAEA,EAAA,MAAM,SAAA,GAAY,qBAAA,CAAsB,CAAA,CAAE,SAA+C,CAAA;AAEzF,EAAA,IAAI,aAAa,MAAA,EAAQ;AACvB,IAAA,IACE,EAAE,CAAA,CAAE,GAAA,YAAe,UAAA,CAAW,cAC7B,OAAO,CAAA,CAAE,GAAA,CAAI,gBAAA,KAAqB,QAAA,IAAY,CAAA,CAAE,GAAA,CAAI,gBAAA,KAAqB,UAAU,QAAA,EACpF;AACA,MAAA,OAAO,IAAA;AAAA,IACT;AACA,IAAA,OAAO,OAAO,MAAA,CAAO,EAAE,GAAG,CAAA,EAAG,QAAA,EAAU,WAAW,CAAA;AAAA,EACpD;AAEA,EAAA,IACE,CAAC,MAAA,CAAO,CAAA,CAAE,GAAA,CAAI,SAAS,KACvB,CAAA,CAAE,GAAA,CAAI,SAAA,CAAU,IAAA,KAAS,SAAA,CAAU,GAAA,IAClC,OAAO,CAAA,CAAE,GAAA,CAAI,SAAA,CAAU,MAAA,KAAW,QAAA,IAAY,CAAA,CAAE,GAAA,CAAI,SAAA,CAAU,MAAA,KAAW,SAAA,CAAU,QAAA,GAAW,CAAA,IAC/F,OAAO,CAAA,CAAE,IAAI,WAAA,KAAgB,SAAA,IAC7B,CAAC,KAAA,CAAM,OAAA,CAAQ,CAAA,CAAE,IAAI,MAAM,CAAA,IAC3B,CAAA,CAAE,GAAA,CAAI,MAAA,CAAO,MAAA,KAAW,KACxB,EAAE,CAAA,CAAE,GAAA,CAAI,MAAA,CAAO,QAAA,CAAS,SAAS,CAAA,IAAK,CAAA,CAAE,GAAA,CAAI,MAAA,CAAO,QAAA,CAAS,SAAS,CAAA,CAAA,EACrE;AACA,IAAA,OAAO,IAAA;AAAA,EACT;AACA,EAAA,OAAO,OAAO,MAAA,CAAO,EAAE,GAAG,CAAA,EAAG,QAAA,EAAU,WAAW,CAAA;AACpD;AAeO,IAAM,eAAA,GAAkB,OAAO,MAAA,CAAO;AAAA,EAC3C,IAAA,EAAM,+BAAA;AAAA,EACN,GAAA,EAAK,sBAAA;AAAA,EACL,OAAA,EAAS;AACX,CAAC;AA8BM,SAAS,qBAAA,CAAsB,MAAc,MAAA,EAA6C;AAC/F,EAAA,IAAI,OAAO,IAAA,KAAS,QAAA,EAAU,OAAO,KAAA;AACrC,EAAA,IAAI,EAAE,UAAU,eAAA,CAAA,EAAkB,MAAM,IAAI,KAAA,CAAM,CAAA,gBAAA,EAAmB,MAAM,CAAA,CAAE,CAAA;AAC7E,EAAA,OAAO,eAAA,CAAgB,MAAM,CAAA,CAAE,IAAA,CAAK,IAAI,CAAA;AAC1C;;;ACxEO,SAAS,IAAO,MAAA,EAAsB;AAC3C,EAAA,IAAI,WAAA,CAAY,MAAM,CAAA,EAAG,OAAO,EAAE,OAAA,EAAS,IAAA,EAAM,GAAI,MAAA,EAAsB;AAC3E,EAAA,OAAO,EAAE,OAAA,EAAS,IAAA,EAAM,MAAA,EAAO;AACjC;AAOO,SAAS,KAAK,GAAA,EAAoD;AACvE,EAAA,OAAO;AAAA,IACL,OAAA,EAAS,KAAA;AAAA,IACT,KAAA,EAAO;AAAA,MACL,OAAA,EAAS,KAAA,IAAS,GAAA,GAAM,GAAA,CAAI,MAAM,GAAA,CAAI,OAAA;AAAA,MACtC,WAAA,EAAa,MAAA,IAAU,GAAA,GAAM,GAAA,CAAI,OAAO,GAAA,CAAI;AAAA;AAC9C,GACF;AACF;AAEO,SAAS,UAAU,KAAA,EAAwB;AAChD,EAAA,IAAI,OAAO,KAAA,KAAU,QAAA,EAAU,OAAO,KAAA;AACtC,EAAA,IAAI,KAAA,YAAiB,KAAA,EAAO,OAAO,KAAA,CAAM,OAAA;AACzC,EAAA,OAAO,OAAO,KAAK,CAAA;AACrB;AAEO,SAAS,cAAc,GAAA,EAAsC;AAClE,EAAA,IAAI,CAAC,KAAK,OAAO,eAAA;AACjB,EAAA,OAAO,CAAA,EAAG,GAAA,CAAI,OAAO,CAAA,GAAA,EAAM,IAAI,WAAW,CAAA,CAAA;AAC5C;AAEO,SAAS,KAAA,CAAM,UAA0BA,MAAAA,EAAuB;AACrE,EAAA,OAAO,GAAG,QAAA,KAAa,KAAA,GAAQ,gBAAA,GAAmB,mBAAmB,MAAMA,MAAK,CAAA,CAAA;AAClF;;;ACjFO,SAAS,cAA0D,GAAA,EAAwB;AAChG,EAAA,IAAI;AACF,IAAA,IAAI,CAAC,WAAA,CAAY,GAAG,CAAA,EAAG,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,sBAAA,EAAwB,IAAA,EAAM,6BAAA,EAA+B,CAAA;AACvG,IAAA,OAAO,GAAA,CAAI,IAAA,CAAK,SAAA,CAAU,GAAG,CAAC,CAAA;AAAA,EAChC,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,uBAAA,EAAyB,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EACtE;AACF;AAEO,SAAS,YAAwD,GAAA,EAAoC;AAC1G,EAAA,IAAI;AACF,IAAA,IAAI,CAAC,MAAA,CAAO,GAAG,CAAA,EAAG,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,qBAAA,EAAuB,IAAA,EAAM,6BAAA,EAA+B,CAAA;AACjG,IAAA,MAAM,GAAA,GAAM,IAAA,CAAK,KAAA,CAAM,GAAG,CAAA;AAE1B,IAAA,IAAI,CAAC,WAAA,CAAY,GAAG,CAAA,EAAG;AACrB,MAAA,OAAO,KAAK,EAAE,GAAA,EAAK,6BAAA,EAA+B,IAAA,EAAM,qCAAqC,CAAA;AAAA,IAC/F;AAEA,IAAA,OAAO,GAAA,CAAI,EAAE,MAAA,EAAQ,GAAA,EAAU,CAAA;AAAA,EACjC,SAAS,KAAA,EAAO;AACd,IAAA,OAAO,IAAA,CAAK,EAAE,GAAA,EAAK,sBAAA,EAAwB,MAAM,SAAA,CAAU,KAAK,GAAG,CAAA;AAAA,EACrE;AACF;AAwBO,SAAS,gBAA4D,GAAA,EAAwB;AAClG,EAAA,OAAO,cAAc,GAAG,CAAA;AAC1B;AAsBO,SAAS,aAAyD,GAAA,EAAgB;AACvF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,cAAc,GAAG,CAAA;AAC3C,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT;AAsBO,SAAS,cAA0D,GAAA,EAAoC;AAC5G,EAAA,OAAO,YAAe,GAAG,CAAA;AAC3B;AAoBO,SAAS,WAAuD,GAAA,EAAgB;AACrF,EAAA,MAAM,EAAE,MAAA,EAAQ,KAAA,EAAM,GAAI,YAAe,GAAG,CAAA;AAC5C,EAAA,IAAI,OAAO,MAAM,IAAI,KAAA,CAAM,aAAA,CAAc,KAAK,CAAC,CAAA;AAC/C,EAAA,OAAO,MAAA;AACT","file":"chunk-6C4NIWQ4.js","sourcesContent":["export const ENCODING = Object.freeze([\"base64\", \"base64url\", \"hex\", \"utf8\", \"latin1\"] as const);\r\n\r\nexport const CIPHER_ENCODING = Object.freeze([\"base64\", \"base64url\", \"hex\"] as const);\r\n\r\nexport const DIGEST_ALGORITHMS = Object.freeze({\r\n sha256: { node: \"sha256\", web: \"SHA-256\" },\r\n sha384: { node: \"sha384\", web: \"SHA-384\" },\r\n sha512: { node: \"sha512\", web: \"SHA-512\" },\r\n} as const);\r\n\r\nexport const ENCRYPTION_ALGORITHMS = Object.freeze({\r\n aes256gcm: { keyBytes: 32, ivLength: 12, node: \"aes-256-gcm\", web: \"AES-GCM\" },\r\n aes192gcm: { keyBytes: 24, ivLength: 12, node: \"aes-192-gcm\", web: \"AES-GCM\" },\r\n aes128gcm: { keyBytes: 16, ivLength: 12, node: \"aes-128-gcm\", web: \"AES-GCM\" },\r\n} as const);\r\n","import nodeCrypto from \"node:crypto\";\r\nimport type { SecretKey } from \"~/helpers/types\";\r\nimport { DIGEST_ALGORITHMS, ENCRYPTION_ALGORITHMS } from \"./consts\";\r\n\r\nexport function $isStr(x: unknown, min = 1): x is string {\r\n return x !== null && x !== undefined && typeof x === \"string\" && x.trim().length >= min;\r\n}\r\n\r\nexport function $isPlainObj<T extends object = Record<string, unknown>>(x: unknown): x is T {\r\n if (typeof x !== \"object\" || x === null || x === undefined) return false;\r\n const proto = Object.getPrototypeOf(x);\r\n return proto === Object.prototype || proto === null;\r\n}\r\n\r\nexport function $isObj(x: unknown): x is Record<string, unknown> {\r\n return typeof x === \"object\" && x !== null && x !== undefined;\r\n}\r\n\r\ntype InjectedSecretKey<Platform extends \"web\" | \"node\"> = SecretKey<Platform> & {\r\n readonly injected: (typeof ENCRYPTION_ALGORITHMS)[keyof typeof ENCRYPTION_ALGORITHMS];\r\n};\r\n\r\nconst expectedKeys = new Set([\"platform\", \"digest\", \"algorithm\", \"key\"]);\r\n\r\nexport function $isSecretKey<Platform extends \"node\" | \"web\">(\r\n x: unknown,\r\n platform: Platform,\r\n): InjectedSecretKey<Platform> | null {\r\n if (!$isObj(x) || (platform !== \"node\" && platform !== \"web\") || x.platform !== platform) return null;\r\n\r\n const keys = Object.keys(x);\r\n if (keys.length !== expectedKeys.size) return null;\r\n for (const key of keys) if (!expectedKeys.has(key)) return null;\r\n for (const key of expectedKeys) if (!Object.hasOwn(x, key)) return null;\r\n\r\n if (\r\n typeof x.digest !== \"string\" ||\r\n !(x.digest in DIGEST_ALGORITHMS) ||\r\n typeof x.algorithm !== \"string\" ||\r\n !(x.algorithm in ENCRYPTION_ALGORITHMS) ||\r\n !$isObj(x.key) ||\r\n x.key.type !== \"secret\"\r\n ) {\r\n return null;\r\n }\r\n\r\n const algorithm = ENCRYPTION_ALGORITHMS[x.algorithm as keyof typeof ENCRYPTION_ALGORITHMS];\r\n\r\n if (platform === \"node\") {\r\n if (\r\n !(x.key instanceof nodeCrypto.KeyObject) ||\r\n (typeof x.key.symmetricKeySize === \"number\" && x.key.symmetricKeySize !== algorithm.keyBytes)\r\n ) {\r\n return null;\r\n }\r\n return Object.freeze({ ...x, injected: algorithm }) as InjectedSecretKey<Platform>;\r\n }\r\n\r\n if (\r\n !$isObj(x.key.algorithm) ||\r\n x.key.algorithm.name !== algorithm.web ||\r\n (typeof x.key.algorithm.length === \"number\" && x.key.algorithm.length !== algorithm.keyBytes * 8) ||\r\n typeof x.key.extractable !== \"boolean\" ||\r\n !Array.isArray(x.key.usages) ||\r\n x.key.usages.length !== 2 ||\r\n !(x.key.usages.includes(\"encrypt\") && x.key.usages.includes(\"decrypt\"))\r\n ) {\r\n return null;\r\n }\r\n return Object.freeze({ ...x, injected: algorithm }) as InjectedSecretKey<Platform>;\r\n}\r\n\r\n/**\r\n * Regular expressions for encrypted data patterns.\r\n *\r\n * - **node**: `\"iv.cipher.tag.\"` (three dot-separated parts plus a trailing dot)\r\n * - **web**: `\"iv.cipherWithTag.\"` (two parts plus a trailing dot)\r\n * - **general**: accepts both shapes (2 or 3 parts) with a trailing dot\r\n *\r\n * Each part is any non-empty string without dots.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You have a secret code you want to check. Before you check it,\r\n * you make sure it looks how a secret code should look.\r\n */\r\nexport const ENCRYPTED_REGEX = Object.freeze({\r\n node: /^([^.]+)\\.([^.]+)\\.([^.]+)\\.$/,\r\n web: /^([^.]+)\\.([^.]+)\\.$/,\r\n general: /^([^.]+)\\.([^.]+)(?:\\.([^.]+))?\\.$/,\r\n});\r\n\r\n/**\r\n * Checks if a string matches an expected encrypted payload shape.\r\n *\r\n * - **node**: `\"iv.cipher.tag.\"` (three dot-separated parts plus a trailing dot)\r\n * - **web**: `\"iv.cipherWithTag.\"` (two parts plus a trailing dot)\r\n * - **general**: accepts both shapes (2 or 3 parts) with a trailing dot\r\n *\r\n * Each part is any non-empty string without dots.\r\n *\r\n * This validates only the **shape**, not whether content is valid base64/hex, etc.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You have a secret code you want to check. Before you check it,\r\n * you make sure it looks how a secret code should look.\r\n *\r\n * @param data - The string to test.\r\n * @param format - Which layout to check: `'node'`, `'web'`, or `'general'`.\r\n * @returns `true` if the string matches the pattern; otherwise `false`.\r\n * @throws {Error} If an unknown `format` is provided.\r\n *\r\n * @example\r\n * ```ts\r\n * matchEncryptedPattern(\"abc.def.ghi.\", \"node\"); // true\r\n * matchEncryptedPattern(\"abc.def.\", \"web\"); // true\r\n * matchEncryptedPattern(\"abc.def.\", \"node\"); // false\r\n * matchEncryptedPattern(\"abc.def.ghi.\", \"general\"); // true\r\n * ```\r\n */\r\nexport function matchEncryptedPattern(data: string, format: \"node\" | \"web\" | \"general\"): boolean {\r\n if (typeof data !== \"string\") return false;\r\n if (!(format in ENCRYPTED_REGEX)) throw new Error(`Unknown format: ${format}`);\r\n return ENCRYPTED_REGEX[format].test(data);\r\n}\r\n","import { $isPlainObj } from \"./validate\";\r\n\r\n/**\r\n * Standardized error object for the `Result` type.\r\n * Always has a brief `message` and a more detailed `description`.\r\n */\r\nexport interface ErrorStruct {\r\n readonly message: string;\r\n readonly description: string;\r\n}\r\n\r\ntype ReservedWords<Obj extends object> = \"success\" extends keyof Obj ? never : \"error\" extends keyof Obj ? never : Obj;\r\n\r\ntype OkType<T> = {\r\n readonly success: true;\r\n readonly error?: undefined;\r\n} & (T extends object ? ReservedWords<{ readonly [K in keyof T]: T[K] }> : { readonly result: T });\r\n\r\ntype ErrType<T> = {\r\n readonly success: false;\r\n readonly error: ErrorStruct;\r\n} & (T extends object ? ReservedWords<{ readonly [K in keyof T]?: undefined }> : { readonly result?: undefined });\r\n\r\n/**\r\n * Discriminated union for functions that can succeed or fail.\r\n *\r\n * - On **success**:\r\n * - If `T` is an object - properties of `T` are **spread** into the result\r\n * along with `success: true`.\r\n * - Otherwise - `{ success: true, result: T }`.\r\n * - On **failure**: `{ success: false, error: E }`.\r\n *\r\n * @example\r\n * ```ts\r\n * // Primitive result\r\n * function getNum(): Result<number> {\r\n * return $ok(42);\r\n * }\r\n * const r1 = getNum();\r\n * if (r1.success) console.log(r1.result); // 42\r\n *\r\n * // Object result (spread)\r\n * function getObject(): Result<{ name: string; age: number }> {\r\n * return $ok({ name: 'Alice', age: 30 });\r\n * }\r\n * const r2 = getObject();\r\n * if (r2.success) console.log(r2.name, r2.age); // 'Alice' 30\r\n * ```\r\n */\r\nexport type Result<T> = OkType<T> | ErrType<T>;\r\n\r\nexport function $ok<T>(result: T): Result<T> {\r\n if ($isPlainObj(result)) return { success: true, ...(result as T & object) } as Result<T>;\r\n return { success: true, result } as Result<T>;\r\n}\r\n\r\ninterface ShortErrorStruct {\r\n readonly msg: string;\r\n readonly desc: string;\r\n}\r\n\r\nexport function $err(err: ShortErrorStruct | ErrorStruct): Result<never> {\r\n return {\r\n success: false,\r\n error: {\r\n message: \"msg\" in err ? err.msg : err.message,\r\n description: \"desc\" in err ? err.desc : err.description,\r\n },\r\n } as Result<never>;\r\n}\r\n\r\nexport function $fmtError(error: unknown): string {\r\n if (typeof error === \"string\") return error;\r\n if (error instanceof Error) return error.message;\r\n return String(error);\r\n}\r\n\r\nexport function $fmtResultErr(err: ErrorStruct | undefined): string {\r\n if (!err) return \"Unknown error\";\r\n return `${err.message} - ${err.description}`;\r\n}\r\n\r\nexport function title(platform: \"web\" | \"node\", title: string): string {\r\n return `${platform === \"web\" ? \"Crypto Web API\" : \"Crypto NodeJS API\"} - ${title}`;\r\n}\r\n","import { $err, $fmtError, $fmtResultErr, $ok, type Result } from \"./error\";\r\nimport { $isPlainObj, $isStr } from \"./validate\";\r\n\r\nexport function $stringifyObj<T extends object = Record<string, unknown>>(obj: T): Result<string> {\r\n try {\r\n if (!$isPlainObj(obj)) return $err({ msg: \"JSON: Invalid object\", desc: \"Input is not a plain object\" });\r\n return $ok(JSON.stringify(obj));\r\n } catch (error) {\r\n return $err({ msg: \"JSON: Stringify error\", desc: $fmtError(error) });\r\n }\r\n}\r\n\r\nexport function $parseToObj<T extends object = Record<string, unknown>>(str: string): Result<{ result: T }> {\r\n try {\r\n if (!$isStr(str)) return $err({ msg: \"JSON: Invalid input\", desc: \"Input is not a valid string\" });\r\n const obj = JSON.parse(str);\r\n\r\n if (!$isPlainObj(obj)) {\r\n return $err({ msg: \"JSON: Invalid object format\", desc: \"Parsed data is not a plain object\" });\r\n }\r\n\r\n return $ok({ result: obj as T });\r\n } catch (error) {\r\n return $err({ msg: \"JSON: Invalid format\", desc: $fmtError(error) });\r\n }\r\n}\r\n\r\n/**\r\n * Safely serializes a plain object to JSON without throwing.\r\n *\r\n * Wraps `JSON.stringify` and returns a `Result` containing the JSON string or an error.\r\n * Only plain objects (POJOs) are accepted. Class instances, Maps, Sets, etc. are rejected.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You have a box of toys (your object) and take a photo of it (a JSON string)\r\n * so you can send it to a friend.\r\n *\r\n * @template T - Plain object type to serialize.\r\n * @param obj - The object to stringify (must be a plain object).\r\n * @returns A `Result` with the JSON string on success, or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const { result, error, success } = tryStringifyObj({ a: 1 });\r\n *\r\n * if (success) console.log(result); // \"{\\\"a\\\":1}\"\r\n * else console.error(error); // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryStringifyObj<T extends object = Record<string, unknown>>(obj: T): Result<string> {\r\n return $stringifyObj(obj);\r\n}\r\n\r\n/**\r\n * Serializes a plain object to JSON (throwing).\r\n *\r\n * Wraps `JSON.stringify` and returns the result or throws an error.\r\n * Only plain objects (POJOs) are accepted. Class instances, Maps, Sets, etc. are rejected.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You have a box of toys (your object) and take a photo of it (a JSON string)\r\n * so you can send it to a friend.\r\n *\r\n * @template T - Plain object type to serialize.\r\n * @param obj - The object to stringify (must be a plain object).\r\n * @returns JSON string representation of the object.\r\n * @throws {Error} If `obj` is not a plain object or serialization fails.\r\n *\r\n * @example\r\n * ```ts\r\n * const json = stringifyObj({ a: 1 }); // \"{\\\"a\\\":1}\"\r\n * ```\r\n */\r\nexport function stringifyObj<T extends object = Record<string, unknown>>(obj: T): string {\r\n const { result, error } = $stringifyObj(obj);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n\r\n/**\r\n * Safely parses a JSON string to a plain object (non-throwing).\r\n *\r\n * Wraps `JSON.parse` and returns a `Result` containing the parsed object, or an error.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You rebuild your toy box (an object) from a photo you took (a JSON string).\r\n *\r\n * @template T - The expected object type.\r\n * @param str - The JSON string to parse.\r\n * @returns A `Result` with the parsed object on success, or an error.\r\n *\r\n * @example\r\n * ```ts\r\n * const {result, error, success} = tryParseToObj<{ a: number }>('{\"a\":1}');\r\n *\r\n * if (success) console.log(result); // { a: 1 }\r\n * else console.error(error) // { message: \"...\", description: \"...\" }\r\n * ```\r\n */\r\nexport function tryParseToObj<T extends object = Record<string, unknown>>(str: string): Result<{ result: T }> {\r\n return $parseToObj<T>(str);\r\n}\r\n\r\n/**\r\n * Parses a JSON string to a plain object (throwing).\r\n *\r\n * Wraps `JSON.parse` and returns the parsed object, or throws on failure.\r\n *\r\n * ### 🍼 Explain Like I'm Five\r\n * You rebuild your toy box (an object) from a photo you took (a JSON string).\r\n *\r\n * @template T - The expected object type.\r\n * @param str - The JSON string to parse.\r\n * @returns The parsed plain object.\r\n * @throws {Error} If the string can’t be parsed or doesn’t represent a plain object.\r\n *\r\n * @example\r\n * ```ts\r\n * const obj = parseToObj<{ a: number }>('{\"a\":1}'); // obj.a === 1\r\n * ```\r\n */\r\nexport function parseToObj<T extends object = Record<string, unknown>>(str: string): T {\r\n const { result, error } = $parseToObj<T>(str);\r\n if (error) throw new Error($fmtResultErr(error));\r\n return result;\r\n}\r\n"]}
package/dist/{chunk-4MFF6V3R.js → chunk-FSEA3UXJ.js} RENAMED
@@ -1,4 +1,4 @@
1
- import { __export, $isSecretKey, $fmtResultErr, $ok, $err, $fmtError, title, $isStr, ENCRYPTION_ALGORITHMS, DIGEST_ALGORITHMS, CIPHER_ENCODING, matchPattern, $stringifyObj, $parseToObj, ENCODING } from './chunk-FKSYSPJR.js';
1
+ import { __export, $isSecretKey, $fmtResultErr, $ok, $err, $fmtError, title, $isStr, $isPlainObj, ENCRYPTION_ALGORITHMS, DIGEST_ALGORITHMS, CIPHER_ENCODING, matchEncryptedPattern, $stringifyObj, $parseToObj, ENCODING } from './chunk-6C4NIWQ4.js';
2
2
 
3
3
  // src/web/kit.ts
4
4
  var kit_exports = {};
@@ -161,9 +161,18 @@ function $generateUuid() {
161
161
  return $err({ msg: `${title("web", "UUID Generation")}: Failed to generate UUID`, desc: $fmtError(error) });
162
162
  }
163
163
  }
164
- async function $createSecretKey(secret, options = {}) {
165
- if (!$isStr(secret)) {
166
- return $err({ msg: `${title("web", "Key Generation")}: Empty Secret`, desc: "Secret must be a non-empty string" });
164
+ async function $createSecretKey(secret, options) {
165
+ if (!$isStr(secret, 8)) {
166
+ return $err({
167
+ msg: `${title("web", "Key Generation")}: Empty Secret`,
168
+ desc: "Secret must be a non-empty string with at least 8 characters"
169
+ });
170
+ }
171
+ if (!$isPlainObj(options)) {
172
+ return $err({
173
+ msg: `${title("web", "Key Generation")}: Invalid options`,
174
+ desc: "Options must be an object"
175
+ });
167
176
  }
168
177
  const algorithm = options.algorithm ?? "aes256gcm";
169
178
  if (!(algorithm in ENCRYPTION_ALGORITHMS)) {
@@ -225,17 +234,23 @@ async function $createSecretKey(secret, options = {}) {
225
234
  });
226
235
  }
227
236
  }
228
- async function $encrypt(data, secretKey, options = {}) {
237
+ async function $encrypt(data, secretKey, options) {
229
238
  if (!$isStr(data)) {
230
239
  return $err({
231
240
  msg: `${title("web", "Encryption")}: Empty data for encryption`,
232
241
  desc: "Data must be a non-empty string"
233
242
  });
234
243
  }
235
- const encoding = options.encoding ?? "base64url";
236
- if (!CIPHER_ENCODING.includes(encoding)) {
244
+ if (!$isPlainObj(options)) {
237
245
  return $err({
238
- msg: `${title("web", "Encryption")}: Unsupported output encoding: ${encoding}`,
246
+ msg: `${title("web", "Encryption")}: Invalid options`,
247
+ desc: "Options must be an object"
248
+ });
249
+ }
250
+ const outputEncoding = options.outputEncoding ?? "base64url";
251
+ if (!CIPHER_ENCODING.includes(outputEncoding)) {
252
+ return $err({
253
+ msg: `${title("web", "Encryption")}: Unsupported output encoding: ${outputEncoding}`,
239
254
  desc: "Use base64, base64url, or hex"
240
255
  });
241
256
  }
@@ -255,8 +270,8 @@ async function $encrypt(data, secretKey, options = {}) {
255
270
  injectedKey.key,
256
271
  result
257
272
  );
258
- const ivStr = $convertBytesToStr(iv, encoding);
259
- const cipherStr = $convertBytesToStr(cipherWithTag, encoding);
273
+ const ivStr = $convertBytesToStr(iv, outputEncoding);
274
+ const cipherStr = $convertBytesToStr(cipherWithTag, outputEncoding);
260
275
  if (ivStr.error || cipherStr.error) {
261
276
  return $err({
262
277
  msg: `${title("web", "Encryption")}: Failed to convert IV or encrypted data`,
@@ -268,17 +283,23 @@ async function $encrypt(data, secretKey, options = {}) {
268
283
  return $err({ msg: `${title("web", "Encryption")}: Failed to encrypt data`, desc: $fmtError(error2) });
269
284
  }
270
285
  }
271
- async function $decrypt(encrypted, secretKey, options = {}) {
272
- if (matchPattern(encrypted, "web") === false) {
286
+ async function $decrypt(encrypted, secretKey, options) {
287
+ if (!matchEncryptedPattern(encrypted, "web")) {
273
288
  return $err({
274
289
  msg: `${title("web", "Decryption")}: Invalid encrypted data format`,
275
290
  desc: 'Encrypted data must be in the format "iv.cipherWithTag."'
276
291
  });
277
292
  }
278
- const encoding = options.encoding ?? "base64url";
279
- if (!CIPHER_ENCODING.includes(encoding)) {
293
+ if (!$isPlainObj(options)) {
280
294
  return $err({
281
- msg: `${title("web", "Decryption")}: Unsupported input encoding: ${encoding}`,
295
+ msg: `${title("web", "Decryption")}: Invalid options`,
296
+ desc: "Options must be an object"
297
+ });
298
+ }
299
+ const inputEncoding = options.inputEncoding ?? "base64url";
300
+ if (!CIPHER_ENCODING.includes(inputEncoding)) {
301
+ return $err({
302
+ msg: `${title("web", "Decryption")}: Unsupported input encoding: ${inputEncoding}`,
282
303
  desc: "Use base64, base64url, or hex"
283
304
  });
284
305
  }
@@ -296,8 +317,8 @@ async function $decrypt(encrypted, secretKey, options = {}) {
296
317
  desc: "Expected a Web SecretKey"
297
318
  });
298
319
  }
299
- const ivBytes = $convertStrToBytes(iv, encoding);
300
- const cipherWithTagBytes = $convertStrToBytes(encryptedWithTag, encoding);
320
+ const ivBytes = $convertStrToBytes(iv, inputEncoding);
321
+ const cipherWithTagBytes = $convertStrToBytes(encryptedWithTag, inputEncoding);
301
322
  if (ivBytes.error || cipherWithTagBytes.error) {
302
323
  return $err({
303
324
  msg: `${title("web", "Decryption")}: Failed to convert IV or encrypted data`,
@@ -315,24 +336,30 @@ async function $decrypt(encrypted, secretKey, options = {}) {
315
336
  return $err({ msg: `${title("web", "Decryption")}: Failed to decrypt data`, desc: $fmtError(error) });
316
337
  }
317
338
  }
318
- async function $encryptObj(data, secretKey, options = {}) {
339
+ async function $encryptObj(data, secretKey, options) {
319
340
  const { result, error } = $stringifyObj(data);
320
341
  if (error) return $err(error);
321
342
  return await $encrypt(result, secretKey, options);
322
343
  }
323
- async function $decryptObj(encrypted, secretKey, options = {}) {
344
+ async function $decryptObj(encrypted, secretKey, options) {
324
345
  const { result, error } = await $decrypt(encrypted, secretKey, options);
325
346
  if (error) return $err(error);
326
347
  return $parseToObj(result);
327
348
  }
328
- async function $hash(data, options = {}) {
349
+ async function $hash(data, options) {
329
350
  if (!$isStr(data)) {
330
351
  return $err({ msg: `${title("web", "Hashing")}: Empty data for hashing`, desc: "Data must be a non-empty string" });
331
352
  }
332
- const encoding = options.encoding ?? "base64url";
333
- if (!CIPHER_ENCODING.includes(encoding)) {
353
+ if (!$isPlainObj(options)) {
334
354
  return $err({
335
- msg: `${title("web", "Hashing")}: Unsupported output encoding: ${encoding}`,
355
+ msg: `${title("web", "Hashing")}: Invalid options`,
356
+ desc: "Options must be an object"
357
+ });
358
+ }
359
+ const outputEncoding = options.outputEncoding ?? "base64url";
360
+ if (!CIPHER_ENCODING.includes(outputEncoding)) {
361
+ return $err({
362
+ msg: `${title("web", "Hashing")}: Unsupported output encoding: ${outputEncoding}`,
336
363
  desc: "Use base64, base64url, or hex"
337
364
  });
338
365
  }
@@ -348,18 +375,24 @@ async function $hash(data, options = {}) {
348
375
  if (error) return $err(error);
349
376
  try {
350
377
  const hashed = await crypto.subtle.digest(digestAlgo.web, result);
351
- return $convertBytesToStr(hashed, encoding);
378
+ return $convertBytesToStr(hashed, outputEncoding);
352
379
  } catch (error2) {
353
380
  return $err({ msg: `${title("web", "Hashing")}: Failed to hash data`, desc: $fmtError(error2) });
354
381
  }
355
382
  }
356
- async function $hashPassword(password, options = {}) {
383
+ async function $hashPassword(password, options) {
357
384
  if (!$isStr(password)) {
358
385
  return $err({
359
386
  msg: `${title("web", "Password Hashing")}: Empty password`,
360
387
  desc: "Password must be a non-empty string"
361
388
  });
362
389
  }
390
+ if (!$isPlainObj(options)) {
391
+ return $err({
392
+ msg: `${title("web", "Password Hashing")}: Invalid options`,
393
+ desc: "Options must be an object"
394
+ });
395
+ }
363
396
  const digest = options.digest ?? "sha512";
364
397
  if (!(digest in DIGEST_ALGORITHMS)) {
365
398
  return $err({
@@ -368,10 +401,10 @@ async function $hashPassword(password, options = {}) {
368
401
  });
369
402
  }
370
403
  const digestAlgo = DIGEST_ALGORITHMS[digest];
371
- const encoding = options.encoding ?? "base64url";
372
- if (!CIPHER_ENCODING.includes(encoding)) {
404
+ const outputEncoding = options.outputEncoding ?? "base64url";
405
+ if (!CIPHER_ENCODING.includes(outputEncoding)) {
373
406
  return $err({
374
- msg: `${title("web", "Password Hashing")}: Unsupported output encoding: ${encoding}`,
407
+ msg: `${title("web", "Password Hashing")}: Unsupported output encoding: ${outputEncoding}`,
375
408
  desc: "Use base64, base64url, or hex"
376
409
  });
377
410
  }
@@ -410,29 +443,31 @@ async function $hashPassword(password, options = {}) {
410
443
  baseKey,
411
444
  keyLength * 8
412
445
  );
413
- const saltStr = $convertBytesToStr(salt, encoding);
446
+ const saltStr = $convertBytesToStr(salt, outputEncoding);
414
447
  if (saltStr.error) return $err(saltStr.error);
415
- const hashedPasswordStr = $convertBytesToStr(bits, encoding);
448
+ const hashedPasswordStr = $convertBytesToStr(bits, outputEncoding);
416
449
  if (hashedPasswordStr.error) return $err(hashedPasswordStr.error);
417
- return $ok({ hash: hashedPasswordStr.result, salt: saltStr.result });
450
+ return $ok({ result: hashedPasswordStr.result, salt: saltStr.result });
418
451
  } catch (error) {
419
452
  return $err({ msg: `${title("web", "Password Hashing")}: Failed to hash password`, desc: $fmtError(error) });
420
453
  }
421
454
  }
422
- async function $verifyPassword(password, hashedPassword, salt, options = {}) {
423
- if (!$isStr(password) || !$isStr(hashedPassword) || !$isStr(salt)) return false;
455
+ async function $verifyPassword(password, hashedPassword, salt, options) {
456
+ if (!$isStr(password) || !$isStr(hashedPassword) || !$isStr(salt) || !$isPlainObj(options)) {
457
+ return false;
458
+ }
424
459
  const digest = options.digest ?? "sha512";
425
460
  if (!(digest in DIGEST_ALGORITHMS)) return false;
426
461
  const digestAlgo = DIGEST_ALGORITHMS[digest];
427
- const encoding = options.encoding ?? "base64url";
428
- if (!CIPHER_ENCODING.includes(encoding)) return false;
462
+ const inputEncoding = options.inputEncoding ?? "base64url";
463
+ if (!CIPHER_ENCODING.includes(inputEncoding)) return false;
429
464
  const iterations = options.iterations ?? 32e4;
430
465
  if (typeof iterations !== "number" || iterations < 1e3) return false;
431
466
  const keyLength = options.keyLength ?? 64;
432
467
  if (typeof keyLength !== "number" || keyLength < 16) return false;
433
- const saltBytes = $convertStrToBytes(salt, encoding);
468
+ const saltBytes = $convertStrToBytes(salt, inputEncoding);
434
469
  if (saltBytes.error) return false;
435
- const hashedPasswordBytes = $convertStrToBytes(hashedPassword, encoding);
470
+ const hashedPasswordBytes = $convertStrToBytes(hashedPassword, inputEncoding);
436
471
  if (hashedPasswordBytes.error) return false;
437
472
  try {
438
473
  const baseKey = await crypto.subtle.importKey(
@@ -502,11 +537,11 @@ async function decrypt(encrypted, secretKey, options = {}) {
502
537
  if (error) throw new Error($fmtResultErr(error));
503
538
  return result;
504
539
  }
505
- async function tryEncryptObj(data, secretKey, options = {}) {
506
- return await $encryptObj(data, secretKey, options);
540
+ async function tryEncryptObj(obj, secretKey, options = {}) {
541
+ return await $encryptObj(obj, secretKey, options);
507
542
  }
508
- async function encryptObj(data, secretKey, options = {}) {
509
- const { result, error } = await $encryptObj(data, secretKey, options);
543
+ async function encryptObj(obj, secretKey, options = {}) {
544
+ const { result, error } = await $encryptObj(obj, secretKey, options);
510
545
  if (error) throw new Error($fmtResultErr(error));
511
546
  return result;
512
547
  }
@@ -530,9 +565,9 @@ async function tryHashPassword(password, options = {}) {
530
565
  return await $hashPassword(password, options);
531
566
  }
532
567
  async function hashPassword(password, options = {}) {
533
- const { hash: hash2, salt, error } = await $hashPassword(password, options);
568
+ const { result, salt, error } = await $hashPassword(password, options);
534
569
  if (error) throw new Error($fmtResultErr(error));
535
- return { hash: hash2, salt };
570
+ return { result, salt };
536
571
  }
537
572
  async function verifyPassword(password, hashedPassword, salt, options = {}) {
538
573
  return await $verifyPassword(password, hashedPassword, salt, options);
@@ -563,5 +598,5 @@ function convertEncoding(data, from, to) {
563
598
  }
564
599
 
565
600
  export { convertBytesToStr, convertEncoding, convertStrToBytes, createSecretKey, decrypt, decryptObj, encrypt, encryptObj, generateUuid, hash, hashPassword, isWebSecretKey, kit_exports, tryConvertBytesToStr, tryConvertEncoding, tryConvertStrToBytes, tryCreateSecretKey, tryDecrypt, tryDecryptObj, tryEncrypt, tryEncryptObj, tryGenerateUuid, tryHash, tryHashPassword, verifyPassword };
566
- //# sourceMappingURL=chunk-4MFF6V3R.js.map
567
- //# sourceMappingURL=chunk-4MFF6V3R.js.map
601
+ //# sourceMappingURL=chunk-FSEA3UXJ.js.map
602
+ //# sourceMappingURL=chunk-FSEA3UXJ.js.map