cors-whitelist-ip 1.0.0

package/dist/esm/adapters/storage/InMemoryStorageAdapter.js

@@ -0,0 +1,70 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InMemoryStorageAdapter = void 0;
+const utils_1 = require("../../core/utils");
+/**
+ * In-memory storage adapter for testing and simple use cases.
+ * Data is stored in memory and lost when the process exits.
+ */
+class InMemoryStorageAdapter {
+    constructor(config = {}) {
+        this.globalWhitelist = config.globalWhitelist ?? [];
+        this.whitelistEntries = config.whitelistEntries ?? [];
+        this.apiKeys = config.apiKeys ?? new Map();
+    }
+    async getGlobalWhitelist() {
+        return [...this.globalWhitelist];
+    }
+    async getWhitelistEntries() {
+        return this.whitelistEntries.filter((e) => e.isActive);
+    }
+    async getOrganisationWhitelist(organisationId) {
+        return this.whitelistEntries.filter((e) => e.organisationId === organisationId && e.isActive);
+    }
+    async findOrganisationByDomain(domain) {
+        const entry = this.whitelistEntries.find((e) => e.type === 'DOMAIN' && e.isActive && (0, utils_1.matchesWildcard)(domain, e.value));
+        return entry?.organisationId ?? null;
+    }
+    async getApiKey(organisationId, _type) {
+        return this.apiKeys.get(organisationId) ?? null;
+    }
+    async isIpWhitelisted(ip) {
+        return this.whitelistEntries.some((e) => e.type === 'IP' && e.value === ip && e.isActive);
+    }
+    async isDomainWhitelisted(domain) {
+        return this.whitelistEntries.some((e) => e.type === 'DOMAIN' && e.isActive && (0, utils_1.matchesWildcard)(domain, e.value));
+    }
+    // ─────────────────────────────────────────────────────────────────
+    // Additional methods for testing and management
+    // ─────────────────────────────────────────────────────────────────
+    addGlobalDomain(domain) {
+        if (!this.globalWhitelist.includes(domain)) {
+            this.globalWhitelist.push(domain);
+        }
+    }
+    removeGlobalDomain(domain) {
+        const index = this.globalWhitelist.indexOf(domain);
+        if (index > -1) {
+            this.globalWhitelist.splice(index, 1);
+        }
+    }
+    addWhitelistEntry(entry) {
+        this.whitelistEntries.push(entry);
+    }
+    removeWhitelistEntry(id) {
+        const index = this.whitelistEntries.findIndex((e) => e.id === id);
+        if (index > -1) {
+            this.whitelistEntries.splice(index, 1);
+        }
+    }
+    setApiKey(organisationId, apiKey) {
+        this.apiKeys.set(organisationId, apiKey);
+    }
+    clear() {
+        this.globalWhitelist = [];
+        this.whitelistEntries = [];
+        this.apiKeys.clear();
+    }
+}
+exports.InMemoryStorageAdapter = InMemoryStorageAdapter;
+//# sourceMappingURL=InMemoryStorageAdapter.js.map

package/dist/esm/adapters/storage/InMemoryStorageAdapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"InMemoryStorageAdapter.js","sourceRoot":"","sources":["../../../../src/adapters/storage/InMemoryStorageAdapter.ts"],"names":[],"mappings":";;;AACA,4CAAmD;AAQnD;;;GAGG;AACH,MAAa,sBAAsB;IAKjC,YAAY,SAAgC,EAAE;QAC5C,IAAI,CAAC,eAAe,GAAG,MAAM,CAAC,eAAe,IAAI,EAAE,CAAC;QACpD,IAAI,CAAC,gBAAgB,GAAG,MAAM,CAAC,gBAAgB,IAAI,EAAE,CAAC;QACtD,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,IAAI,IAAI,GAAG,EAAE,CAAC;IAC7C,CAAC;IAED,KAAK,CAAC,kBAAkB;QACtB,OAAO,CAAC,GAAG,IAAI,CAAC,eAAe,CAAC,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,mBAAmB;QACvB,OAAO,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IACzD,CAAC;IAED,KAAK,CAAC,wBAAwB,CAC5B,cAA+B;QAE/B,OAAO,IAAI,CAAC,gBAAgB,CAAC,MAAM,CACjC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,cAAc,KAAK,cAAc,IAAI,CAAC,CAAC,QAAQ,CACzD,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,wBAAwB,CAC5B,MAAc;QAEd,MAAM,KAAK,GAAG,IAAI,CAAC,gBAAgB,CAAC,IAAI,CACtC,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,IAAI,KAAK,QAAQ,IAAI,CAAC,CAAC,QAAQ,IAAI,IAAA,uBAAe,EAAC,MAAM,EAAE,CAAC,CAAC,KAAK,CAAC,CACxE,CAAC;QACF,OAAO,KAAK,EAAE,cAAc,IAAI,IAAI,CAAC;IACvC,CAAC;IAED,KAAK,CAAC,SAAS,CACb,cAA+B,EAC/B,KAA2B;QAE3B,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,IAAI,CAAC;IAClD,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,EAAU;QAC9B,OAAO,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAC/B,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,IAAI,CAAC,CAAC,KAAK,KAAK,EAAE,IAAI,CAAC,CAAC,QAAQ,CACvD,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,MAAc;QACtC,OAAO,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAC/B,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,IAAI,KAAK,QAAQ,IAAI,CAAC,CAAC,QAAQ,IAAI,IAAA,uBAAe,EAAC,MAAM,EAAE,CAAC,CAAC,KAAK,CAAC,CACxE,CAAC;IACJ,CAAC;IAED,oEAAoE;IACpE,gDAAgD;IAChD,oEAAoE;IAEpE,eAAe,CAAC,MAAc;QAC5B,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAC3C,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;IAED,kBAAkB,CAAC,MAAc;QAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QACnD,IAAI,KAAK,GAAG,CAAC,CAAC,EAAE,CAAC;YACf,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QACxC,CAAC;IACH,CAAC;IAED,iBAAiB,CAAC,KAAqB;QACrC,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACpC,CAAC;IAED,oBAAoB,CAAC,EAAmB;QACtC,MAAM,KAAK,GAAG,IAAI,CAAC,gBAAgB,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;QAClE,IAAI,KAAK,GAAG,CAAC,CAAC,EAAE,CAAC;YACf,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QACzC,CAAC;IACH,CAAC;IAED,SAAS,CAAC,cAA+B,EAAE,MAAc;QACvD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;IAC3C,CAAC;IAED,KAAK;QACH,IAAI,CAAC,eAAe,GAAG,EAAE,CAAC;QAC1B,IAAI,CAAC,gBAAgB,GAAG,EAAE,CAAC;QAC3B,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IACvB,CAAC;CACF;AA9FD,wDA8FC"}

package/dist/esm/adapters/storage/index.d.ts

@@ -0,0 +1,3 @@
+export { InMemoryStorageAdapter } from './InMemoryStorageAdapter';
+export type { InMemoryStorageConfig } from './InMemoryStorageAdapter';
+//# sourceMappingURL=index.d.ts.map

package/dist/esm/adapters/storage/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/adapters/storage/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAClE,YAAY,EAAE,qBAAqB,EAAE,MAAM,0BAA0B,CAAC"}

package/dist/esm/adapters/storage/index.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InMemoryStorageAdapter = void 0;
+var InMemoryStorageAdapter_1 = require("./InMemoryStorageAdapter");
+Object.defineProperty(exports, "InMemoryStorageAdapter", { enumerable: true, get: function () { return InMemoryStorageAdapter_1.InMemoryStorageAdapter; } });
+//# sourceMappingURL=index.js.map

package/dist/esm/adapters/storage/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/adapters/storage/index.ts"],"names":[],"mappings":";;;AAAA,mEAAkE;AAAzD,gIAAA,sBAAsB,OAAA"}

package/dist/esm/core/CorsWhitelist.d.ts

@@ -0,0 +1,60 @@
+import { CorsWhitelistOptions, ValidationResult, GenericRequest, GenericResponse, StorageAdapter, CacheAdapter } from './types';
+/**
+ * Main CORS Whitelist class that handles origin validation
+ * and CORS header management in a framework-agnostic way.
+ */
+export declare class CorsWhitelist {
+    private storage;
+    private cache;
+    private cacheTtl;
+    private logger;
+    private corsHeaders;
+    private allowNoOrigin;
+    private customGetClientIp?;
+    private debug;
+    constructor(options: CorsWhitelistOptions);
+    /**
+     * Initialize the CORS middleware (call before handling requests)
+     */
+    initialize(): Promise<void>;
+    /**
+     * Clean up resources
+     */
+    dispose(): Promise<void>;
+    /**
+     * Main handler for CORS requests. Returns whether to continue processing.
+     * @param req - Generic request object
+     * @param res - Generic response object
+     * @returns true if request should continue, false if handled (blocked or preflight)
+     */
+    handleRequest(req: GenericRequest, res: GenericResponse): Promise<boolean>;
+    /**
+     * Validate if an origin is allowed
+     * @param origin - The origin to validate
+     * @returns Validation result with details
+     */
+    validateOrigin(origin: string): Promise<ValidationResult>;
+    /**
+     * Invalidate cache for a specific domain or pattern
+     */
+    invalidateCache(pattern?: string): Promise<void>;
+    /**
+     * Get the storage adapter instance
+     */
+    getStorage(): StorageAdapter;
+    /**
+     * Get the cache adapter instance
+     */
+    getCache(): CacheAdapter;
+    private handlePreflight;
+    private handleRegularRequest;
+    private performValidation;
+    private getGlobalWhitelist;
+    private setPreflightHeaders;
+    private setCorsHeaders;
+    private getOrigin;
+    private getClientIp;
+    private defaultGetClientIp;
+    private log;
+}
+//# sourceMappingURL=CorsWhitelist.d.ts.map

package/dist/esm/core/CorsWhitelist.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"CorsWhitelist.d.ts","sourceRoot":"","sources":["../../../src/core/CorsWhitelist.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,oBAAoB,EACpB,gBAAgB,EAEhB,cAAc,EACd,eAAe,EAEf,cAAc,EACd,YAAY,EACb,MAAM,SAAS,CAAC;AAcjB;;;GAGG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,OAAO,CAAiB;IAChC,OAAO,CAAC,KAAK,CAAe;IAC5B,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,aAAa,CAAU;IAC/B,OAAO,CAAC,iBAAiB,CAAC,CAAkC;IAC5D,OAAO,CAAC,KAAK,CAAU;gBAEX,OAAO,EAAE,oBAAoB;IAWzC;;OAEG;IACG,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IASjC;;OAEG;IACG,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC;IAS9B;;;;;OAKG;IACG,aAAa,CACjB,GAAG,EAAE,cAAc,EACnB,GAAG,EAAE,eAAe,GACnB,OAAO,CAAC,OAAO,CAAC;IA4BnB;;;;OAIG;IACG,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAkB/D;;OAEG;IACG,eAAe,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAQtD;;OAEG;IACH,UAAU,IAAI,cAAc;IAI5B;;OAEG;IACH,QAAQ,IAAI,YAAY;YAQV,eAAe;YA4Bf,oBAAoB;YA8BpB,iBAAiB;YAuDjB,kBAAkB;IAchC,OAAO,CAAC,mBAAmB;IAkB3B,OAAO,CAAC,cAAc;IAetB,OAAO,CAAC,SAAS;IAQjB,OAAO,CAAC,WAAW;IAOnB,OAAO,CAAC,kBAAkB;IAe1B,OAAO,CAAC,GAAG;CASZ"}

package/dist/esm/core/CorsWhitelist.js

@@ -0,0 +1,273 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CorsWhitelist = void 0;
+const NoCacheAdapter_1 = require("../adapters/cache/NoCacheAdapter");
+const utils_1 = require("./utils");
+const DEFAULT_CORS_HEADERS = {
+    allowOrigin: '',
+    allowMethods: 'GET, POST, PUT, DELETE, PATCH, OPTIONS',
+    allowHeaders: 'Content-Type, Authorization, X-Requested-With',
+    allowCredentials: true,
+    maxAge: 86400, // 24 hours
+};
+const DEFAULT_CACHE_TTL = 3600; // 1 hour
+/**
+ * Main CORS Whitelist class that handles origin validation
+ * and CORS header management in a framework-agnostic way.
+ */
+class CorsWhitelist {
+    constructor(options) {
+        this.storage = options.storage;
+        this.cache = options.cache ?? new NoCacheAdapter_1.NoCacheAdapter();
+        this.cacheTtl = options.cacheTtl ?? DEFAULT_CACHE_TTL;
+        this.logger = options.logger ?? console;
+        this.corsHeaders = { ...DEFAULT_CORS_HEADERS, ...options.corsHeaders };
+        this.allowNoOrigin = options.allowNoOrigin ?? true;
+        this.customGetClientIp = options.getClientIp;
+        this.debug = options.debug ?? false;
+    }
+    /**
+     * Initialize the CORS middleware (call before handling requests)
+     */
+    async initialize() {
+        if (this.storage.initialize) {
+            await this.storage.initialize();
+        }
+        if (this.cache.initialize) {
+            await this.cache.initialize();
+        }
+    }
+    /**
+     * Clean up resources
+     */
+    async dispose() {
+        if (this.storage.dispose) {
+            await this.storage.dispose();
+        }
+        if (this.cache.dispose) {
+            await this.cache.dispose();
+        }
+    }
+    /**
+     * Main handler for CORS requests. Returns whether to continue processing.
+     * @param req - Generic request object
+     * @param res - Generic response object
+     * @returns true if request should continue, false if handled (blocked or preflight)
+     */
+    async handleRequest(req, res) {
+        try {
+            const origin = this.getOrigin(req);
+            const method = req.method.toUpperCase();
+            const clientIp = this.getClientIp(req);
+            this.log(`[CORS] Request from IP: ${clientIp}, Origin: ${origin}, Path: ${req.url}, Method: ${method}`);
+            // Handle preflight OPTIONS requests
+            if (method === 'OPTIONS') {
+                return await this.handlePreflight(req, res, origin);
+            }
+            // Handle regular requests
+            return await this.handleRegularRequest(req, res, origin);
+        }
+        catch (error) {
+            this.logger.error(`[CORS] Error in CORS handler: ${error.message}`, error.stack);
+            res.statusCode = 500;
+            res.end(JSON.stringify({ error: 'Internal Server Error' }));
+            return false;
+        }
+    }
+    /**
+     * Validate if an origin is allowed
+     * @param origin - The origin to validate
+     * @returns Validation result with details
+     */
+    async validateOrigin(origin) {
+        const cacheKey = `cors:validation:${origin}`;
+        // Try cache first
+        const cached = await this.cache.get(cacheKey);
+        if (cached) {
+            this.log(`[CORS] Cache hit for origin validation: ${origin}`);
+            return cached;
+        }
+        const result = await this.performValidation(origin);
+        // Cache the result
+        await this.cache.set(cacheKey, result, this.cacheTtl);
+        return result;
+    }
+    /**
+     * Invalidate cache for a specific domain or pattern
+     */
+    async invalidateCache(pattern) {
+        if (pattern) {
+            await this.cache.deletePattern(`cors:*${pattern}*`);
+        }
+        else {
+            await this.cache.deletePattern('cors:*');
+        }
+    }
+    /**
+     * Get the storage adapter instance
+     */
+    getStorage() {
+        return this.storage;
+    }
+    /**
+     * Get the cache adapter instance
+     */
+    getCache() {
+        return this.cache;
+    }
+    // ─────────────────────────────────────────────────────────────────
+    // Private methods
+    // ─────────────────────────────────────────────────────────────────
+    async handlePreflight(_req, res, origin) {
+        if (!origin) {
+            this.log('[CORS] Preflight without origin, denying');
+            res.statusCode = 403;
+            res.end(JSON.stringify({ error: 'Origin header required for preflight' }));
+            return false;
+        }
+        const validation = await this.validateOrigin(origin);
+        if (validation.allowed) {
+            this.log(`[CORS] Preflight allowed for origin: ${origin}`);
+            this.setPreflightHeaders(res, origin);
+            res.statusCode = 204;
+            res.end();
+            return false; // Preflight handled, don't continue
+        }
+        this.logger.warn(`[CORS] Preflight blocked for origin: ${origin}`);
+        res.statusCode = 403;
+        res.end(JSON.stringify({ error: 'CORS not allowed for this origin' }));
+        return false;
+    }
+    async handleRegularRequest(_req, res, origin) {
+        // No origin = not a CORS request, allow through
+        if (!origin) {
+            if (this.allowNoOrigin) {
+                this.log('[CORS] No origin header, allowing request');
+                return true;
+            }
+            res.statusCode = 403;
+            res.end(JSON.stringify({ error: 'Origin header required' }));
+            return false;
+        }
+        const validation = await this.validateOrigin(origin);
+        if (validation.allowed) {
+            this.log(`[CORS] Request allowed for origin: ${origin}`);
+            this.setCorsHeaders(res, origin);
+            return true; // Continue processing
+        }
+        this.logger.warn(`[CORS] Request blocked for origin: ${origin}`);
+        res.statusCode = 403;
+        res.end(JSON.stringify({ error: 'CORS not allowed for this origin' }));
+        return false;
+    }
+    async performValidation(origin) {
+        // 1. Check global whitelist
+        const globalWhitelist = await this.getGlobalWhitelist();
+        if (globalWhitelist.includes('*')) {
+            return { allowed: true, reason: 'Global wildcard (*) allows all origins' };
+        }
+        if (globalWhitelist.includes(origin)) {
+            return { allowed: true, reason: 'Origin in global whitelist' };
+        }
+        // 2. Extract domain from origin
+        const domain = (0, utils_1.extractDomain)(origin);
+        if (!domain) {
+            return { allowed: false, reason: 'Invalid origin format' };
+        }
+        // Check if full origin URL is in global whitelist
+        if (globalWhitelist.includes(domain)) {
+            return { allowed: true, reason: 'Domain in global whitelist' };
+        }
+        // 3. Check if domain is associated with an API key
+        const orgId = await this.storage.findOrganisationByDomain(domain);
+        if (orgId) {
+            const apiKey = await this.storage.getApiKey(orgId, 'client');
+            if (apiKey) {
+                return {
+                    allowed: true,
+                    reason: 'Domain associated with API key',
+                    organisationId: orgId,
+                    apiKey,
+                };
+            }
+        }
+        // 4. Check IP whitelist (if origin is IP-based)
+        if ((0, utils_1.isIpAddress)(domain)) {
+            const isWhitelisted = await this.storage.isIpWhitelisted(domain);
+            if (isWhitelisted) {
+                return { allowed: true, reason: 'IP address in whitelist' };
+            }
+            return { allowed: false, reason: 'IP address not in whitelist' };
+        }
+        // 5. Check domain pattern whitelist (including wildcards)
+        const isDomainAllowed = await this.storage.isDomainWhitelisted(domain);
+        if (isDomainAllowed) {
+            return { allowed: true, reason: 'Domain matches whitelist pattern' };
+        }
+        return { allowed: false, reason: 'Origin not in any whitelist' };
+    }
+    async getGlobalWhitelist() {
+        const cacheKey = 'cors:global:whitelist';
+        const cached = await this.cache.get(cacheKey);
+        if (cached) {
+            return cached;
+        }
+        const whitelist = await this.storage.getGlobalWhitelist();
+        await this.cache.set(cacheKey, whitelist, this.cacheTtl);
+        return whitelist;
+    }
+    setPreflightHeaders(res, origin) {
+        res.setHeader('Access-Control-Allow-Origin', origin);
+        res.setHeader('Access-Control-Allow-Methods', this.corsHeaders.allowMethods);
+        res.setHeader('Access-Control-Allow-Headers', this.corsHeaders.allowHeaders);
+        res.setHeader('Access-Control-Allow-Credentials', String(this.corsHeaders.allowCredentials));
+        res.setHeader('Access-Control-Max-Age', String(this.corsHeaders.maxAge));
+        if (this.corsHeaders.exposeHeaders) {
+            res.setHeader('Access-Control-Expose-Headers', this.corsHeaders.exposeHeaders);
+        }
+    }
+    setCorsHeaders(res, origin) {
+        res.setHeader('Access-Control-Allow-Origin', origin);
+        res.setHeader('Access-Control-Allow-Credentials', String(this.corsHeaders.allowCredentials));
+        if (this.corsHeaders.exposeHeaders) {
+            res.setHeader('Access-Control-Expose-Headers', this.corsHeaders.exposeHeaders);
+        }
+    }
+    getOrigin(req) {
+        const origin = req.headers['origin'];
+        if (Array.isArray(origin)) {
+            return origin[0] || null;
+        }
+        return origin || null;
+    }
+    getClientIp(req) {
+        if (this.customGetClientIp) {
+            return this.customGetClientIp(req);
+        }
+        return this.defaultGetClientIp(req);
+    }
+    defaultGetClientIp(req) {
+        const forwarded = req.headers['x-forwarded-for'];
+        if (forwarded) {
+            const ips = (Array.isArray(forwarded) ? forwarded[0] : forwarded).split(',');
+            return ips[0].trim();
+        }
+        const realIp = req.headers['x-real-ip'];
+        if (realIp) {
+            return Array.isArray(realIp) ? realIp[0] : realIp;
+        }
+        return req.ip || 'unknown';
+    }
+    log(message) {
+        if (this.debug) {
+            if (this.logger.debug) {
+                this.logger.debug(message);
+            }
+            else {
+                this.logger.log(message);
+            }
+        }
+    }
+}
+exports.CorsWhitelist = CorsWhitelist;
+//# sourceMappingURL=CorsWhitelist.js.map

package/dist/esm/core/CorsWhitelist.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"CorsWhitelist.js","sourceRoot":"","sources":["../../../src/core/CorsWhitelist.ts"],"names":[],"mappings":";;;AAUA,qEAAkE;AAClE,mCAAqD;AAErD,MAAM,oBAAoB,GAAgB;IACxC,WAAW,EAAE,EAAE;IACf,YAAY,EAAE,wCAAwC;IACtD,YAAY,EAAE,+CAA+C;IAC7D,gBAAgB,EAAE,IAAI;IACtB,MAAM,EAAE,KAAK,EAAE,WAAW;CAC3B,CAAC;AAEF,MAAM,iBAAiB,GAAG,IAAI,CAAC,CAAC,SAAS;AAEzC;;;GAGG;AACH,MAAa,aAAa;IAUxB,YAAY,OAA6B;QACvC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;QAC/B,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,IAAI,+BAAc,EAAE,CAAC;QACnD,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,iBAAiB,CAAC;QACtD,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC;QACxC,IAAI,CAAC,WAAW,GAAG,EAAE,GAAG,oBAAoB,EAAE,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QACvE,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,IAAI,CAAC;QACnD,IAAI,CAAC,iBAAiB,GAAG,OAAO,CAAC,WAAW,CAAC;QAC7C,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,KAAK,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU;QACd,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;YAC5B,MAAM,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;QAClC,CAAC;QACD,IAAI,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;YAC1B,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;QAChC,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO;QACX,IAAI,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;YACzB,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;QAC/B,CAAC;QACD,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;YACvB,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QAC7B,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa,CACjB,GAAmB,EACnB,GAAoB;QAEpB,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;YACnC,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC;YACxC,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;YAEvC,IAAI,CAAC,GAAG,CACN,2BAA2B,QAAQ,aAAa,MAAM,WAAW,GAAG,CAAC,GAAG,aAAa,MAAM,EAAE,CAC9F,CAAC;YAEF,oCAAoC;YACpC,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;gBACzB,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,GAAG,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;YACtD,CAAC;YAED,0BAA0B;YAC1B,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,GAAG,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;QAC3D,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,iCAAkC,KAAe,CAAC,OAAO,EAAE,EAC1D,KAAe,CAAC,KAAK,CACvB,CAAC;YACF,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;YACrB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC,CAAC;YAC5D,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,cAAc,CAAC,MAAc;QACjC,MAAM,QAAQ,GAAG,mBAAmB,MAAM,EAAE,CAAC;QAE7C,kBAAkB;QAClB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAmB,QAAQ,CAAC,CAAC;QAChE,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,CAAC,GAAG,CAAC,2CAA2C,MAAM,EAAE,CAAC,CAAC;YAC9D,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAC;QAEpD,mBAAmB;QACnB,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAEtD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CAAC,OAAgB;QACpC,IAAI,OAAO,EAAE,CAAC;YACZ,MAAM,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,SAAS,OAAO,GAAG,CAAC,CAAC;QACtD,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED;;OAEG;IACH,UAAU;QACR,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED;;OAEG;IACH,QAAQ;QACN,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED,oEAAoE;IACpE,kBAAkB;IAClB,oEAAoE;IAE5D,KAAK,CAAC,eAAe,CAC3B,IAAoB,EACpB,GAAoB,EACpB,MAAqB;QAErB,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,IAAI,CAAC,GAAG,CAAC,0CAA0C,CAAC,CAAC;YACrD,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;YACrB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,sCAAsC,EAAE,CAAC,CAAC,CAAC;YAC3E,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC;QAErD,IAAI,UAAU,CAAC,OAAO,EAAE,CAAC;YACvB,IAAI,CAAC,GAAG,CAAC,wCAAwC,MAAM,EAAE,CAAC,CAAC;YAC3D,IAAI,CAAC,mBAAmB,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;YACtC,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;YACrB,GAAG,CAAC,GAAG,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,CAAC,oCAAoC;QACpD,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,wCAAwC,MAAM,EAAE,CAAC,CAAC;QACnE,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;QACrB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,kCAAkC,EAAE,CAAC,CAAC,CAAC;QACvE,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,KAAK,CAAC,oBAAoB,CAChC,IAAoB,EACpB,GAAoB,EACpB,MAAqB;QAErB,gDAAgD;QAChD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;gBACvB,IAAI,CAAC,GAAG,CAAC,2CAA2C,CAAC,CAAC;gBACtD,OAAO,IAAI,CAAC;YACd,CAAC;YACD,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;YACrB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,wBAAwB,EAAE,CAAC,CAAC,CAAC;YAC7D,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC;QAErD,IAAI,UAAU,CAAC,OAAO,EAAE,CAAC;YACvB,IAAI,CAAC,GAAG,CAAC,sCAAsC,MAAM,EAAE,CAAC,CAAC;YACzD,IAAI,CAAC,cAAc,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;YACjC,OAAO,IAAI,CAAC,CAAC,sBAAsB;QACrC,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,sCAAsC,MAAM,EAAE,CAAC,CAAC;QACjE,GAAG,CAAC,UAAU,GAAG,GAAG,CAAC;QACrB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,kCAAkC,EAAE,CAAC,CAAC,CAAC;QACvE,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,KAAK,CAAC,iBAAiB,CAAC,MAAc;QAC5C,4BAA4B;QAC5B,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,kBAAkB,EAAE,CAAC;QAExD,IAAI,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YAClC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,wCAAwC,EAAE,CAAC;QAC7E,CAAC;QAED,IAAI,eAAe,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACrC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,4BAA4B,EAAE,CAAC;QACjE,CAAC;QAED,gCAAgC;QAChC,MAAM,MAAM,GAAG,IAAA,qBAAa,EAAC,MAAM,CAAC,CAAC;QACrC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,uBAAuB,EAAE,CAAC;QAC7D,CAAC;QAED,kDAAkD;QAClD,IAAI,eAAe,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACrC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,4BAA4B,EAAE,CAAC;QACjE,CAAC;QAED,mDAAmD;QACnD,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,wBAAwB,CAAC,MAAM,CAAC,CAAC;QAClE,IAAI,KAAK,EAAE,CAAC;YACV,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;YAC7D,IAAI,MAAM,EAAE,CAAC;gBACX,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,MAAM,EAAE,gCAAgC;oBACxC,cAAc,EAAE,KAAK;oBACrB,MAAM;iBACP,CAAC;YACJ,CAAC;QACH,CAAC;QAED,gDAAgD;QAChD,IAAI,IAAA,mBAAW,EAAC,MAAM,CAAC,EAAE,CAAC;YACxB,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;YACjE,IAAI,aAAa,EAAE,CAAC;gBAClB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,yBAAyB,EAAE,CAAC;YAC9D,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,6BAA6B,EAAE,CAAC;QACnE,CAAC;QAED,0DAA0D;QAC1D,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAC;QACvE,IAAI,eAAe,EAAE,CAAC;YACpB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,kCAAkC,EAAE,CAAC;QACvE,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,6BAA6B,EAAE,CAAC;IACnE,CAAC;IAEO,KAAK,CAAC,kBAAkB;QAC9B,MAAM,QAAQ,GAAG,uBAAuB,CAAC;QAEzC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAW,QAAQ,CAAC,CAAC;QACxD,IAAI,MAAM,EAAE,CAAC;YACX,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,kBAAkB,EAAE,CAAC;QAC1D,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAEzD,OAAO,SAAS,CAAC;IACnB,CAAC;IAEO,mBAAmB,CAAC,GAAoB,EAAE,MAAc;QAC9D,GAAG,CAAC,SAAS,CAAC,6BAA6B,EAAE,MAAM,CAAC,CAAC;QACrD,GAAG,CAAC,SAAS,CAAC,8BAA8B,EAAE,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC;QAC7E,GAAG,CAAC,SAAS,CAAC,8BAA8B,EAAE,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC;QAC7E,GAAG,CAAC,SAAS,CACX,kCAAkC,EAClC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAC1C,CAAC;QACF,GAAG,CAAC,SAAS,CAAC,wBAAwB,EAAE,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC;QAEzE,IAAI,IAAI,CAAC,WAAW,CAAC,aAAa,EAAE,CAAC;YACnC,GAAG,CAAC,SAAS,CACX,+BAA+B,EAC/B,IAAI,CAAC,WAAW,CAAC,aAAa,CAC/B,CAAC;QACJ,CAAC;IACH,CAAC;IAEO,cAAc,CAAC,GAAoB,EAAE,MAAc;QACzD,GAAG,CAAC,SAAS,CAAC,6BAA6B,EAAE,MAAM,CAAC,CAAC;QACrD,GAAG,CAAC,SAAS,CACX,kCAAkC,EAClC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAC1C,CAAC;QAEF,IAAI,IAAI,CAAC,WAAW,CAAC,aAAa,EAAE,CAAC;YACnC,GAAG,CAAC,SAAS,CACX,+BAA+B,EAC/B,IAAI,CAAC,WAAW,CAAC,aAAa,CAC/B,CAAC;QACJ,CAAC;IACH,CAAC;IAEO,SAAS,CAAC,GAAmB;QACnC,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QACrC,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YAC1B,OAAO,MAAM,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;QAC3B,CAAC;QACD,OAAO,MAAM,IAAI,IAAI,CAAC;IACxB,CAAC;IAEO,WAAW,CAAC,GAAmB;QACrC,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC3B,OAAO,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;QACrC,CAAC;QACD,OAAO,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC;IACtC,CAAC;IAEO,kBAAkB,CAAC,GAAmB;QAC5C,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;QACjD,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,KAAK,CACrE,GAAG,CACJ,CAAC;YACF,OAAO,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACvB,CAAC;QACD,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;QACxC,IAAI,MAAM,EAAE,CAAC;YACX,OAAO,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;QACpD,CAAC;QACD,OAAO,GAAG,CAAC,EAAE,IAAI,SAAS,CAAC;IAC7B,CAAC;IAEO,GAAG,CAAC,OAAe;QACzB,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBACtB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAC7B,CAAC;iBAAM,CAAC;gBACN,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC3B,CAAC;QACH,CAAC;IACH,CAAC;CACF;AA7UD,sCA6UC"}

package/dist/esm/core/index.d.ts

@@ -0,0 +1,4 @@
+export * from './types';
+export * from './utils';
+export { CorsWhitelist } from './CorsWhitelist';
+//# sourceMappingURL=index.d.ts.map

package/dist/esm/core/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/core/index.ts"],"names":[],"mappings":"AAAA,cAAc,SAAS,CAAC;AACxB,cAAc,SAAS,CAAC;AACxB,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC"}

package/dist/esm/core/index.js

@@ -0,0 +1,22 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CorsWhitelist = void 0;
+__exportStar(require("./types"), exports);
+__exportStar(require("./utils"), exports);
+var CorsWhitelist_1 = require("./CorsWhitelist");
+Object.defineProperty(exports, "CorsWhitelist", { enumerable: true, get: function () { return CorsWhitelist_1.CorsWhitelist; } });
+//# sourceMappingURL=index.js.map

package/dist/esm/core/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/core/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAAA,0CAAwB;AACxB,0CAAwB;AACxB,iDAAgD;AAAvC,8GAAA,aAAa,OAAA"}