npm - hfs - Versions diffs - 0.26.7 → 0.26.8 - Mend

hfs 0.26.7 → 0.26.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (162) hide show

package/admin/.DS_Store +0 -0
package/admin/.eslintrc +8 -0
package/admin/.gitignore +23 -0
package/admin/index.html +1 -3
package/admin/package.json +67 -0
package/admin/{logo.svg → public/logo.svg} +0 -0
package/admin/src/AccountForm.ts +92 -0
package/admin/src/AccountsPage.ts +143 -0
package/admin/src/App.ts +83 -0
package/admin/src/ArrayField.ts +84 -0
package/admin/src/ConfigPage.ts +279 -0
package/admin/src/FileField.ts +52 -0
package/admin/src/FileForm.ts +148 -0
package/admin/src/FilePicker.ts +166 -0
package/admin/src/HomePage.ts +96 -0
package/admin/src/InstalledPlugins.ts +158 -0
package/admin/src/LoginRequired.ts +75 -0
package/admin/src/LogoutPage.ts +27 -0
package/admin/src/LogsPage.ts +75 -0
package/admin/src/MainMenu.ts +74 -0
package/admin/src/MenuButton.ts +38 -0
package/admin/src/MonitorPage.ts +200 -0
package/admin/src/OnlinePlugins.ts +101 -0
package/admin/src/PermField.ts +80 -0
package/admin/src/PluginsPage.ts +27 -0
package/admin/src/VfsMenuBar.ts +58 -0
package/admin/src/VfsPage.ts +124 -0
package/admin/src/VfsTree.ts +95 -0
package/admin/src/addFiles.ts +59 -0
package/admin/src/api.ts +246 -0
package/admin/src/dialog.ts +203 -0
package/admin/src/index.css +21 -0
package/admin/src/index.ts +10 -0
package/admin/src/md.ts +31 -0
package/admin/src/misc.ts +141 -0
package/admin/src/react-app-env.d.ts +1 -0
package/admin/src/reportWebVitals.ts +15 -0
package/admin/src/setupTests.ts +5 -0
package/admin/src/state.ts +40 -0
package/admin/src/theme.ts +37 -0
package/admin/tsconfig.json +26 -0
package/admin/vite.config.ts +32 -0
package/frontend/.DS_Store +0 -0
package/frontend/.eslintrc +8 -0
package/frontend/.gitignore +23 -0
package/frontend/index.html +1 -3
package/frontend/package.json +51 -0
package/frontend/{fontello.css → public/fontello.css} +0 -0
package/frontend/{fontello.woff2 → public/fontello.woff2} +0 -0
package/frontend/src/App.ts +25 -0
package/frontend/src/Breadcrumbs.ts +43 -0
package/frontend/src/BrowseFiles.ts +141 -0
package/frontend/src/Head.ts +45 -0
package/frontend/src/UserPanel.ts +52 -0
package/frontend/src/api.ts +78 -0
package/frontend/src/components.ts +54 -0
package/frontend/src/dialog.css +76 -0
package/frontend/src/dialog.ts +105 -0
package/frontend/src/icons.ts +46 -0
package/frontend/src/index.scss +307 -0
package/frontend/src/index.ts +10 -0
package/frontend/src/login.ts +50 -0
package/frontend/src/menu.ts +188 -0
package/frontend/src/misc.ts +54 -0
package/frontend/src/options.ts +52 -0
package/frontend/src/react-app-env.d.ts +1 -0
package/frontend/src/reportWebVitals.ts +15 -0
package/frontend/src/setupTests.ts +5 -0
package/frontend/src/state.ts +82 -0
package/frontend/src/useAuthorized.ts +17 -0
package/frontend/src/useFetchList.ts +144 -0
package/frontend/src/useTheme.ts +23 -0
package/frontend/tsconfig.json +26 -0
package/frontend/vite.config.ts +21 -0
package/package.json +2 -1
package/plugins/vhosting/plugin.js +1 -1
package/src/QuickZipStream.ts +279 -0
package/src/ThrottledStream.ts +98 -0
package/src/adminApis.ts +161 -0
package/src/api.accounts.ts +78 -0
package/src/api.auth.ts +131 -0
package/src/api.file_list.ts +102 -0
package/src/api.helpers.ts +30 -0
package/src/api.monitor.ts +106 -0
package/src/api.plugins.ts +139 -0
package/src/api.vfs.ts +182 -0
package/src/apiMiddleware.ts +124 -0
package/src/block.ts +35 -0
package/src/commands.ts +122 -0
package/src/config.ts +166 -0
package/src/connections.ts +60 -0
package/src/const.ts +57 -0
package/src/crypt.ts +16 -0
package/src/debounceAsync.ts +51 -0
package/src/events.ts +6 -0
package/src/frontEndApis.ts +17 -0
package/src/github.ts +102 -0
package/src/index.ts +53 -0
package/src/listen.ts +220 -0
package/src/log.ts +128 -0
package/src/middlewares.ts +176 -0
package/src/misc.ts +149 -0
package/src/pbkdf2.ts +83 -0
package/src/perm.ts +194 -0
package/src/plugins.ts +342 -0
package/src/serveFile.ts +104 -0
package/src/serveGuiFiles.ts +95 -0
package/src/sse.ts +29 -0
package/src/throttler.ts +106 -0
package/src/update.ts +67 -0
package/src/util-files.ts +137 -0
package/src/util-generators.ts +29 -0
package/src/util-http.ts +29 -0
package/src/vfs.ts +258 -0
package/src/watchLoad.ts +75 -0
package/src/zip.ts +69 -0
package/admin/assets/index.0f549e00.js +0 -281
package/admin/assets/index.dcc78777.css +0 -1
package/admin/assets/sha512.ea1121b3.js +0 -8
package/frontend/assets/index.1151988f.js +0 -85
package/frontend/assets/index.93366732.css +0 -1
package/frontend/assets/sha512.bb881250.js +0 -8
package/src/QuickZipStream.js +0 -285
package/src/ThrottledStream.js +0 -93
package/src/adminApis.js +0 -169
package/src/api.accounts.js +0 -59
package/src/api.auth.js +0 -130
package/src/api.file_list.js +0 -103
package/src/api.helpers.js +0 -32
package/src/api.monitor.js +0 -102
package/src/api.plugins.js +0 -127
package/src/api.vfs.js +0 -164
package/src/apiMiddleware.js +0 -136
package/src/block.js +0 -33
package/src/commands.js +0 -124
package/src/config.js +0 -168
package/src/connections.js +0 -57
package/src/const.js +0 -83
package/src/crypt.js +0 -21
package/src/debounceAsync.js +0 -48
package/src/events.js +0 -9
package/src/frontEndApis.js +0 -38
package/src/github.js +0 -102
package/src/index.js +0 -55
package/src/listen.js +0 -235
package/src/log.js +0 -137
package/src/middlewares.js +0 -154
package/src/misc.js +0 -160
package/src/pbkdf2.js +0 -74
package/src/perm.js +0 -176
package/src/plugins.js +0 -343
package/src/serveFile.js +0 -104
package/src/serveGuiFiles.js +0 -113
package/src/sse.js +0 -29
package/src/throttler.js +0 -91
package/src/update.js +0 -69
package/src/util-files.js +0 -148
package/src/util-generators.js +0 -30
package/src/util-http.js +0 -30
package/src/vfs.js +0 -227
package/src/watchLoad.js +0 -73
package/src/zip.js +0 -69

package/src/log.js DELETED Viewed

@@ -1,137 +0,0 @@
-"use strict";
-// This file is part of HFS - Copyright 2021-2022, Massimo Melina <a@rejetto.com> - License https://www.gnu.org/licenses/gpl-3.0.txt
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.log = exports.loggers = void 0;
-const config_1 = require("./config");
-const fs_1 = require("fs");
-const util = __importStar(require("util"));
-const promises_1 = require("fs/promises");
-const const_1 = require("./const");
-const events_1 = __importDefault(require("./events"));
-const lodash_1 = __importDefault(require("lodash"));
-const path_1 = require("path");
-const perm_1 = require("./perm");
-class Logger {
-    constructor(name) {
-        this.name = name;
-        this.path = '';
-    }
-    async setPath(path) {
-        var _a;
-        this.path = path;
-        (_a = this.stream) === null || _a === void 0 ? void 0 : _a.end();
-        this.last = undefined;
-        if (!path)
-            return this.stream = undefined;
-        try {
-            const stats = await (0, promises_1.stat)(path);
-            this.last = stats.mtime || stats.ctime;
-        }
-        catch (_b) {
-            await (0, promises_1.mkdir)((0, path_1.dirname)(path), { recursive: true })
-                .catch(() => console.log("cannot create folder for", path));
-        }
-        this.reopen();
-    }
-    reopen() {
-        return this.stream = (0, fs_1.createWriteStream)(this.path, { flags: 'a' })
-            .on('error', () => this.stream = undefined);
-    }
-}
-// we'll have names same as config keys. These are used also by the get_log api.
-const accessLogger = new Logger('log');
-const accessErrorLog = new Logger('error_log');
-exports.loggers = [accessLogger, accessErrorLog];
-(0, config_1.defineConfig)('log', 'logs/access.log').sub(path => {
-    console.debug('access log file: ' + (path || 'disabled'));
-    accessLogger.setPath(path);
-});
-const errorLogFile = (0, config_1.defineConfig)(accessErrorLog.name, 'logs/access-error.log');
-errorLogFile.sub(path => {
-    console.debug('access error log: ' + (path || 'disabled'));
-    accessErrorLog.setPath(path);
-});
-const logRotation = (0, config_1.defineConfig)('log_rotation', 'weekly');
-function log() {
-    const debounce = lodash_1.default.debounce(cb => cb(), 1000);
-    return async (ctx, next) => {
-        var _a;
-        await next();
-        const isError = ctx.status >= 400;
-        const logger = isError && accessErrorLog || accessLogger;
-        const rotate = (_a = logRotation.get()) === null || _a === void 0 ? void 0 : _a[0];
-        let { stream, last, path } = logger;
-        if (!stream)
-            return;
-        const now = new Date();
-        const a = now.toString().split(' ');
-        logger.last = now;
-        if (rotate && last) { // rotation enabled and a file exists?
-            const passed = Number(now) - Number(last)
-                - 3600000; // be pessimistic and count a possible DST change
-            if (rotate === 'm' && (passed >= 31 * const_1.DAY || now.getMonth() !== last.getMonth())
-                || rotate === 'd' && (passed >= const_1.DAY || now.getDate() !== last.getDate()) // checking passed will solve the case when the day of the month is the same but a month has passed
-                || rotate === 'w' && (passed >= 7 * const_1.DAY || now.getDay() < last.getDay())) {
-                stream.end();
-                const postfix = last.getFullYear() + '-' + doubleDigit(last.getMonth() + 1) + '-' + doubleDigit(last.getDate());
-                try { // other logging requests shouldn't happen while we are renaming. Since this is very infrequent we can tolerate solving this by making it sync.
-                    (0, fs_1.renameSync)(path, path + '-' + postfix);
-                }
-                catch (e) { // ok, rename failed, but this doesn't mean we ain't gonna log
-                    console.error(e);
-                }
-                stream = logger.reopen(); // keep variable updated
-                if (!stream)
-                    return;
-            }
-        }
-        const format = '%s - %s [%s] "%s %s HTTP/%s" %d %s\n'; // Apache's Common Log Format
-        const date = a[2] + '/' + a[1] + '/' + a[3] + ':' + a[4] + ' ' + a[5].slice(3);
-        const user = (0, perm_1.getCurrentUsername)(ctx);
-        events_1.default.emit(logger.name, Object.assign(lodash_1.default.pick(ctx, ['ip', 'method', 'status', 'length']), { user, ts: now, uri: ctx.path }));
-        console.debug(ctx.status, ctx.method, ctx.path);
-        debounce(() => // once in a while we check if the file is still good (not deleted, etc), or we'll reopen it
-         (0, promises_1.stat)(logger.path).catch(() => logger.reopen())); // async = smoother but we may lose some entries
-        stream.write(util.format(format, ctx.ip, user || '-', date, ctx.method, ctx.path, ctx.req.httpVersion, ctx.status, ctx.length ? ctx.length.toString() : '-'));
-    };
-}
-exports.log = log;
-function doubleDigit(n) {
-    return n > 9 ? n : '0' + n;
-}
-// dump console.error to file
-const debugLogFile = (0, fs_1.createWriteStream)('debug.log', { flags: 'a' });
-debugLogFile.on('open', () => {
-    const was = console.error;
-    console.error = function (...args) {
-        was.apply(this, args);
-        const params = args.map(x => typeof x === 'string' ? x : JSON.stringify(x)).join(' ');
-        debugLogFile.write(new Date().toLocaleString() + ': ' + params + '\n');
-    };
-}).on('error', () => console.log("cannot create debug.log"));

package/src/middlewares.js DELETED Viewed

@@ -1,154 +0,0 @@
-"use strict";
-// This file is part of HFS - Copyright 2021-2022, Massimo Melina <a@rejetto.com> - License https://www.gnu.org/licenses/gpl-3.0.txt
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.prepareState = exports.getProxyDetected = exports.someSecurity = exports.serveGuiAndSharedFiles = exports.sessions = exports.headRequests = exports.gzipper = void 0;
-const koa_compress_1 = __importDefault(require("koa-compress"));
-const koa_session_1 = __importDefault(require("koa-session"));
-const const_1 = require("./const");
-const const_2 = require("./const");
-const vfs_1 = require("./vfs");
-const misc_1 = require("./misc");
-const zip_1 = require("./zip");
-const serveFile_1 = require("./serveFile");
-const serveGuiFiles_1 = require("./serveGuiFiles");
-const koa_mount_1 = __importDefault(require("koa-mount"));
-const stream_1 = require("stream");
-const block_1 = require("./block");
-const perm_1 = require("./perm");
-const connections_1 = require("./connections");
-const basic_auth_1 = __importDefault(require("basic-auth"));
-const tssrp6a_1 = require("tssrp6a");
-const api_auth_1 = require("./api.auth");
-exports.gzipper = (0, koa_compress_1.default)({
-    threshold: 2048,
-    gzip: { flush: require('zlib').constants.Z_SYNC_FLUSH },
-    deflate: { flush: require('zlib').constants.Z_SYNC_FLUSH },
-    br: false,
-    filter(type) {
-        return /text|javascript|style/i.test(type);
-    },
-});
-const headRequests = async (ctx, next) => {
-    const head = ctx.method === 'HEAD';
-    if (head)
-        ctx.method = 'GET'; // let other middlewares work, so we can collect the size at the end
-    await next();
-    if (!head || ctx.body === undefined)
-        return;
-    const { length, status } = ctx.response;
-    if (ctx.body)
-        ctx.body = stream_1.Readable.from(''); // empty the body for this is a HEAD request. Using Readable avoids koa from trying to set length to 0
-    ctx.status = status;
-    if (length)
-        ctx.response.length = length;
-};
-exports.headRequests = headRequests;
-const sessions = (app) => (0, koa_session_1.default)({
-    key: 'hfs_$id',
-    signed: true,
-    rolling: true,
-    maxAge: const_1.SESSION_DURATION,
-}, app);
-exports.sessions = sessions;
-const serveFrontendFiles = (0, serveGuiFiles_1.serveGuiFiles)(process.env.FRONTEND_PROXY, const_2.FRONTEND_URI);
-const serveFrontendPrefixed = (0, koa_mount_1.default)(const_2.FRONTEND_URI.slice(0, -1), serveFrontendFiles);
-const serveAdminPrefixed = (0, koa_mount_1.default)(const_1.ADMIN_URI.slice(0, -1), (0, serveGuiFiles_1.serveGuiFiles)(process.env.ADMIN_PROXY, const_1.ADMIN_URI));
-const serveGuiAndSharedFiles = async (ctx, next) => {
-    const { path } = ctx;
-    if (ctx.body)
-        return next();
-    if (path.startsWith(const_2.FRONTEND_URI))
-        return serveFrontendPrefixed(ctx, next);
-    if (path + '/' === const_1.ADMIN_URI)
-        return ctx.redirect(const_1.ADMIN_URI);
-    if (path.startsWith(const_1.ADMIN_URI))
-        return serveAdminPrefixed(ctx, next);
-    const node = await (0, vfs_1.urlToNode)(path, ctx);
-    if (!node)
-        return ctx.status = 404;
-    const canRead = (0, vfs_1.hasPermission)(node, 'can_read', ctx);
-    const isFolder = await (0, vfs_1.nodeIsDirectory)(node);
-    if (isFolder && !path.endsWith('/'))
-        return ctx.redirect(path + '/');
-    if (canRead && !isFolder)
-        return node.source ? (0, serveFile_1.serveFileNode)(node)(ctx, next)
-            : next();
-    if (!canRead) {
-        ctx.status = (0, vfs_1.cantReadStatusCode)(node);
-        if (ctx.status === const_1.FORBIDDEN)
-            return;
-        const browserDetected = ctx.get('Upgrade-Insecure-Requests') || ctx.get('Sec-Fetch-Mode'); // ugh, heuristics
-        if (!browserDetected) // we don't want to trigger basic authentication on browsers, it's meant for download managers only
-            ctx.set('WWW-Authenticate', 'Basic'); // we support basic authentication
-        ctx.state.serveApp = true;
-        return serveFrontendFiles(ctx, next);
-    }
-    ctx.set({ server: 'HFS ' + const_1.BUILD_TIMESTAMP });
-    const { get } = ctx.query;
-    if (get === 'zip')
-        return await (0, zip_1.zipStreamFromFolder)(node, ctx);
-    if (node.default) {
-        const def = await (0, vfs_1.urlToNode)(path + node.default, ctx);
-        return !def ? next()
-            : (0, vfs_1.hasPermission)(def, 'can_read', ctx) ? (0, serveFile_1.serveFileNode)(def)(ctx, next)
-                : ctx.status = (0, vfs_1.cantReadStatusCode)(def);
-    }
-    return serveFrontendFiles(ctx, next);
-};
-exports.serveGuiAndSharedFiles = serveGuiAndSharedFiles;
-let proxyDetected = false;
-const someSecurity = async (ctx, next) => {
-    ctx.request.ip = (0, connections_1.normalizeIp)(ctx.ip);
-    try {
-        let proxy = ctx.get('X-Forwarded-For');
-        // we have some dev-proxies to ignore
-        if (const_1.DEV && proxy && [process.env.FRONTEND_PROXY, process.env.ADMIN_PROXY].includes(ctx.get('X-Forwarded-port')))
-            proxy = '';
-        if ((0, misc_1.dirTraversal)(decodeURI(ctx.path)))
-            return ctx.status = 418;
-        if ((0, block_1.applyBlock)(ctx.socket, ctx.ip))
-            return;
-        proxyDetected || (proxyDetected = proxy > '');
-        ctx.state.proxiedFor = proxy;
-    }
-    catch (_a) {
-        return ctx.status = 418;
-    }
-    return next();
-};
-exports.someSecurity = someSecurity;
-// this is only about http proxies
-function getProxyDetected() {
-    return proxyDetected;
-}
-exports.getProxyDetected = getProxyDetected;
-const prepareState = async (ctx, next) => {
-    var _a;
-    // calculate these once and for all
-    ctx.state.account = (_a = await getHttpAccount(ctx)) !== null && _a !== void 0 ? _a : (0, perm_1.getAccount)((0, perm_1.getCurrentUsername)(ctx));
-    const conn = ctx.state.connection = (0, connections_1.socket2connection)(ctx.socket);
-    await next();
-    if (conn)
-        (0, connections_1.updateConnection)(conn, { ctx });
-};
-exports.prepareState = prepareState;
-async function getHttpAccount(ctx) {
-    const credentials = (0, basic_auth_1.default)(ctx.req);
-    const account = (0, perm_1.getAccount)((credentials === null || credentials === void 0 ? void 0 : credentials.name) || '');
-    if (account && await srpCheck(account.username, credentials.pass))
-        return account;
-}
-async function srpCheck(username, password) {
-    username = username.toLocaleLowerCase();
-    const account = (0, perm_1.getAccount)(username);
-    if (!(account === null || account === void 0 ? void 0 : account.srp) || !password)
-        return false;
-    const { step1, salt, pubKey } = await (0, api_auth_1.srpStep1)(account);
-    const client = new tssrp6a_1.SRPClientSession(new tssrp6a_1.SRPRoutines(new tssrp6a_1.SRPParameters()));
-    const clientRes1 = await client.step1(username, password);
-    const clientRes2 = await clientRes1.step2(BigInt(salt), BigInt(pubKey));
-    return await step1.step2(clientRes2.A, clientRes2.M1).then(() => true, () => false);
-}

package/src/misc.js DELETED Viewed

@@ -1,160 +0,0 @@
-"use strict";
-// This file is part of HFS - Copyright 2021-2022, Massimo Melina <a@rejetto.com> - License https://www.gnu.org/licenses/gpl-3.0.txt
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.tryJson = exports.same = exports.isLocalHost = exports.with_ = exports.typedKeys = exports.objRenameKey = exports.onOff = exports.pendingPromise = exports.onlyTruthy = exports.truthy = exports.pattern2filter = exports.onFirstEvent = exports.onProcessExit = exports.randomId = exports.getOrSet = exports.wantArray = exports.wait = exports.objSameKeys = exports.setHidden = exports.prefix = exports.enforceFinal = exports.debounceAsync = void 0;
-const path_1 = require("path");
-const lodash_1 = __importDefault(require("lodash"));
-const assert_1 = __importDefault(require("assert"));
-__exportStar(require("./util-http"), exports);
-__exportStar(require("./util-generators"), exports);
-__exportStar(require("./util-files"), exports);
-const debounceAsync_1 = __importDefault(require("./debounceAsync"));
-exports.debounceAsync = debounceAsync_1.default;
-function enforceFinal(sub, s) {
-    return s.endsWith(sub) ? s : s + sub;
-}
-exports.enforceFinal = enforceFinal;
-function prefix(pre, v, post = '') {
-    return v ? pre + v + post : '';
-}
-exports.prefix = prefix;
-function setHidden(dest, src) {
-    return Object.defineProperties(dest, objSameKeys(src, value => ({
-        enumerable: false,
-        writable: true,
-        value,
-    })));
-}
-exports.setHidden = setHidden;
-function objSameKeys(src, newValue) {
-    return Object.fromEntries(Object.entries(src).map(([k, v]) => [k, newValue(v, k)]));
-}
-exports.objSameKeys = objSameKeys;
-function wait(ms) {
-    return new Promise(res => setTimeout(res, ms));
-}
-exports.wait = wait;
-function wantArray(x) {
-    return x == null ? [] : Array.isArray(x) ? x : [x];
-}
-exports.wantArray = wantArray;
-function getOrSet(o, k, creator) {
-    return k in o ? o[k]
-        : (o[k] = creator());
-}
-exports.getOrSet = getOrSet;
-// 10 chars is 51+bits, 8 is 41+bits
-function randomId(len = 10) {
-    if (len > 10)
-        return randomId(10) + randomId(len - 10);
-    return Math.random()
-        .toString(36)
-        .substring(2, 2 + len)
-        .replace(/l/g, 'L'); // avoid confusion reading l1
-}
-exports.randomId = randomId;
-const cbs = new Set();
-function onProcessExit(cb) {
-    cbs.add(cb);
-    return () => cbs.delete(cb);
-}
-exports.onProcessExit = onProcessExit;
-onFirstEvent(process, ['exit', 'SIGQUIT', 'SIGTERM', 'SIGINT', 'SIGHUP'], signal => Promise.allSettled(Array.from(cbs).map(cb => cb(signal))).then(() => process.exit(0)));
-function onFirstEvent(emitter, events, cb) {
-    let already = false;
-    for (const e of events)
-        emitter.on(e, (...args) => {
-            if (already)
-                return;
-            already = true;
-            cb(...args);
-        });
-}
-exports.onFirstEvent = onFirstEvent;
-function pattern2filter(pattern) {
-    const re = new RegExp(lodash_1.default.escapeRegExp(pattern), 'i');
-    return (s) => !s || !pattern || re.test((0, path_1.basename)(s));
-}
-exports.pattern2filter = pattern2filter;
-function truthy(value) {
-    return Boolean(value);
-}
-exports.truthy = truthy;
-function onlyTruthy(arr) {
-    return arr.filter(truthy);
-}
-exports.onlyTruthy = onlyTruthy;
-function pendingPromise() {
-    let takeOut;
-    const ret = new Promise((resolve, reject) => takeOut = { resolve, reject });
-    return Object.assign(ret, takeOut);
-}
-exports.pendingPromise = pendingPromise;
-// install multiple handlers and returns a handy 'uninstall' function which requires no parameter. Pass a map {event:handler}
-function onOff(em, events) {
-    events = { ...events }; // avoid later modifications, as we need this later for uninstallation
-    for (const [k, cb] of Object.entries(events))
-        for (const e of k.split(' '))
-            em.on(e, cb);
-    return () => {
-        for (const [k, cb] of Object.entries(events))
-            for (const e of k.split(' '))
-                em.off(e, cb);
-    };
-}
-exports.onOff = onOff;
-function objRenameKey(o, from, to) {
-    if (!o || !o.hasOwnProperty(from) || from === to)
-        return;
-    o[to] = o[from];
-    delete o[from];
-    return true;
-}
-exports.objRenameKey = objRenameKey;
-function typedKeys(o) {
-    return Object.keys(o);
-}
-exports.typedKeys = typedKeys;
-function with_(par, cb) {
-    return cb(par);
-}
-exports.with_ = with_;
-function isLocalHost(c) {
-    const ip = c.socket.remoteAddress; // don't use Context.ip as it is subject to proxied ips, and that's no use for localhost detection
-    return ip && (ip === '::1' || ip.endsWith('127.0.0.1'));
-}
-exports.isLocalHost = isLocalHost;
-function same(a, b) {
-    try {
-        assert_1.default.deepStrictEqual(a, b);
-        return true;
-    }
-    catch (_a) {
-        return false;
-    }
-}
-exports.same = same;
-function tryJson(s) {
-    try {
-        return s && JSON.parse(s);
-    }
-    catch (_a) { }
-}
-exports.tryJson = tryJson;

package/src/pbkdf2.js DELETED Viewed

@@ -1,74 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.pbkdf2Verify = exports.pbkdf2 = void 0;
-// @ts-nocheck
-const node_crypto_1 = require("node:crypto");
-// FROM https://gist.github.com/chrisveness/770ee96945ec12ac84f134bf538d89fb
-/**
- * Returns PBKDF2 derived key from supplied password.
- *
- * Stored key can subsequently be used to verify that a password matches the original password used
- * to derive the key, using pbkdf2Verify().
- *
- * @param   {String} password - Password to be hashed using key derivation function.
- * @param   {Number} [iterations=1e6] - Number of iterations of HMAC function to apply.
- * @returns {String} Derived key as base64 string.
- *
- * @example
- *   const key = await pbkdf2('pāşšŵōřđ'); // eg 'djAxBRKXWNWPyXgpKWHld8SWJA9CQFmLyMbNet7Rle5RLKJAkBCllLfM6tPFa7bAis0lSTiB'
- */
-async function pbkdf2(password, iterations = 1e6) {
-    const pwUtf8 = new TextEncoder().encode(password); // encode pw as UTF-8
-    const pwKey = await node_crypto_1.webcrypto.subtle.importKey('raw', pwUtf8, 'PBKDF2', false, ['deriveBits']); // create pw key
-    const saltUint8 = node_crypto_1.webcrypto.getRandomValues(new Uint8Array(16)); // get random salt
-    const params = { name: 'PBKDF2', hash: 'SHA-256', salt: saltUint8, iterations: iterations }; // pbkdf2 params
-    const keyBuffer = await node_crypto_1.webcrypto.subtle.deriveBits(params, pwKey, 256); // derive key
-    const keyArray = Array.from(new Uint8Array(keyBuffer)); // key as byte array
-    const saltArray = Array.from(new Uint8Array(saltUint8)); // salt as byte array
-    const iterHex = ('000000' + iterations.toString(16)).slice(-6); // iter’n count as hex
-    const iterArray = iterHex.match(/.{2}/g).map(byte => parseInt(byte, 16)); // iter’ns as byte array
-    const compositeArray = [].concat(saltArray, iterArray, keyArray); // combined array
-    const compositeStr = compositeArray.map(byte => String.fromCharCode(byte)).join(''); // combined as string
-    // encode as base64
-    return btoa('v01' + compositeStr); // return composite key
-}
-exports.pbkdf2 = pbkdf2;
-/**
- * Verifies whether the supplied password matches the password previously used to generate the key.
- *
- * @param   {String}  key - Key previously generated with pbkdf2().
- * @param   {String}  password - Password to be matched against previously derived key.
- * @returns {boolean} Whether password matches key.
- *
- * @example
- *   const match = await pbkdf2Verify(key, 'pāşšŵōřđ'); // true
- */
-async function pbkdf2Verify(key, password) {
-    let compositeStr = null; // composite key is salt, iteration count, and derived key
-    try {
-        compositeStr = atob(key);
-    }
-    catch (e) {
-        throw new Error('Invalid key');
-    } // decode from base64
-    const version = compositeStr.slice(0, 3); //  3 bytes
-    const saltStr = compositeStr.slice(3, 19); // 16 bytes (128 bits)
-    const iterStr = compositeStr.slice(19, 22); //  3 bytes
-    const keyStr = compositeStr.slice(22, 54); // 32 bytes (256 bits)
-    if (version !== 'v01')
-        throw new Error('Invalid key');
-    // -- recover salt & iterations from stored (composite) key
-    const saltUint8 = new Uint8Array(saltStr.match(/./g).map(ch => ch.charCodeAt(0))); // salt as Uint8Array
-    // note: cannot use TextEncoder().encode(saltStr) as it generates UTF-8
-    const iterHex = iterStr.match(/./g).map(ch => ch.charCodeAt(0).toString(16)).join(''); // iter’n count as hex
-    const iterations = parseInt(iterHex, 16); // iter’ns
-    // -- generate new key from stored salt & iterations and supplied password
-    const pwUtf8 = new TextEncoder().encode(password); // encode pw as UTF-8
-    const pwKey = await node_crypto_1.webcrypto.subtle.importKey('raw', pwUtf8, 'PBKDF2', false, ['deriveBits']); // create pw key
-    const params = { name: 'PBKDF2', hash: 'SHA-256', salt: saltUint8, iterations: iterations }; // pbkdf params
-    const keyBuffer = await node_crypto_1.webcrypto.subtle.deriveBits(params, pwKey, 256); // derive key
-    const keyArray = Array.from(new Uint8Array(keyBuffer)); // key as byte array
-    const keyStrNew = keyArray.map(byte => String.fromCharCode(byte)).join(''); // key as string
-    return keyStrNew === keyStr; // test if newly generated key matches stored key
-}
-exports.pbkdf2Verify = pbkdf2Verify;