npm - hi-secure - Versions diffs - 1.0.0 - Mend

hi-secure 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (210) hide show

package/dist/adapters/ArgonAdapter.d.ts +8 -0
package/dist/adapters/ArgonAdapter.d.ts.map +1 -0
package/dist/adapters/ArgonAdapter.js +45 -0
package/dist/adapters/ArgonAdapter.js.map +1 -0
package/dist/adapters/BcryptAdapter.d.ts +7 -0
package/dist/adapters/BcryptAdapter.d.ts.map +1 -0
package/dist/adapters/BcryptAdapter.js +48 -0
package/dist/adapters/BcryptAdapter.js.map +1 -0
package/dist/adapters/DomPurifyAdapter.d.ts +13 -0
package/dist/adapters/DomPurifyAdapter.d.ts.map +1 -0
package/dist/adapters/DomPurifyAdapter.js +61 -0
package/dist/adapters/DomPurifyAdapter.js.map +1 -0
package/dist/adapters/ExpressRLAdapter.d.ts +13 -0
package/dist/adapters/ExpressRLAdapter.d.ts.map +1 -0
package/dist/adapters/ExpressRLAdapter.js +68 -0
package/dist/adapters/ExpressRLAdapter.js.map +1 -0
package/dist/adapters/ExpressValidatorAdapter.d.ts +6 -0
package/dist/adapters/ExpressValidatorAdapter.d.ts.map +1 -0
package/dist/adapters/ExpressValidatorAdapter.js +78 -0
package/dist/adapters/ExpressValidatorAdapter.js.map +1 -0
package/dist/adapters/GoggleAdapter.d.ts +15 -0
package/dist/adapters/GoggleAdapter.d.ts.map +1 -0
package/dist/adapters/GoggleAdapter.js +91 -0
package/dist/adapters/GoggleAdapter.js.map +1 -0
package/dist/adapters/GoogleAdapter.d.ts +15 -0
package/dist/adapters/GoogleAdapter.d.ts.map +1 -0
package/dist/adapters/GoogleAdapter.js +159 -0
package/dist/adapters/GoogleAdapter.js.map +1 -0
package/dist/adapters/JWTAdapter.d.ts +28 -0
package/dist/adapters/JWTAdapter.d.ts.map +1 -0
package/dist/adapters/JWTAdapter.js +276 -0
package/dist/adapters/JWTAdapter.js.map +1 -0
package/dist/adapters/RLFlexibleAdapter.d.ts +11 -0
package/dist/adapters/RLFlexibleAdapter.d.ts.map +1 -0
package/dist/adapters/RLFlexibleAdapter.js +115 -0
package/dist/adapters/RLFlexibleAdapter.js.map +1 -0
package/dist/adapters/SanitizeHtmlAdapter.d.ts +12 -0
package/dist/adapters/SanitizeHtmlAdapter.d.ts.map +1 -0
package/dist/adapters/SanitizeHtmlAdapter.js +141 -0
package/dist/adapters/SanitizeHtmlAdapter.js.map +1 -0
package/dist/adapters/XSSAdapter.d.ts +33 -0
package/dist/adapters/XSSAdapter.d.ts.map +1 -0
package/dist/adapters/XSSAdapter.js +127 -0
package/dist/adapters/XSSAdapter.js.map +1 -0
package/dist/adapters/ZodAdapter.d.ts +7 -0
package/dist/adapters/ZodAdapter.d.ts.map +1 -0
package/dist/adapters/ZodAdapter.js +39 -0
package/dist/adapters/ZodAdapter.js.map +1 -0
package/dist/core/HiSecure.d.ts +62 -0
package/dist/core/HiSecure.d.ts.map +1 -0
package/dist/core/HiSecure.js +273 -0
package/dist/core/HiSecure.js.map +1 -0
package/dist/core/config.d.ts +3 -0
package/dist/core/config.d.ts.map +1 -0
package/dist/core/config.js +53 -0
package/dist/core/config.js.map +1 -0
package/dist/core/constants.d.ts +37 -0
package/dist/core/constants.d.ts.map +1 -0
package/dist/core/constants.js +67 -0
package/dist/core/constants.js.map +1 -0
package/dist/core/errors/AdapterError.d.ts +5 -0
package/dist/core/errors/AdapterError.d.ts.map +1 -0
package/dist/core/errors/AdapterError.js +15 -0
package/dist/core/errors/AdapterError.js.map +1 -0
package/dist/core/errors/HttpErrror.d.ts +17 -0
package/dist/core/errors/HttpErrror.d.ts.map +1 -0
package/dist/core/errors/HttpErrror.js +36 -0
package/dist/core/errors/HttpErrror.js.map +1 -0
package/dist/core/errors/SanitizerError.d.ts +5 -0
package/dist/core/errors/SanitizerError.d.ts.map +1 -0
package/dist/core/errors/SanitizerError.js +14 -0
package/dist/core/errors/SanitizerError.js.map +1 -0
package/dist/core/errors/SecurityError.d.ts +5 -0
package/dist/core/errors/SecurityError.d.ts.map +1 -0
package/dist/core/errors/SecurityError.js +14 -0
package/dist/core/errors/SecurityError.js.map +1 -0
package/dist/core/errors/ValidationError.d.ts +5 -0
package/dist/core/errors/ValidationError.d.ts.map +1 -0
package/dist/core/errors/ValidationError.js +14 -0
package/dist/core/errors/ValidationError.js.map +1 -0
package/dist/core/types/HiSecureConfig.d.ts +47 -0
package/dist/core/types/HiSecureConfig.d.ts.map +1 -0
package/dist/core/types/HiSecureConfig.js +3 -0
package/dist/core/types/HiSecureConfig.js.map +1 -0
package/dist/core/types/SecureOptions.d.ts +30 -0
package/dist/core/types/SecureOptions.d.ts.map +1 -0
package/dist/core/types/SecureOptions.js +4 -0
package/dist/core/types/SecureOptions.js.map +1 -0
package/dist/core/useSecure.d.ts +10 -0
package/dist/core/useSecure.d.ts.map +1 -0
package/dist/core/useSecure.js +85 -0
package/dist/core/useSecure.js.map +1 -0
package/dist/examples/e1.d.ts +1 -0
package/dist/examples/e1.d.ts.map +1 -0
package/dist/examples/e1.js +3 -0
package/dist/examples/e1.js.map +1 -0
package/dist/index.d.ts +9 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +15 -0
package/dist/index.js.map +1 -0
package/dist/logging/index.d.ts +3 -0
package/dist/logging/index.d.ts.map +1 -0
package/dist/logging/index.js +19 -0
package/dist/logging/index.js.map +1 -0
package/dist/logging/morganSetup.d.ts +2 -0
package/dist/logging/morganSetup.d.ts.map +1 -0
package/dist/logging/morganSetup.js +9 -0
package/dist/logging/morganSetup.js.map +1 -0
package/dist/logging/winstonSetup.d.ts +6 -0
package/dist/logging/winstonSetup.d.ts.map +1 -0
package/dist/logging/winstonSetup.js +22 -0
package/dist/logging/winstonSetup.js.map +1 -0
package/dist/managers/AuthManager.d.ts +23 -0
package/dist/managers/AuthManager.d.ts.map +1 -0
package/dist/managers/AuthManager.js +190 -0
package/dist/managers/AuthManager.js.map +1 -0
package/dist/managers/CorsManager.d.ts +9 -0
package/dist/managers/CorsManager.d.ts.map +1 -0
package/dist/managers/CorsManager.js +55 -0
package/dist/managers/CorsManager.js.map +1 -0
package/dist/managers/HashManager.d.ts +22 -0
package/dist/managers/HashManager.d.ts.map +1 -0
package/dist/managers/HashManager.js +319 -0
package/dist/managers/HashManager.js.map +1 -0
package/dist/managers/JsonManager.d.ts +6 -0
package/dist/managers/JsonManager.d.ts.map +1 -0
package/dist/managers/JsonManager.js +142 -0
package/dist/managers/JsonManager.js.map +1 -0
package/dist/managers/RateLimitManager.d.ts +16 -0
package/dist/managers/RateLimitManager.d.ts.map +1 -0
package/dist/managers/RateLimitManager.js +108 -0
package/dist/managers/RateLimitManager.js.map +1 -0
package/dist/managers/SanitizerManager.d.ts +18 -0
package/dist/managers/SanitizerManager.d.ts.map +1 -0
package/dist/managers/SanitizerManager.js +296 -0
package/dist/managers/SanitizerManager.js.map +1 -0
package/dist/managers/ValidatorManager.d.ts +13 -0
package/dist/managers/ValidatorManager.d.ts.map +1 -0
package/dist/managers/ValidatorManager.js +218 -0
package/dist/managers/ValidatorManager.js.map +1 -0
package/dist/middlewares/errorHandler.d.ts +3 -0
package/dist/middlewares/errorHandler.d.ts.map +1 -0
package/dist/middlewares/errorHandler.js +94 -0
package/dist/middlewares/errorHandler.js.map +1 -0
package/dist/middlewares/index.d.ts +3 -0
package/dist/middlewares/index.d.ts.map +1 -0
package/dist/middlewares/index.js +19 -0
package/dist/middlewares/index.js.map +1 -0
package/dist/middlewares/requestLogger.d.ts +2 -0
package/dist/middlewares/requestLogger.d.ts.map +1 -0
package/dist/middlewares/requestLogger.js +8 -0
package/dist/middlewares/requestLogger.js.map +1 -0
package/dist/test/t1.d.ts +1 -0
package/dist/test/t1.d.ts.map +1 -0
package/dist/test/t1.js +3 -0
package/dist/test/t1.js.map +1 -0
package/dist/utils/deepFreeze.d.ts +2 -0
package/dist/utils/deepFreeze.d.ts.map +1 -0
package/dist/utils/deepFreeze.js +69 -0
package/dist/utils/deepFreeze.js.map +1 -0
package/dist/utils/deepMerge.d.ts +5 -0
package/dist/utils/deepMerge.d.ts.map +1 -0
package/dist/utils/deepMerge.js +68 -0
package/dist/utils/deepMerge.js.map +1 -0
package/dist/utils/normalizeOptions.d.ts +38 -0
package/dist/utils/normalizeOptions.d.ts.map +1 -0
package/dist/utils/normalizeOptions.js +119 -0
package/dist/utils/normalizeOptions.js.map +1 -0
package/package.json +50 -0
package/src/adapters/ArgonAdapter.ts +41 -0
package/src/adapters/BcryptAdapter.ts +49 -0
package/src/adapters/ExpressRLAdapter.ts +84 -0
package/src/adapters/ExpressValidatorAdapter.ts +99 -0
package/src/adapters/GoogleAdapter.ts +206 -0
package/src/adapters/JWTAdapter.ts +346 -0
package/src/adapters/RLFlexibleAdapter.ts +139 -0
package/src/adapters/SanitizeHtmlAdapter.ts +162 -0
package/src/adapters/XSSAdapter.ts +153 -0
package/src/adapters/ZodAdapter.ts +91 -0
package/src/core/HiSecure.ts +955 -0
package/src/core/config.ts +156 -0
package/src/core/constants.ts +73 -0
package/src/core/errors/AdapterError.ts +14 -0
package/src/core/errors/HttpErrror.ts +46 -0
package/src/core/errors/SanitizerError.ts +13 -0
package/src/core/errors/SecurityError.ts +13 -0
package/src/core/errors/ValidationError.ts +13 -0
package/src/core/types/HiSecureConfig.ts +62 -0
package/src/core/types/SecureOptions.ts +61 -0
package/src/core/useSecure.ts +111 -0
package/src/examples/e1.ts +1 -0
package/src/index.ts +17 -0
package/src/logging/index.ts +2 -0
package/src/logging/morganSetup.ts +3 -0
package/src/logging/winstonSetup.ts +17 -0
package/src/managers/AuthManager.ts +237 -0
package/src/managers/CorsManager.ts +58 -0
package/src/managers/HashManager.ts +390 -0
package/src/managers/JsonManager.ts +149 -0
package/src/managers/RateLimitManager.ts +368 -0
package/src/managers/SanitizerManager.ts +359 -0
package/src/managers/ValidatorManager.ts +269 -0
package/src/middlewares/errorHandler.ts +265 -0
package/src/middlewares/index.ts +2 -0
package/src/middlewares/requestLogger.ts +5 -0
package/src/test/t1.ts +1 -0
package/src/utils/deepFreeze.ts +76 -0
package/src/utils/deepMerge.ts +87 -0
package/src/utils/normalizeOptions.ts +265 -0
package/tsconfig.json +30 -0

package/src/utils/normalizeOptions.ts ADDED Viewed

@@ -0,0 +1,265 @@
+// import { SecureOptions } from "../core/types/SecureOptions.js";
+// export interface NormalizedOptions {
+//     cors: { enabled: boolean; options?: any };
+//     rateLimit: { enabled: boolean; mode?: "strict" | "relaxed" | undefined; options?: any };
+//     sanitize: { enabled: boolean };
+//     validate: { enabled: boolean; schema?: any };
+//     json: { enabled: boolean; options?: any };
+//     /** NEW */
+//     auth: { enabled: boolean; required: boolean };
+// }
+// export function normalizeOptions(input?: SecureOptions | false): NormalizedOptions {
+//     if (input === false) {
+//         return {
+//             cors: { enabled: false },
+//             rateLimit: { enabled: false, mode: undefined, options: undefined },
+//             sanitize: { enabled: false },
+//             validate: { enabled: false },
+//             json: { enabled: false },
+//             auth: { enabled: false, required: true }
+//         };
+//     }
+//     const opts = input || {};
+//     return {
+//         cors: {
+//             enabled: opts.cors === undefined ? true : opts.cors !== false,
+//             options: typeof opts.cors === "object" ? opts.cors : undefined
+//         },
+//         rateLimit: normalizeRateLimit(opts.rateLimit),
+//         sanitize: {
+//             enabled: opts.sanitize === undefined ? true : opts.sanitize !== false
+//         },
+//         validate: {
+//             enabled: !!opts.validate,
+//             schema: opts.validate || undefined
+//         },
+//         json: {
+//             enabled: opts.json === undefined ? true : opts.json !== false,
+//             options: typeof opts.json === "object" ? opts.json : undefined
+//         },
+//         auth: normalizeAuth(opts.auth)
+//     };
+// }
+// // ---------------------------------------------------------------
+// // RATE LIMIT — EXACT TYPES, NO TS ERROR
+// // ---------------------------------------------------------------
+// function normalizeRateLimit(value: SecureOptions["rateLimit"]): {
+//     enabled: boolean;
+//     mode?: "strict" | "relaxed" | undefined;
+//     options?: any;
+// } {
+//     if (value === false) {
+//         return { enabled: false, mode: undefined, options: undefined };
+//     }
+//     if (value === "strict") {
+//         return {
+//             enabled: true,
+//             mode: "strict",
+//             options: { max: 5, windowMs: 10000 }
+//         };
+//     }
+//     if (value === "relaxed") {
+//         return {
+//             enabled: true,
+//             mode: "relaxed",
+//             options: { max: 100, windowMs: 60000 }
+//         };
+//     }
+//     if (typeof value === "object") {
+//         return {
+//             enabled: true,
+//             mode: undefined,   // VERY IMPORTANT!
+//             options: value
+//         };
+//     }
+//     // Default → enabled and optional fields omitted
+//     return {
+//         enabled: true,
+//         mode: undefined,
+//         options: undefined
+//     };
+// }
+// // ---------------------------------------------------------------
+// // AUTH NORMALIZER — EXACT FOR useSecure
+// // ---------------------------------------------------------------
+// function normalizeAuth(value: SecureOptions["auth"]) {
+//     if (value === false) return { enabled: false, required: true };
+//     if (value === true || value === undefined)
+//         return { enabled: true, required: true };
+//     return {
+//         enabled: true,
+//         required: value.required !== false
+//     };
+// }
+// src/utils/normalizeOptions.ts
+import {
+    SecureOptions,
+    AuthOptions,        // ✅ ADD THIS
+    RateLimitOptions,   // ✅ ADD THIS
+    SanitizeOptions     // ✅ ADD THIS
+} from "../core/types/SecureOptions.js";
+export interface NormalizedOptions {
+    cors: { enabled: boolean; options?: object };
+    rateLimit: { enabled: boolean; mode?: "strict" | "relaxed"; options?: RateLimitOptions };
+    sanitize: { enabled: boolean; options?: SanitizeOptions };
+    validate: { enabled: boolean; schema?: any };
+    json: { enabled: boolean; options?: object };
+    auth: { enabled: boolean; required: boolean; roles?: string[] };
+    compression: { enabled: boolean; options?: object };
+}
+export function normalizeOptions(input?: SecureOptions | false): NormalizedOptions {
+    if (input === false) {
+        return {
+            cors: { enabled: false },
+            rateLimit: { enabled: false },
+            sanitize: { enabled: false },
+            validate: { enabled: false },
+            json: { enabled: false },
+            auth: { enabled: false, required: false },
+            compression: { enabled: false }
+        };
+    }
+    const opts = input || {};
+    return {
+        cors: {
+            enabled: opts.cors === undefined ? true : opts.cors !== false,
+            options: typeof opts.cors === "object" ? opts.cors : undefined
+        },
+        rateLimit: normalizeRateLimit(opts.rateLimit),
+        sanitize: {
+            enabled: opts.sanitize === undefined ? true : opts.sanitize !== false,
+            options: typeof opts.sanitize === "object" ? opts.sanitize : undefined
+        },
+        validate: {
+            enabled: !!opts.validate,
+            schema: opts.validate || undefined
+        },
+        json: {
+            enabled: opts.json === undefined ? true : opts.json !== false,
+            options: typeof opts.json === "object" ? opts.json : undefined
+        },
+        auth: normalizeAuth(opts.auth),
+        compression: {
+            enabled: opts.compression === undefined ? true : opts.compression !== false,
+            options: typeof opts.compression === "object" ? opts.compression : undefined
+        }
+    };
+}
+function normalizeRateLimit(value: SecureOptions["rateLimit"]): NormalizedOptions["rateLimit"] {
+    if (value === false) return { enabled: false };
+    if (value === "strict") {
+        return {
+            enabled: true,
+            mode: "strict",
+            options: { max: 5, windowMs: 10000 }
+        };
+    }
+    if (value === "relaxed") {
+        return {
+            enabled: true,
+            mode: "relaxed",
+            options: { max: 100, windowMs: 60000 }
+        };
+    }
+    if (typeof value === "object") {
+        const val = value as RateLimitOptions;
+        const { mode, ...options } = val;
+        return {
+            enabled: true,
+            mode: (mode === "strict" || mode === "relaxed") ? mode : undefined,
+            options
+        };
+    }
+    return { enabled: true };
+}
+function normalizeAuth(value: SecureOptions["auth"]): NormalizedOptions["auth"] {
+    if (value === false) {
+        return { enabled: false, required: false };
+    }
+    if (value === true || value === undefined) {
+        return { enabled: true, required: true };
+    }
+    const authOptions = value as AuthOptions;
+    const enabled = authOptions.required !== false;
+    return {
+        enabled,
+        required: enabled,
+        roles: authOptions.roles
+    };
+}
+export function getPresetOptions(preset: 'api' | 'strict' | 'public'): NormalizedOptions {
+    const presets = {
+        api: {
+            cors: { enabled: true, options: { origin: '*' } },
+            rateLimit: { enabled: true, mode: 'relaxed' as const },
+            sanitize: { enabled: true },
+            validate: { enabled: false },
+            json: { enabled: true },
+            auth: { enabled: false, required: false },
+            compression: { enabled: true }
+        },
+        strict: {
+            cors: { enabled: true, options: { origin: process.env.ALLOWED_ORIGIN || '*' } },
+            rateLimit: { enabled: true, mode: 'strict' as const },
+            sanitize: { enabled: true },
+            validate: { enabled: true },
+            json: { enabled: true },
+            auth: { enabled: true, required: true },
+            compression: { enabled: true }
+        },
+        public: {
+            cors: { enabled: true, options: { origin: '*' } },
+            rateLimit: { enabled: true },
+            sanitize: { enabled: false },
+            validate: { enabled: false },
+            json: { enabled: true },
+            auth: { enabled: false, required: false },
+            compression: { enabled: true }
+        }
+    };
+    return presets[preset] || presets.api;
+}

package/tsconfig.json ADDED Viewed

@@ -0,0 +1,30 @@
+{
+  "compilerOptions": {
+    "target": "ES2020",
+    "module": "CommonJS",
+    "lib": ["ES2020"],
+    "moduleResolution": "node",
+    "rootDir": "./src",
+    "outDir": "./dist",
+    "strict": true,
+    "esModuleInterop": true,
+    "skipLibCheck": true,
+    "forceConsistentCasingInFileNames": true,
+    "resolveJsonModule": true,
+    "declaration": true,
+    "declarationMap": true,
+    "sourceMap": true,
+    "inlineSources": true,
+    "noUncheckedIndexedAccess": true,
+    "exactOptionalPropertyTypes": false,
+    "noImplicitOverride": true,
+    "noImplicitReturns": true,
+    "noFallthroughCasesInSwitch": true
+  },
+  "include": ["src/**/*"],
+  "exclude": ["node_modules", "dist"]
+}