hi-secure 1.0.7 → 1.0.11
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/adapters/ArgonAdapter.js +1 -1
- package/dist/adapters/ArgonAdapter.js.map +1 -1
- package/dist/adapters/ExpressRLAdapter.d.ts.map +1 -1
- package/dist/adapters/ExpressRLAdapter.js +1 -2
- package/dist/adapters/ExpressRLAdapter.js.map +1 -1
- package/dist/adapters/ExpressValidatorAdapter.d.ts.map +1 -1
- package/dist/adapters/ExpressValidatorAdapter.js +1 -39
- package/dist/adapters/ExpressValidatorAdapter.js.map +1 -1
- package/dist/adapters/GoogleAdapter.d.ts.map +1 -1
- package/dist/adapters/GoogleAdapter.js +0 -101
- package/dist/adapters/GoogleAdapter.js.map +1 -1
- package/dist/adapters/JWTAdapter.d.ts.map +1 -1
- package/dist/adapters/JWTAdapter.js +3 -210
- package/dist/adapters/JWTAdapter.js.map +1 -1
- package/dist/adapters/RLFlexibleAdapter.d.ts.map +1 -1
- package/dist/adapters/RLFlexibleAdapter.js +0 -52
- package/dist/adapters/RLFlexibleAdapter.js.map +1 -1
- package/dist/adapters/SanitizeHtmlAdapter.d.ts +0 -3
- package/dist/adapters/SanitizeHtmlAdapter.d.ts.map +1 -1
- package/dist/adapters/SanitizeHtmlAdapter.js +2 -71
- package/dist/adapters/SanitizeHtmlAdapter.js.map +1 -1
- package/dist/adapters/XSSAdapter.d.ts +0 -10
- package/dist/adapters/XSSAdapter.d.ts.map +1 -1
- package/dist/adapters/XSSAdapter.js +2 -19
- package/dist/adapters/XSSAdapter.js.map +1 -1
- package/dist/adapters/ZodAdapter.d.ts.map +1 -1
- package/dist/adapters/ZodAdapter.js +2 -6
- package/dist/adapters/ZodAdapter.js.map +1 -1
- package/dist/core/HiSecure.d.ts +0 -2
- package/dist/core/HiSecure.d.ts.map +1 -1
- package/dist/core/HiSecure.js +8 -20
- package/dist/core/HiSecure.js.map +1 -1
- package/dist/core/useSecure.d.ts +0 -3
- package/dist/core/useSecure.d.ts.map +1 -1
- package/dist/core/useSecure.js +1 -5
- package/dist/core/useSecure.js.map +1 -1
- package/dist/index.d.ts +1 -4
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +0 -1
- package/dist/index.js.map +1 -1
- package/dist/managers/AuthManager.d.ts.map +1 -1
- package/dist/managers/AuthManager.js +1 -89
- package/dist/managers/AuthManager.js.map +1 -1
- package/dist/managers/CorsManager.d.ts.map +1 -1
- package/dist/managers/CorsManager.js +1 -19
- package/dist/managers/CorsManager.js.map +1 -1
- package/dist/managers/HashManager.d.ts.map +1 -1
- package/dist/managers/HashManager.js +0 -243
- package/dist/managers/HashManager.js.map +1 -1
- package/dist/managers/JsonManager.d.ts.map +1 -1
- package/dist/managers/JsonManager.js +1 -77
- package/dist/managers/JsonManager.js.map +1 -1
- package/dist/managers/RateLimitManager.d.ts.map +1 -1
- package/dist/managers/RateLimitManager.js +3 -17
- package/dist/managers/RateLimitManager.js.map +1 -1
- package/dist/managers/SanitizerManager.d.ts +0 -6
- package/dist/managers/SanitizerManager.d.ts.map +1 -1
- package/dist/managers/SanitizerManager.js +1 -213
- package/dist/managers/SanitizerManager.js.map +1 -1
- package/dist/managers/ValidatorManager.d.ts.map +1 -1
- package/dist/managers/ValidatorManager.js +1 -109
- package/dist/managers/ValidatorManager.js.map +1 -1
- package/dist/middlewares/errorHandler.d.ts.map +1 -1
- package/dist/middlewares/errorHandler.js +0 -19
- package/dist/middlewares/errorHandler.js.map +1 -1
- package/dist/utils/deepFreeze.d.ts.map +1 -1
- package/dist/utils/deepFreeze.js +0 -25
- package/dist/utils/deepFreeze.js.map +1 -1
- package/dist/utils/deepMerge.d.ts.map +1 -1
- package/dist/utils/deepMerge.js +0 -26
- package/dist/utils/deepMerge.js.map +1 -1
- package/dist/utils/normalizeOptions.d.ts +1 -3
- package/dist/utils/normalizeOptions.d.ts.map +1 -1
- package/dist/utils/normalizeOptions.js +8 -9
- package/dist/utils/normalizeOptions.js.map +1 -1
- package/package.json +1 -1
- package/src/adapters/ArgonAdapter.ts +1 -1
- package/src/adapters/ExpressRLAdapter.ts +1 -2
- package/src/adapters/ExpressValidatorAdapter.ts +1 -54
- package/src/adapters/GoogleAdapter.ts +0 -129
- package/src/adapters/JWTAdapter.ts +5 -259
- package/src/adapters/RLFlexibleAdapter.ts +2 -65
- package/src/adapters/SanitizeHtmlAdapter.ts +3 -87
- package/src/adapters/XSSAdapter.ts +11 -19
- package/src/adapters/ZodAdapter.ts +2 -51
- package/src/core/HiSecure.ts +13 -24
- package/src/core/useSecure.ts +5 -7
- package/src/index.ts +4 -5
- package/src/managers/AuthManager.ts +5 -109
- package/src/managers/CorsManager.ts +1 -25
- package/src/managers/HashManager.ts +0 -286
- package/src/managers/JsonManager.ts +1 -91
- package/src/managers/RateLimitManager.ts +3 -262
- package/src/managers/SanitizerManager.ts +4 -263
- package/src/managers/ValidatorManager.ts +1 -135
- package/src/middlewares/errorHandler.ts +1 -176
- package/src/utils/deepFreeze.ts +0 -32
- package/src/utils/deepMerge.ts +0 -35
- package/src/utils/normalizeOptions.ts +16 -133
- package/src/examples/e1.ts +0 -1
- package/src/test/t1.ts +0 -1
|
@@ -1,249 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
-
// // // import { AdapterError } from "../core/errors/AdapterError";
|
|
3
|
-
// // // import { HiSecureConfig } from "../core/config";
|
|
4
|
-
// // // import { logger } from "../logging";
|
|
5
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
6
3
|
exports.HashManager = void 0;
|
|
7
|
-
// // // export class HashManager {
|
|
8
|
-
// // // private config: HiSecureConfig["hashing"];
|
|
9
|
-
// // // private primaryAdapter: {
|
|
10
|
-
// // // hash: (value: string) => Promise<string>;
|
|
11
|
-
// // // verify: (value: string, hashed: string) => Promise<boolean>;
|
|
12
|
-
// // // };
|
|
13
|
-
// // // private fallbackAdapter: {
|
|
14
|
-
// // // hash: (value: string) => Promise<string>;
|
|
15
|
-
// // // verify: (value: string, hashed: string) => Promise<boolean>;
|
|
16
|
-
// // // } | null;
|
|
17
|
-
// // // constructor(
|
|
18
|
-
// // // config: HiSecureConfig["hashing"],
|
|
19
|
-
// // // primaryAdapter: any,
|
|
20
|
-
// // // fallbackAdapter: any
|
|
21
|
-
// // // ) {
|
|
22
|
-
// // // this.config = config;
|
|
23
|
-
// // // this.primaryAdapter = primaryAdapter;
|
|
24
|
-
// // // this.fallbackAdapter = fallbackAdapter;
|
|
25
|
-
// // // }
|
|
26
|
-
// // // /**
|
|
27
|
-
// // // * Hash a password using primary adapter (Argon2)
|
|
28
|
-
// // // * If it fails → fallback (Bcrypt)
|
|
29
|
-
// // // */
|
|
30
|
-
// // // async hash(value: string): Promise<string> {
|
|
31
|
-
// // // try {
|
|
32
|
-
// // // return await this.primaryAdapter.hash(value);
|
|
33
|
-
// // // } catch (err: any) {
|
|
34
|
-
// // // logger.warn("⚠ Primary hashing failed — switching to fallback", {
|
|
35
|
-
// // // error: err?.message,
|
|
36
|
-
// // // });
|
|
37
|
-
// // // if (!this.fallbackAdapter) {
|
|
38
|
-
// // // throw new AdapterError(
|
|
39
|
-
// // // "Primary hashing failed and no fallback adapter is configured."
|
|
40
|
-
// // // );
|
|
41
|
-
// // // }
|
|
42
|
-
// // // try {
|
|
43
|
-
// // // return await this.fallbackAdapter.hash(value);
|
|
44
|
-
// // // } catch (fallbackErr: any) {
|
|
45
|
-
// // // logger.error("❌ Fallback hashing failed", {
|
|
46
|
-
// // // error: fallbackErr?.message,
|
|
47
|
-
// // // });
|
|
48
|
-
// // // throw new AdapterError(
|
|
49
|
-
// // // "Both primary and fallback hashing failed."
|
|
50
|
-
// // // );
|
|
51
|
-
// // // }
|
|
52
|
-
// // // }
|
|
53
|
-
// // // }
|
|
54
|
-
// // // /**
|
|
55
|
-
// // // * Verify using primary hashing method.
|
|
56
|
-
// // // * If mismatch OR failure → use fallback.
|
|
57
|
-
// // // */
|
|
58
|
-
// // // async verify(value: string, hashed: string): Promise<boolean> {
|
|
59
|
-
// // // try {
|
|
60
|
-
// // // return await this.primaryAdapter.verify(value, hashed);
|
|
61
|
-
// // // } catch (err: any) {
|
|
62
|
-
// // // logger.warn("⚠ Primary verify failed — trying fallback", {
|
|
63
|
-
// // // error: err?.message,
|
|
64
|
-
// // // });
|
|
65
|
-
// // // if (!this.fallbackAdapter) {
|
|
66
|
-
// // // throw new AdapterError(
|
|
67
|
-
// // // "Primary verify failed and no fallback adapter is configured."
|
|
68
|
-
// // // );
|
|
69
|
-
// // // }
|
|
70
|
-
// // // try {
|
|
71
|
-
// // // return await this.fallbackAdapter.verify(value, hashed);
|
|
72
|
-
// // // } catch (fallbackErr: any) {
|
|
73
|
-
// // // logger.error("❌ Fallback verify failed", {
|
|
74
|
-
// // // error: fallbackErr?.message,
|
|
75
|
-
// // // });
|
|
76
|
-
// // // throw new AdapterError(
|
|
77
|
-
// // // "Both primary and fallback verify failed."
|
|
78
|
-
// // // );
|
|
79
|
-
// // // }
|
|
80
|
-
// // // }
|
|
81
|
-
// // // }
|
|
82
|
-
// // // }
|
|
83
|
-
// // import { AdapterError } from "../core/errors/AdapterError.js";
|
|
84
|
-
// // import { HiSecureConfig } from "../core/config.js";
|
|
85
|
-
// // import { logger } from "../logging";
|
|
86
|
-
// // interface HashAdapter {
|
|
87
|
-
// // hash(value: string): Promise<string>;
|
|
88
|
-
// // verify(value: string, hashed: string): Promise<boolean>;
|
|
89
|
-
// // }
|
|
90
|
-
// // export class HashManager {
|
|
91
|
-
// // private config: HiSecureConfig["hashing"];
|
|
92
|
-
// // private primaryAdapter: HashAdapter;
|
|
93
|
-
// // private fallbackAdapter: HashAdapter | null;
|
|
94
|
-
// // constructor(
|
|
95
|
-
// // config: HiSecureConfig["hashing"],
|
|
96
|
-
// // primaryAdapter: HashAdapter,
|
|
97
|
-
// // fallbackAdapter: HashAdapter | null
|
|
98
|
-
// // ) {
|
|
99
|
-
// // this.config = config;
|
|
100
|
-
// // this.primaryAdapter = primaryAdapter;
|
|
101
|
-
// // this.fallbackAdapter = fallbackAdapter;
|
|
102
|
-
// // }
|
|
103
|
-
// // async hash(value: string): Promise<string> {
|
|
104
|
-
// // try {
|
|
105
|
-
// // return await this.primaryAdapter.hash(value);
|
|
106
|
-
// // } catch (err: any) {
|
|
107
|
-
// // logger.warn("⚠ Primary hashing failed — trying fallback", {
|
|
108
|
-
// // error: err?.message,
|
|
109
|
-
// // });
|
|
110
|
-
// // if (!this.fallbackAdapter) {
|
|
111
|
-
// // throw new AdapterError(
|
|
112
|
-
// // "Primary hashing failed and no fallback adapter configured."
|
|
113
|
-
// // );
|
|
114
|
-
// // }
|
|
115
|
-
// // try {
|
|
116
|
-
// // return await this.fallbackAdapter.hash(value);
|
|
117
|
-
// // } catch (fallbackErr: any) {
|
|
118
|
-
// // logger.error("❌ Fallback hashing failed", {
|
|
119
|
-
// // error: fallbackErr?.message,
|
|
120
|
-
// // });
|
|
121
|
-
// // throw new AdapterError(
|
|
122
|
-
// // "Both primary and fallback hashing failed."
|
|
123
|
-
// // );
|
|
124
|
-
// // }
|
|
125
|
-
// // }
|
|
126
|
-
// // }
|
|
127
|
-
// // async verify(value: string, hashed: string): Promise<boolean> {
|
|
128
|
-
// // try {
|
|
129
|
-
// // return await this.primaryAdapter.verify(value, hashed);
|
|
130
|
-
// // } catch (err: any) {
|
|
131
|
-
// // logger.warn("⚠ Primary verify failed — trying fallback", {
|
|
132
|
-
// // error: err?.message,
|
|
133
|
-
// // });
|
|
134
|
-
// // if (!this.fallbackAdapter) {
|
|
135
|
-
// // throw new AdapterError(
|
|
136
|
-
// // "Primary verify failed and no fallback adapter configured."
|
|
137
|
-
// // );
|
|
138
|
-
// // }
|
|
139
|
-
// // try {
|
|
140
|
-
// // return await this.fallbackAdapter.verify(value, hashed);
|
|
141
|
-
// // } catch (fallbackErr: any) {
|
|
142
|
-
// // logger.error("❌ Fallback verify failed", {
|
|
143
|
-
// // error: fallbackErr?.message,
|
|
144
|
-
// // });
|
|
145
|
-
// // throw new AdapterError(
|
|
146
|
-
// // "Both primary and fallback verify failed."
|
|
147
|
-
// // );
|
|
148
|
-
// // }
|
|
149
|
-
// // }
|
|
150
|
-
// // }
|
|
151
|
-
// // }
|
|
152
|
-
// // src/managers/HashManager.ts - FIXED
|
|
153
|
-
// import { AdapterError } from "../core/errors/AdapterError.js";
|
|
154
|
-
// import { HiSecureConfig } from "../core/types/HiSecureConfig.js";
|
|
155
|
-
// import { logger } from "../logging";
|
|
156
|
-
// interface HashAdapter {
|
|
157
|
-
// hash(value: string): Promise<string>;
|
|
158
|
-
// verify(value: string, hashed: string): Promise<boolean>;
|
|
159
|
-
// getAlgorithm(): string;
|
|
160
|
-
// }
|
|
161
|
-
// export interface HashResult {
|
|
162
|
-
// hash: string;
|
|
163
|
-
// algorithm: string;
|
|
164
|
-
// usedFallback: boolean;
|
|
165
|
-
// }
|
|
166
|
-
// export class HashManager {
|
|
167
|
-
// private config: HiSecureConfig["hashing"];
|
|
168
|
-
// private primaryAdapter: HashAdapter;
|
|
169
|
-
// private fallbackAdapter: HashAdapter | null;
|
|
170
|
-
// constructor(
|
|
171
|
-
// config: HiSecureConfig["hashing"],
|
|
172
|
-
// primaryAdapter: HashAdapter,
|
|
173
|
-
// fallbackAdapter: HashAdapter | null
|
|
174
|
-
// ) {
|
|
175
|
-
// this.config = config;
|
|
176
|
-
// this.primaryAdapter = primaryAdapter;
|
|
177
|
-
// this.fallbackAdapter = fallbackAdapter;
|
|
178
|
-
// }
|
|
179
|
-
// async hash(value: string, options?: { allowFallback?: boolean }): Promise<HashResult> {
|
|
180
|
-
// try {
|
|
181
|
-
// const hash = await this.primaryAdapter.hash(value);
|
|
182
|
-
// return {
|
|
183
|
-
// hash,
|
|
184
|
-
// algorithm: this.config.primary,
|
|
185
|
-
// usedFallback: false
|
|
186
|
-
// };
|
|
187
|
-
// } catch (err: any) {
|
|
188
|
-
// logger.warn("⚠ Primary hashing failed", {
|
|
189
|
-
// error: err.message,
|
|
190
|
-
// algorithm: this.config.primary
|
|
191
|
-
// });
|
|
192
|
-
// if (!options?.allowFallback || !this.fallbackAdapter) {
|
|
193
|
-
// throw new AdapterError(
|
|
194
|
-
// `Primary hashing (${this.config.primary}) failed. Fallback not allowed.`
|
|
195
|
-
// );
|
|
196
|
-
// }
|
|
197
|
-
// try {
|
|
198
|
-
// const hash = await this.fallbackAdapter.hash(value);
|
|
199
|
-
// // Log security downgrade warning
|
|
200
|
-
// logger.warn("⚠ SECURITY DOWNGRADE: Using fallback hashing", {
|
|
201
|
-
// from: this.config.primary,
|
|
202
|
-
// to: this.config.fallback
|
|
203
|
-
// });
|
|
204
|
-
// return {
|
|
205
|
-
// hash,
|
|
206
|
-
// algorithm: this.config.fallback || 'bcrypt',
|
|
207
|
-
// usedFallback: true
|
|
208
|
-
// };
|
|
209
|
-
// } catch (fallbackErr: any) {
|
|
210
|
-
// logger.error("❌ Fallback hashing failed", {
|
|
211
|
-
// error: fallbackErr?.message,
|
|
212
|
-
// });
|
|
213
|
-
// throw new AdapterError(
|
|
214
|
-
// "Both primary and fallback hashing failed."
|
|
215
|
-
// );
|
|
216
|
-
// }
|
|
217
|
-
// }
|
|
218
|
-
// }
|
|
219
|
-
// async verify(value: string, hashed: string): Promise<boolean> {
|
|
220
|
-
// // Try primary adapter first
|
|
221
|
-
// try {
|
|
222
|
-
// return await this.primaryAdapter.verify(value, hashed);
|
|
223
|
-
// } catch (primaryErr: any) {
|
|
224
|
-
// logger.warn("⚠ Primary verify failed", {
|
|
225
|
-
// error: primaryErr?.message,
|
|
226
|
-
// });
|
|
227
|
-
// // If fallback exists, try it
|
|
228
|
-
// if (this.fallbackAdapter) {
|
|
229
|
-
// try {
|
|
230
|
-
// return await this.fallbackAdapter.verify(value, hashed);
|
|
231
|
-
// } catch (fallbackErr: any) {
|
|
232
|
-
// logger.error("❌ Fallback verify failed", {
|
|
233
|
-
// error: fallbackErr?.message,
|
|
234
|
-
// });
|
|
235
|
-
// throw new AdapterError(
|
|
236
|
-
// "Both primary and fallback verify failed."
|
|
237
|
-
// );
|
|
238
|
-
// }
|
|
239
|
-
// }
|
|
240
|
-
// throw new AdapterError(
|
|
241
|
-
// "Primary verify failed and no fallback adapter configured."
|
|
242
|
-
// );
|
|
243
|
-
// }
|
|
244
|
-
// }
|
|
245
|
-
// }
|
|
246
|
-
// src/managers/HashManager.ts - COMPLETE FIXED
|
|
247
4
|
const AdapterError_js_1 = require("../core/errors/AdapterError.js");
|
|
248
5
|
const logging_1 = require("../logging");
|
|
249
6
|
class HashManager {
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"HashManager.js","sourceRoot":"","sources":["../../src/managers/HashManager.ts"],"names":[],"mappings":";AAAA,oEAAoE;AACpE,yDAAyD;AACzD,6CAA6C;;;AAE7C,mCAAmC;AACnC,uDAAuD;AACvD,sCAAsC;AACtC,0DAA0D;AAC1D,6EAA6E;AAC7E,eAAe;AACf,uCAAuC;AACvC,0DAA0D;AAC1D,6EAA6E;AAC7E,sBAAsB;AAEtB,yBAAyB;AACzB,mDAAmD;AACnD,qCAAqC;AACrC,qCAAqC;AACrC,gBAAgB;AAChB,sCAAsC;AACtC,sDAAsD;AACtD,wDAAwD;AACxD,cAAc;AAEd,gBAAgB;AAChB,8DAA8D;AAC9D,+CAA+C;AAC/C,gBAAgB;AAChB,yDAAyD;AACzD,sBAAsB;AACtB,kEAAkE;AAClE,qCAAqC;AACrC,sFAAsF;AACtF,6CAA6C;AAC7C,wBAAwB;AAExB,iDAAiD;AACjD,gDAAgD;AAChD,4FAA4F;AAC5F,2BAA2B;AAC3B,sBAAsB;AAEtB,0BAA0B;AAC1B,uEAAuE;AACvE,iDAAiD;AACjD,oEAAoE;AACpE,yDAAyD;AACzD,4BAA4B;AAC5B,gDAAgD;AAChD,wEAAwE;AACxE,2BAA2B;AAC3B,sBAAsB;AACtB,kBAAkB;AAClB,cAAc;AAEd,gBAAgB;AAChB,oDAAoD;AACpD,sDAAsD;AACtD,gBAAgB;AAChB,4EAA4E;AAC5E,sBAAsB;AACtB,4EAA4E;AAC5E,qCAAqC;AACrC,+EAA+E;AAC/E,6CAA6C;AAC7C,wBAAwB;AAExB,iDAAiD;AACjD,gDAAgD;AAChD,2FAA2F;AAC3F,2BAA2B;AAC3B,sBAAsB;AAEtB,0BAA0B;AAC1B,iFAAiF;AACjF,iDAAiD;AACjD,mEAAmE;AACnE,yDAAyD;AACzD,4BAA4B;AAE5B,gDAAgD;AAChD,uEAAuE;AACvE,2BAA2B;AAC3B,sBAAsB;AACtB,kBAAkB;AAClB,cAAc;AACd,UAAU;AAQV,oEAAoE;AACpE,yDAAyD;AACzD,0CAA0C;AAE1C,6BAA6B;AAC7B,+CAA+C;AAC/C,kEAAkE;AAClE,OAAO;AAEP,gCAAgC;AAChC,oDAAoD;AACpD,8CAA8C;AAC9C,sDAAsD;AAEtD,sBAAsB;AACtB,gDAAgD;AAChD,0CAA0C;AAC1C,iDAAiD;AACjD,aAAa;AACb,mCAAmC;AACnC,mDAAmD;AACnD,qDAAqD;AACrD,WAAW;AAEX,sDAAsD;AACtD,mBAAmB;AACnB,+DAA+D;AAC/D,kCAAkC;AAClC,6EAA6E;AAC7E,0CAA0C;AAC1C,qBAAqB;AAErB,8CAA8C;AAC9C,6CAA6C;AAC7C,sFAAsF;AACtF,wBAAwB;AACxB,mBAAmB;AAEnB,uBAAuB;AACvB,oEAAoE;AACpE,8CAA8C;AAC9C,iEAAiE;AACjE,sDAAsD;AACtD,yBAAyB;AACzB,6CAA6C;AAC7C,qEAAqE;AACrE,wBAAwB;AACxB,mBAAmB;AACnB,eAAe;AACf,WAAW;AAEX,yEAAyE;AACzE,mBAAmB;AACnB,yEAAyE;AACzE,kCAAkC;AAClC,4EAA4E;AAC5E,0CAA0C;AAC1C,qBAAqB;AAErB,8CAA8C;AAC9C,6CAA6C;AAC7C,qFAAqF;AACrF,wBAAwB;AACxB,mBAAmB;AAEnB,uBAAuB;AACvB,8EAA8E;AAC9E,8CAA8C;AAC9C,gEAAgE;AAChE,sDAAsD;AACtD,yBAAyB;AACzB,6CAA6C;AAC7C,oEAAoE;AACpE,wBAAwB;AACxB,mBAAmB;AACnB,eAAe;AACf,WAAW;AACX,OAAO;AAIP,yCAAyC;AACzC,iEAAiE;AACjE,oEAAoE;AACpE,uCAAuC;AAEvC,0BAA0B;AAC1B,4CAA4C;AAC5C,+DAA+D;AAC/D,8BAA8B;AAC9B,IAAI;AAEJ,gCAAgC;AAChC,oBAAoB;AACpB,yBAAyB;AACzB,6BAA6B;AAC7B,IAAI;AAEJ,6BAA6B;AAC7B,iDAAiD;AACjD,2CAA2C;AAC3C,mDAAmD;AAEnD,mBAAmB;AACnB,6CAA6C;AAC7C,uCAAuC;AACvC,8CAA8C;AAC9C,UAAU;AACV,gCAAgC;AAChC,gDAAgD;AAChD,kDAAkD;AAClD,QAAQ;AAER,8FAA8F;AAC9F,gBAAgB;AAChB,kEAAkE;AAClE,uBAAuB;AACvB,wBAAwB;AACxB,kDAAkD;AAClD,sCAAsC;AACtC,iBAAiB;AACjB,+BAA+B;AAC/B,wDAAwD;AACxD,sCAAsC;AACtC,iDAAiD;AACjD,kBAAkB;AAElB,sEAAsE;AACtE,0CAA0C;AAC1C,+FAA+F;AAC/F,qBAAqB;AACrB,gBAAgB;AAEhB,oBAAoB;AACpB,uEAAuE;AAEvE,oDAAoD;AACpD,gFAAgF;AAChF,iDAAiD;AACjD,+CAA+C;AAC/C,sBAAsB;AAEtB,2BAA2B;AAC3B,4BAA4B;AAC5B,mEAAmE;AACnE,yCAAyC;AACzC,qBAAqB;AACrB,2CAA2C;AAC3C,8DAA8D;AAC9D,mDAAmD;AACnD,sBAAsB;AACtB,0CAA0C;AAC1C,kEAAkE;AAClE,qBAAqB;AACrB,gBAAgB;AAChB,YAAY;AACZ,QAAQ;AAER,sEAAsE;AACtE,uCAAuC;AACvC,gBAAgB;AAChB,sEAAsE;AACtE,sCAAsC;AACtC,uDAAuD;AACvD,8CAA8C;AAC9C,kBAAkB;AAElB,4CAA4C;AAC5C,0CAA0C;AAC1C,wBAAwB;AACxB,+EAA+E;AAC/E,+CAA+C;AAC/C,iEAAiE;AACjE,uDAAuD;AACvD,0BAA0B;AAC1B,8CAA8C;AAC9C,qEAAqE;AACrE,yBAAyB;AACzB,oBAAoB;AACpB,gBAAgB;AAEhB,sCAAsC;AACtC,8EAA8E;AAC9E,iBAAiB;AACjB,YAAY;AACZ,QAAQ;AACR,IAAI;AAGJ,+CAA+C;AAC/C,oEAA8D;AAE9D,wCAAoC;AAcpC,MAAa,WAAW;IAKpB,YACI,MAAiC,EACjC,cAA2B,EAC3B,eAAmC;QAEnC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;IAC3C,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,KAAa,EAAE,OAAqC;QAC3D,IAAI,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACnD,OAAO;gBACH,IAAI;gBACJ,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;gBAC9B,YAAY,EAAE,KAAK;aACtB,CAAC;QACN,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAChB,gBAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE;gBACpC,KAAK,EAAE,GAAG,CAAC,OAAO;gBAClB,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;aACjC,CAAC,CAAC;YAEH,IAAI,CAAC,OAAO,EAAE,aAAa,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,CAAC;gBACnD,MAAM,IAAI,8BAAY,CAClB,oBAAoB,IAAI,CAAC,MAAM,CAAC,OAAO,iCAAiC,CAC3E,CAAC;YACN,CAAC;YAED,IAAI,CAAC;gBACD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAEpD,iCAAiC;gBACjC,gBAAM,CAAC,IAAI,CAAC,8CAA8C,EAAE;oBACxD,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;oBACzB,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ;iBAC3B,CAAC,CAAC;gBAEH,OAAO;oBACH,IAAI;oBACJ,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,IAAI,QAAQ;oBAC3C,YAAY,EAAE,IAAI;iBACrB,CAAC;YACN,CAAC;YAAC,OAAO,WAAgB,EAAE,CAAC;gBACxB,gBAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE;oBACtC,KAAK,EAAE,WAAW,EAAE,OAAO;iBAC9B,CAAC,CAAC;gBACH,MAAM,IAAI,8BAAY,CAClB,2CAA2C,CAC9C,CAAC;YACN,CAAC;QACL,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,KAAa,EAAE,MAAc;QACtC,4BAA4B;QAC5B,IAAI,CAAC;YACD,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAC3D,CAAC;QAAC,OAAO,UAAe,EAAE,CAAC;YACvB,gBAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE;gBACnC,KAAK,EAAE,UAAU,EAAE,OAAO;aAC7B,CAAC,CAAC;YAEH,6BAA6B;YAC7B,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;gBACvB,IAAI,CAAC;oBACD,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;gBAC5D,CAAC;gBAAC,OAAO,WAAgB,EAAE,CAAC;oBACxB,gBAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE;wBACrC,KAAK,EAAE,WAAW,EAAE,OAAO;qBAC9B,CAAC,CAAC;oBACH,MAAM,IAAI,8BAAY,CAClB,0CAA0C,CAC7C,CAAC;gBACN,CAAC;YACL,CAAC;YAED,MAAM,IAAI,8BAAY,CAClB,2DAA2D,CAC9D,CAAC;QACN,CAAC;IACL,CAAC;CACJ;AAxFD,kCAwFC","sourcesContent":["// // // import { AdapterError } from \"../core/errors/AdapterError\";\r\n// // // import { HiSecureConfig } from \"../core/config\";\r\n// // // import { logger } from \"../logging\";\r\n\r\n// // // export class HashManager {\r\n// // // private config: HiSecureConfig[\"hashing\"];\r\n// // // private primaryAdapter: {\r\n// // // hash: (value: string) => Promise<string>;\r\n// // // verify: (value: string, hashed: string) => Promise<boolean>;\r\n// // // };\r\n// // // private fallbackAdapter: {\r\n// // // hash: (value: string) => Promise<string>;\r\n// // // verify: (value: string, hashed: string) => Promise<boolean>;\r\n// // // } | null;\r\n\r\n// // // constructor(\r\n// // // config: HiSecureConfig[\"hashing\"],\r\n// // // primaryAdapter: any,\r\n// // // fallbackAdapter: any\r\n// // // ) {\r\n// // // this.config = config;\r\n// // // this.primaryAdapter = primaryAdapter;\r\n// // // this.fallbackAdapter = fallbackAdapter;\r\n// // // }\r\n\r\n// // // /**\r\n// // // * Hash a password using primary adapter (Argon2)\r\n// // // * If it fails → fallback (Bcrypt)\r\n// // // */\r\n// // // async hash(value: string): Promise<string> {\r\n// // // try {\r\n// // // return await this.primaryAdapter.hash(value);\r\n// // // } catch (err: any) {\r\n// // // logger.warn(\"⚠ Primary hashing failed — switching to fallback\", {\r\n// // // error: err?.message,\r\n// // // });\r\n\r\n// // // if (!this.fallbackAdapter) {\r\n// // // throw new AdapterError(\r\n// // // \"Primary hashing failed and no fallback adapter is configured.\"\r\n// // // );\r\n// // // }\r\n\r\n// // // try {\r\n// // // return await this.fallbackAdapter.hash(value);\r\n// // // } catch (fallbackErr: any) {\r\n// // // logger.error(\"❌ Fallback hashing failed\", {\r\n// // // error: fallbackErr?.message,\r\n// // // });\r\n// // // throw new AdapterError(\r\n// // // \"Both primary and fallback hashing failed.\"\r\n// // // );\r\n// // // }\r\n// // // }\r\n// // // }\r\n\r\n// // // /**\r\n// // // * Verify using primary hashing method.\r\n// // // * If mismatch OR failure → use fallback.\r\n// // // */\r\n// // // async verify(value: string, hashed: string): Promise<boolean> {\r\n// // // try {\r\n// // // return await this.primaryAdapter.verify(value, hashed);\r\n// // // } catch (err: any) {\r\n// // // logger.warn(\"⚠ Primary verify failed — trying fallback\", {\r\n// // // error: err?.message,\r\n// // // });\r\n\r\n// // // if (!this.fallbackAdapter) {\r\n// // // throw new AdapterError(\r\n// // // \"Primary verify failed and no fallback adapter is configured.\"\r\n// // // );\r\n// // // }\r\n\r\n// // // try {\r\n// // // return await this.fallbackAdapter.verify(value, hashed);\r\n// // // } catch (fallbackErr: any) {\r\n// // // logger.error(\"❌ Fallback verify failed\", {\r\n// // // error: fallbackErr?.message,\r\n// // // });\r\n\r\n// // // throw new AdapterError(\r\n// // // \"Both primary and fallback verify failed.\"\r\n// // // );\r\n// // // }\r\n// // // }\r\n// // // }\r\n// // // }\r\n\r\n\r\n\r\n\r\n\r\n\r\n\r\n// // import { AdapterError } from \"../core/errors/AdapterError.js\";\r\n// // import { HiSecureConfig } from \"../core/config.js\";\r\n// // import { logger } from \"../logging\";\r\n\r\n// // interface HashAdapter {\r\n// // hash(value: string): Promise<string>;\r\n// // verify(value: string, hashed: string): Promise<boolean>;\r\n// // }\r\n\r\n// // export class HashManager {\r\n// // private config: HiSecureConfig[\"hashing\"];\r\n// // private primaryAdapter: HashAdapter;\r\n// // private fallbackAdapter: HashAdapter | null;\r\n\r\n// // constructor(\r\n// // config: HiSecureConfig[\"hashing\"],\r\n// // primaryAdapter: HashAdapter,\r\n// // fallbackAdapter: HashAdapter | null\r\n// // ) {\r\n// // this.config = config;\r\n// // this.primaryAdapter = primaryAdapter;\r\n// // this.fallbackAdapter = fallbackAdapter;\r\n// // }\r\n\r\n// // async hash(value: string): Promise<string> {\r\n// // try {\r\n// // return await this.primaryAdapter.hash(value);\r\n// // } catch (err: any) {\r\n// // logger.warn(\"⚠ Primary hashing failed — trying fallback\", {\r\n// // error: err?.message,\r\n// // });\r\n\r\n// // if (!this.fallbackAdapter) {\r\n// // throw new AdapterError(\r\n// // \"Primary hashing failed and no fallback adapter configured.\"\r\n// // );\r\n// // }\r\n\r\n// // try {\r\n// // return await this.fallbackAdapter.hash(value);\r\n// // } catch (fallbackErr: any) {\r\n// // logger.error(\"❌ Fallback hashing failed\", {\r\n// // error: fallbackErr?.message,\r\n// // });\r\n// // throw new AdapterError(\r\n// // \"Both primary and fallback hashing failed.\"\r\n// // );\r\n// // }\r\n// // }\r\n// // }\r\n\r\n// // async verify(value: string, hashed: string): Promise<boolean> {\r\n// // try {\r\n// // return await this.primaryAdapter.verify(value, hashed);\r\n// // } catch (err: any) {\r\n// // logger.warn(\"⚠ Primary verify failed — trying fallback\", {\r\n// // error: err?.message,\r\n// // });\r\n\r\n// // if (!this.fallbackAdapter) {\r\n// // throw new AdapterError(\r\n// // \"Primary verify failed and no fallback adapter configured.\"\r\n// // );\r\n// // }\r\n\r\n// // try {\r\n// // return await this.fallbackAdapter.verify(value, hashed);\r\n// // } catch (fallbackErr: any) {\r\n// // logger.error(\"❌ Fallback verify failed\", {\r\n// // error: fallbackErr?.message,\r\n// // });\r\n// // throw new AdapterError(\r\n// // \"Both primary and fallback verify failed.\"\r\n// // );\r\n// // }\r\n// // }\r\n// // }\r\n// // }\r\n\r\n\r\n\r\n// // src/managers/HashManager.ts - FIXED\r\n// import { AdapterError } from \"../core/errors/AdapterError.js\";\r\n// import { HiSecureConfig } from \"../core/types/HiSecureConfig.js\";\r\n// import { logger } from \"../logging\";\r\n\r\n// interface HashAdapter {\r\n// hash(value: string): Promise<string>;\r\n// verify(value: string, hashed: string): Promise<boolean>;\r\n// getAlgorithm(): string;\r\n// }\r\n\r\n// export interface HashResult {\r\n// hash: string;\r\n// algorithm: string;\r\n// usedFallback: boolean;\r\n// }\r\n\r\n// export class HashManager {\r\n// private config: HiSecureConfig[\"hashing\"];\r\n// private primaryAdapter: HashAdapter;\r\n// private fallbackAdapter: HashAdapter | null;\r\n\r\n// constructor(\r\n// config: HiSecureConfig[\"hashing\"],\r\n// primaryAdapter: HashAdapter,\r\n// fallbackAdapter: HashAdapter | null\r\n// ) {\r\n// this.config = config;\r\n// this.primaryAdapter = primaryAdapter;\r\n// this.fallbackAdapter = fallbackAdapter;\r\n// }\r\n\r\n// async hash(value: string, options?: { allowFallback?: boolean }): Promise<HashResult> {\r\n// try {\r\n// const hash = await this.primaryAdapter.hash(value);\r\n// return {\r\n// hash,\r\n// algorithm: this.config.primary,\r\n// usedFallback: false\r\n// };\r\n// } catch (err: any) {\r\n// logger.warn(\"⚠ Primary hashing failed\", {\r\n// error: err.message,\r\n// algorithm: this.config.primary\r\n// });\r\n\r\n// if (!options?.allowFallback || !this.fallbackAdapter) {\r\n// throw new AdapterError(\r\n// `Primary hashing (${this.config.primary}) failed. Fallback not allowed.`\r\n// );\r\n// }\r\n\r\n// try {\r\n// const hash = await this.fallbackAdapter.hash(value);\r\n \r\n// // Log security downgrade warning\r\n// logger.warn(\"⚠ SECURITY DOWNGRADE: Using fallback hashing\", {\r\n// from: this.config.primary,\r\n// to: this.config.fallback\r\n// });\r\n \r\n// return {\r\n// hash,\r\n// algorithm: this.config.fallback || 'bcrypt',\r\n// usedFallback: true\r\n// };\r\n// } catch (fallbackErr: any) {\r\n// logger.error(\"❌ Fallback hashing failed\", {\r\n// error: fallbackErr?.message,\r\n// });\r\n// throw new AdapterError(\r\n// \"Both primary and fallback hashing failed.\"\r\n// );\r\n// }\r\n// }\r\n// }\r\n\r\n// async verify(value: string, hashed: string): Promise<boolean> {\r\n// // Try primary adapter first\r\n// try {\r\n// return await this.primaryAdapter.verify(value, hashed);\r\n// } catch (primaryErr: any) {\r\n// logger.warn(\"⚠ Primary verify failed\", {\r\n// error: primaryErr?.message,\r\n// });\r\n\r\n// // If fallback exists, try it\r\n// if (this.fallbackAdapter) {\r\n// try {\r\n// return await this.fallbackAdapter.verify(value, hashed);\r\n// } catch (fallbackErr: any) {\r\n// logger.error(\"❌ Fallback verify failed\", {\r\n// error: fallbackErr?.message,\r\n// });\r\n// throw new AdapterError(\r\n// \"Both primary and fallback verify failed.\"\r\n// );\r\n// }\r\n// }\r\n \r\n// throw new AdapterError(\r\n// \"Primary verify failed and no fallback adapter configured.\"\r\n// );\r\n// }\r\n// }\r\n// }\r\n\r\n\r\n// src/managers/HashManager.ts - COMPLETE FIXED\r\nimport { AdapterError } from \"../core/errors/AdapterError.js\";\r\nimport { HiSecureConfig } from \"../core/types/HiSecureConfig.js\";\r\nimport { logger } from \"../logging\";\r\n\r\ninterface HashAdapter {\r\n hash(value: string): Promise<string>;\r\n verify(value: string, hashed: string): Promise<boolean>;\r\n // ❌ getAlgorithm() REMOVED - Not needed in adapters\r\n}\r\n\r\nexport interface HashResult {\r\n hash: string;\r\n algorithm: string;\r\n usedFallback: boolean;\r\n}\r\n\r\nexport class HashManager {\r\n private config: HiSecureConfig[\"hashing\"];\r\n private primaryAdapter: HashAdapter;\r\n private fallbackAdapter: HashAdapter | null;\r\n\r\n constructor(\r\n config: HiSecureConfig[\"hashing\"],\r\n primaryAdapter: HashAdapter,\r\n fallbackAdapter: HashAdapter | null\r\n ) {\r\n this.config = config;\r\n this.primaryAdapter = primaryAdapter;\r\n this.fallbackAdapter = fallbackAdapter;\r\n }\r\n\r\n async hash(value: string, options?: { allowFallback?: boolean }): Promise<HashResult> {\r\n try {\r\n const hash = await this.primaryAdapter.hash(value);\r\n return {\r\n hash,\r\n algorithm: this.config.primary,\r\n usedFallback: false\r\n };\r\n } catch (err: any) {\r\n logger.warn(\"⚠ Primary hashing failed\", {\r\n error: err.message,\r\n algorithm: this.config.primary\r\n });\r\n\r\n if (!options?.allowFallback || !this.fallbackAdapter) {\r\n throw new AdapterError(\r\n `Primary hashing (${this.config.primary}) failed. Fallback not allowed.`\r\n );\r\n }\r\n\r\n try {\r\n const hash = await this.fallbackAdapter.hash(value);\r\n \r\n // Log security downgrade warning\r\n logger.warn(\"⚠ SECURITY DOWNGRADE: Using fallback hashing\", {\r\n from: this.config.primary,\r\n to: this.config.fallback\r\n });\r\n \r\n return {\r\n hash,\r\n algorithm: this.config.fallback || 'bcrypt',\r\n usedFallback: true\r\n };\r\n } catch (fallbackErr: any) {\r\n logger.error(\"❌ Fallback hashing failed\", {\r\n error: fallbackErr?.message,\r\n });\r\n throw new AdapterError(\r\n \"Both primary and fallback hashing failed.\"\r\n );\r\n }\r\n }\r\n }\r\n\r\n async verify(value: string, hashed: string): Promise<boolean> {\r\n // Try primary adapter first\r\n try {\r\n return await this.primaryAdapter.verify(value, hashed);\r\n } catch (primaryErr: any) {\r\n logger.warn(\"⚠ Primary verify failed\", {\r\n error: primaryErr?.message,\r\n });\r\n\r\n // If fallback exists, try it\r\n if (this.fallbackAdapter) {\r\n try {\r\n return await this.fallbackAdapter.verify(value, hashed);\r\n } catch (fallbackErr: any) {\r\n logger.error(\"❌ Fallback verify failed\", {\r\n error: fallbackErr?.message,\r\n });\r\n throw new AdapterError(\r\n \"Both primary and fallback verify failed.\"\r\n );\r\n }\r\n }\r\n \r\n throw new AdapterError(\r\n \"Primary verify failed and no fallback adapter configured.\"\r\n );\r\n }\r\n }\r\n}"]}
|
|
1
|
+
{"version":3,"file":"HashManager.js","sourceRoot":"","sources":["../../src/managers/HashManager.ts"],"names":[],"mappings":";;;AAAA,oEAA8D;AAE9D,wCAAoC;AAapC,MAAa,WAAW;IAKpB,YACI,MAAiC,EACjC,cAA2B,EAC3B,eAAmC;QAEnC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;IAC3C,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,KAAa,EAAE,OAAqC;QAC3D,IAAI,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACnD,OAAO;gBACH,IAAI;gBACJ,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;gBAC9B,YAAY,EAAE,KAAK;aACtB,CAAC;QACN,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAChB,gBAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE;gBACpC,KAAK,EAAE,GAAG,CAAC,OAAO;gBAClB,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;aACjC,CAAC,CAAC;YAEH,IAAI,CAAC,OAAO,EAAE,aAAa,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,CAAC;gBACnD,MAAM,IAAI,8BAAY,CAClB,oBAAoB,IAAI,CAAC,MAAM,CAAC,OAAO,iCAAiC,CAC3E,CAAC;YACN,CAAC;YAED,IAAI,CAAC;gBACD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAEpD,iCAAiC;gBACjC,gBAAM,CAAC,IAAI,CAAC,8CAA8C,EAAE;oBACxD,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;oBACzB,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ;iBAC3B,CAAC,CAAC;gBAEH,OAAO;oBACH,IAAI;oBACJ,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,IAAI,QAAQ;oBAC3C,YAAY,EAAE,IAAI;iBACrB,CAAC;YACN,CAAC;YAAC,OAAO,WAAgB,EAAE,CAAC;gBACxB,gBAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE;oBACtC,KAAK,EAAE,WAAW,EAAE,OAAO;iBAC9B,CAAC,CAAC;gBACH,MAAM,IAAI,8BAAY,CAClB,2CAA2C,CAC9C,CAAC;YACN,CAAC;QACL,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,KAAa,EAAE,MAAc;QACtC,4BAA4B;QAC5B,IAAI,CAAC;YACD,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAC3D,CAAC;QAAC,OAAO,UAAe,EAAE,CAAC;YACvB,gBAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE;gBACnC,KAAK,EAAE,UAAU,EAAE,OAAO;aAC7B,CAAC,CAAC;YAEH,6BAA6B;YAC7B,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;gBACvB,IAAI,CAAC;oBACD,OAAO,MAAM,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;gBAC5D,CAAC;gBAAC,OAAO,WAAgB,EAAE,CAAC;oBACxB,gBAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE;wBACrC,KAAK,EAAE,WAAW,EAAE,OAAO;qBAC9B,CAAC,CAAC;oBACH,MAAM,IAAI,8BAAY,CAClB,0CAA0C,CAC7C,CAAC;gBACN,CAAC;YACL,CAAC;YAED,MAAM,IAAI,8BAAY,CAClB,2DAA2D,CAC9D,CAAC;QACN,CAAC;IACL,CAAC;CACJ;AAxFD,kCAwFC","sourcesContent":["import { AdapterError } from \"../core/errors/AdapterError.js\";\r\nimport { HiSecureConfig } from \"../core/types/HiSecureConfig.js\";\r\nimport { logger } from \"../logging\";\r\n\r\ninterface HashAdapter {\r\n hash(value: string): Promise<string>;\r\n verify(value: string, hashed: string): Promise<boolean>;\r\n}\r\n\r\nexport interface HashResult {\r\n hash: string;\r\n algorithm: string;\r\n usedFallback: boolean;\r\n}\r\n\r\nexport class HashManager {\r\n private config: HiSecureConfig[\"hashing\"];\r\n private primaryAdapter: HashAdapter;\r\n private fallbackAdapter: HashAdapter | null;\r\n\r\n constructor(\r\n config: HiSecureConfig[\"hashing\"],\r\n primaryAdapter: HashAdapter,\r\n fallbackAdapter: HashAdapter | null\r\n ) {\r\n this.config = config;\r\n this.primaryAdapter = primaryAdapter;\r\n this.fallbackAdapter = fallbackAdapter;\r\n }\r\n\r\n async hash(value: string, options?: { allowFallback?: boolean }): Promise<HashResult> {\r\n try {\r\n const hash = await this.primaryAdapter.hash(value);\r\n return {\r\n hash,\r\n algorithm: this.config.primary,\r\n usedFallback: false\r\n };\r\n } catch (err: any) {\r\n logger.warn(\"⚠ Primary hashing failed\", {\r\n error: err.message,\r\n algorithm: this.config.primary\r\n });\r\n\r\n if (!options?.allowFallback || !this.fallbackAdapter) {\r\n throw new AdapterError(\r\n `Primary hashing (${this.config.primary}) failed. Fallback not allowed.`\r\n );\r\n }\r\n\r\n try {\r\n const hash = await this.fallbackAdapter.hash(value);\r\n \r\n // Log security downgrade warning\r\n logger.warn(\"⚠ SECURITY DOWNGRADE: Using fallback hashing\", {\r\n from: this.config.primary,\r\n to: this.config.fallback\r\n });\r\n \r\n return {\r\n hash,\r\n algorithm: this.config.fallback || 'bcrypt',\r\n usedFallback: true\r\n };\r\n } catch (fallbackErr: any) {\r\n logger.error(\"❌ Fallback hashing failed\", {\r\n error: fallbackErr?.message,\r\n });\r\n throw new AdapterError(\r\n \"Both primary and fallback hashing failed.\"\r\n );\r\n }\r\n }\r\n }\r\n\r\n async verify(value: string, hashed: string): Promise<boolean> {\r\n // Try primary adapter first\r\n try {\r\n return await this.primaryAdapter.verify(value, hashed);\r\n } catch (primaryErr: any) {\r\n logger.warn(\"⚠ Primary verify failed\", {\r\n error: primaryErr?.message,\r\n });\r\n\r\n // If fallback exists, try it\r\n if (this.fallbackAdapter) {\r\n try {\r\n return await this.fallbackAdapter.verify(value, hashed);\r\n } catch (fallbackErr: any) {\r\n logger.error(\"❌ Fallback verify failed\", {\r\n error: fallbackErr?.message,\r\n });\r\n throw new AdapterError(\r\n \"Both primary and fallback verify failed.\"\r\n );\r\n }\r\n }\r\n \r\n throw new AdapterError(\r\n \"Primary verify failed and no fallback adapter configured.\"\r\n );\r\n }\r\n }\r\n}"]}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"JsonManager.d.ts","sourceRoot":"","sources":["../../src/managers/JsonManager.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"JsonManager.d.ts","sourceRoot":"","sources":["../../src/managers/JsonManager.ts"],"names":[],"mappings":"AAKA,qBAAa,WAAW;IACpB,UAAU,CAAC,OAAO,CAAC,EAAE,GAAG;IAcxB,UAAU,CAAC,OAAO,CAAC,EAAE,GAAG;IAexB,WAAW,CAAC,OAAO,CAAC,EAAE,GAAG,IACb,KAAK,GAAG,EAAE,KAAK,GAAG,EAAE,MAAM,GAAG;CAsB5C"}
|
|
@@ -1,86 +1,14 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
-
// // import express from "express";
|
|
3
|
-
// // import { logger } from "../logging";
|
|
4
|
-
// // import { AdapterError } from "../core/errors/AdapterError";
|
|
5
2
|
var __importDefault = (this && this.__importDefault) || function (mod) {
|
|
6
3
|
return (mod && mod.__esModule) ? mod : { "default": mod };
|
|
7
4
|
};
|
|
8
5
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
9
6
|
exports.JsonManager = void 0;
|
|
10
|
-
// // export class JsonManager {
|
|
11
|
-
// // /**
|
|
12
|
-
// // * JSON parser middleware — global + dynamic override
|
|
13
|
-
// // */
|
|
14
|
-
// // middleware(options?: any) {
|
|
15
|
-
// // try {
|
|
16
|
-
// // const opts = options || {};
|
|
17
|
-
// // return express.json(opts);
|
|
18
|
-
// // } catch (err: any) {
|
|
19
|
-
// // logger.error("❌ JSON Manager: failed to create JSON parser", {
|
|
20
|
-
// // error: err?.message || err
|
|
21
|
-
// // });
|
|
22
|
-
// // throw new AdapterError("JSON parser initialization failed.");
|
|
23
|
-
// // }
|
|
24
|
-
// // }
|
|
25
|
-
// // /**
|
|
26
|
-
// // * URL-encoded parser — same global + dynamic style
|
|
27
|
-
// // */
|
|
28
|
-
// // urlencoded(options?: any) {
|
|
29
|
-
// // try {
|
|
30
|
-
// // const opts = options || { extended: true };
|
|
31
|
-
// // return express.urlencoded(opts);
|
|
32
|
-
// // } catch (err: any) {
|
|
33
|
-
// // logger.error("❌ JSON Manager: failed to create urlencoded parser", {
|
|
34
|
-
// // error: err?.message || err
|
|
35
|
-
// // });
|
|
36
|
-
// // throw new AdapterError("URL-encoded parser initialization failed.");
|
|
37
|
-
// // }
|
|
38
|
-
// // }
|
|
39
|
-
// // }
|
|
40
|
-
// import express from "express";
|
|
41
|
-
// import qs from "qs";
|
|
42
|
-
// import { logger } from "../logging";
|
|
43
|
-
// import { AdapterError } from "../core/errors/AdapterError.js";
|
|
44
|
-
// export class JsonManager {
|
|
45
|
-
// // JSON parser
|
|
46
|
-
// middleware(options?: any) {
|
|
47
|
-
// try {
|
|
48
|
-
// return express.json(options || {});
|
|
49
|
-
// } catch (err: any) {
|
|
50
|
-
// logger.error("❌ JSON Manager: failed to create JSON parser");
|
|
51
|
-
// throw new AdapterError("JSON parser initialization failed.");
|
|
52
|
-
// }
|
|
53
|
-
// }
|
|
54
|
-
// // URL-encoded parser
|
|
55
|
-
// urlencoded(options?: any) {
|
|
56
|
-
// try {
|
|
57
|
-
// const opts = options || { extended: true };
|
|
58
|
-
// return express.urlencoded(opts);
|
|
59
|
-
// } catch (err: any) {
|
|
60
|
-
// logger.error("❌ URL-encoded parser failed");
|
|
61
|
-
// throw new AdapterError("URL-encoded parser initialization failed.");
|
|
62
|
-
// }
|
|
63
|
-
// }
|
|
64
|
-
// // NEW: Query-string parser
|
|
65
|
-
// queryParser() {
|
|
66
|
-
// return (req: any, res: any, next: any) => {
|
|
67
|
-
// try {
|
|
68
|
-
// req.query = qs.parse(req.url.split("?")[1] || "");
|
|
69
|
-
// } catch (err: any) {
|
|
70
|
-
// logger.error("❌ Failed to parse query", { error: err?.message });
|
|
71
|
-
// throw new AdapterError("Query parsing failed.");
|
|
72
|
-
// }
|
|
73
|
-
// next();
|
|
74
|
-
// };
|
|
75
|
-
// }
|
|
76
|
-
// }
|
|
77
|
-
// src/managers/JsonManager.ts - FIXED
|
|
78
7
|
const express_1 = __importDefault(require("express"));
|
|
79
8
|
const qs_1 = __importDefault(require("qs"));
|
|
80
9
|
const logging_1 = require("../logging");
|
|
81
10
|
const AdapterError_js_1 = require("../core/errors/AdapterError.js");
|
|
82
11
|
class JsonManager {
|
|
83
|
-
// JSON parser
|
|
84
12
|
middleware(options) {
|
|
85
13
|
try {
|
|
86
14
|
const defaultOptions = {
|
|
@@ -95,7 +23,6 @@ class JsonManager {
|
|
|
95
23
|
throw new AdapterError_js_1.AdapterError("JSON parser initialization failed.");
|
|
96
24
|
}
|
|
97
25
|
}
|
|
98
|
-
// URL-encoded parser
|
|
99
26
|
urlencoded(options) {
|
|
100
27
|
try {
|
|
101
28
|
const defaultOptions = {
|
|
@@ -111,19 +38,16 @@ class JsonManager {
|
|
|
111
38
|
throw new AdapterError_js_1.AdapterError("URL-encoded parser initialization failed.");
|
|
112
39
|
}
|
|
113
40
|
}
|
|
114
|
-
// Query-string parser (doesn't override Express's query)
|
|
115
41
|
queryParser(options) {
|
|
116
42
|
return (req, res, next) => {
|
|
117
43
|
try {
|
|
118
|
-
// Only parse if not already parsed by Express
|
|
119
44
|
if (!req.parsedQuery && req.url.includes('?')) {
|
|
120
45
|
const queryString = req.url.split("?")[1] || "";
|
|
121
46
|
const parsed = qs_1.default.parse(queryString, {
|
|
122
|
-
depth: 5,
|
|
47
|
+
depth: 5,
|
|
123
48
|
parameterLimit: 100,
|
|
124
49
|
...options
|
|
125
50
|
});
|
|
126
|
-
// Store separately, don't override req.query
|
|
127
51
|
req.parsedQuery = parsed;
|
|
128
52
|
logging_1.logger.debug("🔍 Query parsed", {
|
|
129
53
|
keys: Object.keys(parsed)
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"JsonManager.js","sourceRoot":"","sources":["../../src/managers/JsonManager.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"JsonManager.js","sourceRoot":"","sources":["../../src/managers/JsonManager.ts"],"names":[],"mappings":";;;;;;AAAA,sDAA8B;AAC9B,4CAAoB;AACpB,wCAAoC;AACpC,oEAA8D;AAE9D,MAAa,WAAW;IACpB,UAAU,CAAC,OAAa;QACpB,IAAI,CAAC;YACD,MAAM,cAAc,GAAG;gBACnB,KAAK,EAAE,KAAK;gBACZ,OAAO,EAAE,IAAI;gBACb,MAAM,EAAE,IAAI;aACf,CAAC;YACF,OAAO,iBAAO,CAAC,IAAI,CAAC,EAAE,GAAG,cAAc,EAAE,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;QACnE,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAChB,gBAAM,CAAC,KAAK,CAAC,8CAA8C,CAAC,CAAC;YAC7D,MAAM,IAAI,8BAAY,CAAC,oCAAoC,CAAC,CAAC;QACjE,CAAC;IACL,CAAC;IAED,UAAU,CAAC,OAAa;QACpB,IAAI,CAAC;YACD,MAAM,cAAc,GAAG;gBACnB,QAAQ,EAAE,IAAI;gBACd,KAAK,EAAE,KAAK;gBACZ,cAAc,EAAE,IAAI;aACvB,CAAC;YACF,MAAM,IAAI,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,EAAE,CAAC;YACvD,OAAO,iBAAO,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QACpC,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAChB,gBAAM,CAAC,KAAK,CAAC,6BAA6B,CAAC,CAAC;YAC5C,MAAM,IAAI,8BAAY,CAAC,2CAA2C,CAAC,CAAC;QACxE,CAAC;IACL,CAAC;IAED,WAAW,CAAC,OAAa;QACrB,OAAO,CAAC,GAAQ,EAAE,GAAQ,EAAE,IAAS,EAAE,EAAE;YACrC,IAAI,CAAC;gBACD,IAAI,CAAC,GAAG,CAAC,WAAW,IAAI,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;oBAC5C,MAAM,WAAW,GAAG,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;oBAChD,MAAM,MAAM,GAAG,YAAE,CAAC,KAAK,CAAC,WAAW,EAAE;wBACjC,KAAK,EAAE,CAAC;wBACR,cAAc,EAAE,GAAG;wBACnB,GAAG,OAAO;qBACb,CAAC,CAAC;oBAEH,GAAG,CAAC,WAAW,GAAG,MAAM,CAAC;oBACzB,gBAAM,CAAC,KAAK,CAAC,iBAAiB,EAAE;wBAC5B,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC;qBAC5B,CAAC,CAAC;gBACP,CAAC;gBACD,IAAI,EAAE,CAAC;YACX,CAAC;YAAC,OAAO,GAAQ,EAAE,CAAC;gBAChB,gBAAM,CAAC,KAAK,CAAC,yBAAyB,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC,CAAC;gBACjE,IAAI,CAAC,IAAI,8BAAY,CAAC,uBAAuB,CAAC,CAAC,CAAC;YACpD,CAAC;QACL,CAAC,CAAC;IACN,CAAC;CACJ;AArDD,kCAqDC","sourcesContent":["import express from \"express\";\r\nimport qs from \"qs\";\r\nimport { logger } from \"../logging\";\r\nimport { AdapterError } from \"../core/errors/AdapterError.js\";\r\n\r\nexport class JsonManager {\r\n middleware(options?: any) {\r\n try {\r\n const defaultOptions = {\r\n limit: '1mb',\r\n inflate: true,\r\n strict: true\r\n };\r\n return express.json({ ...defaultOptions, ...(options || {}) });\r\n } catch (err: any) {\r\n logger.error(\"❌ JSON Manager: failed to create JSON parser\");\r\n throw new AdapterError(\"JSON parser initialization failed.\");\r\n }\r\n }\r\n\r\n urlencoded(options?: any) {\r\n try {\r\n const defaultOptions = {\r\n extended: true,\r\n limit: '1mb',\r\n parameterLimit: 1000\r\n };\r\n const opts = { ...defaultOptions, ...(options || {}) };\r\n return express.urlencoded(opts);\r\n } catch (err: any) {\r\n logger.error(\"❌ URL-encoded parser failed\");\r\n throw new AdapterError(\"URL-encoded parser initialization failed.\");\r\n }\r\n }\r\n\r\n queryParser(options?: any) {\r\n return (req: any, res: any, next: any) => {\r\n try {\r\n if (!req.parsedQuery && req.url.includes('?')) {\r\n const queryString = req.url.split(\"?\")[1] || \"\";\r\n const parsed = qs.parse(queryString, {\r\n depth: 5,\r\n parameterLimit: 100,\r\n ...options\r\n });\r\n \r\n req.parsedQuery = parsed;\r\n logger.debug(\"🔍 Query parsed\", {\r\n keys: Object.keys(parsed)\r\n });\r\n }\r\n next();\r\n } catch (err: any) {\r\n logger.error(\"❌ Failed to parse query\", { error: err?.message });\r\n next(new AdapterError(\"Query parsing failed.\"));\r\n }\r\n };\r\n }\r\n}"]}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"RateLimitManager.d.ts","sourceRoot":"","sources":["../../src/managers/RateLimitManager.ts"],"names":[],"mappings":"
|
|
1
|
+
{"version":3,"file":"RateLimitManager.d.ts","sourceRoot":"","sources":["../../src/managers/RateLimitManager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AAIjE,UAAU,kBAAkB;IACxB,aAAa,EAAE,CAAC,OAAO,CAAC,EAAE,GAAG,KAAK,GAAG,CAAC;CACzC;AAED,qBAAa,gBAAgB;IACzB,OAAO,CAAC,MAAM,CAAgC;IAC9C,OAAO,CAAC,cAAc,CAAqB;IAC3C,OAAO,CAAC,eAAe,CAA4B;gBAG/C,MAAM,EAAE,cAAc,CAAC,aAAa,CAAC,EACrC,cAAc,EAAE,kBAAkB,EAClC,eAAe,EAAE,kBAAkB,GAAG,IAAI;IAO9C,UAAU,CAAC,IAAI,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,QAAQ,GAAG,SAAS,GAAG,KAAK,CAAC;QAAC,OAAO,CAAC,EAAE,GAAG,CAAA;KAAE;CAqF3E"}
|
|
@@ -1,8 +1,4 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
-
// // // src/managers/RateLimitManager.ts - COMPLETE FIXED
|
|
3
|
-
// // import { HiSecureConfig } from "../core/types/HiSecureConfig.js";
|
|
4
|
-
// // import { AdapterError } from "../core/errors/AdapterError.js";
|
|
5
|
-
// // import { logger } from "../logging";
|
|
6
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
7
3
|
exports.RateLimitManager = void 0;
|
|
8
4
|
const AdapterError_js_1 = require("../core/errors/AdapterError.js");
|
|
@@ -15,12 +11,10 @@ class RateLimitManager {
|
|
|
15
11
|
}
|
|
16
12
|
middleware(opts) {
|
|
17
13
|
let finalOptions = {};
|
|
18
|
-
// Handle presets (user cannot override these)
|
|
19
14
|
if (opts?.mode === "strict") {
|
|
20
15
|
finalOptions = {
|
|
21
16
|
windowMs: 10000,
|
|
22
17
|
max: 5,
|
|
23
|
-
// ❌ REMOVED: points: 5,
|
|
24
18
|
message: "Too many requests, please slow down."
|
|
25
19
|
};
|
|
26
20
|
}
|
|
@@ -28,38 +22,32 @@ class RateLimitManager {
|
|
|
28
22
|
finalOptions = {
|
|
29
23
|
windowMs: 60000,
|
|
30
24
|
max: 100,
|
|
31
|
-
// ❌ REMOVED: points: 100,
|
|
32
25
|
message: "Rate limit exceeded."
|
|
33
26
|
};
|
|
34
27
|
}
|
|
35
28
|
else if (opts?.mode === "api") {
|
|
36
29
|
finalOptions = {
|
|
37
|
-
windowMs: 15 * 60 * 1000,
|
|
30
|
+
windowMs: 15 * 60 * 1000,
|
|
38
31
|
max: 100,
|
|
39
|
-
// ❌ REMOVED: points: 100,
|
|
40
32
|
message: "API rate limit exceeded."
|
|
41
33
|
};
|
|
42
34
|
}
|
|
43
35
|
else {
|
|
44
|
-
// Use defaults
|
|
45
36
|
finalOptions = {
|
|
46
37
|
windowMs: this.config.windowMs,
|
|
47
38
|
max: this.config.maxRequests,
|
|
48
39
|
message: this.config.message,
|
|
49
|
-
standardHeaders: true,
|
|
50
|
-
legacyHeaders: false
|
|
40
|
+
standardHeaders: true,
|
|
41
|
+
legacyHeaders: false
|
|
51
42
|
};
|
|
52
43
|
}
|
|
53
|
-
// Apply custom options WITHOUT overriding preset values
|
|
54
44
|
if (opts?.options) {
|
|
55
|
-
// Only allow specific overrides, not preset overrides
|
|
56
45
|
const allowedOverrides = ['message', 'skipFailedRequests', 'standardHeaders', 'legacyHeaders'];
|
|
57
46
|
for (const key of allowedOverrides) {
|
|
58
47
|
if (opts.options[key] !== undefined) {
|
|
59
48
|
finalOptions[key] = opts.options[key];
|
|
60
49
|
}
|
|
61
50
|
}
|
|
62
|
-
// Log if user tried to override preset
|
|
63
51
|
const attemptedOverrides = Object.keys(opts.options).filter(k => !allowedOverrides.includes(k) && k !== 'mode');
|
|
64
52
|
if (attemptedOverrides.length > 0) {
|
|
65
53
|
logging_1.logger.warn("⚠ Rate limit overrides ignored", {
|
|
@@ -68,14 +56,12 @@ class RateLimitManager {
|
|
|
68
56
|
});
|
|
69
57
|
}
|
|
70
58
|
}
|
|
71
|
-
// Add v8+ options if not present
|
|
72
59
|
if (finalOptions.standardHeaders === undefined) {
|
|
73
60
|
finalOptions.standardHeaders = true;
|
|
74
61
|
}
|
|
75
62
|
if (finalOptions.legacyHeaders === undefined) {
|
|
76
63
|
finalOptions.legacyHeaders = false;
|
|
77
64
|
}
|
|
78
|
-
// Try primary adapter
|
|
79
65
|
try {
|
|
80
66
|
logging_1.logger.info("📌 Applying rate limiting", {
|
|
81
67
|
mode: opts?.mode || 'default',
|