nestjs-security-cli 1.1.1 → 1.3.0

package/README.md

@@ -10,23 +10,80 @@ npm install nestjs-security-cli
 
 ## Quick Start
 
+```typescript
+import { Module } from '@nestjs/common'; 
+import { MongooseModule } from '@nestjs/mongoose'; 
+import { SecurityModule, BlacklistedIp, BlacklistedIpSchema } from 'nestjs-security-cli';
+@Module({ imports: [ 
+        // 1. Set up MongoDB connection first MongooseModule.forRoot('mongodb://localhost:27017/myapp'),
+        // 2. Register the schema in your app
+        MongooseModule.forFeature([
+            { name: BlacklistedIp.name, schema: BlacklistedIpSchema }
+        ]),
+        // 3. Then add SecurityModule
+        SecurityModule.forRoot({
+            enableDatabase: true,
+            defaultBlockDurationHours: 24,
+            enableAutoBlocking: true,
+            enableAdminPanel: false,
+        }),
+    ],
+}) 
+export class AppModule {}
+```
+
+## with ConfigService
+```
+import { Module } from '@nestjs/common'; 
+import { ConfigModule, ConfigService } from '@nestjs/config'; 
+import { MongooseModule } from '@nestjs/mongoose'; 
+import { SecurityModule, BlacklistedIp, BlacklistedIpSchema } from 'nestjs-security-cli';
+@Module({ imports: [ ConfigModule.forRoot(),
+	// MongoDB connection
+	MongooseModule.forRootAsync({
+		imports: [ConfigModule],
+		useFactory: async (configService: ConfigService) => ({
+			uri: configService.get<string>('MONGODB_URI'),
+		}),
+		inject: [ConfigService],
+	}),
+	
+	// Register schema
+	MongooseModule.forFeature([
+		{ name: BlacklistedIp.name, schema: BlacklistedIpSchema }
+	]),
+	
+	// Security module
+	SecurityModule.forRoot({
+		enableDatabase: true,
+		defaultBlockDurationHours: 24,
+		enableAutoBlocking: true,
+	}),
+],
+}) 
+export class AppModule {}
+```
+
+## Cache-Only Mode (No Database)
+
+If you don't want to use MongoDB, you can skip the schema registration:
+
 ```typescript
 import { Module } from '@nestjs/common';
 import { SecurityModule } from 'nestjs-security-cli';
 
-@Module( {
+@Module({
 	imports: [
-		SecurityModule.forRoot( {
-			enableDatabase: true, // if set to true, and you need to provide a connection name
-			dbConnectionName: '<some-connection-name>', // put the db connection name here
+		SecurityModule.forRoot({
+			enableDatabase: false, // This will use only cache
 			defaultBlockDurationHours: 24,
 			enableAutoBlocking: true,
-		} ),
+		}),
 	],
-} )
-export class AppModule {
-}
-```
+})
+export class AppModule {}
+````
+
 
 ## Clean up cron
 
@@ -59,6 +116,21 @@ the
 
 [need to add api docs]
 
+## Configuration Options
+```aiignore
+interface SecurityConfigInterface {
+  enableDatabase?: boolean; // Default: true
+  enableAutoBlocking?: boolean; // Default: true
+  enableAdminPanel?: boolean; // Default: false
+  defaultBlockDurationHours?: number; // Default: 24
+  enableLogging?: boolean; // Default: true
+  cache?: {
+    ttl?: number;
+    max?: number;
+  };
+}
+```
+
 ## Requirements
 
 - Node.js >= 16.0.0

package/dist/index.d.ts

@@ -4,6 +4,7 @@ export { IpBlacklistGuard } from './guards/ip-blacklist.guard';
 export { RolesGuard } from './guards/roles.guard';
 export { AdminGuard } from './guards/admin.guard';
 export { Roles } from './decorators/roles.decorator';
-export { BlacklistedIp, BlacklistedIpSchema, blackListFeature } from './schemas/blacklisted-ip.schema';
+export { BlacklistedIp, BlacklistedIpSchema } from './schemas/blacklisted-ip.schema';
 export { SecurityConfigInterface } from './interfaces/security-config.interface';
 export { SecurityController } from './controllers/security.controller';
+export { SecurityMiddleware } from './middleware/security-middleware';

package/dist/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.SecurityController = exports.blackListFeature = exports.BlacklistedIpSchema = exports.BlacklistedIp = exports.Roles = exports.AdminGuard = exports.RolesGuard = exports.IpBlacklistGuard = exports.SecurityService = exports.SecurityModule = void 0;
+exports.SecurityMiddleware = exports.SecurityController = exports.BlacklistedIpSchema = exports.BlacklistedIp = exports.Roles = exports.AdminGuard = exports.RolesGuard = exports.IpBlacklistGuard = exports.SecurityService = exports.SecurityModule = void 0;
 var security_module_1 = require("./security.module");
 Object.defineProperty(exports, "SecurityModule", { enumerable: true, get: function () { return security_module_1.SecurityModule; } });
 var security_service_1 = require("./services/security.service");
@@ -16,7 +16,8 @@ Object.defineProperty(exports, "Roles", { enumerable: true, get: function () { r
 var blacklisted_ip_schema_1 = require("./schemas/blacklisted-ip.schema");
 Object.defineProperty(exports, "BlacklistedIp", { enumerable: true, get: function () { return blacklisted_ip_schema_1.BlacklistedIp; } });
 Object.defineProperty(exports, "BlacklistedIpSchema", { enumerable: true, get: function () { return blacklisted_ip_schema_1.BlacklistedIpSchema; } });
-Object.defineProperty(exports, "blackListFeature", { enumerable: true, get: function () { return blacklisted_ip_schema_1.blackListFeature; } });
 var security_controller_1 = require("./controllers/security.controller");
 Object.defineProperty(exports, "SecurityController", { enumerable: true, get: function () { return security_controller_1.SecurityController; } });
+var security_middleware_1 = require("./middleware/security-middleware");
+Object.defineProperty(exports, "SecurityMiddleware", { enumerable: true, get: function () { return security_middleware_1.SecurityMiddleware; } });
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AACA,qDAAkD;AAAzC,iHAAA,cAAc,OAAA;AAGvB,gEAA6D;AAApD,mHAAA,eAAe,OAAA;AAGxB,kEAA8D;AAArD,sHAAA,gBAAgB,OAAA;AACzB,oDAAiD;AAAxC,yGAAA,UAAU,OAAA;AACnB,oDAAiD;AAAxC,yGAAA,UAAU,OAAA;AAGnB,gEAAoD;AAA3C,wGAAA,KAAK,OAAA;AAGd,yEAAsG;AAA7F,sHAAA,aAAa,OAAA;AAAE,4HAAA,mBAAmB,OAAA;AAAE,yHAAA,gBAAgB,OAAA;AAM7D,yEAAsE;AAA7D,yHAAA,kBAAkB,OAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AACA,qDAAkD;AAAzC,iHAAA,cAAc,OAAA;AAGvB,gEAA6D;AAApD,mHAAA,eAAe,OAAA;AAGxB,kEAA8D;AAArD,sHAAA,gBAAgB,OAAA;AACzB,oDAAiD;AAAxC,yGAAA,UAAU,OAAA;AACnB,oDAAiD;AAAxC,yGAAA,UAAU,OAAA;AAGnB,gEAAoD;AAA3C,wGAAA,KAAK,OAAA;AAGd,yEAAoF;AAA3E,sHAAA,aAAa,OAAA;AAAE,4HAAA,mBAAmB,OAAA;AAM3C,yEAAsE;AAA7D,yHAAA,kBAAkB,OAAA;AAG3B,wEAAqE;AAA5D,yHAAA,kBAAkB,OAAA"}

package/dist/interfaces/security-config.interface.d.ts

@@ -22,5 +22,4 @@ export interface SecurityConfigInterface {
     };
     enableLogging?: boolean;
     logLevel?: 'error' | 'warn' | 'info' | 'debug';
-    dbConnectionName?: string;
 }

package/dist/middleware/security-middleware.d.ts

@@ -0,0 +1,10 @@
+import { NestMiddleware } from '@nestjs/common';
+import { Request, Response, NextFunction } from 'express';
+import { SecurityService } from '../services/security.service';
+export declare class SecurityMiddleware implements NestMiddleware {
+    private readonly securityService;
+    constructor(securityService: SecurityService);
+    use(req: Request, res: Response, next: NextFunction): Promise<any>;
+    private getClientIp;
+    private checkSuspiciousActivity;
+}

package/dist/middleware/security-middleware.js

@@ -0,0 +1,75 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SecurityMiddleware = void 0;
+const common_1 = require("@nestjs/common");
+const security_service_1 = require("../services/security.service");
+let SecurityMiddleware = class SecurityMiddleware {
+    constructor(securityService) {
+        this.securityService = securityService;
+    }
+    async use(req, res, next) {
+        const clientIp = this.getClientIp(req);
+        try {
+            const isBlacklisted = await this.securityService.isBlacklisted(clientIp);
+            if (isBlacklisted) {
+                return res.status(403).json({
+                    error: 'Forbidden',
+                    message: 'Access denied: IP address blocked',
+                    statusCode: 403,
+                });
+            }
+            await this.checkSuspiciousActivity(clientIp, req, res);
+            next();
+        }
+        catch (error) {
+            console.error('Security middleware error:', error);
+            next();
+        }
+    }
+    getClientIp(request) {
+        return (request.headers['x-forwarded-for']?.split(',')[0]?.trim() ||
+            request.headers['x-real-ip'] ||
+            request.connection?.remoteAddress ||
+            request.ip ||
+            'unknown');
+    }
+    async checkSuspiciousActivity(ip, req, res) {
+        const url = req.url.toLowerCase();
+        const userAgent = req.headers['user-agent']?.toLowerCase() || '';
+        const suspiciousPatterns = [
+            { pattern: '/shell', name: 'Shell Access Attempt' },
+            { pattern: '/.env', name: 'Environment File Scan' },
+            { pattern: '/admin', name: 'Admin Panel Probe' },
+            { pattern: '../../', name: 'Path Traversal' },
+        ];
+        for (const { pattern, name } of suspiciousPatterns) {
+            if (url.includes(pattern) || userAgent.includes(pattern)) {
+                await this.securityService.blacklistIp(ip, 24, `Auto-blocked: ${name}`, undefined, {
+                    userAgent,
+                    requestUrl: url,
+                    attackPattern: name
+                });
+                return res.status(403).json({
+                    error: 'Forbidden',
+                    message: `Access denied: ${name} detected`,
+                    statusCode: 403,
+                });
+            }
+        }
+    }
+};
+exports.SecurityMiddleware = SecurityMiddleware;
+exports.SecurityMiddleware = SecurityMiddleware = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [security_service_1.SecurityService])
+], SecurityMiddleware);
+//# sourceMappingURL=security-middleware.js.map

package/dist/middleware/security-middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-middleware.js","sourceRoot":"","sources":["../../src/middleware/security-middleware.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAA4D;AAE5D,mEAA+D;AAGxD,IAAM,kBAAkB,GAAxB,MAAM,kBAAkB;IAC9B,YAA6B,eAAgC;QAAhC,oBAAe,GAAf,eAAe,CAAiB;IAAG,CAAC;IAEjE,KAAK,CAAC,GAAG,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;QACxD,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;QAEvC,IAAI,CAAC;YAEJ,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC;YAEzE,IAAI,aAAa,EAAE,CAAC;gBACnB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBAC3B,KAAK,EAAE,WAAW;oBAClB,OAAO,EAAE,mCAAmC;oBAC5C,UAAU,EAAE,GAAG;iBACf,CAAC,CAAC;YACJ,CAAC;YAGD,MAAM,IAAI,CAAC,uBAAuB,CAAC,QAAQ,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;YAEvD,IAAI,EAAE,CAAC;QACR,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,OAAO,CAAC,KAAK,CAAC,4BAA4B,EAAE,KAAK,CAAC,CAAC;YACnD,IAAI,EAAE,CAAC;QACR,CAAC;IACF,CAAC;IAEO,WAAW,CAAC,OAAY;QAC/B,OAAO,CACN,OAAO,CAAC,OAAO,CAAC,iBAAiB,CAAC,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE;YACzD,OAAO,CAAC,OAAO,CAAC,WAAW,CAAC;YAC5B,OAAO,CAAC,UAAU,EAAE,aAAa;YACjC,OAAO,CAAC,EAAE;YACV,SAAS,CACT,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,uBAAuB,CAAC,EAAU,EAAE,GAAY,EAAE,GAAa;QAC5E,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC;QAClC,MAAM,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC;QAEjE,MAAM,kBAAkB,GAAG;YAC1B,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,sBAAsB,EAAE;YACnD,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,uBAAuB,EAAE;YACnD,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,mBAAmB,EAAE;YAChD,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,gBAAgB,EAAE;SAE7C,CAAC;QAEF,KAAK,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,kBAAkB,EAAE,CAAC;YACpD,IAAI,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAE1D,MAAM,IAAI,CAAC,eAAe,CAAC,WAAW,CACrC,EAAE,EACF,EAAE,EACF,iBAAiB,IAAI,EAAE,EACvB,SAAS,EACT;oBACC,SAAS;oBACT,UAAU,EAAE,GAAG;oBACf,aAAa,EAAE,IAAI;iBACnB,CACD,CAAC;gBAEF,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;oBAC3B,KAAK,EAAE,WAAW;oBAClB,OAAO,EAAE,kBAAkB,IAAI,WAAW;oBAC1C,UAAU,EAAE,GAAG;iBACf,CAAC,CAAC;YACJ,CAAC;QACF,CAAC;IACF,CAAC;CACD,CAAA;AAzEY,gDAAkB;6BAAlB,kBAAkB;IAD9B,IAAA,mBAAU,GAAE;qCAEkC,kCAAe;GADjD,kBAAkB,CAyE9B"}

package/dist/schemas/blacklisted-ip.schema.d.ts

@@ -21,4 +21,3 @@ export declare const BlacklistedIpSchema: import("mongoose").Schema<BlacklistedI
 }> & {
     __v: number;
 }>;
-export declare const blackListFeature: (dbConnectionName?: string) => import("@nestjs/common").DynamicModule;

package/dist/schemas/blacklisted-ip.schema.js

@@ -9,7 +9,7 @@ var __metadata = (this && this.__metadata) || function (k, v) {
     if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.blackListFeature = exports.BlacklistedIpSchema = exports.BlacklistedIp = void 0;
+exports.BlacklistedIpSchema = exports.BlacklistedIp = void 0;
 const mongoose_1 = require("@nestjs/mongoose");
 const mongoose_2 = require("mongoose");
 let BlacklistedIp = class BlacklistedIp extends mongoose_2.Document {
@@ -66,8 +66,4 @@ exports.BlacklistedIpSchema = mongoose_1.SchemaFactory.createForClass(Blackliste
 exports.BlacklistedIpSchema.index({ expiresAt: 1 });
 exports.BlacklistedIpSchema.index({ active: 1, expiresAt: 1 });
 exports.BlacklistedIpSchema.index({ createdAt: -1 });
-const blackListFeature = (dbConnectionName = '') => mongoose_1.MongooseModule.forFeature([
-    { name: BlacklistedIp.name, schema: exports.BlacklistedIpSchema }
-], dbConnectionName);
-exports.blackListFeature = blackListFeature;
 //# sourceMappingURL=blacklisted-ip.schema.js.map

package/dist/schemas/blacklisted-ip.schema.js.map

@@ -1 +1 @@
-{"version":3,"file":"blacklisted-ip.schema.js","sourceRoot":"","sources":["../../src/schemas/blacklisted-ip.schema.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,+CAA8E;AAC9E,uCAAmC;AAG5B,IAAM,aAAa,GAAnB,MAAM,aAAc,SAAQ,mBAAQ;CAiC1C,CAAA;AAjCY,sCAAa;AAEzB;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAE;;yCAC/B;AAGV;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;;6CACb;AAGd;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;8BAChB,IAAI;gDAAA;AAGf;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;8BAChB,IAAI;gDAAA;AAGf;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;;oDACN;AAGrB;IADC,IAAA,eAAI,GAAE;;gDACU;AAGjB;IADC,IAAA,eAAI,GAAE;;gDACW;AAGlB;IADC,IAAA,eAAI,GAAE;;iDACY;AAGnB;IADC,IAAA,eAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,CAAE;;6CACX;AAGf;IADC,IAAA,eAAI,EAAE,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAE;;gDACF;AAG5B;IADC,IAAA,eAAI,GAAE;;oDACe;wBAhCV,aAAa;IADzB,IAAA,iBAAM,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,CAAE;GAClB,aAAa,CAiCzB;AAEY,QAAA,mBAAmB,GAAG,wBAAa,CAAC,cAAc,CAAE,aAAa,CAAE,CAAA;AAIhF,2BAAmB,CAAC,KAAK,CAAE,EAAE,SAAS,EAAE,CAAC,EAAE,CAAE,CAAA;AAC7C,2BAAmB,CAAC,KAAK,CAAE,EAAE,MAAM,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAE,CAAA;AACxD,2BAAmB,CAAC,KAAK,CAAE,EAAE,SAAS,EAAE,CAAC,CAAC,EAAE,CAAE,CAAA;AAEvC,MAAM,gBAAgB,GAAG,CAAC,mBAA2B,EAAE,EAAE,EAAE,CAAC,yBAAc,CAAC,UAAU,CAAE;IAC7F,EAAE,IAAI,EAAE,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,2BAAmB,EAAE;CACzD,EAAE,gBAAgB,CAAE,CAAA;AAFR,QAAA,gBAAgB,oBAER"}
+{"version":3,"file":"blacklisted-ip.schema.js","sourceRoot":"","sources":["../../src/schemas/blacklisted-ip.schema.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,+CAA8D;AAC9D,uCAAmC;AAG5B,IAAM,aAAa,GAAnB,MAAM,aAAc,SAAQ,mBAAQ;CAiC1C,CAAA;AAjCY,sCAAa;AAEzB;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAE;;yCAC/B;AAGV;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;;6CACb;AAGd;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;8BAChB,IAAI;gDAAA;AAGf;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;8BAChB,IAAI;gDAAA;AAGf;IADC,IAAA,eAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAE;;oDACN;AAGrB;IADC,IAAA,eAAI,GAAE;;gDACU;AAGjB;IADC,IAAA,eAAI,GAAE;;gDACW;AAGlB;IADC,IAAA,eAAI,GAAE;;iDACY;AAGnB;IADC,IAAA,eAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,CAAE;;6CACX;AAGf;IADC,IAAA,eAAI,EAAE,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAE;;gDACF;AAG5B;IADC,IAAA,eAAI,GAAE;;oDACe;wBAhCV,aAAa;IADzB,IAAA,iBAAM,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,CAAE;GAClB,aAAa,CAiCzB;AAEY,QAAA,mBAAmB,GAAG,wBAAa,CAAC,cAAc,CAAE,aAAa,CAAE,CAAA;AAIhF,2BAAmB,CAAC,KAAK,CAAE,EAAE,SAAS,EAAE,CAAC,EAAE,CAAE,CAAA;AAC7C,2BAAmB,CAAC,KAAK,CAAE,EAAE,MAAM,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAE,CAAA;AACxD,2BAAmB,CAAC,KAAK,CAAE,EAAE,SAAS,EAAE,CAAC,CAAC,EAAE,CAAE,CAAA"}

package/dist/security.module.d.ts

@@ -1,7 +1,7 @@
 import { DynamicModule } from '@nestjs/common';
 import { SecurityConfigInterface } from './interfaces/security-config.interface';
 export declare class SecurityModule {
-    static forRoot(config: SecurityConfigInterface): DynamicModule;
+    static forRoot(config?: SecurityConfigInterface): DynamicModule;
     static forRootAsync(options: {
         useFactory: (...args: any[]) => Promise<SecurityConfigInterface> | SecurityConfigInterface;
         inject?: any[];

package/dist/security.module.js

@@ -19,7 +19,7 @@ const admin_guard_1 = require("./guards/admin.guard");
 const roles_guard_1 = require("./guards/roles.guard");
 const blacklisted_ip_schema_1 = require("./schemas/blacklisted-ip.schema");
 let SecurityModule = SecurityModule_1 = class SecurityModule {
-    static forRoot(config) {
+    static forRoot(config = {}) {
         const imports = [
             schedule_1.ScheduleModule.forRoot()
         ];
@@ -29,9 +29,6 @@ let SecurityModule = SecurityModule_1 = class SecurityModule {
         else {
             imports.push(cache_manager_1.CacheModule.register());
         }
-        if (config.enableDatabase !== false) {
-            imports.push((0, blacklisted_ip_schema_1.blackListFeature)(config.dbConnectionName));
-        }
         return {
             module: SecurityModule_1,
             imports,
@@ -43,15 +40,15 @@ let SecurityModule = SecurityModule_1 = class SecurityModule {
                 roles_guard_1.RolesGuard,
                 {
                     provide: 'SECURITY_CONFIG',
-                    useValue: config
-                }
+                    useValue: config,
+                },
             ],
             exports: [
                 security_service_1.SecurityService,
                 ip_blacklist_guard_1.IpBlacklistGuard,
                 admin_guard_1.AdminGuard,
-                roles_guard_1.RolesGuard
-            ]
+                roles_guard_1.RolesGuard,
+            ],
         };
     }
     static forRootAsync(options) {

package/dist/security.module.js.map

@@ -1 +1 @@
-{"version":3,"file":"security.module.js","sourceRoot":"","sources":["../src/security.module.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,2CAAsD;AACtD,yDAAmD;AACnD,+CAAiD;AACjD,+CAAiD;AACjD,kEAA6D;AAC7D,2EAAsE;AACtE,oEAA8D;AAC9D,sDAAiD;AACjD,sDAAiD;AACjD,2EAAsG;AAI/F,IAAM,cAAc,sBAApB,MAAM,cAAc;IAC1B,MAAM,CAAC,OAAO,CAAC,MAA+B;QAC7C,MAAM,OAAO,GAAG;YACf,yBAAc,CAAC,OAAO,EAAE;SACxB,CAAA;QAGD,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YAClB,OAAO,CAAC,IAAI,CAAE,2BAAW,CAAC,QAAQ,CAAE,MAAM,CAAC,KAAK,CAAE,CAAE,CAAA;QACrD,CAAC;aAAM,CAAC;YACP,OAAO,CAAC,IAAI,CAAE,2BAAW,CAAC,QAAQ,EAAE,CAAE,CAAA;QACvC,CAAC;QAGD,IAAI,MAAM,CAAC,cAAc,KAAK,KAAK,EAAE,CAAC;YACrC,OAAO,CAAC,IAAI,CAAE,IAAA,wCAAgB,EAAE,MAAM,CAAC,gBAAgB,CAAE,CAAE,CAAA;QAC5D,CAAC;QAED,OAAO;YACN,MAAM,EAAE,gBAAc;YACtB,OAAO;YACP,WAAW,EAAE,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAE,wCAAkB,CAAE,CAAC,CAAC,CAAC,EAAE;YAClE,SAAS,EAAE;gBACV,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;gBACV;oBACC,OAAO,EAAE,iBAAiB;oBAC1B,QAAQ,EAAE,MAAM;iBAChB;aACD;YACD,OAAO,EAAE;gBACR,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;aACV;SACD,CAAA;IACF,CAAC;IAED,MAAM,CAAC,YAAY,CAAC,OAGnB;QACA,OAAO;YACN,MAAM,EAAE,gBAAc;YACtB,OAAO,EAAE;gBACR,yBAAc,CAAC,OAAO,EAAE;gBACxB,2BAAW,CAAC,QAAQ,EAAE;gBACtB,yBAAc,CAAC,UAAU,CAAE;oBAC1B,EAAE,IAAI,EAAE,qCAAa,CAAC,IAAI,EAAE,MAAM,EAAE,2CAAmB,EAAE;iBACzD,CAAE;aACH;YACD,WAAW,EAAE,CAAE,wCAAkB,CAAE;YACnC,SAAS,EAAE;gBACV;oBACC,OAAO,EAAE,iBAAiB;oBAC1B,UAAU,EAAE,OAAO,CAAC,UAAU;oBAC9B,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,EAAE;iBAC5B;gBACD,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;aACV;YACD,OAAO,EAAE;gBACR,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;aACV;SACD,CAAA;IACF,CAAC;CACD,CAAA;AA1EY,wCAAc;yBAAd,cAAc;IAD1B,IAAA,eAAM,EAAE,EAAE,CAAE;GACA,cAAc,CA0E1B"}
+{"version":3,"file":"security.module.js","sourceRoot":"","sources":["../src/security.module.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,2CAAsD;AACtD,yDAAmD;AACnD,+CAAiD;AACjD,+CAAiD;AACjD,kEAA6D;AAC7D,2EAAsE;AACtE,oEAA8D;AAC9D,sDAAiD;AACjD,sDAAiD;AACjD,2EAAoF;AAI7E,IAAM,cAAc,sBAApB,MAAM,cAAc;IAC1B,MAAM,CAAC,OAAO,CAAC,SAAkC,EAAE;QAClD,MAAM,OAAO,GAAG;YACf,yBAAc,CAAC,OAAO,EAAE;SACxB,CAAC;QAGF,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YAClB,OAAO,CAAC,IAAI,CAAC,2BAAW,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;QAClD,CAAC;aAAM,CAAC;YACP,OAAO,CAAC,IAAI,CAAC,2BAAW,CAAC,QAAQ,EAAE,CAAC,CAAC;QACtC,CAAC;QAKD,OAAO;YACN,MAAM,EAAE,gBAAc;YACtB,OAAO;YACP,WAAW,EAAE,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,wCAAkB,CAAC,CAAC,CAAC,CAAC,EAAE;YAChE,SAAS,EAAE;gBACV,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;gBACV;oBACC,OAAO,EAAE,iBAAiB;oBAC1B,QAAQ,EAAE,MAAM;iBAChB;aACD;YACD,OAAO,EAAE;gBACR,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;aACV;SACD,CAAC;IACH,CAAC;IAED,MAAM,CAAC,YAAY,CAAC,OAGnB;QACA,OAAO;YACN,MAAM,EAAE,gBAAc;YACtB,OAAO,EAAE;gBACR,yBAAc,CAAC,OAAO,EAAE;gBACxB,2BAAW,CAAC,QAAQ,EAAE;gBACtB,yBAAc,CAAC,UAAU,CAAE;oBAC1B,EAAE,IAAI,EAAE,qCAAa,CAAC,IAAI,EAAE,MAAM,EAAE,2CAAmB,EAAE;iBACzD,CAAE;aACH;YACD,WAAW,EAAE,CAAE,wCAAkB,CAAE;YACnC,SAAS,EAAE;gBACV;oBACC,OAAO,EAAE,iBAAiB;oBAC1B,UAAU,EAAE,OAAO,CAAC,UAAU;oBAC9B,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,EAAE;iBAC5B;gBACD,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;aACV;YACD,OAAO,EAAE;gBACR,kCAAe;gBACf,qCAAgB;gBAChB,wBAAU;gBACV,wBAAU;aACV;SACD,CAAA;IACF,CAAC;CACD,CAAA;AAxEY,wCAAc;yBAAd,cAAc;IAD1B,IAAA,eAAM,EAAE,EAAE,CAAE;GACA,cAAc,CAwE1B"}

package/dist/services/security.service.d.ts

@@ -1,17 +1,20 @@
 import { Model } from 'mongoose';
 import type { Cache } from 'cache-manager';
 import { BlacklistedIp } from '../schemas/blacklisted-ip.schema';
+import { SecurityConfigInterface } from '../interfaces/security-config.interface';
 export declare class SecurityService {
     private readonly cache;
-    private readonly blacklistedIpModel;
-    constructor(cache: Cache, blacklistedIpModel: Model<BlacklistedIp>);
+    private readonly blacklistedIpModel?;
+    private readonly config?;
+    constructor(cache: Cache, blacklistedIpModel?: Model<BlacklistedIp>, config?: SecurityConfigInterface);
     blacklistIp(ip: string, durationHours?: number, reason?: string, blockedBy?: string, attackDetails?: {
         userAgent?: string;
         requestUrl?: string;
         attackPattern?: string;
     }): Promise<void>;
-    removeFromBlacklist(ip: string): Promise<void>;
     isBlacklisted(ip: string): Promise<boolean>;
+    cleanupExpiredBlocks(): Promise<void>;
+    removeFromBlacklist(ip: string): Promise<void>;
     getBlacklistedIps(options?: {
         active?: boolean;
         limit?: number;
@@ -20,5 +23,4 @@ export declare class SecurityService {
         sortOrder?: 'asc' | 'desc';
     }): Promise<any[]>;
     getSecurityAnalytics(days?: number): Promise<any>;
-    cleanupExpiredBlocks(): Promise<void>;
 }

package/dist/services/security.service.js

@@ -20,51 +20,70 @@ const cache_manager_1 = require("@nestjs/cache-manager");
 const blacklisted_ip_schema_1 = require("../schemas/blacklisted-ip.schema");
 const schedule_1 = require("@nestjs/schedule");
 let SecurityService = class SecurityService {
-    constructor(cache, blacklistedIpModel) {
+    constructor(cache, blacklistedIpModel, config) {
         this.cache = cache;
         this.blacklistedIpModel = blacklistedIpModel;
+        this.config = config;
     }
-    async blacklistIp(ip, durationHours = 24, reason, blockedBy, attackDetails) {
+    async blacklistIp(ip, durationHours = this.config?.defaultBlockDurationHours || 24, reason, blockedBy, attackDetails) {
         const now = new Date();
         const expiresAt = new Date(now.getTime() + durationHours * 60 * 60 * 1000);
-        await this.blacklistedIpModel.findOneAndUpdate({ ip }, {
-            ip,
-            reason: reason || 'Manual block',
-            blockedAt: now,
-            expiresAt,
-            durationHours,
-            blockedBy,
-            userAgent: attackDetails?.userAgent,
-            requestUrl: attackDetails?.requestUrl,
-            attackPattern: attackDetails?.attackPattern,
-            active: true,
-            blockType: blockedBy ? 'manual' : 'auto'
-        }, { upsert: true, new: true });
+        if (this.blacklistedIpModel && this.config?.enableDatabase !== false) {
+            await this.blacklistedIpModel.findOneAndUpdate({ ip }, {
+                ip,
+                reason: reason || 'Manual block',
+                blockedAt: now,
+                expiresAt,
+                durationHours,
+                blockedBy,
+                userAgent: attackDetails?.userAgent,
+                requestUrl: attackDetails?.requestUrl,
+                attackPattern: attackDetails?.attackPattern,
+                active: true,
+                blockType: blockedBy ? 'manual' : 'auto'
+            }, { upsert: true, new: true });
+        }
         await this.cache.set(`blacklist:${ip}`, true, durationHours * 60 * 60 * 1000);
-        console.log(`🚫 IP ${ip} blacklisted. Reason: ${reason}`);
-    }
-    async removeFromBlacklist(ip) {
-        await this.blacklistedIpModel.updateOne({ ip }, { active: false });
-        await this.cache.del(`blacklist:${ip}`);
-        console.log(`✅ IP ${ip} removed from blacklist`);
+        if (this.config?.enableLogging !== false) {
+            console.log(`🚫 IP ${ip} blacklisted. Reason: ${reason}`);
+        }
     }
     async isBlacklisted(ip) {
         const cached = await this.cache.get(`blacklist:${ip}`);
         if (cached)
             return true;
-        const dbRecord = await this.blacklistedIpModel.findOne({
-            ip,
-            active: true,
-            expiresAt: { $gt: new Date() }
-        });
-        if (dbRecord) {
-            const ttl = Math.max(0, dbRecord.expiresAt.getTime() - Date.now());
-            await this.cache.set(`blacklist:${ip}`, true, ttl);
-            return true;
+        if (this.blacklistedIpModel && this.config?.enableDatabase !== false) {
+            const dbRecord = await this.blacklistedIpModel.findOne({
+                ip,
+                active: true,
+                expiresAt: { $gt: new Date() }
+            });
+            if (dbRecord) {
+                const ttl = Math.max(0, dbRecord.expiresAt.getTime() - Date.now());
+                await this.cache.set(`blacklist:${ip}`, true, ttl);
+                return true;
+            }
         }
         return false;
     }
+    async cleanupExpiredBlocks() {
+        if (this.blacklistedIpModel && this.config?.enableDatabase !== false) {
+            const result = await this.blacklistedIpModel.updateMany({ active: true, expiresAt: { $lt: new Date() } }, { active: false });
+            if (this.config?.enableLogging !== false) {
+                console.log(`🧹 Cleaned up ${result.modifiedCount} expired IP blocks`);
+            }
+        }
+    }
+    async removeFromBlacklist(ip) {
+        if (this.blacklistedIpModel && this.config?.enableDatabase === false)
+            return;
+        await this.blacklistedIpModel.updateOne({ ip }, { active: false });
+        await this.cache.del(`blacklist:${ip}`);
+        console.log(`✅ IP ${ip} removed from blacklist`);
+    }
     async getBlacklistedIps(options = {}) {
+        if (this.blacklistedIpModel && this.config?.enableDatabase === false)
+            return;
         const { active = true, limit = 50, skip = 0, sortBy = 'createdAt', sortOrder = 'desc' } = options;
         const query = {};
         if (active) {
@@ -76,6 +95,8 @@ let SecurityService = class SecurityService {
         return await this.blacklistedIpModel.find(query).sort(sort).limit(limit).skip(skip).lean().exec();
     }
     async getSecurityAnalytics(days = 7) {
+        if (this.blacklistedIpModel && this.config?.enableDatabase === false)
+            return;
         const since = new Date(Date.now() - days * 24 * 60 * 60 * 1000);
         const [totalBlocks, autoBlocks, topReasons, topAttackPatterns] = await Promise.all([
             this.blacklistedIpModel.countDocuments({ createdAt: { $gte: since } }),
@@ -105,10 +126,6 @@ let SecurityService = class SecurityService {
             topAttackPatterns
         };
     }
-    async cleanupExpiredBlocks() {
-        const result = await this.blacklistedIpModel.updateMany({ active: true, expiresAt: { $lt: new Date() } }, { active: false });
-        console.log(`🧹 Cleaned up ${result.modifiedCount} expired IP blocks`);
-    }
 };
 exports.SecurityService = SecurityService;
 __decorate([
@@ -120,7 +137,10 @@ __decorate([
 exports.SecurityService = SecurityService = __decorate([
     (0, common_1.Injectable)(),
     __param(0, (0, common_1.Inject)(cache_manager_1.CACHE_MANAGER)),
+    __param(1, (0, common_1.Optional)()),
     __param(1, (0, mongoose_1.InjectModel)(blacklisted_ip_schema_1.BlacklistedIp.name)),
-    __metadata("design:paramtypes", [Object, mongoose_2.Model])
+    __param(2, (0, common_1.Optional)()),
+    __param(2, (0, common_1.Inject)('SECURITY_CONFIG')),
+    __metadata("design:paramtypes", [Object, mongoose_2.Model, Object])
 ], SecurityService);
 //# sourceMappingURL=security.service.js.map

package/dist/services/security.service.js.map

@@ -1 +1 @@
-{"version":3,"file":"security.service.js","sourceRoot":"","sources":["../../src/services/security.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAAmD;AACnD,+CAA8C;AAC9C,uCAAgC;AAChC,yDAAqD;AAErD,4EAAgE;AAChE,+CAAuD;AAGhD,IAAM,eAAe,GAArB,MAAM,eAAe;IAC3B,YACyC,KAAY,EACF,kBAAwC;QADlD,UAAK,GAAL,KAAK,CAAO;QACF,uBAAkB,GAAlB,kBAAkB,CAAsB;IACxF,CAAC;IAEJ,KAAK,CAAC,WAAW,CAChB,EAAU,EACV,gBAAwB,EAAE,EAC1B,MAAe,EACf,SAAkB,EAClB,aAAmF;QAEnF,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAA;QACtB,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAA;QAC1E,MAAM,IAAI,CAAC,kBAAkB,CAAC,gBAAgB,CAC7C,EAAE,EAAE,EAAE,EACN;YACC,EAAE;YACF,MAAM,EAAE,MAAM,IAAI,cAAc;YAChC,SAAS,EAAE,GAAG;YACd,SAAS;YACT,aAAa;YACb,SAAS;YACT,SAAS,EAAE,aAAa,EAAE,SAAS;YACnC,UAAU,EAAE,aAAa,EAAE,UAAU;YACrC,aAAa,EAAE,aAAa,EAAE,aAAa;YAC3C,MAAM,EAAE,IAAI;YACZ,SAAS,EAAE,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM;SACxC,EACD,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,EAAE,IAAI,EAAE,CAC3B,CAAA;QACD,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,EAAE,EAAE,EAAE,IAAI,EAAE,aAAa,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAA;QAC7E,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,yBAAyB,MAAM,EAAE,CAAC,CAAA;IAC1D,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,EAAU;QACnC,MAAM,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAA;QAClE,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,EAAE,EAAE,CAAC,CAAA;QACvC,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,yBAAyB,CAAC,CAAA;IACjD,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,EAAU;QAC7B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,EAAE,EAAE,CAAC,CAAA;QACtD,IAAI,MAAM;YAAE,OAAO,IAAI,CAAA;QACvB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAC;YACtD,EAAE;YACF,MAAM,EAAE,IAAI;YACZ,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE;SAC9B,CAAC,CAAA;QACF,IAAI,QAAQ,EAAE,CAAC;YACd,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,QAAQ,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,CAAA;YAClE,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,aAAa,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,CAAA;YAClD,OAAO,IAAI,CAAA;QACZ,CAAC;QACD,OAAO,KAAK,CAAA;IACb,CAAC;IAED,KAAK,CAAC,iBAAiB,CACtB,UAMI,EAAE;QAEN,MAAM,EAAE,MAAM,GAAG,IAAI,EAAE,KAAK,GAAG,EAAE,EAAE,IAAI,GAAG,CAAC,EAAE,MAAM,GAAG,WAAW,EAAE,SAAS,GAAG,MAAM,EAAE,GAAG,OAAO,CAAA;QACjG,MAAM,KAAK,GAAQ,EAAE,CAAA;QACrB,IAAI,MAAM,EAAE,CAAC;YACZ,KAAK,CAAC,MAAM,GAAG,IAAI,CAAA;YACnB,KAAK,CAAC,SAAS,GAAG,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE,CAAA;QACtC,CAAC;QACD,MAAM,IAAI,GAAQ,EAAE,CAAA;QACpB,IAAI,CAAC,MAAM,CAAC,GAAG,SAAS,KAAK,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;QAC5C,OAAO,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAA;IAClG,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,OAAe,CAAC;QAC1C,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAA;QAC/D,MAAM,CAAC,WAAW,EAAE,UAAU,EAAE,UAAU,EAAE,iBAAiB,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YAClF,IAAI,CAAC,kBAAkB,CAAC,cAAc,CAAC,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YACtE,IAAI,CAAC,kBAAkB,CAAC,cAAc,CAAC;gBACtC,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE;gBAC1B,SAAS,EAAE,MAAM;aACjB,CAAC;YACF,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAC;gBACjC,EAAE,MAAM,EAAE,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,EAAE;gBAC1C,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,EAAE;gBAClD,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE;gBACxB,EAAE,MAAM,EAAE,EAAE,EAAE;aACd,CAAC;YACF,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAC;gBACjC,EAAE,MAAM,EAAE,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,aAAa,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE;gBAC5E,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,gBAAgB,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,EAAE;gBACzD,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE;gBACxB,EAAE,MAAM,EAAE,EAAE,EAAE;aACd,CAAC;SACF,CAAC,CAAA;QACF,OAAO;YACN,MAAM,EAAE,GAAG,IAAI,OAAO;YACtB,WAAW;YACX,UAAU;YACV,YAAY,EAAE,WAAW,GAAG,UAAU;YACtC,UAAU;YACV,iBAAiB;SACjB,CAAA;IACF,CAAC;IAIK,AAAN,KAAK,CAAC,oBAAoB;QACzB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,UAAU,CACtD,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE,EAAE,EAChD,EAAE,MAAM,EAAE,KAAK,EAAE,CACjB,CAAA;QACD,OAAO,CAAC,GAAG,CAAC,iBAAiB,MAAM,CAAC,aAAa,oBAAoB,CAAC,CAAA;IACvE,CAAC;CACD,CAAA;AAtHY,0CAAe;AA+GrB;IADL,IAAA,eAAI,EAAC,yBAAc,CAAC,qBAAqB,CAAC;;;;2DAO1C;0BArHW,eAAe;IAD3B,IAAA,mBAAU,GAAE;IAGV,WAAA,IAAA,eAAM,EAAC,6BAAa,CAAC,CAAA;IACrB,WAAA,IAAA,sBAAW,EAAC,qCAAa,CAAC,IAAI,CAAC,CAAA;6CAAsC,gBAAK;GAHhE,eAAe,CAsH3B"}
+{"version":3,"file":"security.service.js","sourceRoot":"","sources":["../../src/services/security.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAA6D;AAC7D,+CAA8C;AAC9C,uCAAgC;AAChC,yDAAqD;AAErD,4EAAgE;AAChE,+CAAuD;AAIhD,IAAM,eAAe,GAArB,MAAM,eAAe;IAC3B,YAC2C,KAAY,EACU,kBAAyC,EAC/C,MAAgC;QAFhD,UAAK,GAAL,KAAK,CAAO;QACU,uBAAkB,GAAlB,kBAAkB,CAAuB;QAC/C,WAAM,GAAN,MAAM,CAA0B;IAE3F,CAAC;IAED,KAAK,CAAC,WAAW,CAChB,EAAU,EACV,gBAAwB,IAAI,CAAC,MAAM,EAAE,yBAAyB,IAAI,EAAE,EACpE,MAAe,EACf,SAAkB,EAClB,aAAmF;QAEnF,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAA;QACtB,MAAM,SAAS,GAAG,IAAI,IAAI,CAAE,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAE,CAAA;QAG5E,IAAI,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAC,MAAM,EAAE,cAAc,KAAK,KAAK,EAAE,CAAC;YACtE,MAAM,IAAI,CAAC,kBAAkB,CAAC,gBAAgB,CAC7C,EAAE,EAAE,EAAE,EACN;gBACC,EAAE;gBACF,MAAM,EAAE,MAAM,IAAI,cAAc;gBAChC,SAAS,EAAE,GAAG;gBACd,SAAS;gBACT,aAAa;gBACb,SAAS;gBACT,SAAS,EAAE,aAAa,EAAE,SAAS;gBACnC,UAAU,EAAE,aAAa,EAAE,UAAU;gBACrC,aAAa,EAAE,aAAa,EAAE,aAAa;gBAC3C,MAAM,EAAE,IAAI;gBACZ,SAAS,EAAE,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM;aACxC,EACD,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,EAAE,IAAI,EAAE,CAC3B,CAAA;QACF,CAAC;QAED,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAE,aAAc,EAAG,EAAE,EAAE,IAAI,EAAE,aAAa,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAE,CAAA;QACjF,IAAI,IAAI,CAAC,MAAM,EAAE,aAAa,KAAK,KAAK,EAAE,CAAC;YAC1C,OAAO,CAAC,GAAG,CAAE,SAAU,EAAG,yBAA0B,MAAO,EAAE,CAAE,CAAA;QAChE,CAAC;IACF,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,EAAU;QAC7B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAE,aAAc,EAAG,EAAE,CAAE,CAAA;QAC1D,IAAI,MAAM;YAAE,OAAO,IAAI,CAAA;QAGvB,IAAI,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAC,MAAM,EAAE,cAAc,KAAK,KAAK,EAAE,CAAC;YACtE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAE;gBACvD,EAAE;gBACF,MAAM,EAAE,IAAI;gBACZ,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE;aAC9B,CAAE,CAAA;YACH,IAAI,QAAQ,EAAE,CAAC;gBACd,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAE,CAAC,EAAE,QAAQ,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAE,CAAA;gBACpE,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAE,aAAc,EAAG,EAAE,EAAE,IAAI,EAAE,GAAG,CAAE,CAAA;gBACtD,OAAO,IAAI,CAAA;YACZ,CAAC;QACF,CAAC;QAED,OAAO,KAAK,CAAA;IACb,CAAC;IAKK,AAAN,KAAK,CAAC,oBAAoB;QACzB,IAAI,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAC,MAAM,EAAE,cAAc,KAAK,KAAK,EAAE,CAAC;YACtE,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,UAAU,CACtD,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE,EAAE,EAChD,EAAE,MAAM,EAAE,KAAK,EAAE,CACjB,CAAA;YACD,IAAI,IAAI,CAAC,MAAM,EAAE,aAAa,KAAK,KAAK,EAAE,CAAC;gBAC1C,OAAO,CAAC,GAAG,CAAE,iBAAkB,MAAM,CAAC,aAAc,oBAAoB,CAAE,CAAA;YAC3E,CAAC;QACF,CAAC;IACF,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,EAAU;QACnC,IAAI,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAC,MAAM,EAAE,cAAc,KAAK,KAAK;YAAE,OAAM;QAC5E,MAAM,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAE,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,CAAE,CAAA;QACpE,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAE,aAAc,EAAG,EAAE,CAAE,CAAA;QAC3C,OAAO,CAAC,GAAG,CAAE,QAAS,EAAG,yBAAyB,CAAE,CAAA;IACrD,CAAC;IAED,KAAK,CAAC,iBAAiB,CACtB,UAMI,EAAE;QAEN,IAAI,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAC,MAAM,EAAE,cAAc,KAAK,KAAK;YAAE,OAAM;QAC5E,MAAM,EAAE,MAAM,GAAG,IAAI,EAAE,KAAK,GAAG,EAAE,EAAE,IAAI,GAAG,CAAC,EAAE,MAAM,GAAG,WAAW,EAAE,SAAS,GAAG,MAAM,EAAE,GAAG,OAAO,CAAA;QACjG,MAAM,KAAK,GAAQ,EAAE,CAAA;QACrB,IAAI,MAAM,EAAE,CAAC;YACZ,KAAK,CAAC,MAAM,GAAG,IAAI,CAAA;YACnB,KAAK,CAAC,SAAS,GAAG,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE,CAAA;QACtC,CAAC;QACD,MAAM,IAAI,GAAQ,EAAE,CAAA;QACpB,IAAI,CAAC,MAAM,CAAC,GAAG,SAAS,KAAK,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;QAC5C,OAAO,MAAM,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAE,KAAK,CAAE,CAAC,IAAI,CAAE,IAAI,CAAE,CAAC,KAAK,CAAE,KAAK,CAAE,CAAC,IAAI,CAAE,IAAI,CAAE,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAA;IAC1G,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,OAAe,CAAC;QAC1C,IAAI,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAC,MAAM,EAAE,cAAc,KAAK,KAAK;YAAE,OAAM;QAC5E,MAAM,KAAK,GAAG,IAAI,IAAI,CAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAE,CAAA;QACjE,MAAM,CAAE,WAAW,EAAE,UAAU,EAAE,UAAU,EAAE,iBAAiB,CAAE,GAAG,MAAM,OAAO,CAAC,GAAG,CAAE;YACrF,IAAI,CAAC,kBAAkB,CAAC,cAAc,CAAE,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,CAAE;YACxE,IAAI,CAAC,kBAAkB,CAAC,cAAc,CAAE;gBACvC,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE;gBAC1B,SAAS,EAAE,MAAM;aACjB,CAAE;YACH,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAE;gBAClC,EAAE,MAAM,EAAE,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,EAAE;gBAC1C,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,EAAE;gBAClD,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE;gBACxB,EAAE,MAAM,EAAE,EAAE,EAAE;aACd,CAAE;YACH,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAE;gBAClC,EAAE,MAAM,EAAE,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,aAAa,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE;gBAC5E,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,gBAAgB,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,EAAE;gBACzD,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC,EAAE,EAAE;gBACxB,EAAE,MAAM,EAAE,EAAE,EAAE;aACd,CAAE;SACH,CAAE,CAAA;QACH,OAAO;YACN,MAAM,EAAE,GAAI,IAAK,OAAO;YACxB,WAAW;YACX,UAAU;YACV,YAAY,EAAE,WAAW,GAAG,UAAU;YACtC,UAAU;YACV,iBAAiB;SACjB,CAAA;IACF,CAAC;CACD,CAAA;AA5IY,0CAAe;AAqErB;IADL,IAAA,eAAI,EAAE,yBAAc,CAAC,qBAAqB,CAAE;;;;2DAW5C;0BA/EW,eAAe;IAD3B,IAAA,mBAAU,GAAE;IAGV,WAAA,IAAA,eAAM,EAAE,6BAAa,CAAE,CAAA;IACvB,WAAA,IAAA,iBAAQ,GAAE,CAAA;IAAE,WAAA,IAAA,sBAAW,EAAE,qCAAa,CAAC,IAAI,CAAE,CAAA;IAC7C,WAAA,IAAA,iBAAQ,GAAE,CAAA;IAAE,WAAA,IAAA,eAAM,EAAE,iBAAiB,CAAE,CAAA;6CAD6C,gBAAK;GAH/E,eAAe,CA4I3B"}