node-opcua-server-configuration 2.97.0 → 2.98.0

package/dist/server/trust_list_server.js

@@ -1,90 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.writeTrustList = exports.buildTrustList = exports.TrustListMasks = void 0;
-const fs = require("fs");
-const path = require("path");
-const node_opcua_types_1 = require("node-opcua-types");
-const node_opcua_binary_stream_1 = require("node-opcua-binary-stream");
-const node_opcua_crypto_1 = require("node-opcua-crypto");
-function readAll(folder) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const results = [];
-        const files = yield fs.promises.readdir(folder);
-        for (const f of files) {
-            const file = path.join(folder, f);
-            const ext = path.extname(file);
-            if (ext === ".der" || ext === ".pem") {
-                const buf = yield (0, node_opcua_crypto_1.readCertificate)(file);
-                results.push(buf);
-            }
-            else if (ext === ".crl") {
-                const buf = yield (0, node_opcua_crypto_1.readCertificateRevocationList)(file);
-                results.push(buf);
-            }
-            else {
-                console.log(" unknown extesnion on file ", f);
-            }
-        }
-        return results;
-    });
-}
-var TrustListMasks;
-(function (TrustListMasks) {
-    TrustListMasks[TrustListMasks["None"] = 0] = "None";
-    TrustListMasks[TrustListMasks["TrustedCertificates"] = 1] = "TrustedCertificates";
-    TrustListMasks[TrustListMasks["TrustedCrls"] = 2] = "TrustedCrls";
-    TrustListMasks[TrustListMasks["IssuerCertificates"] = 4] = "IssuerCertificates";
-    TrustListMasks[TrustListMasks["IssuerCrls"] = 8] = "IssuerCrls";
-    TrustListMasks[TrustListMasks["All"] = 15] = "All";
-})(TrustListMasks = exports.TrustListMasks || (exports.TrustListMasks = {}));
-;
-function buildTrustList(certificateManager, trustListFlag) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const trustList = new node_opcua_types_1.TrustListDataType({
-            specifiedLists: trustListFlag,
-            issuerCertificates: undefined,
-            issuerCrls: undefined,
-            trustedCertificates: undefined,
-            trustedCrls: undefined,
-        });
-        if ((trustListFlag & TrustListMasks.TrustedCertificates) === TrustListMasks.TrustedCertificates) {
-            trustList.trustedCertificates = yield readAll(certificateManager.trustedFolder);
-        }
-        if ((trustListFlag & TrustListMasks.TrustedCrls) === TrustListMasks.TrustedCrls) {
-            trustList.trustedCrls = yield readAll(certificateManager.crlFolder);
-        }
-        if ((trustListFlag & TrustListMasks.IssuerCertificates) === TrustListMasks.IssuerCertificates) {
-            trustList.issuerCertificates = yield readAll(certificateManager.issuersCertFolder);
-        }
-        if ((trustListFlag & TrustListMasks.IssuerCrls) === TrustListMasks.IssuerCrls) {
-            trustList.issuerCrls = yield readAll(certificateManager.issuersCrlFolder);
-        }
-        return trustList;
-    });
-}
-exports.buildTrustList = buildTrustList;
-function writeTrustList(fs, filename, trustListFlag, certificateManager) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const trustList = yield buildTrustList(certificateManager, trustListFlag);
-        const stream = new node_opcua_binary_stream_1.BinaryStream(trustList.binaryStoreSize());
-        trustList.encode(stream);
-        yield new Promise((resolve, reject) => {
-            fs.writeFile(filename, stream.buffer, "binary", (err) => {
-                if (err)
-                    return reject(err);
-                resolve();
-            });
-        });
-    });
-}
-exports.writeTrustList = writeTrustList;
-//# sourceMappingURL=trust_list_server.js.map

package/dist/server/trust_list_server.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"trust_list_server.js","sourceRoot":"","sources":["../../source/server/trust_list_server.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,yBAAwB;AACxB,6BAA6B;AAG7B,uDAAqD;AAErD,uEAAwD;AACxD,yDAAmF;AAEnF,SAAe,OAAO,CAAC,MAAc;;QAEjC,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,MAAM,KAAK,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QAChD,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE;YACnB,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;YAClC,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAC/B,IAAI,GAAG,KAAK,MAAM,IAAI,GAAG,KAAK,MAAM,EAAE;gBAClC,MAAM,GAAG,GAAG,MAAM,IAAA,mCAAe,EAAC,IAAI,CAAC,CAAC;gBACxC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;aACrB;iBAAM,IAAI,GAAG,KAAK,MAAM,EAAE;gBACvB,MAAM,GAAG,GAAG,MAAM,IAAA,iDAA6B,EAAC,IAAI,CAAC,CAAC;gBACtD,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;aACrB;iBAAM;gBACH,OAAO,CAAC,GAAG,CAAC,6BAA6B,EAAE,CAAC,CAAC,CAAC;aACjD;SACJ;QACD,OAAO,OAAO,CAAC;IACnB,CAAC;CAAA;AAED,IAAY,cAOX;AAPD,WAAY,cAAc;IACtB,mDAAQ,CAAA;IACR,iFAAuB,CAAA;IACvB,iEAAe,CAAA;IACf,+EAAsB,CAAA;IACtB,+DAAc,CAAA;IACd,kDAAQ,CAAA;AACZ,CAAC,EAPW,cAAc,GAAd,sBAAc,KAAd,sBAAc,QAOzB;AAAA,CAAC;AAEF,SAAsB,cAAc,CAChC,kBAA2C,EAC3C,aAA6B;;QAE7B,MAAM,SAAS,GAAG,IAAI,oCAAiB,CAAC;YACpC,cAAc,EAAE,aAAa;YAC7B,kBAAkB,EAAE,SAAS;YAC7B,UAAU,EAAE,SAAS;YACrB,mBAAmB,EAAE,SAAS;YAC9B,WAAW,EAAE,SAAS;SACzB,CAAC,CAAC;QACH,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC,mBAAmB,CAAC,KAAK,cAAc,CAAC,mBAAmB,EAAE;YAC7F,SAAS,CAAC,mBAAmB,GAAG,MAAM,OAAO,CAAC,kBAAkB,CAAC,aAAa,CAAC,CAAC;SACnF;QACD,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC,WAAW,CAAC,KAAK,cAAc,CAAC,WAAW,EAAE;YAC7E,SAAS,CAAC,WAAW,GAAG,MAAM,OAAO,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;SACvE;QACD,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC,kBAAkB,CAAC,KAAK,cAAc,CAAC,kBAAkB,EAAE;YAC3F,SAAS,CAAC,kBAAkB,GAAG,MAAM,OAAO,CAAC,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;SACtF;QACD,IAAI,CAAC,aAAa,GAAG,cAAc,CAAC,UAAU,CAAC,KAAK,cAAc,CAAC,UAAU,EAAE;YAC3E,SAAS,CAAC,UAAU,GAAG,MAAM,OAAO,CAAC,kBAAkB,CAAC,gBAAgB,CAAC,CAAC;SAC7E;QACD,OAAO,SAAS,CAAC;IACrB,CAAC;CAAA;AAxBD,wCAwBC;AAID,SAAsB,cAAc,CAChC,EAAc,EACd,QAAgB,EAChB,aAA6B,EAE7B,kBAA2C;;QAE3C,MAAM,SAAS,GAAG,MAAM,cAAc,CAAC,kBAAkB,EAAE,aAAa,CAAC,CAAC;QAC1E,MAAM,MAAM,GAAG,IAAI,uCAAY,CAAC,SAAS,CAAC,eAAe,EAAE,CAAC,CAAC;QAC7D,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QACzB,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACxC,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,QAAQ,EAAE,CAAC,GAAG,EAAE,EAAE;gBACpD,IAAI,GAAG;oBAAE,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC;gBAC5B,OAAO,EAAE,CAAC;YACd,CAAC,CAAC,CAAC;QACP,CAAC,CAAC,CAAC;IACP,CAAC;CAAA;AAhBD,wCAgBC"}

package/dist/standard_certificate_types.d.ts

@@ -1,6 +0,0 @@
-export declare const CertificateType: {
-    Application: import("node-opcua-nodeid").NodeId;
-    Https: import("node-opcua-nodeid").NodeId;
-    RsaMinApplication: import("node-opcua-nodeid").NodeId;
-    RsaSha256Application: import("node-opcua-nodeid").NodeId;
-};

package/dist/standard_certificate_types.js

@@ -1,14 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.CertificateType = void 0;
-/**
- * @module node-opcua-server-configuration
- */
-const node_opcua_nodeid_1 = require("node-opcua-nodeid");
-exports.CertificateType = {
-    Application: (0, node_opcua_nodeid_1.resolveNodeId)("ApplicationCertificateType"),
-    Https: (0, node_opcua_nodeid_1.resolveNodeId)("HttpsCertificateType"),
-    RsaMinApplication: (0, node_opcua_nodeid_1.resolveNodeId)("RsaMinApplicationCertificateType"),
-    RsaSha256Application: (0, node_opcua_nodeid_1.resolveNodeId)("RsaSha256ApplicationCertificateType"),
-};
-//# sourceMappingURL=standard_certificate_types.js.map

package/dist/standard_certificate_types.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"standard_certificate_types.js","sourceRoot":"","sources":["../source/standard_certificate_types.ts"],"names":[],"mappings":";;;AAAA;;GAEG;AACH,yDAAkD;AAErC,QAAA,eAAe,GAAI;IAC5B,WAAW,EAAE,IAAA,iCAAa,EAAC,4BAA4B,CAAC;IACxD,KAAK,EAAE,IAAA,iCAAa,EAAC,sBAAsB,CAAC;IAC5C,iBAAiB,EAAE,IAAA,iCAAa,EAAC,kCAAkC,CAAC;IACpE,oBAAoB,EAAE,IAAA,iCAAa,EAAC,qCAAqC,CAAC;CAC7E,CAAC"}

package/dist/trust_list.d.ts

@@ -1,79 +0,0 @@
-/// <reference types="node" />
-import { StatusCode } from "node-opcua-basic-types";
-/**
- * @module node-opcua-server-configuration
- */
-export interface ITrustList {
-    /**
-     * The CloseAndUpdate Method closes the file and applies the changes to the Trust List. It can
-     * only be called if the file was opened for writing. If the Close Method is called any cached data
-     * is discarded and the Trust List is not changed.
-     *
-     * The Server shall verify that every Certificate in the new Trust List is valid according to the
-     * mandatory rules defined in Part 4. If an invalid Certificate is found the Server shall return an
-     * error and shall not update the Trust List. If only part of the Trust List is being updated the
-     * Server creates a temporary Trust List that includes the existing Trust List plus any updates
-     * and validates the temporary Trust List.
-     *
-     * If the file cannot be processed this Method still closes the file and discards the data before
-     * returning an error. This Method is required if the Server supports updates to the Trust List.
-     * The structure uploaded includes a mask (see 7.5.8) which specifies which fields are updated.
-     * If a bit is not set then the associated field is not changed.
-     *
-     * @param fileHandle UInt32 - The handle of the previously opened file
-     * @return applyChangesRequired - A flag indicating whether the ApplyChanges Method (see 7.7.5) shall be called
-     *                                before the new Trust List will be used by the Server.
-     * **Result Code**
-     * - BadUserAccessDenied         The current user does not have the rights required.
-     * - BadCertificateInvalid       The Server could not validate all Certificates in the Trust List.
-     *                              The DiagnosticInfo shall specify which Certificate(s) are invalid and the specific
-     *                              error.
-     */
-    closeAndUpdate(applyChangesRequired: boolean): Promise<boolean>;
-    /**
-     * The AddCertificate Method allows a Client to add a single Certificate to the Trust List.
-     *
-     * The Server shall verify that the Certificate is valid according to the rules defined in Part 4.
-     *
-     * If an invalid Certificate is found the Server shall return an error and shall not update the Trust List.
-     *
-     * If the Certificate is issued by a CA then the Client shall provide the entire chain in the
-     * certificate argument (see Part 6).
-     *
-     * After validating the Certificate, the Server shall add the CA Certificates to the Issuers list in the Trust List.
-     *
-     * The leaf Certificate is added to the list specified by the isTrustedCertificate argument.
-     *
-     * This method cannot be called if the file object is open
-     * @param  certificate - The DER encoded Certificate to add as a ByteStrng
-     * @param  isTrustedCertificate - If TRUE the Certificate is added to the Trusted Certificates List. If FALSE the Certificate is added to the Issuer Certificates List.
-     *
-     * **Result Code**
-     * - BadUserAccessDenied:     The current user does not have the rights required.
-     * - BadCertificateInvalid:   The certificate to add is invalid.
-     * - BadInvalidState:         The object is opened.
-     *
-     */
-    addCertificate(certificate: Buffer, isTrustedCertificate: boolean): Promise<StatusCode>;
-    /**
-     * The RemoveCertificate Method allows a Client to remove a single Certificate from the Trust List.
-     *
-     * It returns BadInvalidArgument if the thumbprint does not match a Certificate in the Trust List.
-     *
-     * If the Certificate is a CA Certificate with associated CRLs then all CRLs are removed as well.
-     *
-     * This method cannot be called if the file object is open.
-     *
-     * @param thumbprint - The SHA1 hash of the Certificate to remove
-     * @param  isTrustedCertificate - If TRUE the Certificate is removed from the Trusted Certificates List.
-     *                                If FALSE the Certificate is removed from the Issuer Certificates List.
-     *
-     * **Result Code**
-     * -BadUserAccessDenied:   The current user does not have the rights required.
-     * -BadInvalidArgument:    The certificate to remove was not found.
-     * -BadInvalidState:       The object is opened.
-     *
-     *
-     */
-    removeCertificate(thumbprint: string, isTrustedCertificate: boolean): Promise<StatusCode>;
-}

package/dist/trust_list.js

@@ -1,3 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-//# sourceMappingURL=trust_list.js.map

package/dist/trust_list.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"trust_list.js","sourceRoot":"","sources":["../source/trust_list.ts"],"names":[],"mappings":""}

package/dist/trust_list_impl.js

@@ -1,26 +0,0 @@
-"use strict";
-// /**
-//  * @module node-opcua-server-configuration
-//  */
-// import { StatusCode, StatusCodes } from "node-opcua-status-code";
-// import { ITrustList } from "./trust_list";
-// export class TrustList implements ITrustList {
-//   public async closeAndUpdate(
-//     applyChangesRequired: boolean
-//   ): Promise<boolean> {
-//     return false;
-//   }
-//   public async addCertificate(
-//     certificate: Buffer,
-//     isTrustedCertificate: boolean
-//   ): Promise<StatusCode> {
-//     return StatusCodes.BadNotImplemented;
-//   }
-//   public async removeCertificate(
-//     thumbprint: string,
-//     isTrustedCertificate: boolean
-//   ): Promise<StatusCode> {
-//     return StatusCodes.BadNotImplemented;
-//   }
-// }
-//# sourceMappingURL=trust_list_impl.js.map

package/dist/trust_list_impl.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"trust_list_impl.js","sourceRoot":"","sources":["../source/trust_list_impl.ts"],"names":[],"mappings":";AAAA,MAAM;AACN,6CAA6C;AAC7C,MAAM;AACN,oEAAoE;AACpE,6CAA6C;AAE7C,iDAAiD;AAEjD,iCAAiC;AACjC,oCAAoC;AACpC,0BAA0B;AAE1B,oBAAoB;AACpB,MAAM;AAEN,iCAAiC;AACjC,2BAA2B;AAC3B,oCAAoC;AACpC,6BAA6B;AAC7B,4CAA4C;AAC5C,MAAM;AAEN,oCAAoC;AACpC,0BAA0B;AAC1B,oCAAoC;AACpC,6BAA6B;AAC7B,4CAA4C;AAC5C,MAAM;AACN,IAAI"}