node-opcua-server-configuration 2.98.0 → 2.98.1

package/dist/clientTools/push_certificate_management_client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"push_certificate_management_client.js","sourceRoot":"","sources":["../../source/clientTools/push_certificate_management_client.ts"],"names":[],"mappings":";;;;;;;;;;;;AAIA,yDAAsE;AAEtE,mEAAiE;AACjE,2DAA6E;AAC7E,uEAAoE;AACpE,iEAA4G;AAC5G,uGAA0E;AAE1E,uDAAqD;AACrD,uEAAwD;AAYxD,MAAM,yBAAyB,GAAG,IAAA,iCAAa,EAAC,qBAAqB,CAAC,CAAC;AACvE,MAAM,0BAA0B,GAAG,IAAA,iCAAa,EAAC,0CAA0C,CAAC,CAAC;AAC7F,MAAM,qBAAqB,GAAG,IAAA,iCAAa,EAAC,qCAAqC,CAAC,CAAC;AACnF,MAAM,uBAAuB,GAAG,IAAA,iCAAa,EAAC,uCAAuC,CAAC,CAAC;AACvF,MAAM,iBAAiB,GAAG,IAAA,iCAAa,EAAC,uCAAuC,CAAC,CAAC;AACjF,MAAM,kBAAkB,GAAG,IAAA,iCAAa,EAAC,kCAAkC,CAAC,CAAC;AAC7E,MAAM,gCAAgC,GAAG,IAAA,iCAAa,EAAC,gDAAgD,CAAC,CAAC;AAEzG,MAAM,uBAAuB,GAAG,IAAA,iCAAa,EAAC,+DAA+D,CAAC,CAAC;AAC/G,MAAM,iBAAiB,GAAG,IAAA,iCAAa,EAAC,yDAAyD,CAAC,CAAC;AACnG,MAAM,qBAAqB,GAAG,IAAA,iCAAa,EAAC,6DAA6D,CAAC,CAAC;AAE3G,SAAS,wBAAwB,CAAC,sBAA8B;IAC5D,OAAO,MAAM,CAAC;AAClB,CAAC;AAED,SAAS,0BAA0B,CAAC,gBAAiC;IACjE,IAAI,gBAAgB,YAAY,0BAAM,EAAE;QACpC,OAAO,gBAAgB,CAAC;KAC3B;IACD,QAAQ,gBAAgB,EAAE;QACtB,KAAK,yBAAyB;YAC1B,OAAO,uBAAuB,CAAC;QACnC,KAAK,mBAAmB;YACpB,OAAO,iBAAiB,CAAC;QAC7B,KAAK,uBAAuB;YACxB,OAAO,qBAAqB,CAAC;QACjC;YACI,OAAO,IAAA,iCAAa,EAAC,gBAAgB,CAAC,CAAC;KAC9C;AACL,CAAC;AAED,SAAS,2BAA2B,CAAC,iBAAkC;IACnE,IAAI,iBAAiB,YAAY,0BAAM,EAAE;QACrC,OAAO,iBAAiB,CAAC;KAC5B;IACD,OAAO,IAAA,iCAAa,EAAC,iBAAiB,CAAC,CAAC;AAC5C,CAAC;AAED,MAAa,eAAgB,SAAQ,qCAAU;IAM3C,YAAY,OAAsB,EAAS,MAAc;QACrD,KAAK,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QADgB,WAAM,GAAN,MAAM,CAAQ;IAEzD,CAAC;IACD;;OAEG;IACG,iBAAiB;;YACnB,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,mBAAmB,CAAC;gBACzD,IAAA,yDAAc,EAAC,IAAI,CAAC,MAAM,EAAE,iBAAiB,CAAC;gBAC9C,IAAA,yDAAc,EAAC,IAAI,CAAC,MAAM,EAAE,iBAAiB,CAAC;gBAC9C,IAAA,yDAAc,EAAC,IAAI,CAAC,MAAM,EAAE,oBAAoB,CAAC;gBACjD,IAAA,yDAAc,EAAC,IAAI,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC,0BAA0B;aAC3E,CAAC,CAAC;YAEH,IAAI,CAAC,oBAAoB,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC,OAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;YAClE,IAAI,CAAC,oBAAoB,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC,OAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;YAClE,IAAI,CAAC,uBAAuB,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC,OAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;YACrE,IAAI,CAAC,mBAAmB,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC,OAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;YAEjE,uBAAuB;YACvB,IAAI,CAAC,IAAI,CAAC,mBAAmB,IAAI,IAAI,CAAC,mBAAmB,CAAC,OAAO,EAAE,EAAE;gBACjE,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;aAC1E;QACL,CAAC;KAAA;IAEe,iBAAiB;;;;;YAC7B,MAAM,OAAM,iBAAiB,WAAE,CAAC;YAChC,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACnC,CAAC;KAAA;IAEK,aAAa,CAAC,aAA6B;;YAC7C,uBAAuB;YACvB,IAAI,IAAI,CAAC,UAAU,EAAE;gBACjB,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;aACjD;YACD,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC/B,uBAAuB;YACvB,IAAI,CAAC,IAAI,CAAC,mBAAmB,EAAE;gBAC3B,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;aAClD;YACD,MAAM,cAAc,GAAG,CAAC,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,aAAa,EAAE,CAAC,CAAC;YAC7E,MAAM,YAAY,GAA0B;gBACxC,cAAc;gBACd,QAAQ,EAAE,IAAI,CAAC,mBAAmB;gBAClC,QAAQ,EAAE,IAAI,CAAC,MAAM;aACxB,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,IAAI,gBAAgB,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE;gBACzC,MAAM,IAAI,KAAK,CAAC,gBAAgB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;aACrD;YACD,IAAI,CAAC,UAAU,GAAG,gBAAgB,CAAC,eAAgB,CAAC,CAAC,CAAC,CAAC,KAAe,CAAC;YACvE,OAAO,IAAI,CAAC,UAAU,CAAC;QAC3B,CAAC;KAAA;IAEK,cAAc,CAAC,oBAA6B;;YAC9C,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE;gBAClB,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;aACpD;YACD,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC/B,IAAI,CAAC,IAAI,CAAC,oBAAoB,EAAE;gBAC5B,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;aACzD;YACD,MAAM,cAAc,GAAG;gBACnB,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,IAAI,CAAC,UAAU,EAAE;gBACrD,EAAE,QAAQ,EAAE,6BAAQ,CAAC,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,oBAAoB,EAAE;aAChE,CAAC;YACF,MAAM,YAAY,GAA0B;gBACxC,cAAc;gBACd,QAAQ,EAAE,IAAI,CAAC,oBAAoB;gBACnC,QAAQ,EAAE,IAAI,CAAC,MAAM;aACxB,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,IAAI,gBAAgB,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE;gBACzC,MAAM,IAAI,KAAK,CAAC,gBAAgB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;aACrD;YACD,OAAO,gBAAgB,CAAC,eAAgB,CAAC,CAAC,CAAC,CAAC,KAAgB,CAAC;QACjE,CAAC;KAAA;IAEK,cAAc,CAAC,WAAwB,EAAE,oBAA6B;;YACxE,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAE/B,MAAM,cAAc,GAAkB;gBAClC,EAAE,QAAQ,EAAE,6BAAQ,CAAC,UAAU,EAAE,KAAK,EAAE,WAAW,EAAE;gBACrD,EAAE,QAAQ,EAAE,6BAAQ,CAAC,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,oBAAoB,EAAE;aAChE,CAAC;YACF,MAAM,YAAY,GAA0B;gBACxC,cAAc;gBACd,QAAQ,EAAE,IAAI,CAAC,oBAAoB;gBACnC,QAAQ,EAAE,IAAI,CAAC,MAAM;aACxB,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,OAAO,gBAAgB,CAAC,UAAU,CAAC;QACvC,CAAC;KAAA;IAEK,iBAAiB,CAAC,UAAkB,EAAE,oBAA6B;;YACrE,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAE/B,MAAM,cAAc,GAAkB;gBAClC,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,UAAU,EAAE;gBAChD,EAAE,QAAQ,EAAE,6BAAQ,CAAC,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,oBAAoB,EAAE;aAChE,CAAC;YACF,MAAM,YAAY,GAA0B;gBACxC,cAAc;gBACd,QAAQ,EAAE,IAAI,CAAC,uBAAuB;gBACtC,QAAQ,EAAE,IAAI,CAAC,MAAM;aACxB,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,OAAO,gBAAgB,CAAC,UAAU,CAAC;QACvC,CAAC;KAAA;IAED;;;OAGG;IACG,0BAA0B;;YAC5B,kCAAkC;YAClC,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,uCAAY,CAAC,IAAI,CAAC,CAAC;YACtD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACpC,MAAM,IAAI,CAAC,KAAK,EAAE,CAAC;YACnB,MAAM,MAAM,GAAG,IAAI,uCAAY,CAAC,IAAI,CAAC,CAAC;YACtC,MAAM,SAAS,GAAsB,IAAI,oCAAiB,EAAE,CAAC;YAC7D,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YACzB,OAAO,SAAS,CAAC;QACrB,CAAC;KAAA;IACK,mCAAmC,CAAC,aAA6B;;YACnE,kCAAkC;YAClC,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,CAAC;YAC3D,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACpC,MAAM,IAAI,CAAC,KAAK,EAAE,CAAC;YACnB,MAAM,MAAM,GAAG,IAAI,uCAAY,CAAC,IAAI,CAAC,CAAC;YACtC,MAAM,SAAS,GAAsB,IAAI,oCAAiB,EAAE,CAAC;YAC7D,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YACzB,OAAO,SAAS,CAAC;QACrB,CAAC;KAAA;IAEK,2BAA2B,CAAC,WAA8B;;YAC5D,MAAM,IAAI,CAAC,IAAI,CAAC,uCAAY,CAAC,KAAK,CAAC,CAAC;YACpC,MAAM,CAAC,GAAG,WAAW,CAAC,eAAe,EAAE,CAAC;YACxC,MAAM,MAAM,GAAG,IAAI,uCAAY,CAAC,CAAC,CAAC,CAAC;YACnC,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAC3B,OAAO,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;QAC3C,CAAC;KAAA;CACJ;AApJD,0CAoJC;AACD,MAAa,gBAAgB;IACzB,YAAmB,OAAsB,EAAS,MAAc;QAA7C,YAAO,GAAP,OAAO,CAAe;QAAS,WAAM,GAAN,MAAM,CAAQ;IAAG,CAAC;IAC9D,mBAAmB;;YACrB,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,mBAAmB,CAAC,IAAA,yDAAc,EAAC,IAAI,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC,CAAC;YAClH,IAAI,gBAAgB,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE;gBACzC,MAAM,IAAI,KAAK,CAAC,gBAAgB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;aACrD;YACD,MAAM,sBAAsB,GAAG,gBAAgB,CAAC,OAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;YACrE,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,sBAAsB,EAAE,WAAW,EAAE,oCAAY,CAAC,KAAK,EAAE,CAAC,CAAC;YAC/G,IAAI,SAAS,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE;gBAClC,MAAM,IAAI,KAAK,CAAC,gBAAgB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;aACrD;YACD,OAAO,SAAS,CAAC,KAAK,CAAC,KAAiB,CAAC;QAC7C,CAAC;KAAA;IACK,YAAY;;YACd,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,mBAAmB,CAAC,IAAA,yDAAc,EAAC,IAAI,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC,CAAC;YAC3G,IAAI,gBAAgB,CAAC,UAAU,CAAC,SAAS,EAAE,EAAE;gBACzC,MAAM,IAAI,KAAK,CAAC,gBAAgB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;aACrD;YACD,MAAM,eAAe,GAAG,gBAAgB,CAAC,OAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;YAC9D,OAAO,IAAI,eAAe,CAAC,IAAI,CAAC,OAAO,EAAE,eAAe,CAAC,CAAC;QAC9D,CAAC;KAAA;CACJ;AAtBD,4CAsBC;AACD,MAAa,+BAA+B;IAKxC,YAAY,OAAsB;QAC9B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IAC3B,CAAC;IAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAqCG;IACU,oBAAoB,CAC7B,kBAAmC,EACnC,iBAAkC,EAClC,WAA0B,EAC1B,oBAA8B,EAC9B,KAAkB;;YAElB,KAAK,GAAG,KAAK,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAEjC,MAAM,cAAc,GAAG;gBACnB,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,0BAA0B,CAAC,kBAAkB,CAAC,EAAE;gBACpF,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,2BAA2B,CAAC,iBAAiB,CAAC,EAAE;gBACpF,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE;gBACjD,EAAE,QAAQ,EAAE,6BAAQ,CAAC,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,oBAAoB,EAAE;gBAC7D,EAAE,QAAQ,EAAE,6BAAQ,CAAC,UAAU,EAAE,KAAK,EAAE,KAAK,EAAE;aAClD,CAAC;YACF,MAAM,YAAY,GAA0B;gBACxC,cAAc;gBACd,QAAQ,EAAE,0BAA0B;gBACpC,QAAQ,EAAE,yBAAyB;aACtC,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAE/D,IAAI,gBAAgB,CAAC,UAAU,CAAC,MAAM,EAAE,EAAE;gBACtC,+CAA+C;gBAC/C,OAAO;oBACH,yBAAyB,EAAE,gBAAgB,CAAC,eAAgB,CAAC,CAAC,CAAC,CAAC,KAAK;oBACrE,UAAU,EAAE,gBAAgB,CAAC,UAAU;iBAC1C,CAAC;aACL;iBAAM;gBACH,OAAO,EAAE,UAAU,EAAE,gBAAgB,CAAC,UAAU,EAAE,CAAC;aACtD;QACL,CAAC;KAAA;IAED;;;;;;;;;;OAUG;IACU,eAAe;;YACxB,MAAM,cAAc,GAAkB,EAAE,CAAC;YACzC,MAAM,YAAY,GAA0B;gBACxC,cAAc;gBACd,QAAQ,EAAE,qBAAqB;gBAC/B,QAAQ,EAAE,yBAAyB;aACtC,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,IAAI,gBAAgB,CAAC,UAAU,CAAC,MAAM,EAAE,EAAE;gBACtC,IAAI,gBAAgB,CAAC,eAAgB,CAAC,CAAC,CAAC,CAAC,QAAQ,KAAK,6BAAQ,CAAC,UAAU,EAAE;oBACvE,OAAO,EAAE,UAAU,EAAE,oCAAW,CAAC,kBAAkB,EAAE,CAAC;iBACzD;gBACD,OAAO;oBACH,YAAY,EAAE,gBAAgB,CAAC,eAAgB,CAAC,CAAC,CAAC,CAAC,KAAK;oBACxD,UAAU,EAAE,gBAAgB,CAAC,UAAU;iBAC1C,CAAC;aACL;iBAAM;gBACH,OAAO;oBACH,UAAU,EAAE,gBAAgB,CAAC,UAAU;iBAC1C,CAAC;aACL;QACL,CAAC;KAAA;IAyDY,iBAAiB,CAC1B,kBAAmC,EACnC,iBAAkC,EAClC,WAAmB,EACnB,kBAA4B,EAC5B,gBAAyB,EACzB,UAAyC;;YAGzC,MAAM,cAAc,GAAkB;gBAClC,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,0BAA0B,CAAC,kBAAkB,CAAC,EAAE;gBACpF,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,2BAA2B,CAAC,iBAAiB,CAAC,EAAE;gBACpF,EAAE,QAAQ,EAAE,6BAAQ,CAAC,UAAU,EAAE,KAAK,EAAE,WAAW,EAAE;gBACrD,EAAE,QAAQ,EAAE,6BAAQ,CAAC,UAAU,EAAE,SAAS,EAAE,qCAAgB,CAAC,KAAK,EAAE,KAAK,EAAE,kBAAkB,EAAE;gBAC/F,EAAE,QAAQ,EAAE,6BAAQ,CAAC,MAAM,EAAE,KAAK,EAAE,gBAAgB,IAAI,EAAE,EAAE;gBAC5D,EAAE,QAAQ,EAAE,6BAAQ,CAAC,UAAU,EAAE,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE;aAC5F,CAAC;YACF,MAAM,YAAY,GAA0B;gBACxC,cAAc;gBACd,QAAQ,EAAE,uBAAuB;gBACjC,QAAQ,EAAE,yBAAyB;aACtC,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC/D,IAAI,gBAAgB,CAAC,UAAU,CAAC,MAAM,EAAE,EAAE;gBACtC,IAAI,CAAC,gBAAgB,CAAC,eAAe,IAAI,gBAAgB,CAAC,eAAgB,CAAC,MAAM,KAAK,CAAC,EAAE;oBACrF,OAAO;wBACH,UAAU,EAAE,oCAAW,CAAC,gBAAgB;qBAC3C,CAAC;oBACF,4DAA4D;iBAC/D;gBACD,OAAO;oBACH,oBAAoB,EAAE,gBAAgB,CAAC,eAAgB,CAAC,CAAC,CAAC,CAAC,KAAK;oBAChE,UAAU,EAAE,gBAAgB,CAAC,UAAU;iBAC1C,CAAC;aACL;iBAAM;gBACH,OAAO,EAAE,UAAU,EAAE,gBAAgB,CAAC,UAAU,EAAE,CAAC;aACtD;QACL,CAAC;KAAA;IAED;;;;;;;;;;;;;;;;;;;;OAoBG;IACU,YAAY;;YACrB,MAAM,YAAY,GAA0B;gBACxC,cAAc,EAAE,EAAE;gBAClB,QAAQ,EAAE,kBAAkB;gBAC5B,QAAQ,EAAE,yBAAyB;aACtC,CAAC;YACF,MAAM,gBAAgB,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAE/D,IAAI,gBAAgB,CAAC,eAAe,IAAI,gBAAgB,CAAC,eAAe,CAAC,MAAM,EAAE;gBAC7E,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;aAChD;YACD,OAAO,gBAAgB,CAAC,UAAU,CAAC;QACvC,CAAC;KAAA;IAEY,6BAA6B;;YACtC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC;gBACtC,WAAW,EAAE,oCAAY,CAAC,KAAK;gBAC/B,MAAM,EAAE,gCAAgC;aAC3C,CAAC,CAAC;YACH,OAAO,SAAS,CAAC,KAAK,CAAC,KAAiB,CAAC;QAC7C,CAAC;KAAA;IAEY,qBAAqB,CAAC,oBAA4B;;YAC3D,IAAI,oBAAoB,KAAK,yBAAyB,EAAE;gBACpD,OAAO,uBAAuB,CAAC;aAClC;YACD,OAAO;YACP,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAC3C,CAAC;KAAA;IAED;;;OAGG;IACU,mBAAmB,CAC5B,UAAmF;;YAEnF,UAAU,GAAG,IAAA,2CAAmB,EAAC,UAAU,CAAC,CAAC;YAC7C,IAAI,UAAU,CAAC,QAAQ,EAAE,KAAK,yBAAyB,EAAE;gBACrD,OAAO,IAAI,gBAAgB,CAAC,IAAI,CAAC,OAAO,EAAE,uBAAuB,CAAC,CAAC;aACtE;YACD,IAAI,UAAU,CAAC,QAAQ,EAAE,KAAK,uBAAuB,EAAE;gBACnD,OAAO,IAAI,gBAAgB,CAAC,IAAI,CAAC,OAAO,EAAE,qBAAqB,CAAC,CAAC;aACpE;YACD,uBAAuB;YACvB,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAC3C,CAAC;KAAA;IACY,mBAAmB;;YAC5B,OAAO,IAAI,CAAC,mBAAmB,CAAC,yBAAyB,CAAC,CAAC;QAC/D,CAAC;KAAA;IACY,iBAAiB;;YAC1B,OAAO,IAAI,CAAC,mBAAmB,CAAC,uBAAuB,CAAC,CAAC;QAC7D,CAAC;KAAA;;AAzRa,mEAAmC,GAAW,IAAA,iCAAa,EAAC,SAAS,CAAC,CAAC;AAD5E,0EAA+B"}

package/dist/index.d.ts

@@ -0,0 +1,10 @@
+/**
+ * @module node-opcua-server-configuration
+ */
+export * from "./push_certificate_manager";
+export * from "./clientTools/push_certificate_management_client";
+export * from "./standard_certificate_types";
+export * from "./server/install_push_certitifate_management";
+export * from "./server/push_certificate_manager_server_impl";
+export * from "./server/push_certificate_manager_helpers";
+export * from "./server/promote_trust_list";

package/dist/index.js

@@ -0,0 +1,28 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+/**
+ * @module node-opcua-server-configuration
+ */
+// export * from "./trust_list_impl";
+__exportStar(require("./push_certificate_manager"), exports);
+__exportStar(require("./clientTools/push_certificate_management_client"), exports);
+__exportStar(require("./standard_certificate_types"), exports);
+__exportStar(require("./server/install_push_certitifate_management"), exports);
+__exportStar(require("./server/push_certificate_manager_server_impl"), exports);
+__exportStar(require("./server/push_certificate_manager_helpers"), exports);
+__exportStar(require("./server/promote_trust_list"), exports);
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../source/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA;;GAEG;AACH,qCAAqC;AACrC,6DAA2C;AAC3C,mFAAiE;AACjE,+DAA6C;AAE7C,+EAA6D;AAC7D,gFAA8D;AAC9D,4EAA0D;AAC1D,8DAA4C"}

package/dist/push_certificate_manager.d.ts

@@ -0,0 +1,141 @@
+/// <reference types="node" />
+/**
+ * @module node-opcua-server-configuration
+ */
+import { ByteString, UAString } from "node-opcua-basic-types";
+import { NodeId } from "node-opcua-nodeid";
+import { StatusCode } from "node-opcua-status-code";
+export interface CreateSigningRequestResult {
+    statusCode: StatusCode;
+    certificateSigningRequest?: Buffer;
+}
+export interface GetRejectedListResult {
+    statusCode: StatusCode;
+    certificates?: Buffer[];
+}
+export interface UpdateCertificateResult {
+    statusCode: StatusCode;
+    applyChangesRequired?: boolean;
+}
+export interface PushCertificateManager {
+    /**
+     * The SupportedPrivateKeyFormats specifies the PrivateKey formats supported by the Server.
+     * Possible values include “PEM” (see RFC 5958) or “PFX” (see PKCS #12). The array is empty
+     * if the Server does not allow external Clients to update the PrivateKey
+     */
+    getSupportedPrivateKeyFormats(): Promise<string[]>;
+    /**
+     * UpdateCertificate is used to update a Certificate for a Server.
+     * There are the following three use cases for this Method:
+     * • The new Certificate was created based on a signing request created with the Method
+     *   CreateSigningRequest defined in 7.7.6. In this case there is no privateKey provided.
+     * • A new privateKey and Certificate was created outside the Server and both are updated
+     *   with this Method.
+     * • A new Certificate was created and signed with the information from the old Certificate.
+     *   In this case there is no privateKey provided.
+     * The Server shall do all normal integrity checks on the Certificate and all of the issuer
+     * Certificates. If errors occur the Bad_SecurityChecksFailed error is returned.
+     * The Server shall report an error if the public key does not match the existing Certificate and
+     * the privateKey was not provided.
+     *
+     * @param certificateGroupId    - The NodeId of the Certificate Group Object which is affected by the update.
+     *                                If null the DefaultApplicationGroup is used.
+     * @param certificateTypeId     - The type of Certificate being updated. The set of permitted types is specified by
+     *                                the CertificateTypes Property belonging to the Certificate Group.
+     * @param certificate           - The DER encoded Certificate which replaces the existing Certificate
+     * @param issuerCertificates    - The issuer Certificates needed to verify the signature on the new Certificate
+     * @param privateKeyFormat      - The format of the Private Key (PEM or PFX). If the privateKey is not specified
+     *                                the privateKeyFormat is null or empty
+     * @param privateKey            - the Private Key encoded in the privateKeyFormat.
+     * @return applyChangesRequired - Indicates that the ApplyChanges Method shall be called before the new
+     *                                Certificate will be used.
+     *
+     *
+     * Result Code                  Description
+     * BadInvalidArgument           The certificateTypeId or certificateGroupId is not valid.
+     * BadCertificateInvalid        The Certificate is invalid or the format is not supported.
+     * BadNotSupported              The PrivateKey is invalid or the format is not supported.
+     * BadUserAccessDenied          The current user does not have the rights required.
+     * BadSecurityChecksFailed      Some failure occurred verifying the integrity of the Certificate.
+     *
+     */
+    updateCertificate(certificateGroupId: NodeId | string, certificateTypeId: NodeId | string, certificate: ByteString, issuerCertificates: ByteString[], privateKeyFormat: UAString, privateKey: ByteString): Promise<UpdateCertificateResult>;
+    /**
+     * The ApplyChanges Method is used to apply any security related changes if the Server sets
+     * the applyChangesRequired flag when another Method is called. Servers should minimize the
+     * impact of applying the new configuration, however, it could require that all existing Sessions
+     * be closed and re-opened by the Clients.
+     *
+     *
+     * ApplyChanges is used to tell the Server to apply any security changes.
+     * This Method should only be called if a previous call to a Method that changed the
+     * configuration returns applyChangesRequired=true (see 7.7.4).
+     * If the Server Certificate has changed, Secure Channels using the old Certificate will
+     * eventually be interrupted. The only leeway the Server has is with the timing. In the best case,
+     * the Server can close the TransportConnections for the affected Endpoints and leave any
+     * Subscriptions intact. This should appear no different than a network interruption from the
+     * perspective of the Client. The Client should be prepared to deal with Certificate changes
+     * during its reconnect logic. In the worst case, a full shutdown which affects all connected
+     * Clients will be necessary. In the latter case, the Server shall advertise its intent to interrupt
+     * connections by setting the SecondsTillShutdown and ShutdownReason Properties in the
+     * ServerStatus Variable.
+     *
+     * If the Secure Channel being used to call this Method will be affected by the Certificate change
+     * then the Server shall introduce a delay long enough to allow the caller to receive a reply.
+     * This Method requires an encrypted channel and that the Client provide credentials with
+     * administrative rights on the Server.
+     *
+     *
+     * Result Code               Description
+     * Bad_UserAccessDenied      The current user does not have the rights required.
+     */
+    applyChanges(): Promise<StatusCode>;
+    /**
+     * The CreateSigningRequest Method asks the Server to create a PKCS #10 encoded Certificate
+     * Request that is signed with the Server’s private key.
+     *
+     * CreateSigningRequest Method asks the Server to create a PKCS #10 DER encoded
+     * Certificate Request that is signed with the Server’s private key. This request can be then used
+     * to request a Certificate from a CA that expects requests in this format.
+     * This Method requires an encrypted channel and that the Client provide credentials with
+     * administrative rights on the Server.
+     *
+     * @param certificateGroupId   - The NodeId of the Certificate Group Object which is affected by the request.
+     *                               If null the DefaultApplicationGroup is used.
+     * @param certificateTypeId    - The type of Certificate being requested. The set of permitted types is specified by
+     *                               the CertificateTypes Property belonging to the Certificate Group.
+     * @param subjectName          - The subject name to use in the Certificate Request.
+     *                               If not specified the SubjectName from the current Certificate is used.
+     *                               The format of the subjectName is defined in 7.6.4
+     * @param regeneratePrivateKey - If TRUE the Server shall create a new Private Key which it stores until the
+     *                               matching signed Certificate is uploaded with the UpdateCertificate Method.
+     *                               Previously created Private Keys may be discarded if UpdateCertificate was not
+     *                               called before calling this method again. If FALSE the Server uses its existing
+     *                               Private Key.
+     * @param nonce                - Additional entropy which the caller shall provide if regeneratePrivateKey is TRUE.
+     *                               It shall be at least 32 bytes long
+     * @return certificateRequest   - The PKCS #10 DER encoded Certificate Request.
+     *
+     *
+     * Result Code                   Description
+     * Bad_InvalidArgument           The certificateTypeId, certificateGroupId or subjectName is not valid.
+     * Bad_UserAccessDenied          The current user does not have the rights required.
+     */
+    createSigningRequest(certificateGroupId: NodeId | string, certificateTypeId: NodeId | string, subjectName: string | null, regeneratePrivateKey?: boolean, nonce?: ByteString): Promise<CreateSigningRequestResult>;
+    /**
+     * GetRejectedList Method returns the list of Certificates that have been rejected by the Server.
+     * No rules are defined for how the Server updates this list or how long a Certificate is kept in
+     * the list. It is recommended that every valid but untrusted Certificate be added to the rejected
+     * list as long as storage is available. Servers should omit older entries from the list returned if
+     * the maximum message size is not large enough to allow the entire list to be returned.
+     * This Method requires an encrypted channel and that the Client provides credentials with
+     * administrative rights on the Server.
+     *
+     * Argument       Description
+     * certificates   out - The DER encoded form of the Certificates rejected by the Server.
+     *
+     *  Result Code           Description
+     *  Bad_UserAccessDenied  The current user does not have the rights required
+     */
+    getRejectedList(): Promise</*certificates*/ GetRejectedListResult>;
+}

package/dist/push_certificate_manager.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=push_certificate_manager.js.map

package/dist/push_certificate_manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"push_certificate_manager.js","sourceRoot":"","sources":["../source/push_certificate_manager.ts"],"names":[],"mappings":""}

package/dist/server/install_certificate_file_watcher.d.ts

@@ -0,0 +1,5 @@
+import { UAObject } from "node-opcua-address-space-base";
+export interface ChangeDetector {
+    on(eventName: "certificateChange", handler: () => void): this;
+}
+export declare function installCertificateFileWatcher(node: UAObject, certificateFile: string): ChangeDetector;

package/dist/server/install_certificate_file_watcher.js

@@ -0,0 +1,24 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.installCertificateFileWatcher = void 0;
+const fs = require("fs");
+const path = require("path");
+const node_opcua_debug_1 = require("node-opcua-debug");
+const debugLog = (0, node_opcua_debug_1.make_debugLog)("ServerConfiguration");
+function installCertificateFileWatcher(node, certificateFile) {
+    const fileToWatch = path.basename(certificateFile);
+    const fsWatcher = fs.watch(path.dirname(certificateFile), { persistent: false }, (eventType, filename) => {
+        /** */
+        if (filename === fileToWatch) {
+            debugLog("filename changed = ", filename, fileToWatch);
+            node.emit("certificateChange");
+        }
+    });
+    const addressSpace = node.addressSpace;
+    addressSpace.registerShutdownTask(() => {
+        fsWatcher.close();
+    });
+    return node;
+}
+exports.installCertificateFileWatcher = installCertificateFileWatcher;
+//# sourceMappingURL=install_certificate_file_watcher.js.map

package/dist/server/install_certificate_file_watcher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"install_certificate_file_watcher.js","sourceRoot":"","sources":["../../source/server/install_certificate_file_watcher.ts"],"names":[],"mappings":";;;AAAA,yBAAyB;AACzB,6BAA6B;AAE7B,uDAAiD;AAEjD,MAAM,QAAQ,GAAG,IAAA,gCAAa,EAAC,qBAAqB,CAAC,CAAC;AAKtD,SAAgB,6BAA6B,CAAC,IAAc,EAAE,eAAuB;IACjF,MAAM,WAAW,GAAG,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC;IACnD,MAAM,SAAS,GAAG,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,eAAe,CAAC,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,EAAE,CAAC,SAA8B,EAAE,QAAQ,EAAE,EAAE;QAC1H,MAAM;QACN,IAAI,QAAQ,KAAK,WAAW,EAAE;YAC1B,QAAQ,CAAC,qBAAqB,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;YACvD,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;SAClC;IACL,CAAC,CAAC,CAAC;IACH,MAAM,YAAY,GAAG,IAAI,CAAC,YAAa,CAAC;IACxC,YAAY,CAAC,oBAAoB,CAAC,GAAG,EAAE;QACnC,SAAS,CAAC,KAAK,EAAE,CAAC;IACtB,CAAC,CAAC,CAAC;IACH,OAAO,IAAiC,CAAC;AAC7C,CAAC;AAdD,sEAcC"}

package/dist/server/install_push_certitifate_management.d.ts

@@ -0,0 +1,19 @@
+import { AddressSpace } from "node-opcua-address-space";
+import { OPCUACertificateManager } from "node-opcua-certificate-manager";
+import { Certificate, PrivateKey } from "node-opcua-crypto";
+import { ICertificateKeyPairProviderPriv } from "node-opcua-common";
+import { OPCUAServer } from "node-opcua-server";
+import { ApplicationDescriptionOptions } from "node-opcua-types";
+export interface OPCUAServerPartial extends ICertificateKeyPairProviderPriv {
+    serverInfo?: ApplicationDescriptionOptions;
+    serverCertificateManager: OPCUACertificateManager;
+    privateKeyFile: string;
+    certificateFile: string;
+    $$certificate: null | Certificate;
+    $$certificateChain: null | Certificate;
+    $$privateKey: null | PrivateKey;
+    engine: {
+        addressSpace?: AddressSpace;
+    };
+}
+export declare function installPushCertificateManagementOnServer(server: OPCUAServer): Promise<void>;

package/dist/server/install_push_certitifate_management.js

@@ -0,0 +1,216 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.installPushCertificateManagementOnServer = void 0;
+/**
+ * @module node-opcua-server-configuration-server
+ */
+const fs = require("fs");
+const os = require("os");
+const path = require("path");
+const crypto_1 = require("crypto");
+const chalk = require("chalk");
+const node_opcua_assert_1 = require("node-opcua-assert");
+const node_opcua_crypto_1 = require("node-opcua-crypto");
+const node_opcua_debug_1 = require("node-opcua-debug");
+const node_opcua_hostname_1 = require("node-opcua-hostname");
+const push_certificate_manager_helpers_1 = require("./push_certificate_manager_helpers");
+// node 14 onward : import {  readFile } from "fs/promises";
+const { readFile } = fs.promises;
+const debugLog = (0, node_opcua_debug_1.make_debugLog)("ServerConfiguration");
+const errorLog = (0, node_opcua_debug_1.make_errorLog)("ServerConfiguration");
+const doDebug = (0, node_opcua_debug_1.checkDebugFlag)("ServerConfiguration");
+function getCertificate() {
+    if (!this.$$certificate) {
+        const certificateChain = getCertificateChain.call(this);
+        this.$$certificate = (0, node_opcua_crypto_1.split_der)(certificateChain)[0];
+    }
+    return this.$$certificate;
+}
+function getCertificateChain() {
+    if (!this.$$certificateChain) {
+        throw new Error("internal Error. cannot find $$certificateChain");
+    }
+    return this.$$certificateChain;
+}
+function getPrivateKey() {
+    // istanbul ignore next
+    if (!this.$$privateKey) {
+        throw new Error("internal Error. cannot find $$privateKey");
+    }
+    return this.$$privateKey;
+}
+function getIpAddresses() {
+    return __awaiter(this, void 0, void 0, function* () {
+        const ipAddresses = [];
+        const netInterfaces = os.networkInterfaces();
+        for (const interfaceName of Object.keys(netInterfaces)) {
+            if (!netInterfaces[interfaceName]) {
+                continue;
+            }
+            for (const interFace of netInterfaces[interfaceName]) {
+                if ("IPv4" !== interFace.family || interFace.internal !== false) {
+                    // skip over internal (i.e. 127.0.0.1) and non-ipv4 addresses
+                    continue;
+                }
+                ipAddresses.push(interFace.address);
+            }
+        }
+        return ipAddresses;
+    });
+}
+/**
+ *
+ */
+function install() {
+    return __awaiter(this, void 0, void 0, function* () {
+        debugLog("install push certificate management", this.serverCertificateManager.rootDir);
+        this.__defineGetter__("privateKeyFile", () => this.serverCertificateManager.privateKey);
+        this.__defineGetter__("certificateFile", () => path.join(this.serverCertificateManager.rootDir, "own/certs/certificate.pem"));
+        if (!this.$$privateKey) {
+            this.$$privateKey = (0, crypto_1.createPrivateKey)(yield readFile(this.serverCertificateManager.privateKey, "utf8"));
+        }
+        if (!this.$$certificateChain) {
+            const certificateFile = this.certificateFile;
+            if (!fs.existsSync(certificateFile)) {
+                // this is the first time server is launch
+                // let's create a default self signed certificate with limited validity
+                const fqdn = yield (0, node_opcua_hostname_1.getFullyQualifiedDomainName)();
+                const ipAddresses = yield getIpAddresses();
+                const applicationUri = (this.serverInfo ? this.serverInfo.applicationUri : null) || "uri:MISSING";
+                const options = {
+                    applicationUri,
+                    dns: [fqdn],
+                    ip: ipAddresses,
+                    subject: "/CN=" + applicationUri + ";/L=Paris",
+                    startDate: new Date(),
+                    validity: 365 * 5,
+                    /* */
+                    outputFile: certificateFile
+                };
+                debugLog("creating self signed certificate", options);
+                yield this.serverCertificateManager.createSelfSignedCertificate(options);
+            }
+            const certificatePEM = yield readFile(certificateFile, "utf8");
+            this.$$certificateChain = (0, node_opcua_crypto_1.convertPEMtoDER)(certificatePEM);
+            //  await this.serverCertificateManager.trustCertificate( this.$$certificateChain);
+        }
+    });
+}
+function getCertificateChainEP() {
+    const certificateFile = path.join(this.certificateManager.rootDir, "own/certs/certificate.pem");
+    const certificatePEM = fs.readFileSync(certificateFile, "utf8");
+    const $$certificateChain = (0, node_opcua_crypto_1.convertPEMtoDER)(certificatePEM);
+    const thumbprint = (0, node_opcua_crypto_1.makeSHA1Thumbprint)($$certificateChain);
+    return $$certificateChain;
+}
+function getPrivateKeyEP() {
+    const $$privateKey = (0, crypto_1.createPrivateKey)(fs.readFileSync(this.certificateManager.privateKey, "utf8"));
+    return $$privateKey;
+}
+function onCertificateAboutToChange(server) {
+    return __awaiter(this, void 0, void 0, function* () {
+        debugLog(chalk.yellow(" onCertificateAboutToChange => Suspending End points"));
+        yield server.suspendEndPoints();
+        debugLog(chalk.yellow(" onCertificateAboutToChange => End points suspended"));
+    });
+}
+/**
+ * onCertificateChange is called when the serverConfiguration notifies
+ * that the server certificate and/or private key has changed.
+ *
+ * this function suspends all endpoint listeners and stop all existing channels
+ * then start all endpoint listener
+ *
+ * @param server
+ */
+function onCertificateChange(server) {
+    return __awaiter(this, void 0, void 0, function* () {
+        debugLog("on CertificateChanged");
+        const _server = server;
+        _server.$$privateKey = (0, crypto_1.createPrivateKey)(fs.readFileSync(server.serverCertificateManager.privateKey, "utf8"));
+        const certificateFile = path.join(server.serverCertificateManager.rootDir, "own/certs/certificate.pem");
+        const certificatePEM = fs.readFileSync(certificateFile, "utf8");
+        const privateKeyFile = server.serverCertificateManager.privateKey;
+        const privateKey = (0, crypto_1.createPrivateKey)(fs.readFileSync(privateKeyFile, "utf8"));
+        // also reread the private key
+        _server.$$certificateChain = (0, node_opcua_crypto_1.convertPEMtoDER)(certificatePEM);
+        _server.$$privateKey = privateKey;
+        // note : $$certificate will be reconstructed on demand
+        _server.$$certificate = (0, node_opcua_crypto_1.split_der)(_server.$$certificateChain)[0];
+        setTimeout(() => __awaiter(this, void 0, void 0, function* () {
+            try {
+                debugLog(chalk.yellow(" onCertificateChange => shutting down channels"));
+                yield server.shutdownChannels();
+                debugLog(chalk.yellow(" onCertificateChange => channels shut down"));
+                debugLog(chalk.yellow(" onCertificateChange => resuming end points"));
+                yield server.resumeEndPoints();
+                debugLog(chalk.yellow(" onCertificateChange => end points resumed"));
+                debugLog(chalk.yellow("channels have been closed -> client should reconnect "));
+            }
+            catch (err) {
+                if (err instanceof Error) {
+                    errorLog("Error in CertificateChanged handler ", err.message);
+                }
+                debugLog("err = ", err);
+            }
+        }), 2000);
+    });
+}
+function installPushCertificateManagementOnServer(server) {
+    return __awaiter(this, void 0, void 0, function* () {
+        if (!server.engine || !server.engine.addressSpace) {
+            throw new Error("Server must have a valid address space." +
+                "you need to call installPushCertificateManagementOnServer after server has been initialized");
+        }
+        yield install.call(server);
+        server.getCertificate = getCertificate;
+        server.getCertificateChain = getCertificateChain;
+        server.getPrivateKey = getPrivateKey;
+        for (const endpoint of server.endpoints) {
+            const endpointPriv = endpoint;
+            endpointPriv._certificateChain = null;
+            endpointPriv._privateKey = null;
+            endpoint.getCertificateChain = getCertificateChainEP;
+            endpoint.getPrivateKey = getPrivateKeyEP;
+            for (const e of endpoint.endpointDescriptions()) {
+                // e.serverCertificate = null;
+                e.__defineGetter__("serverCertificate", function () {
+                    return endpoint.getCertificate();
+                });
+            }
+        }
+        yield (0, push_certificate_manager_helpers_1.installPushCertificateManagement)(server.engine.addressSpace, {
+            applicationGroup: server.serverCertificateManager,
+            userTokenGroup: server.userCertificateManager,
+            applicationUri: server.serverInfo.applicationUri || "InvalidURI"
+        });
+        const serverConfiguration = server.engine.addressSpace.rootFolder.objects.server.getChildByName("ServerConfiguration");
+        const serverConfigurationPriv = serverConfiguration;
+        (0, node_opcua_assert_1.assert)(serverConfigurationPriv.$pushCertificateManager);
+        serverConfigurationPriv.$pushCertificateManager.on("CertificateAboutToChange", (actionQueue) => {
+            actionQueue.push(() => __awaiter(this, void 0, void 0, function* () {
+                debugLog("CertificateAboutToChange Event received");
+                yield onCertificateAboutToChange(server);
+                debugLog("CertificateAboutToChange Event processed");
+            }));
+        });
+        serverConfigurationPriv.$pushCertificateManager.on("CertificateChanged", (actionQueue) => {
+            actionQueue.push(() => __awaiter(this, void 0, void 0, function* () {
+                debugLog("CertificateChanged Event received");
+                yield onCertificateChange(server);
+                debugLog("CertificateChanged Event processed");
+            }));
+        });
+    });
+}
+exports.installPushCertificateManagementOnServer = installPushCertificateManagementOnServer;
+//# sourceMappingURL=install_push_certitifate_management.js.map

package/dist/server/install_push_certitifate_management.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"install_push_certitifate_management.js","sourceRoot":"","sources":["../../source/server/install_push_certitifate_management.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA;;GAEG;AACH,yBAAyB;AACzB,yBAAyB;AACzB,6BAA6B;AAC7B,mCAA0C;AAE1C,+BAA+B;AAG/B,yDAA2C;AAE3C,yDAA2H;AAC3H,uDAAgF;AAChF,6DAAkE;AAKlE,yFAAsF;AAGtF,4DAA4D;AAC5D,MAAM,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC;AAEjC,MAAM,QAAQ,GAAG,IAAA,gCAAa,EAAC,qBAAqB,CAAC,CAAC;AACtD,MAAM,QAAQ,GAAG,IAAA,gCAAa,EAAC,qBAAqB,CAAC,CAAC;AACtD,MAAM,OAAO,GAAG,IAAA,iCAAc,EAAC,qBAAqB,CAAC,CAAC;AAatD,SAAS,cAAc;IACnB,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE;QACrB,MAAM,gBAAgB,GAAG,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxD,IAAI,CAAC,aAAa,GAAG,IAAA,6BAAS,EAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAAC;KACvD;IACD,OAAO,IAAI,CAAC,aAAc,CAAC;AAC/B,CAAC;AAED,SAAS,mBAAmB;IACxB,IAAI,CAAC,IAAI,CAAC,kBAAkB,EAAE;QAC1B,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;KACrE;IACD,OAAO,IAAI,CAAC,kBAAkB,CAAC;AACnC,CAAC;AAED,SAAS,aAAa;IAClB,uBAAuB;IACvB,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE;QACpB,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;KAC/D;IACD,OAAO,IAAI,CAAC,YAAY,CAAC;AAC7B,CAAC;AAED,SAAe,cAAc;;QACzB,MAAM,WAAW,GAAa,EAAE,CAAC;QACjC,MAAM,aAAa,GAAG,EAAE,CAAC,iBAAiB,EAAE,CAAC;QAC7C,KAAK,MAAM,aAAa,IAAI,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,EAAE;YACpD,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,EAAE;gBAC/B,SAAS;aACZ;YACD,KAAK,MAAM,SAAS,IAAI,aAAa,CAAC,aAAa,CAAE,EAAE;gBACnD,IAAI,MAAM,KAAK,SAAS,CAAC,MAAM,IAAI,SAAS,CAAC,QAAQ,KAAK,KAAK,EAAE;oBAC7D,6DAA6D;oBAC7D,SAAS;iBACZ;gBACD,WAAW,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;aACvC;SACJ;QACD,OAAO,WAAW,CAAC;IACvB,CAAC;CAAA;AAED;;GAEG;AACH,SAAe,OAAO;;QAClB,QAAQ,CAAC,qCAAqC,EAAE,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;QAEtF,IAAY,CAAC,gBAAgB,CAAC,gBAAgB,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,wBAAwB,CAAC,UAAU,CAAC,CAAC;QAChG,IAAY,CAAC,gBAAgB,CAAC,iBAAiB,EAAE,GAAG,EAAE,CACnD,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,wBAAwB,CAAC,OAAO,EAAE,2BAA2B,CAAC,CAChF,CAAC;QAEF,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE;YACpB,IAAI,CAAC,YAAY,GAAG,IAAA,yBAAgB,EAAC,MAAM,QAAQ,CAAC,IAAI,CAAC,wBAAwB,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;SAC1G;QAED,IAAI,CAAC,IAAI,CAAC,kBAAkB,EAAE;YAC1B,MAAM,eAAe,GAAG,IAAI,CAAC,eAAe,CAAC;YAE7C,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,eAAe,CAAC,EAAE;gBACjC,0CAA0C;gBAC1C,uEAAuE;gBAEvE,MAAM,IAAI,GAAG,MAAM,IAAA,iDAA2B,GAAE,CAAC;gBACjD,MAAM,WAAW,GAAG,MAAM,cAAc,EAAE,CAAC;gBAE3C,MAAM,cAAc,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,UAAW,CAAC,cAAe,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,aAAa,CAAC;gBAEpG,MAAM,OAAO,GAAG;oBACZ,cAAc;oBAEd,GAAG,EAAE,CAAC,IAAI,CAAC;oBACX,EAAE,EAAE,WAAW;oBAEf,OAAO,EAAE,MAAM,GAAG,cAAc,GAAG,WAAW;oBAE9C,SAAS,EAAE,IAAI,IAAI,EAAE;oBAErB,QAAQ,EAAE,GAAG,GAAG,CAAC;oBAEjB,KAAK;oBACL,UAAU,EAAE,eAAe;iBAC9B,CAAC;gBAEF,QAAQ,CAAC,kCAAkC,EAAE,OAAO,CAAC,CAAC;gBACtD,MAAM,IAAI,CAAC,wBAAwB,CAAC,2BAA2B,CAAC,OAAO,CAAC,CAAC;aAC5E;YACD,MAAM,cAAc,GAAG,MAAM,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;YAE/D,IAAI,CAAC,kBAAkB,GAAG,IAAA,mCAAe,EAAC,cAAc,CAAC,CAAC;YAE1D,mFAAmF;SACtF;IACL,CAAC;CAAA;AAED,SAAS,qBAAqB;IAC1B,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,kBAAkB,CAAC,OAAO,EAAE,2BAA2B,CAAC,CAAC;IAChG,MAAM,cAAc,GAAG,EAAE,CAAC,YAAY,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IAChE,MAAM,kBAAkB,GAAG,IAAA,mCAAe,EAAC,cAAc,CAAC,CAAC;IAC3D,MAAM,UAAU,GAAG,IAAA,sCAAkB,EAAC,kBAAkB,CAAC,CAAC;IAE1D,OAAO,kBAAkB,CAAC;AAC9B,CAAC;AAED,SAAS,eAAe;IACpB,MAAM,YAAY,GAAG,IAAA,yBAAgB,EAAC,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,kBAAkB,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;IACnG,OAAO,YAAY,CAAC;AACxB,CAAC;AAED,SAAe,0BAA0B,CAAC,MAAmB;;QACzD,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,sDAAsD,CAAC,CAAC,CAAC;QAC/E,MAAM,MAAM,CAAC,gBAAgB,EAAE,CAAC;QAChC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,qDAAqD,CAAC,CAAC,CAAC;IAClF,CAAC;CAAA;AAED;;;;;;;;GAQG;AACH,SAAe,mBAAmB,CAAC,MAAmB;;QAClD,QAAQ,CAAC,uBAAuB,CAAC,CAAC;QAElC,MAAM,OAAO,GAAG,MAAmC,CAAC;QAEpD,OAAO,CAAC,YAAY,GAAG,IAAA,yBAAgB,EAAC,EAAE,CAAC,YAAY,CAAC,MAAM,CAAC,wBAAwB,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;QAC7G,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,wBAAwB,CAAC,OAAO,EAAE,2BAA2B,CAAC,CAAC;QACxG,MAAM,cAAc,GAAG,EAAE,CAAC,YAAY,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;QAEhE,MAAM,cAAc,GAAG,MAAM,CAAC,wBAAwB,CAAC,UAAU,CAAC;QAClE,MAAM,UAAU,GAAG,IAAA,yBAAgB,EAAC,EAAE,CAAC,YAAY,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC,CAAC;QAC7E,8BAA8B;QAE9B,OAAO,CAAC,kBAAkB,GAAG,IAAA,mCAAe,EAAC,cAAc,CAAC,CAAC;QAC7D,OAAO,CAAC,YAAY,GAAG,UAAU,CAAC;QAClC,uDAAuD;QACvD,OAAO,CAAC,aAAa,GAAG,IAAA,6BAAS,EAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,CAAC;QAEjE,UAAU,CAAC,GAAS,EAAE;YAClB,IAAI;gBACA,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,gDAAgD,CAAC,CAAC,CAAC;gBACzE,MAAM,MAAM,CAAC,gBAAgB,EAAE,CAAC;gBAChC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,4CAA4C,CAAC,CAAC,CAAC;gBAErE,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,6CAA6C,CAAC,CAAC,CAAC;gBACtE,MAAM,MAAM,CAAC,eAAe,EAAE,CAAC;gBAC/B,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,4CAA4C,CAAC,CAAC,CAAC;gBAErE,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,uDAAuD,CAAC,CAAC,CAAC;aACnF;YAAC,OAAO,GAAG,EAAE;gBACV,IAAI,GAAG,YAAY,KAAK,EAAE;oBACtB,QAAQ,CAAC,sCAAsC,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;iBACjE;gBACD,QAAQ,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;aAC3B;QACL,CAAC,CAAA,EAAE,IAAI,CAAC,CAAC;IACb,CAAC;CAAA;AAKD,SAAsB,wCAAwC,CAAC,MAAmB;;QAC9E,IAAI,CAAC,MAAM,CAAC,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,EAAE;YAC/C,MAAM,IAAI,KAAK,CACX,yCAAyC;gBACrC,6FAA6F,CACpG,CAAC;SACL;QACD,MAAM,OAAO,CAAC,IAAI,CAAC,MAAmC,CAAC,CAAC;QAExD,MAAM,CAAC,cAAc,GAAG,cAAc,CAAC;QACvC,MAAM,CAAC,mBAAmB,GAAG,mBAAmB,CAAC;QACjD,MAAM,CAAC,aAAa,GAAG,aAAa,CAAC;QAErC,KAAK,MAAM,QAAQ,IAAI,MAAM,CAAC,SAAS,EAAE;YACrC,MAAM,YAAY,GAAG,QAAe,CAAC;YACrC,YAAY,CAAC,iBAAiB,GAAG,IAAI,CAAC;YACtC,YAAY,CAAC,WAAW,GAAG,IAAI,CAAC;YAEhC,QAAQ,CAAC,mBAAmB,GAAG,qBAAqB,CAAC;YACrD,QAAQ,CAAC,aAAa,GAAG,eAAe,CAAC;YAEzC,KAAK,MAAM,CAAC,IAAI,QAAQ,CAAC,oBAAoB,EAAE,EAAE;gBAC7C,8BAA8B;gBAC7B,CAAS,CAAC,gBAAgB,CAAC,mBAAmB,EAAE;oBAC7C,OAAO,QAAQ,CAAC,cAAc,EAAE,CAAC;gBACrC,CAAC,CAAC,CAAC;aACN;SACJ;QAED,MAAM,IAAA,mEAAgC,EAAC,MAAM,CAAC,MAAM,CAAC,YAAY,EAAE;YAC/D,gBAAgB,EAAE,MAAM,CAAC,wBAAwB;YACjD,cAAc,EAAE,MAAM,CAAC,sBAAsB;YAE7C,cAAc,EAAE,MAAM,CAAC,UAAU,CAAC,cAAe,IAAI,YAAY;SACpE,CAAC,CAAC;QAEH,MAAM,mBAAmB,GAAG,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,CAAC,cAAc,CAAC,qBAAqB,CAAE,CAAC;QACxH,MAAM,uBAAuB,GAAG,mBAA8C,CAAC;QAC/E,IAAA,0BAAM,EAAC,uBAAuB,CAAC,uBAAuB,CAAC,CAAC;QAExD,uBAAuB,CAAC,uBAAuB,CAAC,EAAE,CAAC,0BAA0B,EAAE,CAAC,WAAwB,EAAE,EAAE;YACxG,WAAW,CAAC,IAAI,CAAC,GAAwB,EAAE;gBACvC,QAAQ,CAAC,yCAAyC,CAAC,CAAC;gBACpD,MAAM,0BAA0B,CAAC,MAAM,CAAC,CAAC;gBACzC,QAAQ,CAAC,0CAA0C,CAAC,CAAC;YACzD,CAAC,CAAA,CAAC,CAAC;QACP,CAAC,CAAC,CAAC;QACH,uBAAuB,CAAC,uBAAuB,CAAC,EAAE,CAAC,oBAAoB,EAAE,CAAC,WAAwB,EAAE,EAAE;YAClG,WAAW,CAAC,IAAI,CAAC,GAAwB,EAAE;gBACvC,QAAQ,CAAC,mCAAmC,CAAC,CAAC;gBAC9C,MAAM,mBAAmB,CAAC,MAAM,CAAC,CAAC;gBAClC,QAAQ,CAAC,oCAAoC,CAAC,CAAC;YACnD,CAAC,CAAA,CAAC,CAAC;QACP,CAAC,CAAC,CAAC;IACP,CAAC;CAAA;AAtDD,4FAsDC"}

package/dist/server/promote_trust_list.d.ts

@@ -0,0 +1,6 @@
+/**
+ * @module node-opcua-server-configuration
+ */
+import { UATrustList, UAObject, UAVariable } from "node-opcua-address-space";
+export declare function promoteTrustList(trustList: UATrustList): Promise<void>;
+export declare function installAccessRestrictionOnTrustList(trustList: UAVariable | UAObject): void;