opticedge-cloud-utils 1.1.1 → 1.1.2

package/dist/auth.d.ts

@@ -0,0 +1,7 @@
+import { Request } from '@google-cloud/functions-framework';
+interface VerifyOptions {
+    allowedAudience: string;
+    allowedServiceAccount: string;
+}
+export declare function verifyRequest(req: Request, options: VerifyOptions): Promise<boolean>;
+export {};

package/dist/auth.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifyRequest = verifyRequest;
+const google_auth_library_1 = require("google-auth-library");
+async function verifyRequest(req, options) {
+    const authHeader = req.headers['authorization'];
+    if (!authHeader || !authHeader.startsWith('Bearer ')) {
+        return false;
+    }
+    const token = authHeader.split(' ')[1];
+    const client = new google_auth_library_1.OAuth2Client();
+    try {
+        const ticket = await client.verifyIdToken({
+            idToken: token,
+            audience: options.allowedAudience
+        });
+        const payload = ticket.getPayload();
+        return payload?.email === options.allowedServiceAccount;
+    }
+    catch {
+        return false;
+    }
+}

package/dist/db/mongo.d.ts

@@ -0,0 +1,3 @@
+import { Collection, Document } from 'mongodb';
+export declare function connectToMongo(projectId: string, uriSecret: string, dbName: string): Promise<void>;
+export declare function getCollection<T extends Document = Document>(name: string): Collection<T>;

package/dist/db/mongo.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.connectToMongo = connectToMongo;
+exports.getCollection = getCollection;
+const mongodb_1 = require("mongodb");
+const secrets_1 = require("../secrets");
+let client;
+let db;
+let connectPromise;
+async function connectToMongo(projectId, uriSecret, dbName) {
+    if (db)
+        return; // already connected
+    if (!connectPromise) {
+        connectPromise = (async () => {
+            const uri = await (0, secrets_1.getSecret)(projectId, uriSecret);
+            client = new mongodb_1.MongoClient(uri);
+            await client.connect();
+            db = client.db(dbName);
+        })();
+    }
+    await connectPromise;
+}
+function getCollection(name) {
+    if (!db)
+        throw new Error('Mongo not initialized');
+    return db.collection(name);
+}

package/dist/db/mongo2.d.ts

@@ -0,0 +1,4 @@
+import { Db, Collection, Document } from 'mongodb';
+export declare function connectToMongo2(projectId: string, uriSecret: string): Promise<void>;
+export declare function getDb2(dbName: string): Db;
+export declare function getCollection2<T extends Document = Document>(dbName: string, collectionName: string): Collection<T>;

package/dist/db/mongo2.js

@@ -0,0 +1,30 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.connectToMongo2 = connectToMongo2;
+exports.getDb2 = getDb2;
+exports.getCollection2 = getCollection2;
+// Multi DB safe util
+const mongodb_1 = require("mongodb");
+const secrets_1 = require("../secrets");
+let client;
+let connectPromise;
+async function connectToMongo2(projectId, uriSecret) {
+    if (client)
+        return; // already connected
+    if (!connectPromise) {
+        connectPromise = (async () => {
+            const uri = await (0, secrets_1.getSecret)(projectId, uriSecret);
+            client = new mongodb_1.MongoClient(uri);
+            await client.connect();
+        })();
+    }
+    await connectPromise;
+}
+function getDb2(dbName) {
+    if (!client)
+        throw new Error('Mongo not initialized');
+    return client.db(dbName);
+}
+function getCollection2(dbName, collectionName) {
+    return getDb2(dbName).collection(collectionName);
+}

package/dist/db/mongo3.d.ts

@@ -0,0 +1,6 @@
+import { MongoClient, Db, Collection, Document } from 'mongodb';
+export declare function connectToMongo3(projectId: string, uriSecret: string): Promise<MongoClient>;
+export declare function getDb3(uriSecret: string, dbName: string): Db;
+export declare function getCollection3<T extends Document = Document>(uriSecret: string, dbName: string, collectionName: string): Collection<T>;
+export declare const __mongoClients: Map<string, MongoClient>;
+export declare const __connectPromises: Map<string, Promise<void>>;

package/dist/db/mongo3.js

@@ -0,0 +1,39 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.__connectPromises = exports.__mongoClients = void 0;
+exports.connectToMongo3 = connectToMongo3;
+exports.getDb3 = getDb3;
+exports.getCollection3 = getCollection3;
+// Multi cluster safe util
+const mongodb_1 = require("mongodb");
+const secrets_1 = require("../secrets");
+const clients = new Map();
+const connectPromises = new Map();
+async function connectToMongo3(projectId, uriSecret) {
+    if (clients.has(uriSecret)) {
+        return clients.get(uriSecret);
+    }
+    if (!connectPromises.has(uriSecret)) {
+        const promise = (async () => {
+            const uri = await (0, secrets_1.getSecret)(projectId, uriSecret);
+            const client = new mongodb_1.MongoClient(uri);
+            await client.connect();
+            clients.set(uriSecret, client);
+        })();
+        connectPromises.set(uriSecret, promise);
+    }
+    await connectPromises.get(uriSecret);
+    return clients.get(uriSecret);
+}
+function getDb3(uriSecret, dbName) {
+    const client = clients.get(uriSecret);
+    if (!client) {
+        throw new Error(`Mongo client for secret "${uriSecret}" not initialized`);
+    }
+    return client.db(dbName);
+}
+function getCollection3(uriSecret, dbName, collectionName) {
+    return getDb3(uriSecret, dbName).collection(collectionName);
+}
+exports.__mongoClients = clients;
+exports.__connectPromises = connectPromises;

package/dist/env.d.ts

@@ -0,0 +1 @@
+export declare function getEnv(name: string, fallback?: string): string;

package/dist/env.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getEnv = getEnv;
+function getEnv(name, fallback) {
+    const value = process.env[name];
+    if (!value) {
+        if (fallback !== undefined)
+            return fallback;
+        throw new Error(`Missing env var ${name}`);
+    }
+    return value;
+}

package/dist/index.d.ts

@@ -0,0 +1,10 @@
+export * from './db/mongo';
+export * from './db/mongo2';
+export * from './db/mongo3';
+export * from './tw/utils';
+export * from './tw/wallet';
+export * from './auth';
+export * from './env';
+export * from './regex';
+export * from './secrets';
+export * from './task';

package/dist/index.js

@@ -0,0 +1,26 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./db/mongo"), exports);
+__exportStar(require("./db/mongo2"), exports);
+__exportStar(require("./db/mongo3"), exports);
+__exportStar(require("./tw/utils"), exports);
+__exportStar(require("./tw/wallet"), exports);
+__exportStar(require("./auth"), exports);
+__exportStar(require("./env"), exports);
+__exportStar(require("./regex"), exports);
+__exportStar(require("./secrets"), exports);
+__exportStar(require("./task"), exports);

package/dist/regex.d.ts

@@ -0,0 +1 @@
+export declare function escapeRegex(input: string): string;

package/dist/regex.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.escapeRegex = escapeRegex;
+function escapeRegex(input) {
+    return input.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+}

package/dist/secrets.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Returns the latest value of a Secret Manager secret.
+ *
+ * @param projectId   – GCP project that owns the secret.
+ * @param secretName  – Secret name (without version).
+ * @returns           – UTF-8 string value.
+ */
+export declare function getSecret(projectId: string, secretName: string): Promise<string>;

package/dist/secrets.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSecret = getSecret;
+const secret_manager_1 = require("@google-cloud/secret-manager");
+/**
+ * Returns the latest value of a Secret Manager secret.
+ *
+ * @param projectId   – GCP project that owns the secret.
+ * @param secretName  – Secret name (without version).
+ * @returns           – UTF-8 string value.
+ */
+async function getSecret(projectId, secretName) {
+    if (!projectId)
+        throw new Error('projectId is required');
+    if (!secretName)
+        throw new Error('secretName is required');
+    const secretClient = new secret_manager_1.SecretManagerServiceClient();
+    const [version] = await secretClient.accessSecretVersion({
+        name: `projects/${projectId}/secrets/${secretName}/versions/latest`
+    });
+    return version.payload?.data?.toString('utf-8') ?? '';
+}

package/dist/task.d.ts

@@ -0,0 +1 @@
+export declare function createTask(projectId: string, region: string, queueId: string, data: unknown, serviceAccount: string, audience: string, delaySeconds?: number): Promise<string>;

package/dist/task.js

@@ -0,0 +1,38 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createTask = createTask;
+const tasks_1 = require("@google-cloud/tasks");
+const tasksClient = new tasks_1.CloudTasksClient();
+async function createTask(projectId, region, queueId, data, serviceAccount, audience, delaySeconds = 0) {
+    if (!projectId || !region || !queueId || !serviceAccount || !audience) {
+        throw new Error('Missing required parameters for Cloud Tasks setup');
+    }
+    const parent = tasksClient.queuePath(projectId, region, queueId);
+    const now = Date.now() / 1000;
+    const scheduledTime = delaySeconds > 0
+        ? {
+            seconds: Math.floor(now + delaySeconds)
+        }
+        : undefined;
+    const task = {
+        httpRequest: {
+            httpMethod: tasks_1.protos.google.cloud.tasks.v2.HttpMethod.POST,
+            url: audience,
+            headers: {
+                'Content-Type': 'application/json'
+            },
+            body: Buffer.from(JSON.stringify(data)).toString('base64'),
+            oidcToken: {
+                serviceAccountEmail: serviceAccount,
+                audience
+            }
+        },
+        scheduleTime: scheduledTime
+    };
+    const [response] = await tasksClient.createTask({ parent, task });
+    if (!response.name) {
+        throw new Error('Failed to create task: no name returned');
+    }
+    console.log(`✅ Created Cloud Task: ${response.name}`);
+    return response.name;
+}

package/dist/tw/utils.d.ts

@@ -0,0 +1 @@
+export declare function isValidWebhookSignature(secret: string, body: string, signature: string): boolean;

package/dist/tw/utils.js

@@ -0,0 +1,19 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isValidWebhookSignature = isValidWebhookSignature;
+const crypto_1 = __importDefault(require("crypto"));
+const generateSignature = (body, secret) => {
+    return crypto_1.default.createHmac('sha256', secret).update(body).digest('hex');
+};
+function isValidWebhookSignature(secret, body, signature) {
+    const expectedSignature = generateSignature(body, secret);
+    const expectedBuffer = Buffer.from(expectedSignature);
+    const signatureBuffer = Buffer.from(signature);
+    if (expectedBuffer.length !== signatureBuffer.length) {
+        return false;
+    }
+    return crypto_1.default.timingSafeEqual(expectedBuffer, signatureBuffer);
+}

package/dist/tw/wallet.d.ts

@@ -0,0 +1 @@
+export declare function pregenerateInAppWallet(projectId: string, twClientId: string, twSecretKeyName: string, email: string): Promise<string | null>;

package/dist/tw/wallet.js

@@ -0,0 +1,32 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.pregenerateInAppWallet = pregenerateInAppWallet;
+const axios_1 = __importDefault(require("axios"));
+const secrets_1 = require("../secrets");
+async function pregenerateInAppWallet(projectId, twClientId, twSecretKeyName, email) {
+    const TW_SECRET_KEY = await (0, secrets_1.getSecret)(projectId, twSecretKeyName);
+    try {
+        const response = await axios_1.default.post('https://in-app-wallet.thirdweb.com/api/v1/pregenerate', { strategy: 'email', email }, {
+            headers: {
+                'x-secret-key': TW_SECRET_KEY,
+                'x-client-id': twClientId,
+                'Content-Type': 'application/json'
+            },
+            timeout: 5000
+        });
+        const wallet = response.data.wallet;
+        if (!wallet || !wallet.address) {
+            console.error('Invalid wallet response:', response.data);
+            return null;
+        }
+        console.log('Wallet pregeneration response:', wallet.address);
+        return wallet.address;
+    }
+    catch (error) {
+        console.error('Error pregenerating wallet:', error);
+        return null;
+    }
+}

package/package.json

@@ -1,49 +1,9 @@
 {
   "name": "opticedge-cloud-utils",
-  "version": "1.1.1",
+  "version": "1.1.2",
   "description": "Common utilities for cloud functions",
-  "exports": {
-    "./db/mongo": {
-      "import": "./dist/db/mongo.js",
-      "types": "./dist/db/mongo.d.ts"
-    },
-    "./db/mongo2": {
-      "import": "./dist/db/mongo2.js",
-      "types": "./dist/db/mongo2.d.ts"
-    },
-    "./db/mongo3": {
-      "import": "./dist/db/mongo3.js",
-      "types": "./dist/db/mongo3.d.ts"
-    },
-    "./auth": {
-      "import": "./dist/auth/index.js",
-      "types": "./dist/auth/index.d.ts"
-    },
-    "./env": {
-      "import": "./dist/env.js",
-      "types": "./dist/env.d.ts"
-    },
-    "./regex": {
-      "import": "./dist/regex.js",
-      "types": "./dist/regex.d.ts"
-    },
-    "./secrets": {
-      "import": "./dist/secrets.js",
-      "types": "./dist/secrets.d.ts"
-    },
-    "./task": {
-      "import": "./dist/task.js",
-      "types": "./dist/task.d.ts"
-    },
-    "./tw/utils": {
-      "import": "./dist/tw/tw-utils.js",
-      "types": "./dist/tw/tw-utils.d.ts"
-    },
-    "./tw/wallet": {
-      "import": "./dist/tw/wallet.js",
-      "types": "./dist/tw/wallet.d.ts"
-    }
-  },
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
   "scripts": {
     "clean": "rimraf dist coverage *.tsbuildinfo",
     "build": "npm run clean && tsc",

package/src/index.ts

@@ -0,0 +1,10 @@
+export * from './db/mongo'
+export * from './db/mongo2'
+export * from './db/mongo3'
+export * from './tw/utils'
+export * from './tw/wallet'
+export * from './auth'
+export * from './env'
+export * from './regex'
+export * from './secrets'
+export * from './task'