paygate-mcp 8.85.0 → 8.87.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/config-validator.d.ts.map +1 -1
- package/dist/config-validator.js +10 -0
- package/dist/config-validator.js.map +1 -1
- package/dist/server.d.ts.map +1 -1
- package/dist/server.js +89 -56
- package/dist/server.js.map +1 -1
- package/dist/webhook.d.ts +5 -0
- package/dist/webhook.d.ts.map +1 -1
- package/dist/webhook.js +110 -0
- package/dist/webhook.js.map +1 -1
- package/package.json +1 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"config-validator.d.ts","sourceRoot":"","sources":["../src/config-validator.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;
|
|
1
|
+
{"version":3,"file":"config-validator.d.ts","sourceRoot":"","sources":["../src/config-validator.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,OAAO,GAAG,SAAS,CAAC;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,iBAAiB;IAChC,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE;QAAE,cAAc,CAAC,EAAE,MAAM,CAAC;QAAC,eAAe,CAAC,EAAE,MAAM,CAAC;QAAC,iBAAiB,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAChH,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,WAAW,CAAC,EAAE;QAAE,cAAc,CAAC,EAAE,MAAM,CAAC;QAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAAC,kBAAkB,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC7H,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACpC,OAAO,CAAC,EAAE,KAAK,CAAC;QACd,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;QACtB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC,CAAC;IACH,KAAK,CAAC,EAAE;QACN,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;KACnB,CAAC;IACF,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,iBAAiB,GAAG,gBAAgB,EAAE,CAsR5E;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,gBAAgB,EAAE,GAAG,MAAM,CAqBnE"}
|
package/dist/config-validator.js
CHANGED
|
@@ -8,6 +8,7 @@
|
|
|
8
8
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
9
9
|
exports.validateConfig = validateConfig;
|
|
10
10
|
exports.formatDiagnostics = formatDiagnostics;
|
|
11
|
+
const webhook_1 = require("./webhook");
|
|
11
12
|
/**
|
|
12
13
|
* Validate a PayGate config object. Returns an array of diagnostics.
|
|
13
14
|
* Empty array = valid config.
|
|
@@ -133,6 +134,15 @@ function validateConfig(config) {
|
|
|
133
134
|
if (config.webhookUrl) {
|
|
134
135
|
try {
|
|
135
136
|
new URL(config.webhookUrl);
|
|
137
|
+
// SSRF protection: warn if webhook URL targets private/internal network
|
|
138
|
+
const ssrfError = (0, webhook_1.checkSsrf)(config.webhookUrl);
|
|
139
|
+
if (ssrfError) {
|
|
140
|
+
diags.push({
|
|
141
|
+
level: 'warning',
|
|
142
|
+
field: 'webhookUrl',
|
|
143
|
+
message: `webhookUrl targets a private/internal address (${ssrfError}). Webhook delivery will be blocked by SSRF protection.`,
|
|
144
|
+
});
|
|
145
|
+
}
|
|
136
146
|
}
|
|
137
147
|
catch {
|
|
138
148
|
diags.push({
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"config-validator.js","sourceRoot":"","sources":["../src/config-validator.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;
|
|
1
|
+
{"version":3,"file":"config-validator.js","sourceRoot":"","sources":["../src/config-validator.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AA+CH,wCAsRC;AAKD,8CAqBC;AA7VD,uCAAsC;AAyCtC;;;GAGG;AACH,SAAgB,cAAc,CAAC,MAAyB;IACtD,MAAM,KAAK,GAAuB,EAAE,CAAC;IAErC,2EAA2E;IAC3E,MAAM,SAAS,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;IAC3C,MAAM,SAAS,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACvC,MAAM,QAAQ,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IAEjE,IAAI,CAAC,SAAS,IAAI,CAAC,SAAS,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC1C,KAAK,CAAC,IAAI,CAAC;YACT,KAAK,EAAE,OAAO;YACd,KAAK,EAAE,qCAAqC;YAC5C,OAAO,EAAE,wEAAwE;SAClF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,QAAQ,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,EAAE,CAAC;QACzC,KAAK,CAAC,IAAI,CAAC;YACT,KAAK,EAAE,OAAO;YACd,KAAK,EAAE,SAAS;YAChB,OAAO,EAAE,iFAAiF;SAC3F,CAAC,CAAC;IACL,CAAC;IAED,IAAI,SAAS,IAAI,SAAS,EAAE,CAAC;QAC3B,KAAK,CAAC,IAAI,CAAC;YACT,KAAK,EAAE,OAAO;YACd,KAAK,EAAE,2BAA2B;YAClC,OAAO,EAAE,wEAAwE;SAClF,CAAC,CAAC;IACL,CAAC;IAED,2EAA2E;IAC3E,IAAI,QAAQ,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QAC/B,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;QACnC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC/C,MAAM,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAC5B,IAAI,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;gBACd,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,WAAW,CAAC,UAAU;oBAC7B,OAAO,EAAE,mBAAmB,CAAC,sCAAsC;iBACpE,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,IAAI,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC3B,KAAK,CAAC,IAAI,CAAC;wBACT,KAAK,EAAE,OAAO;wBACd,KAAK,EAAE,WAAW,CAAC,UAAU;wBAC7B,OAAO,EAAE,qBAAqB,CAAC,CAAC,MAAM,2CAA2C;qBAClF,CAAC,CAAC;gBACL,CAAC;gBACD,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;gBAEvB,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC/C,KAAK,CAAC,IAAI,CAAC;wBACT,KAAK,EAAE,SAAS;wBAChB,KAAK,EAAE,WAAW,CAAC,UAAU;wBAC7B,OAAO,EAAE,WAAW,CAAC,CAAC,MAAM,iFAAiF;qBAC9G,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,IAAI,CAAC,CAAC,CAAC,aAAa,IAAI,CAAC,CAAC,CAAC,SAAS,EAAE,CAAC;gBACrC,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,WAAW,CAAC,GAAG;oBACtB,OAAO,EAAE,WAAW,CAAC,CAAC,MAAM,IAAI,CAAC,sCAAsC;iBACxE,CAAC,CAAC;YACL,CAAC;YACD,IAAI,CAAC,CAAC,aAAa,IAAI,CAAC,CAAC,SAAS,EAAE,CAAC;gBACnC,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,WAAW,CAAC,GAAG;oBACtB,OAAO,EAAE,WAAW,CAAC,CAAC,MAAM,IAAI,CAAC,kDAAkD;iBACpF,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,2EAA2E;IAC3E,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;QAC9B,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC,IAAI,MAAM,CAAC,IAAI,GAAG,KAAK,EAAE,CAAC;YAC7E,KAAK,CAAC,IAAI,CAAC;gBACT,KAAK,EAAE,OAAO;gBACd,KAAK,EAAE,MAAM;gBACb,OAAO,EAAE,gBAAgB,MAAM,CAAC,IAAI,oBAAoB;aACzD,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,0EAA0E;IAC1E,IAAI,MAAM,CAAC,qBAAqB,KAAK,SAAS,EAAE,CAAC;QAC/C,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,qBAAqB,CAAC,IAAI,MAAM,CAAC,qBAAqB,GAAG,CAAC,EAAE,CAAC;YACvF,KAAK,CAAC,IAAI,CAAC;gBACT,KAAK,EAAE,OAAO;gBACd,KAAK,EAAE,uBAAuB;gBAC9B,OAAO,EAAE,kCAAkC,MAAM,CAAC,qBAAqB,iBAAiB;aACzF,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,qBAAqB,KAAK,SAAS,EAAE,CAAC;QAC/C,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,qBAAqB,CAAC,IAAI,MAAM,CAAC,qBAAqB,GAAG,CAAC,EAAE,CAAC;YACvF,KAAK,CAAC,IAAI,CAAC;gBACT,KAAK,EAAE,OAAO;gBACd,KAAK,EAAE,uBAAuB;gBAC9B,OAAO,EAAE,kCAAkC,MAAM,CAAC,qBAAqB,iBAAiB;aACzF,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,iBAAiB,KAAK,SAAS,EAAE,CAAC;QAC3C,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,iBAAiB,CAAC,IAAI,MAAM,CAAC,iBAAiB,GAAG,CAAC,EAAE,CAAC;YAChF,KAAK,CAAC,IAAI,CAAC;gBACT,KAAK,EAAE,OAAO;gBACd,KAAK,EAAE,mBAAmB;gBAC1B,OAAO,EAAE,8BAA8B,MAAM,CAAC,iBAAiB,mCAAmC;aACnG,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,0EAA0E;IAC1E,IAAI,MAAM,CAAC,aAAa,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;QAC/C,KAAK,CAAC,IAAI,CAAC;YACT,KAAK,EAAE,SAAS;YAChB,KAAK,EAAE,eAAe;YACtB,OAAO,EAAE,qEAAqE;SAC/E,CAAC,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,IAAI,CAAC;YACH,IAAI,GAAG,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;YAC3B,wEAAwE;YACxE,MAAM,SAAS,GAAG,IAAA,mBAAS,EAAC,MAAM,CAAC,UAAU,CAAC,CAAC;YAC/C,IAAI,SAAS,EAAE,CAAC;gBACd,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,SAAS;oBAChB,KAAK,EAAE,YAAY;oBACnB,OAAO,EAAE,kDAAkD,SAAS,yDAAyD;iBAC9H,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,KAAK,CAAC,IAAI,CAAC;gBACT,KAAK,EAAE,OAAO;gBACd,KAAK,EAAE,YAAY;gBACnB,OAAO,EAAE,wBAAwB,MAAM,CAAC,UAAU,yBAAyB;aAC5E,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,0EAA0E;IAC1E,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;QACpB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;YACrC,IAAI,GAAG,CAAC,QAAQ,KAAK,QAAQ,IAAI,GAAG,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;gBAC5D,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,UAAU;oBACjB,OAAO,EAAE,8BAA8B,GAAG,CAAC,QAAQ,wCAAwC;iBAC5F,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,KAAK,CAAC,IAAI,CAAC;gBACT,KAAK,EAAE,OAAO;gBACd,KAAK,EAAE,UAAU;gBACjB,OAAO,EAAE,sBAAsB,MAAM,CAAC,QAAQ,kCAAkC;aACjF,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,0EAA0E;IAC1E,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvB,KAAK,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC;YACjE,IAAI,OAAO,CAAC,cAAc,KAAK,SAAS,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,OAAO,CAAC,cAAc,GAAG,CAAC,CAAC,EAAE,CAAC;gBACrH,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,eAAe,IAAI,iBAAiB;oBAC3C,OAAO,EAAE,+BAA+B,IAAI,MAAM,OAAO,CAAC,cAAc,iBAAiB;iBAC1F,CAAC,CAAC;YACL,CAAC;YACD,IAAI,OAAO,CAAC,eAAe,KAAK,SAAS,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,eAAe,CAAC,IAAI,OAAO,CAAC,eAAe,GAAG,CAAC,CAAC,EAAE,CAAC;gBACxH,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,eAAe,IAAI,kBAAkB;oBAC5C,OAAO,EAAE,gCAAgC,IAAI,MAAM,OAAO,CAAC,eAAe,iBAAiB;iBAC5F,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,0EAA0E;IAC1E,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;QACvB,MAAM,CAAC,GAAG,MAAM,CAAC,WAAW,CAAC;QAC7B,KAAK,MAAM,KAAK,IAAI,CAAC,gBAAgB,EAAE,kBAAkB,EAAE,kBAAkB,EAAE,oBAAoB,CAAU,EAAE,CAAC;YAC9G,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;YACrB,IAAI,GAAG,KAAK,SAAS,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,CAAC,EAAE,CAAC;gBAC5D,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,eAAe,KAAK,EAAE;oBAC7B,OAAO,EAAE,WAAW,KAAK,KAAK,GAAG,iBAAiB;iBACnD,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,0EAA0E;IAC1E,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,KAAK,MAAM,CAAC,GAAG,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,CAAC;YAC/D,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;gBAC7C,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,cAAc,GAAG,EAAE;oBAC1B,OAAO,EAAE,qCAAqC,GAAG,MAAM,OAAO,iBAAiB;iBAChF,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,yEAAyE;IACzE,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,IAAI,MAAM,CAAC,KAAK,CAAC,cAAc,KAAK,SAAS,EAAE,CAAC;YAC9C,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,cAAc,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,cAAc,IAAI,CAAC,EAAE,CAAC;gBACtF,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,sBAAsB;oBAC7B,OAAO,EAAE,2BAA2B,MAAM,CAAC,KAAK,CAAC,cAAc,gBAAgB;iBAChF,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QACD,IAAI,MAAM,CAAC,KAAK,CAAC,eAAe,KAAK,SAAS,EAAE,CAAC;YAC/C,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,eAAe,IAAI,CAAC,EAAE,CAAC;gBACxF,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,uBAAuB;oBAC9B,OAAO,EAAE,4BAA4B,MAAM,CAAC,KAAK,CAAC,eAAe,gBAAgB;iBAClF,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,0EAA0E;IAC1E,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,KAAK,CAAC,IAAI,CAAC;YACT,KAAK,EAAE,SAAS;YAChB,KAAK,EAAE,YAAY;YACnB,OAAO,EAAE,uDAAuD;SACjE,CAAC,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,SAAS,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;QACxC,KAAK,CAAC,IAAI,CAAC;YACT,KAAK,EAAE,SAAS;YAChB,KAAK,EAAE,sBAAsB;YAC7B,OAAO,EAAE,mGAAmG;SAC7G,CAAC,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,SAAS,EAAE,CAAC;QACrB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;YACtC,IAAI,GAAG,CAAC,QAAQ,KAAK,OAAO,IAAI,GAAG,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;gBAC1D,KAAK,CAAC,IAAI,CAAC;oBACT,KAAK,EAAE,OAAO;oBACd,KAAK,EAAE,WAAW;oBAClB,OAAO,EAAE,+BAA+B,GAAG,CAAC,QAAQ,sCAAsC;iBAC3F,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,KAAK,CAAC,IAAI,CAAC;gBACT,KAAK,EAAE,OAAO;gBACd,KAAK,EAAE,WAAW;gBAClB,OAAO,EAAE,uBAAuB,MAAM,CAAC,SAAS,yBAAyB;aACxE,CAAC,CAAC;QACP,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAgB,iBAAiB,CAAC,KAAyB;IACzD,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,oBAAoB,CAAC;IAEpD,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,OAAO,CAAC,CAAC;IACtD,MAAM,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC;IAC1D,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtB,KAAK,CAAC,IAAI,CAAC,KAAK,MAAM,CAAC,MAAM,YAAY,CAAC,CAAC;QAC3C,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;YACvB,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IACD,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxB,KAAK,CAAC,IAAI,CAAC,KAAK,QAAQ,CAAC,MAAM,cAAc,CAAC,CAAC;QAC/C,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;YACzB,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}
|
package/dist/server.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,EAAgB,eAAe,EAA0B,MAAM,MAAM,CAAC;AAI7E,OAAO,EAAE,aAAa,EAAkB,mBAAmB,EAAkB,MAAM,SAAS,CAAC;AAE7F,OAAO,EAAE,MAAM,EAAiC,MAAM,UAAU,CAAC;AASjE,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAE9B,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAE7C,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,OAAO,EAAE,cAAc,EAAqD,MAAM,WAAW,CAAC;AAC9F,OAAO,EAAE,WAAW,EAAmB,MAAM,SAAS,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAE7C,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAS,MAAM,UAAU,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAEtC,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAC9C,OAAO,EAAE,eAAe,EAA6B,MAAM,cAAc,CAAC;AAC1E,OAAO,EAAE,aAAa,EAAE,aAAa,EAAqB,MAAM,UAAU,CAAC;AAC3E,OAAO,EAAE,eAAe,EAAE,MAAM,UAAU,CAAC;
|
|
1
|
+
{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,EAAgB,eAAe,EAA0B,MAAM,MAAM,CAAC;AAI7E,OAAO,EAAE,aAAa,EAAkB,mBAAmB,EAAkB,MAAM,SAAS,CAAC;AAE7F,OAAO,EAAE,MAAM,EAAiC,MAAM,UAAU,CAAC;AASjE,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC;AAE9B,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AACnC,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAE7C,OAAO,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AACxC,OAAO,EAAE,cAAc,EAAqD,MAAM,WAAW,CAAC;AAC9F,OAAO,EAAE,WAAW,EAAmB,MAAM,SAAS,CAAC;AACvD,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAE7C,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAS,MAAM,UAAU,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAEtC,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAC9C,OAAO,EAAE,eAAe,EAA6B,MAAM,cAAc,CAAC;AAC1E,OAAO,EAAE,aAAa,EAAE,aAAa,EAAqB,MAAM,UAAU,CAAC;AAC3E,OAAO,EAAE,eAAe,EAAE,MAAM,UAAU,CAAC;AAG3C,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AACjD,OAAO,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAC;AAmCrD,0EAA0E;AAC1E,wBAAgB,iBAAiB,IAAI,MAAM,CAE1C;AAED,sFAAsF;AACtF,wBAAgB,YAAY,CAAC,GAAG,EAAE,eAAe,GAAG,MAAM,GAAG,SAAS,CAErE;AAED;;;;;;;;;GASG;AACH,wBAAgB,eAAe,CAAC,GAAG,EAAE,eAAe,EAAE,cAAc,CAAC,EAAE,MAAM,EAAE,GAAG,MAAM,CAsBvF;AAyCD,yCAAyC;AACzC,KAAK,YAAY,GAAG,QAAQ,GAAG,YAAY,CAAC;AAa5C,qBAAa,aAAa;IACxB,iDAAiD;IACjD,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,IAAI,EAAE,IAAI,CAAC;IACpB,0DAA0D;IAC1D,QAAQ,CAAC,KAAK,EAAE,YAAY,GAAG,IAAI,CAAC;IACpC,8DAA8D;IAC9D,QAAQ,CAAC,MAAM,EAAE,iBAAiB,GAAG,IAAI,CAAC;IAC1C,OAAO,CAAC,MAAM,CAAuB;IACrC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgB;IACvC,oEAAoE;IACpE,QAAQ,CAAC,SAAS,EAAE,eAAe,CAAC;IACpC,mEAAmE;IACnE,OAAO,CAAC,iBAAiB,CAAS;IAClC,OAAO,CAAC,aAAa,CAAqC;IAC1D,wDAAwD;IACxD,QAAQ,CAAC,KAAK,EAAE,aAAa,GAAG,IAAI,CAAQ;IAC5C,oDAAoD;IACpD,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAC;IAClC,2BAA2B;IAC3B,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC;IAC5B,0CAA0C;IAC1C,QAAQ,CAAC,QAAQ,EAAE,YAAY,CAAC;IAChC,8CAA8C;IAC9C,QAAQ,CAAC,OAAO,EAAE,gBAAgB,CAAC;IACnC,mCAAmC;IACnC,QAAQ,CAAC,SAAS,EAAE,eAAe,CAAC;IACpC,4CAA4C;IAC5C,QAAQ,CAAC,MAAM,EAAE,WAAW,CAAC;IAC7B,gCAAgC;IAChC,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC;IAC5B,yEAAyE;IACzE,QAAQ,CAAC,SAAS,EAAE,SAAS,GAAG,IAAI,CAAQ;IAC5C,4DAA4D;IAC5D,QAAQ,CAAC,MAAM,EAAE,kBAAkB,CAAC;IACpC,qDAAqD;IACrD,QAAQ,CAAC,OAAO,EAAE,aAAa,CAAC;IAChC,QAAQ,CAAC,MAAM,EAAE,eAAe,CAAC;IACjC,oCAAoC;IACpC,QAAQ,CAAC,aAAa,EAAE,aAAa,CAAC;IACtC,oDAAoD;IACpD,QAAQ,CAAC,SAAS,EAAE,kBAAkB,CAAC;IACvC,sCAAsC;IACtC,QAAQ,CAAC,YAAY,EAAE,YAAY,CAAC;IACpC,oEAAoE;IACpE,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAc;IAC/C,yCAAyC;IACzC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAsB;IAChD,gEAAgE;IAChE,OAAO,CAAC,QAAQ,CAAS;IACzB,wEAAwE;IACxE,OAAO,CAAC,eAAe,CAAS;IAChC,mDAAmD;IACnD,OAAO,CAAC,kBAAkB,CAAiC;IAC3D,kDAAkD;IAClD,OAAO,CAAC,gBAAgB,CAAuB;IAC/C,gDAAgD;IAChD,OAAO,CAAC,iBAAiB,CAAqF;IAC9G,8CAA8C;IAC9C,OAAO,CAAC,wBAAwB,CAA+C;IAC/E,8BAA8B;IAC9B,OAAO,CAAC,gBAAgB,CAOhB;IACR,2CAA2C;IAC3C,OAAO,CAAC,aAAa,CAA+C;IACpE,4CAA4C;IAC5C,OAAO,CAAC,cAAc,CAAK;IAC3B,kCAAkC;IAClC,OAAO,CAAC,kBAAkB,CAOX;IACf,+CAA+C;IAC/C,OAAO,CAAC,iBAAiB,CAAK;IAC9B,qDAAqD;IACrD,OAAO,CAAC,UAAU,CAUV;IACR,gCAAgC;IAChC,OAAO,CAAC,gBAAgB,CAAK;IAC7B,4CAA4C;IAC5C,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAQ;IAC7C,wCAAwC;IACxC,OAAO,CAAC,QAAQ,CAAK;IACrB,sEAAsE;IACtE,OAAO,CAAC,UAAU,CAAuB;IAEzC,0DAA0D;IAC1D,OAAO,KAAK,OAAO,GAElB;gBAGC,MAAM,EAAE,OAAO,CAAC,aAAa,CAAC,GAAG;QAAE,aAAa,EAAE,MAAM,CAAA;KAAE,EAC1D,QAAQ,CAAC,EAAE,MAAM,EACjB,SAAS,CAAC,EAAE,MAAM,EAClB,SAAS,CAAC,EAAE,MAAM,EAClB,mBAAmB,CAAC,EAAE,MAAM,EAC5B,OAAO,CAAC,EAAE,mBAAmB,EAAE,EAC/B,QAAQ,CAAC,EAAE,MAAM;IAkNnB;;;OAGG;IACH,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI;IAIjC;;;;;;;;;;;OAWG;IACH,GAAG,CAAC,MAAM,EAAE,aAAa,GAAG,IAAI;IAK1B,KAAK,IAAI,OAAO,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC;IAiF1D,0EAA0E;IAC1E,OAAO,CAAC,iBAAiB;IA4BzB,uDAAuD;IACvD,OAAO,CAAC,QAAQ;IAKhB,wDAAwD;IACxD,OAAO,CAAC,SAAS;YAWH,aAAa;YA8kBb,SAAS;IA0RvB;;;OAGG;IACH,OAAO,CAAC,kBAAkB;IA6C1B;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAsB9B;;;;OAIG;IACH,OAAO,CAAC,aAAa;IAyCrB;;;OAGG;IACH,OAAO,CAAC,qBAAqB;IAuC7B,OAAO,CAAC,UAAU;IAgLlB,OAAO,CAAC,YAAY;IAepB,OAAO,CAAC,YAAY;IAwCpB,OAAO,CAAC,UAAU;IA4ElB,OAAO,CAAC,kBAAkB;IAwD1B,kEAAkE;IAClE,OAAO,CAAC,OAAO;YAWD,eAAe;IAuH7B,OAAO,CAAC,cAAc;YAwDR,WAAW;YAiEX,oBAAoB;YA4GpB,oBAAoB;IAuIlC,OAAO,CAAC,eAAe;YAmDT,eAAe;YAiEf,eAAe;YAiDf,gBAAgB;YA2DhB,eAAe;YAwDf,cAAc;YAgFd,cAAc;YA8Dd,eAAe;YAqDf,YAAY;YA6CZ,eAAe;YA6Df,cAAc;YAwDd,aAAa;YAgDb,oBAAoB;YAgDpB,qBAAqB;IA4BnC,OAAO,CAAC,cAAc;IAwCtB,OAAO,CAAC,kBAAkB;IA+B1B,OAAO,CAAC,cAAc;IAuEtB,OAAO,CAAC,qBAAqB;IAkD7B,OAAO,CAAC,iBAAiB;IAmEzB,OAAO,CAAC,mBAAmB;IA2C3B,OAAO,CAAC,sBAAsB;IAoD9B,OAAO,CAAC,mBAAmB;IA+F3B,OAAO,CAAC,eAAe;IA6IvB,OAAO,CAAC,kBAAkB;YAyLZ,kBAAkB;IA4EhC,OAAO,CAAC,aAAa;YAmDP,YAAY;IA6C1B,OAAO,CAAC,WAAW;YA8CL,mBAAmB;IAgCjC,OAAO,CAAC,eAAe;IAcvB,+EAA+E;IAC/E,OAAO,CAAC,mBAAmB;IAS3B,oEAAoE;YACtD,mBAAmB;IAwDjC,yDAAyD;YAC3C,oBAAoB;IAoFlC,yCAAyC;YAC3B,gBAAgB;IA2E9B,uDAAuD;YACzC,iBAAiB;IA8B/B,sEAAsE;IACtE,OAAO,CAAC,kBAAkB;IAmB1B,OAAO,CAAC,qBAAqB;IAO7B,OAAO,CAAC,aAAa;IAOrB,OAAO,CAAC,aAAa;IAOrB,OAAO,CAAC,eAAe;IAyBvB,OAAO,CAAC,eAAe;YAWT,qBAAqB;IA8CnC,OAAO,CAAC,oBAAoB;IAe5B,OAAO,CAAC,sBAAsB;YAsBhB,mBAAmB;IA+CjC,OAAO,CAAC,oBAAoB;YAcd,oBAAoB;IA0DlC,OAAO,CAAC,sBAAsB;IA2D9B,OAAO,CAAC,wBAAwB;IAuJhC,OAAO,CAAC,qBAAqB;IA6G7B,OAAO,CAAC,wBAAwB;IAuGhC,OAAO,CAAC,kBAAkB;IAqH1B,OAAO,CAAC,uBAAuB;IAkH/B,OAAO,CAAC,mBAAmB;IAgH3B,OAAO,CAAC,oBAAoB;IA4H5B,OAAO,CAAC,qBAAqB;IAkI7B,OAAO,CAAC,mBAAmB;IAuH3B,OAAO,CAAC,qBAAqB;IAgF7B,OAAO,CAAC,uBAAuB;IAuF/B,OAAO,CAAC,sBAAsB;IAqG9B,OAAO,CAAC,sBAAsB;IAsF9B,OAAO,CAAC,sBAAsB;IA2G9B,OAAO,CAAC,mBAAmB;IA8E3B,OAAO,CAAC,sBAAsB;IA6F9B,OAAO,CAAC,mBAAmB;IAmE3B,OAAO,CAAC,qBAAqB;IAqF7B,OAAO,CAAC,iBAAiB;IAwEzB,OAAO,CAAC,gBAAgB;IAqExB,OAAO,CAAC,YAAY;IAiEpB,OAAO,CAAC,oBAAoB;IAiD5B,OAAO,CAAC,kBAAkB;IAiD1B,OAAO,CAAC,sBAAsB;IAmE9B,OAAO,CAAC,mBAAmB;IAgF3B,OAAO,CAAC,eAAe;IAiEvB,OAAO,CAAC,mBAAmB;IAoD3B,OAAO,CAAC,sBAAsB;IA4E9B,OAAO,CAAC,kBAAkB;IAoF1B,OAAO,CAAC,kBAAkB;IA0D1B,OAAO,CAAC,sBAAsB;IA+E9B,OAAO,CAAC,mBAAmB;IA2D3B,OAAO,CAAC,cAAc;IAqDtB,OAAO,CAAC,qBAAqB;IAwD7B,OAAO,CAAC,0BAA0B;IA+DlC,OAAO,CAAC,wBAAwB;IAyEhC,OAAO,CAAC,8BAA8B;IAiFtC,OAAO,CAAC,2BAA2B;IAsEnC,OAAO,CAAC,iBAAiB;IAqDzB,OAAO,CAAC,uBAAuB;IA4D/B,OAAO,CAAC,oBAAoB;IA+C5B,OAAO,CAAC,uBAAuB;IAoE/B,OAAO,CAAC,sBAAsB;IAsD9B,OAAO,CAAC,kBAAkB;IA6D1B,OAAO,CAAC,eAAe;IA4DvB,OAAO,CAAC,sBAAsB;IA8D9B,OAAO,CAAC,oBAAoB;IAmD5B,OAAO,CAAC,oBAAoB;IAqD5B,OAAO,CAAC,uBAAuB;IA0D/B,OAAO,CAAC,yBAAyB;IAuDjC,OAAO,CAAC,oBAAoB;IAqD5B,OAAO,CAAC,uBAAuB;IAmD/B,OAAO,CAAC,iBAAiB;IA+CzB,OAAO,CAAC,mBAAmB;IA8D3B,OAAO,CAAC,qBAAqB;IA0D7B,OAAO,CAAC,uBAAuB;IAkE/B,OAAO,CAAC,oBAAoB;IAoE5B,OAAO,CAAC,uBAAuB;IAwD/B,OAAO,CAAC,2BAA2B;IAyDnC,OAAO,CAAC,mBAAmB;IAwE3B,OAAO,CAAC,mBAAmB;IAsF3B,OAAO,CAAC,gBAAgB;IAsDxB,OAAO,CAAC,kBAAkB;IAsF1B,OAAO,CAAC,sBAAsB;IAiF9B,OAAO,CAAC,cAAc;YAsBR,aAAa;IA8D3B,OAAO,CAAC,gBAAgB;IA6CxB,OAAO,CAAC,kBAAkB;YA2BZ,oBAAoB;IA2FlC,OAAO,CAAC,oBAAoB;IAgC5B,gFAAgF;IAChF,OAAO,CAAC,uBAAuB;IAiD/B,OAAO,CAAC,iBAAiB;IAgGzB,OAAO,CAAC,sBAAsB;YA8BhB,uBAAuB;YA+FvB,uBAAuB;YAmEvB,wBAAwB;IA+CtC,uEAAuE;IACvE,OAAO,CAAC,cAAc;IAQtB,mCAAmC;IACnC,OAAO,CAAC,0BAA0B;YAWpB,kBAAkB;IAiIhC,OAAO,CAAC,kBAAkB;IA2B1B,OAAO,CAAC,gBAAgB;IAyCxB,OAAO,CAAC,kBAAkB;IA4B1B,OAAO,CAAC,mBAAmB;YA6Bb,iBAAiB;IA6H/B,OAAO,CAAC,wBAAwB;YAYlB,yBAAyB;YA0CzB,yBAAyB;YAoDzB,yBAAyB;IAsCvC,OAAO,CAAC,WAAW;IAyBnB,OAAO,CAAC,iBAAiB;IA+BzB,OAAO,CAAC,gBAAgB;IAaxB,OAAO,CAAC,UAAU;IA2ClB,OAAO,CAAC,eAAe;YAeT,gBAAgB;YAwChB,gBAAgB;YAwChB,gBAAgB;YAiChB,mBAAmB;YA+CnB,mBAAmB;IAwCjC,OAAO,CAAC,eAAe;IA2BvB,OAAO,CAAC,oBAAoB;YAed,iBAAiB;YAqDjB,iBAAiB;IA2D/B,OAAO,CAAC,uBAAuB;IAuB/B,OAAO,CAAC,iBAAiB;IAazB,OAAO,CAAC,gBAAgB;YAMV,iBAAiB;YAwCjB,iBAAiB;YAkDjB,iBAAiB;YAoCjB,sBAAsB;YAgDtB,wBAAwB;IA4CtC,OAAO,CAAC,mBAAmB;YAoBb,oBAAoB;YAoDpB,oBAAoB;YAgDpB,wBAAwB;IAqCtC,OAAO,CAAC,mBAAmB;YAOb,oBAAoB;YAoCpB,oBAAoB;IAmClC;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAQxB,OAAO,CAAC,eAAe;IAUvB,iFAAiF;IACjF,OAAO,CAAC,iBAAiB;IAuBzB,OAAO,CAAC,QAAQ;IA0DV,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAqC3B;;;;;;;OAOG;IACG,YAAY,CAAC,SAAS,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC;IAiErD,OAAO,CAAC,gBAAgB;IAsExB,OAAO,CAAC,eAAe;YA6GT,mBAAmB;YAoInB,wBAAwB;IA0ItC,OAAO,CAAC,sBAAsB;IA0F9B,OAAO,CAAC,sBAAsB;IA0E9B,qDAAqD;IACrD,OAAO,CAAC,UAAU;CAMnB"}
|
package/dist/server.js
CHANGED
|
@@ -90,10 +90,25 @@ const tokens_1 = require("./tokens");
|
|
|
90
90
|
const admin_keys_1 = require("./admin-keys");
|
|
91
91
|
const plugin_1 = require("./plugin");
|
|
92
92
|
const groups_1 = require("./groups");
|
|
93
|
+
const webhook_1 = require("./webhook");
|
|
93
94
|
const expiry_scanner_1 = require("./expiry-scanner");
|
|
94
95
|
const key_templates_1 = require("./key-templates");
|
|
95
96
|
/** Max request body size: 1MB */
|
|
96
97
|
const MAX_BODY_SIZE = 1_048_576;
|
|
98
|
+
/** Dangerous property names that enable prototype pollution attacks. */
|
|
99
|
+
const PROTO_POISON_KEYS = new Set(['__proto__', 'constructor', 'prototype']);
|
|
100
|
+
/**
|
|
101
|
+
* JSON.parse with prototype pollution protection.
|
|
102
|
+
* Strips __proto__, constructor, and prototype keys from parsed objects
|
|
103
|
+
* to prevent Object.prototype pollution attacks via malicious payloads.
|
|
104
|
+
*/
|
|
105
|
+
function safeJsonParse(text) {
|
|
106
|
+
return JSON.parse(text, (key, value) => {
|
|
107
|
+
if (PROTO_POISON_KEYS.has(key))
|
|
108
|
+
return undefined; // Strip dangerous keys
|
|
109
|
+
return value;
|
|
110
|
+
});
|
|
111
|
+
}
|
|
97
112
|
/** Max length for user-supplied string fields (names, reasons, messages, memos) */
|
|
98
113
|
const MAX_STRING_FIELD = 500;
|
|
99
114
|
/** Truncate user-supplied strings to MAX_STRING_FIELD to prevent log injection and memory abuse. */
|
|
@@ -1310,7 +1325,7 @@ class PayGateServer {
|
|
|
1310
1325
|
const body = await this.readBody(req);
|
|
1311
1326
|
let request;
|
|
1312
1327
|
try {
|
|
1313
|
-
request =
|
|
1328
|
+
request = safeJsonParse(body);
|
|
1314
1329
|
}
|
|
1315
1330
|
catch {
|
|
1316
1331
|
res.writeHead(400, { 'Content-Type': 'application/json' });
|
|
@@ -2049,7 +2064,7 @@ class PayGateServer {
|
|
|
2049
2064
|
const body = await this.readBody(req);
|
|
2050
2065
|
let params;
|
|
2051
2066
|
try {
|
|
2052
|
-
params =
|
|
2067
|
+
params = safeJsonParse(body);
|
|
2053
2068
|
}
|
|
2054
2069
|
catch {
|
|
2055
2070
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2212,7 +2227,7 @@ class PayGateServer {
|
|
|
2212
2227
|
const body = await this.readBody(req);
|
|
2213
2228
|
let params;
|
|
2214
2229
|
try {
|
|
2215
|
-
params =
|
|
2230
|
+
params = safeJsonParse(body);
|
|
2216
2231
|
}
|
|
2217
2232
|
catch {
|
|
2218
2233
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2268,7 +2283,7 @@ class PayGateServer {
|
|
|
2268
2283
|
const body = await this.readBody(req);
|
|
2269
2284
|
let params;
|
|
2270
2285
|
try {
|
|
2271
|
-
params =
|
|
2286
|
+
params = safeJsonParse(body);
|
|
2272
2287
|
}
|
|
2273
2288
|
catch {
|
|
2274
2289
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2365,7 +2380,7 @@ class PayGateServer {
|
|
|
2365
2380
|
const body = await this.readBody(req);
|
|
2366
2381
|
let params;
|
|
2367
2382
|
try {
|
|
2368
|
-
params =
|
|
2383
|
+
params = safeJsonParse(body);
|
|
2369
2384
|
}
|
|
2370
2385
|
catch {
|
|
2371
2386
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2542,7 +2557,7 @@ class PayGateServer {
|
|
|
2542
2557
|
const body = await this.readBody(req);
|
|
2543
2558
|
let params;
|
|
2544
2559
|
try {
|
|
2545
|
-
params =
|
|
2560
|
+
params = safeJsonParse(body);
|
|
2546
2561
|
}
|
|
2547
2562
|
catch {
|
|
2548
2563
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2599,7 +2614,7 @@ class PayGateServer {
|
|
|
2599
2614
|
const body = await this.readBody(req);
|
|
2600
2615
|
let params;
|
|
2601
2616
|
try {
|
|
2602
|
-
params =
|
|
2617
|
+
params = safeJsonParse(body);
|
|
2603
2618
|
}
|
|
2604
2619
|
catch {
|
|
2605
2620
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2643,7 +2658,7 @@ class PayGateServer {
|
|
|
2643
2658
|
const body = await this.readBody(req);
|
|
2644
2659
|
let params;
|
|
2645
2660
|
try {
|
|
2646
|
-
params =
|
|
2661
|
+
params = safeJsonParse(body);
|
|
2647
2662
|
}
|
|
2648
2663
|
catch {
|
|
2649
2664
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2694,7 +2709,7 @@ class PayGateServer {
|
|
|
2694
2709
|
const body = await this.readBody(req);
|
|
2695
2710
|
let params;
|
|
2696
2711
|
try {
|
|
2697
|
-
params =
|
|
2712
|
+
params = safeJsonParse(body);
|
|
2698
2713
|
}
|
|
2699
2714
|
catch {
|
|
2700
2715
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2742,7 +2757,7 @@ class PayGateServer {
|
|
|
2742
2757
|
const body = await this.readBody(req);
|
|
2743
2758
|
let params;
|
|
2744
2759
|
try {
|
|
2745
|
-
params =
|
|
2760
|
+
params = safeJsonParse(body);
|
|
2746
2761
|
}
|
|
2747
2762
|
catch {
|
|
2748
2763
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2813,7 +2828,7 @@ class PayGateServer {
|
|
|
2813
2828
|
if (!this.checkAdmin(req, res))
|
|
2814
2829
|
return;
|
|
2815
2830
|
const raw = await this.readBody(req);
|
|
2816
|
-
const params =
|
|
2831
|
+
const params = safeJsonParse(raw);
|
|
2817
2832
|
if (!params.key) {
|
|
2818
2833
|
this.sendError(res, 400, 'Missing "key" parameter');
|
|
2819
2834
|
return;
|
|
@@ -2868,7 +2883,7 @@ class PayGateServer {
|
|
|
2868
2883
|
const body = await this.readBody(req);
|
|
2869
2884
|
let params;
|
|
2870
2885
|
try {
|
|
2871
|
-
params =
|
|
2886
|
+
params = safeJsonParse(body);
|
|
2872
2887
|
}
|
|
2873
2888
|
catch {
|
|
2874
2889
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2915,7 +2930,7 @@ class PayGateServer {
|
|
|
2915
2930
|
const body = await this.readBody(req);
|
|
2916
2931
|
let params;
|
|
2917
2932
|
try {
|
|
2918
|
-
params =
|
|
2933
|
+
params = safeJsonParse(body);
|
|
2919
2934
|
}
|
|
2920
2935
|
catch {
|
|
2921
2936
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -2954,7 +2969,7 @@ class PayGateServer {
|
|
|
2954
2969
|
const body = await this.readBody(req);
|
|
2955
2970
|
let params;
|
|
2956
2971
|
try {
|
|
2957
|
-
params =
|
|
2972
|
+
params = safeJsonParse(body);
|
|
2958
2973
|
}
|
|
2959
2974
|
catch {
|
|
2960
2975
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -3010,7 +3025,7 @@ class PayGateServer {
|
|
|
3010
3025
|
const body = await this.readBody(req);
|
|
3011
3026
|
let params;
|
|
3012
3027
|
try {
|
|
3013
|
-
params =
|
|
3028
|
+
params = safeJsonParse(body);
|
|
3014
3029
|
}
|
|
3015
3030
|
catch {
|
|
3016
3031
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -3059,7 +3074,7 @@ class PayGateServer {
|
|
|
3059
3074
|
const body = await this.readBody(req);
|
|
3060
3075
|
let params;
|
|
3061
3076
|
try {
|
|
3062
|
-
params =
|
|
3077
|
+
params = safeJsonParse(body);
|
|
3063
3078
|
}
|
|
3064
3079
|
catch {
|
|
3065
3080
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -3100,7 +3115,7 @@ class PayGateServer {
|
|
|
3100
3115
|
const body = await this.readBody(req);
|
|
3101
3116
|
let params;
|
|
3102
3117
|
try {
|
|
3103
|
-
params =
|
|
3118
|
+
params = safeJsonParse(body);
|
|
3104
3119
|
}
|
|
3105
3120
|
catch {
|
|
3106
3121
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -3141,7 +3156,7 @@ class PayGateServer {
|
|
|
3141
3156
|
const body = await this.readBody(req);
|
|
3142
3157
|
let params;
|
|
3143
3158
|
try {
|
|
3144
|
-
params =
|
|
3159
|
+
params = safeJsonParse(body);
|
|
3145
3160
|
}
|
|
3146
3161
|
catch {
|
|
3147
3162
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -3898,7 +3913,7 @@ class PayGateServer {
|
|
|
3898
3913
|
const body = await this.readBody(req);
|
|
3899
3914
|
let params;
|
|
3900
3915
|
try {
|
|
3901
|
-
params =
|
|
3916
|
+
params = safeJsonParse(body);
|
|
3902
3917
|
}
|
|
3903
3918
|
catch {
|
|
3904
3919
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -4007,7 +4022,7 @@ class PayGateServer {
|
|
|
4007
4022
|
const body = await this.readBody(req);
|
|
4008
4023
|
let params;
|
|
4009
4024
|
try {
|
|
4010
|
-
params =
|
|
4025
|
+
params = safeJsonParse(body);
|
|
4011
4026
|
}
|
|
4012
4027
|
catch {
|
|
4013
4028
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -4137,7 +4152,7 @@ class PayGateServer {
|
|
|
4137
4152
|
const body = await this.readBody(req);
|
|
4138
4153
|
let params;
|
|
4139
4154
|
try {
|
|
4140
|
-
params =
|
|
4155
|
+
params = safeJsonParse(body);
|
|
4141
4156
|
}
|
|
4142
4157
|
catch {
|
|
4143
4158
|
this.sendError(res, 400, 'invalid_client_metadata');
|
|
@@ -4189,7 +4204,7 @@ class PayGateServer {
|
|
|
4189
4204
|
else if (req.method === 'POST') {
|
|
4190
4205
|
const body = await this.readBody(req);
|
|
4191
4206
|
try {
|
|
4192
|
-
params =
|
|
4207
|
+
params = safeJsonParse(body);
|
|
4193
4208
|
}
|
|
4194
4209
|
catch {
|
|
4195
4210
|
// Try URL-encoded form data
|
|
@@ -4270,7 +4285,7 @@ class PayGateServer {
|
|
|
4270
4285
|
const body = await this.readBody(req);
|
|
4271
4286
|
let params;
|
|
4272
4287
|
try {
|
|
4273
|
-
params =
|
|
4288
|
+
params = safeJsonParse(body);
|
|
4274
4289
|
}
|
|
4275
4290
|
catch {
|
|
4276
4291
|
// Try URL-encoded form data
|
|
@@ -4345,7 +4360,7 @@ class PayGateServer {
|
|
|
4345
4360
|
const body = await this.readBody(req);
|
|
4346
4361
|
let params;
|
|
4347
4362
|
try {
|
|
4348
|
-
params =
|
|
4363
|
+
params = safeJsonParse(body);
|
|
4349
4364
|
}
|
|
4350
4365
|
catch {
|
|
4351
4366
|
const query = new URLSearchParams(body);
|
|
@@ -4428,7 +4443,7 @@ class PayGateServer {
|
|
|
4428
4443
|
const body = await this.readBody(req);
|
|
4429
4444
|
let params;
|
|
4430
4445
|
try {
|
|
4431
|
-
params =
|
|
4446
|
+
params = safeJsonParse(body);
|
|
4432
4447
|
}
|
|
4433
4448
|
catch {
|
|
4434
4449
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -4507,7 +4522,7 @@ class PayGateServer {
|
|
|
4507
4522
|
let params = {};
|
|
4508
4523
|
if (body.trim()) {
|
|
4509
4524
|
try {
|
|
4510
|
-
params =
|
|
4525
|
+
params = safeJsonParse(body);
|
|
4511
4526
|
}
|
|
4512
4527
|
catch {
|
|
4513
4528
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -4562,7 +4577,7 @@ class PayGateServer {
|
|
|
4562
4577
|
}
|
|
4563
4578
|
let params;
|
|
4564
4579
|
try {
|
|
4565
|
-
params =
|
|
4580
|
+
params = safeJsonParse(body);
|
|
4566
4581
|
}
|
|
4567
4582
|
catch {
|
|
4568
4583
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -8995,7 +9010,7 @@ class PayGateServer {
|
|
|
8995
9010
|
}
|
|
8996
9011
|
let params;
|
|
8997
9012
|
try {
|
|
8998
|
-
params =
|
|
9013
|
+
params = safeJsonParse(body);
|
|
8999
9014
|
}
|
|
9000
9015
|
catch {
|
|
9001
9016
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -9112,7 +9127,7 @@ class PayGateServer {
|
|
|
9112
9127
|
}
|
|
9113
9128
|
let params;
|
|
9114
9129
|
try {
|
|
9115
|
-
params =
|
|
9130
|
+
params = safeJsonParse(body);
|
|
9116
9131
|
}
|
|
9117
9132
|
catch {
|
|
9118
9133
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -9370,7 +9385,7 @@ class PayGateServer {
|
|
|
9370
9385
|
}
|
|
9371
9386
|
let params;
|
|
9372
9387
|
try {
|
|
9373
|
-
params =
|
|
9388
|
+
params = safeJsonParse(body);
|
|
9374
9389
|
}
|
|
9375
9390
|
catch {
|
|
9376
9391
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -9452,7 +9467,7 @@ class PayGateServer {
|
|
|
9452
9467
|
}
|
|
9453
9468
|
let params;
|
|
9454
9469
|
try {
|
|
9455
|
-
params =
|
|
9470
|
+
params = safeJsonParse(body);
|
|
9456
9471
|
}
|
|
9457
9472
|
catch {
|
|
9458
9473
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -9511,7 +9526,7 @@ class PayGateServer {
|
|
|
9511
9526
|
}
|
|
9512
9527
|
let params;
|
|
9513
9528
|
try {
|
|
9514
|
-
params =
|
|
9529
|
+
params = safeJsonParse(body);
|
|
9515
9530
|
}
|
|
9516
9531
|
catch {
|
|
9517
9532
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -9571,7 +9586,7 @@ class PayGateServer {
|
|
|
9571
9586
|
try {
|
|
9572
9587
|
const raw = await this.readBody(req);
|
|
9573
9588
|
if (raw.trim()) {
|
|
9574
|
-
body =
|
|
9589
|
+
body = safeJsonParse(raw);
|
|
9575
9590
|
}
|
|
9576
9591
|
}
|
|
9577
9592
|
catch {
|
|
@@ -9806,7 +9821,7 @@ class PayGateServer {
|
|
|
9806
9821
|
try {
|
|
9807
9822
|
const raw = await this.readBody(req);
|
|
9808
9823
|
if (raw) {
|
|
9809
|
-
const body =
|
|
9824
|
+
const body = safeJsonParse(raw);
|
|
9810
9825
|
if (body && typeof body === 'object' && body.message) {
|
|
9811
9826
|
customMessage = String(body.message);
|
|
9812
9827
|
}
|
|
@@ -9841,6 +9856,9 @@ class PayGateServer {
|
|
|
9841
9856
|
this.sendError(res, 400, 'Invalid webhook URL configured');
|
|
9842
9857
|
return;
|
|
9843
9858
|
}
|
|
9859
|
+
// Note: The webhook URL here is the operator's configured URL (--webhook-url),
|
|
9860
|
+
// not user-supplied input. SSRF protection is applied at the admin API entry
|
|
9861
|
+
// points (filter create/update) where untrusted URLs are accepted.
|
|
9844
9862
|
const headers = {
|
|
9845
9863
|
'Content-Type': 'application/json',
|
|
9846
9864
|
'Content-Length': Buffer.byteLength(payload),
|
|
@@ -9917,18 +9935,25 @@ class PayGateServer {
|
|
|
9917
9935
|
const body = await this.readBody(req);
|
|
9918
9936
|
let params;
|
|
9919
9937
|
try {
|
|
9920
|
-
params =
|
|
9938
|
+
params = safeJsonParse(body);
|
|
9921
9939
|
}
|
|
9922
9940
|
catch {
|
|
9923
9941
|
this.sendError(res, 400, 'Invalid JSON');
|
|
9924
9942
|
return;
|
|
9925
9943
|
}
|
|
9944
|
+
// SSRF protection: validate webhook filter URL before creating rule
|
|
9945
|
+
const filterUrl = String(params.url || '');
|
|
9946
|
+
const filterSsrfError = (0, webhook_1.checkSsrf)(filterUrl);
|
|
9947
|
+
if (filterSsrfError) {
|
|
9948
|
+
this.sendError(res, 400, `Webhook filter URL blocked (SSRF protection): ${filterSsrfError}`);
|
|
9949
|
+
return;
|
|
9950
|
+
}
|
|
9926
9951
|
try {
|
|
9927
9952
|
const rule = this.gate.webhookRouter.addRule({
|
|
9928
9953
|
id: '', // auto-generated
|
|
9929
9954
|
name: sanitizeString(params.name) || '',
|
|
9930
9955
|
events: Array.isArray(params.events) ? params.events.map(String) : [],
|
|
9931
|
-
url:
|
|
9956
|
+
url: filterUrl,
|
|
9932
9957
|
secret: params.secret ? String(params.secret) : undefined,
|
|
9933
9958
|
keyPrefixes: Array.isArray(params.keyPrefixes) ? params.keyPrefixes.map(String) : undefined,
|
|
9934
9959
|
active: params.active !== false,
|
|
@@ -9954,7 +9979,7 @@ class PayGateServer {
|
|
|
9954
9979
|
const body = await this.readBody(req);
|
|
9955
9980
|
let params;
|
|
9956
9981
|
try {
|
|
9957
|
-
params =
|
|
9982
|
+
params = safeJsonParse(body);
|
|
9958
9983
|
}
|
|
9959
9984
|
catch {
|
|
9960
9985
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -9965,6 +9990,14 @@ class PayGateServer {
|
|
|
9965
9990
|
this.sendError(res, 400, 'Missing id field');
|
|
9966
9991
|
return;
|
|
9967
9992
|
}
|
|
9993
|
+
// SSRF protection: validate new URL if being updated
|
|
9994
|
+
if (params.url !== undefined) {
|
|
9995
|
+
const updateSsrfError = (0, webhook_1.checkSsrf)(String(params.url));
|
|
9996
|
+
if (updateSsrfError) {
|
|
9997
|
+
this.sendError(res, 400, `Webhook filter URL blocked (SSRF protection): ${updateSsrfError}`);
|
|
9998
|
+
return;
|
|
9999
|
+
}
|
|
10000
|
+
}
|
|
9968
10001
|
try {
|
|
9969
10002
|
const rule = this.gate.webhookRouter.updateRule(filterId, {
|
|
9970
10003
|
name: params.name !== undefined ? sanitizeString(String(params.name)) : undefined,
|
|
@@ -9995,7 +10028,7 @@ class PayGateServer {
|
|
|
9995
10028
|
const body = await this.readBody(req);
|
|
9996
10029
|
let params;
|
|
9997
10030
|
try {
|
|
9998
|
-
params =
|
|
10031
|
+
params = safeJsonParse(body);
|
|
9999
10032
|
}
|
|
10000
10033
|
catch {
|
|
10001
10034
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10133,7 +10166,7 @@ class PayGateServer {
|
|
|
10133
10166
|
const body = await this.readBody(req);
|
|
10134
10167
|
let params;
|
|
10135
10168
|
try {
|
|
10136
|
-
params =
|
|
10169
|
+
params = safeJsonParse(body);
|
|
10137
10170
|
}
|
|
10138
10171
|
catch {
|
|
10139
10172
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10168,7 +10201,7 @@ class PayGateServer {
|
|
|
10168
10201
|
const body = await this.readBody(req);
|
|
10169
10202
|
let params;
|
|
10170
10203
|
try {
|
|
10171
|
-
params =
|
|
10204
|
+
params = safeJsonParse(body);
|
|
10172
10205
|
}
|
|
10173
10206
|
catch {
|
|
10174
10207
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10203,7 +10236,7 @@ class PayGateServer {
|
|
|
10203
10236
|
const body = await this.readBody(req);
|
|
10204
10237
|
let params;
|
|
10205
10238
|
try {
|
|
10206
|
-
params =
|
|
10239
|
+
params = safeJsonParse(body);
|
|
10207
10240
|
}
|
|
10208
10241
|
catch {
|
|
10209
10242
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10232,7 +10265,7 @@ class PayGateServer {
|
|
|
10232
10265
|
const body = await this.readBody(req);
|
|
10233
10266
|
let params;
|
|
10234
10267
|
try {
|
|
10235
|
-
params =
|
|
10268
|
+
params = safeJsonParse(body);
|
|
10236
10269
|
}
|
|
10237
10270
|
catch {
|
|
10238
10271
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10274,7 +10307,7 @@ class PayGateServer {
|
|
|
10274
10307
|
const body = await this.readBody(req);
|
|
10275
10308
|
let params;
|
|
10276
10309
|
try {
|
|
10277
|
-
params =
|
|
10310
|
+
params = safeJsonParse(body);
|
|
10278
10311
|
}
|
|
10279
10312
|
catch {
|
|
10280
10313
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10340,7 +10373,7 @@ class PayGateServer {
|
|
|
10340
10373
|
const body = await this.readBody(req);
|
|
10341
10374
|
let params;
|
|
10342
10375
|
try {
|
|
10343
|
-
params =
|
|
10376
|
+
params = safeJsonParse(body);
|
|
10344
10377
|
}
|
|
10345
10378
|
catch {
|
|
10346
10379
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10390,7 +10423,7 @@ class PayGateServer {
|
|
|
10390
10423
|
const body = await this.readBody(req);
|
|
10391
10424
|
let params;
|
|
10392
10425
|
try {
|
|
10393
|
-
params =
|
|
10426
|
+
params = safeJsonParse(body);
|
|
10394
10427
|
}
|
|
10395
10428
|
catch {
|
|
10396
10429
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10475,7 +10508,7 @@ class PayGateServer {
|
|
|
10475
10508
|
const body = await this.readBody(req);
|
|
10476
10509
|
let params;
|
|
10477
10510
|
try {
|
|
10478
|
-
params =
|
|
10511
|
+
params = safeJsonParse(body);
|
|
10479
10512
|
}
|
|
10480
10513
|
catch {
|
|
10481
10514
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10520,7 +10553,7 @@ class PayGateServer {
|
|
|
10520
10553
|
const body = await this.readBody(req);
|
|
10521
10554
|
let params;
|
|
10522
10555
|
try {
|
|
10523
|
-
params =
|
|
10556
|
+
params = safeJsonParse(body);
|
|
10524
10557
|
}
|
|
10525
10558
|
catch {
|
|
10526
10559
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10570,7 +10603,7 @@ class PayGateServer {
|
|
|
10570
10603
|
const body = await this.readBody(req);
|
|
10571
10604
|
let params;
|
|
10572
10605
|
try {
|
|
10573
|
-
params =
|
|
10606
|
+
params = safeJsonParse(body);
|
|
10574
10607
|
}
|
|
10575
10608
|
catch {
|
|
10576
10609
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10604,7 +10637,7 @@ class PayGateServer {
|
|
|
10604
10637
|
const body = await this.readBody(req);
|
|
10605
10638
|
let params;
|
|
10606
10639
|
try {
|
|
10607
|
-
params =
|
|
10640
|
+
params = safeJsonParse(body);
|
|
10608
10641
|
}
|
|
10609
10642
|
catch {
|
|
10610
10643
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10650,7 +10683,7 @@ class PayGateServer {
|
|
|
10650
10683
|
const body = await this.readBody(req);
|
|
10651
10684
|
let params;
|
|
10652
10685
|
try {
|
|
10653
|
-
params =
|
|
10686
|
+
params = safeJsonParse(body);
|
|
10654
10687
|
}
|
|
10655
10688
|
catch {
|
|
10656
10689
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10708,7 +10741,7 @@ class PayGateServer {
|
|
|
10708
10741
|
const body = await this.readBody(req);
|
|
10709
10742
|
let params;
|
|
10710
10743
|
try {
|
|
10711
|
-
params =
|
|
10744
|
+
params = safeJsonParse(body);
|
|
10712
10745
|
}
|
|
10713
10746
|
catch {
|
|
10714
10747
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -10754,7 +10787,7 @@ class PayGateServer {
|
|
|
10754
10787
|
const body = await this.readBody(req);
|
|
10755
10788
|
let params;
|
|
10756
10789
|
try {
|
|
10757
|
-
params =
|
|
10790
|
+
params = safeJsonParse(body);
|
|
10758
10791
|
}
|
|
10759
10792
|
catch {
|
|
10760
10793
|
this.sendError(res, 400, 'Invalid JSON body');
|
|
@@ -10827,7 +10860,7 @@ class PayGateServer {
|
|
|
10827
10860
|
const body = await this.readBody(req);
|
|
10828
10861
|
let params;
|
|
10829
10862
|
try {
|
|
10830
|
-
params =
|
|
10863
|
+
params = safeJsonParse(body);
|
|
10831
10864
|
}
|
|
10832
10865
|
catch {
|
|
10833
10866
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -10862,7 +10895,7 @@ class PayGateServer {
|
|
|
10862
10895
|
const body = await this.readBody(req);
|
|
10863
10896
|
let params;
|
|
10864
10897
|
try {
|
|
10865
|
-
params =
|
|
10898
|
+
params = safeJsonParse(body);
|
|
10866
10899
|
}
|
|
10867
10900
|
catch {
|
|
10868
10901
|
this.sendError(res, 400, 'Invalid JSON');
|
|
@@ -11244,7 +11277,7 @@ class PayGateServer {
|
|
|
11244
11277
|
try {
|
|
11245
11278
|
const raw = await this.readBody(req);
|
|
11246
11279
|
try {
|
|
11247
|
-
const params =
|
|
11280
|
+
const params = safeJsonParse(raw);
|
|
11248
11281
|
const apiKey = params.key;
|
|
11249
11282
|
const toolName = params.tool;
|
|
11250
11283
|
if (!apiKey || typeof apiKey !== 'string') {
|
|
@@ -11367,7 +11400,7 @@ class PayGateServer {
|
|
|
11367
11400
|
try {
|
|
11368
11401
|
const raw = await this.readBody(req);
|
|
11369
11402
|
try {
|
|
11370
|
-
const params =
|
|
11403
|
+
const params = safeJsonParse(raw);
|
|
11371
11404
|
const apiKey = params.key;
|
|
11372
11405
|
const tools = params.tools;
|
|
11373
11406
|
if (!apiKey || typeof apiKey !== 'string') {
|