0.6.5 (#158)

* 0.6.5 initial commit

* update deps

* update docs

* vue-vite improve layout and scrollbars

* wip

* wip

* scaling websockets

* scalable websockets

* add lucia & solidjs frontend

* update deps

* wip

* add job path, sonarlint

* 0.6.5

* sonar fix

Author: ais-one

@es-labs/esm/apollo.js

@@ -85,9 +85,7 @@ class AutoComplete extends HTMLElement {
         }
       }
     }
-
     // console.log('setup stuff', this.required, this.disabled, this.inputClass)
-
     el.value = this.value
     el.className = this.inputClass || 'input' // default to bulma?
 

@es-labs/esm/bwc-autocomplete.js

@@ -113,11 +113,3 @@ class Fetch {
 }
 
 export default Fetch
-
-// function greeterFactory(greeting = "Hello") {
-//   return {
-//     greet: () => console.log(`${greeting}!`)
-//   }
-// }
-
-// export default greeterFactory

@es-labs/esm/fetch.js

@@ -1,4 +1,4 @@
-// const type = 'error'
+//NOSONAR const type = 'error'
 // const orig = console[type]
 // console[type] = function logError() {
 //   orig.apply(console, [`[${new Date().toISOString().replace("T", " ").replace(/\..+/, "")}]`, ...arguments])

@es-labs/esm/log-filter.js

@@ -1,6 +1,6 @@
 {
   "name": "@es-labs/esm",
-  "version": "0.0.7",
+  "version": "0.0.8",
   "author": "Aaron Gong",
   "license": "MIT",
   "repository": {

@es-labs/esm/package.json

@@ -113,7 +113,7 @@ const urlBase64ToUint8Array = (base64String) => {
 
 const handleSwMessage = async (e) => {
   console.log('handleSwMessage', e)
-  // if (e && e.data && e.data.msg === 'pushsubscriptionchange') { }
+  //NOSONAR if (e && e.data && e.data.msg === 'pushsubscriptionchange') { }
 }
 
 export const addSwMessageEvent = (handler = handleSwMessage) => {

@es-labs/esm/pwa.js

@@ -1,25 +1,9 @@
 import Fetch from './fetch.js'
 
-const val = () => {
-  // try catch
-  // let token = window.location.hash.substring(1) // (new URL(window.location.href)).searchParams.get('token')
-  // if (!token) this.getFromLocalStorage()
-  // if (!token) this.login()
-  // else this.setToken(token)
-}
-
+// window.location.hash.substring(1) // (new URL(window.location.href)).searchParams.get('token')
 export const samlLogin = (samlUrl, callbackUrl) => {
   const port = window.location.port === '443' || window.location.port === '80' ? '' : ':' + window.location.port
   const redirect = window.location.protocol + '//' + window.location.hostname + port + callbackUrl
   const { urlFull } = Fetch.parseUrl(`/api/saml/login?RelayState=${redirect}`, samlUrl)
   window.location.assign(urlFull)
 }
-
-// logout - cleartoken - window.location.replace('https://adfc.test.com/adfs/ls/?wa=wsignout1.0&wreply='+ encodeURIComponent(LOGOUT_URL))
-// mounted
-//   import Abc from './asdasd.js'
-//   let abc = new Abc(conf)
-//   abc.val()
-//   if (abc._token) {
-//     this.payload = abc._payload
-//     this.token = abc._token  }

@es-labs/esm/saml.js

@@ -4,68 +4,84 @@
 
 const crypto = require('crypto')
 
-exports.encryptText = (algor, key, iv, text, encoding) => {
+const encryptText = (algor, key, iv, text, encoding) => {
   const cipher = crypto.createCipheriv(algor, key, iv)
   encoding = encoding || 'binary'
   let result = cipher.update(text, 'utf8', encoding)
   result += cipher.final(encoding)
   return result
 }
 
-exports.decryptText = (algor, key, iv, text, encoding) => {
+const decryptText = (algor, key, iv, text, encoding) => {
   const decipher = crypto.createDecipheriv(algor, key, iv)
   encoding = encoding || 'binary'
   let result = decipher.update(text, encoding)
   result += decipher.final()
   return result
 }
 
-/*
-const data = 'This is a test'
-const password = 'hello'
-const algorithm = 'aes256'
-const args = process.argv.slice(3)
+const genIv = () => new Buffer.alloc(16,crypto.pseudoRandomBytes(16))
 
-data = args[0]
-password = args[1]
-algorithm = args[2]
-
-console.log('Text: ' + data)
-console.log('Password: ' + password)
-console.log('Type: ' + algorithm)
+const genKey = (algorithm, password) => {
+  let hash, key
+  if (algorithm.includes("256")) {
+    hash = crypto.createHash('sha256') // NOSONAR
+    hash.update(password)
+    key = new Buffer.alloc(32,hash.digest('hex'),'hex')
+  } else if (algorithm.includes("192")) {
+    hash = crypto.createHash('sha192') // NOSONAR
+    hash.update(password);
+    key = new Buffer.alloc(24,hash.digest('hex'),'hex')
+  } else if (algorithm.includes("128")) {
+    hash = crypto.createHash('md5') // NOSONAR
+    hash.update(password)
+    key = new Buffer.alloc(16,hash.digest('hex'),'hex')
+  }
+  return key
+}
 
-let hash, key
+const test_aes = () => {
+  const data = 'This is a test'
+  const password = 'hello' // NOSONAR
+  const algorithm = 'aes256'
+  //NOSONAR const args = process.argv.slice(3)
+  // data = args[0]
+  // password = args[1]
+  // algorithm = args[2]
+  
+  console.log('Text: ' + data)
+  console.log('Password: ' + password)
+  console.log('Type: ' + algorithm)
 
-if (algorithm.includes("256")) {
-	hash = crypto.createHash('sha256')
-  hash.update(password)
-	key = new Buffer.alloc(32,hash.digest('hex'),'hex')
-} else if (algorithm.includes("192")) {
-	hash = crypto.createHash('sha192')
-  hash.update(password);
-	key = new Buffer.alloc(24,hash.digest('hex'),'hex')
-} else if (algorithm.includes("128")) {
-	hash = crypto.createHash('md5')
-  hash.update(password)
-  key = new Buffer.alloc(16,hash.digest('hex'),'hex')
+  
+  const iv = genIv()
+  const key = genKey(algorithm, password)
+  console.log('Key: ' + key.toString('base64'))
+  console.log('Salt: ' + iv.toString('base64'))
+  
+  const encText = encryptText(algorithm, key, iv, data, 'base64')
+  console.log('Encrypted: ' + encText)
+  
+  const decText = decryptText(algorithm, key, iv, encText, 'base64')
+  console.log('Decrypted: ' + decText);  
 }
 
-const iv = new Buffer.alloc(16,crypto.pseudoRandomBytes(16))
-console.log('Key: ' + key.toString('base64'))
-console.log('Salt: ' + iv.toString('base64'))
-
-const encText = encryptText(algorithm, key, iv, data, 'base64')
-console.log('Encrypted: ' + encText)
+const test_decrypt = () => {
+  let ct = crypto.enc.Base64.parse('your-cipher-text')
+  let iv = crypto.enc.Base64.parse('your-iv')
+  let key = crypto.enc.Base64.parse('your-key')
+  const decrypt = crypto.algo.AES.createDecryptor(key, { iv })
+  const proc = decrypt.process(ct)
+  const final = decrypt.finalize()
+  const plain = proc.toString(crypto.enc.Utf8) + final.toString(crypto.enc.Utf8)
+  console.log(plain)
+}
 
-const decText = decryptText(algorithm, key, iv, encText, 'base64')
-console.log('Decrypted: ' + decText);
-*/
+test_aes()
 
-// let ct = crypto.enc.Base64.parse('your-cipher-text')
-// let iv = crypto.enc.Base64.parse('your-iv')
-// let key = crypto.enc.Base64.parse('your-key')
-// const decrypt = crypto.algo.AES.createDecryptor(key, { iv })
-// const proc = decrypt.process(ct)
-// const final = decrypt.finalize()
-// const plain = proc.toString(crypto.enc.Utf8) + final.toString(crypto.enc.Utf8)
-// console.log(plain)
+module.exports = {
+  genIv,
+  genKey,
+  encryptText,
+  decryptText
+}

@es-labs/node/auth/aes.js

@@ -4,8 +4,8 @@ const otplib = require('otplib')
 const bcrypt = require('bcryptjs')
 const jwt = require('jsonwebtoken')
 
-// const uuid = require('uuid/v4')
-// const qrcode = require('qrcode')
+//NOSONAR const uuid = require('uuid/v4')
+//NOSONAR const qrcode = require('qrcode')
 let COOKIE_HTTPONLY, COOKIE_SAMESITE, COOKIE_SECURE, COOKIE_MAXAGE, COOKIE_DOMAIN,
   USE_OTP, OTP_EXPIRY, CORS_OPTIONS,
   AUTH_REFRESH_URL, AUTH_USER_FIELD_LOGIN, AUTH_USER_FIELD_PASSWORD, AUTH_USER_FIELD_GAKEY, AUTH_USER_FIELD_ID_FOR_JWT, AUTH_USER_FIELDS_JWT_PAYLOAD,
@@ -41,15 +41,15 @@ const httpOnlyCookie = () => `HttpOnly;SameSite=${COOKIE_SAMESITE};`
   + (COOKIE_MAXAGE ? 'MaxAge='+COOKIE_MAXAGE+';':'')
   + (COOKIE_DOMAIN ? 'domain='+COOKIE_DOMAIN+';':'')
 
-// algorithm
+//NOSONAR algorithm
 // expiresIn
 // issuer  = 'Mysoft corp' 
 // subject  = 'some@user.com'
 // audience  = 'http://mysoftcorp.in'
 // ip
-
 // We implement stateful refresh_token not stateless
 
+//NOSONAR
 // mode: sign, verify
 // type: access, refresh
 const getSecret = (mode, type) => {
@@ -208,7 +208,8 @@ const login = async (req, res) => {
     const id = user[AUTH_USER_FIELD_ID_FOR_JWT]
     if (!id) return res.status(401).json({ message: 'Authorization Format Error' })
     if (USE_OTP) {
-      // if (USE_OTP === 'SMS') {
+      //NOSONAR
+      //  if (USE_OTP === 'SMS') {
       //   // Generate PIN
       //   const pin = (Math.floor(Math.random() * (999999 - 0 + 1)) + 0).toString().padStart(6, "0")
       //   const ts = new Date() // utc?

@es-labs/node/auth/index.js

@@ -5,7 +5,6 @@ let key
 let sender
 
 // Sendgrid, Mailgun
-
 // using Twilio SendGrid's v3 Node.js Library
 // https://github.com/sendgrid/sendgrid-nodejs
 // let sgMail
@@ -23,10 +22,7 @@ function setupSendGrid(options = global.CONFIG) {
 async function sendSendGrid(to, from, subject, text, html) {
   try {
     // const msg = {
-    //   to,
-    //   from,
-    //   subject,
-    //   text
+    //   to, from, subject, text
     // }
     // if (html) msg.html = html
     // await sgMail.send(msg)