fix: address 5 release blockers for export and account APIs

- Strip clientState secret from Outlook subscription in account API response
- Replace blocking scryptSync with async scrypt in stream encryption
- Fix duplicate ExportFolders Joi label causing Swagger conflicts
- Fix export ID examples to match 24-hex-char validation pattern
- Remove dead resume endpoint, Export.resume() stub, and isResumable field

Author: andris9

lib/api-routes/account-routes.js

@@ -825,6 +825,12 @@ async function init(args) {
                     }
                 }
 
+                if (result.outlookSubscription) {
+                    let parsed = typeof result.outlookSubscription === 'string' ? JSON.parse(result.outlookSubscription) : result.outlookSubscription;
+                    delete parsed.clientState;
+                    result.outlookSubscription = parsed;
+                }
+
                 // default false
                 for (let key of ['logs']) {
                     result[key] = !!result[key];
@@ -1018,7 +1024,6 @@ async function init(args) {
                     outlookSubscription: Joi.object({
                         id: Joi.string().description('Microsoft Graph subscription ID'),
                         expirationDateTime: Joi.date().iso().description('When the subscription expires'),
-                        clientState: Joi.string().description('Shared secret for validating webhook notifications'),
                         state: Joi.object({
                             state: Joi.string().valid('creating', 'created', 'error').description('Subscription state'),
                             time: Joi.number().description('Timestamp of last state change'),

lib/api-routes/export-routes.js

@@ -71,7 +71,7 @@ async function init(args) {
 
             response: {
                 schema: Joi.object({
-                    exportId: Joi.string().example('exp_abc123def456').description('Export job identifier'),
+                    exportId: Joi.string().example('exp_abc123def456abc123def456').description('Export job identifier'),
                     status: Joi.string().example('queued').description('Export status'),
                     created: Joi.date().iso().example('2024-01-15T10:30:00Z').description('When export was created')
                 }).label('CreateExportResponse'),
@@ -153,7 +153,7 @@ async function init(args) {
                         fileReadStream.destroy();
                         throw Boom.serverUnavailable('Encryption secret not available for decryption');
                     }
-                    const decryptStream = createDecryptStream(secret);
+                    const decryptStream = await createDecryptStream(secret);
                     decryptStream.on('error', err => {
                         request.logger.error({ msg: 'Export decryption error', exportId, err });
                         fileReadStream.destroy();
@@ -254,59 +254,6 @@ async function init(args) {
         }
     });
 
-    server.route({
-        method: 'POST',
-        path: '/v1/account/{account}/export/{exportId}/resume',
-
-        async handler(request) {
-            try {
-                return await Export.resume(request.params.account, request.params.exportId);
-            } catch (err) {
-                handleError(request, err);
-            }
-        },
-
-        options: {
-            description: 'Resume failed export',
-            notes: 'Resumes a failed export from its last checkpoint. Only works for exports that are marked as resumable.',
-            tags: ['api', 'Export (Beta)'],
-
-            auth: {
-                strategy: 'api-token',
-                mode: 'required'
-            },
-            cors: CORS_CONFIG,
-
-            validate: {
-                options: {
-                    stripUnknown: false,
-                    abortEarly: false,
-                    convert: true
-                },
-                failAction,
-
-                params: Joi.object({
-                    account: accountIdSchema.required(),
-                    exportId: exportIdSchema
-                }).label('ResumeExportParams')
-            },
-
-            response: {
-                schema: Joi.object({
-                    exportId: Joi.string().example('exp_abc123def456').description('Export job identifier'),
-                    status: Joi.string().example('queued').description('Export status'),
-                    resumed: Joi.boolean().example(true).description('True if export was resumed'),
-                    progress: Joi.object({
-                        messagesExported: Joi.number().integer().example(500).description('Messages already exported'),
-                        messagesQueued: Joi.number().integer().example(1500).description('Total messages queued'),
-                        messagesSkipped: Joi.number().integer().example(5).description('Messages skipped')
-                    }).label('ResumeExportProgress')
-                }).label('ResumeExportResponse'),
-                failAction: 'log'
-            }
-        }
-    });
-
     server.route({
         method: 'GET',
         path: '/v1/account/{account}/exports',

lib/export.js

@@ -220,10 +220,6 @@ class Export {
             error: data.error || null
         };
 
-        if (data.status === 'failed') {
-            result.isResumable = false;
-        }
-
         return result;
     }
 
@@ -389,8 +385,7 @@ class Export {
             .multi()
             .hmset(exportKey, {
                 status: 'failed',
-                error: error || 'Unknown error',
-                isResumable: '0'
+                error: error || 'Unknown error'
             })
             .del(queueKey)
             .srem(ACTIVE_EXPORTS_KEY, `${account}:${exportId}`)
@@ -399,10 +394,6 @@ class Export {
         logger.error({ msg: 'Export failed', account, exportId, error });
     }
 
-    static async resume(account, exportId) {
-        throw createError('Export resume is not currently supported', 'ExportNotResumable', 501);
-    }
-
     static async markInterruptedAsFailed() {
         const activeExports = await redis.smembers(ACTIVE_EXPORTS_KEY);
 

lib/routes-ui.js

@@ -1046,7 +1046,7 @@ function applyRoutes(server, call) {
                         throw Boom.serverUnavailable('Encryption secret not available for decryption');
                     }
                     const { createDecryptStream } = require('./stream-encrypt');
-                    const decryptStream = createDecryptStream(secret);
+                    const decryptStream = await createDecryptStream(secret);
                     decryptStream.on('error', err => {
                         request.logger.error({ msg: 'Export decryption error', exportId, err });
                         fileReadStream.destroy();

lib/schemas.js

@@ -1764,25 +1764,24 @@ const exportProgressSchema = Joi.object({
 }).label('ExportProgress');
 
 const exportStatusSchema = Joi.object({
-    exportId: Joi.string().example('exp_abc123def456').description('Export job identifier'),
+    exportId: Joi.string().example('exp_abc123def456abc123def456').description('Export job identifier'),
     status: Joi.string()
         .valid('queued', 'processing', 'completed', 'failed', 'cancelled')
         .example('processing')
         .description('Export status')
         .label('ExportStatusValue'),
     phase: Joi.string().valid('indexing', 'exporting', 'complete').example('indexing').description('Current export phase').label('ExportPhase'),
-    folders: Joi.array().items(Joi.string().label('ExportFolderItem')).description('Folders being exported').label('ExportFolders'),
+    folders: Joi.array().items(Joi.string().label('ExportFolderItem')).description('Folders being exported').label('ExportStatusFolders'),
     startDate: Joi.date().iso().example('2024-01-01T00:00:00Z').description('Export start date filter'),
     endDate: Joi.date().iso().example('2024-12-31T23:59:59Z').description('Export end date filter'),
     progress: exportProgressSchema,
     created: Joi.date().iso().example('2024-01-15T10:30:00Z').description('When export was created'),
     expiresAt: Joi.date().iso().example('2024-01-16T10:30:00Z').description('When export file expires'),
-    error: Joi.string().allow(null).description('Error message if export failed'),
-    isResumable: Joi.boolean().description('Whether the failed export can be resumed (only present when status is failed)')
+    error: Joi.string().allow(null).description('Error message if export failed')
 }).label('ExportStatus');
 
 const exportListEntrySchema = Joi.object({
-    exportId: Joi.string().example('exp_abc123def456').description('Export job identifier'),
+    exportId: Joi.string().example('exp_abc123def456abc123def456').description('Export job identifier'),
     status: Joi.string()
         .valid('queued', 'processing', 'completed', 'failed', 'cancelled')
         .example('completed')

lib/stream-encrypt.js

@@ -10,17 +10,22 @@ const IV_LENGTH = 12;
 const AUTH_TAG_LENGTH = 16;
 const SALT_LENGTH = 16;
 const HEADER_SIZE = MAGIC.length + 4 + 4 + SALT_LENGTH;
-
-function deriveKey(password, salt) {
-    return crypto.scryptSync(password, salt, 32);
+const MAX_CHUNK_SIZE = CHUNK_SIZE * 4;
+
+function deriveKeyAsync(password, salt) {
+    return new Promise((resolve, reject) => {
+        crypto.scrypt(password, salt, 32, (err, key) => {
+            if (err) reject(err);
+            else resolve(key);
+        });
+    });
 }
 
 class EncryptStream extends Transform {
-    constructor(secret) {
+    constructor({ key, salt }) {
         super();
-        this.secret = secret;
-        this.salt = crypto.randomBytes(SALT_LENGTH);
-        this.key = deriveKey(secret, this.salt);
+        this.key = key;
+        this.salt = salt;
         this.buffer = Buffer.alloc(0);
         this.headerWritten = false;
     }
@@ -115,10 +120,12 @@ class DecryptStream extends Transform {
         offset += 4;
 
         this.chunkSize = this.buffer.readUInt32LE(offset);
+        if (this.chunkSize > MAX_CHUNK_SIZE) {
+            throw new Error('Invalid chunk size in header');
+        }
         offset += 4;
 
-        const salt = this.buffer.subarray(offset, offset + SALT_LENGTH);
-        this.key = deriveKey(this.secret, salt);
+        this.salt = this.buffer.subarray(offset, offset + SALT_LENGTH);
 
         this.buffer = this.buffer.subarray(HEADER_SIZE);
         this.headerParsed = true;
@@ -134,7 +141,7 @@ class DecryptStream extends Transform {
 
         const iv = this.buffer.subarray(0, IV_LENGTH);
         const encryptedLength = this.buffer.readUInt32LE(IV_LENGTH);
-        if (encryptedLength > CHUNK_SIZE + 256) {
+        if (encryptedLength > this.chunkSize + 256) {
             throw new Error('Invalid encrypted chunk length');
         }
         const totalChunkSize = minChunkHeader + encryptedLength + AUTH_TAG_LENGTH;
@@ -164,7 +171,7 @@ class DecryptStream extends Transform {
         return decrypted;
     }
 
-    _transform(data, encoding, callback) {
+    async _transform(data, encoding, callback) {
         try {
             this.buffer = Buffer.concat([this.buffer, data]);
 
@@ -173,6 +180,8 @@ class DecryptStream extends Transform {
                     callback();
                     return;
                 }
+                this.key = await deriveKeyAsync(this.secret, this.salt);
+                this.secret = null;
             }
 
             let decrypted;
@@ -210,14 +219,16 @@ class DecryptStream extends Transform {
     }
 }
 
-function createEncryptStream(secret) {
+async function createEncryptStream(secret) {
     if (!secret) {
         throw new Error('Encryption secret is required');
     }
-    return new EncryptStream(secret);
+    const salt = crypto.randomBytes(SALT_LENGTH);
+    const key = await deriveKeyAsync(secret, salt);
+    return new EncryptStream({ key, salt });
 }
 
-function createDecryptStream(secret) {
+async function createDecryptStream(secret) {
     if (!secret) {
         throw new Error('Decryption secret is required');
     }