UNPKG

@aj-archipelago/cortex

Version:

Cortex is a GraphQL API for AI. It provides a simple, extensible interface for using AI services from OpenAI, Azure and others.

github.com/aj-archipelago/cortex

aj-archipelago/cortex

263 lines (207 loc) β€’ 9.56 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
// doubleEncryptionStorageClient.test.js // Tests for context key encryption integration in keyValueStorageClient import test from 'ava'; import { setvWithDoubleEncryption, getvWithDoubleDecryption, setv, getv } from '../../../lib/keyValueStorageClient.js'; import { encrypt, decrypt } from '../../../lib/crypto.js'; // Test data const testData = { message: 'Hello, this is test data!', number: 42, array: [1, 2, 3] }; const systemKey = '1234567890123456789012345678901234567890123456789012345678901234'; // 64 hex chars const userKey = 'abcdef1234567890abcdef1234567890abcdef1234567890abcdef1234567890'; // 64 hex chars // Mock the config to provide test keys import { config } from '../../../config.js'; const originalGet = config.get; const mockGet = (key) => { switch (key) { case 'storageConnectionString': return 'redis://localhost:6379'; // Use in-memory Redis for tests case 'cortexId': return 'test-cortex'; case 'redisEncryptionKey': return systemKey; default: return originalGet(key); } }; config.get = mockGet; // Helper function to clear storage between tests async function clearStorage() { // Clear any existing test data try { await setvWithDoubleEncryption('test-key', null, userKey); await setv('test-key', null); } catch (error) { // Ignore errors when clearing } } test.beforeEach(async t => { await clearStorage(); }); // Test 1: Double encryption/decryption with both contextKey and redisEncryptionKey test('should store and retrieve data with double encryption when both keys provided', async t => { const key = 'test-double-encryption'; // Store with double encryption await setvWithDoubleEncryption(key, testData, userKey); // Retrieve with double decryption const retrieved = await getvWithDoubleDecryption(key, userKey); t.deepEqual(retrieved, testData); }); // Test 2: Double encryption/decryption with only redisEncryptionKey (no contextKey) test('should store and retrieve data with single encryption when no contextKey provided', async t => { const key = 'test-single-encryption'; // Store with single encryption (no contextKey) await setvWithDoubleEncryption(key, testData, null); // Retrieve with single decryption const retrieved = await getvWithDoubleDecryption(key, null); t.deepEqual(retrieved, testData); }); // Test 3: Reading single-encrypted data (from keyValueStorageClient) with doubleDecryption test('should read single-encrypted data from keyValueStorageClient with doubleDecryption', async t => { const key = 'test-single-to-double'; // Store using keyValueStorageClient (single encryption) await setv(key, testData); // Read using doubleEncryptionStorageClient (should handle single-encrypted data) const retrieved = await getvWithDoubleDecryption(key, userKey); t.deepEqual(retrieved, testData); }); // Test 4: Reading single-encrypted data without contextKey test('should read single-encrypted data from keyValueStorageClient without contextKey', async t => { const key = 'test-single-to-double-no-context'; // Store using keyValueStorageClient (single encryption) await setv(key, testData); // Read using doubleEncryptionStorageClient without contextKey const retrieved = await getvWithDoubleDecryption(key, null); t.deepEqual(retrieved, testData); }); // Test 5: Reading unencrypted data with doubleDecryption test('should read unencrypted data with doubleDecryption', async t => { const key = 'test-unencrypted'; // Store unencrypted data using keyValueStorageClient with no encryption key const originalRedisKey = config.get('redisEncryptionKey'); config.get = (key) => { switch (key) { case 'storageConnectionString': return 'redis://localhost:6379'; case 'cortexId': return 'test-cortex'; case 'redisEncryptionKey': return null; // No encryption default: return originalGet(key); } }; // Store unencrypted data await setv(key, testData); // Restore mock config config.get = mockGet; // Read using doubleEncryptionStorageClient (should handle unencrypted data) const retrieved = await getvWithDoubleDecryption(key, userKey); t.deepEqual(retrieved, testData); }); // Test 6: Reading unencrypted data without contextKey test('should read unencrypted data without contextKey', async t => { const key = 'test-unencrypted-no-context'; // Store unencrypted data using keyValueStorageClient with no encryption key const originalRedisKey = config.get('redisEncryptionKey'); config.get = (key) => { switch (key) { case 'storageConnectionString': return 'redis://localhost:6379'; case 'cortexId': return 'test-cortex'; case 'redisEncryptionKey': return null; // No encryption default: return originalGet(key); } }; // Store unencrypted data await setv(key, testData); // Restore mock config config.get = mockGet; // Read using doubleEncryptionStorageClient without contextKey const retrieved = await getvWithDoubleDecryption(key, null); t.deepEqual(retrieved, testData); }); // Test 7: Mixed data types - some double-encrypted, some single-encrypted test('should handle mixed encryption states in storage', async t => { const doubleKey = 'test-mixed-double'; const singleKey = 'test-mixed-single'; // Store with different encryption methods await setvWithDoubleEncryption(doubleKey, testData, userKey); // Double encrypted await setv(singleKey, testData); // Single encrypted // Both should be readable with doubleDecryption const doubleRetrieved = await getvWithDoubleDecryption(doubleKey, userKey); const singleRetrieved = await getvWithDoubleDecryption(singleKey, userKey); t.deepEqual(doubleRetrieved, testData, 'Double-encrypted data should be readable'); t.deepEqual(singleRetrieved, testData, 'Single-encrypted data should be readable'); }); // Test 8: Edge case - null/undefined data handling test('should handle null and undefined data gracefully', async t => { const key1 = 'test-null-data'; const key2 = 'test-undefined-data'; // Store null data await setvWithDoubleEncryption(key1, null, userKey); const retrieved1 = await getvWithDoubleDecryption(key1, userKey); t.is(retrieved1, null); // Store undefined data await setvWithDoubleEncryption(key2, undefined, userKey); const retrieved2 = await getvWithDoubleDecryption(key2, userKey); t.is(retrieved2, undefined); }); // Test 9: Edge case - empty object handling test('should handle empty objects', async t => { const key = 'test-empty-object'; const emptyData = {}; await setvWithDoubleEncryption(key, emptyData, userKey); const retrieved = await getvWithDoubleDecryption(key, userKey); t.deepEqual(retrieved, emptyData); }); // Test 10: Context key changes between operations test('should handle context key changes between operations', async t => { const key1 = 'test-context-change-1'; const key2 = 'test-context-change-2'; const newUserKey = '1111111111111111111111111111111111111111111111111111111111111111'; // Store with first context key await setvWithDoubleEncryption(key1, testData, userKey); // Retrieve with same context key const retrieved1 = await getvWithDoubleDecryption(key1, userKey); t.deepEqual(retrieved1, testData); // Store with different context key (different key to avoid conflicts) await setvWithDoubleEncryption(key2, testData, newUserKey); // Retrieve with new context key const retrieved2 = await getvWithDoubleDecryption(key2, newUserKey); t.deepEqual(retrieved2, testData); // Verify that data encrypted with one key cannot be decrypted with another const wrongKeyRetrieved = await getvWithDoubleDecryption(key1, newUserKey); t.notDeepEqual(wrongKeyRetrieved, testData, 'Data encrypted with one key should not be readable with different key'); }); // Test 11: Large data handling test('should handle large data objects', async t => { const key = 'test-large-data'; const largeData = { message: 'Large data test', array: Array(1000).fill(0).map((_, i) => i), nested: { level1: { level2: { level3: Array(100).fill('test') } } } }; await setvWithDoubleEncryption(key, largeData, userKey); const retrieved = await getvWithDoubleDecryption(key, userKey); t.deepEqual(retrieved, largeData); }); // Test 12: Special characters and unicode test('should handle special characters and unicode', async t => { const key = 'test-special-chars'; const specialData = { message: 'Special chars: !@#$%^&*()_+-=[]{}|;:,.<>?', unicode: 'Unicode: πŸš€ 🌟 ñÑéíóú δΈ­ζ–‡ Ψ§Ω„ΨΉΨ±Ψ¨ΩŠΨ©', emoji: 'πŸ˜€πŸ˜πŸ˜‚πŸ€£πŸ˜ƒπŸ˜„πŸ˜…πŸ˜†πŸ˜‰πŸ˜Š' }; await setvWithDoubleEncryption(key, specialData, userKey); const retrieved = await getvWithDoubleDecryption(key, userKey); t.deepEqual(retrieved, specialData); });