UNPKG

inibase

Version:

A file-based & memory-efficient, serverless, ACID compliant, relational database management system

github.com/inicontent/inibase

inicontent/inibase

230 lines (229 loc) 9.77 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
import "dotenv/config"; import { execFile as execFileSync, exec as execSync } from "node:child_process"; import { createCipheriv, createDecipheriv, createHash, randomBytes, scryptSync, } from "node:crypto"; import { promisify } from "node:util"; import { gunzip as gunzipSync, gzip as gzipSync } from "node:zlib"; import RE2 from "re2"; import { globalConfig } from "./index.js"; import { detectFieldType, isNumber, isPassword } from "./utils.js"; export const exec = promisify(execSync); export const execFile = promisify(execFileSync); export const gzip = promisify(gzipSync); export const gunzip = promisify(gunzipSync); /** * Generates a hashed password using SHA-256. * * @param password - The plain text password to hash. * @returns A string containing the salt and the hashed password, separated by a colon. */ export const hashPassword = (password) => { const salt = randomBytes(16).toString("hex"); const hash = createHash("sha256") .update(password + salt) .digest("hex"); return `${salt}:${hash}`; }; /** * Compares a hashed password with an input password to verify a match. * * @param hashedPassword - The hashed password, containing both the salt and the hash, separated by a colon. * @param inputPassword - The plain text input password to compare against the hashed password. * @returns A boolean indicating whether the input password matches the hashed password. */ export const comparePassword = (hash, password) => { const [salt, originalHash] = hash.split(":"); const inputHash = createHash("sha256") .update(password + salt) .digest("hex"); return inputHash === originalHash; }; // Cache for derived keys if using scrypt const derivedKeyCache = new Map(); // Ensure the environment variable is read once const INIBASE_SECRET = process.env.INIBASE_SECRET ?? "inibase"; // Helper function to create cipher or decipher const getKeyAndIv = () => { if (Buffer.isBuffer(globalConfig.salt)) { return { key: globalConfig.salt, iv: globalConfig.salt.subarray(0, 16) }; } const cacheKey = globalConfig.salt.toString(); let key = derivedKeyCache.get(cacheKey); if (!key) { key = scryptSync(cacheKey, `${INIBASE_SECRET}`, 32); derivedKeyCache.set(cacheKey, key); // Cache the derived key } return { key, iv: key.subarray(0, 16) }; }; export const encodeID = (id) => { const { key, iv } = getKeyAndIv(); const cipher = createCipheriv("aes-256-cbc", key, iv); return cipher.update(id.toString(), "utf8", "hex") + cipher.final("hex"); }; export function decodeID(input, raw) { const { key, iv } = getKeyAndIv(); const decipher = createDecipheriv("aes-256-cbc", key, iv); try { const rawData = decipher.update(input, "hex", "utf8") + decipher.final("utf8"); return raw ? rawData : Number(rawData); } catch { return null; } } export const hashString = (str) => createHash("sha256").update(str).digest("hex"); /** * Evaluates a comparison between two values based on a specified operator and field types. * * @param operator - The comparison operator (e.g., '=', '!=', '>', '<', '>=', '<=', '[]', '![]', '*', '!*'). * @param originalValue - The value to compare, can be a single value or an array of values. * @param comparedValue - The value or values to compare against. * @param fieldType - Optional type of the field. * @returns boolean - Result of the comparison operation. * * Note: Handles various data types and comparison logic, including special handling for passwords and regex patterns. */ export const compare = (operator, originalValue, comparedValue, fieldType) => { // Determine the field type if it's an array of potential types. if (Array.isArray(fieldType)) fieldType = detectFieldType(String(originalValue), fieldType); // Handle comparisons involving arrays. if (Array.isArray(comparedValue) && !["[]", "![]"].includes(operator)) return comparedValue.some((value) => compare(operator, originalValue, value, fieldType)); // Switch statement for different comparison operators. switch (operator) { // Equal (Case Insensitive for strings, specific handling for passwords and booleans). case "=": return isEqual(originalValue, comparedValue, fieldType); // Not Equal. case "!=": return !isEqual(originalValue, comparedValue, fieldType); // Greater Than. case ">": return compareNonNullValues(originalValue, comparedValue, (a, b) => a > b); // Less Than. case "<": return compareNonNullValues(originalValue, comparedValue, (a, b) => a < b); // Greater Than or Equal. case ">=": return compareNonNullValues(originalValue, comparedValue, (a, b) => a >= b); // Less Than or Equal. case "<=": return compareNonNullValues(originalValue, comparedValue, (a, b) => a <= b); // Array Contains (equality check for arrays). case "[]": return isArrayEqual(originalValue, comparedValue); // Array Does Not Contain. case "![]": return !isArrayEqual(originalValue, comparedValue); // Wildcard Match (using regex pattern). case "*": return isWildcardMatch(originalValue, comparedValue); // Not Wildcard Match. case "!*": return !isWildcardMatch(originalValue, comparedValue); // Unsupported operator. default: throw new Error(`Unsupported operator: ${operator}`); } }; /** * Helper function to handle non-null comparisons. */ const compareNonNullValues = (originalValue, comparedValue, comparator) => { return (originalValue !== null && comparedValue !== null && comparator(originalValue, comparedValue)); }; /** * Helper function to check equality based on the field type. * * @param originalValue - The original value. * @param comparedValue - The value to compare against. * @param field - Field object config. * @returns boolean - Result of the equality check. */ export const isEqual = (originalValue, comparedValue, fieldType) => { switch (fieldType) { case "password": return isPassword(originalValue) && typeof comparedValue === "string" ? comparePassword(originalValue, comparedValue) : false; case "boolean": return Number(originalValue) === Number(comparedValue); default: { // Fast checks for null-like values const isOriginalNullLike = originalValue === null || originalValue === undefined || originalValue === ""; const isComparedNullLike = comparedValue === null || comparedValue === undefined || comparedValue === ""; // If both are null-like, treat as equivalent if (isOriginalNullLike && isComparedNullLike) return true; // If both are number-like if (isNumber(originalValue) && isNumber(comparedValue)) return Number(originalValue) === Number(comparedValue); // Direct equality check for other cases return originalValue === comparedValue; } } }; /** * Helper function to check array equality. * * @param originalValue - The original value. * @param comparedValue - The value to compare against. * @returns boolean - Result of the array equality check. */ export const isArrayEqual = (originalValue, comparedValue) => { if (Array.isArray(originalValue) && Array.isArray(comparedValue)) return originalValue.some((v) => comparedValue.includes(v)); if (Array.isArray(originalValue)) return originalValue.includes(comparedValue); if (Array.isArray(comparedValue)) return comparedValue.includes(originalValue); return originalValue == comparedValue; }; /** * Helper function to check wildcard pattern matching using regex. * * @param originalValue - The original value. * @param comparedValue - The value with wildcard pattern. * @returns boolean - Result of the wildcard pattern matching. */ export const isWildcardMatch = (originalValue, comparedValue) => { const comparedValueStr = String(comparedValue); const originalValueStr = String(originalValue); if (!comparedValueStr.includes("%") && (comparedValueStr === originalValueStr || comparedValueStr.toLowerCase() === originalValueStr.toLowerCase())) return true; const wildcardPattern = `^${(comparedValueStr.includes("%") ? comparedValueStr : `%${comparedValueStr}%`).replace(/%/g, ".*")}$`; return new RegExp(wildcardPattern, "i").test(originalValueStr); }; const regexCache = new Map(); /** * Retrieves a cached compiled regex or compiles and caches a new one. * * This function checks if a given regex pattern is already compiled and cached. * If it is, the cached instance is returned. If not, the function attempts to compile * the regex using RE2, caches the compiled instance, and then returns it. If the pattern * is invalid, it returns a fallback object with a `test` method that always returns `false`. * * @param {string} pattern - The regex pattern to compile or retrieve from the cache. * @returns {RE2} - The compiled regex instance or a fallback object on error. */ export const getCachedRegex = (pattern) => { if (regexCache.has(pattern)) { return regexCache.get(pattern); } try { const compiledRegex = new RE2(pattern); regexCache.set(pattern, compiledRegex); return compiledRegex; } catch { return { test: (_str) => false }; } };