From 7c1866e6fcd10f69fa737f97d1da6e3cefbee3fe Mon Sep 17 00:00:00 2001 From: elpatron Date: Sat, 28 Feb 2026 10:54:29 +0100 Subject: [PATCH] =?UTF-8?q?Initial=20commit:=20WebDAV-Adapter=20f=C3=BCr?= =?UTF-8?q?=20Internxt=20Drive?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit - Browser-Token-Auth (INXT_TOKEN, INXT_MNEMONIC) - Phase 1: PROPFIND (Verzeichnis auflisten) - Drive API + Pfad-Resolver - Dokumentation: Auth, Architektur, WSL Made-with: Cursor --- .env.example | 17 + .gitignore | 25 + README.md | 62 ++ docs/auth-analysis.md | 98 +++ docs/browser-token-auth.md | 68 ++ docs/crypto-secret-extract.md | 35 + docs/webdav-architektur.md | 74 ++ docs/wsl-setup.md | 36 + package-lock.json | 1234 +++++++++++++++++++++++++++++++++ package.json | 19 + src/auth-poc.js | 129 ++++ src/internxt-client.js | 41 ++ src/path-resolver.js | 72 ++ src/server.js | 201 ++++++ src/token-test.js | 59 ++ 15 files changed, 2170 insertions(+) create mode 100644 .env.example create mode 100644 .gitignore create mode 100644 README.md create mode 100644 docs/auth-analysis.md create mode 100644 docs/browser-token-auth.md create mode 100644 docs/crypto-secret-extract.md create mode 100644 docs/webdav-architektur.md create mode 100644 docs/wsl-setup.md create mode 100644 package-lock.json create mode 100644 package.json create mode 100644 src/auth-poc.js create mode 100644 src/internxt-client.js create mode 100644 src/path-resolver.js create mode 100644 src/server.js create mode 100644 src/token-test.js diff --git a/.env.example b/.env.example new file mode 100644 index 0000000..910899b --- /dev/null +++ b/.env.example @@ -0,0 +1,17 @@ +# Internxt API (Production - aus internxt/cli .env.template) +DRIVE_API_URL=https://gateway.internxt.com/drive + +# Crypto secret - CLI: 6KYQBP847D4ATSFA +# drive-web nutzt REACT_APP_CRYPTO_SECRET (evtl. anderer Wert - aus drive.internxt.com JS extrahieren) +CRYPTO_SECRET=6KYQBP847D4ATSFA + +# DEBUG=1 # Salt-Decryption testen (ob CRYPTO_SECRET stimmt) + +# Test credentials (für auth-poc.js) +INXT_EMAIL= +INXT_PASSWORD= +# INXT_2FA= # Bei 2FA: aktuellen Code eingeben + +# Browser-Token (für token-test.js und WebDAV) – aus drive.internxt.com localStorage +# INXT_TOKEN= # xNewToken +# INXT_MNEMONIC= # xMnemonic (für Datei-Entschlüsselung) diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..445d470 --- /dev/null +++ b/.gitignore @@ -0,0 +1,25 @@ +# Dependencies +node_modules/ + +# Environment (Secrets – Token, Mnemonic) +.env +.env.local +.env.*.local + +# Logs +*.log +npm-debug.log* + +# OS +.DS_Store +Thumbs.db + +# IDE +.idea/ +.vscode/ +*.swp +*.swo + +# Build / Cache +dist/ +.cache/ diff --git a/README.md b/README.md new file mode 100644 index 0000000..a390842 --- /dev/null +++ b/README.md @@ -0,0 +1,62 @@ +# Internxt WebDAV Wrapper + +WebDAV-Zugang zu Internxt Drive für Account-Tiers, die keinen CLI- oder Rclone-Zugang haben. + +## Hintergrund + +Internxt blockiert für bestimmte Account-Typen (z.B. Free, Partner-Accounts) den Zugang über: +- Internxt CLI (`cli access not allowed for this user tier`) +- Rclone Native-Backend (`rclone access not allowed for this user tier`, Status 402) +- Docker-Image `internxt/webdav` (nutzt dieselbe Auth) + +**Lösung:** Das Web-UI (drive.internxt.com) funktioniert – es nutzt `login()` mit `clientName: "drive-web"`. Der Wrapper imitiert diese Auth. + +## Auth-Proof-of-Concept + +1. Abhängigkeiten installieren: + ```bash + npm install + ``` + +2. `.env` anlegen (von `.env.example` kopieren): + ```bash + cp .env.example .env + ``` + +3. Credentials eintragen: + ``` + INXT_EMAIL=deine@email.de + INXT_PASSWORD=dein_passwort + INXT_2FA=123456 # Falls 2FA aktiv + ``` + +4. Auth testen: + ```bash + npm run auth-test + ``` + +Bei Erfolg erscheint „Login erfolgreich!“ – dann kann der WebDAV-Server gebaut werden. + +## Dokumentation + +- [docs/auth-analysis.md](docs/auth-analysis.md) – Analyse Web vs CLI Auth, clientName-Unterschied + +## Browser-Token-Auth (Alternative) + +Falls der API-Login blockiert ist (z.B. Partner-Account): + +1. Auf https://drive.internxt.com einloggen +2. DevTools (F12) → Console: `localStorage.getItem('xNewToken')` und `localStorage.getItem('xMnemonic')` ausführen +3. Werte in `.env` als `INXT_TOKEN` und `INXT_MNEMONIC` eintragen +4. Testen: `npm run token-test` + +Details: [docs/browser-token-auth.md](docs/browser-token-auth.md) + +## WSL (login mit Keys) + +Unter Windows schlägt Kyber-WASM fehl. Unter WSL: [docs/wsl-setup.md](docs/wsl-setup.md) + +## Nächste Schritte + +- WebDAV-Server mit Token-Auth implementieren +- Storage-Client für Datei-Operationen anbinden diff --git a/docs/auth-analysis.md b/docs/auth-analysis.md new file mode 100644 index 0000000..6e64c9e --- /dev/null +++ b/docs/auth-analysis.md @@ -0,0 +1,98 @@ +# Internxt Auth-Analyse: Web vs CLI vs Rclone + +## Kernbefund: Client-Identifikation bestimmt Zugang + +Der Backend-Server blockiert bestimmte Account-Tiers basierend auf der **Client-Identifikation**: + +| Client | clientName | Login-Methode | Endpoint | Status für eingeschränkte Tiers | +|--------|-----------|---------------|----------|--------------------------------| +| **drive-web** | `drive-web` | `login()` | `/auth/login` | ✅ Erlaubt | +| **drive-desktop** | `drive-desktop` | `login()` | `/auth/login` | ✅ Erlaubt | +| **internxt-cli** | `internxt-cli` | `loginAccess()` | `/auth/login/access` | ❌ Blockiert | +| **rclone** | (rclone-adapter) | loginAccess-ähnlich | `/auth/login/access` | ❌ Blockiert | + +## Quellen + +### drive-web ([auth.service.ts](drive-web/src/services/auth.service.ts)) + +```typescript +const getAuthClient = (authType: 'web' | 'desktop') => { + const AUTH_CLIENT = { + web: SdkFactory.getNewApiInstance().createAuthClient(), // clientName: "drive-web" + desktop: SdkFactory.getNewApiInstance().createDesktopAuthClient(), // clientName: "drive-desktop" + }; + return AUTH_CLIENT[authType]; +}; + +// Login mit authClient.login() - NICHT loginAccess() +return authClient.login(loginDetails, cryptoProvider) +``` + +- **createAuthClient()**: `clientName: packageJson.name` = `"drive-web"` +- **createDesktopAuthClient()**: `clientName: "drive-desktop"` +- **Methode**: `login()` (nicht `loginAccess`) + +### CLI ([auth.service.ts](https://github.com/internxt/cli/blob/main/src/services/auth.service.ts)) + +```typescript +const authClient = SdkManager.instance.getAuth(); +const data = await authClient.loginAccess(loginDetails, CryptoService.cryptoProvider); +``` + +- **getAppDetails()**: `clientName: packageJson.clientName` = `"internxt-cli"` (aus [package.json](https://github.com/internxt/cli/blob/main/package.json)) +- **Methode**: `loginAccess()` (nicht `login`) + +### SDK Factory ([drive-web](drive-web/src/app/core/factory/sdk/index.ts)) + +```typescript +private static getAppDetails(): AppDetails { + return { + clientName: packageJson.name, // "drive-web" + clientVersion: packageJson.version, + customHeaders, + }; +} + +private static getDesktopAppDetails(): AppDetails { + return { + clientName: 'drive-desktop', + clientVersion: packageJson.version, + }; +} +``` + +## Lösung für WebDAV-Wrapper + +**Strategie:** Den Auth-Client so konfigurieren, dass er sich als `drive-web` ausgibt und `login()` statt `loginAccess()` verwendet. + +1. **@internxt/sdk** mit `Auth.client(apiUrl, appDetails, apiSecurity)` verwenden +2. **appDetails** setzen: `{ clientName: "drive-web", clientVersion: "1.0" }` +3. **login()** aufrufen (nicht `loginAccess()`) +4. CryptoProvider wie in drive-web implementieren (passToHash, decryptText, getKeys, parseAndDecryptUserKeys) + +## Abhängigkeiten für WebDAV-Wrapper + +- `@internxt/sdk` (Version 1.13.x oder kompatibel – drive-web nutzt 1.13.2) +- `@internxt/lib` (für aes, Crypto) +- Crypto-Logik aus drive-web: `app/crypto/services/keys.service`, `app/crypto/services/utils` +- Keys-Format: ECC + Kyber (post-quantum) + +## Aktueller Status (Stand: Analyse) + +- **CRYPTO_SECRET**: Korrekt (Salt-Decryption OK mit `6KYQBP847D4ATSFA`) +- **loginWithoutKeys**: Liefert weiterhin "Wrong login credentials" – möglicherweise lehnt das Backend diesen Flow für bestimmte Account-Typen (z.B. mailbox.org-Partner) ab +- **login() mit Keys**: Kyber-WASM schlägt unter Windows fehl (`@dashlane/pqc-kem-kyber512-node`) + +## Nächste Schritte + +1. **Ansatz B testen**: Browser-basierter Token-Extrakt – im Web einloggen, Session-Token aus localStorage/DevTools lesen, im Wrapper verwenden +2. **login() unter Linux**: Kyber-Paket könnte unter Linux funktionieren +3. **Internxt-Support**: Nachfragen, ob Partner-Accounts (mailbox.org) andere Auth-Flows nutzen + +## CRYPTO_SECRET und API-URL + +Aus [internxt/cli .env.template](https://github.com/internxt/cli/blob/main/.env.template): +- **DRIVE_API_URL**: `https://gateway.internxt.com/drive` +- **APP_CRYPTO_SECRET**: `6KYQBP847D4ATSFA` + +Der PoC nutzt diese Werte als Fallback. diff --git a/docs/browser-token-auth.md b/docs/browser-token-auth.md new file mode 100644 index 0000000..cd3e60d --- /dev/null +++ b/docs/browser-token-auth.md @@ -0,0 +1,68 @@ +# Browser-Token-Authentifizierung (Ansatz B) + +Da der API-Login für Ihren Account-Typ blockiert ist, können Sie sich im Browser einloggen und die Session-Daten für den WebDAV-Wrapper verwenden. + +## Ablauf + +1. Auf https://drive.internxt.com einloggen +2. Token und Mnemonic aus dem Browser extrahieren +3. In `.env` eintragen +4. WebDAV-Server starten + +## Token extrahieren + +### Schritt 1: Alle gespeicherten Keys anzeigen + +Auf **https://drive.internxt.com** eingeloggt sein. DevTools (F12) → **Console**: + +```javascript +// Alle localStorage-Keys anzeigen +Object.keys(localStorage).filter(k => k.includes('x') || k.includes('token') || k.includes('Token')).forEach(k => console.log(k)); +``` + +Damit sehen Sie, welche Keys es gibt (z.B. `xNewToken`, `xMnemonic`, `xUser`). + +### Schritt 2: Token und Mnemonic auslesen + +```javascript +// Token und Mnemonic anzeigen +console.log('Token:', localStorage.getItem('xNewToken') || localStorage.getItem('xToken') || '(nicht gefunden)'); +console.log('Mnemonic:', localStorage.getItem('xMnemonic') || '(nicht gefunden)'); +``` + +### Schritt 3: Falls nichts gefunden wird + +- **Application-Tab prüfen:** DevTools → **Application** (oder **Anwendung**) → links **Local Storage** → **https://drive.internxt.com** auswählen. Dort alle Einträge durchsehen. +- **Richtige URL:** Sie müssen auf `https://drive.internxt.com` sein (nicht internxt.com) und **eingeloggt** sein – nach dem Login auf `/drive` oder `/app`. +- **Session vs. Local:** Manche Werte liegen in `sessionStorage`. Testen mit: + ```javascript + console.log('sessionStorage:', Object.keys(sessionStorage)); + ``` +- **Alle Keys anzeigen:** Zum Debuggen alle Keys mit Werten: + ```javascript + for (let i = 0; i < localStorage.length; i++) { + const k = localStorage.key(i); + console.log(k + ':', localStorage.getItem(k)?.substring(0, 50) + '...'); + } + ``` + +## .env eintragen + +``` +INXT_TOKEN=eyJhbGciOiJIUzI1NiIs... +INXT_MNEMONIC=word1 word2 word3 ... +``` + +## WebDAV-Server starten + +```bash +npm start +``` + +Server läuft auf `http://127.0.0.1:3005`. Phase 1 (PROPFIND) ist aktiv – Verzeichnisinhalt kann aufgelistet werden. Windows Explorer: Netzlaufwerk verbinden → `http://127.0.0.1:3005`. + +## Hinweise + +- **Token-Ablauf**: Tokens laufen nach einiger Zeit ab (typisch Stunden). Bei 401-Fehlern erneut einloggen und Token aktualisieren. +- **Sicherheit**: Mnemonic und Token sind hochsensibel. Nicht in Git committen, `.env` in `.gitignore` belassen. +- **Nur für Sie**: Die Tokens sind an Ihre Session gebunden. Für andere Nutzer funktioniert dieser Ansatz nicht. diff --git a/docs/crypto-secret-extract.md b/docs/crypto-secret-extract.md new file mode 100644 index 0000000..c8fa2b4 --- /dev/null +++ b/docs/crypto-secret-extract.md @@ -0,0 +1,35 @@ +# CRYPTO_SECRET aus drive.internxt.com ermitteln + +Falls der Login mit "Wrong login credentials" fehlschlägt, ist vermutlich der `CRYPTO_SECRET` falsch. drive-web nutzt `REACT_APP_CRYPTO_SECRET`, der CLI-Wert (`6KYQBP847D4ATSFA`) kann abweichen. + +## Methode 1: DEBUG-Modus (Salt-Decryption prüfen) + +```bash +DEBUG=1 npm run auth-test +``` + +- **"Salt-Decryption OK"** → CRYPTO_SECRET stimmt, Problem liegt woanders (Passwort, API) +- **"Salt-Decryption fehlgeschlagen"** → CRYPTO_SECRET ist falsch + +## Methode 2: Secret im Browser suchen + +1. https://drive.internxt.com öffnen +2. DevTools (F12) → **Sources** +3. **Strg+Shift+F** (Suche in allen Dateien) +4. Suchen nach: + - `6KYQBP847D4ATSFA` – falls gefunden, wird derselbe Wert wie beim CLI genutzt + - `REACT_APP_CRYPTO_SECRET` oder `CRYPTO_SECRET` + - Hex-Strings (z.B. 16 Zeichen wie `a1b2c3d4e5f6...`) + +5. Gefundenen Wert in `.env` eintragen: + ``` + CRYPTO_SECRET=gefundener_wert + ``` + +## Methode 3: drive-web lokal bauen (mit bekanntem Secret) + +Falls Sie Zugriff auf drive-web haben und den korrekten Secret kennen: + +1. In `drive-web` eine `.env` mit `REACT_APP_CRYPTO_SECRET=...` anlegen +2. `yarn build` ausführen +3. In den Build-Artefakten nach dem eingebetteten Wert suchen diff --git a/docs/webdav-architektur.md b/docs/webdav-architektur.md new file mode 100644 index 0000000..825644d --- /dev/null +++ b/docs/webdav-architektur.md @@ -0,0 +1,74 @@ +# WebDAV-Server Architektur + +## Empfohlener Ansatz: Adapter (nicht Proxy) + +Der WebDAV-Server ist ein **Adapter**: Er implementiert das WebDAV-Protokoll und übersetzt Anfragen in Internxt Drive API + Network-Aufrufe. Es wird **nicht** zu einem anderen WebDAV-Server weitergeleitet. + +```mermaid +flowchart LR + subgraph Client [WebDAV Client] + Finder[Finder/Cyberduck] + Rclone[Rclone] + end + + subgraph Adapter [WebDAV Adapter] + WebDAV[WebDAV Server] + Mapping[Path zu UUID] + Crypto[Encrypt/Decrypt] + end + + subgraph Internxt [Internxt Backend] + DriveAPI[Drive API] + Network[Bridge/Network] + end + + Finder -->|PROPFIND GET PUT| WebDAV + WebDAV --> Mapping + Mapping --> DriveAPI + WebDAV --> Crypto + Crypto --> Network +``` + +## Datenfluss + +| WebDAV-Anfrage | Internxt-Operation | +|----------------|-------------------| +| PROPFIND (Verzeichnisinhalt) | Storage.getFolderContentByUuid | +| GET (Datei lesen) | File-Metadaten → Network.download → Entschlüsseln | +| PUT (Datei schreiben) | Verschlüsseln → Network.upload → createFileEntry | +| MKCOL (Ordner anlegen) | Storage.createFolderByUuid | +| DELETE | Trash oder permanent delete | +| MOVE | Storage.moveFileByUuid / moveFolderByUuid | + +## Komplexität + +- **Einfach:** PROPFIND, MKCOL – nur Drive API, keine Verschlüsselung +- **Mittel:** DELETE, MOVE – Drive API +- **Aufwändig:** GET, PUT – Bridge/Network + Mnemonic-Verschlüsselung + +Die drive-web nutzt `Network.client` (Bridge) und `NetworkFacade` für Up-/Download. Die Bridge-Credentials kommen aus der User-Session. + +## Implementierungsreihenfolge + +1. **Phase 1:** PROPFIND (Verzeichnis auflisten) – ✅ implementiert +2. **Phase 2:** MKCOL, DELETE, MOVE +3. **Phase 3:** GET (Download) – Bridge + Entschlüsselung +4. **Phase 4:** PUT (Upload) – Verschlüsselung + Bridge + +### Hinweis: Ordnernamen + +Internxt nutzt Zero-Knowledge-Verschlüsselung. Die API liefert verschlüsselte Namen (`name`). Die Pfadauflösung funktioniert, weil WebDAV-URLs diese Namen enthalten. Eine spätere Phase kann Namensentschlüsselung mit Mnemonic ergänzen (drive-web Crypto-Logik). + +## Token vs. Bridge-Credentials + +- **Drive API:** Nutzt `xNewToken` (Authorization: Bearer) +- **Network/Bridge:** Braucht `bridgeUser` + `userId` (aus User-Credentials) und Mnemonic für Verschlüsselung + +**Bridge-Credentials aus refreshUser:** Der Endpoint `/users/refresh` liefert `user` (UserResponseDto) mit: +- `bridgeUser` – E-Mail des Nutzers +- `userId` – wird mit SHA256 gehasht und als Bridge-Passwort genutzt +- `bucket` – Bucket-ID für Uploads +- `mnemonic` – für Dateiverschlüsselung +- `rootFolderId` – Root-Ordner-UUID + +Damit liefert der Browser-Token (via refreshUser) alle nötigen Daten für Drive API und Bridge. diff --git a/docs/wsl-setup.md b/docs/wsl-setup.md new file mode 100644 index 0000000..af6265c --- /dev/null +++ b/docs/wsl-setup.md @@ -0,0 +1,36 @@ +# Entwicklung unter WSL (login() mit Keys) + +Unter Windows schlägt das Kyber-WASM-Modul fehl. Unter WSL (Ubuntu/Debian) funktioniert es in der Regel. + +## Voraussetzungen + +- WSL2 mit Ubuntu oder Debian +- Node.js 20+ (`node -v`) + +## Setup + +```bash +# Im WSL-Terminal +cd /mnt/c/Users/mbusc/source/repos/internxt-webdav + +# Abhängigkeiten installieren (inkl. Kyber für login mit Keys) +npm install + +# .env mit Credentials (INXT_EMAIL, INXT_PASSWORD) +# Optional: DEBUG=1 für Salt-Check +``` + +## Auth-PoC mit login() testen + +Zuerst den Auth-PoC auf `login()` umstellen (mit Keys): + +```bash +npm run auth-test +``` + +Falls der Fehler "Wrong login credentials" weiterhin auftritt, liegt das Problem nicht am Kyber-WASM, sondern am Backend/Account-Typ. + +## Projektpfad + +Windows-Pfad: `c:\Users\mbusc\source\repos\internxt-webdav` +WSL-Pfad: `/mnt/c/Users/mbusc/source/repos/internxt-webdav` diff --git a/package-lock.json b/package-lock.json new file mode 100644 index 0000000..434fd61 --- /dev/null +++ b/package-lock.json @@ -0,0 +1,1234 @@ +{ + "name": "internxt-webdav", + "version": "0.1.0", + "lockfileVersion": 3, + "requires": true, + "packages": { + "": { + "name": "internxt-webdav", + "version": "0.1.0", + "dependencies": { + "@dashlane/pqc-kem-kyber512-node": "^1.0.0", + "@internxt/lib": "^1.4.1", + "@internxt/sdk": "^1.13.2", + "crypto-js": "^4.1.1", + "dotenv": "^16.0.0", + "express": "^4.18.0", + "openpgp": "^5.11.3", + "webdav-server": "^2.6.0" + } + }, + "node_modules/@dashlane/pqc-kem-kyber512-node": { + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/@dashlane/pqc-kem-kyber512-node/-/pqc-kem-kyber512-node-1.0.0.tgz", + "integrity": "sha512-gVzQwP/1OqKLyYZ/oRI9uECSnYIcLUcZbnAA34Q2l8X1eXq5JWf304tDp1UTdYdJ+ZE58SmQ68VCa/WvpCviGw==", + "license": "Apache-2.0", + "engines": { + "node": ">=16.0.0" + } + }, + "node_modules/@internxt/lib": { + "version": "1.4.1", + "resolved": "https://registry.npmjs.org/@internxt/lib/-/lib-1.4.1.tgz", + "integrity": "sha512-sWNp57IKCk0HjzTdPSuxOgZWvrSDWGYrzNOq90LIZTzr1HwkxObicUaZqSzmw4uDKrJhsdFdzwdywk3g8gwDDA==", + "license": "MIT", + "dependencies": { + "uuid": "^11.1.0" + } + }, + "node_modules/@internxt/sdk": { + "version": "1.15.1", + "resolved": "https://registry.npmjs.org/@internxt/sdk/-/sdk-1.15.1.tgz", + "integrity": "sha512-CEH/fNjDWenmFAl8NHaykb85AY4uEZDO5pA2ap8/GD4SXmxC3rcWsKnMsYO9jc8R2vpOPxmE3oBlNqOVcI/llQ==", + "license": "MIT", + "dependencies": { + "axios": "1.13.5", + "internxt-crypto": "0.0.13" + } + }, + "node_modules/@noble/curves": { + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/@noble/curves/-/curves-2.0.1.tgz", + "integrity": "sha512-vs1Az2OOTBiP4q0pwjW5aF0xp9n4MxVrmkFBxc6EKZc6ddYx5gaZiAsZoq0uRRXWbi3AT/sBqn05eRPtn1JCPw==", + "license": "MIT", + "dependencies": { + "@noble/hashes": "2.0.1" + }, + "engines": { + "node": ">= 20.19.0" + }, + "funding": { + "url": "https://paulmillr.com/funding/" + } + }, + "node_modules/@noble/hashes": { + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/@noble/hashes/-/hashes-2.0.1.tgz", + "integrity": "sha512-XlOlEbQcE9fmuXxrVTXCTlG2nlRXa9Rj3rr5Ue/+tX+nmkgbX720YHh0VR3hBF9xDvwnb8D2shVGOwNx+ulArw==", + "license": "MIT", + "engines": { + "node": ">= 20.19.0" + }, + "funding": { + "url": "https://paulmillr.com/funding/" + } + }, + "node_modules/@noble/post-quantum": { + "version": "0.5.4", + "resolved": "https://registry.npmjs.org/@noble/post-quantum/-/post-quantum-0.5.4.tgz", + "integrity": "sha512-leww0zzIirrvwaYMPI9fj6aRIlA/c6Y0/lifQQ1YOOyHEr0MNH3yYpjXeiVG+tWdPps4XxGclFWX2INPO3Yo5w==", + "license": "MIT", + "dependencies": { + "@noble/curves": "~2.0.0", + "@noble/hashes": "~2.0.0" + }, + "engines": { + "node": ">= 20.19.0" + }, + "funding": { + "url": "https://paulmillr.com/funding/" + } + }, + "node_modules/@scure/base": { + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/@scure/base/-/base-2.0.0.tgz", + "integrity": "sha512-3E1kpuZginKkek01ovG8krQ0Z44E3DHPjc5S2rjJw9lZn3KSQOs8S7wqikF/AH7iRanHypj85uGyxk0XAyC37w==", + "license": "MIT", + "funding": { + "url": "https://paulmillr.com/funding/" + } + }, + "node_modules/@scure/bip39": { + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/@scure/bip39/-/bip39-2.0.1.tgz", + "integrity": "sha512-PsxdFj/d2AcJcZDX1FXN3dDgitDDTmwf78rKZq1a6c1P1Nan1X/Sxc7667zU3U+AN60g7SxxP0YCVw2H/hBycg==", + "license": "MIT", + "dependencies": { + "@noble/hashes": "2.0.1", + "@scure/base": "2.0.0" + }, + "funding": { + "url": "https://paulmillr.com/funding/" + } + }, + "node_modules/accepts": { + "version": "1.3.8", + "resolved": "https://registry.npmjs.org/accepts/-/accepts-1.3.8.tgz", + "integrity": "sha512-PYAthTa2m2VKxuvSD3DPC/Gy+U+sOA1LAuT8mkmRuvw+NACSaeXEQ+NHcVF7rONl6qcaxV3Uuemwawk+7+SJLw==", + "license": "MIT", + "dependencies": { + "mime-types": "~2.1.34", + "negotiator": "0.6.3" + }, + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/array-flatten": { + "version": "1.1.1", + "resolved": "https://registry.npmjs.org/array-flatten/-/array-flatten-1.1.1.tgz", + "integrity": "sha512-PCVAQswWemu6UdxsDFFX/+gVeYqKAod3D3UVm91jHwynguOwAvYPhx8nNlM++NqRcK6CxxpUafjmhIdKiHibqg==", + "license": "MIT" + }, + "node_modules/asn1.js": { + "version": "5.4.1", + "resolved": "https://registry.npmjs.org/asn1.js/-/asn1.js-5.4.1.tgz", + "integrity": "sha512-+I//4cYPccV8LdmBLiX8CYvf9Sp3vQsrqu2QNXRcrbiWvcx/UdlFiqUJJzxRQxgsZmvhXhn4cSKeSmoFjVdupA==", + "license": "MIT", + "dependencies": { + "bn.js": "^4.0.0", + "inherits": "^2.0.1", + "minimalistic-assert": "^1.0.0", + "safer-buffer": "^2.1.0" + } + }, + "node_modules/asynckit": { + "version": "0.4.0", + "resolved": "https://registry.npmjs.org/asynckit/-/asynckit-0.4.0.tgz", + "integrity": "sha512-Oei9OH4tRh0YqU3GxhX79dM/mwVgvbZJaSNaRk+bshkj0S5cfHcgYakreBjrHwatXKbz+IoIdYLxrKim2MjW0Q==", + "license": "MIT" + }, + "node_modules/axios": { + "version": "1.13.5", + "resolved": "https://registry.npmjs.org/axios/-/axios-1.13.5.tgz", + "integrity": "sha512-cz4ur7Vb0xS4/KUN0tPWe44eqxrIu31me+fbang3ijiNscE129POzipJJA6zniq2C/Z6sJCjMimjS8Lc/GAs8Q==", + "license": "MIT", + "dependencies": { + "follow-redirects": "^1.15.11", + "form-data": "^4.0.5", + "proxy-from-env": "^1.1.0" + } + }, + "node_modules/bn.js": { + "version": "4.12.3", + "resolved": "https://registry.npmjs.org/bn.js/-/bn.js-4.12.3.tgz", + "integrity": "sha512-fGTi3gxV/23FTYdAoUtLYp6qySe2KE3teyZitipKNRuVYcBkoP/bB3guXN/XVKUe9mxCHXnc9C4ocyz8OmgN0g==", + "license": "MIT" + }, + "node_modules/body-parser": { + "version": "1.20.4", + "resolved": "https://registry.npmjs.org/body-parser/-/body-parser-1.20.4.tgz", + "integrity": "sha512-ZTgYYLMOXY9qKU/57FAo8F+HA2dGX7bqGc71txDRC1rS4frdFI5R7NhluHxH6M0YItAP0sHB4uqAOcYKxO6uGA==", + "license": "MIT", + "dependencies": { + "bytes": "~3.1.2", + "content-type": "~1.0.5", + "debug": "2.6.9", + "depd": "2.0.0", + "destroy": "~1.2.0", + "http-errors": "~2.0.1", + "iconv-lite": "~0.4.24", + "on-finished": "~2.4.1", + "qs": "~6.14.0", + "raw-body": "~2.5.3", + "type-is": "~1.6.18", + "unpipe": "~1.0.0" + }, + "engines": { + "node": ">= 0.8", + "npm": "1.2.8000 || >= 1.4.16" + } + }, + "node_modules/bytes": { + "version": "3.1.2", + "resolved": "https://registry.npmjs.org/bytes/-/bytes-3.1.2.tgz", + "integrity": "sha512-/Nf7TyzTx6S3yRJObOAV7956r8cr2+Oj8AC5dt8wSP3BQAoeX58NoHyCU8P8zGkNXStjTSi6fzO6F0pBdcYbEg==", + "license": "MIT", + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/call-bind-apply-helpers": { + "version": "1.0.2", + "resolved": "https://registry.npmjs.org/call-bind-apply-helpers/-/call-bind-apply-helpers-1.0.2.tgz", + "integrity": "sha512-Sp1ablJ0ivDkSzjcaJdxEunN5/XvksFJ2sMBFfq6x0ryhQV/2b/KwFe21cMpmHtPOSij8K99/wSfoEuTObmuMQ==", + "license": "MIT", + "dependencies": { + "es-errors": "^1.3.0", + "function-bind": "^1.1.2" + }, + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/call-bound": { + "version": "1.0.4", + "resolved": "https://registry.npmjs.org/call-bound/-/call-bound-1.0.4.tgz", + "integrity": "sha512-+ys997U96po4Kx/ABpBCqhA9EuxJaQWDQg7295H4hBphv3IZg0boBKuwYpt4YXp6MZ5AmZQnU/tyMTlRpaSejg==", + "license": "MIT", + "dependencies": { + "call-bind-apply-helpers": "^1.0.2", + "get-intrinsic": "^1.3.0" + }, + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/combined-stream": { + "version": "1.0.8", + "resolved": "https://registry.npmjs.org/combined-stream/-/combined-stream-1.0.8.tgz", + "integrity": "sha512-FQN4MRfuJeHf7cBbBMJFXhKSDq+2kAArBlmRBvcvFE5BB1HZKXtSFASDhdlz9zOYwxh8lDdnvmMOe/+5cdoEdg==", + "license": "MIT", + "dependencies": { + "delayed-stream": "~1.0.0" + }, + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/content-disposition": { + "version": "0.5.4", + "resolved": "https://registry.npmjs.org/content-disposition/-/content-disposition-0.5.4.tgz", + "integrity": "sha512-FveZTNuGw04cxlAiWbzi6zTAL/lhehaWbTtgluJh4/E95DqMwTmha3KZN1aAWA8cFIhHzMZUvLevkw5Rqk+tSQ==", + "license": "MIT", + "dependencies": { + "safe-buffer": "5.2.1" + }, + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/content-type": { + "version": "1.0.5", + "resolved": "https://registry.npmjs.org/content-type/-/content-type-1.0.5.tgz", + "integrity": "sha512-nTjqfcBFEipKdXCv4YDQWCfmcLZKm81ldF0pAopTvyrFGVbcR6P/VAAd5G7N+0tTr8QqiU0tFadD6FK4NtJwOA==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/cookie": { + "version": "0.7.2", + "resolved": "https://registry.npmjs.org/cookie/-/cookie-0.7.2.tgz", + "integrity": "sha512-yki5XnKuf750l50uGTllt6kKILY4nQ1eNIQatoXEByZ5dWgnKqbnqmTrBE5B4N7lrMJKQ2ytWMiTO2o0v6Ew/w==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/cookie-signature": { + "version": "1.0.7", + "resolved": "https://registry.npmjs.org/cookie-signature/-/cookie-signature-1.0.7.tgz", + "integrity": "sha512-NXdYc3dLr47pBkpUCHtKSwIOQXLVn8dZEuywboCOJY/osA0wFSLlSawr3KN8qXJEyX66FcONTH8EIlVuK0yyFA==", + "license": "MIT" + }, + "node_modules/crypto-js": { + "version": "4.2.0", + "resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.2.0.tgz", + "integrity": "sha512-KALDyEYgpY+Rlob/iriUtjV6d5Eq+Y191A5g4UqLAi8CyGP9N1+FdVbkc1SxKc2r4YAYqG8JzO2KGL+AizD70Q==", + "license": "MIT" + }, + "node_modules/debug": { + "version": "2.6.9", + "resolved": "https://registry.npmjs.org/debug/-/debug-2.6.9.tgz", + "integrity": "sha512-bC7ElrdJaJnPbAP+1EotYvqZsb3ecl5wi6Bfi6BJTUcNowp6cvspg0jXznRTKDjm/E7AdgFBVeAPVMNcKGsHMA==", + "license": "MIT", + "dependencies": { + "ms": "2.0.0" + } + }, + "node_modules/delayed-stream": { + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/delayed-stream/-/delayed-stream-1.0.0.tgz", + "integrity": "sha512-ZySD7Nf91aLB0RxL4KGrKHBXl7Eds1DAmEdcoVawXnLD7SDhpNgtuII2aAkg7a7QS41jxPSZ17p4VdGnMHk3MQ==", + "license": "MIT", + "engines": { + "node": ">=0.4.0" + } + }, + "node_modules/depd": { + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/depd/-/depd-2.0.0.tgz", + "integrity": "sha512-g7nH6P6dyDioJogAAGprGpCtVImJhpPk/roCzdb3fIh61/s/nPsfR6onyMwkCAR/OlC3yBC0lESvUoQEAssIrw==", + "license": "MIT", + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/destroy": { + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/destroy/-/destroy-1.2.0.tgz", + "integrity": "sha512-2sJGJTaXIIaR1w4iJSNoN0hnMY7Gpc/n8D4qSCJw8QqFWXf7cuAgnEHxBpweaVcPevC2l3KpjYCx3NypQQgaJg==", + "license": "MIT", + "engines": { + "node": ">= 0.8", + "npm": "1.2.8000 || >= 1.4.16" + } + }, + "node_modules/dotenv": { + "version": "16.6.1", + "resolved": "https://registry.npmjs.org/dotenv/-/dotenv-16.6.1.tgz", + "integrity": "sha512-uBq4egWHTcTt33a72vpSG0z3HnPuIl6NqYcTrKEg2azoEyl2hpW0zqlxysq2pK9HlDIHyHyakeYaYnSAwd8bow==", + "license": "BSD-2-Clause", + "engines": { + "node": ">=12" + }, + "funding": { + "url": "https://dotenvx.com" + } + }, + "node_modules/dunder-proto": { + "version": "1.0.1", + "resolved": "https://registry.npmjs.org/dunder-proto/-/dunder-proto-1.0.1.tgz", + "integrity": "sha512-KIN/nDJBQRcXw0MLVhZE9iQHmG68qAVIBg9CqmUYjmQIhgij9U5MFvrqkUL5FbtyyzZuOeOt0zdeRe4UY7ct+A==", + "license": "MIT", + "dependencies": { + "call-bind-apply-helpers": "^1.0.1", + "es-errors": "^1.3.0", + "gopd": "^1.2.0" + }, + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/ee-first": { + "version": "1.1.1", + "resolved": "https://registry.npmjs.org/ee-first/-/ee-first-1.1.1.tgz", + "integrity": "sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow==", + "license": "MIT" + }, + "node_modules/encodeurl": { + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/encodeurl/-/encodeurl-2.0.0.tgz", + "integrity": "sha512-Q0n9HRi4m6JuGIV1eFlmvJB7ZEVxu93IrMyiMsGC0lrMJMWzRgx6WGquyfQgZVb31vhGgXnfmPNNXmxnOkRBrg==", + "license": "MIT", + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/es-define-property": { + "version": "1.0.1", + "resolved": "https://registry.npmjs.org/es-define-property/-/es-define-property-1.0.1.tgz", + "integrity": "sha512-e3nRfgfUZ4rNGL232gUgX06QNyyez04KdjFrF+LTRoOXmrOgFKDg4BCdsjW8EnT69eqdYGmRpJwiPVYNrCaW3g==", + "license": "MIT", + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/es-errors": { + "version": "1.3.0", + "resolved": "https://registry.npmjs.org/es-errors/-/es-errors-1.3.0.tgz", + "integrity": "sha512-Zf5H2Kxt2xjTvbJvP2ZWLEICxA6j+hAmMzIlypy4xcBg1vKVnx89Wy0GbS+kf5cwCVFFzdCFh2XSCFNULS6csw==", + "license": "MIT", + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/es-object-atoms": { + "version": "1.1.1", + "resolved": "https://registry.npmjs.org/es-object-atoms/-/es-object-atoms-1.1.1.tgz", + "integrity": "sha512-FGgH2h8zKNim9ljj7dankFPcICIK9Cp5bm+c2gQSYePhpaG5+esrLODihIorn+Pe6FGJzWhXQotPv73jTaldXA==", + "license": "MIT", + "dependencies": { + "es-errors": "^1.3.0" + }, + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/es-set-tostringtag": { + "version": "2.1.0", + "resolved": "https://registry.npmjs.org/es-set-tostringtag/-/es-set-tostringtag-2.1.0.tgz", + "integrity": "sha512-j6vWzfrGVfyXxge+O0x5sh6cvxAog0a/4Rdd2K36zCMV5eJ+/+tOAngRO8cODMNWbVRdVlmGZQL2YS3yR8bIUA==", + "license": "MIT", + "dependencies": { + "es-errors": "^1.3.0", + "get-intrinsic": "^1.2.6", + "has-tostringtag": "^1.0.2", + "hasown": "^2.0.2" + }, + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/escape-html": { + "version": "1.0.3", + "resolved": "https://registry.npmjs.org/escape-html/-/escape-html-1.0.3.tgz", + "integrity": "sha512-NiSupZ4OeuGwr68lGIeym/ksIZMJodUGOSCZ/FSnTxcrekbvqrgdUxlJOMpijaKZVjAJrWrGs/6Jy8OMuyj9ow==", + "license": "MIT" + }, + "node_modules/etag": { + "version": "1.8.1", + "resolved": "https://registry.npmjs.org/etag/-/etag-1.8.1.tgz", + "integrity": "sha512-aIL5Fx7mawVa300al2BnEE4iNvo1qETxLrPI/o05L7z6go7fCw1J6EQmbK4FmJ2AS7kgVF/KEZWufBfdClMcPg==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/express": { + "version": "4.22.1", + "resolved": "https://registry.npmjs.org/express/-/express-4.22.1.tgz", + "integrity": "sha512-F2X8g9P1X7uCPZMA3MVf9wcTqlyNp7IhH5qPCI0izhaOIYXaW9L535tGA3qmjRzpH+bZczqq7hVKxTR4NWnu+g==", + "license": "MIT", + "dependencies": { + "accepts": "~1.3.8", + "array-flatten": "1.1.1", + "body-parser": "~1.20.3", + "content-disposition": "~0.5.4", + "content-type": "~1.0.4", + "cookie": "~0.7.1", + "cookie-signature": "~1.0.6", + "debug": "2.6.9", + "depd": "2.0.0", + "encodeurl": "~2.0.0", + "escape-html": "~1.0.3", + "etag": "~1.8.1", + "finalhandler": "~1.3.1", + "fresh": "~0.5.2", + "http-errors": "~2.0.0", + "merge-descriptors": "1.0.3", + "methods": "~1.1.2", + "on-finished": "~2.4.1", + "parseurl": "~1.3.3", + "path-to-regexp": "~0.1.12", + "proxy-addr": "~2.0.7", + "qs": "~6.14.0", + "range-parser": "~1.2.1", + "safe-buffer": "5.2.1", + "send": "~0.19.0", + "serve-static": "~1.16.2", + "setprototypeof": "1.2.0", + "statuses": "~2.0.1", + "type-is": "~1.6.18", + "utils-merge": "1.0.1", + "vary": "~1.1.2" + }, + "engines": { + "node": ">= 0.10.0" + }, + "funding": { + "type": "opencollective", + "url": "https://opencollective.com/express" + } + }, + "node_modules/finalhandler": { + "version": "1.3.2", + "resolved": "https://registry.npmjs.org/finalhandler/-/finalhandler-1.3.2.tgz", + "integrity": "sha512-aA4RyPcd3badbdABGDuTXCMTtOneUCAYH/gxoYRTZlIJdF0YPWuGqiAsIrhNnnqdXGswYk6dGujem4w80UJFhg==", + "license": "MIT", + "dependencies": { + "debug": "2.6.9", + "encodeurl": "~2.0.0", + "escape-html": "~1.0.3", + "on-finished": "~2.4.1", + "parseurl": "~1.3.3", + "statuses": "~2.0.2", + "unpipe": "~1.0.0" + }, + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/flexsearch": { + "version": "0.8.212", + "resolved": "https://registry.npmjs.org/flexsearch/-/flexsearch-0.8.212.tgz", + "integrity": "sha512-wSyJr1GUWoOOIISRu+X2IXiOcVfg9qqBRyCPRUdLMIGJqPzMo+jMRlvE83t14v1j0dRMEaBbER/adQjp6Du2pw==", + "funding": [ + { + "type": "github", + "url": "https://github.com/ts-thomas" + }, + { + "type": "paypal", + "url": "https://www.paypal.com/donate/?hosted_button_id=GEVR88FC9BWRW" + }, + { + "type": "opencollective", + "url": "https://opencollective.com/flexsearch" + }, + { + "type": "patreon", + "url": "https://patreon.com/user?u=96245532" + }, + { + "type": "liberapay", + "url": "https://liberapay.com/ts-thomas" + } + ], + "license": "Apache-2.0" + }, + "node_modules/follow-redirects": { + "version": "1.15.11", + "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.15.11.tgz", + "integrity": "sha512-deG2P0JfjrTxl50XGCDyfI97ZGVCxIpfKYmfyrQ54n5FO/0gfIES8C/Psl6kWVDolizcaaxZJnTS0QSMxvnsBQ==", + "funding": [ + { + "type": "individual", + "url": "https://github.com/sponsors/RubenVerborgh" + } + ], + "license": "MIT", + "engines": { + "node": ">=4.0" + }, + "peerDependenciesMeta": { + "debug": { + "optional": true + } + } + }, + "node_modules/form-data": { + "version": "4.0.5", + "resolved": "https://registry.npmjs.org/form-data/-/form-data-4.0.5.tgz", + "integrity": "sha512-8RipRLol37bNs2bhoV67fiTEvdTrbMUYcFTiy3+wuuOnUog2QBHCZWXDRijWQfAkhBj2Uf5UnVaiWwA5vdd82w==", + "license": "MIT", + "dependencies": { + "asynckit": "^0.4.0", + "combined-stream": "^1.0.8", + "es-set-tostringtag": "^2.1.0", + "hasown": "^2.0.2", + "mime-types": "^2.1.12" + }, + "engines": { + "node": ">= 6" + } + }, + "node_modules/forwarded": { + "version": "0.2.0", + "resolved": "https://registry.npmjs.org/forwarded/-/forwarded-0.2.0.tgz", + "integrity": "sha512-buRG0fpBtRHSTCOASe6hD258tEubFoRLb4ZNA6NxMVHNw2gOcwHo9wyablzMzOA5z9xA9L1KNjk/Nt6MT9aYow==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/fresh": { + "version": "0.5.2", + "resolved": "https://registry.npmjs.org/fresh/-/fresh-0.5.2.tgz", + "integrity": "sha512-zJ2mQYM18rEFOudeV4GShTGIQ7RbzA7ozbU9I/XBpm7kqgMywgmylMwXHxZJmkVoYkna9d2pVXVXPdYTP9ej8Q==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/function-bind": { + "version": "1.1.2", + "resolved": "https://registry.npmjs.org/function-bind/-/function-bind-1.1.2.tgz", + "integrity": "sha512-7XHNxH7qX9xG5mIwxkhumTox/MIRNcOgDrxWsMt2pAr23WHp6MrRlN7FBSFpCpr+oVO0F744iUgR82nJMfG2SA==", + "license": "MIT", + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/get-intrinsic": { + "version": "1.3.0", + "resolved": "https://registry.npmjs.org/get-intrinsic/-/get-intrinsic-1.3.0.tgz", + "integrity": "sha512-9fSjSaos/fRIVIp+xSJlE6lfwhES7LNtKaCBIamHsjr2na1BiABJPo0mOjjz8GJDURarmCPGqaiVg5mfjb98CQ==", + "license": "MIT", + "dependencies": { + "call-bind-apply-helpers": "^1.0.2", + "es-define-property": "^1.0.1", + "es-errors": "^1.3.0", + "es-object-atoms": "^1.1.1", + "function-bind": "^1.1.2", + "get-proto": "^1.0.1", + "gopd": "^1.2.0", + "has-symbols": "^1.1.0", + "hasown": "^2.0.2", + "math-intrinsics": "^1.1.0" + }, + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/get-proto": { + "version": "1.0.1", + "resolved": "https://registry.npmjs.org/get-proto/-/get-proto-1.0.1.tgz", + "integrity": "sha512-sTSfBjoXBp89JvIKIefqw7U2CCebsc74kiY6awiGogKtoSGbgjYE/G/+l9sF3MWFPNc9IcoOC4ODfKHfxFmp0g==", + "license": "MIT", + "dependencies": { + "dunder-proto": "^1.0.1", + "es-object-atoms": "^1.0.0" + }, + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/gopd": { + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/gopd/-/gopd-1.2.0.tgz", + "integrity": "sha512-ZUKRh6/kUFoAiTAtTYPZJ3hw9wNxx+BIBOijnlG9PnrJsCcSjs1wyyD6vJpaYtgnzDrKYRSqf3OO6Rfa93xsRg==", + "license": "MIT", + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/has-symbols": { + "version": "1.1.0", + "resolved": "https://registry.npmjs.org/has-symbols/-/has-symbols-1.1.0.tgz", + "integrity": "sha512-1cDNdwJ2Jaohmb3sg4OmKaMBwuC48sYni5HUw2DvsC8LjGTLK9h+eb1X6RyuOHe4hT0ULCW68iomhjUoKUqlPQ==", + "license": "MIT", + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/has-tostringtag": { + "version": "1.0.2", + "resolved": "https://registry.npmjs.org/has-tostringtag/-/has-tostringtag-1.0.2.tgz", + "integrity": "sha512-NqADB8VjPFLM2V0VvHUewwwsw0ZWBaIdgo+ieHtK3hasLz4qeCRjYcqfB6AQrBggRKppKF8L52/VqdVsO47Dlw==", + "license": "MIT", + "dependencies": { + "has-symbols": "^1.0.3" + }, + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/hash-wasm": { + "version": "4.12.0", + "resolved": "https://registry.npmjs.org/hash-wasm/-/hash-wasm-4.12.0.tgz", + "integrity": "sha512-+/2B2rYLb48I/evdOIhP+K/DD2ca2fgBjp6O+GBEnCDk2e4rpeXIK8GvIyRPjTezgmWn9gmKwkQjjx6BtqDHVQ==", + "license": "MIT" + }, + "node_modules/hasown": { + "version": "2.0.2", + "resolved": "https://registry.npmjs.org/hasown/-/hasown-2.0.2.tgz", + "integrity": "sha512-0hJU9SCPvmMzIBdZFqNPXWa6dqh7WdH0cII9y+CyS8rG3nL48Bclra9HmKhVVUHyPWNH5Y7xDwAB7bfgSjkUMQ==", + "license": "MIT", + "dependencies": { + "function-bind": "^1.1.2" + }, + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/http-errors": { + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/http-errors/-/http-errors-2.0.1.tgz", + "integrity": "sha512-4FbRdAX+bSdmo4AUFuS0WNiPz8NgFt+r8ThgNWmlrjQjt1Q7ZR9+zTlce2859x4KSXrwIsaeTqDoKQmtP8pLmQ==", + "license": "MIT", + "dependencies": { + "depd": "~2.0.0", + "inherits": "~2.0.4", + "setprototypeof": "~1.2.0", + "statuses": "~2.0.2", + "toidentifier": "~1.0.1" + }, + "engines": { + "node": ">= 0.8" + }, + "funding": { + "type": "opencollective", + "url": "https://opencollective.com/express" + } + }, + "node_modules/husky": { + "version": "9.1.7", + "resolved": "https://registry.npmjs.org/husky/-/husky-9.1.7.tgz", + "integrity": "sha512-5gs5ytaNjBrh5Ow3zrvdUUY+0VxIuWVL4i9irt6friV+BqdCfmV11CQTWMiBYWHbXhco+J1kHfTOUkePhCDvMA==", + "license": "MIT", + "bin": { + "husky": "bin.js" + }, + "engines": { + "node": ">=18" + }, + "funding": { + "url": "https://github.com/sponsors/typicode" + } + }, + "node_modules/iconv-lite": { + "version": "0.4.24", + "resolved": "https://registry.npmjs.org/iconv-lite/-/iconv-lite-0.4.24.tgz", + "integrity": "sha512-v3MXnZAcvnywkTUEZomIActle7RXXeedOR31wwl7VlyoXO4Qi9arvSenNQWne1TcRwhCL1HwLI21bEqdpj8/rA==", + "license": "MIT", + "dependencies": { + "safer-buffer": ">= 2.1.2 < 3" + }, + "engines": { + "node": ">=0.10.0" + } + }, + "node_modules/idb": { + "version": "8.0.3", + "resolved": "https://registry.npmjs.org/idb/-/idb-8.0.3.tgz", + "integrity": "sha512-LtwtVyVYO5BqRvcsKuB2iUMnHwPVByPCXFXOpuU96IZPPoPN6xjOGxZQ74pgSVVLQWtUOYgyeL4GE98BY5D3wg==", + "license": "ISC" + }, + "node_modules/inherits": { + "version": "2.0.4", + "resolved": "https://registry.npmjs.org/inherits/-/inherits-2.0.4.tgz", + "integrity": "sha512-k/vGaX4/Yla3WzyMCvTQOXYeIHvqOKtnqBduzTHpzpQZzAskKMhZ2K+EnBiSM9zGSoIFeMpXKxa4dYeZIQqewQ==", + "license": "ISC" + }, + "node_modules/internxt-crypto": { + "version": "0.0.13", + "resolved": "https://registry.npmjs.org/internxt-crypto/-/internxt-crypto-0.0.13.tgz", + "integrity": "sha512-V8Epf4oFZQZwMyIt8mcw7w36M+tryQ9VcfaiKtcruNW/129bawZnPXEeoOfLvAV+9OYlY2ZAwIYP0EtOD2ec6g==", + "dependencies": { + "@noble/hashes": "^2.0.1", + "@noble/post-quantum": "^0.5.2", + "@scure/bip39": "^2.0.1", + "flexsearch": "^0.8.205", + "hash-wasm": "^4.12.0", + "husky": "^9.1.7", + "idb": "^8.0.3", + "uuid": "^13.0.0" + } + }, + "node_modules/internxt-crypto/node_modules/uuid": { + "version": "13.0.0", + "resolved": "https://registry.npmjs.org/uuid/-/uuid-13.0.0.tgz", + "integrity": "sha512-XQegIaBTVUjSHliKqcnFqYypAd4S+WCYt5NIeRs6w/UAry7z8Y9j5ZwRRL4kzq9U3sD6v+85er9FvkEaBpji2w==", + "funding": [ + "https://github.com/sponsors/broofa", + "https://github.com/sponsors/ctavan" + ], + "license": "MIT", + "bin": { + "uuid": "dist-node/bin/uuid" + } + }, + "node_modules/ipaddr.js": { + "version": "1.9.1", + "resolved": "https://registry.npmjs.org/ipaddr.js/-/ipaddr.js-1.9.1.tgz", + "integrity": "sha512-0KI/607xoxSToH7GjN1FfSbLoU0+btTicjsQSWQlh/hZykN8KpmMf7uYwPW3R+akZ6R/w18ZlXSHBYXiYUPO3g==", + "license": "MIT", + "engines": { + "node": ">= 0.10" + } + }, + "node_modules/math-intrinsics": { + "version": "1.1.0", + "resolved": "https://registry.npmjs.org/math-intrinsics/-/math-intrinsics-1.1.0.tgz", + "integrity": "sha512-/IXtbwEk5HTPyEwyKX6hGkYXxM9nbj64B+ilVJnC/R6B0pH5G4V3b0pVbL7DBj4tkhBAppbQUlf6F6Xl9LHu1g==", + "license": "MIT", + "engines": { + "node": ">= 0.4" + } + }, + "node_modules/media-typer": { + "version": "0.3.0", + "resolved": "https://registry.npmjs.org/media-typer/-/media-typer-0.3.0.tgz", + "integrity": "sha512-dq+qelQ9akHpcOl/gUVRTxVIOkAJ1wR3QAvb4RsVjS8oVoFjDGTc679wJYmUmknUF5HwMLOgb5O+a3KxfWapPQ==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/merge-descriptors": { + "version": "1.0.3", + "resolved": "https://registry.npmjs.org/merge-descriptors/-/merge-descriptors-1.0.3.tgz", + "integrity": "sha512-gaNvAS7TZ897/rVaZ0nMtAyxNyi/pdbjbAwUpFQpN70GqnVfOiXpeUUMKRBmzXaSQ8DdTX4/0ms62r2K+hE6mQ==", + "license": "MIT", + "funding": { + "url": "https://github.com/sponsors/sindresorhus" + } + }, + "node_modules/methods": { + "version": "1.1.2", + "resolved": "https://registry.npmjs.org/methods/-/methods-1.1.2.tgz", + "integrity": "sha512-iclAHeNqNm68zFtnZ0e+1L2yUIdvzNoauKU4WBA3VvH/vPFieF7qfRlwUZU+DA9P9bPXIS90ulxoUoCH23sV2w==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/mime": { + "version": "1.6.0", + "resolved": "https://registry.npmjs.org/mime/-/mime-1.6.0.tgz", + "integrity": "sha512-x0Vn8spI+wuJ1O6S7gnbaQg8Pxh4NNHb7KSINmEWKiPE4RKOplvijn+NkmYmmRgP68mc70j2EbeTFRsrswaQeg==", + "license": "MIT", + "bin": { + "mime": "cli.js" + }, + "engines": { + "node": ">=4" + } + }, + "node_modules/mime-db": { + "version": "1.52.0", + "resolved": "https://registry.npmjs.org/mime-db/-/mime-db-1.52.0.tgz", + "integrity": "sha512-sPU4uV7dYlvtWJxwwxHD0PuihVNiE7TyAbQ5SWxDCB9mUYvOgroQOwYQQOKPJ8CIbE+1ETVlOoK1UC2nU3gYvg==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/mime-types": { + "version": "2.1.35", + "resolved": "https://registry.npmjs.org/mime-types/-/mime-types-2.1.35.tgz", + "integrity": "sha512-ZDY+bPm5zTTF+YpCrAU9nK0UgICYPT0QtT1NZWFv4s++TNkcgVaT0g6+4R2uI4MjQjzysHB1zxuWL50hzaeXiw==", + "license": "MIT", + "dependencies": { + "mime-db": "1.52.0" + }, + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/minimalistic-assert": { + "version": "1.0.1", + "resolved": "https://registry.npmjs.org/minimalistic-assert/-/minimalistic-assert-1.0.1.tgz", + "integrity": "sha512-UtJcAD4yEaGtjPezWuO9wC4nwUnVH/8/Im3yEHQP4b67cXlD/Qr9hdITCU1xDbSEXg2XKNaP8jsReV7vQd00/A==", + "license": "ISC" + }, + "node_modules/ms": { + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz", + "integrity": "sha512-Tpp60P6IUJDTuOq/5Z8cdskzJujfwqfOTkrwIwj7IRISpnkJnT6SyJ4PCPnGMoFjC9ddhal5KVIYtAt97ix05A==", + "license": "MIT" + }, + "node_modules/negotiator": { + "version": "0.6.3", + "resolved": "https://registry.npmjs.org/negotiator/-/negotiator-0.6.3.tgz", + "integrity": "sha512-+EUsqGPLsM+j/zdChZjsnX51g4XrHFOIXwfnCVPGlQk/k5giakcKsuxCObBRu6DSm9opw/O6slWbJdghQM4bBg==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/object-inspect": { + "version": "1.13.4", + "resolved": "https://registry.npmjs.org/object-inspect/-/object-inspect-1.13.4.tgz", + "integrity": "sha512-W67iLl4J2EXEGTbfeHCffrjDfitvLANg0UlX3wFUUSTx92KXRFegMHUVgSqE+wvhAbi4WqjGg9czysTV2Epbew==", + "license": "MIT", + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/on-finished": { + "version": "2.4.1", + "resolved": "https://registry.npmjs.org/on-finished/-/on-finished-2.4.1.tgz", + "integrity": "sha512-oVlzkg3ENAhCk2zdv7IJwd/QUD4z2RxRwpkcGY8psCVcCYZNq4wYnVWALHM+brtuJjePWiYF/ClmuDr8Ch5+kg==", + "license": "MIT", + "dependencies": { + "ee-first": "1.1.1" + }, + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/openpgp": { + "version": "5.11.3", + "resolved": "https://registry.npmjs.org/openpgp/-/openpgp-5.11.3.tgz", + "integrity": "sha512-jXOPfIteBUQ2zSmRG4+Y6PNntIIDEAvoM/lOYCnvpXAByJEruzrHQZWE/0CGOKHbubwUuty2HoPHsqBzyKHOpA==", + "deprecated": "This version is deprecated and will no longer receive security patches. Please refer to https://github.com/openpgpjs/openpgpjs/wiki/Updating-from-previous-versions for details on how to upgrade to a newer supported version.", + "license": "LGPL-3.0+", + "dependencies": { + "asn1.js": "^5.0.0" + }, + "engines": { + "node": ">= 8.0.0" + } + }, + "node_modules/parseurl": { + "version": "1.3.3", + "resolved": "https://registry.npmjs.org/parseurl/-/parseurl-1.3.3.tgz", + "integrity": "sha512-CiyeOxFT/JZyN5m0z9PfXw4SCBJ6Sygz1Dpl0wqjlhDEGGBP1GnsUVEL0p63hoG1fcj3fHynXi9NYO4nWOL+qQ==", + "license": "MIT", + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/path-to-regexp": { + "version": "0.1.12", + "resolved": "https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-0.1.12.tgz", + "integrity": "sha512-RA1GjUVMnvYFxuqovrEqZoxxW5NUZqbwKtYz/Tt7nXerk0LbLblQmrsgdeOxV5SFHf0UDggjS/bSeOZwt1pmEQ==", + "license": "MIT" + }, + "node_modules/proxy-addr": { + "version": "2.0.7", + "resolved": "https://registry.npmjs.org/proxy-addr/-/proxy-addr-2.0.7.tgz", + "integrity": "sha512-llQsMLSUDUPT44jdrU/O37qlnifitDP+ZwrmmZcoSKyLKvtZxpyV0n2/bD/N4tBAAZ/gJEdZU7KMraoK1+XYAg==", + "license": "MIT", + "dependencies": { + "forwarded": "0.2.0", + "ipaddr.js": "1.9.1" + }, + "engines": { + "node": ">= 0.10" + } + }, + "node_modules/proxy-from-env": { + "version": "1.1.0", + "resolved": "https://registry.npmjs.org/proxy-from-env/-/proxy-from-env-1.1.0.tgz", + "integrity": "sha512-D+zkORCbA9f1tdWRK0RaCR3GPv50cMxcrz4X8k5LTSUD1Dkw47mKJEZQNunItRTkWwgtaUSo1RVFRIG9ZXiFYg==", + "license": "MIT" + }, + "node_modules/qs": { + "version": "6.14.2", + "resolved": "https://registry.npmjs.org/qs/-/qs-6.14.2.tgz", + "integrity": "sha512-V/yCWTTF7VJ9hIh18Ugr2zhJMP01MY7c5kh4J870L7imm6/DIzBsNLTXzMwUA3yZ5b/KBqLx8Kp3uRvd7xSe3Q==", + "license": "BSD-3-Clause", + "dependencies": { + "side-channel": "^1.1.0" + }, + "engines": { + "node": ">=0.6" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/range-parser": { + "version": "1.2.1", + "resolved": "https://registry.npmjs.org/range-parser/-/range-parser-1.2.1.tgz", + "integrity": "sha512-Hrgsx+orqoygnmhFbKaHE6c296J+HTAQXoxEF6gNupROmmGJRoyzfG3ccAveqCBrwr/2yxQ5BVd/GTl5agOwSg==", + "license": "MIT", + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/raw-body": { + "version": "2.5.3", + "resolved": "https://registry.npmjs.org/raw-body/-/raw-body-2.5.3.tgz", + "integrity": "sha512-s4VSOf6yN0rvbRZGxs8Om5CWj6seneMwK3oDb4lWDH0UPhWcxwOWw5+qk24bxq87szX1ydrwylIOp2uG1ojUpA==", + "license": "MIT", + "dependencies": { + "bytes": "~3.1.2", + "http-errors": "~2.0.1", + "iconv-lite": "~0.4.24", + "unpipe": "~1.0.0" + }, + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/safe-buffer": { + "version": "5.2.1", + "resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.2.1.tgz", + "integrity": "sha512-rp3So07KcdmmKbGvgaNxQSJr7bGVSVk5S9Eq1F+ppbRo70+YeaDxkw5Dd8NPN+GD6bjnYm2VuPuCXmpuYvmCXQ==", + "funding": [ + { + "type": "github", + "url": "https://github.com/sponsors/feross" + }, + { + "type": "patreon", + "url": "https://www.patreon.com/feross" + }, + { + "type": "consulting", + "url": "https://feross.org/support" + } + ], + "license": "MIT" + }, + "node_modules/safer-buffer": { + "version": "2.1.2", + "resolved": "https://registry.npmjs.org/safer-buffer/-/safer-buffer-2.1.2.tgz", + "integrity": "sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg==", + "license": "MIT" + }, + "node_modules/sax": { + "version": "1.4.4", + "resolved": "https://registry.npmjs.org/sax/-/sax-1.4.4.tgz", + "integrity": "sha512-1n3r/tGXO6b6VXMdFT54SHzT9ytu9yr7TaELowdYpMqY/Ao7EnlQGmAQ1+RatX7Tkkdm6hONI2owqNx2aZj5Sw==", + "license": "BlueOak-1.0.0", + "engines": { + "node": ">=11.0.0" + } + }, + "node_modules/send": { + "version": "0.19.2", + "resolved": "https://registry.npmjs.org/send/-/send-0.19.2.tgz", + "integrity": "sha512-VMbMxbDeehAxpOtWJXlcUS5E8iXh6QmN+BkRX1GARS3wRaXEEgzCcB10gTQazO42tpNIya8xIyNx8fll1OFPrg==", + "license": "MIT", + "dependencies": { + "debug": "2.6.9", + "depd": "2.0.0", + "destroy": "1.2.0", + "encodeurl": "~2.0.0", + "escape-html": "~1.0.3", + "etag": "~1.8.1", + "fresh": "~0.5.2", + "http-errors": "~2.0.1", + "mime": "1.6.0", + "ms": "2.1.3", + "on-finished": "~2.4.1", + "range-parser": "~1.2.1", + "statuses": "~2.0.2" + }, + "engines": { + "node": ">= 0.8.0" + } + }, + "node_modules/send/node_modules/ms": { + "version": "2.1.3", + "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz", + "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==", + "license": "MIT" + }, + "node_modules/serve-static": { + "version": "1.16.3", + "resolved": "https://registry.npmjs.org/serve-static/-/serve-static-1.16.3.tgz", + "integrity": "sha512-x0RTqQel6g5SY7Lg6ZreMmsOzncHFU7nhnRWkKgWuMTu5NN0DR5oruckMqRvacAN9d5w6ARnRBXl9xhDCgfMeA==", + "license": "MIT", + "dependencies": { + "encodeurl": "~2.0.0", + "escape-html": "~1.0.3", + "parseurl": "~1.3.3", + "send": "~0.19.1" + }, + "engines": { + "node": ">= 0.8.0" + } + }, + "node_modules/setprototypeof": { + "version": "1.2.0", + "resolved": "https://registry.npmjs.org/setprototypeof/-/setprototypeof-1.2.0.tgz", + "integrity": "sha512-E5LDX7Wrp85Kil5bhZv46j8jOeboKq5JMmYM3gVGdGH8xFpPWXUMsNrlODCrkoxMEeNi/XZIwuRvY4XNwYMJpw==", + "license": "ISC" + }, + "node_modules/side-channel": { + "version": "1.1.0", + "resolved": "https://registry.npmjs.org/side-channel/-/side-channel-1.1.0.tgz", + "integrity": "sha512-ZX99e6tRweoUXqR+VBrslhda51Nh5MTQwou5tnUDgbtyM0dBgmhEDtWGP/xbKn6hqfPRHujUNwz5fy/wbbhnpw==", + "license": "MIT", + "dependencies": { + "es-errors": "^1.3.0", + "object-inspect": "^1.13.3", + "side-channel-list": "^1.0.0", + "side-channel-map": "^1.0.1", + "side-channel-weakmap": "^1.0.2" + }, + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/side-channel-list": { + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/side-channel-list/-/side-channel-list-1.0.0.tgz", + "integrity": "sha512-FCLHtRD/gnpCiCHEiJLOwdmFP+wzCmDEkc9y7NsYxeF4u7Btsn1ZuwgwJGxImImHicJArLP4R0yX4c2KCrMrTA==", + "license": "MIT", + "dependencies": { + "es-errors": "^1.3.0", + "object-inspect": "^1.13.3" + }, + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/side-channel-map": { + "version": "1.0.1", + "resolved": "https://registry.npmjs.org/side-channel-map/-/side-channel-map-1.0.1.tgz", + "integrity": "sha512-VCjCNfgMsby3tTdo02nbjtM/ewra6jPHmpThenkTYh8pG9ucZ/1P8So4u4FGBek/BjpOVsDCMoLA/iuBKIFXRA==", + "license": "MIT", + "dependencies": { + "call-bound": "^1.0.2", + "es-errors": "^1.3.0", + "get-intrinsic": "^1.2.5", + "object-inspect": "^1.13.3" + }, + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/side-channel-weakmap": { + "version": "1.0.2", + "resolved": "https://registry.npmjs.org/side-channel-weakmap/-/side-channel-weakmap-1.0.2.tgz", + "integrity": "sha512-WPS/HvHQTYnHisLo9McqBHOJk2FkHO/tlpvldyrnem4aeQp4hai3gythswg6p01oSoTl58rcpiFAjF2br2Ak2A==", + "license": "MIT", + "dependencies": { + "call-bound": "^1.0.2", + "es-errors": "^1.3.0", + "get-intrinsic": "^1.2.5", + "object-inspect": "^1.13.3", + "side-channel-map": "^1.0.1" + }, + "engines": { + "node": ">= 0.4" + }, + "funding": { + "url": "https://github.com/sponsors/ljharb" + } + }, + "node_modules/statuses": { + "version": "2.0.2", + "resolved": "https://registry.npmjs.org/statuses/-/statuses-2.0.2.tgz", + "integrity": "sha512-DvEy55V3DB7uknRo+4iOGT5fP1slR8wQohVdknigZPMpMstaKJQWhwiYBACJE3Ul2pTnATihhBYnRhZQHGBiRw==", + "license": "MIT", + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/toidentifier": { + "version": "1.0.1", + "resolved": "https://registry.npmjs.org/toidentifier/-/toidentifier-1.0.1.tgz", + "integrity": "sha512-o5sSPKEkg/DIQNmH43V0/uerLrpzVedkUh8tGNvaeXpfpuwjKenlSox/2O/BTlZUtEe+JG7s5YhEz608PlAHRA==", + "license": "MIT", + "engines": { + "node": ">=0.6" + } + }, + "node_modules/type-is": { + "version": "1.6.18", + "resolved": "https://registry.npmjs.org/type-is/-/type-is-1.6.18.tgz", + "integrity": "sha512-TkRKr9sUTxEH8MdfuCSP7VizJyzRNMjj2J2do2Jr3Kym598JVdEksuzPQCnlFPW4ky9Q+iA+ma9BGm06XQBy8g==", + "license": "MIT", + "dependencies": { + "media-typer": "0.3.0", + "mime-types": "~2.1.24" + }, + "engines": { + "node": ">= 0.6" + } + }, + "node_modules/unpipe": { + "version": "1.0.0", + "resolved": "https://registry.npmjs.org/unpipe/-/unpipe-1.0.0.tgz", + "integrity": "sha512-pjy2bYhSsufwWlKwPc+l3cN7+wuJlK6uz0YdJEOlQDbl6jo/YlPi4mb8agUkVC8BF7V8NuzeyPNqRksA3hztKQ==", + "license": "MIT", + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/utils-merge": { + "version": "1.0.1", + "resolved": "https://registry.npmjs.org/utils-merge/-/utils-merge-1.0.1.tgz", + "integrity": "sha512-pMZTvIkT1d+TFGvDOqodOclx0QWkkgi6Tdoa8gC8ffGAAqz9pzPTZWAybbsHHoED/ztMtkv/VoYTYyShUn81hA==", + "license": "MIT", + "engines": { + "node": ">= 0.4.0" + } + }, + "node_modules/uuid": { + "version": "11.1.0", + "resolved": "https://registry.npmjs.org/uuid/-/uuid-11.1.0.tgz", + "integrity": "sha512-0/A9rDy9P7cJ+8w1c9WD9V//9Wj15Ce2MPz8Ri6032usz+NfePxx5AcN3bN+r6ZL6jEo066/yNYB3tn4pQEx+A==", + "funding": [ + "https://github.com/sponsors/broofa", + "https://github.com/sponsors/ctavan" + ], + "license": "MIT", + "bin": { + "uuid": "dist/esm/bin/uuid" + } + }, + "node_modules/vary": { + "version": "1.1.2", + "resolved": "https://registry.npmjs.org/vary/-/vary-1.1.2.tgz", + "integrity": "sha512-BNGbWLfd0eUPabhkXUVm0j8uuvREyTh5ovRa/dyow/BqAbZJyC+5fU+IzQOzmAKzYqYRAISoRhdQr3eIZ/PXqg==", + "license": "MIT", + "engines": { + "node": ">= 0.8" + } + }, + "node_modules/webdav-server": { + "version": "2.6.2", + "resolved": "https://registry.npmjs.org/webdav-server/-/webdav-server-2.6.2.tgz", + "integrity": "sha512-0iHdrOzlKGFD96bTvPF8IIEfxw9Q7jB5LqWqhjyBYsofD6T6mOYqWtAvR88VY9Mq0xeg8bCRHC2Vifc9iuTYuw==", + "license": "Unlicense", + "dependencies": { + "mime-types": "^2.1.18", + "xml-js-builder": "^1.0.3" + }, + "engines": { + "node": ">= 4" + } + }, + "node_modules/xml-js": { + "version": "1.6.11", + "resolved": "https://registry.npmjs.org/xml-js/-/xml-js-1.6.11.tgz", + "integrity": "sha512-7rVi2KMfwfWFl+GpPg6m80IVMWXLRjO+PxTq7V2CDhoGak0wzYzFgUY2m4XJ47OGdXd8eLE8EmwfAmdjw7lC1g==", + "license": "MIT", + "dependencies": { + "sax": "^1.2.4" + }, + "bin": { + "xml-js": "bin/cli.js" + } + }, + "node_modules/xml-js-builder": { + "version": "1.0.3", + "resolved": "https://registry.npmjs.org/xml-js-builder/-/xml-js-builder-1.0.3.tgz", + "integrity": "sha512-BoLgG/glT45M0jK5PGh9h+iGrQxa8jJk9ofR63GroRifl2tbGB3/yYiVY3wQWHrZgWWfl9+7fhEB/VoD9mWnSg==", + "license": "Unlicense", + "dependencies": { + "xml-js": "^1.6.2" + }, + "engines": { + "node": ">= 4" + } + } + } +} diff --git a/package.json b/package.json new file mode 100644 index 0000000..8a84a72 --- /dev/null +++ b/package.json @@ -0,0 +1,19 @@ +{ + "name": "internxt-webdav", + "version": "0.1.0", + "description": "WebDAV wrapper for Internxt Drive (for accounts without CLI/Rclone access)", + "type": "module", + "scripts": { + "auth-test": "node src/auth-poc.js", + "token-test": "node src/token-test.js", + "start": "node src/server.js" + }, + "dependencies": { + "@internxt/lib": "^1.4.1", + "@internxt/sdk": "^1.13.2", + "crypto-js": "^4.1.1", + "dotenv": "^16.0.0", + "express": "^4.18.0", + "webdav-server": "^2.6.0" + } +} diff --git a/src/auth-poc.js b/src/auth-poc.js new file mode 100644 index 0000000..2cce38d --- /dev/null +++ b/src/auth-poc.js @@ -0,0 +1,129 @@ +/** + * Proof-of-Concept: Internxt Login mit clientName "drive-web" + * + * Testet ob Login mit Web-Client-Identität für eingeschränkte Account-Tiers funktioniert. + * CLI und Rclone nutzen loginAccess() mit "internxt-cli" - das wird blockiert. + * drive-web nutzt login() mit "drive-web" - das funktioniert. + * + * Ausführung: INXT_EMAIL=... INXT_PASSWORD=... node src/auth-poc.js + * Oder: .env mit Credentials füllen, dann node src/auth-poc.js + */ + +import 'dotenv/config'; +import { Auth } from '@internxt/sdk/dist/auth/index.js'; +import CryptoJS from 'crypto-js'; + +const DRIVE_API_URL = process.env.DRIVE_API_URL || 'https://gateway.internxt.com/drive'; +const CRYPTO_SECRET = process.env.CRYPTO_SECRET || process.env.APP_CRYPTO_SECRET || '6KYQBP847D4ATSFA'; + +const email = process.env.INXT_EMAIL; +const password = process.env.INXT_PASSWORD; +const twoFactorCode = process.env.INXT_2FA || ''; + +if (!email || !password) { + console.error('Fehler: INXT_EMAIL und INXT_PASSWORD müssen gesetzt sein.'); + process.exit(1); +} + +// CryptoProvider wie in drive-web - passToHash und encryptText +function passToHash({ password, salt }) { + const saltParsed = salt ? CryptoJS.enc.Hex.parse(salt) : CryptoJS.lib.WordArray.random(128 / 8); + const hash = CryptoJS.PBKDF2(password, saltParsed, { keySize: 256 / 32, iterations: 10000 }); + return { + salt: saltParsed.toString(), + hash: hash.toString(), + }; +} + +function encryptText(text) { + const bytes = CryptoJS.AES.encrypt(text, CRYPTO_SECRET).toString(); + const text64 = CryptoJS.enc.Base64.parse(bytes); + return text64.toString(CryptoJS.enc.Hex); +} + +function decryptText(encryptedText) { + const reb = CryptoJS.enc.Hex.parse(encryptedText); + const bytes = CryptoJS.AES.decrypt(reb.toString(CryptoJS.enc.Base64), CRYPTO_SECRET); + return bytes.toString(CryptoJS.enc.Utf8); +} + +const cryptoProvider = { + encryptPasswordHash(password, encryptedSalt) { + const salt = decryptText(encryptedSalt); + const hashObj = passToHash({ password, salt }); + return encryptText(hashObj.hash); + }, + async generateKeys() { + throw new Error('generateKeys not used - loginWithoutKeys'); + }, +}; + +// AppDetails mit clientName "drive-web" - der Schlüssel zum Bypass! +const appDetails = { + clientName: 'drive-web', + clientVersion: '1.0', +}; + +const apiSecurity = { + token: '', + unauthorizedCallback: () => {}, +}; + +async function main() { + console.log('Internxt Auth PoC - Login mit clientName "drive-web"'); + console.log('API:', DRIVE_API_URL); + console.log('E-Mail:', email); + console.log('2FA:', twoFactorCode ? '***' + twoFactorCode.slice(-2) : '(nicht gesetzt)'); + console.log(''); + + const authClient = Auth.client(DRIVE_API_URL, appDetails, apiSecurity); + + // Optional: securityDetails prüfen (Salt-Decryption testet CRYPTO_SECRET) + if (process.env.DEBUG) { + try { + const details = await authClient.securityDetails(email.toLowerCase()); + const salt = decryptText(details.encryptedSalt); + const isHex = /^[0-9a-f]+$/i.test(salt); + console.log('DEBUG: Salt-Decryption OK, Format:', isHex ? 'Hex' : 'anderes'); + } catch (e) { + console.error('DEBUG: Salt-Decryption fehlgeschlagen - CRYPTO_SECRET evtl. falsch:', e.message); + } + } + + try { + const result = await authClient.loginWithoutKeys( + { + email: email.toLowerCase(), + password, + tfaCode: twoFactorCode || undefined, + }, + cryptoProvider + ); + + console.log('Login erfolgreich!'); + console.log('Token:', result.newToken?.substring(0, 20) + '...'); + console.log('User:', result.user?.email); + console.log(''); + console.log('Der WebDAV-Wrapper kann mit dieser Auth gebaut werden.'); + } catch (err) { + console.error('Login fehlgeschlagen:', err.message); + if (err.response?.data) { + console.error('Response:', JSON.stringify(err.response.data, null, 2)); + } + if (err.message?.includes('cli access not allowed') || err.message?.includes('rclone access not allowed')) { + console.error(''); + console.error('Hinweis: Dieser Fehler sollte mit clientName "drive-web" NICHT auftreten.'); + } + if (err.message?.includes('Wrong login credentials')) { + console.error(''); + console.error('Mögliche Ursachen:'); + console.error('1. CRYPTO_SECRET falsch - drive-web nutzt REACT_APP_CRYPTO_SECRET (evtl. anderer Wert)'); + console.error(' -> DEBUG=1 setzen und erneut ausführen, um Salt-Decryption zu prüfen'); + console.error('2. 2FA-Code abgelaufen (30s gültig) - neuen Code eingeben'); + console.error('3. Passwort/E-Mail falsch'); + } + process.exit(1); + } +} + +main(); diff --git a/src/internxt-client.js b/src/internxt-client.js new file mode 100644 index 0000000..b6dc862 --- /dev/null +++ b/src/internxt-client.js @@ -0,0 +1,41 @@ +/** + * Internxt API Client – Drive API + User Refresh + * Nutzt Browser-Token (INXT_TOKEN) für drive-web Endpoints. + */ + +import 'dotenv/config'; +import { Storage, Users } from '@internxt/sdk/dist/drive/index.js'; + +const DRIVE_API_URL = process.env.DRIVE_API_URL || 'https://gateway.internxt.com/drive'; + +const appDetails = { clientName: 'drive-web', clientVersion: '1.0' }; + +/** + * Erstellt API-Clients mit aktuellem Token. + * @param {string} token - Bearer Token (xNewToken) + * @returns {{ users: Users, storage: Storage }} + */ +export function createClients(token) { + const apiSecurity = { + token, + unauthorizedCallback: () => { + throw new Error('Token abgelaufen oder ungültig'); + }, + }; + return { + users: Users.client(DRIVE_API_URL, appDetails, apiSecurity), + storage: Storage.client(DRIVE_API_URL, appDetails, apiSecurity), + }; +} + +/** + * Holt User-Daten inkl. Bridge-Credentials via refreshUser. + * @param {string} token + * @returns {Promise<{ user: object, newToken?: string }>} + */ +export async function refreshUser(token) { + const { users } = createClients(token); + const response = await users.refreshUser(); + const user = response?.user ?? response; + return { user, newToken: response?.newToken }; +} diff --git a/src/path-resolver.js b/src/path-resolver.js new file mode 100644 index 0000000..6b33a2d --- /dev/null +++ b/src/path-resolver.js @@ -0,0 +1,72 @@ +/** + * WebDAV-Pfad ↔ Internxt-UUID Auflösung + */ + +/** + * Normalisiert WebDAV-Pfad zu Segmenten (ohne führendes /). + * "/" -> [], "/folder1" -> ["folder1"], "/folder1/sub" -> ["folder1","sub"] + */ +export function pathToSegments(path) { + const p = String(path || '').replace(/\/+/g, '/').replace(/^\//, '').replace(/\/$/, ''); + return p ? p.split('/') : []; +} + +/** + * Baut Pfad aus Segmenten. + */ +export function segmentsToPath(segments) { + return '/' + (Array.isArray(segments) ? segments.join('/') : ''); +} + +/** + * Resolved einen WebDAV-Pfad zur Internxt-Ordner-UUID. + * @param {object} storage - Storage Client + * @param {string} rootFolderUuid - Root-Ordner-UUID + * @param {string} path - WebDAV-Pfad (z.B. "/" oder "/folder1/sub") + * @returns {Promise<{ uuid: string, type: 'folder', name: string } | null>} + */ +export async function resolveFolder(storage, rootFolderUuid, path) { + const segments = pathToSegments(path); + let currentUuid = rootFolderUuid; + + for (const segment of segments) { + const [contentPromise] = storage.getFolderContentByUuid({ folderUuid: currentUuid }); + const content = await contentPromise; + const child = content?.children?.find( + (c) => (c.plain_name || c.name || '').toLowerCase() === segment.toLowerCase() + ); + if (!child) return null; + currentUuid = child.uuid; + } + + const name = segments.length ? segments[segments.length - 1] : ''; + return { uuid: currentUuid, type: 'folder', name: name || 'Drive' }; +} + +/** + * Listet Ordnerinhalt (Unterordner + Dateien) für einen Pfad. + * @param {object} storage + * @param {string} rootFolderUuid + * @param {string} path + * @returns {Promise<{ folders: Array<{uuid, name}>, files: Array<{uuid, name, size, updatedAt}> }>} + */ +export async function listFolder(storage, rootFolderUuid, path) { + const folder = await resolveFolder(storage, rootFolderUuid, path); + if (!folder) return null; + + const [contentPromise] = storage.getFolderContentByUuid({ folderUuid: folder.uuid }); + const content = await contentPromise; + + const folders = (content?.children || []).map((c) => ({ + uuid: c.uuid, + name: c.plain_name || c.name || 'Unbenannt', + })); + const files = (content?.files || []).map((f) => ({ + uuid: f.uuid, + name: f.plain_name || f.name || f.plainName || 'Unbenannt', + size: f.size || 0, + updatedAt: f.updatedAt || f.modificationTime || f.creationTime, + })); + + return { folders, files }; +} diff --git a/src/server.js b/src/server.js new file mode 100644 index 0000000..ffae028 --- /dev/null +++ b/src/server.js @@ -0,0 +1,201 @@ +/** + * WebDAV-Server für Internxt Drive (Phase 1: PROPFIND) + * + * Nutzt Browser-Token (INXT_TOKEN, INXT_MNEMONIC) aus .env. + * Siehe docs/browser-token-auth.md + */ + +import 'dotenv/config'; +import express from 'express'; +import { createClients, refreshUser } from './internxt-client.js'; +import { pathToSegments, listFolder } from './path-resolver.js'; + +const PORT = parseInt(process.env.PORT || '3005', 10); +const token = process.env.INXT_TOKEN; + +if (!token) { + console.error('Fehler: INXT_TOKEN muss gesetzt sein. Siehe docs/browser-token-auth.md'); + process.exit(1); +} + +const app = express(); + +// Request-Body für PROPFIND +app.use(express.text({ type: 'application/xml', limit: '1kb' })); + +/** + * Formatiert Datum für DAV:getlastmodified (RFC 2822) + */ +function toLastModified(iso) { + if (!iso) return 'Thu, 01 Jan 1970 00:00:00 GMT'; + const d = new Date(iso); + return d.toUTCString(); +} + +/** + * Escaped XML-Text + */ +function escapeXml(s) { + if (s == null) return ''; + return String(s) + .replace(/&/g, '&') + .replace(//g, '>') + .replace(/"/g, '"') + .replace(/'/g, '''); +} + +/** + * Erzeugt PROPFIND multistatus XML + */ +function buildPropfindResponse(baseUrl, items) { + const ns = 'DAV:'; + const responses = items.map((item) => { + const href = baseUrl + (item.path === '/' ? '/' : item.path + (item.isCollection ? '/' : '')); + const lastMod = toLastModified(item.updatedAt); + const resourcetype = item.isCollection + ? `` + : ''; + const contentLength = item.isCollection ? '' : `${item.size ?? 0}`; + + return ` + + ${escapeXml(href)} + + + ${escapeXml(item.name)} + ${escapeXml(lastMod)} + ${resourcetype} + ${contentLength} + + HTTP/1.1 200 OK + + `; + }); + + return ` +${responses.join('')} +`; +} + +/** + * PROPFIND Handler + */ +async function handlePropfind(req, res) { + const depth = req.headers['depth'] || '1'; + let path = req.url || '/'; + try { + path = decodeURIComponent(path); + } catch (_) {} + if (!path.startsWith('/')) path = '/' + path; + if (path !== '/' && path.endsWith('/')) path = path.slice(0, -1); + + const baseUrl = `${req.protocol}://${req.get('host')}`; + + try { + const { users, storage } = createClients(token); + const refresh = await refreshUser(token); + const user = refresh.user; + const rootUuid = user?.rootFolderUuid || user?.rootFolderId || user?.root_folder_id; + if (!rootUuid) { + res.status(500).send('Root-Ordner nicht gefunden'); + return; + } + + const listing = await listFolder(storage, rootUuid, path); + if (!listing) { + res.status(404).send('Nicht gefunden'); + return; + } + + const items = []; + const segments = pathToSegments(path); + const parentName = segments.length ? segments[segments.length - 1] : 'Drive'; + + // Aktuelle Ressource (Collection) + items.push({ + path, + name: parentName, + isCollection: true, + updatedAt: null, + size: null, + }); + + // Kinder bei depth 1 + if (depth !== '0') { + for (const f of listing.folders) { + const childPath = path === '/' ? '/' + f.name : path + '/' + f.name; + items.push({ + path: childPath, + name: f.name, + isCollection: true, + updatedAt: null, + size: null, + }); + } + for (const f of listing.files) { + const childPath = path === '/' ? '/' + f.name : path + '/' + f.name; + items.push({ + path: childPath, + name: f.name, + isCollection: false, + updatedAt: f.updatedAt, + size: f.size, + }); + } + } + + const xml = buildPropfindResponse(baseUrl, items); + res.set('Content-Type', 'application/xml; charset="utf-8"'); + res.status(207).send(xml); + } catch (err) { + console.error('PROPFIND Fehler:', err.message); + if (err.message?.includes('Token') || err.response?.status === 401) { + res.status(401).send('Nicht autorisiert – Token erneuern'); + return; + } + res.status(500).send(err.message || 'Interner Fehler'); + } +} + +// WebDAV Endpoints +app.options('*', (req, res) => { + res.set('DAV', '1, 2'); + res.set('Allow', 'OPTIONS, PROPFIND, GET, HEAD, PUT, DELETE, MKCOL, MOVE'); + res.sendStatus(200); +}); + +// Alle WebDAV-Methoden zentral +app.use((req, res, next) => { + if (req.method === 'PROPFIND') { + handlePropfind(req, res); + return; + } + if (req.method === 'GET' || req.method === 'HEAD') { + res.status(501).send('GET (Download) noch nicht implementiert – Phase 3'); + return; + } + if (req.method === 'PUT') { + res.status(501).send('PUT (Upload) noch nicht implementiert – Phase 4'); + return; + } + if (req.method === 'DELETE') { + res.status(501).send('DELETE noch nicht implementiert – Phase 2'); + return; + } + if (req.method === 'MKCOL') { + res.status(501).send('MKCOL noch nicht implementiert – Phase 2'); + return; + } + if (req.method === 'MOVE') { + res.status(501).send('MOVE noch nicht implementiert – Phase 2'); + return; + } + next(); +}); + +app.listen(PORT, () => { + console.log(`Internxt WebDAV Server – http://127.0.0.1:${PORT}`); + console.log('Phase 1: PROPFIND (Verzeichnis auflisten) aktiv.'); + console.log('Verwendung: z.B. Windows Explorer → Netzlaufwerk verbinden'); +}); diff --git a/src/token-test.js b/src/token-test.js new file mode 100644 index 0000000..9eab68c --- /dev/null +++ b/src/token-test.js @@ -0,0 +1,59 @@ +/** + * Token-Test: Prüft ob Browser-Token funktioniert + * + * Voraussetzung: Auf drive.internxt.com eingeloggt, Token + Mnemonic aus + * localStorage (xNewToken, xMnemonic) in .env als INXT_TOKEN und INXT_MNEMONIC + * + * Siehe docs/browser-token-auth.md + */ + +import 'dotenv/config'; +import { Storage, Users } from '@internxt/sdk/dist/drive/index.js'; + +const DRIVE_API_URL = process.env.DRIVE_API_URL || 'https://gateway.internxt.com/drive'; +const token = process.env.INXT_TOKEN; + +if (!token) { + console.error('Fehler: INXT_TOKEN muss gesetzt sein (aus Browser localStorage)'); + process.exit(1); +} + +const appDetails = { clientName: 'drive-web', clientVersion: '1.0' }; +const apiSecurity = { + token, + unauthorizedCallback: () => console.error('Token abgelaufen oder ungültig'), +}; + +async function main() { + console.log('Token-Test – Drive API mit Browser-Token'); + console.log(''); + + const usersClient = Users.client(DRIVE_API_URL, appDetails, apiSecurity); + const storageClient = Storage.client(DRIVE_API_URL, appDetails, apiSecurity); + + try { + // refreshUser nutzt /users/refresh (nicht CLI-Endpoint) + const response = await usersClient.refreshUser(); + const user = response?.user ?? response; + console.log('Token OK – User:', user?.email); + console.log('Root Folder UUID:', user?.rootFolderId || user?.rootFolderUuid); + + const rootUuid = user?.rootFolderUuid || user?.rootFolderId; + if (rootUuid) { + const [content] = storageClient.getFolderContentByUuid({ folderUuid: rootUuid }); + const folderContent = await content; + console.log('Dateien/Ordner im Root:', folderContent.children?.length ?? 0); + } + + console.log(''); + console.log('Token funktioniert – WebDAV-Server kann gebaut werden.'); + } catch (err) { + console.error('Fehler:', err.message); + if (err.response?.status === 401) { + console.error('Token abgelaufen – bitte erneut auf drive.internxt.com einloggen und Token aktualisieren.'); + } + process.exit(1); + } +} + +main();