8839075805
Implements Phases 1-8 of the TFTSR implementation plan. Rust backend (Tauri 2.x, src-tauri/): - Multi-provider AI: OpenAI-compatible, Anthropic, Gemini, Mistral, Ollama - PII detection engine: 11 regex patterns with overlap resolution - SQLCipher AES-256 encrypted database with 10 versioned migrations - 28 Tauri IPC commands for triage, analysis, document, and system ops - Ollama: hardware probe, model recommendations, pull/delete with events - RCA and blameless post-mortem Markdown document generators - PDF export via printpdf - Audit log: SHA-256 hash of every external data send - Integration stubs for Confluence, ServiceNow, Azure DevOps (v0.2) Frontend (React 18 + TypeScript + Vite, src/): - 9 pages: full triage workflow NewIssue→LogUpload→Triage→Resolution→RCA→Postmortem→History+Settings - 7 components: ChatWindow, TriageProgress, PiiDiffViewer, DocEditor, HardwareReport, ModelSelector, UI primitives - 3 Zustand stores: session, settings (persisted), history - Type-safe tauriCommands.ts matching Rust backend types exactly - 8 IT domain system prompts (Linux, Windows, Network, K8s, DB, Virt, HW, Obs) DevOps: - .woodpecker/test.yml: rustfmt, clippy, cargo test, tsc, vitest on every push - .woodpecker/release.yml: linux/amd64 + linux/arm64 builds, Gogs release upload Verified: - cargo check: zero errors - tsc --noEmit: zero errors - vitest run: 13/13 unit tests passing Co-Authored-By: Claude Sonnet 4.6 (1M context) <noreply@anthropic.com>
159 lines
4.7 KiB
JavaScript
159 lines
4.7 KiB
JavaScript
'use strict'
|
|
|
|
const { InvalidArgumentError } = require('../core/errors')
|
|
const { runtimeFeatures } = require('../util/runtime-features.js')
|
|
|
|
/**
|
|
* @typedef {Object} HeaderFilters
|
|
* @property {Set<string>} ignore - Set of headers to ignore for matching
|
|
* @property {Set<string>} exclude - Set of headers to exclude from matching
|
|
* @property {Set<string>} match - Set of headers to match (empty means match
|
|
*/
|
|
|
|
/**
|
|
* Creates cached header sets for performance
|
|
*
|
|
* @param {import('./snapshot-recorder').SnapshotRecorderMatchOptions} matchOptions - Matching options for headers
|
|
* @returns {HeaderFilters} - Cached sets for ignore, exclude, and match headers
|
|
*/
|
|
function createHeaderFilters (matchOptions = {}) {
|
|
const { ignoreHeaders = [], excludeHeaders = [], matchHeaders = [], caseSensitive = false } = matchOptions
|
|
|
|
return {
|
|
ignore: new Set(ignoreHeaders.map(header => caseSensitive ? header : header.toLowerCase())),
|
|
exclude: new Set(excludeHeaders.map(header => caseSensitive ? header : header.toLowerCase())),
|
|
match: new Set(matchHeaders.map(header => caseSensitive ? header : header.toLowerCase()))
|
|
}
|
|
}
|
|
|
|
const crypto = runtimeFeatures.has('crypto')
|
|
? require('node:crypto')
|
|
: null
|
|
|
|
/**
|
|
* @callback HashIdFunction
|
|
* @param {string} value - The value to hash
|
|
* @returns {string} - The base64url encoded hash of the value
|
|
*/
|
|
|
|
/**
|
|
* Generates a hash for a given value
|
|
* @type {HashIdFunction}
|
|
*/
|
|
const hashId = crypto?.hash
|
|
? (value) => crypto.hash('sha256', value, 'base64url')
|
|
: (value) => Buffer.from(value).toString('base64url')
|
|
|
|
/**
|
|
* @typedef {(url: string) => boolean} IsUrlExcluded Checks if a URL matches any of the exclude patterns
|
|
*/
|
|
|
|
/** @typedef {{[key: Lowercase<string>]: string}} NormalizedHeaders */
|
|
/** @typedef {Array<string>} UndiciHeaders */
|
|
/** @typedef {Record<string, string|string[]>} Headers */
|
|
|
|
/**
|
|
* @param {*} headers
|
|
* @returns {headers is UndiciHeaders}
|
|
*/
|
|
function isUndiciHeaders (headers) {
|
|
return Array.isArray(headers) && (headers.length & 1) === 0
|
|
}
|
|
|
|
/**
|
|
* Factory function to create a URL exclusion checker
|
|
* @param {Array<string| RegExp>} [excludePatterns=[]] - Array of patterns to exclude
|
|
* @returns {IsUrlExcluded} - A function that checks if a URL matches any of the exclude patterns
|
|
*/
|
|
function isUrlExcludedFactory (excludePatterns = []) {
|
|
if (excludePatterns.length === 0) {
|
|
return () => false
|
|
}
|
|
|
|
return function isUrlExcluded (url) {
|
|
let urlLowerCased
|
|
|
|
for (const pattern of excludePatterns) {
|
|
if (typeof pattern === 'string') {
|
|
if (!urlLowerCased) {
|
|
// Convert URL to lowercase only once
|
|
urlLowerCased = url.toLowerCase()
|
|
}
|
|
// Simple string match (case-insensitive)
|
|
if (urlLowerCased.includes(pattern.toLowerCase())) {
|
|
return true
|
|
}
|
|
} else if (pattern instanceof RegExp) {
|
|
// Regex pattern match
|
|
if (pattern.test(url)) {
|
|
return true
|
|
}
|
|
}
|
|
}
|
|
|
|
return false
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Normalizes headers for consistent comparison
|
|
*
|
|
* @param {Object|UndiciHeaders} headers - Headers to normalize
|
|
* @returns {NormalizedHeaders} - Normalized headers as a lowercase object
|
|
*/
|
|
function normalizeHeaders (headers) {
|
|
/** @type {NormalizedHeaders} */
|
|
const normalizedHeaders = {}
|
|
|
|
if (!headers) return normalizedHeaders
|
|
|
|
// Handle array format (undici internal format: [name, value, name, value, ...])
|
|
if (isUndiciHeaders(headers)) {
|
|
for (let i = 0; i < headers.length; i += 2) {
|
|
const key = headers[i]
|
|
const value = headers[i + 1]
|
|
if (key && value !== undefined) {
|
|
// Convert Buffers to strings if needed
|
|
const keyStr = Buffer.isBuffer(key) ? key.toString() : key
|
|
const valueStr = Buffer.isBuffer(value) ? value.toString() : value
|
|
normalizedHeaders[keyStr.toLowerCase()] = valueStr
|
|
}
|
|
}
|
|
return normalizedHeaders
|
|
}
|
|
|
|
// Handle object format
|
|
if (headers && typeof headers === 'object') {
|
|
for (const [key, value] of Object.entries(headers)) {
|
|
if (key && typeof key === 'string') {
|
|
normalizedHeaders[key.toLowerCase()] = Array.isArray(value) ? value.join(', ') : String(value)
|
|
}
|
|
}
|
|
}
|
|
|
|
return normalizedHeaders
|
|
}
|
|
|
|
const validSnapshotModes = /** @type {const} */ (['record', 'playback', 'update'])
|
|
|
|
/** @typedef {typeof validSnapshotModes[number]} SnapshotMode */
|
|
|
|
/**
|
|
* @param {*} mode - The snapshot mode to validate
|
|
* @returns {asserts mode is SnapshotMode}
|
|
*/
|
|
function validateSnapshotMode (mode) {
|
|
if (!validSnapshotModes.includes(mode)) {
|
|
throw new InvalidArgumentError(`Invalid snapshot mode: ${mode}. Must be one of: ${validSnapshotModes.join(', ')}`)
|
|
}
|
|
}
|
|
|
|
module.exports = {
|
|
createHeaderFilters,
|
|
hashId,
|
|
isUndiciHeaders,
|
|
normalizeHeaders,
|
|
isUrlExcludedFactory,
|
|
validateSnapshotMode
|
|
}
|