Some checks failed
CI/CD Pipeline / Solidity Contracts (push) Failing after 1m18s
CI/CD Pipeline / Security Scanning (push) Successful in 2m34s
CI/CD Pipeline / Lint and Format (push) Failing after 54s
CI/CD Pipeline / Terraform Validation (push) Failing after 27s
CI/CD Pipeline / Kubernetes Validation (push) Successful in 28s
Deploy ChainID 138 / Deploy ChainID 138 (push) Failing after 39s
HYBX OMNL TypeScript & anchor / token-aggregation build + reconcile artifact (push) Failing after 31s
Validation / validate-genesis (push) Successful in 28s
Validation / validate-terraform (push) Failing after 31s
Validation / validate-kubernetes (push) Failing after 11s
Validation / validate-smart-contracts (push) Failing after 11s
Validation / validate-security (push) Failing after 1m27s
Validation / validate-documentation (push) Failing after 21s
Verify Deployment / Verify Deployment (push) Has been cancelled
Co-authored-by: Cursor <cursoragent@cursor.com>
45 lines
1.5 KiB
TypeScript
45 lines
1.5 KiB
TypeScript
export type OmnlAuthRole = 'super_admin' | 'customer' | 'portal_internal' | 'legacy_operator';
|
|
export type OmnlPrincipal = {
|
|
role: OmnlAuthRole;
|
|
adminId?: string;
|
|
portalCtid?: number;
|
|
scopes?: string[];
|
|
};
|
|
export type SuperAdminEntry = {
|
|
id: string;
|
|
username: string;
|
|
displayName: string;
|
|
portalCtid: number;
|
|
portalName: string;
|
|
envKey: string;
|
|
fineractUser: string;
|
|
products: string[];
|
|
};
|
|
export type CustomerSecurityPolicy = {
|
|
version: string;
|
|
production: boolean;
|
|
neverExposeOperatorKeyInBrowser: boolean;
|
|
portalInjectAuthViaNginx: boolean;
|
|
requireApiKeyAllExchangeRoutes: boolean;
|
|
customerAllowedScopes: string[];
|
|
superAdminOnlyScopes: string[];
|
|
rateLimits: {
|
|
customerPerMinute: number;
|
|
superAdminPerMinute: number;
|
|
anonymousPerMinute: number;
|
|
};
|
|
corsOrigins: string[];
|
|
};
|
|
export declare function loadSuperAdminRegistry(): SuperAdminEntry[];
|
|
export declare function extractApiKey(req: {
|
|
headers: Record<string, unknown>;
|
|
query?: Record<string, unknown>;
|
|
}): string | undefined;
|
|
export declare function loadCustomerSecurityPolicy(): CustomerSecurityPolicy;
|
|
export declare function resolveOmnlPrincipal(req: {
|
|
headers: Record<string, unknown>;
|
|
query?: Record<string, unknown>;
|
|
}, key?: string): OmnlPrincipal | null;
|
|
export declare function principalHasScope(principal: OmnlPrincipal | null, scope: string): boolean;
|
|
export declare function isProductionSecurityMode(): boolean;
|