545563e776
- Complete NestJS TypeScript implementation with WebSocket support - Direct messaging (DM) and group chat functionality - End-to-end encryption with AES encryption and key pairs - Media file support (images, videos, audio, documents) up to 100MB - Push notifications with Firebase Cloud Messaging integration - Mention alerts and real-time typing indicators - User authentication with JWT and Passport - SQLite database with TypeORM entities and relationships - Comprehensive API documentation with Swagger/OpenAPI - File upload handling with secure access control - Online/offline status tracking and presence management - Message editing, deletion, and reply functionality - Notification management with automatic cleanup - Health check endpoint for monitoring - CORS configuration for cross-origin requests - Environment-based configuration management - Structured for Flutter SDK integration Features implemented: ✅ Real-time messaging with Socket.IO ✅ User registration and authentication ✅ Direct messages and group chats ✅ Media file uploads and management ✅ End-to-end encryption ✅ Push notifications ✅ Mention alerts ✅ Typing indicators ✅ Message read receipts ✅ Online status tracking ✅ File access control ✅ Comprehensive API documentation Ready for Flutter SDK development and production deployment.
52 lines
1.2 KiB
JavaScript
52 lines
1.2 KiB
JavaScript
/**
|
|
* Module dependencies.
|
|
*/
|
|
|
|
var crypto = require('crypto');
|
|
|
|
/**
|
|
* Sign the given `val` with `secret`.
|
|
*
|
|
* @param {String} val
|
|
* @param {String} secret
|
|
* @return {String}
|
|
* @api private
|
|
*/
|
|
|
|
exports.sign = function(val, secret){
|
|
if ('string' != typeof val) throw new TypeError("Cookie value must be provided as a string.");
|
|
if ('string' != typeof secret) throw new TypeError("Secret string must be provided.");
|
|
return val + '.' + crypto
|
|
.createHmac('sha256', secret)
|
|
.update(val)
|
|
.digest('base64')
|
|
.replace(/\=+$/, '');
|
|
};
|
|
|
|
/**
|
|
* Unsign and decode the given `val` with `secret`,
|
|
* returning `false` if the signature is invalid.
|
|
*
|
|
* @param {String} val
|
|
* @param {String} secret
|
|
* @return {String|Boolean}
|
|
* @api private
|
|
*/
|
|
|
|
exports.unsign = function(val, secret){
|
|
if ('string' != typeof val) throw new TypeError("Signed cookie string must be provided.");
|
|
if ('string' != typeof secret) throw new TypeError("Secret string must be provided.");
|
|
var str = val.slice(0, val.lastIndexOf('.'))
|
|
, mac = exports.sign(str, secret);
|
|
|
|
return sha1(mac) == sha1(val) ? str : false;
|
|
};
|
|
|
|
/**
|
|
* Private
|
|
*/
|
|
|
|
function sha1(str){
|
|
return crypto.createHash('sha1').update(str).digest('hex');
|
|
}
|