ihompadmin/tasq
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
5cb6561924
tasq/node_modules/agentic-flow/dist/federation/SecurityManager.d.ts

80 lines
2.0 KiB
TypeScript
Raw Blame History

/**
* Security Manager - Authentication, encryption, and access control
*
* Features:
* - JWT token generation and validation
* - AES-256 encryption for data at rest
* - Tenant isolation
* - mTLS certificate management
*/
export interface AgentTokenPayload {
agentId: string;
tenantId: string;
expiresAt: number;
}
export interface EncryptionKeys {
encryptionKey: Buffer;
iv: Buffer;
}
export declare class SecurityManager {
private readonly algorithm;
private readonly jwtSecret;
private encryptionCache;
constructor();
/**
* Create JWT token for agent authentication
*/
createAgentToken(payload: AgentTokenPayload): Promise<string>;
/**
* Verify JWT token
*/
verifyAgentToken(token: string): Promise<AgentTokenPayload>;
/**
* Get or create encryption keys for a tenant
*/
getEncryptionKeys(tenantId: string): Promise<EncryptionKeys>;
/**
* Encrypt data with AES-256-GCM
*/
encrypt(data: string, tenantId: string): Promise<{
encrypted: string;
authTag: string;
}>;
/**
* Decrypt data with AES-256-GCM
*/
decrypt(encrypted: string, authTag: string, tenantId: string): Promise<string>;
/**
* Generate mTLS certificates for agent-to-hub communication
*/
generateMTLSCertificates(agentId: string): Promise<{
cert: string;
key: string;
ca: string;
}>;
/**
* Validate tenant access to data
*/
validateTenantAccess(requestTenantId: string, dataTenantId: string): boolean;
/**
* Hash sensitive data for storage (one-way)
*/
hashData(data: string): string;
/**
* Generate secure random ID
*/
generateSecureId(): string;
/**
* Base64 URL-safe encoding
*/
private base64UrlEncode;
/**
* Base64 URL-safe decoding
*/
private base64UrlDecode;
/**
* Clear cached keys (for testing or security refresh)
*/
clearCache(): void;
}
//# sourceMappingURL=SecurityManager.d.ts.map
Reference in New Issue View Git Blame Copy Permalink