Altsoft/lhisp-oauth-client
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 2 Wiki Activity Actions

feat: update version to 1.0.40 and add rejectUnauthorized option for HTTPS agent
All checks were successful
CI Pipeline / build-and-test (push) Successful in 46s
Details
CI Pipeline / publish (push) Successful in 13s
Details

Browse source
This commit is contained in:
Leandro Costa 2026-01-24 11:11:36 -03:00
parent ca6cd330aa
commit b78ae3a520
5 changed files with 6 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

10
README.md
View file

@ -159,11 +159,6 @@ const client = new LhispOauthClient({
await client.get({ path: "/status" }); await client.get({ path: "/status" });
``` ```
### Observações de segurança
- O `https.Agent` é criado com `rejectUnauthorized: false` (com ou sem certificado). Isso **desabilita validação do certificado** do servidor TLS.
- Em produção, isso pode reduzir segurança. Se você precisar de validação TLS, será necessário ajustar a implementação.
--- ---
## English ## English
@ -319,8 +314,3 @@ const client = new LhispOauthClient({
await client.get({ path: "/status" }); await client.get({ path: "/status" });
``` ```
### Security notes
- The internal `https.Agent` is created with `rejectUnauthorized: false` (with or without PFX). This **disables TLS server certificate validation**.
- In production, this may reduce security. If you need strict TLS validation, the implementation must be adjusted.

4
package-lock.json generated
View file

@ -1,12 +1,12 @@
{ {
"name": "lhisp-oauth-client", "name": "lhisp-oauth-client",
"version": "1.0.38", "version": "1.0.40",
"lockfileVersion": 3, "lockfileVersion": 3,
"requires": true, "requires": true,
"packages": { "packages": {
"": { "": {
"name": "lhisp-oauth-client", "name": "lhisp-oauth-client",
"version": "1.0.38", "version": "1.0.40",
"license": "MIT", "license": "MIT",
"dependencies": { "dependencies": {
"axios": "^1.10.0" "axios": "^1.10.0"

2
package.json
View file

@ -1,6 +1,6 @@
{ {
"name": "lhisp-oauth-client", "name": "lhisp-oauth-client",
"version": "1.0.39", "version": "1.0.40",
"main": "src/index", "main": "src/index",
"types": "src/index.d.ts", "types": "src/index.d.ts",
"repository": { "repository": {

1
src/lhisp-oauth-client.t.ts
View file

@ -32,6 +32,7 @@ export interface LhispOauthClientConstructorParams {
debug?: boolean; debug?: boolean;
timeout?: number; timeout?: number;
logger?: Logger; logger?: Logger;
rejectUnauthorized?: boolean;
} }
export interface ExecutarRequestParams extends AxiosRequestConfig { export interface ExecutarRequestParams extends AxiosRequestConfig {

4
src/lhisp-oauth-client.ts
View file

@ -43,11 +43,11 @@ export class LhispOauthClient<iAccessToken extends AccessToken = AccessToken> {
this.agent = new https.Agent({ this.agent = new https.Agent({
pfx: Buffer.isBuffer(params.certificado) ? params.certificado : Buffer.from(params.certificado, "base64"), pfx: Buffer.isBuffer(params.certificado) ? params.certificado : Buffer.from(params.certificado, "base64"),
passphrase: params.senhaCertificado ? params.senhaCertificado : undefined, passphrase: params.senhaCertificado ? params.senhaCertificado : undefined,
rejectUnauthorized: false, rejectUnauthorized: params.rejectUnauthorized ?? false,
}); });
} else { } else {
this.agent = new https.Agent({ this.agent = new https.Agent({
rejectUnauthorized: false, rejectUnauthorized: params.rejectUnauthorized ?? false,
}); });
} }