GT AI OS Community Edition v2.0.33
Security hardening release addressing CodeQL and Dependabot alerts: - Fix stack trace exposure in error responses - Add SSRF protection with DNS resolution checking - Implement proper URL hostname validation (replaces substring matching) - Add centralized path sanitization to prevent path traversal - Fix ReDoS vulnerability in email validation regex - Improve HTML sanitization in validation utilities - Fix capability wildcard matching in auth utilities - Update glob dependency to address CVE - Add CodeQL suppression comments for verified false positives 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
HackWeasel
58
packages/utils/dist/tenant.d.ts
vendored
Normal file
58
packages/utils/dist/tenant.d.ts
vendored
Normal file
@@ -0,0 +1,58 @@
|
||||
import { Tenant, TenantCreateRequest } from '@gt2/types';
|
||||
/**
|
||||
* Generate Kubernetes namespace name for tenant
|
||||
*/
|
||||
export declare function generateTenantNamespace(domain: string): string;
|
||||
/**
|
||||
* Generate tenant subdomain
|
||||
*/
|
||||
export declare function generateTenantSubdomain(domain: string): string;
|
||||
/**
|
||||
* Generate OS user ID for tenant isolation
|
||||
*/
|
||||
export declare function generateTenantUserId(tenantId: number): number;
|
||||
/**
|
||||
* Generate OS group ID for tenant isolation
|
||||
*/
|
||||
export declare function generateTenantGroupId(tenantId: number): number;
|
||||
/**
|
||||
* Get tenant data directory path
|
||||
*/
|
||||
export declare function getTenantDataPath(domain: string, baseDataDir?: string): string;
|
||||
/**
|
||||
* Get default resource limits based on template
|
||||
*/
|
||||
export declare function getTemplateResourceLimits(template: string): {
|
||||
cpu: string;
|
||||
memory: string;
|
||||
storage: string;
|
||||
};
|
||||
/**
|
||||
* Get default max users based on template
|
||||
*/
|
||||
export declare function getTemplateMaxUsers(template: string): number;
|
||||
/**
|
||||
* Validate tenant domain availability (placeholder - would check database in real implementation)
|
||||
*/
|
||||
export declare function isDomainAvailable(domain: string): boolean;
|
||||
/**
|
||||
* Generate complete tenant configuration from create request
|
||||
*/
|
||||
export declare function generateTenantConfig(request: TenantCreateRequest, masterEncryptionKey: string): Partial<Tenant>;
|
||||
/**
|
||||
* Generate Kubernetes deployment YAML for tenant
|
||||
*/
|
||||
export declare function generateTenantDeploymentYAML(tenant: Tenant, tenantUserId: number): string;
|
||||
/**
|
||||
* Calculate tenant usage costs
|
||||
*/
|
||||
export declare function calculateTenantCosts(cpuUsage: number, // CPU hours
|
||||
memoryUsage: number, // Memory GB-hours
|
||||
storageUsage: number, // Storage GB-hours
|
||||
aiTokens: number): {
|
||||
cpu_cost_cents: number;
|
||||
memory_cost_cents: number;
|
||||
storage_cost_cents: number;
|
||||
ai_cost_cents: number;
|
||||
total_cost_cents: number;
|
||||
};
|
||||
Reference in New Issue
Block a user