@8medusa/framework 2.7.0

package/dist/http/middlewares/authenticate-middleware.js

@@ -0,0 +1,136 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAuthContextFromJwtToken = exports.authenticate = void 0;
+const utils_1 = require("@8medusa/utils");
+const jsonwebtoken_1 = require("jsonwebtoken");
+const SESSION_AUTH = "session";
+const BEARER_AUTH = "bearer";
+const API_KEY_AUTH = "api-key";
+// This is the only hard-coded actor type, as API keys have special handling for now. We could also generalize API keys to carry the actor type with them.
+const ADMIN_ACTOR_TYPE = "user";
+const authenticate = (actorType, authType, options = {}) => {
+    const authenticateMiddleware = async (req, res, next) => {
+        const authTypes = Array.isArray(authType) ? authType : [authType];
+        const actorTypes = Array.isArray(actorType) ? actorType : [actorType];
+        const req_ = req;
+        // We only allow authenticating using a secret API key on the admin
+        const isExclusivelyUser = actorTypes.length === 1 && actorTypes[0] === ADMIN_ACTOR_TYPE;
+        if (authTypes.includes(API_KEY_AUTH) && isExclusivelyUser) {
+            const apiKey = await getApiKeyInfo(req);
+            if (apiKey) {
+                req_.auth_context = {
+                    actor_id: apiKey.id,
+                    actor_type: "api-key",
+                    auth_identity_id: "",
+                    app_metadata: {},
+                };
+                return next();
+            }
+        }
+        // We try to extract the auth context either from the session or from a JWT token
+        let authContext = getAuthContextFromSession(req.session, authTypes, actorTypes);
+        if (!authContext) {
+            const { projectConfig: { http }, } = req.scope.resolve(utils_1.ContainerRegistrationKeys.CONFIG_MODULE);
+            authContext = (0, exports.getAuthContextFromJwtToken)(req.headers.authorization, http.jwtSecret, authTypes, actorTypes);
+        }
+        // If the entity is authenticated, and it is a registered actor we can continue
+        if (authContext?.actor_id) {
+            req_.auth_context = authContext;
+            return next();
+        }
+        // If the entity is authenticated, but there is no registered actor yet, we can continue (eg. in the case of a user invite) if allow unregistered is set
+        // We also don't want to allow creating eg. a customer with a token created for a `user` provider.
+        if (authContext?.auth_identity_id &&
+            options.allowUnregistered &&
+            isActorTypePermitted(actorTypes, authContext.actor_type)) {
+            req_.auth_context = authContext;
+            return next();
+        }
+        // If we allow unauthenticated requests (i.e public endpoints), just continue
+        if (options.allowUnauthenticated) {
+            return next();
+        }
+        res.status(401).json({ message: "Unauthorized" });
+    };
+    return authenticateMiddleware;
+};
+exports.authenticate = authenticate;
+const getApiKeyInfo = async (req) => {
+    const authHeader = req.headers.authorization;
+    if (!authHeader) {
+        return null;
+    }
+    const [tokenType, token] = authHeader.split(" ");
+    if (tokenType.toLowerCase() !== "basic" || !token) {
+        return null;
+    }
+    // The token could have been base64 encoded, we want to decode it first.
+    let normalizedToken = token;
+    if (!token.startsWith("sk_")) {
+        normalizedToken = Buffer.from(token, "base64").toString("utf-8");
+    }
+    // Basic auth is defined as a username:password set, and since the token is set to the username we need to trim the colon
+    if (normalizedToken.endsWith(":")) {
+        normalizedToken = normalizedToken.slice(0, -1);
+    }
+    // Secret tokens start with 'sk_', and if it doesn't it could be a user JWT or a malformed token
+    if (!normalizedToken.startsWith("sk_")) {
+        return null;
+    }
+    const apiKeyModule = req.scope.resolve(utils_1.Modules.API_KEY);
+    try {
+        const apiKey = await apiKeyModule.authenticate(normalizedToken);
+        if (!apiKey) {
+            return null;
+        }
+        return apiKey;
+    }
+    catch (error) {
+        console.error(error);
+        return null;
+    }
+};
+const getAuthContextFromSession = (session = {}, authTypes, actorTypes) => {
+    if (!authTypes.includes(SESSION_AUTH)) {
+        return null;
+    }
+    if (session.auth_context &&
+        isActorTypePermitted(actorTypes, session.auth_context?.actor_type)) {
+        return session.auth_context;
+    }
+    return null;
+};
+const getAuthContextFromJwtToken = (authHeader, jwtSecret, authTypes, actorTypes) => {
+    if (!authTypes.includes(BEARER_AUTH)) {
+        return null;
+    }
+    if (!authHeader) {
+        return null;
+    }
+    const re = /(\S+)\s+(\S+)/;
+    const matches = authHeader.match(re);
+    // TODO: figure out how to obtain token (and store correct data in token)
+    if (matches) {
+        const tokenType = matches[1];
+        const token = matches[2];
+        if (tokenType.toLowerCase() === BEARER_AUTH) {
+            // get config jwt secret
+            // verify token and set authUser
+            try {
+                const verified = (0, jsonwebtoken_1.verify)(token, jwtSecret);
+                if (isActorTypePermitted(actorTypes, verified.actor_type)) {
+                    return verified;
+                }
+            }
+            catch (err) {
+                return null;
+            }
+        }
+    }
+    return null;
+};
+exports.getAuthContextFromJwtToken = getAuthContextFromJwtToken;
+const isActorTypePermitted = (actorTypes, currentActorType) => {
+    return actorTypes.includes("*") || actorTypes.includes(currentActorType);
+};
+//# sourceMappingURL=authenticate-middleware.js.map

package/dist/http/middlewares/authenticate-middleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authenticate-middleware.js","sourceRoot":"","sources":["../../../src/http/middlewares/authenticate-middleware.ts"],"names":[],"mappings":";;;AACA,0CAAmE;AAEnE,+CAAiD;AASjD,MAAM,YAAY,GAAG,SAAS,CAAA;AAC9B,MAAM,WAAW,GAAG,QAAQ,CAAA;AAC5B,MAAM,YAAY,GAAG,SAAS,CAAA;AAE9B,0JAA0J;AAC1J,MAAM,gBAAgB,GAAG,MAAM,CAAA;AAWxB,MAAM,YAAY,GAAG,CAC1B,SAA4B,EAC5B,QAA+B,EAC/B,UAA2E,EAAE,EAC7D,EAAE;IAClB,MAAM,sBAAsB,GAAG,KAAK,EAClC,GAAkB,EAClB,GAAmB,EACnB,IAAkB,EACH,EAAE;QACjB,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAA;QACjE,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAA;QACrE,MAAM,IAAI,GAAG,GAAiC,CAAA;QAE9C,mEAAmE;QACnE,MAAM,iBAAiB,GACrB,UAAU,CAAC,MAAM,KAAK,CAAC,IAAI,UAAU,CAAC,CAAC,CAAC,KAAK,gBAAgB,CAAA;QAE/D,IAAI,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,iBAAiB,EAAE,CAAC;YAC1D,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,GAAG,CAAC,CAAA;YACvC,IAAI,MAAM,EAAE,CAAC;gBACX,IAAI,CAAC,YAAY,GAAG;oBAClB,QAAQ,EAAE,MAAM,CAAC,EAAE;oBACnB,UAAU,EAAE,SAAS;oBACrB,gBAAgB,EAAE,EAAE;oBACpB,YAAY,EAAE,EAAE;iBACjB,CAAA;gBAED,OAAO,IAAI,EAAE,CAAA;YACf,CAAC;QACH,CAAC;QAED,iFAAiF;QACjF,IAAI,WAAW,GAAuB,yBAAyB,CAC7D,GAAG,CAAC,OAAO,EACX,SAAS,EACT,UAAU,CACX,CAAA;QAED,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,EACJ,aAAa,EAAE,EAAE,IAAI,EAAE,GACxB,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CACnB,iCAAyB,CAAC,aAAa,CACxC,CAAA;YAED,WAAW,GAAG,IAAA,kCAA0B,EACtC,GAAG,CAAC,OAAO,CAAC,aAAa,EACzB,IAAI,CAAC,SAAU,EACf,SAAS,EACT,UAAU,CACX,CAAA;QACH,CAAC;QAED,+EAA+E;QAC/E,IAAI,WAAW,EAAE,QAAQ,EAAE,CAAC;YAC1B,IAAI,CAAC,YAAY,GAAG,WAAW,CAAA;YAC/B,OAAO,IAAI,EAAE,CAAA;QACf,CAAC;QAED,wJAAwJ;QACxJ,kGAAkG;QAClG,IACE,WAAW,EAAE,gBAAgB;YAC7B,OAAO,CAAC,iBAAiB;YACzB,oBAAoB,CAAC,UAAU,EAAE,WAAW,CAAC,UAAU,CAAC,EACxD,CAAC;YACD,IAAI,CAAC,YAAY,GAAG,WAAW,CAAA;YAC/B,OAAO,IAAI,EAAE,CAAA;QACf,CAAC;QAED,6EAA6E;QAC7E,IAAI,OAAO,CAAC,oBAAoB,EAAE,CAAC;YACjC,OAAO,IAAI,EAAE,CAAA;QACf,CAAC;QAED,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAA;IACnD,CAAC,CAAA;IAED,OAAO,sBAAmD,CAAA;AAC5D,CAAC,CAAA;AAhFY,QAAA,YAAY,gBAgFxB;AAED,MAAM,aAAa,GAAG,KAAK,EAAE,GAAkB,EAA6B,EAAE;IAC5E,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAA;IAC5C,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IAChD,IAAI,SAAS,CAAC,WAAW,EAAE,KAAK,OAAO,IAAI,CAAC,KAAK,EAAE,CAAC;QAClD,OAAO,IAAI,CAAA;IACb,CAAC;IAED,wEAAwE;IACxE,IAAI,eAAe,GAAG,KAAK,CAAA;IAC3B,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC;QAC7B,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAA;IAClE,CAAC;IAED,yHAAyH;IACzH,IAAI,eAAe,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAClC,eAAe,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAA;IAChD,CAAC;IAED,gGAAgG;IAChG,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC;QACvC,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,YAAY,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CACpC,eAAO,CAAC,OAAO,CACQ,CAAA;IACzB,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,YAAY,CAAC,YAAY,CAAC,eAAe,CAAC,CAAA;QAC/D,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,IAAI,CAAA;QACb,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;QACpB,OAAO,IAAI,CAAA;IACb,CAAC;AACH,CAAC,CAAA;AAED,MAAM,yBAAyB,GAAG,CAChC,UAAkC,EAAE,EACpC,SAAqB,EACrB,UAAoB,EACA,EAAE;IACtB,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;QACtC,OAAO,IAAI,CAAA;IACb,CAAC;IAED,IACE,OAAO,CAAC,YAAY;QACpB,oBAAoB,CAAC,UAAU,EAAE,OAAO,CAAC,YAAY,EAAE,UAAU,CAAC,EAClE,CAAC;QACD,OAAO,OAAO,CAAC,YAAY,CAAA;IAC7B,CAAC;IAED,OAAO,IAAI,CAAA;AACb,CAAC,CAAA;AAEM,MAAM,0BAA0B,GAAG,CACxC,UAA8B,EAC9B,SAAiB,EACjB,SAAqB,EACrB,UAAoB,EACA,EAAE;IACtB,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;QACrC,OAAO,IAAI,CAAA;IACb,CAAC;IAED,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,IAAI,CAAA;IACb,CAAC;IAED,MAAM,EAAE,GAAG,eAAe,CAAA;IAC1B,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC,CAAA;IAEpC,yEAAyE;IACzE,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,SAAS,GAAG,OAAO,CAAC,CAAC,CAAC,CAAA;QAC5B,MAAM,KAAK,GAAG,OAAO,CAAC,CAAC,CAAC,CAAA;QACxB,IAAI,SAAS,CAAC,WAAW,EAAE,KAAK,WAAW,EAAE,CAAC;YAC5C,wBAAwB;YACxB,gCAAgC;YAChC,IAAI,CAAC;gBACH,MAAM,QAAQ,GAAG,IAAA,qBAAM,EAAC,KAAK,EAAE,SAAS,CAAe,CAAA;gBACvD,IAAI,oBAAoB,CAAC,UAAU,EAAE,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;oBAC1D,OAAO,QAAuB,CAAA;gBAChC,CAAC;YACH,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,IAAI,CAAA;YACb,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAA;AACb,CAAC,CAAA;AApCY,QAAA,0BAA0B,8BAoCtC;AAED,MAAM,oBAAoB,GAAG,CAC3B,UAA6B,EAC7B,gBAAwB,EACxB,EAAE;IACF,OAAO,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAA;AAC1E,CAAC,CAAA"}

package/dist/http/middlewares/bodyparser.d.ts

@@ -0,0 +1,13 @@
+import { RequestHandler } from "express";
+import type { MiddlewareFunction, BodyParserConfigRoute } from "../types";
+import type { RoutesFinder } from "../routes-finder";
+/**
+ * Creates the bodyparser middlewares stack that creates custom bodyparsers
+ * during an HTTP request based upon the defined config. The bodyparser
+ * instances are cached for re-use.
+ */
+export declare function createBodyParserMiddlewaresStack(route: string, routesFinder: RoutesFinder<BodyParserConfigRoute>, tracer?: (handler: RequestHandler | MiddlewareFunction, route: {
+    route: string;
+    method?: string;
+}) => RequestHandler | MiddlewareFunction): RequestHandler<import("express-serve-static-core").ParamsDictionary, any, any, import("qs").ParsedQs, Record<string, any>>[];
+//# sourceMappingURL=bodyparser.d.ts.map

package/dist/http/middlewares/bodyparser.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"bodyparser.d.ts","sourceRoot":"","sources":["../../../src/http/middlewares/bodyparser.ts"],"names":[],"mappings":"AAEA,OAAO,EAAsB,cAAc,EAAoB,MAAM,SAAS,CAAA;AAE9E,OAAO,KAAK,EAKV,kBAAkB,EAClB,qBAAqB,EACtB,MAAM,UAAU,CAAA;AACjB,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAA;AA+BpD;;;;GAIG;AACH,wBAAgB,gCAAgC,CAC9C,KAAK,EAAE,MAAM,EACb,YAAY,EAAE,YAAY,CAAC,qBAAqB,CAAC,EACjD,MAAM,CAAC,EAAE,CACP,OAAO,EAAE,cAAc,GAAG,kBAAkB,EAC5C,KAAK,EAAE;IAAE,KAAK,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAE,KACtC,cAAc,GAAG,kBAAkB,gIAyCzC"}

package/dist/http/middlewares/bodyparser.js

@@ -0,0 +1,62 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createBodyParserMiddlewaresStack = createBodyParserMiddlewaresStack;
+const lodash_1 = require("lodash");
+const reporter_1 = __importDefault(require("@8medusa/cli/dist/reporter"));
+const express_1 = require("express");
+/**
+ * Parsers to use for parsing the HTTP request body
+ */
+const parsers = {
+    json: (0, lodash_1.memoize)(function jsonParserMiddleware(options) {
+        return (0, express_1.json)({
+            limit: options?.sizeLimit,
+            verify: options?.preserveRawBody
+                ? (req, res, buf) => {
+                    req.rawBody = buf;
+                }
+                : undefined,
+        });
+    }),
+    text: (0, lodash_1.memoize)(function textParser(options) {
+        return (0, express_1.text)({
+            limit: options?.sizeLimit,
+        });
+    }),
+    urlencoded: (0, lodash_1.memoize)(function urlencodedParserMiddleware(options) {
+        return (0, express_1.urlencoded)({
+            limit: options?.sizeLimit,
+            extended: true,
+        });
+    }),
+};
+/**
+ * Creates the bodyparser middlewares stack that creates custom bodyparsers
+ * during an HTTP request based upon the defined config. The bodyparser
+ * instances are cached for re-use.
+ */
+function createBodyParserMiddlewaresStack(route, routesFinder, tracer) {
+    return ["json", "text", "urlencoded"].map((parser) => {
+        function bodyParser(req, res, next) {
+            const matchingRoute = routesFinder.find(req.path, req.method);
+            const parserMiddleware = parsers[parser];
+            if (!matchingRoute) {
+                return parserMiddleware()(req, res, next);
+            }
+            if (matchingRoute.config === false) {
+                reporter_1.default.debug(`skipping ${parser} bodyparser middleware ${req.method} ${req.path}`);
+                return next();
+            }
+            reporter_1.default.debug(`using custom ${parser} bodyparser config ${req.method} ${req.path}`);
+            return parserMiddleware(matchingRoute.config)(req, res, next);
+        }
+        Object.defineProperty(bodyParser, "name", {
+            value: `${parser}BodyParser`,
+        });
+        return (tracer ? tracer(bodyParser, { route }) : bodyParser);
+    });
+}
+//# sourceMappingURL=bodyparser.js.map

package/dist/http/middlewares/bodyparser.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"bodyparser.js","sourceRoot":"","sources":["../../../src/http/middlewares/bodyparser.ts"],"names":[],"mappings":";;;;;AAgDA,4EA+CC;AA/FD,mCAAgC;AAChC,0EAA+C;AAC/C,qCAA8E;AAY9E;;GAEG;AACH,MAAM,OAAO,GAAG;IACd,IAAI,EAAE,IAAA,gBAAO,EAAC,SAAS,oBAAoB,CAAC,OAA0B;QACpE,OAAO,IAAA,cAAI,EAAC;YACV,KAAK,EAAE,OAAO,EAAE,SAAS;YACzB,MAAM,EAAE,OAAO,EAAE,eAAe;gBAC9B,CAAC,CAAC,CAAC,GAAkB,EAAE,GAAmB,EAAE,GAAW,EAAE,EAAE;oBACvD,GAAG,CAAC,OAAO,GAAG,GAAG,CAAA;gBACnB,CAAC;gBACH,CAAC,CAAC,SAAS;SACd,CAAC,CAAA;IACJ,CAAC,CAAC;IACF,IAAI,EAAE,IAAA,gBAAO,EAAC,SAAS,UAAU,CAAC,OAA0B;QAC1D,OAAO,IAAA,cAAI,EAAC;YACV,KAAK,EAAE,OAAO,EAAE,SAAS;SAC1B,CAAC,CAAA;IACJ,CAAC,CAAC;IACF,UAAU,EAAE,IAAA,gBAAO,EAAC,SAAS,0BAA0B,CACrD,OAA0B;QAE1B,OAAO,IAAA,oBAAU,EAAC;YAChB,KAAK,EAAE,OAAO,EAAE,SAAS;YACzB,QAAQ,EAAE,IAAI;SACf,CAAC,CAAA;IACJ,CAAC,CAAC;CACH,CAAA;AAED;;;;GAIG;AACH,SAAgB,gCAAgC,CAC9C,KAAa,EACb,YAAiD,EACjD,MAGwC;IAExC,OAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,YAAY,CAA8B,CAAC,GAAG,CACrE,CAAC,MAAM,EAAE,EAAE;QACT,SAAS,UAAU,CACjB,GAAkB,EAClB,GAAmB,EACnB,IAAkB;YAElB,MAAM,aAAa,GAAG,YAAY,CAAC,IAAI,CACrC,GAAG,CAAC,IAAI,EACR,GAAG,CAAC,MAAwB,CAC7B,CAAA;YACD,MAAM,gBAAgB,GAAG,OAAO,CAAC,MAAM,CAAC,CAAA;YAExC,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,OAAO,gBAAgB,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,CAAA;YAC3C,CAAC;YAED,IAAI,aAAa,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC;gBACnC,kBAAM,CAAC,KAAK,CACV,YAAY,MAAM,0BAA0B,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,IAAI,EAAE,CACrE,CAAA;gBACD,OAAO,IAAI,EAAE,CAAA;YACf,CAAC;YAED,kBAAM,CAAC,KAAK,CACV,gBAAgB,MAAM,sBAAsB,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,IAAI,EAAE,CACrE,CAAA;YACD,OAAO,gBAAgB,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,CAAA;QAC/D,CAAC;QAED,MAAM,CAAC,cAAc,CAAC,UAAU,EAAE,MAAM,EAAE;YACxC,KAAK,EAAE,GAAG,MAAM,YAAY;SAC7B,CAAC,CAAA;QAEF,OAAO,CACL,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,UAAU,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAClC,CAAA;IACrB,CAAC,CACF,CAAA;AACH,CAAC"}

package/dist/http/middlewares/clear-filters-by-key.d.ts

@@ -0,0 +1,3 @@
+import type { MedusaNextFunction, MedusaRequest, MedusaResponse } from "../types";
+export declare function clearFiltersByKey(keys: string[]): (req: MedusaRequest, _: MedusaResponse, next: MedusaNextFunction) => Promise<void>;
+//# sourceMappingURL=clear-filters-by-key.d.ts.map

package/dist/http/middlewares/clear-filters-by-key.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"clear-filters-by-key.d.ts","sourceRoot":"","sources":["../../../src/http/middlewares/clear-filters-by-key.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,kBAAkB,EAClB,aAAa,EACb,cAAc,EACf,MAAM,UAAU,CAAA;AAEjB,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,EAAE,SAEvC,aAAa,KACf,cAAc,QACX,kBAAkB,mBAQ3B"}

package/dist/http/middlewares/clear-filters-by-key.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.clearFiltersByKey = clearFiltersByKey;
+function clearFiltersByKey(keys) {
+    return async function clearFiltersByKeyMiddleware(req, _, next) {
+        keys.forEach((key) => {
+            delete req.filterableFields[key];
+        });
+        return next();
+    };
+}
+//# sourceMappingURL=clear-filters-by-key.js.map

package/dist/http/middlewares/clear-filters-by-key.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"clear-filters-by-key.js","sourceRoot":"","sources":["../../../src/http/middlewares/clear-filters-by-key.ts"],"names":[],"mappings":";;AAMA,8CAYC;AAZD,SAAgB,iBAAiB,CAAC,IAAc;IAC9C,OAAO,KAAK,UAAU,2BAA2B,CAC/C,GAAkB,EAClB,CAAiB,EACjB,IAAwB;QAExB,IAAI,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;YACnB,OAAO,GAAG,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAA;QAClC,CAAC,CAAC,CAAA;QAEF,OAAO,IAAI,EAAE,CAAA;IACf,CAAC,CAAA;AACH,CAAC"}

package/dist/http/middlewares/ensure-publishable-api-key.d.ts

@@ -0,0 +1,3 @@
+import type { MedusaNextFunction, MedusaResponse, MedusaStoreRequest } from "../../http";
+export declare function ensurePublishableApiKeyMiddleware(req: MedusaStoreRequest, _: MedusaResponse, next: MedusaNextFunction): Promise<void>;
+//# sourceMappingURL=ensure-publishable-api-key.d.ts.map

package/dist/http/middlewares/ensure-publishable-api-key.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ensure-publishable-api-key.d.ts","sourceRoot":"","sources":["../../../src/http/middlewares/ensure-publishable-api-key.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EACV,kBAAkB,EAClB,cAAc,EACd,kBAAkB,EACnB,MAAM,YAAY,CAAA;AAEnB,wBAAsB,iCAAiC,CACrD,GAAG,EAAE,kBAAkB,EACvB,CAAC,EAAE,cAAc,EACjB,IAAI,EAAE,kBAAkB,iBAqDzB"}

package/dist/http/middlewares/ensure-publishable-api-key.js

@@ -0,0 +1,45 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ensurePublishableApiKeyMiddleware = ensurePublishableApiKeyMiddleware;
+const utils_1 = require("@8medusa/utils");
+async function ensurePublishableApiKeyMiddleware(req, _, next) {
+    const publishableApiKey = req.get(utils_1.PUBLISHABLE_KEY_HEADER);
+    if (!(0, utils_1.isPresent)(publishableApiKey)) {
+        const error = new utils_1.MedusaError(utils_1.MedusaError.Types.NOT_ALLOWED, `Publishable API key required in the request header: ${utils_1.PUBLISHABLE_KEY_HEADER}. You can manage your keys in settings in the dashboard.`);
+        return next(error);
+    }
+    let apiKey;
+    const query = req.scope.resolve(utils_1.ContainerRegistrationKeys.QUERY);
+    try {
+        const { data } = await query.graph({
+            entity: "api_key",
+            fields: ["id", "token", "sales_channels_link.sales_channel_id"],
+            filters: {
+                token: publishableApiKey,
+                type: utils_1.ApiKeyType.PUBLISHABLE,
+                $or: [
+                    { revoked_at: { $eq: null } },
+                    { revoked_at: { $gt: new Date() } },
+                ],
+            },
+        });
+        apiKey = data[0];
+    }
+    catch (e) {
+        return next(e);
+    }
+    if (!apiKey) {
+        try {
+            throw new utils_1.MedusaError(utils_1.MedusaError.Types.NOT_ALLOWED, `A valid publishable key is required to proceed with the request`);
+        }
+        catch (e) {
+            return next(e);
+        }
+    }
+    req.publishable_key_context = {
+        key: apiKey.token,
+        sales_channel_ids: apiKey.sales_channels_link.map((link) => link.sales_channel_id),
+    };
+    return next();
+}
+//# sourceMappingURL=ensure-publishable-api-key.js.map

package/dist/http/middlewares/ensure-publishable-api-key.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ensure-publishable-api-key.js","sourceRoot":"","sources":["../../../src/http/middlewares/ensure-publishable-api-key.ts"],"names":[],"mappings":";;AAaA,8EAwDC;AArED,0CAMuB;AAOhB,KAAK,UAAU,iCAAiC,CACrD,GAAuB,EACvB,CAAiB,EACjB,IAAwB;IAExB,MAAM,iBAAiB,GAAG,GAAG,CAAC,GAAG,CAAC,8BAAsB,CAAC,CAAA;IAEzD,IAAI,CAAC,IAAA,iBAAS,EAAC,iBAAiB,CAAC,EAAE,CAAC;QAClC,MAAM,KAAK,GAAG,IAAI,mBAAW,CAC3B,mBAAW,CAAC,KAAK,CAAC,WAAW,EAC7B,uDAAuD,8BAAsB,0DAA0D,CACxI,CAAA;QACD,OAAO,IAAI,CAAC,KAAK,CAAC,CAAA;IACpB,CAAC;IAED,IAAI,MAAM,CAAA;IACV,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,iCAAyB,CAAC,KAAK,CAAC,CAAA;IAEhE,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,KAAK,CAAC,KAAK,CAAC;YACjC,MAAM,EAAE,SAAS;YACjB,MAAM,EAAE,CAAC,IAAI,EAAE,OAAO,EAAE,sCAAsC,CAAC;YAC/D,OAAO,EAAE;gBACP,KAAK,EAAE,iBAAiB;gBACxB,IAAI,EAAE,kBAAU,CAAC,WAAW;gBAC5B,GAAG,EAAE;oBACH,EAAE,UAAU,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;oBAC7B,EAAE,UAAU,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE,EAAE;iBACpC;aACF;SACF,CAAC,CAAA;QAEF,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,CAAA;IAClB,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO,IAAI,CAAC,CAAC,CAAC,CAAA;IAChB,CAAC;IAED,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,IAAI,CAAC;YACH,MAAM,IAAI,mBAAW,CACnB,mBAAW,CAAC,KAAK,CAAC,WAAW,EAC7B,iEAAiE,CAClE,CAAA;QACH,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,IAAI,CAAC,CAAC,CAAC,CAAA;QAChB,CAAC;IACH,CAAC;IAED,GAAG,CAAC,uBAAuB,GAAG;QAC5B,GAAG,EAAE,MAAM,CAAC,KAAK;QACjB,iBAAiB,EAAE,MAAM,CAAC,mBAAmB,CAAC,GAAG,CAC/C,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAChC;KACF,CAAA;IAED,OAAO,IAAI,EAAE,CAAA;AACf,CAAC"}

package/dist/http/middlewares/error-handler.d.ts

@@ -0,0 +1,21 @@
+import { ErrorRequestHandler } from "express";
+export declare function errorHandler(): ErrorRequestHandler;
+/**
+ * @schema Error
+ * title: "Response Error"
+ * type: object
+ * properties:
+ *  code:
+ *    type: string
+ *    description: A slug code to indicate the type of the error.
+ *    enum: [invalid_state_error, invalid_request_error, api_error, unknown_error]
+ *  message:
+ *    type: string
+ *    description: Description of the error that occurred.
+ *    example: "first_name must be a string"
+ *  type:
+ *    type: string
+ *    description: A slug indicating the type of the error.
+ *    enum: [QueryRunnerAlreadyReleasedError, TransactionAlreadyStartedError, TransactionNotStartedError, conflict, unauthorized, payment_authorization_error, duplicate_error, not_allowed, invalid_data, not_found, database_error, unexpected_state, invalid_argument, unknown_error]
+ */
+//# sourceMappingURL=error-handler.d.ts.map

package/dist/http/middlewares/error-handler.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"error-handler.d.ts","sourceRoot":"","sources":["../../../src/http/middlewares/error-handler.ts"],"names":[],"mappings":"AAAA,OAAO,EAAgB,mBAAmB,EAAY,MAAM,SAAS,CAAA;AAcrE,wBAAgB,YAAY,IAgEV,mBAAmB,CACpC;AAED;;;;;;;;;;;;;;;;;GAiBG"}

package/dist/http/middlewares/error-handler.js

@@ -0,0 +1,85 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.errorHandler = errorHandler;
+const utils_1 = require("@8medusa/utils");
+const exception_formatter_1 = require("./exception-formatter");
+const QUERY_RUNNER_RELEASED = "QueryRunnerAlreadyReleasedError";
+const TRANSACTION_STARTED = "TransactionAlreadyStartedError";
+const TRANSACTION_NOT_STARTED = "TransactionNotStartedError";
+const API_ERROR = "api_error";
+const INVALID_REQUEST_ERROR = "invalid_request_error";
+const INVALID_STATE_ERROR = "invalid_state_error";
+function errorHandler() {
+    return function coreErrorHandler(err, req, res, _) {
+        const logger = req.scope.resolve(utils_1.ContainerRegistrationKeys.LOGGER);
+        err = (0, exception_formatter_1.formatException)(err);
+        logger.error(err);
+        const errorType = err.type || err.name;
+        const errObj = {
+            code: err.code,
+            type: err.type,
+            message: err.message,
+        };
+        let statusCode = 500;
+        switch (errorType) {
+            case QUERY_RUNNER_RELEASED:
+            case TRANSACTION_STARTED:
+            case TRANSACTION_NOT_STARTED:
+            case utils_1.MedusaError.Types.CONFLICT:
+                statusCode = 409;
+                errObj.code = INVALID_STATE_ERROR;
+                errObj.message =
+                    "The request conflicted with another request. You may retry the request with the provided Idempotency-Key.";
+                break;
+            case utils_1.MedusaError.Types.UNAUTHORIZED:
+                statusCode = 401;
+                break;
+            case utils_1.MedusaError.Types.PAYMENT_AUTHORIZATION_ERROR:
+                statusCode = 422;
+                break;
+            case utils_1.MedusaError.Types.DUPLICATE_ERROR:
+                statusCode = 422;
+                errObj.code = INVALID_REQUEST_ERROR;
+                break;
+            case utils_1.MedusaError.Types.NOT_ALLOWED:
+            case utils_1.MedusaError.Types.INVALID_DATA:
+                statusCode = 400;
+                break;
+            case utils_1.MedusaError.Types.NOT_FOUND:
+                statusCode = 404;
+                break;
+            case utils_1.MedusaError.Types.DB_ERROR:
+                statusCode = 500;
+                errObj.code = API_ERROR;
+                break;
+            case utils_1.MedusaError.Types.UNEXPECTED_STATE:
+            case utils_1.MedusaError.Types.INVALID_ARGUMENT:
+                break;
+            default:
+                errObj.code = "unknown_error";
+                errObj.message = "An unknown error occurred.";
+                errObj.type = "unknown_error";
+                break;
+        }
+        res.status(statusCode).json(errObj);
+    };
+}
+/**
+ * @schema Error
+ * title: "Response Error"
+ * type: object
+ * properties:
+ *  code:
+ *    type: string
+ *    description: A slug code to indicate the type of the error.
+ *    enum: [invalid_state_error, invalid_request_error, api_error, unknown_error]
+ *  message:
+ *    type: string
+ *    description: Description of the error that occurred.
+ *    example: "first_name must be a string"
+ *  type:
+ *    type: string
+ *    description: A slug indicating the type of the error.
+ *    enum: [QueryRunnerAlreadyReleasedError, TransactionAlreadyStartedError, TransactionNotStartedError, conflict, unauthorized, payment_authorization_error, duplicate_error, not_allowed, invalid_data, not_found, database_error, unexpected_state, invalid_argument, unknown_error]
+ */
+//# sourceMappingURL=error-handler.js.map

package/dist/http/middlewares/error-handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"error-handler.js","sourceRoot":"","sources":["../../../src/http/middlewares/error-handler.ts"],"names":[],"mappings":";;AAcA,oCAiEC;AA7ED,0CAAuE;AACvE,+DAAuD;AAGvD,MAAM,qBAAqB,GAAG,iCAAiC,CAAA;AAC/D,MAAM,mBAAmB,GAAG,gCAAgC,CAAA;AAC5D,MAAM,uBAAuB,GAAG,4BAA4B,CAAA;AAE5D,MAAM,SAAS,GAAG,WAAW,CAAA;AAC7B,MAAM,qBAAqB,GAAG,uBAAuB,CAAA;AACrD,MAAM,mBAAmB,GAAG,qBAAqB,CAAA;AAEjD,SAAgB,YAAY;IAC1B,OAAO,SAAS,gBAAgB,CAC9B,GAAgB,EAChB,GAAkB,EAClB,GAAa,EACb,CAAe;QAEf,MAAM,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,iCAAyB,CAAC,MAAM,CAAC,CAAA;QAElE,GAAG,GAAG,IAAA,qCAAe,EAAC,GAAG,CAAC,CAAA;QAE1B,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;QAEjB,MAAM,SAAS,GAAG,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,IAAI,CAAA;QAEtC,MAAM,MAAM,GAAG;YACb,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,OAAO,EAAE,GAAG,CAAC,OAAO;SACrB,CAAA;QAED,IAAI,UAAU,GAAG,GAAG,CAAA;QACpB,QAAQ,SAAS,EAAE,CAAC;YAClB,KAAK,qBAAqB,CAAC;YAC3B,KAAK,mBAAmB,CAAC;YACzB,KAAK,uBAAuB,CAAC;YAC7B,KAAK,mBAAW,CAAC,KAAK,CAAC,QAAQ;gBAC7B,UAAU,GAAG,GAAG,CAAA;gBAChB,MAAM,CAAC,IAAI,GAAG,mBAAmB,CAAA;gBACjC,MAAM,CAAC,OAAO;oBACZ,2GAA2G,CAAA;gBAC7G,MAAK;YACP,KAAK,mBAAW,CAAC,KAAK,CAAC,YAAY;gBACjC,UAAU,GAAG,GAAG,CAAA;gBAChB,MAAK;YACP,KAAK,mBAAW,CAAC,KAAK,CAAC,2BAA2B;gBAChD,UAAU,GAAG,GAAG,CAAA;gBAChB,MAAK;YACP,KAAK,mBAAW,CAAC,KAAK,CAAC,eAAe;gBACpC,UAAU,GAAG,GAAG,CAAA;gBAChB,MAAM,CAAC,IAAI,GAAG,qBAAqB,CAAA;gBACnC,MAAK;YACP,KAAK,mBAAW,CAAC,KAAK,CAAC,WAAW,CAAC;YACnC,KAAK,mBAAW,CAAC,KAAK,CAAC,YAAY;gBACjC,UAAU,GAAG,GAAG,CAAA;gBAChB,MAAK;YACP,KAAK,mBAAW,CAAC,KAAK,CAAC,SAAS;gBAC9B,UAAU,GAAG,GAAG,CAAA;gBAChB,MAAK;YACP,KAAK,mBAAW,CAAC,KAAK,CAAC,QAAQ;gBAC7B,UAAU,GAAG,GAAG,CAAA;gBAChB,MAAM,CAAC,IAAI,GAAG,SAAS,CAAA;gBACvB,MAAK;YACP,KAAK,mBAAW,CAAC,KAAK,CAAC,gBAAgB,CAAC;YACxC,KAAK,mBAAW,CAAC,KAAK,CAAC,gBAAgB;gBACrC,MAAK;YACP;gBACE,MAAM,CAAC,IAAI,GAAG,eAAe,CAAA;gBAC7B,MAAM,CAAC,OAAO,GAAG,4BAA4B,CAAA;gBAC7C,MAAM,CAAC,IAAI,GAAG,eAAe,CAAA;gBAC7B,MAAK;QACT,CAAC;QAED,GAAG,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;IACrC,CAAmC,CAAA;AACrC,CAAC;AAED;;;;;;;;;;;;;;;;;GAiBG"}

package/dist/http/middlewares/exception-formatter.d.ts

@@ -0,0 +1,9 @@
+import { MedusaError } from "@8medusa/utils";
+export declare enum PostgresError {
+    DUPLICATE_ERROR = "23505",
+    FOREIGN_KEY_ERROR = "23503",
+    SERIALIZATION_FAILURE = "40001",
+    NULL_VIOLATION = "23502"
+}
+export declare const formatException: (err: any) => MedusaError;
+//# sourceMappingURL=exception-formatter.d.ts.map

package/dist/http/middlewares/exception-formatter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"exception-formatter.d.ts","sourceRoot":"","sources":["../../../src/http/middlewares/exception-formatter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAA;AAE5C,oBAAY,aAAa;IACvB,eAAe,UAAU;IACzB,iBAAiB,UAAU;IAC3B,qBAAqB,UAAU;IAC/B,cAAc,UAAU;CACzB;AAED,eAAO,MAAM,eAAe,gBAAU,WA8CrC,CAAA"}

package/dist/http/middlewares/exception-formatter.js

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.formatException = exports.PostgresError = void 0;
+const utils_1 = require("@8medusa/utils");
+var PostgresError;
+(function (PostgresError) {
+    PostgresError["DUPLICATE_ERROR"] = "23505";
+    PostgresError["FOREIGN_KEY_ERROR"] = "23503";
+    PostgresError["SERIALIZATION_FAILURE"] = "40001";
+    PostgresError["NULL_VIOLATION"] = "23502";
+})(PostgresError || (exports.PostgresError = PostgresError = {}));
+const formatException = (err) => {
+    switch (err.code) {
+        case PostgresError.DUPLICATE_ERROR:
+            return new utils_1.MedusaError(utils_1.MedusaError.Types.DUPLICATE_ERROR, `${err.table.charAt(0).toUpperCase()}${err.table.slice(1)} with ${err.detail.slice(4).replace(/[()=]/g, (s) => {
+                return s === "=" ? " " : "";
+            })}`);
+        case PostgresError.FOREIGN_KEY_ERROR: {
+            const matches = /Key \(([\w-\d]+)\)=\(([\w-\d]+)\) is not present in table "(\w+)"/g.exec(err.detail);
+            if (matches?.length !== 4) {
+                return new utils_1.MedusaError(utils_1.MedusaError.Types.NOT_FOUND, JSON.stringify(matches));
+            }
+            return new utils_1.MedusaError(utils_1.MedusaError.Types.NOT_FOUND, `${matches[3]?.charAt(0).toUpperCase()}${matches[3]?.slice(1)} with ${matches[1]} ${matches[2]} does not exist.`);
+        }
+        case PostgresError.SERIALIZATION_FAILURE: {
+            return new utils_1.MedusaError(utils_1.MedusaError.Types.CONFLICT, err?.detail ?? err?.message);
+        }
+        case PostgresError.NULL_VIOLATION: {
+            return new utils_1.MedusaError(utils_1.MedusaError.Types.INVALID_DATA, `Can't insert null value in field ${err?.column} on insert in table ${err?.table}`);
+        }
+        default:
+            return err;
+    }
+};
+exports.formatException = formatException;
+//# sourceMappingURL=exception-formatter.js.map

package/dist/http/middlewares/exception-formatter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"exception-formatter.js","sourceRoot":"","sources":["../../../src/http/middlewares/exception-formatter.ts"],"names":[],"mappings":";;;AAAA,0CAA4C;AAE5C,IAAY,aAKX;AALD,WAAY,aAAa;IACvB,0CAAyB,CAAA;IACzB,4CAA2B,CAAA;IAC3B,gDAA+B,CAAA;IAC/B,yCAAwB,CAAA;AAC1B,CAAC,EALW,aAAa,6BAAb,aAAa,QAKxB;AAEM,MAAM,eAAe,GAAG,CAAC,GAAG,EAAe,EAAE;IAClD,QAAQ,GAAG,CAAC,IAAI,EAAE,CAAC;QACjB,KAAK,aAAa,CAAC,eAAe;YAChC,OAAO,IAAI,mBAAW,CACpB,mBAAW,CAAC,KAAK,CAAC,eAAe,EACjC,GAAG,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,KAAK,CACpD,CAAC,CACF,SAAS,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;gBACpD,OAAO,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAA;YAC7B,CAAC,CAAC,EAAE,CACL,CAAA;QACH,KAAK,aAAa,CAAC,iBAAiB,CAAC,CAAC,CAAC;YACrC,MAAM,OAAO,GACX,oEAAoE,CAAC,IAAI,CACvE,GAAG,CAAC,MAAM,CACX,CAAA;YAEH,IAAI,OAAO,EAAE,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC1B,OAAO,IAAI,mBAAW,CACpB,mBAAW,CAAC,KAAK,CAAC,SAAS,EAC3B,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CACxB,CAAA;YACH,CAAC;YAED,OAAO,IAAI,mBAAW,CACpB,mBAAW,CAAC,KAAK,CAAC,SAAS,EAC3B,GAAG,OAAO,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,OAAO,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,CAAC,SAC3D,OAAO,CAAC,CAAC,CACX,IAAI,OAAO,CAAC,CAAC,CAAC,kBAAkB,CACjC,CAAA;QACH,CAAC;QACD,KAAK,aAAa,CAAC,qBAAqB,CAAC,CAAC,CAAC;YACzC,OAAO,IAAI,mBAAW,CACpB,mBAAW,CAAC,KAAK,CAAC,QAAQ,EAC1B,GAAG,EAAE,MAAM,IAAI,GAAG,EAAE,OAAO,CAC5B,CAAA;QACH,CAAC;QACD,KAAK,aAAa,CAAC,cAAc,CAAC,CAAC,CAAC;YAClC,OAAO,IAAI,mBAAW,CACpB,mBAAW,CAAC,KAAK,CAAC,YAAY,EAC9B,oCAAoC,GAAG,EAAE,MAAM,uBAAuB,GAAG,EAAE,KAAK,EAAE,CACnF,CAAA;QACH,CAAC;QACD;YACE,OAAO,GAAG,CAAA;IACd,CAAC;AACH,CAAC,CAAA;AA9CY,QAAA,eAAe,mBA8C3B"}

package/dist/http/middlewares/index.d.ts

@@ -0,0 +1,8 @@
+export * from "./authenticate-middleware";
+export * from "./error-handler";
+export * from "./exception-formatter";
+export * from "./apply-default-filters";
+export * from "./apply-params-as-filters";
+export * from "./clear-filters-by-key";
+export * from "./set-context";
+//# sourceMappingURL=index.d.ts.map

package/dist/http/middlewares/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/http/middlewares/index.ts"],"names":[],"mappings":"AAAA,cAAc,2BAA2B,CAAA;AACzC,cAAc,iBAAiB,CAAA;AAC/B,cAAc,uBAAuB,CAAA;AACrC,cAAc,yBAAyB,CAAA;AACvC,cAAc,2BAA2B,CAAA;AACzC,cAAc,wBAAwB,CAAA;AACtC,cAAc,eAAe,CAAA"}

package/dist/http/middlewares/index.js

@@ -0,0 +1,24 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./authenticate-middleware"), exports);
+__exportStar(require("./error-handler"), exports);
+__exportStar(require("./exception-formatter"), exports);
+__exportStar(require("./apply-default-filters"), exports);
+__exportStar(require("./apply-params-as-filters"), exports);
+__exportStar(require("./clear-filters-by-key"), exports);
+__exportStar(require("./set-context"), exports);
+//# sourceMappingURL=index.js.map

package/dist/http/middlewares/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/http/middlewares/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,4DAAyC;AACzC,kDAA+B;AAC/B,wDAAqC;AACrC,0DAAuC;AACvC,4DAAyC;AACzC,yDAAsC;AACtC,gDAA6B"}

package/dist/http/middlewares/set-context.d.ts

@@ -0,0 +1,3 @@
+import { MedusaNextFunction, MedusaRequest } from "../types";
+export declare function setContext(context: Record<string, any>): (req: MedusaRequest, _: any, next: MedusaNextFunction) => Promise<void>;
+//# sourceMappingURL=set-context.d.ts.map

package/dist/http/middlewares/set-context.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"set-context.d.ts","sourceRoot":"","sources":["../../../src/http/middlewares/set-context.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AAE5D,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,SAClC,aAAa,gBAAW,kBAAkB,mBAiB9D"}

package/dist/http/middlewares/set-context.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.setContext = setContext;
+function setContext(context) {
+    return async (req, _, next) => {
+        const ctx = { ...(req.context || {}) };
+        for (const [contextKey, contextValue] of Object.entries(context || {})) {
+            let valueToApply = contextValue;
+            if (typeof contextValue === "function") {
+                valueToApply = await contextValue(req, ctx);
+            }
+            ctx[contextKey] = valueToApply;
+        }
+        req.context = ctx;
+        return next();
+    };
+}
+//# sourceMappingURL=set-context.js.map

package/dist/http/middlewares/set-context.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"set-context.js","sourceRoot":"","sources":["../../../src/http/middlewares/set-context.ts"],"names":[],"mappings":";;AAEA,gCAkBC;AAlBD,SAAgB,UAAU,CAAC,OAA4B;IACrD,OAAO,KAAK,EAAE,GAAkB,EAAE,CAAC,EAAE,IAAwB,EAAE,EAAE;QAC/D,MAAM,GAAG,GAAwB,EAAE,GAAG,CAAC,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,EAAE,CAAA;QAE3D,KAAK,MAAM,CAAC,UAAU,EAAE,YAAY,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,IAAI,EAAE,CAAC,EAAE,CAAC;YACvE,IAAI,YAAY,GAAG,YAAY,CAAA;YAE/B,IAAI,OAAO,YAAY,KAAK,UAAU,EAAE,CAAC;gBACvC,YAAY,GAAG,MAAM,YAAY,CAAC,GAAG,EAAE,GAAG,CAAC,CAAA;YAC7C,CAAC;YAED,GAAG,CAAC,UAAU,CAAC,GAAG,YAAY,CAAA;QAChC,CAAC;QAED,GAAG,CAAC,OAAO,GAAG,GAAG,CAAA;QAEjB,OAAO,IAAI,EAAE,CAAA;IACf,CAAC,CAAA;AACH,CAAC"}

package/dist/http/router.d.ts

@@ -0,0 +1,28 @@
+import type { Express, RequestHandler } from "express";
+import type { MiddlewareFunction, RouteHandler } from "./types";
+export declare class ApiLoader {
+    #private;
+    /**
+     * Wrap the original route handler implementation for
+     * instrumentation.
+     */
+    static traceRoute?: (handler: RouteHandler, route: {
+        route: string;
+        method: string;
+    }) => RouteHandler;
+    /**
+     * Wrap the original middleware handler implementation for
+     * instrumentation.
+     */
+    static traceMiddleware?: (handler: RequestHandler | MiddlewareFunction, route: {
+        route: string;
+        method?: string;
+    }) => RequestHandler | MiddlewareFunction;
+    constructor({ app, sourceDir, baseRestrictedFields, }: {
+        app: Express;
+        sourceDir: string | string[];
+        baseRestrictedFields?: string[];
+    });
+    load(): Promise<void>;
+}
+//# sourceMappingURL=router.d.ts.map

package/dist/http/router.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"router.d.ts","sourceRoot":"","sources":["../../src/http/router.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,OAAO,EAAE,cAAc,EAAuB,MAAM,SAAS,CAAA;AAC3E,OAAO,KAAK,EAKV,kBAAkB,EAIlB,YAAY,EAEb,MAAM,SAAS,CAAA;AAchB,qBAAa,SAAS;;IACpB;;;OAGG;IACH,MAAM,CAAC,UAAU,CAAC,EAAE,CAClB,OAAO,EAAE,YAAY,EACrB,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,KACrC,YAAY,CAAA;IAEjB;;;OAGG;IACH,MAAM,CAAC,eAAe,CAAC,EAAE,CACvB,OAAO,EAAE,cAAc,GAAG,kBAAkB,EAC5C,KAAK,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,KACtC,cAAc,GAAG,kBAAkB,CAAA;gBAc5B,EACV,GAAG,EACH,SAAS,EACT,oBAAyB,GAC1B,EAAE;QACD,GAAG,EAAE,OAAO,CAAA;QACZ,SAAS,EAAE,MAAM,GAAG,MAAM,EAAE,CAAA;QAC5B,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAA;KAChC;IAmRK,IAAI;CA6GX"}