@abloatai/ablo 0.7.0 → 0.9.0

package/dist/source/adapters/drizzle.js

@@ -0,0 +1,147 @@
+/**
+ * Drizzle Data Source adapter. Same spine + conformance as `prismaDataSource`,
+ * built against Drizzle's REAL API (read from drizzle-orm's own source/docs):
+ *   - `db.transaction(async (tx) => …)` — interactive transaction (commit/rollback).
+ *   - `db.execute(sql`…`)` — parametrized raw SQL; `sql.identifier()` safely quotes
+ *     dynamic table/column names, `sql`${value}`` parametrizes values.
+ *   - the customer passes their Drizzle `tables` map (`{ task: pgTable(…) }`); a
+ *     table object is resolved by name with NO reflection cast — unlike Prisma's
+ *     nominal client, a `Record<string, PgTable>` is genuinely indexable.
+ *
+ * IMPORTANT GOTCHAS (from drizzle-orm docs):
+ *   1. Interactive `db.transaction` requires a driver that supports it. Neon's
+ *      `neon-http` driver does NOT (single-shot only) — use `neon-serverless`
+ *      (WebSocket) or `pg`. With neon-http the commit path throws at runtime.
+ *   2. `db.execute` result shape is driver-specific (postgres-js returns an
+ *      array-like RowList; node-postgres returns `{ rows }`). `rowsOf()`
+ *      normalizes both.
+ *
+ * We use `sql` + `db.execute` for ALL writes (not the fluent builder) so the
+ * adapter is one small, fully-typed unit with no per-driver builder generics.
+ */
+import { sql, getTableName } from 'drizzle-orm';
+import { outboxEventSchema } from '../contract.js';
+function rowsOf(result) {
+    return Array.isArray(result) ? result : result.rows;
+}
+function rowId(op) {
+    const id = op.id ?? op.input?.id;
+    if (typeof id !== 'string' || id.length === 0) {
+        throw new Error(`operation on "${op.model}" requires an id`);
+    }
+    return id;
+}
+/** `col1, col2` as a safely-quoted identifier list. */
+const identList = (cols) => sql.join(cols.map((c) => sql.identifier(c)), sql `, `);
+export function drizzleDataSource(db, tables) {
+    const tableNameFor = (model) => {
+        const table = tables[model];
+        if (!table)
+            throw new Error(`drizzleDataSource: no Drizzle table for model "${model}"`);
+        return getTableName(table);
+    };
+    const applyOperation = async (tx, op) => {
+        const table = sql.identifier(tableNameFor(op.model));
+        const id = rowId(op);
+        const input = op.input ?? {};
+        if (op.type === 'DELETE') {
+            const deleted = rowsOf(await tx.execute(sql `DELETE FROM ${table} WHERE id = ${id} RETURNING *`));
+            return deleted[0] ?? { id };
+        }
+        if (op.type === 'CREATE') {
+            const data = { id, ...input };
+            const cols = Object.keys(data);
+            const values = sql.join(cols.map((c) => sql `${data[c]}`), sql `, `);
+            const inserted = rowsOf(await tx.execute(sql `INSERT INTO ${table} (${identList(cols)}) VALUES (${values}) RETURNING *`));
+            return inserted[0] ?? data;
+        }
+        // UPDATE / ARCHIVE / UNARCHIVE — a SET clause + the lifecycle column.
+        const patch = {
+            ...input,
+            ...(op.type === 'ARCHIVE' ? { archived_at: new Date() } : {}),
+            ...(op.type === 'UNARCHIVE' ? { archived_at: null } : {}),
+        };
+        const assignments = sql.join(Object.keys(patch).map((c) => sql `${sql.identifier(c)} = ${patch[c]}`), sql `, `);
+        const updated = rowsOf(await tx.execute(sql `UPDATE ${table} SET ${assignments} WHERE id = ${id} RETURNING *`));
+        return updated[0] ?? { id, ...patch };
+    };
+    return {
+        capabilities: { transactions: true, propose: false, schemaIntrospection: true },
+        migrations() {
+            return [
+                {
+                    name: 'ablo_idempotency',
+                    up: `CREATE TABLE IF NOT EXISTS ablo_idempotency (
+  client_tx_id TEXT PRIMARY KEY,
+  response     JSONB NOT NULL,
+  created_at   TIMESTAMPTZ NOT NULL DEFAULT now()
+);`,
+                },
+                {
+                    name: 'ablo_outbox',
+                    up: `CREATE TABLE IF NOT EXISTS ablo_outbox (
+  cursor          BIGSERIAL PRIMARY KEY,
+  id              TEXT NOT NULL UNIQUE,
+  model           TEXT NOT NULL,
+  entity_id       TEXT NOT NULL,
+  type            TEXT NOT NULL,
+  data            JSONB,
+  organization_id TEXT,
+  client_tx_id    TEXT,
+  occurred_at     BIGINT,
+  created_at      TIMESTAMPTZ NOT NULL DEFAULT now()
+);`,
+                },
+            ];
+        },
+        async read(req) {
+            const table = sql.identifier(tableNameFor(req.model));
+            if (req.kind === 'load') {
+                return rowsOf(await db.execute(sql `SELECT * FROM ${table} WHERE id = ${req.id} LIMIT 1`));
+            }
+            const limit = req.query?.limit ?? 1000;
+            return rowsOf(await db.execute(sql `SELECT * FROM ${table} LIMIT ${limit}`));
+        },
+        async commit(change) {
+            return db.transaction(async (tx) => {
+                const cached = rowsOf(await tx.execute(sql `SELECT response FROM ablo_idempotency WHERE client_tx_id = ${change.clientTxId} LIMIT 1`));
+                if (cached.length > 0)
+                    return { rows: cached[0].response };
+                const rows = [];
+                for (const [index, op] of change.operations.entries()) {
+                    const row = await applyOperation(tx, op);
+                    rows.push(row);
+                    const entityId = String(row.id ?? rowId(op));
+                    await tx.execute(sql `
+            INSERT INTO ablo_outbox (id, model, entity_id, type, data, client_tx_id, occurred_at)
+            VALUES (
+              ${`${change.clientTxId}:${index}`}, ${op.model}, ${entityId}, ${op.type},
+              ${op.type === 'DELETE' ? null : JSON.stringify(row)}::jsonb, ${change.clientTxId}, ${Date.now()}
+            )`);
+                }
+                await tx.execute(sql `
+          INSERT INTO ablo_idempotency (client_tx_id, response)
+          VALUES (${change.clientTxId}, ${JSON.stringify(rows)}::jsonb)`);
+                return { rows };
+            });
+        },
+        async events(cursor, limit) {
+            const after = cursor ?? '0';
+            const rows = rowsOf(await db.execute(sql `
+          SELECT cursor, id, model, entity_id, type, data, organization_id, client_tx_id, occurred_at
+          FROM ablo_outbox WHERE cursor > ${after} ORDER BY cursor ASC LIMIT ${limit}`));
+            const events = rows.map((r) => outboxEventSchema.parse({
+                id: r.id,
+                model: r.model,
+                entityId: r.entity_id,
+                type: r.type,
+                data: r.data ?? null,
+                organizationId: r.organization_id ?? null,
+                clientTxId: r.client_tx_id ?? null,
+                occurredAt: r.occurred_at != null ? Number(r.occurred_at) : null,
+                cursor: String(r.cursor),
+            }));
+            return { events, nextCursor: events.length > 0 ? events[events.length - 1].cursor : null };
+        },
+    };
+}

package/dist/source/adapters/memory.d.ts

@@ -0,0 +1,12 @@
+/**
+ * In-memory reference Data Source adapter — the canonical correct implementation
+ * of the spine. It is the test double for the bridge/handler AND the thing the
+ * conformance suite runs against to prove the suite itself is real (same role as
+ * the server's `memoryTenantDirectory`). A new ORM adapter is "done" when it
+ * passes the same suite this one passes.
+ *
+ * It models the real semantics minimally but faithfully: one canonical row store
+ * per model, an idempotency ledger keyed by `clientTxId`, and a monotonic outbox.
+ */
+import type { DataSourceAdapter } from '../adapter.js';
+export declare function memoryDataSource(): DataSourceAdapter;

package/dist/source/adapters/memory.js

@@ -0,0 +1,114 @@
+/**
+ * In-memory reference Data Source adapter — the canonical correct implementation
+ * of the spine. It is the test double for the bridge/handler AND the thing the
+ * conformance suite runs against to prove the suite itself is real (same role as
+ * the server's `memoryTenantDirectory`). A new ORM adapter is "done" when it
+ * passes the same suite this one passes.
+ *
+ * It models the real semantics minimally but faithfully: one canonical row store
+ * per model, an idempotency ledger keyed by `clientTxId`, and a monotonic outbox.
+ */
+function rowId(op) {
+    const id = op.id ?? op.input?.id;
+    if (typeof id !== 'string' || id.length === 0) {
+        throw new Error(`operation on "${op.model}" requires an id`);
+    }
+    return id;
+}
+export function memoryDataSource() {
+    /** model → (id → row). */
+    const store = new Map();
+    /** clientTxId → the rows that commit returned (idempotency ledger). */
+    const idempotency = new Map();
+    /** Append-only outbox; `cursor` is the 1-based index as a string. */
+    const outbox = [];
+    const modelStore = (model) => {
+        let m = store.get(model);
+        if (!m) {
+            m = new Map();
+            store.set(model, m);
+        }
+        return m;
+    };
+    const applyOperation = (op) => {
+        const m = modelStore(op.model);
+        const id = rowId(op);
+        switch (op.type) {
+            case 'CREATE': {
+                const row = { id, ...(op.input ?? {}) };
+                m.set(id, row);
+                return row;
+            }
+            case 'UPDATE':
+            case 'ARCHIVE':
+            case 'UNARCHIVE': {
+                const prev = m.get(id) ?? { id };
+                const row = {
+                    ...prev,
+                    ...(op.input ?? {}),
+                    ...(op.type === 'ARCHIVE' ? { archivedAt: Date.now() } : {}),
+                    ...(op.type === 'UNARCHIVE' ? { archivedAt: null } : {}),
+                };
+                m.set(id, row);
+                return row;
+            }
+            case 'DELETE': {
+                const prev = m.get(id) ?? { id };
+                m.delete(id);
+                return prev;
+            }
+        }
+    };
+    return {
+        capabilities: { transactions: true, propose: false, schemaIntrospection: false },
+        migrations() {
+            // In-memory: no DDL. A real ORM adapter ships ablo_idempotency + ablo_outbox here.
+            return [];
+        },
+        async read(req) {
+            const m = store.get(req.model);
+            if (!m)
+                return [];
+            if (req.kind === 'load') {
+                const row = m.get(req.id);
+                return row ? [row] : [];
+            }
+            let rows = [...m.values()];
+            const limit = req.query?.limit;
+            if (typeof limit === 'number')
+                rows = rows.slice(0, limit);
+            return rows;
+        },
+        async commit(change) {
+            // Idempotency: a duplicate clientTxId returns the original rows, no re-apply.
+            const cached = idempotency.get(change.clientTxId);
+            if (cached)
+                return { rows: cached };
+            const rows = [];
+            for (const [index, op] of change.operations.entries()) {
+                const row = applyOperation(op);
+                rows.push(row);
+                // Transactional outbox: one event per op, monotonic cursor.
+                outbox.push({
+                    id: `${change.clientTxId}:${index}`,
+                    model: op.model,
+                    entityId: String(row.id ?? rowId(op)),
+                    type: op.type,
+                    data: op.type === 'DELETE' ? null : row,
+                    clientTxId: change.clientTxId,
+                    cursor: String(outbox.length + 1),
+                });
+            }
+            idempotency.set(change.clientTxId, rows);
+            return { rows };
+        },
+        async events(cursor, limit) {
+            const after = cursor ? Number(cursor) : 0;
+            const page = outbox.filter((e) => Number(e.cursor) > after).slice(0, limit);
+            return {
+                events: page,
+                nextCursor: page.length > 0 ? page[page.length - 1].cursor : null,
+            };
+        },
+    };
+}

package/dist/source/adapters/prisma.d.ts

@@ -0,0 +1,57 @@
+/**
+ * Prisma Data Source adapter. The first real ORM adapter (Auth.js pattern: one
+ * package per ORM, all behind the `DataSourceAdapter` spine, all proven by the
+ * same conformance suite the in-memory reference passes).
+ *
+ * It owns the transactional outbox + idempotency so the customer never writes
+ * them: `commit` runs the app-row mutations, the `ablo_outbox` append, and the
+ * `ablo_idempotency` record in ONE `prisma.$transaction`. `migrations()` ships
+ * the DDL for those two tables (`ablo init` emits it).
+ *
+ * No `@prisma/client` dependency: the client is accepted structurally
+ * (`PrismaLike`), so this compiles in the SDK package and is unit-testable with
+ * a fake, while a real `PrismaClient` satisfies it at the call site.
+ */
+import type { DataSourceAdapter, Row } from '../adapter.js';
+import type { SchemaRecord, Schema } from '../../schema/schema.js';
+/** A Prisma model delegate (the subset we call). */
+export interface PrismaDelegate {
+    findUnique(args: {
+        where: {
+            id: string;
+        };
+    }): Promise<Row | null>;
+    findMany(args: {
+        where?: Record<string, unknown>;
+        take?: number;
+        orderBy?: Record<string, 'asc' | 'desc'>;
+    }): Promise<Row[]>;
+    create(args: {
+        data: Row;
+    }): Promise<Row>;
+    update(args: {
+        where: {
+            id: string;
+        };
+        data: Row;
+    }): Promise<Row>;
+    delete(args: {
+        where: {
+            id: string;
+        };
+    }): Promise<Row>;
+}
+/** The raw-SQL surface used for the adapter-owned tables. */
+export interface PrismaRaw {
+    $executeRawUnsafe(query: string, ...values: unknown[]): Promise<number>;
+    $queryRawUnsafe<T = unknown>(query: string, ...values: unknown[]): Promise<T>;
+}
+/** A Prisma client (or interactive-tx client) — structural, no SDK dependency. */
+export interface PrismaLike extends PrismaRaw {
+    $transaction<T>(fn: (tx: PrismaLike & PrismaRaw) => Promise<T>): Promise<T>;
+}
+export interface PrismaDataSourceOptions {
+    /** Map a schema model name → its Prisma delegate name. Default: lower-first-letter. */
+    readonly delegateName?: (model: string) => string;
+}
+export declare function prismaDataSource<S extends SchemaRecord>(prisma: PrismaLike, schema: Schema<S>, options?: PrismaDataSourceOptions): DataSourceAdapter;

package/dist/source/adapters/prisma.js

@@ -0,0 +1,199 @@
+/**
+ * Prisma Data Source adapter. The first real ORM adapter (Auth.js pattern: one
+ * package per ORM, all behind the `DataSourceAdapter` spine, all proven by the
+ * same conformance suite the in-memory reference passes).
+ *
+ * It owns the transactional outbox + idempotency so the customer never writes
+ * them: `commit` runs the app-row mutations, the `ablo_outbox` append, and the
+ * `ablo_idempotency` record in ONE `prisma.$transaction`. `migrations()` ships
+ * the DDL for those two tables (`ablo init` emits it).
+ *
+ * No `@prisma/client` dependency: the client is accepted structurally
+ * (`PrismaLike`), so this compiles in the SDK package and is unit-testable with
+ * a fake, while a real `PrismaClient` satisfies it at the call site.
+ */
+import { outboxEventSchema } from '../contract.js';
+const lowerFirst = (s) => (s ? s[0].toLowerCase() + s.slice(1) : s);
+/**
+ * Resolve a model's Prisma delegate by name. This is the ONE irreducible cast in
+ * the adapter layer, and it's a genuine type-system limit, not laziness:
+ *
+ *   - Inside `prisma.$transaction(tx => …)` the writes MUST go through the
+ *     transactional client `tx`, and the model is only known as a runtime string.
+ *   - Prisma's client/tx is NOMINALLY keyed (`{ task: TaskDelegate; … }`), so a
+ *     dynamic `tx[name]` is `unknown` to the compiler — there is no key to infer.
+ *
+ * Dynamic property access on a statically-keyed type cannot be typed without an
+ * assertion; this is the reflection boundary, validated at runtime (`findMany` is
+ * a function) right after. `ablo generate` removes even this by emitting a typed
+ * `model → delegate` map, at which point this helper is replaced by a lookup.
+ */
+function delegateFor(client, name) {
+    const delegate = client[name];
+    if (!delegate || typeof delegate.findMany !== 'function') {
+        throw new Error(`prismaDataSource: no Prisma delegate "${name}" on the client`);
+    }
+    return delegate;
+}
+/** Translate a Source `where` tuple set into a Prisma `where` object. */
+function toPrismaWhere(where) {
+    const out = {};
+    for (const clause of where ?? []) {
+        const [field] = clause;
+        if (clause.length === 2) {
+            out[field] = clause[1];
+            continue;
+        }
+        const [, op, value] = clause;
+        switch (op) {
+            case '=':
+                out[field] = value;
+                break;
+            case '!=':
+                out[field] = { not: value };
+                break;
+            case '<':
+                out[field] = { lt: value };
+                break;
+            case '<=':
+                out[field] = { lte: value };
+                break;
+            case '>':
+                out[field] = { gt: value };
+                break;
+            case '>=':
+                out[field] = { gte: value };
+                break;
+            case 'IN':
+                out[field] = { in: value };
+                break;
+            case 'NOT IN':
+                out[field] = { notIn: value };
+                break;
+            case 'LIKE':
+            case 'ILIKE':
+                out[field] = { contains: value, mode: op === 'ILIKE' ? 'insensitive' : 'default' };
+                break;
+            case 'NOT LIKE':
+            case 'NOT ILIKE':
+                out[field] = { not: { contains: value } };
+                break;
+            case 'IS':
+            case 'IS NOT':
+                out[field] = op === 'IS' ? value : { not: value };
+                break;
+        }
+    }
+    return out;
+}
+function findManyArgs(query) {
+    return {
+        where: toPrismaWhere(query?.where),
+        ...(typeof query?.limit === 'number' ? { take: query.limit } : {}),
+        ...(query?.orderBy ? { orderBy: { [query.orderBy]: query.order ?? 'asc' } } : {}),
+    };
+}
+function rowId(op) {
+    const id = op.id ?? op.input?.id;
+    if (typeof id !== 'string' || id.length === 0) {
+        throw new Error(`operation on "${op.model}" requires an id`);
+    }
+    return id;
+}
+export function prismaDataSource(prisma, schema, options = {}) {
+    const delegateName = options.delegateName ?? lowerFirst;
+    void schema; // reserved for codegen-typed reads / model validation
+    const applyOperation = async (tx, op) => {
+        const delegate = delegateFor(tx, delegateName(op.model));
+        const id = rowId(op);
+        switch (op.type) {
+            case 'CREATE':
+                return delegate.create({ data: { id, ...(op.input ?? {}) } });
+            case 'UPDATE':
+                return delegate.update({ where: { id }, data: { ...(op.input ?? {}) } });
+            case 'ARCHIVE':
+                return delegate.update({ where: { id }, data: { ...(op.input ?? {}), archivedAt: new Date() } });
+            case 'UNARCHIVE':
+                return delegate.update({ where: { id }, data: { ...(op.input ?? {}), archivedAt: null } });
+            case 'DELETE':
+                return delegate.delete({ where: { id } });
+        }
+    };
+    return {
+        capabilities: { transactions: true, propose: false, schemaIntrospection: true },
+        migrations() {
+            return [
+                {
+                    name: 'ablo_idempotency',
+                    up: `CREATE TABLE IF NOT EXISTS ablo_idempotency (
+  client_tx_id TEXT PRIMARY KEY,
+  response     JSONB NOT NULL,
+  created_at   TIMESTAMPTZ NOT NULL DEFAULT now()
+);`,
+                },
+                {
+                    name: 'ablo_outbox',
+                    up: `CREATE TABLE IF NOT EXISTS ablo_outbox (
+  cursor         BIGSERIAL PRIMARY KEY,
+  id             TEXT NOT NULL UNIQUE,
+  model          TEXT NOT NULL,
+  entity_id      TEXT NOT NULL,
+  type           TEXT NOT NULL,
+  data           JSONB,
+  organization_id TEXT,
+  client_tx_id   TEXT,
+  occurred_at    BIGINT,
+  created_at     TIMESTAMPTZ NOT NULL DEFAULT now()
+);`,
+                },
+            ];
+        },
+        async read(req) {
+            const delegate = delegateFor(prisma, delegateName(req.model));
+            if (req.kind === 'load') {
+                const row = await delegate.findUnique({ where: { id: req.id } });
+                return row ? [row] : [];
+            }
+            return delegate.findMany(findManyArgs(req.query));
+        },
+        async commit(change) {
+            return prisma.$transaction(async (tx) => {
+                // Idempotency: a duplicate clientTxId returns the original rows, no re-apply.
+                const cached = await tx.$queryRawUnsafe(`SELECT response FROM ablo_idempotency WHERE client_tx_id = $1 LIMIT 1`, change.clientTxId);
+                if (cached.length > 0)
+                    return { rows: cached[0].response };
+                const rows = [];
+                for (const [index, op] of change.operations.entries()) {
+                    const row = await applyOperation(tx, op);
+                    rows.push(row);
+                    const entityId = String(row.id ?? rowId(op));
+                    // Transactional outbox: one event per op, written in THIS tx.
+                    await tx.$executeRawUnsafe(`INSERT INTO ablo_outbox (id, model, entity_id, type, data, client_tx_id, occurred_at)
+             VALUES ($1, $2, $3, $4, $5::jsonb, $6, $7)`, `${change.clientTxId}:${index}`, op.model, entityId, op.type, JSON.stringify(op.type === 'DELETE' ? null : row), change.clientTxId, Date.now());
+                }
+                await tx.$executeRawUnsafe(`INSERT INTO ablo_idempotency (client_tx_id, response) VALUES ($1, $2::jsonb)`, change.clientTxId, JSON.stringify(rows));
+                return { rows };
+            });
+        },
+        async events(cursor, limit) {
+            const after = cursor ? cursor : '0';
+            const rows = await prisma.$queryRawUnsafe(`SELECT cursor, id, model, entity_id, type, data, organization_id, client_tx_id, occurred_at
+         FROM ablo_outbox WHERE cursor > $1 ORDER BY cursor ASC LIMIT $2`, after, limit);
+            const events = rows.map((r) => outboxEventSchema.parse({
+                id: r.id,
+                model: r.model,
+                entityId: r.entity_id,
+                type: r.type,
+                data: r.data ?? null,
+                organizationId: r.organization_id ?? null,
+                clientTxId: r.client_tx_id ?? null,
+                occurredAt: r.occurred_at != null ? Number(r.occurred_at) : null,
+                cursor: String(r.cursor),
+            }));
+            return {
+                events,
+                nextCursor: events.length > 0 ? events[events.length - 1].cursor : null,
+            };
+        },
+    };
+}

package/dist/source/conformance.d.ts

@@ -0,0 +1,32 @@
+/**
+ * Data Source adapter conformance suite — the shared "is this adapter correct?"
+ * test set, in the Auth.js `@auth/adapter-test` mould. Every ORM adapter
+ * (Prisma/Drizzle/Kysely) and any hand-written handler runs THIS to prove,
+ * before production, the guarantees the spine promises. A new adapter is "done"
+ * when it passes — not when it compiles.
+ *
+ * Runner-agnostic: checks are plain async functions that throw (node:assert) on
+ * failure. `runDataSourceTests` registers them with whatever `it`/`test` you
+ * pass, so it works under vitest, jest, or node:test:
+ *
+ *   import { it } from 'vitest';
+ *   runDataSourceTests(memoryDataSource, it);
+ *
+ * Scope: this covers the ADAPTER contract (commit idempotency, read-after-write,
+ * the transactional outbox + cursor). Signature/scope rejection is a HANDLER
+ * concern (the adapter never sees a signature) and is tested separately.
+ */
+import type { DataSourceAdapter } from './adapter.js';
+export type MakeAdapter = () => DataSourceAdapter | Promise<DataSourceAdapter>;
+/** A single conformance check. `run` throws on failure. */
+export interface ConformanceCheck {
+    readonly name: string;
+    run(): Promise<void>;
+}
+export declare function dataSourceConformanceChecks(make: MakeAdapter): ConformanceCheck[];
+/**
+ * Register the conformance checks with a test runner's `it`/`test` function.
+ * `register(name, fn)` — pass vitest/jest `it` or `node:test` `test`.
+ */
+export declare function runDataSourceTests(make: MakeAdapter, register: (name: string, fn: () => Promise<void>) => void): void;
+export { memoryDataSource } from './adapters/memory.js';