@adaptic/backend-legacy 0.0.44 → 0.0.45

package/esm/middleware/graphql-validation-plugin.mjs

@@ -0,0 +1,163 @@
+import { GraphQLError } from 'graphql';
+import { validatePercentage, validatePositiveNumber, validateNonEmpty, ValidationError, } from './input-validator.mjs';
+/**
+ * Predefined validation rules for common field patterns
+ */
+const VALIDATION_RULES = [
+    // Percentage fields (0-100)
+    {
+        pattern: /.*Pct$/i,
+        validator: (value, fieldName) => {
+            if (typeof value === 'number') {
+                validatePercentage(value, fieldName);
+            }
+        },
+        description: 'Percentage fields ending with Pct',
+    },
+    {
+        pattern: /.*Percent(age)?$/i,
+        validator: (value, fieldName) => {
+            if (typeof value === 'number') {
+                validatePercentage(value, fieldName);
+            }
+        },
+        description: 'Percentage fields ending with Percent or Percentage',
+    },
+    // Quantity fields (must be positive)
+    {
+        pattern: /^quantity$/i,
+        validator: (value, fieldName) => {
+            if (typeof value === 'number') {
+                validatePositiveNumber(value, fieldName);
+            }
+        },
+        description: 'Quantity fields',
+    },
+    {
+        pattern: /.*Threshold$/i,
+        validator: (value, fieldName) => {
+            if (typeof value === 'number' && value !== 0) {
+                validatePositiveNumber(value, fieldName);
+            }
+        },
+        description: 'Threshold fields',
+    },
+    {
+        pattern: /^count$/i,
+        validator: (value, fieldName) => {
+            if (typeof value === 'number') {
+                validatePositiveNumber(value, fieldName);
+            }
+        },
+        description: 'Count fields',
+    },
+    // Required string fields (non-empty)
+    {
+        pattern: /^(name|title|description|symbol|type|status)$/i,
+        validator: (value, fieldName) => {
+            if (typeof value === 'string') {
+                validateNonEmpty(value, fieldName);
+            }
+        },
+        description: 'Common required string fields',
+    },
+];
+/**
+ * Recursively validates an object's fields based on predefined rules
+ */
+function validateObject(obj, path = '') {
+    const errors = [];
+    for (const [key, value] of Object.entries(obj)) {
+        const fieldPath = path ? `${path}.${key}` : key;
+        // Skip null or undefined values
+        if (value === null || value === undefined) {
+            continue;
+        }
+        // Recursively validate nested objects
+        if (typeof value === 'object' && !Array.isArray(value)) {
+            const nestedErrors = validateObject(value, fieldPath);
+            errors.push(...nestedErrors);
+            continue;
+        }
+        // Apply validation rules to the field
+        for (const rule of VALIDATION_RULES) {
+            if (rule.pattern.test(key)) {
+                try {
+                    rule.validator(value, fieldPath);
+                }
+                catch (error) {
+                    if (error instanceof ValidationError) {
+                        errors.push(...error.fields);
+                    }
+                }
+                break; // Only apply the first matching rule
+            }
+        }
+    }
+    return errors;
+}
+/**
+ * Apollo Server plugin that validates GraphQL mutation inputs
+ *
+ * This plugin intercepts all mutation operations and validates input fields
+ * before they reach the resolver. It applies validation rules based on field
+ * name patterns to ensure data integrity.
+ *
+ * @example
+ * ```typescript
+ * const server = new ApolloServer({
+ *   schema,
+ *   plugins: [
+ *     ApolloServerPluginDrainHttpServer({ httpServer }),
+ *     createValidationPlugin(),
+ *   ],
+ * });
+ * ```
+ */
+export function createValidationPlugin() {
+    return {
+        async requestDidStart() {
+            return {
+                async didResolveOperation(requestContext) {
+                    const { operation, request } = requestContext;
+                    // Only validate mutations
+                    if (!operation || operation.operation !== 'mutation') {
+                        return;
+                    }
+                    const variables = request.variables || {};
+                    const errors = [];
+                    // Validate each mutation's variables
+                    for (const [variableName, variableValue] of Object.entries(variables)) {
+                        if (variableValue && typeof variableValue === 'object') {
+                            // Check if this is a data object (common pattern in mutations)
+                            const dataObj = variableValue;
+                            if ('data' in dataObj && typeof dataObj.data === 'object') {
+                                const validationErrors = validateObject(dataObj.data, variableName);
+                                errors.push(...validationErrors);
+                            }
+                            else {
+                                // Validate the entire variable object
+                                const validationErrors = validateObject(dataObj, variableName);
+                                errors.push(...validationErrors);
+                            }
+                        }
+                    }
+                    // If there are validation errors, throw before resolver execution
+                    if (errors.length > 0) {
+                        throw new GraphQLError(`Input validation failed for ${errors.length} field${errors.length > 1 ? 's' : ''}`, {
+                            extensions: {
+                                code: 'BAD_USER_INPUT',
+                                validationErrors: errors,
+                            },
+                        });
+                    }
+                },
+            };
+        },
+    };
+}
+/**
+ * Export validation rules for testing and documentation
+ */
+export { VALIDATION_RULES };
+//# sourceMappingURL=graphql-validation-plugin.js.map

package/esm/middleware/index.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Input Validation Middleware
+ *
+ * Provides GraphQL mutation input validation through:
+ * 1. Manual validation functions for custom resolvers
+ * 2. Automatic validation plugin for pattern-based rules
+ */
+export { validatePercentage, validatePositiveNumber, validateEmail, validateUrl, validateNonEmpty, validateConfidenceScore, validateFields, ValidationError, ValidationErrorDetail, } from './input-validator';
+export { createValidationPlugin, VALIDATION_RULES, } from './graphql-validation-plugin';
+export { authMiddleware, AuthenticatedRequest, } from './auth';
+export { CustomValidators } from './validation-examples';
+//# sourceMappingURL=index.d.ts.map

package/esm/middleware/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/middleware/index.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,EACL,kBAAkB,EAClB,sBAAsB,EACtB,aAAa,EACb,WAAW,EACX,gBAAgB,EAChB,uBAAuB,EACvB,cAAc,EACd,eAAe,EACf,qBAAqB,GACtB,MAAM,mBAAmB,CAAC;AAG3B,OAAO,EACL,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,6BAA6B,CAAC;AAGrC,OAAO,EACL,cAAc,EACd,oBAAoB,GACrB,MAAM,QAAQ,CAAC;AAGhB,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC"}

package/esm/middleware/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/middleware/index.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,8BAA8B;AAC9B,OAAO,EACL,kBAAkB,EAClB,sBAAsB,EACtB,aAAa,EACb,WAAW,EACX,gBAAgB,EAChB,uBAAuB,EACvB,cAAc,EACd,eAAe,GAEhB,MAAM,mBAAmB,CAAC;AAE3B,mCAAmC;AACnC,OAAO,EACL,sBAAsB,EACtB,gBAAgB,GACjB,MAAM,6BAA6B,CAAC;AAErC,mCAAmC;AACnC,OAAO,EACL,cAAc,GAEf,MAAM,QAAQ,CAAC;AAEhB,0CAA0C;AAC1C,OAAO,EAAE,gBAAgB,EAAE,MAAM,uBAAuB,CAAC"}

package/esm/middleware/index.mjs

@@ -0,0 +1,16 @@
+/**
+ * Input Validation Middleware
+ *
+ * Provides GraphQL mutation input validation through:
+ * 1. Manual validation functions for custom resolvers
+ * 2. Automatic validation plugin for pattern-based rules
+ */
+// Export validation functions
+export { validatePercentage, validatePositiveNumber, validateEmail, validateUrl, validateNonEmpty, validateConfidenceScore, validateFields, ValidationError,  } from './input-validator.mjs';
+// Export GraphQL validation plugin
+export { createValidationPlugin, VALIDATION_RULES,  } from './graphql-validation-plugin.mjs';
+// Export authentication middleware
+export { authMiddleware,  } from './auth.mjs';
+// Export example validators for reference
+export { CustomValidators  } from './validation-examples.mjs';
+//# sourceMappingURL=index.js.map

package/esm/middleware/input-validator.d.ts

@@ -0,0 +1,63 @@
+import { GraphQLError } from 'graphql';
+/**
+ * Validation error details for field-level error reporting
+ */
+export interface ValidationErrorDetail {
+    field: string;
+    value: unknown;
+    message: string;
+    constraint: string;
+}
+/**
+ * Custom error class for validation failures
+ */
+export declare class ValidationError extends GraphQLError {
+    readonly fields: ValidationErrorDetail[];
+    constructor(message: string, fields: ValidationErrorDetail[]);
+}
+/**
+ * Validates that a number is within the 0-100 percentage range
+ * @param value - The numeric value to validate
+ * @param fieldName - The name of the field for error reporting
+ * @throws ValidationError if the value is not between 0 and 100
+ */
+export declare function validatePercentage(value: number, fieldName: string): void;
+/**
+ * Validates that a number is positive (greater than 0)
+ * @param value - The numeric value to validate
+ * @param fieldName - The name of the field for error reporting
+ * @throws ValidationError if the value is not positive
+ */
+export declare function validatePositiveNumber(value: number, fieldName: string): void;
+/**
+ * Validates that a string is a valid email format
+ * @param value - The string value to validate
+ * @throws ValidationError if the value is not a valid email
+ */
+export declare function validateEmail(value: string): void;
+/**
+ * Validates that a string is a valid URL format
+ * @param value - The string value to validate
+ * @throws ValidationError if the value is not a valid URL
+ */
+export declare function validateUrl(value: string): void;
+/**
+ * Validates that a string is non-empty
+ * @param value - The string value to validate
+ * @param fieldName - The name of the field for error reporting
+ * @throws ValidationError if the value is empty or not a string
+ */
+export declare function validateNonEmpty(value: string, fieldName: string): void;
+/**
+ * Validates that a confidence score is within the 0-1 range
+ * @param value - The numeric value to validate
+ * @throws ValidationError if the value is not between 0 and 1
+ */
+export declare function validateConfidenceScore(value: number): void;
+/**
+ * Validates multiple fields and accumulates all validation errors
+ * @param validations - Array of validation functions to execute
+ * @throws ValidationError with all accumulated field errors
+ */
+export declare function validateFields(validations: Array<() => void>): void;
+//# sourceMappingURL=input-validator.d.ts.map

package/esm/middleware/input-validator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"input-validator.d.ts","sourceRoot":"","sources":["../../../src/middleware/input-validator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAEvC;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,OAAO,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,qBAAa,eAAgB,SAAQ,YAAY;IAC/C,SAAgB,MAAM,EAAE,qBAAqB,EAAE,CAAC;gBAEpC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,qBAAqB,EAAE;CAS7D;AAED;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CAsBzE;AAED;;;;;GAKG;AACH,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CAsB7E;AAED;;;;GAIG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,CAwBjD;AAED;;;;GAIG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,CAwB/C;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CAsBvE;AAED;;;;GAIG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,CAsB3D;AAED;;;;GAIG;AACH,wBAAgB,cAAc,CAAC,WAAW,EAAE,KAAK,CAAC,MAAM,IAAI,CAAC,GAAG,IAAI,CAkBnE"}

package/esm/middleware/input-validator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"input-validator.js","sourceRoot":"","sources":["../../../src/middleware/input-validator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAYvC;;GAEG;AACH,MAAM,OAAO,eAAgB,SAAQ,YAAY;IAC/B,MAAM,CAA0B;IAEhD,YAAY,OAAe,EAAE,MAA+B;QAC1D,KAAK,CAAC,OAAO,EAAE;YACb,UAAU,EAAE;gBACV,IAAI,EAAE,gBAAgB;gBACtB,gBAAgB,EAAE,MAAM;aACzB;SACF,CAAC,CAAC;QACH,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;CACF;AAED;;;;;GAKG;AACH,MAAM,UAAU,kBAAkB,CAAC,KAAa,EAAE,SAAiB;IACjE,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,eAAe,CAAC,0BAA0B,EAAE;YACpD;gBACE,KAAK,EAAE,SAAS;gBAChB,KAAK;gBACL,OAAO,EAAE,wBAAwB;gBACjC,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,KAAK,GAAG,CAAC,IAAI,KAAK,GAAG,GAAG,EAAE,CAAC;QAC7B,MAAM,IAAI,eAAe,CAAC,yBAAyB,EAAE;YACnD;gBACE,KAAK,EAAE,SAAS;gBAChB,KAAK;gBACL,OAAO,EAAE,2BAA2B;gBACpC,UAAU,EAAE,OAAO;aACpB;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,sBAAsB,CAAC,KAAa,EAAE,SAAiB;IACrE,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,eAAe,CAAC,uBAAuB,EAAE;YACjD;gBACE,KAAK,EAAE,SAAS;gBAChB,KAAK;gBACL,OAAO,EAAE,wBAAwB;gBACjC,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,KAAK,IAAI,CAAC,EAAE,CAAC;QACf,MAAM,IAAI,eAAe,CAAC,yBAAyB,EAAE;YACnD;gBACE,KAAK,EAAE,SAAS;gBAChB,KAAK;gBACL,OAAO,EAAE,wBAAwB;gBACjC,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,aAAa,CAAC,KAAa;IACzC,MAAM,UAAU,GAAG,4BAA4B,CAAC;IAEhD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CAAC,qBAAqB,EAAE;YAC/C;gBACE,KAAK,EAAE,OAAO;gBACd,KAAK;gBACL,OAAO,EAAE,kBAAkB;gBAC3B,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QAC5B,MAAM,IAAI,eAAe,CAAC,sBAAsB,EAAE;YAChD;gBACE,KAAK,EAAE,OAAO;gBACd,KAAK;gBACL,OAAO,EAAE,+BAA+B;gBACxC,UAAU,EAAE,OAAO;aACpB;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,WAAW,CAAC,KAAa;IACvC,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CAAC,mBAAmB,EAAE;YAC7C;gBACE,KAAK,EAAE,KAAK;gBACZ,KAAK;gBACL,OAAO,EAAE,kBAAkB;gBAC3B,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC;QACH,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;IACjB,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,eAAe,CAAC,oBAAoB,EAAE;YAC9C;gBACE,KAAK,EAAE,KAAK;gBACZ,KAAK;gBACL,OAAO,EAAE,qBAAqB;gBAC9B,UAAU,EAAE,KAAK;aAClB;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAa,EAAE,SAAiB;IAC/D,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CAAC,sBAAsB,EAAE;YAChD;gBACE,KAAK,EAAE,SAAS;gBAChB,KAAK;gBACL,OAAO,EAAE,kBAAkB;gBAC3B,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CAAC,wBAAwB,EAAE;YAClD;gBACE,KAAK,EAAE,SAAS;gBAChB,KAAK;gBACL,OAAO,EAAE,mBAAmB;gBAC5B,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,uBAAuB,CAAC,KAAa;IACnD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC;QAC9C,MAAM,IAAI,eAAe,CAAC,0BAA0B,EAAE;YACpD;gBACE,KAAK,EAAE,iBAAiB;gBACxB,KAAK;gBACL,OAAO,EAAE,wBAAwB;gBACjC,UAAU,EAAE,UAAU;aACvB;SACF,CAAC,CAAC;IACL,CAAC;IAED,IAAI,KAAK,GAAG,CAAC,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,eAAe,CAAC,+BAA+B,EAAE;YACzD;gBACE,KAAK,EAAE,iBAAiB;gBACxB,KAAK;gBACL,OAAO,EAAE,yBAAyB;gBAClC,UAAU,EAAE,OAAO;aACpB;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAAC,WAA8B;IAC3D,MAAM,MAAM,GAA4B,EAAE,CAAC;IAE3C,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;QACrC,IAAI,CAAC;YACH,UAAU,EAAE,CAAC;QACf,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,eAAe,EAAE,CAAC;gBACrC,MAAM,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;YAC/B,CAAC;iBAAM,CAAC;gBACN,MAAM,KAAK,CAAC;YACd,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtB,MAAM,IAAI,eAAe,CAAC,uCAAuC,EAAE,MAAM,CAAC,CAAC;IAC7E,CAAC;AACH,CAAC"}

package/esm/middleware/input-validator.mjs

@@ -0,0 +1,210 @@
+import { GraphQLError } from 'graphql';
+/**
+ * Custom error class for validation failures
+ */
+export class ValidationError extends GraphQLError {
+    fields;
+    constructor(message, fields) {
+        super(message, {
+            extensions: {
+                code: 'BAD_USER_INPUT',
+                validationErrors: fields,
+            },
+        });
+        this.fields = fields;
+    }
+}
+/**
+ * Validates that a number is within the 0-100 percentage range
+ * @param value - The numeric value to validate
+ * @param fieldName - The name of the field for error reporting
+ * @throws ValidationError if the value is not between 0 and 100
+ */
+export function validatePercentage(value, fieldName) {
+    if (typeof value !== 'number' || isNaN(value)) {
+        throw new ValidationError('Invalid percentage value', [
+            {
+                field: fieldName,
+                value,
+                message: 'Must be a valid number',
+                constraint: 'isNumber',
+            },
+        ]);
+    }
+    if (value < 0 || value > 100) {
+        throw new ValidationError('Percentage out of range', [
+            {
+                field: fieldName,
+                value,
+                message: 'Must be between 0 and 100',
+                constraint: 'range',
+            },
+        ]);
+    }
+}
+/**
+ * Validates that a number is positive (greater than 0)
+ * @param value - The numeric value to validate
+ * @param fieldName - The name of the field for error reporting
+ * @throws ValidationError if the value is not positive
+ */
+export function validatePositiveNumber(value, fieldName) {
+    if (typeof value !== 'number' || isNaN(value)) {
+        throw new ValidationError('Invalid numeric value', [
+            {
+                field: fieldName,
+                value,
+                message: 'Must be a valid number',
+                constraint: 'isNumber',
+            },
+        ]);
+    }
+    if (value <= 0) {
+        throw new ValidationError('Number must be positive', [
+            {
+                field: fieldName,
+                value,
+                message: 'Must be greater than 0',
+                constraint: 'positive',
+            },
+        ]);
+    }
+}
+/**
+ * Validates that a string is a valid email format
+ * @param value - The string value to validate
+ * @throws ValidationError if the value is not a valid email
+ */
+export function validateEmail(value) {
+    const emailRegex = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
+    if (typeof value !== 'string') {
+        throw new ValidationError('Invalid email value', [
+            {
+                field: 'email',
+                value,
+                message: 'Must be a string',
+                constraint: 'isString',
+            },
+        ]);
+    }
+    if (!emailRegex.test(value)) {
+        throw new ValidationError('Invalid email format', [
+            {
+                field: 'email',
+                value,
+                message: 'Must be a valid email address',
+                constraint: 'email',
+            },
+        ]);
+    }
+}
+/**
+ * Validates that a string is a valid URL format
+ * @param value - The string value to validate
+ * @throws ValidationError if the value is not a valid URL
+ */
+export function validateUrl(value) {
+    if (typeof value !== 'string') {
+        throw new ValidationError('Invalid URL value', [
+            {
+                field: 'url',
+                value,
+                message: 'Must be a string',
+                constraint: 'isString',
+            },
+        ]);
+    }
+    try {
+        new URL(value);
+    }
+    catch {
+        throw new ValidationError('Invalid URL format', [
+            {
+                field: 'url',
+                value,
+                message: 'Must be a valid URL',
+                constraint: 'url',
+            },
+        ]);
+    }
+}
+/**
+ * Validates that a string is non-empty
+ * @param value - The string value to validate
+ * @param fieldName - The name of the field for error reporting
+ * @throws ValidationError if the value is empty or not a string
+ */
+export function validateNonEmpty(value, fieldName) {
+    if (typeof value !== 'string') {
+        throw new ValidationError('Invalid string value', [
+            {
+                field: fieldName,
+                value,
+                message: 'Must be a string',
+                constraint: 'isString',
+            },
+        ]);
+    }
+    if (value.trim().length === 0) {
+        throw new ValidationError('String cannot be empty', [
+            {
+                field: fieldName,
+                value,
+                message: 'Must not be empty',
+                constraint: 'notEmpty',
+            },
+        ]);
+    }
+}
+/**
+ * Validates that a confidence score is within the 0-1 range
+ * @param value - The numeric value to validate
+ * @throws ValidationError if the value is not between 0 and 1
+ */
+export function validateConfidenceScore(value) {
+    if (typeof value !== 'number' || isNaN(value)) {
+        throw new ValidationError('Invalid confidence score', [
+            {
+                field: 'confidenceScore',
+                value,
+                message: 'Must be a valid number',
+                constraint: 'isNumber',
+            },
+        ]);
+    }
+    if (value < 0 || value > 1) {
+        throw new ValidationError('Confidence score out of range', [
+            {
+                field: 'confidenceScore',
+                value,
+                message: 'Must be between 0 and 1',
+                constraint: 'range',
+            },
+        ]);
+    }
+}
+/**
+ * Validates multiple fields and accumulates all validation errors
+ * @param validations - Array of validation functions to execute
+ * @throws ValidationError with all accumulated field errors
+ */
+export function validateFields(validations) {
+    const errors = [];
+    for (const validation of validations) {
+        try {
+            validation();
+        }
+        catch (error) {
+            if (error instanceof ValidationError) {
+                errors.push(...error.fields);
+            }
+            else {
+                throw error;
+            }
+        }
+    }
+    if (errors.length > 0) {
+        throw new ValidationError('Validation failed for multiple fields', errors);
+    }
+}
+//# sourceMappingURL=input-validator.js.map

package/esm/middleware/rate-limiter.d.ts

@@ -0,0 +1,12 @@
+import { Request, Response, NextFunction } from 'express';
+/**
+ * Rate limiter for GraphQL endpoint
+ * Allows 1000 requests per 15 minutes by default (configurable via RATE_LIMIT_MAX env var)
+ */
+export declare const graphqlRateLimiter: (req: Request, res: Response, next: NextFunction) => void;
+/**
+ * Rate limiter for authentication endpoints
+ * Allows 50 requests per 15 minutes (stricter for auth)
+ */
+export declare const authRateLimiter: (req: Request, res: Response, next: NextFunction) => void;
+//# sourceMappingURL=rate-limiter.d.ts.map

package/esm/middleware/rate-limiter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limiter.d.ts","sourceRoot":"","sources":["../../../src/middleware/rate-limiter.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAoE1D;;;GAGG;AACH,eAAO,MAAM,kBAAkB,QArChB,OAAO,OAAO,QAAQ,QAAQ,YAAY,KAAG,IA2C1D,CAAC;AAEH;;;GAGG;AACH,eAAO,MAAM,eAAe,QAjDb,OAAO,OAAO,QAAQ,QAAQ,YAAY,KAAG,IAuD1D,CAAC"}

package/esm/middleware/rate-limiter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limiter.js","sourceRoot":"","sources":["../../../src/middleware/rate-limiter.ts"],"names":[],"mappings":"AAAA,gHAAgH;AAmBhH;;;;GAIG;AACH,SAAS,iBAAiB,CAAC,MAAuB;IAChD,MAAM,KAAK,GAAmB,EAAE,CAAC;IAEjC,wCAAwC;IACxC,WAAW,CAAC,GAAG,EAAE;QACf,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;YACjC,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC,SAAS,GAAG,GAAG,EAAE,CAAC;gBAC/B,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC;YACpB,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC,EAAE,KAAK,CAAC,CAAC;IAEV,OAAO,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAQ,EAAE;QAC/D,MAAM,UAAU,GAAG,GAAG,CAAC,EAAE,IAAI,GAAG,CAAC,UAAU,CAAC,aAAa,IAAI,SAAS,CAAC;QACvE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEvB,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,IAAI,KAAK,CAAC,UAAU,CAAC,CAAC,SAAS,GAAG,GAAG,EAAE,CAAC;YAC5D,KAAK,CAAC,UAAU,CAAC,GAAG;gBAClB,KAAK,EAAE,CAAC;gBACR,SAAS,EAAE,GAAG,GAAG,MAAM,CAAC,QAAQ;aACjC,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,KAAK,CAAC,UAAU,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;QAC/B,CAAC;QAED,MAAM,OAAO,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC;QAClC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,GAAG,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC;QAC1D,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,SAAS,GAAG,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC;QAE9D,yBAAyB;QACzB,IAAI,MAAM,CAAC,eAAe,KAAK,KAAK,EAAE,CAAC;YACrC,GAAG,CAAC,SAAS,CAAC,mBAAmB,EAAE,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC1D,GAAG,CAAC,SAAS,CAAC,uBAAuB,EAAE,SAAS,CAAC,QAAQ,EAAE,CAAC,CAAC;YAC7D,GAAG,CAAC,SAAS,CAAC,mBAAmB,EAAE,SAAS,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC3D,CAAC;QAED,IAAI,OAAO,CAAC,KAAK,GAAG,MAAM,CAAC,GAAG,EAAE,CAAC;YAC/B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;YACrC,OAAO;QACT,CAAC;QAED,IAAI,EAAE,CAAC;IACT,CAAC,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,iBAAiB,CAAC;IAClD,QAAQ,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,aAAa;IACvC,GAAG,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,IAAI,MAAM,EAAE,EAAE,CAAC;IACvD,eAAe,EAAE,IAAI;IACrB,aAAa,EAAE,KAAK;IACpB,OAAO,EAAE,EAAE,MAAM,EAAE,CAAC,EAAE,OAAO,EAAE,4CAA4C,EAAE,CAAC,EAAE;CACjF,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,iBAAiB,CAAC;IAC/C,QAAQ,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,aAAa;IACvC,GAAG,EAAE,EAAE;IACP,eAAe,EAAE,IAAI;IACrB,aAAa,EAAE,KAAK;IACpB,OAAO,EAAE,EAAE,MAAM,EAAE,CAAC,EAAE,OAAO,EAAE,mCAAmC,EAAE,CAAC,EAAE;CACxE,CAAC,CAAC"}

package/esm/middleware/rate-limiter.mjs

@@ -0,0 +1,68 @@
+// Integration: add to server.ts - app.use('/graphql', graphqlRateLimiter) and app.use('/auth', authRateLimiter)
+/**
+ * Creates a simple in-memory rate limiter middleware
+ * @param config - Rate limit configuration
+ * @returns Express middleware function
+ */
+function createRateLimiter(config) {
+    const store = {};
+    // Clean up expired entries every minute
+    setInterval(() => {
+        const now = Date.now();
+        Object.keys(store).forEach((key) => {
+            if (store[key].resetTime < now) {
+                delete store[key];
+            }
+        });
+    }, 60000);
+    return (req, res, next) => {
+        const identifier = req.ip || req.connection.remoteAddress || 'unknown';
+        const now = Date.now();
+        if (!store[identifier] || store[identifier].resetTime < now) {
+            store[identifier] = {
+                count: 1,
+                resetTime: now + config.windowMs,
+            };
+        }
+        else {
+            store[identifier].count += 1;
+        }
+        const current = store[identifier];
+        const remaining = Math.max(0, config.max - current.count);
+        const resetTime = Math.ceil((current.resetTime - now) / 1000);
+        // Add rate limit headers
+        if (config.standardHeaders !== false) {
+            res.setHeader('X-RateLimit-Limit', config.max.toString());
+            res.setHeader('X-RateLimit-Remaining', remaining.toString());
+            res.setHeader('X-RateLimit-Reset', resetTime.toString());
+        }
+        if (current.count > config.max) {
+            res.status(429).json(config.message);
+            return;
+        }
+        next();
+    };
+}
+/**
+ * Rate limiter for GraphQL endpoint
+ * Allows 1000 requests per 15 minutes by default (configurable via RATE_LIMIT_MAX env var)
+ */
+export const graphqlRateLimiter = createRateLimiter({
+    windowMs: 15 * 60 * 1000, // 15 minutes
+    max: parseInt(process.env.RATE_LIMIT_MAX || '1000', 10),
+    standardHeaders: true,
+    legacyHeaders: false,
+    message: { errors: [{ message: 'Too many requests, please try again later.' }] },
+});
+/**
+ * Rate limiter for authentication endpoints
+ * Allows 50 requests per 15 minutes (stricter for auth)
+ */
+export const authRateLimiter = createRateLimiter({
+    windowMs: 15 * 60 * 1000, // 15 minutes
+    max: 50,
+    standardHeaders: true,
+    legacyHeaders: false,
+    message: { errors: [{ message: 'Too many authentication attempts.' }] },
+});
+//# sourceMappingURL=rate-limiter.js.map

package/esm/middleware/types.d.ts

@@ -0,0 +1,87 @@
+/**
+ * Type definitions for validation middleware
+ */
+import { GraphQLError } from 'graphql';
+import { ValidationErrorDetail } from './input-validator';
+/**
+ * Configuration options for the validation plugin
+ */
+export interface ValidationPluginOptions {
+    /**
+     * Whether to skip validation for specific operations
+     */
+    skipOperations?: string[];
+    /**
+     * Custom validation rules to add to the default set
+     */
+    customRules?: FieldValidationRule[];
+    /**
+     * Whether to log validation errors for debugging
+     */
+    debug?: boolean;
+}
+/**
+ * Field validation rule definition
+ */
+export interface FieldValidationRule {
+    /**
+     * Regular expression pattern to match field names
+     */
+    pattern: RegExp;
+    /**
+     * Validation function to apply to matching fields
+     * @param value - The field value to validate
+     * @param fieldName - The name of the field being validated
+     */
+    validator: (value: unknown, fieldName: string) => void;
+    /**
+     * Human-readable description of what this rule validates
+     */
+    description: string;
+}
+/**
+ * GraphQL operation context with validation information
+ */
+export interface ValidationContext {
+    /**
+     * The GraphQL operation being executed
+     */
+    operation: {
+        operation: 'query' | 'mutation' | 'subscription';
+        name?: {
+            value: string;
+        };
+    };
+    /**
+     * The request variables
+     */
+    request: {
+        variables?: Record<string, unknown>;
+    };
+}
+/**
+ * Result of a validation check
+ */
+export interface ValidationResult {
+    /**
+     * Whether validation passed
+     */
+    valid: boolean;
+    /**
+     * Array of validation errors (empty if valid)
+     */
+    errors: ValidationErrorDetail[];
+}
+/**
+ * Type guard to check if an error is a ValidationError
+ */
+export declare function isValidationError(error: unknown): error is GraphQLError;
+/**
+ * Type-safe validator function signature
+ */
+export type Validator<T> = (value: T, fieldName: string) => void;
+/**
+ * Validation constraint types
+ */
+export type ValidationConstraint = 'isNumber' | 'isString' | 'range' | 'positive' | 'negative' | 'notEmpty' | 'email' | 'url' | 'minimum' | 'maximum' | 'sum' | 'comparison' | 'userLimit' | 'maxLength' | 'custom';
+//# sourceMappingURL=types.d.ts.map

package/esm/middleware/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/middleware/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,qBAAqB,EAAE,MAAM,mBAAmB,CAAC;AAE1D;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC;;OAEG;IACH,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAE1B;;OAEG;IACH,WAAW,CAAC,EAAE,mBAAmB,EAAE,CAAC;IAEpC;;OAEG;IACH,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC;;OAEG;IACH,OAAO,EAAE,MAAM,CAAC;IAEhB;;;;OAIG;IACH,SAAS,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,SAAS,EAAE,MAAM,KAAK,IAAI,CAAC;IAEvD;;OAEG;IACH,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC;;OAEG;IACH,SAAS,EAAE;QACT,SAAS,EAAE,OAAO,GAAG,UAAU,GAAG,cAAc,CAAC;QACjD,IAAI,CAAC,EAAE;YACL,KAAK,EAAE,MAAM,CAAC;SACf,CAAC;KACH,CAAC;IAEF;;OAEG;IACH,OAAO,EAAE;QACP,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;KACrC,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B;;OAEG;IACH,KAAK,EAAE,OAAO,CAAC;IAEf;;OAEG;IACH,MAAM,EAAE,qBAAqB,EAAE,CAAC;CACjC;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,YAAY,CAMvE;AAED;;GAEG;AACH,MAAM,MAAM,SAAS,CAAC,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC,EAAE,SAAS,EAAE,MAAM,KAAK,IAAI,CAAC;AAEjE;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAC5B,UAAU,GACV,UAAU,GACV,OAAO,GACP,UAAU,GACV,UAAU,GACV,UAAU,GACV,OAAO,GACP,KAAK,GACL,SAAS,GACT,SAAS,GACT,KAAK,GACL,YAAY,GACZ,WAAW,GACX,WAAW,GACX,QAAQ,CAAC"}

package/esm/middleware/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/middleware/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAkFvC;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,KAAc;IAC9C,OAAO,CACL,KAAK,YAAY,YAAY;QAC7B,KAAK,CAAC,UAAU,EAAE,IAAI,KAAK,gBAAgB;QAC3C,kBAAkB,IAAI,CAAC,KAAK,CAAC,UAAU,IAAI,EAAE,CAAC,CAC/C,CAAC;AACJ,CAAC"}