@agentlensai/server 0.9.0 → 0.11.0

package/dist/cloud/retention/retention-job.d.ts

@@ -0,0 +1,70 @@
+/**
+ * Data Retention Purge Job (S-8.1)
+ *
+ * Daily cron (03:00 UTC) that purges events beyond each org's retention window.
+ * Primary mechanism: DROP entire expired monthly partitions.
+ * Partial DELETE for boundary partitions.
+ *
+ * Also handles: warning notifications before deletion, export-before-delete prompting.
+ */
+import type { Pool } from '../tenant-pool.js';
+export interface RetentionJobResult {
+    orgsProcessed: number;
+    totalDropped: number;
+    totalDeleted: number;
+    warnings: RetentionWarning[];
+    errors: RetentionError[];
+}
+export interface RetentionWarning {
+    orgId: string;
+    type: 'approaching_expiry';
+    message: string;
+    daysUntilExpiry: number;
+}
+export interface RetentionError {
+    orgId: string;
+    error: string;
+}
+export interface OrgPurgeResult {
+    orgId: string;
+    partitionsDropped: string[];
+    rowsDeleted: number;
+}
+export interface RetentionJobDeps {
+    pool: Pool;
+    now?: Date;
+    logger?: RetentionLogger;
+    warningDays?: number;
+}
+export interface RetentionLogger {
+    info(msg: string, meta?: Record<string, unknown>): void;
+    warn(msg: string, meta?: Record<string, unknown>): void;
+    error(msg: string, meta?: Record<string, unknown>): void;
+}
+/**
+ * Run the retention purge job for all organizations.
+ */
+export declare function runRetentionJob(deps: RetentionJobDeps): Promise<RetentionJobResult>;
+/**
+ * Purge expired data for one org across given tables.
+ *
+ * Strategy (per architecture §11.2):
+ * 1. Check each partition — if its max_timestamp < cutoff, the whole partition is expired
+ *    BUT we can only DROP a partition if ALL orgs' data in it is expired.
+ *    Since partitions are shared across orgs, we use DELETE for per-org purging.
+ * 2. For per-org purging: DELETE WHERE org_id = :org AND timestamp < :cutoff
+ *
+ * Partition drops are handled by partition-management.ts which considers
+ * the minimum retention across all orgs (global partition lifecycle).
+ */
+export declare function purgeExpiredData(pool: Pool, orgId: string, tables: readonly string[], retentionDays: number, now: Date, logger?: RetentionLogger): Promise<OrgPurgeResult>;
+/**
+ * Check if an org has exportable data that will be deleted.
+ * Used to prompt export-before-delete in the UI.
+ */
+export declare function getExpiringDataSummary(pool: Pool, orgId: string, retentionDays: number, now?: Date): Promise<{
+    eventCount: number;
+    oldestEvent: string | null;
+    cutoffDate: string;
+}>;
+//# sourceMappingURL=retention-job.d.ts.map

package/dist/cloud/retention/retention-job.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"retention-job.d.ts","sourceRoot":"","sources":["../../../src/cloud/retention/retention-job.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,mBAAmB,CAAC;AAW9C,MAAM,WAAW,kBAAkB;IACjC,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,gBAAgB,EAAE,CAAC;IAC7B,MAAM,EAAE,cAAc,EAAE,CAAC;CAC1B;AAED,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,oBAAoB,CAAC;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,cAAc;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,cAAc;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,IAAI,CAAC;IACX,GAAG,CAAC,EAAE,IAAI,CAAC;IACX,MAAM,CAAC,EAAE,eAAe,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACxD,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACxD,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;CAC1D;AAmBD;;GAEG;AACH,wBAAsB,eAAe,CAAC,IAAI,EAAE,gBAAgB,GAAG,OAAO,CAAC,kBAAkB,CAAC,CAwDzF;AAsDD;;;;;;;;;;;GAWG;AACH,wBAAsB,gBAAgB,CACpC,IAAI,EAAE,IAAI,EACV,KAAK,EAAE,MAAM,EACb,MAAM,EAAE,SAAS,MAAM,EAAE,EACzB,aAAa,EAAE,MAAM,EACrB,GAAG,EAAE,IAAI,EACT,MAAM,GAAE,eAA+B,GACtC,OAAO,CAAC,cAAc,CAAC,CAgCzB;AAED;;;GAGG;AACH,wBAAsB,sBAAsB,CAC1C,IAAI,EAAE,IAAI,EACV,KAAK,EAAE,MAAM,EACb,aAAa,EAAE,MAAM,EACrB,GAAG,GAAE,IAAiB,GACrB,OAAO,CAAC;IAAE,UAAU,EAAE,MAAM,CAAC;IAAC,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,CAAC,CAgBjF"}

package/dist/cloud/retention/retention-job.js

@@ -0,0 +1,160 @@
+/**
+ * Data Retention Purge Job (S-8.1)
+ *
+ * Daily cron (03:00 UTC) that purges events beyond each org's retention window.
+ * Primary mechanism: DROP entire expired monthly partitions.
+ * Partial DELETE for boundary partitions.
+ *
+ * Also handles: warning notifications before deletion, export-before-delete prompting.
+ */
+import { getEffectiveRetention, getRetentionCutoff, } from './retention-policy.js';
+const defaultLogger = {
+    info: () => { },
+    warn: () => { },
+    error: () => { },
+};
+// Tables that need retention purging (partition-based)
+const EVENT_TABLES = ['events'];
+const AUDIT_TABLE = 'audit_log';
+const SAFE_IDENTIFIER_RE = /^[a-z_][a-z0-9_]*$/;
+function assertSafe(name) {
+    if (!SAFE_IDENTIFIER_RE.test(name))
+        throw new Error(`Unsafe identifier: ${name}`);
+}
+// ─── Core Job ────────────────────────────────────────────────────
+/**
+ * Run the retention purge job for all organizations.
+ */
+export async function runRetentionJob(deps) {
+    const { pool, now = new Date(), logger = defaultLogger, warningDays = 7 } = deps;
+    const result = {
+        orgsProcessed: 0,
+        totalDropped: 0,
+        totalDeleted: 0,
+        warnings: [],
+        errors: [],
+    };
+    // Fetch all active orgs with their plans
+    const orgs = await getActiveOrgs(pool);
+    logger.info(`Retention job starting for ${orgs.length} orgs`);
+    for (const org of orgs) {
+        try {
+            const retention = getEffectiveRetention(org);
+            // Check for approaching expiry warnings
+            const warnings = await checkExpiryWarnings(pool, org, retention, now, warningDays);
+            result.warnings.push(...warnings);
+            // Purge expired events
+            const eventResult = await purgeExpiredData(pool, org.orgId, EVENT_TABLES, retention.eventRetentionDays, now, logger);
+            result.totalDropped += eventResult.partitionsDropped.length;
+            result.totalDeleted += eventResult.rowsDeleted;
+            // Purge expired audit logs
+            const auditResult = await purgeExpiredData(pool, org.orgId, [AUDIT_TABLE], retention.auditLogRetentionDays, now, logger);
+            result.totalDropped += auditResult.partitionsDropped.length;
+            result.totalDeleted += auditResult.rowsDeleted;
+            result.orgsProcessed++;
+            logger.info('Org retention complete', {
+                orgId: org.orgId,
+                dropped: eventResult.partitionsDropped.length + auditResult.partitionsDropped.length,
+                deleted: eventResult.rowsDeleted + auditResult.rowsDeleted,
+            });
+        }
+        catch (err) {
+            const message = err instanceof Error ? err.message : String(err);
+            result.errors.push({ orgId: org.orgId, error: message });
+            logger.error(`Retention failed for org ${org.orgId}: ${message}`);
+        }
+    }
+    logger.info('Retention job complete', {
+        orgsProcessed: result.orgsProcessed,
+        totalDropped: result.totalDropped,
+        totalDeleted: result.totalDeleted,
+        warnings: result.warnings.length,
+        errors: result.errors.length,
+    });
+    return result;
+}
+// ─── Helpers ─────────────────────────────────────────────────────
+async function getActiveOrgs(pool) {
+    const { rows } = await pool.query(`SELECT id AS "orgId", plan, custom_retention_days AS "customRetentionDays"
+     FROM orgs
+     WHERE deleted_at IS NULL`);
+    return rows.map((r) => ({
+        orgId: r.orgId,
+        plan: r.plan,
+        customRetentionDays: r.customRetentionDays,
+    }));
+}
+/**
+ * Check if any org data is approaching its retention cutoff, and generate warnings.
+ */
+async function checkExpiryWarnings(pool, org, retention, now, warningDays) {
+    const warnings = [];
+    // Check if org has data that will expire within warningDays
+    const warningCutoff = getRetentionCutoff(retention.eventRetentionDays - warningDays, now);
+    const actualCutoff = getRetentionCutoff(retention.eventRetentionDays, now);
+    const { rows } = await pool.query(`SELECT COUNT(*) AS cnt FROM events
+     WHERE org_id = $1 AND timestamp >= $2 AND timestamp < $3`, [org.orgId, actualCutoff.toISOString(), warningCutoff.toISOString()]);
+    const count = Number(rows[0]?.cnt ?? 0);
+    if (count > 0) {
+        warnings.push({
+            orgId: org.orgId,
+            type: 'approaching_expiry',
+            message: `${count} events will expire within ${warningDays} days. Consider exporting data.`,
+            daysUntilExpiry: warningDays,
+        });
+    }
+    return warnings;
+}
+/**
+ * Purge expired data for one org across given tables.
+ *
+ * Strategy (per architecture §11.2):
+ * 1. Check each partition — if its max_timestamp < cutoff, the whole partition is expired
+ *    BUT we can only DROP a partition if ALL orgs' data in it is expired.
+ *    Since partitions are shared across orgs, we use DELETE for per-org purging.
+ * 2. For per-org purging: DELETE WHERE org_id = :org AND timestamp < :cutoff
+ *
+ * Partition drops are handled by partition-management.ts which considers
+ * the minimum retention across all orgs (global partition lifecycle).
+ */
+export async function purgeExpiredData(pool, orgId, tables, retentionDays, now, logger = defaultLogger) {
+    const cutoff = getRetentionCutoff(retentionDays, now);
+    const result = { orgId, partitionsDropped: [], rowsDeleted: 0 };
+    for (const table of tables) {
+        assertSafe(table);
+        const timestampCol = table === 'audit_log' ? 'created_at' : 'timestamp';
+        // Per-org batched DELETE (partitions are shared, can't drop per-org)
+        const BATCH_SIZE = 10000;
+        let totalDeleted = 0;
+        let batchDeleted;
+        do {
+            const deleteResult = await pool.query(`DELETE FROM ${table} WHERE ctid IN (
+          SELECT ctid FROM ${table} WHERE org_id = $1 AND ${timestampCol} < $2 LIMIT ${BATCH_SIZE}
+        )`, [orgId, cutoff.toISOString()]);
+            batchDeleted = deleteResult.rowCount ?? 0;
+            totalDeleted += batchDeleted;
+        } while (batchDeleted >= BATCH_SIZE);
+        result.rowsDeleted += totalDeleted;
+        if (totalDeleted > 0) {
+            logger.info(`Deleted ${totalDeleted} rows from ${table} for org ${orgId}`);
+        }
+    }
+    return result;
+}
+/**
+ * Check if an org has exportable data that will be deleted.
+ * Used to prompt export-before-delete in the UI.
+ */
+export async function getExpiringDataSummary(pool, orgId, retentionDays, now = new Date()) {
+    const cutoff = getRetentionCutoff(retentionDays, now);
+    const { rows } = await pool.query(`SELECT COUNT(*) AS cnt, MIN(timestamp) AS oldest
+     FROM events
+     WHERE org_id = $1 AND timestamp < $2`, [orgId, cutoff.toISOString()]);
+    const row = rows[0];
+    return {
+        eventCount: Number(row?.cnt ?? 0),
+        oldestEvent: row?.oldest ?? null,
+        cutoffDate: cutoff.toISOString(),
+    };
+}
+//# sourceMappingURL=retention-job.js.map

package/dist/cloud/retention/retention-job.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"retention-job.js","sourceRoot":"","sources":["../../../src/cloud/retention/retention-job.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,EAGL,qBAAqB,EACrB,kBAAkB,GACnB,MAAM,uBAAuB,CAAC;AA2C/B,MAAM,aAAa,GAAoB;IACrC,IAAI,EAAE,GAAG,EAAE,GAAE,CAAC;IACd,IAAI,EAAE,GAAG,EAAE,GAAE,CAAC;IACd,KAAK,EAAE,GAAG,EAAE,GAAE,CAAC;CAChB,CAAC;AAEF,uDAAuD;AACvD,MAAM,YAAY,GAAG,CAAC,QAAQ,CAAU,CAAC;AACzC,MAAM,WAAW,GAAG,WAAW,CAAC;AAEhC,MAAM,kBAAkB,GAAG,oBAAoB,CAAC;AAChD,SAAS,UAAU,CAAC,IAAY;IAC9B,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC;AACpF,CAAC;AAED,oEAAoE;AAEpE;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CAAC,IAAsB;IAC1D,MAAM,EAAE,IAAI,EAAE,GAAG,GAAG,IAAI,IAAI,EAAE,EAAE,MAAM,GAAG,aAAa,EAAE,WAAW,GAAG,CAAC,EAAE,GAAG,IAAI,CAAC;IAEjF,MAAM,MAAM,GAAuB;QACjC,aAAa,EAAE,CAAC;QAChB,YAAY,EAAE,CAAC;QACf,YAAY,EAAE,CAAC;QACf,QAAQ,EAAE,EAAE;QACZ,MAAM,EAAE,EAAE;KACX,CAAC;IAEF,yCAAyC;IACzC,MAAM,IAAI,GAAG,MAAM,aAAa,CAAC,IAAI,CAAC,CAAC;IACvC,MAAM,CAAC,IAAI,CAAC,8BAA8B,IAAI,CAAC,MAAM,OAAO,CAAC,CAAC;IAE9D,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,qBAAqB,CAAC,GAAG,CAAC,CAAC;YAE7C,wCAAwC;YACxC,MAAM,QAAQ,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,GAAG,EAAE,SAAS,EAAE,GAAG,EAAE,WAAW,CAAC,CAAC;YACnF,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,CAAC;YAElC,uBAAuB;YACvB,MAAM,WAAW,GAAG,MAAM,gBAAgB,CAAC,IAAI,EAAE,GAAG,CAAC,KAAK,EAAE,YAAY,EAAE,SAAS,CAAC,kBAAkB,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;YACrH,MAAM,CAAC,YAAY,IAAI,WAAW,CAAC,iBAAiB,CAAC,MAAM,CAAC;YAC5D,MAAM,CAAC,YAAY,IAAI,WAAW,CAAC,WAAW,CAAC;YAE/C,2BAA2B;YAC3B,MAAM,WAAW,GAAG,MAAM,gBAAgB,CAAC,IAAI,EAAE,GAAG,CAAC,KAAK,EAAE,CAAC,WAAW,CAAC,EAAE,SAAS,CAAC,qBAAqB,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;YACzH,MAAM,CAAC,YAAY,IAAI,WAAW,CAAC,iBAAiB,CAAC,MAAM,CAAC;YAC5D,MAAM,CAAC,YAAY,IAAI,WAAW,CAAC,WAAW,CAAC;YAE/C,MAAM,CAAC,aAAa,EAAE,CAAC;YAEvB,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE;gBACpC,KAAK,EAAE,GAAG,CAAC,KAAK;gBAChB,OAAO,EAAE,WAAW,CAAC,iBAAiB,CAAC,MAAM,GAAG,WAAW,CAAC,iBAAiB,CAAC,MAAM;gBACpF,OAAO,EAAE,WAAW,CAAC,WAAW,GAAG,WAAW,CAAC,WAAW;aAC3D,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACjE,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;YACzD,MAAM,CAAC,KAAK,CAAC,4BAA4B,GAAG,CAAC,KAAK,KAAK,OAAO,EAAE,CAAC,CAAC;QACpE,CAAC;IACH,CAAC;IAED,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE;QACpC,aAAa,EAAE,MAAM,CAAC,aAAa;QACnC,YAAY,EAAE,MAAM,CAAC,YAAY;QACjC,YAAY,EAAE,MAAM,CAAC,YAAY;QACjC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM;QAChC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM;KAC7B,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,oEAAoE;AAEpE,KAAK,UAAU,aAAa,CAAC,IAAU;IACrC,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAC/B;;8BAE0B,CAC3B,CAAC;IACF,OAAQ,IAAmF,CAAC,GAAG,CAC7F,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACN,KAAK,EAAE,CAAC,CAAC,KAAK;QACd,IAAI,EAAE,CAAC,CAAC,IAAgB;QACxB,mBAAmB,EAAE,CAAC,CAAC,mBAAmB;KAC3C,CAAC,CACH,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAChC,IAAU,EACV,GAAqB,EACrB,SAA0B,EAC1B,GAAS,EACT,WAAmB;IAEnB,MAAM,QAAQ,GAAuB,EAAE,CAAC;IAExC,4DAA4D;IAC5D,MAAM,aAAa,GAAG,kBAAkB,CAAC,SAAS,CAAC,kBAAkB,GAAG,WAAW,EAAE,GAAG,CAAC,CAAC;IAC1F,MAAM,YAAY,GAAG,kBAAkB,CAAC,SAAS,CAAC,kBAAkB,EAAE,GAAG,CAAC,CAAC;IAE3E,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAC/B;8DAC0D,EAC1D,CAAC,GAAG,CAAC,KAAK,EAAE,YAAY,CAAC,WAAW,EAAE,EAAE,aAAa,CAAC,WAAW,EAAE,CAAC,CACrE,CAAC;IAEF,MAAM,KAAK,GAAG,MAAM,CAAE,IAAI,CAAC,CAAC,CAAqB,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC;IAC7D,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;QACd,QAAQ,CAAC,IAAI,CAAC;YACZ,KAAK,EAAE,GAAG,CAAC,KAAK;YAChB,IAAI,EAAE,oBAAoB;YAC1B,OAAO,EAAE,GAAG,KAAK,8BAA8B,WAAW,iCAAiC;YAC3F,eAAe,EAAE,WAAW;SAC7B,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,IAAU,EACV,KAAa,EACb,MAAyB,EACzB,aAAqB,EACrB,GAAS,EACT,SAA0B,aAAa;IAEvC,MAAM,MAAM,GAAG,kBAAkB,CAAC,aAAa,EAAE,GAAG,CAAC,CAAC;IACtD,MAAM,MAAM,GAAmB,EAAE,KAAK,EAAE,iBAAiB,EAAE,EAAE,EAAE,WAAW,EAAE,CAAC,EAAE,CAAC;IAEhF,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,UAAU,CAAC,KAAK,CAAC,CAAC;QAElB,MAAM,YAAY,GAAG,KAAK,KAAK,WAAW,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,WAAW,CAAC;QAExE,qEAAqE;QACrE,MAAM,UAAU,GAAG,KAAK,CAAC;QACzB,IAAI,YAAY,GAAG,CAAC,CAAC;QACrB,IAAI,YAAoB,CAAC;QACzB,GAAG,CAAC;YACF,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,KAAK,CACnC,eAAe,KAAK;6BACC,KAAK,0BAA0B,YAAY,eAAe,UAAU;UACvF,EACF,CAAC,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,CAAC,CAC9B,CAAC;YACF,YAAY,GAAI,YAAqC,CAAC,QAAQ,IAAI,CAAC,CAAC;YACpE,YAAY,IAAI,YAAY,CAAC;QAC/B,CAAC,QAAQ,YAAY,IAAI,UAAU,EAAE;QAErC,MAAM,CAAC,WAAW,IAAI,YAAY,CAAC;QAEnC,IAAI,YAAY,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,CAAC,IAAI,CAAC,WAAW,YAAY,cAAc,KAAK,YAAY,KAAK,EAAE,CAAC,CAAC;QAC7E,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,IAAU,EACV,KAAa,EACb,aAAqB,EACrB,MAAY,IAAI,IAAI,EAAE;IAEtB,MAAM,MAAM,GAAG,kBAAkB,CAAC,aAAa,EAAE,GAAG,CAAC,CAAC;IAEtD,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,KAAK,CAC/B;;0CAEsC,EACtC,CAAC,KAAK,EAAE,MAAM,CAAC,WAAW,EAAE,CAAC,CAC9B,CAAC;IAEF,MAAM,GAAG,GAAG,IAAI,CAAC,CAAC,CAAuD,CAAC;IAC1E,OAAO;QACL,UAAU,EAAE,MAAM,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QACjC,WAAW,EAAE,GAAG,EAAE,MAAM,IAAI,IAAI;QAChC,UAAU,EAAE,MAAM,CAAC,WAAW,EAAE;KACjC,CAAC;AACJ,CAAC"}

package/dist/cloud/retention/retention-policy.d.ts

@@ -0,0 +1,27 @@
+/**
+ * Data Retention Policies (S-8.1)
+ *
+ * Per-tier retention windows. Orgs can override with custom settings (Enterprise).
+ */
+import type { TierName } from '../billing/stripe-client.js';
+export interface RetentionPolicy {
+    eventRetentionDays: number;
+    auditLogRetentionDays: number;
+}
+/** Default retention per tier (architecture §11.1) */
+export declare const TIER_RETENTION: Record<TierName, RetentionPolicy>;
+export interface OrgRetentionInfo {
+    orgId: string;
+    plan: TierName;
+    customRetentionDays: number | null;
+}
+/**
+ * Resolve effective retention days for an org.
+ * Enterprise orgs may have custom retention; others use tier defaults.
+ */
+export declare function getEffectiveRetention(org: OrgRetentionInfo): RetentionPolicy;
+/**
+ * Get the cutoff date for retention (events older than this should be purged).
+ */
+export declare function getRetentionCutoff(retentionDays: number, now?: Date): Date;
+//# sourceMappingURL=retention-policy.d.ts.map

package/dist/cloud/retention/retention-policy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"retention-policy.d.ts","sourceRoot":"","sources":["../../../src/cloud/retention/retention-policy.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,6BAA6B,CAAC;AAE5D,MAAM,WAAW,eAAe;IAC9B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,qBAAqB,EAAE,MAAM,CAAC;CAC/B;AAED,sDAAsD;AACtD,eAAO,MAAM,cAAc,EAAE,MAAM,CAAC,QAAQ,EAAE,eAAe,CAK5D,CAAC;AAEF,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,QAAQ,CAAC;IACf,mBAAmB,EAAE,MAAM,GAAG,IAAI,CAAC;CACpC;AAED;;;GAGG;AACH,wBAAgB,qBAAqB,CAAC,GAAG,EAAE,gBAAgB,GAAG,eAAe,CAW5E;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,aAAa,EAAE,MAAM,EAAE,GAAG,GAAE,IAAiB,GAAG,IAAI,CAKtF"}

package/dist/cloud/retention/retention-policy.js

@@ -0,0 +1,36 @@
+/**
+ * Data Retention Policies (S-8.1)
+ *
+ * Per-tier retention windows. Orgs can override with custom settings (Enterprise).
+ */
+/** Default retention per tier (architecture §11.1) */
+export const TIER_RETENTION = {
+    free: { eventRetentionDays: 7, auditLogRetentionDays: 90 },
+    pro: { eventRetentionDays: 30, auditLogRetentionDays: 90 },
+    team: { eventRetentionDays: 90, auditLogRetentionDays: 365 },
+    enterprise: { eventRetentionDays: 365, auditLogRetentionDays: 365 },
+};
+/**
+ * Resolve effective retention days for an org.
+ * Enterprise orgs may have custom retention; others use tier defaults.
+ */
+export function getEffectiveRetention(org) {
+    const tierDefaults = TIER_RETENTION[org.plan] ?? TIER_RETENTION.free;
+    if (org.customRetentionDays != null && org.plan === 'enterprise') {
+        return {
+            eventRetentionDays: org.customRetentionDays,
+            auditLogRetentionDays: Math.max(org.customRetentionDays, tierDefaults.auditLogRetentionDays),
+        };
+    }
+    return tierDefaults;
+}
+/**
+ * Get the cutoff date for retention (events older than this should be purged).
+ */
+export function getRetentionCutoff(retentionDays, now = new Date()) {
+    const cutoff = new Date(now);
+    cutoff.setUTCDate(cutoff.getUTCDate() - retentionDays);
+    cutoff.setUTCHours(0, 0, 0, 0);
+    return cutoff;
+}
+//# sourceMappingURL=retention-policy.js.map

package/dist/cloud/retention/retention-policy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"retention-policy.js","sourceRoot":"","sources":["../../../src/cloud/retention/retention-policy.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AASH,sDAAsD;AACtD,MAAM,CAAC,MAAM,cAAc,GAAsC;IAC/D,IAAI,EAAE,EAAE,kBAAkB,EAAE,CAAC,EAAE,qBAAqB,EAAE,EAAE,EAAE;IAC1D,GAAG,EAAE,EAAE,kBAAkB,EAAE,EAAE,EAAE,qBAAqB,EAAE,EAAE,EAAE;IAC1D,IAAI,EAAE,EAAE,kBAAkB,EAAE,EAAE,EAAE,qBAAqB,EAAE,GAAG,EAAE;IAC5D,UAAU,EAAE,EAAE,kBAAkB,EAAE,GAAG,EAAE,qBAAqB,EAAE,GAAG,EAAE;CACpE,CAAC;AAQF;;;GAGG;AACH,MAAM,UAAU,qBAAqB,CAAC,GAAqB;IACzD,MAAM,YAAY,GAAG,cAAc,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,cAAc,CAAC,IAAI,CAAC;IAErE,IAAI,GAAG,CAAC,mBAAmB,IAAI,IAAI,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;QACjE,OAAO;YACL,kBAAkB,EAAE,GAAG,CAAC,mBAAmB;YAC3C,qBAAqB,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,mBAAmB,EAAE,YAAY,CAAC,qBAAqB,CAAC;SAC7F,CAAC;IACJ,CAAC;IAED,OAAO,YAAY,CAAC;AACtB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAAC,aAAqB,EAAE,MAAY,IAAI,IAAI,EAAE;IAC9E,MAAM,MAAM,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC;IAC7B,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,UAAU,EAAE,GAAG,aAAa,CAAC,CAAC;IACvD,MAAM,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;IAC/B,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/cloud/routes/api-key-routes.d.ts

@@ -0,0 +1,38 @@
+/**
+ * API Key Management Routes (S-7.3)
+ *
+ * Express-compatible route handlers for API key CRUD.
+ * Mounted at /api/cloud/orgs/:orgId/api-keys
+ */
+import type { MigrationClient } from '../migrate.js';
+import type { AuditLogService } from '../auth/audit-log.js';
+export interface ApiKeyRoutesDeps {
+    db: MigrationClient;
+    auditLog?: AuditLogService;
+}
+export declare function createApiKeyRouteHandlers(deps: ApiKeyRoutesDeps): {
+    /** GET /api/cloud/orgs/:orgId/api-keys — list all keys */
+    listKeys(orgId: string): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** POST /api/cloud/orgs/:orgId/api-keys — create a key */
+    createKey(orgId: string, userId: string, body: {
+        name: string;
+        environment: string;
+    }): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** DELETE /api/cloud/orgs/:orgId/api-keys/:keyId — revoke a key */
+    revokeKey(orgId: string, keyId: string, userId: string): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** GET /api/cloud/orgs/:orgId/api-keys/limit — get key limit info */
+    getKeyLimit(orgId: string): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+};
+//# sourceMappingURL=api-key-routes.d.ts.map

package/dist/cloud/routes/api-key-routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-key-routes.d.ts","sourceRoot":"","sources":["../../../src/cloud/routes/api-key-routes.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAE5D,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,eAAe,CAAC;IACpB,QAAQ,CAAC,EAAE,eAAe,CAAC;CAC5B;AASD,wBAAgB,yBAAyB,CAAC,IAAI,EAAE,gBAAgB;IAI5D,0DAA0D;oBACpC,MAAM,GAAG,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IAKzE,0DAA0D;qBAEjD,MAAM,UACL,MAAM,QACR;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE,GAC1C,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IA8B7C,mEAAmE;qBAE1D,MAAM,SACN,MAAM,UACL,MAAM,GACb,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IAkB7C,qEAAqE;uBAC5C,MAAM,GAAG,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;EAW/E"}

package/dist/cloud/routes/api-key-routes.js

@@ -0,0 +1,84 @@
+/**
+ * API Key Management Routes (S-7.3)
+ *
+ * Express-compatible route handlers for API key CRUD.
+ * Mounted at /api/cloud/orgs/:orgId/api-keys
+ */
+import { ApiKeyService, ApiKeyError } from '../auth/api-keys.js';
+const TIER_KEY_LIMITS = {
+    free: 2,
+    pro: 10,
+    team: 50,
+    enterprise: 200,
+};
+export function createApiKeyRouteHandlers(deps) {
+    const keyService = new ApiKeyService(deps.db);
+    return {
+        /** GET /api/cloud/orgs/:orgId/api-keys — list all keys */
+        async listKeys(orgId) {
+            const keys = await keyService.list(orgId);
+            return { status: 200, body: keys };
+        },
+        /** POST /api/cloud/orgs/:orgId/api-keys — create a key */
+        async createKey(orgId, userId, body) {
+            try {
+                const result = await keyService.create({
+                    orgId,
+                    name: body.name,
+                    environment: body.environment,
+                    createdBy: userId,
+                });
+                if (deps.auditLog) {
+                    await deps.auditLog.write({
+                        org_id: orgId,
+                        actor_type: 'user',
+                        actor_id: userId,
+                        action: 'api_key.created',
+                        resource_type: 'api_key',
+                        resource_id: result.record.id,
+                        details: { name: body.name, environment: body.environment },
+                        ip_address: null,
+                        result: 'success',
+                    });
+                }
+                return { status: 201, body: result };
+            }
+            catch (err) {
+                if (err instanceof ApiKeyError) {
+                    return { status: 422, body: { error: err.message, code: err.code } };
+                }
+                throw err;
+            }
+        },
+        /** DELETE /api/cloud/orgs/:orgId/api-keys/:keyId — revoke a key */
+        async revokeKey(orgId, keyId, userId) {
+            const ok = await keyService.revoke(orgId, keyId);
+            if (ok && deps.auditLog) {
+                await deps.auditLog.write({
+                    org_id: orgId,
+                    actor_type: 'user',
+                    actor_id: userId,
+                    action: 'api_key.revoked',
+                    resource_type: 'api_key',
+                    resource_id: keyId,
+                    details: {},
+                    ip_address: null,
+                    result: 'success',
+                });
+            }
+            return { status: ok ? 200 : 404, body: { ok } };
+        },
+        /** GET /api/cloud/orgs/:orgId/api-keys/limit — get key limit info */
+        async getKeyLimit(orgId) {
+            const count = await keyService.countActive(orgId);
+            const orgResult = await deps.db.query(`SELECT plan FROM orgs WHERE id = $1`, [orgId]);
+            const plan = orgResult.rows[0]?.plan ?? 'free';
+            const limit = TIER_KEY_LIMITS[plan] ?? TIER_KEY_LIMITS.free;
+            return {
+                status: 200,
+                body: { current: count, limit, plan },
+            };
+        },
+    };
+}
+//# sourceMappingURL=api-key-routes.js.map

package/dist/cloud/routes/api-key-routes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-key-routes.js","sourceRoot":"","sources":["../../../src/cloud/routes/api-key-routes.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AASjE,MAAM,eAAe,GAA2B;IAC9C,IAAI,EAAE,CAAC;IACP,GAAG,EAAE,EAAE;IACP,IAAI,EAAE,EAAE;IACR,UAAU,EAAE,GAAG;CAChB,CAAC;AAEF,MAAM,UAAU,yBAAyB,CAAC,IAAsB;IAC9D,MAAM,UAAU,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAE9C,OAAO;QACL,0DAA0D;QAC1D,KAAK,CAAC,QAAQ,CAAC,KAAa;YAC1B,MAAM,IAAI,GAAG,MAAM,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC1C,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;QACrC,CAAC;QAED,0DAA0D;QAC1D,KAAK,CAAC,SAAS,CACb,KAAa,EACb,MAAc,EACd,IAA2C;YAE3C,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC;oBACrC,KAAK;oBACL,IAAI,EAAE,IAAI,CAAC,IAAI;oBACf,WAAW,EAAE,IAAI,CAAC,WAAkB;oBACpC,SAAS,EAAE,MAAM;iBAClB,CAAC,CAAC;gBACH,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;oBAClB,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC;wBACxB,MAAM,EAAE,KAAK;wBACb,UAAU,EAAE,MAAM;wBAClB,QAAQ,EAAE,MAAM;wBAChB,MAAM,EAAE,iBAAiB;wBACzB,aAAa,EAAE,SAAS;wBACxB,WAAW,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE;wBAC7B,OAAO,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,WAAW,EAAE,IAAI,CAAC,WAAW,EAAE;wBAC3D,UAAU,EAAE,IAAI;wBAChB,MAAM,EAAE,SAAS;qBAClB,CAAC,CAAC;gBACL,CAAC;gBACD,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;YACvC,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,GAAG,YAAY,WAAW,EAAE,CAAC;oBAC/B,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,GAAG,CAAC,OAAO,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,EAAE,CAAC;gBACvE,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QAED,mEAAmE;QACnE,KAAK,CAAC,SAAS,CACb,KAAa,EACb,KAAa,EACb,MAAc;YAEd,MAAM,EAAE,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;YACjD,IAAI,EAAE,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACxB,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC;oBACxB,MAAM,EAAE,KAAK;oBACb,UAAU,EAAE,MAAM;oBAClB,QAAQ,EAAE,MAAM;oBAChB,MAAM,EAAE,iBAAiB;oBACzB,aAAa,EAAE,SAAS;oBACxB,WAAW,EAAE,KAAK;oBAClB,OAAO,EAAE,EAAE;oBACX,UAAU,EAAE,IAAI;oBAChB,MAAM,EAAE,SAAS;iBAClB,CAAC,CAAC;YACL,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC;QAClD,CAAC;QAED,qEAAqE;QACrE,KAAK,CAAC,WAAW,CAAC,KAAa;YAC7B,MAAM,KAAK,GAAG,MAAM,UAAU,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;YAClD,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,qCAAqC,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC;YACtF,MAAM,IAAI,GAAI,SAAS,CAAC,IAAc,CAAC,CAAC,CAAC,EAAE,IAAI,IAAI,MAAM,CAAC;YAC1D,MAAM,KAAK,GAAG,eAAe,CAAC,IAAI,CAAC,IAAI,eAAe,CAAC,IAAI,CAAC;YAC5D,OAAO;gBACL,MAAM,EAAE,GAAG;gBACX,IAAI,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE;aACtC,CAAC;QACJ,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/cloud/routes/audit-routes.d.ts

@@ -0,0 +1,36 @@
+/**
+ * Audit Log Routes (S-7.6)
+ *
+ * Express-compatible route handlers for audit log page:
+ * - Query with filters (action, actor, time range)
+ * - Paginated results
+ * - Export to JSON
+ */
+import type { AuditLogService } from '../auth/audit-log.js';
+export interface AuditRoutesDeps {
+    auditLog: AuditLogService;
+}
+export declare function createAuditRouteHandlers(deps: AuditRoutesDeps): {
+    /** GET /api/cloud/orgs/:orgId/audit-log?action=&actor=&from=&to=&limit=&offset= */
+    queryAuditLog(orgId: string, query: {
+        action?: string;
+        actor?: string;
+        from?: string;
+        to?: string;
+        limit?: string;
+        offset?: string;
+    }): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** GET /api/cloud/orgs/:orgId/audit-log/export?from=&to= */
+    exportAuditLog(orgId: string, query: {
+        from?: string;
+        to?: string;
+    }): Promise<{
+        status: number;
+        body: unknown;
+        headers?: Record<string, string>;
+    }>;
+};
+//# sourceMappingURL=audit-routes.d.ts.map

package/dist/cloud/routes/audit-routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-routes.d.ts","sourceRoot":"","sources":["../../../src/cloud/routes/audit-routes.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAe,MAAM,sBAAsB,CAAC;AAEzE,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,eAAe,CAAC;CAC3B;AAED,wBAAgB,wBAAwB,CAAC,IAAI,EAAE,eAAe;IAE1D,mFAAmF;yBAE1E,MAAM,SACN;QACL,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,EAAE,CAAC,EAAE,MAAM,CAAC;QACZ,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB,GACA,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IAuB7C,4DAA4D;0BAEnD,MAAM,SACN;QAAE,IAAI,CAAC,EAAE,MAAM,CAAC;QAAC,EAAE,CAAC,EAAE,MAAM,CAAA;KAAE,GACpC,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;KAAE,CAAC;EAgBlF"}

package/dist/cloud/routes/audit-routes.js

@@ -0,0 +1,47 @@
+/**
+ * Audit Log Routes (S-7.6)
+ *
+ * Express-compatible route handlers for audit log page:
+ * - Query with filters (action, actor, time range)
+ * - Paginated results
+ * - Export to JSON
+ */
+export function createAuditRouteHandlers(deps) {
+    return {
+        /** GET /api/cloud/orgs/:orgId/audit-log?action=&actor=&from=&to=&limit=&offset= */
+        async queryAuditLog(orgId, query) {
+            const filters = {
+                org_id: orgId,
+                action: query.action,
+                actor_id: query.actor,
+                from: query.from ? new Date(query.from) : undefined,
+                to: query.to ? new Date(query.to) : undefined,
+                limit: query.limit ? parseInt(query.limit, 10) : 50,
+                offset: query.offset ? parseInt(query.offset, 10) : 0,
+            };
+            const result = await deps.auditLog.query(filters);
+            return {
+                status: 200,
+                body: {
+                    entries: result.entries,
+                    total: result.total,
+                    limit: filters.limit,
+                    offset: filters.offset,
+                },
+            };
+        },
+        /** GET /api/cloud/orgs/:orgId/audit-log/export?from=&to= */
+        async exportAuditLog(orgId, query) {
+            const entries = await deps.auditLog.export(orgId, query.from ? new Date(query.from) : undefined, query.to ? new Date(query.to) : undefined);
+            return {
+                status: 200,
+                body: entries,
+                headers: {
+                    'Content-Type': 'application/json',
+                    'Content-Disposition': `attachment; filename="audit-log-${orgId}.json"`,
+                },
+            };
+        },
+    };
+}
+//# sourceMappingURL=audit-routes.js.map

package/dist/cloud/routes/audit-routes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-routes.js","sourceRoot":"","sources":["../../../src/cloud/routes/audit-routes.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAQH,MAAM,UAAU,wBAAwB,CAAC,IAAqB;IAC5D,OAAO;QACL,mFAAmF;QACnF,KAAK,CAAC,aAAa,CACjB,KAAa,EACb,KAOC;YAED,MAAM,OAAO,GAA4C;gBACvD,MAAM,EAAE,KAAK;gBACb,MAAM,EAAE,KAAK,CAAC,MAAiC;gBAC/C,QAAQ,EAAE,KAAK,CAAC,KAAK;gBACrB,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;gBACnD,EAAE,EAAE,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;gBAC7C,KAAK,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE;gBACnD,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;aACtD,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAClD,OAAO;gBACL,MAAM,EAAE,GAAG;gBACX,IAAI,EAAE;oBACJ,OAAO,EAAE,MAAM,CAAC,OAAO;oBACvB,KAAK,EAAE,MAAM,CAAC,KAAK;oBACnB,KAAK,EAAE,OAAO,CAAC,KAAK;oBACpB,MAAM,EAAE,OAAO,CAAC,MAAM;iBACvB;aACF,CAAC;QACJ,CAAC;QAED,4DAA4D;QAC5D,KAAK,CAAC,cAAc,CAClB,KAAa,EACb,KAAqC;YAErC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,CACxC,KAAK,EACL,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,EAC7C,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAC1C,CAAC;YACF,OAAO;gBACL,MAAM,EAAE,GAAG;gBACX,IAAI,EAAE,OAAO;gBACb,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,qBAAqB,EAAE,mCAAmC,KAAK,QAAQ;iBACxE;aACF,CAAC;QACJ,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/cloud/routes/billing-routes.d.ts

@@ -0,0 +1,51 @@
+/**
+ * Billing Routes (S-7.5)
+ *
+ * Express-compatible route handlers for billing page data:
+ * - Current plan & trial status
+ * - Invoice history
+ * - Plan upgrade/downgrade
+ * - Payment method management (Stripe portal)
+ */
+import type { MigrationClient } from '../migrate.js';
+import type { BillingService } from '../billing/billing-service.js';
+import type { InvoiceService } from '../billing/invoice-service.js';
+import type { TrialService } from '../billing/trial-service.js';
+import type { AuditLogService } from '../auth/audit-log.js';
+export interface BillingRoutesDeps {
+    db: MigrationClient;
+    billingService: BillingService;
+    invoiceService: InvoiceService;
+    trialService: TrialService;
+    auditLog?: AuditLogService;
+}
+export declare function createBillingRouteHandlers(deps: BillingRoutesDeps): {
+    /** GET /api/cloud/orgs/:orgId/billing — billing overview */
+    getBillingOverview(orgId: string, userId: string): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** GET /api/cloud/orgs/:orgId/billing/invoices — invoice history */
+    getInvoices(orgId: string, limit?: number, offset?: number): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** POST /api/cloud/orgs/:orgId/billing/upgrade — upgrade plan */
+    upgradePlan(orgId: string, userId: string, body: {
+        plan: string;
+    }): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** POST /api/cloud/orgs/:orgId/billing/downgrade — downgrade to free */
+    downgradePlan(orgId: string, userId: string): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+    /** POST /api/cloud/orgs/:orgId/billing/portal — create Stripe portal session URL */
+    createPortalSession(orgId: string): Promise<{
+        status: number;
+        body: unknown;
+    }>;
+};
+//# sourceMappingURL=billing-routes.d.ts.map

package/dist/cloud/routes/billing-routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"billing-routes.d.ts","sourceRoot":"","sources":["../../../src/cloud/routes/billing-routes.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AACpE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AACpE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,6BAA6B,CAAC;AAChE,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAI5D,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,eAAe,CAAC;IACpB,cAAc,EAAE,cAAc,CAAC;IAC/B,cAAc,EAAE,cAAc,CAAC;IAC/B,YAAY,EAAE,YAAY,CAAC;IAC3B,QAAQ,CAAC,EAAE,eAAe,CAAC;CAC5B;AAED,wBAAgB,0BAA0B,CAAC,IAAI,EAAE,iBAAiB;IAE9D,4DAA4D;8BAEnD,MAAM,UACL,MAAM,GACb,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IAwC7C,oEAAoE;uBAE3D,MAAM,oCAGZ,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IAK7C,iEAAiE;uBAExD,MAAM,UACL,MAAM,QACR;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,GACrB,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IA0B7C,wEAAwE;yBAE/D,MAAM,UACL,MAAM,GACb,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IAqB7C,oFAAoF;+BAE3E,MAAM,GACZ,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;EAiBhD"}