@akirilyuk/supabase-in-memory-server 1.0.0

package/dist/memory-server/MemorySupabaseHttpServer.js

@@ -0,0 +1,91 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MemorySupabaseHttpServer = void 0;
+const auth_memory_js_1 = require("../lib/auth-memory.js");
+const memory_store_js_1 = require("../lib/memory-store.js");
+const auth_routes_js_1 = require("./auth-routes.js");
+const http_utils_js_1 = require("./http-utils.js");
+const log_meta_js_1 = require("./log-meta.js");
+const rest_routes_js_1 = require("./rest-routes.js");
+/**
+ * HTTP application: validates `apikey`, then dispatches to auth or REST handlers.
+ * Owns {@link MemoryStore} and {@link AuthMemory} for the lifetime of the server.
+ */
+class MemorySupabaseHttpServer {
+    anonKey;
+    serviceRoleKey;
+    logger;
+    store = new memory_store_js_1.MemoryStore();
+    auth = new auth_memory_js_1.AuthMemory();
+    constructor(anonKey, serviceRoleKey, logger) {
+        this.anonKey = anonKey;
+        this.serviceRoleKey = serviceRoleKey;
+        this.logger = logger;
+    }
+    buildContext(req, res, requestId, logger) {
+        return {
+            req,
+            res,
+            auth: this.auth,
+            store: this.store,
+            serviceRoleKey: this.serviceRoleKey,
+            logger,
+            requestId,
+        };
+    }
+    /**
+     * Full request pipeline (OPTIONS, apikey check, auth routes, REST routes, 404).
+     */
+    async handleRequest(req, res) {
+        const requestId = (0, log_meta_js_1.newHttpRequestId)();
+        const reqLogger = this.logger.child({ requestId });
+        let method = 'GET';
+        let path = '/';
+        try {
+            const url = new URL(req.url ?? '/', 'http://localhost');
+            path = (0, http_utils_js_1.normalizeRequestPath)(url);
+            method = req.method ?? 'GET';
+            const query = (0, log_meta_js_1.postgrestQueryForLog)(url.searchParams);
+            reqLogger.debug('Incoming request', { requestId, method, path, query });
+            if (method === 'OPTIONS') {
+                (0, http_utils_js_1.handleOptions)(res);
+                return;
+            }
+            if (!(0, http_utils_js_1.isAuthorizedProjectRequest)(req, this.anonKey, this.serviceRoleKey)) {
+                reqLogger.debug('Rejected request: missing or invalid apikey header', {
+                    method,
+                    path,
+                    query,
+                });
+                (0, http_utils_js_1.sendUnauthorizedApiKey)(res);
+                return;
+            }
+            const ctx = this.buildContext(req, res, requestId, reqLogger);
+            if (await (0, auth_routes_js_1.dispatchAuthRoutes)(ctx, path, method, url))
+                return;
+            if (await (0, rest_routes_js_1.dispatchRestRoutes)(ctx, path, method, url))
+                return;
+            reqLogger.debug('No route matched', { method, path, query });
+            (0, http_utils_js_1.sendJson)(res, 404, { message: 'Not found', path });
+        }
+        catch (e) {
+            const err = e;
+            reqLogger.error('Unhandled error while handling HTTP request', {
+                message: err.message,
+                stack: err.stack,
+            });
+            (0, http_utils_js_1.sendJson)(res, 500, { message: err.message });
+        }
+        finally {
+            reqLogger.debug('Request finished', { requestId, method, path });
+        }
+    }
+    /** For `http.createServer` — wraps async handler without floating promises. */
+    createNodeListener() {
+        return (req, res) => {
+            void this.handleRequest(req, res);
+        };
+    }
+}
+exports.MemorySupabaseHttpServer = MemorySupabaseHttpServer;
+//# sourceMappingURL=MemorySupabaseHttpServer.js.map

package/dist/memory-server/MemorySupabaseHttpServer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"MemorySupabaseHttpServer.js","sourceRoot":"","sources":["../../src/memory-server/MemorySupabaseHttpServer.ts"],"names":[],"mappings":";;;AAIA,0DAAmD;AACnD,4DAAqD;AACrD,qDAAsD;AAEtD,mDAMyB;AACzB,+CAAuE;AACvE,qDAAsD;AAEtD;;;GAGG;AACH,MAAa,wBAAwB;IAKhB;IACA;IACA;IANV,KAAK,GAAG,IAAI,6BAAW,EAAE,CAAC;IAC1B,IAAI,GAAG,IAAI,2BAAU,EAAE,CAAC;IAEjC,YACmB,OAAe,EACf,cAAsB,EACtB,MAAc;QAFd,YAAO,GAAP,OAAO,CAAQ;QACf,mBAAc,GAAd,cAAc,CAAQ;QACtB,WAAM,GAAN,MAAM,CAAQ;IAC9B,CAAC;IAEI,YAAY,CAClB,GAAoB,EACpB,GAAmB,EACnB,SAAiB,EACjB,MAAc;QAEd,OAAO;YACL,GAAG;YACH,GAAG;YACH,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,cAAc,EAAE,IAAI,CAAC,cAAc;YACnC,MAAM;YACN,SAAS;SACV,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,GAAoB,EAAE,GAAmB;QAC3D,MAAM,SAAS,GAAG,IAAA,8BAAgB,GAAE,CAAC;QACrC,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC;QACnD,IAAI,MAAM,GAAG,KAAK,CAAC;QACnB,IAAI,IAAI,GAAG,GAAG,CAAC;QACf,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,GAAG,EAAE,kBAAkB,CAAC,CAAC;YACxD,IAAI,GAAG,IAAA,oCAAoB,EAAC,GAAG,CAAC,CAAC;YACjC,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,KAAK,CAAC;YAC7B,MAAM,KAAK,GAAG,IAAA,kCAAoB,EAAC,GAAG,CAAC,YAAY,CAAC,CAAC;YAErD,SAAS,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YAExE,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;gBACzB,IAAA,6BAAa,EAAC,GAAG,CAAC,CAAC;gBACnB,OAAO;YACT,CAAC;YAED,IAAI,CAAC,IAAA,0CAA0B,EAAC,GAAG,EAAE,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,cAAc,CAAC,EAAE,CAAC;gBACxE,SAAS,CAAC,KAAK,CAAC,oDAAoD,EAAE;oBACpE,MAAM;oBACN,IAAI;oBACJ,KAAK;iBACN,CAAC,CAAC;gBACH,IAAA,sCAAsB,EAAC,GAAG,CAAC,CAAC;gBAC5B,OAAO;YACT,CAAC;YAED,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,GAAG,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;YAE9D,IAAI,MAAM,IAAA,mCAAkB,EAAC,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC;gBAAE,OAAO;YAC7D,IAAI,MAAM,IAAA,mCAAkB,EAAC,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,CAAC;gBAAE,OAAO;YAE7D,SAAS,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YAC7D,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,EAAE,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC;QACrD,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAG,CAAU,CAAC;YACvB,SAAS,CAAC,KAAK,CAAC,6CAA6C,EAAE;gBAC7D,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,KAAK,EAAE,GAAG,CAAC,KAAK;aACjB,CAAC,CAAC;YACH,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;QAC/C,CAAC;gBAAS,CAAC;YACT,SAAS,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;QACnE,CAAC;IACH,CAAC;IAED,+EAA+E;IAC/E,kBAAkB;QAChB,OAAO,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YAClB,KAAK,IAAI,CAAC,aAAa,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QACpC,CAAC,CAAC;IACJ,CAAC;CACF;AAnFD,4DAmFC"}

package/dist/memory-server/auth-routes.d.ts

@@ -0,0 +1,3 @@
+import type { MemorySupabaseHandlerContext } from './handler-context.js';
+export declare function dispatchAuthRoutes(ctx: MemorySupabaseHandlerContext, path: string, method: string, url: URL): Promise<boolean>;
+//# sourceMappingURL=auth-routes.d.ts.map

package/dist/memory-server/auth-routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-routes.d.ts","sourceRoot":"","sources":["../../src/memory-server/auth-routes.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,sBAAsB,CAAC;AAiBzE,wBAAsB,kBAAkB,CACtC,GAAG,EAAE,4BAA4B,EACjC,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,GAAG,EAAE,GAAG,GACP,OAAO,CAAC,OAAO,CAAC,CA0BlB"}

package/dist/memory-server/auth-routes.js

@@ -0,0 +1,217 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.dispatchAuthRoutes = dispatchAuthRoutes;
+const http_utils_js_1 = require("./http-utils.js");
+const log_meta_js_1 = require("./log-meta.js");
+function userMetadataFromBody(body) {
+    return typeof body.data === 'object' && body.data != null
+        ? body.data
+        : {};
+}
+async function dispatchAuthRoutes(ctx, path, method, url) {
+    const { logger } = ctx;
+    if (path === '/auth/v1/admin/users' && method === 'GET') {
+        handleAdminListUsers(ctx, url);
+        return true;
+    }
+    if (path === '/auth/v1/signup' && method === 'POST') {
+        await handleSignup(ctx);
+        return true;
+    }
+    if (path === '/auth/v1/token' && method === 'POST') {
+        await handleToken(ctx, url);
+        return true;
+    }
+    if (path === '/auth/v1/logout' && method === 'POST') {
+        handleLogout(ctx);
+        return true;
+    }
+    if (path === '/auth/v1/user' && method === 'GET') {
+        handleGetUser(ctx);
+        return true;
+    }
+    if (path.startsWith('/auth/')) {
+        logger.debug('Auth path not handled by mock', { path, method });
+    }
+    return false;
+}
+function handleAdminListUsers(ctx, url) {
+    const { res, auth, serviceRoleKey, logger } = ctx;
+    if (!(0, http_utils_js_1.isServiceRoleRequest)(ctx.req, serviceRoleKey)) {
+        logger.warn('Auth admin listUsers denied: service role key required');
+        (0, http_utils_js_1.sendJson)(res, 403, {
+            error: 'not_admin',
+            message: 'Admin API requires the service role key',
+        });
+        return;
+    }
+    const allUsers = auth.listUsers();
+    const pageRaw = Number.parseInt(url.searchParams.get('page') ?? '1', 10);
+    const page = Math.max(1, Number.isNaN(pageRaw) ? 1 : pageRaw);
+    const perRaw = Number.parseInt(url.searchParams.get('per_page') ?? '50', 10);
+    const perPage = Math.min(1000, Math.max(1, Number.isNaN(perRaw) ? 50 : perRaw));
+    const start = (page - 1) * perPage;
+    const users = allUsers.slice(start, start + perPage);
+    (0, http_utils_js_1.setCors)(res);
+    res.setHeader('Content-Type', 'application/json');
+    res.setHeader('x-total-count', String(allUsers.length));
+    res.writeHead(200);
+    res.end(JSON.stringify({ users }));
+    logger.debug('Auth admin listUsers', {
+        page,
+        perPage,
+        totalUsers: allUsers.length,
+        returnedUsers: users.length,
+        userIds: users.map((u) => u.id),
+    });
+}
+async function handleSignup(ctx) {
+    const { req, res, auth, logger } = ctx;
+    const raw = await (0, http_utils_js_1.readBody)(req);
+    const body = (0, http_utils_js_1.parseJsonBody)(raw);
+    try {
+        let session;
+        if (typeof body.email === 'string' && typeof body.password === 'string') {
+            session = auth.signUpEmail(body.email, body.password, userMetadataFromBody(body));
+        }
+        else if (typeof body.phone === 'string' && typeof body.password === 'string') {
+            session = auth.signUpPhone(body.phone, body.password, userMetadataFromBody(body));
+        }
+        else {
+            logger.debug('Auth signup rejected: missing email/phone or password', {
+                bodyKeys: Object.keys(body),
+                body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+            });
+            (0, http_utils_js_1.sendJson)(res, 400, {
+                error: 'invalid_request',
+                error_description: 'email or phone and password required',
+            });
+            return;
+        }
+        logger.debug('Auth signup succeeded', {
+            channel: typeof body.email === 'string' ? 'email' : 'phone',
+            userId: session.user.id,
+            body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+        });
+        (0, http_utils_js_1.sendJson)(res, 200, session);
+    }
+    catch (e) {
+        const err = e;
+        const status = err.status ?? 500;
+        if (status >= 500) {
+            logger.error('Auth signup failed', {
+                message: err.message,
+                status,
+                body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+            });
+        }
+        else {
+            logger.debug('Auth signup rejected', {
+                message: err.message,
+                status,
+                body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+            });
+        }
+        (0, http_utils_js_1.sendJson)(res, status, {
+            error: 'signup_failed',
+            msg: err.message,
+        });
+    }
+}
+async function handleToken(ctx, url) {
+    const { req, res, auth, logger } = ctx;
+    const grant = url.searchParams.get('grant_type');
+    const raw = await (0, http_utils_js_1.readBody)(req);
+    const body = (0, http_utils_js_1.parseJsonBody)(raw);
+    try {
+        if (grant === 'password') {
+            let session;
+            if (typeof body.email === 'string' && typeof body.password === 'string') {
+                session = auth.signInEmail(body.email, body.password);
+            }
+            else if (typeof body.phone === 'string' && typeof body.password === 'string') {
+                session = auth.signInPhone(body.phone, body.password);
+            }
+            else {
+                logger.debug('Auth token password grant: missing credentials fields', {
+                    body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+                });
+                (0, http_utils_js_1.sendJson)(res, 400, { error: 'invalid_grant', error_description: 'Missing fields' });
+                return;
+            }
+            logger.debug('Auth token password grant succeeded', {
+                channel: typeof body.email === 'string' ? 'email' : 'phone',
+                userId: session.user.id,
+                body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+            });
+            (0, http_utils_js_1.sendJson)(res, 200, session);
+            return;
+        }
+        if (grant === 'refresh_token' && typeof body.refresh_token === 'string') {
+            const session = auth.refreshSession(body.refresh_token);
+            logger.debug('Auth token refresh succeeded', { body: (0, log_meta_js_1.redactAuthJsonForLog)(body) });
+            (0, http_utils_js_1.sendJson)(res, 200, session);
+            return;
+        }
+        logger.debug('Auth token unsupported or invalid grant_type', {
+            grant_type: grant,
+            body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+        });
+        (0, http_utils_js_1.sendJson)(res, 400, {
+            error: 'unsupported_grant_type',
+            error_description: String(grant),
+        });
+    }
+    catch (e) {
+        const err = e;
+        const status = err.status ?? 500;
+        if (status >= 500) {
+            logger.error('Auth token endpoint failed', {
+                message: err.message,
+                status,
+                grant_type: grant,
+                body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+            });
+        }
+        else {
+            logger.debug('Auth token rejected', {
+                message: err.message,
+                status,
+                grant_type: grant,
+                body: (0, log_meta_js_1.redactAuthJsonForLog)(body),
+            });
+        }
+        (0, http_utils_js_1.sendJson)(res, status, {
+            error: 'invalid_grant',
+            error_description: err.message,
+        });
+    }
+}
+function handleLogout(ctx) {
+    ctx.logger.debug('Auth logout');
+    (0, http_utils_js_1.sendEmpty)(ctx.res, 204);
+}
+function handleGetUser(ctx) {
+    const { req, res, auth, logger } = ctx;
+    const h = req.headers.authorization;
+    const token = h?.startsWith('Bearer ') ? h.slice(7) : undefined;
+    if (!token) {
+        logger.debug('Auth getUser: no Bearer token');
+        (0, http_utils_js_1.sendJson)(res, 403, { error: 'invalid_jwt', msg: 'No token' });
+        return;
+    }
+    try {
+        const user = auth.getUserFromAccessToken(token);
+        logger.debug('Auth getUser succeeded', { userId: user.id, userEmail: user.email });
+        (0, http_utils_js_1.sendJson)(res, 200, { user });
+    }
+    catch (e) {
+        const err = e;
+        logger.debug('Auth getUser rejected', {
+            message: err.message,
+            tokenPrefix: `${token.slice(0, 12)}…`,
+        });
+        (0, http_utils_js_1.sendJson)(res, err.status ?? 403, { error: 'invalid_jwt', msg: err.message });
+    }
+}
+//# sourceMappingURL=auth-routes.js.map

package/dist/memory-server/auth-routes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth-routes.js","sourceRoot":"","sources":["../../src/memory-server/auth-routes.ts"],"names":[],"mappings":";;AAiBA,gDA+BC;AA/CD,mDAOyB;AACzB,+CAAqD;AAErD,SAAS,oBAAoB,CAAC,IAA6B;IACzD,OAAO,OAAO,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,IAAI,IAAI;QACvD,CAAC,CAAE,IAAI,CAAC,IAAgC;QACxC,CAAC,CAAC,EAAE,CAAC;AACT,CAAC;AAEM,KAAK,UAAU,kBAAkB,CACtC,GAAiC,EACjC,IAAY,EACZ,MAAc,EACd,GAAQ;IAER,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IACvB,IAAI,IAAI,KAAK,sBAAsB,IAAI,MAAM,KAAK,KAAK,EAAE,CAAC;QACxD,oBAAoB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QAC/B,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,IAAI,KAAK,iBAAiB,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACpD,MAAM,YAAY,CAAC,GAAG,CAAC,CAAC;QACxB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,IAAI,KAAK,gBAAgB,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACnD,MAAM,WAAW,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QAC5B,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,IAAI,KAAK,iBAAiB,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACpD,YAAY,CAAC,GAAG,CAAC,CAAC;QAClB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,IAAI,KAAK,eAAe,IAAI,MAAM,KAAK,KAAK,EAAE,CAAC;QACjD,aAAa,CAAC,GAAG,CAAC,CAAC;QACnB,OAAO,IAAI,CAAC;IACd,CAAC;IACD,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC9B,MAAM,CAAC,KAAK,CAAC,+BAA+B,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;IAClE,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,oBAAoB,CAAC,GAAiC,EAAE,GAAQ;IACvE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,cAAc,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IAClD,IAAI,CAAC,IAAA,oCAAoB,EAAC,GAAG,CAAC,GAAG,EAAE,cAAc,CAAC,EAAE,CAAC;QACnD,MAAM,CAAC,IAAI,CAAC,wDAAwD,CAAC,CAAC;QACtE,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE;YACjB,KAAK,EAAE,WAAW;YAClB,OAAO,EAAE,yCAAyC;SACnD,CAAC,CAAC;QACH,OAAO;IACT,CAAC;IACD,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;IAClC,MAAM,OAAO,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC;IACzE,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IAC9D,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,IAAI,EAAE,EAAE,CAAC,CAAC;IAC7E,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC;IAChF,MAAM,KAAK,GAAG,CAAC,IAAI,GAAG,CAAC,CAAC,GAAG,OAAO,CAAC;IACnC,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,GAAG,OAAO,CAAC,CAAC;IACrD,IAAA,uBAAO,EAAC,GAAG,CAAC,CAAC;IACb,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IAClD,GAAG,CAAC,SAAS,CAAC,eAAe,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC;IACxD,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IACnB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;IACnC,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE;QACnC,IAAI;QACJ,OAAO;QACP,UAAU,EAAE,QAAQ,CAAC,MAAM;QAC3B,aAAa,EAAE,KAAK,CAAC,MAAM;QAC3B,OAAO,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KAChC,CAAC,CAAC;AACL,CAAC;AAED,KAAK,UAAU,YAAY,CAAC,GAAiC;IAC3D,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IACvC,MAAM,GAAG,GAAG,MAAM,IAAA,wBAAQ,EAAC,GAAG,CAAC,CAAC;IAChC,MAAM,IAAI,GAAG,IAAA,6BAAa,EAAC,GAAG,CAA4B,CAAC;IAC3D,IAAI,CAAC;QACH,IAAI,OAAO,CAAC;QACZ,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,OAAO,IAAI,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YACxE,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,EAAE,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC;QACpF,CAAC;aAAM,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,OAAO,IAAI,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAC/E,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,EAAE,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC;QACpF,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,KAAK,CAAC,uDAAuD,EAAE;gBACpE,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;gBAC3B,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;aACjC,CAAC,CAAC;YACH,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE;gBACjB,KAAK,EAAE,iBAAiB;gBACxB,iBAAiB,EAAE,sCAAsC;aAC1D,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QACD,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE;YACpC,OAAO,EAAE,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO;YAC3D,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;YACvB,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;SACjC,CAAC,CAAC;QACH,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;IAC9B,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,MAAM,GAAG,GAAG,CAAgC,CAAC;QAC7C,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC;QACjC,IAAI,MAAM,IAAI,GAAG,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,oBAAoB,EAAE;gBACjC,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,MAAM;gBACN,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;aACjC,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE;gBACnC,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,MAAM;gBACN,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;aACjC,CAAC,CAAC;QACL,CAAC;QACD,IAAA,wBAAQ,EAAC,GAAG,EAAE,MAAM,EAAE;YACpB,KAAK,EAAE,eAAe;YACtB,GAAG,EAAE,GAAG,CAAC,OAAO;SACjB,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,KAAK,UAAU,WAAW,CAAC,GAAiC,EAAE,GAAQ;IACpE,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IACvC,MAAM,KAAK,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;IACjD,MAAM,GAAG,GAAG,MAAM,IAAA,wBAAQ,EAAC,GAAG,CAAC,CAAC;IAChC,MAAM,IAAI,GAAG,IAAA,6BAAa,EAAC,GAAG,CAA4B,CAAC;IAC3D,IAAI,CAAC;QACH,IAAI,KAAK,KAAK,UAAU,EAAE,CAAC;YACzB,IAAI,OAAO,CAAC;YACZ,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,OAAO,IAAI,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;gBACxE,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;YACxD,CAAC;iBAAM,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,OAAO,IAAI,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;gBAC/E,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;YACxD,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,KAAK,CAAC,uDAAuD,EAAE;oBACpE,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;iBACjC,CAAC,CAAC;gBACH,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,CAAC,CAAC;gBACpF,OAAO;YACT,CAAC;YACD,MAAM,CAAC,KAAK,CAAC,qCAAqC,EAAE;gBAClD,OAAO,EAAE,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO;gBAC3D,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,EAAE;gBACvB,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;aACjC,CAAC,CAAC;YACH,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;YAC5B,OAAO;QACT,CAAC;QACD,IAAI,KAAK,KAAK,eAAe,IAAI,OAAO,IAAI,CAAC,aAAa,KAAK,QAAQ,EAAE,CAAC;YACxE,MAAM,OAAO,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;YACxD,MAAM,CAAC,KAAK,CAAC,8BAA8B,EAAE,EAAE,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACnF,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;YAC5B,OAAO;QACT,CAAC;QACD,MAAM,CAAC,KAAK,CAAC,8CAA8C,EAAE;YAC3D,UAAU,EAAE,KAAK;YACjB,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;SACjC,CAAC,CAAC;QACH,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE;YACjB,KAAK,EAAE,wBAAwB;YAC/B,iBAAiB,EAAE,MAAM,CAAC,KAAK,CAAC;SACjC,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,MAAM,GAAG,GAAG,CAAgC,CAAC;QAC7C,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC;QACjC,IAAI,MAAM,IAAI,GAAG,EAAE,CAAC;YAClB,MAAM,CAAC,KAAK,CAAC,4BAA4B,EAAE;gBACzC,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,MAAM;gBACN,UAAU,EAAE,KAAK;gBACjB,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;aACjC,CAAC,CAAC;QACL,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,KAAK,CAAC,qBAAqB,EAAE;gBAClC,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,MAAM;gBACN,UAAU,EAAE,KAAK;gBACjB,IAAI,EAAE,IAAA,kCAAoB,EAAC,IAAI,CAAC;aACjC,CAAC,CAAC;QACL,CAAC;QACD,IAAA,wBAAQ,EAAC,GAAG,EAAE,MAAM,EAAE;YACpB,KAAK,EAAE,eAAe;YACtB,iBAAiB,EAAE,GAAG,CAAC,OAAO;SAC/B,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,GAAiC;IACrD,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;IAChC,IAAA,yBAAS,EAAC,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;AAC1B,CAAC;AAED,SAAS,aAAa,CAAC,GAAiC;IACtD,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC;IACvC,MAAM,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC;IACpC,MAAM,KAAK,GAAG,CAAC,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAChE,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,CAAC,KAAK,CAAC,+BAA+B,CAAC,CAAC;QAC9C,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,EAAE,KAAK,EAAE,aAAa,EAAE,GAAG,EAAE,UAAU,EAAE,CAAC,CAAC;QAC9D,OAAO;IACT,CAAC;IACD,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,IAAI,CAAC,sBAAsB,CAAC,KAAK,CAAC,CAAC;QAChD,MAAM,CAAC,KAAK,CAAC,wBAAwB,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;QACnF,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;IAC/B,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,MAAM,GAAG,GAAG,CAAgC,CAAC;QAC7C,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE;YACpC,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,WAAW,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG;SACtC,CAAC,CAAC;QACH,IAAA,wBAAQ,EAAC,GAAG,EAAE,GAAG,CAAC,MAAM,IAAI,GAAG,EAAE,EAAE,KAAK,EAAE,aAAa,EAAE,GAAG,EAAE,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IAC/E,CAAC;AACH,CAAC"}

package/dist/memory-server/handler-context.d.ts

@@ -0,0 +1,19 @@
+import type { IncomingMessage, ServerResponse } from 'node:http';
+import type { Logger } from 'winston';
+import type { AuthMemory } from '../lib/auth-memory.js';
+import type { MemoryStore } from '../lib/memory-store.js';
+/**
+ * Per-request inputs plus shared server state for route handlers.
+ */
+export interface MemorySupabaseHandlerContext {
+    req: IncomingMessage;
+    res: ServerResponse;
+    auth: AuthMemory;
+    store: MemoryStore;
+    serviceRoleKey: string;
+    /** Winston logger; `debug` level enabled when the server was started with `debug: true`. */
+    logger: Logger;
+    /** Same id as in `Incoming request` / `Request finished` logs (also on `logger` defaultMeta). */
+    requestId: string;
+}
+//# sourceMappingURL=handler-context.d.ts.map

package/dist/memory-server/handler-context.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"handler-context.d.ts","sourceRoot":"","sources":["../../src/memory-server/handler-context.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAEjE,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAEtC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAE1D;;GAEG;AACH,MAAM,WAAW,4BAA4B;IAC3C,GAAG,EAAE,eAAe,CAAC;IACrB,GAAG,EAAE,cAAc,CAAC;IACpB,IAAI,EAAE,UAAU,CAAC;IACjB,KAAK,EAAE,WAAW,CAAC;IACnB,cAAc,EAAE,MAAM,CAAC;IACvB,4FAA4F;IAC5F,MAAM,EAAE,MAAM,CAAC;IACf,iGAAiG;IACjG,SAAS,EAAE,MAAM,CAAC;CACnB"}

package/dist/memory-server/handler-context.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=handler-context.js.map

package/dist/memory-server/handler-context.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"handler-context.js","sourceRoot":"","sources":["../../src/memory-server/handler-context.ts"],"names":[],"mappings":""}

package/dist/memory-server/http-utils.d.ts

@@ -0,0 +1,19 @@
+import type { IncomingMessage, ServerResponse } from 'node:http';
+export declare function setCors(res: ServerResponse): void;
+export declare function readBody(req: IncomingMessage): Promise<string>;
+export declare function sendJson(res: ServerResponse, status: number, body: unknown): void;
+export declare function sendEmpty(res: ServerResponse, status: number): void;
+export declare function handleOptions(res: ServerResponse): void;
+export declare function sendUnauthorizedApiKey(res: ServerResponse): void;
+export declare function preferHeader(req: IncomingMessage): string;
+export declare function preferReturnRepresentation(req: IncomingMessage): boolean;
+export declare function preferResolution(req: IncomingMessage): 'merge' | 'ignore';
+export declare function isUpsertRequest(req: IncomingMessage): boolean;
+export declare function preferCount(req: IncomingMessage): boolean;
+export declare function isObjectAccept(req: IncomingMessage): boolean;
+export declare function parseJsonBody(raw: string): unknown;
+export declare function isAuthorizedProjectRequest(req: IncomingMessage, anonKey: string, serviceRoleKey: string): boolean;
+export declare function isServiceRoleRequest(req: IncomingMessage, serviceRoleKey: string): boolean;
+/** Normalized pathname without trailing slash (except root). */
+export declare function normalizeRequestPath(url: URL): string;
+//# sourceMappingURL=http-utils.d.ts.map

package/dist/memory-server/http-utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-utils.d.ts","sourceRoot":"","sources":["../../src/memory-server/http-utils.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAIjE,wBAAgB,OAAO,CAAC,GAAG,EAAE,cAAc,GAAG,IAAI,CAIjD;AAED,wBAAgB,QAAQ,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAAC,MAAM,CAAC,CAS9D;AAED,wBAAgB,QAAQ,CAAC,GAAG,EAAE,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,GAAG,IAAI,CAKjF;AAED,wBAAgB,SAAS,CAAC,GAAG,EAAE,cAAc,EAAE,MAAM,EAAE,MAAM,GAAG,IAAI,CAInE;AAED,wBAAgB,aAAa,CAAC,GAAG,EAAE,cAAc,GAAG,IAAI,CAIvD;AAED,wBAAgB,sBAAsB,CAAC,GAAG,EAAE,cAAc,GAAG,IAAI,CAKhE;AAED,wBAAgB,YAAY,CAAC,GAAG,EAAE,eAAe,GAAG,MAAM,CAIzD;AAED,wBAAgB,0BAA0B,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAExE;AAED,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,GAAG,QAAQ,CAIzE;AAED,wBAAgB,eAAe,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAG7D;AAED,wBAAgB,WAAW,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAGzD;AAED,wBAAgB,cAAc,CAAC,GAAG,EAAE,eAAe,GAAG,OAAO,CAI5D;AAED,wBAAgB,aAAa,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAGlD;AAED,wBAAgB,0BAA0B,CACxC,GAAG,EAAE,eAAe,EACpB,OAAO,EAAE,MAAM,EACf,cAAc,EAAE,MAAM,GACrB,OAAO,CAIT;AAED,wBAAgB,oBAAoB,CAAC,GAAG,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,GAAG,OAAO,CAM1F;AAED,gEAAgE;AAChE,wBAAgB,oBAAoB,CAAC,GAAG,EAAE,GAAG,GAAG,MAAM,CAErD"}

package/dist/memory-server/http-utils.js

@@ -0,0 +1,109 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.setCors = setCors;
+exports.readBody = readBody;
+exports.sendJson = sendJson;
+exports.sendEmpty = sendEmpty;
+exports.handleOptions = handleOptions;
+exports.sendUnauthorizedApiKey = sendUnauthorizedApiKey;
+exports.preferHeader = preferHeader;
+exports.preferReturnRepresentation = preferReturnRepresentation;
+exports.preferResolution = preferResolution;
+exports.isUpsertRequest = isUpsertRequest;
+exports.preferCount = preferCount;
+exports.isObjectAccept = isObjectAccept;
+exports.parseJsonBody = parseJsonBody;
+exports.isAuthorizedProjectRequest = isAuthorizedProjectRequest;
+exports.isServiceRoleRequest = isServiceRoleRequest;
+exports.normalizeRequestPath = normalizeRequestPath;
+const http_headers_js_1 = require("../lib/http-headers.js");
+function setCors(res) {
+    res.setHeader('Access-Control-Allow-Origin', '*');
+    res.setHeader('Access-Control-Allow-Headers', '*');
+    res.setHeader('Access-Control-Allow-Methods', 'GET,HEAD,POST,PATCH,DELETE,OPTIONS');
+}
+function readBody(req) {
+    return new Promise((resolve, reject) => {
+        const chunks = [];
+        req.on('data', (c) => chunks.push(c));
+        req.on('end', () => {
+            resolve(Buffer.concat(chunks).toString('utf8'));
+        });
+        req.on('error', reject);
+    });
+}
+function sendJson(res, status, body) {
+    setCors(res);
+    res.setHeader('Content-Type', 'application/json');
+    res.writeHead(status);
+    res.end(JSON.stringify(body));
+}
+function sendEmpty(res, status) {
+    setCors(res);
+    res.writeHead(status);
+    res.end();
+}
+function handleOptions(res) {
+    setCors(res);
+    res.writeHead(204);
+    res.end();
+}
+function sendUnauthorizedApiKey(res) {
+    sendJson(res, 401, {
+        message: 'Missing or invalid apikey',
+        hint: 'Send header apikey with your anon or service_role key (see SUPABASE_ANON_KEY / SUPABASE_SERVICE_ROLE_KEY).',
+    });
+}
+function preferHeader(req) {
+    const h = req.headers.prefer;
+    if (h === undefined)
+        return '';
+    return Array.isArray(h) ? h.join(', ') : h;
+}
+function preferReturnRepresentation(req) {
+    return preferHeader(req).toLowerCase().includes('return=representation');
+}
+function preferResolution(req) {
+    const p = preferHeader(req);
+    if (p.includes('resolution=ignore-duplicates'))
+        return 'ignore';
+    return 'merge';
+}
+function isUpsertRequest(req) {
+    const p = preferHeader(req).toLowerCase();
+    return p.includes('resolution=merge-duplicates') || p.includes('resolution=ignore-duplicates');
+}
+function preferCount(req) {
+    const p = preferHeader(req);
+    return p.length > 0 && /count=(exact|planned|estimated)/i.test(p);
+}
+function isObjectAccept(req) {
+    const a = req.headers.accept;
+    const s = a === undefined ? '' : Array.isArray(a) ? a.join(', ') : a;
+    return s.includes('application/vnd.pgrst.object+json');
+}
+function parseJsonBody(raw) {
+    if (!raw || raw.trim() === '')
+        return null;
+    return JSON.parse(raw);
+}
+function isAuthorizedProjectRequest(req, anonKey, serviceRoleKey) {
+    const apikey = (0, http_headers_js_1.getIncomingHeader)(req, 'apikey');
+    if (!apikey)
+        return false;
+    return apikey === anonKey || apikey === serviceRoleKey;
+}
+function isServiceRoleRequest(req, serviceRoleKey) {
+    const apikey = (0, http_headers_js_1.getIncomingHeader)(req, 'apikey');
+    if (apikey === serviceRoleKey)
+        return true;
+    const auth = (0, http_headers_js_1.getIncomingHeader)(req, 'authorization');
+    if (auth?.startsWith('Bearer ') && auth.slice('Bearer '.length) === serviceRoleKey)
+        return true;
+    return false;
+}
+/** Normalized pathname without trailing slash (except root). */
+function normalizeRequestPath(url) {
+    return url.pathname.replace(/\/$/, '') || '/';
+}
+//# sourceMappingURL=http-utils.js.map

package/dist/memory-server/http-utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-utils.js","sourceRoot":"","sources":["../../src/memory-server/http-utils.ts"],"names":[],"mappings":";;AAIA,0BAIC;AAED,4BASC;AAED,4BAKC;AAED,8BAIC;AAED,sCAIC;AAED,wDAKC;AAED,oCAIC;AAED,gEAEC;AAED,4CAIC;AAED,0CAGC;AAED,kCAGC;AAED,wCAIC;AAED,sCAGC;AAED,gEAQC;AAED,oDAMC;AAGD,oDAEC;AAvGD,4DAA2D;AAE3D,SAAgB,OAAO,CAAC,GAAmB;IACzC,GAAG,CAAC,SAAS,CAAC,6BAA6B,EAAE,GAAG,CAAC,CAAC;IAClD,GAAG,CAAC,SAAS,CAAC,8BAA8B,EAAE,GAAG,CAAC,CAAC;IACnD,GAAG,CAAC,SAAS,CAAC,8BAA8B,EAAE,oCAAoC,CAAC,CAAC;AACtF,CAAC;AAED,SAAgB,QAAQ,CAAC,GAAoB;IAC3C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAW,CAAC,CAAC,CAAC;QAChD,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;YACjB,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QACH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC1B,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAgB,QAAQ,CAAC,GAAmB,EAAE,MAAc,EAAE,IAAa;IACzE,OAAO,CAAC,GAAG,CAAC,CAAC;IACb,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;IAClD,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACtB,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;AAChC,CAAC;AAED,SAAgB,SAAS,CAAC,GAAmB,EAAE,MAAc;IAC3D,OAAO,CAAC,GAAG,CAAC,CAAC;IACb,GAAG,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACtB,GAAG,CAAC,GAAG,EAAE,CAAC;AACZ,CAAC;AAED,SAAgB,aAAa,CAAC,GAAmB;IAC/C,OAAO,CAAC,GAAG,CAAC,CAAC;IACb,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IACnB,GAAG,CAAC,GAAG,EAAE,CAAC;AACZ,CAAC;AAED,SAAgB,sBAAsB,CAAC,GAAmB;IACxD,QAAQ,CAAC,GAAG,EAAE,GAAG,EAAE;QACjB,OAAO,EAAE,2BAA2B;QACpC,IAAI,EAAE,4GAA4G;KACnH,CAAC,CAAC;AACL,CAAC;AAED,SAAgB,YAAY,CAAC,GAAoB;IAC/C,MAAM,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC;IAC7B,IAAI,CAAC,KAAK,SAAS;QAAE,OAAO,EAAE,CAAC;IAC/B,OAAO,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;AAC7C,CAAC;AAED,SAAgB,0BAA0B,CAAC,GAAoB;IAC7D,OAAO,YAAY,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,uBAAuB,CAAC,CAAC;AAC3E,CAAC;AAED,SAAgB,gBAAgB,CAAC,GAAoB;IACnD,MAAM,CAAC,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;IAC5B,IAAI,CAAC,CAAC,QAAQ,CAAC,8BAA8B,CAAC;QAAE,OAAO,QAAQ,CAAC;IAChE,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAgB,eAAe,CAAC,GAAoB;IAClD,MAAM,CAAC,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAC;IAC1C,OAAO,CAAC,CAAC,QAAQ,CAAC,6BAA6B,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,8BAA8B,CAAC,CAAC;AACjG,CAAC;AAED,SAAgB,WAAW,CAAC,GAAoB;IAC9C,MAAM,CAAC,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;IAC5B,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,IAAI,kCAAkC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AACpE,CAAC;AAED,SAAgB,cAAc,CAAC,GAAoB;IACjD,MAAM,CAAC,GAAG,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC;IAC7B,MAAM,CAAC,GAAG,CAAC,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACrE,OAAO,CAAC,CAAC,QAAQ,CAAC,mCAAmC,CAAC,CAAC;AACzD,CAAC;AAED,SAAgB,aAAa,CAAC,GAAW;IACvC,IAAI,CAAC,GAAG,IAAI,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE;QAAE,OAAO,IAAI,CAAC;IAC3C,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAY,CAAC;AACpC,CAAC;AAED,SAAgB,0BAA0B,CACxC,GAAoB,EACpB,OAAe,EACf,cAAsB;IAEtB,MAAM,MAAM,GAAG,IAAA,mCAAiB,EAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAChD,IAAI,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IAC1B,OAAO,MAAM,KAAK,OAAO,IAAI,MAAM,KAAK,cAAc,CAAC;AACzD,CAAC;AAED,SAAgB,oBAAoB,CAAC,GAAoB,EAAE,cAAsB;IAC/E,MAAM,MAAM,GAAG,IAAA,mCAAiB,EAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAChD,IAAI,MAAM,KAAK,cAAc;QAAE,OAAO,IAAI,CAAC;IAC3C,MAAM,IAAI,GAAG,IAAA,mCAAiB,EAAC,GAAG,EAAE,eAAe,CAAC,CAAC;IACrD,IAAI,IAAI,EAAE,UAAU,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,KAAK,cAAc;QAAE,OAAO,IAAI,CAAC;IAChG,OAAO,KAAK,CAAC;AACf,CAAC;AAED,gEAAgE;AAChE,SAAgB,oBAAoB,CAAC,GAAQ;IAC3C,OAAO,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,GAAG,CAAC;AAChD,CAAC"}

package/dist/memory-server/index.d.ts

@@ -0,0 +1,4 @@
+export { MemorySupabaseHttpServer } from './MemorySupabaseHttpServer.js';
+export { createMemorySupabaseServer } from './server-lifecycle.js';
+export type { MemorySupabaseServer, MemorySupabaseServerOptions } from './types.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/memory-server/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/memory-server/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,wBAAwB,EAAE,MAAM,+BAA+B,CAAC;AACzE,OAAO,EAAE,0BAA0B,EAAE,MAAM,uBAAuB,CAAC;AACnE,YAAY,EAAE,oBAAoB,EAAE,2BAA2B,EAAE,MAAM,YAAY,CAAC"}

package/dist/memory-server/index.js

@@ -0,0 +1,8 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createMemorySupabaseServer = exports.MemorySupabaseHttpServer = void 0;
+var MemorySupabaseHttpServer_js_1 = require("./MemorySupabaseHttpServer.js");
+Object.defineProperty(exports, "MemorySupabaseHttpServer", { enumerable: true, get: function () { return MemorySupabaseHttpServer_js_1.MemorySupabaseHttpServer; } });
+var server_lifecycle_js_1 = require("./server-lifecycle.js");
+Object.defineProperty(exports, "createMemorySupabaseServer", { enumerable: true, get: function () { return server_lifecycle_js_1.createMemorySupabaseServer; } });
+//# sourceMappingURL=index.js.map

package/dist/memory-server/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/memory-server/index.ts"],"names":[],"mappings":";;;AAAA,6EAAyE;AAAhE,uIAAA,wBAAwB,OAAA;AACjC,6DAAmE;AAA1D,iIAAA,0BAA0B,OAAA"}

package/dist/memory-server/log-meta.d.ts

@@ -0,0 +1,12 @@
+import type { JsonRecord } from '../lib/types.js';
+/** 10-character hex id for correlating start/finish logs for one HTTP request. */
+export declare function newHttpRequestId(): string;
+/** PostgREST query string as ordered pairs (duplicate keys preserved). */
+export declare function postgrestQueryForLog(params: URLSearchParams): [string, string][];
+/**
+ * Shallow + one-level nested redaction for auth JSON bodies (never log raw secrets in debug).
+ */
+export declare function redactAuthJsonForLog(body: Record<string, unknown>): Record<string, unknown>;
+/** Truncate large row arrays in debug metadata while keeping shape visible. */
+export declare function restRowsForLog(rows: JsonRecord[], maxItems?: number): unknown;
+//# sourceMappingURL=log-meta.d.ts.map

package/dist/memory-server/log-meta.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"log-meta.d.ts","sourceRoot":"","sources":["../../src/memory-server/log-meta.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iBAAiB,CAAC;AAElD,kFAAkF;AAClF,wBAAgB,gBAAgB,IAAI,MAAM,CAEzC;AAED,0EAA0E;AAC1E,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,eAAe,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,CAEhF;AAUD;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAmB3F;AAID,+EAA+E;AAC/E,wBAAgB,cAAc,CAAC,IAAI,EAAE,UAAU,EAAE,EAAE,QAAQ,SAA0B,GAAG,OAAO,CAO9F"}

package/dist/memory-server/log-meta.js

@@ -0,0 +1,58 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.newHttpRequestId = newHttpRequestId;
+exports.postgrestQueryForLog = postgrestQueryForLog;
+exports.redactAuthJsonForLog = redactAuthJsonForLog;
+exports.restRowsForLog = restRowsForLog;
+const node_crypto_1 = require("node:crypto");
+/** 10-character hex id for correlating start/finish logs for one HTTP request. */
+function newHttpRequestId() {
+    return (0, node_crypto_1.randomBytes)(5).toString('hex');
+}
+/** PostgREST query string as ordered pairs (duplicate keys preserved). */
+function postgrestQueryForLog(params) {
+    return [...params.entries()];
+}
+const SECRET_BODY_KEYS = new Set([
+    'password',
+    'refresh_token',
+    'access_token',
+    'service_role',
+    'apikey',
+]);
+/**
+ * Shallow + one-level nested redaction for auth JSON bodies (never log raw secrets in debug).
+ */
+function redactAuthJsonForLog(body) {
+    const out = {};
+    for (const [key, value] of Object.entries(body)) {
+        if (SECRET_BODY_KEYS.has(key.toLowerCase())) {
+            out[key] = '[redacted]';
+            continue;
+        }
+        if (value !== null && typeof value === 'object' && !Array.isArray(value)) {
+            const nested = value;
+            const nestedOut = {};
+            for (const [nk, nv] of Object.entries(nested)) {
+                nestedOut[nk] = SECRET_BODY_KEYS.has(nk.toLowerCase()) ? '[redacted]' : nv;
+            }
+            out[key] = nestedOut;
+        }
+        else {
+            out[key] = value;
+        }
+    }
+    return out;
+}
+const DEFAULT_MAX_ARRAY_ITEMS = 80;
+/** Truncate large row arrays in debug metadata while keeping shape visible. */
+function restRowsForLog(rows, maxItems = DEFAULT_MAX_ARRAY_ITEMS) {
+    if (rows.length <= maxItems)
+        return rows;
+    return {
+        truncated: true,
+        totalRows: rows.length,
+        sample: rows.slice(0, maxItems),
+    };
+}
+//# sourceMappingURL=log-meta.js.map

package/dist/memory-server/log-meta.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"log-meta.js","sourceRoot":"","sources":["../../src/memory-server/log-meta.ts"],"names":[],"mappings":";;AAKA,4CAEC;AAGD,oDAEC;AAaD,oDAmBC;AAKD,wCAOC;AAxDD,6CAA0C;AAI1C,kFAAkF;AAClF,SAAgB,gBAAgB;IAC9B,OAAO,IAAA,yBAAW,EAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;AACxC,CAAC;AAED,0EAA0E;AAC1E,SAAgB,oBAAoB,CAAC,MAAuB;IAC1D,OAAO,CAAC,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;AAC/B,CAAC;AAED,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC;IAC/B,UAAU;IACV,eAAe;IACf,cAAc;IACd,cAAc;IACd,QAAQ;CACT,CAAC,CAAC;AAEH;;GAEG;AACH,SAAgB,oBAAoB,CAAC,IAA6B;IAChE,MAAM,GAAG,GAA4B,EAAE,CAAC;IACxC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAChD,IAAI,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YAC5C,GAAG,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;YACxB,SAAS;QACX,CAAC;QACD,IAAI,KAAK,KAAK,IAAI,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACzE,MAAM,MAAM,GAAG,KAAgC,CAAC;YAChD,MAAM,SAAS,GAA4B,EAAE,CAAC;YAC9C,KAAK,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC9C,SAAS,CAAC,EAAE,CAAC,GAAG,gBAAgB,CAAC,GAAG,CAAC,EAAE,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC;YAC7E,CAAC;YACD,GAAG,CAAC,GAAG,CAAC,GAAG,SAAS,CAAC;QACvB,CAAC;aAAM,CAAC;YACN,GAAG,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACnB,CAAC;IACH,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,MAAM,uBAAuB,GAAG,EAAE,CAAC;AAEnC,+EAA+E;AAC/E,SAAgB,cAAc,CAAC,IAAkB,EAAE,QAAQ,GAAG,uBAAuB;IACnF,IAAI,IAAI,CAAC,MAAM,IAAI,QAAQ;QAAE,OAAO,IAAI,CAAC;IACzC,OAAO;QACL,SAAS,EAAE,IAAI;QACf,SAAS,EAAE,IAAI,CAAC,MAAM;QACtB,MAAM,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC;KAChC,CAAC;AACJ,CAAC"}

package/dist/memory-server/rest-routes.d.ts

@@ -0,0 +1,3 @@
+import type { MemorySupabaseHandlerContext } from './handler-context.js';
+export declare function dispatchRestRoutes(ctx: MemorySupabaseHandlerContext, path: string, method: string, url: URL): Promise<boolean>;
+//# sourceMappingURL=rest-routes.d.ts.map

package/dist/memory-server/rest-routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rest-routes.d.ts","sourceRoot":"","sources":["../../src/memory-server/rest-routes.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,sBAAsB,CAAC;AAiBzE,wBAAsB,kBAAkB,CACtC,GAAG,EAAE,4BAA4B,EACjC,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,GAAG,EAAE,GAAG,GACP,OAAO,CAAC,OAAO,CAAC,CA0BlB"}