@arch-cadre/core 0.0.22 → 0.0.24

package/dist/server/auth/user.mjs

@@ -1,153 +1,2 @@
-"use server";
-
-import { db } from "../database/inject.mjs";
-import { rolesTable, userTable, usersToRolesTable } from "../database/schema.mjs";
-import { hashPassword } from "./password.mjs";
-import { generateRandomRecoveryCode } from "../../core/auth/utils/encode.mjs";
-import { decryptToString, encryptString } from "../../core/auth/utils/encryption.mjs";
-import { sendRecoveryCode } from "../emails/index.mjs";
-import { and, eq } from "drizzle-orm";
-
-//#region src/server/auth/user.ts
-/**
-* Validates the username input.
-*/
-async function verifyUsernameInput(username) {
-	return username.length > 3 && username.length < 32 && username.trim() === username;
-}
-/**
-* Creates a new user with an initial recovery code and default 'user' role.
-*/
-async function createUser(email, username, password) {
-	const passwordHash = await hashPassword(password);
-	const recoveryCode = generateRandomRecoveryCode();
-	const encryptedRecoveryCode = encryptString(recoveryCode);
-	return await db.transaction(async (tx) => {
-		const [row] = await tx.insert(userTable).values({
-			email,
-			name: username,
-			password: passwordHash,
-			recovery_code: Buffer.from(encryptedRecoveryCode)
-		}).returning();
-		if (!row) throw new Error("Failed to create user");
-		let [role] = await tx.select().from(rolesTable).where(eq(rolesTable.name, "user"));
-		if (!role) [role] = await tx.insert(rolesTable).values({
-			name: "user",
-			description: "Default user role"
-		}).returning();
-		await tx.insert(usersToRolesTable).values({
-			userId: row.id,
-			roleId: role.id
-		});
-		await /* @__PURE__ */ sendRecoveryCode(row.email, recoveryCode);
-		return row;
-	});
-}
-/**
-* Creates a new user from an OAuth provider.
-*/
-async function createOAuthUser(email, name, image) {
-	const encryptedRecoveryCode = encryptString(generateRandomRecoveryCode());
-	return await db.transaction(async (tx) => {
-		const [row] = await tx.insert(userTable).values({
-			email,
-			name,
-			image,
-			emailVerifiedAt: /* @__PURE__ */ new Date(),
-			recovery_code: Buffer.from(encryptedRecoveryCode)
-		}).returning();
-		let [role] = await tx.select().from(rolesTable).where(eq(rolesTable.name, "user"));
-		if (!role) [role] = await tx.insert(rolesTable).values({
-			name: "user",
-			description: "Default user role"
-		}).returning();
-		await tx.insert(usersToRolesTable).values({
-			userId: row.id,
-			roleId: role.id
-		});
-		return row;
-	});
-}
-/**
-* Returns a user by ID.
-*/
-async function getUserById(userId) {
-	const [user] = await db.select().from(userTable).where(eq(userTable.id, userId));
-	if (!user) return null;
-	const { password, recovery_code, ...safeUser } = user;
-	return safeUser;
-}
-/**
-* Decrypts and returns the user's recovery code.
-*/
-async function getUserRecoverCode(userId) {
-	const [user] = await db.select({ recovery_code: userTable.recovery_code }).from(userTable).where(eq(userTable.id, userId));
-	if (!user || !user.recovery_code) throw new Error("Recovery code not found for user");
-	return decryptToString(user.recovery_code);
-}
-/**
-* Generates and sets a new recovery code for the user.
-*/
-async function resetUserRecoveryCode(userId) {
-	const recoveryCode = generateRandomRecoveryCode();
-	const encrypted = encryptString(recoveryCode);
-	const [currentUser] = await db.update(userTable).set({ recovery_code: Buffer.from(encrypted) }).where(eq(userTable.id, userId)).returning();
-	if (!currentUser) throw new Error("User not found");
-	await /* @__PURE__ */ sendRecoveryCode(currentUser.email, recoveryCode);
-	return recoveryCode;
-}
-/**
-* Updates the user's password.
-*/
-async function updateUserPassword(userId, password) {
-	const passwordHash = await hashPassword(password);
-	await db.update(userTable).set({ password: passwordHash }).where(eq(userTable.id, userId));
-}
-/**
-* Updates the user's name.
-*/
-async function updateUserName(userId, name) {
-	await db.update(userTable).set({ name }).where(eq(userTable.id, userId));
-}
-/**
-* Updates the user's image.
-*/
-async function updateUserAwatar(userId, image) {
-	await db.update(userTable).set({ image }).where(eq(userTable.id, userId));
-}
-/**
-* Updates the user's email and marks it as verified.
-*/
-async function updateUserEmailAndSetEmailAsVerified(userId, email) {
-	await db.update(userTable).set({
-		email,
-		emailVerifiedAt: /* @__PURE__ */ new Date()
-	}).where(eq(userTable.id, userId));
-}
-/**
-* Sets the user as email verified if the provided email matches.
-*/
-async function setUserAsEmailVerifiedIfEmailMatches(userId, email) {
-	return (await db.update(userTable).set({ emailVerifiedAt: /* @__PURE__ */ new Date() }).where(and(eq(userTable.id, userId), eq(userTable.email, email))).returning({ id: userTable.id })).length > 0;
-}
-/**
-* Returns the user's password hash.
-*/
-async function getUserPasswordHash(userId) {
-	const [user] = await db.select({ password: userTable.password }).from(userTable).where(eq(userTable.id, userId));
-	if (!user) throw new Error("User not found");
-	return user.password;
-}
-/**
-* Returns a user by email.
-*/
-async function getUserFromEmail(email) {
-	const [user] = await db.select().from(userTable).where(eq(userTable.email, email));
-	if (!user) return null;
-	const { password, recovery_code, ...safeUser } = user;
-	return safeUser;
-}
-
-//#endregion
-export { createOAuthUser, createUser, getUserById, getUserFromEmail, getUserPasswordHash, getUserRecoverCode, resetUserRecoveryCode, setUserAsEmailVerifiedIfEmailMatches, updateUserAwatar, updateUserEmailAndSetEmailAsVerified, updateUserName, updateUserPassword, verifyUsernameInput };
+"use server";import{db as e}from"../database/inject.mjs";import{rolesTable as t,userTable as n,usersToRolesTable as r}from"../database/schema.mjs";import{hashPassword as i}from"./password.mjs";import{generateRandomRecoveryCode as a}from"../../core/auth/utils/encode.mjs";import{decryptToString as o,encryptString as s}from"../../core/auth/utils/encryption.mjs";import{sendRecoveryCode as c}from"../emails/index.mjs";import{and as l,eq as u}from"drizzle-orm";async function d(e){return e.length>3&&e.length<32&&e.trim()===e}async function f(o,l,d){let f=await i(d),p=a(),m=s(p);return await e.transaction(async e=>{let[i]=await e.insert(n).values({email:o,name:l,password:f,recovery_code:Buffer.from(m)}).returning();if(!i)throw Error(`Failed to create user`);let[a]=await e.select().from(t).where(u(t.name,`user`));return a||([a]=await e.insert(t).values({name:`user`,description:`Default user role`}).returning()),await e.insert(r).values({userId:i.id,roleId:a.id}),await c(i.email,p),i})}async function p(i,o,c){let l=s(a());return await e.transaction(async e=>{let[a]=await e.insert(n).values({email:i,name:o,image:c,emailVerifiedAt:new Date,recovery_code:Buffer.from(l)}).returning(),[s]=await e.select().from(t).where(u(t.name,`user`));return s||([s]=await e.insert(t).values({name:`user`,description:`Default user role`}).returning()),await e.insert(r).values({userId:a.id,roleId:s.id}),a})}async function m(t){let[r]=await e.select().from(n).where(u(n.id,t));if(!r)return null;let{password:i,recovery_code:a,...o}=r;return o}async function h(t){let[r]=await e.select({recovery_code:n.recovery_code}).from(n).where(u(n.id,t));if(!r||!r.recovery_code)throw Error(`Recovery code not found for user`);return o(r.recovery_code)}async function g(t){let r=a(),i=s(r),[o]=await e.update(n).set({recovery_code:Buffer.from(i)}).where(u(n.id,t)).returning();if(!o)throw Error(`User not found`);return await c(o.email,r),r}async function _(t,r){let a=await i(r);await e.update(n).set({password:a}).where(u(n.id,t))}async function v(t,r){await e.update(n).set({name:r}).where(u(n.id,t))}async function y(t,r){await e.update(n).set({image:r}).where(u(n.id,t))}async function b(t,r){await e.update(n).set({email:r,emailVerifiedAt:new Date}).where(u(n.id,t))}async function x(t,r){return(await e.update(n).set({emailVerifiedAt:new Date}).where(l(u(n.id,t),u(n.email,r))).returning({id:n.id})).length>0}async function S(t){let[r]=await e.select({password:n.password}).from(n).where(u(n.id,t));if(!r)throw Error(`User not found`);return r.password}async function C(t){let[r]=await e.select().from(n).where(u(n.email,t));if(!r)return null;let{password:i,recovery_code:a,...o}=r;return o}export{p as createOAuthUser,f as createUser,m as getUserById,C as getUserFromEmail,S as getUserPasswordHash,h as getUserRecoverCode,g as resetUserRecoveryCode,x as setUserAsEmailVerifiedIfEmailMatches,y as updateUserAwatar,b as updateUserEmailAndSetEmailAsVerified,v as updateUserName,_ as updateUserPassword,d as verifyUsernameInput};
 //# sourceMappingURL=user.mjs.map

package/dist/server/auth/user.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"user.mjs","names":[],"sources":["../../../src/server/auth/user.ts"],"sourcesContent":["\"use server\";\n\nimport { and, eq } from \"drizzle-orm\";\nimport type { User } from \"../../core/auth/types\";\nimport { generateRandomRecoveryCode } from \"../../core/auth/utils/encode\";\nimport {\n  decryptToString,\n  encryptString,\n} from \"../../core/auth/utils/encryption\";\nimport { db } from \"../database/inject\";\nimport { rolesTable, usersToRolesTable, userTable } from \"../database/schema\";\nimport { sendRecoveryCode } from \"../emails\";\nimport { hashPassword } from \"./password\";\n\n/**\n * Validates the username input.\n */\nexport async function verifyUsernameInput(username: string): Promise<boolean> {\n  return (\n    username.length > 3 && username.length < 32 && username.trim() === username\n  );\n}\n\n/**\n * Creates a new user with an initial recovery code and default 'user' role.\n */\nexport async function createUser(\n  email: string,\n  username: string,\n  password: string,\n): Promise<User> {\n  const passwordHash = await hashPassword(password);\n  const recoveryCode = generateRandomRecoveryCode();\n  const encryptedRecoveryCode = encryptString(recoveryCode);\n\n  return await db.transaction(async (tx) => {\n    const [row] = await tx\n      .insert(userTable)\n      .values({\n        email: email,\n        name: username,\n        password: passwordHash,\n        recovery_code: Buffer.from(encryptedRecoveryCode),\n      })\n      .returning();\n\n    if (!row) {\n      throw new Error(\"Failed to create user\");\n    }\n\n    // Assign default 'user' role\n    let [role] = await tx\n      .select()\n      .from(rolesTable)\n      .where(eq(rolesTable.name, \"user\"));\n\n    if (!role) {\n      [role] = await tx\n        .insert(rolesTable)\n        .values({ name: \"user\", description: \"Default user role\" })\n        .returning();\n    }\n\n    await tx.insert(usersToRolesTable).values({\n      userId: row.id,\n      roleId: role.id,\n    });\n\n    await sendRecoveryCode(row.email, recoveryCode);\n\n    return row;\n  });\n}\n\n/**\n * Creates a new user from an OAuth provider.\n */\nexport async function createOAuthUser(\n  email: string,\n  name: string,\n  image?: string,\n): Promise<User> {\n  const recoveryCode = generateRandomRecoveryCode();\n  const encryptedRecoveryCode = encryptString(recoveryCode);\n\n  return await db.transaction(async (tx) => {\n    const [row] = await tx\n      .insert(userTable)\n      .values({\n        email: email,\n        name: name,\n        image: image,\n        emailVerifiedAt: new Date(),\n        recovery_code: Buffer.from(encryptedRecoveryCode),\n      })\n      .returning();\n\n    // Assign default 'user' role\n    let [role] = await tx\n      .select()\n      .from(rolesTable)\n      .where(eq(rolesTable.name, \"user\"));\n\n    if (!role) {\n      [role] = await tx\n        .insert(rolesTable)\n        .values({ name: \"user\", description: \"Default user role\" })\n        .returning();\n    }\n\n    await tx.insert(usersToRolesTable).values({\n      userId: row.id,\n      roleId: role.id,\n    });\n\n    return row;\n  });\n}\n\n/**\n * Returns a user by ID.\n */\nexport async function getUserById(userId: string): Promise<User | null> {\n  const [user] = await db\n    .select()\n    .from(userTable)\n    .where(eq(userTable.id, userId));\n\n  if (!user) return null;\n  const { password, recovery_code, ...safeUser } = user;\n  return safeUser as User;\n}\n\n/**\n * Decrypts and returns the user's recovery code.\n */\nexport async function getUserRecoverCode(userId: string): Promise<string> {\n  const [user] = await db\n    .select({\n      recovery_code: userTable.recovery_code,\n    })\n    .from(userTable)\n    .where(eq(userTable.id, userId));\n\n  if (!user || !user.recovery_code) {\n    throw new Error(\"Recovery code not found for user\");\n  }\n\n  return decryptToString(user.recovery_code);\n}\n\n/**\n * Generates and sets a new recovery code for the user.\n */\nexport async function resetUserRecoveryCode(userId: string): Promise<string> {\n  const recoveryCode = generateRandomRecoveryCode();\n  const encrypted = encryptString(recoveryCode);\n  const [currentUser] = await db\n    .update(userTable)\n    .set({\n      recovery_code: Buffer.from(encrypted),\n    })\n    .where(eq(userTable.id, userId))\n    .returning();\n\n  if (!currentUser) {\n    throw new Error(\"User not found\");\n  }\n\n  await sendRecoveryCode(currentUser.email, recoveryCode);\n\n  return recoveryCode;\n}\n\n/**\n * Updates the user's password.\n */\nexport async function updateUserPassword(\n  userId: string,\n  password: string,\n): Promise<void> {\n  const passwordHash = await hashPassword(password);\n\n  await db\n    .update(userTable)\n    .set({\n      password: passwordHash,\n    })\n    .where(eq(userTable.id, userId));\n}\n\n/**\n * Updates the user's name.\n */\nexport async function updateUserName(\n  userId: string,\n  name: string,\n): Promise<void> {\n  await db\n    .update(userTable)\n    .set({\n      name: name,\n    })\n    .where(eq(userTable.id, userId));\n}\n/**\n * Updates the user's image.\n */\nexport async function updateUserAwatar(\n  userId: string,\n  image: string,\n): Promise<void> {\n  await db\n    .update(userTable)\n    .set({\n      image,\n    })\n    .where(eq(userTable.id, userId));\n}\n\n/**\n * Updates the user's email and marks it as verified.\n */\nexport async function updateUserEmailAndSetEmailAsVerified(\n  userId: string,\n  email: string,\n): Promise<void> {\n  await db\n    .update(userTable)\n    .set({\n      email: email,\n      emailVerifiedAt: new Date(),\n    })\n    .where(eq(userTable.id, userId));\n}\n\n/**\n * Sets the user as email verified if the provided email matches.\n */\nexport async function setUserAsEmailVerifiedIfEmailMatches(\n  userId: string,\n  email: string,\n): Promise<boolean> {\n  const result = await db\n    .update(userTable)\n    .set({\n      emailVerifiedAt: new Date(),\n    })\n    .where(and(eq(userTable.id, userId), eq(userTable.email, email)))\n    .returning({ id: userTable.id });\n\n  return result.length > 0;\n}\n\n/**\n * Returns the user's password hash.\n */\nexport async function getUserPasswordHash(\n  userId: string,\n): Promise<string | null> {\n  const [user] = await db\n    .select({\n      password: userTable.password,\n    })\n    .from(userTable)\n    .where(eq(userTable.id, userId));\n\n  if (!user) {\n    throw new Error(\"User not found\");\n  }\n\n  return user.password;\n}\n\n/**\n * Returns a user by email.\n */\nexport async function getUserFromEmail(email: string): Promise<User | null> {\n  const [user] = await db\n    .select()\n    .from(userTable)\n    .where(eq(userTable.email, email));\n\n  if (!user) return null;\n  const { password, recovery_code, ...safeUser } = user;\n  return safeUser as User;\n}\n"],"mappings":";;;;;;;;;;;;;;AAiBA,eAAsB,oBAAoB,UAAoC;AAC5E,QACE,SAAS,SAAS,KAAK,SAAS,SAAS,MAAM,SAAS,MAAM,KAAK;;;;;AAOvE,eAAsB,WACpB,OACA,UACA,UACe;CACf,MAAM,eAAe,MAAM,aAAa,SAAS;CACjD,MAAM,eAAe,4BAA4B;CACjD,MAAM,wBAAwB,cAAc,aAAa;AAEzD,QAAO,MAAM,GAAG,YAAY,OAAO,OAAO;EACxC,MAAM,CAAC,OAAO,MAAM,GACjB,OAAO,UAAU,CACjB,OAAO;GACC;GACP,MAAM;GACN,UAAU;GACV,eAAe,OAAO,KAAK,sBAAsB;GAClD,CAAC,CACD,WAAW;AAEd,MAAI,CAAC,IACH,OAAM,IAAI,MAAM,wBAAwB;EAI1C,IAAI,CAAC,QAAQ,MAAM,GAChB,QAAQ,CACR,KAAK,WAAW,CAChB,MAAM,GAAG,WAAW,MAAM,OAAO,CAAC;AAErC,MAAI,CAAC,KACH,EAAC,QAAQ,MAAM,GACZ,OAAO,WAAW,CAClB,OAAO;GAAE,MAAM;GAAQ,aAAa;GAAqB,CAAC,CAC1D,WAAW;AAGhB,QAAM,GAAG,OAAO,kBAAkB,CAAC,OAAO;GACxC,QAAQ,IAAI;GACZ,QAAQ,KAAK;GACd,CAAC;AAEF,QAAM,iCAAiB,IAAI,OAAO,aAAa;AAE/C,SAAO;GACP;;;;;AAMJ,eAAsB,gBACpB,OACA,MACA,OACe;CAEf,MAAM,wBAAwB,cADT,4BAA4B,CACQ;AAEzD,QAAO,MAAM,GAAG,YAAY,OAAO,OAAO;EACxC,MAAM,CAAC,OAAO,MAAM,GACjB,OAAO,UAAU,CACjB,OAAO;GACC;GACD;GACC;GACP,iCAAiB,IAAI,MAAM;GAC3B,eAAe,OAAO,KAAK,sBAAsB;GAClD,CAAC,CACD,WAAW;EAGd,IAAI,CAAC,QAAQ,MAAM,GAChB,QAAQ,CACR,KAAK,WAAW,CAChB,MAAM,GAAG,WAAW,MAAM,OAAO,CAAC;AAErC,MAAI,CAAC,KACH,EAAC,QAAQ,MAAM,GACZ,OAAO,WAAW,CAClB,OAAO;GAAE,MAAM;GAAQ,aAAa;GAAqB,CAAC,CAC1D,WAAW;AAGhB,QAAM,GAAG,OAAO,kBAAkB,CAAC,OAAO;GACxC,QAAQ,IAAI;GACZ,QAAQ,KAAK;GACd,CAAC;AAEF,SAAO;GACP;;;;;AAMJ,eAAsB,YAAY,QAAsC;CACtE,MAAM,CAAC,QAAQ,MAAM,GAClB,QAAQ,CACR,KAAK,UAAU,CACf,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC;AAElC,KAAI,CAAC,KAAM,QAAO;CAClB,MAAM,EAAE,UAAU,eAAe,GAAG,aAAa;AACjD,QAAO;;;;;AAMT,eAAsB,mBAAmB,QAAiC;CACxE,MAAM,CAAC,QAAQ,MAAM,GAClB,OAAO,EACN,eAAe,UAAU,eAC1B,CAAC,CACD,KAAK,UAAU,CACf,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC;AAElC,KAAI,CAAC,QAAQ,CAAC,KAAK,cACjB,OAAM,IAAI,MAAM,mCAAmC;AAGrD,QAAO,gBAAgB,KAAK,cAAc;;;;;AAM5C,eAAsB,sBAAsB,QAAiC;CAC3E,MAAM,eAAe,4BAA4B;CACjD,MAAM,YAAY,cAAc,aAAa;CAC7C,MAAM,CAAC,eAAe,MAAM,GACzB,OAAO,UAAU,CACjB,IAAI,EACH,eAAe,OAAO,KAAK,UAAU,EACtC,CAAC,CACD,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC,CAC/B,WAAW;AAEd,KAAI,CAAC,YACH,OAAM,IAAI,MAAM,iBAAiB;AAGnC,OAAM,iCAAiB,YAAY,OAAO,aAAa;AAEvD,QAAO;;;;;AAMT,eAAsB,mBACpB,QACA,UACe;CACf,MAAM,eAAe,MAAM,aAAa,SAAS;AAEjD,OAAM,GACH,OAAO,UAAU,CACjB,IAAI,EACH,UAAU,cACX,CAAC,CACD,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC;;;;;AAMpC,eAAsB,eACpB,QACA,MACe;AACf,OAAM,GACH,OAAO,UAAU,CACjB,IAAI,EACG,MACP,CAAC,CACD,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC;;;;;AAKpC,eAAsB,iBACpB,QACA,OACe;AACf,OAAM,GACH,OAAO,UAAU,CACjB,IAAI,EACH,OACD,CAAC,CACD,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC;;;;;AAMpC,eAAsB,qCACpB,QACA,OACe;AACf,OAAM,GACH,OAAO,UAAU,CACjB,IAAI;EACI;EACP,iCAAiB,IAAI,MAAM;EAC5B,CAAC,CACD,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC;;;;;AAMpC,eAAsB,qCACpB,QACA,OACkB;AASlB,SARe,MAAM,GAClB,OAAO,UAAU,CACjB,IAAI,EACH,iCAAiB,IAAI,MAAM,EAC5B,CAAC,CACD,MAAM,IAAI,GAAG,UAAU,IAAI,OAAO,EAAE,GAAG,UAAU,OAAO,MAAM,CAAC,CAAC,CAChE,UAAU,EAAE,IAAI,UAAU,IAAI,CAAC,EAEpB,SAAS;;;;;AAMzB,eAAsB,oBACpB,QACwB;CACxB,MAAM,CAAC,QAAQ,MAAM,GAClB,OAAO,EACN,UAAU,UAAU,UACrB,CAAC,CACD,KAAK,UAAU,CACf,MAAM,GAAG,UAAU,IAAI,OAAO,CAAC;AAElC,KAAI,CAAC,KACH,OAAM,IAAI,MAAM,iBAAiB;AAGnC,QAAO,KAAK;;;;;AAMd,eAAsB,iBAAiB,OAAqC;CAC1E,MAAM,CAAC,QAAQ,MAAM,GAClB,QAAQ,CACR,KAAK,UAAU,CACf,MAAM,GAAG,UAAU,OAAO,MAAM,CAAC;AAEpC,KAAI,CAAC,KAAM,QAAO;CAClB,MAAM,EAAE,UAAU,eAAe,GAAG,aAAa;AACjD,QAAO"}
+{"version":3,"file":"user.mjs","names":[],"sources":["../../../src/server/auth/user.ts"],"sourcesContent":["\"use server\";\n\nimport { and, eq } from \"drizzle-orm\";\nimport type { User } from \"../../core/auth/types.js\";\nimport { generateRandomRecoveryCode } from \"../../core/auth/utils/encode.js\";\nimport {\n  decryptToString,\n  encryptString,\n} from \"../../core/auth/utils/encryption.js\";\nimport { db } from \"../database/inject.js\";\nimport { rolesTable, usersToRolesTable, userTable } from \"../database/schema.js\";\nimport { sendRecoveryCode } from \"../emails/index.js\";\nimport { hashPassword } from \"./password.js\";\n\n/**\n * Validates the username input.\n */\nexport async function verifyUsernameInput(username: string): Promise<boolean> {\n  return (\n    username.length > 3 && username.length < 32 && username.trim() === username\n  );\n}\n\n/**\n * Creates a new user with an initial recovery code and default 'user' role.\n */\nexport async function createUser(\n  email: string,\n  username: string,\n  password: string,\n): Promise<User> {\n  const passwordHash = await hashPassword(password);\n  const recoveryCode = generateRandomRecoveryCode();\n  const encryptedRecoveryCode = encryptString(recoveryCode);\n\n  return await db.transaction(async (tx) => {\n    const [row] = await tx\n      .insert(userTable)\n      .values({\n        email: email,\n        name: username,\n        password: passwordHash,\n        recovery_code: Buffer.from(encryptedRecoveryCode),\n      })\n      .returning();\n\n    if (!row) {\n      throw new Error(\"Failed to create user\");\n    }\n\n    // Assign default 'user' role\n    let [role] = await tx\n      .select()\n      .from(rolesTable)\n      .where(eq(rolesTable.name, \"user\"));\n\n    if (!role) {\n      [role] = await tx\n        .insert(rolesTable)\n        .values({ name: \"user\", description: \"Default user role\" })\n        .returning();\n    }\n\n    await tx.insert(usersToRolesTable).values({\n      userId: row.id,\n      roleId: role.id,\n    });\n\n    await sendRecoveryCode(row.email, recoveryCode);\n\n    return row;\n  });\n}\n\n/**\n * Creates a new user from an OAuth provider.\n */\nexport async function createOAuthUser(\n  email: string,\n  name: string,\n  image?: string,\n): Promise<User> {\n  const recoveryCode = generateRandomRecoveryCode();\n  const encryptedRecoveryCode = encryptString(recoveryCode);\n\n  return await db.transaction(async (tx) => {\n    const [row] = await tx\n      .insert(userTable)\n      .values({\n        email: email,\n        name: name,\n        image: image,\n        emailVerifiedAt: new Date(),\n        recovery_code: Buffer.from(encryptedRecoveryCode),\n      })\n      .returning();\n\n    // Assign default 'user' role\n    let [role] = await tx\n      .select()\n      .from(rolesTable)\n      .where(eq(rolesTable.name, \"user\"));\n\n    if (!role) {\n      [role] = await tx\n        .insert(rolesTable)\n        .values({ name: \"user\", description: \"Default user role\" })\n        .returning();\n    }\n\n    await tx.insert(usersToRolesTable).values({\n      userId: row.id,\n      roleId: role.id,\n    });\n\n    return row;\n  });\n}\n\n/**\n * Returns a user by ID.\n */\nexport async function getUserById(userId: string): Promise<User | null> {\n  const [user] = await db\n    .select()\n    .from(userTable)\n    .where(eq(userTable.id, userId));\n\n  if (!user) return null;\n  const { password, recovery_code, ...safeUser } = user;\n  return safeUser as User;\n}\n\n/**\n * Decrypts and returns the user's recovery code.\n */\nexport async function getUserRecoverCode(userId: string): Promise<string> {\n  const [user] = await db\n    .select({\n      recovery_code: userTable.recovery_code,\n    })\n    .from(userTable)\n    .where(eq(userTable.id, userId));\n\n  if (!user || !user.recovery_code) {\n    throw new Error(\"Recovery code not found for user\");\n  }\n\n  return decryptToString(user.recovery_code);\n}\n\n/**\n * Generates and sets a new recovery code for the user.\n */\nexport async function resetUserRecoveryCode(userId: string): Promise<string> {\n  const recoveryCode = generateRandomRecoveryCode();\n  const encrypted = encryptString(recoveryCode);\n  const [currentUser] = await db\n    .update(userTable)\n    .set({\n      recovery_code: Buffer.from(encrypted),\n    })\n    .where(eq(userTable.id, userId))\n    .returning();\n\n  if (!currentUser) {\n    throw new Error(\"User not found\");\n  }\n\n  await sendRecoveryCode(currentUser.email, recoveryCode);\n\n  return recoveryCode;\n}\n\n/**\n * Updates the user's password.\n */\nexport async function updateUserPassword(\n  userId: string,\n  password: string,\n): Promise<void> {\n  const passwordHash = await hashPassword(password);\n\n  await db\n    .update(userTable)\n    .set({\n      password: passwordHash,\n    })\n    .where(eq(userTable.id, userId));\n}\n\n/**\n * Updates the user's name.\n */\nexport async function updateUserName(\n  userId: string,\n  name: string,\n): Promise<void> {\n  await db\n    .update(userTable)\n    .set({\n      name: name,\n    })\n    .where(eq(userTable.id, userId));\n}\n/**\n * Updates the user's image.\n */\nexport async function updateUserAwatar(\n  userId: string,\n  image: string,\n): Promise<void> {\n  await db\n    .update(userTable)\n    .set({\n      image,\n    })\n    .where(eq(userTable.id, userId));\n}\n\n/**\n * Updates the user's email and marks it as verified.\n */\nexport async function updateUserEmailAndSetEmailAsVerified(\n  userId: string,\n  email: string,\n): Promise<void> {\n  await db\n    .update(userTable)\n    .set({\n      email: email,\n      emailVerifiedAt: new Date(),\n    })\n    .where(eq(userTable.id, userId));\n}\n\n/**\n * Sets the user as email verified if the provided email matches.\n */\nexport async function setUserAsEmailVerifiedIfEmailMatches(\n  userId: string,\n  email: string,\n): Promise<boolean> {\n  const result = await db\n    .update(userTable)\n    .set({\n      emailVerifiedAt: new Date(),\n    })\n    .where(and(eq(userTable.id, userId), eq(userTable.email, email)))\n    .returning({ id: userTable.id });\n\n  return result.length > 0;\n}\n\n/**\n * Returns the user's password hash.\n */\nexport async function getUserPasswordHash(\n  userId: string,\n): Promise<string | null> {\n  const [user] = await db\n    .select({\n      password: userTable.password,\n    })\n    .from(userTable)\n    .where(eq(userTable.id, userId));\n\n  if (!user) {\n    throw new Error(\"User not found\");\n  }\n\n  return user.password;\n}\n\n/**\n * Returns a user by email.\n */\nexport async function getUserFromEmail(email: string): Promise<User | null> {\n  const [user] = await db\n    .select()\n    .from(userTable)\n    .where(eq(userTable.email, email));\n\n  if (!user) return null;\n  const { password, recovery_code, ...safeUser } = user;\n  return safeUser as User;\n}\n"],"mappings":"0cAiBA,eAAsB,EAAoB,EAAoC,CAC5E,OACE,EAAS,OAAS,GAAK,EAAS,OAAS,IAAM,EAAS,MAAM,GAAK,EAOvE,eAAsB,EACpB,EACA,EACA,EACe,CACf,IAAM,EAAe,MAAM,EAAa,EAAS,CAC3C,EAAe,GAA4B,CAC3C,EAAwB,EAAc,EAAa,CAEzD,OAAO,MAAM,EAAG,YAAY,KAAO,IAAO,CACxC,GAAM,CAAC,GAAO,MAAM,EACjB,OAAO,EAAU,CACjB,OAAO,CACC,QACP,KAAM,EACN,SAAU,EACV,cAAe,OAAO,KAAK,EAAsB,CAClD,CAAC,CACD,WAAW,CAEd,GAAI,CAAC,EACH,MAAU,MAAM,wBAAwB,CAI1C,GAAI,CAAC,GAAQ,MAAM,EAChB,QAAQ,CACR,KAAK,EAAW,CAChB,MAAM,EAAG,EAAW,KAAM,OAAO,CAAC,CAgBrC,OAdK,IACH,CAAC,GAAQ,MAAM,EACZ,OAAO,EAAW,CAClB,OAAO,CAAE,KAAM,OAAQ,YAAa,oBAAqB,CAAC,CAC1D,WAAW,EAGhB,MAAM,EAAG,OAAO,EAAkB,CAAC,OAAO,CACxC,OAAQ,EAAI,GACZ,OAAQ,EAAK,GACd,CAAC,CAEF,MAAM,EAAiB,EAAI,MAAO,EAAa,CAExC,GACP,CAMJ,eAAsB,EACpB,EACA,EACA,EACe,CAEf,IAAM,EAAwB,EADT,GAA4B,CACQ,CAEzD,OAAO,MAAM,EAAG,YAAY,KAAO,IAAO,CACxC,GAAM,CAAC,GAAO,MAAM,EACjB,OAAO,EAAU,CACjB,OAAO,CACC,QACD,OACC,QACP,gBAAiB,IAAI,KACrB,cAAe,OAAO,KAAK,EAAsB,CAClD,CAAC,CACD,WAAW,CAGV,CAAC,GAAQ,MAAM,EAChB,QAAQ,CACR,KAAK,EAAW,CAChB,MAAM,EAAG,EAAW,KAAM,OAAO,CAAC,CAcrC,OAZK,IACH,CAAC,GAAQ,MAAM,EACZ,OAAO,EAAW,CAClB,OAAO,CAAE,KAAM,OAAQ,YAAa,oBAAqB,CAAC,CAC1D,WAAW,EAGhB,MAAM,EAAG,OAAO,EAAkB,CAAC,OAAO,CACxC,OAAQ,EAAI,GACZ,OAAQ,EAAK,GACd,CAAC,CAEK,GACP,CAMJ,eAAsB,EAAY,EAAsC,CACtE,GAAM,CAAC,GAAQ,MAAM,EAClB,QAAQ,CACR,KAAK,EAAU,CACf,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAElC,GAAI,CAAC,EAAM,OAAO,KAClB,GAAM,CAAE,WAAU,gBAAe,GAAG,GAAa,EACjD,OAAO,EAMT,eAAsB,EAAmB,EAAiC,CACxE,GAAM,CAAC,GAAQ,MAAM,EAClB,OAAO,CACN,cAAe,EAAU,cAC1B,CAAC,CACD,KAAK,EAAU,CACf,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAElC,GAAI,CAAC,GAAQ,CAAC,EAAK,cACjB,MAAU,MAAM,mCAAmC,CAGrD,OAAO,EAAgB,EAAK,cAAc,CAM5C,eAAsB,EAAsB,EAAiC,CAC3E,IAAM,EAAe,GAA4B,CAC3C,EAAY,EAAc,EAAa,CACvC,CAAC,GAAe,MAAM,EACzB,OAAO,EAAU,CACjB,IAAI,CACH,cAAe,OAAO,KAAK,EAAU,CACtC,CAAC,CACD,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAC/B,WAAW,CAEd,GAAI,CAAC,EACH,MAAU,MAAM,iBAAiB,CAKnC,OAFA,MAAM,EAAiB,EAAY,MAAO,EAAa,CAEhD,EAMT,eAAsB,EACpB,EACA,EACe,CACf,IAAM,EAAe,MAAM,EAAa,EAAS,CAEjD,MAAM,EACH,OAAO,EAAU,CACjB,IAAI,CACH,SAAU,EACX,CAAC,CACD,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAMpC,eAAsB,EACpB,EACA,EACe,CACf,MAAM,EACH,OAAO,EAAU,CACjB,IAAI,CACG,OACP,CAAC,CACD,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAKpC,eAAsB,EACpB,EACA,EACe,CACf,MAAM,EACH,OAAO,EAAU,CACjB,IAAI,CACH,QACD,CAAC,CACD,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAMpC,eAAsB,EACpB,EACA,EACe,CACf,MAAM,EACH,OAAO,EAAU,CACjB,IAAI,CACI,QACP,gBAAiB,IAAI,KACtB,CAAC,CACD,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAMpC,eAAsB,EACpB,EACA,EACkB,CASlB,OARe,MAAM,EAClB,OAAO,EAAU,CACjB,IAAI,CACH,gBAAiB,IAAI,KACtB,CAAC,CACD,MAAM,EAAI,EAAG,EAAU,GAAI,EAAO,CAAE,EAAG,EAAU,MAAO,EAAM,CAAC,CAAC,CAChE,UAAU,CAAE,GAAI,EAAU,GAAI,CAAC,EAEpB,OAAS,EAMzB,eAAsB,EACpB,EACwB,CACxB,GAAM,CAAC,GAAQ,MAAM,EAClB,OAAO,CACN,SAAU,EAAU,SACrB,CAAC,CACD,KAAK,EAAU,CACf,MAAM,EAAG,EAAU,GAAI,EAAO,CAAC,CAElC,GAAI,CAAC,EACH,MAAU,MAAM,iBAAiB,CAGnC,OAAO,EAAK,SAMd,eAAsB,EAAiB,EAAqC,CAC1E,GAAM,CAAC,GAAQ,MAAM,EAClB,QAAQ,CACR,KAAK,EAAU,CACf,MAAM,EAAG,EAAU,MAAO,EAAM,CAAC,CAEpC,GAAI,CAAC,EAAM,OAAO,KAClB,GAAM,CAAE,WAAU,gBAAe,GAAG,GAAa,EACjD,OAAO"}

package/dist/server/database/inject.cjs

@@ -1,24 +1 @@
-
-//#region src/server/database/inject.ts
-const globalForDb = globalThis;
-function injectDb(db) {
-	if (globalForDb.__KRYO_DB__) return;
-	console.log("[Kryo:Core] >>> DATABASE INJECTED <<<");
-	globalForDb.__KRYO_DB__ = db;
-}
-/**
-* Shared 'db' proxy.
-* Resolves to globalThis.__KRYO_DB__ on every property access.
-* Safe to import statically at top-level.
-*/
-const db = new Proxy({}, { get(_, prop) {
-	if (prop === "then") return void 0;
-	if (typeof prop === "symbol" || prop === "inspect" || prop === "toString") return globalForDb.__KRYO_DB__?.[prop];
-	const database = globalForDb.__KRYO_DB__;
-	if (!database) throw new Error(`[Kryo:Core] Database access error: tried to use "db.${String(prop)}" but database is not injected yet. Ensure you call "ensureSystemInitialized()" before using the database.`);
-	return database[prop];
-} });
-
-//#endregion
-exports.db = db;
-exports.injectDb = injectDb;
+const e=globalThis;function t(t){e.__KRYO_DB__||=(console.log(`[Kryo:Core] >>> DATABASE INJECTED <<<`),t)}const n=new Proxy({},{get(t,n){if(n===`then`)return;if(typeof n==`symbol`||n===`inspect`||n===`toString`)return e.__KRYO_DB__?.[n];let r=e.__KRYO_DB__;if(!r)throw Error(`[Kryo:Core] Database access error: tried to use "db.${String(n)}" but database is not injected yet. Ensure you call "ensureSystemInitialized()" before using the database.`);return r[n]}});exports.db=n,exports.injectDb=t;

package/dist/server/database/inject.mjs

@@ -1,23 +1,2 @@
-//#region src/server/database/inject.ts
-const globalForDb = globalThis;
-function injectDb(db) {
-	if (globalForDb.__KRYO_DB__) return;
-	console.log("[Kryo:Core] >>> DATABASE INJECTED <<<");
-	globalForDb.__KRYO_DB__ = db;
-}
-/**
-* Shared 'db' proxy.
-* Resolves to globalThis.__KRYO_DB__ on every property access.
-* Safe to import statically at top-level.
-*/
-const db = new Proxy({}, { get(_, prop) {
-	if (prop === "then") return void 0;
-	if (typeof prop === "symbol" || prop === "inspect" || prop === "toString") return globalForDb.__KRYO_DB__?.[prop];
-	const database = globalForDb.__KRYO_DB__;
-	if (!database) throw new Error(`[Kryo:Core] Database access error: tried to use "db.${String(prop)}" but database is not injected yet. Ensure you call "ensureSystemInitialized()" before using the database.`);
-	return database[prop];
-} });
-
-//#endregion
-export { db, injectDb };
+const e=globalThis;function t(t){e.__KRYO_DB__||=(console.log(`[Kryo:Core] >>> DATABASE INJECTED <<<`),t)}const n=new Proxy({},{get(t,n){if(n===`then`)return;if(typeof n==`symbol`||n===`inspect`||n===`toString`)return e.__KRYO_DB__?.[n];let r=e.__KRYO_DB__;if(!r)throw Error(`[Kryo:Core] Database access error: tried to use "db.${String(n)}" but database is not injected yet. Ensure you call "ensureSystemInitialized()" before using the database.`);return r[n]}});export{n as db,t as injectDb};
 //# sourceMappingURL=inject.mjs.map

package/dist/server/database/inject.mjs.map

@@ -1 +1 @@
-{"version":3,"file":"inject.mjs","names":[],"sources":["../../../src/server/database/inject.ts"],"sourcesContent":["import type { NodePgDatabase } from \"drizzle-orm/node-postgres\";\nimport type * as schema from \"./schema\";\n\nexport type KryoDatabase = NodePgDatabase<typeof schema>;\n\n// Use globalThis to persist the DB across multiple bundles/instances\nconst globalForDb = globalThis as any;\n\nexport function injectDb(db: KryoDatabase) {\n  if (globalForDb.__KRYO_DB__) return;\n  console.log(\"[Kryo:Core] >>> DATABASE INJECTED <<<\");\n  globalForDb.__KRYO_DB__ = db;\n}\n\n/**\n * Shared 'db' proxy.\n * Resolves to globalThis.__KRYO_DB__ on every property access.\n * Safe to import statically at top-level.\n */\nexport const db = new Proxy({} as KryoDatabase, {\n  get(_, prop) {\n    if (prop === \"then\") return undefined;\n\n    // Internal Drizzle/Node/Debug checks\n    if (typeof prop === \"symbol\" || prop === \"inspect\" || prop === \"toString\") {\n      return (globalForDb.__KRYO_DB__ as any)?.[prop];\n    }\n\n    const database = globalForDb.__KRYO_DB__;\n\n    if (!database) {\n      throw new Error(\n        `[Kryo:Core] Database access error: tried to use \"db.${String(prop)}\" but database is not injected yet. Ensure you call \"ensureSystemInitialized()\" before using the database.`,\n      );\n    }\n\n    return (database as any)[prop];\n  },\n});\n"],"mappings":";AAMA,MAAM,cAAc;AAEpB,SAAgB,SAAS,IAAkB;AACzC,KAAI,YAAY,YAAa;AAC7B,SAAQ,IAAI,wCAAwC;AACpD,aAAY,cAAc;;;;;;;AAQ5B,MAAa,KAAK,IAAI,MAAM,EAAE,EAAkB,EAC9C,IAAI,GAAG,MAAM;AACX,KAAI,SAAS,OAAQ,QAAO;AAG5B,KAAI,OAAO,SAAS,YAAY,SAAS,aAAa,SAAS,WAC7D,QAAQ,YAAY,cAAsB;CAG5C,MAAM,WAAW,YAAY;AAE7B,KAAI,CAAC,SACH,OAAM,IAAI,MACR,uDAAuD,OAAO,KAAK,CAAC,4GACrE;AAGH,QAAQ,SAAiB;GAE5B,CAAC"}
+{"version":3,"file":"inject.mjs","names":[],"sources":["../../../src/server/database/inject.ts"],"sourcesContent":["import type { NodePgDatabase } from \"drizzle-orm/node-postgres\";\nimport type * as schema from \"./schema.js\";\n\nexport type KryoDatabase = NodePgDatabase<typeof schema>;\n\n// Use globalThis to persist the DB across multiple bundles/instances\nconst globalForDb = globalThis as any;\n\nexport function injectDb(db: KryoDatabase) {\n  if (globalForDb.__KRYO_DB__) return;\n  console.log(\"[Kryo:Core] >>> DATABASE INJECTED <<<\");\n  globalForDb.__KRYO_DB__ = db;\n}\n\n/**\n * Shared 'db' proxy.\n * Resolves to globalThis.__KRYO_DB__ on every property access.\n * Safe to import statically at top-level.\n */\nexport const db = new Proxy({} as KryoDatabase, {\n  get(_, prop) {\n    if (prop === \"then\") return undefined;\n\n    // Internal Drizzle/Node/Debug checks\n    if (typeof prop === \"symbol\" || prop === \"inspect\" || prop === \"toString\") {\n      return (globalForDb.__KRYO_DB__ as any)?.[prop];\n    }\n\n    const database = globalForDb.__KRYO_DB__;\n\n    if (!database) {\n      throw new Error(\n        `[Kryo:Core] Database access error: tried to use \"db.${String(prop)}\" but database is not injected yet. Ensure you call \"ensureSystemInitialized()\" before using the database.`,\n      );\n    }\n\n    return (database as any)[prop];\n  },\n});\n"],"mappings":"AAMA,MAAM,EAAc,WAEpB,SAAgB,EAAS,EAAkB,CACrC,AAEJ,EAAY,eADZ,QAAQ,IAAI,wCAAwC,CAC1B,GAQ5B,MAAa,EAAK,IAAI,MAAM,EAAE,CAAkB,CAC9C,IAAI,EAAG,EAAM,CACX,GAAI,IAAS,OAAQ,OAGrB,GAAI,OAAO,GAAS,UAAY,IAAS,WAAa,IAAS,WAC7D,OAAQ,EAAY,cAAsB,GAG5C,IAAM,EAAW,EAAY,YAE7B,GAAI,CAAC,EACH,MAAU,MACR,uDAAuD,OAAO,EAAK,CAAC,4GACrE,CAGH,OAAQ,EAAiB,IAE5B,CAAC"}

package/dist/server/database/schema.cjs

@@ -1,163 +1 @@
-const require_runtime = require('../../_virtual/_rolldown/runtime.cjs');
-let drizzle_orm = require("drizzle-orm");
-let drizzle_orm_pg_core = require("drizzle-orm/pg-core");
-
-//#region src/server/database/schema.ts
-const userTable = (0, drizzle_orm_pg_core.pgTable)("users", {
-	id: (0, drizzle_orm_pg_core.text)("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	email: (0, drizzle_orm_pg_core.text)("email").notNull().unique(),
-	name: (0, drizzle_orm_pg_core.text)("name").notNull(),
-	password: (0, drizzle_orm_pg_core.text)("password"),
-	image: (0, drizzle_orm_pg_core.text)("image"),
-	recovery_code: (0, drizzle_orm_pg_core.bytea)("recovery_code").notNull(),
-	emailVerifiedAt: (0, drizzle_orm_pg_core.timestamp)("email_verified_at", { precision: 3 }),
-	createdAt: (0, drizzle_orm_pg_core.timestamp)("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: (0, drizzle_orm_pg_core.timestamp)("updated_at", { precision: 3 })
-});
-const rolesTable = (0, drizzle_orm_pg_core.pgTable)("roles", {
-	id: (0, drizzle_orm_pg_core.text)("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	name: (0, drizzle_orm_pg_core.text)("name").notNull().unique(),
-	description: (0, drizzle_orm_pg_core.text)("description")
-});
-const permissionsTable = (0, drizzle_orm_pg_core.pgTable)("permissions", {
-	id: (0, drizzle_orm_pg_core.text)("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	name: (0, drizzle_orm_pg_core.text)("name").notNull().unique(),
-	description: (0, drizzle_orm_pg_core.text)("description")
-});
-const usersToRolesTable = (0, drizzle_orm_pg_core.pgTable)("users_to_roles", {
-	userId: (0, drizzle_orm_pg_core.text)("user_id").notNull().references(() => userTable.id, { onDelete: "cascade" }),
-	roleId: (0, drizzle_orm_pg_core.text)("role_id").notNull().references(() => rolesTable.id, { onDelete: "cascade" })
-}, (t) => [{ pk: drizzle_orm.sql`PRIMARY KEY (${t.userId}, ${t.roleId})` }]);
-const usersToPermissionsTable = (0, drizzle_orm_pg_core.pgTable)("users_to_permissions", {
-	userId: (0, drizzle_orm_pg_core.text)("user_id").notNull().references(() => userTable.id, { onDelete: "cascade" }),
-	permissionId: (0, drizzle_orm_pg_core.text)("permission_id").notNull().references(() => permissionsTable.id, { onDelete: "cascade" })
-}, (t) => [{ pk: drizzle_orm.sql`PRIMARY KEY (${t.userId}, ${t.permissionId})` }]);
-const rolesToPermissionsTable = (0, drizzle_orm_pg_core.pgTable)("roles_to_permissions", {
-	roleId: (0, drizzle_orm_pg_core.text)("role_id").notNull().references(() => rolesTable.id, { onDelete: "cascade" }),
-	permissionId: (0, drizzle_orm_pg_core.text)("permission_id").notNull().references(() => permissionsTable.id, { onDelete: "cascade" })
-}, (t) => [{ pk: drizzle_orm.sql`PRIMARY KEY (${t.roleId}, ${t.permissionId})` }]);
-const sessionTable = (0, drizzle_orm_pg_core.pgTable)("sessions", {
-	id: (0, drizzle_orm_pg_core.text)("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	active_organization_id: (0, drizzle_orm_pg_core.text)("active_organization_id"),
-	userId: (0, drizzle_orm_pg_core.text)("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	expiresAt: (0, drizzle_orm_pg_core.timestamp)("expires_at", { precision: 3 }).notNull(),
-	createdAt: (0, drizzle_orm_pg_core.timestamp)("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: (0, drizzle_orm_pg_core.timestamp)("updated_at", { precision: 3 })
-});
-const emailVerificationTable = (0, drizzle_orm_pg_core.pgTable)("email_verification_requests", {
-	id: (0, drizzle_orm_pg_core.text)("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	email: (0, drizzle_orm_pg_core.text)("email").notNull(),
-	code: (0, drizzle_orm_pg_core.text)("code").notNull(),
-	userId: (0, drizzle_orm_pg_core.text)("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	expiresAt: (0, drizzle_orm_pg_core.timestamp)("expires_at", { precision: 3 }).notNull(),
-	createdAt: (0, drizzle_orm_pg_core.timestamp)("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: (0, drizzle_orm_pg_core.timestamp)("updated_at", { precision: 3 })
-});
-const passwordResetSessionTable = (0, drizzle_orm_pg_core.pgTable)("password_reset_sessions", {
-	id: (0, drizzle_orm_pg_core.text)("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	email: (0, drizzle_orm_pg_core.text)("email").notNull(),
-	code: (0, drizzle_orm_pg_core.text)("code").notNull(),
-	emailVerified: (0, drizzle_orm_pg_core.boolean)("emailVerified").default(false),
-	userId: (0, drizzle_orm_pg_core.text)("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	expiresAt: (0, drizzle_orm_pg_core.timestamp)("expires_at", { precision: 3 }).notNull(),
-	createdAt: (0, drizzle_orm_pg_core.timestamp)("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: (0, drizzle_orm_pg_core.timestamp)("updated_at", { precision: 3 })
-});
-const notificationTable = (0, drizzle_orm_pg_core.pgTable)("notification", {
-	id: (0, drizzle_orm_pg_core.text)("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	title: (0, drizzle_orm_pg_core.text)("title").notNull(),
-	content: (0, drizzle_orm_pg_core.text)("content"),
-	target: (0, drizzle_orm_pg_core.text)("target"),
-	type: (0, drizzle_orm_pg_core.text)("type"),
-	isRead: (0, drizzle_orm_pg_core.boolean)("isRead").notNull(),
-	resourceId: (0, drizzle_orm_pg_core.text)("resource_id"),
-	resourceType: (0, drizzle_orm_pg_core.text)("resource_type"),
-	userId: (0, drizzle_orm_pg_core.text)("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	createdAt: (0, drizzle_orm_pg_core.timestamp)("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: (0, drizzle_orm_pg_core.timestamp)("updated_at", { precision: 3 })
-});
-const systemModulesTable = (0, drizzle_orm_pg_core.pgTable)("system_modules", {
-	id: (0, drizzle_orm_pg_core.text)("id").notNull().primaryKey(),
-	enabled: (0, drizzle_orm_pg_core.boolean)("enabled").notNull().default(false),
-	installed: (0, drizzle_orm_pg_core.boolean)("installed").notNull().default(false),
-	deleted: (0, drizzle_orm_pg_core.boolean)("deleted").notNull().default(false),
-	system: (0, drizzle_orm_pg_core.boolean)("system").notNull().default(false),
-	config: (0, drizzle_orm_pg_core.text)("config"),
-	lastStep: (0, drizzle_orm_pg_core.text)("last_step"),
-	updatedAt: (0, drizzle_orm_pg_core.timestamp)("updated_at", { precision: 3 }).defaultNow()
-});
-const relations = (0, drizzle_orm.defineRelations)({
-	user: userTable,
-	emailVerification: emailVerificationTable,
-	passwordResetSession: passwordResetSessionTable,
-	session: sessionTable,
-	notification: notificationTable,
-	systemModulesTable
-}, (r) => ({
-	user: {
-		sessions: r.many.session({
-			from: r.user.id,
-			to: r.session.userId
-		}),
-		emailVerification: r.many.emailVerification({
-			from: r.user.id,
-			to: r.emailVerification.userId
-		}),
-		passwordResetSession: r.many.passwordResetSession({
-			from: r.user.id,
-			to: r.passwordResetSession.userId
-		})
-	},
-	session: { user: r.one.user({
-		from: r.session.userId,
-		to: r.user.id
-	}) },
-	emailVerification: { user: r.one.user({
-		from: r.emailVerification.userId,
-		to: r.user.id
-	}) },
-	passwordResetSession: { user: r.one.user({
-		from: r.passwordResetSession.userId,
-		to: r.user.id
-	}) }
-}));
-const coreSchema = {
-	userTable,
-	rolesTable,
-	permissionsTable,
-	usersToRolesTable,
-	usersToPermissionsTable,
-	rolesToPermissionsTable,
-	sessionTable,
-	emailVerificationTable,
-	passwordResetSessionTable,
-	notificationTable,
-	systemModulesTable
-};
-
-//#endregion
-exports.coreSchema = coreSchema;
-exports.emailVerificationTable = emailVerificationTable;
-exports.notificationTable = notificationTable;
-exports.passwordResetSessionTable = passwordResetSessionTable;
-exports.permissionsTable = permissionsTable;
-exports.relations = relations;
-exports.rolesTable = rolesTable;
-exports.rolesToPermissionsTable = rolesToPermissionsTable;
-exports.sessionTable = sessionTable;
-exports.systemModulesTable = systemModulesTable;
-exports.userTable = userTable;
-exports.usersToPermissionsTable = usersToPermissionsTable;
-exports.usersToRolesTable = usersToRolesTable;
+require(`../../_virtual/_rolldown/runtime.cjs`);let e=require(`drizzle-orm`),t=require(`drizzle-orm/pg-core`);const n=(0,t.pgTable)(`users`,{id:(0,t.text)(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:(0,t.text)(`email`).notNull().unique(),name:(0,t.text)(`name`).notNull(),password:(0,t.text)(`password`),image:(0,t.text)(`image`),recovery_code:(0,t.bytea)(`recovery_code`).notNull(),emailVerifiedAt:(0,t.timestamp)(`email_verified_at`,{precision:3}),createdAt:(0,t.timestamp)(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:(0,t.timestamp)(`updated_at`,{precision:3})}),r=(0,t.pgTable)(`roles`,{id:(0,t.text)(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),name:(0,t.text)(`name`).notNull().unique(),description:(0,t.text)(`description`)}),i=(0,t.pgTable)(`permissions`,{id:(0,t.text)(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),name:(0,t.text)(`name`).notNull().unique(),description:(0,t.text)(`description`)}),a=(0,t.pgTable)(`users_to_roles`,{userId:(0,t.text)(`user_id`).notNull().references(()=>n.id,{onDelete:`cascade`}),roleId:(0,t.text)(`role_id`).notNull().references(()=>r.id,{onDelete:`cascade`})},t=>[{pk:e.sql`PRIMARY KEY (${t.userId}, ${t.roleId})`}]),o=(0,t.pgTable)(`users_to_permissions`,{userId:(0,t.text)(`user_id`).notNull().references(()=>n.id,{onDelete:`cascade`}),permissionId:(0,t.text)(`permission_id`).notNull().references(()=>i.id,{onDelete:`cascade`})},t=>[{pk:e.sql`PRIMARY KEY (${t.userId}, ${t.permissionId})`}]),s=(0,t.pgTable)(`roles_to_permissions`,{roleId:(0,t.text)(`role_id`).notNull().references(()=>r.id,{onDelete:`cascade`}),permissionId:(0,t.text)(`permission_id`).notNull().references(()=>i.id,{onDelete:`cascade`})},t=>[{pk:e.sql`PRIMARY KEY (${t.roleId}, ${t.permissionId})`}]),c=(0,t.pgTable)(`sessions`,{id:(0,t.text)(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),active_organization_id:(0,t.text)(`active_organization_id`),userId:(0,t.text)(`user_id`).notNull().references(()=>n.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:(0,t.timestamp)(`expires_at`,{precision:3}).notNull(),createdAt:(0,t.timestamp)(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:(0,t.timestamp)(`updated_at`,{precision:3})}),l=(0,t.pgTable)(`email_verification_requests`,{id:(0,t.text)(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:(0,t.text)(`email`).notNull(),code:(0,t.text)(`code`).notNull(),userId:(0,t.text)(`user_id`).notNull().references(()=>n.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:(0,t.timestamp)(`expires_at`,{precision:3}).notNull(),createdAt:(0,t.timestamp)(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:(0,t.timestamp)(`updated_at`,{precision:3})}),u=(0,t.pgTable)(`password_reset_sessions`,{id:(0,t.text)(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:(0,t.text)(`email`).notNull(),code:(0,t.text)(`code`).notNull(),emailVerified:(0,t.boolean)(`emailVerified`).default(!1),userId:(0,t.text)(`user_id`).notNull().references(()=>n.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:(0,t.timestamp)(`expires_at`,{precision:3}).notNull(),createdAt:(0,t.timestamp)(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:(0,t.timestamp)(`updated_at`,{precision:3})}),d=(0,t.pgTable)(`notification`,{id:(0,t.text)(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),title:(0,t.text)(`title`).notNull(),content:(0,t.text)(`content`),target:(0,t.text)(`target`),type:(0,t.text)(`type`),isRead:(0,t.boolean)(`isRead`).notNull(),resourceId:(0,t.text)(`resource_id`),resourceType:(0,t.text)(`resource_type`),userId:(0,t.text)(`user_id`).notNull().references(()=>n.id,{onDelete:`cascade`,onUpdate:`cascade`}),createdAt:(0,t.timestamp)(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:(0,t.timestamp)(`updated_at`,{precision:3})}),f=(0,t.pgTable)(`system_modules`,{id:(0,t.text)(`id`).notNull().primaryKey(),enabled:(0,t.boolean)(`enabled`).notNull().default(!1),installed:(0,t.boolean)(`installed`).notNull().default(!1),deleted:(0,t.boolean)(`deleted`).notNull().default(!1),system:(0,t.boolean)(`system`).notNull().default(!1),config:(0,t.text)(`config`),lastStep:(0,t.text)(`last_step`),updatedAt:(0,t.timestamp)(`updated_at`,{precision:3}).defaultNow()}),p=(0,e.defineRelations)({user:n,emailVerification:l,passwordResetSession:u,session:c,notification:d,systemModulesTable:f},e=>({user:{sessions:e.many.session({from:e.user.id,to:e.session.userId}),emailVerification:e.many.emailVerification({from:e.user.id,to:e.emailVerification.userId}),passwordResetSession:e.many.passwordResetSession({from:e.user.id,to:e.passwordResetSession.userId})},session:{user:e.one.user({from:e.session.userId,to:e.user.id})},emailVerification:{user:e.one.user({from:e.emailVerification.userId,to:e.user.id})},passwordResetSession:{user:e.one.user({from:e.passwordResetSession.userId,to:e.user.id})}})),m={userTable:n,rolesTable:r,permissionsTable:i,usersToRolesTable:a,usersToPermissionsTable:o,rolesToPermissionsTable:s,sessionTable:c,emailVerificationTable:l,passwordResetSessionTable:u,notificationTable:d,systemModulesTable:f};exports.coreSchema=m,exports.emailVerificationTable=l,exports.notificationTable=d,exports.passwordResetSessionTable=u,exports.permissionsTable=i,exports.relations=p,exports.rolesTable=r,exports.rolesToPermissionsTable=s,exports.sessionTable=c,exports.systemModulesTable=f,exports.userTable=n,exports.usersToPermissionsTable=o,exports.usersToRolesTable=a;

package/dist/server/database/schema.mjs

@@ -1,151 +1,2 @@
-import { defineRelations, sql } from "drizzle-orm";
-import { boolean, bytea, pgTable, text, timestamp } from "drizzle-orm/pg-core";
-
-//#region src/server/database/schema.ts
-const userTable = pgTable("users", {
-	id: text("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	email: text("email").notNull().unique(),
-	name: text("name").notNull(),
-	password: text("password"),
-	image: text("image"),
-	recovery_code: bytea("recovery_code").notNull(),
-	emailVerifiedAt: timestamp("email_verified_at", { precision: 3 }),
-	createdAt: timestamp("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: timestamp("updated_at", { precision: 3 })
-});
-const rolesTable = pgTable("roles", {
-	id: text("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	name: text("name").notNull().unique(),
-	description: text("description")
-});
-const permissionsTable = pgTable("permissions", {
-	id: text("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	name: text("name").notNull().unique(),
-	description: text("description")
-});
-const usersToRolesTable = pgTable("users_to_roles", {
-	userId: text("user_id").notNull().references(() => userTable.id, { onDelete: "cascade" }),
-	roleId: text("role_id").notNull().references(() => rolesTable.id, { onDelete: "cascade" })
-}, (t) => [{ pk: sql`PRIMARY KEY (${t.userId}, ${t.roleId})` }]);
-const usersToPermissionsTable = pgTable("users_to_permissions", {
-	userId: text("user_id").notNull().references(() => userTable.id, { onDelete: "cascade" }),
-	permissionId: text("permission_id").notNull().references(() => permissionsTable.id, { onDelete: "cascade" })
-}, (t) => [{ pk: sql`PRIMARY KEY (${t.userId}, ${t.permissionId})` }]);
-const rolesToPermissionsTable = pgTable("roles_to_permissions", {
-	roleId: text("role_id").notNull().references(() => rolesTable.id, { onDelete: "cascade" }),
-	permissionId: text("permission_id").notNull().references(() => permissionsTable.id, { onDelete: "cascade" })
-}, (t) => [{ pk: sql`PRIMARY KEY (${t.roleId}, ${t.permissionId})` }]);
-const sessionTable = pgTable("sessions", {
-	id: text("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	active_organization_id: text("active_organization_id"),
-	userId: text("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	expiresAt: timestamp("expires_at", { precision: 3 }).notNull(),
-	createdAt: timestamp("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: timestamp("updated_at", { precision: 3 })
-});
-const emailVerificationTable = pgTable("email_verification_requests", {
-	id: text("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	email: text("email").notNull(),
-	code: text("code").notNull(),
-	userId: text("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	expiresAt: timestamp("expires_at", { precision: 3 }).notNull(),
-	createdAt: timestamp("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: timestamp("updated_at", { precision: 3 })
-});
-const passwordResetSessionTable = pgTable("password_reset_sessions", {
-	id: text("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	email: text("email").notNull(),
-	code: text("code").notNull(),
-	emailVerified: boolean("emailVerified").default(false),
-	userId: text("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	expiresAt: timestamp("expires_at", { precision: 3 }).notNull(),
-	createdAt: timestamp("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: timestamp("updated_at", { precision: 3 })
-});
-const notificationTable = pgTable("notification", {
-	id: text("id").$defaultFn(() => crypto.randomUUID()).notNull().primaryKey(),
-	title: text("title").notNull(),
-	content: text("content"),
-	target: text("target"),
-	type: text("type"),
-	isRead: boolean("isRead").notNull(),
-	resourceId: text("resource_id"),
-	resourceType: text("resource_type"),
-	userId: text("user_id").notNull().references(() => userTable.id, {
-		onDelete: "cascade",
-		onUpdate: "cascade"
-	}),
-	createdAt: timestamp("created_at", { precision: 3 }).notNull().defaultNow(),
-	updatedAt: timestamp("updated_at", { precision: 3 })
-});
-const systemModulesTable = pgTable("system_modules", {
-	id: text("id").notNull().primaryKey(),
-	enabled: boolean("enabled").notNull().default(false),
-	installed: boolean("installed").notNull().default(false),
-	deleted: boolean("deleted").notNull().default(false),
-	system: boolean("system").notNull().default(false),
-	config: text("config"),
-	lastStep: text("last_step"),
-	updatedAt: timestamp("updated_at", { precision: 3 }).defaultNow()
-});
-const relations = defineRelations({
-	user: userTable,
-	emailVerification: emailVerificationTable,
-	passwordResetSession: passwordResetSessionTable,
-	session: sessionTable,
-	notification: notificationTable,
-	systemModulesTable
-}, (r) => ({
-	user: {
-		sessions: r.many.session({
-			from: r.user.id,
-			to: r.session.userId
-		}),
-		emailVerification: r.many.emailVerification({
-			from: r.user.id,
-			to: r.emailVerification.userId
-		}),
-		passwordResetSession: r.many.passwordResetSession({
-			from: r.user.id,
-			to: r.passwordResetSession.userId
-		})
-	},
-	session: { user: r.one.user({
-		from: r.session.userId,
-		to: r.user.id
-	}) },
-	emailVerification: { user: r.one.user({
-		from: r.emailVerification.userId,
-		to: r.user.id
-	}) },
-	passwordResetSession: { user: r.one.user({
-		from: r.passwordResetSession.userId,
-		to: r.user.id
-	}) }
-}));
-const coreSchema = {
-	userTable,
-	rolesTable,
-	permissionsTable,
-	usersToRolesTable,
-	usersToPermissionsTable,
-	rolesToPermissionsTable,
-	sessionTable,
-	emailVerificationTable,
-	passwordResetSessionTable,
-	notificationTable,
-	systemModulesTable
-};
-
-//#endregion
-export { coreSchema, emailVerificationTable, notificationTable, passwordResetSessionTable, permissionsTable, relations, rolesTable, rolesToPermissionsTable, sessionTable, systemModulesTable, userTable, usersToPermissionsTable, usersToRolesTable };
+import{defineRelations as e,sql as t}from"drizzle-orm";import{boolean as n,bytea as r,pgTable as i,text as a,timestamp as o}from"drizzle-orm/pg-core";const s=i(`users`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:a(`email`).notNull().unique(),name:a(`name`).notNull(),password:a(`password`),image:a(`image`),recovery_code:r(`recovery_code`).notNull(),emailVerifiedAt:o(`email_verified_at`,{precision:3}),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),c=i(`roles`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),name:a(`name`).notNull().unique(),description:a(`description`)}),l=i(`permissions`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),name:a(`name`).notNull().unique(),description:a(`description`)}),u=i(`users_to_roles`,{userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`}),roleId:a(`role_id`).notNull().references(()=>c.id,{onDelete:`cascade`})},e=>[{pk:t`PRIMARY KEY (${e.userId}, ${e.roleId})`}]),d=i(`users_to_permissions`,{userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`}),permissionId:a(`permission_id`).notNull().references(()=>l.id,{onDelete:`cascade`})},e=>[{pk:t`PRIMARY KEY (${e.userId}, ${e.permissionId})`}]),f=i(`roles_to_permissions`,{roleId:a(`role_id`).notNull().references(()=>c.id,{onDelete:`cascade`}),permissionId:a(`permission_id`).notNull().references(()=>l.id,{onDelete:`cascade`})},e=>[{pk:t`PRIMARY KEY (${e.roleId}, ${e.permissionId})`}]),p=i(`sessions`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),active_organization_id:a(`active_organization_id`),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:o(`expires_at`,{precision:3}).notNull(),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),m=i(`email_verification_requests`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:a(`email`).notNull(),code:a(`code`).notNull(),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:o(`expires_at`,{precision:3}).notNull(),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),h=i(`password_reset_sessions`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:a(`email`).notNull(),code:a(`code`).notNull(),emailVerified:n(`emailVerified`).default(!1),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:o(`expires_at`,{precision:3}).notNull(),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),g=i(`notification`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),title:a(`title`).notNull(),content:a(`content`),target:a(`target`),type:a(`type`),isRead:n(`isRead`).notNull(),resourceId:a(`resource_id`),resourceType:a(`resource_type`),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),_=i(`system_modules`,{id:a(`id`).notNull().primaryKey(),enabled:n(`enabled`).notNull().default(!1),installed:n(`installed`).notNull().default(!1),deleted:n(`deleted`).notNull().default(!1),system:n(`system`).notNull().default(!1),config:a(`config`),lastStep:a(`last_step`),updatedAt:o(`updated_at`,{precision:3}).defaultNow()}),v=e({user:s,emailVerification:m,passwordResetSession:h,session:p,notification:g,systemModulesTable:_},e=>({user:{sessions:e.many.session({from:e.user.id,to:e.session.userId}),emailVerification:e.many.emailVerification({from:e.user.id,to:e.emailVerification.userId}),passwordResetSession:e.many.passwordResetSession({from:e.user.id,to:e.passwordResetSession.userId})},session:{user:e.one.user({from:e.session.userId,to:e.user.id})},emailVerification:{user:e.one.user({from:e.emailVerification.userId,to:e.user.id})},passwordResetSession:{user:e.one.user({from:e.passwordResetSession.userId,to:e.user.id})}})),y={userTable:s,rolesTable:c,permissionsTable:l,usersToRolesTable:u,usersToPermissionsTable:d,rolesToPermissionsTable:f,sessionTable:p,emailVerificationTable:m,passwordResetSessionTable:h,notificationTable:g,systemModulesTable:_};export{y as coreSchema,m as emailVerificationTable,g as notificationTable,h as passwordResetSessionTable,l as permissionsTable,v as relations,c as rolesTable,f as rolesToPermissionsTable,p as sessionTable,_ as systemModulesTable,s as userTable,d as usersToPermissionsTable,u as usersToRolesTable};
 //# sourceMappingURL=schema.mjs.map