@arch-cadre/core 0.0.41 → 0.0.42

package/dist/server/database/{schema.d.ts.map → schema.d.mts.map}

@@ -1 +1 @@
-{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../../../src/server/database/schema.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,SAAS;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAapB,CAAC;AAEH,eAAO,MAAM,UAAU;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAOrB,CAAC;AAEH,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAO3B,CAAC;AAEH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAW7B,CAAC;AAEF,eAAO,MAAM,uBAAuB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAWnC,CAAC;AAEF,eAAO,MAAM,uBAAuB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAWnC,CAAC;AAEF,eAAO,MAAM,YAAY;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAevB,CAAC;AAEH,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAgBjC,CAAC;AAEH,eAAO,MAAM,yBAAyB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAiBpC,CAAC;AAEH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAoB5B,CAAC;AAEH,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAS7B,CAAC;AAEH,eAAO,MAAM,SAAS;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA8CrB,CAAC;AAEF,eAAO,MAAM,UAAU;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAYtB,CAAC;AAEF,MAAM,MAAM,cAAc,GAAG,OAAO,SAAS,CAAC"}
+{"version":3,"file":"schema.d.mts","names":[],"sources":["../../../src/server/database/schema.ts"],"mappings":";;;;;;;cAGa,SAAA,uBAAS,kBAAA;;;;QAapB,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,UAAA,uBAAU,kBAAA;;;;QAOrB,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,gBAAA,uBAAgB,kBAAA;;;;QAO3B,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,iBAAA,uBAAiB,kBAAA;;;;YAW7B,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEY,uBAAA,uBAAuB,kBAAA;;;;YAWnC,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEY,uBAAA,uBAAuB,kBAAA;;;;YAWnC,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEY,YAAA,uBAAY,kBAAA;;;;QAevB,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,sBAAA,uBAAsB,kBAAA;;;;QAgBjC,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,yBAAA,uBAAyB,kBAAA;;;;QAiBpC,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,iBAAA,uBAAiB,kBAAA;;;;QAoB5B,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,kBAAA,uBAAkB,kBAAA;;;;QAS7B,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEW,SAAA,eAAS,0BAAA;;cA8CrB,YAAA,CAAA,IAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;cAEY,UAAA;;;;;UAYZ,oBAAA,CAAA,QAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;KAEW,cAAA,UAAwB,SAAA"}

package/dist/server/database/schema.mjs

@@ -0,0 +1,2 @@
+import{defineRelations as e,sql as t}from"drizzle-orm";import{boolean as n,bytea as r,pgTable as i,text as a,timestamp as o}from"drizzle-orm/pg-core";const s=i(`users`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:a(`email`).notNull().unique(),name:a(`name`).notNull(),password:a(`password`),image:a(`image`),recovery_code:r(`recovery_code`).notNull(),emailVerifiedAt:o(`email_verified_at`,{precision:3}),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),c=i(`roles`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),name:a(`name`).notNull().unique(),description:a(`description`)}),l=i(`permissions`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),name:a(`name`).notNull().unique(),description:a(`description`)}),u=i(`users_to_roles`,{userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`}),roleId:a(`role_id`).notNull().references(()=>c.id,{onDelete:`cascade`})},e=>[{pk:t`PRIMARY KEY (${e.userId}, ${e.roleId})`}]),d=i(`users_to_permissions`,{userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`}),permissionId:a(`permission_id`).notNull().references(()=>l.id,{onDelete:`cascade`})},e=>[{pk:t`PRIMARY KEY (${e.userId}, ${e.permissionId})`}]),f=i(`roles_to_permissions`,{roleId:a(`role_id`).notNull().references(()=>c.id,{onDelete:`cascade`}),permissionId:a(`permission_id`).notNull().references(()=>l.id,{onDelete:`cascade`})},e=>[{pk:t`PRIMARY KEY (${e.roleId}, ${e.permissionId})`}]),p=i(`sessions`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),active_organization_id:a(`active_organization_id`),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:o(`expires_at`,{precision:3}).notNull(),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),m=i(`email_verification_requests`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:a(`email`).notNull(),code:a(`code`).notNull(),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:o(`expires_at`,{precision:3}).notNull(),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),h=i(`password_reset_sessions`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),email:a(`email`).notNull(),code:a(`code`).notNull(),emailVerified:n(`emailVerified`).default(!1),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),expiresAt:o(`expires_at`,{precision:3}).notNull(),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),g=i(`notification`,{id:a(`id`).$defaultFn(()=>crypto.randomUUID()).notNull().primaryKey(),title:a(`title`).notNull(),content:a(`content`),target:a(`target`),type:a(`type`),isRead:n(`isRead`).notNull(),resourceId:a(`resource_id`),resourceType:a(`resource_type`),userId:a(`user_id`).notNull().references(()=>s.id,{onDelete:`cascade`,onUpdate:`cascade`}),createdAt:o(`created_at`,{precision:3}).notNull().defaultNow(),updatedAt:o(`updated_at`,{precision:3})}),_=i(`system_modules`,{id:a(`id`).notNull().primaryKey(),enabled:n(`enabled`).notNull().default(!1),installed:n(`installed`).notNull().default(!1),deleted:n(`deleted`).notNull().default(!1),system:n(`system`).notNull().default(!1),config:a(`config`),lastStep:a(`last_step`),updatedAt:o(`updated_at`,{precision:3}).defaultNow()}),v=e({user:s,emailVerification:m,passwordResetSession:h,session:p,notification:g,systemModulesTable:_},e=>({user:{sessions:e.many.session({from:e.user.id,to:e.session.userId}),emailVerification:e.many.emailVerification({from:e.user.id,to:e.emailVerification.userId}),passwordResetSession:e.many.passwordResetSession({from:e.user.id,to:e.passwordResetSession.userId})},session:{user:e.one.user({from:e.session.userId,to:e.user.id})},emailVerification:{user:e.one.user({from:e.emailVerification.userId,to:e.user.id})},passwordResetSession:{user:e.one.user({from:e.passwordResetSession.userId,to:e.user.id})}})),y={userTable:s,rolesTable:c,permissionsTable:l,usersToRolesTable:u,usersToPermissionsTable:d,rolesToPermissionsTable:f,sessionTable:p,emailVerificationTable:m,passwordResetSessionTable:h,notificationTable:g,systemModulesTable:_};export{y as coreSchema,m as emailVerificationTable,g as notificationTable,h as passwordResetSessionTable,l as permissionsTable,v as relations,c as rolesTable,f as rolesToPermissionsTable,p as sessionTable,_ as systemModulesTable,s as userTable,d as usersToPermissionsTable,u as usersToRolesTable};
+//# sourceMappingURL=schema.mjs.map

package/dist/server/database/schema.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.mjs","names":[],"sources":["../../../src/server/database/schema.ts"],"sourcesContent":["import { defineRelations, sql } from \"drizzle-orm\";\nimport { boolean, bytea, pgTable, text, timestamp } from \"drizzle-orm/pg-core\";\n\nexport const userTable = pgTable(\"users\", {\n  id: text(\"id\")\n    .$defaultFn(() => crypto.randomUUID())\n    .notNull()\n    .primaryKey(),\n  email: text(\"email\").notNull().unique(),\n  name: text(\"name\").notNull(),\n  password: text(\"password\"),\n  image: text(\"image\"),\n  recovery_code: bytea(\"recovery_code\").notNull(),\n  emailVerifiedAt: timestamp(\"email_verified_at\", { precision: 3 }),\n  createdAt: timestamp(\"created_at\", { precision: 3 }).notNull().defaultNow(),\n  updatedAt: timestamp(\"updated_at\", { precision: 3 }),\n});\n\nexport const rolesTable = pgTable(\"roles\", {\n  id: text(\"id\")\n    .$defaultFn(() => crypto.randomUUID())\n    .notNull()\n    .primaryKey(),\n  name: text(\"name\").notNull().unique(), // np. \"admin\", \"user\"\n  description: text(\"description\"),\n});\n\nexport const permissionsTable = pgTable(\"permissions\", {\n  id: text(\"id\")\n    .$defaultFn(() => crypto.randomUUID())\n    .notNull()\n    .primaryKey(),\n  name: text(\"name\").notNull().unique(), // np. \"blog:write\"\n  description: text(\"description\"),\n});\n\nexport const usersToRolesTable = pgTable(\n  \"users_to_roles\",\n  {\n    userId: text(\"user_id\")\n      .notNull()\n      .references(() => userTable.id, { onDelete: \"cascade\" }),\n    roleId: text(\"role_id\")\n      .notNull()\n      .references(() => rolesTable.id, { onDelete: \"cascade\" }),\n  },\n  (t) => [{ pk: sql`PRIMARY KEY (${t.userId}, ${t.roleId})` }],\n);\n\nexport const usersToPermissionsTable = pgTable(\n  \"users_to_permissions\",\n  {\n    userId: text(\"user_id\")\n      .notNull()\n      .references(() => userTable.id, { onDelete: \"cascade\" }),\n    permissionId: text(\"permission_id\")\n      .notNull()\n      .references(() => permissionsTable.id, { onDelete: \"cascade\" }),\n  },\n  (t) => [{ pk: sql`PRIMARY KEY (${t.userId}, ${t.permissionId})` }],\n);\n\nexport const rolesToPermissionsTable = pgTable(\n  \"roles_to_permissions\",\n  {\n    roleId: text(\"role_id\")\n      .notNull()\n      .references(() => rolesTable.id, { onDelete: \"cascade\" }),\n    permissionId: text(\"permission_id\")\n      .notNull()\n      .references(() => permissionsTable.id, { onDelete: \"cascade\" }),\n  },\n  (t) => [{ pk: sql`PRIMARY KEY (${t.roleId}, ${t.permissionId})` }],\n);\n\nexport const sessionTable = pgTable(\"sessions\", {\n  id: text(\"id\")\n    .$defaultFn(() => crypto.randomUUID())\n    .notNull()\n    .primaryKey(),\n  active_organization_id: text(\"active_organization_id\"),\n  userId: text(\"user_id\")\n    .notNull()\n    .references(() => userTable.id, {\n      onDelete: \"cascade\",\n      onUpdate: \"cascade\",\n    }),\n  expiresAt: timestamp(\"expires_at\", { precision: 3 }).notNull(),\n  createdAt: timestamp(\"created_at\", { precision: 3 }).notNull().defaultNow(),\n  updatedAt: timestamp(\"updated_at\", { precision: 3 }),\n});\n\nexport const emailVerificationTable = pgTable(\"email_verification_requests\", {\n  id: text(\"id\")\n    .$defaultFn(() => crypto.randomUUID())\n    .notNull()\n    .primaryKey(),\n  email: text(\"email\").notNull(),\n  code: text(\"code\").notNull(),\n  userId: text(\"user_id\")\n    .notNull()\n    .references(() => userTable.id, {\n      onDelete: \"cascade\",\n      onUpdate: \"cascade\",\n    }),\n  expiresAt: timestamp(\"expires_at\", { precision: 3 }).notNull(),\n  createdAt: timestamp(\"created_at\", { precision: 3 }).notNull().defaultNow(),\n  updatedAt: timestamp(\"updated_at\", { precision: 3 }),\n});\n\nexport const passwordResetSessionTable = pgTable(\"password_reset_sessions\", {\n  id: text(\"id\")\n    .$defaultFn(() => crypto.randomUUID())\n    .notNull()\n    .primaryKey(),\n  email: text(\"email\").notNull(),\n  code: text(\"code\").notNull(),\n  emailVerified: boolean(\"emailVerified\").default(false),\n  userId: text(\"user_id\")\n    .notNull()\n    .references(() => userTable.id, {\n      onDelete: \"cascade\",\n      onUpdate: \"cascade\",\n    }),\n  expiresAt: timestamp(\"expires_at\", { precision: 3 }).notNull(),\n  createdAt: timestamp(\"created_at\", { precision: 3 }).notNull().defaultNow(),\n  updatedAt: timestamp(\"updated_at\", { precision: 3 }),\n});\n\nexport const notificationTable = pgTable(\"notification\", {\n  id: text(\"id\")\n    .$defaultFn(() => crypto.randomUUID())\n    .notNull()\n    .primaryKey(),\n  title: text(\"title\").notNull(),\n  content: text(\"content\"),\n  target: text(\"target\"),\n  type: text(\"type\"),\n  isRead: boolean(\"isRead\").notNull(),\n  resourceId: text(\"resource_id\"),\n  resourceType: text(\"resource_type\"),\n  userId: text(\"user_id\")\n    .notNull()\n    .references(() => userTable.id, {\n      onDelete: \"cascade\",\n      onUpdate: \"cascade\",\n    }),\n  createdAt: timestamp(\"created_at\", { precision: 3 }).notNull().defaultNow(),\n  updatedAt: timestamp(\"updated_at\", { precision: 3 }),\n});\n\nexport const systemModulesTable = pgTable(\"system_modules\", {\n  id: text(\"id\").notNull().primaryKey(),\n  enabled: boolean(\"enabled\").notNull().default(false),\n  installed: boolean(\"installed\").notNull().default(false),\n  deleted: boolean(\"deleted\").notNull().default(false),\n  system: boolean(\"system\").notNull().default(false),\n  config: text(\"config\"),\n  lastStep: text(\"last_step\"), // Przechowuje aktualny etap (np. \"Syncing DB\")\n  updatedAt: timestamp(\"updated_at\", { precision: 3 }).defaultNow(),\n});\n\nexport const relations = defineRelations(\n  {\n    user: userTable,\n    emailVerification: emailVerificationTable,\n    passwordResetSession: passwordResetSessionTable,\n    session: sessionTable,\n    notification: notificationTable,\n    systemModulesTable: systemModulesTable,\n  },\n  (r) => ({\n    user: {\n      sessions: r.many.session({\n        from: r.user.id,\n        to: r.session.userId,\n      }),\n      emailVerification: r.many.emailVerification({\n        from: r.user.id,\n        to: r.emailVerification.userId,\n      }),\n      passwordResetSession: r.many.passwordResetSession({\n        from: r.user.id,\n        to: r.passwordResetSession.userId,\n      }),\n    },\n\n    session: {\n      user: r.one.user({\n        from: r.session.userId,\n        to: r.user.id,\n      }),\n    },\n\n    emailVerification: {\n      user: r.one.user({\n        from: r.emailVerification.userId,\n        to: r.user.id,\n      }),\n    },\n\n    passwordResetSession: {\n      user: r.one.user({\n        from: r.passwordResetSession.userId,\n        to: r.user.id,\n      }),\n    },\n  }),\n);\n\nexport const coreSchema = {\n  userTable,\n  rolesTable,\n  permissionsTable,\n  usersToRolesTable,\n  usersToPermissionsTable,\n  rolesToPermissionsTable,\n  sessionTable,\n  emailVerificationTable,\n  passwordResetSessionTable,\n  notificationTable,\n  systemModulesTable,\n};\n\nexport type DatabaseSchema = typeof relations;\n"],"mappings":"sJAGA,MAAa,EAAY,EAAQ,QAAS,CACxC,GAAI,EAAK,KAAK,CACX,eAAiB,OAAO,YAAY,CAAC,CACrC,SAAS,CACT,YAAY,CACf,MAAO,EAAK,QAAQ,CAAC,SAAS,CAAC,QAAQ,CACvC,KAAM,EAAK,OAAO,CAAC,SAAS,CAC5B,SAAU,EAAK,WAAW,CAC1B,MAAO,EAAK,QAAQ,CACpB,cAAe,EAAM,gBAAgB,CAAC,SAAS,CAC/C,gBAAiB,EAAU,oBAAqB,CAAE,UAAW,EAAG,CAAC,CACjE,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAAC,YAAY,CAC3E,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CACrD,CAAC,CAEW,EAAa,EAAQ,QAAS,CACzC,GAAI,EAAK,KAAK,CACX,eAAiB,OAAO,YAAY,CAAC,CACrC,SAAS,CACT,YAAY,CACf,KAAM,EAAK,OAAO,CAAC,SAAS,CAAC,QAAQ,CACrC,YAAa,EAAK,cAAc,CACjC,CAAC,CAEW,EAAmB,EAAQ,cAAe,CACrD,GAAI,EAAK,KAAK,CACX,eAAiB,OAAO,YAAY,CAAC,CACrC,SAAS,CACT,YAAY,CACf,KAAM,EAAK,OAAO,CAAC,SAAS,CAAC,QAAQ,CACrC,YAAa,EAAK,cAAc,CACjC,CAAC,CAEW,EAAoB,EAC/B,iBACA,CACE,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAU,GAAI,CAAE,SAAU,UAAW,CAAC,CAC1D,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAW,GAAI,CAAE,SAAU,UAAW,CAAC,CAC5D,CACA,GAAM,CAAC,CAAE,GAAI,CAAG,gBAAgB,EAAE,OAAO,IAAI,EAAE,OAAO,GAAI,CAAC,CAC7D,CAEY,EAA0B,EACrC,uBACA,CACE,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAU,GAAI,CAAE,SAAU,UAAW,CAAC,CAC1D,aAAc,EAAK,gBAAgB,CAChC,SAAS,CACT,eAAiB,EAAiB,GAAI,CAAE,SAAU,UAAW,CAAC,CAClE,CACA,GAAM,CAAC,CAAE,GAAI,CAAG,gBAAgB,EAAE,OAAO,IAAI,EAAE,aAAa,GAAI,CAAC,CACnE,CAEY,EAA0B,EACrC,uBACA,CACE,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAW,GAAI,CAAE,SAAU,UAAW,CAAC,CAC3D,aAAc,EAAK,gBAAgB,CAChC,SAAS,CACT,eAAiB,EAAiB,GAAI,CAAE,SAAU,UAAW,CAAC,CAClE,CACA,GAAM,CAAC,CAAE,GAAI,CAAG,gBAAgB,EAAE,OAAO,IAAI,EAAE,aAAa,GAAI,CAAC,CACnE,CAEY,EAAe,EAAQ,WAAY,CAC9C,GAAI,EAAK,KAAK,CACX,eAAiB,OAAO,YAAY,CAAC,CACrC,SAAS,CACT,YAAY,CACf,uBAAwB,EAAK,yBAAyB,CACtD,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAU,GAAI,CAC9B,SAAU,UACV,SAAU,UACX,CAAC,CACJ,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAC9D,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAAC,YAAY,CAC3E,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CACrD,CAAC,CAEW,EAAyB,EAAQ,8BAA+B,CAC3E,GAAI,EAAK,KAAK,CACX,eAAiB,OAAO,YAAY,CAAC,CACrC,SAAS,CACT,YAAY,CACf,MAAO,EAAK,QAAQ,CAAC,SAAS,CAC9B,KAAM,EAAK,OAAO,CAAC,SAAS,CAC5B,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAU,GAAI,CAC9B,SAAU,UACV,SAAU,UACX,CAAC,CACJ,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAC9D,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAAC,YAAY,CAC3E,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CACrD,CAAC,CAEW,EAA4B,EAAQ,0BAA2B,CAC1E,GAAI,EAAK,KAAK,CACX,eAAiB,OAAO,YAAY,CAAC,CACrC,SAAS,CACT,YAAY,CACf,MAAO,EAAK,QAAQ,CAAC,SAAS,CAC9B,KAAM,EAAK,OAAO,CAAC,SAAS,CAC5B,cAAe,EAAQ,gBAAgB,CAAC,QAAQ,GAAM,CACtD,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAU,GAAI,CAC9B,SAAU,UACV,SAAU,UACX,CAAC,CACJ,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAC9D,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAAC,YAAY,CAC3E,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CACrD,CAAC,CAEW,EAAoB,EAAQ,eAAgB,CACvD,GAAI,EAAK,KAAK,CACX,eAAiB,OAAO,YAAY,CAAC,CACrC,SAAS,CACT,YAAY,CACf,MAAO,EAAK,QAAQ,CAAC,SAAS,CAC9B,QAAS,EAAK,UAAU,CACxB,OAAQ,EAAK,SAAS,CACtB,KAAM,EAAK,OAAO,CAClB,OAAQ,EAAQ,SAAS,CAAC,SAAS,CACnC,WAAY,EAAK,cAAc,CAC/B,aAAc,EAAK,gBAAgB,CACnC,OAAQ,EAAK,UAAU,CACpB,SAAS,CACT,eAAiB,EAAU,GAAI,CAC9B,SAAU,UACV,SAAU,UACX,CAAC,CACJ,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,SAAS,CAAC,YAAY,CAC3E,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CACrD,CAAC,CAEW,EAAqB,EAAQ,iBAAkB,CAC1D,GAAI,EAAK,KAAK,CAAC,SAAS,CAAC,YAAY,CACrC,QAAS,EAAQ,UAAU,CAAC,SAAS,CAAC,QAAQ,GAAM,CACpD,UAAW,EAAQ,YAAY,CAAC,SAAS,CAAC,QAAQ,GAAM,CACxD,QAAS,EAAQ,UAAU,CAAC,SAAS,CAAC,QAAQ,GAAM,CACpD,OAAQ,EAAQ,SAAS,CAAC,SAAS,CAAC,QAAQ,GAAM,CAClD,OAAQ,EAAK,SAAS,CACtB,SAAU,EAAK,YAAY,CAC3B,UAAW,EAAU,aAAc,CAAE,UAAW,EAAG,CAAC,CAAC,YAAY,CAClE,CAAC,CAEW,EAAY,EACvB,CACE,KAAM,EACN,kBAAmB,EACnB,qBAAsB,EACtB,QAAS,EACT,aAAc,EACM,qBACrB,CACA,IAAO,CACN,KAAM,CACJ,SAAU,EAAE,KAAK,QAAQ,CACvB,KAAM,EAAE,KAAK,GACb,GAAI,EAAE,QAAQ,OACf,CAAC,CACF,kBAAmB,EAAE,KAAK,kBAAkB,CAC1C,KAAM,EAAE,KAAK,GACb,GAAI,EAAE,kBAAkB,OACzB,CAAC,CACF,qBAAsB,EAAE,KAAK,qBAAqB,CAChD,KAAM,EAAE,KAAK,GACb,GAAI,EAAE,qBAAqB,OAC5B,CAAC,CACH,CAED,QAAS,CACP,KAAM,EAAE,IAAI,KAAK,CACf,KAAM,EAAE,QAAQ,OAChB,GAAI,EAAE,KAAK,GACZ,CAAC,CACH,CAED,kBAAmB,CACjB,KAAM,EAAE,IAAI,KAAK,CACf,KAAM,EAAE,kBAAkB,OAC1B,GAAI,EAAE,KAAK,GACZ,CAAC,CACH,CAED,qBAAsB,CACpB,KAAM,EAAE,IAAI,KAAK,CACf,KAAM,EAAE,qBAAqB,OAC7B,GAAI,EAAE,KAAK,GACZ,CAAC,CACH,CACF,EACF,CAEY,EAAa,CACxB,YACA,aACA,mBACA,oBACA,0BACA,0BACA,eACA,yBACA,4BACA,oBACA,qBACD"}

package/dist/server/emails/index.d.mts

@@ -0,0 +1,26 @@
+//#region src/server/emails/index.d.ts
+/**
+ * Sends an email with a verification link.
+ * @param email Recipient's email address.
+ * @param code Verification code.
+ */
+declare function sendVerifyEmail(email: string, code: string): Promise<void>;
+/**
+ * Sends an email with a password reset link.
+ * @param email Recipient's email address.
+ * @param code Password reset code.
+ */
+declare function sendResetPassword(email: string, code: string): Promise<void>;
+/**
+ * Sends an email with a recovery code.
+ * @param email Recipient's email address.
+ * @param recoveryCode Recovery code
+ */
+declare function sendRecoveryCode(email: string, recoveryCode: string): Promise<void>;
+/**
+ * Sends a 2FA code via email.
+ */
+declare function send2FACode(email: string, code: string): Promise<void>;
+//#endregion
+export { send2FACode, sendRecoveryCode, sendResetPassword, sendVerifyEmail };
+//# sourceMappingURL=index.d.mts.map

package/dist/server/emails/index.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.mts","names":[],"sources":["../../../src/server/emails/index.ts"],"mappings":";;AAkBA;;;;iBAAsB,eAAA,CAAgB,KAAA,UAAe,IAAA,WAAY,OAAA;;;;;AAejE;iBAAsB,iBAAA,CAAkB,KAAA,UAAe,IAAA,WAAY,OAAA;;;;;;iBAe7C,gBAAA,CAAiB,KAAA,UAAe,YAAA,WAAoB,OAAA;;AAA1E;;iBAasB,WAAA,CAAY,KAAA,UAAe,IAAA,WAAY,OAAA"}

package/dist/server/emails/index.mjs

@@ -0,0 +1,2 @@
+"use server";async function e(e,t){}async function t(e,t){}async function n(e,t){}async function r(e,t){}export{r as send2FACode,n as sendRecoveryCode,t as sendResetPassword,e as sendVerifyEmail};
+//# sourceMappingURL=index.mjs.map

package/dist/server/emails/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.mjs","names":[],"sources":["../../../src/server/emails/index.ts"],"sourcesContent":["\"use server\";\n\n// import nodemailer from \"nodemailer\";\n\n// Konfiguracja transportera SMTP\n// const transporter = nodemailer.createTransport({\n//   service: \"gmail\",\n//   auth: {\n//     user: process.env.GOOGLE_SMTP_APP_USERNAME,\n//     pass: process.env.GOOGLE_SMTP_APP_PASSWORD,\n//   },\n// });\n\n/**\n * Sends an email with a verification link.\n * @param email Recipient's email address.\n * @param code Verification code.\n */\nexport async function sendVerifyEmail(email: string, code: string) {\n  // const { t } = await getTranslation();\n  // await transporter.sendMail({\n  //   from: `Winkly <${process.env.GOOGLE_SMTP_APP_USERNAME}>`,\n  //   to: email,\n  //   subject: t(\"Verify Email\"),\n  //   text: t(\"Verify your email address with your code: {{ code }}\", { code }),\n  // });\n}\n\n/**\n * Sends an email with a password reset link.\n * @param email Recipient's email address.\n * @param code Password reset code.\n */\nexport async function sendResetPassword(email: string, code: string) {\n  // const { t } = await getTranslation();\n  // await transporter.sendMail({\n  //   from: `Winkly <${process.env.GOOGLE_SMTP_APP_USERNAME}>`,\n  //   to: email,\n  //   subject: t(\"Password Reset\"),\n  //   text: t(\"Verify password reset with code: {{ code }}\", { code }),\n  // });\n}\n\n/**\n * Sends an email with a recovery code.\n * @param email Recipient's email address.\n * @param recoveryCode Recovery code\n */\nexport async function sendRecoveryCode(email: string, recoveryCode: string) {\n  // const { t } = await getTranslation();\n  // await transporter.sendMail({\n  //   from: `Winkly <${process.env.GOOGLE_SMTP_APP_USERNAME}>`,\n  //   to: email,\n  //   subject: t(\"Recovery Code\"),\n  //   text: t(\"Your recovery code is: {{ recoveryCode }}\", { recoveryCode }),\n  // });\n}\n\n/**\n * Sends a 2FA code via email.\n */\nexport async function send2FACode(email: string, code: string) {\n  // const { t } = await getTranslation();\n  // await transporter.sendMail({\n  //   from: `Winkly <${process.env.GOOGLE_SMTP_APP_USERNAME}>`,\n  //   to: email,\n  //   subject: t(\"Your 2FA Code\"),\n  //   text: t(\n  //     \"Your verification code is: {{ code }}. It will expire in 10 minutes.\",\n  //     { code },\n  //   ),\n  // });\n}\n"],"mappings":"aAkBA,eAAsB,EAAgB,EAAe,EAAc,EAenE,eAAsB,EAAkB,EAAe,EAAc,EAerE,eAAsB,EAAiB,EAAe,EAAsB,EAa5E,eAAsB,EAAY,EAAe,EAAc"}

package/dist/server.d.mts

@@ -0,0 +1,26 @@
+import { DatabaseSchema, coreSchema, emailVerificationTable, notificationTable, passwordResetSessionTable, permissionsTable, relations, rolesTable, rolesToPermissionsTable, sessionTable, systemModulesTable, userTable, usersToPermissionsTable, usersToRolesTable } from "./server/database/schema.mjs";
+import { EventHandler, SystemEvent, UserPermission, UserRole } from "./core/types.mjs";
+import { AuthResponse, AuthSession, FullUser, PasswordResetAuthSession, PasswordResetSession, Session, SessionFlags, User, UserSession } from "./core/auth/types.mjs";
+import { ForgotPasswordInput, LoginInput, PasskeysSetupInput, RecoveryVerifyInput, RegisterInput, ResetPasswordInput, TOTPSetupInput, TOTPVerifyInput, VerifyEmailInput, forgotPasswordSchema, loginSchema, passkeysSetupSchema, recoveryCodeVerifySchema, registerSchema, resetPasswordSchema, totpSetupSchema, totpVerifySchema, verifyEmailSchema } from "./core/auth/validation.mjs";
+import { eventBus } from "./core/event-bus.mjs";
+import { CreateNotificationPayload, Notification, NotificationEvents } from "./core/notifications/types.mjs";
+import { createEmailVerificationRequest, deleteEmailVerificationRequestCookie, deleteUserEmailVerificationRequest, getUserEmailVerificationRequest, getUserEmailVerificationRequestFromRequest, initEmailVerification, sendVerificationEmail, setEmailVerificationRequestCookie } from "./core/auth/email-verification.mjs";
+import { augmentSession, augmentUser, registerIdentityAugmenter, registerPasswordResetSessionAugmenter, registerSessionAugmenter } from "./core/auth/augment.mjs";
+import { checkSecurity, finalizeLogin, performFullUserAugmentation, registerAuthValidator, registerEmailVerificationValidator, registerPasswordResetValidator, registerSecurityRequirement, runEmailVerificationValidators, runPasswordResetValidators, signIn, signOut, signUp } from "./core/auth/logic.mjs";
+import { createPasswordResetSession, deletePasswordResetSessionTokenCookie, getCurrentPasswordResetSession, invalidateUserPasswordResetSessions, sendPasswordResetEmail, setPasswordResetSessionAsEmailVerified, setPasswordResetSessionTokenCookie, validatePasswordResetSessionToken } from "./core/auth/password-reset.mjs";
+import { assignPermissionToRole, assignPermissionToUser, assignRoleToUser, createPermission, createRole, deletePermission, deleteRole, getPermissions, getRoleById, getRolePermissions, getRoles, getUserRbacData, revokePermissionFromRole, revokePermissionFromUser, revokeRoleFromUser } from "./core/auth/rbac.mjs";
+import { createSession, deleteSessionTokenCookie, generateSessionToken, getCurrentSession, getIPAddress, getUserSessions, invalidateOtherSessions, invalidateSession, invalidateUserSessions, sessionSignOut, setSessionTokenCookie, validateSessionToken } from "./core/auth/session.mjs";
+import { generateRandomOTP, generateRandomRecoveryCode } from "./core/auth/utils/encode.mjs";
+import { decrypt, decryptToString, encrypt, encryptString } from "./core/auth/utils/encryption.mjs";
+import { ensureSystemInitialized } from "./core/bootstrap.mjs";
+import { getKryoConfig, getModulesDir } from "./core/config.server.mjs";
+import { IStorageProvider, StorageData, StorageError, StorageResult } from "./core/filesystem/types.mjs";
+import { filesystemService } from "./core/filesystem/service.mjs";
+import { createNotification, getUserNotifications, markAllNotificationsAsRead, markNotificationAsRead } from "./core/notifications/actions.mjs";
+import { isSystemInstalled } from "./core/setup.mjs";
+import { checkEmailAvailability, verifyEmailInput } from "./server/auth/email.mjs";
+import { hashPassword, verifyPasswordHash, verifyPasswordStrength } from "./server/auth/password.mjs";
+import { createOAuthUser, createUser, getUserById, getUserFromEmail, getUserPasswordHash, getUserRecoverCode, resetUserRecoveryCode, setUserAsEmailVerifiedIfEmailMatches, updateUserAwatar, updateUserEmailAndSetEmailAsVerified, updateUserName, updateUserPassword, verifyUsernameInput } from "./server/auth/user.mjs";
+import { KryoDatabase, db, injectDb } from "./server/database/inject.mjs";
+import { send2FACode, sendRecoveryCode, sendResetPassword, sendVerifyEmail } from "./server/emails/index.mjs";
+export { AuthResponse, AuthSession, CreateNotificationPayload, DatabaseSchema, EventHandler, ForgotPasswordInput, FullUser, IStorageProvider, KryoDatabase, LoginInput, Notification, NotificationEvents, PasskeysSetupInput, PasswordResetAuthSession, PasswordResetSession, RecoveryVerifyInput, RegisterInput, ResetPasswordInput, Session, SessionFlags, StorageData, StorageError, StorageResult, SystemEvent, TOTPSetupInput, TOTPVerifyInput, User, UserPermission, UserRole, UserSession, VerifyEmailInput, assignPermissionToRole, assignPermissionToUser, assignRoleToUser, augmentSession, augmentUser, checkEmailAvailability, checkSecurity, coreSchema, createEmailVerificationRequest, createNotification, createOAuthUser, createPasswordResetSession, createPermission, createRole, createSession, createUser, db, decrypt, decryptToString, deleteEmailVerificationRequestCookie, deletePasswordResetSessionTokenCookie, deletePermission, deleteRole, deleteSessionTokenCookie, deleteUserEmailVerificationRequest, emailVerificationTable, encrypt, encryptString, ensureSystemInitialized, eventBus, filesystemService, finalizeLogin, forgotPasswordSchema, generateRandomOTP, generateRandomRecoveryCode, generateSessionToken, getCurrentPasswordResetSession, getCurrentSession, getIPAddress, getKryoConfig, getModulesDir, getPermissions, getRoleById, getRolePermissions, getRoles, getUserById, getUserEmailVerificationRequest, getUserEmailVerificationRequestFromRequest, getUserFromEmail, getUserNotifications, getUserPasswordHash, getUserRbacData, getUserRecoverCode, getUserSessions, hashPassword, initEmailVerification, injectDb, invalidateOtherSessions, invalidateSession, invalidateUserPasswordResetSessions, invalidateUserSessions, isSystemInstalled, loginSchema, markAllNotificationsAsRead, markNotificationAsRead, notificationTable, passkeysSetupSchema, passwordResetSessionTable, performFullUserAugmentation, permissionsTable, recoveryCodeVerifySchema, registerAuthValidator, registerEmailVerificationValidator, registerIdentityAugmenter, registerPasswordResetSessionAugmenter, registerPasswordResetValidator, registerSchema, registerSecurityRequirement, registerSessionAugmenter, relations, resetPasswordSchema, resetUserRecoveryCode, revokePermissionFromRole, revokePermissionFromUser, revokeRoleFromUser, rolesTable, rolesToPermissionsTable, runEmailVerificationValidators, runPasswordResetValidators, send2FACode, sendPasswordResetEmail, sendRecoveryCode, sendResetPassword, sendVerificationEmail, sendVerifyEmail, sessionSignOut, sessionTable, setEmailVerificationRequestCookie, setPasswordResetSessionAsEmailVerified, setPasswordResetSessionTokenCookie, setSessionTokenCookie, setUserAsEmailVerifiedIfEmailMatches, signIn, signOut, signUp, systemModulesTable, totpSetupSchema, totpVerifySchema, updateUserAwatar, updateUserEmailAndSetEmailAsVerified, updateUserName, updateUserPassword, userTable, usersToPermissionsTable, usersToRolesTable, validatePasswordResetSessionToken, validateSessionToken, verifyEmailInput, verifyEmailSchema, verifyPasswordHash, verifyPasswordStrength, verifyUsernameInput };

package/dist/server.mjs

@@ -0,0 +1 @@
+import{forgotPasswordSchema as e,loginSchema as t,passkeysSetupSchema as n,recoveryCodeVerifySchema as r,registerSchema as i,resetPasswordSchema as a,totpSetupSchema as o,totpVerifySchema as s,verifyEmailSchema as c}from"./core/auth/validation.mjs";import{eventBus as l}from"./core/event-bus.mjs";import{db as u,injectDb as d}from"./server/database/inject.mjs";import{coreSchema as f,emailVerificationTable as p,notificationTable as m,passwordResetSessionTable as h,permissionsTable as g,relations as _,rolesTable as v,rolesToPermissionsTable as y,sessionTable as b,systemModulesTable as x,userTable as S,usersToPermissionsTable as C,usersToRolesTable as w}from"./server/database/schema.mjs";import{augmentSession as T,augmentUser as E,registerIdentityAugmenter as D,registerPasswordResetSessionAugmenter as O,registerSessionAugmenter as k}from"./core/auth/augment.mjs";import{hashPassword as A,verifyPasswordHash as j,verifyPasswordStrength as M}from"./server/auth/password.mjs";import{generateRandomOTP as N,generateRandomRecoveryCode as P}from"./core/auth/utils/encode.mjs";import{decrypt as F,decryptToString as I,encrypt as L,encryptString as R}from"./core/auth/utils/encryption.mjs";import{send2FACode as z,sendRecoveryCode as B,sendResetPassword as V,sendVerifyEmail as H}from"./server/emails/index.mjs";import{createOAuthUser as U,createUser as W,getUserById as G,getUserFromEmail as K,getUserPasswordHash as q,getUserRecoverCode as J,resetUserRecoveryCode as Y,setUserAsEmailVerifiedIfEmailMatches as X,updateUserAwatar as Z,updateUserEmailAndSetEmailAsVerified as Q,updateUserName as $,updateUserPassword as ee,verifyUsernameInput as te}from"./server/auth/user.mjs";import{createEmailVerificationRequest as ne,deleteEmailVerificationRequestCookie as re,deleteUserEmailVerificationRequest as ie,getUserEmailVerificationRequest as ae,getUserEmailVerificationRequestFromRequest as oe,initEmailVerification as se,sendVerificationEmail as ce,setEmailVerificationRequestCookie as le}from"./core/auth/email-verification.mjs";import{checkSecurity as ue,finalizeLogin as de,performFullUserAugmentation as fe,registerAuthValidator as pe,registerEmailVerificationValidator as me,registerPasswordResetValidator as he,registerSecurityRequirement as ge,runEmailVerificationValidators as _e,runPasswordResetValidators as ve,signIn as ye,signOut as be,signUp as xe}from"./core/auth/logic.mjs";import{createSession as Se,deleteSessionTokenCookie as Ce,generateSessionToken as we,getCurrentSession as Te,getIPAddress as Ee,getUserSessions as De,invalidateOtherSessions as Oe,invalidateSession as ke,invalidateUserSessions as Ae,sessionSignOut as je,setSessionTokenCookie as Me,validateSessionToken as Ne}from"./core/auth/session.mjs";import{createNotification as Pe,getUserNotifications as Fe,markAllNotificationsAsRead as Ie,markNotificationAsRead as Le}from"./core/notifications/actions.mjs";import{createPasswordResetSession as Re,deletePasswordResetSessionTokenCookie as ze,getCurrentPasswordResetSession as Be,invalidateUserPasswordResetSessions as Ve,sendPasswordResetEmail as He,setPasswordResetSessionAsEmailVerified as Ue,setPasswordResetSessionTokenCookie as We,validatePasswordResetSessionToken as Ge}from"./core/auth/password-reset.mjs";import{assignPermissionToRole as Ke,assignPermissionToUser as qe,assignRoleToUser as Je,createPermission as Ye,createRole as Xe,deletePermission as Ze,deleteRole as Qe,getPermissions as $e,getRoleById as et,getRolePermissions as tt,getRoles as nt,getUserRbacData as rt,revokePermissionFromRole as it,revokePermissionFromUser as at,revokeRoleFromUser as ot}from"./core/auth/rbac.mjs";import{filesystemService as st}from"./core/filesystem/service.mjs";import{isSystemInstalled as ct}from"./core/setup.mjs";import{ensureSystemInitialized as lt}from"./core/bootstrap.mjs";import{getKryoConfig as ut,getModulesDir as dt}from"./core/config.server.mjs";import{checkEmailAvailability as ft,verifyEmailInput as pt}from"./server/auth/email.mjs";export{Ke as assignPermissionToRole,qe as assignPermissionToUser,Je as assignRoleToUser,T as augmentSession,E as augmentUser,ft as checkEmailAvailability,ue as checkSecurity,f as coreSchema,ne as createEmailVerificationRequest,Pe as createNotification,U as createOAuthUser,Re as createPasswordResetSession,Ye as createPermission,Xe as createRole,Se as createSession,W as createUser,u as db,F as decrypt,I as decryptToString,re as deleteEmailVerificationRequestCookie,ze as deletePasswordResetSessionTokenCookie,Ze as deletePermission,Qe as deleteRole,Ce as deleteSessionTokenCookie,ie as deleteUserEmailVerificationRequest,p as emailVerificationTable,L as encrypt,R as encryptString,lt as ensureSystemInitialized,l as eventBus,st as filesystemService,de as finalizeLogin,e as forgotPasswordSchema,N as generateRandomOTP,P as generateRandomRecoveryCode,we as generateSessionToken,Be as getCurrentPasswordResetSession,Te as getCurrentSession,Ee as getIPAddress,ut as getKryoConfig,dt as getModulesDir,$e as getPermissions,et as getRoleById,tt as getRolePermissions,nt as getRoles,G as getUserById,ae as getUserEmailVerificationRequest,oe as getUserEmailVerificationRequestFromRequest,K as getUserFromEmail,Fe as getUserNotifications,q as getUserPasswordHash,rt as getUserRbacData,J as getUserRecoverCode,De as getUserSessions,A as hashPassword,se as initEmailVerification,d as injectDb,Oe as invalidateOtherSessions,ke as invalidateSession,Ve as invalidateUserPasswordResetSessions,Ae as invalidateUserSessions,ct as isSystemInstalled,t as loginSchema,Ie as markAllNotificationsAsRead,Le as markNotificationAsRead,m as notificationTable,n as passkeysSetupSchema,h as passwordResetSessionTable,fe as performFullUserAugmentation,g as permissionsTable,r as recoveryCodeVerifySchema,pe as registerAuthValidator,me as registerEmailVerificationValidator,D as registerIdentityAugmenter,O as registerPasswordResetSessionAugmenter,he as registerPasswordResetValidator,i as registerSchema,ge as registerSecurityRequirement,k as registerSessionAugmenter,_ as relations,a as resetPasswordSchema,Y as resetUserRecoveryCode,it as revokePermissionFromRole,at as revokePermissionFromUser,ot as revokeRoleFromUser,v as rolesTable,y as rolesToPermissionsTable,_e as runEmailVerificationValidators,ve as runPasswordResetValidators,z as send2FACode,He as sendPasswordResetEmail,B as sendRecoveryCode,V as sendResetPassword,ce as sendVerificationEmail,H as sendVerifyEmail,je as sessionSignOut,b as sessionTable,le as setEmailVerificationRequestCookie,Ue as setPasswordResetSessionAsEmailVerified,We as setPasswordResetSessionTokenCookie,Me as setSessionTokenCookie,X as setUserAsEmailVerifiedIfEmailMatches,ye as signIn,be as signOut,xe as signUp,x as systemModulesTable,o as totpSetupSchema,s as totpVerifySchema,Z as updateUserAwatar,Q as updateUserEmailAndSetEmailAsVerified,$ as updateUserName,ee as updateUserPassword,S as userTable,C as usersToPermissionsTable,w as usersToRolesTable,Ge as validatePasswordResetSessionToken,Ne as validateSessionToken,pt as verifyEmailInput,c as verifyEmailSchema,j as verifyPasswordHash,M as verifyPasswordStrength,te as verifyUsernameInput};

package/package.json

@@ -1,13 +1,12 @@
 {
   "name": "@arch-cadre/core",
-  "version": "0.0.41",
+  "version": "0.0.42",
   "type": "module",
   "description": "Core logic for Kryo framework",
   "types": "./dist/index.d.ts",
-  "module": "./dist/index.js",
   "exports": {
-    ".": "./dist/index.js",
-    "./server": "./dist/server.js",
+    ".": "./dist/index.mjs",
+    "./server": "./dist/server.mjs",
     "./package.json": "./package.json"
   },
   "files": [
@@ -21,7 +20,7 @@
     "dev:unbuild": "unbuild --stub",
     "build:unbuild": "unbuild",
     "dev": "tsdown --watch",
-    "build": "tsc"
+    "build": "tsdown"
   },
   "dependencies": {
     "@oslojs/binary": "^1.0.0",

package/dist/core/auth/augment.d.ts

@@ -1,18 +0,0 @@
-import type { FullUser, PasswordResetSession, Session, User } from "./types";
-/**
- * REGISTRIES FOR MODULAR EXTENSIONS
- */
-type IdentityAugmenter = (user: User) => Promise<Partial<FullUser>>;
-type SessionAugmenter = (session: Session) => Promise<Partial<Session>>;
-type PasswordResetSessionAugmenter = (session: PasswordResetSession) => Promise<Partial<PasswordResetSession>>;
-export declare function registerIdentityAugmenter(augmenter: IdentityAugmenter): void;
-export declare function registerSessionAugmenter(augmenter: SessionAugmenter): void;
-export declare function registerPasswordResetSessionAugmenter(augmenter: PasswordResetSessionAugmenter): void;
-/**
- * EXECUTION FUNCTIONS
- */
-export declare function augmentUser(user: User, coreRbacData?: Record<string, any>): Promise<FullUser>;
-export declare function augmentSession(session: Session): Promise<Session>;
-export declare function augmentPasswordResetSession(session: PasswordResetSession): Promise<PasswordResetSession>;
-export {};
-//# sourceMappingURL=augment.d.ts.map

package/dist/core/auth/augment.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"augment.d.ts","sourceRoot":"","sources":["../../../src/core/auth/augment.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,oBAAoB,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,SAAS,CAAC;AAE7E;;GAEG;AAEH,KAAK,iBAAiB,GAAG,CAAC,IAAI,EAAE,IAAI,KAAK,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;AACpE,KAAK,gBAAgB,GAAG,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;AACxE,KAAK,6BAA6B,GAAG,CACnC,OAAO,EAAE,oBAAoB,KAC1B,OAAO,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAC,CAAC;AAuB5C,wBAAgB,yBAAyB,CAAC,SAAS,EAAE,iBAAiB,QAErE;AAED,wBAAgB,wBAAwB,CAAC,SAAS,EAAE,gBAAgB,QAEnE;AAED,wBAAgB,qCAAqC,CACnD,SAAS,EAAE,6BAA6B,QAGzC;AAED;;GAEG;AACH,wBAAsB,WAAW,CAC/B,IAAI,EAAE,IAAI,EACV,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GACjC,OAAO,CAAC,QAAQ,CAAC,CAOnB;AAED,wBAAsB,cAAc,CAAC,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAOvE;AAED,wBAAsB,2BAA2B,CAC/C,OAAO,EAAE,oBAAoB,GAC5B,OAAO,CAAC,oBAAoB,CAAC,CAO/B"}

package/dist/core/auth/augment.js

@@ -1,53 +0,0 @@
-"use strict";
-var _a, _b, _c;
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.registerIdentityAugmenter = registerIdentityAugmenter;
-exports.registerSessionAugmenter = registerSessionAugmenter;
-exports.registerPasswordResetSessionAugmenter = registerPasswordResetSessionAugmenter;
-exports.augmentUser = augmentUser;
-exports.augmentSession = augmentSession;
-exports.augmentPasswordResetSession = augmentPasswordResetSession;
-const globalForAugment = globalThis;
-const identityAugmenters = (_a = globalForAugment.__KRYO_IDENTITY_AUGMENTERS__) !== null && _a !== void 0 ? _a : new Set();
-const sessionAugmenters = (_b = globalForAugment.__KRYO_SESSION_AUGMENTERS__) !== null && _b !== void 0 ? _b : new Set();
-const passwordResetSessionAugmenters = (_c = globalForAugment.__KRYO_PASSWORD_RESET_SESSION_AUGMENTERS__) !== null && _c !== void 0 ? _c : new Set();
-globalForAugment.__KRYO_IDENTITY_AUGMENTERS__ = identityAugmenters;
-globalForAugment.__KRYO_SESSION_AUGMENTERS__ = sessionAugmenters;
-globalForAugment.__KRYO_PASSWORD_RESET_SESSION_AUGMENTERS__ =
-    passwordResetSessionAugmenters;
-function registerIdentityAugmenter(augmenter) {
-    identityAugmenters.add(augmenter);
-}
-function registerSessionAugmenter(augmenter) {
-    sessionAugmenters.add(augmenter);
-}
-function registerPasswordResetSessionAugmenter(augmenter) {
-    passwordResetSessionAugmenters.add(augmenter);
-}
-/**
- * EXECUTION FUNCTIONS
- */
-async function augmentUser(user, coreRbacData) {
-    let augmentedData = coreRbacData || {};
-    for (const augmenter of identityAugmenters) {
-        const data = await augmenter(user);
-        augmentedData = { ...augmentedData, ...data };
-    }
-    return { ...user, ...augmentedData };
-}
-async function augmentSession(session) {
-    let augmentedData = {};
-    for (const augmenter of sessionAugmenters) {
-        const data = await augmenter(session);
-        augmentedData = { ...augmentedData, ...data };
-    }
-    return { ...session, ...augmentedData };
-}
-async function augmentPasswordResetSession(session) {
-    let augmentedData = {};
-    for (const augmenter of passwordResetSessionAugmenters) {
-        const data = await augmenter(session);
-        augmentedData = { ...augmentedData, ...data };
-    }
-    return { ...session, ...augmentedData };
-}

package/dist/core/auth/email-verification.d.ts

@@ -1,58 +0,0 @@
-import { emailVerificationTable } from "../../server/database/schema";
-/**
- * Register Email Verification as a Core Security Requirement.
- */
-export declare function initEmailVerification(): Promise<void>;
-/**
- * Retrieves a specific email verification request for a user.
- */
-export declare function getUserEmailVerificationRequest(userId: string, id: string): Promise<{
-    id: string;
-    email: string;
-    code: string;
-    userId: string;
-    expiresAt: Date;
-    createdAt: Date;
-    updatedAt: Date | null;
-}>;
-/**
- * Creates a new email verification request, deleting any existing one for the user.
- */
-export declare function createEmailVerificationRequest(userId: string, email: string): Promise<{
-    id: string;
-    email: string;
-    createdAt: Date;
-    updatedAt: Date | null;
-    userId: string;
-    expiresAt: Date;
-    code: string;
-}>;
-/**
- * Deletes all email verification requests for a user.
- */
-export declare function deleteUserEmailVerificationRequest(userId: string): Promise<void>;
-/**
- * Sends a verification email with the OTP code.
- */
-export declare function sendVerificationEmail(email: string, code: string): Promise<void>;
-/**
- * Sets the email verification request ID in a cookie.
- */
-export declare function setEmailVerificationRequestCookie(request: typeof emailVerificationTable.$inferSelect): Promise<void>;
-/**
- * Removes the email verification request cookie.
- */
-export declare function deleteEmailVerificationRequestCookie(): Promise<void>;
-/**
- * Retrieves the current email verification request based on session and cookie.
- */
-export declare function getUserEmailVerificationRequestFromRequest(): Promise<{
-    id: string;
-    email: string;
-    code: string;
-    userId: string;
-    expiresAt: Date;
-    createdAt: Date;
-    updatedAt: Date | null;
-} | null>;
-//# sourceMappingURL=email-verification.d.ts.map

package/dist/core/auth/email-verification.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"email-verification.d.ts","sourceRoot":"","sources":["../../../src/core/auth/email-verification.ts"],"names":[],"mappings":"AAMA,OAAO,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AAMtE;;GAEG;AACH,wBAAsB,qBAAqB,kBAU1C;AAED;;GAEG;AACH,wBAAsB,+BAA+B,CACnD,MAAM,EAAE,MAAM,EACd,EAAE,EAAE,MAAM;;;;;;;;GAaX;AAED;;GAEG;AACH,wBAAsB,8BAA8B,CAClD,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,MAAM;;;;;;;;GAiBd;AAED;;GAEG;AACH,wBAAsB,kCAAkC,CACtD,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,IAAI,CAAC,CAIf;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,KAAK,EAAE,MAAM,EACb,IAAI,EAAE,MAAM,GACX,OAAO,CAAC,IAAI,CAAC,CAEf;AAED;;GAEG;AACH,wBAAsB,iCAAiC,CACrD,OAAO,EAAE,OAAO,sBAAsB,CAAC,YAAY,GAClD,OAAO,CAAC,IAAI,CAAC,CAUf;AAED;;GAEG;AACH,wBAAsB,oCAAoC,IAAI,OAAO,CAAC,IAAI,CAAC,CAG1E;AAED;;GAEG;AACH,wBAAsB,0CAA0C;;;;;;;;UAqB/D"}

package/dist/core/auth/email-verification.js

@@ -1,115 +0,0 @@
-"use strict";
-"use server";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.initEmailVerification = initEmailVerification;
-exports.getUserEmailVerificationRequest = getUserEmailVerificationRequest;
-exports.createEmailVerificationRequest = createEmailVerificationRequest;
-exports.deleteUserEmailVerificationRequest = deleteUserEmailVerificationRequest;
-exports.sendVerificationEmail = sendVerificationEmail;
-exports.setEmailVerificationRequestCookie = setEmailVerificationRequestCookie;
-exports.deleteEmailVerificationRequestCookie = deleteEmailVerificationRequestCookie;
-exports.getUserEmailVerificationRequestFromRequest = getUserEmailVerificationRequestFromRequest;
-const date_fns_1 = require("date-fns");
-const drizzle_orm_1 = require("drizzle-orm");
-const headers_1 = require("next/headers");
-const inject_1 = require("../../server/database/inject");
-const schema_1 = require("../../server/database/schema");
-const index_1 = require("../../server/emails/index");
-const logic_1 = require("./logic");
-const session_1 = require("./session");
-const encode_1 = require("./utils/encode");
-/**
- * Register Email Verification as a Core Security Requirement.
- */
-async function initEmailVerification() {
-    (0, logic_1.registerSecurityRequirement)(async (_session, user) => {
-        if (!user.emailVerifiedAt) {
-            return {
-                satisfied: false,
-                redirect: "/verify-email?unverified",
-            };
-        }
-        return { satisfied: true };
-    });
-}
-/**
- * Retrieves a specific email verification request for a user.
- */
-async function getUserEmailVerificationRequest(userId, id) {
-    const [session] = await inject_1.db
-        .select()
-        .from(schema_1.emailVerificationTable)
-        .where((0, drizzle_orm_1.and)((0, drizzle_orm_1.eq)(schema_1.emailVerificationTable.id, id), (0, drizzle_orm_1.eq)(schema_1.emailVerificationTable.userId, userId)));
-    return session;
-}
-/**
- * Creates a new email verification request, deleting any existing one for the user.
- */
-async function createEmailVerificationRequest(userId, email) {
-    await deleteUserEmailVerificationRequest(userId);
-    const code = (0, encode_1.generateRandomOTP)();
-    const [verificationRequest] = await inject_1.db
-        .insert(schema_1.emailVerificationTable)
-        .values({
-        userId,
-        code,
-        email,
-        expiresAt: new Date((0, date_fns_1.addHours)(new Date(), 1)),
-    })
-        .returning();
-    return verificationRequest;
-}
-/**
- * Deletes all email verification requests for a user.
- */
-async function deleteUserEmailVerificationRequest(userId) {
-    await inject_1.db
-        .delete(schema_1.emailVerificationTable)
-        .where((0, drizzle_orm_1.eq)(schema_1.emailVerificationTable.userId, userId));
-}
-/**
- * Sends a verification email with the OTP code.
- */
-async function sendVerificationEmail(email, code) {
-    await (0, index_1.sendVerifyEmail)(email, code);
-}
-/**
- * Sets the email verification request ID in a cookie.
- */
-async function setEmailVerificationRequestCookie(request) {
-    const cookieStore = await (0, headers_1.cookies)();
-    cookieStore.set("email_verification", request.id, {
-        httpOnly: true,
-        path: "/",
-        secure: process.env.NODE_ENV === "production",
-        sameSite: "lax",
-        expires: request.expiresAt,
-    });
-}
-/**
- * Removes the email verification request cookie.
- */
-async function deleteEmailVerificationRequestCookie() {
-    const cookieStore = await (0, headers_1.cookies)();
-    cookieStore.delete("email_verification");
-}
-/**
- * Retrieves the current email verification request based on session and cookie.
- */
-async function getUserEmailVerificationRequestFromRequest() {
-    var _a, _b;
-    const { user } = await (0, session_1.getCurrentSession)();
-    if (!user) {
-        return null;
-    }
-    const cookieStore = await (0, headers_1.cookies)();
-    const id = (_b = (_a = cookieStore.get("email_verification")) === null || _a === void 0 ? void 0 : _a.value) !== null && _b !== void 0 ? _b : null;
-    if (!id) {
-        return null;
-    }
-    const request = await getUserEmailVerificationRequest(user.id, id);
-    if (!request) {
-        await deleteEmailVerificationRequestCookie();
-    }
-    return request;
-}

package/dist/core/auth/events.d.ts

@@ -1,53 +0,0 @@
-import type { Session, User } from "./types";
-export type AuthEventPayloads = {
-    /**
-     * Emitted after password/base credentials are verified,
-     * but BEFORE the final session is created.
-     * Listeners can return a "veto" to require additional factors.
-     */
-    "auth:validate-factors": {
-        userId: string;
-        email: string;
-    };
-    /**
-     * Emitted after a full session is successfully created.
-     */
-    "auth:session-created": {
-        session: Session;
-        user: User;
-    };
-    /**
-     * Emitted after a user signs out.
-     */
-    "auth:signed-out": {
-        userId: string;
-    };
-    /**
-     * Emitted when a password reset is requested.
-     */
-    "auth:password-reset:requested": {
-        userId: string;
-        email: string;
-    };
-    /**
-     * Emitted when a password has been successfully reset.
-     */
-    "auth:password-reset:completed": {
-        userId: string;
-    };
-    /**
-     * Emitted when a verification email is sent.
-     */
-    "auth:verification-requested": {
-        userId: string;
-        email: string;
-    };
-    /**
-     * Emitted when a user successfully verifies their email.
-     */
-    "auth:email-verified": {
-        userId: string;
-        email: string;
-    };
-};
-//# sourceMappingURL=events.d.ts.map

package/dist/core/auth/events.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"events.d.ts","sourceRoot":"","sources":["../../../src/core/auth/events.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,SAAS,CAAC;AAE7C,MAAM,MAAM,iBAAiB,GAAG;IAC9B;;;;OAIG;IACH,uBAAuB,EAAE;QACvB,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;IAEF;;OAEG;IACH,sBAAsB,EAAE;QACtB,OAAO,EAAE,OAAO,CAAC;QACjB,IAAI,EAAE,IAAI,CAAC;KACZ,CAAC;IAEF;;OAEG;IACH,iBAAiB,EAAE;QACjB,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;IAEF;;OAEG;IACH,+BAA+B,EAAE;QAC/B,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;IAEF;;OAEG;IACH,+BAA+B,EAAE;QAC/B,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;IAEF;;OAEG;IACH,6BAA6B,EAAE;QAC7B,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;IAEF;;OAEG;IACH,qBAAqB,EAAE;QACrB,MAAM,EAAE,MAAM,CAAC;QACf,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;CACH,CAAC"}

package/dist/core/auth/events.js

@@ -1,2 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });

package/dist/core/auth/logic.d.ts

@@ -1,106 +0,0 @@
-import { augmentSession, augmentUser, registerIdentityAugmenter, registerPasswordResetSessionAugmenter, registerSessionAugmenter } from "./augment";
-import type { AuthResponse, FullUser, Session, SessionFlags, User, UserPermission, UserRole } from "./types";
-import { type LoginInput, type RegisterInput } from "./validation";
-/**
- * Registry for login validators (e.g. 2FA module)
- */
-type AuthValidator = (userId: string) => Promise<AuthResponse | null>;
-/**
- * Registry for Security Requirements (e.g. checking if 2FA is needed for a session)
- */
-type SecurityRequirement = (session: Session, user: FullUser) => Promise<{
-    satisfied: boolean;
-    redirect?: string;
-} | null>;
-/**
- * Registry for password reset validators (e.g. 2FA module requiring check during reset)
- */
-type PasswordResetValidator = (userId: string) => Promise<AuthResponse | null>;
-/**
- * Registry for email verification validators
- */
-type EmailVerificationValidator = (userId: string) => Promise<AuthResponse | null>;
-export declare function registerAuthValidator(validator: AuthValidator): Promise<void>;
-export declare function registerPasswordResetValidator(validator: PasswordResetValidator): Promise<void>;
-export declare function registerEmailVerificationValidator(validator: EmailVerificationValidator): Promise<void>;
-export { registerIdentityAugmenter, registerSessionAugmenter, registerPasswordResetSessionAugmenter, augmentUser, augmentSession, };
-export declare function registerSecurityRequirement(requirement: SecurityRequirement): Promise<void>;
-export declare function runPasswordResetValidators(userId: string): Promise<AuthResponse | null>;
-export declare function runEmailVerificationValidators(userId: string): Promise<AuthResponse | null>;
-/**
- * Augments a base user with data from all registered modules.
- * This is now just a wrapper that includes core RBAC data.
- */
-export declare function performFullUserAugmentation(user: User): Promise<FullUser>;
-/**
- * Checks if the current session satisfies all registered security requirements.
- */
-export declare function checkSecurity(session: Session, user: FullUser, requiredRoles?: UserRole[], requiredPermissions?: UserPermission[], fallbackRedirect?: string): Promise<{
-    satisfied: boolean;
-    redirect: string | undefined;
-} | {
-    satisfied: boolean;
-    redirect?: undefined;
-}>;
-/**
- * Sign In Logic
- */
-export declare function signIn(data: LoginInput): Promise<AuthResponse>;
-/**
- * Sign Up Logic
- */
-export declare function signUp(data: RegisterInput): Promise<{
-    session: {
-        [x: string]: any;
-        id: string;
-        createdAt: Date;
-        updatedAt: Date | null;
-        userId: string;
-        active_organization_id: string | null;
-        expiresAt: Date;
-    };
-    user: {
-        [x: string]: any;
-        id: string;
-        email: string;
-        name: string;
-        password: string | null;
-        image: string | null;
-        recovery_code: Buffer<ArrayBufferLike>;
-        emailVerifiedAt: Date | null;
-        createdAt: Date;
-        updatedAt: Date | null;
-        roles: UserRole[];
-        permissions: UserPermission[];
-    };
-}>;
-/**
- * Finalizes login after a challenge
- */
-export declare function finalizeLogin(userId: string, flags: SessionFlags): Promise<{
-    session: {
-        [x: string]: any;
-        id: string;
-        createdAt: Date;
-        updatedAt: Date | null;
-        userId: string;
-        active_organization_id: string | null;
-        expiresAt: Date;
-    } | null;
-    user: {
-        id: string;
-        email: string;
-        name: string;
-        password: string | null;
-        image: string | null;
-        recovery_code: Buffer<ArrayBufferLike>;
-        emailVerifiedAt: Date | null;
-        createdAt: Date;
-        updatedAt: Date | null;
-    } | null;
-}>;
-/**
- * Sign Out
- */
-export declare function signOut(): Promise<void>;
-//# sourceMappingURL=logic.d.ts.map

package/dist/core/auth/logic.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"logic.d.ts","sourceRoot":"","sources":["../../../src/core/auth/logic.ts"],"names":[],"mappings":"AAuBA,OAAO,EACL,cAAc,EACd,WAAW,EACX,yBAAyB,EACzB,qCAAqC,EACrC,wBAAwB,EACzB,MAAM,WAAW,CAAC;AAcnB,OAAO,KAAK,EACV,YAAY,EACZ,QAAQ,EACR,OAAO,EACP,YAAY,EACZ,IAAI,EACJ,cAAc,EACd,QAAQ,EACT,MAAM,SAAS,CAAC;AACjB,OAAO,EACL,KAAK,UAAU,EAEf,KAAK,aAAa,EAEnB,MAAM,cAAc,CAAC;AA6DtB;;GAEG;AACH,KAAK,aAAa,GAAG,CAAC,MAAM,EAAE,MAAM,KAAK,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAAC;AAEtE;;GAEG;AACH,KAAK,mBAAmB,GAAG,CACzB,OAAO,EAAE,OAAO,EAChB,IAAI,EAAE,QAAQ,KACX,OAAO,CAAC;IAAE,SAAS,EAAE,OAAO,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,IAAI,CAAC,CAAC;AAE/D;;GAEG;AACH,KAAK,sBAAsB,GAAG,CAAC,MAAM,EAAE,MAAM,KAAK,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAAC;AAE/E;;GAEG;AACH,KAAK,0BAA0B,GAAG,CAChC,MAAM,EAAE,MAAM,KACX,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAAC;AA6BlC,wBAAsB,qBAAqB,CAAC,SAAS,EAAE,aAAa,iBAEnE;AAED,wBAAsB,8BAA8B,CAClD,SAAS,EAAE,sBAAsB,iBAGlC;AAED,wBAAsB,kCAAkC,CACtD,SAAS,EAAE,0BAA0B,iBAGtC;AAED,OAAO,EACL,yBAAyB,EACzB,wBAAwB,EACxB,qCAAqC,EACrC,WAAW,EACX,cAAc,GACf,CAAC;AAEF,wBAAsB,2BAA2B,CAC/C,WAAW,EAAE,mBAAmB,iBAGjC;AAED,wBAAsB,0BAA0B,CAC9C,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAM9B;AAED,wBAAsB,8BAA8B,CAClD,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,YAAY,GAAG,IAAI,CAAC,CAM9B;AAED;;;GAGG;AACH,wBAAsB,2BAA2B,CAC/C,IAAI,EAAE,IAAI,GACT,OAAO,CAAC,QAAQ,CAAC,CAGnB;AAED;;GAEG;AACH,wBAAsB,aAAa,CACjC,OAAO,EAAE,OAAO,EAChB,IAAI,EAAE,QAAQ,EACd,aAAa,CAAC,EAAE,QAAQ,EAAE,EAC1B,mBAAmB,CAAC,EAAE,cAAc,EAAE,EACtC,gBAAgB,CAAC,EAAE,MAAM;;;;;;GA0D1B;AAED;;GAEG;AACH,wBAAsB,MAAM,CAAC,IAAI,EAAE,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,CAgCpE;AAED;;GAEG;AACH,wBAAsB,MAAM,CAAC,IAAI,EAAE,aAAa;;;;;;;;;;;;;;;;;;;;;;;;GAmC/C;AAED;;GAEG;AACH,wBAAsB,aAAa,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY;;;;;;;;;;;;;;;;;;;;;GAetE;AAED;;GAEG;AACH,wBAAsB,OAAO,kBAS5B"}