@atproto/pds 0.4.60 → 0.4.61

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@atproto/pds",
-  "version": "0.4.60",
+  "version": "0.4.61",
   "license": "MIT",
   "description": "Reference implementation of atproto Personal Data Server (PDS)",
   "keywords": [
@@ -44,18 +44,18 @@
     "uint8arrays": "3.0.0",
     "undici": "^6.19.8",
     "zod": "^3.23.8",
-    "@atproto/api": "^0.13.8",
-    "@atproto/aws": "^0.2.6",
-    "@atproto/common": "^0.4.3",
+    "@atproto-labs/fetch-node": "0.1.1",
+    "@atproto/api": "^0.13.9",
+    "@atproto/aws": "^0.2.7",
+    "@atproto/common": "^0.4.4",
     "@atproto/crypto": "^0.4.1",
     "@atproto/identity": "^0.4.2",
-    "@atproto-labs/fetch-node": "0.1.1",
     "@atproto/lexicon": "^0.4.2",
-    "@atproto/oauth-provider": "^0.2.2",
-    "@atproto/repo": "^0.5.2",
+    "@atproto/oauth-provider": "^0.2.3",
+    "@atproto/repo": "^0.5.3",
+    "@atproto/syntax": "^0.3.0",
     "@atproto/xrpc": "^0.6.3",
-    "@atproto/xrpc-server": "^0.7.0",
-    "@atproto/syntax": "^0.3.0"
+    "@atproto/xrpc-server": "^0.7.1"
   },
   "devDependencies": {
     "@atproto/pds-entryway": "npm:@atproto/pds@0.3.0-entryway.3",
@@ -73,8 +73,8 @@
     "jest": "^28.1.2",
     "ts-node": "^10.8.2",
     "ws": "^8.12.0",
-    "@atproto/api": "^0.13.8",
-    "@atproto/bsky": "^0.0.84",
+    "@atproto/api": "^0.13.9",
+    "@atproto/bsky": "^0.0.85",
     "@atproto/lex-cli": "^0.5.1"
   },
   "scripts": {

package/src/account-manager/helpers/account.ts

@@ -64,6 +64,28 @@ export const getAccount = async (
   return found || null
 }
 
+export const getAccounts = async (
+  db: AccountDb,
+  dids: string[],
+  flags?: AvailabilityFlags,
+): Promise<Map<string, ActorAccount>> => {
+  const results = new Map<string, ActorAccount>()
+
+  if (!dids.length) {
+    return results
+  }
+
+  const accounts = await selectAccountQB(db, flags)
+    .where('actor.did', 'in', dids)
+    .execute()
+
+  accounts.forEach((account) => {
+    results.set(account.did, account)
+  })
+
+  return results
+}
+
 export const getAccountByEmail = async (
   db: AccountDb,
   email: string,

package/src/account-manager/helpers/invite.ts

@@ -139,20 +139,30 @@ export const selectInviteCodesQb = (db: AccountDb) => {
   return db.db.selectFrom(builder.as('codes')).selectAll()
 }
 
-export const getAccountInviteCodes = async (
+export const getAccountsInviteCodes = async (
   db: AccountDb,
-  did: string,
-): Promise<CodeDetail[]> => {
+  dids: string[],
+): Promise<Map<string, CodeDetail[]>> => {
+  const results = new Map<string, CodeDetail[]>()
+  // We don't want to pass an empty array to kysely and let's avoid running a query entirely if there is nothing to match for
+  if (!dids.length) return results
   const res = await selectInviteCodesQb(db)
-    .where('forAccount', '=', did)
+    .where('forAccount', 'in', dids)
     .execute()
   const codes = res.map((row) => row.code)
   const uses = await getInviteCodesUses(db, codes)
-  return res.map((row) => ({
-    ...row,
-    uses: uses[row.code] ?? [],
-    disabled: row.disabled === 1,
-  }))
+  res.forEach((row) => {
+    const existing = results.get(row.forAccount) ?? []
+    results.set(row.forAccount, [
+      ...existing,
+      {
+        ...row,
+        uses: uses[row.code] ?? [],
+        disabled: row.disabled === 1,
+      },
+    ])
+  })
+  return results
 }
 
 export const getInviteCodesUses = async (

package/src/account-manager/index.ts

@@ -78,6 +78,13 @@ export class AccountManager
     return account.getAccount(this.db, handleOrDid, flags)
   }
 
+  async getAccounts(
+    dids: string[],
+    flags?: account.AvailabilityFlags,
+  ): Promise<Map<string, ActorAccount>> {
+    return account.getAccounts(this.db, dids, flags)
+  }
+
   async getAccountByEmail(
     email: string,
     flags?: account.AvailabilityFlags,
@@ -397,7 +404,12 @@ export class AccountManager
   }
 
   async getAccountInvitesCodes(did: string) {
-    return invite.getAccountInviteCodes(this.db, did)
+    const inviteCodes = await invite.getAccountsInviteCodes(this.db, [did])
+    return inviteCodes.get(did) ?? []
+  }
+
+  async getAccountsInvitesCodes(dids: string[]) {
+    return invite.getAccountsInviteCodes(this.db, dids)
   }
 
   async getInvitedByForAccounts(dids: string[]) {

package/src/api/com/atproto/admin/getAccountInfo.ts

@@ -2,6 +2,7 @@ import { Server } from '../../../../lexicon'
 import AppContext from '../../../../context'
 import { InvalidRequestError } from '@atproto/xrpc-server'
 import { INVALID_HANDLE } from '@atproto/syntax'
+import { formatAccountInfo } from './util'
 
 export default function (server: Server, ctx: AppContext) {
   server.com.atproto.admin.getAccountInfo({
@@ -21,19 +22,11 @@ export default function (server: Server, ctx: AppContext) {
       const managesOwnInvites = !ctx.cfg.entryway
       return {
         encoding: 'application/json',
-        body: {
-          did: account.did,
-          handle: account.handle ?? INVALID_HANDLE,
-          email: account.email ?? undefined,
-          indexedAt: account.createdAt,
-          emailConfirmedAt: account.emailConfirmedAt ?? undefined,
-          invitedBy: managesOwnInvites ? invitedBy[params.did] : undefined,
-          invites: managesOwnInvites ? invites : undefined,
-          invitesDisabled: managesOwnInvites
-            ? account.invitesDisabled === 1
-            : undefined,
-          deactivatedAt: account.deactivatedAt ?? undefined,
-        },
+        body: formatAccountInfo(account, {
+          managesOwnInvites,
+          invitedBy,
+          invites,
+        }),
       }
     },
   })

package/src/api/com/atproto/admin/getAccountInfos.ts

@@ -0,0 +1,33 @@
+import { Server } from '../../../../lexicon'
+import AppContext from '../../../../context'
+import { formatAccountInfo } from './util'
+
+export default function (server: Server, ctx: AppContext) {
+  server.com.atproto.admin.getAccountInfos({
+    auth: ctx.authVerifier.moderator,
+    handler: async ({ params }) => {
+      const [accounts, invites, invitedBy] = await Promise.all([
+        ctx.accountManager.getAccounts(params.dids, {
+          includeDeactivated: true,
+          includeTakenDown: true,
+        }),
+        ctx.accountManager.getAccountsInvitesCodes(params.dids),
+        ctx.accountManager.getInvitedByForAccounts(params.dids),
+      ])
+
+      const managesOwnInvites = !ctx.cfg.entryway
+      const infos = Array.from(accounts.values()).map((account) => {
+        return formatAccountInfo(account, {
+          managesOwnInvites,
+          invitedBy,
+          invites,
+        })
+      })
+
+      return {
+        encoding: 'application/json',
+        body: { infos },
+      }
+    },
+  })
+}

package/src/api/com/atproto/admin/index.ts

@@ -12,11 +12,13 @@ import updateAccountEmail from './updateAccountEmail'
 import updateAccountPassword from './updateAccountPassword'
 import sendEmail from './sendEmail'
 import deleteAccount from './deleteAccount'
+import getAccountInfos from './getAccountInfos'
 
 export default function (server: Server, ctx: AppContext) {
   updateSubjectStatus(server, ctx)
   getSubjectStatus(server, ctx)
   getAccountInfo(server, ctx)
+  getAccountInfos(server, ctx)
   enableAccountInvites(server, ctx)
   disableAccountInvites(server, ctx)
   disableInviteCodes(server, ctx)

package/src/api/com/atproto/admin/util.ts

@@ -1,4 +1,7 @@
 import express from 'express'
+import { ActorAccount } from '../../../../account-manager/helpers/account'
+import { INVALID_HANDLE } from '@atproto/syntax'
+import { CodeDetail } from '../../../../account-manager/helpers/invite'
 
 // Output designed to passed as second arg to AtpAgent methods.
 // The encoding field here is a quirk of the AtpAgent.
@@ -22,3 +25,38 @@ export function authPassthru(req: express.Request, withEncoding?: boolean) {
     }
   }
 }
+
+export function formatAccountInfo(
+  account: ActorAccount,
+  {
+    managesOwnInvites,
+    invitedBy,
+    invites,
+  }: {
+    managesOwnInvites: boolean
+    invites: Map<string, CodeDetail[]> | CodeDetail[]
+    invitedBy: Record<string, CodeDetail>
+  },
+) {
+  let invitesResults: CodeDetail[] | undefined
+  if (managesOwnInvites) {
+    if (Array.isArray(invites)) {
+      invitesResults = invites
+    } else {
+      invitesResults = invites.get(account.did) || []
+    }
+  }
+  return {
+    did: account.did,
+    handle: account.handle ?? INVALID_HANDLE,
+    email: account.email ?? undefined,
+    indexedAt: account.createdAt,
+    emailConfirmedAt: account.emailConfirmedAt ?? undefined,
+    invitedBy: managesOwnInvites ? invitedBy[account.did] : undefined,
+    invites: invitesResults,
+    invitesDisabled: managesOwnInvites
+      ? account.invitesDisabled === 1
+      : undefined,
+    deactivatedAt: account.deactivatedAt ?? undefined,
+  }
+}

package/src/api/com/atproto/repo/getRecord.ts

@@ -16,7 +16,10 @@ export default function (server: Server, ctx: AppContext) {
         store.record.getRecord(uri, cid ?? null),
       )
       if (!record || record.takedownRef !== null) {
-        throw new InvalidRequestError(`Could not locate record: ${uri}`)
+        throw new InvalidRequestError(
+          `Could not locate record: ${uri}`,
+          'RecordNotFound',
+        )
       }
       return {
         encoding: 'application/json',

package/src/config/config.ts

@@ -246,6 +246,7 @@ export const envToCfg = (env: ServerEnvironment): ServerConfig => {
     headersTimeout: env.proxyHeadersTimeout ?? 10e3,
     bodyTimeout: env.proxyBodyTimeout ?? 30e3,
     maxResponseSize: env.proxyMaxResponseSize ?? 10 * 1024 * 1024, // 10mb
+    preferCompressed: env.proxyPreferCompressed ?? false,
   }
 
   const oauthCfg: ServerConfig['oauth'] = entrywayCfg
@@ -413,6 +414,15 @@ export type ProxyConfig = {
   headersTimeout: number
   bodyTimeout: number
   maxResponseSize: number
+
+  /**
+   * When proxying requests that might get intercepted (for read-after-write) we
+   * negotiate the encoding based on the client's preferences. We will however
+   * use or own weights in order to be able to better control if the PDS will
+   * need to perform content decoding. This settings allows to prefer compressed
+   * content over uncompressed one.
+   */
+  preferCompressed: boolean
 }
 
 export type OAuthConfig = {

package/src/config/env.ts

@@ -128,6 +128,7 @@ export const readEnv = (): ServerEnvironment => {
     proxyHeadersTimeout: envInt('PDS_PROXY_HEADERS_TIMEOUT'),
     proxyBodyTimeout: envInt('PDS_PROXY_BODY_TIMEOUT'),
     proxyMaxResponseSize: envInt('PDS_PROXY_MAX_RESPONSE_SIZE'),
+    proxyPreferCompressed: envBool('PDS_PROXY_PREFER_COMPRESSED'),
   }
 }
 
@@ -253,4 +254,5 @@ export type ServerEnvironment = {
   proxyHeadersTimeout?: number
   proxyBodyTimeout?: number
   proxyMaxResponseSize?: number
+  proxyPreferCompressed?: boolean
 }

package/src/lexicon/index.ts

@@ -166,7 +166,9 @@ import * as ToolsOzoneCommunicationUpdateTemplate from './types/tools/ozone/comm
 import * as ToolsOzoneModerationEmitEvent from './types/tools/ozone/moderation/emitEvent'
 import * as ToolsOzoneModerationGetEvent from './types/tools/ozone/moderation/getEvent'
 import * as ToolsOzoneModerationGetRecord from './types/tools/ozone/moderation/getRecord'
+import * as ToolsOzoneModerationGetRecords from './types/tools/ozone/moderation/getRecords'
 import * as ToolsOzoneModerationGetRepo from './types/tools/ozone/moderation/getRepo'
+import * as ToolsOzoneModerationGetRepos from './types/tools/ozone/moderation/getRepos'
 import * as ToolsOzoneModerationQueryEvents from './types/tools/ozone/moderation/queryEvents'
 import * as ToolsOzoneModerationQueryStatuses from './types/tools/ozone/moderation/queryStatuses'
 import * as ToolsOzoneModerationSearchRepos from './types/tools/ozone/moderation/searchRepos'
@@ -2262,6 +2264,17 @@ export class ToolsOzoneModerationNS {
     return this._server.xrpc.method(nsid, cfg)
   }
 
+  getRecords<AV extends AuthVerifier>(
+    cfg: ConfigOf<
+      AV,
+      ToolsOzoneModerationGetRecords.Handler<ExtractAuth<AV>>,
+      ToolsOzoneModerationGetRecords.HandlerReqCtx<ExtractAuth<AV>>
+    >,
+  ) {
+    const nsid = 'tools.ozone.moderation.getRecords' // @ts-ignore
+    return this._server.xrpc.method(nsid, cfg)
+  }
+
   getRepo<AV extends AuthVerifier>(
     cfg: ConfigOf<
       AV,
@@ -2273,6 +2286,17 @@ export class ToolsOzoneModerationNS {
     return this._server.xrpc.method(nsid, cfg)
   }
 
+  getRepos<AV extends AuthVerifier>(
+    cfg: ConfigOf<
+      AV,
+      ToolsOzoneModerationGetRepos.Handler<ExtractAuth<AV>>,
+      ToolsOzoneModerationGetRepos.HandlerReqCtx<ExtractAuth<AV>>
+    >,
+  ) {
+    const nsid = 'tools.ozone.moderation.getRepos' // @ts-ignore
+    return this._server.xrpc.method(nsid, cfg)
+  }
+
   queryEvents<AV extends AuthVerifier>(
     cfg: ConfigOf<
       AV,

package/src/lexicon/lexicons.ts

@@ -1686,6 +1686,11 @@ export const schemaDict = {
             },
           },
         },
+        errors: [
+          {
+            name: 'RecordNotFound',
+          },
+        ],
       },
     },
   },
@@ -11643,6 +11648,49 @@ export const schemaDict = {
       },
     },
   },
+  ToolsOzoneModerationGetRecords: {
+    lexicon: 1,
+    id: 'tools.ozone.moderation.getRecords',
+    defs: {
+      main: {
+        type: 'query',
+        description: 'Get details about some records.',
+        parameters: {
+          type: 'params',
+          required: ['uris'],
+          properties: {
+            uris: {
+              type: 'array',
+              maxLength: 100,
+              items: {
+                type: 'string',
+                format: 'at-uri',
+              },
+            },
+          },
+        },
+        output: {
+          encoding: 'application/json',
+          schema: {
+            type: 'object',
+            required: ['records'],
+            properties: {
+              records: {
+                type: 'array',
+                items: {
+                  type: 'union',
+                  refs: [
+                    'lex:tools.ozone.moderation.defs#recordViewDetail',
+                    'lex:tools.ozone.moderation.defs#recordViewNotFound',
+                  ],
+                },
+              },
+            },
+          },
+        },
+      },
+    },
+  },
   ToolsOzoneModerationGetRepo: {
     lexicon: 1,
     id: 'tools.ozone.moderation.getRepo',
@@ -11675,6 +11723,49 @@ export const schemaDict = {
       },
     },
   },
+  ToolsOzoneModerationGetRepos: {
+    lexicon: 1,
+    id: 'tools.ozone.moderation.getRepos',
+    defs: {
+      main: {
+        type: 'query',
+        description: 'Get details about some repositories.',
+        parameters: {
+          type: 'params',
+          required: ['dids'],
+          properties: {
+            dids: {
+              type: 'array',
+              maxLength: 100,
+              items: {
+                type: 'string',
+                format: 'did',
+              },
+            },
+          },
+        },
+        output: {
+          encoding: 'application/json',
+          schema: {
+            type: 'object',
+            required: ['repos'],
+            properties: {
+              repos: {
+                type: 'array',
+                items: {
+                  type: 'union',
+                  refs: [
+                    'lex:tools.ozone.moderation.defs#repoViewDetail',
+                    'lex:tools.ozone.moderation.defs#repoViewNotFound',
+                  ],
+                },
+              },
+            },
+          },
+        },
+      },
+    },
+  },
   ToolsOzoneModerationQueryEvents: {
     lexicon: 1,
     id: 'tools.ozone.moderation.queryEvents',
@@ -12491,7 +12582,9 @@ export const ids = {
   ToolsOzoneModerationEmitEvent: 'tools.ozone.moderation.emitEvent',
   ToolsOzoneModerationGetEvent: 'tools.ozone.moderation.getEvent',
   ToolsOzoneModerationGetRecord: 'tools.ozone.moderation.getRecord',
+  ToolsOzoneModerationGetRecords: 'tools.ozone.moderation.getRecords',
   ToolsOzoneModerationGetRepo: 'tools.ozone.moderation.getRepo',
+  ToolsOzoneModerationGetRepos: 'tools.ozone.moderation.getRepos',
   ToolsOzoneModerationQueryEvents: 'tools.ozone.moderation.queryEvents',
   ToolsOzoneModerationQueryStatuses: 'tools.ozone.moderation.queryStatuses',
   ToolsOzoneModerationSearchRepos: 'tools.ozone.moderation.searchRepos',

package/src/lexicon/types/com/atproto/repo/getRecord.ts

@@ -39,6 +39,7 @@ export interface HandlerSuccess {
 export interface HandlerError {
   status: number
   message?: string
+  error?: 'RecordNotFound'
 }
 
 export type HandlerOutput = HandlerError | HandlerSuccess | HandlerPipeThrough

package/src/lexicon/types/tools/ozone/moderation/getRecords.ts

@@ -0,0 +1,50 @@
+/**
+ * GENERATED CODE - DO NOT MODIFY
+ */
+import express from 'express'
+import { ValidationResult, BlobRef } from '@atproto/lexicon'
+import { lexicons } from '../../../../lexicons'
+import { isObj, hasProp } from '../../../../util'
+import { CID } from 'multiformats/cid'
+import { HandlerAuth, HandlerPipeThrough } from '@atproto/xrpc-server'
+import * as ToolsOzoneModerationDefs from './defs'
+
+export interface QueryParams {
+  uris: string[]
+}
+
+export type InputSchema = undefined
+
+export interface OutputSchema {
+  records: (
+    | ToolsOzoneModerationDefs.RecordViewDetail
+    | ToolsOzoneModerationDefs.RecordViewNotFound
+    | { $type: string; [k: string]: unknown }
+  )[]
+  [k: string]: unknown
+}
+
+export type HandlerInput = undefined
+
+export interface HandlerSuccess {
+  encoding: 'application/json'
+  body: OutputSchema
+  headers?: { [key: string]: string }
+}
+
+export interface HandlerError {
+  status: number
+  message?: string
+}
+
+export type HandlerOutput = HandlerError | HandlerSuccess | HandlerPipeThrough
+export type HandlerReqCtx<HA extends HandlerAuth = never> = {
+  auth: HA
+  params: QueryParams
+  input: HandlerInput
+  req: express.Request
+  res: express.Response
+}
+export type Handler<HA extends HandlerAuth = never> = (
+  ctx: HandlerReqCtx<HA>,
+) => Promise<HandlerOutput> | HandlerOutput

package/src/lexicon/types/tools/ozone/moderation/getRepos.ts

@@ -0,0 +1,50 @@
+/**
+ * GENERATED CODE - DO NOT MODIFY
+ */
+import express from 'express'
+import { ValidationResult, BlobRef } from '@atproto/lexicon'
+import { lexicons } from '../../../../lexicons'
+import { isObj, hasProp } from '../../../../util'
+import { CID } from 'multiformats/cid'
+import { HandlerAuth, HandlerPipeThrough } from '@atproto/xrpc-server'
+import * as ToolsOzoneModerationDefs from './defs'
+
+export interface QueryParams {
+  dids: string[]
+}
+
+export type InputSchema = undefined
+
+export interface OutputSchema {
+  repos: (
+    | ToolsOzoneModerationDefs.RepoViewDetail
+    | ToolsOzoneModerationDefs.RepoViewNotFound
+    | { $type: string; [k: string]: unknown }
+  )[]
+  [k: string]: unknown
+}
+
+export type HandlerInput = undefined
+
+export interface HandlerSuccess {
+  encoding: 'application/json'
+  body: OutputSchema
+  headers?: { [key: string]: string }
+}
+
+export interface HandlerError {
+  status: number
+  message?: string
+}
+
+export type HandlerOutput = HandlerError | HandlerSuccess | HandlerPipeThrough
+export type HandlerReqCtx<HA extends HandlerAuth = never> = {
+  auth: HA
+  params: QueryParams
+  input: HandlerInput
+  req: express.Request
+  res: express.Response
+}
+export type Handler<HA extends HandlerAuth = never> = (
+  ctx: HandlerReqCtx<HA>,
+) => Promise<HandlerOutput> | HandlerOutput

package/src/mailer/templates/confirm-email.hbs

@@ -68,7 +68,7 @@
                       style="font-size:16px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 24%, 34.2%);font-family:-apple-system, BlinkMacSystemFont, 'Roboto', 'Oxygen', 'Ubuntu', 'Cantarell', 'Fira Sans', 'Droid Sans', 'Helvetica Neue', sans-serif;padding-top:12px;padding-bottom:12px;padding-right:32px"
                     >To confirm this email for your account, please enter the
                       code below in the app.</p><code
-                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:lowercase"
+                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:uppercase"
                     >{{token}}</code>
                     <p
                       style="font-size:14px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 20%, 53%);font-family:-apple-system, BlinkMacSystemFont, &#x27;Roboto&#x27;, &#x27;Oxygen&#x27;, &#x27;Ubuntu&#x27;, &#x27;Cantarell&#x27;, &#x27;Fira Sans&#x27;, &#x27;Droid Sans&#x27;, &#x27;Helvetica Neue&#x27;, sans-serif;padding-top:12px"

package/src/mailer/templates/delete-account.hbs

@@ -71,7 +71,7 @@
                         account,</span>
                       <!-- -->please enter the code below in the app along with
                       your password.</p><code
-                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:lowercase"
+                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:uppercase"
                     >{{token}}</code>
                     <p
                       style="font-size:14px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 20%, 53%);font-family:-apple-system, BlinkMacSystemFont, &#x27;Roboto&#x27;, &#x27;Oxygen&#x27;, &#x27;Ubuntu&#x27;, &#x27;Cantarell&#x27;, &#x27;Fira Sans&#x27;, &#x27;Droid Sans&#x27;, &#x27;Helvetica Neue&#x27;, sans-serif;padding-top:12px;padding-right:32px"

package/src/mailer/templates/plc-operation.hbs

@@ -68,7 +68,7 @@
                       style="font-size:16px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 24%, 34.2%);font-family:-apple-system, BlinkMacSystemFont, 'Roboto', 'Oxygen', 'Ubuntu', 'Cantarell', 'Fira Sans', 'Droid Sans', 'Helvetica Neue', sans-serif;padding-top:12px;padding-bottom:12px"
                     >We received a request to update your PLC identity. Your
                       confirmation code is:</p><code
-                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:lowercase"
+                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:uppercase"
                     >{{token}}</code>
                     <p
                       style="font-size:14px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 20%, 53%);font-family:-apple-system, BlinkMacSystemFont, &#x27;Roboto&#x27;, &#x27;Oxygen&#x27;, &#x27;Ubuntu&#x27;, &#x27;Cantarell&#x27;, &#x27;Fira Sans&#x27;, &#x27;Droid Sans&#x27;, &#x27;Helvetica Neue&#x27;, sans-serif;padding-top:12px"

package/src/mailer/templates/reset-password.hbs

@@ -70,7 +70,7 @@
                       <span
                         style="color:hsl(211, 99%, 53%)"
                       >@<!-- -->{{handle}}<!-- -->.</span></p><code
-                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:lowercase"
+                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:uppercase"
                     >{{token}}</code>
                     <p
                       style="font-size:14px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 20%, 53%);font-family:-apple-system, BlinkMacSystemFont, &#x27;Roboto&#x27;, &#x27;Oxygen&#x27;, &#x27;Ubuntu&#x27;, &#x27;Cantarell&#x27;, &#x27;Fira Sans&#x27;, &#x27;Droid Sans&#x27;, &#x27;Helvetica Neue&#x27;, sans-serif;padding-top:12px"

package/src/mailer/templates/update-email.hbs

@@ -69,7 +69,7 @@
                       style="font-size:16px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 24%, 34.2%);font-family:-apple-system, BlinkMacSystemFont, 'Roboto', 'Oxygen', 'Ubuntu', 'Cantarell', 'Fira Sans', 'Droid Sans', 'Helvetica Neue', sans-serif;padding-top:12px;padding-bottom:12px;padding-right:32px"
                     >To update the email for your account, enter the code below
                       in the app along with your new email.</p><code
-                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:lowercase"
+                      style="display:block;padding:16px;border-radius:8px;border-width:1px;border-style:solid;background-color:hsl(211, 20%, 95.3%);border-color:hsl(211, 20%, 85.89999999999999%);font-size:14px;letter-spacing:0.25px;font-family:monospace;text-transform:uppercase"
                     >{{token}}</code>
                     <p
                       style="font-size:14px;line-height:1.4;margin:0px 0px;letter-spacing:0.25px;color:hsl(211, 20%, 53%);font-family:-apple-system, BlinkMacSystemFont, &#x27;Roboto&#x27;, &#x27;Oxygen&#x27;, &#x27;Ubuntu&#x27;, &#x27;Cantarell&#x27;, &#x27;Fira Sans&#x27;, &#x27;Droid Sans&#x27;, &#x27;Helvetica Neue&#x27;, sans-serif;padding-top:12px"