@auxiora/cloud 1.0.0 → 1.3.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@auxiora/cloud",
-  "version": "1.0.0",
+  "version": "1.3.0",
   "description": "Multi-tenant cloud layer with isolation, billing, and quotas",
   "type": "module",
   "main": "dist/index.js",
@@ -12,13 +12,19 @@
     }
   },
   "dependencies": {
-    "@auxiora/core": "1.0.0",
-    "@auxiora/logger": "1.0.0",
-    "@auxiora/audit": "1.0.0"
+    "@auxiora/core": "1.3.0",
+    "@auxiora/logger": "1.3.0",
+    "@auxiora/audit": "1.3.0"
   },
   "engines": {
     "node": ">=22.0.0"
   },
+  "publishConfig": {
+    "access": "public"
+  },
+  "files": [
+    "dist/"
+  ],
   "scripts": {
     "build": "tsc",
     "clean": "rm -rf dist",

package/src/billing.ts

@@ -1,142 +0,0 @@
-import type { BillingInfo, StripeClient, TenantPlan } from './types.js';
-import type { TenantManager } from './tenant.js';
-import { getPlanDefinition } from './plans.js';
-
-export interface BillingManagerOptions {
-  tenantManager: TenantManager;
-  stripe?: StripeClient;
-}
-
-/**
- * BillingManager handles Stripe integration for subscription management.
- * Uses dependency injection for the Stripe SDK to enable easy testing.
- */
-export class BillingManager {
-  private tenantManager: TenantManager;
-  private stripe?: StripeClient;
-
-  constructor(options: BillingManagerOptions) {
-    this.tenantManager = options.tenantManager;
-    this.stripe = options.stripe;
-  }
-
-  /**
-   * Create a Stripe customer for a tenant.
-   */
-  async createCustomer(tenantId: string): Promise<string> {
-    if (!this.stripe) {
-      throw new Error('Stripe not configured');
-    }
-
-    const tenant = await this.tenantManager.get(tenantId);
-    const customer = await this.stripe.createCustomer(tenant.email, tenant.name);
-
-    await this.tenantManager.update(tenantId, {} as any);
-    // Store stripeCustomerId directly
-    const updated = await this.tenantManager.get(tenantId);
-    (updated as any).stripeCustomerId = customer.id;
-
-    return customer.id;
-  }
-
-  /**
-   * Create a subscription for a tenant.
-   */
-  async createSubscription(tenantId: string, plan: TenantPlan): Promise<{ subscriptionId: string; status: string }> {
-    if (!this.stripe) {
-      throw new Error('Stripe not configured');
-    }
-
-    const tenant = await this.tenantManager.get(tenantId);
-    if (!tenant.stripeCustomerId) {
-      throw new Error('No Stripe customer ID. Call createCustomer first.');
-    }
-
-    const planDef = getPlanDefinition(plan);
-    const priceId = `price_${plan}_monthly`;
-
-    const subscription = await this.stripe.createSubscription(tenant.stripeCustomerId, priceId);
-
-    // Update tenant plan
-    await this.tenantManager.update(tenantId, { plan });
-
-    return {
-      subscriptionId: subscription.id,
-      status: subscription.status,
-    };
-  }
-
-  /**
-   * Cancel a tenant's subscription.
-   */
-  async cancelSubscription(tenantId: string): Promise<void> {
-    if (!this.stripe) {
-      throw new Error('Stripe not configured');
-    }
-
-    const tenant = await this.tenantManager.get(tenantId);
-    if (!tenant.stripeSubscriptionId) {
-      throw new Error('No active subscription');
-    }
-
-    await this.stripe.cancelSubscription(tenant.stripeSubscriptionId);
-    await this.tenantManager.update(tenantId, { plan: 'free' });
-  }
-
-  /**
-   * Get billing info for a tenant.
-   */
-  async getBillingInfo(tenantId: string): Promise<BillingInfo> {
-    const tenant = await this.tenantManager.get(tenantId);
-
-    return {
-      tenantId,
-      plan: tenant.plan,
-      stripeCustomerId: tenant.stripeCustomerId,
-      stripeSubscriptionId: tenant.stripeSubscriptionId,
-    };
-  }
-
-  /**
-   * Get invoices for a tenant.
-   */
-  async getInvoices(tenantId: string): Promise<Array<{ id: string; amount: number; status: string; created: string }>> {
-    if (!this.stripe) {
-      return [];
-    }
-
-    const tenant = await this.tenantManager.get(tenantId);
-    if (!tenant.stripeCustomerId) {
-      return [];
-    }
-
-    return this.stripe.getInvoices(tenant.stripeCustomerId);
-  }
-
-  /**
-   * Handle a Stripe webhook event.
-   */
-  async handleWebhookEvent(eventType: string, data: Record<string, unknown>): Promise<void> {
-    switch (eventType) {
-      case 'customer.subscription.deleted': {
-        const customerId = data.customer as string;
-        // Find tenant by customer ID and downgrade
-        const tenants = await this.tenantManager.list();
-        const tenant = tenants.find(t => t.stripeCustomerId === customerId);
-        if (tenant) {
-          await this.tenantManager.update(tenant.id, { plan: 'free' });
-        }
-        break;
-      }
-      case 'invoice.payment_failed': {
-        const customerId = data.customer as string;
-        const tenants = await this.tenantManager.list();
-        const tenant = tenants.find(t => t.stripeCustomerId === customerId);
-        if (tenant) {
-          await this.tenantManager.suspend(tenant.id, 'Payment failed');
-        }
-        break;
-      }
-    }
-  }
-}

package/src/index.ts

@@ -1,21 +0,0 @@
-export { TenantManager, type TenantManagerOptions } from './tenant.js';
-export { TenantIsolation, type TenantContext, type IsolationOptions } from './isolation.js';
-export { QuotaEnforcer, type QuotaEnforcerOptions } from './quotas.js';
-export { BillingManager, type BillingManagerOptions } from './billing.js';
-export { getPlanDefinition, getPlanQuotas, getAllPlans, isValidPlan } from './plans.js';
-export type {
-  Tenant,
-  TenantPlan,
-  TenantStatus,
-  TenantQuotas,
-  UsageRecord,
-  BillingInfo,
-  CloudConfig,
-  PlanDefinition,
-  StripeClient,
-} from './types.js';
-export {
-  QuotaExceededError,
-  TenantNotFoundError,
-  TenantSuspendedError,
-} from './types.js';

package/src/isolation.ts

@@ -1,69 +0,0 @@
-import type { Tenant, CloudConfig } from './types.js';
-import { TenantNotFoundError, TenantSuspendedError } from './types.js';
-import type { TenantManager } from './tenant.js';
-
-export interface TenantContext {
-  tenantId: string;
-  tenant: Tenant;
-}
-
-export interface IsolationOptions {
-  tenantManager: TenantManager;
-  config: CloudConfig;
-}
-
-/**
- * TenantIsolation provides middleware-like extraction of tenant context
- * from JWT tokens and scoping of all operations to the tenant's data.
- */
-export class TenantIsolation {
-  private tenantManager: TenantManager;
-
-  constructor(options: IsolationOptions) {
-    this.tenantManager = options.tenantManager;
-  }
-
-  /**
-   * Extract tenant context from a JWT payload.
-   * Validates the tenant exists and is active.
-   */
-  async extractTenant(jwtPayload: { tenantId?: string; sub?: string }): Promise<TenantContext> {
-    const tenantId = jwtPayload.tenantId || jwtPayload.sub;
-    if (!tenantId) {
-      throw new TenantNotFoundError('unknown');
-    }
-
-    const tenant = await this.tenantManager.get(tenantId);
-
-    if (tenant.status === 'suspended') {
-      throw new TenantSuspendedError(tenantId);
-    }
-
-    if (tenant.status === 'deleted') {
-      throw new TenantNotFoundError(tenantId);
-    }
-
-    return { tenantId, tenant };
-  }
-
-  /**
-   * Scope a file path to the tenant's data directory.
-   * Prevents path traversal outside the tenant's sandbox.
-   */
-  scopePath(tenant: Tenant, relativePath: string): string {
-    const resolved = new URL(relativePath, `file://${tenant.dataDir}/`).pathname;
-
-    if (!resolved.startsWith(tenant.dataDir)) {
-      throw new Error('Path traversal attempt detected');
-    }
-
-    return resolved;
-  }
-
-  /**
-   * Validate that a tenant can access a given resource.
-   */
-  validateAccess(context: TenantContext, resourceTenantId: string): boolean {
-    return context.tenantId === resourceTenantId;
-  }
-}

package/src/plans.ts

@@ -1,84 +0,0 @@
-import type { PlanDefinition, TenantPlan, TenantQuotas } from './types.js';
-
-const PLAN_DEFINITIONS: Record<TenantPlan, PlanDefinition> = {
-  free: {
-    plan: 'free',
-    name: 'Free',
-    priceMonthly: 0,
-    priceYearly: 0,
-    quotas: {
-      maxMessages: 100,
-      maxSessions: 3,
-      maxStorageMb: 50,
-      maxPlugins: 2,
-      maxBehaviors: 5,
-      maxChannels: 1,
-      maxAgents: 1,
-    },
-    features: ['Single channel', 'Basic vault', 'Community support'],
-  },
-  pro: {
-    plan: 'pro',
-    name: 'Pro',
-    priceMonthly: 19,
-    priceYearly: 190,
-    quotas: {
-      maxMessages: 5000,
-      maxSessions: 20,
-      maxStorageMb: 1024,
-      maxPlugins: 20,
-      maxBehaviors: 50,
-      maxChannels: 5,
-      maxAgents: 3,
-    },
-    features: ['Multi-channel', 'Cloud vault', 'Priority support', 'Custom behaviors'],
-  },
-  team: {
-    plan: 'team',
-    name: 'Team',
-    priceMonthly: 49,
-    priceYearly: 490,
-    quotas: {
-      maxMessages: 25000,
-      maxSessions: 100,
-      maxStorageMb: 5120,
-      maxPlugins: 50,
-      maxBehaviors: 200,
-      maxChannels: 20,
-      maxAgents: 10,
-    },
-    features: ['All Pro features', 'Team collaboration', 'Orchestration', 'Audit logs'],
-  },
-  enterprise: {
-    plan: 'enterprise',
-    name: 'Enterprise',
-    priceMonthly: 199,
-    priceYearly: 1990,
-    quotas: {
-      maxMessages: -1, // unlimited
-      maxSessions: -1,
-      maxStorageMb: -1,
-      maxPlugins: -1,
-      maxBehaviors: -1,
-      maxChannels: -1,
-      maxAgents: -1,
-    },
-    features: ['All Team features', 'Unlimited usage', 'SLA', 'Dedicated support', 'SSO'],
-  },
-};
-
-export function getPlanDefinition(plan: TenantPlan): PlanDefinition {
-  return PLAN_DEFINITIONS[plan];
-}
-
-export function getPlanQuotas(plan: TenantPlan): TenantQuotas {
-  return PLAN_DEFINITIONS[plan].quotas;
-}
-
-export function getAllPlans(): PlanDefinition[] {
-  return Object.values(PLAN_DEFINITIONS);
-}
-
-export function isValidPlan(plan: string): plan is TenantPlan {
-  return plan in PLAN_DEFINITIONS;
-}

package/src/quotas.ts

@@ -1,103 +0,0 @@
-import type { TenantQuotas, UsageRecord } from './types.js';
-import { QuotaExceededError } from './types.js';
-import { getPlanQuotas } from './plans.js';
-import type { TenantManager } from './tenant.js';
-
-export interface QuotaEnforcerOptions {
-  tenantManager: TenantManager;
-}
-
-/**
- * QuotaEnforcer tracks usage against plan limits
- * and throws QuotaExceededError when limits are breached.
- */
-export class QuotaEnforcer {
-  private usage = new Map<string, Map<string, number>>();
-  private tenantManager: TenantManager;
-
-  constructor(options: QuotaEnforcerOptions) {
-    this.tenantManager = options.tenantManager;
-  }
-
-  /**
-   * Check whether a metric increment would exceed the quota.
-   * Throws QuotaExceededError if the limit would be breached.
-   */
-  async check(tenantId: string, metric: keyof TenantQuotas, increment = 1): Promise<void> {
-    const tenant = await this.tenantManager.get(tenantId);
-    const quotas = getPlanQuotas(tenant.plan);
-    const limit = quotas[metric];
-
-    // -1 means unlimited
-    if (limit === -1) return;
-
-    const current = this.getUsage(tenantId, metric);
-    if (current + increment > limit) {
-      throw new QuotaExceededError(metric, limit, current + increment);
-    }
-  }
-
-  /**
-   * Record usage for a metric.
-   */
-  record(tenantId: string, metric: string, value = 1): UsageRecord {
-    let tenantUsage = this.usage.get(tenantId);
-    if (!tenantUsage) {
-      tenantUsage = new Map();
-      this.usage.set(tenantId, tenantUsage);
-    }
-
-    const current = tenantUsage.get(metric) ?? 0;
-    tenantUsage.set(metric, current + value);
-
-    return {
-      tenantId,
-      metric,
-      value: current + value,
-      timestamp: new Date().toISOString(),
-    };
-  }
-
-  /**
-   * Get current usage for a specific metric.
-   */
-  getUsage(tenantId: string, metric: string): number {
-    return this.usage.get(tenantId)?.get(metric) ?? 0;
-  }
-
-  /**
-   * Get all usage for a tenant.
-   */
-  getAllUsage(tenantId: string): Record<string, number> {
-    const tenantUsage = this.usage.get(tenantId);
-    if (!tenantUsage) return {};
-
-    const result: Record<string, number> = {};
-    for (const [metric, value] of tenantUsage) {
-      result[metric] = value;
-    }
-    return result;
-  }
-
-  /**
-   * Reset usage for a tenant (e.g., at billing period start).
-   */
-  resetUsage(tenantId: string): void {
-    this.usage.delete(tenantId);
-  }
-
-  /**
-   * Get usage as a percentage of the quota limit.
-   */
-  async getUsagePercentage(tenantId: string, metric: keyof TenantQuotas): Promise<number> {
-    const tenant = await this.tenantManager.get(tenantId);
-    const quotas = getPlanQuotas(tenant.plan);
-    const limit = quotas[metric];
-
-    if (limit === -1) return 0;
-    if (limit === 0) return 100;
-
-    const current = this.getUsage(tenantId, metric);
-    return Math.round((current / limit) * 100);
-  }
-}

package/src/tenant.ts

@@ -1,140 +0,0 @@
-import * as fs from 'node:fs/promises';
-import * as path from 'node:path';
-import * as crypto from 'node:crypto';
-import type { Tenant, TenantPlan, CloudConfig } from './types.js';
-import { TenantNotFoundError } from './types.js';
-import { getPlanQuotas } from './plans.js';
-
-export interface TenantManagerOptions {
-  config: CloudConfig;
-}
-
-export class TenantManager {
-  private tenants = new Map<string, Tenant>();
-  private config: CloudConfig;
-
-  constructor(options: TenantManagerOptions) {
-    this.config = options.config;
-  }
-
-  async create(email: string, name: string, plan: TenantPlan = 'free'): Promise<Tenant> {
-    const id = `tenant-${crypto.randomUUID()}`;
-    const dataDir = path.join(this.config.baseDataDir, id);
-
-    await fs.mkdir(dataDir, { recursive: true });
-
-    const tenant: Tenant = {
-      id,
-      name,
-      email,
-      plan,
-      status: 'active',
-      dataDir,
-      createdAt: new Date().toISOString(),
-      updatedAt: new Date().toISOString(),
-    };
-
-    this.tenants.set(id, tenant);
-    await this.persistTenant(tenant);
-    return tenant;
-  }
-
-  async get(id: string): Promise<Tenant> {
-    const tenant = this.tenants.get(id);
-    if (!tenant) {
-      throw new TenantNotFoundError(id);
-    }
-    return tenant;
-  }
-
-  async getByEmail(email: string): Promise<Tenant | null> {
-    for (const tenant of this.tenants.values()) {
-      if (tenant.email === email) {
-        return tenant;
-      }
-    }
-    return null;
-  }
-
-  async update(id: string, updates: Partial<Pick<Tenant, 'name' | 'email' | 'plan'>>): Promise<Tenant> {
-    const tenant = await this.get(id);
-
-    if (updates.name !== undefined) tenant.name = updates.name;
-    if (updates.email !== undefined) tenant.email = updates.email;
-    if (updates.plan !== undefined) tenant.plan = updates.plan;
-    tenant.updatedAt = new Date().toISOString();
-
-    this.tenants.set(id, tenant);
-    await this.persistTenant(tenant);
-    return tenant;
-  }
-
-  async suspend(id: string, reason: string): Promise<Tenant> {
-    const tenant = await this.get(id);
-    tenant.status = 'suspended';
-    tenant.suspendedAt = new Date().toISOString();
-    tenant.suspendReason = reason;
-    tenant.updatedAt = new Date().toISOString();
-
-    this.tenants.set(id, tenant);
-    await this.persistTenant(tenant);
-    return tenant;
-  }
-
-  async reactivate(id: string): Promise<Tenant> {
-    const tenant = await this.get(id);
-    tenant.status = 'active';
-    tenant.suspendedAt = undefined;
-    tenant.suspendReason = undefined;
-    tenant.updatedAt = new Date().toISOString();
-
-    this.tenants.set(id, tenant);
-    await this.persistTenant(tenant);
-    return tenant;
-  }
-
-  async delete(id: string): Promise<boolean> {
-    const tenant = this.tenants.get(id);
-    if (!tenant) return false;
-
-    tenant.status = 'deleted';
-    tenant.updatedAt = new Date().toISOString();
-    this.tenants.set(id, tenant);
-    await this.persistTenant(tenant);
-    return true;
-  }
-
-  async list(): Promise<Tenant[]> {
-    return Array.from(this.tenants.values()).filter(t => t.status !== 'deleted');
-  }
-
-  getQuotas(plan: TenantPlan) {
-    return getPlanQuotas(plan);
-  }
-
-  private async persistTenant(tenant: Tenant): Promise<void> {
-    const tenantFile = path.join(tenant.dataDir, 'tenant.json');
-    await fs.mkdir(path.dirname(tenantFile), { recursive: true });
-    await fs.writeFile(tenantFile, JSON.stringify(tenant, null, 2), 'utf-8');
-  }
-
-  async loadFromDisk(): Promise<void> {
-    try {
-      const entries = await fs.readdir(this.config.baseDataDir, { withFileTypes: true });
-      for (const entry of entries) {
-        if (entry.isDirectory() && entry.name.startsWith('tenant-')) {
-          const tenantFile = path.join(this.config.baseDataDir, entry.name, 'tenant.json');
-          try {
-            const content = await fs.readFile(tenantFile, 'utf-8');
-            const tenant = JSON.parse(content) as Tenant;
-            this.tenants.set(tenant.id, tenant);
-          } catch {
-            // Skip corrupt tenant files
-          }
-        }
-      }
-    } catch {
-      // Base data dir doesn't exist yet
-    }
-  }
-}

package/src/types.ts

@@ -1,114 +0,0 @@
-/** Tenant plan tiers */
-export type TenantPlan = 'free' | 'pro' | 'team' | 'enterprise';
-
-/** Tenant status */
-export type TenantStatus = 'active' | 'suspended' | 'pending' | 'deleted';
-
-/** A cloud tenant */
-export interface Tenant {
-  id: string;
-  name: string;
-  email: string;
-  plan: TenantPlan;
-  status: TenantStatus;
-  stripeCustomerId?: string;
-  stripeSubscriptionId?: string;
-  dataDir: string;
-  createdAt: string;
-  updatedAt: string;
-  suspendedAt?: string;
-  suspendReason?: string;
-}
-
-/** Quota limits for a given plan */
-export interface TenantQuotas {
-  maxMessages: number;
-  maxSessions: number;
-  maxStorageMb: number;
-  maxPlugins: number;
-  maxBehaviors: number;
-  maxChannels: number;
-  maxAgents: number;
-}
-
-/** A single usage record */
-export interface UsageRecord {
-  tenantId: string;
-  metric: string;
-  value: number;
-  timestamp: string;
-}
-
-/** Billing information */
-export interface BillingInfo {
-  tenantId: string;
-  plan: TenantPlan;
-  stripeCustomerId?: string;
-  stripeSubscriptionId?: string;
-  currentPeriodStart?: string;
-  currentPeriodEnd?: string;
-  paymentMethodLast4?: string;
-  paymentMethodBrand?: string;
-}
-
-/** Cloud-specific configuration */
-export interface CloudConfig {
-  enabled: boolean;
-  baseDataDir: string;
-  jwtSecret: string;
-  stripeSecretKey?: string;
-  stripeWebhookSecret?: string;
-  domain: string;
-}
-
-/** Plan definition with pricing */
-export interface PlanDefinition {
-  plan: TenantPlan;
-  name: string;
-  priceMonthly: number;
-  priceYearly: number;
-  quotas: TenantQuotas;
-  features: string[];
-}
-
-/** Stripe SDK interface for dependency injection */
-export interface StripeClient {
-  createCustomer(email: string, name: string): Promise<{ id: string }>;
-  createSubscription(customerId: string, priceId: string): Promise<{ id: string; status: string }>;
-  cancelSubscription(subscriptionId: string): Promise<void>;
-  getInvoices(customerId: string): Promise<Array<{
-    id: string;
-    amount: number;
-    status: string;
-    created: string;
-  }>>;
-  createPaymentIntent(customerId: string, amount: number): Promise<{ clientSecret: string }>;
-}
-
-/** Quota exceeded error */
-export class QuotaExceededError extends Error {
-  constructor(
-    public readonly metric: string,
-    public readonly limit: number,
-    public readonly current: number,
-  ) {
-    super(`Quota exceeded for ${metric}: ${current}/${limit}`);
-    this.name = 'QuotaExceededError';
-  }
-}
-
-/** Tenant not found error */
-export class TenantNotFoundError extends Error {
-  constructor(tenantId: string) {
-    super(`Tenant not found: ${tenantId}`);
-    this.name = 'TenantNotFoundError';
-  }
-}
-
-/** Tenant suspended error */
-export class TenantSuspendedError extends Error {
-  constructor(tenantId: string) {
-    super(`Tenant is suspended: ${tenantId}`);
-    this.name = 'TenantSuspendedError';
-  }
-}