@axium/server 0.26.3 → 0.28.0

package/dist/cli.js

@@ -1,89 +1,31 @@
-#!/usr/bin/env node
-var __addDisposableResource = (this && this.__addDisposableResource) || function (env, value, async) {
-    if (value !== null && value !== void 0) {
-        if (typeof value !== "object" && typeof value !== "function") throw new TypeError("Object expected.");
-        var dispose, inner;
-        if (async) {
-            if (!Symbol.asyncDispose) throw new TypeError("Symbol.asyncDispose is not defined.");
-            dispose = value[Symbol.asyncDispose];
-        }
-        if (dispose === void 0) {
-            if (!Symbol.dispose) throw new TypeError("Symbol.dispose is not defined.");
-            dispose = value[Symbol.dispose];
-            if (async) inner = dispose;
-        }
-        if (typeof dispose !== "function") throw new TypeError("Object not disposable.");
-        if (inner) dispose = function() { try { inner.call(this); } catch (e) { return Promise.reject(e); } };
-        env.stack.push({ value: value, dispose: dispose, async: async });
-    }
-    else if (async) {
-        env.stack.push({ async: true });
-    }
-    return value;
-};
-var __disposeResources = (this && this.__disposeResources) || (function (SuppressedError) {
-    return function (env) {
-        function fail(e) {
-            env.error = env.hasError ? new SuppressedError(e, env.error, "An error was suppressed during disposal.") : e;
-            env.hasError = true;
-        }
-        var r, s = 0;
-        function next() {
-            while (r = env.stack.pop()) {
-                try {
-                    if (!r.async && s === 1) return s = 0, env.stack.push(r), Promise.resolve().then(next);
-                    if (r.dispose) {
-                        var result = r.dispose.call(r.value);
-                        if (r.async) return s |= 2, Promise.resolve(result).then(next, function(e) { fail(e); return next(); });
-                    }
-                    else s |= 1;
-                }
-                catch (e) {
-                    fail(e);
-                }
-            }
-            if (s === 1) return env.hasError ? Promise.reject(env.error) : Promise.resolve();
-            if (env.hasError) throw env.error;
-        }
-        return next();
-    };
-})(typeof SuppressedError === "function" ? SuppressedError : function (error, suppressed, message) {
-    var e = new Error(message);
-    return e.name = "SuppressedError", e.error = error, e.suppressed = suppressed, e;
-});
-import { apps } from '@axium/core';
-import { AuditFilter, severityNames } from '@axium/core/audit';
-import { formatDateRange } from '@axium/core/format';
-import { outputDaemonStatus, io, pluginText } from '@axium/core/node';
-import { _findPlugin, plugins } from '@axium/core/plugins';
-import { Argument, Option, program } from 'commander';
-import { access } from 'node:fs/promises';
-import { join, resolve } from 'node:path/posix';
-import { createInterface } from 'node:readline/promises';
+// Supporting code for the CLI. The CLI entry point is main.ts
+import { io } from '@axium/core/node';
 import { styleText } from 'node:util';
-import { getByString, isJSON, setByString } from 'utilium';
-import * as z from 'zod';
-import $pkg from '../package.json' with { type: 'json' };
-import { audit, getEvents, styleSeverity } from './audit.js';
-import config, { configFiles, FileSchema, saveConfigTo } from './config.js';
 import * as db from './database.js';
-import { _portActions, _portMethods, restrictedPorts, systemDir } from './io.js';
-import { linkRoutes, listRouteLinks, unlinkRoutes } from './linking.js';
-import { serve } from './serve.js';
-function userText(user, bold = false) {
+import * as z from 'zod';
+export function userText(user, bold = false) {
     const text = `${user.name} <${user.email}> (${user.id})`;
     return bold ? styleText('bold', text) : text;
 }
-function configReplacer(opt) {
-    return (key, value) => {
-        return opt.redact && ['password', 'secret'].includes(key) ? '[redacted]' : value;
-    };
+export async function lookupUser(lookup) {
+    const value = await (lookup.includes('@') ? z.email() : z.uuid())
+        .parseAsync(lookup.toLowerCase())
+        .catch(() => io.exit('Invalid user ID or email.'));
+    const result = await db
+        .connect()
+        .selectFrom('users')
+        .where(value.includes('@') ? 'email' : 'id', '=', value)
+        .selectAll()
+        .executeTakeFirst();
+    if (!result)
+        io.exit('No user with matching ID or email.');
+    return result;
 }
 /**
  * Updates an array of strings by adding or removing items.
  * Only returns whether the array was updated and diff text for what actually changed.
  */
-function diffUpdate(original, add, remove) {
+export function diffUpdate(original, add, remove) {
     const diffs = [];
     // update the values
     if (add) {
@@ -103,532 +45,3 @@ function diffUpdate(original, add, remove) {
         });
     return [!!diffs.length, original, diffs.join(', ')];
 }
-var rl, safe, noAutoDB, opts, axiumDB, axiumConfig, axiumPlugin, axiumApps, lookup;
-const env_1 = { stack: [], error: void 0, hasError: false };
-try {
-    rl = __addDisposableResource(env_1, createInterface({
-        input: process.stdin,
-        output: process.stdout,
-    }), false);
-    safe = z.stringbool().default(false).parse(process.env.SAFE?.toLowerCase()) || process.argv.includes('--safe');
-    await config.load(join(systemDir, 'config.json'), { safe });
-    program
-        .version($pkg.version)
-        .name('axium')
-        .description('Axium server CLI')
-        .configureHelp({ showGlobalOptions: true })
-        .option('--safe', 'do not execute code from plugins')
-        .option('--debug', 'override debug mode')
-        .option('--no-debug', 'override debug mode')
-        .option('-c, --config <path>', 'path to the config file');
-    program.on('option:debug', () => config.set({ debug: true }));
-    program.on('option:config', () => void config.load(program.opts().config, { safe }));
-    noAutoDB = ['init', 'serve', 'check'];
-    program.hook('preAction', async function (_, action) {
-        await config.loadDefaults(safe);
-        const opt = action.optsWithGlobals();
-        opt.force && io.warn('--force: Protections disabled.');
-        if (typeof opt.debug == 'boolean') {
-            config.set({ debug: opt.debug });
-            io._setDebugOutput(opt.debug);
-        }
-        try {
-            db.connect();
-        }
-        catch (e) {
-            if (!noAutoDB.includes(action.name()))
-                throw e;
-        }
-    });
-    program.hook('postAction', async (_, action) => {
-        if (!noAutoDB.includes(action.name()))
-            await db.database.destroy();
-    });
-    // Options shared by multiple (sub)commands
-    opts = {
-        // database specific
-        host: new Option('-H, --host <host>', 'the host of the database.').argParser(value => {
-            const [hostname, port] = value?.split(':') ?? [];
-            config.db.host = hostname || config.db.host;
-            config.db.port = port && Number.isSafeInteger(parseInt(port)) ? parseInt(port) : config.db.port;
-        }),
-        check: new Option('--check', 'check the database schema after initialization').default(false),
-        force: new Option('-f, --force', 'force the operation').default(false),
-        global: new Option('-g, --global', 'apply the operation globally').default(false),
-        timeout: new Option('-t, --timeout <ms>', 'how long to wait for commands to complete.').default('1000').argParser(value => {
-            const timeout = parseInt(value);
-            if (!Number.isSafeInteger(timeout) || timeout < 0)
-                io.warn('Invalid timeout value, using default.');
-            io.setCommandTimeout(timeout);
-        }),
-        packagesDir: new Option('-p, --packages-dir <dir>', 'the directory to look for packages in'),
-    };
-    axiumDB = program.command('db').alias('database').description('Manage the database').addOption(opts.timeout).addOption(opts.host);
-    axiumDB
-        .command('init')
-        .description('Initialize the database')
-        .addOption(opts.force)
-        .option('-s, --skip', 'If the user, database, or schema already exists, skip trying to create it.')
-        .addOption(opts.check)
-        .action(async (_localOpts, _) => {
-        const opt = _.optsWithGlobals();
-        await db.init(opt).catch(io.handleError);
-    });
-    axiumDB
-        .command('status')
-        .alias('stats')
-        .description('Check the status of the database')
-        .action(async () => {
-        try {
-            console.log(await db.statText());
-        }
-        catch {
-            io.error('Unavailable');
-            process.exitCode = 1;
-        }
-    });
-    axiumDB
-        .command('drop')
-        .description('Drop the Axium database and user')
-        .addOption(opts.force)
-        .action(async (opt) => {
-        const stats = await db.count('users', 'passkeys', 'sessions').catch(io.exit);
-        if (!opt.force)
-            for (const key of ['users', 'passkeys', 'sessions']) {
-                if (stats[key] == 0)
-                    continue;
-                io.warn(`Database has existing ${key}. Use --force if you really want to drop the database.`);
-                process.exit(2);
-            }
-        await db.uninstall(opt).catch(io.exit);
-    });
-    axiumDB
-        .command('wipe')
-        .description('Wipe the database')
-        .addOption(opts.force)
-        .action(async (opt) => {
-        const stats = await db.count('users', 'passkeys', 'sessions').catch(io.exit);
-        if (!opt.force)
-            for (const key of ['users', 'passkeys', 'sessions']) {
-                if (stats[key] == 0)
-                    continue;
-                io.warn(`Database has existing ${key}. Use --force if you really want to wipe the database.`);
-                process.exit(2);
-            }
-        await db.wipe(opt).catch(io.exit);
-    });
-    axiumDB
-        .command('check')
-        .description('Check the structure of the database')
-        .option('-s, --strict', 'Throw errors instead of emitting warnings for most column problems')
-        .action(async (opt) => {
-        await db.check(opt).catch(io.exit);
-    });
-    axiumDB
-        .command('clean')
-        .description('Remove expired rows')
-        .addOption(opts.force)
-        .action(async (opt) => {
-        await db.clean(opt).catch(io.exit);
-    });
-    axiumDB
-        .command('rotate-password')
-        .description('Generate a new password for the database user and update the config')
-        .action(db.rotatePassword);
-    axiumConfig = program
-        .command('config')
-        .description('Manage the configuration')
-        .addOption(opts.global)
-        .option('-j, --json', 'values are JSON encoded')
-        .option('-r, --redact', 'Do not output sensitive values');
-    axiumConfig
-        .command('dump')
-        .description('Output the entire current configuration')
-        .action(() => {
-        const opt = axiumConfig.optsWithGlobals();
-        const value = config.plain();
-        console.log(opt.json ? JSON.stringify(value, configReplacer(opt), 4) : value);
-    });
-    axiumConfig
-        .command('get')
-        .description('Get a config value')
-        .argument('<key>', 'the key to get')
-        .action((key) => {
-        const opt = axiumConfig.optsWithGlobals();
-        const value = getByString(config.plain(), key);
-        console.log(opt.json ? JSON.stringify(value, configReplacer(opt), 4) : value);
-    });
-    axiumConfig
-        .command('set')
-        .description('Set a config value. Note setting objects is not supported.')
-        .argument('<key>', 'the key to set')
-        .argument('<value>', 'the value')
-        .action((key, value) => {
-        const opt = axiumConfig.optsWithGlobals();
-        if (opt.json && !isJSON(value))
-            io.exit('Invalid JSON');
-        const obj = {};
-        setByString(obj, key, opt.json ? JSON.parse(value) : value);
-        config.save(obj, opt.global);
-    });
-    axiumConfig
-        .command('list')
-        .alias('ls')
-        .alias('files')
-        .description('List loaded config files')
-        .action(() => {
-        for (const path of config.files.keys())
-            console.log(path);
-    });
-    axiumConfig
-        .command('schema')
-        .description('Get the JSON schema for the configuration file')
-        .action(() => {
-        const opt = axiumConfig.optsWithGlobals();
-        const schema = z.toJSONSchema(FileSchema, { io: 'input' });
-        console.log(opt.json ? JSON.stringify(schema, configReplacer(opt), 4) : schema);
-    });
-    axiumPlugin = program.command('plugin').alias('plugins').description('Manage plugins').addOption(opts.global);
-    axiumPlugin
-        .command('list')
-        .alias('ls')
-        .description('List loaded plugins')
-        .option('-l, --long', 'use the long listing format')
-        .option('--no-versions', 'do not show plugin versions')
-        .action((opt) => {
-        if (!plugins.size) {
-            console.log('No plugins loaded.');
-            return;
-        }
-        if (!opt.long) {
-            console.log(Array.from(plugins.keys()).join(', '));
-            return;
-        }
-        console.log(styleText('whiteBright', plugins.size + ' plugin(s) loaded:'));
-        for (const plugin of plugins.values()) {
-            console.log(plugin.name, opt.versions ? plugin.version : '');
-        }
-    });
-    axiumPlugin
-        .command('info')
-        .description('Get information about a plugin')
-        .argument('<plugin>', 'the plugin to get information about')
-        .action((search) => {
-        const plugin = _findPlugin(search);
-        for (const line of pluginText(plugin))
-            console.log(line);
-    });
-    axiumPlugin
-        .command('remove')
-        .alias('rm')
-        .description('Remove a plugin')
-        .argument('<plugin>', 'the plugin to remove')
-        .action(async (search, opt) => {
-        const plugin = _findPlugin(search);
-        await plugin._hooks?.remove?.(opt);
-        for (const [path, data] of configFiles) {
-            if (!data.plugins)
-                continue;
-            data.plugins = data.plugins.filter(p => p !== plugin.specifier);
-            saveConfigTo(path, data);
-        }
-        plugins.delete(plugin.name);
-    });
-    axiumPlugin
-        .command('init')
-        .alias('setup')
-        .alias('install')
-        .description('Initialize a plugin. This could include adding tables to the database or linking routes.')
-        .addOption(opts.timeout)
-        .addOption(opts.check)
-        .argument('<plugin>', 'the plugin to initialize')
-        .action(async (search, opt) => {
-        const env_2 = { stack: [], error: void 0, hasError: false };
-        try {
-            const plugin = _findPlugin(search);
-            if (!plugin)
-                io.exit(`Can't find a plugin matching "${search}"`);
-            const _ = __addDisposableResource(env_2, db.connect(), true);
-            await plugin._hooks?.db_init?.({ force: false, ...opt, skip: true });
-        }
-        catch (e_2) {
-            env_2.error = e_2;
-            env_2.hasError = true;
-        }
-        finally {
-            const result_1 = __disposeResources(env_2);
-            if (result_1)
-                await result_1;
-        }
-    });
-    axiumApps = program.command('apps').description('Manage Axium apps').addOption(opts.global);
-    axiumApps
-        .command('list')
-        .alias('ls')
-        .description('List apps added by plugins')
-        .option('-l, --long', 'use the long listing format')
-        .option('-b, --builtin', 'include built-in apps')
-        .action((opt) => {
-        if (!apps.size) {
-            console.log('No apps.');
-            return;
-        }
-        if (!opt.long) {
-            console.log(Array.from(apps.values().map(app => app.name)).join(', '));
-            return;
-        }
-        console.log(styleText('whiteBright', apps.size + ' app(s) loaded:'));
-        for (const app of apps.values()) {
-            console.log(app.name, styleText('dim', `(${app.id})`));
-        }
-    });
-    lookup = new Argument('<user>', 'the UUID or email of the user to operate on').argParser(async (lookup) => {
-        const value = await (lookup.includes('@') ? z.email() : z.uuid())
-            .parseAsync(lookup.toLowerCase())
-            .catch(() => io.exit('Invalid user ID or email.'));
-        const result = await db
-            .connect()
-            .selectFrom('users')
-            .where(value.includes('@') ? 'email' : 'id', '=', value)
-            .selectAll()
-            .executeTakeFirst();
-        if (!result)
-            io.exit('No user with matching ID or email.');
-        return result;
-    });
-    program
-        .command('user')
-        .description('Get or change information about a user')
-        .addArgument(lookup)
-        .option('-S, --sessions', 'show user sessions')
-        .option('-P, --passkeys', 'show user passkeys')
-        .option('--add-role <role...>', 'add roles to the user')
-        .option('--remove-role <role...>', 'remove roles from the user')
-        .option('--tag <tag...>', 'Add tags to the user')
-        .option('--untag <tag...>', 'Remove tags from the user')
-        .option('--delete', 'Delete the user')
-        .option('--suspend', 'Suspend the user')
-        .addOption(new Option('--unsuspend', 'Un-suspend the user').conflicts('suspend'))
-        .action(async (_user, opt) => {
-        let user = await _user;
-        const [updatedRoles, roles, rolesDiff] = diffUpdate(user.roles, opt.addRole, opt.removeRole);
-        const [updatedTags, tags, tagsDiff] = diffUpdate(user.tags, opt.tag, opt.untag);
-        const changeSuspend = (opt.suspend || opt.unsuspend) && user.isSuspended != (opt.suspend ?? !opt.unsuspend);
-        if (updatedRoles || updatedTags || changeSuspend) {
-            user = await db.database
-                .updateTable('users')
-                .set({ roles, tags, isSuspended: !changeSuspend ? user.isSuspended : (opt.suspend ?? !opt.unsuspend) })
-                .returningAll()
-                .executeTakeFirstOrThrow()
-                .then(u => {
-                if (updatedRoles && rolesDiff)
-                    console.log(`> Updated roles: ${rolesDiff}`);
-                if (updatedTags && tagsDiff)
-                    console.log(`> Updated tags: ${tagsDiff}`);
-                if (changeSuspend)
-                    console.log(opt.suspend ? '> Suspended' : '> Un-suspended');
-                return u;
-            })
-                .catch(e => io.exit('Failed to update user: ' + e.message));
-        }
-        if (opt.delete) {
-            const confirmed = await rl
-                .question(`Are you sure you want to delete ${userText(user, true)}? (y/N) `)
-                .then(v => z.stringbool().parseAsync(v))
-                .catch(() => false);
-            if (!confirmed)
-                console.log(styleText('dim', '> Delete aborted.'));
-            else
-                await db.database
-                    .deleteFrom('users')
-                    .where('id', '=', user.id)
-                    .executeTakeFirstOrThrow()
-                    .then(() => console.log(styleText(['red', 'bold'], '> Deleted')))
-                    .catch(e => io.exit('Failed to delete user: ' + e.message));
-        }
-        console.log([
-            user.isSuspended && styleText('yellowBright', 'Suspended'),
-            user.isAdmin && styleText('redBright', 'Administrator'),
-            'UUID: ' + user.id,
-            'Name: ' + user.name,
-            `Email: ${user.email}, ${user.emailVerified ? 'verified on ' + formatDateRange(user.emailVerified) : styleText(config.auth.email_verification ? 'yellow' : 'dim', 'not verified')}`,
-            'Registered ' + formatDateRange(user.registeredAt),
-            `Roles: ${user.roles.length ? user.roles.join(', ') : styleText('dim', '(none)')}`,
-            `Tags: ${user.tags.length ? user.tags.join(', ') : styleText('dim', '(none)')}`,
-        ]
-            .filter(v => v)
-            .join('\n'));
-        if (opt.sessions) {
-            const sessions = await db.database.selectFrom('sessions').where('userId', '=', user.id).selectAll().execute();
-            console.log(styleText('bold', 'Sessions:'));
-            if (!sessions.length)
-                console.log(styleText('dim', '(none)'));
-            else
-                for (const session of sessions) {
-                    console.log(`\t${session.id}\tcreated ${formatDateRange(session.created).padEnd(40)}\texpires ${formatDateRange(session.expires).padEnd(40)}\t${session.elevated ? styleText('yellow', '(elevated)') : ''}`);
-                }
-        }
-        if (opt.passkeys) {
-            const passkeys = await db.database.selectFrom('passkeys').where('userId', '=', user.id).selectAll().execute();
-            console.log(styleText('bold', 'Passkeys:'));
-            for (const passkey of passkeys) {
-                console.log(`\t${passkey.id}: created ${formatDateRange(passkey.createdAt).padEnd(40)} used ${passkey.counter} times. ${passkey.deviceType}, ${passkey.backedUp ? '' : 'not '}backed up; transports are [${passkey.transports.join(', ')}], ${passkey.name ? 'named ' + JSON.stringify(passkey.name) : 'unnamed'}.`);
-            }
-        }
-    });
-    program
-        .command('toggle-admin')
-        .description('Toggle whether a user is an administrator')
-        .addArgument(lookup)
-        .action(async (_user) => {
-        const user = await _user;
-        const isAdmin = !user.isAdmin;
-        await db.database.updateTable('users').set({ isAdmin }).where('id', '=', user.id).executeTakeFirstOrThrow();
-        await audit('admin_change', undefined, { user: user.id });
-        console.log(`${userText(user)} is ${isAdmin ? 'now' : 'no longer'} an administrator. (${styleText(['whiteBright', 'bold'], isAdmin.toString())})`);
-    });
-    program
-        .command('status')
-        .alias('stats')
-        .description('Get information about the server')
-        .addOption(opts.host)
-        .action(async () => {
-        console.log('Axium Server v' + $pkg.version);
-        console.log(styleText('whiteBright', 'Debug mode:'), config.debug ? styleText('yellow', 'enabled') : 'disabled');
-        const configFiles = config.files.keys().toArray();
-        console.log(styleText('whiteBright', 'Loaded config files:'), styleText(['dim', 'bold'], `(${configFiles.length})`), configFiles.join(', '));
-        outputDaemonStatus('axium');
-        process.stdout.write(styleText('whiteBright', 'Database: '));
-        try {
-            console.log(await db.statText());
-        }
-        catch {
-            console.log(styleText('red', 'Unavailable'));
-        }
-        console.log(styleText('whiteBright', 'Loaded plugins:'), styleText(['dim', 'bold'], `(${plugins.size || 'none'})`), Array.from(plugins.keys()).join(', '));
-        for (const plugin of plugins.values()) {
-            if (!plugin._hooks?.statusText)
-                continue;
-            const text = await plugin._hooks?.statusText();
-            console.log(styleText('bold', plugin.name), plugin.version + ':', text.includes('\n') ? '\n' + text : text);
-        }
-    });
-    program
-        .command('ports')
-        .description('Enable or disable use of restricted ports (e.g. 443)')
-        .addArgument(new Argument('<action>', 'The action to take').choices(_portActions))
-        .addOption(new Option('-m, --method <method>', 'the method to use').choices(_portMethods).default('node-cap'))
-        .option('-N, --node <path>', 'the path to the node binary')
-        .action(async (action, opt) => {
-        await restrictedPorts({ ...opt, action }).catch(io.handleError);
-    });
-    program
-        .command('init')
-        .description('Install Axium server')
-        .addOption(opts.force)
-        .addOption(opts.host)
-        .addOption(opts.check)
-        .addOption(opts.packagesDir)
-        .action(async (opt) => {
-        await db.init({ ...opt, skip: opt.dbSkip }).catch(io.handleError);
-        await restrictedPorts({ method: 'node-cap', action: 'enable' }).catch(io.handleError);
-    });
-    program
-        .command('serve')
-        .description('Start the Axium server')
-        .option('-p, --port <port>', 'the port to listen on')
-        .option('--ssl <prefix>', 'the prefix for the cert.pem and key.pem SSL files')
-        .option('-b, --build <path>', 'the path to the handler build')
-        .action(async (opt) => {
-        const server = await serve({
-            secure: opt.ssl ? true : config.web.secure,
-            ssl_cert: opt.ssl ? join(opt.ssl, 'cert.pem') : config.web.ssl_cert,
-            ssl_key: opt.ssl ? join(opt.ssl, 'key.pem') : config.web.ssl_key,
-            build: opt.build ? resolve(opt.build) : config.web.build,
-        });
-        const port = !Number.isNaN(Number.parseInt(opt.port ?? 'NaN')) ? Number.parseInt(opt.port) : config.web.port;
-        server.listen(port, () => {
-            console.log('Server is listening on port ' + port);
-        });
-    });
-    program
-        .command('link')
-        .description('Link routes provided by plugins and the server')
-        .addOption(opts.packagesDir)
-        .addOption(new Option('-l, --list', 'list route links').conflicts('delete'))
-        .option('-d, --delete', 'delete route links')
-        .argument('[name...]', 'List of plugin names to operate on. If not specified, operates on all plugins and built-in routes.')
-        .action(async function (names) {
-        const opt = this.optsWithGlobals();
-        if (names.length)
-            opt.only = names;
-        if (opt.list) {
-            for (const link of listRouteLinks(opt)) {
-                const idText = link.id.startsWith('#') ? `(${link.id.slice(1)})` : link.id;
-                const fromColor = await access(link.from)
-                    .then(() => 'cyanBright')
-                    .catch(() => 'redBright');
-                console.log(`${idText}:\t ${styleText(fromColor, link.from)}\t->\t${link.to.replace(/.*\/node_modules\//, styleText('dim', '$&'))}`);
-            }
-            return;
-        }
-        if (opt.delete) {
-            unlinkRoutes(opt);
-            return;
-        }
-        linkRoutes(opt);
-    });
-    program
-        .command('audit')
-        .description('View audit logs')
-        .option('-x, --extra', 'Include the extra object when listing events')
-        .option('-t, --include-tags', 'Include tags when listing events')
-        .addOption(new Option('-s, --summary', 'Summarize audit log entries instead of displaying individual ones').conflicts(['extra', 'includeTags']))
-        .optionsGroup('Filters:')
-        .option('--since <date>', 'Filter for events since a date')
-        .option('--until <date>', 'Filter for events until a date')
-        .option('--user <uuid|null>', 'Filter for events triggered by a user')
-        .addOption(new Option('--severity <level>', 'Filter for events at or above a severity level').choices(severityNames))
-        .option('--source <source>', 'Filter by source')
-        .option('--tag <tag...>', 'Filter by tag(s)')
-        .option('--event <event>', 'Filter by event name')
-        .action(async (opt) => {
-        const filter = await AuditFilter.parseAsync(opt).catch(e => io.exit('Invalid filter: ' + z.prettifyError(e)));
-        const events = await getEvents(filter).execute();
-        if (opt.summary) {
-            const groups = Object.groupBy(events, e => e.severity);
-            const maxGroupLength = Math.max(...Object.values(groups).map(g => g.length.toString().length), 0);
-            for (const [severity, group] of Object.entries(groups)) {
-                if (!group?.length)
-                    continue;
-                console.log(styleText('white', group.length.toString().padStart(maxGroupLength)), styleSeverity(severity, true), 'events. Latest occurred', group.at(-1).timestamp.toLocaleString());
-            }
-            return;
-        }
-        let maxSource = 0, maxName = 0, maxTags = 0, maxExtra = 0;
-        for (const event of events) {
-            maxSource = Math.max(maxSource, event.source.length);
-            maxName = Math.max(maxName, event.name.length);
-            event._tags = !event.tags.length
-                ? ''
-                : opt.includeTags
-                    ? '# ' + event.tags.join(', ')
-                    : `(${event.tags.length} tag${event.tags.length == 1 ? '' : 's'})`;
-            maxTags = Math.max(maxTags, event._tags.length);
-            const extraKeys = Object.keys(event.extra);
-            event._extra = !extraKeys.length ? '' : opt.extra ? JSON.stringify(event.extra) : '+' + extraKeys.length;
-            maxExtra = Math.max(maxExtra, event._extra.length);
-        }
-        for (const event of events) {
-            console.log(styleSeverity(event.severity, true), styleText('dim', io.prettyDate(event.timestamp)), event.source.padEnd(maxSource), styleText('whiteBright', event.name.padEnd(maxName)), styleText('gray', event._tags.padEnd(maxTags)), 'by', event.userId ? event.userId : styleText(['dim', 'italic'], 'unknown'.padEnd(36)), styleText('blue', event._extra));
-        }
-    });
-    await program.parseAsync();
-}
-catch (e_1) {
-    env_1.error = e_1;
-    env_1.hasError = true;
-}
-finally {
-    __disposeResources(env_1);
-}

package/dist/config.d.ts

@@ -13,7 +13,6 @@ export declare const ConfigSchema: z.ZodObject<{
         auto_suspend: z.ZodOptional<z.ZodLiteral<"Emergency" | "Alert" | "Critical" | "Error" | "Warning" | "Notice" | "Info" | "Debug" | "emergency" | "alert" | "critical" | "error" | "warning" | "notice" | "info" | "debug">>;
     }, z.core.$loose>>;
     auth: z.ZodOptional<z.ZodObject<{
-        origin: z.ZodOptional<z.ZodString>;
         passkey_probation: z.ZodOptional<z.ZodNumber>;
         rp_id: z.ZodOptional<z.ZodString>;
         rp_name: z.ZodOptional<z.ZodString>;
@@ -41,6 +40,7 @@ export declare const ConfigSchema: z.ZodObject<{
         }>>;
         console: z.ZodOptional<z.ZodBoolean>;
     }, z.core.$loose>>;
+    origin: z.ZodOptional<z.ZodString>;
     request_size_limit: z.ZodOptional<z.ZodOptional<z.ZodNumber>>;
     show_duplicate_state: z.ZodOptional<z.ZodBoolean>;
     web: z.ZodOptional<z.ZodObject<{
@@ -87,7 +87,6 @@ export declare const FileSchema: z.ZodObject<{
         auto_suspend: z.ZodOptional<z.ZodLiteral<"Emergency" | "Alert" | "Critical" | "Error" | "Warning" | "Notice" | "Info" | "Debug" | "emergency" | "alert" | "critical" | "error" | "warning" | "notice" | "info" | "debug">>;
     }, z.core.$loose>>>;
     auth: z.ZodOptional<z.ZodOptional<z.ZodObject<{
-        origin: z.ZodOptional<z.ZodString>;
         passkey_probation: z.ZodOptional<z.ZodNumber>;
         rp_id: z.ZodOptional<z.ZodString>;
         rp_name: z.ZodOptional<z.ZodString>;
@@ -115,6 +114,7 @@ export declare const FileSchema: z.ZodObject<{
         }>>;
         console: z.ZodOptional<z.ZodBoolean>;
     }, z.core.$loose>>>;
+    origin: z.ZodOptional<z.ZodOptional<z.ZodString>>;
     request_size_limit: z.ZodOptional<z.ZodOptional<z.ZodOptional<z.ZodNumber>>>;
     show_duplicate_state: z.ZodOptional<z.ZodOptional<z.ZodBoolean>>;
     web: z.ZodOptional<z.ZodOptional<z.ZodObject<{