npm - @beignet/core - Versions diffs - 0.0.1 - Mend

@beignet/core 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (331) hide show

package/CHANGELOG.md +5 -0
package/README.md +288 -0
package/dist/application/index.d.ts +260 -0
package/dist/application/index.d.ts.map +1 -0
package/dist/application/index.js +324 -0
package/dist/application/index.js.map +1 -0
package/dist/client/client.d.ts +241 -0
package/dist/client/client.d.ts.map +1 -0
package/dist/client/client.js +531 -0
package/dist/client/client.js.map +1 -0
package/dist/client/index.d.ts +10 -0
package/dist/client/index.d.ts.map +1 -0
package/dist/client/index.js +8 -0
package/dist/client/index.js.map +1 -0
package/dist/client/types.d.ts +139 -0
package/dist/client/types.d.ts.map +1 -0
package/dist/client/types.js +2 -0
package/dist/client/types.js.map +1 -0
package/dist/config/index.d.ts +122 -0
package/dist/config/index.d.ts.map +1 -0
package/dist/config/index.js +216 -0
package/dist/config/index.js.map +1 -0
package/dist/contracts/contract-builder.d.ts +121 -0
package/dist/contracts/contract-builder.d.ts.map +1 -0
package/dist/contracts/contract-builder.js +346 -0
package/dist/contracts/contract-builder.js.map +1 -0
package/dist/contracts/contract-group.d.ts +106 -0
package/dist/contracts/contract-group.d.ts.map +1 -0
package/dist/contracts/contract-group.js +240 -0
package/dist/contracts/contract-group.js.map +1 -0
package/dist/contracts/contract-like.d.ts +21 -0
package/dist/contracts/contract-like.d.ts.map +1 -0
package/dist/contracts/contract-like.js +9 -0
package/dist/contracts/contract-like.js.map +1 -0
package/dist/contracts/index.d.ts +15 -0
package/dist/contracts/index.d.ts.map +1 -0
package/dist/contracts/index.js +11 -0
package/dist/contracts/index.js.map +1 -0
package/dist/contracts/openapi-meta.d.ts +23 -0
package/dist/contracts/openapi-meta.d.ts.map +1 -0
package/dist/contracts/openapi-meta.js +2 -0
package/dist/contracts/openapi-meta.js.map +1 -0
package/dist/contracts/path-template.d.ts +17 -0
package/dist/contracts/path-template.d.ts.map +1 -0
package/dist/contracts/path-template.js +50 -0
package/dist/contracts/path-template.js.map +1 -0
package/dist/contracts/rate-limit.d.ts +50 -0
package/dist/contracts/rate-limit.d.ts.map +1 -0
package/dist/contracts/rate-limit.js +2 -0
package/dist/contracts/rate-limit.js.map +1 -0
package/dist/contracts/types.d.ts +97 -0
package/dist/contracts/types.d.ts.map +1 -0
package/dist/contracts/types.js +54 -0
package/dist/contracts/types.js.map +1 -0
package/dist/contracts/utils.d.ts +3 -0
package/dist/contracts/utils.d.ts.map +1 -0
package/dist/contracts/utils.js +44 -0
package/dist/contracts/utils.js.map +1 -0
package/dist/domain/entity.d.ts +87 -0
package/dist/domain/entity.d.ts.map +1 -0
package/dist/domain/entity.js +155 -0
package/dist/domain/entity.js.map +1 -0
package/dist/domain/events.d.ts +41 -0
package/dist/domain/events.d.ts.map +1 -0
package/dist/domain/events.js +21 -0
package/dist/domain/events.js.map +1 -0
package/dist/domain/index.d.ts +14 -0
package/dist/domain/index.d.ts.map +1 -0
package/dist/domain/index.js +14 -0
package/dist/domain/index.js.map +1 -0
package/dist/domain/value-object.d.ts +60 -0
package/dist/domain/value-object.d.ts.map +1 -0
package/dist/domain/value-object.js +87 -0
package/dist/domain/value-object.js.map +1 -0
package/dist/errors/catalog.d.ts +71 -0
package/dist/errors/catalog.d.ts.map +1 -0
package/dist/errors/catalog.js +71 -0
package/dist/errors/catalog.js.map +1 -0
package/dist/errors/http.d.ts +77 -0
package/dist/errors/http.d.ts.map +1 -0
package/dist/errors/http.js +74 -0
package/dist/errors/http.js.map +1 -0
package/dist/errors/index.d.ts +10 -0
package/dist/errors/index.d.ts.map +1 -0
package/dist/errors/index.js +14 -0
package/dist/errors/index.js.map +1 -0
package/dist/errors/response.d.ts +26 -0
package/dist/errors/response.d.ts.map +1 -0
package/dist/errors/response.js +34 -0
package/dist/errors/response.js.map +1 -0
package/dist/errors/validation.d.ts +18 -0
package/dist/errors/validation.d.ts.map +1 -0
package/dist/errors/validation.js +21 -0
package/dist/errors/validation.js.map +1 -0
package/dist/events/index.d.ts +58 -0
package/dist/events/index.d.ts.map +1 -0
package/dist/events/index.js +102 -0
package/dist/events/index.js.map +1 -0
package/dist/jobs/index.d.ts +56 -0
package/dist/jobs/index.d.ts.map +1 -0
package/dist/jobs/index.js +89 -0
package/dist/jobs/index.js.map +1 -0
package/dist/mail/index.d.ts +75 -0
package/dist/mail/index.d.ts.map +1 -0
package/dist/mail/index.js +84 -0
package/dist/mail/index.js.map +1 -0
package/dist/openapi/index.d.ts +207 -0
package/dist/openapi/index.d.ts.map +1 -0
package/dist/openapi/index.js +449 -0
package/dist/openapi/index.js.map +1 -0
package/dist/openapi/schema-introspector.d.ts +38 -0
package/dist/openapi/schema-introspector.d.ts.map +1 -0
package/dist/openapi/schema-introspector.js +67 -0
package/dist/openapi/schema-introspector.js.map +1 -0
package/dist/ports/audit.d.ts +58 -0
package/dist/ports/audit.d.ts.map +1 -0
package/dist/ports/audit.js +74 -0
package/dist/ports/audit.js.map +1 -0
package/dist/ports/auth.d.ts +23 -0
package/dist/ports/auth.d.ts.map +1 -0
package/dist/ports/auth.js +31 -0
package/dist/ports/auth.js.map +1 -0
package/dist/ports/builder.d.ts +61 -0
package/dist/ports/builder.d.ts.map +1 -0
package/dist/ports/builder.js +48 -0
package/dist/ports/builder.js.map +1 -0
package/dist/ports/cache.d.ts +15 -0
package/dist/ports/cache.d.ts.map +1 -0
package/dist/ports/cache.js +57 -0
package/dist/ports/cache.js.map +1 -0
package/dist/ports/clock.d.ts +10 -0
package/dist/ports/clock.d.ts.map +1 -0
package/dist/ports/clock.js +21 -0
package/dist/ports/clock.js.map +1 -0
package/dist/ports/events.d.ts +71 -0
package/dist/ports/events.d.ts.map +1 -0
package/dist/ports/events.js +2 -0
package/dist/ports/events.js.map +1 -0
package/dist/ports/id-generator.d.ts +12 -0
package/dist/ports/id-generator.d.ts.map +1 -0
package/dist/ports/id-generator.js +22 -0
package/dist/ports/id-generator.js.map +1 -0
package/dist/ports/index.d.ts +98 -0
package/dist/ports/index.d.ts.map +1 -0
package/dist/ports/index.js +67 -0
package/dist/ports/index.js.map +1 -0
package/dist/ports/logger.d.ts +22 -0
package/dist/ports/logger.d.ts.map +1 -0
package/dist/ports/logger.js +34 -0
package/dist/ports/logger.js.map +1 -0
package/dist/ports/mailer.d.ts +6 -0
package/dist/ports/mailer.d.ts.map +1 -0
package/dist/ports/mailer.js +2 -0
package/dist/ports/mailer.js.map +1 -0
package/dist/ports/policy.d.ts +53 -0
package/dist/ports/policy.d.ts.map +1 -0
package/dist/ports/policy.js +81 -0
package/dist/ports/policy.js.map +1 -0
package/dist/ports/rate-limit.d.ts +41 -0
package/dist/ports/rate-limit.d.ts.map +1 -0
package/dist/ports/rate-limit.js +37 -0
package/dist/ports/rate-limit.js.map +1 -0
package/dist/ports/redaction.d.ts +26 -0
package/dist/ports/redaction.d.ts.map +1 -0
package/dist/ports/redaction.js +126 -0
package/dist/ports/redaction.js.map +1 -0
package/dist/ports/schedules.d.ts +9 -0
package/dist/ports/schedules.d.ts.map +1 -0
package/dist/ports/schedules.js +2 -0
package/dist/ports/schedules.js.map +1 -0
package/dist/ports/storage.d.ts +47 -0
package/dist/ports/storage.d.ts.map +1 -0
package/dist/ports/storage.js +185 -0
package/dist/ports/storage.js.map +1 -0
package/dist/ports/testing.d.ts +73 -0
package/dist/ports/testing.d.ts.map +1 -0
package/dist/ports/testing.js +105 -0
package/dist/ports/testing.js.map +1 -0
package/dist/ports/unit-of-work.d.ts +56 -0
package/dist/ports/unit-of-work.d.ts.map +1 -0
package/dist/ports/unit-of-work.js +64 -0
package/dist/ports/unit-of-work.js.map +1 -0
package/dist/providers/index.d.ts +8 -0
package/dist/providers/index.d.ts.map +1 -0
package/dist/providers/index.js +8 -0
package/dist/providers/index.js.map +1 -0
package/dist/providers/instrumentation.d.ts +91 -0
package/dist/providers/instrumentation.d.ts.map +1 -0
package/dist/providers/instrumentation.js +93 -0
package/dist/providers/instrumentation.js.map +1 -0
package/dist/providers/provider.d.ts +146 -0
package/dist/providers/provider.d.ts.map +1 -0
package/dist/providers/provider.js +31 -0
package/dist/providers/provider.js.map +1 -0
package/dist/schedules/index.d.ts +105 -0
package/dist/schedules/index.d.ts.map +1 -0
package/dist/schedules/index.js +178 -0
package/dist/schedules/index.js.map +1 -0
package/dist/server/contract-like.d.ts +5 -0
package/dist/server/contract-like.d.ts.map +1 -0
package/dist/server/contract-like.js +5 -0
package/dist/server/contract-like.js.map +1 -0
package/dist/server/health.d.ts +41 -0
package/dist/server/health.d.ts.map +1 -0
package/dist/server/health.js +46 -0
package/dist/server/health.js.map +1 -0
package/dist/server/hooks/auth.d.ts +42 -0
package/dist/server/hooks/auth.d.ts.map +1 -0
package/dist/server/hooks/auth.js +61 -0
package/dist/server/hooks/auth.js.map +1 -0
package/dist/server/hooks/cors.d.ts +13 -0
package/dist/server/hooks/cors.d.ts.map +1 -0
package/dist/server/hooks/cors.js +70 -0
package/dist/server/hooks/cors.js.map +1 -0
package/dist/server/hooks/errors.d.ts +66 -0
package/dist/server/hooks/errors.d.ts.map +1 -0
package/dist/server/hooks/errors.js +83 -0
package/dist/server/hooks/errors.js.map +1 -0
package/dist/server/hooks/index.d.ts +12 -0
package/dist/server/hooks/index.d.ts.map +1 -0
package/dist/server/hooks/index.js +12 -0
package/dist/server/hooks/index.js.map +1 -0
package/dist/server/hooks/logging.d.ts +33 -0
package/dist/server/hooks/logging.d.ts.map +1 -0
package/dist/server/hooks/logging.js +90 -0
package/dist/server/hooks/logging.js.map +1 -0
package/dist/server/hooks/rate-limit.d.ts +29 -0
package/dist/server/hooks/rate-limit.d.ts.map +1 -0
package/dist/server/hooks/rate-limit.js +93 -0
package/dist/server/hooks/rate-limit.js.map +1 -0
package/dist/server/hooks/utils.d.ts +9 -0
package/dist/server/hooks/utils.d.ts.map +1 -0
package/dist/server/hooks/utils.js +16 -0
package/dist/server/hooks/utils.js.map +1 -0
package/dist/server/hooks.d.ts +2 -0
package/dist/server/hooks.d.ts.map +1 -0
package/dist/server/hooks.js +2 -0
package/dist/server/hooks.js.map +1 -0
package/dist/server/http.d.ts +124 -0
package/dist/server/http.d.ts.map +1 -0
package/dist/server/http.js +2 -0
package/dist/server/http.js.map +1 -0
package/dist/server/index.d.ts +19 -0
package/dist/server/index.d.ts.map +1 -0
package/dist/server/index.js +15 -0
package/dist/server/index.js.map +1 -0
package/dist/server/openapi.d.ts +32 -0
package/dist/server/openapi.d.ts.map +1 -0
package/dist/server/openapi.js +43 -0
package/dist/server/openapi.js.map +1 -0
package/dist/server/providers/index.d.ts +4 -0
package/dist/server/providers/index.d.ts.map +1 -0
package/dist/server/providers/index.js +4 -0
package/dist/server/providers/index.js.map +1 -0
package/dist/server/providers/loadProviderConfig.d.ts +7 -0
package/dist/server/providers/loadProviderConfig.d.ts.map +1 -0
package/dist/server/providers/loadProviderConfig.js +42 -0
package/dist/server/providers/loadProviderConfig.js.map +1 -0
package/dist/server/server.d.ts +86 -0
package/dist/server/server.d.ts.map +1 -0
package/dist/server/server.js +1031 -0
package/dist/server/server.js.map +1 -0
package/dist/server/types.d.ts +3 -0
package/dist/server/types.d.ts.map +1 -0
package/dist/server/types.js +3 -0
package/dist/server/types.js.map +1 -0
package/package.json +129 -0
package/src/application/index.ts +747 -0
package/src/client/client.ts +1105 -0
package/src/client/index.ts +45 -0
package/src/client/types.ts +305 -0
package/src/config/index.ts +497 -0
package/src/contracts/contract-builder.ts +583 -0
package/src/contracts/contract-group.ts +502 -0
package/src/contracts/contract-like.ts +29 -0
package/src/contracts/index.ts +53 -0
package/src/contracts/openapi-meta.ts +22 -0
package/src/contracts/path-template.ts +91 -0
package/src/contracts/rate-limit.ts +50 -0
package/src/contracts/types.ts +207 -0
package/src/contracts/utils.ts +56 -0
package/src/domain/entity.ts +256 -0
package/src/domain/events.ts +52 -0
package/src/domain/index.ts +18 -0
package/src/domain/value-object.ts +135 -0
package/src/errors/catalog.ts +149 -0
package/src/errors/http.ts +80 -0
package/src/errors/index.ts +28 -0
package/src/errors/response.ts +54 -0
package/src/errors/validation.ts +35 -0
package/src/events/index.ts +246 -0
package/src/jobs/index.ts +211 -0
package/src/mail/index.ts +177 -0
package/src/openapi/index.ts +865 -0
package/src/openapi/schema-introspector.ts +107 -0
package/src/ports/audit.ts +176 -0
package/src/ports/auth.ts +76 -0
package/src/ports/builder.ts +97 -0
package/src/ports/cache.ts +94 -0
package/src/ports/clock.ts +34 -0
package/src/ports/events.ts +100 -0
package/src/ports/id-generator.ts +36 -0
package/src/ports/index.ts +221 -0
package/src/ports/logger.ts +67 -0
package/src/ports/policy.ts +242 -0
package/src/ports/rate-limit.ts +91 -0
package/src/ports/redaction.ts +199 -0
package/src/ports/storage.ts +282 -0
package/src/ports/testing.ts +234 -0
package/src/ports/unit-of-work.ts +134 -0
package/src/providers/index.ts +40 -0
package/src/providers/instrumentation.ts +248 -0
package/src/providers/provider.ts +191 -0
package/src/schedules/index.ts +442 -0
package/src/server/contract-like.ts +8 -0
package/src/server/health.ts +82 -0
package/src/server/hooks/auth.ts +147 -0
package/src/server/hooks/cors.ts +87 -0
package/src/server/hooks/errors.ts +126 -0
package/src/server/hooks/index.ts +43 -0
package/src/server/hooks/logging.ts +121 -0
package/src/server/hooks/rate-limit.ts +171 -0
package/src/server/hooks/utils.ts +16 -0
package/src/server/hooks.ts +1 -0
package/src/server/http.ts +189 -0
package/src/server/index.ts +35 -0
package/src/server/openapi.ts +72 -0
package/src/server/providers/index.ts +3 -0
package/src/server/providers/loadProviderConfig.ts +72 -0
package/src/server/server.ts +1521 -0
package/src/server/types.ts +2 -0

package/src/ports/id-generator.ts ADDED Viewed

@@ -0,0 +1,36 @@
+export interface IdGeneratorPort {
+  nextId(): string;
+}
+export interface SequenceIdGeneratorPort extends IdGeneratorPort {
+  reset(next?: number): void;
+}
+export function createUuidIdGenerator(): IdGeneratorPort {
+  return {
+    nextId: () => {
+      if (typeof globalThis.crypto?.randomUUID !== "function") {
+        throw new Error(
+          "createUuidIdGenerator requires globalThis.crypto.randomUUID(). Provide a custom IdGeneratorPort in this runtime.",
+        );
+      }
+      return globalThis.crypto.randomUUID();
+    },
+  };
+}
+export function createSequenceIdGenerator(
+  options: { prefix?: string; start?: number } = {},
+): SequenceIdGeneratorPort {
+  const prefix = options.prefix ?? "id";
+  const start = options.start ?? 1;
+  let next = start;
+  return {
+    nextId: () => `${prefix}_${next++}`,
+    reset: (value = start) => {
+      next = value;
+    },
+  };
+}

package/src/ports/index.ts ADDED Viewed

@@ -0,0 +1,221 @@
+/**
+ * @beignet/core/ports
+ *
+ * A tiny, framework-agnostic subpath that standardizes how apps define and
+ * type their "ports" (outbound dependencies like db, cache, event bus).
+ *
+ * This subpath provides:
+ * - `definePorts` – helper to define a typed ports object
+ * - `PortsContext` – a generic type that describes ctx objects that carry ports
+ * - `EventBusPort` – interface for event bus implementations
+ * - `JobDispatcherPort` – interface for job dispatch implementations
+ * - `UnitOfWorkPort` – interface for app-owned transaction boundaries
+ * - `AuthPort` – interface for request authentication implementations
+ * - `AuditLogPort` – interface for audit/activity log implementations
+ * - `ClockPort` – interface for deterministic time
+ * - `IdGeneratorPort` – interface for deterministic id generation
+ * - `LoggerPort` – interface for structured application logging
+ * - `GatePort` – interface for application authorization policies
+ * - `RateLimitPort` – interface for rate limiting implementations
+ * - `CachePort` – interface for cache implementations
+ * - `StoragePort` – interface for object/file storage implementations
+ *
+ * Dedicated framework areas own their capability-specific APIs:
+ * - `@beignet/core/mail` owns `MailerPort` and mail test adapters
+ * - `@beignet/core/schedules` owns scheduled task definitions and runners
+ */
+/**
+ * A generic map of named "ports" (outbound dependencies) that your
+ * application depends on: db, mailer, cache, event bus, etc.
+ *
+ * This is intentionally very loose: users define the exact shape via
+ * `definePorts(...)`.
+ */
+export type AnyPorts = Record<string, unknown>;
+/**
+ * Define the set of ports (outbound dependencies) for your application.
+ *
+ * This is essentially a typed identity function. It:
+ * - captures the exact shape of the provided `ports` object
+ * - allows you to export `type AppPorts = typeof appPorts` in your app
+ *
+ * @example
+ * ```ts
+ * const appPorts = definePorts({
+ *   db: dbAdapter,
+ *   mailer: mailerAdapter,
+ * });
+ *
+ * export type AppPorts = typeof appPorts;
+ * ```
+ *
+ * @param ports - The ports object to define
+ * @returns The same ports object, unchanged
+ */
+export function definePorts<P extends AnyPorts>(ports: P): P {
+  return ports;
+}
+/**
+ * A small helper type describing a context object that carries `ports`.
+ *
+ * You typically use this to define your application context:
+ *
+ * @example
+ * ```ts
+ * import type { PortsContext } from "@beignet/core/ports";
+ * import type { AppPorts } from "./core/ports";
+ *
+ * export interface AppCtx extends PortsContext<AppPorts> {
+ *   user: { id: string } | null;
+ *   now: () => Date;
+ *   appError: AppErrorCreator<typeof errors>;
+ * }
+ * ```
+ */
+export interface PortsContext<P extends AnyPorts = AnyPorts> {
+  ports: P;
+}
+export type {
+  ActivityActor,
+  ActivityActorType,
+  ActivityMetadata,
+  ActivityMetadataValue,
+  ActivityResource,
+  ActivityTenant,
+  AuditLogEntry,
+  AuditLogEntryInput,
+  AuditLogOptions,
+  AuditLogPort,
+  AuditOutcome,
+  MemoryAuditLogPort,
+} from "./audit";
+export {
+  createAnonymousActor,
+  createMemoryAuditLog,
+  createRedactedAuditLog,
+  createServiceActor,
+  createSystemActor,
+  createTenant,
+  createUserActor,
+  normalizeAuditLogEntry,
+  redactAuditLogEntry,
+} from "./audit";
+export type {
+  AuthPort,
+  AuthRequestLike,
+  AuthSession,
+  StaticAuthSessionFactory,
+} from "./auth";
+export {
+  AuthUnauthorizedError,
+  createAnonymousAuth,
+  createStaticAuth,
+} from "./auth";
+// Ports builder exports
+export {
+  createPortsBuilder,
+  type PortsBuilder,
+  type PortsOf,
+} from "./builder";
+export type { CachePort, CacheSetOptions } from "./cache";
+// Cache port exports
+export { createMemoryCache } from "./cache";
+// Clock port exports
+export type { ClockPort, FrozenClockPort } from "./clock";
+export { createFrozenClock, createSystemClock } from "./clock";
+// Event bus exports
+export type {
+  DomainEventDef,
+  EventBusPort,
+  InferEventPayload,
+  InferJobPayload,
+  JobDef,
+  JobDispatcherPort,
+} from "./events";
+// Id generator port exports
+export type { IdGeneratorPort, SequenceIdGeneratorPort } from "./id-generator";
+export {
+  createSequenceIdGenerator,
+  createUuidIdGenerator,
+} from "./id-generator";
+// Logger port exports
+export type {
+  LoggerPort,
+  LogLevel,
+  MemoryLogEntry,
+  MemoryLoggerPort,
+} from "./logger";
+export { createMemoryLogger, createNoopLogger } from "./logger";
+// Policy and authorization gate exports
+export type {
+  BoundGate,
+  CreateGateOptions,
+  GateAllowedDecision,
+  GateDecision,
+  GateDeniedDecision,
+  GateDenyHandler,
+  GatePolicyResult,
+  GatePort,
+  PolicyContextFromDefinitions,
+  PolicyDefinition,
+  PolicyMapFromDefinitions,
+  PolicyResolver,
+  PolicySubjectArgs,
+} from "./policy";
+export {
+  allow,
+  createGate,
+  definePolicy,
+  deny,
+  GateAuthorizationError,
+} from "./policy";
+export type {
+  RateLimitHitOptions,
+  RateLimitPort,
+  RateLimitResult,
+} from "./rate-limit";
+// Rate limit port exports
+export { createMemoryRateLimiter } from "./rate-limit";
+// Redaction exports
+export {
+  createRedactor,
+  DEFAULT_CIRCULAR_VALUE,
+  DEFAULT_REDACTED_VALUE,
+  DEFAULT_SENSITIVE_KEY_TERMS,
+  DEFAULT_SENSITIVE_KEYS,
+  DEFAULT_TRUNCATED_VALUE,
+  isSensitiveKey,
+  type RedactableHeaders,
+  type RedactionDecisionContext,
+  type RedactionOptions,
+  type Redactor,
+  redactHeaders,
+  redactValue,
+} from "./redaction";
+// Storage port exports
+export type {
+  MemoryStorageOptions,
+  StorageBody,
+  StorageMetadata,
+  StorageObject,
+  StorageObjectBody,
+  StoragePort,
+  StoragePutOptions,
+  StorageVisibility,
+} from "./storage";
+export { createMemoryStorage } from "./storage";
+// Unit of Work exports
+export {
+  type BufferedDomainEventRecorder,
+  createDomainEventRecorder,
+  createNoopUnitOfWork,
+  type DomainEventRecorderPort,
+  type NoopUnitOfWorkOptions,
+  type RecordedDomainEvent,
+  type UnitOfWorkCallback,
+  type UnitOfWorkPort,
+} from "./unit-of-work";

package/src/ports/logger.ts ADDED Viewed

@@ -0,0 +1,67 @@
+export type LogLevel = "trace" | "debug" | "info" | "warn" | "error" | "fatal";
+export interface LoggerPort {
+  trace(message: string, meta?: Record<string, unknown>): void;
+  debug(message: string, meta?: Record<string, unknown>): void;
+  info(message: string, meta?: Record<string, unknown>): void;
+  warn(message: string, meta?: Record<string, unknown>): void;
+  error(message: string, meta?: Record<string, unknown>): void;
+  fatal(message: string, meta?: Record<string, unknown>): void;
+  child(bindings: Record<string, unknown>): LoggerPort;
+}
+export interface MemoryLogEntry {
+  level: LogLevel;
+  message: string;
+  meta?: Record<string, unknown>;
+  bindings: Record<string, unknown>;
+}
+export interface MemoryLoggerPort extends LoggerPort {
+  entries: MemoryLogEntry[];
+}
+export function createNoopLogger(): LoggerPort {
+  const logger: LoggerPort = {
+    trace: () => {},
+    debug: () => {},
+    info: () => {},
+    warn: () => {},
+    error: () => {},
+    fatal: () => {},
+    child: () => logger,
+  };
+  return logger;
+}
+export function createMemoryLogger(
+  bindings: Record<string, unknown> = {},
+  entries: MemoryLogEntry[] = [],
+): MemoryLoggerPort {
+  const capturedBindings = { ...bindings };
+  const record = (
+    level: LogLevel,
+    message: string,
+    meta?: Record<string, unknown>,
+  ) => {
+    entries.push({
+      level,
+      message,
+      meta: meta ? { ...meta } : undefined,
+      bindings: { ...capturedBindings },
+    });
+  };
+  return {
+    entries,
+    trace: (message, meta) => record("trace", message, meta),
+    debug: (message, meta) => record("debug", message, meta),
+    info: (message, meta) => record("info", message, meta),
+    warn: (message, meta) => record("warn", message, meta),
+    error: (message, meta) => record("error", message, meta),
+    fatal: (message, meta) => record("fatal", message, meta),
+    child: (childBindings) =>
+      createMemoryLogger({ ...capturedBindings, ...childBindings }, entries),
+  };
+}

package/src/ports/policy.ts ADDED Viewed

@@ -0,0 +1,242 @@
+type MaybePromise<T> = T | Promise<T>;
+export type GateAllowedDecision = {
+  allowed: true;
+};
+export type GateDeniedDecision = {
+  allowed: false;
+  reason?: string;
+  code?: string;
+  details?: unknown;
+};
+export type GateDecision = GateAllowedDecision | GateDeniedDecision;
+export type GatePolicyResult = boolean | GateDecision;
+export type PolicyResolver = (
+  ...args: never[]
+) => MaybePromise<GatePolicyResult>;
+export type PolicyDefinition<
+  TPolicies extends Record<string, PolicyResolver> = Record<
+    string,
+    PolicyResolver
+  >,
+> = {
+  policies: TPolicies;
+};
+export type PolicyContext<TResolver> = TResolver extends (
+  ctx: infer Ctx,
+  ...args: never[]
+) => MaybePromise<GatePolicyResult>
+  ? Ctx
+  : never;
+export type PolicySubjectArgs<TResolver> = TResolver extends (
+  ...args: infer TArgs
+) => MaybePromise<GatePolicyResult>
+  ? TArgs extends [unknown, infer Subject]
+    ? [subject: Subject]
+    : []
+  : [];
+type UnionToIntersection<T> = (
+  T extends unknown
+    ? (value: T) => void
+    : never
+) extends (value: infer U) => void
+  ? U
+  : never;
+export type PolicyMapFromDefinitions<
+  TPolicies extends readonly PolicyDefinition[],
+> = UnionToIntersection<
+  TPolicies[number] extends PolicyDefinition<infer TPolicyMap>
+    ? TPolicyMap
+    : never
+>;
+export type PolicyContextFromDefinitions<
+  TPolicies extends readonly PolicyDefinition[],
+> = PolicyContext<
+  PolicyMapFromDefinitions<TPolicies>[keyof PolicyMapFromDefinitions<TPolicies>]
+>;
+export type BoundGate<TPolicies extends readonly PolicyDefinition[]> = {
+  can<TAbility extends keyof PolicyMapFromDefinitions<TPolicies> & string>(
+    ability: TAbility,
+    ...subject: PolicySubjectArgs<PolicyMapFromDefinitions<TPolicies>[TAbility]>
+  ): Promise<boolean>;
+  inspect<TAbility extends keyof PolicyMapFromDefinitions<TPolicies> & string>(
+    ability: TAbility,
+    ...subject: PolicySubjectArgs<PolicyMapFromDefinitions<TPolicies>[TAbility]>
+  ): Promise<GateDecision>;
+  authorize<
+    TAbility extends keyof PolicyMapFromDefinitions<TPolicies> & string,
+  >(
+    ability: TAbility,
+    ...subject: PolicySubjectArgs<PolicyMapFromDefinitions<TPolicies>[TAbility]>
+  ): Promise<GateAllowedDecision>;
+};
+export type GatePort<
+  TContext,
+  TPolicies extends readonly PolicyDefinition[] = readonly PolicyDefinition[],
+> = {
+  bind(ctx: TContext): BoundGate<TPolicies>;
+  can<TAbility extends keyof PolicyMapFromDefinitions<TPolicies> & string>(
+    ctx: TContext,
+    ability: TAbility,
+    ...subject: PolicySubjectArgs<PolicyMapFromDefinitions<TPolicies>[TAbility]>
+  ): Promise<boolean>;
+  inspect<TAbility extends keyof PolicyMapFromDefinitions<TPolicies> & string>(
+    ctx: TContext,
+    ability: TAbility,
+    ...subject: PolicySubjectArgs<PolicyMapFromDefinitions<TPolicies>[TAbility]>
+  ): Promise<GateDecision>;
+  authorize<
+    TAbility extends keyof PolicyMapFromDefinitions<TPolicies> & string,
+  >(
+    ctx: TContext,
+    ability: TAbility,
+    ...subject: PolicySubjectArgs<PolicyMapFromDefinitions<TPolicies>[TAbility]>
+  ): Promise<GateAllowedDecision>;
+};
+export type GateDenyHandler<TContext> = (
+  decision: GateDeniedDecision,
+  params: {
+    ctx: TContext;
+    ability: string;
+    subject?: unknown;
+  },
+) => MaybePromise<Error | undefined>;
+export type CreateGateOptions<
+  TContext,
+  TPolicies extends readonly PolicyDefinition[],
+> = {
+  policies: TPolicies;
+  onDeny?: GateDenyHandler<TContext>;
+};
+export class GateAuthorizationError extends Error {
+  readonly code: string;
+  readonly status = 403;
+  readonly details?: unknown;
+  constructor(decision: GateDeniedDecision = deny()) {
+    super(decision.reason ?? "Forbidden");
+    this.name = "GateAuthorizationError";
+    this.code = decision.code ?? "FORBIDDEN";
+    this.details = decision.details;
+  }
+}
+export function allow(): GateAllowedDecision {
+  return { allowed: true };
+}
+export function deny(
+  reasonOrDecision?: string | Omit<GateDeniedDecision, "allowed">,
+): GateDeniedDecision {
+  if (typeof reasonOrDecision === "string") {
+    return { allowed: false, reason: reasonOrDecision };
+  }
+  return {
+    allowed: false,
+    ...reasonOrDecision,
+  };
+}
+export function definePolicy<
+  const TPolicies extends Record<string, PolicyResolver>,
+>(policies: TPolicies): PolicyDefinition<TPolicies> {
+  return { policies };
+}
+export function createGate<
+  TContext,
+  const TPolicies extends readonly PolicyDefinition[],
+>(
+  options: CreateGateOptions<TContext, TPolicies>,
+): GatePort<TContext, TPolicies> {
+  const registry = new Map<string, PolicyResolver>();
+  for (const definition of options.policies) {
+    for (const [ability, resolver] of Object.entries(definition.policies)) {
+      if (registry.has(ability)) {
+        throw new Error(`Policy ability "${ability}" is already registered.`);
+      }
+      registry.set(ability, resolver);
+    }
+  }
+  async function inspect(
+    ctx: TContext,
+    ability: string,
+    subject?: unknown,
+  ): Promise<GateDecision> {
+    const resolver = registry.get(ability);
+    if (!resolver) {
+      return deny({
+        reason: `No policy registered for "${ability}".`,
+        code: "POLICY_NOT_FOUND",
+      });
+    }
+    const result = await resolver(ctx as never, subject as never);
+    return normalizeDecision(result);
+  }
+  async function authorize(
+    ctx: TContext,
+    ability: string,
+    subject?: unknown,
+  ): Promise<GateAllowedDecision> {
+    const decision = await inspect(ctx, ability, subject);
+    if (decision.allowed) return decision;
+    const thrown = await options.onDeny?.(decision, { ctx, ability, subject });
+    throw thrown ?? new GateAuthorizationError(decision);
+  }
+  function bind(ctx: TContext): BoundGate<TPolicies> {
+    return {
+      can: async (ability, ...subject) => gate.can(ctx, ability, ...subject),
+      inspect: async (ability, ...subject) =>
+        gate.inspect(ctx, ability, ...subject),
+      authorize: async (ability, ...subject) =>
+        gate.authorize(ctx, ability, ...subject),
+    };
+  }
+  const gate: GatePort<TContext, TPolicies> = {
+    bind,
+    async can(ctx, ability, ...subject) {
+      return (await inspect(ctx, ability, firstSubject(subject))).allowed;
+    },
+    inspect: async (ctx, ability, ...subject) =>
+      inspect(ctx, ability, firstSubject(subject)),
+    authorize: async (ctx, ability, ...subject) =>
+      authorize(ctx, ability, firstSubject(subject)),
+  };
+  return gate;
+}
+function normalizeDecision(result: GatePolicyResult): GateDecision {
+  if (typeof result === "boolean") {
+    return result ? allow() : deny();
+  }
+  return result;
+}
+function firstSubject(subject: readonly unknown[]): unknown {
+  return subject[0];
+}

package/src/ports/rate-limit.ts ADDED Viewed

@@ -0,0 +1,91 @@
+export interface RateLimitHitOptions {
+  /**
+   * Unique key for this rate limit window.
+   *
+   * Examples: "global", "ip:203.0.113.10", "user:123".
+   */
+  key: string;
+  /**
+   * Maximum allowed hits inside the window.
+   */
+  limit: number;
+  /**
+   * Length of the window in seconds.
+   */
+  windowSec: number;
+}
+export interface RateLimitResult {
+  /**
+   * True when the hit is within the configured limit.
+   */
+  allowed: boolean;
+  /**
+   * Remaining allowed hits in the window, if known. May be null if the
+   * implementation does not track it.
+   */
+  remaining: number | null;
+  /**
+   * Date when the window resets, if known. May be null.
+   */
+  resetAt: Date | null;
+  /**
+   * Seconds until the caller should retry, if the hit was rejected and the
+   * implementation can calculate it.
+   */
+  retryAfterSeconds: number | null;
+}
+export interface RateLimitPort {
+  hit(options: RateLimitHitOptions): Promise<RateLimitResult>;
+}
+type MemoryRateLimitWindow = {
+  count: number;
+  resetAt: number;
+};
+function assertPositiveInteger(name: string, value: number): void {
+  if (!Number.isInteger(value) || value <= 0) {
+    throw new Error(`${name} must be a positive integer`);
+  }
+}
+function toRetryAfterSeconds(resetAt: number): number {
+  return Math.max(0, Math.ceil((resetAt - Date.now()) / 1000));
+}
+export function createMemoryRateLimiter(): RateLimitPort {
+  const windows = new Map<string, MemoryRateLimitWindow>();
+  return {
+    async hit({ key, limit, windowSec }) {
+      assertPositiveInteger("limit", limit);
+      assertPositiveInteger("windowSec", windowSec);
+      const now = Date.now();
+      const current = windows.get(key);
+      const window =
+        current && current.resetAt > now
+          ? current
+          : {
+              count: 0,
+              resetAt: now + windowSec * 1000,
+            };
+      window.count += 1;
+      windows.set(key, window);
+      const allowed = window.count <= limit;
+      const remaining = Math.max(0, limit - window.count);
+      const resetAt = new Date(window.resetAt);
+      return {
+        allowed,
+        remaining,
+        resetAt,
+        retryAfterSeconds: allowed ? null : toRetryAfterSeconds(window.resetAt),
+      };
+    },
+  };
+}