npm - @better-s3/server - Versions diffs - 3.2.0 → 3.3.0 - Mend

@better-s3/server 3.2.0 → 3.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/README.md +74 -130
package/dist/adapters/next.js +2 -2
package/dist/adapters/next.js.map +1 -1
package/dist/api.d.ts +0 -1
package/dist/helpers/build-public-url.d.ts +7 -5
package/dist/helpers/index.js +1 -1
package/dist/helpers/index.js.map +1 -1
package/dist/index.js +2 -2
package/dist/index.js.map +1 -1
package/dist/types.d.ts +42 -30
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -1,6 +1,6 @@
 # @better-s3/server
-Framework-agnostic S3 server handlers — presigned uploads, downloads, deletes, and multipart operations. Works with any `Request`/`Response` runtime (Next.js, Hono, Bun, Deno, Cloudflare Workers, etc).
+Server-side presigned URL handlers for S3 — upload, download, delete, and multipart. Works with any `Request`/`Response` runtime (Next.js, Hono, Bun, Deno, Cloudflare Workers, etc).
 ## Install
@@ -12,119 +12,66 @@ pnpm add @better-s3/server @aws-sdk/client-s3
 ```ts
 // app/api/s3/[...s3]/route.ts  (Next.js App Router)
-import { S3Client } from "@aws-sdk/client-s3";
 import { createRouteHandler } from "@better-s3/server/next";
+import { s3Config } from "@/lib/better-s3";
-const handler = createRouteHandler({
-  s3: new S3Client({ region: "us-east-1" }),
-  defaultBucket: "my-bucket",
-  basePath: "/api/s3",
-  // Enable only the features your app needs. All are disabled by default.
-  features: {
-    upload: true,
-    download: true,
-    delete: true,
-    // multipart: true, // enable only if you explicitly need multipart support
-  },
-});
+const handler = createRouteHandler(s3Config);
 export { handler as GET, handler as POST, handler as DELETE };
 ```
-Other frameworks via `createRouter` from `@better-s3/server`:
 ```ts
-const router = createRouter({
-  s3,
-  defaultBucket: "my-bucket",
+// lib/better-s3.ts
+import type { S3RouteHandlerConfig } from "@better-s3/server";
+import { s3, defaultBucket, resolvePublicUrl } from "@/lib/s3";
+export const s3Config = {
+  s3: s3,
+  defaultBucket: defaultBucket,
+  resolvePublicUrl: resolvePublicUrl,
   basePath: "/api/s3",
-  features: { upload: true, download: true, delete: true, multipart: true },
-  hooks: {
-    guard: async ({ request }) => {
-      console.log("[guard]", request.method, request.url);
-    },
-    upload: {
-      guard: async ({ key, bucket, contentType, fileSize }) => {
-        console.log("[upload.guard]", { key, bucket, contentType, fileSize });
-      },
-      onPresigned: async ({ key, url, expiresIn }) => {
-        console.log("[upload.onPresigned]", { key, url, expiresIn });
-      },
-      onUploaded: async ({ key, contentType, contentLength, eTag }) => {
-        console.log("[upload.onUploaded]", {
-          key,
-          contentType,
-          contentLength,
-          eTag,
-        });
-      },
-    },
+  // guard: async ({ request }) => { ... },
-    download: {
-      guard: async ({ key, bucket, fileName }) => {
-        console.log("[download.guard]", { key, bucket, fileName });
-      },
-      onPresigned: async ({ key, url, expiresIn }) => {
-        console.log("[download.onPresigned]", { key, url, expiresIn });
-      },
+  upload: {
+    enabled: true,
+    onUploadConfirmed: async ({ key, contentLength }) => {
+      // await db.file.create({ data: { key, contentLength } });
     },
+  },
-    delete: {
-      guard: async ({ key, bucket }) => {
-        console.log("[delete.guard]", { key, bucket });
-      },
-      onDeleted: async ({ key, bucket }) => {
-        console.log("[delete.onDeleted]", { key, bucket });
-      },
-    },
+  download: { enabled: true },
-    multipart: {
-      guard: async ({ key, bucket, fileSize }) => {
-        console.log("[multipart.guard]", { key, bucket, fileSize });
-      },
-      onInit: async ({ key, uploadId, contentType, fileSize }) => {
-        console.log("[multipart.onInit]", {
-          key,
-          uploadId,
-          contentType,
-          fileSize,
-        });
-      },
-      onComplete: async ({ key, uploadId, contentLength, eTag }) => {
-        console.log("[multipart.onComplete]", {
-          key,
-          uploadId,
-          contentLength,
-          eTag,
-        });
-      },
-      onAbort: async ({ key, uploadId }) => {
-        console.log("[multipart.onAbort]", { key, uploadId });
-      },
+  delete: {
+    enabled: true,
+    onDeleted: async ({ key }) => {
+      // await db.file.delete({ where: { key } });
     },
   },
-});
+  // multipart: { enabled: true },
+} satisfies S3RouteHandlerConfig;
+```
+Other frameworks via `createRouter`:
+```ts
+import { createRouter } from "@better-s3/server";
+const router = createRouter(s3Config);
 app.all("/api/s3/*", (c) => router(c.req.raw)); // Hono example
 ```
-## Features
+## Enabling endpoints
-All endpoints are **disabled by default**. You must explicitly opt in via the `features` config — this prevents unintended exposure of expensive or sensitive operations (especially multipart, which is vulnerable to [cost attacks](#multipart-cost-attacks)).
+All endpoints are **disabled by default** — set `enabled: true` inside each section to opt in. Disabled endpoints respond with `404`.
 ```ts
-features: {
-  upload: true,     // POST /presign/upload + POST /presign/upload/confirm
-  download: true,   // GET  /presign/download
-  delete: true,     // DELETE /delete
-  multipart: true,  // POST /presign/multipart/{init,part,complete,abort}
-}
+upload:    { enabled: true }  // POST /presign/upload + POST /presign/upload/confirm
+download:  { enabled: true }  // GET  /presign/download
+delete:    { enabled: true }  // DELETE /delete
+multipart: { enabled: true }  // POST /presign/multipart/{init,part,complete,abort}
 ```
-> Disabled endpoints respond with `404 Not Found`.
 | Upload mode | Enforcement                                                                                                     |
 | ----------- | --------------------------------------------------------------------------------------------------------------- |
 | Simple      | S3 enforces exact size via `content-length-range` in the signed POST policy — tamperproof                       |
@@ -132,44 +79,41 @@ features: {
 > Simple upload is inherently more secure — enforcement happens at the S3 storage layer. Multipart presigned `UploadPart` URLs cannot enforce per-part size; see [Multipart cost attacks](#multipart-cost-attacks).
-## Server Hooks
+## Hooks
 Run server-side logic at key points. Every hook receives the `Request` object. **Throw to reject** — returned as `{ message }` with status 403, or any status you set on the thrown error.
 ```
-Simple:    upload.guard → upload.onPresigned → [S3] → upload.onUploaded
-Multipart: multipart.guard(init) → multipart.onInit
-           multipart.guard(part) → [S3]
-           multipart.guard(complete) → HeadObject → multipart.onComplete
-           multipart.guard(abort) → multipart.onAbort
+Simple:    upload.presignGuard → upload.onPresigned → [S3] → upload.confirmGuard → upload.onUploadConfirmed
+Multipart: multipart.initGuard → multipart.onInit
+           multipart.partGuard → [S3]
+           multipart.completeGuard → HeadObject → multipart.onComplete
+           multipart.abortGuard → multipart.onAbort
 ```
 ### Authentication
 ```ts
-hooks: {
-  guard: async ({ request }) => {
-    const session = await getSession(request);
-    if (!session) throw Object.assign(new Error("Unauthorized"), { status: 401 });
-  },
-}
+guard: async ({ request }) => {
+  const session = await getSession(request);
+  if (!session) throw Object.assign(new Error("Unauthorized"), { status: 401 });
+},
 ```
 ### Quota check
-`fileSize` in `upload.guard` and `multipart.guard` (init only) is **declared by the client** — use it for pre-checks. `contentLength` in `onUploaded` / `multipart.onComplete` is verified by S3.
+`fileSize` in `upload.presignGuard` and `multipart.initGuard` is **declared by the client** — use it for pre-checks. `contentLength` in `onUploadConfirmed` / `multipart.onComplete` is verified by S3.
 ```ts
-hooks: {
-  upload: {
-    guard: async ({ request, fileSize }) => {
-      const { userId } = await getSession(request);
-      const used = await db.storage.getUsed(userId);
-      if (fileSize && used + fileSize > QUOTA)
-        throw Object.assign(new Error("Quota exceeded"), { status: 403 });
-    },
+upload: {
+  enabled: true,
+  guard: async ({ request, fileSize }) => {
+    const { userId } = await getSession(request);
+    const used = await db.storage.getUsed(userId);
+    if (fileSize && used + fileSize > QUOTA)
+      throw Object.assign(new Error("Quota exceeded"), { status: 403 });
   },
-}
+},
 ```
 ## Multipart cost attacks
@@ -179,24 +123,24 @@ S3 presigned `UploadPart` URLs cannot enforce per-part size. A malicious client
 **Mitigation: track uploads in a database + cron cleanup**
 ```ts
-hooks: {
-  multipart: {
-    // Guard runs on init, part, complete, and abort.
-    // fileSize is only present during init — use it to limit open sessions.
-    guard: async ({ request, fileSize }) => {
-      if (!fileSize) return;
-      const { userId } = await getSession(request);
-      const pending = await db.upload.count({ where: { userId, status: "pending" } });
-      if (pending >= 3)
-        throw Object.assign(new Error("Too many pending uploads"), { status: 429 });
-    },
+multipart: {
+  enabled: true,
+  // Guard runs on init, part, complete, and abort.
+  // fileSize is only present during init — use it to limit open sessions.
+  guard: async ({ request, fileSize }) => {
+    if (!fileSize) return;
+    const { userId } = await getSession(request);
+    const pending = await db.upload.count({ where: { userId, status: "pending" } });
+    if (pending >= 3)
+      throw Object.assign(new Error("Too many pending uploads"), { status: 429 });
+  },
-    onInit: async ({ request, key, uploadId, contentType, fileSize }) => {
-      const { userId } = await getSession(request);
-      await db.upload.create({
-        data: { key, userId, uploadId, contentType, declaredSize: fileSize, status: "pending" },
-      });
-    },
+  onInit: async ({ request, key, uploadId, contentType, fileSize }) => {
+    const { userId } = await getSession(request);
+    await db.upload.create({
+      data: { key, userId, uploadId, contentType, declaredSize: fileSize, status: "pending" },
+    });
+  },
     onComplete: async ({ key, contentLength, contentType, eTag }) => {
       await db.upload.update({

package/dist/adapters/next.js CHANGED Viewed

@@ -1,3 +1,3 @@
-import {createPresignedPost}from'@aws-sdk/s3-presigned-post';import {HeadObjectCommand,GetObjectCommand,DeleteObjectCommand,CreateMultipartUploadCommand,UploadPartCommand,CompleteMultipartUploadCommand,AbortMultipartUploadCommand,GetObjectAclCommand}from'@aws-sdk/client-s3';import {getSignedUrl}from'@aws-sdk/s3-request-presigner';async function f(e){try{let n=await e.json();return n&&typeof n=="object"?n:null}catch{return null}}function m(e,n){let t=typeof e=="string"?e.trim():"";return t||Response.json({message:`${n} is required`},{status:400})}function k(e){let n=Number(e);return Number.isFinite(n)&&n>0?Math.floor(n):600}function p(e){return async n=>{try{return await e(n)}catch(t){let r=t instanceof Error?t.message:"Internal server error";return console.error("[S3 API]",r),Response.json({message:r},{status:500})}}}async function l(e,n){if(!e)return null;try{return await e(n),null}catch(t){let r=t instanceof Error?t.message:"Forbidden",a=typeof t?.status=="number"?t.status:403;return Response.json({message:r},{status:a})}}function g(e){let n=e.replace(/[^\x20-\x7E]/g,"_").replace(/["\\]/g,"_"),t=encodeURIComponent(e);return `attachment; filename="${n}"; filename*=UTF-8''${t}`}function H(e,n,t,r){return r!=="public-read"||!e?void 0:`${e(n).replace(/\/$/,"")}/${t}`}function C(e){if(!e)return;let n=e.match(/filename\*=UTF-8''([^;\s]+)/i);if(n)try{return decodeURIComponent(n[1])}catch{}return e.match(/filename="([^"]*)"/i)?.[1]}var M=5*1024*1024*1024;function I(e){return p(async n=>{let t=await f(n);if(!t)return Response.json({message:"Invalid JSON payload"},{status:400});let r=m(t.key,"key");if(r instanceof Response)return r;let a=t.bucket?.trim()||e.defaultBucket,s=k(t.expiresIn),o=t.acl==="public-read"?"public-read":"private",i=t.contentType?.trim()||"application/octet-stream",u=typeof t.fileSize=="number"&&t.fileSize>0?Math.floor(t.fileSize):null;if(u!==null&&e.maxFileSize&&u>e.maxFileSize)return Response.json({message:`File size (${u} bytes) exceeds the maximum allowed size of ${e.maxFileSize} bytes`},{status:413});let d=await l(e.upload?.guard,{request:n,key:r,bucket:a,contentType:t.contentType,fileSize:u??void 0,metadata:t.metadata,acl:o});if(d)return d;let c={acl:o,"Content-Type":i};if(t.fileName&&(c["Content-Disposition"]=g(t.fileName)),t.metadata)for(let[y,S]of Object.entries(t.metadata))c[`x-amz-meta-${y}`]=S;let P=u??1,R=u??e.maxFileSize??M,{url:w,fields:h}=await createPresignedPost(e.s3,{Bucket:a,Key:r,Conditions:[["content-length-range",P,R]],Fields:c,Expires:s});return await e.upload?.onPresigned?.({request:n,key:r,bucket:a,contentType:t.contentType,metadata:t.metadata,acl:o,url:w,expiresIn:s}),Response.json({bucket:a,key:r,url:w,fields:h,expiresIn:s})})}async function x(e,n,t){try{return (await e.send(new GetObjectAclCommand({Bucket:n,Key:t}))).Grants?.some(s=>s.Grantee?.URI==="http://acs.amazonaws.com/groups/global/AllUsers"&&(s.Permission==="READ"||s.Permission==="FULL_CONTROL"))?"public-read":"private"}catch{return "private"}}function j(e){return p(async n=>{let t=await f(n);if(!t)return Response.json({message:"Invalid JSON payload"},{status:400});let r=m(t.key,"key");if(r instanceof Response)return r;let a=t.bucket?.trim()||e.defaultBucket,s=await l(e.upload?.guard,{request:n,key:r,bucket:a});if(s)return s;let o=await e.s3.send(new HeadObjectCommand({Bucket:a,Key:r})),i=await x(e.s3,a,r),u=H(e.resolvePublicUrl,a,r,i),d=C(o.ContentDisposition),c={request:n,key:r,bucket:a,contentType:o.ContentType,contentLength:o.ContentLength??0,eTag:o.ETag?.replace(/"/g,""),metadata:o.Metadata,acl:i,fileName:d,publicUrl:u};return await e.upload?.onUploaded?.(c),Response.json({key:r,bucket:a,contentType:c.contentType,contentLength:c.contentLength,eTag:c.eTag,acl:i,fileName:d,publicUrl:u})})}function T(e){return p(async n=>{let{searchParams:t}=new URL(n.url),r=t.get("key")?.trim();if(!r)return Response.json({message:"key query parameter is required"},{status:400});let a=t.get("bucket")?.trim()||e.defaultBucket,s=k(t.get("expiresIn")),o=t.get("fileName")?.trim(),i=await l(e.download?.guard,{request:n,key:r,bucket:a,fileName:o||void 0});if(i)return i;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:r}));}catch(d){let c=d?.name;if(c==="NoSuchKey"||c==="NotFound")return Response.json({message:"Object not found"},{status:404});throw d}let u=await getSignedUrl(e.s3,new GetObjectCommand({Bucket:a,Key:r,ResponseContentDisposition:o?g(o):"attachment"}),{expiresIn:s});return await e.download?.onPresigned?.({request:n,key:r,bucket:a,fileName:o||void 0,url:u,expiresIn:s}),Response.json({bucket:a,key:r,url:u,expiresIn:s})})}function N(e){return p(async n=>{let{searchParams:t}=new URL(n.url),r=t.get("key")?.trim();if(!r)return Response.json({message:"key query parameter is required"},{status:400});let a=t.get("bucket")?.trim()||e.defaultBucket,s=await l(e.delete?.guard,{request:n,key:r,bucket:a});if(s)return s;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:r}));}catch{return Response.json({message:"Object not found"},{status:404})}return await e.s3.send(new DeleteObjectCommand({Bucket:a,Key:r})),await e.delete?.onDeleted?.({request:n,key:r,bucket:a}),Response.json({success:!0,bucket:a,key:r})})}function z(e){return p(async n=>{let t=await f(n);if(!t)return Response.json({message:"Invalid JSON payload"},{status:400});let r=m(t.key,"key");if(r instanceof Response)return r;let a=t.bucket?.trim()||e.defaultBucket,s=t.acl==="public-read"?"public-read":"private",o=typeof t.fileSize=="number"&&t.fileSize>0?Math.floor(t.fileSize):void 0;if(o!==void 0&&e.maxFileSize&&o>e.maxFileSize)return Response.json({message:`File size (${o} bytes) exceeds the maximum allowed size of ${e.maxFileSize} bytes`},{status:413});let i=await l(e.multipart?.guard,{request:n,key:r,bucket:a,fileSize:o});if(i)return i;let{UploadId:u}=await e.s3.send(new CreateMultipartUploadCommand({Bucket:a,Key:r,ContentType:t.contentType,ContentDisposition:t.fileName?g(t.fileName):void 0,Metadata:t.metadata,ACL:s}));return await e.multipart?.onInit?.({request:n,key:r,bucket:a,uploadId:u,contentType:t.contentType,fileSize:o,metadata:t.metadata,acl:s}),Response.json({bucket:a,key:r,uploadId:u},{status:201})})}function U(e){return p(async n=>{let t=await f(n);if(!t)return Response.json({message:"Invalid JSON payload"},{status:400});let r=m(t.key,"key");if(r instanceof Response)return r;let a=m(t.uploadId,"uploadId");if(a instanceof Response)return a;let s=Number(t.partNumber);if(!Number.isInteger(s)||s<=0)return Response.json({message:"partNumber must be a positive integer"},{status:400});let o=t.bucket?.trim()||e.defaultBucket,i=k(t.expiresIn),u=await l(e.multipart?.guard,{request:n,key:r,bucket:o});if(u)return u;let d=await getSignedUrl(e.s3,new UploadPartCommand({Bucket:o,Key:r,UploadId:a,PartNumber:s}),{expiresIn:i});return Response.json({presignedUrl:d,partNumber:s,uploadId:a,bucket:o,expiresIn:i})})}function O(e){return p(async n=>{let t=await f(n);if(!t)return Response.json({message:"Invalid JSON payload"},{status:400});let r=m(t.key,"key");if(r instanceof Response)return r;let a=m(t.uploadId,"uploadId");if(a instanceof Response)return a;let s=(Array.isArray(t.parts)?t.parts:[]).map(({partNumber:y,eTag:S})=>({PartNumber:Number(y),ETag:String(S)})).filter(y=>Number.isInteger(y.PartNumber)&&y.ETag).sort((y,S)=>y.PartNumber-S.PartNumber);if(!s.length)return Response.json({message:"At least one valid part is required"},{status:400});let o=t.bucket?.trim()||e.defaultBucket,i=await l(e.multipart?.guard,{request:n,key:r,bucket:o});if(i)return i;await e.s3.send(new CompleteMultipartUploadCommand({Bucket:o,Key:r,UploadId:a,MultipartUpload:{Parts:s}}));let u=await e.s3.send(new HeadObjectCommand({Bucket:o,Key:r})),d=u.ContentLength??0,c=u.ContentType,P=u.ETag?.replace(/"/g,""),R=await x(e.s3,o,r),w=H(e.resolvePublicUrl,o,r,R),h=C(u.ContentDisposition);return e.maxFileSize&&d>e.maxFileSize?(await e.s3.send(new DeleteObjectCommand({Bucket:o,Key:r})).catch(()=>{}),Response.json({message:`File size (${d} bytes) exceeds the maximum allowed size of ${e.maxFileSize} bytes`},{status:422})):(await e.multipart?.onComplete?.({request:n,key:r,bucket:o,uploadId:a,contentLength:d,contentType:c,eTag:P,acl:R,fileName:h,publicUrl:w}),Response.json({bucket:o,key:r,uploadId:a,contentLength:d,contentType:c,eTag:P,acl:R,fileName:h,publicUrl:w}))})}function E(e){return p(async n=>{let t=await f(n);if(!t)return Response.json({message:"Invalid JSON payload"},{status:400});let r=m(t.key,"key");if(r instanceof Response)return r;let a=m(t.uploadId,"uploadId");if(a instanceof Response)return a;let s=t.bucket?.trim()||e.defaultBucket,o=await l(e.multipart?.guard,{request:n,key:r,bucket:s});return o||(await e.s3.send(new AbortMultipartUploadCommand({Bucket:s,Key:r,UploadId:a})),await e.multipart?.onAbort?.({request:n,key:r,bucket:s,uploadId:a}),Response.json({bucket:s,key:r,uploadId:a,aborted:!0}))})}function B(e){return {presign:{upload:I(e),confirm:j(e),download:T(e)},multipart:{init:z(e),part:U(e),complete:O(e),abort:E(e)},delete:N(e)}}var b=()=>Response.json({message:"Not Found"},{status:404});function F(e){let n=B(e),t=e.basePath.replace(/\/$/,"");return async r=>{let a=await l(e.guard,{request:r});if(a)return a;let o=new URL(r.url).pathname.slice(t.length).replace(/^\//,""),i=r.method;return i==="POST"&&o==="presign/upload"?e.upload?.enabled?n.presign.upload(r):b():i==="POST"&&o==="presign/upload/confirm"?e.upload?.enabled?n.presign.confirm(r):b():i==="GET"&&o==="presign/download"?e.download?.enabled?n.presign.download(r):b():i==="DELETE"&&o==="delete"?e.delete?.enabled?n.delete(r):b():i==="POST"&&o==="presign/multipart/init"?e.multipart?.enabled?n.multipart.init(r):b():i==="POST"&&o==="presign/multipart/part"?e.multipart?.enabled?n.multipart.part(r):b():i==="POST"&&o==="presign/multipart/complete"?e.multipart?.enabled?n.multipart.complete(r):b():i==="POST"&&o==="presign/multipart/abort"?e.multipart?.enabled?n.multipart.abort(r):b():Response.json({message:"Not Found"},{status:404})}}function nt(e){return F(e)}
-export{nt as createRouteHandler};//# sourceMappingURL=next.js.map
+import {createPresignedPost}from'@aws-sdk/s3-presigned-post';import {HeadObjectCommand,GetObjectCommand,DeleteObjectCommand,CreateMultipartUploadCommand,UploadPartCommand,ListPartsCommand,CompleteMultipartUploadCommand,AbortMultipartUploadCommand,GetObjectAclCommand}from'@aws-sdk/client-s3';import {getSignedUrl}from'@aws-sdk/s3-request-presigner';async function y(e){try{let n=await e.json();return n&&typeof n=="object"?n:null}catch{return null}}function p(e,n){let r=typeof e=="string"?e.trim():"";return r||Response.json({message:`${n} is required`},{status:400})}function w(e){let n=Number(e);return Number.isFinite(n)&&n>0?Math.floor(n):600}function l(e){return async n=>{try{return await e(n)}catch(r){let t=r.code,s=t==="EAI_AGAIN"||t==="ECONNREFUSED"||t==="ECONNRESET"||t==="ETIMEDOUT"||t==="ENOTFOUND"?`S3 endpoint unreachable (${t}): check your endpoint URL and network connectivity`:r instanceof Error?r.message:"Internal server error";return console.error("[S3 API]",s),Response.json({message:s},{status:502})}}}async function u(e,n){if(!e)return null;try{return await e(n),null}catch(r){let t=r instanceof Error?r.message:"Forbidden",a=typeof r?.status=="number"?r.status:403;return Response.json({message:t},{status:a})}}function k(e){let n=e.replace(/[^\x20-\x7E]/g,"_").replace(/["\\]/g,"_"),r=encodeURIComponent(e);return `attachment; filename="${n}"; filename*=UTF-8''${r}`}function H(e,n,r,t){if(t!=="public-read"||!e)return;let a=e(n);if(a)return `${a.replace(/\/$/,"")}/${r}`}function P(e){if(!e)return;let n=e.match(/filename\*=UTF-8''([^;\s]+)/i);if(n)try{return decodeURIComponent(n[1])}catch{}return e.match(/filename="([^"]*)"/i)?.[1]}function j(e){return l(async n=>{let r=await y(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=p(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=w(r.expiresIn),o=r.acl==="public-read"?"public-read":"private",i=r.contentType?.trim()||"application/octet-stream",d=typeof r.fileSize=="number"&&r.fileSize>0?Math.floor(r.fileSize):null,f=await u(e.upload?.presignGuard,{request:n,key:t,bucket:a,contentType:r.contentType,fileSize:d??void 0,metadata:r.metadata,acl:o});if(f)return f;let c={acl:o,"Content-Type":i};if(r.fileName&&(c["Content-Disposition"]=k(r.fileName)),r.metadata)for(let[N,S]of Object.entries(r.metadata))c[`x-amz-meta-${N}`]=S;let I=d??1,b=d??void 0,{url:R,fields:T}=await createPresignedPost(e.s3,{Bucket:a,Key:t,Conditions:b!==void 0?[["content-length-range",I,b]]:[["content-length-range",I,Number.MAX_SAFE_INTEGER]],Fields:c,Expires:s});return await e.upload?.onPresigned?.({request:n,key:t,bucket:a,contentType:r.contentType,metadata:r.metadata,acl:o,url:R,expiresIn:s}),Response.json({bucket:a,key:t,url:R,fields:T,expiresIn:s})})}async function h(e,n,r){try{return (await e.send(new GetObjectAclCommand({Bucket:n,Key:r}))).Grants?.some(s=>s.Grantee?.URI==="http://acs.amazonaws.com/groups/global/AllUsers"&&(s.Permission==="READ"||s.Permission==="FULL_CONTROL"))?"public-read":"private"}catch{return "private"}}function U(e){return l(async n=>{let r=await y(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=p(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=await u(e.upload?.confirmGuard,{request:n,key:t,bucket:a});if(s)return s;let o=await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t})),i=await h(e.s3,a,t),d=H(e.resolvePublicUrl,a,t,i),f=P(o.ContentDisposition),c={request:n,key:t,bucket:a,contentType:o.ContentType,contentLength:o.ContentLength??0,eTag:o.ETag?.replace(/"/g,""),metadata:o.Metadata,acl:i,fileName:f,publicUrl:d};return await e.upload?.onUploadConfirmed?.(c),Response.json({key:t,bucket:a,contentType:c.contentType,contentLength:c.contentLength,eTag:c.eTag,acl:i,fileName:f,publicUrl:d})})}function O(e){return l(async n=>{let{searchParams:r}=new URL(n.url),t=r.get("key")?.trim();if(!t)return Response.json({message:"key query parameter is required"},{status:400});let a=r.get("bucket")?.trim()||e.defaultBucket,s=w(r.get("expiresIn")),o=r.get("fileName")?.trim(),i=await u(e.download?.presignGuard,{request:n,key:t,bucket:a,fileName:o||void 0});if(i)return i;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t}));}catch(f){let c=f?.name;if(c==="NoSuchKey"||c==="NotFound")return Response.json({message:"Object not found"},{status:404});throw f}let d=await getSignedUrl(e.s3,new GetObjectCommand({Bucket:a,Key:t,ResponseContentDisposition:o?k(o):"attachment"}),{expiresIn:s});return await e.download?.onPresigned?.({request:n,key:t,bucket:a,fileName:o||void 0,url:d,expiresIn:s}),Response.json({bucket:a,key:t,url:d,expiresIn:s})})}function B(e){return l(async n=>{let{searchParams:r}=new URL(n.url),t=r.get("key")?.trim();if(!t)return Response.json({message:"key query parameter is required"},{status:400});let a=r.get("bucket")?.trim()||e.defaultBucket,s=await u(e.delete?.deleteGuard,{request:n,key:t,bucket:a});if(s)return s;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t}));}catch{return Response.json({message:"Object not found"},{status:404})}return await e.s3.send(new DeleteObjectCommand({Bucket:a,Key:t})),await e.delete?.onDeleted?.({request:n,key:t,bucket:a}),Response.json({success:!0,bucket:a,key:t})})}function v(e){return l(async n=>{let r=await y(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=p(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=r.acl==="public-read"?"public-read":"private",o=typeof r.fileSize=="number"&&r.fileSize>0?Math.floor(r.fileSize):void 0,i=await u(e.multipart?.initGuard,{request:n,key:t,bucket:a,fileSize:o});if(i)return i;let{UploadId:d}=await e.s3.send(new CreateMultipartUploadCommand({Bucket:a,Key:t,ContentType:r.contentType,ContentDisposition:r.fileName?k(r.fileName):void 0,Metadata:r.metadata,ACL:s}));return await e.multipart?.onInit?.({request:n,key:t,bucket:a,uploadId:d,contentType:r.contentType,fileSize:o,metadata:r.metadata,acl:s}),Response.json({bucket:a,key:t,uploadId:d},{status:201})})}function M(e){return l(async n=>{let r=await y(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=p(r.key,"key");if(t instanceof Response)return t;let a=p(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=Number(r.partNumber);if(!Number.isInteger(s)||s<=0)return Response.json({message:"partNumber must be a positive integer"},{status:400});let o=r.bucket?.trim()||e.defaultBucket,i=w(r.expiresIn),d=await u(e.multipart?.partGuard,{request:n,key:t,bucket:o});if(d)return d;let f=await getSignedUrl(e.s3,new UploadPartCommand({Bucket:o,Key:t,UploadId:a,PartNumber:s}),{expiresIn:i});return Response.json({presignedUrl:f,partNumber:s,uploadId:a,bucket:o,expiresIn:i})})}function D(e){return l(async n=>{let r=await y(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=p(r.key,"key");if(t instanceof Response)return t;let a=p(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=(Array.isArray(r.parts)?r.parts:[]).map(({partNumber:m})=>Number(m)).filter(m=>Number.isInteger(m)&&m>0).sort((m,C)=>m-C);if(!s.length)return Response.json({message:"At least one valid part is required"},{status:400});let o=r.bucket?.trim()||e.defaultBucket,i=await u(e.multipart?.completeGuard,{request:n,key:t,bucket:o});if(i)return i;let f=(await e.s3.send(new ListPartsCommand({Bucket:o,Key:t,UploadId:a}))).Parts??[],c=s.map(m=>{let C=f.find(G=>G.PartNumber===m);return {PartNumber:m,ETag:C?.ETag??""}}),I=await e.s3.send(new CompleteMultipartUploadCommand({Bucket:o,Key:t,UploadId:a,MultipartUpload:{Parts:c}})),b=await e.s3.send(new HeadObjectCommand({Bucket:o,Key:t}));for(let m=0;m<4&&!b.ContentLength;m++)await new Promise(C=>setTimeout(C,250*2**m)),b=await e.s3.send(new HeadObjectCommand({Bucket:o,Key:t}));let R=b.ContentLength??0,T=b.ContentType,N=(b.ETag??I.ETag??"").replace(/"/g,""),S=await h(e.s3,o,t),x=H(e.resolvePublicUrl,o,t,S),E=P(b.ContentDisposition);return await e.multipart?.onComplete?.({request:n,key:t,bucket:o,uploadId:a,contentLength:R,contentType:T,eTag:N,acl:S,fileName:E,publicUrl:x}),Response.json({bucket:o,key:t,uploadId:a,contentLength:R,contentType:T,eTag:N,acl:S,fileName:E,publicUrl:x})})}function z(e){return l(async n=>{let r=await y(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=p(r.key,"key");if(t instanceof Response)return t;let a=p(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=r.bucket?.trim()||e.defaultBucket,o=await u(e.multipart?.abortGuard,{request:n,key:t,bucket:s});return o||(await e.s3.send(new AbortMultipartUploadCommand({Bucket:s,Key:t,UploadId:a})),await e.multipart?.onAbort?.({request:n,key:t,bucket:s,uploadId:a}),Response.json({bucket:s,key:t,uploadId:a,aborted:!0}))})}function F(e){return {presign:{upload:j(e),confirm:U(e),download:O(e)},multipart:{init:v(e),part:M(e),complete:D(e),abort:z(e)},delete:B(e)}}var g=()=>Response.json({message:"Not Found"},{status:404});function L(e){let n=F(e),r=e.basePath.replace(/\/$/,"");return async t=>{let a=await u(e.guard,{request:t});if(a)return a;let o=new URL(t.url).pathname.slice(r.length).replace(/^\//,""),i=t.method;return i==="POST"&&o==="presign/upload"?e.upload?.enabled?n.presign.upload(t):g():i==="POST"&&o==="presign/upload/confirm"?e.upload?.enabled?n.presign.confirm(t):g():i==="GET"&&o==="presign/download"?e.download?.enabled?n.presign.download(t):g():i==="DELETE"&&o==="delete"?e.delete?.enabled?n.delete(t):g():i==="POST"&&o==="presign/multipart/init"?e.multipart?.enabled?n.multipart.init(t):g():i==="POST"&&o==="presign/multipart/part"?e.multipart?.enabled?n.multipart.part(t):g():i==="POST"&&o==="presign/multipart/complete"?e.multipart?.enabled?n.multipart.complete(t):g():i==="POST"&&o==="presign/multipart/abort"?e.multipart?.enabled?n.multipart.abort(t):g():Response.json({message:"Not Found"},{status:404})}}function it(e){return L(e)}
+export{it as createRouteHandler};//# sourceMappingURL=next.js.map
 //# sourceMappingURL=next.js.map

package/dist/adapters/next.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../src/internal-helpers.ts","../../src/helpers/build-content-disposition.ts","../../src/helpers/build-public-url.ts","../../src/helpers/parse-file-name.ts","../../src/handlers/presign/upload.ts","../../src/helpers/server/resolve-object-acl.ts","../../src/handlers/presign/confirm.ts","../../src/handlers/presign/download.ts","../../src/handlers/delete.ts","../../src/handlers/multipart/init.ts","../../src/handlers/multipart/part.ts","../../src/handlers/multipart/complete.ts","../../src/handlers/multipart/abort.ts","../../src/create-handlers.ts","../../src/router.ts","../../src/adapters/next.ts"],"names":["parseBody","request","body","requireString","value","name","trimmed","normalizeExpiresIn","withS3ErrorHandler","handler","err","message","runHook","hook","context","status","buildContentDisposition","fileName","ascii","encoded","buildPublicUrl","publicUrlBase","bucket","key","acl","parseFileName","contentDisposition","utf8Match","MAX_UPLOAD_SIZE","createUploadHandler","config","expiresIn","contentType","fileSize","guardResult","fields","k","v","rangeMin","rangeMax","url","signedFields","createPresignedPost","resolveObjectAcl","s3","GetObjectAclCommand","g","createConfirmHandler","head","HeadObjectCommand","publicUrl","createDownloadHandler","searchParams","getSignedUrl","GetObjectCommand","createDeleteHandler","DeleteObjectCommand","createMultipartInitHandler","UploadId","CreateMultipartUploadCommand","createMultipartPartHandler","uploadId","partNumber","presignedUrl","UploadPartCommand","createMultipartCompleteHandler","parts","eTag","p","a","b","CompleteMultipartUploadCommand","contentLength","createMultipartAbortHandler","AbortMultipartUploadCommand","createHandlers","disabled","createRouter","handlers","base","subpath","method","createRouteHandler"],"mappings":"4UAAA,eAAsBA,CAAAA,CACpBC,CAAAA,CACmB,CACnB,GAAI,CACF,IAAMC,CAAAA,CAAO,MAAMD,CAAAA,CAAQ,IAAA,EAAK,CAChC,OAAOC,CAAAA,EAAQ,OAAOA,CAAAA,EAAS,QAAA,CAAYA,CAAAA,CAAa,IAC1D,CAAA,KAAQ,CACN,OAAO,IACT,CACF,CAEO,SAASC,CAAAA,CAAcC,CAAAA,CAAgBC,CAAAA,CAAiC,CAC7E,IAAMC,CAAAA,CAAU,OAAOF,CAAAA,EAAU,QAAA,CAAWA,CAAAA,CAAM,IAAA,EAAK,CAAI,EAAA,CAC3D,OAAKE,CAAAA,EACI,QAAA,CAAS,KAAK,CAAE,OAAA,CAAS,CAAA,EAAGD,CAAI,CAAA,YAAA,CAAe,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAG5E,CAEO,SAASE,CAAAA,CAAmBH,CAAAA,CAAwB,CACzD,IAAM,CAAA,CAAI,MAAA,CAAOA,CAAK,CAAA,CACtB,OAAO,MAAA,CAAO,QAAA,CAAS,CAAC,CAAA,EAAK,CAAA,CAAI,CAAA,CAAI,IAAA,CAAK,KAAA,CAAM,CAAC,CAAA,CAAI,GACvD,CAEO,SAASI,CAAAA,CACdC,CAAAA,CACA,CACA,OAAO,MAAOR,CAAAA,EAAqB,CACjC,GAAI,CACF,OAAO,MAAMQ,CAAAA,CAAQR,CAAO,CAC9B,OAASS,CAAAA,CAAK,CACZ,IAAMC,CAAAA,CACJD,CAAAA,YAAe,KAAA,CAAQA,CAAAA,CAAI,OAAA,CAAU,uBAAA,CACvC,OAAA,OAAA,CAAQ,KAAA,CAAM,UAAA,CAAYC,CAAO,CAAA,CAC1B,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAAA,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACnD,CACF,CACF,CAMA,eAAsBC,CAAAA,CACpBC,CAAAA,CACAC,CAAAA,CAC0B,CAC1B,GAAI,CAACD,CAAAA,CAAM,OAAO,IAAA,CAClB,GAAI,CACF,OAAA,MAAMA,CAAAA,CAAKC,CAAO,CAAA,CACX,IACT,CAAA,MAASJ,CAAAA,CAAK,CACZ,IAAMC,CAAAA,CAAUD,CAAAA,YAAe,KAAA,CAAQA,CAAAA,CAAI,OAAA,CAAU,WAAA,CAC/CK,CAAAA,CACJ,OAAQL,CAAAA,EAAiC,MAAA,EAAW,QAAA,CAC9CA,CAAAA,CAAgC,MAAA,CAClC,GAAA,CACN,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAAC,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAAI,CAAO,CAAC,CAC9C,CACF,CC/CO,SAASC,CAAAA,CAAwBC,CAAAA,CAA0B,CAChE,IAAMC,CAAAA,CAAQD,EAAS,OAAA,CAAQ,eAAA,CAAiB,GAAG,CAAA,CAAE,OAAA,CAAQ,QAAA,CAAU,GAAG,CAAA,CACpEE,CAAAA,CAAU,kBAAA,CAAmBF,CAAQ,CAAA,CAC3C,OAAO,CAAA,sBAAA,EAAyBC,CAAK,CAAA,oBAAA,EAAuBC,CAAO,CAAA,CACrE,CCNO,SAASC,CAAAA,CACdC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACoB,CACpB,OAAIA,CAAAA,GAAQ,aAAA,EAAiB,CAACH,CAAAA,CAAe,MAAA,CAEtC,CAAA,EADMA,EAAcC,CAAM,CAAA,CAAE,OAAA,CAAQ,KAAA,CAAO,EAAE,CACtC,CAAA,CAAA,EAAIC,CAAG,CAAA,CACvB,CCXO,SAASE,CAAAA,CACdC,CAAAA,CACoB,CACpB,GAAI,CAACA,EAAoB,OAEzB,IAAMC,CAAAA,CAAYD,CAAAA,CAAmB,KAAA,CAAM,8BAA8B,CAAA,CACzE,GAAIC,CAAAA,CACF,GAAI,CACF,OAAO,kBAAA,CAAmBA,CAAAA,CAAU,CAAC,CAAC,CACxC,CAAA,KAAQ,CAER,CAIF,OADmBD,CAAAA,CAAmB,KAAA,CAAM,qBAAqB,CAAA,GAC7C,CAAC,CACvB,CCZA,IAAME,CAAAA,CAAkB,CAAA,CAAI,IAAA,CAAO,IAAA,CAAO,KAqBnC,SAASC,CAAAA,CAAoBC,CAAAA,CAAyB,CAC3D,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,EAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,cACvCC,CAAAA,CAAYxB,CAAAA,CAAmBL,CAAAA,CAAK,SAAS,CAAA,CAC7CsB,CAAAA,CAAMtB,CAAAA,CAAK,GAAA,GAAQ,aAAA,CAAgB,aAAA,CAAgB,SAAA,CACnD8B,CAAAA,CAAc9B,CAAAA,CAAK,WAAA,EAAa,IAAA,EAAK,EAAK,2BAC1C+B,CAAAA,CACJ,OAAO/B,CAAAA,CAAK,QAAA,EAAa,QAAA,EAAYA,CAAAA,CAAK,QAAA,CAAW,CAAA,CACjD,IAAA,CAAK,KAAA,CAAMA,CAAAA,CAAK,QAAQ,CAAA,CACxB,IAAA,CAEN,GACE+B,CAAAA,GAAa,IAAA,EACbH,CAAAA,CAAO,WAAA,EACPG,CAAAA,CAAWH,CAAAA,CAAO,WAAA,CAElB,OAAO,QAAA,CAAS,IAAA,CACd,CACE,OAAA,CAAS,CAAA,WAAA,EAAcG,CAAQ,CAAA,4CAAA,EAA+CH,CAAAA,CAAO,WAAW,QAClG,CAAA,CACA,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,MAAA,EAAQ,KAAA,CAAO,CACtD,OAAA,CAAA7B,CAAAA,CACA,IAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAapB,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAU+B,CAAAA,EAAY,KAAA,CAAA,CACtB,QAAA,CAAU/B,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAsB,CACF,CAAC,CAAA,CACD,GAAIU,CAAAA,CAAa,OAAOA,CAAAA,CAOxB,IAAMC,CAAAA,CAAiC,CAAE,GAAA,CAAAX,CAAAA,CAAK,cAAA,CAAgBQ,CAAY,CAAA,CAM1E,GAJI9B,CAAAA,CAAK,QAAA,GACPiC,CAAAA,CAAO,qBAAqB,CAAA,CAAInB,CAAAA,CAAwBd,CAAAA,CAAK,QAAQ,CAAA,CAAA,CAGnEA,CAAAA,CAAK,QAAA,CACP,IAAA,GAAW,CAACkC,CAAAA,CAAGC,CAAC,CAAA,GAAK,MAAA,CAAO,OAAA,CAAQnC,CAAAA,CAAK,QAAQ,EAC/CiC,CAAAA,CAAO,CAAA,WAAA,EAAcC,CAAC,CAAA,CAAE,CAAA,CAAIC,CAAAA,CAUhC,IAAMC,CAAAA,CAAWL,CAAAA,EAAY,CAAA,CACvBM,CAAAA,CAAWN,CAAAA,EAAYH,CAAAA,CAAO,WAAA,EAAeF,CAAAA,CAE7C,CAAE,IAAAY,CAAAA,CAAK,MAAA,CAAQC,CAAa,CAAA,CAAI,MAAMC,mBAAAA,CAAoBZ,CAAAA,CAAO,EAAA,CAAI,CACzE,MAAA,CAAQR,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,UAAA,CAAY,CAAC,CAAC,uBAAwBe,CAAAA,CAAUC,CAAQ,CAAC,CAAA,CACzD,MAAA,CAAQJ,CAAAA,CACR,OAAA,CAASJ,CACX,CAAC,CAAA,CAED,OAAA,MAAMD,CAAAA,CAAO,MAAA,EAAQ,WAAA,GAAc,CACjC,OAAA,CAAA7B,EACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAapB,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAUA,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAsB,CAAAA,CACA,GAAA,CAAAgB,CAAAA,CACA,SAAA,CAAAT,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAT,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,GAAA,CAAAiB,CAAAA,CAAK,MAAA,CAAQC,CAAAA,CAAc,SAAA,CAAAV,CAAU,CAAC,CAC5E,CAAC,CACH,CCrHA,eAAsBY,CAAAA,CACpBC,CAAAA,CACAtB,CAAAA,CACAC,CAAAA,CACoC,CACpC,GAAI,CASF,OAAA,CARe,MAAMqB,CAAAA,CAAG,IAAA,CACtB,IAAIC,mBAAAA,CAAoB,CAAE,MAAA,CAAQvB,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACtD,CAAA,EACwB,MAAA,EAAQ,IAAA,CAC7BuB,CAAAA,EACCA,CAAAA,CAAE,OAAA,EAAS,GAAA,GAAQ,iDAAA,GAClBA,CAAAA,CAAE,UAAA,GAAe,MAAA,EAAUA,CAAAA,CAAE,UAAA,GAAe,cAAA,CACjD,CAAA,CACkB,aAAA,CAAgB,SACpC,CAAA,KAAQ,CACN,OAAO,SACT,CACF,CCXO,SAASC,CAAAA,CAAqBjB,CAAAA,CAAyB,CAC5D,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,EAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,EAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,aAAA,CAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,MAAA,EAAQ,KAAA,CAAO,CACtD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,IAAMc,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,EAAA,CAAG,IAAA,CAC3B,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,EAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CAEMC,CAAAA,CAAM,MAAMmB,CAAAA,CAAiBb,CAAAA,CAAO,EAAA,CAAIR,CAAAA,CAAQC,CAAG,CAAA,CACnD2B,CAAAA,CAAY9B,CAAAA,CAAeU,CAAAA,CAAO,iBAAkBR,CAAAA,CAAQC,CAAAA,CAAKC,CAAG,CAAA,CACpEP,CAAAA,CAAWQ,CAAAA,CAAcuB,CAAAA,CAAK,kBAAkB,CAAA,CAEhDlC,CAAAA,CAAU,CACd,OAAA,CAAAb,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAa0B,CAAAA,CAAK,WAAA,CAClB,aAAA,CAAeA,CAAAA,CAAK,aAAA,EAAiB,CAAA,CACrC,IAAA,CAAMA,CAAAA,CAAK,IAAA,EAAM,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CACjC,QAAA,CAAUA,EAAK,QAAA,CACf,GAAA,CAAAxB,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAA,CAEA,OAAA,MAAMpB,CAAAA,CAAO,MAAA,EAAQ,UAAA,GAAahB,CAAO,CAAA,CAElC,QAAA,CAAS,IAAA,CAAK,CACnB,GAAA,CAAAS,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAaR,CAAAA,CAAQ,WAAA,CACrB,aAAA,CAAeA,CAAAA,CAAQ,aAAA,CACvB,IAAA,CAAMA,CAAAA,CAAQ,IAAA,CACd,GAAA,CAAAU,CAAAA,CACA,QAAA,CAAAP,EACA,SAAA,CAAAiC,CACF,CAAC,CACH,CAAC,CACH,CC9DO,SAASC,CAAAA,CAAsBrB,CAAAA,CAAyB,CAC7D,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,GAAM,CAAE,YAAA,CAAAmD,CAAa,CAAA,CAAI,IAAI,GAAA,CAAInD,EAAQ,GAAG,CAAA,CACtCsB,CAAAA,CAAM6B,CAAAA,CAAa,GAAA,CAAI,KAAK,CAAA,EAAG,IAAA,EAAK,CAC1C,GAAI,CAAC7B,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,QAAS,iCAAkC,CAAA,CAC7C,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,GAAA,CAAI,QAAQ,CAAA,EAAG,IAAA,EAAK,EAAKtB,CAAAA,CAAO,cACtDC,CAAAA,CAAYxB,CAAAA,CAAmB6C,CAAAA,CAAa,GAAA,CAAI,WAAW,CAAC,CAAA,CAC5DnC,CAAAA,CAAWmC,CAAAA,CAAa,GAAA,CAAI,UAAU,CAAA,EAAG,IAAA,EAAK,CAE9ClB,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,QAAA,EAAU,KAAA,CAAO,CACxD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUL,CAAAA,EAAY,KAAA,CACxB,CAAC,CAAA,CACD,GAAIiB,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAI,CACF,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CAAK,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,MAASb,CAAAA,CAAc,CACrB,IAAML,CAAAA,CAAQK,CAAAA,EAA2B,IAAA,CACzC,GAAIL,CAAAA,GAAS,WAAA,EAAeA,CAAAA,GAAS,UAAA,CACnC,OAAO,QAAA,CAAS,KAAK,CAAE,OAAA,CAAS,kBAAmB,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAAA,CAEvE,MAAMK,CACR,CAEA,IAAM8B,CAAAA,CAAM,MAAMa,YAAAA,CAChBvB,EAAO,EAAA,CACP,IAAIwB,gBAAAA,CAAiB,CACnB,MAAA,CAAQhC,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,0BAAA,CAA4BN,CAAAA,CACxBD,CAAAA,CAAwBC,CAAQ,CAAA,CAChC,YACN,CAAC,CAAA,CACD,CAAE,SAAA,CAAAc,CAAU,CACd,CAAA,CAEA,OAAA,MAAMD,CAAAA,CAAO,QAAA,EAAU,WAAA,GAAc,CACnC,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUL,GAAY,KAAA,CAAA,CACtB,GAAA,CAAAuB,CAAAA,CACA,SAAA,CAAAT,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAT,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,GAAA,CAAAiB,CAAAA,CAAK,UAAAT,CAAU,CAAC,CACtD,CAAC,CACH,CC9DO,SAASwB,CAAAA,CAAoBzB,CAAAA,CAAyB,CAC3D,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,GAAM,CAAE,YAAA,CAAAmD,CAAa,CAAA,CAAI,IAAI,GAAA,CAAInD,CAAAA,CAAQ,GAAG,CAAA,CACtCsB,CAAAA,CAAM6B,EAAa,GAAA,CAAI,KAAK,CAAA,EAAG,IAAA,EAAK,CAC1C,GAAI,CAAC7B,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,iCAAkC,CAAA,CAC7C,CAAE,OAAQ,GAAI,CAChB,CAAA,CAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,GAAA,CAAI,QAAQ,CAAA,EAAG,IAAA,EAAK,EAAKtB,CAAAA,CAAO,aAAA,CAEtDI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,EAAO,MAAA,EAAQ,KAAA,CAAO,CACtD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAI,CACF,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CAAK,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,KAAQ,CACN,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,kBAAmB,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACvE,CAEA,OAAA,MAAMO,CAAAA,CAAO,EAAA,CAAG,IAAA,CAAK,IAAI0B,mBAAAA,CAAoB,CAAE,MAAA,CAAQlC,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,CAAA,CAE1E,MAAMO,CAAAA,CAAO,MAAA,EAAQ,SAAA,GAAY,CAAE,OAAA,CAAA7B,CAAAA,CAAS,IAAAsB,CAAAA,CAAK,MAAA,CAAAD,CAAO,CAAC,CAAA,CAElD,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,CAAA,CAAA,CAAM,MAAA,CAAAA,CAAAA,CAAQ,GAAA,CAAAC,CAAI,CAAC,CACrD,CAAC,CACH,CCdO,SAASkC,CAAAA,CAA2B3B,CAAAA,CAAyB,CAClE,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,OAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,EAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,aAAA,CACvCN,CAAAA,CAAMtB,CAAAA,CAAK,GAAA,GAAQ,aAAA,CAAgB,aAAA,CAAgB,SAAA,CACnD+B,CAAAA,CACJ,OAAO/B,CAAAA,CAAK,QAAA,EAAa,QAAA,EAAYA,CAAAA,CAAK,QAAA,CAAW,CAAA,CACjD,IAAA,CAAK,KAAA,CAAMA,CAAAA,CAAK,QAAQ,CAAA,CACxB,KAAA,CAAA,CAEN,GACE+B,CAAAA,GAAa,KAAA,CAAA,EACbH,CAAAA,CAAO,WAAA,EACPG,CAAAA,CAAWH,EAAO,WAAA,CAElB,OAAO,QAAA,CAAS,IAAA,CACd,CACE,OAAA,CAAS,CAAA,WAAA,EAAcG,CAAQ,CAAA,4CAAA,EAA+CH,CAAAA,CAAO,WAAW,CAAA,MAAA,CAClG,CAAA,CACA,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,KAAA,CAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAW,CACF,CAAC,CAAA,CACD,GAAIC,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAM,CAAE,QAAA,CAAAwB,CAAS,CAAA,CAAI,MAAM5B,CAAAA,CAAO,EAAA,CAAG,IAAA,CACnC,IAAI6B,4BAAAA,CAA6B,CAC/B,MAAA,CAAQrC,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,WAAA,CAAarB,CAAAA,CAAK,WAAA,CAClB,kBAAA,CAAoBA,CAAAA,CAAK,QAAA,CACrBc,CAAAA,CAAwBd,CAAAA,CAAK,QAAQ,CAAA,CACrC,OACJ,QAAA,CAAUA,CAAAA,CAAK,QAAA,CACf,GAAA,CAAKsB,CACP,CAAC,CACH,CAAA,CAEA,OAAA,MAAMM,CAAAA,CAAO,SAAA,EAAW,MAAA,GAAS,CAC/B,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,EACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUoC,CAAAA,CACV,WAAA,CAAaxD,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAA+B,CAAAA,CACA,QAAA,CAAU/B,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAsB,CACF,CAAC,CAAA,CAEM,SAAS,IAAA,CAAK,CAAE,MAAA,CAAAF,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,QAAA,CAAUmC,CAAS,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAC3E,CAAC,CACH,CCtEO,SAASE,CAAAA,CAA2B9B,CAAAA,CAAyB,CAClE,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW1D,CAAAA,CAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI2D,CAAAA,YAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMC,CAAAA,CAAa,MAAA,CAAO5D,CAAAA,CAAK,UAAU,CAAA,CACzC,GAAI,CAAC,MAAA,CAAO,SAAA,CAAU4D,CAAU,CAAA,EAAKA,CAAAA,EAAc,CAAA,CACjD,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,uCAAwC,CAAA,CACnD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMxC,CAAAA,CAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,aAAA,CACvCC,CAAAA,CAAYxB,CAAAA,CAAmBL,CAAAA,CAAK,SAAS,EAE7CgC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,KAAA,CAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,EAAa,OAAOA,CAAAA,CAExB,IAAM6B,CAAAA,CAAe,MAAMV,YAAAA,CACzBvB,CAAAA,CAAO,EAAA,CACP,IAAIkC,iBAAAA,CAAkB,CACpB,MAAA,CAAQ1C,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CAAAA,CACV,UAAA,CAAYC,CACd,CAAC,CAAA,CACD,CAAE,SAAA,CAAA/B,CAAU,CACd,CAAA,CAEA,OAAO,QAAA,CAAS,IAAA,CAAK,CACnB,YAAA,CAAAgC,CAAAA,CACA,WAAAD,CAAAA,CACA,QAAA,CAAAD,CAAAA,CACA,MAAA,CAAAvC,CAAAA,CACA,SAAA,CAAAS,CACF,CAAC,CACH,CAAC,CACH,CC7CO,SAASkC,CAAAA,CAA+BnC,CAAAA,CAAyB,CACtE,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW1D,CAAAA,CAAcD,CAAAA,CAAK,SAAU,UAAU,CAAA,CACxD,GAAI2D,CAAAA,YAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMK,CAAAA,CAAAA,CAAS,KAAA,CAAM,OAAA,CAAQhE,CAAAA,CAAK,KAAK,CAAA,CAAIA,CAAAA,CAAK,KAAA,CAAQ,EAAC,EACtD,GAAA,CAAI,CAAC,CAAE,UAAA,CAAA4D,CAAAA,CAAY,IAAA,CAAAK,CAAK,CAAA,IAAO,CAC9B,UAAA,CAAY,MAAA,CAAOL,CAAU,CAAA,CAC7B,IAAA,CAAM,MAAA,CAAOK,CAAI,CACnB,CAAA,CAAE,CAAA,CACD,MAAA,CAAQC,CAAAA,EAAM,MAAA,CAAO,SAAA,CAAUA,CAAAA,CAAE,UAAU,CAAA,EAAKA,CAAAA,CAAE,IAAI,CAAA,CACtD,IAAA,CAAK,CAACC,CAAAA,CAAGC,IAAMD,CAAAA,CAAE,UAAA,CAAaC,CAAAA,CAAE,UAAU,CAAA,CAE7C,GAAI,CAACJ,CAAAA,CAAM,MAAA,CACT,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,qCAAsC,CAAA,CACjD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAM5C,CAAAA,CAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,aAAA,CAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,WAAW,KAAA,CAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,MAAMJ,CAAAA,CAAO,GAAG,IAAA,CACd,IAAIyC,8BAAAA,CAA+B,CACjC,MAAA,CAAQjD,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CAAAA,CACV,eAAA,CAAiB,CAAE,KAAA,CAAOK,CAAM,CAClC,CAAC,CACH,CAAA,CAKA,IAAMlB,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,EAAA,CAAG,IAAA,CAC3B,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CACMiD,CAAAA,CAAgBxB,CAAAA,CAAK,aAAA,EAAiB,CAAA,CACtChB,CAAAA,CAAcgB,CAAAA,CAAK,WAAA,CACnBmB,CAAAA,CAAOnB,CAAAA,CAAK,IAAA,EAAM,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CAElCxB,CAAAA,CAAM,MAAMmB,CAAAA,CAAiBb,CAAAA,CAAO,EAAA,CAAIR,CAAAA,CAAQC,CAAG,CAAA,CACnD2B,CAAAA,CAAY9B,CAAAA,CAAeU,CAAAA,CAAO,gBAAA,CAAkBR,CAAAA,CAAQC,CAAAA,CAAKC,CAAG,CAAA,CACpEP,CAAAA,CAAWQ,CAAAA,CAAcuB,EAAK,kBAAkB,CAAA,CAEtD,OAAIlB,CAAAA,CAAO,WAAA,EAAe0C,CAAAA,CAAgB1C,CAAAA,CAAO,WAAA,EAG/C,MAAMA,CAAAA,CAAO,EAAA,CACV,IAAA,CAAK,IAAI0B,mBAAAA,CAAoB,CAAE,MAAA,CAAQlC,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,CAAA,CAC1D,KAAA,CAAM,IAAM,CAAC,CAAC,CAAA,CACV,QAAA,CAAS,IAAA,CACd,CACE,OAAA,CAAS,CAAA,WAAA,EAAciD,CAAa,CAAA,4CAAA,EAA+C1C,CAAAA,CAAO,WAAW,CAAA,MAAA,CACvG,CAAA,CACA,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,GAGF,MAAMA,CAAAA,CAAO,SAAA,EAAW,UAAA,GAAa,CACnC,OAAA,CAAA7B,EACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAuC,CAAAA,CACA,aAAA,CAAAW,CAAAA,CACA,WAAA,CAAAxC,CAAAA,CACA,IAAA,CAAAmC,CAAAA,CACA,GAAA,CAAA3C,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,UAAAiC,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CACnB,MAAA,CAAA5B,CAAAA,CACA,GAAA,CAAAC,CAAAA,CACA,QAAA,CAAAsC,CAAAA,CACA,aAAA,CAAAW,CAAAA,CACA,WAAA,CAAAxC,CAAAA,CACA,IAAA,CAAAmC,CAAAA,CACA,GAAA,CAAA3C,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAC,CAAA,CACH,CAAC,CACH,CClHO,SAASuB,CAAAA,CAA4B3C,CAAAA,CAAyB,CACnE,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,EAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW1D,CAAAA,CAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI2D,aAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMvC,CAAAA,CAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,aAAA,CAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,MAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,OAAIY,CAAAA,GAEJ,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CACd,IAAI4C,4BAA4B,CAC9B,MAAA,CAAQpD,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CACZ,CAAC,CACH,CAAA,CAEA,MAAM/B,CAAAA,CAAO,SAAA,EAAW,OAAA,GAAU,CAChC,OAAA,CAAA7B,EACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAuC,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAvC,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,QAAA,CAAAsC,CAAAA,CAAU,OAAA,CAAS,CAAA,CAAK,CAAC,CAAA,CAC/D,CAAC,CACH,CC/CO,SAASc,CAAAA,CAAe7C,CAAAA,CAAqC,CAClE,OAAO,CACL,OAAA,CAAS,CACP,OAAQD,CAAAA,CAAoBC,CAAM,CAAA,CAClC,OAAA,CAASiB,CAAAA,CAAqBjB,CAAM,CAAA,CACpC,QAAA,CAAUqB,CAAAA,CAAsBrB,CAAM,CACxC,CAAA,CACA,SAAA,CAAW,CACT,IAAA,CAAM2B,CAAAA,CAA2B3B,CAAM,CAAA,CACvC,IAAA,CAAM8B,CAAAA,CAA2B9B,CAAM,CAAA,CACvC,QAAA,CAAUmC,CAAAA,CAA+BnC,CAAM,CAAA,CAC/C,KAAA,CAAO2C,CAAAA,CAA4B3C,CAAM,CAC3C,CAAA,CACA,MAAA,CAAQyB,CAAAA,CAAoBzB,CAAM,CACpC,CACF,CCrBA,IAAM8C,CAAAA,CAAW,IAAM,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,WAAY,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,EAEvE,SAASC,CAAAA,CAAa/C,CAAAA,CAA8B,CACzD,IAAMgD,CAAAA,CAAWH,CAAAA,CAAe7C,CAAM,CAAA,CAChCiD,CAAAA,CAAOjD,CAAAA,CAAO,QAAA,CAAS,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAA,CAE9C,OAAO,MAAO7B,CAAAA,EAAwC,CAEpD,IAAMiC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,KAAA,CAAO,CAAE,OAAA,CAAA7B,CAAQ,CAAC,CAAA,CAC3D,GAAIiC,CAAAA,CAAa,OAAOA,CAAAA,CAGxB,IAAM8C,CAAAA,CADM,IAAI,GAAA,CAAI/E,CAAAA,CAAQ,GAAG,CAAA,CACX,QAAA,CAAS,KAAA,CAAM8E,CAAAA,CAAK,MAAM,CAAA,CAAE,OAAA,CAAQ,KAAA,CAAO,EAAE,EAC3DE,CAAAA,CAAShF,CAAAA,CAAQ,MAAA,CAEvB,OAAIgF,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,gBAAA,CAC5BlD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAClBgD,CAAAA,CAAS,OAAA,CAAQ,MAAA,CAAO7E,CAAO,CAAA,CAC/B2E,CAAAA,EAAS,CACXK,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,wBAAA,CAC5BlD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAClBgD,CAAAA,CAAS,OAAA,CAAQ,OAAA,CAAQ7E,CAAO,CAAA,CAChC2E,CAAAA,EAAS,CACXK,IAAW,KAAA,EAASD,CAAAA,GAAY,kBAAA,CAC3BlD,CAAAA,CAAO,QAAA,EAAU,OAAA,CACpBgD,CAAAA,CAAS,OAAA,CAAQ,QAAA,CAAS7E,CAAO,CAAA,CACjC2E,CAAAA,EAAS,CACXK,CAAAA,GAAW,QAAA,EAAYD,CAAAA,GAAY,SAC9BlD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAAUgD,CAAAA,CAAS,MAAA,CAAO7E,CAAO,CAAA,CAAI2E,CAAAA,EAAS,CAClEK,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,wBAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,EAAS,SAAA,CAAU,IAAA,CAAK7E,CAAO,CAAA,CAC/B2E,CAAAA,EAAS,CACXK,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,wBAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,CAAAA,CAAS,SAAA,CAAU,IAAA,CAAK7E,CAAO,CAAA,CAC/B2E,CAAAA,EAAS,CACXK,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,4BAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,CAAAA,CAAS,SAAA,CAAU,QAAA,CAAS7E,CAAO,CAAA,CACnC2E,CAAAA,GACFK,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,yBAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,CAAAA,CAAS,SAAA,CAAU,KAAA,CAAM7E,CAAO,CAAA,CAChC2E,CAAAA,EAAS,CAER,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,WAAY,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAChE,CACF,CCtCO,SAASM,EAAAA,CAAmBpD,CAAAA,CAA8B,CAC/D,OAAO+C,CAAAA,CAAa/C,CAAM,CAC5B","file":"next.js","sourcesContent":["export async function parseBody<T extends Record<string, unknown>>(\n request: Request,\n): Promise<T \| null> {\n try {\n const body = await request.json();\n return body && typeof body === \"object\" ? (body as T) : null;\n } catch {\n return null;\n }\n}\n\nexport function requireString(value: unknown, name: string): string \| Response {\n const trimmed = typeof value === \"string\" ? value.trim() : \"\";\n if (!trimmed) {\n return Response.json({ message: `${name} is required` }, { status: 400 });\n }\n return trimmed;\n}\n\nexport function normalizeExpiresIn(value: unknown): number {\n const n = Number(value);\n return Number.isFinite(n) && n > 0 ? Math.floor(n) : 600;\n}\n\nexport function withS3ErrorHandler(\n handler: (request: Request) => Promise<Response>,\n) {\n return async (request: Request) => {\n try {\n return await handler(request);\n } catch (err) {\n const message =\n err instanceof Error ? err.message : \"Internal server error\";\n console.error(\"[S3 API]\", message);\n return Response.json({ message }, { status: 500 });\n }\n };\n}\n\n/*\n Run a server hook. Returns a Response if the hook rejects (throws),\n * or `null` if the hook passes (or is undefined).\n /\nexport async function runHook<T>(\n hook: ((context: T) => Promise<void> \| void) \| undefined,\n context: T,\n): Promise<Response \| null> {\n if (!hook) return null;\n try {\n await hook(context);\n return null;\n } catch (err) {\n const message = err instanceof Error ? err.message : \"Forbidden\";\n const status =\n typeof (err as Record<string, unknown>)?.status === \"number\"\n ? ((err as Record<string, unknown>).status as number)\n : 403;\n return Response.json({ message }, { status });\n }\n}\n","/\n Builds a RFC 6266 `Content-Disposition` value for a file attachment.\n \n Includes both the ASCII-safe `filename` fallback and the RFC 5987\n * `filename` parameter for full Unicode support, so the original file\n name (including non-ASCII characters) is preserved across all browsers\n * and HTTP clients.\n \n @example\n * buildContentDisposition(\"résumé finale.pdf\")\n * // → 'attachment; filename=\"resume finale.pdf\"; filename=UTF-8\\'\\'r%C3%A9sum%C3%A9%20finale.pdf'\n /\nexport function buildContentDisposition(fileName: string): string {\n const ascii = fileName.replace(/[^\\x20-\\x7E]/g, \"_\").replace(/[\"\\\\]/g, \"_\");\n const encoded = encodeURIComponent(fileName);\n return `attachment; filename=\"${ascii}\"; filename=UTF-8''${encoded}`;\n}\n","/\n Builds the public URL for an S3 object.\n \n Returns `undefined` when:\n * - the object is `\"private\"`, or\n * - `publicUrlBase` is not provided.\n \n @param publicUrlBase - A function that returns the base URL for a given bucket.\n * Matches the `publicUrlBase` field of `S3HandlerConfig`.\n /\nexport function buildPublicUrl(\n publicUrlBase: ((bucket: string) => string) \| undefined,\n bucket: string,\n key: string,\n acl: \"public-read\" \| \"private\",\n): string \| undefined {\n if (acl !== \"public-read\" \|\| !publicUrlBase) return undefined;\n const base = publicUrlBase(bucket).replace(/\\/$/, \"\");\n return `${base}/${key}`;\n}\n","/\n Parses the display file name from a `Content-Disposition` header value.\n \n Prefers the RFC 5987 `filename=UTF-8''…` encoding (full Unicode) over\n the plain ASCII `filename=\"…\"` fallback.\n \n Returns `undefined` when no filename can be extracted.\n /\nexport function parseFileName(\n contentDisposition: string \| undefined,\n): string \| undefined {\n if (!contentDisposition) return undefined;\n\n const utf8Match = contentDisposition.match(/filename\\=UTF-8''([^;\\s]+)/i);\n if (utf8Match) {\n try {\n return decodeURIComponent(utf8Match[1]);\n } catch {\n /* ignore malformed encoding /\n }\n }\n\n const asciiMatch = contentDisposition.match(/filename=\"([^\"])\"/i);\n return asciiMatch?.[1];\n}\n","import { createPresignedPost } from \"@aws-sdk/s3-presigned-post\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\n// 5 GiB — S3 single-object upload limit\nconst MAX_UPLOAD_SIZE = 5 * 1024 * 1024 * 1024;\n\ntype Payload = {\n key: string;\n contentType?: string;\n /*\n Exact byte size of the file the client intends to upload.\n * When provided the presigned POST policy locks `content-length-range` to\n * `[fileSize, fileSize]`, so S3 rejects any upload that is not exactly this\n * size — even if the client tampers with the payload.\n * When omitted the range is `[1, maxFileSize ?? 5 GiB]`.\n /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n expiresIn?: number;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createUploadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const contentType = body.contentType?.trim() \|\| \"application/octet-stream\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : null;\n\n if (\n fileSize !== null &&\n config.maxFileSize &&\n fileSize > config.maxFileSize\n ) {\n return Response.json(\n {\n message: `File size (${fileSize} bytes) exceeds the maximum allowed size of ${config.maxFileSize} bytes`,\n },\n { status: 413 },\n );\n }\n\n const guardResult = await runHook(config.upload?.guard, {\n request,\n key,\n bucket,\n contentType: body.contentType,\n fileSize: fileSize ?? undefined,\n metadata: body.metadata,\n acl,\n });\n if (guardResult) return guardResult;\n\n // Build presigned POST fields. Fields are embedded in the signed policy\n // so the client cannot change them without invalidating the signature.\n // Note: the `acl` field is the correct presigned POST field per AWS spec.\n // Some S3-compatible providers ignore it; PutObjectAcl is called in the\n // confirm step as a reliable post-upload fallback.\n const fields: Record<string, string> = { acl, \"Content-Type\": contentType };\n\n if (body.fileName) {\n fields[\"Content-Disposition\"] = buildContentDisposition(body.fileName);\n }\n\n if (body.metadata) {\n for (const [k, v] of Object.entries(body.metadata)) {\n fields[`x-amz-meta-${k}`] = v;\n }\n }\n\n // `content-length-range` is enforced by S3 at the storage layer —\n // uploads outside this range are rejected before the object is stored.\n //\n // When the client declares fileSize: S3 locks the range to exactly that\n // number of bytes, so uploading a different-sized file is impossible.\n // When fileSize is not declared: falls back to [1, maxFileSize ?? 5 GiB].\n const rangeMin = fileSize ?? 1;\n const rangeMax = fileSize ?? config.maxFileSize ?? MAX_UPLOAD_SIZE;\n\n const { url, fields: signedFields } = await createPresignedPost(config.s3, {\n Bucket: bucket,\n Key: key,\n Conditions: [[\"content-length-range\", rangeMin, rangeMax]],\n Fields: fields,\n Expires: expiresIn,\n });\n\n await config.upload?.onPresigned?.({\n request,\n key,\n bucket,\n contentType: body.contentType,\n metadata: body.metadata,\n acl,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, fields: signedFields, expiresIn });\n });\n}\n","import { GetObjectAclCommand, type S3Client } from \"@aws-sdk/client-s3\";\n\n/\n Determines the ACL of an S3 object by querying `GetObjectAcl`.\n \n Returns `\"public-read\"` when the `AllUsers` grantee has `READ` or\n * `FULL_CONTROL` permission; falls back to `\"private\"` when the provider\n * does not support the operation (e.g. Cloudflare R2).\n /\nexport async function resolveObjectAcl(\n s3: S3Client,\n bucket: string,\n key: string,\n): Promise<\"public-read\" \| \"private\"> {\n try {\n const result = await s3.send(\n new GetObjectAclCommand({ Bucket: bucket, Key: key }),\n );\n const isPublic = result.Grants?.some(\n (g) =>\n g.Grantee?.URI === \"http://acs.amazonaws.com/groups/global/AllUsers\" &&\n (g.Permission === \"READ\" \|\| g.Permission === \"FULL_CONTROL\"),\n );\n return isPublic ? \"public-read\" : \"private\";\n } catch {\n return \"private\";\n }\n}\n","import { HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n};\n\nexport function createConfirmHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.upload?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n const context = {\n request,\n key,\n bucket,\n contentType: head.ContentType,\n contentLength: head.ContentLength ?? 0,\n eTag: head.ETag?.replace(/\"/g, \"\"),\n metadata: head.Metadata,\n acl,\n fileName,\n publicUrl,\n };\n\n await config.upload?.onUploaded?.(context);\n\n return Response.json({\n key,\n bucket,\n contentType: context.contentType,\n contentLength: context.contentLength,\n eTag: context.eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { GetObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\nexport function createDownloadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(searchParams.get(\"expiresIn\"));\n const fileName = searchParams.get(\"fileName\")?.trim();\n\n const guardResult = await runHook(config.download?.guard, {\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch (err: unknown) {\n const name = (err as { name?: string })?.name;\n if (name === \"NoSuchKey\" \|\| name === \"NotFound\") {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n throw err;\n }\n\n const url = await getSignedUrl(\n config.s3,\n new GetObjectCommand({\n Bucket: bucket,\n Key: key,\n ResponseContentDisposition: fileName\n ? buildContentDisposition(fileName)\n : \"attachment\",\n }),\n { expiresIn },\n );\n\n await config.download?.onPresigned?.({\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, expiresIn });\n });\n}\n","import { DeleteObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../types\";\nimport { runHook, withS3ErrorHandler } from \"../internal-helpers\";\n\nexport function createDeleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.delete?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n\n await config.s3.send(new DeleteObjectCommand({ Bucket: bucket, Key: key }));\n\n await config.delete?.onDeleted?.({ request, key, bucket });\n\n return Response.json({ success: true, bucket, key });\n });\n}\n","import { CreateMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n contentType?: string;\n /* Declared total byte size of the file being uploaded. /\n fileSize?: number;\n metadata?: Record<string, string>;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createMultipartInitHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : undefined;\n\n if (\n fileSize !== undefined &&\n config.maxFileSize &&\n fileSize > config.maxFileSize\n ) {\n return Response.json(\n {\n message: `File size (${fileSize} bytes) exceeds the maximum allowed size of ${config.maxFileSize} bytes`,\n },\n { status: 413 },\n );\n }\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n fileSize,\n });\n if (guardResult) return guardResult;\n\n const { UploadId } = await config.s3.send(\n new CreateMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n ContentType: body.contentType,\n ContentDisposition: body.fileName\n ? buildContentDisposition(body.fileName)\n : undefined,\n Metadata: body.metadata,\n ACL: acl,\n }),\n );\n\n await config.multipart?.onInit?.({\n request,\n key,\n bucket,\n uploadId: UploadId!,\n contentType: body.contentType,\n fileSize,\n metadata: body.metadata,\n acl,\n });\n\n return Response.json({ bucket, key, uploadId: UploadId }, { status: 201 });\n });\n}\n","import { UploadPartCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n partNumber: number;\n bucket?: string;\n expiresIn?: number;\n};\n\nexport function createMultipartPartHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const partNumber = Number(body.partNumber);\n if (!Number.isInteger(partNumber) \|\| partNumber <= 0) {\n return Response.json(\n { message: \"partNumber must be a positive integer\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const presignedUrl = await getSignedUrl(\n config.s3,\n new UploadPartCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n PartNumber: partNumber,\n }),\n { expiresIn },\n );\n\n return Response.json({\n presignedUrl,\n partNumber,\n uploadId,\n bucket,\n expiresIn,\n });\n });\n}\n","import {\n CompleteMultipartUploadCommand,\n HeadObjectCommand,\n DeleteObjectCommand,\n} from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype PartEntry = {\n partNumber: number;\n eTag: string;\n};\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n parts: PartEntry[];\n};\n\nexport function createMultipartCompleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const parts = (Array.isArray(body.parts) ? body.parts : [])\n .map(({ partNumber, eTag }) => ({\n PartNumber: Number(partNumber),\n ETag: String(eTag),\n }))\n .filter((p) => Number.isInteger(p.PartNumber) && p.ETag)\n .sort((a, b) => a.PartNumber - b.PartNumber);\n\n if (!parts.length) {\n return Response.json(\n { message: \"At least one valid part is required\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n await config.s3.send(\n new CompleteMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n MultipartUpload: { Parts: parts },\n }),\n );\n\n // Verify the actual uploaded object metadata via HeadObject.\n // This is the server's only opportunity to enforce maxFileSize for\n // multipart uploads, since individual parts bypass size checks.\n const head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n const contentLength = head.ContentLength ?? 0;\n const contentType = head.ContentType;\n const eTag = head.ETag?.replace(/\"/g, \"\");\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n if (config.maxFileSize && contentLength > config.maxFileSize) {\n // Delete the object and reject the request. The client has uploaded\n // more data than the server policy allows.\n await config.s3\n .send(new DeleteObjectCommand({ Bucket: bucket, Key: key }))\n .catch(() => {});\n return Response.json(\n {\n message: `File size (${contentLength} bytes) exceeds the maximum allowed size of ${config.maxFileSize} bytes`,\n },\n { status: 422 },\n );\n }\n\n await config.multipart?.onComplete?.({\n request,\n key,\n bucket,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n\n return Response.json({\n bucket,\n key,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { AbortMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n};\n\nexport function createMultipartAbortHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n await config.s3.send(\n new AbortMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n }),\n );\n\n await config.multipart?.onAbort?.({\n request,\n key,\n bucket,\n uploadId,\n });\n\n return Response.json({ bucket, key, uploadId, aborted: true });\n });\n}\n","import type { S3HandlerConfig, S3Handlers } from \"./types\";\nimport { createUploadHandler } from \"./handlers/presign/upload\";\nimport { createConfirmHandler } from \"./handlers/presign/confirm\";\nimport { createDownloadHandler } from \"./handlers/presign/download\";\nimport { createDeleteHandler } from \"./handlers/delete\";\nimport { createMultipartInitHandler } from \"./handlers/multipart/init\";\nimport { createMultipartPartHandler } from \"./handlers/multipart/part\";\nimport { createMultipartCompleteHandler } from \"./handlers/multipart/complete\";\nimport { createMultipartAbortHandler } from \"./handlers/multipart/abort\";\n\nexport function createHandlers(config: S3HandlerConfig): S3Handlers {\n return {\n presign: {\n upload: createUploadHandler(config),\n confirm: createConfirmHandler(config),\n download: createDownloadHandler(config),\n },\n multipart: {\n init: createMultipartInitHandler(config),\n part: createMultipartPartHandler(config),\n complete: createMultipartCompleteHandler(config),\n abort: createMultipartAbortHandler(config),\n },\n delete: createDeleteHandler(config),\n };\n}\n","import type { S3RouteHandlerConfig } from \"./types\";\nimport { createHandlers } from \"./create-handlers\";\nimport { runHook } from \"./internal-helpers\";\n\nconst disabled = () => Response.json({ message: \"Not Found\" }, { status: 404 });\n\nexport function createRouter(config: S3RouteHandlerConfig) {\n const handlers = createHandlers(config);\n const base = config.basePath.replace(/\\/$/, \"\");\n\n return async (request: Request): Promise<Response> => {\n // Global guard — runs before every request\n const guardResult = await runHook(config.guard, { request });\n if (guardResult) return guardResult;\n\n const url = new URL(request.url);\n const subpath = url.pathname.slice(base.length).replace(/^\\//, \"\");\n const method = request.method;\n\n if (method === \"POST\" && subpath === \"presign/upload\")\n return config.upload?.enabled\n ? handlers.presign.upload(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/upload/confirm\")\n return config.upload?.enabled\n ? handlers.presign.confirm(request)\n : disabled();\n if (method === \"GET\" && subpath === \"presign/download\")\n return config.download?.enabled\n ? handlers.presign.download(request)\n : disabled();\n if (method === \"DELETE\" && subpath === \"delete\")\n return config.delete?.enabled ? handlers.delete(request) : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/init\")\n return config.multipart?.enabled\n ? handlers.multipart.init(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/part\")\n return config.multipart?.enabled\n ? handlers.multipart.part(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/complete\")\n return config.multipart?.enabled\n ? handlers.multipart.complete(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/abort\")\n return config.multipart?.enabled\n ? handlers.multipart.abort(request)\n : disabled();\n\n return Response.json({ message: \"Not Found\" }, { status: 404 });\n };\n}\n","import { createRouter } from \"../router\";\nimport type { S3RouteHandlerConfig } from \"../types\";\n\n/\n Creates a Next.js App Router catch-all route handler.\n \n Usage in `app/api/s3/[...s3]/route.ts`:\n * ```ts\n * import { createRouteHandler } from \"@better-s3/server/next\";\n \n const handler = createRouteHandler({ s3, defaultBucket: \"my-bucket\", basePath: \"/api/s3\" });\n * export { handler as GET, handler as POST, handler as DELETE };\n * ```\n */\nexport function createRouteHandler(config: S3RouteHandlerConfig) {\n return createRouter(config);\n}\n"]}
1	+ {"version":3,"sources":["../../src/internal-helpers.ts","../../src/helpers/build-content-disposition.ts","../../src/helpers/build-public-url.ts","../../src/helpers/parse-file-name.ts","../../src/handlers/presign/upload.ts","../../src/helpers/server/resolve-object-acl.ts","../../src/handlers/presign/confirm.ts","../../src/handlers/presign/download.ts","../../src/handlers/delete.ts","../../src/handlers/multipart/init.ts","../../src/handlers/multipart/part.ts","../../src/handlers/multipart/complete.ts","../../src/handlers/multipart/abort.ts","../../src/create-handlers.ts","../../src/router.ts","../../src/adapters/next.ts"],"names":["parseBody","request","body","requireString","value","name","trimmed","normalizeExpiresIn","withS3ErrorHandler","handler","err","code","message","runHook","hook","context","status","buildContentDisposition","fileName","ascii","encoded","buildPublicUrl","publicUrlBase","bucket","key","acl","base","parseFileName","contentDisposition","utf8Match","createUploadHandler","config","expiresIn","contentType","fileSize","guardResult","fields","k","v","rangeMin","rangeMax","url","signedFields","createPresignedPost","resolveObjectAcl","s3","GetObjectAclCommand","g","createConfirmHandler","head","HeadObjectCommand","publicUrl","createDownloadHandler","searchParams","getSignedUrl","GetObjectCommand","createDeleteHandler","DeleteObjectCommand","createMultipartInitHandler","UploadId","CreateMultipartUploadCommand","createMultipartPartHandler","uploadId","partNumber","presignedUrl","UploadPartCommand","createMultipartCompleteHandler","parts","n","a","b","listedParts","ListPartsCommand","completeParts","found","p","completeResult","CompleteMultipartUploadCommand","attempt","r","contentLength","eTag","createMultipartAbortHandler","AbortMultipartUploadCommand","createHandlers","disabled","createRouter","handlers","subpath","method","createRouteHandler"],"mappings":"6VAAA,eAAsBA,CAAAA,CACpBC,CAAAA,CACmB,CACnB,GAAI,CACF,IAAMC,CAAAA,CAAO,MAAMD,CAAAA,CAAQ,IAAA,EAAK,CAChC,OAAOC,CAAAA,EAAQ,OAAOA,CAAAA,EAAS,QAAA,CAAYA,CAAAA,CAAa,IAC1D,CAAA,KAAQ,CACN,OAAO,IACT,CACF,CAEO,SAASC,CAAAA,CAAcC,CAAAA,CAAgBC,CAAAA,CAAiC,CAC7E,IAAMC,CAAAA,CAAU,OAAOF,CAAAA,EAAU,QAAA,CAAWA,CAAAA,CAAM,IAAA,EAAK,CAAI,EAAA,CAC3D,OAAKE,CAAAA,EACI,QAAA,CAAS,KAAK,CAAE,OAAA,CAAS,CAAA,EAAGD,CAAI,CAAA,YAAA,CAAe,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAG5E,CAEO,SAASE,CAAAA,CAAmBH,CAAAA,CAAwB,CACzD,IAAM,CAAA,CAAI,MAAA,CAAOA,CAAK,CAAA,CACtB,OAAO,MAAA,CAAO,QAAA,CAAS,CAAC,CAAA,EAAK,CAAA,CAAI,CAAA,CAAI,IAAA,CAAK,KAAA,CAAM,CAAC,CAAA,CAAI,GACvD,CAEO,SAASI,CAAAA,CACdC,CAAAA,CACA,CACA,OAAO,MAAOR,CAAAA,EAAqB,CACjC,GAAI,CACF,OAAO,MAAMQ,CAAAA,CAAQR,CAAO,CAC9B,OAASS,CAAAA,CAAK,CACZ,IAAMC,CAAAA,CAAQD,CAAAA,CAA0B,IAAA,CAQlCE,CAAAA,CANJD,CAAAA,GAAS,WAAA,EACTA,CAAAA,GAAS,cAAA,EACTA,CAAAA,GAAS,YAAA,EACTA,CAAAA,GAAS,WAAA,EACTA,CAAAA,GAAS,YAGP,CAAA,yBAAA,EAA4BA,CAAI,CAAA,mDAAA,CAAA,CAChCD,CAAAA,YAAe,KAAA,CACbA,CAAAA,CAAI,OAAA,CACJ,uBAAA,CAEN,OAAA,OAAA,CAAQ,KAAA,CAAM,UAAA,CAAYE,CAAO,CAAA,CAC1B,QAAA,CAAS,IAAA,CAAK,CAAE,QAAAA,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACnD,CACF,CACF,CAMA,eAAsBC,CAAAA,CACpBC,CAAAA,CACAC,CAAAA,CAC0B,CAC1B,GAAI,CAACD,CAAAA,CAAM,OAAO,IAAA,CAClB,GAAI,CACF,OAAA,MAAMA,CAAAA,CAAKC,CAAO,CAAA,CACX,IACT,CAAA,MAASL,CAAAA,CAAK,CACZ,IAAME,CAAAA,CAAUF,aAAe,KAAA,CAAQA,CAAAA,CAAI,OAAA,CAAU,WAAA,CAC/CM,CAAAA,CACJ,OAAQN,CAAAA,EAAiC,MAAA,EAAW,QAAA,CAC9CA,CAAAA,CAAgC,MAAA,CAClC,GAAA,CACN,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,QAAAE,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAAI,CAAO,CAAC,CAC9C,CACF,CC3DO,SAASC,CAAAA,CAAwBC,CAAAA,CAA0B,CAChE,IAAMC,CAAAA,CAAQD,CAAAA,CAAS,QAAQ,eAAA,CAAiB,GAAG,CAAA,CAAE,OAAA,CAAQ,QAAA,CAAU,GAAG,CAAA,CACpEE,CAAAA,CAAU,kBAAA,CAAmBF,CAAQ,CAAA,CAC3C,OAAO,CAAA,sBAAA,EAAyBC,CAAK,CAAA,oBAAA,EAAuBC,CAAO,EACrE,CCJO,SAASC,CAAAA,CACdC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACoB,CACpB,GAAIA,CAAAA,GAAQ,aAAA,EAAiB,CAACH,CAAAA,CAAe,OAC7C,IAAMI,CAAAA,CAAOJ,EAAcC,CAAM,CAAA,CACjC,GAAKG,CAAAA,CACL,OAAO,CAAA,EAAGA,CAAAA,CAAK,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAC,CAAA,CAAA,EAAIF,CAAG,CAAA,CAC1C,CCdO,SAASG,EACdC,CAAAA,CACoB,CACpB,GAAI,CAACA,CAAAA,CAAoB,OAEzB,IAAMC,CAAAA,CAAYD,CAAAA,CAAmB,KAAA,CAAM,8BAA8B,CAAA,CACzE,GAAIC,CAAAA,CACF,GAAI,CACF,OAAO,kBAAA,CAAmBA,CAAAA,CAAU,CAAC,CAAC,CACxC,CAAA,KAAQ,CAER,CAIF,OADmBD,CAAAA,CAAmB,KAAA,CAAM,qBAAqB,CAAA,GAC7C,CAAC,CACvB,CCMO,SAASE,CAAAA,CAAoBC,CAAAA,CAAyB,CAC3D,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,EAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,aAAA,CACvCC,EAAYzB,CAAAA,CAAmBL,CAAAA,CAAK,SAAS,CAAA,CAC7CuB,CAAAA,CAAMvB,CAAAA,CAAK,GAAA,GAAQ,aAAA,CAAgB,aAAA,CAAgB,SAAA,CACnD+B,CAAAA,CAAc/B,CAAAA,CAAK,WAAA,EAAa,IAAA,EAAK,EAAK,0BAAA,CAC1CgC,EACJ,OAAOhC,CAAAA,CAAK,QAAA,EAAa,QAAA,EAAYA,CAAAA,CAAK,QAAA,CAAW,CAAA,CACjD,IAAA,CAAK,KAAA,CAAMA,CAAAA,CAAK,QAAQ,CAAA,CACxB,IAAA,CAEAiC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,EAAO,MAAA,EAAQ,YAAA,CAAc,CAC7D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAarB,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAUgC,CAAAA,EAAY,KAAA,CAAA,CACtB,QAAA,CAAUhC,EAAK,QAAA,CACf,GAAA,CAAAuB,CACF,CAAC,CAAA,CACD,GAAIU,CAAAA,CAAa,OAAOA,CAAAA,CAOxB,IAAMC,CAAAA,CAAiC,CAAE,GAAA,CAAAX,CAAAA,CAAK,cAAA,CAAgBQ,CAAY,EAM1E,GAJI/B,CAAAA,CAAK,QAAA,GACPkC,CAAAA,CAAO,qBAAqB,CAAA,CAAInB,CAAAA,CAAwBf,CAAAA,CAAK,QAAQ,CAAA,CAAA,CAGnEA,CAAAA,CAAK,QAAA,CACP,IAAA,GAAW,CAACmC,CAAAA,CAAGC,CAAC,CAAA,GAAK,MAAA,CAAO,OAAA,CAAQpC,CAAAA,CAAK,QAAQ,CAAA,CAC/CkC,CAAAA,CAAO,CAAA,WAAA,EAAcC,CAAC,CAAA,CAAE,CAAA,CAAIC,CAAAA,CAQhC,IAAMC,CAAAA,CAAWL,CAAAA,EAAY,CAAA,CACvBM,EAAWN,CAAAA,EAAY,KAAA,CAAA,CAEvB,CAAE,GAAA,CAAAO,CAAAA,CAAK,MAAA,CAAQC,CAAa,CAAA,CAAI,MAAMC,mBAAAA,CAAoBZ,CAAAA,CAAO,EAAA,CAAI,CACzE,MAAA,CAAQR,CAAAA,CACR,GAAA,CAAKC,EACL,UAAA,CACEgB,CAAAA,GAAa,KAAA,CAAA,CACT,CAAC,CAAC,sBAAA,CAAwBD,CAAAA,CAAUC,CAAQ,CAAC,CAAA,CAC7C,CAAC,CAAC,sBAAA,CAAwBD,CAAAA,CAAU,MAAA,CAAO,gBAAgB,CAAC,CAAA,CAClE,MAAA,CAAQH,CAAAA,CACR,OAAA,CAASJ,CACX,CAAC,CAAA,CAED,OAAA,MAAMD,CAAAA,CAAO,MAAA,EAAQ,WAAA,GAAc,CACjC,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,OAAAD,CAAAA,CACA,WAAA,CAAarB,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAUA,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAuB,CAAAA,CACA,GAAA,CAAAgB,CAAAA,CACA,SAAA,CAAAT,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,KAAK,CAAE,MAAA,CAAAT,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,GAAA,CAAAiB,CAAAA,CAAK,MAAA,CAAQC,CAAAA,CAAc,SAAA,CAAAV,CAAU,CAAC,CAC5E,CAAC,CACH,CCtGA,eAAsBY,CAAAA,CACpBC,CAAAA,CACAtB,CAAAA,CACAC,CAAAA,CACoC,CACpC,GAAI,CASF,OAAA,CARe,MAAMqB,CAAAA,CAAG,IAAA,CACtB,IAAIC,mBAAAA,CAAoB,CAAE,MAAA,CAAQvB,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACtD,CAAA,EACwB,MAAA,EAAQ,IAAA,CAC7BuB,CAAAA,EACCA,CAAAA,CAAE,OAAA,EAAS,GAAA,GAAQ,iDAAA,GAClBA,CAAAA,CAAE,UAAA,GAAe,MAAA,EAAUA,CAAAA,CAAE,UAAA,GAAe,cAAA,CACjD,CAAA,CACkB,aAAA,CAAgB,SACpC,CAAA,KAAQ,CACN,OAAO,SACT,CACF,CCXO,SAASC,CAAAA,CAAqBjB,CAAAA,CAAyB,CAC5D,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,EAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,cAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,MAAA,EAAQ,YAAA,CAAc,CAC7D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,EAAa,OAAOA,CAAAA,CAExB,IAAMc,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,EAAA,CAAG,IAAA,CAC3B,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CAEMC,CAAAA,CAAM,MAAMmB,CAAAA,CAAiBb,CAAAA,CAAO,EAAA,CAAIR,CAAAA,CAAQC,CAAG,CAAA,CACnD2B,CAAAA,CAAY9B,CAAAA,CAAeU,CAAAA,CAAO,gBAAA,CAAkBR,CAAAA,CAAQC,CAAAA,CAAKC,CAAG,EACpEP,CAAAA,CAAWS,CAAAA,CAAcsB,CAAAA,CAAK,kBAAkB,CAAA,CAEhDlC,CAAAA,CAAU,CACd,OAAA,CAAAd,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAa0B,CAAAA,CAAK,WAAA,CAClB,aAAA,CAAeA,CAAAA,CAAK,aAAA,EAAiB,CAAA,CACrC,IAAA,CAAMA,CAAAA,CAAK,IAAA,EAAM,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CACjC,QAAA,CAAUA,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAxB,CAAAA,CACA,SAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAA,CAEA,OAAA,MAAMpB,CAAAA,CAAO,MAAA,EAAQ,iBAAA,GAAoBhB,CAAO,CAAA,CAEzC,QAAA,CAAS,IAAA,CAAK,CACnB,GAAA,CAAAS,CAAAA,CACA,MAAA,CAAAD,EACA,WAAA,CAAaR,CAAAA,CAAQ,WAAA,CACrB,aAAA,CAAeA,CAAAA,CAAQ,aAAA,CACvB,IAAA,CAAMA,CAAAA,CAAQ,IAAA,CACd,GAAA,CAAAU,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAC,CACH,CAAC,CACH,CC9DO,SAASC,CAAAA,CAAsBrB,CAAAA,CAAyB,CAC7D,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,GAAM,CAAE,YAAA,CAAAoD,CAAa,CAAA,CAAI,IAAI,GAAA,CAAIpD,CAAAA,CAAQ,GAAG,CAAA,CACtCuB,CAAAA,CAAM6B,EAAa,GAAA,CAAI,KAAK,CAAA,EAAG,IAAA,EAAK,CAC1C,GAAI,CAAC7B,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,iCAAkC,CAAA,CAC7C,CAAE,OAAQ,GAAI,CAChB,CAAA,CAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,GAAA,CAAI,QAAQ,CAAA,EAAG,IAAA,EAAK,EAAKtB,CAAAA,CAAO,aAAA,CACtDC,CAAAA,CAAYzB,CAAAA,CAAmB8C,CAAAA,CAAa,IAAI,WAAW,CAAC,CAAA,CAC5DnC,CAAAA,CAAWmC,CAAAA,CAAa,GAAA,CAAI,UAAU,CAAA,EAAG,IAAA,EAAK,CAE9ClB,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,QAAA,EAAU,YAAA,CAAc,CAC/D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUL,CAAAA,EAAY,KAAA,CACxB,CAAC,CAAA,CACD,GAAIiB,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAI,CACF,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CAAK,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,MAASd,EAAc,CACrB,IAAML,CAAAA,CAAQK,CAAAA,EAA2B,IAAA,CACzC,GAAIL,CAAAA,GAAS,WAAA,EAAeA,CAAAA,GAAS,UAAA,CACnC,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,kBAAmB,EAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAAA,CAEvE,MAAMK,CACR,CAEA,IAAM+B,CAAAA,CAAM,MAAMa,YAAAA,CAChBvB,CAAAA,CAAO,EAAA,CACP,IAAIwB,gBAAAA,CAAiB,CACnB,MAAA,CAAQhC,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,0BAAA,CAA4BN,CAAAA,CACxBD,CAAAA,CAAwBC,CAAQ,CAAA,CAChC,YACN,CAAC,CAAA,CACD,CAAE,SAAA,CAAAc,CAAU,CACd,EAEA,OAAA,MAAMD,CAAAA,CAAO,QAAA,EAAU,WAAA,GAAc,CACnC,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUL,CAAAA,EAAY,KAAA,CAAA,CACtB,GAAA,CAAAuB,CAAAA,CACA,UAAAT,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAT,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,GAAA,CAAAiB,CAAAA,CAAK,SAAA,CAAAT,CAAU,CAAC,CACtD,CAAC,CACH,CC9DO,SAASwB,CAAAA,CAAoBzB,CAAAA,CAAyB,CAC3D,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,GAAM,CAAE,YAAA,CAAAoD,CAAa,CAAA,CAAI,IAAI,GAAA,CAAIpD,CAAAA,CAAQ,GAAG,CAAA,CACtCuB,CAAAA,CAAM6B,CAAAA,CAAa,GAAA,CAAI,KAAK,CAAA,EAAG,MAAK,CAC1C,GAAI,CAAC7B,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,iCAAkC,CAAA,CAC7C,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,GAAA,CAAI,QAAQ,CAAA,EAAG,IAAA,EAAK,EAAKtB,CAAAA,CAAO,aAAA,CAEtDI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,MAAA,EAAQ,WAAA,CAAa,CAC5D,QAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAI,CACF,MAAMJ,CAAAA,CAAO,EAAA,CAAG,KAAK,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,KAAQ,CACN,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,QAAS,kBAAmB,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACvE,CAEA,OAAA,MAAMO,CAAAA,CAAO,EAAA,CAAG,IAAA,CAAK,IAAI0B,mBAAAA,CAAoB,CAAE,MAAA,CAAQlC,EAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,CAAA,CAE1E,MAAMO,CAAAA,CAAO,MAAA,EAAQ,SAAA,GAAY,CAAE,OAAA,CAAA9B,CAAAA,CAAS,GAAA,CAAAuB,CAAAA,CAAK,MAAA,CAAAD,CAAO,CAAC,CAAA,CAElD,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,CAAA,CAAA,CAAM,MAAA,CAAAA,CAAAA,CAAQ,GAAA,CAAAC,CAAI,CAAC,CACrD,CAAC,CACH,CCdO,SAASkC,CAAAA,CAA2B3B,CAAAA,CAAyB,CAClE,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,IAAU6B,CAAAA,CAAO,aAAA,CACvCN,CAAAA,CAAMvB,CAAAA,CAAK,GAAA,GAAQ,aAAA,CAAgB,aAAA,CAAgB,SAAA,CACnDgC,CAAAA,CACJ,OAAOhC,CAAAA,CAAK,QAAA,EAAa,QAAA,EAAYA,CAAAA,CAAK,QAAA,CAAW,CAAA,CACjD,IAAA,CAAK,KAAA,CAAMA,CAAAA,CAAK,QAAQ,CAAA,CACxB,KAAA,CAAA,CAEAiC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,SAAA,CAAW,CAC7D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,EACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAW,CACF,CAAC,CAAA,CACD,GAAIC,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAM,CAAE,QAAA,CAAAwB,CAAS,CAAA,CAAI,MAAM5B,EAAO,EAAA,CAAG,IAAA,CACnC,IAAI6B,4BAAAA,CAA6B,CAC/B,MAAA,CAAQrC,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,WAAA,CAAatB,CAAAA,CAAK,WAAA,CAClB,kBAAA,CAAoBA,CAAAA,CAAK,QAAA,CACrBe,CAAAA,CAAwBf,EAAK,QAAQ,CAAA,CACrC,KAAA,CAAA,CACJ,QAAA,CAAUA,CAAAA,CAAK,QAAA,CACf,GAAA,CAAKuB,CACP,CAAC,CACH,CAAA,CAEA,OAAA,MAAMM,CAAAA,CAAO,SAAA,EAAW,MAAA,GAAS,CAC/B,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUoC,CAAAA,CACV,WAAA,CAAazD,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAAgC,CAAAA,CACA,QAAA,CAAUhC,CAAAA,CAAK,QAAA,CACf,IAAAuB,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAF,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,QAAA,CAAUmC,CAAS,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAC3E,CAAC,CACH,CCzDO,SAASE,CAAAA,CAA2B9B,CAAAA,CAAyB,CAClE,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,aAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW3D,CAAAA,CAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI4D,CAAAA,YAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMC,EAAa,MAAA,CAAO7D,CAAAA,CAAK,UAAU,CAAA,CACzC,GAAI,CAAC,MAAA,CAAO,SAAA,CAAU6D,CAAU,CAAA,EAAKA,CAAAA,EAAc,CAAA,CACjD,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,QAAS,uCAAwC,CAAA,CACnD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMxC,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,aAAA,CACvCC,CAAAA,CAAYzB,CAAAA,CAAmBL,CAAAA,CAAK,SAAS,CAAA,CAE7CiC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,SAAA,CAAW,CAC7D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,IAAM6B,CAAAA,CAAe,MAAMV,YAAAA,CACzBvB,CAAAA,CAAO,EAAA,CACP,IAAIkC,iBAAAA,CAAkB,CACpB,MAAA,CAAQ1C,EACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CAAAA,CACV,UAAA,CAAYC,CACd,CAAC,CAAA,CACD,CAAE,SAAA,CAAA/B,CAAU,CACd,CAAA,CAEA,OAAO,QAAA,CAAS,IAAA,CAAK,CACnB,YAAA,CAAAgC,CAAAA,CACA,UAAA,CAAAD,CAAAA,CACA,QAAA,CAAAD,CAAAA,CACA,MAAA,CAAAvC,CAAAA,CACA,SAAA,CAAAS,CACF,CAAC,CACH,CAAC,CACH,CC9CO,SAASkC,CAAAA,CAA+BnC,CAAAA,CAAyB,CACtE,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,EAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW3D,EAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI4D,CAAAA,YAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMK,CAAAA,CAAAA,CAAS,KAAA,CAAM,OAAA,CAAQjE,CAAAA,CAAK,KAAK,CAAA,CAAIA,CAAAA,CAAK,KAAA,CAAQ,EAAC,EACtD,GAAA,CAAI,CAAC,CAAE,UAAA,CAAA6D,CAAW,CAAA,GAAM,MAAA,CAAOA,CAAU,CAAC,CAAA,CAC1C,MAAA,CAAQK,CAAAA,EAAM,OAAO,SAAA,CAAUA,CAAC,CAAA,EAAKA,CAAAA,CAAI,CAAC,CAAA,CAC1C,IAAA,CAAK,CAACC,CAAAA,CAAGC,CAAAA,GAAMD,CAAAA,CAAIC,CAAC,CAAA,CAEvB,GAAI,CAACH,CAAAA,CAAM,OACT,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,qCAAsC,CAAA,CACjD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAM5C,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,MAAK,EAAK6B,CAAAA,CAAO,aAAA,CAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,aAAA,CAAe,CACjE,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAOxB,IAAMoC,CAAAA,CAAAA,CAHS,MAAMxC,CAAAA,CAAO,EAAA,CAAG,IAAA,CAC7B,IAAIyC,gBAAAA,CAAiB,CAAE,MAAA,CAAQjD,CAAAA,CAAQ,IAAKC,CAAAA,CAAK,QAAA,CAAUsC,CAAS,CAAC,CACvE,CAAA,EAC2B,KAAA,EAAS,EAAC,CAE/BW,CAAAA,CAAgBN,CAAAA,CAAM,GAAA,CAAKJ,CAAAA,EAAe,CAC9C,IAAMW,CAAAA,CAAQH,EAAY,IAAA,CAAMI,CAAAA,EAAMA,CAAAA,CAAE,UAAA,GAAeZ,CAAU,CAAA,CACjE,OAAO,CAAE,UAAA,CAAYA,CAAAA,CAAY,IAAA,CAAMW,CAAAA,EAAO,IAAA,EAAQ,EAAG,CAC3D,CAAC,EAEKE,CAAAA,CAAiB,MAAM7C,CAAAA,CAAO,EAAA,CAAG,IAAA,CACrC,IAAI8C,8BAAAA,CAA+B,CACjC,MAAA,CAAQtD,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CAAAA,CACV,eAAA,CAAiB,CAAE,KAAA,CAAOW,CAAc,CAC1C,CAAC,CACH,CAAA,CAKIxB,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,EAAA,CAAG,IAAA,CACzB,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,IAAKC,CAAI,CAAC,CACpD,CAAA,CACA,IAAA,IAASsD,CAAAA,CAAU,CAAA,CAAGA,CAAAA,CAAU,CAAA,EAAK,CAAC7B,CAAAA,CAAK,aAAA,CAAe6B,CAAAA,EAAAA,CACxD,MAAM,IAAI,OAAA,CAASC,GAAM,UAAA,CAAWA,CAAAA,CAAG,GAAA,CAAM,CAAA,EAAKD,CAAO,CAAC,CAAA,CAC1D7B,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,EAAA,CAAG,IAAA,CACrB,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,EAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CAEF,IAAMwD,CAAAA,CAAgB/B,CAAAA,CAAK,aAAA,EAAiB,CAAA,CACtChB,CAAAA,CAAcgB,CAAAA,CAAK,WAAA,CACnBgC,CAAAA,CAAAA,CAAQhC,CAAAA,CAAK,IAAA,EAAQ2B,EAAe,IAAA,EAAQ,EAAA,EAAI,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CAEhEnD,CAAAA,CAAM,MAAMmB,CAAAA,CAAiBb,CAAAA,CAAO,EAAA,CAAIR,CAAAA,CAAQC,CAAG,CAAA,CACnD2B,CAAAA,CAAY9B,CAAAA,CAAeU,EAAO,gBAAA,CAAkBR,CAAAA,CAAQC,CAAAA,CAAKC,CAAG,CAAA,CACpEP,CAAAA,CAAWS,CAAAA,CAAcsB,CAAAA,CAAK,kBAAkB,CAAA,CAEtD,OAAA,MAAMlB,CAAAA,CAAO,SAAA,EAAW,UAAA,GAAa,CACnC,OAAA,CAAA9B,EACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAuC,CAAAA,CACA,aAAA,CAAAkB,CAAAA,CACA,WAAA,CAAA/C,CAAAA,CACA,IAAA,CAAAgD,CAAAA,CACA,GAAA,CAAAxD,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,UAAAiC,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CACnB,MAAA,CAAA5B,CAAAA,CACA,GAAA,CAAAC,CAAAA,CACA,QAAA,CAAAsC,CAAAA,CACA,aAAA,CAAAkB,CAAAA,CACA,WAAA,CAAA/C,CAAAA,CACA,IAAA,CAAAgD,CAAAA,CACA,GAAA,CAAAxD,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAC,CACH,CAAC,CACH,CClHO,SAAS+B,CAAAA,CAA4BnD,CAAAA,CAAyB,CACnE,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,EAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW3D,CAAAA,CAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI4D,aAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMvC,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,aAAA,CAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,WAAY,CAC9D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,OAAIY,CAAAA,GAEJ,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CACd,IAAIoD,4BAA4B,CAC9B,MAAA,CAAQ5D,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CACZ,CAAC,CACH,CAAA,CAEA,MAAM/B,CAAAA,CAAO,SAAA,EAAW,OAAA,GAAU,CAChC,OAAA,CAAA9B,EACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAuC,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAvC,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,QAAA,CAAAsC,CAAAA,CAAU,OAAA,CAAS,CAAA,CAAK,CAAC,CAAA,CAC/D,CAAC,CACH,CC/CO,SAASsB,CAAAA,CAAerD,CAAAA,CAAqC,CAClE,OAAO,CACL,OAAA,CAAS,CACP,OAAQD,CAAAA,CAAoBC,CAAM,CAAA,CAClC,OAAA,CAASiB,CAAAA,CAAqBjB,CAAM,CAAA,CACpC,QAAA,CAAUqB,CAAAA,CAAsBrB,CAAM,CACxC,CAAA,CACA,SAAA,CAAW,CACT,IAAA,CAAM2B,CAAAA,CAA2B3B,CAAM,CAAA,CACvC,IAAA,CAAM8B,CAAAA,CAA2B9B,CAAM,CAAA,CACvC,QAAA,CAAUmC,CAAAA,CAA+BnC,CAAM,CAAA,CAC/C,KAAA,CAAOmD,CAAAA,CAA4BnD,CAAM,CAC3C,CAAA,CACA,MAAA,CAAQyB,CAAAA,CAAoBzB,CAAM,CACpC,CACF,CCrBA,IAAMsD,CAAAA,CAAW,IAAM,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,WAAY,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,EAEvE,SAASC,CAAAA,CAAavD,CAAAA,CAA8B,CACzD,IAAMwD,CAAAA,CAAWH,CAAAA,CAAerD,CAAM,CAAA,CAChCL,CAAAA,CAAOK,CAAAA,CAAO,QAAA,CAAS,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAA,CAE9C,OAAO,MAAO9B,CAAAA,EAAwC,CAEpD,IAAMkC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,KAAA,CAAO,CAAE,OAAA,CAAA9B,CAAQ,CAAC,CAAA,CAC3D,GAAIkC,CAAAA,CAAa,OAAOA,CAAAA,CAGxB,IAAMqD,CAAAA,CADM,IAAI,GAAA,CAAIvF,CAAAA,CAAQ,GAAG,CAAA,CACX,QAAA,CAAS,KAAA,CAAMyB,CAAAA,CAAK,MAAM,CAAA,CAAE,OAAA,CAAQ,KAAA,CAAO,EAAE,EAC3D+D,CAAAA,CAASxF,CAAAA,CAAQ,MAAA,CAEvB,OAAIwF,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,gBAAA,CAC5BzD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAClBwD,CAAAA,CAAS,OAAA,CAAQ,MAAA,CAAOtF,CAAO,CAAA,CAC/BoF,CAAAA,EAAS,CACXI,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,wBAAA,CAC5BzD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAClBwD,CAAAA,CAAS,OAAA,CAAQ,OAAA,CAAQtF,CAAO,CAAA,CAChCoF,CAAAA,EAAS,CACXI,IAAW,KAAA,EAASD,CAAAA,GAAY,kBAAA,CAC3BzD,CAAAA,CAAO,QAAA,EAAU,OAAA,CACpBwD,CAAAA,CAAS,OAAA,CAAQ,QAAA,CAAStF,CAAO,CAAA,CACjCoF,CAAAA,EAAS,CACXI,CAAAA,GAAW,QAAA,EAAYD,CAAAA,GAAY,SAC9BzD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAAUwD,CAAAA,CAAS,MAAA,CAAOtF,CAAO,CAAA,CAAIoF,CAAAA,EAAS,CAClEI,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,wBAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBwD,EAAS,SAAA,CAAU,IAAA,CAAKtF,CAAO,CAAA,CAC/BoF,CAAAA,EAAS,CACXI,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,wBAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBwD,CAAAA,CAAS,SAAA,CAAU,IAAA,CAAKtF,CAAO,CAAA,CAC/BoF,CAAAA,EAAS,CACXI,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,4BAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBwD,CAAAA,CAAS,SAAA,CAAU,QAAA,CAAStF,CAAO,CAAA,CACnCoF,CAAAA,GACFI,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,yBAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBwD,CAAAA,CAAS,SAAA,CAAU,KAAA,CAAMtF,CAAO,CAAA,CAChCoF,CAAAA,EAAS,CAER,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,WAAY,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAChE,CACF,CCtCO,SAASK,EAAAA,CAAmB3D,CAAAA,CAA8B,CAC/D,OAAOuD,CAAAA,CAAavD,CAAM,CAC5B","file":"next.js","sourcesContent":["export async function parseBody<T extends Record<string, unknown>>(\n request: Request,\n): Promise<T \| null> {\n try {\n const body = await request.json();\n return body && typeof body === \"object\" ? (body as T) : null;\n } catch {\n return null;\n }\n}\n\nexport function requireString(value: unknown, name: string): string \| Response {\n const trimmed = typeof value === \"string\" ? value.trim() : \"\";\n if (!trimmed) {\n return Response.json({ message: `${name} is required` }, { status: 400 });\n }\n return trimmed;\n}\n\nexport function normalizeExpiresIn(value: unknown): number {\n const n = Number(value);\n return Number.isFinite(n) && n > 0 ? Math.floor(n) : 600;\n}\n\nexport function withS3ErrorHandler(\n handler: (request: Request) => Promise<Response>,\n) {\n return async (request: Request) => {\n try {\n return await handler(request);\n } catch (err) {\n const code = (err as { code?: string }).code;\n const isNetworkError =\n code === \"EAI_AGAIN\" \|\|\n code === \"ECONNREFUSED\" \|\|\n code === \"ECONNRESET\" \|\|\n code === \"ETIMEDOUT\" \|\|\n code === \"ENOTFOUND\";\n\n const message = isNetworkError\n ? `S3 endpoint unreachable (${code}): check your endpoint URL and network connectivity`\n : err instanceof Error\n ? err.message\n : \"Internal server error\";\n\n console.error(\"[S3 API]\", message);\n return Response.json({ message }, { status: 502 });\n }\n };\n}\n\n/*\n Run a server hook. Returns a Response if the hook rejects (throws),\n * or `null` if the hook passes (or is undefined).\n /\nexport async function runHook<T>(\n hook: ((context: T) => Promise<void> \| void) \| undefined,\n context: T,\n): Promise<Response \| null> {\n if (!hook) return null;\n try {\n await hook(context);\n return null;\n } catch (err) {\n const message = err instanceof Error ? err.message : \"Forbidden\";\n const status =\n typeof (err as Record<string, unknown>)?.status === \"number\"\n ? ((err as Record<string, unknown>).status as number)\n : 403;\n return Response.json({ message }, { status });\n }\n}\n","/\n Builds a RFC 6266 `Content-Disposition` value for a file attachment.\n \n Includes both the ASCII-safe `filename` fallback and the RFC 5987\n * `filename` parameter for full Unicode support, so the original file\n name (including non-ASCII characters) is preserved across all browsers\n * and HTTP clients.\n \n @example\n * buildContentDisposition(\"résumé finale.pdf\")\n * // → 'attachment; filename=\"resume finale.pdf\"; filename=UTF-8\\'\\'r%C3%A9sum%C3%A9%20finale.pdf'\n /\nexport function buildContentDisposition(fileName: string): string {\n const ascii = fileName.replace(/[^\\x20-\\x7E]/g, \"_\").replace(/[\"\\\\]/g, \"_\");\n const encoded = encodeURIComponent(fileName);\n return `attachment; filename=\"${ascii}\"; filename=UTF-8''${encoded}`;\n}\n","/\n Builds the public URL for an S3 object.\n \n Returns `undefined` when:\n * - the object is `\"private\"`,\n * - `publicUrlBase` is not provided, or\n * - `publicUrlBase` returns `undefined` for the given bucket.\n \n @param publicUrlBase - A function that returns the base URL for a given bucket,\n * or `undefined` when no public URL is available for that bucket.\n * Matches the `resolvePublicUrl` field of `S3HandlerConfig`.\n /\nexport function buildPublicUrl(\n publicUrlBase: ((bucket: string) => string \| undefined) \| undefined,\n bucket: string,\n key: string,\n acl: \"public-read\" \| \"private\",\n): string \| undefined {\n if (acl !== \"public-read\" \|\| !publicUrlBase) return undefined;\n const base = publicUrlBase(bucket);\n if (!base) return undefined;\n return `${base.replace(/\\/$/, \"\")}/${key}`;\n}\n","/\n Parses the display file name from a `Content-Disposition` header value.\n \n Prefers the RFC 5987 `filename=UTF-8''…` encoding (full Unicode) over\n the plain ASCII `filename=\"…\"` fallback.\n \n Returns `undefined` when no filename can be extracted.\n /\nexport function parseFileName(\n contentDisposition: string \| undefined,\n): string \| undefined {\n if (!contentDisposition) return undefined;\n\n const utf8Match = contentDisposition.match(/filename\\=UTF-8''([^;\\s]+)/i);\n if (utf8Match) {\n try {\n return decodeURIComponent(utf8Match[1]);\n } catch {\n /* ignore malformed encoding /\n }\n }\n\n const asciiMatch = contentDisposition.match(/filename=\"([^\"])\"/i);\n return asciiMatch?.[1];\n}\n","import { createPresignedPost } from \"@aws-sdk/s3-presigned-post\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\ntype Payload = {\n key: string;\n contentType?: string;\n /*\n Exact byte size of the file the client intends to upload.\n * When provided the presigned POST policy locks `content-length-range` to\n * `[fileSize, fileSize]`, so S3 rejects any upload that is not exactly this\n * size — even if the client tampers with the payload.\n * When omitted the range is `[1, maxFileSize ?? 5 GiB]`.\n /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n expiresIn?: number;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createUploadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const contentType = body.contentType?.trim() \|\| \"application/octet-stream\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : null;\n\n const guardResult = await runHook(config.upload?.presignGuard, {\n request,\n key,\n bucket,\n contentType: body.contentType,\n fileSize: fileSize ?? undefined,\n metadata: body.metadata,\n acl,\n });\n if (guardResult) return guardResult;\n\n // Build presigned POST fields. Fields are embedded in the signed policy\n // so the client cannot change them without invalidating the signature.\n // Note: the `acl` field is the correct presigned POST field per AWS spec.\n // Some S3-compatible providers ignore it; PutObjectAcl is called in the\n // confirm step as a reliable post-upload fallback.\n const fields: Record<string, string> = { acl, \"Content-Type\": contentType };\n\n if (body.fileName) {\n fields[\"Content-Disposition\"] = buildContentDisposition(body.fileName);\n }\n\n if (body.metadata) {\n for (const [k, v] of Object.entries(body.metadata)) {\n fields[`x-amz-meta-${k}`] = v;\n }\n }\n\n // `content-length-range` is enforced by S3 at the storage layer.\n // When the client declares fileSize: S3 locks the range to exactly that\n // number of bytes, so uploading a different-sized file is impossible.\n // When omitted: only a minimum of 1 byte is enforced.\n const rangeMin = fileSize ?? 1;\n const rangeMax = fileSize ?? undefined;\n\n const { url, fields: signedFields } = await createPresignedPost(config.s3, {\n Bucket: bucket,\n Key: key,\n Conditions:\n rangeMax !== undefined\n ? [[\"content-length-range\", rangeMin, rangeMax]]\n : [[\"content-length-range\", rangeMin, Number.MAX_SAFE_INTEGER]],\n Fields: fields,\n Expires: expiresIn,\n });\n\n await config.upload?.onPresigned?.({\n request,\n key,\n bucket,\n contentType: body.contentType,\n metadata: body.metadata,\n acl,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, fields: signedFields, expiresIn });\n });\n}\n","import { GetObjectAclCommand, type S3Client } from \"@aws-sdk/client-s3\";\n\n/\n Determines the ACL of an S3 object by querying `GetObjectAcl`.\n \n Returns `\"public-read\"` when the `AllUsers` grantee has `READ` or\n * `FULL_CONTROL` permission; falls back to `\"private\"` when the provider\n * does not support the operation (e.g. Cloudflare R2).\n /\nexport async function resolveObjectAcl(\n s3: S3Client,\n bucket: string,\n key: string,\n): Promise<\"public-read\" \| \"private\"> {\n try {\n const result = await s3.send(\n new GetObjectAclCommand({ Bucket: bucket, Key: key }),\n );\n const isPublic = result.Grants?.some(\n (g) =>\n g.Grantee?.URI === \"http://acs.amazonaws.com/groups/global/AllUsers\" &&\n (g.Permission === \"READ\" \|\| g.Permission === \"FULL_CONTROL\"),\n );\n return isPublic ? \"public-read\" : \"private\";\n } catch {\n return \"private\";\n }\n}\n","import { HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n};\n\nexport function createConfirmHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.upload?.confirmGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n const context = {\n request,\n key,\n bucket,\n contentType: head.ContentType,\n contentLength: head.ContentLength ?? 0,\n eTag: head.ETag?.replace(/\"/g, \"\"),\n metadata: head.Metadata,\n acl,\n fileName,\n publicUrl,\n };\n\n await config.upload?.onUploadConfirmed?.(context);\n\n return Response.json({\n key,\n bucket,\n contentType: context.contentType,\n contentLength: context.contentLength,\n eTag: context.eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { GetObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\nexport function createDownloadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(searchParams.get(\"expiresIn\"));\n const fileName = searchParams.get(\"fileName\")?.trim();\n\n const guardResult = await runHook(config.download?.presignGuard, {\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch (err: unknown) {\n const name = (err as { name?: string })?.name;\n if (name === \"NoSuchKey\" \|\| name === \"NotFound\") {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n throw err;\n }\n\n const url = await getSignedUrl(\n config.s3,\n new GetObjectCommand({\n Bucket: bucket,\n Key: key,\n ResponseContentDisposition: fileName\n ? buildContentDisposition(fileName)\n : \"attachment\",\n }),\n { expiresIn },\n );\n\n await config.download?.onPresigned?.({\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, expiresIn });\n });\n}\n","import { DeleteObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../types\";\nimport { runHook, withS3ErrorHandler } from \"../internal-helpers\";\n\nexport function createDeleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.delete?.deleteGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n\n await config.s3.send(new DeleteObjectCommand({ Bucket: bucket, Key: key }));\n\n await config.delete?.onDeleted?.({ request, key, bucket });\n\n return Response.json({ success: true, bucket, key });\n });\n}\n","import { CreateMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n contentType?: string;\n /* Declared total byte size of the file being uploaded. /\n fileSize?: number;\n metadata?: Record<string, string>;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createMultipartInitHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : undefined;\n\n const guardResult = await runHook(config.multipart?.initGuard, {\n request,\n key,\n bucket,\n fileSize,\n });\n if (guardResult) return guardResult;\n\n const { UploadId } = await config.s3.send(\n new CreateMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n ContentType: body.contentType,\n ContentDisposition: body.fileName\n ? buildContentDisposition(body.fileName)\n : undefined,\n Metadata: body.metadata,\n ACL: acl,\n }),\n );\n\n await config.multipart?.onInit?.({\n request,\n key,\n bucket,\n uploadId: UploadId!,\n contentType: body.contentType,\n fileSize,\n metadata: body.metadata,\n acl,\n });\n\n return Response.json({ bucket, key, uploadId: UploadId }, { status: 201 });\n });\n}\n","import { UploadPartCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n partNumber: number;\n bucket?: string;\n expiresIn?: number;\n};\n\nexport function createMultipartPartHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const partNumber = Number(body.partNumber);\n if (!Number.isInteger(partNumber) \|\| partNumber <= 0) {\n return Response.json(\n { message: \"partNumber must be a positive integer\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n\n const guardResult = await runHook(config.multipart?.partGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const presignedUrl = await getSignedUrl(\n config.s3,\n new UploadPartCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n PartNumber: partNumber,\n }),\n { expiresIn },\n );\n\n return Response.json({\n presignedUrl,\n partNumber,\n uploadId,\n bucket,\n expiresIn,\n });\n });\n}\n","import {\n CompleteMultipartUploadCommand,\n HeadObjectCommand,\n ListPartsCommand,\n} from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype PartEntry = {\n partNumber: number;\n};\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n parts: PartEntry[];\n};\n\nexport function createMultipartCompleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const parts = (Array.isArray(body.parts) ? body.parts : [])\n .map(({ partNumber }) => Number(partNumber))\n .filter((n) => Number.isInteger(n) && n > 0)\n .sort((a, b) => a - b);\n\n if (!parts.length) {\n return Response.json(\n { message: \"At least one valid part is required\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.completeGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n // Fetch authoritative ETags from S3 — this works regardless of whether\n // the client's CORS config exposes the ETag header.\n const listed = await config.s3.send(\n new ListPartsCommand({ Bucket: bucket, Key: key, UploadId: uploadId }),\n );\n const listedParts = listed.Parts ?? [];\n\n const completeParts = parts.map((partNumber) => {\n const found = listedParts.find((p) => p.PartNumber === partNumber);\n return { PartNumber: partNumber, ETag: found?.ETag ?? \"\" };\n });\n\n const completeResult = await config.s3.send(\n new CompleteMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n MultipartUpload: { Parts: completeParts },\n }),\n );\n\n // Some S3-compatible providers finalize multipart uploads asynchronously,\n // so HeadObject may transiently return stale or empty metadata right after\n // CompleteMultipartUpload. Retry until contentLength is non-zero.\n let head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n for (let attempt = 0; attempt < 4 && !head.ContentLength; attempt++) {\n await new Promise((r) => setTimeout(r, 250 2 attempt));\n head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n }\n const contentLength = head.ContentLength ?? 0;\n const contentType = head.ContentType;\n const eTag = (head.ETag ?? completeResult.ETag ?? \"\").replace(/\"/g, \"\");\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n await config.multipart?.onComplete?.({\n request,\n key,\n bucket,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n\n return Response.json({\n bucket,\n key,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { AbortMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n};\n\nexport function createMultipartAbortHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.abortGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n await config.s3.send(\n new AbortMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n }),\n );\n\n await config.multipart?.onAbort?.({\n request,\n key,\n bucket,\n uploadId,\n });\n\n return Response.json({ bucket, key, uploadId, aborted: true });\n });\n}\n","import type { S3HandlerConfig, S3Handlers } from \"./types\";\nimport { createUploadHandler } from \"./handlers/presign/upload\";\nimport { createConfirmHandler } from \"./handlers/presign/confirm\";\nimport { createDownloadHandler } from \"./handlers/presign/download\";\nimport { createDeleteHandler } from \"./handlers/delete\";\nimport { createMultipartInitHandler } from \"./handlers/multipart/init\";\nimport { createMultipartPartHandler } from \"./handlers/multipart/part\";\nimport { createMultipartCompleteHandler } from \"./handlers/multipart/complete\";\nimport { createMultipartAbortHandler } from \"./handlers/multipart/abort\";\n\nexport function createHandlers(config: S3HandlerConfig): S3Handlers {\n return {\n presign: {\n upload: createUploadHandler(config),\n confirm: createConfirmHandler(config),\n download: createDownloadHandler(config),\n },\n multipart: {\n init: createMultipartInitHandler(config),\n part: createMultipartPartHandler(config),\n complete: createMultipartCompleteHandler(config),\n abort: createMultipartAbortHandler(config),\n },\n delete: createDeleteHandler(config),\n };\n}\n","import type { S3RouteHandlerConfig } from \"./types\";\nimport { createHandlers } from \"./create-handlers\";\nimport { runHook } from \"./internal-helpers\";\n\nconst disabled = () => Response.json({ message: \"Not Found\" }, { status: 404 });\n\nexport function createRouter(config: S3RouteHandlerConfig) {\n const handlers = createHandlers(config);\n const base = config.basePath.replace(/\\/$/, \"\");\n\n return async (request: Request): Promise<Response> => {\n // Global guard — runs before every request\n const guardResult = await runHook(config.guard, { request });\n if (guardResult) return guardResult;\n\n const url = new URL(request.url);\n const subpath = url.pathname.slice(base.length).replace(/^\\//, \"\");\n const method = request.method;\n\n if (method === \"POST\" && subpath === \"presign/upload\")\n return config.upload?.enabled\n ? handlers.presign.upload(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/upload/confirm\")\n return config.upload?.enabled\n ? handlers.presign.confirm(request)\n : disabled();\n if (method === \"GET\" && subpath === \"presign/download\")\n return config.download?.enabled\n ? handlers.presign.download(request)\n : disabled();\n if (method === \"DELETE\" && subpath === \"delete\")\n return config.delete?.enabled ? handlers.delete(request) : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/init\")\n return config.multipart?.enabled\n ? handlers.multipart.init(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/part\")\n return config.multipart?.enabled\n ? handlers.multipart.part(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/complete\")\n return config.multipart?.enabled\n ? handlers.multipart.complete(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/abort\")\n return config.multipart?.enabled\n ? handlers.multipart.abort(request)\n : disabled();\n\n return Response.json({ message: \"Not Found\" }, { status: 404 });\n };\n}\n","import { createRouter } from \"../router\";\nimport type { S3RouteHandlerConfig } from \"../types\";\n\n/\n * Creates a Next.js App Router catch-all route handler.\n \n Usage in `app/api/s3/[...s3]/route.ts`:\n * ```ts\n * import { createRouteHandler } from \"@better-s3/server/next\";\n \n const handler = createRouteHandler({ s3, defaultBucket: \"my-bucket\", basePath: \"/api/s3\" });\n * export { handler as GET, handler as POST, handler as DELETE };\n * ```\n */\nexport function createRouteHandler(config: S3RouteHandlerConfig) {\n return createRouter(config);\n}\n"]}

package/dist/api.d.ts CHANGED Viewed

@@ -89,7 +89,6 @@ export type S3Api = {
             uploadId: string;
             parts: Array<{
                 partNumber: number;
-                eTag: string;
             }>;
             bucket?: string;
         }) => Promise<{

package/dist/helpers/build-public-url.d.ts CHANGED Viewed

@@ -2,10 +2,12 @@
  * Builds the public URL for an S3 object.
  *
  * Returns `undefined` when:
- * - the object is `"private"`, or
- * - `publicUrlBase` is not provided.
+ * - the object is `"private"`,
+ * - `publicUrlBase` is not provided, or
+ * - `publicUrlBase` returns `undefined` for the given bucket.
  *
- * @param publicUrlBase - A function that returns the base URL for a given bucket.
- *   Matches the `publicUrlBase` field of `S3HandlerConfig`.
+ * @param publicUrlBase - A function that returns the base URL for a given bucket,
+ *   or `undefined` when no public URL is available for that bucket.
+ *   Matches the `resolvePublicUrl` field of `S3HandlerConfig`.
  */
-export declare function buildPublicUrl(publicUrlBase: ((bucket: string) => string) | undefined, bucket: string, key: string, acl: "public-read" | "private"): string | undefined;
+export declare function buildPublicUrl(publicUrlBase: ((bucket: string) => string | undefined) | undefined, bucket: string, key: string, acl: "public-read" | "private"): string | undefined;

package/dist/helpers/index.js CHANGED Viewed

@@ -1,2 +1,2 @@
-function r(e){let n=e.replace(/[^\x20-\x7E]/g,"_").replace(/["\\]/g,"_"),t=encodeURIComponent(e);return `attachment; filename="${n}"; filename*=UTF-8''${t}`}function c(e,n,t,i){return i!=="public-read"||!e?void 0:`${e(n).replace(/\/$/,"")}/${t}`}function a(e){if(!e)return;let n=e.match(/filename\*=UTF-8''([^;\s]+)/i);if(n)try{return decodeURIComponent(n[1])}catch{}return e.match(/filename="([^"]*)"/i)?.[1]}export{r as buildContentDisposition,c as buildPublicUrl,a as parseFileName};//# sourceMappingURL=index.js.map
+function c(e){let n=e.replace(/[^\x20-\x7E]/g,"_").replace(/["\\]/g,"_"),i=encodeURIComponent(e);return `attachment; filename="${n}"; filename*=UTF-8''${i}`}function d(e,n,i,r){if(r!=="public-read"||!e)return;let t=e(n);if(t)return `${t.replace(/\/$/,"")}/${i}`}function u(e){if(!e)return;let n=e.match(/filename\*=UTF-8''([^;\s]+)/i);if(n)try{return decodeURIComponent(n[1])}catch{}return e.match(/filename="([^"]*)"/i)?.[1]}export{c as buildContentDisposition,d as buildPublicUrl,u as parseFileName};//# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map

package/dist/helpers/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../src/helpers/build-content-disposition.ts","../../src/helpers/build-public-url.ts","../../src/helpers/parse-file-name.ts"],"names":["buildContentDisposition","fileName","ascii","encoded","buildPublicUrl","publicUrlBase","bucket","key","acl","parseFileName","contentDisposition","utf8Match"],"mappings":"AAYO,SAASA,EAAwBC,CAAAA,CAA0B,CAChE,IAAMC,CAAAA,CAAQD,~~EAAS~~,~~OAAA~~,~~CAAQ~~,eAAA,CAAiB,GAAG,~~CAAA~~,~~CAAE~~,~~QAAQ~~,QAAA,CAAU,GAAG,~~EACpEE~~,CAAAA,CAAU,~~kBAAA~~,~~CAAmBF,~~CAAQ,CAAA,CAC3C,OAAO,CAAA,sBAAA,EAAyBC,CAAK,~~uBAAuBC~~,CAAO,~~CAAA~~,~~CACrE~~,~~CCNO,~~SAASC,~~CAAAA~~,~~CACdC,EACAC,~~CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACoB,CACpB,~~OAAIA~~,CAAAA,GAAQ,aAAA,EAAiB,CAACH,CAAAA,CAAe,~~MAAA~~,~~CAEtC~~,~~GADMA~~,CAAAA,CAAcC,CAAM,CAAA,~~CAAE~~,OAAA,CAAQ,MAAO,EAAE,~~CACtC~~,~~IAAIC~~,CAAG,CAAA,~~CACvB~~,~~CCXO~~,~~SAASE~~,CAAAA,CACdC,~~CAAAA~~,~~CACoB,~~CACpB,GAAI,CAACA,CAAAA,CAAoB,OAEzB,IAAMC,CAAAA,CAAYD,~~EAAmB~~,~~KAAA~~,~~CAAM~~,8BAA8B,CAAA,CACzE,GAAIC,~~EACF~~,GAAI,CACF,OAAO,kBAAA,CAAmBA,~~CAAAA~~,~~CAAU,~~CAAC,CAAC,CACxC,CAAA,KAAQ,CAER,CAIF,OADmBD,CAAAA,CAAmB,MAAM,qBAAqB,CAAA,GAC7C,CAAC,CACvB","file":"index.js","sourcesContent":["/*\n Builds a RFC 6266 `Content-Disposition` value for a file attachment.\n \n Includes both the ASCII-safe `filename` fallback and the RFC 5987\n * `filename` parameter for full Unicode support, so the original file\n name (including non-ASCII characters) is preserved across all browsers\n * and HTTP clients.\n \n @example\n * buildContentDisposition(\"résumé finale.pdf\")\n * // → 'attachment; filename=\"resume finale.pdf\"; filename=UTF-8\\'\\'r%C3%A9sum%C3%A9%20finale.pdf'\n /\nexport function buildContentDisposition(fileName: string): string {\n const ascii = fileName.replace(/[^\\x20-\\x7E]/g, \"_\").replace(/[\"\\\\]/g, \"_\");\n const encoded = encodeURIComponent(fileName);\n return `attachment; filename=\"${ascii}\"; filename=UTF-8''${encoded}`;\n}\n","/\n Builds the public URL for an S3 object.\n \n Returns `undefined` when:\n * - the object is `\"private\"`, or\n * - `publicUrlBase` is ~~not~~ ~~provided~~.\n \n @param publicUrlBase - A function that returns the base URL for a given bucket.\n * Matches the `~~publicUrlBase~~` field of `S3HandlerConfig`.\n /\nexport function buildPublicUrl(\n publicUrlBase: ((bucket: string) => string) \| undefined,\n bucket: string,\n key: string,\n acl: \"public-read\" \| \"private\",\n): string \| undefined {\n if (acl !== \"public-read\" \|\| !publicUrlBase) return undefined;\n const base = publicUrlBase(bucket).replace(/\\/$/, \"\")~~;\n return `${base~~}/${key}`;\n}\n","/\n Parses the display file name from a `Content-Disposition` header value.\n \n Prefers the RFC 5987 `filename=UTF-8''…` encoding (full Unicode) over\n the plain ASCII `filename=\"…\"` fallback.\n \n Returns `undefined` when no filename can be extracted.\n /\nexport function parseFileName(\n contentDisposition: string \| undefined,\n): string \| undefined {\n if (!contentDisposition) return undefined;\n\n const utf8Match = contentDisposition.match(/filename\\=UTF-8''([^;\\s]+)/i);\n if (utf8Match) {\n try {\n return decodeURIComponent(utf8Match[1]);\n } catch {\n /* ignore malformed encoding /\n }\n }\n\n const asciiMatch = contentDisposition.match(/filename=\"([^\"])\"/i);\n return asciiMatch?.[1];\n}\n"]}
1	+ {"version":3,"sources":["../../src/helpers/build-content-disposition.ts","../../src/helpers/build-public-url.ts","../../src/helpers/parse-file-name.ts"],"names":["buildContentDisposition","fileName","ascii","encoded","buildPublicUrl","publicUrlBase","bucket","key","acl","base","parseFileName","contentDisposition","utf8Match"],"mappings":"AAYO,SAASA,EAAwBC,CAAAA,CAA0B,CAChE,IAAMC,CAAAA,CAAQD,CAAAA,CAAS,QAAQ,eAAA,CAAiB,GAAG,EAAE,OAAA,CAAQ,QAAA,CAAU,GAAG,CAAA,CACpEE,CAAAA,CAAU,mBAAmBF,CAAQ,CAAA,CAC3C,OAAO,CAAA,sBAAA,EAAyBC,CAAK,CAAA,oBAAA,EAAuBC,CAAO,EACrE,CCJO,SAASC,EACdC,CAAAA,CACAC,CAAAA,CACAC,EACAC,CAAAA,CACoB,CACpB,GAAIA,CAAAA,GAAQ,aAAA,EAAiB,CAACH,CAAAA,CAAe,OAC7C,IAAMI,CAAAA,CAAOJ,CAAAA,CAAcC,CAAM,CAAA,CACjC,GAAKG,CAAAA,CACL,OAAO,GAAGA,CAAAA,CAAK,OAAA,CAAQ,MAAO,EAAE,CAAC,IAAIF,CAAG,CAAA,CAC1C,CCdO,SAASG,CAAAA,CACdC,EACoB,CACpB,GAAI,CAACA,CAAAA,CAAoB,OAEzB,IAAMC,CAAAA,CAAYD,CAAAA,CAAmB,MAAM,8BAA8B,CAAA,CACzE,GAAIC,CAAAA,CACF,GAAI,CACF,OAAO,kBAAA,CAAmBA,EAAU,CAAC,CAAC,CACxC,CAAA,KAAQ,CAER,CAIF,OADmBD,CAAAA,CAAmB,MAAM,qBAAqB,CAAA,GAC7C,CAAC,CACvB","file":"index.js","sourcesContent":["/*\n Builds a RFC 6266 `Content-Disposition` value for a file attachment.\n \n Includes both the ASCII-safe `filename` fallback and the RFC 5987\n * `filename` parameter for full Unicode support, so the original file\n name (including non-ASCII characters) is preserved across all browsers\n * and HTTP clients.\n \n @example\n * buildContentDisposition(\"résumé finale.pdf\")\n * // → 'attachment; filename=\"resume finale.pdf\"; filename=UTF-8\\'\\'r%C3%A9sum%C3%A9%20finale.pdf'\n /\nexport function buildContentDisposition(fileName: string): string {\n const ascii = fileName.replace(/[^\\x20-\\x7E]/g, \"_\").replace(/[\"\\\\]/g, \"_\");\n const encoded = encodeURIComponent(fileName);\n return `attachment; filename=\"${ascii}\"; filename=UTF-8''${encoded}`;\n}\n","/\n Builds the public URL for an S3 object.\n \n Returns `undefined` when:\n * - the object is `\"private\"`,\n * - `publicUrlBase` is not provided, or\n * - `publicUrlBase` returns `undefined` for the given bucket.\n \n @param publicUrlBase - A function that returns the base URL for a given bucket,\n * or `undefined` when no public URL is available for that bucket.\n * Matches the `resolvePublicUrl` field of `S3HandlerConfig`.\n /\nexport function buildPublicUrl(\n publicUrlBase: ((bucket: string) => string \| undefined) \| undefined,\n bucket: string,\n key: string,\n acl: \"public-read\" \| \"private\",\n): string \| undefined {\n if (acl !== \"public-read\" \|\| !publicUrlBase) return undefined;\n const base = publicUrlBase(bucket);\n if (!base) return undefined;\n return `${base.replace(/\\/$/, \"\")}/${key}`;\n}\n","/\n Parses the display file name from a `Content-Disposition` header value.\n \n Prefers the RFC 5987 `filename=UTF-8''…` encoding (full Unicode) over\n the plain ASCII `filename=\"…\"` fallback.\n \n Returns `undefined` when no filename can be extracted.\n /\nexport function parseFileName(\n contentDisposition: string \| undefined,\n): string \| undefined {\n if (!contentDisposition) return undefined;\n\n const utf8Match = contentDisposition.match(/filename\\=UTF-8''([^;\\s]+)/i);\n if (utf8Match) {\n try {\n return decodeURIComponent(utf8Match[1]);\n } catch {\n /* ignore malformed encoding /\n }\n }\n\n const asciiMatch = contentDisposition.match(/filename=\"([^\"])\"/i);\n return asciiMatch?.[1];\n}\n"]}

package/dist/index.js CHANGED Viewed

@@ -1,3 +1,3 @@
-import {createPresignedPost}from'@aws-sdk/s3-presigned-post';import {HeadObjectCommand,GetObjectCommand,DeleteObjectCommand,CreateMultipartUploadCommand,UploadPartCommand,CompleteMultipartUploadCommand,AbortMultipartUploadCommand,GetObjectAclCommand}from'@aws-sdk/client-s3';import {getSignedUrl}from'@aws-sdk/s3-request-presigner';async function g(e){try{let n=await e.json();return n&&typeof n=="object"?n:null}catch{return null}}function m(e,n){let r=typeof e=="string"?e.trim():"";return r||Response.json({message:`${n} is required`},{status:400})}function k(e){let n=Number(e);return Number.isFinite(n)&&n>0?Math.floor(n):600}function l(e){return async n=>{try{return await e(n)}catch(r){let t=r instanceof Error?r.message:"Internal server error";return console.error("[S3 API]",t),Response.json({message:t},{status:500})}}}async function u(e,n){if(!e)return null;try{return await e(n),null}catch(r){let t=r instanceof Error?r.message:"Forbidden",a=typeof r?.status=="number"?r.status:403;return Response.json({message:t},{status:a})}}function b(e){let n=e.replace(/[^\x20-\x7E]/g,"_").replace(/["\\]/g,"_"),r=encodeURIComponent(e);return `attachment; filename="${n}"; filename*=UTF-8''${r}`}function w(e,n,r,t){return t!=="public-read"||!e?void 0:`${e(n).replace(/\/$/,"")}/${r}`}function P(e){if(!e)return;let n=e.match(/filename\*=UTF-8''([^;\s]+)/i);if(n)try{return decodeURIComponent(n[1])}catch{}return e.match(/filename="([^"]*)"/i)?.[1]}var B=5*1024*1024*1024;function I(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=m(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=k(r.expiresIn),o=r.acl==="public-read"?"public-read":"private",i=r.contentType?.trim()||"application/octet-stream",p=typeof r.fileSize=="number"&&r.fileSize>0?Math.floor(r.fileSize):null;if(p!==null&&e.maxFileSize&&p>e.maxFileSize)return Response.json({message:`File size (${p} bytes) exceeds the maximum allowed size of ${e.maxFileSize} bytes`},{status:413});let d=await u(e.upload?.guard,{request:n,key:t,bucket:a,contentType:r.contentType,fileSize:p??void 0,metadata:r.metadata,acl:o});if(d)return d;let c={acl:o,"Content-Type":i};if(r.fileName&&(c["Content-Disposition"]=b(r.fileName)),r.metadata)for(let[y,S]of Object.entries(r.metadata))c[`x-amz-meta-${y}`]=S;let H=p??1,R=p??e.maxFileSize??B,{url:x,fields:h}=await createPresignedPost(e.s3,{Bucket:a,Key:t,Conditions:[["content-length-range",H,R]],Fields:c,Expires:s});return await e.upload?.onPresigned?.({request:n,key:t,bucket:a,contentType:r.contentType,metadata:r.metadata,acl:o,url:x,expiresIn:s}),Response.json({bucket:a,key:t,url:x,fields:h,expiresIn:s})})}async function C(e,n,r){try{return (await e.send(new GetObjectAclCommand({Bucket:n,Key:r}))).Grants?.some(s=>s.Grantee?.URI==="http://acs.amazonaws.com/groups/global/AllUsers"&&(s.Permission==="READ"||s.Permission==="FULL_CONTROL"))?"public-read":"private"}catch{return "private"}}function T(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=m(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=await u(e.upload?.guard,{request:n,key:t,bucket:a});if(s)return s;let o=await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t})),i=await C(e.s3,a,t),p=w(e.resolvePublicUrl,a,t,i),d=P(o.ContentDisposition),c={request:n,key:t,bucket:a,contentType:o.ContentType,contentLength:o.ContentLength??0,eTag:o.ETag?.replace(/"/g,""),metadata:o.Metadata,acl:i,fileName:d,publicUrl:p};return await e.upload?.onUploaded?.(c),Response.json({key:t,bucket:a,contentType:c.contentType,contentLength:c.contentLength,eTag:c.eTag,acl:i,fileName:d,publicUrl:p})})}function N(e){return l(async n=>{let{searchParams:r}=new URL(n.url),t=r.get("key")?.trim();if(!t)return Response.json({message:"key query parameter is required"},{status:400});let a=r.get("bucket")?.trim()||e.defaultBucket,s=k(r.get("expiresIn")),o=r.get("fileName")?.trim(),i=await u(e.download?.guard,{request:n,key:t,bucket:a,fileName:o||void 0});if(i)return i;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t}));}catch(d){let c=d?.name;if(c==="NoSuchKey"||c==="NotFound")return Response.json({message:"Object not found"},{status:404});throw d}let p=await getSignedUrl(e.s3,new GetObjectCommand({Bucket:a,Key:t,ResponseContentDisposition:o?b(o):"attachment"}),{expiresIn:s});return await e.download?.onPresigned?.({request:n,key:t,bucket:a,fileName:o||void 0,url:p,expiresIn:s}),Response.json({bucket:a,key:t,url:p,expiresIn:s})})}function j(e){return l(async n=>{let{searchParams:r}=new URL(n.url),t=r.get("key")?.trim();if(!t)return Response.json({message:"key query parameter is required"},{status:400});let a=r.get("bucket")?.trim()||e.defaultBucket,s=await u(e.delete?.guard,{request:n,key:t,bucket:a});if(s)return s;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t}));}catch{return Response.json({message:"Object not found"},{status:404})}return await e.s3.send(new DeleteObjectCommand({Bucket:a,Key:t})),await e.delete?.onDeleted?.({request:n,key:t,bucket:a}),Response.json({success:!0,bucket:a,key:t})})}function U(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=m(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=r.acl==="public-read"?"public-read":"private",o=typeof r.fileSize=="number"&&r.fileSize>0?Math.floor(r.fileSize):void 0;if(o!==void 0&&e.maxFileSize&&o>e.maxFileSize)return Response.json({message:`File size (${o} bytes) exceeds the maximum allowed size of ${e.maxFileSize} bytes`},{status:413});let i=await u(e.multipart?.guard,{request:n,key:t,bucket:a,fileSize:o});if(i)return i;let{UploadId:p}=await e.s3.send(new CreateMultipartUploadCommand({Bucket:a,Key:t,ContentType:r.contentType,ContentDisposition:r.fileName?b(r.fileName):void 0,Metadata:r.metadata,ACL:s}));return await e.multipart?.onInit?.({request:n,key:t,bucket:a,uploadId:p,contentType:r.contentType,fileSize:o,metadata:r.metadata,acl:s}),Response.json({bucket:a,key:t,uploadId:p},{status:201})})}function z(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=m(r.key,"key");if(t instanceof Response)return t;let a=m(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=Number(r.partNumber);if(!Number.isInteger(s)||s<=0)return Response.json({message:"partNumber must be a positive integer"},{status:400});let o=r.bucket?.trim()||e.defaultBucket,i=k(r.expiresIn),p=await u(e.multipart?.guard,{request:n,key:t,bucket:o});if(p)return p;let d=await getSignedUrl(e.s3,new UploadPartCommand({Bucket:o,Key:t,UploadId:a,PartNumber:s}),{expiresIn:i});return Response.json({presignedUrl:d,partNumber:s,uploadId:a,bucket:o,expiresIn:i})})}function M(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=m(r.key,"key");if(t instanceof Response)return t;let a=m(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=(Array.isArray(r.parts)?r.parts:[]).map(({partNumber:y,eTag:S})=>({PartNumber:Number(y),ETag:String(S)})).filter(y=>Number.isInteger(y.PartNumber)&&y.ETag).sort((y,S)=>y.PartNumber-S.PartNumber);if(!s.length)return Response.json({message:"At least one valid part is required"},{status:400});let o=r.bucket?.trim()||e.defaultBucket,i=await u(e.multipart?.guard,{request:n,key:t,bucket:o});if(i)return i;await e.s3.send(new CompleteMultipartUploadCommand({Bucket:o,Key:t,UploadId:a,MultipartUpload:{Parts:s}}));let p=await e.s3.send(new HeadObjectCommand({Bucket:o,Key:t})),d=p.ContentLength??0,c=p.ContentType,H=p.ETag?.replace(/"/g,""),R=await C(e.s3,o,t),x=w(e.resolvePublicUrl,o,t,R),h=P(p.ContentDisposition);return e.maxFileSize&&d>e.maxFileSize?(await e.s3.send(new DeleteObjectCommand({Bucket:o,Key:t})).catch(()=>{}),Response.json({message:`File size (${d} bytes) exceeds the maximum allowed size of ${e.maxFileSize} bytes`},{status:422})):(await e.multipart?.onComplete?.({request:n,key:t,bucket:o,uploadId:a,contentLength:d,contentType:c,eTag:H,acl:R,fileName:h,publicUrl:x}),Response.json({bucket:o,key:t,uploadId:a,contentLength:d,contentType:c,eTag:H,acl:R,fileName:h,publicUrl:x}))})}function F(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=m(r.key,"key");if(t instanceof Response)return t;let a=m(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=r.bucket?.trim()||e.defaultBucket,o=await u(e.multipart?.guard,{request:n,key:t,bucket:s});return o||(await e.s3.send(new AbortMultipartUploadCommand({Bucket:s,Key:t,UploadId:a})),await e.multipart?.onAbort?.({request:n,key:t,bucket:s,uploadId:a}),Response.json({bucket:s,key:t,uploadId:a,aborted:!0}))})}function E(e){return {presign:{upload:I(e),confirm:T(e),download:N(e)},multipart:{init:U(e),part:z(e),complete:M(e),abort:F(e)},delete:j(e)}}var f=()=>Response.json({message:"Not Found"},{status:404});function Y(e){let n=E(e),r=e.basePath.replace(/\/$/,"");return async t=>{let a=await u(e.guard,{request:t});if(a)return a;let o=new URL(t.url).pathname.slice(r.length).replace(/^\//,""),i=t.method;return i==="POST"&&o==="presign/upload"?e.upload?.enabled?n.presign.upload(t):f():i==="POST"&&o==="presign/upload/confirm"?e.upload?.enabled?n.presign.confirm(t):f():i==="GET"&&o==="presign/download"?e.download?.enabled?n.presign.download(t):f():i==="DELETE"&&o==="delete"?e.delete?.enabled?n.delete(t):f():i==="POST"&&o==="presign/multipart/init"?e.multipart?.enabled?n.multipart.init(t):f():i==="POST"&&o==="presign/multipart/part"?e.multipart?.enabled?n.multipart.part(t):f():i==="POST"&&o==="presign/multipart/complete"?e.multipart?.enabled?n.multipart.complete(t):f():i==="POST"&&o==="presign/multipart/abort"?e.multipart?.enabled?n.multipart.abort(t):f():Response.json({message:"Not Found"},{status:404})}}function O(e="/api/s3"){let n=e.replace(/\/$/,""),r=async(a,s)=>{let o=await fetch(a,s);if(!o.ok){let i=await o.json().catch(()=>({}));throw new Error(i.message??o.statusText)}return o.json()},t=(a,s)=>r(a,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(s)});return {upload(a){return t(`${n}/presign/upload`,a)},confirm(a){return t(`${n}/presign/upload/confirm`,a)},download(a,s){let o=new URLSearchParams({key:a});if(s?.fileName){let i=s.fileName.replace(/["\\\r\n]/g,"_");o.set("fileName",i);}return s?.bucket&&o.set("bucket",s.bucket),r(`${n}/presign/download?${o}`)},delete(a,s){let o=new URLSearchParams({key:a});return s?.bucket&&o.set("bucket",s.bucket),r(`${n}/delete?${o}`,{method:"DELETE"})},multipart:{init(a){return t(`${n}/presign/multipart/init`,a)},signPart(a){return t(`${n}/presign/multipart/part`,a)},complete(a){return t(`${n}/presign/multipart/complete`,a)},abort(a){return t(`${n}/presign/multipart/abort`,a)}}}}function ee(e,n){if(n.accept?.length&&!n.accept.some(t=>t.startsWith(".")?e.name.toLowerCase().endsWith(t.toLowerCase()):t.endsWith("/*")?e.type.startsWith(t.replace("/*","/")):e.type===t)){let t=e.name.includes(".")?e.name.split(".").pop():null;return `File type "${t?`.${t}`:e.type||"unknown"}" is not allowed`}return e.size===0?"File is empty":n.maxFileSize&&e.size>n.maxFileSize?`File size exceeds ${(n.maxFileSize/1048576).toFixed(1)} MB limit`:null}
-export{T as createConfirmHandler,j as createDeleteHandler,N as createDownloadHandler,E as createHandlers,F as createMultipartAbortHandler,M as createMultipartCompleteHandler,U as createMultipartInitHandler,z as createMultipartPartHandler,O as createPresignApi,Y as createRouter,O as createS3Api,I as createUploadHandler,ee as validateFile};//# sourceMappingURL=index.js.map
+import {createPresignedPost}from'@aws-sdk/s3-presigned-post';import {HeadObjectCommand,GetObjectCommand,DeleteObjectCommand,CreateMultipartUploadCommand,UploadPartCommand,ListPartsCommand,CompleteMultipartUploadCommand,AbortMultipartUploadCommand,GetObjectAclCommand}from'@aws-sdk/client-s3';import {getSignedUrl}from'@aws-sdk/s3-request-presigner';async function g(e){try{let n=await e.json();return n&&typeof n=="object"?n:null}catch{return null}}function d(e,n){let r=typeof e=="string"?e.trim():"";return r||Response.json({message:`${n} is required`},{status:400})}function R(e){let n=Number(e);return Number.isFinite(n)&&n>0?Math.floor(n):600}function l(e){return async n=>{try{return await e(n)}catch(r){let t=r.code,s=t==="EAI_AGAIN"||t==="ECONNREFUSED"||t==="ECONNRESET"||t==="ETIMEDOUT"||t==="ENOTFOUND"?`S3 endpoint unreachable (${t}): check your endpoint URL and network connectivity`:r instanceof Error?r.message:"Internal server error";return console.error("[S3 API]",s),Response.json({message:s},{status:502})}}}async function p(e,n){if(!e)return null;try{return await e(n),null}catch(r){let t=r instanceof Error?r.message:"Forbidden",a=typeof r?.status=="number"?r.status:403;return Response.json({message:t},{status:a})}}function k(e){let n=e.replace(/[^\x20-\x7E]/g,"_").replace(/["\\]/g,"_"),r=encodeURIComponent(e);return `attachment; filename="${n}"; filename*=UTF-8''${r}`}function C(e,n,r,t){if(t!=="public-read"||!e)return;let a=e(n);if(a)return `${a.replace(/\/$/,"")}/${r}`}function x(e){if(!e)return;let n=e.match(/filename\*=UTF-8''([^;\s]+)/i);if(n)try{return decodeURIComponent(n[1])}catch{}return e.match(/filename="([^"]*)"/i)?.[1]}function N(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=d(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=R(r.expiresIn),o=r.acl==="public-read"?"public-read":"private",i=r.contentType?.trim()||"application/octet-stream",u=typeof r.fileSize=="number"&&r.fileSize>0?Math.floor(r.fileSize):null,f=await p(e.upload?.presignGuard,{request:n,key:t,bucket:a,contentType:r.contentType,fileSize:u??void 0,metadata:r.metadata,acl:o});if(f)return f;let c={acl:o,"Content-Type":i};if(r.fileName&&(c["Content-Disposition"]=k(r.fileName)),r.metadata)for(let[h,S]of Object.entries(r.metadata))c[`x-amz-meta-${h}`]=S;let T=u??1,y=u??void 0,{url:w,fields:I}=await createPresignedPost(e.s3,{Bucket:a,Key:t,Conditions:y!==void 0?[["content-length-range",T,y]]:[["content-length-range",T,Number.MAX_SAFE_INTEGER]],Fields:c,Expires:s});return await e.upload?.onPresigned?.({request:n,key:t,bucket:a,contentType:r.contentType,metadata:r.metadata,acl:o,url:w,expiresIn:s}),Response.json({bucket:a,key:t,url:w,fields:I,expiresIn:s})})}async function H(e,n,r){try{return (await e.send(new GetObjectAclCommand({Bucket:n,Key:r}))).Grants?.some(s=>s.Grantee?.URI==="http://acs.amazonaws.com/groups/global/AllUsers"&&(s.Permission==="READ"||s.Permission==="FULL_CONTROL"))?"public-read":"private"}catch{return "private"}}function U(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=d(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=await p(e.upload?.confirmGuard,{request:n,key:t,bucket:a});if(s)return s;let o=await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t})),i=await H(e.s3,a,t),u=C(e.resolvePublicUrl,a,t,i),f=x(o.ContentDisposition),c={request:n,key:t,bucket:a,contentType:o.ContentType,contentLength:o.ContentLength??0,eTag:o.ETag?.replace(/"/g,""),metadata:o.Metadata,acl:i,fileName:f,publicUrl:u};return await e.upload?.onUploadConfirmed?.(c),Response.json({key:t,bucket:a,contentType:c.contentType,contentLength:c.contentLength,eTag:c.eTag,acl:i,fileName:f,publicUrl:u})})}function E(e){return l(async n=>{let{searchParams:r}=new URL(n.url),t=r.get("key")?.trim();if(!t)return Response.json({message:"key query parameter is required"},{status:400});let a=r.get("bucket")?.trim()||e.defaultBucket,s=R(r.get("expiresIn")),o=r.get("fileName")?.trim(),i=await p(e.download?.presignGuard,{request:n,key:t,bucket:a,fileName:o||void 0});if(i)return i;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t}));}catch(f){let c=f?.name;if(c==="NoSuchKey"||c==="NotFound")return Response.json({message:"Object not found"},{status:404});throw f}let u=await getSignedUrl(e.s3,new GetObjectCommand({Bucket:a,Key:t,ResponseContentDisposition:o?k(o):"attachment"}),{expiresIn:s});return await e.download?.onPresigned?.({request:n,key:t,bucket:a,fileName:o||void 0,url:u,expiresIn:s}),Response.json({bucket:a,key:t,url:u,expiresIn:s})})}function j(e){return l(async n=>{let{searchParams:r}=new URL(n.url),t=r.get("key")?.trim();if(!t)return Response.json({message:"key query parameter is required"},{status:400});let a=r.get("bucket")?.trim()||e.defaultBucket,s=await p(e.delete?.deleteGuard,{request:n,key:t,bucket:a});if(s)return s;try{await e.s3.send(new HeadObjectCommand({Bucket:a,Key:t}));}catch{return Response.json({message:"Object not found"},{status:404})}return await e.s3.send(new DeleteObjectCommand({Bucket:a,Key:t})),await e.delete?.onDeleted?.({request:n,key:t,bucket:a}),Response.json({success:!0,bucket:a,key:t})})}function M(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=d(r.key,"key");if(t instanceof Response)return t;let a=r.bucket?.trim()||e.defaultBucket,s=r.acl==="public-read"?"public-read":"private",o=typeof r.fileSize=="number"&&r.fileSize>0?Math.floor(r.fileSize):void 0,i=await p(e.multipart?.initGuard,{request:n,key:t,bucket:a,fileSize:o});if(i)return i;let{UploadId:u}=await e.s3.send(new CreateMultipartUploadCommand({Bucket:a,Key:t,ContentType:r.contentType,ContentDisposition:r.fileName?k(r.fileName):void 0,Metadata:r.metadata,ACL:s}));return await e.multipart?.onInit?.({request:n,key:t,bucket:a,uploadId:u,contentType:r.contentType,fileSize:o,metadata:r.metadata,acl:s}),Response.json({bucket:a,key:t,uploadId:u},{status:201})})}function O(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=d(r.key,"key");if(t instanceof Response)return t;let a=d(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=Number(r.partNumber);if(!Number.isInteger(s)||s<=0)return Response.json({message:"partNumber must be a positive integer"},{status:400});let o=r.bucket?.trim()||e.defaultBucket,i=R(r.expiresIn),u=await p(e.multipart?.partGuard,{request:n,key:t,bucket:o});if(u)return u;let f=await getSignedUrl(e.s3,new UploadPartCommand({Bucket:o,Key:t,UploadId:a,PartNumber:s}),{expiresIn:i});return Response.json({presignedUrl:f,partNumber:s,uploadId:a,bucket:o,expiresIn:i})})}function A(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=d(r.key,"key");if(t instanceof Response)return t;let a=d(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=(Array.isArray(r.parts)?r.parts:[]).map(({partNumber:m})=>Number(m)).filter(m=>Number.isInteger(m)&&m>0).sort((m,P)=>m-P);if(!s.length)return Response.json({message:"At least one valid part is required"},{status:400});let o=r.bucket?.trim()||e.defaultBucket,i=await p(e.multipart?.completeGuard,{request:n,key:t,bucket:o});if(i)return i;let f=(await e.s3.send(new ListPartsCommand({Bucket:o,Key:t,UploadId:a}))).Parts??[],c=s.map(m=>{let P=f.find($=>$.PartNumber===m);return {PartNumber:m,ETag:P?.ETag??""}}),T=await e.s3.send(new CompleteMultipartUploadCommand({Bucket:o,Key:t,UploadId:a,MultipartUpload:{Parts:c}})),y=await e.s3.send(new HeadObjectCommand({Bucket:o,Key:t}));for(let m=0;m<4&&!y.ContentLength;m++)await new Promise(P=>setTimeout(P,250*2**m)),y=await e.s3.send(new HeadObjectCommand({Bucket:o,Key:t}));let w=y.ContentLength??0,I=y.ContentType,h=(y.ETag??T.ETag??"").replace(/"/g,""),S=await H(e.s3,o,t),F=C(e.resolvePublicUrl,o,t,S),z=x(y.ContentDisposition);return await e.multipart?.onComplete?.({request:n,key:t,bucket:o,uploadId:a,contentLength:w,contentType:I,eTag:h,acl:S,fileName:z,publicUrl:F}),Response.json({bucket:o,key:t,uploadId:a,contentLength:w,contentType:I,eTag:h,acl:S,fileName:z,publicUrl:F})})}function v(e){return l(async n=>{let r=await g(n);if(!r)return Response.json({message:"Invalid JSON payload"},{status:400});let t=d(r.key,"key");if(t instanceof Response)return t;let a=d(r.uploadId,"uploadId");if(a instanceof Response)return a;let s=r.bucket?.trim()||e.defaultBucket,o=await p(e.multipart?.abortGuard,{request:n,key:t,bucket:s});return o||(await e.s3.send(new AbortMultipartUploadCommand({Bucket:s,Key:t,UploadId:a})),await e.multipart?.onAbort?.({request:n,key:t,bucket:s,uploadId:a}),Response.json({bucket:s,key:t,uploadId:a,aborted:!0}))})}function B(e){return {presign:{upload:N(e),confirm:U(e),download:E(e)},multipart:{init:M(e),part:O(e),complete:A(e),abort:v(e)},delete:j(e)}}var b=()=>Response.json({message:"Not Found"},{status:404});function ne(e){let n=B(e),r=e.basePath.replace(/\/$/,"");return async t=>{let a=await p(e.guard,{request:t});if(a)return a;let o=new URL(t.url).pathname.slice(r.length).replace(/^\//,""),i=t.method;return i==="POST"&&o==="presign/upload"?e.upload?.enabled?n.presign.upload(t):b():i==="POST"&&o==="presign/upload/confirm"?e.upload?.enabled?n.presign.confirm(t):b():i==="GET"&&o==="presign/download"?e.download?.enabled?n.presign.download(t):b():i==="DELETE"&&o==="delete"?e.delete?.enabled?n.delete(t):b():i==="POST"&&o==="presign/multipart/init"?e.multipart?.enabled?n.multipart.init(t):b():i==="POST"&&o==="presign/multipart/part"?e.multipart?.enabled?n.multipart.part(t):b():i==="POST"&&o==="presign/multipart/complete"?e.multipart?.enabled?n.multipart.complete(t):b():i==="POST"&&o==="presign/multipart/abort"?e.multipart?.enabled?n.multipart.abort(t):b():Response.json({message:"Not Found"},{status:404})}}function L(e="/api/s3"){let n=e.replace(/\/$/,""),r=async(a,s)=>{let o=await fetch(a,s);if(!o.ok){let i=await o.json().catch(()=>({}));throw new Error(i.message??o.statusText)}return o.json()},t=(a,s)=>r(a,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify(s)});return {upload(a){return t(`${n}/presign/upload`,a)},confirm(a){return t(`${n}/presign/upload/confirm`,a)},download(a,s){let o=new URLSearchParams({key:a});if(s?.fileName){let i=s.fileName.replace(/["\\\r\n]/g,"_");o.set("fileName",i);}return s?.bucket&&o.set("bucket",s.bucket),r(`${n}/presign/download?${o}`)},delete(a,s){let o=new URLSearchParams({key:a});return s?.bucket&&o.set("bucket",s.bucket),r(`${n}/delete?${o}`,{method:"DELETE"})},multipart:{init(a){return t(`${n}/presign/multipart/init`,a)},signPart(a){return t(`${n}/presign/multipart/part`,a)},complete(a){return t(`${n}/presign/multipart/complete`,a)},abort(a){return t(`${n}/presign/multipart/abort`,a)}}}}function ae(e,n){if(n.accept?.length&&!n.accept.some(t=>t.startsWith(".")?e.name.toLowerCase().endsWith(t.toLowerCase()):t.endsWith("/*")?e.type.startsWith(t.replace("/*","/")):e.type===t)){let t=e.name.includes(".")?e.name.split(".").pop():null;return `File type "${t?`.${t}`:e.type||"unknown"}" is not allowed`}return e.size===0?"File is empty":n.maxFileSize&&e.size>n.maxFileSize?`File size exceeds ${(n.maxFileSize/1048576).toFixed(1)} MB limit`:null}
+export{U as createConfirmHandler,j as createDeleteHandler,E as createDownloadHandler,B as createHandlers,v as createMultipartAbortHandler,A as createMultipartCompleteHandler,M as createMultipartInitHandler,O as createMultipartPartHandler,L as createPresignApi,ne as createRouter,L as createS3Api,N as createUploadHandler,ae as validateFile};//# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map

package/dist/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../src/internal-helpers.ts","../src/helpers/build-content-disposition.ts","../src/helpers/build-public-url.ts","../src/helpers/parse-file-name.ts","../src/handlers/presign/upload.ts","../src/helpers/server/resolve-object-acl.ts","../src/handlers/presign/confirm.ts","../src/handlers/presign/download.ts","../src/handlers/delete.ts","../src/handlers/multipart/init.ts","../src/handlers/multipart/part.ts","../src/handlers/multipart/complete.ts","../src/handlers/multipart/abort.ts","../src/create-handlers.ts","../src/router.ts","../src/api.ts","../src/helpers/validate-file.ts"],"names":["parseBody","request","body","requireString","value","name","trimmed","normalizeExpiresIn","withS3ErrorHandler","handler","err","message","runHook","hook","context","status","buildContentDisposition","fileName","ascii","encoded","buildPublicUrl","publicUrlBase","bucket","key","acl","parseFileName","contentDisposition","utf8Match","MAX_UPLOAD_SIZE","createUploadHandler","config","expiresIn","contentType","fileSize","guardResult","fields","k","v","rangeMin","rangeMax","url","signedFields","createPresignedPost","resolveObjectAcl","s3","GetObjectAclCommand","g","createConfirmHandler","head","HeadObjectCommand","publicUrl","createDownloadHandler","searchParams","getSignedUrl","GetObjectCommand","createDeleteHandler","DeleteObjectCommand","createMultipartInitHandler","UploadId","CreateMultipartUploadCommand","createMultipartPartHandler","uploadId","partNumber","presignedUrl","UploadPartCommand","createMultipartCompleteHandler","parts","eTag","p","a","b","CompleteMultipartUploadCommand","contentLength","createMultipartAbortHandler","AbortMultipartUploadCommand","createHandlers","disabled","createRouter","handlers","base","subpath","method","createS3Api","basePath","json","init","res","post","payload","options","params","safe","validateFile","file","type","ext"],"mappings":"4UAAA,eAAsBA,EACpBC,CAAAA,CACmB,CACnB,GAAI,CACF,IAAMC,CAAAA,CAAO,MAAMD,CAAAA,CAAQ,IAAA,GAC3B,OAAOC,CAAAA,EAAQ,OAAOA,CAAAA,EAAS,QAAA,CAAYA,CAAAA,CAAa,IAC1D,CAAA,KAAQ,CACN,OAAO,IACT,CACF,CAEO,SAASC,CAAAA,CAAcC,CAAAA,CAAgBC,CAAAA,CAAiC,CAC7E,IAAMC,CAAAA,CAAU,OAAOF,CAAAA,EAAU,QAAA,CAAWA,CAAAA,CAAM,IAAA,EAAK,CAAI,EAAA,CAC3D,OAAKE,CAAAA,EACI,QAAA,CAAS,IAAA,CAAK,CAAE,QAAS,CAAA,EAAGD,CAAI,CAAA,YAAA,CAAe,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAG5E,CAEO,SAASE,CAAAA,CAAmBH,CAAAA,CAAwB,CACzD,IAAM,CAAA,CAAI,MAAA,CAAOA,CAAK,CAAA,CACtB,OAAO,MAAA,CAAO,QAAA,CAAS,CAAC,CAAA,EAAK,EAAI,CAAA,CAAI,IAAA,CAAK,KAAA,CAAM,CAAC,CAAA,CAAI,GACvD,CAEO,SAASI,EACdC,CAAAA,CACA,CACA,OAAO,MAAOR,GAAqB,CACjC,GAAI,CACF,OAAO,MAAMQ,CAAAA,CAAQR,CAAO,CAC9B,CAAA,MAASS,CAAAA,CAAK,CACZ,IAAMC,CAAAA,CACJD,aAAe,KAAA,CAAQA,CAAAA,CAAI,OAAA,CAAU,uBAAA,CACvC,eAAQ,KAAA,CAAM,UAAA,CAAYC,CAAO,CAAA,CAC1B,SAAS,IAAA,CAAK,CAAE,OAAA,CAAAA,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACnD,CACF,CACF,CAMA,eAAsBC,CAAAA,CACpBC,CAAAA,CACAC,CAAAA,CAC0B,CAC1B,GAAI,CAACD,CAAAA,CAAM,OAAO,IAAA,CAClB,GAAI,CACF,OAAA,MAAMA,CAAAA,CAAKC,CAAO,EACX,IACT,CAAA,MAASJ,CAAAA,CAAK,CACZ,IAAMC,CAAAA,CAAUD,CAAAA,YAAe,KAAA,CAAQA,CAAAA,CAAI,QAAU,WAAA,CAC/CK,CAAAA,CACJ,OAAQL,CAAAA,EAAiC,MAAA,EAAW,QAAA,CAC9CA,CAAAA,CAAgC,MAAA,CAClC,IACN,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,QAAAC,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAAI,CAAO,CAAC,CAC9C,CACF,CC/CO,SAASC,CAAAA,CAAwBC,CAAAA,CAA0B,CAChE,IAAMC,CAAAA,CAAQD,CAAAA,CAAS,OAAA,CAAQ,eAAA,CAAiB,GAAG,CAAA,CAAE,OAAA,CAAQ,QAAA,CAAU,GAAG,EACpEE,CAAAA,CAAU,kBAAA,CAAmBF,CAAQ,CAAA,CAC3C,OAAO,CAAA,sBAAA,EAAyBC,CAAK,CAAA,oBAAA,EAAuBC,CAAO,CAAA,CACrE,CCNO,SAASC,CAAAA,CACdC,EACAC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACoB,CACpB,OAAIA,CAAAA,GAAQ,aAAA,EAAiB,CAACH,CAAAA,CAAe,OAEtC,CAAA,EADMA,CAAAA,CAAcC,CAAM,CAAA,CAAE,QAAQ,KAAA,CAAO,EAAE,CACtC,CAAA,CAAA,EAAIC,CAAG,CAAA,CACvB,CCXO,SAASE,CAAAA,CACdC,EACoB,CACpB,GAAI,CAACA,CAAAA,CAAoB,OAEzB,IAAMC,CAAAA,CAAYD,CAAAA,CAAmB,MAAM,8BAA8B,CAAA,CACzE,GAAIC,CAAAA,CACF,GAAI,CACF,OAAO,kBAAA,CAAmBA,CAAAA,CAAU,CAAC,CAAC,CACxC,CAAA,KAAQ,CAER,CAIF,OADmBD,CAAAA,CAAmB,KAAA,CAAM,qBAAqB,CAAA,GAC7C,CAAC,CACvB,CCZA,IAAME,CAAAA,CAAkB,CAAA,CAAI,IAAA,CAAO,IAAA,CAAO,KAqBnC,SAASC,CAAAA,CAAoBC,CAAAA,CAAyB,CAC3D,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,EAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,aAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,IAAU4B,CAAAA,CAAO,aAAA,CACvCC,CAAAA,CAAYxB,CAAAA,CAAmBL,EAAK,SAAS,CAAA,CAC7CsB,CAAAA,CAAMtB,CAAAA,CAAK,MAAQ,aAAA,CAAgB,aAAA,CAAgB,SAAA,CACnD8B,CAAAA,CAAc9B,CAAAA,CAAK,WAAA,EAAa,IAAA,EAAK,EAAK,2BAC1C+B,CAAAA,CACJ,OAAO/B,CAAAA,CAAK,QAAA,EAAa,UAAYA,CAAAA,CAAK,QAAA,CAAW,CAAA,CACjD,IAAA,CAAK,MAAMA,CAAAA,CAAK,QAAQ,CAAA,CACxB,IAAA,CAEN,GACE+B,CAAAA,GAAa,IAAA,EACbH,CAAAA,CAAO,aACPG,CAAAA,CAAWH,CAAAA,CAAO,WAAA,CAElB,OAAO,SAAS,IAAA,CACd,CACE,OAAA,CAAS,CAAA,WAAA,EAAcG,CAAQ,CAAA,4CAAA,EAA+CH,CAAAA,CAAO,WAAW,CAAA,MAAA,CAClG,EACA,CAAE,MAAA,CAAQ,GAAI,CAChB,EAGF,IAAMI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,EAAO,MAAA,EAAQ,KAAA,CAAO,CACtD,OAAA,CAAA7B,EACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAapB,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAU+B,GAAY,KAAA,CAAA,CACtB,QAAA,CAAU/B,CAAAA,CAAK,QAAA,CACf,IAAAsB,CACF,CAAC,CAAA,CACD,GAAIU,EAAa,OAAOA,CAAAA,CAOxB,IAAMC,CAAAA,CAAiC,CAAE,GAAA,CAAAX,CAAAA,CAAK,cAAA,CAAgBQ,CAAY,CAAA,CAM1E,GAJI9B,CAAAA,CAAK,QAAA,GACPiC,EAAO,qBAAqB,CAAA,CAAInB,CAAAA,CAAwBd,CAAAA,CAAK,QAAQ,CAAA,CAAA,CAGnEA,CAAAA,CAAK,QAAA,CACP,IAAA,GAAW,CAACkC,CAAAA,CAAGC,CAAC,CAAA,GAAK,OAAO,OAAA,CAAQnC,CAAAA,CAAK,QAAQ,CAAA,CAC/CiC,EAAO,CAAA,WAAA,EAAcC,CAAC,CAAA,CAAE,CAAA,CAAIC,EAUhC,IAAMC,CAAAA,CAAWL,CAAAA,EAAY,CAAA,CACvBM,EAAWN,CAAAA,EAAYH,CAAAA,CAAO,WAAA,EAAeF,CAAAA,CAE7C,CAAE,GAAA,CAAAY,CAAAA,CAAK,MAAA,CAAQC,CAAa,EAAI,MAAMC,mBAAAA,CAAoBZ,CAAAA,CAAO,EAAA,CAAI,CACzE,MAAA,CAAQR,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,UAAA,CAAY,CAAC,CAAC,sBAAA,CAAwBe,EAAUC,CAAQ,CAAC,CAAA,CACzD,MAAA,CAAQJ,EACR,OAAA,CAASJ,CACX,CAAC,CAAA,CAED,aAAMD,CAAAA,CAAO,MAAA,EAAQ,WAAA,GAAc,CACjC,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,OAAAD,CAAAA,CACA,WAAA,CAAapB,CAAAA,CAAK,WAAA,CAClB,SAAUA,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAsB,CAAAA,CACA,IAAAgB,CAAAA,CACA,SAAA,CAAAT,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,OAAAT,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,GAAA,CAAAiB,EAAK,MAAA,CAAQC,CAAAA,CAAc,SAAA,CAAAV,CAAU,CAAC,CAC5E,CAAC,CACH,CCrHA,eAAsBY,CAAAA,CACpBC,EACAtB,CAAAA,CACAC,CAAAA,CACoC,CACpC,GAAI,CASF,OAAA,CARe,MAAMqB,CAAAA,CAAG,IAAA,CACtB,IAAIC,mBAAAA,CAAoB,CAAE,MAAA,CAAQvB,EAAQ,GAAA,CAAKC,CAAI,CAAC,CACtD,GACwB,MAAA,EAAQ,IAAA,CAC7BuB,CAAAA,EACCA,CAAAA,CAAE,SAAS,GAAA,GAAQ,iDAAA,GAClBA,CAAAA,CAAE,UAAA,GAAe,MAAA,EAAUA,CAAAA,CAAE,UAAA,GAAe,cAAA,CACjD,EACkB,aAAA,CAAgB,SACpC,CAAA,KAAQ,CACN,OAAO,SACT,CACF,CCXO,SAASC,EAAqBjB,CAAAA,CAAyB,CAC5D,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,EAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,KACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASpB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,cAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,QAAQ,KAAA,CAAO,CACtD,OAAA,CAAA7B,CAAAA,CACA,IAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,EAExB,IAAMc,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,GAAG,IAAA,CAC3B,IAAImB,iBAAAA,CAAkB,CAAE,OAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CAEMC,CAAAA,CAAM,MAAMmB,EAAiBb,CAAAA,CAAO,EAAA,CAAIR,CAAAA,CAAQC,CAAG,EACnD2B,CAAAA,CAAY9B,CAAAA,CAAeU,CAAAA,CAAO,gBAAA,CAAkBR,EAAQC,CAAAA,CAAKC,CAAG,CAAA,CACpEP,CAAAA,CAAWQ,EAAcuB,CAAAA,CAAK,kBAAkB,CAAA,CAEhDlC,CAAAA,CAAU,CACd,OAAA,CAAAb,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,OAAAD,CAAAA,CACA,WAAA,CAAa0B,CAAAA,CAAK,WAAA,CAClB,cAAeA,CAAAA,CAAK,aAAA,EAAiB,CAAA,CACrC,IAAA,CAAMA,CAAAA,CAAK,IAAA,EAAM,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CACjC,QAAA,CAAUA,CAAAA,CAAK,QAAA,CACf,IAAAxB,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAA,CAEA,OAAA,MAAMpB,CAAAA,CAAO,MAAA,EAAQ,UAAA,GAAahB,CAAO,CAAA,CAElC,QAAA,CAAS,KAAK,CACnB,GAAA,CAAAS,CAAAA,CACA,MAAA,CAAAD,EACA,WAAA,CAAaR,CAAAA,CAAQ,WAAA,CACrB,aAAA,CAAeA,EAAQ,aAAA,CACvB,IAAA,CAAMA,CAAAA,CAAQ,IAAA,CACd,GAAA,CAAAU,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,UAAAiC,CACF,CAAC,CACH,CAAC,CACH,CC9DO,SAASC,CAAAA,CAAsBrB,CAAAA,CAAyB,CAC7D,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,GAAM,CAAE,YAAA,CAAAmD,CAAa,EAAI,IAAI,GAAA,CAAInD,CAAAA,CAAQ,GAAG,CAAA,CACtCsB,CAAAA,CAAM6B,CAAAA,CAAa,GAAA,CAAI,KAAK,CAAA,EAAG,IAAA,EAAK,CAC1C,GAAI,CAAC7B,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,iCAAkC,CAAA,CAC7C,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,GAAA,CAAI,QAAQ,GAAG,IAAA,EAAK,EAAKtB,CAAAA,CAAO,aAAA,CACtDC,EAAYxB,CAAAA,CAAmB6C,CAAAA,CAAa,GAAA,CAAI,WAAW,CAAC,CAAA,CAC5DnC,CAAAA,CAAWmC,CAAAA,CAAa,IAAI,UAAU,CAAA,EAAG,IAAA,EAAK,CAE9ClB,EAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,QAAA,EAAU,MAAO,CACxD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,EACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUL,CAAAA,EAAY,MACxB,CAAC,CAAA,CACD,GAAIiB,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAI,CACF,MAAMJ,EAAO,EAAA,CAAG,IAAA,CAAK,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,MAASb,EAAc,CACrB,IAAML,CAAAA,CAAQK,CAAAA,EAA2B,KACzC,GAAIL,CAAAA,GAAS,WAAA,EAAeA,CAAAA,GAAS,UAAA,CACnC,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,kBAAmB,CAAA,CAAG,CAAE,OAAQ,GAAI,CAAC,CAAA,CAEvE,MAAMK,CACR,CAEA,IAAM8B,CAAAA,CAAM,MAAMa,YAAAA,CAChBvB,CAAAA,CAAO,EAAA,CACP,IAAIwB,iBAAiB,CACnB,MAAA,CAAQhC,CAAAA,CACR,GAAA,CAAKC,EACL,0BAAA,CAA4BN,CAAAA,CACxBD,CAAAA,CAAwBC,CAAQ,EAChC,YACN,CAAC,CAAA,CACD,CAAE,UAAAc,CAAU,CACd,CAAA,CAEA,OAAA,MAAMD,EAAO,QAAA,EAAU,WAAA,GAAc,CACnC,OAAA,CAAA7B,EACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,SAAUL,CAAAA,EAAY,KAAA,CAAA,CACtB,GAAA,CAAAuB,CAAAA,CACA,SAAA,CAAAT,CACF,CAAC,CAAA,CAEM,SAAS,IAAA,CAAK,CAAE,MAAA,CAAAT,CAAAA,CAAQ,IAAAC,CAAAA,CAAK,GAAA,CAAAiB,CAAAA,CAAK,SAAA,CAAAT,CAAU,CAAC,CACtD,CAAC,CACH,CC9DO,SAASwB,CAAAA,CAAoBzB,EAAyB,CAC3D,OAAOtB,CAAAA,CAAmB,MAAOP,GAAqB,CACpD,GAAM,CAAE,YAAA,CAAAmD,CAAa,CAAA,CAAI,IAAI,GAAA,CAAInD,EAAQ,GAAG,CAAA,CACtCsB,CAAAA,CAAM6B,CAAAA,CAAa,IAAI,KAAK,CAAA,EAAG,IAAA,EAAK,CAC1C,GAAI,CAAC7B,CAAAA,CACH,OAAO,QAAA,CAAS,KACd,CAAE,OAAA,CAAS,iCAAkC,CAAA,CAC7C,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,GAAA,CAAI,QAAQ,GAAG,IAAA,EAAK,EAAKtB,CAAAA,CAAO,aAAA,CAEtDI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,QAAQ,KAAA,CAAO,CACtD,OAAA,CAAA7B,CAAAA,CACA,IAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,EACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAI,CACF,MAAMJ,CAAAA,CAAO,GAAG,IAAA,CAAK,IAAImB,iBAAAA,CAAkB,CAAE,OAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,KAAQ,CACN,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,kBAAmB,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACvE,CAEA,OAAA,MAAMO,CAAAA,CAAO,GAAG,IAAA,CAAK,IAAI0B,mBAAAA,CAAoB,CAAE,OAAQlC,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,CAAA,CAE1E,MAAMO,CAAAA,CAAO,MAAA,EAAQ,YAAY,CAAE,OAAA,CAAA7B,CAAAA,CAAS,GAAA,CAAAsB,EAAK,MAAA,CAAAD,CAAO,CAAC,CAAA,CAElD,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,GAAM,MAAA,CAAAA,CAAAA,CAAQ,GAAA,CAAAC,CAAI,CAAC,CACrD,CAAC,CACH,CCdO,SAASkC,CAAAA,CAA2B3B,CAAAA,CAAyB,CAClE,OAAOtB,EAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,EAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,EAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,EAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,IAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,SAAU,OAAOA,CAAAA,CAEpC,IAAMD,CAAAA,CAASpB,EAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,cACvCN,CAAAA,CAAMtB,CAAAA,CAAK,GAAA,GAAQ,aAAA,CAAgB,cAAgB,SAAA,CACnD+B,CAAAA,CACJ,OAAO/B,CAAAA,CAAK,QAAA,EAAa,QAAA,EAAYA,CAAAA,CAAK,QAAA,CAAW,EACjD,IAAA,CAAK,KAAA,CAAMA,CAAAA,CAAK,QAAQ,EACxB,KAAA,CAAA,CAEN,GACE+B,CAAAA,GAAa,KAAA,CAAA,EACbH,EAAO,WAAA,EACPG,CAAAA,CAAWH,CAAAA,CAAO,WAAA,CAElB,OAAO,QAAA,CAAS,IAAA,CACd,CACE,OAAA,CAAS,cAAcG,CAAQ,CAAA,4CAAA,EAA+CH,CAAAA,CAAO,WAAW,QAClG,CAAA,CACA,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,KAAA,CAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,OAAAD,CAAAA,CACA,QAAA,CAAAW,CACF,CAAC,EACD,GAAIC,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAM,CAAE,QAAA,CAAAwB,CAAS,CAAA,CAAI,MAAM5B,CAAAA,CAAO,EAAA,CAAG,IAAA,CACnC,IAAI6B,6BAA6B,CAC/B,MAAA,CAAQrC,CAAAA,CACR,GAAA,CAAKC,EACL,WAAA,CAAarB,CAAAA,CAAK,WAAA,CAClB,kBAAA,CAAoBA,CAAAA,CAAK,QAAA,CACrBc,CAAAA,CAAwBd,CAAAA,CAAK,QAAQ,CAAA,CACrC,KAAA,CAAA,CACJ,QAAA,CAAUA,CAAAA,CAAK,SACf,GAAA,CAAKsB,CACP,CAAC,CACH,EAEA,OAAA,MAAMM,CAAAA,CAAO,SAAA,EAAW,MAAA,GAAS,CAC/B,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,EACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAUoC,CAAAA,CACV,YAAaxD,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAA+B,CAAAA,CACA,SAAU/B,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAsB,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAF,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,SAAUmC,CAAS,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAC3E,CAAC,CACH,CCtEO,SAASE,EAA2B9B,CAAAA,CAAyB,CAClE,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,KACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,IAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,SAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW1D,EAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI2D,CAAAA,YAAoB,QAAA,CAAU,OAAOA,EAEzC,IAAMC,CAAAA,CAAa,MAAA,CAAO5D,CAAAA,CAAK,UAAU,CAAA,CACzC,GAAI,CAAC,MAAA,CAAO,UAAU4D,CAAU,CAAA,EAAKA,CAAAA,EAAc,CAAA,CACjD,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,uCAAwC,CAAA,CACnD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMxC,CAAAA,CAASpB,CAAAA,CAAK,QAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,aAAA,CACvCC,CAAAA,CAAYxB,CAAAA,CAAmBL,CAAAA,CAAK,SAAS,EAE7CgC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,WAAW,KAAA,CAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,IAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,EAExB,IAAM6B,CAAAA,CAAe,MAAMV,YAAAA,CACzBvB,EAAO,EAAA,CACP,IAAIkC,iBAAAA,CAAkB,CACpB,OAAQ1C,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CAAAA,CACV,UAAA,CAAYC,CACd,CAAC,EACD,CAAE,SAAA,CAAA/B,CAAU,CACd,EAEA,OAAO,QAAA,CAAS,IAAA,CAAK,CACnB,aAAAgC,CAAAA,CACA,UAAA,CAAAD,CAAAA,CACA,QAAA,CAAAD,EACA,MAAA,CAAAvC,CAAAA,CACA,SAAA,CAAAS,CACF,CAAC,CACH,CAAC,CACH,CC7CO,SAASkC,CAAAA,CAA+BnC,CAAAA,CAAyB,CACtE,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW1D,EAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI2D,CAAAA,YAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMK,CAAAA,CAAAA,CAAS,KAAA,CAAM,OAAA,CAAQhE,CAAAA,CAAK,KAAK,CAAA,CAAIA,CAAAA,CAAK,KAAA,CAAQ,IACrD,GAAA,CAAI,CAAC,CAAE,UAAA,CAAA4D,EAAY,IAAA,CAAAK,CAAK,CAAA,IAAO,CAC9B,WAAY,MAAA,CAAOL,CAAU,CAAA,CAC7B,IAAA,CAAM,MAAA,CAAOK,CAAI,CACnB,CAAA,CAAE,EACD,MAAA,CAAQC,CAAAA,EAAM,MAAA,CAAO,SAAA,CAAUA,EAAE,UAAU,CAAA,EAAKA,CAAAA,CAAE,IAAI,EACtD,IAAA,CAAK,CAACC,CAAAA,CAAGC,CAAAA,GAAMD,CAAAA,CAAE,UAAA,CAAaC,CAAAA,CAAE,UAAU,EAE7C,GAAI,CAACJ,CAAAA,CAAM,MAAA,CACT,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,qCAAsC,CAAA,CACjD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAM5C,CAAAA,CAASpB,EAAK,MAAA,EAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,cAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,WAAW,KAAA,CAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,IAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,EACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CACd,IAAIyC,+BAA+B,CACjC,MAAA,CAAQjD,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CAAAA,CACV,eAAA,CAAiB,CAAE,KAAA,CAAOK,CAAM,CAClC,CAAC,CACH,CAAA,CAKA,IAAMlB,CAAAA,CAAO,MAAMlB,EAAO,EAAA,CAAG,IAAA,CAC3B,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CACMiD,CAAAA,CAAgBxB,EAAK,aAAA,EAAiB,CAAA,CACtChB,CAAAA,CAAcgB,CAAAA,CAAK,YACnBmB,CAAAA,CAAOnB,CAAAA,CAAK,IAAA,EAAM,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CAElCxB,CAAAA,CAAM,MAAMmB,CAAAA,CAAiBb,CAAAA,CAAO,EAAA,CAAIR,CAAAA,CAAQC,CAAG,CAAA,CACnD2B,CAAAA,CAAY9B,CAAAA,CAAeU,CAAAA,CAAO,iBAAkBR,CAAAA,CAAQC,CAAAA,CAAKC,CAAG,CAAA,CACpEP,EAAWQ,CAAAA,CAAcuB,CAAAA,CAAK,kBAAkB,CAAA,CAEtD,OAAIlB,CAAAA,CAAO,WAAA,EAAe0C,CAAAA,CAAgB1C,CAAAA,CAAO,aAG/C,MAAMA,CAAAA,CAAO,EAAA,CACV,IAAA,CAAK,IAAI0B,mBAAAA,CAAoB,CAAE,MAAA,CAAQlC,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1D,KAAA,CAAM,IAAM,CAAC,CAAC,EACV,QAAA,CAAS,IAAA,CACd,CACE,OAAA,CAAS,cAAciD,CAAa,CAAA,4CAAA,EAA+C1C,CAAAA,CAAO,WAAW,CAAA,MAAA,CACvG,CAAA,CACA,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,GAGF,MAAMA,CAAAA,CAAO,WAAW,UAAA,GAAa,CACnC,OAAA,CAAA7B,CAAAA,CACA,IAAAsB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAuC,CAAAA,CACA,aAAA,CAAAW,CAAAA,CACA,WAAA,CAAAxC,EACA,IAAA,CAAAmC,CAAAA,CACA,GAAA,CAAA3C,CAAAA,CACA,SAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAC,EAEM,QAAA,CAAS,IAAA,CAAK,CACnB,MAAA,CAAA5B,EACA,GAAA,CAAAC,CAAAA,CACA,QAAA,CAAAsC,CAAAA,CACA,cAAAW,CAAAA,CACA,WAAA,CAAAxC,CAAAA,CACA,IAAA,CAAAmC,EACA,GAAA,CAAA3C,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,UAAAiC,CACF,CAAC,CAAA,CACH,CAAC,CACH,CClHO,SAASuB,CAAAA,CAA4B3C,CAAAA,CAAyB,CACnE,OAAOtB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMqB,CAAAA,CAAMpB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIqB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW1D,CAAAA,CAAcD,CAAAA,CAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI2D,CAAAA,YAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMvC,CAAAA,CAASpB,CAAAA,CAAK,QAAQ,IAAA,EAAK,EAAK4B,CAAAA,CAAO,aAAA,CAEvCI,EAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,MAAO,CACzD,OAAA,CAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,EACD,OAAIY,CAAAA,GAEJ,MAAMJ,CAAAA,CAAO,GAAG,IAAA,CACd,IAAI4C,2BAAAA,CAA4B,CAC9B,OAAQpD,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CACZ,CAAC,CACH,CAAA,CAEA,MAAM/B,CAAAA,CAAO,SAAA,EAAW,OAAA,GAAU,CAChC,QAAA7B,CAAAA,CACA,GAAA,CAAAsB,CAAAA,CACA,MAAA,CAAAD,EACA,QAAA,CAAAuC,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAvC,EAAQ,GAAA,CAAAC,CAAAA,CAAK,QAAA,CAAAsC,CAAAA,CAAU,QAAS,CAAA,CAAK,CAAC,CAAA,CAC/D,CAAC,CACH,CC/CO,SAASc,CAAAA,CAAe7C,CAAAA,CAAqC,CAClE,OAAO,CACL,OAAA,CAAS,CACP,OAAQD,CAAAA,CAAoBC,CAAM,CAAA,CAClC,OAAA,CAASiB,EAAqBjB,CAAM,CAAA,CACpC,QAAA,CAAUqB,CAAAA,CAAsBrB,CAAM,CACxC,CAAA,CACA,SAAA,CAAW,CACT,IAAA,CAAM2B,CAAAA,CAA2B3B,CAAM,CAAA,CACvC,KAAM8B,CAAAA,CAA2B9B,CAAM,CAAA,CACvC,QAAA,CAAUmC,EAA+BnC,CAAM,CAAA,CAC/C,KAAA,CAAO2C,CAAAA,CAA4B3C,CAAM,CAC3C,CAAA,CACA,MAAA,CAAQyB,CAAAA,CAAoBzB,CAAM,CACpC,CACF,CCrBA,IAAM8C,CAAAA,CAAW,IAAM,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,WAAY,CAAA,CAAG,CAAE,OAAQ,GAAI,CAAC,CAAA,CAEvE,SAASC,CAAAA,CAAa/C,CAAAA,CAA8B,CACzD,IAAMgD,EAAWH,CAAAA,CAAe7C,CAAM,CAAA,CAChCiD,CAAAA,CAAOjD,EAAO,QAAA,CAAS,OAAA,CAAQ,KAAA,CAAO,EAAE,EAE9C,OAAO,MAAO7B,CAAAA,EAAwC,CAEpD,IAAMiC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,MAAO,CAAE,OAAA,CAAA7B,CAAQ,CAAC,EAC3D,GAAIiC,CAAAA,CAAa,OAAOA,CAAAA,CAGxB,IAAM8C,CAAAA,CADM,IAAI,GAAA,CAAI/E,CAAAA,CAAQ,GAAG,CAAA,CACX,QAAA,CAAS,KAAA,CAAM8E,EAAK,MAAM,CAAA,CAAE,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAA,CAC3DE,CAAAA,CAAShF,CAAAA,CAAQ,MAAA,CAEvB,OAAIgF,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,gBAAA,CAC5BlD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAClBgD,CAAAA,CAAS,QAAQ,MAAA,CAAO7E,CAAO,CAAA,CAC/B2E,CAAAA,GACFK,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,wBAAA,CAC5BlD,EAAO,MAAA,EAAQ,OAAA,CAClBgD,CAAAA,CAAS,OAAA,CAAQ,OAAA,CAAQ7E,CAAO,CAAA,CAChC2E,CAAAA,GACFK,CAAAA,GAAW,KAAA,EAASD,CAAAA,GAAY,kBAAA,CAC3BlD,EAAO,QAAA,EAAU,OAAA,CACpBgD,CAAAA,CAAS,OAAA,CAAQ,SAAS7E,CAAO,CAAA,CACjC2E,CAAAA,EAAS,CACXK,IAAW,QAAA,EAAYD,CAAAA,GAAY,QAAA,CAC9BlD,CAAAA,CAAO,QAAQ,OAAA,CAAUgD,CAAAA,CAAS,MAAA,CAAO7E,CAAO,EAAI2E,CAAAA,EAAS,CAClEK,CAAAA,GAAW,MAAA,EAAUD,IAAY,wBAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,CAAAA,CAAS,SAAA,CAAU,IAAA,CAAK7E,CAAO,EAC/B2E,CAAAA,EAAS,CACXK,CAAAA,GAAW,MAAA,EAAUD,IAAY,wBAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,EAAS,SAAA,CAAU,IAAA,CAAK7E,CAAO,CAAA,CAC/B2E,CAAAA,EAAS,CACXK,CAAAA,GAAW,MAAA,EAAUD,IAAY,4BAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,EAAS,SAAA,CAAU,QAAA,CAAS7E,CAAO,CAAA,CACnC2E,GAAS,CACXK,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,yBAAA,CAC5BlD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBgD,EAAS,SAAA,CAAU,KAAA,CAAM7E,CAAO,CAAA,CAChC2E,GAAS,CAER,QAAA,CAAS,IAAA,CAAK,CAAE,QAAS,WAAY,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAChE,CACF,CCyDO,SAASM,CAAAA,CAAYC,CAAAA,CAAW,SAAA,CAAkB,CACvD,IAAMJ,CAAAA,CAAOI,CAAAA,CAAS,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAA,CAEjCC,CAAAA,CAAO,MAAU5C,CAAAA,CAAa6C,CAAAA,GAAmC,CACrE,IAAMC,CAAAA,CAAM,MAAM,KAAA,CAAM9C,CAAAA,CAAK6C,CAAI,CAAA,CACjC,GAAI,CAACC,CAAAA,CAAI,EAAA,CAAI,CACX,IAAMpF,CAAAA,CAAO,MAAMoF,CAAAA,CAAI,IAAA,EAAK,CAAE,KAAA,CAAM,KAAO,GAAG,CAAA,CAC9C,MAAM,IAAI,KAAA,CAAOpF,EAA8B,OAAA,EAAWoF,CAAAA,CAAI,UAAU,CAC1E,CACA,OAAOA,CAAAA,CAAI,IAAA,EACb,CAAA,CAEMC,CAAAA,CAAO,CAAI/C,CAAAA,CAAatC,IAC5BkF,CAAAA,CAAQ5C,CAAAA,CAAK,CACX,MAAA,CAAQ,OACR,OAAA,CAAS,CAAE,cAAA,CAAgB,kBAAmB,EAC9C,IAAA,CAAM,IAAA,CAAK,SAAA,CAAUtC,CAAI,CAC3B,CAAC,CAAA,CAEH,OAAO,CACL,OAAOsF,CAAAA,CAAS,CACd,OAAOD,CAAAA,CAA4B,GAAGR,CAAI,CAAA,eAAA,CAAA,CAAmBS,CAAO,CACtE,EAEA,OAAA,CAAQA,CAAAA,CAAS,CACf,OAAOD,CAAAA,CACL,CAAA,EAAGR,CAAI,CAAA,uBAAA,CAAA,CACPS,CACF,CACF,CAAA,CAEA,QAAA,CAASjE,CAAAA,CAAKkE,EAAU,CACtB,IAAMC,CAAAA,CAAS,IAAI,gBAAgB,CAAE,GAAA,CAAAnE,CAAI,CAAC,CAAA,CAC1C,GAAIkE,CAAAA,EAAS,QAAA,CAAU,CACrB,IAAME,CAAAA,CAAOF,CAAAA,CAAQ,QAAA,CAAS,QAAQ,YAAA,CAAc,GAAG,CAAA,CACvDC,CAAAA,CAAO,IAAI,UAAA,CAAYC,CAAI,EAC7B,CACA,OAAIF,CAAAA,EAAS,MAAA,EAAQC,CAAAA,CAAO,IAAI,QAAA,CAAUD,CAAAA,CAAQ,MAAM,CAAA,CACjDL,EAAsB,CAAA,EAAGL,CAAI,CAAA,kBAAA,EAAqBW,CAAM,EAAE,CACnE,CAAA,CAEA,MAAA,CAAOnE,CAAAA,CAAKkE,EAAU,CACpB,IAAMC,CAAAA,CAAS,IAAI,gBAAgB,CAAE,GAAA,CAAAnE,CAAI,CAAC,EAC1C,OAAIkE,CAAAA,EAAS,MAAA,EAAQC,CAAAA,CAAO,IAAI,QAAA,CAAUD,CAAAA,CAAQ,MAAM,CAAA,CACjDL,CAAAA,CACL,CAAA,EAAGL,CAAI,CAAA,QAAA,EAAWW,CAAM,CAAA,CAAA,CACxB,CAAE,MAAA,CAAQ,QAAS,CACrB,CACF,CAAA,CAEA,SAAA,CAAW,CACT,KAAKF,CAAAA,CAAS,CACZ,OAAOD,CAAAA,CACL,CAAA,EAAGR,CAAI,CAAA,uBAAA,CAAA,CACPS,CACF,CACF,CAAA,CAEA,QAAA,CAASA,CAAAA,CAAS,CAChB,OAAOD,CAAAA,CACL,CAAA,EAAGR,CAAI,CAAA,uBAAA,CAAA,CACPS,CACF,CACF,CAAA,CAEA,QAAA,CAASA,CAAAA,CAAS,CAChB,OAAOD,CAAAA,CAOJ,CAAA,EAAGR,CAAI,CAAA,2BAAA,CAAA,CAA+BS,CAAO,CAClD,CAAA,CAEA,MAAMA,CAAAA,CAAS,CACb,OAAOD,CAAAA,CACL,GAAGR,CAAI,CAAA,wBAAA,CAAA,CACPS,CACF,CACF,CACF,CACF,CACF,CCjMO,SAASI,GACdC,CAAAA,CACAJ,CAAAA,CACe,CACf,GAAIA,EAAQ,MAAA,EAAQ,MAAA,EAad,CAZYA,CAAAA,CAAQ,OAAO,IAAA,CAAMK,CAAAA,EAE/BA,CAAAA,CAAK,UAAA,CAAW,GAAG,CAAA,CACdD,CAAAA,CAAK,IAAA,CAAK,aAAY,CAAE,QAAA,CAASC,CAAAA,CAAK,WAAA,EAAa,CAAA,CAGxDA,CAAAA,CAAK,QAAA,CAAS,IAAI,EACbD,CAAAA,CAAK,IAAA,CAAK,UAAA,CAAWC,CAAAA,CAAK,QAAQ,IAAA,CAAM,GAAG,CAAC,CAAA,CAG9CD,EAAK,IAAA,GAASC,CACtB,CAAA,CACa,CACZ,IAAMC,CAAAA,CAAMF,CAAAA,CAAK,IAAA,CAAK,QAAA,CAAS,GAAG,CAAA,CAAIA,CAAAA,CAAK,IAAA,CAAK,KAAA,CAAM,GAAG,CAAA,CAAE,GAAA,EAAI,CAAI,KACnE,OAAO,CAAA,WAAA,EAAcE,CAAAA,CAAM,CAAA,CAAA,EAAIA,CAAG,CAAA,CAAA,CAAKF,CAAAA,CAAK,IAAA,EAAQ,SAAS,kBAC/D,CAGF,OAAIA,CAAAA,CAAK,IAAA,GAAS,EACT,eAAA,CAGLJ,CAAAA,CAAQ,WAAA,EAAeI,CAAAA,CAAK,KAAOJ,CAAAA,CAAQ,WAAA,CAEtC,CAAA,kBAAA,EAAA,CADQA,CAAAA,CAAQ,YAAe,OAAA,EAAc,OAAA,CAAQ,CAAC,CAC5B,YAG5B,IACT","file":"index.js","sourcesContent":["export async function parseBody<T extends Record<string, unknown>>(\n request: Request,\n): Promise<T \| null> {\n try {\n const body = await request.json();\n return body && typeof body === \"object\" ? (body as T) : null;\n } catch {\n return null;\n }\n}\n\nexport function requireString(value: unknown, name: string): string \| Response {\n const trimmed = typeof value === \"string\" ? value.trim() : \"\";\n if (!trimmed) {\n return Response.json({ message: `${name} is required` }, { status: 400 });\n }\n return trimmed;\n}\n\nexport function normalizeExpiresIn(value: unknown): number {\n const n = Number(value);\n return Number.isFinite(n) && n > 0 ? Math.floor(n) : 600;\n}\n\nexport function withS3ErrorHandler(\n handler: (request: Request) => Promise<Response>,\n) {\n return async (request: Request) => {\n try {\n return await handler(request);\n } catch (err) {\n const message =\n err instanceof Error ? err.message : \"Internal server error\";\n console.error(\"[S3 API]\", message);\n return Response.json({ message }, { status: 500 });\n }\n };\n}\n\n/*\n Run a server hook. Returns a Response if the hook rejects (throws),\n * or `null` if the hook passes (or is undefined).\n /\nexport async function runHook<T>(\n hook: ((context: T) => Promise<void> \| void) \| undefined,\n context: T,\n): Promise<Response \| null> {\n if (!hook) return null;\n try {\n await hook(context);\n return null;\n } catch (err) {\n const message = err instanceof Error ? err.message : \"Forbidden\";\n const status =\n typeof (err as Record<string, unknown>)?.status === \"number\"\n ? ((err as Record<string, unknown>).status as number)\n : 403;\n return Response.json({ message }, { status });\n }\n}\n","/\n Builds a RFC 6266 `Content-Disposition` value for a file attachment.\n \n Includes both the ASCII-safe `filename` fallback and the RFC 5987\n * `filename` parameter for full Unicode support, so the original file\n name (including non-ASCII characters) is preserved across all browsers\n * and HTTP clients.\n \n @example\n * buildContentDisposition(\"résumé finale.pdf\")\n * // → 'attachment; filename=\"resume finale.pdf\"; filename=UTF-8\\'\\'r%C3%A9sum%C3%A9%20finale.pdf'\n /\nexport function buildContentDisposition(fileName: string): string {\n const ascii = fileName.replace(/[^\\x20-\\x7E]/g, \"_\").replace(/[\"\\\\]/g, \"_\");\n const encoded = encodeURIComponent(fileName);\n return `attachment; filename=\"${ascii}\"; filename=UTF-8''${encoded}`;\n}\n","/\n Builds the public URL for an S3 object.\n \n Returns `undefined` when:\n * - the object is `\"private\"`, or\n * - `publicUrlBase` is not provided.\n \n @param publicUrlBase - A function that returns the base URL for a given bucket.\n * Matches the `publicUrlBase` field of `S3HandlerConfig`.\n /\nexport function buildPublicUrl(\n publicUrlBase: ((bucket: string) => string) \| undefined,\n bucket: string,\n key: string,\n acl: \"public-read\" \| \"private\",\n): string \| undefined {\n if (acl !== \"public-read\" \|\| !publicUrlBase) return undefined;\n const base = publicUrlBase(bucket).replace(/\\/$/, \"\");\n return `${base}/${key}`;\n}\n","/\n Parses the display file name from a `Content-Disposition` header value.\n \n Prefers the RFC 5987 `filename=UTF-8''…` encoding (full Unicode) over\n the plain ASCII `filename=\"…\"` fallback.\n \n Returns `undefined` when no filename can be extracted.\n /\nexport function parseFileName(\n contentDisposition: string \| undefined,\n): string \| undefined {\n if (!contentDisposition) return undefined;\n\n const utf8Match = contentDisposition.match(/filename\\=UTF-8''([^;\\s]+)/i);\n if (utf8Match) {\n try {\n return decodeURIComponent(utf8Match[1]);\n } catch {\n /* ignore malformed encoding /\n }\n }\n\n const asciiMatch = contentDisposition.match(/filename=\"([^\"])\"/i);\n return asciiMatch?.[1];\n}\n","import { createPresignedPost } from \"@aws-sdk/s3-presigned-post\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\n// 5 GiB — S3 single-object upload limit\nconst MAX_UPLOAD_SIZE = 5 * 1024 * 1024 * 1024;\n\ntype Payload = {\n key: string;\n contentType?: string;\n /*\n Exact byte size of the file the client intends to upload.\n * When provided the presigned POST policy locks `content-length-range` to\n * `[fileSize, fileSize]`, so S3 rejects any upload that is not exactly this\n * size — even if the client tampers with the payload.\n * When omitted the range is `[1, maxFileSize ?? 5 GiB]`.\n /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n expiresIn?: number;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createUploadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const contentType = body.contentType?.trim() \|\| \"application/octet-stream\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : null;\n\n if (\n fileSize !== null &&\n config.maxFileSize &&\n fileSize > config.maxFileSize\n ) {\n return Response.json(\n {\n message: `File size (${fileSize} bytes) exceeds the maximum allowed size of ${config.maxFileSize} bytes`,\n },\n { status: 413 },\n );\n }\n\n const guardResult = await runHook(config.upload?.guard, {\n request,\n key,\n bucket,\n contentType: body.contentType,\n fileSize: fileSize ?? undefined,\n metadata: body.metadata,\n acl,\n });\n if (guardResult) return guardResult;\n\n // Build presigned POST fields. Fields are embedded in the signed policy\n // so the client cannot change them without invalidating the signature.\n // Note: the `acl` field is the correct presigned POST field per AWS spec.\n // Some S3-compatible providers ignore it; PutObjectAcl is called in the\n // confirm step as a reliable post-upload fallback.\n const fields: Record<string, string> = { acl, \"Content-Type\": contentType };\n\n if (body.fileName) {\n fields[\"Content-Disposition\"] = buildContentDisposition(body.fileName);\n }\n\n if (body.metadata) {\n for (const [k, v] of Object.entries(body.metadata)) {\n fields[`x-amz-meta-${k}`] = v;\n }\n }\n\n // `content-length-range` is enforced by S3 at the storage layer —\n // uploads outside this range are rejected before the object is stored.\n //\n // When the client declares fileSize: S3 locks the range to exactly that\n // number of bytes, so uploading a different-sized file is impossible.\n // When fileSize is not declared: falls back to [1, maxFileSize ?? 5 GiB].\n const rangeMin = fileSize ?? 1;\n const rangeMax = fileSize ?? config.maxFileSize ?? MAX_UPLOAD_SIZE;\n\n const { url, fields: signedFields } = await createPresignedPost(config.s3, {\n Bucket: bucket,\n Key: key,\n Conditions: [[\"content-length-range\", rangeMin, rangeMax]],\n Fields: fields,\n Expires: expiresIn,\n });\n\n await config.upload?.onPresigned?.({\n request,\n key,\n bucket,\n contentType: body.contentType,\n metadata: body.metadata,\n acl,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, fields: signedFields, expiresIn });\n });\n}\n","import { GetObjectAclCommand, type S3Client } from \"@aws-sdk/client-s3\";\n\n/\n Determines the ACL of an S3 object by querying `GetObjectAcl`.\n \n Returns `\"public-read\"` when the `AllUsers` grantee has `READ` or\n * `FULL_CONTROL` permission; falls back to `\"private\"` when the provider\n * does not support the operation (e.g. Cloudflare R2).\n /\nexport async function resolveObjectAcl(\n s3: S3Client,\n bucket: string,\n key: string,\n): Promise<\"public-read\" \| \"private\"> {\n try {\n const result = await s3.send(\n new GetObjectAclCommand({ Bucket: bucket, Key: key }),\n );\n const isPublic = result.Grants?.some(\n (g) =>\n g.Grantee?.URI === \"http://acs.amazonaws.com/groups/global/AllUsers\" &&\n (g.Permission === \"READ\" \|\| g.Permission === \"FULL_CONTROL\"),\n );\n return isPublic ? \"public-read\" : \"private\";\n } catch {\n return \"private\";\n }\n}\n","import { HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n};\n\nexport function createConfirmHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.upload?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n const context = {\n request,\n key,\n bucket,\n contentType: head.ContentType,\n contentLength: head.ContentLength ?? 0,\n eTag: head.ETag?.replace(/\"/g, \"\"),\n metadata: head.Metadata,\n acl,\n fileName,\n publicUrl,\n };\n\n await config.upload?.onUploaded?.(context);\n\n return Response.json({\n key,\n bucket,\n contentType: context.contentType,\n contentLength: context.contentLength,\n eTag: context.eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { GetObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\nexport function createDownloadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(searchParams.get(\"expiresIn\"));\n const fileName = searchParams.get(\"fileName\")?.trim();\n\n const guardResult = await runHook(config.download?.guard, {\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch (err: unknown) {\n const name = (err as { name?: string })?.name;\n if (name === \"NoSuchKey\" \|\| name === \"NotFound\") {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n throw err;\n }\n\n const url = await getSignedUrl(\n config.s3,\n new GetObjectCommand({\n Bucket: bucket,\n Key: key,\n ResponseContentDisposition: fileName\n ? buildContentDisposition(fileName)\n : \"attachment\",\n }),\n { expiresIn },\n );\n\n await config.download?.onPresigned?.({\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, expiresIn });\n });\n}\n","import { DeleteObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../types\";\nimport { runHook, withS3ErrorHandler } from \"../internal-helpers\";\n\nexport function createDeleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.delete?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n\n await config.s3.send(new DeleteObjectCommand({ Bucket: bucket, Key: key }));\n\n await config.delete?.onDeleted?.({ request, key, bucket });\n\n return Response.json({ success: true, bucket, key });\n });\n}\n","import { CreateMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n contentType?: string;\n /* Declared total byte size of the file being uploaded. /\n fileSize?: number;\n metadata?: Record<string, string>;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createMultipartInitHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : undefined;\n\n if (\n fileSize !== undefined &&\n config.maxFileSize &&\n fileSize > config.maxFileSize\n ) {\n return Response.json(\n {\n message: `File size (${fileSize} bytes) exceeds the maximum allowed size of ${config.maxFileSize} bytes`,\n },\n { status: 413 },\n );\n }\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n fileSize,\n });\n if (guardResult) return guardResult;\n\n const { UploadId } = await config.s3.send(\n new CreateMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n ContentType: body.contentType,\n ContentDisposition: body.fileName\n ? buildContentDisposition(body.fileName)\n : undefined,\n Metadata: body.metadata,\n ACL: acl,\n }),\n );\n\n await config.multipart?.onInit?.({\n request,\n key,\n bucket,\n uploadId: UploadId!,\n contentType: body.contentType,\n fileSize,\n metadata: body.metadata,\n acl,\n });\n\n return Response.json({ bucket, key, uploadId: UploadId }, { status: 201 });\n });\n}\n","import { UploadPartCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n partNumber: number;\n bucket?: string;\n expiresIn?: number;\n};\n\nexport function createMultipartPartHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const partNumber = Number(body.partNumber);\n if (!Number.isInteger(partNumber) \|\| partNumber <= 0) {\n return Response.json(\n { message: \"partNumber must be a positive integer\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const presignedUrl = await getSignedUrl(\n config.s3,\n new UploadPartCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n PartNumber: partNumber,\n }),\n { expiresIn },\n );\n\n return Response.json({\n presignedUrl,\n partNumber,\n uploadId,\n bucket,\n expiresIn,\n });\n });\n}\n","import {\n CompleteMultipartUploadCommand,\n HeadObjectCommand,\n DeleteObjectCommand,\n} from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype PartEntry = {\n partNumber: number;\n eTag: string;\n};\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n parts: PartEntry[];\n};\n\nexport function createMultipartCompleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const parts = (Array.isArray(body.parts) ? body.parts : [])\n .map(({ partNumber, eTag }) => ({\n PartNumber: Number(partNumber),\n ETag: String(eTag),\n }))\n .filter((p) => Number.isInteger(p.PartNumber) && p.ETag)\n .sort((a, b) => a.PartNumber - b.PartNumber);\n\n if (!parts.length) {\n return Response.json(\n { message: \"At least one valid part is required\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n await config.s3.send(\n new CompleteMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n MultipartUpload: { Parts: parts },\n }),\n );\n\n // Verify the actual uploaded object metadata via HeadObject.\n // This is the server's only opportunity to enforce maxFileSize for\n // multipart uploads, since individual parts bypass size checks.\n const head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n const contentLength = head.ContentLength ?? 0;\n const contentType = head.ContentType;\n const eTag = head.ETag?.replace(/\"/g, \"\");\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n if (config.maxFileSize && contentLength > config.maxFileSize) {\n // Delete the object and reject the request. The client has uploaded\n // more data than the server policy allows.\n await config.s3\n .send(new DeleteObjectCommand({ Bucket: bucket, Key: key }))\n .catch(() => {});\n return Response.json(\n {\n message: `File size (${contentLength} bytes) exceeds the maximum allowed size of ${config.maxFileSize} bytes`,\n },\n { status: 422 },\n );\n }\n\n await config.multipart?.onComplete?.({\n request,\n key,\n bucket,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n\n return Response.json({\n bucket,\n key,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { AbortMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n};\n\nexport function createMultipartAbortHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.guard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n await config.s3.send(\n new AbortMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n }),\n );\n\n await config.multipart?.onAbort?.({\n request,\n key,\n bucket,\n uploadId,\n });\n\n return Response.json({ bucket, key, uploadId, aborted: true });\n });\n}\n","import type { S3HandlerConfig, S3Handlers } from \"./types\";\nimport { createUploadHandler } from \"./handlers/presign/upload\";\nimport { createConfirmHandler } from \"./handlers/presign/confirm\";\nimport { createDownloadHandler } from \"./handlers/presign/download\";\nimport { createDeleteHandler } from \"./handlers/delete\";\nimport { createMultipartInitHandler } from \"./handlers/multipart/init\";\nimport { createMultipartPartHandler } from \"./handlers/multipart/part\";\nimport { createMultipartCompleteHandler } from \"./handlers/multipart/complete\";\nimport { createMultipartAbortHandler } from \"./handlers/multipart/abort\";\n\nexport function createHandlers(config: S3HandlerConfig): S3Handlers {\n return {\n presign: {\n upload: createUploadHandler(config),\n confirm: createConfirmHandler(config),\n download: createDownloadHandler(config),\n },\n multipart: {\n init: createMultipartInitHandler(config),\n part: createMultipartPartHandler(config),\n complete: createMultipartCompleteHandler(config),\n abort: createMultipartAbortHandler(config),\n },\n delete: createDeleteHandler(config),\n };\n}\n","import type { S3RouteHandlerConfig } from \"./types\";\nimport { createHandlers } from \"./create-handlers\";\nimport { runHook } from \"./internal-helpers\";\n\nconst disabled = () => Response.json({ message: \"Not Found\" }, { status: 404 });\n\nexport function createRouter(config: S3RouteHandlerConfig) {\n const handlers = createHandlers(config);\n const base = config.basePath.replace(/\\/$/, \"\");\n\n return async (request: Request): Promise<Response> => {\n // Global guard — runs before every request\n const guardResult = await runHook(config.guard, { request });\n if (guardResult) return guardResult;\n\n const url = new URL(request.url);\n const subpath = url.pathname.slice(base.length).replace(/^\\//, \"\");\n const method = request.method;\n\n if (method === \"POST\" && subpath === \"presign/upload\")\n return config.upload?.enabled\n ? handlers.presign.upload(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/upload/confirm\")\n return config.upload?.enabled\n ? handlers.presign.confirm(request)\n : disabled();\n if (method === \"GET\" && subpath === \"presign/download\")\n return config.download?.enabled\n ? handlers.presign.download(request)\n : disabled();\n if (method === \"DELETE\" && subpath === \"delete\")\n return config.delete?.enabled ? handlers.delete(request) : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/init\")\n return config.multipart?.enabled\n ? handlers.multipart.init(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/part\")\n return config.multipart?.enabled\n ? handlers.multipart.part(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/complete\")\n return config.multipart?.enabled\n ? handlers.multipart.complete(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/abort\")\n return config.multipart?.enabled\n ? handlers.multipart.abort(request)\n : disabled();\n\n return Response.json({ message: \"Not Found\" }, { status: 404 });\n };\n}\n","export type PresignResponse = {\n key: string;\n bucket: string;\n url: string;\n expiresIn: number;\n};\n\nexport type PresignedPostResponse = {\n key: string;\n bucket: string;\n url: string;\n fields: Record<string, string>;\n expiresIn: number;\n};\n\nexport type MultipartInitResponse = {\n key: string;\n bucket: string;\n uploadId: string;\n};\n\nexport type MultipartPartResponse = {\n presignedUrl: string;\n partNumber: number;\n uploadId: string;\n bucket: string;\n expiresIn: number;\n};\n\nexport type UploadConfirmResponse = {\n key: string;\n bucket: string;\n contentType?: string;\n contentLength: number;\n eTag?: string;\n acl: \"private\" \| \"public-read\";\n /* Display file name parsed from the object's Content-Disposition header. /\n fileName?: string;\n /* Public URL of the object. Only present when `acl` is `public-read` and `publicUrlBase` is configured on the server. /\n publicUrl?: string;\n};\n\nexport type S3Api = {\n upload: (payload: {\n key: string;\n contentType?: string;\n /\n Exact byte size of the file. When provided the presigned POST policy\n * locks `content-length-range` to `[fileSize, fileSize]` so S3 rejects\n * uploads of any other size at the storage layer.\n /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition` on the S3 object. /\n fileName?: string;\n }) => Promise<PresignedPostResponse>;\n confirm: (payload: {\n key: string;\n bucket?: string;\n }) => Promise<UploadConfirmResponse>;\n download: (\n key: string,\n options?: { fileName?: string; bucket?: string },\n ) => Promise<PresignResponse>;\n delete: (\n key: string,\n options?: { bucket?: string },\n ) => Promise<{ success: boolean; bucket: string; key: string }>;\n multipart: {\n init: (payload: {\n key: string;\n contentType?: string;\n /* Declared total byte size of the file. Used for quota/guard checks and stored in `onInit` context. /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition` on the S3 object. /\n fileName?: string;\n }) => Promise<MultipartInitResponse>;\n signPart: (payload: {\n key: string;\n uploadId: string;\n partNumber: number;\n bucket?: string;\n }) => Promise<MultipartPartResponse>;\n complete: (payload: {\n key: string;\n uploadId: string;\n parts: Array<{ partNumber: number; eTag: string }>;\n bucket?: string;\n }) => Promise<{\n key: string;\n bucket: string;\n uploadId: string;\n contentLength: number;\n contentType?: string;\n eTag?: string;\n }>;\n abort: (payload: {\n key: string;\n uploadId: string;\n bucket?: string;\n }) => Promise<{ aborted: boolean }>;\n };\n};\n\nexport function createS3Api(basePath = \"/api/s3\"): S3Api {\n const base = basePath.replace(/\\/$/, \"\");\n\n const json = async <T>(url: string, init?: RequestInit): Promise<T> => {\n const res = await fetch(url, init);\n if (!res.ok) {\n const body = await res.json().catch(() => ({}));\n throw new Error((body as { message?: string }).message ?? res.statusText);\n }\n return res.json() as Promise<T>;\n };\n\n const post = <T>(url: string, body: unknown): Promise<T> =>\n json<T>(url, {\n method: \"POST\",\n headers: { \"Content-Type\": \"application/json\" },\n body: JSON.stringify(body),\n });\n\n return {\n upload(payload) {\n return post<PresignedPostResponse>(`${base}/presign/upload`, payload);\n },\n\n confirm(payload) {\n return post<UploadConfirmResponse>(\n `${base}/presign/upload/confirm`,\n payload,\n );\n },\n\n download(key, options?) {\n const params = new URLSearchParams({ key });\n if (options?.fileName) {\n const safe = options.fileName.replace(/[\"\\\\\\r\\n]/g, \"_\");\n params.set(\"fileName\", safe);\n }\n if (options?.bucket) params.set(\"bucket\", options.bucket);\n return json<PresignResponse>(`${base}/presign/download?${params}`);\n },\n\n delete(key, options?) {\n const params = new URLSearchParams({ key });\n if (options?.bucket) params.set(\"bucket\", options.bucket);\n return json<{ success: boolean; bucket: string; key: string }>(\n `${base}/delete?${params}`,\n { method: \"DELETE\" },\n );\n },\n\n multipart: {\n init(payload) {\n return post<MultipartInitResponse>(\n `${base}/presign/multipart/init`,\n payload,\n );\n },\n\n signPart(payload) {\n return post<MultipartPartResponse>(\n `${base}/presign/multipart/part`,\n payload,\n );\n },\n\n complete(payload) {\n return post<{\n key: string;\n bucket: string;\n uploadId: string;\n contentLength: number;\n contentType?: string;\n eTag?: string;\n }>(`${base}/presign/multipart/complete`, payload);\n },\n\n abort(payload) {\n return post<{ aborted: boolean }>(\n `${base}/presign/multipart/abort`,\n payload,\n );\n },\n },\n };\n}\n","export function validateFile(\n file: File,\n options: { accept?: string[]; maxFileSize?: number },\n): string \| null {\n if (options.accept?.length) {\n const allowed = options.accept.some((type) => {\n // Extension check: \".pdf\", \".jpg\", etc.\n if (type.startsWith(\".\")) {\n return file.name.toLowerCase().endsWith(type.toLowerCase());\n }\n // Wildcard MIME: \"image/\"\n if (type.endsWith(\"/\")) {\n return file.type.startsWith(type.replace(\"/\", \"/\"));\n }\n // Exact MIME: \"application/pdf\"\n return file.type === type;\n });\n if (!allowed) {\n const ext = file.name.includes(\".\") ? file.name.split(\".\").pop() : null;\n return `File type \"${ext ? `.${ext}` : file.type \|\| \"unknown\"}\" is not allowed`;\n }\n }\n\n if (file.size === 0) {\n return \"File is empty\";\n }\n\n if (options.maxFileSize && file.size > options.maxFileSize) {\n const maxMB = (options.maxFileSize / (1024 * 1024)).toFixed(1);\n return `File size exceeds ${maxMB} MB limit`;\n }\n\n return null;\n}\n"]}
1	+ {"version":3,"sources":["../src/internal-helpers.ts","../src/helpers/build-content-disposition.ts","../src/helpers/build-public-url.ts","../src/helpers/parse-file-name.ts","../src/handlers/presign/upload.ts","../src/helpers/server/resolve-object-acl.ts","../src/handlers/presign/confirm.ts","../src/handlers/presign/download.ts","../src/handlers/delete.ts","../src/handlers/multipart/init.ts","../src/handlers/multipart/part.ts","../src/handlers/multipart/complete.ts","../src/handlers/multipart/abort.ts","../src/create-handlers.ts","../src/router.ts","../src/api.ts","../src/helpers/validate-file.ts"],"names":["parseBody","request","body","requireString","value","name","trimmed","normalizeExpiresIn","withS3ErrorHandler","handler","err","code","message","runHook","hook","context","status","buildContentDisposition","fileName","ascii","encoded","buildPublicUrl","publicUrlBase","bucket","key","acl","base","parseFileName","contentDisposition","utf8Match","createUploadHandler","config","expiresIn","contentType","fileSize","guardResult","fields","k","v","rangeMin","rangeMax","url","signedFields","createPresignedPost","resolveObjectAcl","s3","GetObjectAclCommand","g","createConfirmHandler","head","HeadObjectCommand","publicUrl","createDownloadHandler","searchParams","getSignedUrl","GetObjectCommand","createDeleteHandler","DeleteObjectCommand","createMultipartInitHandler","UploadId","CreateMultipartUploadCommand","createMultipartPartHandler","uploadId","partNumber","presignedUrl","UploadPartCommand","createMultipartCompleteHandler","parts","n","a","b","listedParts","ListPartsCommand","completeParts","found","p","completeResult","CompleteMultipartUploadCommand","attempt","r","contentLength","eTag","createMultipartAbortHandler","AbortMultipartUploadCommand","createHandlers","disabled","createRouter","handlers","subpath","method","createS3Api","basePath","json","init","res","post","payload","options","params","safe","validateFile","file","type","ext"],"mappings":"6VAAA,eAAsBA,EACpBC,CAAAA,CACmB,CACnB,GAAI,CACF,IAAMC,CAAAA,CAAO,MAAMD,CAAAA,CAAQ,IAAA,GAC3B,OAAOC,CAAAA,EAAQ,OAAOA,CAAAA,EAAS,QAAA,CAAYA,CAAAA,CAAa,IAC1D,CAAA,KAAQ,CACN,OAAO,IACT,CACF,CAEO,SAASC,CAAAA,CAAcC,CAAAA,CAAgBC,CAAAA,CAAiC,CAC7E,IAAMC,CAAAA,CAAU,OAAOF,CAAAA,EAAU,QAAA,CAAWA,CAAAA,CAAM,IAAA,EAAK,CAAI,EAAA,CAC3D,OAAKE,CAAAA,EACI,QAAA,CAAS,IAAA,CAAK,CAAE,QAAS,CAAA,EAAGD,CAAI,CAAA,YAAA,CAAe,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAG5E,CAEO,SAASE,CAAAA,CAAmBH,CAAAA,CAAwB,CACzD,IAAM,CAAA,CAAI,MAAA,CAAOA,CAAK,CAAA,CACtB,OAAO,MAAA,CAAO,QAAA,CAAS,CAAC,CAAA,EAAK,EAAI,CAAA,CAAI,IAAA,CAAK,KAAA,CAAM,CAAC,CAAA,CAAI,GACvD,CAEO,SAASI,EACdC,CAAAA,CACA,CACA,OAAO,MAAOR,GAAqB,CACjC,GAAI,CACF,OAAO,MAAMQ,CAAAA,CAAQR,CAAO,CAC9B,CAAA,MAASS,CAAAA,CAAK,CACZ,IAAMC,CAAAA,CAAQD,EAA0B,IAAA,CAQlCE,CAAAA,CANJD,CAAAA,GAAS,WAAA,EACTA,IAAS,cAAA,EACTA,CAAAA,GAAS,YAAA,EACTA,CAAAA,GAAS,aACTA,CAAAA,GAAS,WAAA,CAGP,CAAA,yBAAA,EAA4BA,CAAI,CAAA,mDAAA,CAAA,CAChCD,CAAAA,YAAe,KAAA,CACbA,CAAAA,CAAI,QACJ,uBAAA,CAEN,OAAA,OAAA,CAAQ,KAAA,CAAM,UAAA,CAAYE,CAAO,CAAA,CAC1B,QAAA,CAAS,IAAA,CAAK,CAAE,QAAAA,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACnD,CACF,CACF,CAMA,eAAsBC,CAAAA,CACpBC,CAAAA,CACAC,CAAAA,CAC0B,CAC1B,GAAI,CAACD,CAAAA,CAAM,OAAO,KAClB,GAAI,CACF,OAAA,MAAMA,CAAAA,CAAKC,CAAO,CAAA,CACX,IACT,CAAA,MAASL,EAAK,CACZ,IAAME,CAAAA,CAAUF,CAAAA,YAAe,MAAQA,CAAAA,CAAI,OAAA,CAAU,WAAA,CAC/CM,CAAAA,CACJ,OAAQN,CAAAA,EAAiC,MAAA,EAAW,QAAA,CAC9CA,CAAAA,CAAgC,MAAA,CAClC,GAAA,CACN,OAAO,QAAA,CAAS,KAAK,CAAE,OAAA,CAAAE,CAAQ,CAAA,CAAG,CAAE,MAAA,CAAAI,CAAO,CAAC,CAC9C,CACF,CC3DO,SAASC,CAAAA,CAAwBC,CAAAA,CAA0B,CAChE,IAAMC,CAAAA,CAAQD,CAAAA,CAAS,QAAQ,eAAA,CAAiB,GAAG,CAAA,CAAE,OAAA,CAAQ,SAAU,GAAG,CAAA,CACpEE,CAAAA,CAAU,kBAAA,CAAmBF,CAAQ,CAAA,CAC3C,OAAO,CAAA,sBAAA,EAAyBC,CAAK,uBAAuBC,CAAO,CAAA,CACrE,CCJO,SAASC,EACdC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACAC,CAAAA,CACoB,CACpB,GAAIA,CAAAA,GAAQ,aAAA,EAAiB,CAACH,EAAe,OAC7C,IAAMI,CAAAA,CAAOJ,CAAAA,CAAcC,CAAM,CAAA,CACjC,GAAKG,CAAAA,CACL,OAAO,CAAA,EAAGA,CAAAA,CAAK,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAC,CAAA,CAAA,EAAIF,CAAG,CAAA,CAC1C,CCdO,SAASG,CAAAA,CACdC,CAAAA,CACoB,CACpB,GAAI,CAACA,CAAAA,CAAoB,OAEzB,IAAMC,CAAAA,CAAYD,CAAAA,CAAmB,KAAA,CAAM,8BAA8B,EACzE,GAAIC,CAAAA,CACF,GAAI,CACF,OAAO,kBAAA,CAAmBA,CAAAA,CAAU,CAAC,CAAC,CACxC,CAAA,KAAQ,CAER,CAIF,OADmBD,CAAAA,CAAmB,KAAA,CAAM,qBAAqB,CAAA,GAC7C,CAAC,CACvB,CCMO,SAASE,CAAAA,CAAoBC,EAAyB,CAC3D,OAAOvB,CAAAA,CAAmB,MAAOP,GAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,EAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,EACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,QAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,EAAMrB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,EACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,EAEpC,IAAMD,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,aAAA,CACvCC,EAAYzB,CAAAA,CAAmBL,CAAAA,CAAK,SAAS,CAAA,CAC7CuB,EAAMvB,CAAAA,CAAK,GAAA,GAAQ,aAAA,CAAgB,aAAA,CAAgB,UACnD+B,CAAAA,CAAc/B,CAAAA,CAAK,WAAA,EAAa,IAAA,EAAK,EAAK,0BAAA,CAC1CgC,CAAAA,CACJ,OAAOhC,EAAK,QAAA,EAAa,QAAA,EAAYA,CAAAA,CAAK,QAAA,CAAW,EACjD,IAAA,CAAK,KAAA,CAAMA,CAAAA,CAAK,QAAQ,EACxB,IAAA,CAEAiC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,EAAO,MAAA,EAAQ,YAAA,CAAc,CAC7D,OAAA,CAAA9B,EACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,YAAarB,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAUgC,CAAAA,EAAY,OACtB,QAAA,CAAUhC,CAAAA,CAAK,QAAA,CACf,GAAA,CAAAuB,CACF,CAAC,CAAA,CACD,GAAIU,EAAa,OAAOA,CAAAA,CAOxB,IAAMC,CAAAA,CAAiC,CAAE,GAAA,CAAAX,CAAAA,CAAK,cAAA,CAAgBQ,CAAY,EAM1E,GAJI/B,CAAAA,CAAK,QAAA,GACPkC,CAAAA,CAAO,qBAAqB,CAAA,CAAInB,CAAAA,CAAwBf,CAAAA,CAAK,QAAQ,CAAA,CAAA,CAGnEA,CAAAA,CAAK,QAAA,CACP,IAAA,GAAW,CAACmC,CAAAA,CAAGC,CAAC,CAAA,GAAK,MAAA,CAAO,QAAQpC,CAAAA,CAAK,QAAQ,CAAA,CAC/CkC,CAAAA,CAAO,CAAA,WAAA,EAAcC,CAAC,CAAA,CAAE,CAAA,CAAIC,EAQhC,IAAMC,CAAAA,CAAWL,CAAAA,EAAY,CAAA,CACvBM,EAAWN,CAAAA,EAAY,KAAA,CAAA,CAEvB,CAAE,GAAA,CAAAO,EAAK,MAAA,CAAQC,CAAa,CAAA,CAAI,MAAMC,oBAAoBZ,CAAAA,CAAO,EAAA,CAAI,CACzE,MAAA,CAAQR,EACR,GAAA,CAAKC,CAAAA,CACL,UAAA,CACEgB,CAAAA,GAAa,OACT,CAAC,CAAC,sBAAA,CAAwBD,CAAAA,CAAUC,CAAQ,CAAC,CAAA,CAC7C,CAAC,CAAC,sBAAA,CAAwBD,CAAAA,CAAU,MAAA,CAAO,gBAAgB,CAAC,CAAA,CAClE,MAAA,CAAQH,CAAAA,CACR,OAAA,CAASJ,CACX,CAAC,CAAA,CAED,OAAA,MAAMD,CAAAA,CAAO,QAAQ,WAAA,GAAc,CACjC,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,YAAarB,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAUA,CAAAA,CAAK,SACf,GAAA,CAAAuB,CAAAA,CACA,GAAA,CAAAgB,CAAAA,CACA,UAAAT,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAT,CAAAA,CAAQ,IAAAC,CAAAA,CAAK,GAAA,CAAAiB,CAAAA,CAAK,MAAA,CAAQC,EAAc,SAAA,CAAAV,CAAU,CAAC,CAC5E,CAAC,CACH,CCtGA,eAAsBY,CAAAA,CACpBC,CAAAA,CACAtB,CAAAA,CACAC,EACoC,CACpC,GAAI,CASF,OAAA,CARe,MAAMqB,CAAAA,CAAG,IAAA,CACtB,IAAIC,mBAAAA,CAAoB,CAAE,MAAA,CAAQvB,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACtD,CAAA,EACwB,MAAA,EAAQ,KAC7BuB,CAAAA,EACCA,CAAAA,CAAE,OAAA,EAAS,GAAA,GAAQ,oDAClBA,CAAAA,CAAE,UAAA,GAAe,MAAA,EAAUA,CAAAA,CAAE,aAAe,cAAA,CACjD,CAAA,CACkB,aAAA,CAAgB,SACpC,MAAQ,CACN,OAAO,SACT,CACF,CCXO,SAASC,CAAAA,CAAqBjB,CAAAA,CAAyB,CAC5D,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,EAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,aAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,EAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,aAAA,CAEvCI,CAAAA,CAAc,MAAMtB,EAAQkB,CAAAA,CAAO,MAAA,EAAQ,YAAA,CAAc,CAC7D,QAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,IAAMc,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,EAAA,CAAG,IAAA,CAC3B,IAAImB,kBAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CAEMC,CAAAA,CAAM,MAAMmB,CAAAA,CAAiBb,CAAAA,CAAO,EAAA,CAAIR,EAAQC,CAAG,CAAA,CACnD2B,CAAAA,CAAY9B,CAAAA,CAAeU,EAAO,gBAAA,CAAkBR,CAAAA,CAAQC,CAAAA,CAAKC,CAAG,EACpEP,CAAAA,CAAWS,CAAAA,CAAcsB,CAAAA,CAAK,kBAAkB,EAEhDlC,CAAAA,CAAU,CACd,OAAA,CAAAd,CAAAA,CACA,IAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAa0B,EAAK,WAAA,CAClB,aAAA,CAAeA,CAAAA,CAAK,aAAA,EAAiB,EACrC,IAAA,CAAMA,CAAAA,CAAK,IAAA,EAAM,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CACjC,QAAA,CAAUA,EAAK,QAAA,CACf,GAAA,CAAAxB,CAAAA,CACA,QAAA,CAAAP,EACA,SAAA,CAAAiC,CACF,CAAA,CAEA,OAAA,MAAMpB,EAAO,MAAA,EAAQ,iBAAA,GAAoBhB,CAAO,CAAA,CAEzC,QAAA,CAAS,IAAA,CAAK,CACnB,GAAA,CAAAS,EACA,MAAA,CAAAD,CAAAA,CACA,WAAA,CAAaR,CAAAA,CAAQ,YACrB,aAAA,CAAeA,CAAAA,CAAQ,aAAA,CACvB,IAAA,CAAMA,EAAQ,IAAA,CACd,GAAA,CAAAU,CAAAA,CACA,QAAA,CAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAC,CACH,CAAC,CACH,CC9DO,SAASC,EAAsBrB,CAAAA,CAAyB,CAC7D,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,GAAM,CAAE,aAAAoD,CAAa,CAAA,CAAI,IAAI,GAAA,CAAIpD,EAAQ,GAAG,CAAA,CACtCuB,CAAAA,CAAM6B,CAAAA,CAAa,GAAA,CAAI,KAAK,CAAA,EAAG,IAAA,GACrC,GAAI,CAAC7B,CAAAA,CACH,OAAO,SAAS,IAAA,CACd,CAAE,OAAA,CAAS,iCAAkC,EAC7C,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,IAAI,QAAQ,CAAA,EAAG,IAAA,EAAK,EAAKtB,EAAO,aAAA,CACtDC,CAAAA,CAAYzB,CAAAA,CAAmB8C,CAAAA,CAAa,IAAI,WAAW,CAAC,CAAA,CAC5DnC,CAAAA,CAAWmC,CAAAA,CAAa,GAAA,CAAI,UAAU,CAAA,EAAG,MAAK,CAE9ClB,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,EAAO,QAAA,EAAU,YAAA,CAAc,CAC/D,OAAA,CAAA9B,EACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,SAAUL,CAAAA,EAAY,KAAA,CACxB,CAAC,CAAA,CACD,GAAIiB,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAI,CACF,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CAAK,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,MAASd,CAAAA,CAAc,CACrB,IAAML,EAAQK,CAAAA,EAA2B,IAAA,CACzC,GAAIL,CAAAA,GAAS,aAAeA,CAAAA,GAAS,UAAA,CACnC,OAAO,QAAA,CAAS,KAAK,CAAE,OAAA,CAAS,kBAAmB,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAAA,CAEvE,MAAMK,CACR,CAEA,IAAM+B,CAAAA,CAAM,MAAMa,YAAAA,CAChBvB,CAAAA,CAAO,EAAA,CACP,IAAIwB,gBAAAA,CAAiB,CACnB,MAAA,CAAQhC,CAAAA,CACR,IAAKC,CAAAA,CACL,0BAAA,CAA4BN,CAAAA,CACxBD,CAAAA,CAAwBC,CAAQ,CAAA,CAChC,YACN,CAAC,CAAA,CACD,CAAE,SAAA,CAAAc,CAAU,CACd,CAAA,CAEA,aAAMD,CAAAA,CAAO,QAAA,EAAU,WAAA,GAAc,CACnC,QAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,EACA,QAAA,CAAUL,CAAAA,EAAY,KAAA,CAAA,CACtB,GAAA,CAAAuB,EACA,SAAA,CAAAT,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAT,EAAQ,GAAA,CAAAC,CAAAA,CAAK,GAAA,CAAAiB,CAAAA,CAAK,UAAAT,CAAU,CAAC,CACtD,CAAC,CACH,CC9DO,SAASwB,EAAoBzB,CAAAA,CAAyB,CAC3D,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,GAAM,CAAE,aAAAoD,CAAa,CAAA,CAAI,IAAI,GAAA,CAAIpD,CAAAA,CAAQ,GAAG,CAAA,CACtCuB,CAAAA,CAAM6B,EAAa,GAAA,CAAI,KAAK,CAAA,EAAG,IAAA,GACrC,GAAI,CAAC7B,CAAAA,CACH,OAAO,SAAS,IAAA,CACd,CAAE,OAAA,CAAS,iCAAkC,EAC7C,CAAE,MAAA,CAAQ,GAAI,CAChB,EAGF,IAAMD,CAAAA,CAAS8B,CAAAA,CAAa,GAAA,CAAI,QAAQ,CAAA,EAAG,IAAA,EAAK,EAAKtB,CAAAA,CAAO,cAEtDI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,MAAA,EAAQ,WAAA,CAAa,CAC5D,OAAA,CAAA9B,EACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,EAExB,GAAI,CACF,MAAMJ,CAAAA,CAAO,EAAA,CAAG,IAAA,CAAK,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,EAC1E,CAAA,KAAQ,CACN,OAAO,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,kBAAmB,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CACvE,CAEA,OAAA,MAAMO,EAAO,EAAA,CAAG,IAAA,CAAK,IAAI0B,mBAAAA,CAAoB,CAAE,MAAA,CAAQlC,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CAAC,CAAA,CAE1E,MAAMO,CAAAA,CAAO,QAAQ,SAAA,GAAY,CAAE,OAAA,CAAA9B,CAAAA,CAAS,IAAAuB,CAAAA,CAAK,MAAA,CAAAD,CAAO,CAAC,EAElD,QAAA,CAAS,IAAA,CAAK,CAAE,OAAA,CAAS,CAAA,CAAA,CAAM,MAAA,CAAAA,CAAAA,CAAQ,GAAA,CAAAC,CAAI,CAAC,CACrD,CAAC,CACH,CCdO,SAASkC,CAAAA,CAA2B3B,CAAAA,CAAyB,CAClE,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,EAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,SAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,EAAK,GAAA,CAAK,KAAK,CAAA,CACzC,GAAIsB,aAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMD,EAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,EAAO,aAAA,CACvCN,CAAAA,CAAMvB,CAAAA,CAAK,GAAA,GAAQ,cAAgB,aAAA,CAAgB,SAAA,CACnDgC,CAAAA,CACJ,OAAOhC,EAAK,QAAA,EAAa,QAAA,EAAYA,CAAAA,CAAK,QAAA,CAAW,CAAA,CACjD,IAAA,CAAK,KAAA,CAAMA,CAAAA,CAAK,QAAQ,CAAA,CACxB,KAAA,CAAA,CAEAiC,CAAAA,CAAc,MAAMtB,EAAQkB,CAAAA,CAAO,SAAA,EAAW,SAAA,CAAW,CAC7D,QAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,EACA,QAAA,CAAAW,CACF,CAAC,CAAA,CACD,GAAIC,CAAAA,CAAa,OAAOA,CAAAA,CAExB,GAAM,CAAE,QAAA,CAAAwB,CAAS,CAAA,CAAI,MAAM5B,EAAO,EAAA,CAAG,IAAA,CACnC,IAAI6B,4BAAAA,CAA6B,CAC/B,MAAA,CAAQrC,CAAAA,CACR,GAAA,CAAKC,EACL,WAAA,CAAatB,CAAAA,CAAK,WAAA,CAClB,kBAAA,CAAoBA,EAAK,QAAA,CACrBe,CAAAA,CAAwBf,CAAAA,CAAK,QAAQ,EACrC,KAAA,CAAA,CACJ,QAAA,CAAUA,CAAAA,CAAK,QAAA,CACf,IAAKuB,CACP,CAAC,CACH,CAAA,CAEA,aAAMM,CAAAA,CAAO,SAAA,EAAW,MAAA,GAAS,CAC/B,QAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,EACA,QAAA,CAAUoC,CAAAA,CACV,WAAA,CAAazD,CAAAA,CAAK,WAAA,CAClB,QAAA,CAAAgC,CAAAA,CACA,QAAA,CAAUhC,EAAK,QAAA,CACf,GAAA,CAAAuB,CACF,CAAC,EAEM,QAAA,CAAS,IAAA,CAAK,CAAE,MAAA,CAAAF,EAAQ,GAAA,CAAAC,CAAAA,CAAK,QAAA,CAAUmC,CAAS,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAC3E,CAAC,CACH,CCzDO,SAASE,CAAAA,CAA2B9B,CAAAA,CAAyB,CAClE,OAAOvB,CAAAA,CAAmB,MAAOP,CAAAA,EAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,CAAAA,CAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,CAAAA,CACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,sBAAuB,CAAA,CAClC,CAAE,OAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,EAAMrB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,EACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,CAAAA,CAEpC,IAAMsC,CAAAA,CAAW3D,CAAAA,CAAcD,EAAK,QAAA,CAAU,UAAU,CAAA,CACxD,GAAI4D,aAAoB,QAAA,CAAU,OAAOA,CAAAA,CAEzC,IAAMC,EAAa,MAAA,CAAO7D,CAAAA,CAAK,UAAU,CAAA,CACzC,GAAI,CAAC,MAAA,CAAO,SAAA,CAAU6D,CAAU,CAAA,EAAKA,CAAAA,EAAc,CAAA,CACjD,OAAO,SAAS,IAAA,CACd,CAAE,OAAA,CAAS,uCAAwC,EACnD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMxC,CAAAA,CAASrB,CAAAA,CAAK,QAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,aAAA,CACvCC,EAAYzB,CAAAA,CAAmBL,CAAAA,CAAK,SAAS,CAAA,CAE7CiC,EAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,SAAA,EAAW,UAAW,CAC7D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,EACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,CAAAA,CAExB,IAAM6B,EAAe,MAAMV,YAAAA,CACzBvB,CAAAA,CAAO,EAAA,CACP,IAAIkC,iBAAAA,CAAkB,CACpB,MAAA,CAAQ1C,EACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CAAAA,CACV,WAAYC,CACd,CAAC,CAAA,CACD,CAAE,UAAA/B,CAAU,CACd,CAAA,CAEA,OAAO,QAAA,CAAS,IAAA,CAAK,CACnB,YAAA,CAAAgC,EACA,UAAA,CAAAD,CAAAA,CACA,QAAA,CAAAD,CAAAA,CACA,OAAAvC,CAAAA,CACA,SAAA,CAAAS,CACF,CAAC,CACH,CAAC,CACH,CC9CO,SAASkC,CAAAA,CAA+BnC,EAAyB,CACtE,OAAOvB,CAAAA,CAAmB,MAAOP,GAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,EAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,EACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,QAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,EACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,EAEpC,IAAMsC,CAAAA,CAAW3D,CAAAA,CAAcD,CAAAA,CAAK,SAAU,UAAU,CAAA,CACxD,GAAI4D,CAAAA,YAAoB,SAAU,OAAOA,CAAAA,CAEzC,IAAMK,CAAAA,CAAAA,CAAS,MAAM,OAAA,CAAQjE,CAAAA,CAAK,KAAK,CAAA,CAAIA,EAAK,KAAA,CAAQ,EAAC,EACtD,GAAA,CAAI,CAAC,CAAE,UAAA,CAAA6D,CAAW,CAAA,GAAM,MAAA,CAAOA,CAAU,CAAC,CAAA,CAC1C,OAAQK,CAAAA,EAAM,MAAA,CAAO,SAAA,CAAUA,CAAC,GAAKA,CAAAA,CAAI,CAAC,CAAA,CAC1C,IAAA,CAAK,CAACC,CAAAA,CAAGC,CAAAA,GAAMD,CAAAA,CAAIC,CAAC,EAEvB,GAAI,CAACH,CAAAA,CAAM,MAAA,CACT,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,OAAA,CAAS,qCAAsC,CAAA,CACjD,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAM5C,CAAAA,CAASrB,CAAAA,CAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,cAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,WAAW,aAAA,CAAe,CACjE,OAAA,CAAA9B,CAAAA,CACA,IAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,GAAIY,CAAAA,CAAa,OAAOA,EAOxB,IAAMoC,CAAAA,CAAAA,CAHS,MAAMxC,CAAAA,CAAO,GAAG,IAAA,CAC7B,IAAIyC,gBAAAA,CAAiB,CAAE,OAAQjD,CAAAA,CAAQ,GAAA,CAAKC,CAAAA,CAAK,QAAA,CAAUsC,CAAS,CAAC,CACvE,CAAA,EAC2B,OAAS,EAAC,CAE/BW,CAAAA,CAAgBN,CAAAA,CAAM,IAAKJ,CAAAA,EAAe,CAC9C,IAAMW,CAAAA,CAAQH,EAAY,IAAA,CAAMI,CAAAA,EAAMA,CAAAA,CAAE,UAAA,GAAeZ,CAAU,CAAA,CACjE,OAAO,CAAE,UAAA,CAAYA,EAAY,IAAA,CAAMW,CAAAA,EAAO,IAAA,EAAQ,EAAG,CAC3D,CAAC,CAAA,CAEKE,CAAAA,CAAiB,MAAM7C,EAAO,EAAA,CAAG,IAAA,CACrC,IAAI8C,8BAAAA,CAA+B,CACjC,MAAA,CAAQtD,CAAAA,CACR,GAAA,CAAKC,EACL,QAAA,CAAUsC,CAAAA,CACV,eAAA,CAAiB,CAAE,MAAOW,CAAc,CAC1C,CAAC,CACH,EAKIxB,CAAAA,CAAO,MAAMlB,CAAAA,CAAO,EAAA,CAAG,IAAA,CACzB,IAAImB,iBAAAA,CAAkB,CAAE,OAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CACA,IAAA,IAASsD,CAAAA,CAAU,CAAA,CAAGA,EAAU,CAAA,EAAK,CAAC7B,CAAAA,CAAK,aAAA,CAAe6B,CAAAA,EAAAA,CACxD,MAAM,IAAI,OAAA,CAASC,GAAM,UAAA,CAAWA,CAAAA,CAAG,GAAA,CAAM,CAAA,EAAKD,CAAO,CAAC,CAAA,CAC1D7B,CAAAA,CAAO,MAAMlB,EAAO,EAAA,CAAG,IAAA,CACrB,IAAImB,iBAAAA,CAAkB,CAAE,MAAA,CAAQ3B,CAAAA,CAAQ,GAAA,CAAKC,CAAI,CAAC,CACpD,CAAA,CAEF,IAAMwD,CAAAA,CAAgB/B,EAAK,aAAA,EAAiB,CAAA,CACtChB,CAAAA,CAAcgB,CAAAA,CAAK,YACnBgC,CAAAA,CAAAA,CAAQhC,CAAAA,CAAK,IAAA,EAAQ2B,CAAAA,CAAe,IAAA,EAAQ,EAAA,EAAI,OAAA,CAAQ,IAAA,CAAM,EAAE,CAAA,CAEhEnD,CAAAA,CAAM,MAAMmB,CAAAA,CAAiBb,EAAO,EAAA,CAAIR,CAAAA,CAAQC,CAAG,CAAA,CACnD2B,EAAY9B,CAAAA,CAAeU,CAAAA,CAAO,gBAAA,CAAkBR,CAAAA,CAAQC,CAAAA,CAAKC,CAAG,CAAA,CACpEP,CAAAA,CAAWS,EAAcsB,CAAAA,CAAK,kBAAkB,CAAA,CAEtD,OAAA,MAAMlB,EAAO,SAAA,EAAW,UAAA,GAAa,CACnC,OAAA,CAAA9B,EACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CAAAA,CACA,QAAA,CAAAuC,CAAAA,CACA,aAAA,CAAAkB,CAAAA,CACA,YAAA/C,CAAAA,CACA,IAAA,CAAAgD,CAAAA,CACA,GAAA,CAAAxD,EACA,QAAA,CAAAP,CAAAA,CACA,SAAA,CAAAiC,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CACnB,OAAA5B,CAAAA,CACA,GAAA,CAAAC,CAAAA,CACA,QAAA,CAAAsC,EACA,aAAA,CAAAkB,CAAAA,CACA,WAAA,CAAA/C,CAAAA,CACA,KAAAgD,CAAAA,CACA,GAAA,CAAAxD,CAAAA,CACA,QAAA,CAAAP,EACA,SAAA,CAAAiC,CACF,CAAC,CACH,CAAC,CACH,CClHO,SAAS+B,CAAAA,CAA4BnD,EAAyB,CACnE,OAAOvB,CAAAA,CAAmB,MAAOP,GAAqB,CACpD,IAAMC,CAAAA,CAAO,MAAMF,EAAmBC,CAAO,CAAA,CAC7C,GAAI,CAACC,EACH,OAAO,QAAA,CAAS,IAAA,CACd,CAAE,QAAS,sBAAuB,CAAA,CAClC,CAAE,MAAA,CAAQ,GAAI,CAChB,CAAA,CAGF,IAAMsB,CAAAA,CAAMrB,CAAAA,CAAcD,CAAAA,CAAK,GAAA,CAAK,KAAK,EACzC,GAAIsB,CAAAA,YAAe,QAAA,CAAU,OAAOA,EAEpC,IAAMsC,CAAAA,CAAW3D,CAAAA,CAAcD,CAAAA,CAAK,SAAU,UAAU,CAAA,CACxD,GAAI4D,CAAAA,YAAoB,SAAU,OAAOA,CAAAA,CAEzC,IAAMvC,CAAAA,CAASrB,EAAK,MAAA,EAAQ,IAAA,EAAK,EAAK6B,CAAAA,CAAO,cAEvCI,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,CAAAA,CAAO,WAAW,UAAA,CAAY,CAC9D,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,MAAA,CAAAD,CACF,CAAC,CAAA,CACD,OAAIY,CAAAA,GAEJ,MAAMJ,EAAO,EAAA,CAAG,IAAA,CACd,IAAIoD,2BAAAA,CAA4B,CAC9B,MAAA,CAAQ5D,CAAAA,CACR,GAAA,CAAKC,CAAAA,CACL,QAAA,CAAUsC,CACZ,CAAC,CACH,EAEA,MAAM/B,CAAAA,CAAO,SAAA,EAAW,OAAA,GAAU,CAChC,OAAA,CAAA9B,CAAAA,CACA,GAAA,CAAAuB,CAAAA,CACA,OAAAD,CAAAA,CACA,QAAA,CAAAuC,CACF,CAAC,CAAA,CAEM,QAAA,CAAS,IAAA,CAAK,CAAE,OAAAvC,CAAAA,CAAQ,GAAA,CAAAC,CAAAA,CAAK,QAAA,CAAAsC,EAAU,OAAA,CAAS,CAAA,CAAK,CAAC,CAAA,CAC/D,CAAC,CACH,CC/CO,SAASsB,CAAAA,CAAerD,EAAqC,CAClE,OAAO,CACL,OAAA,CAAS,CACP,MAAA,CAAQD,CAAAA,CAAoBC,CAAM,CAAA,CAClC,QAASiB,CAAAA,CAAqBjB,CAAM,CAAA,CACpC,QAAA,CAAUqB,EAAsBrB,CAAM,CACxC,CAAA,CACA,SAAA,CAAW,CACT,IAAA,CAAM2B,CAAAA,CAA2B3B,CAAM,EACvC,IAAA,CAAM8B,CAAAA,CAA2B9B,CAAM,CAAA,CACvC,SAAUmC,CAAAA,CAA+BnC,CAAM,CAAA,CAC/C,KAAA,CAAOmD,EAA4BnD,CAAM,CAC3C,CAAA,CACA,MAAA,CAAQyB,CAAAA,CAAoBzB,CAAM,CACpC,CACF,CCrBA,IAAMsD,CAAAA,CAAW,IAAM,QAAA,CAAS,KAAK,CAAE,OAAA,CAAS,WAAY,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAAA,CAEvE,SAASC,EAAAA,CAAavD,CAAAA,CAA8B,CACzD,IAAMwD,CAAAA,CAAWH,CAAAA,CAAerD,CAAM,CAAA,CAChCL,EAAOK,CAAAA,CAAO,QAAA,CAAS,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAA,CAE9C,OAAO,MAAO9B,CAAAA,EAAwC,CAEpD,IAAMkC,CAAAA,CAAc,MAAMtB,CAAAA,CAAQkB,EAAO,KAAA,CAAO,CAAE,OAAA,CAAA9B,CAAQ,CAAC,CAAA,CAC3D,GAAIkC,CAAAA,CAAa,OAAOA,EAGxB,IAAMqD,CAAAA,CADM,IAAI,GAAA,CAAIvF,CAAAA,CAAQ,GAAG,CAAA,CACX,QAAA,CAAS,MAAMyB,CAAAA,CAAK,MAAM,CAAA,CAAE,OAAA,CAAQ,MAAO,EAAE,CAAA,CAC3D+D,CAAAA,CAASxF,CAAAA,CAAQ,OAEvB,OAAIwF,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,gBAAA,CAC5BzD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAClBwD,EAAS,OAAA,CAAQ,MAAA,CAAOtF,CAAO,CAAA,CAC/BoF,GAAS,CACXI,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,yBAC5BzD,CAAAA,CAAO,MAAA,EAAQ,OAAA,CAClBwD,CAAAA,CAAS,OAAA,CAAQ,OAAA,CAAQtF,CAAO,CAAA,CAChCoF,GAAS,CACXI,CAAAA,GAAW,KAAA,EAASD,CAAAA,GAAY,mBAC3BzD,CAAAA,CAAO,QAAA,EAAU,OAAA,CACpBwD,CAAAA,CAAS,QAAQ,QAAA,CAAStF,CAAO,CAAA,CACjCoF,CAAAA,GACFI,CAAAA,GAAW,QAAA,EAAYD,CAAAA,GAAY,QAAA,CAC9BzD,EAAO,MAAA,EAAQ,OAAA,CAAUwD,CAAAA,CAAS,MAAA,CAAOtF,CAAO,CAAA,CAAIoF,CAAAA,EAAS,CAClEI,CAAAA,GAAW,QAAUD,CAAAA,GAAY,wBAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBwD,CAAAA,CAAS,SAAA,CAAU,IAAA,CAAKtF,CAAO,CAAA,CAC/BoF,CAAAA,EAAS,CACXI,CAAAA,GAAW,QAAUD,CAAAA,GAAY,wBAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,QACrBwD,CAAAA,CAAS,SAAA,CAAU,IAAA,CAAKtF,CAAO,EAC/BoF,CAAAA,EAAS,CACXI,CAAAA,GAAW,MAAA,EAAUD,IAAY,4BAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBwD,EAAS,SAAA,CAAU,QAAA,CAAStF,CAAO,CAAA,CACnCoF,GAAS,CACXI,CAAAA,GAAW,MAAA,EAAUD,CAAAA,GAAY,yBAAA,CAC5BzD,CAAAA,CAAO,SAAA,EAAW,OAAA,CACrBwD,EAAS,SAAA,CAAU,KAAA,CAAMtF,CAAO,CAAA,CAChCoF,GAAS,CAER,QAAA,CAAS,IAAA,CAAK,CAAE,QAAS,WAAY,CAAA,CAAG,CAAE,MAAA,CAAQ,GAAI,CAAC,CAChE,CACF,CCyDO,SAASK,CAAAA,CAAYC,CAAAA,CAAW,SAAA,CAAkB,CACvD,IAAMjE,CAAAA,CAAOiE,CAAAA,CAAS,OAAA,CAAQ,KAAA,CAAO,EAAE,CAAA,CAEjCC,CAAAA,CAAO,MAAUnD,CAAAA,CAAaoD,CAAAA,GAAmC,CACrE,IAAMC,CAAAA,CAAM,MAAM,KAAA,CAAMrD,CAAAA,CAAKoD,CAAI,CAAA,CACjC,GAAI,CAACC,CAAAA,CAAI,EAAA,CAAI,CACX,IAAM5F,CAAAA,CAAO,MAAM4F,CAAAA,CAAI,IAAA,EAAK,CAAE,KAAA,CAAM,KAAO,GAAG,CAAA,CAC9C,MAAM,IAAI,KAAA,CAAO5F,EAA8B,OAAA,EAAW4F,CAAAA,CAAI,UAAU,CAC1E,CACA,OAAOA,CAAAA,CAAI,IAAA,EACb,CAAA,CAEMC,CAAAA,CAAO,CAAItD,CAAAA,CAAavC,IAC5B0F,CAAAA,CAAQnD,CAAAA,CAAK,CACX,MAAA,CAAQ,OACR,OAAA,CAAS,CAAE,cAAA,CAAgB,kBAAmB,EAC9C,IAAA,CAAM,IAAA,CAAK,SAAA,CAAUvC,CAAI,CAC3B,CAAC,CAAA,CAEH,OAAO,CACL,OAAO8F,CAAAA,CAAS,CACd,OAAOD,CAAAA,CAA4B,GAAGrE,CAAI,CAAA,eAAA,CAAA,CAAmBsE,CAAO,CACtE,EAEA,OAAA,CAAQA,CAAAA,CAAS,CACf,OAAOD,CAAAA,CACL,CAAA,EAAGrE,CAAI,CAAA,uBAAA,CAAA,CACPsE,CACF,CACF,CAAA,CAEA,QAAA,CAASxE,CAAAA,CAAKyE,EAAU,CACtB,IAAMC,CAAAA,CAAS,IAAI,gBAAgB,CAAE,GAAA,CAAA1E,CAAI,CAAC,CAAA,CAC1C,GAAIyE,CAAAA,EAAS,QAAA,CAAU,CACrB,IAAME,CAAAA,CAAOF,CAAAA,CAAQ,QAAA,CAAS,QAAQ,YAAA,CAAc,GAAG,CAAA,CACvDC,CAAAA,CAAO,IAAI,UAAA,CAAYC,CAAI,EAC7B,CACA,OAAIF,CAAAA,EAAS,MAAA,EAAQC,CAAAA,CAAO,IAAI,QAAA,CAAUD,CAAAA,CAAQ,MAAM,CAAA,CACjDL,EAAsB,CAAA,EAAGlE,CAAI,CAAA,kBAAA,EAAqBwE,CAAM,EAAE,CACnE,CAAA,CAEA,MAAA,CAAO1E,CAAAA,CAAKyE,EAAU,CACpB,IAAMC,CAAAA,CAAS,IAAI,gBAAgB,CAAE,GAAA,CAAA1E,CAAI,CAAC,EAC1C,OAAIyE,CAAAA,EAAS,MAAA,EAAQC,CAAAA,CAAO,IAAI,QAAA,CAAUD,CAAAA,CAAQ,MAAM,CAAA,CACjDL,CAAAA,CACL,CAAA,EAAGlE,CAAI,CAAA,QAAA,EAAWwE,CAAM,CAAA,CAAA,CACxB,CAAE,MAAA,CAAQ,QAAS,CACrB,CACF,CAAA,CAEA,SAAA,CAAW,CACT,KAAKF,CAAAA,CAAS,CACZ,OAAOD,CAAAA,CACL,CAAA,EAAGrE,CAAI,CAAA,uBAAA,CAAA,CACPsE,CACF,CACF,CAAA,CAEA,QAAA,CAASA,CAAAA,CAAS,CAChB,OAAOD,CAAAA,CACL,CAAA,EAAGrE,CAAI,CAAA,uBAAA,CAAA,CACPsE,CACF,CACF,CAAA,CAEA,QAAA,CAASA,CAAAA,CAAS,CAChB,OAAOD,CAAAA,CAOJ,CAAA,EAAGrE,CAAI,CAAA,2BAAA,CAAA,CAA+BsE,CAAO,CAClD,CAAA,CAEA,MAAMA,CAAAA,CAAS,CACb,OAAOD,CAAAA,CACL,GAAGrE,CAAI,CAAA,wBAAA,CAAA,CACPsE,CACF,CACF,CACF,CACF,CACF,CCjMO,SAASI,GACdC,CAAAA,CACAJ,CAAAA,CACe,CACf,GAAIA,EAAQ,MAAA,EAAQ,MAAA,EAad,CAZYA,CAAAA,CAAQ,OAAO,IAAA,CAAMK,CAAAA,EAE/BA,CAAAA,CAAK,UAAA,CAAW,GAAG,CAAA,CACdD,CAAAA,CAAK,IAAA,CAAK,aAAY,CAAE,QAAA,CAASC,CAAAA,CAAK,WAAA,EAAa,CAAA,CAGxDA,CAAAA,CAAK,QAAA,CAAS,IAAI,EACbD,CAAAA,CAAK,IAAA,CAAK,UAAA,CAAWC,CAAAA,CAAK,QAAQ,IAAA,CAAM,GAAG,CAAC,CAAA,CAG9CD,EAAK,IAAA,GAASC,CACtB,CAAA,CACa,CACZ,IAAMC,CAAAA,CAAMF,CAAAA,CAAK,IAAA,CAAK,QAAA,CAAS,GAAG,CAAA,CAAIA,CAAAA,CAAK,IAAA,CAAK,KAAA,CAAM,GAAG,CAAA,CAAE,GAAA,EAAI,CAAI,KACnE,OAAO,CAAA,WAAA,EAAcE,CAAAA,CAAM,CAAA,CAAA,EAAIA,CAAG,CAAA,CAAA,CAAKF,CAAAA,CAAK,IAAA,EAAQ,SAAS,kBAC/D,CAGF,OAAIA,CAAAA,CAAK,IAAA,GAAS,EACT,eAAA,CAGLJ,CAAAA,CAAQ,WAAA,EAAeI,CAAAA,CAAK,KAAOJ,CAAAA,CAAQ,WAAA,CAEtC,CAAA,kBAAA,EAAA,CADQA,CAAAA,CAAQ,YAAe,OAAA,EAAc,OAAA,CAAQ,CAAC,CAC5B,YAG5B,IACT","file":"index.js","sourcesContent":["export async function parseBody<T extends Record<string, unknown>>(\n request: Request,\n): Promise<T \| null> {\n try {\n const body = await request.json();\n return body && typeof body === \"object\" ? (body as T) : null;\n } catch {\n return null;\n }\n}\n\nexport function requireString(value: unknown, name: string): string \| Response {\n const trimmed = typeof value === \"string\" ? value.trim() : \"\";\n if (!trimmed) {\n return Response.json({ message: `${name} is required` }, { status: 400 });\n }\n return trimmed;\n}\n\nexport function normalizeExpiresIn(value: unknown): number {\n const n = Number(value);\n return Number.isFinite(n) && n > 0 ? Math.floor(n) : 600;\n}\n\nexport function withS3ErrorHandler(\n handler: (request: Request) => Promise<Response>,\n) {\n return async (request: Request) => {\n try {\n return await handler(request);\n } catch (err) {\n const code = (err as { code?: string }).code;\n const isNetworkError =\n code === \"EAI_AGAIN\" \|\|\n code === \"ECONNREFUSED\" \|\|\n code === \"ECONNRESET\" \|\|\n code === \"ETIMEDOUT\" \|\|\n code === \"ENOTFOUND\";\n\n const message = isNetworkError\n ? `S3 endpoint unreachable (${code}): check your endpoint URL and network connectivity`\n : err instanceof Error\n ? err.message\n : \"Internal server error\";\n\n console.error(\"[S3 API]\", message);\n return Response.json({ message }, { status: 502 });\n }\n };\n}\n\n/*\n Run a server hook. Returns a Response if the hook rejects (throws),\n * or `null` if the hook passes (or is undefined).\n /\nexport async function runHook<T>(\n hook: ((context: T) => Promise<void> \| void) \| undefined,\n context: T,\n): Promise<Response \| null> {\n if (!hook) return null;\n try {\n await hook(context);\n return null;\n } catch (err) {\n const message = err instanceof Error ? err.message : \"Forbidden\";\n const status =\n typeof (err as Record<string, unknown>)?.status === \"number\"\n ? ((err as Record<string, unknown>).status as number)\n : 403;\n return Response.json({ message }, { status });\n }\n}\n","/\n Builds a RFC 6266 `Content-Disposition` value for a file attachment.\n \n Includes both the ASCII-safe `filename` fallback and the RFC 5987\n * `filename` parameter for full Unicode support, so the original file\n name (including non-ASCII characters) is preserved across all browsers\n * and HTTP clients.\n \n @example\n * buildContentDisposition(\"résumé finale.pdf\")\n * // → 'attachment; filename=\"resume finale.pdf\"; filename=UTF-8\\'\\'r%C3%A9sum%C3%A9%20finale.pdf'\n /\nexport function buildContentDisposition(fileName: string): string {\n const ascii = fileName.replace(/[^\\x20-\\x7E]/g, \"_\").replace(/[\"\\\\]/g, \"_\");\n const encoded = encodeURIComponent(fileName);\n return `attachment; filename=\"${ascii}\"; filename=UTF-8''${encoded}`;\n}\n","/\n Builds the public URL for an S3 object.\n \n Returns `undefined` when:\n * - the object is `\"private\"`,\n * - `publicUrlBase` is not provided, or\n * - `publicUrlBase` returns `undefined` for the given bucket.\n \n @param publicUrlBase - A function that returns the base URL for a given bucket,\n * or `undefined` when no public URL is available for that bucket.\n * Matches the `resolvePublicUrl` field of `S3HandlerConfig`.\n /\nexport function buildPublicUrl(\n publicUrlBase: ((bucket: string) => string \| undefined) \| undefined,\n bucket: string,\n key: string,\n acl: \"public-read\" \| \"private\",\n): string \| undefined {\n if (acl !== \"public-read\" \|\| !publicUrlBase) return undefined;\n const base = publicUrlBase(bucket);\n if (!base) return undefined;\n return `${base.replace(/\\/$/, \"\")}/${key}`;\n}\n","/\n Parses the display file name from a `Content-Disposition` header value.\n \n Prefers the RFC 5987 `filename=UTF-8''…` encoding (full Unicode) over\n the plain ASCII `filename=\"…\"` fallback.\n \n Returns `undefined` when no filename can be extracted.\n /\nexport function parseFileName(\n contentDisposition: string \| undefined,\n): string \| undefined {\n if (!contentDisposition) return undefined;\n\n const utf8Match = contentDisposition.match(/filename\\=UTF-8''([^;\\s]+)/i);\n if (utf8Match) {\n try {\n return decodeURIComponent(utf8Match[1]);\n } catch {\n /* ignore malformed encoding /\n }\n }\n\n const asciiMatch = contentDisposition.match(/filename=\"([^\"])\"/i);\n return asciiMatch?.[1];\n}\n","import { createPresignedPost } from \"@aws-sdk/s3-presigned-post\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\ntype Payload = {\n key: string;\n contentType?: string;\n /*\n Exact byte size of the file the client intends to upload.\n * When provided the presigned POST policy locks `content-length-range` to\n * `[fileSize, fileSize]`, so S3 rejects any upload that is not exactly this\n * size — even if the client tampers with the payload.\n * When omitted the range is `[1, maxFileSize ?? 5 GiB]`.\n /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n expiresIn?: number;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createUploadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const contentType = body.contentType?.trim() \|\| \"application/octet-stream\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : null;\n\n const guardResult = await runHook(config.upload?.presignGuard, {\n request,\n key,\n bucket,\n contentType: body.contentType,\n fileSize: fileSize ?? undefined,\n metadata: body.metadata,\n acl,\n });\n if (guardResult) return guardResult;\n\n // Build presigned POST fields. Fields are embedded in the signed policy\n // so the client cannot change them without invalidating the signature.\n // Note: the `acl` field is the correct presigned POST field per AWS spec.\n // Some S3-compatible providers ignore it; PutObjectAcl is called in the\n // confirm step as a reliable post-upload fallback.\n const fields: Record<string, string> = { acl, \"Content-Type\": contentType };\n\n if (body.fileName) {\n fields[\"Content-Disposition\"] = buildContentDisposition(body.fileName);\n }\n\n if (body.metadata) {\n for (const [k, v] of Object.entries(body.metadata)) {\n fields[`x-amz-meta-${k}`] = v;\n }\n }\n\n // `content-length-range` is enforced by S3 at the storage layer.\n // When the client declares fileSize: S3 locks the range to exactly that\n // number of bytes, so uploading a different-sized file is impossible.\n // When omitted: only a minimum of 1 byte is enforced.\n const rangeMin = fileSize ?? 1;\n const rangeMax = fileSize ?? undefined;\n\n const { url, fields: signedFields } = await createPresignedPost(config.s3, {\n Bucket: bucket,\n Key: key,\n Conditions:\n rangeMax !== undefined\n ? [[\"content-length-range\", rangeMin, rangeMax]]\n : [[\"content-length-range\", rangeMin, Number.MAX_SAFE_INTEGER]],\n Fields: fields,\n Expires: expiresIn,\n });\n\n await config.upload?.onPresigned?.({\n request,\n key,\n bucket,\n contentType: body.contentType,\n metadata: body.metadata,\n acl,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, fields: signedFields, expiresIn });\n });\n}\n","import { GetObjectAclCommand, type S3Client } from \"@aws-sdk/client-s3\";\n\n/\n Determines the ACL of an S3 object by querying `GetObjectAcl`.\n \n Returns `\"public-read\"` when the `AllUsers` grantee has `READ` or\n * `FULL_CONTROL` permission; falls back to `\"private\"` when the provider\n * does not support the operation (e.g. Cloudflare R2).\n /\nexport async function resolveObjectAcl(\n s3: S3Client,\n bucket: string,\n key: string,\n): Promise<\"public-read\" \| \"private\"> {\n try {\n const result = await s3.send(\n new GetObjectAclCommand({ Bucket: bucket, Key: key }),\n );\n const isPublic = result.Grants?.some(\n (g) =>\n g.Grantee?.URI === \"http://acs.amazonaws.com/groups/global/AllUsers\" &&\n (g.Permission === \"READ\" \|\| g.Permission === \"FULL_CONTROL\"),\n );\n return isPublic ? \"public-read\" : \"private\";\n } catch {\n return \"private\";\n }\n}\n","import { HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n};\n\nexport function createConfirmHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.upload?.confirmGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n const context = {\n request,\n key,\n bucket,\n contentType: head.ContentType,\n contentLength: head.ContentLength ?? 0,\n eTag: head.ETag?.replace(/\"/g, \"\"),\n metadata: head.Metadata,\n acl,\n fileName,\n publicUrl,\n };\n\n await config.upload?.onUploadConfirmed?.(context);\n\n return Response.json({\n key,\n bucket,\n contentType: context.contentType,\n contentLength: context.contentLength,\n eTag: context.eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { GetObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\nexport function createDownloadHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(searchParams.get(\"expiresIn\"));\n const fileName = searchParams.get(\"fileName\")?.trim();\n\n const guardResult = await runHook(config.download?.presignGuard, {\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch (err: unknown) {\n const name = (err as { name?: string })?.name;\n if (name === \"NoSuchKey\" \|\| name === \"NotFound\") {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n throw err;\n }\n\n const url = await getSignedUrl(\n config.s3,\n new GetObjectCommand({\n Bucket: bucket,\n Key: key,\n ResponseContentDisposition: fileName\n ? buildContentDisposition(fileName)\n : \"attachment\",\n }),\n { expiresIn },\n );\n\n await config.download?.onPresigned?.({\n request,\n key,\n bucket,\n fileName: fileName \|\| undefined,\n url,\n expiresIn,\n });\n\n return Response.json({ bucket, key, url, expiresIn });\n });\n}\n","import { DeleteObjectCommand, HeadObjectCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../types\";\nimport { runHook, withS3ErrorHandler } from \"../internal-helpers\";\n\nexport function createDeleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const { searchParams } = new URL(request.url);\n const key = searchParams.get(\"key\")?.trim();\n if (!key) {\n return Response.json(\n { message: \"key query parameter is required\" },\n { status: 400 },\n );\n }\n\n const bucket = searchParams.get(\"bucket\")?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.delete?.deleteGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n try {\n await config.s3.send(new HeadObjectCommand({ Bucket: bucket, Key: key }));\n } catch {\n return Response.json({ message: \"Object not found\" }, { status: 404 });\n }\n\n await config.s3.send(new DeleteObjectCommand({ Bucket: bucket, Key: key }));\n\n await config.delete?.onDeleted?.({ request, key, bucket });\n\n return Response.json({ success: true, bucket, key });\n });\n}\n","import { CreateMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildContentDisposition } from \"../../helpers\";\n\ntype Payload = {\n key: string;\n bucket?: string;\n contentType?: string;\n /* Declared total byte size of the file being uploaded. /\n fileSize?: number;\n metadata?: Record<string, string>;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition: attachment; filename=\"...\"` on the S3 object. /\n fileName?: string;\n};\n\nexport function createMultipartInitHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const acl = body.acl === \"public-read\" ? \"public-read\" : \"private\";\n const fileSize =\n typeof body.fileSize === \"number\" && body.fileSize > 0\n ? Math.floor(body.fileSize)\n : undefined;\n\n const guardResult = await runHook(config.multipart?.initGuard, {\n request,\n key,\n bucket,\n fileSize,\n });\n if (guardResult) return guardResult;\n\n const { UploadId } = await config.s3.send(\n new CreateMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n ContentType: body.contentType,\n ContentDisposition: body.fileName\n ? buildContentDisposition(body.fileName)\n : undefined,\n Metadata: body.metadata,\n ACL: acl,\n }),\n );\n\n await config.multipart?.onInit?.({\n request,\n key,\n bucket,\n uploadId: UploadId!,\n contentType: body.contentType,\n fileSize,\n metadata: body.metadata,\n acl,\n });\n\n return Response.json({ bucket, key, uploadId: UploadId }, { status: 201 });\n });\n}\n","import { UploadPartCommand } from \"@aws-sdk/client-s3\";\nimport { getSignedUrl } from \"@aws-sdk/s3-request-presigner\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n normalizeExpiresIn,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n partNumber: number;\n bucket?: string;\n expiresIn?: number;\n};\n\nexport function createMultipartPartHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const partNumber = Number(body.partNumber);\n if (!Number.isInteger(partNumber) \|\| partNumber <= 0) {\n return Response.json(\n { message: \"partNumber must be a positive integer\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n const expiresIn = normalizeExpiresIn(body.expiresIn);\n\n const guardResult = await runHook(config.multipart?.partGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n const presignedUrl = await getSignedUrl(\n config.s3,\n new UploadPartCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n PartNumber: partNumber,\n }),\n { expiresIn },\n );\n\n return Response.json({\n presignedUrl,\n partNumber,\n uploadId,\n bucket,\n expiresIn,\n });\n });\n}\n","import {\n CompleteMultipartUploadCommand,\n HeadObjectCommand,\n ListPartsCommand,\n} from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\nimport { buildPublicUrl, parseFileName } from \"../../helpers\";\nimport { resolveObjectAcl } from \"../../helpers/server\";\n\ntype PartEntry = {\n partNumber: number;\n};\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n parts: PartEntry[];\n};\n\nexport function createMultipartCompleteHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const parts = (Array.isArray(body.parts) ? body.parts : [])\n .map(({ partNumber }) => Number(partNumber))\n .filter((n) => Number.isInteger(n) && n > 0)\n .sort((a, b) => a - b);\n\n if (!parts.length) {\n return Response.json(\n { message: \"At least one valid part is required\" },\n { status: 400 },\n );\n }\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.completeGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n // Fetch authoritative ETags from S3 — this works regardless of whether\n // the client's CORS config exposes the ETag header.\n const listed = await config.s3.send(\n new ListPartsCommand({ Bucket: bucket, Key: key, UploadId: uploadId }),\n );\n const listedParts = listed.Parts ?? [];\n\n const completeParts = parts.map((partNumber) => {\n const found = listedParts.find((p) => p.PartNumber === partNumber);\n return { PartNumber: partNumber, ETag: found?.ETag ?? \"\" };\n });\n\n const completeResult = await config.s3.send(\n new CompleteMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n MultipartUpload: { Parts: completeParts },\n }),\n );\n\n // Some S3-compatible providers finalize multipart uploads asynchronously,\n // so HeadObject may transiently return stale or empty metadata right after\n // CompleteMultipartUpload. Retry until contentLength is non-zero.\n let head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n for (let attempt = 0; attempt < 4 && !head.ContentLength; attempt++) {\n await new Promise((r) => setTimeout(r, 250 2 attempt));\n head = await config.s3.send(\n new HeadObjectCommand({ Bucket: bucket, Key: key }),\n );\n }\n const contentLength = head.ContentLength ?? 0;\n const contentType = head.ContentType;\n const eTag = (head.ETag ?? completeResult.ETag ?? \"\").replace(/\"/g, \"\");\n\n const acl = await resolveObjectAcl(config.s3, bucket, key);\n const publicUrl = buildPublicUrl(config.resolvePublicUrl, bucket, key, acl);\n const fileName = parseFileName(head.ContentDisposition);\n\n await config.multipart?.onComplete?.({\n request,\n key,\n bucket,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n\n return Response.json({\n bucket,\n key,\n uploadId,\n contentLength,\n contentType,\n eTag,\n acl,\n fileName,\n publicUrl,\n });\n });\n}\n","import { AbortMultipartUploadCommand } from \"@aws-sdk/client-s3\";\nimport type { S3HandlerConfig } from \"../../types\";\nimport {\n parseBody,\n requireString,\n runHook,\n withS3ErrorHandler,\n} from \"../../internal-helpers\";\n\ntype Payload = {\n key: string;\n uploadId: string;\n bucket?: string;\n};\n\nexport function createMultipartAbortHandler(config: S3HandlerConfig) {\n return withS3ErrorHandler(async (request: Request) => {\n const body = await parseBody<Payload>(request);\n if (!body) {\n return Response.json(\n { message: \"Invalid JSON payload\" },\n { status: 400 },\n );\n }\n\n const key = requireString(body.key, \"key\");\n if (key instanceof Response) return key;\n\n const uploadId = requireString(body.uploadId, \"uploadId\");\n if (uploadId instanceof Response) return uploadId;\n\n const bucket = body.bucket?.trim() \|\| config.defaultBucket;\n\n const guardResult = await runHook(config.multipart?.abortGuard, {\n request,\n key,\n bucket,\n });\n if (guardResult) return guardResult;\n\n await config.s3.send(\n new AbortMultipartUploadCommand({\n Bucket: bucket,\n Key: key,\n UploadId: uploadId,\n }),\n );\n\n await config.multipart?.onAbort?.({\n request,\n key,\n bucket,\n uploadId,\n });\n\n return Response.json({ bucket, key, uploadId, aborted: true });\n });\n}\n","import type { S3HandlerConfig, S3Handlers } from \"./types\";\nimport { createUploadHandler } from \"./handlers/presign/upload\";\nimport { createConfirmHandler } from \"./handlers/presign/confirm\";\nimport { createDownloadHandler } from \"./handlers/presign/download\";\nimport { createDeleteHandler } from \"./handlers/delete\";\nimport { createMultipartInitHandler } from \"./handlers/multipart/init\";\nimport { createMultipartPartHandler } from \"./handlers/multipart/part\";\nimport { createMultipartCompleteHandler } from \"./handlers/multipart/complete\";\nimport { createMultipartAbortHandler } from \"./handlers/multipart/abort\";\n\nexport function createHandlers(config: S3HandlerConfig): S3Handlers {\n return {\n presign: {\n upload: createUploadHandler(config),\n confirm: createConfirmHandler(config),\n download: createDownloadHandler(config),\n },\n multipart: {\n init: createMultipartInitHandler(config),\n part: createMultipartPartHandler(config),\n complete: createMultipartCompleteHandler(config),\n abort: createMultipartAbortHandler(config),\n },\n delete: createDeleteHandler(config),\n };\n}\n","import type { S3RouteHandlerConfig } from \"./types\";\nimport { createHandlers } from \"./create-handlers\";\nimport { runHook } from \"./internal-helpers\";\n\nconst disabled = () => Response.json({ message: \"Not Found\" }, { status: 404 });\n\nexport function createRouter(config: S3RouteHandlerConfig) {\n const handlers = createHandlers(config);\n const base = config.basePath.replace(/\\/$/, \"\");\n\n return async (request: Request): Promise<Response> => {\n // Global guard — runs before every request\n const guardResult = await runHook(config.guard, { request });\n if (guardResult) return guardResult;\n\n const url = new URL(request.url);\n const subpath = url.pathname.slice(base.length).replace(/^\\//, \"\");\n const method = request.method;\n\n if (method === \"POST\" && subpath === \"presign/upload\")\n return config.upload?.enabled\n ? handlers.presign.upload(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/upload/confirm\")\n return config.upload?.enabled\n ? handlers.presign.confirm(request)\n : disabled();\n if (method === \"GET\" && subpath === \"presign/download\")\n return config.download?.enabled\n ? handlers.presign.download(request)\n : disabled();\n if (method === \"DELETE\" && subpath === \"delete\")\n return config.delete?.enabled ? handlers.delete(request) : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/init\")\n return config.multipart?.enabled\n ? handlers.multipart.init(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/part\")\n return config.multipart?.enabled\n ? handlers.multipart.part(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/complete\")\n return config.multipart?.enabled\n ? handlers.multipart.complete(request)\n : disabled();\n if (method === \"POST\" && subpath === \"presign/multipart/abort\")\n return config.multipart?.enabled\n ? handlers.multipart.abort(request)\n : disabled();\n\n return Response.json({ message: \"Not Found\" }, { status: 404 });\n };\n}\n","export type PresignResponse = {\n key: string;\n bucket: string;\n url: string;\n expiresIn: number;\n};\n\nexport type PresignedPostResponse = {\n key: string;\n bucket: string;\n url: string;\n fields: Record<string, string>;\n expiresIn: number;\n};\n\nexport type MultipartInitResponse = {\n key: string;\n bucket: string;\n uploadId: string;\n};\n\nexport type MultipartPartResponse = {\n presignedUrl: string;\n partNumber: number;\n uploadId: string;\n bucket: string;\n expiresIn: number;\n};\n\nexport type UploadConfirmResponse = {\n key: string;\n bucket: string;\n contentType?: string;\n contentLength: number;\n eTag?: string;\n acl: \"private\" \| \"public-read\";\n / Display file name parsed from the object's Content-Disposition header. /\n fileName?: string;\n /* Public URL of the object. Only present when `acl` is `public-read` and `publicUrlBase` is configured on the server. /\n publicUrl?: string;\n};\n\nexport type S3Api = {\n upload: (payload: {\n key: string;\n contentType?: string;\n /\n Exact byte size of the file. When provided the presigned POST policy\n * locks `content-length-range` to `[fileSize, fileSize]` so S3 rejects\n * uploads of any other size at the storage layer.\n /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition` on the S3 object. /\n fileName?: string;\n }) => Promise<PresignedPostResponse>;\n confirm: (payload: {\n key: string;\n bucket?: string;\n }) => Promise<UploadConfirmResponse>;\n download: (\n key: string,\n options?: { fileName?: string; bucket?: string },\n ) => Promise<PresignResponse>;\n delete: (\n key: string,\n options?: { bucket?: string },\n ) => Promise<{ success: boolean; bucket: string; key: string }>;\n multipart: {\n init: (payload: {\n key: string;\n contentType?: string;\n /* Declared total byte size of the file. Used for quota/guard checks and stored in `onInit` context. /\n fileSize?: number;\n metadata?: Record<string, string>;\n bucket?: string;\n acl?: \"private\" \| \"public-read\";\n /* Original file name. Stored as `Content-Disposition` on the S3 object. /\n fileName?: string;\n }) => Promise<MultipartInitResponse>;\n signPart: (payload: {\n key: string;\n uploadId: string;\n partNumber: number;\n bucket?: string;\n }) => Promise<MultipartPartResponse>;\n complete: (payload: {\n key: string;\n uploadId: string;\n parts: Array<{ partNumber: number }>;\n bucket?: string;\n }) => Promise<{\n key: string;\n bucket: string;\n uploadId: string;\n contentLength: number;\n contentType?: string;\n eTag?: string;\n }>;\n abort: (payload: {\n key: string;\n uploadId: string;\n bucket?: string;\n }) => Promise<{ aborted: boolean }>;\n };\n};\n\nexport function createS3Api(basePath = \"/api/s3\"): S3Api {\n const base = basePath.replace(/\\/$/, \"\");\n\n const json = async <T>(url: string, init?: RequestInit): Promise<T> => {\n const res = await fetch(url, init);\n if (!res.ok) {\n const body = await res.json().catch(() => ({}));\n throw new Error((body as { message?: string }).message ?? res.statusText);\n }\n return res.json() as Promise<T>;\n };\n\n const post = <T>(url: string, body: unknown): Promise<T> =>\n json<T>(url, {\n method: \"POST\",\n headers: { \"Content-Type\": \"application/json\" },\n body: JSON.stringify(body),\n });\n\n return {\n upload(payload) {\n return post<PresignedPostResponse>(`${base}/presign/upload`, payload);\n },\n\n confirm(payload) {\n return post<UploadConfirmResponse>(\n `${base}/presign/upload/confirm`,\n payload,\n );\n },\n\n download(key, options?) {\n const params = new URLSearchParams({ key });\n if (options?.fileName) {\n const safe = options.fileName.replace(/[\"\\\\\\r\\n]/g, \"_\");\n params.set(\"fileName\", safe);\n }\n if (options?.bucket) params.set(\"bucket\", options.bucket);\n return json<PresignResponse>(`${base}/presign/download?${params}`);\n },\n\n delete(key, options?) {\n const params = new URLSearchParams({ key });\n if (options?.bucket) params.set(\"bucket\", options.bucket);\n return json<{ success: boolean; bucket: string; key: string }>(\n `${base}/delete?${params}`,\n { method: \"DELETE\" },\n );\n },\n\n multipart: {\n init(payload) {\n return post<MultipartInitResponse>(\n `${base}/presign/multipart/init`,\n payload,\n );\n },\n\n signPart(payload) {\n return post<MultipartPartResponse>(\n `${base}/presign/multipart/part`,\n payload,\n );\n },\n\n complete(payload) {\n return post<{\n key: string;\n bucket: string;\n uploadId: string;\n contentLength: number;\n contentType?: string;\n eTag?: string;\n }>(`${base}/presign/multipart/complete`, payload);\n },\n\n abort(payload) {\n return post<{ aborted: boolean }>(\n `${base}/presign/multipart/abort`,\n payload,\n );\n },\n },\n };\n}\n","export function validateFile(\n file: File,\n options: { accept?: string[]; maxFileSize?: number },\n): string \| null {\n if (options.accept?.length) {\n const allowed = options.accept.some((type) => {\n // Extension check: \".pdf\", \".jpg\", etc.\n if (type.startsWith(\".\")) {\n return file.name.toLowerCase().endsWith(type.toLowerCase());\n }\n // Wildcard MIME: \"image/\"\n if (type.endsWith(\"/\")) {\n return file.type.startsWith(type.replace(\"/\", \"/\"));\n }\n // Exact MIME: \"application/pdf\"\n return file.type === type;\n });\n if (!allowed) {\n const ext = file.name.includes(\".\") ? file.name.split(\".\").pop() : null;\n return `File type \"${ext ? `.${ext}` : file.type \|\| \"unknown\"}\" is not allowed`;\n }\n }\n\n if (file.size === 0) {\n return \"File is empty\";\n }\n\n if (options.maxFileSize && file.size > options.maxFileSize) {\n const maxMB = (options.maxFileSize / (1024 * 1024)).toFixed(1);\n return `File size exceeds ${maxMB} MB limit`;\n }\n\n return null;\n}\n"]}

package/dist/types.d.ts CHANGED Viewed

@@ -2,11 +2,13 @@ import type { S3Client } from "@aws-sdk/client-s3";
 export type HookContext = {
     request: Request;
 };
+/** Values are **client-declared** — not verified by S3. */
 export type UploadHookContext = HookContext & {
     key: string;
     bucket: string;
+    /** Client-declared MIME type. */
     contentType?: string;
-    /** Declared byte size of the file the client intends to upload. */
+    /** Client-declared file size in bytes. Can be spoofed — use for pre-checks only. */
     fileSize?: number;
     metadata?: Record<string, string>;
     acl?: "private" | "public-read";
@@ -15,11 +17,15 @@ export type UploadSuccessContext = UploadHookContext & {
     url: string;
     expiresIn: number;
 };
+/** `contentLength` and `eTag` are **verified by S3** via `HeadObject`. */
 export type UploadCompleteContext = HookContext & {
     key: string;
     bucket: string;
+    /** MIME type from HeadObject. */
     contentType?: string;
+    /** Verified file size in bytes from HeadObject. */
     contentLength: number;
+    /** ETag from HeadObject. */
     eTag?: string;
     metadata?: Record<string, string>;
     acl: "private" | "public-read";
@@ -74,66 +80,72 @@ export type S3HandlerConfig = {
     s3: S3Client;
     /** Default bucket used when no `bucket` is specified in the request payload. */
     defaultBucket: string;
-    /**
-     * Maximum file size in bytes. Requests declaring a larger `fileSize` are
-     * rejected before any presigned URL is generated.
-     */
-    maxFileSize?: number;
     /**
      * Resolves the public base URL for a bucket. The returned string is combined
      * with the object key to produce `publicUrl` on upload/multipart responses
-     * when the object ACL is `public-read`. Omit if all objects are private.
+     * when the object ACL is `public-read`. Return `undefined` for unknown buckets
+     * or omit entirely if all objects are private.
      *
      * ```ts
-     * // Single bucket (virtual-hosted style)
-     * resolvePublicUrl: (bucket) => `https://${bucket}.s3.eu-west-1.amazonaws.com`
-     *
-     * // Single bucket (Cloudflare R2 / fixed domain)
-     * resolvePublicUrl: (_bucket) => `https://pub-xxxxx.r2.dev`
+     * // Single bucket (path-style or virtual-hosted)
+     * resolvePublicUrl: (_bucket) => "https://cdn.example.com"
      *
      * // Multiple buckets — each mapped to its own domain
      * resolvePublicUrl: (bucket) =>
-     *   ({ avatars: "https://cdn.myapp.com", media: "https://media.myapp.com" })[bucket]
-     *   ?? `https://${bucket}.s3.amazonaws.com`
+     *   ({ avatars: "https://cdn.example.com", media: "https://media.example.com" })[bucket]
      * ```
      */
-    resolvePublicUrl?: (bucket: string) => string;
-    /** Runs before every request. Throw to reject (`403` by default). */
+    resolvePublicUrl?: (bucket: string) => string | undefined;
+    /**
+     * Runs before every request. Return normally to allow, throw to reject.
+     * Attach `status` to the thrown error to set the HTTP response code (default `403`).
+     */
     guard?: (context: HookContext) => Promise<void> | void;
     upload?: {
         /** Enable the upload endpoints. @default false */
         enabled?: boolean;
-        /** Runs before the presigned URL is generated. Throw to reject (`403` by default). */
-        guard?: (context: UploadHookContext) => Promise<void> | void;
-        /** Fires after the presigned URL is issued (file not yet uploaded). */
+        /** Runs before presigned URL generation. Values are **client-declared**. */
+        presignGuard?: (context: UploadHookContext) => Promise<void> | void;
+        /** Fires after presigned URL is issued. File not yet uploaded. */
         onPresigned?: (context: UploadSuccessContext) => Promise<void> | void;
-        /** Fires after upload confirmation. `contentLength` and `eTag` are verified S3 values. */
-        onUploaded?: (context: UploadCompleteContext) => Promise<void> | void;
+        /** Runs before upload confirmation. */
+        confirmGuard?: (context: HookContext & {
+            key: string;
+            bucket: string;
+        }) => Promise<void> | void;
+        /** Fires after upload confirmation. Values are **verified by S3** via `HeadObject`. */
+        onUploadConfirmed?: (context: UploadCompleteContext) => Promise<void> | void;
     };
     download?: {
         /** Enable the download endpoint. @default false */
         enabled?: boolean;
-        /** Runs before the presigned download URL is generated. Throw to reject (`403` by default). */
-        guard?: (context: DownloadHookContext) => Promise<void> | void;
-        /** Fires after the presigned download URL is issued. */
+        /** Runs before presigned GET URL generation. Values are **client-declared**. */
+        presignGuard?: (context: DownloadHookContext) => Promise<void> | void;
+        /** Fires after presigned GET URL is issued. */
         onPresigned?: (context: DownloadSuccessContext) => Promise<void> | void;
     };
     delete?: {
         /** Enable the delete endpoint. @default false */
         enabled?: boolean;
-        /** Runs before the object is deleted. Throw to reject (`403` by default). */
-        guard?: (context: DeleteHookContext) => Promise<void> | void;
-        /** Fires after the object is successfully deleted. */
+        /** Runs before object deletion. Values are **client-declared**. */
+        deleteGuard?: (context: DeleteHookContext) => Promise<void> | void;
+        /** Fires after object is successfully deleted. */
         onDeleted?: (context: DeleteHookContext) => Promise<void> | void;
     };
     multipart?: {
         /** Enable all multipart upload endpoints. @default false */
         enabled?: boolean;
-        /** Runs before every multipart operation. Throw to reject (`403` by default). */
-        guard?: (context: MultipartHookContext) => Promise<void> | void;
+        /** Runs before `CreateMultipartUpload`. Values are **client-declared**. */
+        initGuard?: (context: MultipartHookContext) => Promise<void> | void;
+        /** Runs before `UploadPart` presign. */
+        partGuard?: (context: MultipartHookContext) => Promise<void> | void;
+        /** Runs before `CompleteMultipartUpload`. */
+        completeGuard?: (context: MultipartHookContext) => Promise<void> | void;
+        /** Runs before `AbortMultipartUpload`. */
+        abortGuard?: (context: MultipartHookContext) => Promise<void> | void;
         /** Fires after `CreateMultipartUpload`. */
         onInit?: (context: MultipartInitSuccessContext) => Promise<void> | void;
-        /** Fires after `CompleteMultipartUpload`. `contentLength` and `eTag` are verified S3 values. */
+        /** Fires after `CompleteMultipartUpload`. Values are **verified by S3** via `HeadObject`. */
         onComplete?: (context: MultipartCompleteSuccessContext) => Promise<void> | void;
         /** Fires after `AbortMultipartUpload`. */
         onAbort?: (context: MultipartHookContext & {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@better-s3/server",
-  "version": "3.2.0",
+  "version": "3.3.0",
   "description": "Framework-agnostic S3 server handlers — presigned uploads, downloads, deletes, and multipart operations",
   "keywords": [
     "s3",