@budibase/backend-core 2.32.7 → 2.32.9

package/dist/index.js

@@ -54894,6 +54894,7 @@ __export(helpers_exports, {
   isGoogleSheets: () => isGoogleSheets,
   isSQL: () => isSQL,
   schema: () => schema_exports,
+  views: () => views_exports,
   withTimeout: () => withTimeout
 });
 
@@ -55044,6 +55045,7 @@ __export(schema_exports, {
   decodeNonAscii: () => decodeNonAscii,
   encodeNonAscii: () => encodeNonAscii,
   isDeprecatedSingleUserColumn: () => isDeprecatedSingleUserColumn,
+  isNumeric: () => isNumeric,
   isRequired: () => isRequired
 });
 function isDeprecatedSingleUserColumn(schema) {
@@ -55065,9 +55067,38 @@ function decodeNonAscii(str) {
     (match, p1) => String.fromCharCode(parseInt(p1, 16))
   );
 }
+function isNumeric(field) {
+  return field.type === "number" /* NUMBER */ || field.type === "bigint" /* BIGINT */;
+}
 
-// ../shared-core/src/filters.ts
+// ../shared-core/src/helpers/views.ts
+var views_exports = {};
+__export(views_exports, {
+  basicFields: () => basicFields,
+  calculationFields: () => calculationFields,
+  isBasicViewField: () => isBasicViewField,
+  isCalculationField: () => isCalculationField,
+  isCalculationView: () => isCalculationView
+});
 var import_lodash = require("lodash");
+function isCalculationField(field) {
+  return "calculationType" in field;
+}
+function isBasicViewField(field) {
+  return !isCalculationField(field);
+}
+function isCalculationView(view) {
+  return Object.values(view.schema || {}).some(isCalculationField);
+}
+function calculationFields(view) {
+  return (0, import_lodash.pickBy)(view.schema || {}, isCalculationField);
+}
+function basicFields(view) {
+  return (0, import_lodash.pickBy)(view.schema || {}, (field) => !isCalculationField(field));
+}
+
+// ../shared-core/src/filters.ts
+var import_lodash2 = require("lodash");
 var HBS_REGEX = /{{([^{].*?)}}/g;
 var LOGICAL_OPERATORS = Object.values(LogicalOperator);
 var SEARCH_OPERATORS = [
@@ -55136,7 +55167,7 @@ var NoEmptyFilterStrings = [
 ];
 function recurseLogicalOperators(filters, fn) {
   for (const logical of LOGICAL_OPERATORS) {
-    if (filters[logical]) {
+    if (filters?.[logical]) {
       filters[logical].conditions = filters[logical].conditions.map(
         (condition) => fn(condition)
       );
@@ -55345,7 +55376,7 @@ var buildQuery = (filter) => {
 function fixupFilterArrays(filters) {
   for (const searchField of Object.values(ArrayOperator)) {
     const field = filters[searchField];
-    if (field == null || !(0, import_lodash.isPlainObject)(field)) {
+    if (field == null || !(0, import_lodash2.isPlainObject)(field)) {
       continue;
     }
     for (const key of Object.keys(field)) {
@@ -55432,10 +55463,10 @@ function runQuery(docs, query) {
       if (docValue == null || docValue === "") {
         return false;
       }
-      if ((0, import_lodash.isPlainObject)(testValue.low) && (0, import_lodash.isEmpty)(testValue.low)) {
+      if ((0, import_lodash2.isPlainObject)(testValue.low) && (0, import_lodash2.isEmpty)(testValue.low)) {
         testValue.low = void 0;
       }
-      if ((0, import_lodash.isPlainObject)(testValue.high) && (0, import_lodash.isEmpty)(testValue.high)) {
+      if ((0, import_lodash2.isPlainObject)(testValue.high) && (0, import_lodash2.isEmpty)(testValue.high)) {
         testValue.high = void 0;
       }
       if (testValue.low == null && testValue.high == null) {
@@ -55687,6 +55718,7 @@ var utils_exports = {};
 __export(utils_exports, {
   filterValueToLabel: () => filterValueToLabel,
   hasSchema: () => hasSchema,
+  isSupportedUserSearch: () => isSupportedUserSearch,
   parallelForeach: () => parallelForeach,
   trimOtherProps: () => trimOtherProps,
   unreachable: () => unreachable
@@ -55742,6 +55774,29 @@ function trimOtherProps(object, allowedProps) {
   );
   return result;
 }
+function isSupportedUserSearch(query) {
+  const allowed = [
+    { op: "string" /* STRING */, key: "email" },
+    { op: "equal" /* EQUAL */, key: "_id" },
+    { op: "oneOf" /* ONE_OF */, key: "_id" }
+  ];
+  for (let [key, operation] of Object.entries(query)) {
+    if (typeof operation !== "object") {
+      return false;
+    }
+    const fields = Object.keys(operation || {});
+    if (fields.length === 0) {
+      continue;
+    }
+    const allowedOperation = allowed.find(
+      (allow) => allow.op === key && fields.length === 1 && fields[0] === allow.key
+    );
+    if (!allowedOperation) {
+      return false;
+    }
+  }
+  return true;
+}
 
 // ../shared-core/src/sdk/index.ts
 var sdk_exports = {};
@@ -56132,6 +56187,7 @@ __export(context_exports, {
   getProdAppDB: () => getProdAppDB,
   getProdAppId: () => getProdAppId,
   getScimDBName: () => getScimDBName,
+  getTableForView: () => getTableForView,
   getTenantIDFromAppID: () => getTenantIDFromAppID,
   getTenantId: () => getTenantId,
   identity: () => identity_exports,
@@ -56139,7 +56195,8 @@ __export(context_exports, {
   isScim: () => isScim,
   isTenancyEnabled: () => isTenancyEnabled,
   isTenantIdSet: () => isTenantIdSet,
-  setFeatureFlags: () => setFeatureFlags
+  setFeatureFlags: () => setFeatureFlags,
+  setTableForView: () => setTableForView
 });
 
 // src/context/identity.ts
@@ -56193,7 +56250,7 @@ function getAccountUserId(account) {
 
 // src/environment.ts
 var import_fs = require("fs");
-var import_lodash2 = require("lodash");
+var import_lodash3 = require("lodash");
 function isTest() {
   return isJest();
 }
@@ -56361,7 +56418,7 @@ var environment = {
   OPENAI_API_KEY: process.env.OPENAI_API_KEY
 };
 function setEnv(newEnvVars) {
-  const oldEnv = (0, import_lodash2.cloneDeep)(environment);
+  const oldEnv = (0, import_lodash3.cloneDeep)(environment);
   let key;
   for (key in newEnvVars) {
     environment._set(key, newEnvVars[key]);
@@ -56913,6 +56970,7 @@ __export(db_exports, {
   isProdAppID: () => isProdAppID,
   isSameAppID: () => isSameAppID,
   isTableId: () => isTableId,
+  isViewId: () => isViewId,
   paginatedSearch: () => paginatedSearch,
   pagination: () => pagination,
   prefixRoleID: () => prefixRoleID,
@@ -58453,6 +58511,7 @@ var AppState = /* @__PURE__ */ ((AppState2) => {
   return AppState2;
 })(AppState || {});
 var EXPIRY_SECONDS = 3600;
+var INVALID_EXPIRY_SECONDS = 60;
 async function populateFromDB(appId) {
   return doWithDB(
     appId,
@@ -58475,7 +58534,7 @@ async function getAppMetadata(appId) {
     } catch (err) {
       if (err && err.status === 404) {
         metadata = { state: "invalid" /* INVALID */ };
-        expiry = void 0;
+        expiry = INVALID_EXPIRY_SECONDS;
       } else {
         throw err;
       }
@@ -58530,6 +58589,7 @@ __export(docIds_exports, {
   isDatasourceId: () => isDatasourceId,
   isGlobalUserID: () => isGlobalUserID,
   isTableId: () => isTableId,
+  isViewId: () => isViewId,
   prefixRoleID: () => prefixRoleID
 });
 
@@ -58615,8 +58675,11 @@ function getQueryIndex(viewName) {
 var isTableId = (id) => {
   return !!id && (id.startsWith(`${"ta" /* TABLE */}${SEPARATOR}`) || id.startsWith(`${"datasource_plus" /* DATASOURCE_PLUS */}${SEPARATOR}`));
 };
+function isViewId(id) {
+  return !!id && id.startsWith(`${"view" /* VIEW */}${SEPARATOR}`);
+}
 var isDatasourceId = (id) => {
-  return id && id.startsWith(`${"datasource" /* DATASOURCE */}${SEPARATOR}`);
+  return !!id && id.startsWith(`${"datasource" /* DATASOURCE */}${SEPARATOR}`);
 };
 function getWorkspaceParams(id = "", otherProps = {}) {
   return {
@@ -59815,87 +59878,467 @@ __export(features_exports, {
 });
 var import_posthog_node = require("posthog-node");
 var import_dd_trace3 = __toESM(require("dd-trace"));
-var posthog;
-function init4(opts) {
-  if (environment_default.POSTHOG_TOKEN && environment_default.POSTHOG_API_HOST && !environment_default.SELF_HOSTED && environment_default.POSTHOG_FEATURE_FLAGS_ENABLED) {
-    console.log("initializing posthog client...");
-    posthog = new import_posthog_node.PostHog(environment_default.POSTHOG_TOKEN, {
-      host: environment_default.POSTHOG_API_HOST,
-      personalApiKey: environment_default.POSTHOG_PERSONAL_TOKEN,
-      ...opts
-    });
-  } else {
-    console.log("posthog disabled");
+
+// src/utils/index.ts
+var utils_exports4 = {};
+__export(utils_exports4, {
+  Duration: () => Duration,
+  DurationType: () => DurationType,
+  clearCookie: () => clearCookie,
+  compare: () => compare,
+  getAppIdFromCtx: () => getAppIdFromCtx,
+  getCookie: () => getCookie,
+  hasCircularStructure: () => hasCircularStructure,
+  hash: () => hash,
+  isAudited: () => isAudited,
+  isClient: () => isClient,
+  isPublicApiRequest: () => isPublicApiRequest,
+  isServingApp: () => isServingApp,
+  isServingBuilder: () => isServingBuilder,
+  isServingBuilderPreview: () => isServingBuilderPreview,
+  isValidInternalAPIKey: () => isValidInternalAPIKey,
+  newid: () => newid,
+  openJwt: () => openJwt,
+  resolveAppUrl: () => resolveAppUrl,
+  setCookie: () => setCookie,
+  timeout: () => timeout,
+  validEmail: () => validEmail
+});
+
+// src/utils/hashing.ts
+var bcrypt = environment_default.JS_BCRYPT ? require("bcryptjs") : require("bcrypt");
+var SALT_ROUNDS = environment_default.SALT_ROUNDS || 10;
+async function hash(data) {
+  const salt = await bcrypt.genSalt(SALT_ROUNDS);
+  return bcrypt.hash(data, salt);
+}
+async function compare(data, encrypted) {
+  return bcrypt.compare(data, encrypted);
+}
+
+// src/tenancy/index.ts
+var tenancy_exports = {};
+__export(tenancy_exports, {
+  addTenantToUrl: () => addTenantToUrl,
+  getTenantDB: () => getTenantDB,
+  getTenantIDFromCtx: () => getTenantIDFromCtx,
+  getTenantInfo: () => getTenantInfo,
+  isUserInAppTenant: () => isUserInAppTenant,
+  saveTenantInfo: () => saveTenantInfo
+});
+
+// src/tenancy/db.ts
+function getTenantDB(tenantId) {
+  return getDB(getGlobalDBName(tenantId));
+}
+async function saveTenantInfo(tenantInfo) {
+  const db = getTenantDB(tenantInfo.tenantId);
+  return db.put({
+    _id: "tenant_info",
+    ...tenantInfo
+  });
+}
+async function getTenantInfo(tenantId) {
+  try {
+    const db = getTenantDB(tenantId);
+    const tenantInfo = await db.get("tenant_info");
+    delete tenantInfo.owner.password;
+    return tenantInfo;
+  } catch {
+    return void 0;
   }
 }
-function shutdown2() {
-  posthog?.shutdown();
+
+// src/tenancy/tenancy.ts
+function addTenantToUrl(url) {
+  const tenantId = getTenantId();
+  if (isMultiTenant()) {
+    const char = url.indexOf("?") === -1 ? "?" : "&";
+    url += `${char}tenantId=${tenantId}`;
+  }
+  return url;
 }
-var Flag = class {
-  constructor(defaultValue) {
-    this.defaultValue = defaultValue;
+var isUserInAppTenant = (appId, user) => {
+  let userTenantId;
+  if (user) {
+    userTenantId = user.tenantId || DEFAULT_TENANT_ID;
+  } else {
+    userTenantId = getTenantId();
   }
-  static boolean(defaultValue) {
-    return new BooleanFlag(defaultValue);
+  const tenantId = getTenantIDFromAppID(appId) || DEFAULT_TENANT_ID;
+  return tenantId === userTenantId;
+};
+var ALL_STRATEGIES = Object.values(TenantResolutionStrategy);
+var getTenantIDFromCtx = (ctx, opts) => {
+  if (!isMultiTenant()) {
+    return DEFAULT_TENANT_ID;
   }
-  static string(defaultValue) {
-    return new StringFlag(defaultValue);
+  if (opts.allowNoTenant === void 0) {
+    opts.allowNoTenant = false;
   }
-  static number(defaultValue) {
-    return new NumberFlag(defaultValue);
+  if (!opts.includeStrategies) {
+    opts.includeStrategies = ALL_STRATEGIES;
   }
-};
-var BooleanFlag = class extends Flag {
-  parse(value) {
-    if (typeof value === "string") {
-      return ["true", "t", "1"].includes(value.toLowerCase());
+  if (!opts.excludeStrategies) {
+    opts.excludeStrategies = [];
+  }
+  const isAllowed = (strategy) => {
+    if (opts.excludeStrategies?.includes(strategy)) {
+      return false;
     }
-    if (typeof value === "boolean") {
-      return value;
+    if (opts.includeStrategies?.includes(strategy)) {
+      return true;
+    }
+  };
+  if (isAllowed("user" /* USER */)) {
+    const userTenantId = ctx.user?.tenantId;
+    if (userTenantId) {
+      return userTenantId;
     }
-    throw new Error(`could not parse value "${value}" as boolean`);
   }
-};
-var StringFlag = class extends Flag {
-  parse(value) {
-    if (typeof value === "string") {
-      return value;
+  if (isAllowed("header" /* HEADER */)) {
+    const headerTenantId = ctx.request.headers["x-budibase-tenant-id" /* TENANT_ID */];
+    if (headerTenantId) {
+      return headerTenantId;
     }
-    throw new Error(`could not parse value "${value}" as string`);
   }
-};
-var NumberFlag = class extends Flag {
-  parse(value) {
-    if (typeof value === "number") {
-      return value;
+  if (isAllowed("query" /* QUERY */)) {
+    const queryTenantId = ctx.request.query.tenantId;
+    if (queryTenantId) {
+      return queryTenantId;
     }
-    if (typeof value === "string") {
-      const parsed = parseFloat(value);
-      if (!isNaN(parsed)) {
-        return parsed;
+  }
+  if (isAllowed("subdomain" /* SUBDOMAIN */)) {
+    let platformHost;
+    try {
+      platformHost = new URL(getPlatformURL()).host.split(":")[0];
+    } catch (err) {
+      if (err.code !== "ERR_INVALID_URL") {
+        throw err;
+      }
+    }
+    const requestHost = ctx.host;
+    if (platformHost && requestHost.includes(platformHost)) {
+      const tenantId = requestHost.substring(
+        0,
+        requestHost.indexOf(`.${platformHost}`)
+      );
+      if (tenantId) {
+        return tenantId;
       }
     }
-    throw new Error(`could not parse value "${value}" as number`);
-  }
-};
-var FlagSet = class {
-  constructor(flagSchema) {
-    this.flagSchema = flagSchema;
-    this.setId = crypto.randomUUID();
-  }
-  defaults() {
-    return Object.keys(this.flagSchema).reduce((acc, key) => {
-      const typedKey = key;
-      acc[typedKey] = this.flagSchema[key].defaultValue;
-      return acc;
-    }, {});
   }
-  isFlagName(name) {
-    return this.flagSchema[name] !== void 0;
+  if (isAllowed("path" /* PATH */)) {
+    const match = ctx.matched.find(
+      (m) => !!m.paramNames.find((p) => p.name === "tenantId")
+    );
+    const ctxUrl = ctx.originalUrl;
+    let url;
+    if (ctxUrl.includes("?")) {
+      url = ctxUrl.split("?")[0];
+    } else {
+      url = ctxUrl;
+    }
+    if (match) {
+      const params2 = match.params(url, match.captures(url), {});
+      if (params2.tenantId) {
+        return params2.tenantId;
+      }
+    }
   }
-  async get(key, ctx) {
-    const flags2 = await this.fetch(ctx);
-    return flags2[key];
+  if (!opts.allowNoTenant) {
+    ctx.throw(403, "Tenant id not set");
+  }
+  return void 0;
+};
+
+// src/utils/utils.ts
+var import_jsonwebtoken = __toESM(require("jsonwebtoken"));
+var APP_PREFIX3 = "app" /* APP */ + SEPARATOR;
+var PROD_APP_PREFIX = "/app/";
+var BUILDER_PREVIEW_PATH = "/app/preview";
+var BUILDER_PREFIX = "/builder";
+var BUILDER_APP_PREFIX = `${BUILDER_PREFIX}/app/`;
+var PUBLIC_API_PREFIX = "/api/public/v";
+function confirmAppId(possibleAppId) {
+  return possibleAppId && possibleAppId.startsWith(APP_PREFIX3) ? possibleAppId : void 0;
+}
+async function resolveAppUrl(ctx) {
+  const appUrl = ctx.path.split("/")[2];
+  let possibleAppUrl = `/${appUrl.toLowerCase()}`;
+  let tenantId = getTenantId();
+  if (!environment_default.isDev() && environment_default.MULTI_TENANCY) {
+    tenantId = getTenantIDFromCtx(ctx, {
+      includeStrategies: ["subdomain" /* SUBDOMAIN */]
+    });
+  }
+  const apps = await doInTenant(
+    tenantId,
+    () => getAllApps({ dev: false })
+  );
+  const app = apps.filter(
+    (a) => a.url && a.url.toLowerCase() === possibleAppUrl
+  )[0];
+  return app && app.appId ? app.appId : void 0;
+}
+function isServingApp(ctx) {
+  if (ctx.path.startsWith(`/${APP_PREFIX3}`)) {
+    return true;
+  }
+  return ctx.path.startsWith(PROD_APP_PREFIX);
+}
+function isServingBuilder(ctx) {
+  return ctx.path.startsWith(BUILDER_APP_PREFIX);
+}
+function isServingBuilderPreview(ctx) {
+  return ctx.path.startsWith(BUILDER_PREVIEW_PATH);
+}
+function isPublicApiRequest(ctx) {
+  return ctx.path.startsWith(PUBLIC_API_PREFIX);
+}
+async function getAppIdFromCtx(ctx) {
+  const options2 = [ctx.request.headers["x-budibase-app-id" /* APP_ID */]];
+  let appId;
+  for (let option of options2) {
+    appId = confirmAppId(option);
+    if (appId) {
+      break;
+    }
+  }
+  if (!appId && ctx.request.body && ctx.request.body.appId) {
+    appId = confirmAppId(ctx.request.body.appId);
+  }
+  const pathId = parseAppIdFromUrlPath(ctx.path);
+  if (!appId && pathId) {
+    appId = confirmAppId(pathId);
+  }
+  const isBuilderPreview = ctx.path.startsWith(BUILDER_PREVIEW_PATH);
+  const isViewingProdApp = ctx.path.startsWith(PROD_APP_PREFIX) && !isBuilderPreview;
+  if (!appId && isViewingProdApp) {
+    appId = confirmAppId(await resolveAppUrl(ctx));
+  }
+  const referer = ctx.request.headers.referer;
+  if (!appId && referer?.includes(BUILDER_APP_PREFIX)) {
+    const refererId = parseAppIdFromUrlPath(ctx.request.headers.referer);
+    appId = confirmAppId(refererId);
+  }
+  return appId;
+}
+function parseAppIdFromUrlPath(url) {
+  if (!url) {
+    return;
+  }
+  return url.split("?")[0].split("/").find((subPath) => subPath.startsWith(APP_PREFIX3));
+}
+function openJwt(token) {
+  if (!token) {
+    return void 0;
+  }
+  try {
+    return import_jsonwebtoken.default.verify(token, environment_default.JWT_SECRET);
+  } catch (e) {
+    if (environment_default.JWT_SECRET_FALLBACK) {
+      return import_jsonwebtoken.default.verify(token, environment_default.JWT_SECRET_FALLBACK);
+    } else {
+      throw e;
+    }
+  }
+}
+function isValidInternalAPIKey(apiKey) {
+  if (environment_default.INTERNAL_API_KEY && environment_default.INTERNAL_API_KEY === apiKey) {
+    return true;
+  }
+  return !!(environment_default.INTERNAL_API_KEY_FALLBACK && environment_default.INTERNAL_API_KEY_FALLBACK === apiKey);
+}
+function getCookie(ctx, name) {
+  const cookie = ctx.cookies.get(name);
+  if (!cookie) {
+    return void 0;
+  }
+  return openJwt(cookie);
+}
+function setCookie(ctx, value, name = "builder", opts = { sign: true }) {
+  if (value && opts && opts.sign) {
+    value = import_jsonwebtoken.default.sign(value, environment_default.JWT_SECRET);
+  }
+  const config = {
+    expires: MAX_VALID_DATE,
+    path: "/",
+    httpOnly: false,
+    overwrite: true
+  };
+  if (environment_default.COOKIE_DOMAIN) {
+    config.domain = environment_default.COOKIE_DOMAIN;
+  }
+  ctx.cookies.set(name, value, config);
+}
+function clearCookie(ctx, name) {
+  setCookie(ctx, null, name);
+}
+function isClient(ctx) {
+  return ctx.headers["x-budibase-type" /* TYPE */] === "client";
+}
+function timeout(timeMs) {
+  return new Promise((resolve) => setTimeout(resolve, timeMs));
+}
+function isAudited(event) {
+  return !!AuditedEventFriendlyName[event];
+}
+function hasCircularStructure(json) {
+  if (typeof json !== "object") {
+    return false;
+  }
+  try {
+    JSON.stringify(json);
+  } catch (err) {
+    if (err instanceof Error && err?.message.includes("circular structure")) {
+      return true;
+    }
+  }
+  return false;
+}
+
+// src/utils/stringUtils.ts
+function validEmail(value) {
+  return value && !!value.match(
+    /^(([^<>()[\]\\.,;:\s@"]+(\.[^<>()[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/
+  );
+}
+
+// src/utils/Duration.ts
+var DurationType = /* @__PURE__ */ ((DurationType2) => {
+  DurationType2["MILLISECONDS"] = "milliseconds";
+  DurationType2["SECONDS"] = "seconds";
+  DurationType2["MINUTES"] = "minutes";
+  DurationType2["HOURS"] = "hours";
+  DurationType2["DAYS"] = "days";
+  return DurationType2;
+})(DurationType || {});
+var conversion = {
+  milliseconds: 1,
+  seconds: 1e3,
+  minutes: 60 * 1e3,
+  hours: 60 * 60 * 1e3,
+  days: 24 * 60 * 60 * 1e3
+};
+var Duration = class _Duration {
+  static convert(from, to, duration) {
+    const milliseconds = duration * conversion[from];
+    return milliseconds / conversion[to];
+  }
+  static from(from, duration) {
+    return {
+      to: (to) => {
+        return _Duration.convert(from, to, duration);
+      },
+      toMs: () => {
+        return _Duration.convert(from, "milliseconds" /* MILLISECONDS */, duration);
+      },
+      toSeconds: () => {
+        return _Duration.convert(from, "seconds" /* SECONDS */, duration);
+      }
+    };
+  }
+  static fromSeconds(duration) {
+    return _Duration.from("seconds" /* SECONDS */, duration);
+  }
+  static fromMinutes(duration) {
+    return _Duration.from("minutes" /* MINUTES */, duration);
+  }
+  static fromHours(duration) {
+    return _Duration.from("hours" /* HOURS */, duration);
+  }
+  static fromDays(duration) {
+    return _Duration.from("days" /* DAYS */, duration);
+  }
+  static fromMilliseconds(duration) {
+    return _Duration.from("milliseconds" /* MILLISECONDS */, duration);
+  }
+};
+
+// src/features/index.ts
+var posthog;
+function init4(opts) {
+  if (environment_default.POSTHOG_TOKEN && environment_default.POSTHOG_API_HOST && !environment_default.SELF_HOSTED && environment_default.POSTHOG_FEATURE_FLAGS_ENABLED) {
+    console.log("initializing posthog client...");
+    posthog = new import_posthog_node.PostHog(environment_default.POSTHOG_TOKEN, {
+      host: environment_default.POSTHOG_API_HOST,
+      personalApiKey: environment_default.POSTHOG_PERSONAL_TOKEN,
+      featureFlagsPollingInterval: Duration.fromMinutes(3).toMs(),
+      ...opts
+    });
+  } else {
+    console.log("posthog disabled");
+  }
+}
+function shutdown2() {
+  posthog?.shutdown();
+}
+var Flag = class {
+  constructor(defaultValue) {
+    this.defaultValue = defaultValue;
+  }
+  static boolean(defaultValue) {
+    return new BooleanFlag(defaultValue);
+  }
+  static string(defaultValue) {
+    return new StringFlag(defaultValue);
+  }
+  static number(defaultValue) {
+    return new NumberFlag(defaultValue);
+  }
+};
+var BooleanFlag = class extends Flag {
+  parse(value) {
+    if (typeof value === "string") {
+      return ["true", "t", "1"].includes(value.toLowerCase());
+    }
+    if (typeof value === "boolean") {
+      return value;
+    }
+    throw new Error(`could not parse value "${value}" as boolean`);
+  }
+};
+var StringFlag = class extends Flag {
+  parse(value) {
+    if (typeof value === "string") {
+      return value;
+    }
+    throw new Error(`could not parse value "${value}" as string`);
+  }
+};
+var NumberFlag = class extends Flag {
+  parse(value) {
+    if (typeof value === "number") {
+      return value;
+    }
+    if (typeof value === "string") {
+      const parsed = parseFloat(value);
+      if (!isNaN(parsed)) {
+        return parsed;
+      }
+    }
+    throw new Error(`could not parse value "${value}" as number`);
+  }
+};
+var FlagSet = class {
+  constructor(flagSchema) {
+    this.flagSchema = flagSchema;
+    this.setId = crypto.randomUUID();
+  }
+  defaults() {
+    return Object.keys(this.flagSchema).reduce((acc, key) => {
+      const typedKey = key;
+      acc[typedKey] = this.flagSchema[key].defaultValue;
+      return acc;
+    }, {});
+  }
+  isFlagName(name) {
+    return this.flagSchema[name] !== void 0;
+  }
+  async get(key, ctx) {
+    const flags2 = await this.fetch(ctx);
+    return flags2[key];
   }
   async isEnabled(key, ctx) {
     const flags2 = await this.fetch(ctx);
@@ -59997,7 +60440,7 @@ var flags = new FlagSet({
   AUTOMATION_BRANCHING: Flag.boolean(environment_default.isDev()),
   SQS: Flag.boolean(environment_default.isDev()),
   ["AI_CUSTOM_CONFIGS" /* AI_CUSTOM_CONFIGS */]: Flag.boolean(environment_default.isDev()),
-  ["ENRICHED_RELATIONSHIPS" /* ENRICHED_RELATIONSHIPS */]: Flag.boolean(false)
+  ["ENRICHED_RELATIONSHIPS" /* ENRICHED_RELATIONSHIPS */]: Flag.boolean(environment_default.isDev())
 });
 
 // src/db/couch/DatabaseImpl.ts
@@ -60098,7 +60541,7 @@ var DatabaseImpl = class _DatabaseImpl {
     return this.getDb();
   }
   // this function fetches the DB and handles if DB creation is needed
-  async performCall(call) {
+  async performCallWithDBCreation(call) {
     const db = this.getDb();
     const fnc = await call(db);
     try {
@@ -60106,11 +60549,20 @@ var DatabaseImpl = class _DatabaseImpl {
     } catch (err) {
       if (err.statusCode === 404 && err.reason === DATABASE_NOT_FOUND) {
         await this.checkAndCreateDb();
-        return await this.performCall(call);
+        return await this.performCallWithDBCreation(call);
       }
       throw new CouchDBError(`CouchDB error: ${err.message}`, err);
     }
   }
+  async performCall(call) {
+    const db = this.getDb();
+    const fnc = await call(db);
+    try {
+      return await fnc();
+    } catch (err) {
+      throw new CouchDBError(`CouchDB error: ${err.message}`, err);
+    }
+  }
   async get(id) {
     return this.performCall((db) => {
       if (!id) {
@@ -60194,7 +60646,7 @@ var DatabaseImpl = class _DatabaseImpl {
     if (!document._id) {
       throw new Error("Cannot store document without _id field.");
     }
-    return this.performCall(async (db) => {
+    return this.performCallWithDBCreation(async (db) => {
       if (!document.createdAt) {
         document.createdAt = (/* @__PURE__ */ new Date()).toISOString();
       }
@@ -60216,7 +60668,7 @@ var DatabaseImpl = class _DatabaseImpl {
   }
   async bulkDocs(documents) {
     const now = (/* @__PURE__ */ new Date()).toISOString();
-    return this.performCall((db) => {
+    return this.performCallWithDBCreation((db) => {
       return () => db.bulk({
         docs: documents.map((d) => ({ createdAt: now, ...d, updatedAt: now }))
       });
@@ -60224,7 +60676,21 @@ var DatabaseImpl = class _DatabaseImpl {
   }
   async allDocs(params2) {
     return this.performCall((db) => {
-      return () => db.list(params2);
+      return async () => {
+        try {
+          return await db.list(params2);
+        } catch (err) {
+          if (err.reason === DATABASE_NOT_FOUND) {
+            return {
+              offset: 0,
+              total_rows: 0,
+              rows: []
+            };
+          } else {
+            throw err;
+          }
+        }
+      };
     });
   }
   async _sqlQuery(url, method, body2) {
@@ -60638,6 +61104,21 @@ function setFeatureFlags(key, value) {
   context.featureFlagCache ??= {};
   context.featureFlagCache[key] = value;
 }
+function getTableForView(viewId) {
+  const context = getCurrentContext();
+  if (!context) {
+    return;
+  }
+  return context.viewToTableCache?.[viewId];
+}
+function setTableForView(viewId, table) {
+  const context = getCurrentContext();
+  if (!context) {
+    return;
+  }
+  context.viewToTableCache ??= {};
+  context.viewToTableCache[viewId] = table;
+}
 
 // src/cache/base/index.ts
 function generateTenantKey(key) {
@@ -60720,209 +61201,73 @@ var BaseCache = class {
   }
   /**
    * Read from the cache. Write to the cache if not exists.
-   */
-  async withCache(key, ttl = null, fetchFn, opts = { useTenancy: true }) {
-    const cachedValue = await this.get(key, opts);
-    if (cachedValue) {
-      return cachedValue;
-    }
-    try {
-      const fetchedValue = await fetchFn();
-      await this.store(key, fetchedValue, ttl, opts);
-      return fetchedValue;
-    } catch (err) {
-      console.error("Error fetching before cache - ", err);
-      throw err;
-    }
-  }
-  async bustCache(key) {
-    const client = await this.getClient();
-    try {
-      await client.delete(generateTenantKey(key));
-    } catch (err) {
-      console.error("Error busting cache - ", err);
-      throw err;
-    }
-  }
-  /**
-   * Delete the entry if the provided value matches the stored one.
-   */
-  async deleteIfValue(key, value, opts = { useTenancy: true }) {
-    key = opts.useTenancy ? generateTenantKey(key) : key;
-    const client = await this.getClient();
-    await client.deleteIfValue(key, value);
-  }
-};
-
-// src/cache/generic.ts
-var GENERIC = new BaseCache();
-var CacheKey = /* @__PURE__ */ ((CacheKey2) => {
-  CacheKey2["CHECKLIST"] = "checklist";
-  CacheKey2["INSTALLATION"] = "installation";
-  CacheKey2["ANALYTICS_ENABLED"] = "analyticsEnabled";
-  CacheKey2["UNIQUE_TENANT_ID"] = "uniqueTenantId";
-  CacheKey2["EVENTS"] = "events";
-  CacheKey2["BACKFILL_METADATA"] = "backfillMetadata";
-  CacheKey2["EVENTS_RATE_LIMIT"] = "eventsRateLimit";
-  return CacheKey2;
-})(CacheKey || {});
-var TTL = /* @__PURE__ */ ((TTL2) => {
-  TTL2[TTL2["ONE_MINUTE"] = 600] = "ONE_MINUTE";
-  TTL2[TTL2["ONE_HOUR"] = 3600] = "ONE_HOUR";
-  TTL2[TTL2["ONE_DAY"] = 86400] = "ONE_DAY";
-  return TTL2;
-})(TTL || {});
-var keys = (...args) => GENERIC.keys(...args);
-var get2 = (...args) => GENERIC.get(...args);
-var store = (...args) => GENERIC.store(...args);
-var destroy = (...args) => GENERIC.delete(...args);
-var withCache = (...args) => GENERIC.withCache(...args);
-var bustCache = (...args) => GENERIC.bustCache(...args);
-
-// src/cache/user.ts
-var user_exports = {};
-__export(user_exports, {
-  getUser: () => getUser,
-  getUsers: () => getUsers,
-  invalidateUser: () => invalidateUser
-});
-
-// src/tenancy/index.ts
-var tenancy_exports = {};
-__export(tenancy_exports, {
-  addTenantToUrl: () => addTenantToUrl,
-  getTenantDB: () => getTenantDB,
-  getTenantIDFromCtx: () => getTenantIDFromCtx,
-  getTenantInfo: () => getTenantInfo,
-  isUserInAppTenant: () => isUserInAppTenant,
-  saveTenantInfo: () => saveTenantInfo
-});
-
-// src/tenancy/db.ts
-function getTenantDB(tenantId) {
-  return getDB(getGlobalDBName(tenantId));
-}
-async function saveTenantInfo(tenantInfo) {
-  const db = getTenantDB(tenantInfo.tenantId);
-  return db.put({
-    _id: "tenant_info",
-    ...tenantInfo
-  });
-}
-async function getTenantInfo(tenantId) {
-  try {
-    const db = getTenantDB(tenantId);
-    const tenantInfo = await db.get("tenant_info");
-    delete tenantInfo.owner.password;
-    return tenantInfo;
-  } catch {
-    return void 0;
-  }
-}
-
-// src/tenancy/tenancy.ts
-function addTenantToUrl(url) {
-  const tenantId = getTenantId();
-  if (isMultiTenant()) {
-    const char = url.indexOf("?") === -1 ? "?" : "&";
-    url += `${char}tenantId=${tenantId}`;
-  }
-  return url;
-}
-var isUserInAppTenant = (appId, user) => {
-  let userTenantId;
-  if (user) {
-    userTenantId = user.tenantId || DEFAULT_TENANT_ID;
-  } else {
-    userTenantId = getTenantId();
-  }
-  const tenantId = getTenantIDFromAppID(appId) || DEFAULT_TENANT_ID;
-  return tenantId === userTenantId;
-};
-var ALL_STRATEGIES = Object.values(TenantResolutionStrategy);
-var getTenantIDFromCtx = (ctx, opts) => {
-  if (!isMultiTenant()) {
-    return DEFAULT_TENANT_ID;
-  }
-  if (opts.allowNoTenant === void 0) {
-    opts.allowNoTenant = false;
-  }
-  if (!opts.includeStrategies) {
-    opts.includeStrategies = ALL_STRATEGIES;
-  }
-  if (!opts.excludeStrategies) {
-    opts.excludeStrategies = [];
-  }
-  const isAllowed = (strategy) => {
-    if (opts.excludeStrategies?.includes(strategy)) {
-      return false;
-    }
-    if (opts.includeStrategies?.includes(strategy)) {
-      return true;
-    }
-  };
-  if (isAllowed("user" /* USER */)) {
-    const userTenantId = ctx.user?.tenantId;
-    if (userTenantId) {
-      return userTenantId;
-    }
-  }
-  if (isAllowed("header" /* HEADER */)) {
-    const headerTenantId = ctx.request.headers["x-budibase-tenant-id" /* TENANT_ID */];
-    if (headerTenantId) {
-      return headerTenantId;
-    }
-  }
-  if (isAllowed("query" /* QUERY */)) {
-    const queryTenantId = ctx.request.query.tenantId;
-    if (queryTenantId) {
-      return queryTenantId;
+   */
+  async withCache(key, ttl = null, fetchFn, opts = { useTenancy: true }) {
+    const cachedValue = await this.get(key, opts);
+    if (cachedValue) {
+      return cachedValue;
     }
-  }
-  if (isAllowed("subdomain" /* SUBDOMAIN */)) {
-    let platformHost;
     try {
-      platformHost = new URL(getPlatformURL()).host.split(":")[0];
+      const fetchedValue = await fetchFn();
+      await this.store(key, fetchedValue, ttl, opts);
+      return fetchedValue;
     } catch (err) {
-      if (err.code !== "ERR_INVALID_URL") {
-        throw err;
-      }
-    }
-    const requestHost = ctx.host;
-    if (platformHost && requestHost.includes(platformHost)) {
-      const tenantId = requestHost.substring(
-        0,
-        requestHost.indexOf(`.${platformHost}`)
-      );
-      if (tenantId) {
-        return tenantId;
-      }
+      console.error("Error fetching before cache - ", err);
+      throw err;
     }
   }
-  if (isAllowed("path" /* PATH */)) {
-    const match = ctx.matched.find(
-      (m) => !!m.paramNames.find((p) => p.name === "tenantId")
-    );
-    const ctxUrl = ctx.originalUrl;
-    let url;
-    if (ctxUrl.includes("?")) {
-      url = ctxUrl.split("?")[0];
-    } else {
-      url = ctxUrl;
-    }
-    if (match) {
-      const params2 = match.params(url, match.captures(url), {});
-      if (params2.tenantId) {
-        return params2.tenantId;
-      }
+  async bustCache(key) {
+    const client = await this.getClient();
+    try {
+      await client.delete(generateTenantKey(key));
+    } catch (err) {
+      console.error("Error busting cache - ", err);
+      throw err;
     }
   }
-  if (!opts.allowNoTenant) {
-    ctx.throw(403, "Tenant id not set");
+  /**
+   * Delete the entry if the provided value matches the stored one.
+   */
+  async deleteIfValue(key, value, opts = { useTenancy: true }) {
+    key = opts.useTenancy ? generateTenantKey(key) : key;
+    const client = await this.getClient();
+    await client.deleteIfValue(key, value);
   }
-  return void 0;
 };
 
+// src/cache/generic.ts
+var GENERIC = new BaseCache();
+var CacheKey = /* @__PURE__ */ ((CacheKey2) => {
+  CacheKey2["CHECKLIST"] = "checklist";
+  CacheKey2["INSTALLATION"] = "installation";
+  CacheKey2["ANALYTICS_ENABLED"] = "analyticsEnabled";
+  CacheKey2["UNIQUE_TENANT_ID"] = "uniqueTenantId";
+  CacheKey2["EVENTS"] = "events";
+  CacheKey2["BACKFILL_METADATA"] = "backfillMetadata";
+  CacheKey2["EVENTS_RATE_LIMIT"] = "eventsRateLimit";
+  return CacheKey2;
+})(CacheKey || {});
+var TTL = /* @__PURE__ */ ((TTL2) => {
+  TTL2[TTL2["ONE_MINUTE"] = 600] = "ONE_MINUTE";
+  TTL2[TTL2["ONE_HOUR"] = 3600] = "ONE_HOUR";
+  TTL2[TTL2["ONE_DAY"] = 86400] = "ONE_DAY";
+  return TTL2;
+})(TTL || {});
+var keys = (...args) => GENERIC.keys(...args);
+var get2 = (...args) => GENERIC.get(...args);
+var store = (...args) => GENERIC.store(...args);
+var destroy = (...args) => GENERIC.delete(...args);
+var withCache = (...args) => GENERIC.withCache(...args);
+var bustCache = (...args) => GENERIC.bustCache(...args);
+
+// src/cache/user.ts
+var user_exports = {};
+__export(user_exports, {
+  getUser: () => getUser,
+  getUsers: () => getUsers,
+  invalidateUser: () => invalidateUser
+});
+
 // src/platform/index.ts
 var platform_exports = {};
 __export(platform_exports, {
@@ -60955,339 +61300,96 @@ async function lookupTenantId(userId) {
   const user = await getUserDoc(userId);
   return user.tenantId;
 }
-async function getUserDoc(emailOrId) {
-  const db = getPlatformDB();
-  return db.get(emailOrId);
-}
-async function updateUserDoc(platformUser) {
-  const db = getPlatformDB();
-  await db.put(platformUser);
-}
-function newUserIdDoc(id, tenantId) {
-  return {
-    _id: id,
-    tenantId
-  };
-}
-function newUserEmailDoc(userId, email, tenantId) {
-  return {
-    _id: email,
-    userId,
-    tenantId
-  };
-}
-function newUserSsoIdDoc(ssoId, email, userId, tenantId) {
-  return {
-    _id: ssoId,
-    userId,
-    email,
-    tenantId
-  };
-}
-async function addUserDoc(emailOrId, newDocFn) {
-  const db = getPlatformDB();
-  let user;
-  try {
-    await db.get(emailOrId);
-  } catch (e) {
-    if (e.status === 404) {
-      user = newDocFn();
-      await db.put(user);
-    } else {
-      throw e;
-    }
-  }
-}
-async function addSsoUser(ssoId, email, userId, tenantId) {
-  return addUserDoc(
-    ssoId,
-    () => newUserSsoIdDoc(ssoId, email, userId, tenantId)
-  );
-}
-async function addUser(tenantId, userId, email, ssoId) {
-  const promises = [
-    addUserDoc(userId, () => newUserIdDoc(userId, tenantId)),
-    addUserDoc(email, () => newUserEmailDoc(userId, email, tenantId))
-  ];
-  if (ssoId) {
-    promises.push(addSsoUser(ssoId, email, userId, tenantId));
-  }
-  await Promise.all(promises);
-}
-async function removeUser(user) {
-  const db = getPlatformDB();
-  const keys2 = [user._id, user.email];
-  const userDocs = await db.allDocs({
-    keys: keys2,
-    include_docs: true
-  });
-  await db.bulkRemove(
-    userDocs.rows.map((row) => row.doc),
-    { silenceErrors: true }
-  );
-}
-
-// src/platform/tenants.ts
-var tenants_exports = {};
-__export(tenants_exports, {
-  addTenant: () => addTenant,
-  exists: () => exists,
-  getTenantIds: () => getTenantIds,
-  removeTenant: () => removeTenant,
-  tenacyLockOptions: () => tenacyLockOptions
-});
-
-// src/redis/redlockImpl.ts
-var redlockImpl_exports = {};
-__export(redlockImpl_exports, {
-  AUTO_EXTEND_POLLING_MS: () => AUTO_EXTEND_POLLING_MS,
-  doWithLock: () => doWithLock,
-  newRedlock: () => newRedlock
-});
-var import_redlock = __toESM(require("redlock"));
-
-// src/utils/index.ts
-var utils_exports4 = {};
-__export(utils_exports4, {
-  Duration: () => Duration,
-  DurationType: () => DurationType,
-  clearCookie: () => clearCookie,
-  compare: () => compare,
-  getAppIdFromCtx: () => getAppIdFromCtx,
-  getCookie: () => getCookie,
-  hasCircularStructure: () => hasCircularStructure,
-  hash: () => hash,
-  isAudited: () => isAudited,
-  isClient: () => isClient,
-  isPublicApiRequest: () => isPublicApiRequest,
-  isServingApp: () => isServingApp,
-  isServingBuilder: () => isServingBuilder,
-  isServingBuilderPreview: () => isServingBuilderPreview,
-  isValidInternalAPIKey: () => isValidInternalAPIKey,
-  newid: () => newid,
-  openJwt: () => openJwt,
-  resolveAppUrl: () => resolveAppUrl,
-  setCookie: () => setCookie,
-  timeout: () => timeout,
-  validEmail: () => validEmail
-});
-
-// src/utils/hashing.ts
-var bcrypt = environment_default.JS_BCRYPT ? require("bcryptjs") : require("bcrypt");
-var SALT_ROUNDS = environment_default.SALT_ROUNDS || 10;
-async function hash(data) {
-  const salt = await bcrypt.genSalt(SALT_ROUNDS);
-  return bcrypt.hash(data, salt);
-}
-async function compare(data, encrypted) {
-  return bcrypt.compare(data, encrypted);
-}
-
-// src/utils/utils.ts
-var import_jsonwebtoken = __toESM(require("jsonwebtoken"));
-var APP_PREFIX3 = "app" /* APP */ + SEPARATOR;
-var PROD_APP_PREFIX = "/app/";
-var BUILDER_PREVIEW_PATH = "/app/preview";
-var BUILDER_PREFIX = "/builder";
-var BUILDER_APP_PREFIX = `${BUILDER_PREFIX}/app/`;
-var PUBLIC_API_PREFIX = "/api/public/v";
-function confirmAppId(possibleAppId) {
-  return possibleAppId && possibleAppId.startsWith(APP_PREFIX3) ? possibleAppId : void 0;
-}
-async function resolveAppUrl(ctx) {
-  const appUrl = ctx.path.split("/")[2];
-  let possibleAppUrl = `/${appUrl.toLowerCase()}`;
-  let tenantId = getTenantId();
-  if (!environment_default.isDev() && environment_default.MULTI_TENANCY) {
-    tenantId = getTenantIDFromCtx(ctx, {
-      includeStrategies: ["subdomain" /* SUBDOMAIN */]
-    });
-  }
-  const apps = await doInTenant(
-    tenantId,
-    () => getAllApps({ dev: false })
-  );
-  const app = apps.filter(
-    (a) => a.url && a.url.toLowerCase() === possibleAppUrl
-  )[0];
-  return app && app.appId ? app.appId : void 0;
-}
-function isServingApp(ctx) {
-  if (ctx.path.startsWith(`/${APP_PREFIX3}`)) {
-    return true;
-  }
-  return ctx.path.startsWith(PROD_APP_PREFIX);
-}
-function isServingBuilder(ctx) {
-  return ctx.path.startsWith(BUILDER_APP_PREFIX);
+async function getUserDoc(emailOrId) {
+  const db = getPlatformDB();
+  return db.get(emailOrId);
 }
-function isServingBuilderPreview(ctx) {
-  return ctx.path.startsWith(BUILDER_PREVIEW_PATH);
+async function updateUserDoc(platformUser) {
+  const db = getPlatformDB();
+  await db.put(platformUser);
 }
-function isPublicApiRequest(ctx) {
-  return ctx.path.startsWith(PUBLIC_API_PREFIX);
+function newUserIdDoc(id, tenantId) {
+  return {
+    _id: id,
+    tenantId
+  };
 }
-async function getAppIdFromCtx(ctx) {
-  const options2 = [ctx.request.headers["x-budibase-app-id" /* APP_ID */]];
-  let appId;
-  for (let option of options2) {
-    appId = confirmAppId(option);
-    if (appId) {
-      break;
-    }
-  }
-  if (!appId && ctx.request.body && ctx.request.body.appId) {
-    appId = confirmAppId(ctx.request.body.appId);
-  }
-  const pathId = parseAppIdFromUrlPath(ctx.path);
-  if (!appId && pathId) {
-    appId = confirmAppId(pathId);
-  }
-  const isBuilderPreview = ctx.path.startsWith(BUILDER_PREVIEW_PATH);
-  const isViewingProdApp = ctx.path.startsWith(PROD_APP_PREFIX) && !isBuilderPreview;
-  if (!appId && isViewingProdApp) {
-    appId = confirmAppId(await resolveAppUrl(ctx));
-  }
-  const referer = ctx.request.headers.referer;
-  if (!appId && referer?.includes(BUILDER_APP_PREFIX)) {
-    const refererId = parseAppIdFromUrlPath(ctx.request.headers.referer);
-    appId = confirmAppId(refererId);
-  }
-  return appId;
+function newUserEmailDoc(userId, email, tenantId) {
+  return {
+    _id: email,
+    userId,
+    tenantId
+  };
 }
-function parseAppIdFromUrlPath(url) {
-  if (!url) {
-    return;
-  }
-  return url.split("?")[0].split("/").find((subPath) => subPath.startsWith(APP_PREFIX3));
+function newUserSsoIdDoc(ssoId, email, userId, tenantId) {
+  return {
+    _id: ssoId,
+    userId,
+    email,
+    tenantId
+  };
 }
-function openJwt(token) {
-  if (!token) {
-    return void 0;
-  }
+async function addUserDoc(emailOrId, newDocFn) {
+  const db = getPlatformDB();
+  let user;
   try {
-    return import_jsonwebtoken.default.verify(token, environment_default.JWT_SECRET);
+    await db.get(emailOrId);
   } catch (e) {
-    if (environment_default.JWT_SECRET_FALLBACK) {
-      return import_jsonwebtoken.default.verify(token, environment_default.JWT_SECRET_FALLBACK);
+    if (e.status === 404) {
+      user = newDocFn();
+      await db.put(user);
     } else {
       throw e;
     }
   }
 }
-function isValidInternalAPIKey(apiKey) {
-  if (environment_default.INTERNAL_API_KEY && environment_default.INTERNAL_API_KEY === apiKey) {
-    return true;
-  }
-  return !!(environment_default.INTERNAL_API_KEY_FALLBACK && environment_default.INTERNAL_API_KEY_FALLBACK === apiKey);
-}
-function getCookie(ctx, name) {
-  const cookie = ctx.cookies.get(name);
-  if (!cookie) {
-    return void 0;
-  }
-  return openJwt(cookie);
-}
-function setCookie(ctx, value, name = "builder", opts = { sign: true }) {
-  if (value && opts && opts.sign) {
-    value = import_jsonwebtoken.default.sign(value, environment_default.JWT_SECRET);
-  }
-  const config = {
-    expires: MAX_VALID_DATE,
-    path: "/",
-    httpOnly: false,
-    overwrite: true
-  };
-  if (environment_default.COOKIE_DOMAIN) {
-    config.domain = environment_default.COOKIE_DOMAIN;
-  }
-  ctx.cookies.set(name, value, config);
-}
-function clearCookie(ctx, name) {
-  setCookie(ctx, null, name);
-}
-function isClient(ctx) {
-  return ctx.headers["x-budibase-type" /* TYPE */] === "client";
-}
-function timeout(timeMs) {
-  return new Promise((resolve) => setTimeout(resolve, timeMs));
-}
-function isAudited(event) {
-  return !!AuditedEventFriendlyName[event];
+async function addSsoUser(ssoId, email, userId, tenantId) {
+  return addUserDoc(
+    ssoId,
+    () => newUserSsoIdDoc(ssoId, email, userId, tenantId)
+  );
 }
-function hasCircularStructure(json) {
-  if (typeof json !== "object") {
-    return false;
-  }
-  try {
-    JSON.stringify(json);
-  } catch (err) {
-    if (err instanceof Error && err?.message.includes("circular structure")) {
-      return true;
-    }
+async function addUser(tenantId, userId, email, ssoId) {
+  const promises = [
+    addUserDoc(userId, () => newUserIdDoc(userId, tenantId)),
+    addUserDoc(email, () => newUserEmailDoc(userId, email, tenantId))
+  ];
+  if (ssoId) {
+    promises.push(addSsoUser(ssoId, email, userId, tenantId));
   }
-  return false;
+  await Promise.all(promises);
 }
-
-// src/utils/stringUtils.ts
-function validEmail(value) {
-  return value && !!value.match(
-    /^(([^<>()[\]\\.,;:\s@"]+(\.[^<>()[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/
+async function removeUser(user) {
+  const db = getPlatformDB();
+  const keys2 = [user._id, user.email];
+  const userDocs = await db.allDocs({
+    keys: keys2,
+    include_docs: true
+  });
+  await db.bulkRemove(
+    userDocs.rows.map((row) => row.doc),
+    { silenceErrors: true }
   );
 }
 
-// src/utils/Duration.ts
-var DurationType = /* @__PURE__ */ ((DurationType2) => {
-  DurationType2["MILLISECONDS"] = "milliseconds";
-  DurationType2["SECONDS"] = "seconds";
-  DurationType2["MINUTES"] = "minutes";
-  DurationType2["HOURS"] = "hours";
-  DurationType2["DAYS"] = "days";
-  return DurationType2;
-})(DurationType || {});
-var conversion = {
-  milliseconds: 1,
-  seconds: 1e3,
-  minutes: 60 * 1e3,
-  hours: 60 * 60 * 1e3,
-  days: 24 * 60 * 60 * 1e3
-};
-var Duration = class _Duration {
-  static convert(from, to, duration) {
-    const milliseconds = duration * conversion[from];
-    return milliseconds / conversion[to];
-  }
-  static from(from, duration) {
-    return {
-      to: (to) => {
-        return _Duration.convert(from, to, duration);
-      },
-      toMs: () => {
-        return _Duration.convert(from, "milliseconds" /* MILLISECONDS */, duration);
-      },
-      toSeconds: () => {
-        return _Duration.convert(from, "seconds" /* SECONDS */, duration);
-      }
-    };
-  }
-  static fromSeconds(duration) {
-    return _Duration.from("seconds" /* SECONDS */, duration);
-  }
-  static fromMinutes(duration) {
-    return _Duration.from("minutes" /* MINUTES */, duration);
-  }
-  static fromHours(duration) {
-    return _Duration.from("hours" /* HOURS */, duration);
-  }
-  static fromDays(duration) {
-    return _Duration.from("days" /* DAYS */, duration);
-  }
-  static fromMilliseconds(duration) {
-    return _Duration.from("milliseconds" /* MILLISECONDS */, duration);
-  }
-};
+// src/platform/tenants.ts
+var tenants_exports = {};
+__export(tenants_exports, {
+  addTenant: () => addTenant,
+  exists: () => exists,
+  getTenantIds: () => getTenantIds,
+  removeTenant: () => removeTenant,
+  tenacyLockOptions: () => tenacyLockOptions
+});
 
 // src/redis/redlockImpl.ts
+var redlockImpl_exports = {};
+__export(redlockImpl_exports, {
+  AUTO_EXTEND_POLLING_MS: () => AUTO_EXTEND_POLLING_MS,
+  doWithLock: () => doWithLock,
+  newRedlock: () => newRedlock
+});
+var import_redlock = __toESM(require("redlock"));
 async function getClient(type, opts) {
   if (type === "custom" /* CUSTOM */) {
     return newRedlock(opts);
@@ -61610,7 +61712,6 @@ __export(users_exports3, {
   isBuilder: () => isBuilder2,
   isCreator: () => isCreator2,
   isGlobalBuilder: () => isGlobalBuilder2,
-  isSupportedUserSearch: () => isSupportedUserSearch,
   paginatedUsers: () => paginatedUsers,
   removeAppBuilder: () => removeAppBuilder,
   removePortalUserPermissions: () => removePortalUserPermissions,
@@ -65484,29 +65585,6 @@ function removeUserPassword(users) {
   }
   return users;
 }
-function isSupportedUserSearch(query) {
-  const allowed = [
-    { op: "string" /* STRING */, key: "email" },
-    { op: "equal" /* EQUAL */, key: "_id" },
-    { op: "oneOf" /* ONE_OF */, key: "_id" }
-  ];
-  for (let [key, operation] of Object.entries(query)) {
-    if (typeof operation !== "object") {
-      return false;
-    }
-    const fields = Object.keys(operation || {});
-    if (fields.length === 0) {
-      continue;
-    }
-    const allowedOperation = allowed.find(
-      (allow) => allow.op === key && fields.length === 1 && fields[0] === allow.key
-    );
-    if (!allowedOperation) {
-      return false;
-    }
-  }
-  return true;
-}
 async function bulkGetGlobalUsersById(userIds, opts) {
   const db = getGlobalDB();
   let users = (await db.allDocs({
@@ -68070,7 +68148,7 @@ var SqlTableQueryBuilder = class {
 var sqlTable_default = SqlTableQueryBuilder;
 
 // src/sql/sql.ts
-var import_lodash3 = require("lodash");
+var import_lodash4 = require("lodash");
 function getBaseLimit() {
   const envLimit = environment_default.SQL_MAX_ROWS ? parseInt(environment_default.SQL_MAX_ROWS) : null;
   return envLimit || 5e3;
@@ -68259,7 +68337,7 @@ var InternalBuilder = class {
     return body2;
   }
   parseFilters(filters) {
-    filters = (0, import_lodash3.cloneDeep)(filters);
+    filters = (0, import_lodash4.cloneDeep)(filters);
     for (const op of Object.values(BasicOperator)) {
       const filter = filters[op];
       if (!filter) {
@@ -68681,8 +68759,36 @@ var InternalBuilder = class {
     }
     return query.countDistinct(`${aliased}.${primary[0]} as total`);
   }
+  addAggregations(query, aggregations) {
+    const fields = this.query.resource?.fields || [];
+    if (fields.length > 0) {
+      query = query.groupBy(fields.map((field) => `${this.table.name}.${field}`));
+    }
+    for (const aggregation of aggregations) {
+      const op = aggregation.calculationType;
+      const field = `${this.table.name}.${aggregation.field} as ${aggregation.name}`;
+      switch (op) {
+        case "count" /* COUNT */:
+          query = query.count(field);
+          break;
+        case "sum" /* SUM */:
+          query = query.sum(field);
+          break;
+        case "avg" /* AVG */:
+          query = query.avg(field);
+          break;
+        case "min" /* MIN */:
+          query = query.min(field);
+          break;
+        case "max" /* MAX */:
+          query = query.max(field);
+          break;
+      }
+    }
+    return query;
+  }
   addSorting(query) {
-    let { sort: sort2 } = this.query;
+    let { sort: sort2, resource } = this.query;
     const primaryKey = this.table.primary;
     const tableName = getTableName(this.table);
     const aliases = this.query.tableAliases;
@@ -68707,7 +68813,8 @@ var InternalBuilder = class {
         }
       }
     }
-    if (!sort2 || sort2[primaryKey[0]] === void 0) {
+    const hasAggregations = (resource?.aggregations?.length ?? 0) > 0;
+    if (!hasAggregations && (!sort2 || sort2[primaryKey[0]] === void 0)) {
       query = query.orderBy(`${aliased}.${primaryKey[0]}`);
     }
     return query;
@@ -68981,7 +69088,14 @@ var InternalBuilder = class {
         query = query.offset(foundOffset);
       }
     }
-    query = !counting ? query.select(this.generateSelectStatement()) : this.addDistinctCount(query);
+    const aggregations = this.query.resource?.aggregations || [];
+    if (counting) {
+      query = this.addDistinctCount(query);
+    } else if (aggregations.length > 0) {
+      query = this.addAggregations(query, aggregations);
+    } else {
+      query = query.select(this.generateSelectStatement());
+    }
     if (!counting) {
       query = this.addSorting(query);
     }