@budibase/backend-core 3.39.19 → 3.39.21
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/index.js +1 -1
- package/dist/index.js.map +1 -1
- package/dist/package.json +2 -2
- package/package.json +2 -2
package/dist/index.js
CHANGED
|
@@ -34,6 +34,6 @@ attempted value: ${o}
|
|
|
34
34
|
emit(doc.ssoId, doc._id)
|
|
35
35
|
}
|
|
36
36
|
}`,"platform_users_lowercase_2")},"createPlatformUserView"),Vs=s(async(t,e)=>{let r={account_by_email:gS,platform_users_lowercase_2:ES};return Qe(pe.PLATFORM_INFO.name,async n=>{let i=r[t];return Yf(t,e,n,i,{arrayResponse:!0})})},"queryPlatformView"),yS={by_email2:fS,by_api_key:mS,by_app:pS},Qt=s(async(t,e,r,n)=>{r||(r=Y());let i=yS[t];return Yf(t,e,r,i,n)},"queryGlobalView");async function qs(t,e,r){let n=Y(),i=yS[t];return $s(t,e,n,i,r)}s(qs,"queryGlobalViewRaw");var iv=W(require("pouchdb"));var TS=require("dd-trace");var zf=class{static{s(this,"Replication")}constructor({source:e,target:r}){this.source=nt(e),this.target=nt(r),e.startsWith("app_dev")&&r.startsWith("app")?this.direction="toProduction":e.startsWith("app")&&r.startsWith("app_dev")&&(this.direction="toDev")}async close(){await Promise.all([Ns(this.source),Ns(this.target)])}replicate(e={}){return new Promise(r=>{this.source.replicate.to(this.target,e).on("denied",function(n){throw new Error(`Denied: Document failed to replicate ${n}`)}).on("complete",function(n){return r(n)}).on("error",function(n){throw n})})}async resolveInconsistencies(e){for(let r of e)try{let[n,i]=await Promise.all([this.source.get(r),this.target.get(r)]),o=this.replicationDelta(n,i);if(o<0||o===0&&n._rev===i._rev)continue;let a=o+1;await TS.tracer.trace("Replication.resolveInconsistencies",async u=>{u.addTags({versionsToJump:a,toFix:!0,id:r,sourceRev:n._rev,targetRev:i._rev});for(let c=0;c<a;c++){let l=await this.source.get(i._id);await this.source.put(l)}})}catch{console.warn("Cannot resolve inconsistencies for document",r)}}replicationDelta(e,r){let n=this.getRevisionNumber(e);return this.getRevisionNumber(r)-n}getRevisionNumber(e){return parseInt(e._rev?.split("-")[0]||"0")}appReplicateOpts(e={}){if(typeof e.filter=="string")return e;let r=e.filter,n=this.direction,i=n==="toDev";delete e.filter;let o=e.isCreation,a=e.tablesToSync;delete e.isCreation,delete e.tablesToSync;let u=!1,c;typeof a=="string"&&a==="all"?u=!0:a&&(c=a);let l=s((f,m)=>f?.startsWith(m+"_"),"startsWithID"),d=s(f=>l(f,"ro")||l(f,"li"),"isData");return{...e,filter:s((f,m)=>!o&&f._id==="_design/migrations"||i&&f._id.startsWith("_design")?!1:f._deleted||l(f._id,Rs)?!0:n==="toProduction"&&!o&&l(f._id,"autocolumn_state")?!1:d(f._id)?!!c?.find(h=>f._id.includes(h))||u:l(f._id,"log_au")||l(f._id,"agentlogsession")||f._id==="app_metadata"?!1:r?r(f,m):!0,"filter")}}async rollback(){await this.target.destroy(),this.target=nt(this.target.name),await this.replicate()}},SS=zf;var _S=W(require("node-fetch"));var Ks=hr.removeKeyNumbering;function _r(t){return t==null||t===""}s(_r,"isEmpty");var jt=class t{static{s(this,"QueryBuilder")}#l;#d;#e;#r;#n;#i;#s;#o;#t;#f;#a;#u=!1;#c;static{this.maxLimit=200}constructor(e,r,n){this.#l=e,this.#d=r,this.#e={allOr:!1,onEmptyFilter:"all",string:{},fuzzy:{},range:{},equal:{},notEqual:{},empty:{},notEmpty:{},oneOf:{},notOneOf:{},contains:{},notContains:{},containsAny:{},...n},this.#r=50,this.#s="ascending",this.#o="string",this.#t=!0}disableEscaping(){return this.#u=!0,this}setIndexBuilder(e){return this.#a=e,this}setVersion(e){return e!=null&&(this.#f=e),this}setTable(e){return this.#e.equal.tableId=e,this}setLimit(e){return e!=null&&(this.#r=e),this}setSort(e){return e!=null&&(this.#n=e),this}setSortOrder(e){return e!=null&&(this.#s=e),this}setSortType(e){return e!=null&&(this.#o=e),this}setBookmark(e){return e!=null&&(this.#i=e),this}setSkip(e){return this.#c=e,this}excludeDocs(){return this.#t=!1,this}includeDocs(){return this.#t=!0,this}addString(e,r){return this.#e.string[e]=r,this}addFuzzy(e,r){return this.#e.fuzzy[e]=r,this}addRange(e,r,n){return this.#e.range[e]={low:r,high:n},this}addEqual(e,r){return this.#e.equal[e]=r,this}addNotEqual(e,r){return this.#e.notEqual[e]=r,this}addEmpty(e,r){return this.#e.empty[e]=r,this}addNotEmpty(e,r){return this.#e.notEmpty[e]=r,this}addOneOf(e,r){return this.#e.oneOf[e]=r,this}addNotOneOf(e,r){return this.#e.notOneOf[e]=r,this}addContains(e,r){return this.#e.contains[e]=r,this}addNotContains(e,r){return this.#e.notContains[e]=r,this}addContainsAny(e,r){return this.#e.containsAny[e]=r,this}setAllOr(){this.#e.allOr=!0}setOnEmptyFilter(e){this.#e.onEmptyFilter=e}handleSpaces(e){return this.#u?e:e.replace(/ /g,"_")}preprocess(e,{escape:r,lowercase:n,wrap:i,type:o}={}){let a=!!this.#f,u=typeof e;return e&&n&&(e=e.toLowerCase?e.toLowerCase():e),!this.#u&&r&&u==="string"&&(e=`${e}`.replace(/[ /#+\-&|!(){}\]^"~*?:\\]/g,"\\$&")),u==="string"&&!isNaN(e)&&!o?e=`"${e}"`:a&&i&&(e=u==="number"?e:`"${e}"`),e}isMultiCondition(){let e=0;for(let r of Object.values(this.#e))typeof r=="object"&&(e+=Object.keys(r).length);return e>1}compressFilters(e){let r={};for(let o of Object.keys(e)){let a=Ks(o);r[a]?r[a]=r[a].concat(e[o]):r[a]=e[o]}let n={},i=1;for(let[o,a]of Object.entries(r))n[`${i++}:${o}`]=a;return n}buildSearchQuery(){let e=this,r=this.#e&&this.#e.allOr,n=r?"":"*:*",i=!0,o={escape:!0,lowercase:!0,wrap:!0},a="";this.#e.equal.tableId&&(a=this.#e.equal.tableId,delete this.#e.equal.tableId);let u=s((E,p)=>_r(p)?null:`${E}:${e.preprocess(p,o)}`,"equal"),c=s((E,p,y="AND")=>{if(_r(p))return null;if(!Array.isArray(p))return`${E}:${p}`;let A=`${e.preprocess(p[0],{escape:!0})}`;for(let _=1;_<p.length;_++)A+=` ${y} ${e.preprocess(p[_],{escape:!0})}`;return`${E}:(${A})`},"contains"),l=s((E,p)=>_r(p)?null:(p=e.preprocess(p,{escape:!0,lowercase:!0,type:"fuzzy"}),`${E}:/.*${p}.*/`),"fuzzy"),d=s((E,p)=>{let y=r?"*:* AND ":"",A=r?"AND":void 0;return y+"NOT "+c(E,p,A)},"notContains"),f=s((E,p)=>c(E,p,"OR"),"containsAny"),m=s((E,p)=>{if(_r(p))return"*:*";if(!Array.isArray(p))if(typeof p=="string")p=p.split(",");else return"";let y=`${e.preprocess(p[0],o)}`;for(let A=1;A<p.length;A++)y+=` OR ${e.preprocess(p[A],o)}`;return`${E}:(${y})`},"oneOf"),h=s((E,p)=>{if(_r(p))return null;if(!Array.isArray(p))if(typeof p=="string")p=p.split(",");else return"";let y=`${e.preprocess(p[0],o)}`;for(let A=1;A<p.length;A++)y+=` OR ${e.preprocess(p[A],o)}`;return`(*:* -${E}:(${y}))`},"notOneOf");function T(E,p,y){let A="";for(let[_,I]of Object.entries(E)){_=Ks(_),_=e.preprocess(e.handleSpaces(_),{escape:!0});let O=p(_,I);if(O!=null){if(A.length>0||n.length>0){let C=y?.mode?y.mode:r?"OR":"AND";A+=` ${C} `}A+=O,(typeof I!="string"&&I!=null||typeof I=="string"&&I!==a&&I!=="")&&(i=!1)}}if(y?.returnBuilt)return A;n+=A}if(s(T,"build"),this.#e.string&&T(this.#e.string,(E,p)=>_r(p)?null:(p=e.preprocess(p,{escape:!0,lowercase:!0,type:"string"}),`${E}:${p}*`)),this.#e.range&&T(this.#e.range,(E,p)=>{if(_r(p)||p.low==null||p.low===""||p.high==null||p.high==="")return null;let y=e.preprocess(p.low,o),A=e.preprocess(p.high,o);return`${E}:[${y} TO ${A}]`}),this.#e.fuzzy&&T(this.#e.fuzzy,l),this.#e.equal&&T(this.#e.equal,u),this.#e.notEqual&&T(this.#e.notEqual,(E,p)=>_r(p)?null:typeof p=="boolean"?`(*:* AND !${E}:${p})`:`!${E}:${e.preprocess(p,o)}`),this.#e.empty&&T(this.#e.empty,E=>(i=!1,`(*:* -${E}:["" TO *])`)),this.#e.notEmpty&&T(this.#e.notEmpty,E=>(i=!1,`${E}:["" TO *]`)),this.#e.oneOf&&T(this.#e.oneOf,m),this.#e.notOneOf&&T(this.#e.notOneOf,h),this.#e.contains&&T(this.#e.contains,c),this.#e.notContains&&T(this.compressFilters(this.#e.notContains),d),this.#e.containsAny&&T(this.#e.containsAny,f),a&&(n=this.isMultiCondition()?`(${n})`:n,r=!1,T({tableId:a},u)),i){if(this.#e.onEmptyFilter==="none")return"";if(this.#e?.allOr)return n.replace("()","(*:*)")}return n}buildSearchBody(){let e={q:this.buildSearchQuery(),limit:Math.min(this.#r,t.maxLimit),include_docs:this.#t};if(this.#i&&(e.bookmark=this.#i),this.#n){let r=this.#s==="descending"?"-":"",n=`<${this.#o}>`;e.sort=`${r}${this.handleSpaces(this.#n)}${n}`}return e}async run(){return this.#c&&await this.#m(this.#c),await this.#p()}async#m(e){let r=this.#t,n=this.#r;this.excludeDocs();let i=e,o=0;do{let a=Math.min(t.maxLimit,i);this.setLimit(a);let{bookmark:u,rows:c}=await this.#p();this.setBookmark(u),o=c.length,i-=c.length}while(i>0&&o>0);this.#t=r,this.#r=n}async#p(){let{url:e,cookie:r}=mt(),n=`${e}/${this.#l}/_design/database/_search/${this.#d}`,i=this.buildSearchBody();try{return await AS(n,i,r)}catch(o){if(o.status===404&&this.#a)return await this.#a(),await AS(n,i,r);throw o}}};async function AS(t,e,r){let n=await(0,_S.default)(t,{body:JSON.stringify(e),method:"POST",headers:{Authorization:r}});if(n.status===404)throw n;let i=await n.json(),o={rows:[],totalRows:0};return i.rows!=null&&i.rows.length>0&&(o.rows=i.rows.map(a=>a.doc)),i.bookmark&&(o.bookmark=i.bookmark),i.total_rows&&(o.totalRows=i.total_rows),o}s(AS,"runQuery");async function OS(t,e,r,n){let i=n.bookmark,o=n.rows||[];if(n.limit&&o.length>=n.limit)return o;let a=jt.maxLimit;n.limit&&o.length>n.limit-jt.maxLimit&&(a=n.limit-o.length);let u=new jt(t,e,r);u.setVersion(n.version).setBookmark(i).setLimit(a).setSort(n.sort).setSortOrder(n.sortOrder).setSortType(n.sortType),n.tableId&&u.setTable(n.tableId);let c=await u.run();if(!c.rows.length)return o;if(c.rows.length<jt.maxLimit)return[...o,...c.rows];let l={...n,bookmark:c.bookmark,rows:[...o,...c.rows]};return await OS(t,e,r,l)}s(OS,"recursiveSearch");async function sv(t,e,r,n){let i=n.limit;(i==null||isNaN(i)||i<0)&&(i=50),i=Math.min(i,jt.maxLimit);let o=new jt(t,e,r);n.version&&o.setVersion(n.version),n.tableId&&o.setTable(n.tableId),n.sort&&o.setSort(n.sort).setSortOrder(n.sortOrder).setSortType(n.sortType),n.indexer&&o.setIndexBuilder(n.indexer),n.disableEscaping&&o.disableEscaping();let a=await o.setBookmark(n.bookmark).setLimit(i).run();o.setBookmark(a.bookmark).setLimit(1),n.tableId&&o.setTable(n.tableId);let u=await o.run();return{...a,hasNextPage:u.rows&&u.rows.length>0}}s(sv,"paginatedSearch");async function ov(t,e,r,n){let i=n.limit;return(i==null||isNaN(i)||i<0)&&(i=1e3),n.limit=Math.min(i,1e3),{rows:await OS(t,e,r,n)}}s(ov,"fullSearch");var Jf={};L(Jf,{createUserIndex:()=>av});async function av(){let t=Y(),e;try{e=await t.get("_design/database")}catch(n){n.status===404&&(e={_id:"_design/database"})}let r=s(function(n){if(n._id&&!n._id.startsWith("us_"))return;let i=["_id","_rev","password","account","license","budibaseAccess","accountPortalAccess","csrfToken"];function o(a,u){for(let c of Object.keys(a)){if(i.includes(c))continue;let l=u!=null?`${u}.${c}`:c;typeof a[c]=="string"?index(l,a[c].toLowerCase(),{facet:!0}):typeof a[c]!="object"?index(l,a[c],{facet:!0}):o(a[c],l)}}s(o,"idx"),o(n)},"fn");e.indexes={user:{index:r.toString(),analyzer:{default:"keyword",name:"perfield"}}},await t.put(e)}s(av,"createUserIndex");function IS(t,e){let r=e.toString();if(typeof t=="object")return t.status===e||t.message?.includes(r);if(typeof t=="number")return t===e;if(typeof t=="string")return t.includes(r)}s(IS,"checkErrorCode");function uv(t){return IS(t,409)}s(uv,"isDocumentConflictError");var js={};L(js,{addTenantToUrl:()=>cv,getTenantDB:()=>Xf,getTenantIDFromCtx:()=>Qs,isUserInWorkspaceTenant:()=>lv});function Xf(t){return De(un(t))}s(Xf,"getTenantDB");function cv(t){let e=$();if(Tr()){let r=t.indexOf("?")===-1?"?":"&";t+=`${r}tenantId=${e}`}return t}s(cv,"addTenantToUrl");var lv=s((t,e)=>{let r;return e?r=e.tenantId||ce:r=$(),(Zn(t)||ce)===r},"isUserInWorkspaceTenant"),dv=Object.values(vi),Qs=s((t,e)=>{if(!Tr())return ce;e.allowNoTenant===void 0&&(e.allowNoTenant=!1),e.includeStrategies||(e.includeStrategies=dv),e.excludeStrategies||(e.excludeStrategies=[]);let r=s(n=>{if(e.excludeStrategies?.includes(n))return!1;if(e.includeStrategies?.includes(n))return!0},"isAllowed");if(r("user")){let n=t.user?.tenantId;if(n)return n}if(r("header")){let n=t.request.headers["x-budibase-tenant-id"];if(n)return n}if(r("query")){let n=t.request.query.tenantId;if(n)return n}if(r("subdomain")){let n;try{n=new URL(Cf()).host.split(":")[0]}catch(o){if(o.code!=="ERR_INVALID_URL")throw o}let i=t.host;if(n&&i.includes(n)){let o=i.substring(0,i.indexOf(`.${n}`));if(o)return o}}if(r("path")){let n=t.matched.find(a=>!!a.paramNames.find(u=>u.name==="tenantId")),i=t.originalUrl,o;if(i.includes("?")?o=i.split("?")[0]:o=i,n){let a=n.params(o,n.captures(o),{});if(a.tenantId)return a.tenantId}}e.allowNoTenant||t.throw(403,"Tenant id not set")},"getTenantIDFromCtx");var Eu={milliseconds:1,seconds:1e3,minutes:60*1e3,hours:3600*1e3,days:1440*60*1e3},me=class t{constructor(e){this.ms=e}static{s(this,"Duration")}to(e){return this.ms/Eu[e]}toMs(){return this.ms}toSeconds(){return this.to("seconds")}static convert(e,r,n){return n*Eu[e]/Eu[r]}static from(e,r){return new t(r*Eu[e])}static fromSeconds(e){return t.from("seconds",e)}static fromMinutes(e){return t.from("minutes",e)}static fromHours(e){return t.from("hours",e)}static fromDays(e){return t.from("days",e)}static fromMilliseconds(e){return t.from("milliseconds",e)}};function yu(){let t=me.fromDays(7).toSeconds();if(!g.SESSION_EXPIRY_SECONDS)return t;let e=parseInt(g.SESSION_EXPIRY_SECONDS);return Number.isFinite(e)&&e>0?e:t}s(yu,"getSessionExpirySeconds");function Zf(){return new Date(Date.now()+yu()*1e3)}s(Zf,"getSessionExpiryDate");var ep="app_",wS="/app/",RS="/app-chat/";async function fv(t){let r=t.path.split("/")[2];if(!r)return;let n=`/${r.toLowerCase()}`,i=$();!g.isDev()&&g.MULTI_TENANCY&&(i=Qs(t,{includeStrategies:["subdomain"]}));let a=(await Ce(i,()=>Gs({dev:!1}))).filter(u=>u.url&&u.url.toLowerCase()===n)[0];return a&&a.appId?a.appId:void 0}s(fv,"resolveAppUrl");function pv(t){return t.path.startsWith(`/${ep}`)?!0:t.path.startsWith(wS)||t.path.startsWith(RS)}s(pv,"isServingApp");function mv(t){return t.path.startsWith("/builder/workspace/")}s(mv,"isServingBuilder");function hv(t){return DS(t.path)}s(hv,"isServingBuilderPreview");function DS(t){return new RegExp(/^\/app\/app_\w+\/preview$/).test(t)}s(DS,"isBuilderPreviewUrl");function gv(t){return t.path.startsWith("/api/public/v")}s(gv,"isPublicApiRequest");async function dn(t){let e;function r(u){u&&u.startsWith(ep)&&(e&&e!==u&&t.throw(403,"App id conflict"),e=u)}s(r,"setWorkspaceIdIfValid");function n(u){if(u){typeof u=="string"&&(u=[u]);for(let c of u)r(c)}}s(n,"checkPossibleValues"),n(t.request.headers["x-budibase-app-id"]),r(t.request.body?.appId);let i=Ev(t.path);r(i),n(t.query?.appId);let o=DS(t.path);return(t.path.startsWith(wS)||t.path.startsWith(RS))&&!o&&r(await fv(t)),e}s(dn,"getWorkspaceIdFromCtx");function Ev(t){if(t)return t.split("?")[0].split("/").find(e=>e.startsWith(ep))}s(Ev,"parseWorkspaceIdFromUrlPath");function Su(t){if(t)try{return Tu.default.verify(t,g.JWT_SECRET)}catch(e){if(g.JWT_SECRET_FALLBACK)return Tu.default.verify(t,g.JWT_SECRET_FALLBACK);throw e}}s(Su,"openJwt");function Hs(t){return g.INTERNAL_API_KEY&&g.INTERNAL_API_KEY===t?!0:!!(g.INTERNAL_API_KEY_FALLBACK&&g.INTERNAL_API_KEY_FALLBACK===t)}s(Hs,"isValidInternalAPIKey");function Ht(t,e){let r=t.cookies.get(e);if(r)return Su(r)}s(Ht,"getCookie");function tp(t,e,r="builder",n={sign:!0}){e&&n&&n.sign&&(e=Tu.default.sign(e,g.JWT_SECRET));let i=n.sameSite,o=n.secure??t.secure;i==="none"&&(o?o=!0:i="lax");let a={expires:n.expires??Va,path:"/",httpOnly:n.httpOnly??!1,secure:o,overwrite:!0};i&&(a.sameSite=i),g.COOKIE_DOMAIN&&(a.domain=g.COOKIE_DOMAIN),t.cookies.set(r,e,a)}s(tp,"setCookie");function yv(t,e){tp(t,e,"budibase:auth",{sign:!1,httpOnly:!0,expires:Zf()})}s(yv,"setAuthCookie");function Yt(t,e){tp(t,null,e)}s(Yt,"clearCookie");function Tv(t){return t.headers["x-budibase-type"]==="client"}s(Tv,"isClient");function rp(t){return new Promise(e=>setTimeout(e,t))}s(rp,"timeout");function np(t){return!!dh[t]}s(np,"isAudited");function Sv(t){if(typeof t!="object")return!1;try{JSON.stringify(t)}catch(e){if(e instanceof Error&&e?.message.includes("circular structure"))return!0}return!1}s(Sv,"hasCircularStructure");function Av(t){return!!t.match(/^.+:\/\/.+$/)}s(Av,"urlHasProtocol");function ip(t){return t&&!!t.match(/^(([^<>()[\]\\.,;:\s@"]+(\.[^<>()[\]\\.,;:\s@"]+)*)|(".+"))@((\[[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}])|(([a-zA-Z\-0-9]+\.)+[a-zA-Z]{2,}))$/)}s(ip,"validEmail");async function _v(t){let e=performance.now();return[await t(),me.fromMilliseconds(performance.now()-e)]}s(_v,"time");var Au=require("undici");function Ov(t,e){let r,n=null;try{let o=new URL(t);r=o.hostname,n=o.port||null}catch{return!1}let i=e.split(/[\s,]+/).filter(o=>o.length>0);for(let o of i){let u=o.replace(/^\./,"*").match(/^(.+?)(?::(\d+))?$/);if(!u||!u[1])continue;let c=u[1].toLowerCase(),l=u[2]||null,d=!1;if(c==="*")d=!0;else if(c.startsWith("*")){let m=c.slice(1);d=r===m.slice(1)||r.endsWith(m)}else d=r===c;if(d&&(!l||n===l))return!0}return!1}s(Ov,"isUrlMatchingNoProxy");function Iv(t){let e=process.env.GLOBAL_AGENT_HTTP_PROXY||process.env.HTTP_PROXY,n=process.env.GLOBAL_AGENT_HTTPS_PROXY||process.env.HTTPS_PROXY||e;if(!n||!n.trim())return!0;try{new URL(n.trim())}catch{return console.log("[fetch] Invalid proxy URL format:",n),!0}if(t){let i=process.env.GLOBAL_AGENT_NO_PROXY||process.env.NO_PROXY||"";if(i&&Ov(t,i))return console.log("[fetch] URL matches NO_PROXY pattern, bypassing proxy",{url:t,noProxy:i}),!0}return!1}s(Iv,"shouldBypassProxy");function wv(t){return new Au.Agent({connect:{rejectUnauthorized:t}})}s(wv,"createDirectAgent");function Rv(t){let e=process.env.GLOBAL_AGENT_HTTP_PROXY||process.env.HTTP_PROXY,n=(process.env.GLOBAL_AGENT_HTTPS_PROXY||process.env.HTTPS_PROXY||e).trim();console.log("[fetch] Creating ProxyAgent",{proxyUrl:n,rejectUnauthorized:t});let i={uri:n,requestTls:{rejectUnauthorized:t}};return n.startsWith("https://")&&(i.proxyTls={rejectUnauthorized:t}),new Au.ProxyAgent(i)}s(Rv,"createProxyAgent");function Dv(t){let e=t?.rejectUnauthorized??!0;return Iv(t?.url)?wv(e):Rv(e)}s(Dv,"createDispatcher");function Cv(t){return Dv(t)}s(Cv,"getDispatcher");var sp=require("util"),op=W(require("zlib"));var bv=(0,sp.promisify)(op.default.gzip),xv=(0,sp.promisify)(op.default.gunzip),_u="gzip:",vv=s(async t=>{let e=await bv(t);return`${_u}${e.toString("base64")}`},"gzipToBase64"),Pv=s(async t=>{let e=t.startsWith(_u)?t.slice(_u.length):t,r=Buffer.from(e,"base64");return(await xv(new Uint8Array(r))).toString("utf8")},"gunzipFromBase64");function Nv(t){let e=t.get("authorization");if(!e)return null;let r=e.match(/^Bearer\s+(.+)$/i);return r?r[1]:null}s(Nv,"getBearerToken");var LS=W(require("http")),US=W(require("https"));var dp={};L(dp,{isBlacklisted:()=>lp,refreshBlacklist:()=>PS,resolveAddress:()=>Ou});var CS=W(require("dns")),Ir=W(require("net"));var bS=require("util");var Lv=["127.0.0.0/8","10.0.0.0/8","172.16.0.0/12","192.168.0.0/16","169.254.0.0/16","0.0.0.0/8","::1/128","fc00::/7","fe80::/10"],up,Uv=(0,bS.promisify)(CS.default.lookup);function xS(){return!(g.SELF_HOSTED&&g.BLACKLIST_IPS!==void 0)}s(xS,"shouldApplyDefaultBlacklist");function cp(t){return Ir.default.isIP(t)===6?"ipv6":"ipv4"}s(cp,"getIpVersion");function kv(t){let e=Ir.default.isIP(t);return e===4?32:e===6?128:null}s(kv,"getMaxPrefixLength");function Mv(t,e){if(!/^\d+$/.test(e))return null;let r=Number.parseInt(e,10),n=kv(t);return n==null||r>n?null:r}s(Mv,"getValidSubnetPrefix");function Fv(t){return Ir.default.isIP(t)?t:(/^https?:\/\//.test(t)||(t=`https://${t}`),new URL(t).hostname.replace(/^\[|\]$/g,""))}s(Fv,"parseAddress");async function vS(t){return t=Fv(t),(await Uv(t,{all:!0})).map(r=>r.address)}s(vS,"lookup");async function Ou(t){return Ir.default.isIP(t)?[t]:vS(t)}s(Ou,"resolveAddress");function ap(t,e){let r=e.trim();if(!r)return;let n=r.split("/");if(n.length>2){console.log(`Ignoring invalid blacklist entry: ${r}`);return}let[i,o]=n,a=Ir.default.isIP(i);if(n.length===2){let u=Mv(i,o);if(a&&u!==null){t.addSubnet(i,u,cp(i));return}console.log(`Ignoring invalid blacklist entry: ${r}`);return}a&&t.addAddress(i,cp(i))}s(ap,"addEntryToBlacklist");async function PS(){let t=new Ir.default.BlockList;if(xS())for(let r of Lv)ap(t,r);let e=g.BLACKLIST_IPS?.split(",")||[];for(let r of e){let n=r.trim();if(!n)continue;let[i]=n.split("/");if(Ir.default.isIP(i)){ap(t,n);continue}let o=await vS(n);for(let a of o)ap(t,a)}up=t}s(PS,"refreshBlacklist");async function lp(t){up||await PS();let e;try{e=await Ou(t)}catch(r){return r instanceof TypeError?(console.error("Black list error: could not parse address: ",t),!0):xS()}return e.some(r=>up.check(r,cp(r)))}s(lp,"isBlacklisted");var Iu=W(require("node-fetch"));var NS=5,Bv=new Set(["http:","https:"]),Wv=["authorization","cookie","cookie2","proxy-authorization"];function fp(t){let e;try{e=new URL(t)}catch{throw new Error("Invalid URL.")}if(!Bv.has(e.protocol))throw new Error("Only HTTP(S) URLs are allowed.");if(e.username||e.password)throw new Error("URL must not include credentials.");return e}s(fp,"parseUrl");function Gv(t){return[301,302,303,307,308].includes(t)}s(Gv,"isRedirect");async function $v(t){let e=fp(t),r=await Ou(e.hostname);if(r.length===0)throw new Error("URL is blocked or could not be resolved safely.");for(let n of r)if(await lp(n))throw new Error("URL is blocked or could not be resolved safely.");return r[0]}s($v,"resolveSafePinnedIp");function Vv(t,e){let r=new URL(t).protocol,n=s((i,o,a)=>{let u=e.includes(":")?6:4;if(typeof o=="object"&&o?.all){a(null,[{address:e,family:u}]);return}a(null,e,u)},"lookup");return r==="https:"?new US.default.Agent({lookup:n}):new LS.default.Agent({lookup:n})}s(Vv,"makePinnedAgent");function qv(t,e){let r=t.method?.toUpperCase()||"GET";return e===303||(e===301||e===302)&&r==="POST"?{...t,body:void 0,method:"GET",redirect:"manual"}:t}s(qv,"nextRequestForRedirect");function Kv(t,e){return new URL(t).origin!==new URL(e).origin}s(Kv,"shouldStripSensitiveHeadersForRedirect");function Qv(t){if(!t.headers)return t;let e=new Iu.Headers(t.headers);return Wv.forEach(r=>e.delete(r)),{...t,headers:e}}s(Qv,"stripSensitiveHeadersForRedirect");function jv(t){return!t||typeof t!="object"||!("resume"in t)?!1:typeof t.resume=="function"}s(jv,"isResumableBody");function Hv(t){let e=t.body;jv(e)&&e.resume()}s(Hv,"releaseResponseBody");async function oi(t,e={},{followRedirects:r=!0,returnRedirectWithoutLocation:n=!1,fetchFn:i=Iu.default}={}){let o=t,a={...e,redirect:"manual"};for(let u=0;u<=NS;u++){let c=await $v(o),l;try{l=await i(o,{...a,agent:Vv(o,c)})}catch(m){let h=fp(o).hostname;throw m instanceof Error?(m.message=`Failed to connect to resolved IP for ${h}: ${m.message}`,m):new Error(`Failed to connect to resolved IP for ${h}: unknown network error`)}if(!Gv(l.status))return l;if(Hv(l),!r)throw new Error("Redirects are not permitted.");if(u===NS)break;let d=l.headers.get("location");if(!d){if(n)return l;throw new Error("Maximum redirect reached.")}let f=fp(new URL(d,o).toString()).toString();a=qv(a,l.status),Kv(o,f)&&(a=Qv(a)),o=f}throw new Error("Maximum redirect reached.")}s(oi,"fetchWithBlacklist");var Yv=s((t,e)=>`datasource:creation:${t}:microsoft:${e}`,"microsoftDatasourceCreationCacheKey");function zv(t){let e="",r=-1,n,i,o=t.opts?.repeat;return o&&(i=o.endDate?new Date(o.endDate).getTime():Date.now(),n=o.tz,"cron"in o?e=o.cron:r=o.every),{id:t.id.toString(),name:"",key:t.id.toString(),tz:n,endDate:i,cron:e,every:r,next:0}}s(zv,"jobToJobInformation");var wu=class{static{s(this,"InMemoryQueue")}constructor(e,r){this._name=e,this._opts=r,this._messages=[],this._emitter=new kS.default.EventEmitter,this._runCount=0,this._addCount=0,this._queuedJobIds=new Set,this._attempts=r?.defaultJobOptions?.attempts||1}async process(e,r){r=typeof e=="number"?r:e,this._emitter.on("message",async n=>{if(!n.manualTrigger&&n.opts?.repeat!=null)return;function i(){return r.length===1?r(n):new Promise((c,l)=>{r(n,s((f,m)=>{f?l(f):c(m)},"done"))})}s(i,"execute");let o=this._attempts;async function a(c,l=0){try{return await c}catch(d){if(l++,l<o&&!n._isDiscarded)return await Ue.wait(100*l),await a(i(),l);throw d}}s(a,"retryFunc");try{let c=await a(i());this._emitter.emit("completed",n,c);let l=this._messages.indexOf(n);if(l===-1)throw"Failed deleting a processed message";this._messages.splice(l,1)}catch(c){console.error(c),this._emitter.emit("error",n,c)}this._runCount++;let u=n.opts?.jobId?.toString();u&&n.opts?.removeOnComplete&&this._queuedJobIds.delete(u)})}async isReady(){return this}async add(e,r){if(typeof e=="string")throw new Error("doesn't support named jobs");let n=r,i=n?.jobId?.toString();if(i&&this._queuedJobIds.has(i)){console.log(`Ignoring already queued job ${i}`);return}if(typeof e!="object")throw"Queue only supports carrying JSON.";i&&this._queuedJobIds.add(i);let o=Z(),a=s(()=>{let c={id:o,timestamp:Date.now(),queue:this,data:e,opts:n,discard:s(async()=>{c._isDiscarded=!0},"discard")};this._messages.push(c),this._messages.length>1e3&&this._messages.shift(),this._addCount++,this._emitter.emit("message",c)},"pushMessage"),u=n?.delay;return u?setTimeout(a,u):a(),{id:i,finished:s(()=>new Promise((c,l)=>{let d=s((m,h)=>{m.id===o&&(this._emitter.off("error",d),this._emitter.off("completed",f),l(h))},"errorHandler"),f=s((m,h)=>{m.id===o&&(this._emitter.off("error",d),this._emitter.off("completed",f),c(h))},"completedHandler");this._emitter.on("error",d),this._emitter.on("completed",f)}),"finished")}}async close(){}async removeRepeatableByKey(e){for(let[r,n]of this._messages.entries())if(n.id===e){this._messages.splice(r,1),this._emitter.emit("removed",n);return}}async removeJobs(e){}async clean(){return[]}async getJob(e){for(let r of this._messages)if(r.id===e)return r;return null}manualTrigger(e){for(let r of this._messages)if(r.id===e){this._emitter.emit("message",{...r,manualTrigger:!0});return}throw new Error(`Job with id ${e} not found`)}on(e,r){return this._emitter.on(e,r),this}off(e,r){return this._emitter.off(e,r),this}async count(){return this._messages.length}async getCompletedCount(){return this._runCount}async getRepeatableJobs(){return this._messages.filter(e=>e.opts?.repeat!=null).map(e=>zv(e))}async whenCurrentJobsFinished(){do await rp(50);while(this.hasRunningJobs())}hasRunningJobs(){return this._addCount>this._runCount}},MS=wu;var hp=W(require("bull"));var ui=(m=>(m.AUTOMATION="automationQueue",m.APP_BACKUP="appBackupQueue",m.AUDIT_LOG="auditLogQueue",m.SYSTEM_EVENT_QUEUE="systemEventQueue",m.APP_MIGRATION="appMigration",m.DOC_WRITETHROUGH_QUEUE="docWritethroughQueue",m.DEV_REVERT_PROCESSOR="devRevertProcessorQueue",m.BATCH_USER_SYNC_PROCESSOR="batchUserSyncProcessorQueue",m.RAG_INGESTION="ragIngestionQueue",m.KNOWLEDGE_SOURCE_SYNC="knowledgeSourceSyncQueue",m.AGENT_LOG_INDEXING="agentLogIndexingQueue",m.AGENT_TEST_RUN="agentTestRunQueue",m))(ui||{});function FS(t,e,r){Zv(t,e),r&&Jv(t,r)}s(FS,"addListeners");function Jv(t,e){t.on("stalled",async r=>{if(e)await e(r);else if(r.opts.repeat){let n=r.id,i=await t.getRepeatableJobs();for(let o of i)o.id===n&&await t.removeRepeatableByKey(o.key);console.log(`jobId=${n} disabled`)}})}s(Jv,"handleStalled");function st(t,e,r={},n={}){let i=`[BULL] ${t}=${e}`,o=r.error,a={_logKey:"bull",eventType:t,event:e,job:r.job,jobId:r.jobId||r.job?.id,...n},u;return r.job?.data?.automation&&(u={_logKey:"automation",trigger:r.job?r.job.data.automation.definition.trigger.event:void 0}),[i,o,a,u]}s(st,"getLogParams");var Xv={automationQueue:"automation-event",appBackupQueue:"app-backup-event",auditLogQueue:"audit-log-event",systemEventQueue:"system-event",appMigration:"app-migration",docWritethroughQueue:"doc-writethrough",devRevertProcessorQueue:"dev-revert-event",batchUserSyncProcessorQueue:"batch-user-sync-processor",ragIngestionQueue:"rag-ingestion-processor",agentLogIndexingQueue:"agent-log-indexing-processor",agentTestRunQueue:"agent-test-run-processor",knowledgeSourceSyncQueue:"knowledge-source-sync-processor"};function Zv(t,e){let r=Xv[e];function n(i,o){let a=i.data.event?.appId;if(a)return bf(a,o);o()}s(n,"doInJobContext"),t.on("stalled",async i=>{await n(i,()=>{console.error(...st(r,"stalled",{job:i}))})}).on("error",i=>{console.error(...st(r,"error",{error:i}))}),process.env.NODE_DEBUG?.includes("bull")&&t.on("waiting",i=>{console.info(...st(r,"waiting",{jobId:i}))}).on("active",async i=>{await n(i,()=>{console.info(...st(r,"active",{job:i}))})}).on("progress",async(i,o)=>{await n(i,()=>{console.info(...st(r,"progress",{job:i},{progress:o}))})}).on("completed",async(i,o)=>{await n(i,()=>{console.info(...st(r,"completed",{job:i},{result:o}))})}).on("failed",async(i,o)=>{await n(i,()=>{console.error(...st(r,"failed",{job:i,error:o}))})}).on("paused",()=>{console.info(...st(r,"paused"))}).on("resumed",()=>{console.info(...st(r,"resumed"))}).on("cleaned",(i,o)=>{console.info(...st(r,"cleaned",{},{length:i.length,type:o}))}).on("drained",()=>{console.info(...st(r,"drained"))}).on("removed",i=>{console.info(...st(r,"removed",{job:i}))})}s(Zv,"logging");var Ru={};L(Ru,{cleanup:()=>eP,clear:()=>mp,set:()=>pp});var Ys=[];function pp(t,e){let r=setInterval(t,e);return Ys.push(r),r}s(pp,"set");function mp(t){let e=Ys.indexOf(t);e!==-1&&Ys.splice(e,1),clearInterval(t)}s(mp,"clear");function eP(){for(let t of Ys)clearInterval(t);Ys=[]}s(eP,"cleanup");var zt=W(require("dd-trace")),zs=W(require("object-sizeof"));var tP=me.fromMinutes(5).toMs(),rP=me.fromSeconds(30).toMs(),gp=me.fromSeconds(60).toMs(),Js=[],Du;async function BS(){for(let t of Js)await t.clean(gp,"completed"),await t.clean(gp,"failed")}s(BS,"cleanup");async function nP(t,e,r){let n=performance.now();try{let i=await e();return zt.default.dogstatsd.increment(`${t}.success`,1,r),i}catch(i){throw zt.default.dogstatsd.increment(`${t}.error`,1,r),i}finally{let i=performance.now()-n;zt.default.dogstatsd.distribution(`${t}.duration.ms`,i,r),zt.default.dogstatsd.increment(t,1,r)}}s(nP,"withMetrics");function WS(t){return{"job.opts.attempts":t.attempts,"job.opts.backoff":t.backoff,"job.opts.delay":t.delay,"job.opts.jobId":t.jobId,"job.opts.lifo":t.lifo,"job.opts.preventParsingData":t.preventParsingData,"job.opts.priority":t.priority,"job.opts.removeOnComplete":t.removeOnComplete,"job.opts.removeOnFail":t.removeOnFail,"job.opts.repeat":t.repeat,"job.opts.stackTraceLimit":t.stackTraceLimit,"job.opts.timeout":t.timeout}}s(WS,"jobOptsTags");function iP(t){return{"job.id":t.id,"job.attemptsMade":t.attemptsMade,"job.timestamp":t.timestamp,"job.data.sizeBytes":(0,zs.default)(t.data),...WS(t.opts||{})}}s(iP,"jobTags");var Et=class{static{s(this,"BudibaseQueue")}constructor(e,r={}){this.opts=r,this.jobQueue=e,this.queue=this.initQueue()}get name(){return this.queue.name}initQueue(){let r={redis:on(),settings:{maxStalledCount:this.opts.maxStalledCount?this.opts.maxStalledCount:0,lockDuration:tP,lockRenewTime:rP}};this.opts.jobOptions&&(r.defaultJobOptions=this.opts.jobOptions);let n;return g.isTest()?process.env.BULL_TEST_REDIS_PORT&&!isNaN(+process.env.BULL_TEST_REDIS_PORT)?n=new hp.default(this.jobQueue,{...r,redis:{host:"localhost",port:+process.env.BULL_TEST_REDIS_PORT}}):n=new MS(this.jobQueue,r):n=new hp.default(this.jobQueue,r),FS(n,this.jobQueue,this.opts.removeStalledCb),Js.push(n),!Du&&!g.isTest()&&(Du=pp(BS,gp),BS().catch(i=>{console.error(`Unable to cleanup ${this.jobQueue} initially - ${i}`)})),n}getBullQueue(){return this.queue}process(...e){let r,n;e.length===2?(r=e[0],n=e[1]):n=e[0];let i=s(async(a,u)=>{await zt.default.trace("queue.process",async c=>{if(a.data._parentSpanContext){let l=a.data._parentSpanContext,d={traceId:l.traceId,spanId:l.spanId,toTraceId:s(()=>l.traceId,"toTraceId"),toSpanId:s(()=>l.spanId,"toSpanId"),toTraceparent:s(()=>"","toTraceparent")};c.addLink(d)}c.addTags({"queue.name":this.jobQueue,...iP(a)}),this.opts.jobTags&&c.addTags(this.opts.jobTags(a.data)),zt.default.dogstatsd.distribution("queue.process.sizeBytes",(0,zs.default)(a.data),this.metricTags()),await this.withMetrics("queue.process",()=>u?n(a,u):n(a))})},"processCallback"),o;return n.length===1?o=s(a=>i(a),"wrappedCb"):o=i,r?this.queue.process(r,o):this.queue.process(o)}async add(e,r){return await zt.default.trace("queue.add",async n=>(n.addTags({"queue.name":this.jobQueue,"job.data.sizeBytes":(0,zs.default)(e),...WS(r||{})}),this.opts.jobTags&&n.addTags(this.opts.jobTags(e)),e._parentSpanContext={traceId:n.context().toTraceId(),spanId:n.context().toSpanId()},zt.default.dogstatsd.distribution("queue.add.sizeBytes",(0,zs.default)(e),this.metricTags()),await this.withMetrics("queue.add",()=>this.queue.add(e,r))))}withMetrics(e,r){return nP(e,r,this.metricTags())}metricTags(){return{queueName:this.jobQueue}}close(e){return this.queue.close(e)}whenCurrentJobsFinished(){return this.queue.whenCurrentJobsFinished()}};async function sP(){Du&&mp(Du),console.log("Waiting for current queue jobs to finish...");for(let t of Js)await t.whenCurrentJobsFinished();console.log("Closing queue Redis connections...");for(let t of Js)await t.close();Js=[],console.log("Queues shutdown")}s(sP,"shutdown");var io={};L(io,{correlation:()=>Xs,logAlert:()=>mn,logAlertWithInfo:()=>VP,logWarn:()=>di,logger:()=>Uu,system:()=>xp});var Xs={};L(Xs,{getId:()=>Ep,setHeader:()=>oP});var GS=require("correlation-id"),oP=s(t=>{let e=GS.getId();e&&(t["x-budibase-correlation-id"]=e)},"setHeader");function Ep(){return GS.getId()}s(Ep,"getId");var Lu=W(require("pino")),EA=W(require("pino-pretty")),vp=W(require("dd-trace")),yA=require("dd-trace/ext");var xp={};L(xp,{getLogReadStream:()=>MP,getSingleFileMaxSizeInfo:()=>gA,localFileDestination:()=>bp});var no=W(require("fs")),Cp=W(require("path")),fA=W(require("rotating-file-stream"));var Dp={};L(Dp,{ObjectStore:()=>ot,ObjectStoreBuckets:()=>uP,SIGNED_FILE_PREFIX:()=>Op,bucketTTLConfig:()=>Cu,budibaseTempDir:()=>fn,client3rdPartyLibrary:()=>xP,clientLibraryPath:()=>bP,clientLibraryUrl:()=>vP,createBucketIfNotExists:()=>ro,deleteFile:()=>SP,deleteFiles:()=>AP,deleteFolder:()=>eA,downloadTarball:()=>OP,downloadTarballDirect:()=>_P,enrichPWAImages:()=>PP,enrichPluginURLs:()=>LP,extractBucketAndPath:()=>yp,getAllFiles:()=>EP,getAppFileUrl:()=>iA,getClientCacheKey:()=>nA,getGlobalFileS3Key:()=>sA,getGlobalFileUrl:()=>NP,getObjectMetadata:()=>IP,getPluginIconKey:()=>uA,getPluginJSKey:()=>aA,getPluginS3Dir:()=>lA,getPresignedUrl:()=>pn,getReadStream:()=>bu,listAllObjects:()=>Ip,objectExists:()=>wP,processAutomationAttachment:()=>lP,processObjectStoreAttachment:()=>QS,retrieve:()=>ZS,retrieveDirectory:()=>TP,retrieveToTmp:()=>yP,sanitizeBucket:()=>be,sanitizeKey:()=>Ee,streamUpload:()=>XS,streamUploadMany:()=>gP,upload:()=>hP,uploadDirectory:()=>wp});var vu=require("@aws-sdk/client-s3"),Tp=require("@aws-sdk/lib-storage"),jS=require("@aws-sdk/s3-request-presigner"),HS=require("@smithy/node-http-handler");var Jt=W(require("dd-trace")),ci=W(require("fs")),eo=W(require("fs/promises")),YS=W(require("https")),Rr=require("path"),Pu=W(require("stream")),to=require("stream/promises"),Sp=W(require("tar-fs")),Ap=require("uuid"),_p=W(require("zlib"));var $S=W(require("fs")),VS=require("os"),Zs=W(require("path")),qS=W(require("stream"));var uP={BACKUPS:g.BACKUPS_BUCKET_NAME,APPS:g.APPS_BUCKET_NAME,TEMPLATES:g.TEMPLATES_BUCKET_NAME,GLOBAL:g.GLOBAL_BUCKET_NAME,PLUGINS:g.PLUGIN_BUCKET_NAME,TEMP:g.TEMP_BUCKET_NAME},KS=(0,Zs.join)((0,VS.tmpdir)(),".budibase");try{$S.default.mkdirSync(KS)}catch(t){if(t.code!=="EEXIST")throw t}function fn(){return KS}s(fn,"budibaseTempDir");var Cu=s((t,e)=>{let n={Rules:[{ID:`${t}-ExpireAfter${e}days`,Prefix:"",Status:"Enabled",Expiration:{Days:e}}]};return{Bucket:t,LifecycleConfiguration:n}},"bucketTTLConfig");async function cP(t){let e=await oi(t.url);if(!e.ok||!e.body)throw new Error(`Unexpected response ${e.statusText}`);let r=Zs.default.basename(new URL(t.url).pathname);if(!e.body)throw new Error("No response received for attachment");if(!(e.body instanceof qS.default.Readable))throw new Error("Unexpected response body stream type");return{filename:t.filename||r,content:e.body}}s(cP,"processUrlAttachment");async function QS(t){let e=yp(t.url);if(e===null)throw new Error("Invalid signed URL");let{bucket:r,path:n}=e,{stream:i}=await bu(r,n),o=Zs.default.basename(n);return{bucket:r,path:n,filename:t.filename||o,content:i}}s(QS,"processObjectStoreAttachment");async function lP(t){return t.url?.startsWith("http://")||t.url?.startsWith("https://")?await cP(t):await QS(t)}s(lP,"processAutomationAttachment");var dP=require("sanitize-s3-objectkey"),fP={bucketCreationPromises:{}},Op="/files/signed",wr={txt:"text/plain",html:"text/html",css:"text/css",js:"application/javascript",json:"application/json",gz:"application/gzip",svg:"image/svg+xml",form:"multipart/form-data"},pP=[wr.html,wr.css,wr.js,wr.json];function Ee(t){return dP(be(t)).replace(/\\/g,"/")}s(Ee,"sanitizeKey");function be(t){return t.replace(new RegExp(rt,"g"),tt)}s(be,"sanitizeBucket");function ot(t={presigning:!1}){let e={forcePathStyle:!0,credentials:{accessKeyId:g.MINIO_ACCESS_KEY,secretAccessKey:g.MINIO_SECRET_KEY},region:g.AWS_REGION};if(!g.MINIO_ENABLED&&g.AWS_SESSION_TOKEN&&(e.credentials={accessKeyId:g.MINIO_ACCESS_KEY,secretAccessKey:g.MINIO_SECRET_KEY,sessionToken:g.AWS_SESSION_TOKEN}),g.MINIO_URL&&(t.presigning&&g.MINIO_ENABLED?e.endpoint="http://minio-service":e.endpoint=g.MINIO_URL),g.S3_IGNORE_SELF_SIGNED==="true"){let r=new YS.default.Agent({rejectUnauthorized:!1});e.requestHandler=new HS.NodeHttpHandler({httpsAgent:r})}return new vu.S3(e)}s(ot,"ObjectStore");async function ro(t,e){e=be(e);try{return await t.headBucket({Bucket:e}),{created:!1,exists:!0}}catch(r){let n=r.statusCode||r.$response?.statusCode||r.$metadata?.httpStatusCode,i=fP.bucketCreationPromises;if(n===403)throw new Error("Access denied to object store bucket."+r);if(i[e])return await i[e],{created:!1,exists:!0};i[e]=t.createBucket({Bucket:e}).catch(o=>{if(o.Code!=="BucketAlreadyOwnedByYou"&&o.name!=="BucketAlreadyOwnedByYou")throw o});try{return await i[e],{created:!0,exists:!1}}finally{delete i[e]}}}s(ro,"createBucketIfNotExists");var mP=s((t,e)=>{if(e)return e;let r=t.split(".").pop();return r?wr[r.toLowerCase()]:wr.txt},"resolveContentType"),zS=s(async(t,e,r)=>{let n=be(t),i=ot(),o=await ro(i,n);if(r.addTags({bucketCreated:o.created,bucketExists:o.exists}),e&&o.created){let a=Cu(n,e);await i.putBucketLifecycleConfiguration(a)}return{bucket:n,client:i,bucketCreated:o}},"initialiseBucket"),JS=s(async({client:t,bucket:e,filename:r,stream:n,type:i,extra:o})=>{if(!n)throw new Error("Stream to upload is invalid/undefined");let a=mP(r,i),u=Ee(r),c={Bucket:e,Key:u,Body:n,ContentType:a,...o??{}};return{details:await new Tp.Upload({client:t,params:c}).done(),contentType:a}},"streamUploadInternal");async function hP({bucket:t,filename:e,path:r,type:n,metadata:i,body:o,ttl:a}){let u=e.split(".").pop(),c=r?(await eo.default.open(r)).createReadStream():o,l=ot(),d=await ro(l,t);if(a&&d.created){let E=Cu(t,a);await l.putBucketLifecycleConfiguration(E)}let f=n,m=f||(u?wr[u.toLowerCase()]:wr.txt),h={Bucket:be(t),Key:Ee(e),Body:c,ContentType:m};if(i&&typeof i=="object"){for(let E of Object.keys(i))(!i[E]||typeof i[E]!="string")&&delete i[E];h.Metadata=i}return new Tp.Upload({client:l,params:h}).done()}s(hP,"upload");async function XS({bucket:t,stream:e,filename:r,type:n,extra:i,ttl:o}){return await Jt.default.trace("streamUpload",async a=>{a.addTags({bucketName:t,filename:r,type:n,ttl:o});let u=r.split(".").pop();a.addTags({extension:u});let{bucket:c,client:l}=await zS(t,o,a),{details:d,contentType:f}=await JS({client:l,bucket:c,filename:r,stream:e,type:n,extra:i}),m=await l.headObject({Bucket:c,Key:Ee(r)});return a.addTags({contentType:f,contentLength:m.ContentLength}),{...d,ContentLength:m.ContentLength}})}s(XS,"streamUpload");async function gP({bucket:t,files:e,ttl:r}){return await Jt.default.trace("streamUploadMany",async i=>{if(i.addTags({bucketName:t,ttl:r,fileCount:e.length}),!e.length)return[];let{bucket:o,client:a}=await zS(t,r,i),u=e.map((l,d)=>({...l,index:d})),c=new Array(e.length);return await wt.parallelForeach(u,async l=>{let{details:d}=await JS({client:a,bucket:o,filename:l.filename,stream:l.stream,type:l.type,extra:l.extra});c[l.index]=d},10),c})}s(gP,"streamUploadMany");async function ZS(t,e){return await Jt.default.trace("retrieve",async r=>{r.addTags({bucketName:t,filepath:e});let n=ot(),i={Bucket:be(t),Key:Ee(e)},o=await n.getObject(i);if(!o.Body)throw new Error("Unable to retrieve object");if(r.addTags({contentLength:o.ContentLength,contentType:o.ContentType}),pP.includes(o.ContentType))return r.addTags({string:!0}),o.Body.transformToString();{r.addTags({string:!1});let a=o.Body.transformToWebStream();return Pu.default.Readable.fromWeb(a)}})}s(ZS,"retrieve");async function*Ip(t,e){let r=ot(),n=s((a={})=>r.listObjectsV2({...a,Bucket:be(t),Prefix:Ee(e)}),"list"),i=!1,o;do{let a={};o&&(a.ContinuationToken=o);let u=await n(a);if(u.Contents)for(let c of u.Contents)yield c;i=!!u.IsTruncated,o=u.NextContinuationToken}while(i&&o)}s(Ip,"listAllObjects");async function EP(t,e){let r={};return await wt.parallelForeach(Ip(t,e),async n=>{if(!n.Key)throw new Error("file.Key must be defined");r[n.Key]=n},5),r}s(EP,"getAllFiles");async function pn(t,e,r=3600){let n=ot({presigning:!0}),i={Bucket:be(t),Key:Ee(e)},o=await(0,jS.getSignedUrl)(n,new vu.GetObjectCommand(i),{expiresIn:r});if(g.MINIO_ENABLED){let a=new URL(o),u=a.pathname,c=a.search;return`${Op}${u}${c}`}else return o}s(pn,"getPresignedUrl");async function yP(t,e){return await Jt.default.trace("retrieveToTmp",async r=>{r.addTags({bucketName:t,filepath:e}),t=be(t),e=Ee(e);let n=await ZS(t,e),i=(0,Rr.join)(fn(),(0,Ap.v4)());return r.addTags({outputPath:i}),n instanceof Pu.default.Readable?(r.addTags({stream:!0}),await(0,to.pipeline)(n,ci.default.createWriteStream(i))):(r.addTags({stream:!1}),ci.default.writeFileSync(i,n)),i})}s(yP,"retrieveToTmp");async function TP(t,e,r){return await Jt.default.trace("retrieveDirectory",async n=>{n.addTags({bucketName:t,path:e});let i=(0,Rr.join)(fn(),(0,Ap.v4)());await eo.default.mkdir(i,{recursive:!0});let o=0;return await wt.parallelForeach(Ip(t,e),async a=>{let{Key:u}=a;!u||r?.some(c=>c.test(u))||(o++,await Jt.default.trace("retrieveDirectory.object",async c=>{let l=a.Key;c.addTags({filename:l});let{stream:d}=await bu(t,l),f=l.split("/"),m=f.slice(0,f.length-1),h=(0,Rr.join)(i,...m);f.length>1&&!ci.default.existsSync(h)&&await eo.default.mkdir(h,{recursive:!0}),await(0,to.pipeline)(d,ci.default.createWriteStream((0,Rr.join)(i,...f),{mode:420}))}))},5),n.addTags({numObjects:o}),i})}s(TP,"retrieveDirectory");async function SP(t,e){let r=ot();await ro(r,t);let n={Bucket:t,Key:Ee(e)};return r.deleteObject(n)}s(SP,"deleteFile");async function AP(t,e){let r=ot();await ro(r,t);let n={Bucket:t,Delete:{Objects:e.map(i=>({Key:Ee(i)}))}};return r.deleteObjects(n)}s(AP,"deleteFiles");async function eA(t,e){t=be(t),e=Ee(e);let r=ot(),n={Bucket:t,Prefix:e},i=await r.listObjects(n);if(i.Contents?.length===0)return;let o={Bucket:t,Delete:{Objects:[]}};if(i.Contents?.forEach(a=>{o.Delete.Objects.push({Key:a.Key})}),o.Delete.Objects.length&&(await r.deleteObjects(o)).Deleted?.length===1e3)return eA(t,e)}s(eA,"deleteFolder");async function wp(t,e,r){return await Jt.default.trace("uploadDirectory",async n=>{n.addTags({bucketName:t,localPath:e,bucketPath:r}),t=be(t);let i=await eo.default.readdir(e,{withFileTypes:!0});n.addTags({numFiles:i.length});for(let o of i){let a=Ee((0,Rr.join)(r,o.name)),u=(0,Rr.join)(e,o.name);o.isDirectory()?await wp(t,u,a):await XS({bucket:t,filename:a,stream:ci.default.createReadStream(u)})}return i})}s(wp,"uploadDirectory");async function _P(t,e,r={},{followRedirects:n=!0}={}){e=Ee(e);let i=await oi(t,{headers:r},{followRedirects:n});if(!i.ok)throw new Error(`unexpected response ${i.statusText}`);await(0,to.pipeline)(i.body,_p.default.createUnzip(),Sp.default.extract(e))}s(_P,"downloadTarballDirect");async function OP(t,e,r){e=be(e),r=Ee(r);let n=await oi(t);if(!n.ok)throw new Error(`unexpected response ${n.statusText}`);let i=(0,Rr.join)(fn(),r);return await(0,to.pipeline)(n.body,_p.default.createUnzip(),Sp.default.extract(i)),!g.isTest()&&g.SELF_HOSTED&&await wp(e,i,r),i}s(OP,"downloadTarball");async function bu(t,e){return await Jt.default.trace("getReadStream",async r=>{t=be(t),e=Ee(e),r.addTags({bucketName:t,path:e});let n=ot(),i={Bucket:t,Key:e},o=await n.getObject(i);if(!o.Body||!(o.Body instanceof Pu.default.Readable))throw new Error("Unable to retrieve stream - invalid response");return r.addTags({contentLength:o.ContentLength,contentType:o.ContentType}),{stream:o.Body,contentLength:o.ContentLength,contentType:o.ContentType}})}s(bu,"getReadStream");async function IP(t,e){t=be(t),e=Ee(e);let r=ot(),n={Bucket:t,Key:e};try{return await r.headObject(n)}catch{throw new Error("Unable to retrieve metadata from object")}}s(IP,"getObjectMetadata");async function wP(t,e){t=be(t),e=Ee(e);let r=ot(),n={Bucket:t,Key:e};try{return await r.headObject(n),!0}catch(i){if((i.statusCode||i.$response?.statusCode||i.$metadata?.httpStatusCode)===404)return!1;throw i}}s(wP,"objectExists");function yp(t){let e=t.split("?")[0],r=new RegExp(`^${Op}/(?<bucket>[^/]+)/(?<path>.+)$`),n=e.match(r);if(n&&n.groups){let{bucket:i,path:o}=n.groups;return{bucket:i,path:o}}return null}s(yp,"extractBucketAndPath");var rA=W(require("querystring"));var tA=W(require("aws-cloudfront-sign"));var Nu;function RP(){if(!g.CLOUDFRONT_PRIVATE_KEY_64)throw new Error("CLOUDFRONT_PRIVATE_KEY_64 is not set");return Nu||(Nu=Buffer.from(g.CLOUDFRONT_PRIVATE_KEY_64,"base64").toString("utf-8"),Nu)}s(RP,"getPrivateKey");var DP=s(()=>({keypairId:g.CLOUDFRONT_PUBLIC_KEY_ID,privateKeyString:RP(),expireTime:new Date().getTime()+1e3*60*60*24}),"getCloudfrontSignParams"),li=s(t=>{let e=CP(t);return tA.getSignedUrl(e,DP())},"getPresignedUrl"),CP=s(t=>{let e="/";return t.startsWith("/")&&(e=""),`${g.CLOUDFRONT_CDN}${e}${t}`},"getUrl");function bP(t){return`${Ee(t)}/budibase-client.js`}s(bP,"clientLibraryPath");function xP(t,e){return`${Ee(t)}/${e}`}s(xP,"client3rdPartyLibrary");async function vP(t,e){return`/api/assets/${t}/client?${await nA(e)}`}s(vP,"clientLibraryUrl");async function nA(t){let e,r;try{e=$()}finally{r={version:t}}return e&&e!==ce&&(r.tenantId=e),rA.default.encode(r)}s(nA,"getClientCacheKey");async function iA(t){return g.CLOUDFRONT_CDN?li(t):await pn(g.APPS_BUCKET_NAME,t)}s(iA,"getAppFileUrl");async function PP(t){if(t.length===0)return[];try{return await Promise.all(t.map(async e=>({...e,src:await iA(e.src),type:e.type||"image/png"})))}catch(e){return console.error("Error enriching PWA images:",e),t}}s(PP,"enrichPWAImages");var NP=s(async(t,e,r)=>{let n=sA(t,e);return g.CLOUDFRONT_CDN?(r&&(n=`${n}?etag=${r}`),li(n)):await pn(g.GLOBAL_BUCKET_NAME,n)},"getGlobalFileUrl"),sA=s((t,e)=>{let r=`${t}/${e}`;return g.MULTI_TENANCY&&(r=`${$()}/${r}`),r},"getGlobalFileS3Key");async function LP(t){return!t||!t.length?[]:await Promise.all(t.map(async e=>{let r=await UP(e),n=await kP(e);return{...e,jsUrl:r,iconUrl:n}}))}s(LP,"enrichPluginURLs");async function UP(t){let e=aA(t);return oA(e)}s(UP,"getPluginJSUrl");async function kP(t){let e=uA(t);if(e)return oA(e)}s(kP,"getPluginIconUrl");async function oA(t){return g.CLOUDFRONT_CDN?li(t):await pn(g.PLUGIN_BUCKET_NAME,t)}s(oA,"getPluginUrl");function aA(t){return cA(t,"plugin.min.js")}s(aA,"getPluginJSKey");function uA(t){let e=t.iconUrl?"icon.svg":t.iconFileName;if(e)return cA(t,e)}s(uA,"getPluginIconKey");function cA(t,e){return`${lA(t.name)}/${e}`}s(cA,"getPluginS3Key");function lA(t){let e=`${t}`;return g.MULTI_TENANCY&&(e=`${$()}/${e}`),g.CLOUDFRONT_CDN&&(e=`plugins/${e}`),e}s(lA,"getPluginS3Dir");var pA="budibase.log",mA="budibase-logs-history.txt",hA=Cp.default.join(fn(),"systemlogs");function dA(t){return Cp.default.join(hA,t)}s(dA,"getFullPath");function gA(t){let e=/(\d+)([A-Za-z])/,r=t?.match(e);if(!r){console.warn("totalMaxSize does not have a valid value",{totalMaxSize:t});return}let n=+r[1],i=r[2];if(n===1)switch(i){case"B":return{size:`${n}B`,totalHistoryFiles:1};case"K":return{size:`${n*1e3/2}B`,totalHistoryFiles:1};case"M":return{size:`${n*1e3/2}K`,totalHistoryFiles:1};case"G":return{size:`${n*1e3/2}M`,totalHistoryFiles:1};default:return}return n%2===0?{size:`${n/2}${i}`,totalHistoryFiles:1}:{size:`1${i}`,totalHistoryFiles:n-1}}s(gA,"getSingleFileMaxSizeInfo");function bp(){let t=gA(g.ROLLING_LOG_MAX_SIZE);return fA.createStream(pA,{size:t?.size,path:hA,maxFiles:t?.totalHistoryFiles||1,immutable:!0,history:mA,initialRotation:!1})}s(bp,"localFileDestination");function MP(){let t=[],e=dA(mA);if(no.default.existsSync(e)){let i=no.default.readFileSync(e,"utf-8").split(`
|
|
37
|
-
`);for(let o of i.filter(a=>a))t.push(no.default.readFileSync(o))}return t.push(no.default.readFileSync(dA(pA))),Buffer.concat(t.map(n=>new Uint8Array(n)))}s(MP,"getLogReadStream");function FP(t){return typeof t=="object"&&t!==null&&!(t instanceof Error)}s(FP,"isPlainObject");function BP(t){return t instanceof Error}s(BP,"isError");function WP(t){return typeof t=="string"}s(WP,"isMessage");var Dr;if(!g.DISABLE_PINO_LOGGER){let t=g.LOG_LEVEL,e={level:t,formatters:{level:s(c=>({level:c.toUpperCase()}),"level"),bindings:s(()=>g.SELF_HOSTED?{service:g.SERVICE_NAME}:{},"bindings")},timestamp:s(()=>`,"timestamp":"${new Date(Date.now()).toISOString()}"`,"timestamp")},r=[];r.push(g.isDev()?{stream:(0,EA.default)({singleLine:!0}),level:t}:{stream:process.stdout,level:t}),g.SELF_HOSTED&&r.push({stream:bp(),level:t}),Dr=r.length?(0,Lu.default)(e,Lu.default.multistream(r)):(0,Lu.default)(e);let n=s(c=>{let l,d=[],f="";c.forEach(p=>{WP(p)&&(f=`${f} ${p}`.trimStart()),FP(p)&&d.push(p),BP(p)&&(l=p)});let m=u(),h={};h={tenantId:i(),appId:o(),automationId:a(),identityId:m?._id,identityType:m?.type,correlationId:Ep()};let T=vp.default.scope().active();T&&vp.default.inject(T.context(),yA.formats.LOG,h);let E={err:l,pid:process.pid,...h};if(d.length){let p={},y=0;for(let A=0;A<d.length;A++){let _=d[A],I=_._logKey;I?(delete _._logKey,E[I]=_):(p[y]=_,y++)}Object.keys(p).length&&(E.data=p)}return[E,f]},"getLogParams");console.log=(...c)=>{let[l,d]=n(c);Dr?.info(l,d)},console.info=(...c)=>{let[l,d]=n(c);Dr?.info(l,d)},console.warn=(...c)=>{let[l,d]=n(c);Dr?.warn(l,d)},console.error=(...c)=>{let[l,d]=n(c);Dr?.error(l,d)},console.trace=(...c)=>{let[l,d]=n(c);l.err||(l.err=new Error),Dr?.trace(l,d)},console.debug=(...c)=>{let[l,d]=n(c);Dr?.debug(l,d)};let i=s(()=>{let c;try{c=$()}catch{}return c},"getTenantId"),o=s(()=>{let c;try{c=He()}catch{}return c},"getAppId"),a=s(()=>{let c;try{c=xf()}catch{}return c},"getAutomationId"),u=s(()=>{let c;try{c=Vt()}catch{}return c},"getIdentity")}var Uu=Dr;var GP=["AccountError"];function $P(t){return t&&t.suppressAlert}s($P,"isSuppressed");function mn(t,e){e&&GP.includes(e.name)&&$P(e)||console.error(`bb-alert: ${t}`,e)}s(mn,"logAlert");function VP(t,e,r,n){t=`${t} - db: ${e} - doc: ${r} - error: `,mn(t,n)}s(VP,"logAlertWithInfo");function di(t,e){console.warn(`bb-warn: ${t}`,e)}s(di,"logWarn");var ku=class extends Error{static{s(this,"UnretriableError")}constructor(e){super(e),this.name="PermanentError"}},Pp=class{static{s(this,"QueuedProcessor")}constructor(e,r={}){let{maxAttempts:n=3,removeOnFail:i=!0,removeOnComplete:o=!0,maxStalledCount:a=3}=r;this.waitForCompletionMs=r.waitForCompletionMs||1e4,this._queue=new Et(e,{maxStalledCount:a,jobOptions:{attempts:n,removeOnFail:i,removeOnComplete:o}}),this._queue.process(async(u,c)=>{try{let l=await this.processFn(u.data);c?.(null,l)}catch(l){l instanceof ku&&await u.discard(),mn(`Failed to process job in ${this._queue.name}`,l),c?.(l)}})}async close(e){await this._queue.close(e)}async execute(e){try{let r=await this._queue.add(e);return{success:!0,result:await Ue.withTimeout(this.waitForCompletionMs,()=>r.finished())}}catch(r){if(r.errno!=="ETIME")throw r;return{success:!1,reason:"timeout"}}}};var qP=100,Mu,so=class t{static{s(this,"DocWritethroughProcessor")}static get queue(){return t._queue||(t._queue=new Et("docWritethroughQueue",{jobOptions:{attempts:qP}})),t._queue}init(){return t.queue.process(async e=>{try{await this.persistToDb(e.data)}catch(r){throw r.status===409?new Error(`Conflict persisting message ${e.id}. Attempt ${e.attemptsMade}`):r}}),this}async persistToDb({dbName:e,docId:r,data:n}){if(r.startsWith("scimlog"))return;let i=De(e),o;try{o=await i.get(r)}catch{o={_id:r}}o={...o,...n},await i.put(o)}},Lp=class{static{s(this,"DocWritethrough")}constructor(e,r){this.db=e,this._docId=r}get docId(){return this._docId}async patch(e){await so.queue.add({dbName:this.db.name,docId:this.docId,data:e})}};function TA(){return Mu=new so().init(),Mu}s(TA,"init");function KP(){return Mu||TA()}s(KP,"getProcessor");var Bu={};L(Bu,{CacheKey:()=>Oe,TTL:()=>fi,bustCache:()=>pi,destroy:()=>ao,get:()=>oo,increment:()=>AA,keys:()=>Fu,store:()=>gn,withCache:()=>br,withCacheWithDynamicTTL:()=>SA});function yt(t){let e=$();return`${t}:${e}`}s(yt,"generateTenantKey");var hn=class{static{s(this,"BaseCache")}constructor(e=void 0){this.client=e}async getClient(){return this.client?this.client:await Ff()}async keys(e){return(await this.getClient()).keys(e)}async exists(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).exists(e)}async scan(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).scan(e)}async get(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).get(e)}async bulkGet(e,r={useTenancy:!0}){return e=r.useTenancy?e.map(i=>yt(i)):e,(await this.getClient()).bulkGet(e)}async store(e,r,n=null,i={useTenancy:!0}){e=i.useTenancy?yt(e):e,await(await this.getClient()).store(e,r,n)}async bulkStore(e,r=null,n={useTenancy:!0}){n.useTenancy&&(e=Object.entries(e).reduce((o,[a,u])=>(o[yt(a)]=u,o),{})),await(await this.getClient()).bulkStore(e,r)}async delete(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).delete(e)}async bulkDelete(e,r={useTenancy:!0}){return e=r.useTenancy?e.map(i=>yt(i)):e,(await this.getClient()).bulkDelete(e)}async withCache(e,r=null,n,i={useTenancy:!0}){let o=await this.get(e,i);if(o)return o;try{let a=await n();return await this.store(e,a,r,i),a}catch(a){throw console.error("Error fetching before cache - ",a),a}}async withCacheWithDynamicTTL(e,r,n={useTenancy:!0}){let i=await this.get(e,n);if(i)return i;try{let o=await r(),{value:a,ttl:u}=o;return await this.store(e,a,u,{useTenancy:n.useTenancy}),a}catch(o){throw console.error("Error fetching before cache - ",o),o}}async bustCache(e){let r=await this.getClient();try{await r.delete(yt(e))}catch(n){throw console.error("Error busting cache - ",n),n}}async increment(e,r,n={useTenancy:!0}){e=n.useTenancy?yt(e):e;let i=await this.getClient(),o=await i.increment(e);return r&&await i.setExpiry(e,r),o}async deleteIfValue(e,r,n={useTenancy:!0}){e=n.useTenancy?yt(e):e,await(await this.getClient()).deleteIfValue(e,r)}};var Cr=new hn,Oe={CHECKLIST:"checklist",INSTALLATION:"installation",ANALYTICS_ENABLED:"analyticsEnabled",UNIQUE_TENANT_ID:"uniqueTenantId",EVENTS:"events",BACKFILL_METADATA:"backfillMetadata",EVENTS_RATE_LIMIT:"eventsRateLimit",OAUTH2_TOKEN:s(t=>`oauth2Token_${t}`,"OAUTH2_TOKEN")},fi=(n=>(n[n.ONE_MINUTE=600]="ONE_MINUTE",n[n.ONE_HOUR=3600]="ONE_HOUR",n[n.ONE_DAY=86400]="ONE_DAY",n))(fi||{}),Fu=s((...t)=>Cr.keys(...t),"keys"),oo=s((...t)=>Cr.get(...t),"get"),gn=s((...t)=>Cr.store(...t),"store"),ao=s((...t)=>Cr.delete(...t),"destroy"),br=s((...t)=>Cr.withCache(...t),"withCache"),SA=s((...t)=>Cr.withCacheWithDynamicTTL(...t),"withCacheWithDynamicTTL"),pi=s((...t)=>Cr.bustCache(...t),"bustCache"),AA=s((...t)=>Cr.increment(...t),"increment");var Fp={};L(Fp,{createCode:()=>ZP,deleteCode:()=>tN,getCode:()=>eN,getExistingInvites:()=>Mp,getInviteCodes:()=>CA,updateCode:()=>XP});var yn={};L(yn,{AUTO_EXTEND_POLLING_MS:()=>IA,doWithLock:()=>uo,newRedlock:()=>En});var OA=W(require("redlock"));async function QP(t,e){if(t==="custom")return En(e);switch(t){case"try_once":return En(mi.TRY_ONCE);case"try_twice":return En(mi.TRY_TWICE);case"default":return En(mi.DEFAULT);case"delay_500":return En(mi.DELAY_500);case"auto_extend":return En(mi.AUTO_EXTEND);default:throw wt.unreachable(t)}}s(QP,"getClient");var mi={TRY_ONCE:{retryCount:0},TRY_TWICE:{retryCount:1},DEFAULT:{driftFactor:.01,retryCount:10,retryDelay:200,retryJitter:100},DELAY_500:{retryDelay:500},CUSTOM:{},AUTO_EXTEND:{retryCount:-1}};async function En(t={}){let e={...mi.DEFAULT,...t},n=(await Wf()).client;return new OA.default([n],e)}s(En,"newRedlock");function jP(t){let r=`lock:${t.systemLock?"system":$()}_${t.name}`;return t.resource&&(r=r+`_${t.resource}`),r}s(jP,"getLockName");var IA=me.fromSeconds(10).toMs();async function uo(t,e){let r=await QP(t.type,t.customOptions),n,i,o,a=!1;try{let u=jP(t),c=t.type==="auto_extend"?IA:t.ttl;if(n=await r.lock(u,c),t.type==="auto_extend"){let d=s(()=>{i=setTimeout(async()=>{a||(o=(async()=>{n=await n.extend(c,()=>t.onExtend&&t.onExtend())})(),await o,o=void 0,d())},c/2)},"extendInIntervals");d()}return{executed:!0,result:await e()}}catch(u){if(u.name==="LockError"){if(t.type==="try_once")return{executed:!1};throw u}else throw u}finally{a=!0,clearTimeout(i),await o?.catch(()=>{}),await n?.unlock()}}s(uo,"doWithLock");var wA=me.fromDays(7).toSeconds(),YP=me.fromSeconds(10).toMs(),Wu="Invitation is not valid or has expired, please request a new one.";function RA(t,e){if(!t)return null;let r=t.tenantId||e;return r?{tenantId:r,invites:t.invites||{}}:null}s(RA,"normaliseInviteList");function zP(t){let e=!1,r=Date.now();for(let[n,i]of Object.entries(t.invites))(!i?.expiresAt||i.expiresAt<=r)&&(delete t.invites[n],e=!0);return{list:t,changed:e}}s(zP,"pruneExpiredInvites");async function kp(t){let r=await(await Ms()).get(t);return RA(r,t)}s(kp,"loadInviteList");async function co(t,e){await(await Ms()).store(t,e)}s(co,"saveInviteList");async function lo(t,e){let{result:r}=await uo({type:"default",name:"process_user_invite",systemLock:!0,resource:t,ttl:YP},e);return r}s(lo,"withInviteListLock");function JP(t,e){return{code:t,email:e.email,info:e.info}}s(JP,"toInviteWithCode");async function DA(t,e){let r=await Ms(),n=RA(await r.get(e),e);if(!n)throw new Error(Wu);if(!Object.keys(n.invites).includes(t))throw new Error(Wu);return{list:n,invite:n.invites[t]}}s(DA,"findInviteInList");async function XP(t,e){let r={...e.info},n=r.tenantId||$();r.tenantId=n,await lo(n,async()=>{let i=await kp(n)||{tenantId:n,invites:{}};i.invites[t]={email:e.email,info:r,expiresAt:Date.now()+wA*1e3},await co(n,i)})}s(XP,"updateCode");async function ZP(t,e){let r=Z(),n={...e||{}},i=n.tenantId||$();return n.tenantId=i,await lo(i,async()=>{let o=await kp(i)||{tenantId:i,invites:{}};o.invites[r]={email:t,info:n,expiresAt:Date.now()+wA*1e3},await co(i,o)}),r}s(ZP,"createCode");async function eN(t,e){let r=e||$();return await lo(r,async()=>{let n=await DA(t,r),{list:i,invite:o}=n;if(o.expiresAt<=Date.now())throw delete i.invites[t],await co(i.tenantId,i),new Error(Wu);return{email:o.email,info:o.info}})}s(eN,"getCode");async function tN(t,e){let r=e||$();try{await lo(r,async()=>{let n=await DA(t,r);delete n.list.invites[t],await co(n.list.tenantId,n.list)})}catch(n){if(n instanceof Error&&n.message===Wu)return;throw n}}s(tN,"deleteCode");async function CA(){let t=$(),e=await lo(t,async()=>{let n=await kp(t)||{tenantId:t,invites:{}},i=zP(n);return n=i.list,i.changed&&await co(t,n),n}),r=new Map;for(let[n,i]of Object.entries(e.invites))r.set(n,JP(n,i));return Array.from(r.values())}s(CA,"getInviteCodes");async function Mp(t){let e=new Set(t.map(r=>r.toLowerCase()));return(await CA()).filter(r=>e.has(r.email.toLowerCase()))}s(Mp,"getExistingInvites");var Bp={};L(Bp,{createCode:()=>nN,getCode:()=>iN,invalidateCode:()=>sN});var rN=me.fromHours(1).toSeconds();async function nN(t,e){let r=Z();return await(await Fs()).store(r,{userId:t,info:e},rN),r}s(nN,"createCode");async function iN(t){let r=await(await Fs()).get(t);if(!r)throw new Error("Provided information is not valid, cannot reset password - please try again.");return r}s(iN,"getCode");async function sN(t){await(await Fs()).delete(t)}s(sN,"invalidateCode");var tr={};L(tr,{getUser:()=>bo,getUsers:()=>K0,invalidateUser:()=>xo,invalidateUsers:()=>Q0});var fo={};L(fo,{getPlatformDB:()=>xr,users:()=>Tt});var Tt={};L(Tt,{addSsoUser:()=>xA,addUser:()=>dN,getUserDoc:()=>bA,lookupTenantId:()=>oN,removeUser:()=>fN,updateUserDoc:()=>aN});function xr(){return De(pe.PLATFORM_INFO.name)}s(xr,"getPlatformDB");async function oN(t){return g.MULTI_TENANCY?(await bA(t)).tenantId:ce}s(oN,"lookupTenantId");async function bA(t){return xr().get(t)}s(bA,"getUserDoc");async function aN(t){await xr().put(t)}s(aN,"updateUserDoc");function uN(t,e){return{_id:t,tenantId:e}}s(uN,"newUserIdDoc");function cN(t,e,r){return{_id:e,userId:t,tenantId:r}}s(cN,"newUserEmailDoc");function lN(t,e,r,n){return{_id:t,userId:r,email:e,tenantId:n}}s(lN,"newUserSsoIdDoc");async function Wp(t,e){let r=xr(),n;try{await r.get(t)}catch(i){if(i.status===404)n=e(),await r.put(n);else throw i}}s(Wp,"addUserDoc");async function xA(t,e,r,n){return Wp(t,()=>lN(t,e,r,n))}s(xA,"addSsoUser");async function dN(t,e,r,n){let i=[Wp(e,()=>uN(e,t)),Wp(r,()=>cN(e,r,t))];n&&i.push(xA(n,r,e,t)),await Promise.all(i)}s(dN,"addUser");async function fN(t){let e=xr(),r=[t._id,t.email],n=await e.allDocs({keys:r,include_docs:!0});await e.bulkRemove(n.rows.map(i=>i.doc),{silenceErrors:!0})}s(fN,"removeUser");var Sn={};L(Sn,{getAccount:()=>vr,getAccountByTenantId:()=>hi,getStatus:()=>pN});var vA=W(require("node-fetch"));var Tn=class{static{s(this,"API")}constructor(e){this.host=e}async apiCall(e,r,n){n.headers||(n.headers={}),n.headers["Content-Type"]||(n.headers={"Content-Type":"application/json",Accept:"application/json",...n.headers});let i=n.headers["Content-Type"]==="application/json";Xs.setHeader(n.headers);let o={method:e,body:i?JSON.stringify(n.body):n.body,headers:n.headers,credentials:"include"};return await(0,vA.default)(`${this.host}${r}`,o)}async post(e,r){return this.apiCall("POST",e,r)}async get(e,r){return this.apiCall("GET",e,r)}async patch(e,r){return this.apiCall("PATCH",e,r)}async del(e,r){return this.apiCall("DELETE",e,r)}async put(e,r){return this.apiCall("PUT",e,r)}};var Gp=new Tn(g.INTERNAL_ACCOUNT_PORTAL_URL),$p=g.SELF_HOSTED||g.DISABLE_ACCOUNT_PORTAL,vr=s(async t=>{if($p)return;let e={email:t},r=await Gp.post("/api/accounts/search",{body:e,headers:{"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY}});if(r.status!==200)throw new Error(`Error getting account by email ${t}`);return(await r.json())[0]},"getAccount"),hi=s(async t=>{if($p)return;let e={tenantId:t},r=await Gp.post("/api/accounts/search",{body:e,headers:{"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY}});if(r.status!==200)throw new Error(`Error getting account by tenantId ${t}`);return(await r.json())[0]},"getAccountByTenantId"),pN=s(async()=>{if($p)return;let t=await Gp.get("/api/status",{headers:{"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY}}),e=await t.json();if(t.status!==200)throw new Error("Error getting status");return e},"getStatus");var Ai={};L(Ai,{UserDB:()=>Pt,addAppBuilder:()=>G0,bulkGetGlobalUsersById:()=>uc,bulkUpdateGlobalUsers:()=>Ro,cleanseUserObject:()=>dm,creatorsInList:()=>Nr,doesUserExist:()=>k0,getAccountHolderFromUsers:()=>ac,getAllUserIds:()=>L0,getAllUsers:()=>U0,getById:()=>On,getCreatorCount:()=>B0,getExistingAccounts:()=>Si,getExistingPlatformUsers:()=>p_,getExistingTenantUsers:()=>f_,getFirstPlatformUser:()=>Io,getGlobalUserByAppPage:()=>S_,getGlobalUserByEmail:()=>_t,getPlatformUsers:()=>nc,getUserCount:()=>F0,hasAdminPermissions:()=>Pr,hasAppBuilderPermissions:()=>g_,hasBuilderPermissions:()=>Fe,isAdmin:()=>vt,isAdminOrBuilder:()=>h_,isAdminOrWorkspaceBuilder:()=>ic,isBuilder:()=>Ii,isCreatorAsync:()=>wo,isCreatorSync:()=>sc,isGlobalBuilder:()=>m_,paginatedUsers:()=>__,removeAppBuilder:()=>$0,removePortalUserPermissions:()=>W0,searchExistingEmails:()=>om,searchGlobalUsersByApp:()=>T_,searchGlobalUsersByAppAccess:()=>lm,searchGlobalUsersByEmail:()=>A_,validateUniqueUser:()=>oc});var Yu={};L(Yu,{ActiveContentFileError:()=>Vu,BadRequestError:()=>mo,BudibaseError:()=>po,EmailUnavailableError:()=>Xt,FeatureDisabledError:()=>Qu,ForbiddenError:()=>qu,HTTPError:()=>Me,NotFoundError:()=>$u,NotImplementedError:()=>Ku,UnexpectedError:()=>Gu,UsageLimitError:()=>ju,getErrorMessage:()=>PA,getPublicError:()=>Hu});var po=class extends Error{static{s(this,"BudibaseError")}constructor(e,r){super(e),this.code=r}};function PA(t){if(t==null)return"No error provided.";if(t instanceof Error)return t.message;if(typeof t=="string")return t;if(typeof t=="object"&&"message"in t)return String(t.message);try{let r=JSON.stringify(t);if(r!=="{}")return r}catch{}let e=String(t);return e!=="[object Object]"?e:"An unknown error occurred"}s(PA,"getErrorMessage");var Hu=s(t=>{let e;return t.code&&(e={code:t.code},t.getPublicError&&(e={...e,...t.getPublicError()})),e},"getPublicError"),Me=class t extends po{static{s(this,"HTTPError")}constructor(e,r,n="http"){super(e,n),this.status=r}static async fromResponse(e){let r=await e.text(),n=r,i=e.status,o="http";try{let a=JSON.parse(r);n=a.error?.message||a.message,i=a.status??e.status,o=a.error?.code??e.statusText}catch{}return new t(n,i,o)}},Gu=class extends Me{static{s(this,"UnexpectedError")}constructor(e){super(e,500)}},$u=class extends Me{static{s(this,"NotFoundError")}constructor(e){super(e,404)}},mo=class extends Me{static{s(this,"BadRequestError")}constructor(e){super(e,400)}},Vu=class extends mo{static{s(this,"ActiveContentFileError")}constructor(e){super(`File "${e}" contains active content which is not permitted`)}},qu=class extends Me{static{s(this,"ForbiddenError")}constructor(e){super(e,403)}},Ku=class extends Me{static{s(this,"NotImplementedError")}constructor(e){super(e,501)}},Qu=class extends Error{static{s(this,"FeatureDisabledError")}constructor(e){super(`Feature disabled: '${e}'`)}},ju=class extends Error{static{s(this,"UsageLimitError")}constructor(e){super(`Usage limit exceeded: '${e}'`)}},Xt=class extends Error{static{s(this,"EmailUnavailableError")}constructor(e){super(`Email already in use: '${e}'`)}};var Qp={};L(Qp,{PASSWORD_MAX_LENGTH:()=>qp,PASSWORD_MIN_LENGTH:()=>Vp,validatePassword:()=>Kp});var Vp=+(g.PASSWORD_MIN_LENGTH||12),qp=+(g.PASSWORD_MAX_LENGTH||512);function Kp(t){return!t||t.length<Vp?{valid:!1,error:`Password invalid. Minimum ${Vp} characters.`}:t.length>qp?{valid:!1,error:`Password invalid. Maximum ${qp} characters.`}:{valid:!0}}s(Kp,"validatePassword");var zu={};L(zu,{createASession:()=>mN,endSession:()=>hN,getSession:()=>Hp,getSessionsForUser:()=>ho,invalidateSessions:()=>An,updateSessionTTL:()=>jp});var LA=require("uuid");var UA=yu();function gi(t,e){return`${t}/${e}`}s(gi,"makeSessionID");async function ho(t){return t?(await(await Sr()).scan(t)).map(n=>n.value):(console.trace("Cannot get sessions for undefined userId"),[])}s(ho,"getSessionsForUser");async function An(t,e={}){try{let r=e?.reason||"unknown",n=e.sessionIds||[],i;if(n.length===0?i=(await ho(t)).map(a=>({key:gi(a.userId,a.sessionId)})):(n=Array.isArray(n)?n:[n],i=n.map(o=>({key:gi(t,o)}))),i&&i.length>0){let o=await Sr(),a=[];for(let u of i)a.push(o.delete(u.key));g.isTest()||di(`Invalidating sessions for ${t} (reason: ${r}) - ${i.map(u=>u.key).join(", ")}`),await Promise.all(a)}}catch(r){console.error(`Error invalidating sessions: ${r}`)}}s(An,"invalidateSessions");async function mN(t,e){let r=await ho(t),n=0;if(r.length>=3){let l=r.sort((m,h)=>new Date(m.createdAt).getTime()-new Date(h.createdAt).getTime()),d=r.length-3+1,f=l.slice(0,d).map(m=>m.sessionId);n=f.length,await An(t,{sessionIds:f,reason:"session limit exceeded"})}let i=await Sr(),o=e.sessionId,a=e.csrfToken?e.csrfToken:(0,LA.v4)(),u=gi(t,o),c={...e,csrfToken:a,createdAt:new Date().toISOString(),lastAccessedAt:new Date().toISOString(),userId:t};return await i.store(u,c,UA),{session:c,invalidatedSessionCount:n}}s(mN,"createASession");async function jp(t){let e=await Sr(),r=gi(t.userId,t.sessionId);t.lastAccessedAt=new Date().toISOString(),await e.store(r,t,UA)}s(jp,"updateSessionTTL");async function hN(t,e){await(await Sr()).delete(gi(t,e))}s(hN,"endSession");async function Hp(t,e){if(!t||!e)throw new Error(`Invalid session details - ${t} - ${e}`);let n=await(await Sr()).get(gi(t,e));if(!n)throw new Error(`Session not found - ${t} - ${e}`);return n}s(Hp,"getSession");var Ti={};L(Ti,{account:()=>GA,action:()=>$A,ai:()=>VA,analytics:()=>Yp,app:()=>qA,asyncEventQueue:()=>St,auditLog:()=>KA,auth:()=>rc,automation:()=>QA,backfill:()=>jA,backfillCache:()=>Zu,backup:()=>HA,datasource:()=>YA,email:()=>zA,environmentVariable:()=>JA,group:()=>XA,identification:()=>At,initAsyncEvents:()=>A0,installation:()=>yo,layout:()=>ZA,license:()=>e_,org:()=>t_,plugin:()=>r_,processors:()=>tm,publishEvent:()=>S,query:()=>n_,resource:()=>i_,role:()=>Oo,rowAction:()=>s_,rows:()=>o_,screen:()=>a_,serve:()=>u_,shutdown:()=>_0,table:()=>c_,user:()=>Be,view:()=>l_,workspace:()=>d_});var Yp={};L(Yp,{enabled:()=>gN});var gN=s(async()=>Ju(),"enabled");var St;function Xu(){St=new Et("systemEventQueue",{jobTags:s(t=>({"event.name":t.event}),"jobTags")})}s(Xu,"init");async function kA(){St&&await St.close()}s(kA,"shutdown");async function MA(t){St||Xu();let{event:e,identity:r}=t;lh.indexOf(e)!==-1&&r.tenantId&&await St.add(t)}s(MA,"publishAsyncEvent");var Zu={};L(Zu,{end:()=>yN,isAlreadySent:()=>Xp,isBackfillingEvent:()=>Jp,recordEvent:()=>zp,start:()=>EN});var EN=s(async t=>SN({eventWhitelist:t}),"start"),zp=s(async(t,e)=>{let r=Zp(t,e);await gn(r,e,void 0,{useTenancy:!1})},"recordEvent"),yN=s(async()=>{await AN(),await _N()},"end"),TN=s(async()=>oo(Oe.BACKFILL_METADATA),"getBackfillMetadata"),SN=s(async t=>gn(Oe.BACKFILL_METADATA,t),"saveBackfillMetadata"),AN=s(async()=>{await ao(Oe.BACKFILL_METADATA)},"deleteBackfillMetadata"),_N=s(async()=>{let t=Zp(),e=await Fu(t);for(let r of e)await ao(r,{useTenancy:!1})},"clearEvents"),Jp=s(async t=>{let r=(await TN())?.eventWhitelist;return!!(r&&r.includes(t))},"isBackfillingEvent"),Xp=s(async(t,e)=>{let r=Zp(t,e);return!!await oo(r,{useTenancy:!1})},"isAlreadySent"),ON={"automation:created":t=>t.automationId,"automation:step:created":t=>t.stepId,"datasource:created":t=>t.datasourceId,"layout:created":t=>t.layoutId,"query:created":t=>t.queryId,"role:created":t=>t.roleId,"screen:created":t=>t.screenId,"table:created":t=>t.tableId,"view:created":t=>t.tableId,"view:calculation:created":t=>t.tableId,"view:filter:created":t=>t.tableId,"app:created":t=>t.appId,"app:published":t=>t.appId,"auth:sso:created":t=>t.type,"auth:sso:activated":t=>t.type,"user:created":t=>t.userId,"user:admin:assigned":t=>t.userId,"user:builder:assigned":t=>t.userId,"role:assigned":t=>`${t.roleId}-${t.userId}`},Zp=s((t,e)=>{let r,n=$();if(t){r=`${Oe.EVENTS}:${n}:${t}`;let i=ON[t],o=i?i(e):void 0;o&&(r=`${r}:${o}`)}else r=`${Oe.EVENTS}:${n}:*`;return r},"getEventKey");var tm={};L(tm,{init:()=>CN,processors:()=>er});var em=g.SELF_HOSTED&&!g.isDev(),go=class{static{s(this,"LoggingProcessor")}async processEvent(e,r,n){em||console.log(`[audit] [identityType=${r.type}] ${e}`,n)}async identify(e){em||console.log("[audit] identified",e)}async identifyGroup(e){em||console.log("[audit] group identified",e)}async shutdown(){}};var Ei=class t{static{s(this,"AuditLogsProcessor")}static{this.auditLogsEnabled=!1}static init(e){t.auditLogsEnabled=!0;let r=e;return t.auditLogQueue=new Et("auditLogQueue",{jobTags:s(n=>({"event.name":n.event}),"jobTags")}),t.auditLogQueue.process(async n=>{await Ce(n.data.tenantId,async()=>{let i=n.data.properties;i.audited&&(i={...i,...i.audited},delete i.audited);let o={};g.ENABLE_AUDIT_LOG_IP_ADDR&&(o=n.data.opts.hostInfo),await r(n.data.event,i,{userId:n.data.opts.userId,timestamp:n.data.opts.timestamp,appId:n.data.opts.appId,hostInfo:o})})})}async processEvent(e,r,n,i){if(t.auditLogsEnabled&&np(e)){let o=r.type==="user"?r.id:void 0;await t.auditLogQueue.add({event:e,properties:n,opts:{userId:o,timestamp:i,appId:He(),hostInfo:r.hostInfo},tenantId:$()})}}async identify(){}async identifyGroup(){}async shutdown(){await t.auditLogQueue?.close()}};var FA=require("uuid");var IN=new Tn(g.INTERNAL_ACCOUNT_PORTAL_URL),yi=class t{static{s(this,"EventBrokerProcessor")}static init(e){t.getLicenseKeyFn=e}async processEvent(e,r,n,i){if(g.DISABLE_ACCOUNT_PORTAL)return;let o;if(g.SELF_HOSTED){if(!t.getLicenseKeyFn)return;let c=await t.getLicenseKeyFn();if(!c)return;o={"x-budibase-license-key":c}}else o={"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY},r.tenantId&&(o["x-budibase-tenant-id"]=r.tenantId);let a=He(),u={id:(0,FA.v4)(),type:e,identity:r,properties:{...n,version:g.VERSION,service:g.SERVICE,environment:r.environment,hosting:r.hosting,...a&&{appId:a},...r.installationId&&{installationId:r.installationId},...r.tenantId&&{tenantId:r.tenantId}},timestamp:i===void 0?Date.now():new Date(i).getTime()};try{let c=await IN.post("/api/v2/analytics/event",{headers:o,body:u});c.ok||console.warn(`[EventBrokerProcessor] unexpected response status: ${c.status}`)}catch(c){console.error(`[EventBrokerProcessor] failed to send event: ${c}`)}}};var Eo=class{constructor(e){this.initialised=!1;this.processors=[];this.processors=e}static{s(this,"Processor")}async processEvent(e,r,n,i){for(let o of this.processors)await o.processEvent(e,r,n,i)}async identify(e,r){for(let n of this.processors)n.identify&&await n.identify(e,r)}async identifyGroup(e,r){for(let n of this.processors)n.identifyGroup&&await n.identifyGroup(e,r)}async shutdown(){for(let e of this.processors)e.shutdown&&await e.shutdown()}};var wN=new go,RN=new Ei,DN=new yi;function CN(t,e){return yi.init(e),Ei.init(t)}s(CN,"init");var er=new Eo([wN,RN,DN]);var ec={};L(ec,{checkInstallVersion:()=>vN,getInstall:()=>To,getInstallFromDB:()=>nm});var rm=W(require("semver"));var To=s(async()=>br(Oe.INSTALLATION,86400,nm,{useTenancy:!1}),"getInstall");async function bN(t){let e={_id:pe.PLATFORM_INFO.docs.install,installId:Z(),version:g.VERSION};try{let r=await t.put(e);return e._rev=r.rev,e}catch(r){if(r.status===409)return nm();throw r}}s(bN,"createInstallDoc");var nm=s(async()=>Qe(pe.PLATFORM_INFO.name,async t=>{let e;try{e=await t.get(pe.PLATFORM_INFO.docs.install)}catch(r){if(r.status===404)e=await bN(t);else throw r}return e}),"getInstallFromDB"),xN=s(async t=>{try{await Qe(pe.PLATFORM_INFO.name,async e=>{let r=await To();r.version=t,await e.put(r),await pi(Oe.INSTALLATION)})}catch(e){if(e.status===409)return!1;throw e}return!0},"updateVersion"),vN=s(async()=>{let t=await To(),e=t.version,r=g.VERSION;try{if(e!==r){let n=rm.default.gt(r,e),i=rm.default.lt(r,e);await xN(r)&&(await vs({_id:t.installId,type:"installation"},async()=>{n?await yo.upgraded(e,r):i&&await yo.downgraded(e,r)}),await At.identifyInstallationGroup(t.installId))}}catch(n){n?.message?.includes("Invalid Version")?mn(`Invalid version "${r}" - is it semver?`):mn("Failed to retrieve version",n)}},"checkInstallVersion");var PN=s(async()=>{let t=ff(),e=_o(),r;if(t?r=t.type:r="tenant",r==="installation"){let n=await _n(),i=So();return{id:BA(n,r),hosting:i,type:r,installationId:n,environment:e}}else if(r==="tenant"){let n=await _n(),i=await tc($()),o=So();return{id:BA(i,r),type:r,hosting:o,installationId:n,tenantId:i,realTenantId:$(),environment:e}}else if(r==="user"){let n=t,i=await tc($()),o=await _n(),a=n.account,u;return a?u=a.hosting:u=So(),{id:n._id,type:r,hosting:u,installationId:o,tenantId:i,environment:e,realTenantId:$(),hostInfo:n.hostInfo}}else throw new Error("Unknown identity type")},"getCurrentIdentity"),NN=s(async(t,e)=>{let r=t,n="installation",i=So(),o=g.VERSION,a=_o(),u={id:r,type:n,hosting:i,version:o,environment:a};await im(u,e),await Ao({...u,id:`$${n}_${r}`},e)},"identifyInstallationGroup"),LN=s(async(t,e,r,n=g.VERSION)=>{let i=await tc(t),o="tenant",a=await _n(),u=_o(),c={id:i,type:o,hosting:e,environment:u,installationId:a,createdAt:r,createdVersion:n};await im(c,r),await Ao({...c,id:`$${o}_${i}`},r)},"identifyTenantGroup"),UN=s(async(t,e,r)=>{let n=t._id,i=await tc(t.tenantId),o="user",a=Fe(t),u=Pr(t),c;jo(t)&&(c=t.providerType);let d=(await Si([t.email])).length>0,f=!!e&&d&&e.verified,m=await _n(),h=e?e.hosting:So(),T=_o();await Ao({id:n,type:o,hosting:h,installationId:m,tenantId:i,verified:f,accountHolder:d,providerType:c,builder:a,admin:u,environment:T},r)},"identifyUser"),kN=s(async t=>{let e=t.accountId,r=t.tenantId,n="user",i=Qo(t)?t.providerType:void 0,o=t.verified,a=!0,u=t.hosting,c=await _n(),l=_o();if(Ko(t)){let f=await _t(t.email);f?._id&&(e=f._id)}await Ao({id:e,type:n,hosting:u,installationId:c,tenantId:r,providerType:i,verified:o,accountHolder:a,environment:l})},"identifyAccount"),Ao=s(async(t,e)=>{await er.identify(t,e)},"identify"),im=s(async(t,e)=>{await er.identifyGroup(t,e)},"identifyGroup"),_o=s(()=>g.isDev()?"development":g.DEPLOYMENT_ENVIRONMENT,"getDeploymentEnvironment"),So=s(()=>g.SELF_HOSTED?"self":"cloud","getHostingFromEnv"),_n=s(async()=>MN()?"account-portal":(await To()).installId,"getInstallationId"),tc=s(async t=>g.SELF_HOSTED?WA(t):t,"getEventTenantId"),WA=s(async t=>Ce(t,()=>br(Oe.UNIQUE_TENANT_ID,86400,async()=>{let e=Y(),r=await _i(),n;return r.config.uniqueTenantId?r.config.uniqueTenantId:(n=`${Z()}_${t}`,r.config.uniqueTenantId=n,r.config.createdVersion=g.VERSION,await e.put(r),n)})),"getUniqueTenantId"),MN=s(()=>g.SERVICE==="account-portal","isAccountPortal"),BA=s((t,e)=>e==="installation"||e==="tenant"?`$${e}_${t}`:t,"formatDistinctId"),At={getCurrentIdentity:PN,identifyInstallationGroup:NN,identifyTenantGroup:LN,identifyUser:UN,identifyAccount:kN,identify:Ao,identifyGroup:im,getInstallationId:_n,getUniqueTenantId:WA};var S=s(async(t,e,r,n)=>{let i=n||await At.getCurrentIdentity();if(!(n?!1:await Jp(t))){await MA({event:t,identity:i,properties:e,timestamp:r}),await er.processEvent(t,i,e,r);return}await Xp(t,e)||(await er.processEvent(t,i,e,r),await zp(t,e))},"publishEvent");async function FN(t,e){let r={tenantId:t.tenantId};await S("account:created",r,void 0,e)}s(FN,"created");async function BN(t){let e={tenantId:t.tenantId};await S("account:deleted",e)}s(BN,"deleted");async function WN(t){let e={tenantId:t.tenantId};await S("account:verified",e)}s(WN,"verified");var GA={created:FN,deleted:BN,verified:WN};function GN(t,e){S("action:automation_step:executed",t,e).catch(r=>{console.error("automationStepExecuted telemetry failed",{action:t,err:r})})}s(GN,"automationStepExecuted");function $N(t){S("action:automation_step:failed",t).catch(e=>{console.error("automationStepFailed telemetry failed",{action:t,err:e})})}s($N,"automationStepFailed");function VN(t,e){S("action:crud:executed",t,e).catch(r=>{console.error("crudExecuted telemetry failed",{action:t,err:r})})}s(VN,"crudExecuted");function qN(t){S("action:crud:failed",t).catch(e=>{console.error("crudFailed telemetry failed",{action:t,err:e})})}s(qN,"crudFailed");function KN(t,e){S("action:ai_agent:executed",t,e).catch(r=>{console.error("aiAgentExecuted telemetry failed",{action:t,err:r})})}s(KN,"aiAgentExecuted");function QN(t){S("action:ai_agent:failed",t).catch(e=>{console.error("aiAgentFailed telemetry failed",{action:t,err:e})})}s(QN,"aiAgentFailed");var $A={aiAgentExecuted:KN,aiAgentFailed:QN,automationStepExecuted:GN,automationStepFailed:$N,crudExecuted:VN,crudFailed:qN};function jN(t,e){let r={configId:t._id,audited:{name:t.name}};S("ai:config:created",r,e).catch(n=>{console.error("configCreated telemetry failed",{configId:t._id,err:n})})}s(jN,"configCreated");function HN(t){let e={configId:t._id,audited:{name:t.name}};S("ai:config:updated",e).catch(r=>{console.error("configUpdated telemetry failed",{configId:t._id,err:r})})}s(HN,"configUpdated");function YN(t){let e={configId:t._id,audited:{name:t.name}};S("ai:config:deleted",e).catch(r=>{console.error("configDeleted telemetry failed",{configId:t._id,err:r})})}s(YN,"configDeleted");function zN(t){let e={agentId:t._id,audited:{name:t.name}};S("ai:agent:created",e).catch(r=>{console.error("agentCreated telemetry failed",{agentId:t._id,err:r})})}s(zN,"agentCreated");function JN(t){let e={agentId:t._id,audited:{name:t.name}};S("ai:agent:updated",e).catch(r=>{console.error("agentUpdated telemetry failed",{agentId:t._id,err:r})})}s(JN,"agentUpdated");function XN(t){let e={agentId:t._id,audited:{name:t.name}};S("ai:agent:deleted",e).catch(r=>{console.error("agentDeleted telemetry failed",{agentId:t._id,err:r})})}s(XN,"agentDeleted");function ZN(t){S("rag:file:uploaded",t).catch(e=>{console.error("ragFileUploaded telemetry failed",{event:t,err:e})})}s(ZN,"ragFileUploaded");function eL(t){S("rag:file:deleted",t).catch(e=>{console.error("ragFileDeleted telemetry failed",{event:t,err:e})})}s(eL,"ragFileDeleted");function tL(t){S("rag:file:sharepoint:connected",t).catch(e=>{console.error("ragFileSharePointConnected telemetry failed",{event:t,err:e})})}s(tL,"ragFileSharePointConnected");function rL(t){S("rag:file:sharepoint:disconnected",t).catch(e=>{console.error("ragFileSharePointDisconnected telemetry failed",{event:t,err:e})})}s(rL,"ragFileSharePointDisconnected");function nL(t){S("rag:file:processed",t).catch(e=>{console.error("ragFileProcessed telemetry failed",{event:t,err:e})})}s(nL,"ragFileProcessed");function iL(t){S("rag:file:sharepoint:sync",t).catch(e=>{console.error("ragFileSharePointSync telemetry failed",{event:t,err:e})})}s(iL,"ragFileSharePointSync");var VA={configCreated:jN,configUpdated:HN,configDeleted:YN,agentCreated:zN,agentUpdated:JN,agentDeleted:XN,ragFileUploaded:ZN,ragFileDeleted:eL,ragFileSharePointConnected:tL,ragFileSharePointDisconnected:rL,ragFileSharePointSync:iL,ragFileProcessed:nL};var sL=s(async(t,e)=>{let r={appId:t.appId,version:t.version,audited:{name:t.name}};await S("app:created",r,e)},"created");async function oL(t){let e={appId:t.appId,version:t.version,audited:{name:t.name}};await S("app:updated",e)}s(oL,"updated");async function aL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:deleted",e)}s(aL,"deleted");async function uL(t,e){let r={appId:t.appId,audited:{name:t.name}};await S("app:published",r,e)}s(uL,"published");async function cL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:unpublished",e)}s(cL,"unpublished");async function lL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:file:imported",e)}s(lL,"fileImported");async function dL(t,e){let r={duplicateAppId:e,appId:t.appId,audited:{name:t.name}};await S("app:duplicated",r)}s(dL,"duplicated");async function fL(t,e){let r={appId:t.appId,templateKey:e,audited:{name:t.name}};await S("app:template:imported",r)}s(fL,"templateImported");async function pL(t,e,r){let n={appId:t.appId,currentVersion:e,updatedToVersion:r,audited:{name:t.name}};await S("app:version:updated",n)}s(pL,"versionUpdated");async function mL(t,e,r){let n={appId:t.appId,currentVersion:e,revertedToVersion:r,audited:{name:t.name}};await S("app:version:reverted",n)}s(mL,"versionReverted");async function hL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:reverted",e)}s(hL,"reverted");async function gL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:exported",e)}s(gL,"exported");var qA={created:sL,updated:oL,deleted:aL,published:uL,unpublished:cL,fileImported:lL,duplicated:dL,templateImported:fL,versionUpdated:pL,versionReverted:mL,reverted:hL,exported:gL};async function EL(t){let e={filters:t};await S("audit_log:filtered",e)}s(EL,"filtered");async function yL(t){let e={filters:t};await S("audit_log:downloaded",e)}s(yL,"downloaded");var KA={filtered:EL,downloaded:yL};async function TL(t,e){let n={userId:(await At.getCurrentIdentity()).id,source:t,audited:{email:e}};await S("auth:login",n)}s(TL,"login");async function SL(t){let r={userId:(await At.getCurrentIdentity()).id,audited:{email:t}};await S("auth:logout",r)}s(SL,"logout");async function AL(t,e){let r={type:t};await S("auth:sso:created",r,e)}s(AL,"SSOCreated");async function _L(t){let e={type:t};await S("auth:sso:updated",e)}s(_L,"SSOUpdated");async function OL(t,e){let r={type:t};await S("auth:sso:activated",r,e)}s(OL,"SSOActivated");async function IL(t){let e={type:t};await S("auth:sso:deactivated",e)}s(IL,"SSODeactivated");var rc={login:TL,logout:SL,SSOCreated:AL,SSOUpdated:_L,SSOActivated:OL,SSODeactivated:IL};async function wL(t,e){let r={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,audited:{name:t.name}};await S("automation:created",r,e)}s(wL,"created");async function RL(t){let e={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId};await S("automation:trigger:updated",e)}s(RL,"triggerUpdated");async function DL(t){let e={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,audited:{name:t.name}};await S("automation:deleted",e)}s(DL,"deleted");async function CL(t){let e={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId};await S("automation:tested",e)}s(CL,"tested");var bL=s(async(t,e)=>{let r={count:t};await S("automations:run",r,e)},"run");async function xL(t,e,r){let n={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,stepId:e.id,stepType:e.stepId,audited:{name:t.name}};await S("automation:step:created",n,r)}s(xL,"stepCreated");async function vL(t,e){let r={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,stepId:e.id,stepType:e.stepId,audited:{name:t.name}};await S("automation:step:deleted",r)}s(vL,"stepDeleted");var QA={created:wL,triggerUpdated:RL,deleted:DL,tested:CL,run:bL,stepCreated:xL,stepDeleted:vL};var Oi=!g.SELF_HOSTED&&!g.isDev();async function PL(t){Oi||await S("app:backfill:succeeded",t)}s(PL,"appSucceeded");async function NL(t){if(Oi)return;let e={error:JSON.stringify(t,Object.getOwnPropertyNames(t))};await S("app:backfill:failed",e)}s(NL,"appFailed");async function LL(t){Oi||await S("tenant:backfill:succeeded",t)}s(LL,"tenantSucceeded");async function UL(t){if(Oi)return;let e={error:JSON.stringify(t,Object.getOwnPropertyNames(t))};await S("tenant:backfill:failed",e)}s(UL,"tenantFailed");async function kL(){if(Oi)return;let t={};await S("installation:backfill:succeeded",t)}s(kL,"installationSucceeded");async function ML(t){if(Oi)return;let e={error:JSON.stringify(t,Object.getOwnPropertyNames(t))};await S("installation:backfill:failed",e)}s(ML,"installationFailed");var jA={appSucceeded:PL,appFailed:NL,tenantSucceeded:LL,tenantFailed:UL,installationSucceeded:kL,installationFailed:ML};async function FL(t){let e={appId:t.appId,restoreId:t._id,backupCreatedAt:t.timestamp,name:t.name};await S("app:backup:restored",e)}s(FL,"workspaceBackupRestored");async function BL(t,e,r,n,i){let o={appId:t,backupId:e,type:r,trigger:n,name:i};await S("app:backup:triggered",o)}s(BL,"workspaceBackupTriggered");var HA={workspaceBackupRestored:FL,workspaceBackupTriggered:BL};function sm(t){return!Object.values(Go).includes(t.source)}s(sm,"isCustom");async function WL(t,e){let r={datasourceId:t._id,source:t.source,custom:sm(t)};await S("datasource:created",r,e)}s(WL,"created");async function GL(t){let e={datasourceId:t._id,source:t.source,custom:sm(t)};await S("datasource:updated",e)}s(GL,"updated");async function $L(t){let e={datasourceId:t._id,source:t.source,custom:sm(t)};await S("datasource:deleted",e)}s($L,"deleted");var YA={created:WL,updated:GL,deleted:$L};async function VL(t){let e={};await S("email:smtp:created",e,t)}s(VL,"SMTPCreated");async function qL(){let t={};await S("email:smtp:updated",t)}s(qL,"SMTPUpdated");var zA={SMTPCreated:VL,SMTPUpdated:qL};async function KL(t,e){let r={name:t,environments:e};await S("environment_variable:created",r)}s(KL,"created");async function QL(t){let e={name:t};await S("environment_variable:deleted",e)}s(QL,"deleted");async function jL(t){let e={userId:t};await S("environment_variable:upgrade_panel_opened",e)}s(jL,"upgradePanelOpened");var JA={created:KL,deleted:QL,upgradePanelOpened:jL};async function HL(t,e){let r={groupId:t._id,viaScim:gt(),audited:{name:t.name}};await S("user_group:created",r,e)}s(HL,"created");async function YL(t){let e={groupId:t._id,viaScim:gt(),audited:{name:t.name}};await S("user_group:updated",e)}s(YL,"updated");async function zL(t){let e={groupId:t._id,viaScim:gt(),audited:{name:t.name}};await S("user_group:deleted",e)}s(zL,"deleted");async function JL(t,e,r){let n={count:t,groupId:e._id,userIds:r,viaScim:gt(),audited:{name:e.name}};await S("user_group:user_added",n)}s(JL,"usersAdded");async function XL(t,e,r){let n={count:t,groupId:e._id,userIds:r,viaScim:gt(),audited:{name:e.name}};await S("user_group:users_deleted",n)}s(XL,"usersDeleted");async function ZL(t){let e={groupId:t,onboarding:!0};await S("user_group:onboarding_added",e)}s(ZL,"createdOnboarding");async function eU(t){let e={permissions:t.roles,groupId:t._id,audited:{name:t.name}};await S("user_group:permissions_edited",e)}s(eU,"permissionsEdited");var XA={created:HL,updated:YL,deleted:zL,usersAdded:JL,usersDeleted:XL,createdOnboarding:ZL,permissionsEdited:eU};async function tU(t){let e={currentVersion:t};await S("installation:version:checked",e)}s(tU,"versionChecked");async function rU(t,e){let r={from:t,to:e};await S("installation:version:upgraded",r)}s(rU,"upgraded");async function nU(t,e){let r={from:t,to:e};await S("installation:version:downgraded",r)}s(nU,"downgraded");async function iU(){let t={};await S("installation:firstStartup",t)}s(iU,"firstStartup");var yo={versionChecked:tU,upgraded:rU,downgraded:nU,firstStartup:iU};async function sU(t,e){let r={layoutId:t._id};await S("layout:created",r,e)}s(sU,"created");async function oU(t){let e={layoutId:t};await S("layout:deleted",e)}s(oU,"deleted");var ZA={created:sU,deleted:oU};async function aU(t,e){let r={accountId:t.accountId,...e};await S("license:plan:changed",r)}s(aU,"planChanged");async function uU(t){let e={accountId:t.accountId};await S("license:activated",e)}s(uU,"activated");async function cU(t){let e={accountId:t.accountId};await S("license:checkout:opened",e)}s(cU,"checkoutOpened");async function lU(t){let e={accountId:t.accountId};await S("license:checkout:success",e)}s(lU,"checkoutSuccess");async function dU(t){let e={accountId:t.accountId};await S("license:portal:opened",e)}s(dU,"portalOpened");async function fU(t){let e={accountId:t.accountId};await S("license:payment:failed",e)}s(fU,"paymentFailed");async function pU(t){let e={accountId:t.accountId};await S("license:payment:recovered",e)}s(pU,"paymentRecovered");var e_={planChanged:aU,activated:uU,checkoutOpened:cU,checkoutSuccess:lU,portalOpened:dU,paymentFailed:fU,paymentRecovered:pU};async function mU(t){let e={};await S("org:info:name:updated",e,t)}s(mU,"nameUpdated");async function hU(t){let e={};await S("org:info:logo:updated",e,t)}s(hU,"logoUpdated");async function gU(t){let e={};await S("org:platformurl:updated",e,t)}s(gU,"platformURLUpdated");async function EU(){let t={};await S("analytics:opt:out",t)}s(EU,"analyticsOptOut");async function yU(){let t={};await S("analytics:opt:out",t)}s(yU,"analyticsOptIn");var t_={nameUpdated:mU,logoUpdated:hU,platformURLUpdated:gU,analyticsOptOut:EU,analyticsOptIn:yU};async function TU(t){let e={type:t.schema.type,name:t.name,description:t.description,version:t.version};await S("plugin:init",e)}s(TU,"init");async function SU(t){let e={pluginId:t._id,type:t.schema.type,source:t.source,name:t.name,description:t.description,version:t.version};await S("plugin:imported",e)}s(SU,"imported");async function AU(t){let e={pluginId:t._id,type:t.schema.type,name:t.name,description:t.description,version:t.version};await S("plugin:deleted",e)}s(AU,"deleted");var r_={init:TU,imported:SU,deleted:AU};var _U=s(async(t,e,r)=>{let n={queryId:e._id,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb};await S("query:created",n,r)},"created"),OU=s(async(t,e)=>{let r={queryId:e._id,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb};await S("query:updated",r)},"updated"),IU=s(async(t,e,r)=>{let n={queryId:e._id,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb,appId:r};await S("query:deleted",n)},"deleted"),wU=s(async(t,e,r)=>{let n={datasourceId:t._id,source:t.source,count:r,importSource:e};await S("query:import",n)},"imported"),RU=s(async(t,e)=>{let r={count:t};await S("queries:run",r,e)},"run"),DU=s(async(t,e)=>{let r={queryId:e.queryId,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb};await S("query:previewed",r)},"previewed"),n_={created:_U,updated:OU,deleted:IU,imported:wU,run:RU,previewed:DU};async function CU({resource:t,fromWorkspace:e,toWorkspace:r},n){let i={resource:t,fromWorkspace:e,toWorkspace:r};await S("resource:copied_to_workspace",i,n)}s(CU,"duplicatedToWorkspace");var i_={duplicatedToWorkspace:CU};async function bU(t,e){let r={roleId:t._id,permissionId:t.permissionId,inherits:t.inherits};await S("role:created",r,e)}s(bU,"created");async function xU(t){let e={roleId:t._id,permissionId:t.permissionId,inherits:t.inherits};await S("role:updated",e)}s(xU,"updated");async function vU(t){let e={roleId:t._id,permissionId:t.permissionId,inherits:t.inherits};await S("role:deleted",e)}s(vU,"deleted");async function PU(t,e,r){let n={userId:t._id,roleId:e};await S("role:assigned",n,r)}s(PU,"assigned");async function NU(t,e){let r={userId:t._id,roleId:e};await S("role:unassigned",r)}s(NU,"unassigned");var Oo={created:bU,updated:xU,deleted:vU,assigned:PU,unassigned:NU};async function LU(t,e){await S("row_action:created",t,e)}s(LU,"created");var s_={created:LU};var UU=s(async(t,e)=>{let r={count:t};await S("rows:created",r,e)},"created"),kU=s(async(t,e)=>{let r={tableId:t._id,count:e};await S("rows:imported",r)},"imported"),o_={created:UU,imported:kU};async function MU(t,e){let r={layoutId:t.layoutId,screenId:t._id,roleId:t.routing.roleId,audited:{name:t.routing?.route}};await S("screen:created",r,e)}s(MU,"created");async function FU(t){let e={layoutId:t.layoutId,screenId:t._id,roleId:t.routing.roleId,audited:{name:t.routing?.route}};await S("screen:deleted",e)}s(FU,"deleted");var a_={created:MU,deleted:FU};async function BU(t){let e={timezone:t};await S("served:builder",e)}s(BU,"servedBuilder");async function WU(t,e,r){let n={appVersion:t.version,timezone:e,embed:r===!0};await S("served:app",n)}s(WU,"servedApp");async function GU(t,e){let r={appId:t.appId,appVersion:t.version,timezone:e};await S("served:app:preview",r)}s(GU,"servedAppPreview");var u_={servedBuilder:BU,servedApp:WU,servedAppPreview:GU};async function $U(t,e){let r={tableId:t._id,audited:{name:t.name}};await S("table:created",r,e)}s($U,"created");async function VU(t,e){let r,n;for(let o in e.schema)if(!t.schema[o]){let a=e.schema[o];"default"in a&&a.default!=null&&(r=!0),a.type==="ai"&&(n=a.operation)}let i={tableId:e._id,defaultValues:r,aiColumn:n,audited:{name:e.name}};(r||n)&&await S("table:updated",i)}s(VU,"updated");async function qU(t,e){let r={tableId:t._id,audited:{name:t.name},appId:e};await S("table:deleted",r)}s(qU,"deleted");async function KU(t,e){let r={tableId:t._id,format:e,audited:{name:t.name}};await S("table:exported",r)}s(KU,"exported");async function QU(t){let e={tableId:t._id,audited:{name:t.name}};await S("table:imported",e)}s(QU,"imported");var c_={created:$U,updated:VU,deleted:qU,exported:KU,imported:QU};async function jU(t,e){let r={userId:t._id,viaScim:gt(),audited:{email:t.email}};await S("user:created",r,e)}s(jU,"created");async function HU(t){let e={userId:t._id,viaScim:gt(),audited:{email:t.email}};await S("user:updated",e)}s(HU,"updated");async function YU(t){let e={userId:t._id,viaScim:gt(),audited:{email:t.email}};await S("user:deleted",e)}s(YU,"deleted");async function zU(t,e){let r={userId:t._id,audited:{email:t.email}};await S("user:admin:assigned",r,e)}s(zU,"permissionAdminAssigned");async function JU(t){let e={userId:t._id,audited:{email:t.email}};await S("user:admin:removed",e)}s(JU,"permissionAdminRemoved");async function XU(t,e){let r={userId:t._id,audited:{email:t.email}};await S("user:builder:assigned",r,e)}s(XU,"permissionBuilderAssigned");async function ZU(t){let e={userId:t._id,audited:{email:t.email}};await S("user:builder:removed",e)}s(ZU,"permissionBuilderRemoved");async function e0(t){let e={audited:{email:t}};await S("user:invited",e)}s(e0,"invited");async function t0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:invite:accepted",e)}s(t0,"inviteAccepted");async function r0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:force:reset",e)}s(r0,"passwordForceReset");async function n0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:updated",e)}s(n0,"passwordUpdated");async function i0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:reset:requested",e)}s(i0,"passwordResetRequested");async function s0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:reset",e)}s(s0,"passwordReset");async function o0(t){let e={users:t};await S("user:data:collaboration",e)}s(o0,"dataCollaboration");var Be={created:jU,updated:HU,deleted:YU,permissionAdminAssigned:zU,permissionAdminRemoved:JU,permissionBuilderAssigned:XU,permissionBuilderRemoved:ZU,invited:e0,inviteAccepted:t0,passwordForceReset:r0,passwordUpdated:n0,passwordResetRequested:i0,passwordReset:s0,dataCollaboration:o0};async function a0(t,e){let r={name:t.name,type:t.type,tableId:t.tableId};await S("view:created",r,e)}s(a0,"created");async function u0(t){let e={tableId:t.tableId};await S("view:updated",e)}s(u0,"updated");async function c0(t,e){let r={...Ue.views.isV2(t)?{id:t.id,tableId:t.tableId,appId:e}:{}};await S("view:deleted",r)}s(c0,"deleted");async function l0(t,e){let r={tableId:t._id,format:e};await S("view:exported",r)}s(l0,"exported");async function d0({tableId:t,filterGroups:e},r){let n={tableId:t,filterGroups:e};await S("view:filter:created",n,r)}s(d0,"filterCreated");async function f0({tableId:t,filterGroups:e}){let r={tableId:t,filterGroups:e};await S("view:filter:updated",r)}s(f0,"filterUpdated");async function p0(t){let e={tableId:t.tableId};await S("view:filter:deleted",e)}s(p0,"filterDeleted");async function m0({tableId:t,calculationType:e},r){let n={tableId:t,calculation:e};await S("view:calculation:created",n,r)}s(m0,"calculationCreated");async function h0(t){let e={tableId:t.tableId,calculation:t.calculation};await S("view:calculation:updated",e)}s(h0,"calculationUpdated");async function g0(t){let e={tableId:t.tableId,calculation:t.calculation};await S("view:calculation:deleted",e)}s(g0,"calculationDeleted");async function E0(t,e){let r={tableId:t};await S("view:join:created",r,e)}s(E0,"viewJoinCreated");var l_={created:a0,updated:u0,deleted:c0,exported:l0,filterCreated:d0,filterUpdated:f0,filterDeleted:p0,calculationCreated:m0,calculationUpdated:h0,calculationDeleted:g0,viewJoinCreated:E0};async function y0(t,e){let r={workspaceAppId:t._id,audited:{name:t.name},appId:e};S("workspace_app:created",r).catch(n=>{console.error("appCreated telemetry failed",{workspaceAppId:t._id,err:n})})}s(y0,"appCreated");async function T0(t,e){let r={workspaceAppId:t._id,audited:{name:t.name},appId:e};S("workspace_app:updated",r).catch(n=>{console.error("appUpdated telemetry failed",{workspaceAppId:t._id,err:n})})}s(T0,"appUpdated");async function S0(t,e){let r={workspaceAppId:t._id,audited:{name:t.name},appId:e};S("workspace_app:deleted",r).catch(n=>{console.error("appDeleted telemetry failed",{workspaceAppId:t._id,err:n})})}s(S0,"appDeleted");var d_={appCreated:y0,appUpdated:T0,appDeleted:S0};function A0(){}s(A0,"initAsyncEvents");var _0=s(async()=>{await er.shutdown(),console.log("Events shutdown")},"shutdown");var am={};L(am,{creatorsInList:()=>Nr,getAccountHolderFromUsers:()=>ac,hasAdminPermissions:()=>Pr,hasAppBuilderPermissions:()=>g_,hasBuilderPermissions:()=>Fe,isAdmin:()=>vt,isAdminOrBuilder:()=>h_,isAdminOrWorkspaceBuilder:()=>ic,isBuilder:()=>Ii,isCreatorAsync:()=>wo,isCreatorSync:()=>sc,isGlobalBuilder:()=>m_,validateUniqueUser:()=>oc});async function om(t){let e=[],r=await f_(t);e.push(...r.map(a=>a.email));let n=await p_(t);e.push(...n.map(a=>a._id));let i=await Si(t);e.push(...i.map(a=>a.email));let o=await Mp(t);return e.push(...o.map(a=>a.email)),[...new Set(e.map(a=>a.toLowerCase()))]}s(om,"searchExistingEmails");async function nc(t){return await Vs("platform_users_lowercase_2",{keys:[t.toLowerCase()],include_docs:!0})}s(nc,"getPlatformUsers");async function Io(t){return(await nc(t))[0]??null}s(Io,"getFirstPlatformUser");async function f_(t){let r={keys:t.map(i=>i.toLowerCase()),include_docs:!0},n={arrayResponse:!0};return await Qt("by_email2",r,void 0,n)}s(f_,"getExistingTenantUsers");async function p_(t){let r={keys:t.map(n=>n.toLowerCase()),include_docs:!0};return await Vs("platform_users_lowercase_2",r)}s(p_,"getExistingPlatformUsers");async function Si(t){let r={keys:t.map(n=>n.toLowerCase()),include_docs:!0};return await Vs("account_by_email",r)}s(Si,"getExistingAccounts");var Ii=ke.users.isBuilder,vt=ke.users.isAdmin,m_=ke.users.isGlobalBuilder,h_=ke.users.isAdminOrBuilder,Pr=ke.users.hasAdminPermissions,Fe=ke.users.hasBuilderPermissions,g_=ke.users.hasAppBuilderPermissions,ic=ke.users.isAdminOrWorkspaceBuilder;async function Nr(t,e){let r=[...new Set(t.filter(i=>i.userGroups).flatMap(i=>i.userGroups))];return e=await Y().getMultiple(r,{allowMissing:!0}),t.map(i=>sc(i,e))}s(Nr,"creatorsInList");async function wo(t){let e=[];return t.userGroups&&(e=await Y().getMultiple(t.userGroups)),sc(t,e)}s(wo,"isCreatorAsync");function sc(t,e){let r=ke.users.isCreator(t);return!r&&t?O0(t,e):r}s(sc,"isCreatorSync");function O0(t,e){let r=e?.filter(n=>t.userGroups?.indexOf(n._id)!==-1);return r&&r.length>0?r.some(n=>Object.values(n.roles||{}).includes("CREATOR")):!1}s(O0,"isCreatorByGroupMembership");async function oc(t,e){if(g.MULTI_TENANCY){let r=await Io(t);if(r!=null&&r.tenantId!==e)throw new Xt(t)}if(!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let r=await vr(t);if(r&&r.verified&&r.tenantId!==e)throw new Xt(t)}}s(oc,"validateUniqueUser");async function ac(t){if(!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let e=await Si(t.map(r=>r.email));return t.find(r=>e.map(n=>n.email).includes(r.email))}}s(ac,"getAccountHolderFromUsers");var um=s(async t=>{await Be.deleted(t),Fe(t)&&await Be.permissionBuilderRemoved(t),Pr(t)&&await Be.permissionAdminRemoved(t)},"handleDeleteEvents"),I0=s(async(t,e,r)=>{for(let[n,i]of Object.entries(e))(!r||r[n]!==i)&&await Oo.assigned(t,i)},"assignAppRoleEvents"),w0=s(async(t,e,r)=>{if(r)for(let[n,i]of Object.entries(r))(!e||e[n]!==i)&&await Oo.unassigned(t,i)},"unassignAppRoleEvents"),R0=s(async(t,e)=>{let r=t.roles,n=e?.roles;await I0(t,r,n),await w0(t,r,n)},"handleAppRoleEvents"),cm=s(async(t,e,r)=>{let n=r;!n&&!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL&&(n=await hi($())),await At.identifyUser(t,n),e?(await Be.updated(t),C0(t,e)&&await Be.permissionBuilderRemoved(t),x0(t,e)&&await Be.permissionAdminRemoved(t),!e.forceResetPassword&&t.forceResetPassword&&t.password&&await Be.passwordForceReset(t),t.password!==e.password&&await Be.passwordUpdated(t)):await Be.created(t),D0(t,e)&&await Be.permissionBuilderAssigned(t),b0(t,e)&&await Be.permissionAdminAssigned(t),await R0(t,e)},"handleSaveEvents"),D0=s((t,e)=>E_(t,e,Fe),"isAddingBuilder"),C0=s((t,e)=>y_(t,e,Fe),"isRemovingBuilder"),b0=s((t,e)=>E_(t,e,Pr),"isAddingAdmin"),x0=s((t,e)=>y_(t,e,Pr),"isRemovingAdmin"),E_=s((t,e,r)=>!(!r(t)||e&&r(e)),"isAddingPermission"),y_=s((t,e,r)=>!(r(t)||!e||!r(e)),"isRemovingPermission");var P0=s(async t=>{let e=t._id;await Tt.removeUser(t),await um(t),await tr.invalidateUser(e),await An(e,{reason:"bulk-deletion"})},"bulkDeleteProcessing"),Pt=class t{static{s(this,"UserDB")}static init(e,r,n){t.quotas=e,t.groups=r,t.features=n}static async isPreventPasswordActions(e,r){return g.ENABLE_SSO_MAINTENANCE_MODE&&vt(e)?!1:await t.features.isSSOEnforced()||jo(e)?!0:(r||(r=await hi($())),!!(r&&r.email===e.email&&Qo(r)))}static async buildUser(e,r={hashPassword:!0,requirePassword:!0},n,i,o){let{password:a,_id:u}=e;i&&!i.password&&(r.requirePassword=!1);let c;if(a&&a!==i?.password){if(await t.isPreventPasswordActions(e,o))throw new Me("Password change is disabled for this user",400);if(!r.skipPasswordValidation){let f=Kp(a);if(!f.valid)throw new Me(f.error,400)}c=r.hashPassword?await cf(a):a}else i&&(c=i.password);let l=r.requirePassword&&!await t.features.isSSOEnforced();if(!c&&l)throw"Password must be specified.";u=u||ni();let d={createdAt:Date.now(),...i,...e,_id:u,password:c,tenantId:n};return d.roles||(d.roles={}),d.status==null&&(d.status="active"),d}static async allUsers(){return(await Y().allDocs(ln(null,{include_docs:!0}))).rows.map(n=>n.doc)}static async countUsersByWorkspace(e){if(typeof e!="string"||!e)throw new Error("Must provide a string based workspace ID");return{userCount:(await qs("by_app",ii(e,{include_docs:!1}))).rows.length}}static async getUsersByAppAccess(e){return await lm(e.appId,{limit:e.limit||50})}static async getUserByEmail(e){return _t(e)}static async getUser(e){let r=await On(e);return r&&delete r.password,r}static async bulkGet(e){return await uc(e)}static async bulkUpdate(e){let r=await Ro(e);return await tr.invalidateUsers(e.map(n=>n._id)),r}static async save(e,r={}){r.hashPassword==null&&(r.hashPassword=!0),r.requirePassword==null&&(r.requirePassword=!0);let n=$(),i=Y(),{email:o,_id:a,userGroups:u=[],roles:c}=e;if(!o&&!a)throw new Error("_id or email is required");let l;if(a)try{if(l=await On(a),o&&l.email!==o&&!r.allowChangingEmail)throw new Error("Email address cannot be changed")}catch(p){if(p.status!==404)throw p}if(!l&&o&&(l=await _t(o),l&&l._id!==a))throw new Xt(o);let d=!l,f=!!l&&!!o&&l.email!==o,m=!r.isAccountHolder&&!!o&&(d||f),h=[...u];if(d&&h.length===0){let p=await t.groups.getDefaultGroup?.();p?._id&&(h=[p._id])}let T=1,E=0;if((r.isAccountHolder||l)&&(T=0,E=1),l){let[p,y]=await Nr([l,e]);E=p!==y?1:0}else if(!r.isAccountHolder){let p=h.length>0?{...e,userGroups:h}:e;E=(await Nr([p]))[0]?1:0}return t.quotas.addUsers(T,E,async()=>{m&&await oc(o,n);let p=await t.buildUser(e,r,n,l);r.currentUserId&&r.currentUserId===l?._id&&(p=dm(p,l)),!l&&c?.length&&(p.roles={...c});let y=[];if(d){h.length>0&&(p.userGroups=h);for(let A of h)y.push(t.groups.addUsers(A,[p._id]))}try{let A=await i.put(p);return p._rev=A.rev,await cm(p,l),l&&p.email!==l.email&&await Tt.removeUser({email:l.email}),await Tt.addUser(n,p._id,p.email,p.ssoId),await tr.invalidateUser(A.id),await Promise.all(y),i.get(p._id)}catch(A){throw A.status===409?"User exists already":A}})}static async bulkCreate(e,r){let n=$(),i=[],o=[],a=[],u=e.map(T=>T.email),c=await om(u),l=[],d=!!r?.length,f=d?[...r]:[];if(!d){let T=await t.groups.getDefaultGroup?.();T?._id&&(f=[T._id])}for(let T of e){let E=o.find(y=>y.email.toLowerCase()===T.email.toLowerCase()),p=c.includes(T.email.toLowerCase());if(E||p){l.push({email:T.email,reason:"Unavailable"});continue}T.userGroups=[...f],o.push(T),await wo(T)&&a.push(T)}let m=await hi(n),h=await t.features.isSSOEnforced();return t.quotas.addUsers(o.length,a.length,async()=>{for(let p of o)h&&delete p.password,i.push(t.buildUser(p,{hashPassword:!0,requirePassword:!h},n,void 0,m));let T=await Promise.all(i);await Ro(T);for(let p of T)await Tt.addUser(n,p._id,p.email),await cm(p,void 0,m);let E=T.map(p=>({_id:p._id,email:p.email}));if(Array.isArray(E)&&f.length){let p=[],y=E.map(A=>A._id);for(let A of f)p.push(t.groups.addUsers(A,y));await Promise.all(p)}return{successful:E,unsuccessful:l}})}static async bulkDelete(e){let r=Y(),n={successful:[],unsuccessful:[]},i=await ac(e);i&&(e=e.filter(h=>h.userId!==i.userId),n.unsuccessful.push({_id:i.userId,email:i.email,reason:"Account holder cannot be deleted"}));let a=(await r.allDocs({include_docs:!0,keys:e.map(h=>h.userId)})).rows.map(h=>h.doc),u=a.map(h=>({...h,_deleted:!0})),c=await Ro(u),d=(await Nr(a)).filter(h=>h).length,f=[];for(let h of a){let E=(await Io(h._id)).ssoId;E&&(await nc(E)).filter(y=>y.ssoId==null).forEach(y=>{f.push({...y,_deleted:!0})}),await P0(h)}await xr().bulkDocs(f),await t.quotas.removeUsers(u.length,d);let m={};return a.reduce((h,T)=>(h[T._id]=T,h),m),c.forEach(h=>{let T=m[h.id].email;h.ok?n.successful.push({_id:h.id,email:T}):n.unsuccessful.push({_id:h.id,email:T,reason:"Database error"})}),n}static async destroy(e){let r=Y(),n=await r.get(e),i=n._id;if(!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let a=n.email;if(await vr(a))throw n.userId===Vt()._id?new Me('Please visit "Account" to delete this user',400):new Me("Account holder cannot be deleted",400)}await Tt.removeUser(n),await r.remove(i,n._rev);let o=await wo(n)?1:0;await t.quotas.removeUsers(1,o),await um(n),await tr.invalidateUser(i),await An(i,{reason:"deletion"})}static async createAdminUser(e,r,n){let i=n?.password,o={email:e,password:i,createdAt:Date.now(),roles:{},builder:{global:!0},admin:{global:!0},tenantId:r,firstName:n?.firstName,lastName:n?.lastName};return n?.ssoId&&(o.ssoId=n.ssoId),await pi(Oe.CHECKLIST),await t.save(o,{hashPassword:n?.hashPassword,requirePassword:n?.requirePassword,skipPasswordValidation:n?.skipPasswordValidation,isAccountHolder:!0})}static async getGroups(e){return await this.groups.getBulk(e)}static async getGroupBuilderAppIds(e){return await this.groups.getGroupBuilderAppIds(e)}};function Co(t){return Array.isArray(t)?t.map(e=>{if(e)return delete e.password,e}):t&&(delete t.password,t)}s(Co,"removeUserPassword");async function uc(t,e){let n=(await Y().allDocs({keys:t,include_docs:!0})).rows.map(i=>i.doc);return e?.cleanup&&(n=Co(n)),n}s(uc,"bulkGetGlobalUsersById");async function L0(){let t=Y(),e=`us${"_"}`;return(await t.allDocs({startkey:e,endkey:`${e}${"\uFFF0"}`})).rows.map(n=>n.id)}s(L0,"getAllUserIds");async function U0(){let t=Y(),e=`us${"_"}`;return(await t.allDocs({startkey:e,endkey:`${e}${"\uFFF0"}`,include_docs:!0})).rows.map(n=>n.doc)}s(U0,"getAllUsers");async function Ro(t){return await Y().bulkDocs(t)}s(Ro,"bulkUpdateGlobalUsers");async function On(t,e){let n=await Y().get(t);return e?.cleanup&&(n=Co(n)),n}s(On,"getById");async function _t(t,e){if(t==null)throw"Must supply an email address to view";let r=await Qt("by_email2",{key:t.toLowerCase(),include_docs:!0});if(Array.isArray(r))throw new Error(`Multiple users found with email address: ${t}`);let n=r;return e?.cleanup&&(n=Co(n)),n}s(_t,"getGlobalUserByEmail");async function k0(t){try{let e=await _t(t);if(Array.isArray(e)||e!=null)return!0}catch{return!1}return!1}s(k0,"doesUserExist");async function T_(t,e,r){if(typeof t!="string")throw new Error("Must provide a string based workspace ID");let n=ii(t,{include_docs:!0});n.startkey=e&&e.startkey?e.startkey:n.startkey;let i=await Qt("by_app",n);i||(i=[]);let o=Array.isArray(i)?i:[i];return r?.cleanup&&(o=Co(o)),o}s(T_,"searchGlobalUsersByApp");async function lm(t,e){let r=`roles.${t}`,n=[{"builder.global":!0},{"admin.global":!0}];if(t){let a={[r]:{$exists:!0}};n.push(a)}return(await Y().find({selector:{$or:n,_id:{$regex:"^us_"}},limit:e?.limit||50})).docs}s(lm,"searchGlobalUsersByAppAccess");function S_(t,e){if(e)return hu(je(t),e._id)}s(S_,"getGlobalUserByAppPage");async function A_(t,e,r){if(typeof t!="string")throw new Error("Must provide a string to search by");let n=t.toLowerCase(),i=e&&e.startkey?e.startkey:n,o=await Qt("by_email2",{...e,startkey:i,endkey:`${n}${"\uFFF0"}`});o||(o=[]);let a=Array.isArray(o)?o:[o];return r?.cleanup&&(a=Co(a)),a}s(A_,"searchGlobalUsersByEmail");var M0=8;async function __({bookmark:t,query:e,appId:r,limit:n}={}){let i=Y(),o=n??M0,u={include_docs:!0,limit:o+1};t&&(u.startkey=t);let c,l="_id",d;return e?.equal?._id?c=[await On(e.equal._id)]:r?(c=await T_(r,u),d=s(f=>S_(r,f),"getKey")):e?.string?.email?(c=await A_(e?.string?.email,u),l="email"):e?.oneOf?._id?c=await uc(e?.oneOf?._id,{cleanup:!0}):e?(c=(await i.allDocs(ln(null,{...u,limit:void 0}))).rows.map(m=>m.doc),c=hr.search(c,{query:e,limit:u.limit}).rows):c=(await i.allDocs(ln(null,u))).rows.map(m=>m.doc),jf(c,o,{paginate:!0,property:l,getKey:d})}s(__,"paginatedUsers");async function F0(){return(await qs("by_email2",{limit:0,include_docs:!1})).total_rows}s(F0,"getUserCount");async function B0(){let t=0;async function e(r){let n=await __({bookmark:r}),i=await Nr(n.data);t+=i.filter(o=>o).length,n.hasNextPage&&await e(n.nextPage)}return s(e,"iterate"),await e(),t}s(B0,"getCreatorCount");function W0(t){return delete t.admin,delete t.builder,t}s(W0,"removePortalUserPermissions");function dm(t,e){return delete t.admin,delete t.builder,delete t.roles,e&&(t.admin=e.admin,t.builder=e.builder,t.roles=e.roles),t}s(dm,"cleanseUserObject");async function G0(t,e){let r=je(e);t.builder??={},t.builder.creator=!0,t.builder.apps??=[],t.builder.apps.push(r),await Pt.save(t,{hashPassword:!1})}s(G0,"addAppBuilder");async function $0(t,e){let r=je(e);t.builder&&t.builder.apps?.includes(r)&&(t.builder.apps=t.builder.apps.filter(n=>n!==r)),await Pt.save(t,{hashPassword:!1})}s($0,"removeAppBuilder");var O_=3600;async function V0(t,e){let n=await Xf(e).get(t);if(n.budibaseAccess=!0,!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let i=await vr(n.email);i&&(n.account=i,n.accountPortalAccess=!0)}return n}s(V0,"populateFromDB");async function q0(t){let e=await Pt.bulkGet(t),r=t.filter((i,o)=>!e[o]),n=e.filter(i=>i);return await Promise.all(n.map(async i=>{if(i.budibaseAccess=!0,!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let o=await vr(i.email);o&&(i.account=o,i.accountPortalAccess=!0)}})),r.length?{users:n,notFoundIds:r}:{users:n}}s(q0,"populateUsersFromDB");async function bo({userId:t,tenantId:e,email:r,populateUser:n}){if(n||(n=V0),!e)try{e=$()}catch{e=await Tt.lookupTenantId(t)}let i=await ri(),o=await i.get(t);return o||(o=await n(t,e,r),await i.store(t,o,O_)),o&&!o.tenantId&&e&&(o.tenantId=e),o.userGroups&&!ke.users.isGlobalBuilder(o)&&await Ce(e,async()=>{let a=await Pt.getGroupBuilderAppIds(o);if(a.length){let u=o.builder?.apps||[];o.builder={apps:[...new Set(u.concat(a))]}}}),o}s(bo,"getUser");async function K0(t){let e=await ri(),r=await e.bulkGet(t),n=t.filter(a=>!r[a]),i=Object.values(r).filter(a=>!!a),o;if(n.length){let a=await q0(n);o=a.notFoundIds;for(let u of a.users)await e.store(u._id,u,O_);i.push(...a.users)}return{users:i,notFoundIds:o}}s(K0,"getUsers");async function xo(t){await(await ri()).delete(t)}s(xo,"invalidateUser");async function Q0(t){if(t.length===0)return;await(await ri()).bulkDelete(t)}s(Q0,"invalidateUsers");var hm={};L(hm,{Writethrough:()=>pm});var I_=1e4,fm=null;async function cc(){if(!fm){let t=await Bf();fm=new hn(t)}return fm}s(cc,"getCache");function vo(t,e){return t.name+e}s(vo,"makeCacheKey");function mm(t,e=null){return{doc:t,lastWrite:e||Date.now()}}s(mm,"makeCacheItem");async function j0(t,e,r=I_){let n=await cc(),i=e._id,o;i&&(o=await n.get(vo(t,i)));let a=!o||o.lastWrite<Date.now()-r,u=e;return a&&((await uo({type:"try_once",name:"persist_writethrough",resource:i,ttl:15e3},async()=>{let l=s(async d=>{let f=await t.put(d,{force:!0});u._id=f.id,u._rev=f.rev},"writeDb");try{await l(e)}catch(d){if(d.status!==409)throw d;di("Ignoring conflict in write-through cache")}})).executed||di("Ignoring redlock conflict in write-through cache")),o=mm(u,a?null:o?.lastWrite),u._id&&await n.store(vo(t,u._id),o),{ok:!0,id:u._id,rev:u._rev}}s(j0,"put");async function H0(t,e){let r=await cc(),n=vo(t,e),i=await r.get(n);if(!i){let o=await t.get(e);i=mm(o),await r.store(n,i)}return i.doc}s(H0,"get");async function Y0(t,e){let r=await cc(),n=vo(t,e),i=await r.get(n);if(!i){let o=await t.tryGet(e);if(!o)return null;i=mm(o),await r.store(n,i)}return i.doc}s(Y0,"tryGet");async function z0(t,e,r){let n=await cc();if(!e)throw new Error("No ID/Rev provided.");let i=typeof e=="string"?e:e._id;r=typeof e=="string"?r:e._rev;try{await n.delete(vo(t,i))}finally{await t.remove(i,r)}}s(z0,"remove");var pm=class{static{s(this,"Writethrough")}constructor(e,r=I_){this.db=e,this.writeRateMs=r}async put(e,r=this.writeRateMs){return j0(this.db,e,r)}async get(e){return H0(this.db,e)}async tryGet(e){return Y0(this.db,e)}async remove(e,r){return z0(this.db,e,r)}};function Po(t){return`config${"_"}${t}`}s(Po,"generateConfigID");var lc="en";function J0(){return{_id:Po("translations"),type:"translations",config:{defaultLocale:lc,locales:{[lc]:{label:"English",overrides:{}}}}}}s(J0,"createDefaultTranslationsConfig");function X0(t){let e=t?.defaultLocale||lc,r={...t?.locales??{}};r[e]||(r[e]={label:e===lc?"English":e,overrides:{}});for(let n of Object.keys(r))r[n].overrides||(r[n]={...r[n],overrides:{}});return{defaultLocale:e,locales:r}}s(X0,"prepareTranslationsConfig");async function We(t){let e=Y();try{return await e.get(Po(t))}catch(r){if(r.status===404)return;throw r}}s(We,"getConfig");async function Z0(t){return t._id||(t._id=Po(t.type)),Y().put(t)}s(Z0,"save");async function w_(){let t=await We("translations");return t?(t.config=X0(t.config),t):J0()}s(w_,"getTranslationsConfigDoc");async function ek(){return(await w_()).config}s(ek,"getTranslationsConfig");async function _i(){let t=await We("settings");return t||(t={_id:Po("settings"),type:"settings",config:{}}),t.config.platformUrl=await No({tenantAware:!0,config:t.config}),t.config.analyticsEnabled=await Ju({config:t.config}),t}s(_i,"getSettingsConfigDoc");async function Em(){return(await _i()).config}s(Em,"getSettingsConfig");async function No(t={tenantAware:!0}){let e=g.PLATFORM_URL||"http://localhost:10000";if(!g.SELF_HOSTED&&g.MULTI_TENANCY&&t.tenantAware){let r=$();e.includes("localhost:")||(e=e.replace("://",`://${r}.`))}else if(g.SELF_HOSTED){let r=t?.config?t.config:(await We("settings"))?.config;r?.platformUrl&&(e=r.platformUrl)}return e}s(No,"getPlatformUrl");var Ju=s(async t=>{if(!g.SELF_HOSTED)return!!g.ENABLE_ANALYTICS;let e=await br(Oe.ANALYTICS_ENABLED,86400,async()=>{let n=t?.config?t.config:(await We("settings"))?.config;if(n?.analyticsEnabled===!1)return!1;if(n?.analyticsEnabled===!0)return!0});if(e!==void 0)return e;let r=g.ENABLE_ANALYTICS;return!(r===0||r===!1)},"analyticsEnabled");async function tk(){return await We("google")}s(tk,"getGoogleConfigDoc");async function fc(){return(await tk())?.config}s(fc,"getGoogleConfig");async function ym(){if(!g.SELF_HOSTED)return gm();let t=await fc();return(!t||!t.activated)&&(t=gm()),t}s(ym,"getGoogleDatasourceConfig");function gm(){if(g.GOOGLE_CLIENT_ID&&g.GOOGLE_CLIENT_SECRET)return{clientID:g.GOOGLE_CLIENT_ID,clientSecret:g.GOOGLE_CLIENT_SECRET,activated:!0}}s(gm,"getDefaultGoogleConfig");async function rk(){return We("logos_oidc")}s(rk,"getOIDCLogosDoc");async function nk(){return We("oidc")}s(nk,"getOIDCConfigDoc");async function ik(){let t=(await nk())?.config;return t?.configs&&t.configs[0]}s(ik,"getOIDCConfig");async function Tm(t){let e=(await We("oidc"))?.config;return e&&e.configs.filter(r=>r.uuid===t)[0]}s(Tm,"getOIDCConfigById");async function R_(){return We("smtp")}s(R_,"getSMTPConfigDoc");async function sk(t){let e=await R_();if(e)return e.config;let r=g.SELF_HOSTED||!t;if(g.SMTP_FALLBACK_ENABLED&&r)return{port:g.SMTP_PORT,host:g.SMTP_HOST,secure:!1,from:g.SMTP_FROM_ADDRESS,auth:{user:g.SMTP_USER,pass:g.SMTP_PASSWORD},fallback:!0}}s(sk,"getSMTPConfig");async function ok(){return(await We("scim"))?.config}s(ok,"getSCIMConfig");async function ak(){return We("recaptcha")}s(ak,"getRecaptchaConfig");var bm={};L(bm,{AccessController:()=>_m,BUILTIN_ROLE_IDS:()=>Om,Role:()=>Lr,RoleHierarchyTraversal:()=>pc,RoleIDVersion:()=>Im,builtinRoleToNumber:()=>Lo,checkForRoleResourceArray:()=>x_,externalRole:()=>pk,findRole:()=>Uo,getAllRoleIds:()=>Ek,getAllRoles:()=>Cm,getBuiltinRole:()=>C_,getBuiltinRoles:()=>Rm,getDBRoleID:()=>v_,getExternalRoleID:()=>Ur,getExternalRoleIDs:()=>P_,getRole:()=>mk,getUserRoleHierarchy:()=>Dm,getUserRoleIdHierarchy:()=>b_,isBuiltin:()=>kr,lowerBuiltinRoleID:()=>fk,prefixRoleIDNoBuiltin:()=>Am,roleIDsAreEqual:()=>Ye,roleToNumber:()=>dk,saveRoles:()=>hk,validInherits:()=>lk});var D_=require("lodash"),mc=W(require("lodash/fp/cloneDeep")),Sm=W(require("semver"));var Om={ADMIN:"ADMIN",POWER:"POWER",BASIC:"BASIC",PUBLIC:"PUBLIC"},ne={...Om,BUILDER:"BUILDER"},Im={UUID:void 0,NAME:"name"};function ck(t,e){return Array.isArray(e)?e.filter(r=>t.includes(r)).length===e.length:t.includes(e)}s(ck,"rolesInList");var Lr=class{constructor(e,r,n,i){this.permissions={};this._id=e,this.name=r,this.uiMetadata=i,this.permissionId=n,this.version=Im.NAME}static{s(this,"Role")}addInheritance(e){return e&&typeof e=="string"?e=Am(e):e&&Array.isArray(e)&&(e=e.map(Am)),this.inherits=e,this}},pc=class{static{s(this,"RoleHierarchyTraversal")}constructor(e,r){this.allRoles=e,this.opts=r}walk(e){let r=this.opts,n=this.allRoles,i=[];if(!e||!e._id)return i;if(i.push(e),Array.isArray(e.inherits))for(let o of e.inherits){let a=Uo(o,n,r);a&&(i=i.concat(this.walk(a)))}else{let o=[],a=e;for(;a&&a.inherits&&!ck(o,a.inherits);){if(Array.isArray(a.inherits))return i.concat(this.walk(a));if(o.push(a.inherits),a=Uo(a.inherits,n,r),a&&i.push(a),Ue.roles.checkForRoleInheritanceLoops(i))break}}return(0,D_.uniqBy)(i,o=>o._id)}},wm={ADMIN:new Lr(ne.ADMIN,ne.ADMIN,"admin",{displayName:"Admin user",description:"Can do everything",color:"var(--spectrum-global-color-static-red-400)"}).addInheritance(ne.POWER),POWER:new Lr(ne.POWER,ne.POWER,"power",{displayName:"App power user",description:"An app user with more access",color:"var(--spectrum-global-color-static-orange-400)"}).addInheritance(ne.BASIC),BASIC:new Lr(ne.BASIC,ne.BASIC,"write",{displayName:"Basic user",description:"Any logged in user",color:"var(--spectrum-global-color-static-green-400)"}).addInheritance(ne.PUBLIC),PUBLIC:new Lr(ne.PUBLIC,ne.PUBLIC,"public",{displayName:"Public user",description:"Accessible to anyone",color:"var(--spectrum-global-color-static-blue-400)"}),BUILDER:new Lr(ne.BUILDER,ne.BUILDER,"admin",{displayName:"Builder user",description:"Users that can edit this app",color:"var(--spectrum-global-color-static-magenta-600)"})};function Rm(){return(0,mc.default)(wm)}s(Rm,"getBuiltinRoles");function kr(t){return Object.values(Om).includes(t)}s(kr,"isBuiltin");function Am(t){return kr(t)?t:qt(t)}s(Am,"prefixRoleIDNoBuiltin");function C_(t){let e=Object.values(wm).find(r=>t.includes(r._id));if(e)return(0,mc.default)(e)}s(C_,"getBuiltinRole");function lk(t,e){if(!e)return!1;let r=s(n=>t.find(i=>Ye(i._id,n)),"find");if(Array.isArray(e)){let n=e.filter(i=>r(i));return e.length!==0&&n.length===e.length}else return!!r(e)}s(lk,"validInherits");function Lo(t){let e=Rm(),r=Object.values(e).length+1;if(Ye(t,ne.ADMIN)||Ye(t,ne.BUILDER))return r;let n=e[t],i=0;do{if(!n)break;if(Array.isArray(n.inherits))throw new Error("Built-in roles don't support multi-inheritance");n=e[n.inherits],i++}while(n!==null);return i}s(Lo,"builtinRoleToNumber");async function dk(t){if(kr(t))return Lo(t);let e=await Dm(t,{defaultPublic:!0}),r=s(n=>{if(!n.inherits)return 0;if(Array.isArray(n.inherits)){let i=n.inherits.map(o=>{let a=e.find(u=>Ye(u._id,o));if(a)return r(a)+1}).filter(o=>o).sort().pop();if(i!=null)return i}else if(kr(n.inherits))return Lo(n.inherits)+1;return 0},"findNumber");return Math.max(...e.map(r))}s(dk,"roleToNumber");function fk(t,e){return t?e&&Lo(t)>Lo(e)?e:t:e}s(fk,"lowerBuiltinRoleID");function Ye(t,e){return qt(t)===qt(e)}s(Ye,"roleIDsAreEqual");function pk(t){let e;return t._id&&(e=Ur(t._id)),{...t,_id:e,inherits:P_(t.inherits,t.version)}}s(pk,"externalRole");function Uo(t,e,r){let n=C_(t);n||(t=qt(t));let i=e.find(o=>o._id&&Ye(o._id,t));return!i&&!kr(t)&&r?.defaultPublic?(0,mc.default)(wm.PUBLIC):(n=Object.assign(n||{},i),n?._id&&(n._id=Ur(n._id,n.version)),Object.keys(n).length===0?void 0:n)}s(Uo,"findRole");async function mk(t,e){let r=ei(),n=[];if(!kr(t)){let i=await r.tryGet(v_(t));i&&n.push(i)}return Uo(t,n,e)}s(mk,"getRole");async function hk(t){await ei().bulkDocs(t.filter(r=>r._id).map(r=>({...r,_id:qt(r._id)})))}s(hk,"saveRoles");async function gk(t,e){let r=await Cm();if(Ye(t,ne.ADMIN))return r;let n=Uo(t,r,e),i=[];return n&&(i=new pc(r,e).walk(n)),i}s(gk,"getAllUserRoles");async function b_(t){return(await Dm(t)).map(r=>r._id)}s(b_,"getUserRoleIdHierarchy");async function Dm(t,e){return gk(t,e)}s(Dm,"getUserRoleHierarchy");function x_(t,e){if(t&&!Array.isArray(t[e])){let r=t[e];t[e]=[r],r==="write"&&t[e].push("read")}return t}s(x_,"checkForRoleResourceArray");async function Ek(t){return(await Cm(t)).map(r=>r._id)}s(Ek,"getAllRoleIds");async function Cm(t){if(t)return Qe(t,e);{let r;try{r=ei()}catch{}return e(r)}async function e(r){let n=[];r&&(n=(await r.allDocs(gu(null,{include_docs:!0}))).rows.map(u=>u.doc),n.forEach(u=>u._id=Ur(u._id,u.version)));let i=Rm(),o=[];!r||await yk(r)?o=[ne.ADMIN,ne.POWER,ne.BASIC,ne.PUBLIC]:o=[ne.ADMIN,ne.BASIC,ne.PUBLIC];for(let a of o){let u=i[a],c=n.filter(l=>Ye(l._id,a))[0];c==null?n.push(u||i.BASIC):(n=n.filter(l=>l._id!==c._id),c._id=Ur(u._id,c.version),n.push({...u,...c,name:u.name,_id:Ur(u._id,u.version),uiMetadata:{...c.uiMetadata,...u.uiMetadata}}))}for(let a of n)if(a.permissions)for(let u of Object.keys(a.permissions))a.permissions=x_(a.permissions,u);return n}s(e,"internal")}s(Cm,"getAllRoles");async function yk(t){if(await Tk(t))return!0;let r=(await t.tryGet("app_metadata"))?.creationVersion;return!r||!Sm.default.valid(r)?!0:!Sm.default.gte(r,g.MIN_VERSION_WITHOUT_POWER_ROLE)}s(yk,"shouldIncludePowerRole");async function Tk(t){let r=(await t.tryGet("ta_users"))?.schema?.roleId?.constraints?.inclusion;return!Array.isArray(r)||!r.some(i=>Ye(i,ne.POWER))?!1:r.some(i=>!kr(i))}s(Tk,"hasLegacyPowerRole");var _m=class{static{s(this,"AccessController")}constructor(){this.userHierarchies={}}async hasAccess(e,r){if(e==null||e===""||Ye(e,ne.BUILDER)||Ye(r,e)||Ye(r,ne.BUILDER))return!0;let n=r?this.userHierarchies[r]:null;return!n&&r&&(n=await b_(r),this.userHierarchies[r]=n),n?.find(i=>Ye(i,e))!==void 0}async checkScreensAccess(e,r){let n=[];for(let i of e){let o=await this.checkScreenAccess(i,r);o&&n.push(o)}return n}async checkScreenAccess(e,r){let n=e&&e.routing?e.routing.roleId:void 0;return await this.hasAccess(n,r)?e:null}};function v_(t){return t?.startsWith("role")?t:qt(t)}s(v_,"getDBRoleID");function Ur(t,e){if(t.startsWith(`role${"_"}`)&&(kr(t)||e===Im.NAME)){let r=t.split("_");return r.shift(),r.join("_")}return t}s(Ur,"getExternalRoleID");function P_(t,e){return t&&(typeof t=="string"?Ur(t,e):t.map(r=>Ur(r,e)))}s(P_,"getExternalRoleIDs");var xm={};L(xm,{BUILDER:()=>Ik,BUILTIN_PERMISSIONS:()=>hc,CREATOR:()=>wk,GLOBAL_BUILDER:()=>Rk,PermissionImpl:()=>oe,PermissionLevel:()=>Pi,PermissionType:()=>qo,doesHaveBasePermission:()=>_k,getAllowedLevels:()=>k_,getBuiltinPermissionByID:()=>Ak,getBuiltinPermissions:()=>Sk,isPermissionLevelHigherThanRead:()=>Ok,levelToNumber:()=>U_});var N_=W(require("lodash/flatten")),L_=W(require("lodash/fp/cloneDeep"));var oe=class{static{s(this,"PermissionImpl")}constructor(e,r){this.type=e,this.level=r}};function U_(t){switch(t){case"execute":return 0;case"read":return 1;case"write":return 2;case"admin":return 3;default:return-1}}s(U_,"levelToNumber");function k_(t){switch(t){case"execute":return["execute"];case"read":return["execute","read"];case"write":case"admin":return["execute","read","write"];default:return[]}}s(k_,"getAllowedLevels");var hc={PUBLIC:{_id:"public",name:"Public",permissions:[new oe("webhook","execute")]},READ_ONLY:{_id:"read_only",name:"Read only",permissions:[new oe("query","read"),new oe("table","read"),new oe("app","read")]},WRITE:{_id:"write",name:"Read/Write",permissions:[new oe("query","write"),new oe("table","write"),new oe("automation","execute"),new oe("legacy_view","read"),new oe("app","read")]},POWER:{_id:"power",name:"Power",permissions:[new oe("table","write"),new oe("user","read"),new oe("automation","execute"),new oe("webhook","read"),new oe("legacy_view","read"),new oe("app","read")]},ADMIN:{_id:"admin",name:"Admin",permissions:[new oe("table","admin"),new oe("user","admin"),new oe("automation","admin"),new oe("webhook","read"),new oe("query","admin"),new oe("legacy_view","read"),new oe("app","read")]}};function Sk(){return(0,L_.default)(hc)}s(Sk,"getBuiltinPermissions");function Ak(t){return Object.values(hc).find(r=>r._id===t)}s(Ak,"getBuiltinPermissionByID");function _k(t,e,r){let n=[...new Set(r.map(a=>a.permissionId))],i=Object.values(hc),o=(0,N_.default)(i.filter(a=>n.indexOf(a._id)!==-1).map(a=>a.permissions));for(let a of o)if(a.type===t&&k_(a.level).indexOf(e)!==-1)return!0;return!1}s(_k,"doesHaveBasePermission");function Ok(t){return U_(t)>1}s(Ok,"isPermissionLevelHigherThanRead");var Ik="builder",wk="creator",Rk="globalBuilder";var Nm={};L(Nm,{FlagSet:()=>Ec,all:()=>Pk,flags:()=>vm,getEnvFlags:()=>W_,init:()=>Ck,isEnabled:()=>vk,parseEnvFlags:()=>Tc,shutdown:()=>bk,testutils:()=>Pm});var yc=W(require("crypto")),M_=W(require("dd-trace")),F_=require("lodash"),B_=require("posthog-node");var gc,Dk=s(()=>{let t=g.POSTHOG_FEATURE_FLAGS_POLLING_INTERVAL_MS;if(t){let e=parseInt(t,10);if(!Number.isNaN(e)&&e>0)return e}return me.fromDays(1).toMs()},"getFeatureFlagsPollingInterval");function Ck(t){g.POSTHOG_TOKEN&&g.POSTHOG_API_HOST&&!g.SELF_HOSTED&&g.POSTHOG_FEATURE_FLAGS_ENABLED?(console.log("initializing posthog client..."),gc=new B_.PostHog(g.POSTHOG_TOKEN,{host:g.POSTHOG_API_HOST,personalApiKey:g.POSTHOG_PERSONAL_TOKEN,featureFlagsPollingInterval:Dk(),...t})):console.log("posthog disabled")}s(Ck,"init");function bk(){gc?.shutdown()}s(bk,"shutdown");function Tc(t){let e=t.split(",").map(n=>n.split(":")),r=[];for(let[n,...i]of e)for(let o of i){let a=!0;o.startsWith("!")&&(o=o.slice(1),a=!1),r.push({tenantId:n,key:o,value:a})}return r}s(Tc,"parseEnvFlags");function W_(){return Tc(g.TENANT_FEATURE_FLAGS||"")}s(W_,"getEnvFlags");var Ec=class{constructor(e){this.flagSchema=e;this.setId=yc.randomUUID()}static{s(this,"FlagSet")}defaults(){return(0,F_.cloneDeep)(this.flagSchema)}isFlagName(e){return this.flagSchema[e]!==void 0}async isEnabled(e){return(await this.fetch())[e]}async fetch(){return await M_.default.trace("features.fetch",async e=>{let r=Nf(this.setId);if(r)return e?.addTags({fromCache:!0}),r;let n={},i=this.defaults(),o=$(),a=new Set;if(tu())return i;for(let{tenantId:f,key:m,value:h}of W_())if(!(!f||f!=="*"&&f!==o)&&(n.readFromEnvironmentVars=!0,h===!1&&a.add(m),!!this.isFlagName(m))){if(typeof i[m]!="boolean")throw new Error(`Feature: ${m} is not a boolean`);i[m]=h,n[`flags.${m}.source`]="environment"}let u=Vt(),c=u?._id;if(!c){let f=vf();f&&(c=yc.createHash("sha512").update(f).digest("hex"))}let l=u?.tenantId;if(l||(l=o),n["identity.type"]=u?.type,n["identity._id"]=u?._id,n.tenantId=l,n.userId=c,gc&&c){n.readFromPostHog=!0;let f=await _i(),m={tenantId:l},h={tenant:{id:l}};f.config.createdVersion&&(h.tenant.createdVersion=f.config.createdVersion),f.createdAt&&(h.tenant.createdAt=`${f.createdAt}`);let T=await gc.getAllFlags(c,{personProperties:m,onlyEvaluateLocally:!0,groups:{tenant:l},groupProperties:h});for(let[E,p]of Object.entries(T))if(this.isFlagName(E)){if(typeof p!="boolean"){console.warn(`Invalid value for posthog flag "${E}": ${p}`);continue}if(!(i[E]===!0||a.has(E)))try{i[E]=p,n[`flags.${E}.source`]="posthog"}catch(y){console.warn(`Error parsing posthog flag "${E}": ${p}`,y)}}}let d=Uf();for(let[f,m]of Object.entries(d))this.isFlagName(f)&&typeof m=="boolean"&&(i[f]=m,n[`flags.${f}.source`]="override");Lf(this.setId,i);for(let[f,m]of Object.entries(i))n[`flags.${f}.value`]=m;return e?.addTags(n),i})}},xk={USE_ZOD_VALIDATOR:!1,AI_RAG_SHAREPOINT:!1,AI_AGENT_INSTRUCTIONS:!1,AI_TESTS:!1,FRONT_COMPANION:!1,DEBUG_UI:g.isDev(),DEV_USE_CLIENT_FROM_STORAGE:!1},vm=new Ec(xk);async function vk(t){return await vm.isEnabled(t)}s(vk,"isEnabled");async function Pk(){return await vm.fetch()}s(Pk,"all");var Pm={};L(Pm,{setFeatureFlags:()=>G_,withFeatureFlags:()=>Uk});function Nk(){let t={};for(let{tenantId:e,key:r,value:n}of Tc(process.env.TENANT_FEATURE_FLAGS||"")){let i=t[e]||{};i[r]!==!1&&(i[r]=n,t[e]=i)}return t}s(Nk,"getCurrentFlags");function Lk(t){let e=[];for(let[r,n]of Object.entries(t))for(let[i,o]of Object.entries(n))o===!1?e.push(`${r}:!${i}`):e.push(`${r}:${i}`);return e.join(",")}s(Lk,"buildFlagString");function G_(t,e){let r=Nk();for(let[i,o]of Object.entries(e)){let a=r[t]||{};a[i]=o,r[t]=a}let n=Lk(r);return bs({TENANT_FEATURE_FLAGS:n})}s(G_,"setFeatureFlags");function Uk(t,e,r){let n=G_(t,e),i=r();return i instanceof Promise?i.finally(n):(n(),i)}s(Uk,"withFeatureFlags");var Qm={};L(Qm,{adminOnly:()=>Sc,auditLog:()=>Ac,authError:()=>Ie,buildAuthMiddleware:()=>SM,buildCsrfMiddleware:()=>_M,buildTenancyMiddleware:()=>AM,builderOnly:()=>xc,builderOrAdmin:()=>vc,google:()=>ir,internalApi:()=>Nc,joiValidator:()=>ko,oidc:()=>sr,passport:()=>OM,platformLogout:()=>CM,refreshOAuthToken:()=>RM,ssoCallbackUrl:()=>Fr,updateUserOAuth:()=>DM,workspaceBuilderOrAdmin:()=>kc});var Km={};L(Km,{activeTenant:()=>fO,adminOnly:()=>Sc,auditLog:()=>Ac,authError:()=>Ie,authenticated:()=>bc,builderOnly:()=>xc,builderOrAdmin:()=>vc,correlation:()=>V_,csp:()=>Z_,csrf:()=>Pc,datasource:()=>yM,errorHandling:()=>tO,featureFlagCookie:()=>rO,google:()=>ir,internalApi:()=>Nc,ip:()=>nO,joiValidator:()=>ko,local:()=>Ri,oidc:()=>sr,pino:()=>q_,querystringToBody:()=>dO,ssoCallbackUrl:()=>Fr,tenancy:()=>Uc,workspaceBuilderOrAdmin:()=>kc});var $_=require("uuid");var kk=require("correlation-id"),V_=s((t,e)=>{let r=t.headers["x-budibase-correlation-id"];return r||(r=(0,$_.v4)()),kk.withId(r,()=>e())},"correlationMiddleware");var Mk=require("koa-pino-logger"),Fk=require("correlation-id");function Bk(){return{logger:Uu,genReqId:Fk.getId,autoLogging:{ignore:s(t=>!!t.url?.includes("/health"),"ignore")},serializers:{req:s(t=>({method:t.method,url:t.url,correlationId:t.id}),"req"),res:s(t=>({status:t.statusCode}),"res")}}}s(Bk,"pinoSettings");function Wk(){return g.HTTP_LOGGING?Mk(Bk()):(t,e)=>e()}s(Wk,"getMiddleware");var q_=Wk();var Sc=s(async(t,e)=>(!t.internal&&!vt(t.user)&&t.throw(403,"Admin user only endpoint."),e()),"adminOnly");var Ac=s((async(t,e)=>e()),"auditLog");var Y_=require("jsonwebtoken");var Gk=/\/:(.*?)(\/.*)?$/g,rr=s(t=>t?t.map(e=>{let r=e.route,n=e.method,i=r.match(Gk);if(i)for(let o of i){let u="/.*"+(o.endsWith("/")?"/":"");r=r.replace(o,u)}return{regex:new RegExp(`^${r}`),method:n,route:r}}):[],"buildMatcherRegex"),nr=s((t,e)=>e.find(({regex:r,method:n})=>{let i=r.test(t.path),o=n==="ALL"?!0:t.request.method.toLowerCase()===n.toLowerCase();return i&&o}),"matches");var Fm={};L(Fm,{SecretOption:()=>j_,compare:()=>Kk,decrypt:()=>wc,decryptFile:()=>Hk,encrypt:()=>qk,encryptFile:()=>Qk,getSecret:()=>Mm});var Nt=W(require("crypto")),Mr=W(require("fs")),Lm=require("path"),Um=W(require("zlib"));var _c="aes-256-ctr",Q_="-",$k=1e4,Vk=32,Oc=16,km=16,j_=(r=>(r.API="api",r.ENCRYPTION="encryption",r))(j_||{});function Mm(t){let e,r;if(t==="encryption"?(e=g.ENCRYPTION_KEY,r="ENCRYPTION_KEY"):(e=g.API_ENCRYPTION_KEY,r="API_ENCRYPTION_KEY"),!e)throw new Error(`Secret "${r}" has not been set in environment.`);return e}s(Mm,"getSecret");function Ic(t,e){return Nt.default.pbkdf2Sync(t,new Uint8Array(e),$k,Vk,"sha512")}s(Ic,"stretchString");function qk(t,e="api"){let r=Nt.default.randomBytes(Oc),n=Ic(Mm(e),r),i=Nt.default.createCipheriv(_c,new Uint8Array(n),new Uint8Array(r)),o=i.update(t,"utf8"),a=i.final(),u=Buffer.concat([new Uint8Array(o),new Uint8Array(a)]).toString("hex");return`${r.toString("hex")}${Q_}${u}`}s(qk,"encrypt");function wc(t,e="api"){let[r,n]=t.split(Q_),i=Buffer.from(r,"hex"),o=Ic(Mm(e),i),a=Nt.default.createDecipheriv(_c,new Uint8Array(o),new Uint8Array(i)),u=a.update(n,"hex"),c=a.final();return Buffer.concat([new Uint8Array(u),new Uint8Array(c)]).toString()}s(wc,"decrypt");function Kk(t,e,r="api"){try{let n=new TextEncoder,i=n.encode(wc(e,r)),o=n.encode(t);return i.length!==o.length?!1:Nt.default.timingSafeEqual(i,o)}catch{return!1}}s(Kk,"compare");async function Qk({dir:t,filename:e},r){let n=`${e}.enc`,i=(0,Lm.join)(t,e);if(Mr.default.lstatSync(i).isDirectory())throw new Error("Unable to encrypt directory");let o=Mr.default.createReadStream(i),a=Mr.default.createWriteStream((0,Lm.join)(t,n)),u=Nt.default.randomBytes(Oc),c=Nt.default.randomBytes(km),l=Ic(r,u),d=Nt.default.createCipheriv(_c,new Uint8Array(l),new Uint8Array(c));return a.write(u),a.write(c),o.pipe(Um.default.createGzip()).pipe(d).pipe(a),new Promise(f=>{a.on("finish",()=>{f({filename:n,dir:t})})})}s(Qk,"encryptFile");async function jk(t){let e=Mr.default.createReadStream(t),r=await K_(e,Oc),n=await K_(e,km);return e.close(),{salt:r,iv:n}}s(jk,"getSaltAndIV");async function Hk(t,e,r){if(Mr.default.lstatSync(t).isDirectory())throw new Error("Unable to decrypt directory");let{salt:n,iv:i}=await jk(t),o=Mr.default.createReadStream(t,{start:Oc+km}),a=Mr.default.createWriteStream(e),u=Ic(r,n),c=Nt.default.createDecipheriv(_c,new Uint8Array(u),new Uint8Array(i)),l=Um.default.createGunzip();return o.pipe(c).pipe(l).pipe(a),new Promise((d,f)=>{a.on("finish",()=>{a.close(),d()}),o.on("error",m=>{a.close(),f(m)}),c.on("error",m=>{a.close(),f(m)}),l.on("error",m=>{a.close(),f(m)}),a.on("error",m=>{a.close(),f(m)})})}s(Hk,"decryptFile");function K_(t,e){return new Promise((r,n)=>{let i=0,o=[];t.on("readable",()=>{let a;for(;(a=t.read(e-i))!==null;)o.push(a),i+=a.length;r(Buffer.concat(o.map(u=>new Uint8Array(u))))}),t.on("end",()=>{n(new Error("Insufficient data in the stream."))}),t.on("error",a=>{n(a)})})}s(K_,"readBytes");var Bm={};L(Bm,{APIWarning:()=>In,FeatureDisabledWarning:()=>Dc,InvalidAPIKeyWarning:()=>wi,UsageLimitWarning:()=>Rc});var In=class extends Error{static{s(this,"APIWarning")}constructor(e,r){super(e),this.code=r}},wi=class extends In{static{s(this,"InvalidAPIKeyWarning")}constructor(){super("Invalid API key","invalid_api_key")}},Rc=class extends In{static{s(this,"UsageLimitWarning")}constructor(e){super(`Usage limit exceeded: '${e}'`,"usage_limit_exceeded"),this.limitName=e}getPublicWarning(){return{limitName:this.limitName}}},Dc=class extends In{static{s(this,"FeatureDisabledWarning")}constructor(e){super(`Feature disabled: '${e}'`,"feature_disabled"),this.featureName=e,this.status=400}getPublicWarning(){return{featureName:this.featureName}}getPublicError(){return{featureName:this.featureName}}};var z_=W(require("dd-trace"));var zk=g.SESSION_UPDATE_PERIOD?parseInt(g.SESSION_UPDATE_PERIOD):60*1e3;function Jk(){return new Date(Date.now()-zk).toISOString()}s(Jk,"timeMinusOneMinute");function H_(t,e={}){t.publicEndpoint=e.publicEndpoint||!1,t.isAuthenticated=e.authenticated||!1,t.loginMethod=e.loginMethod,t.user=e.user,t.internal=e.internal||!1,t.version=e.version}s(H_,"finalise");async function Xk(t,e){if(Hs(t))return{valid:!0,user:void 0};let n=wc(t).split("_")[0];return Ce(n,async()=>{let i;try{let o=Y();i=await Qt("by_api_key",{key:t},o)}catch{i=void 0}if(i)return{valid:!0,user:await bo({userId:i,tenantId:n,populateUser:e})};throw new wi})}s(Xk,"checkApiKey");function Cc(t,e){let r=t.request.headers[e];if(Array.isArray(r))throw new Error("Unexpected header format");return r}s(Cc,"getHeader");function bc(t=[],e={publicAllowed:!1}){let r=t?rr(t):[];return(async(n,i)=>{let o=!1,a=Cc(n,"x-budibase-api-version");nr(n,r)&&(o=!0);try{let c=Cc(n,"x-budibase-token"),l=Ht(n,"budibase:auth"),d=l||Su(c);d&&!d.exp&&(l&&Yt(n,"budibase:auth"),n.throw(401,"Session token missing expiration, please log in again"));let f=Cc(n,"x-budibase-api-key");!f&&n.request.headers.authorization&&(f=n.request.headers.authorization.split(" ")[1]);let m=Cc(n,"x-budibase-tenant-id"),h=!1,T,E=!1,p;if(d&&!f){let A=d.sessionId,_=d.userId,I;try{I=await Hp(_,A),e&&e.populateUser?T=await bo({userId:_,tenantId:I.tenantId,email:I.email,populateUser:e.populateUser(n)}):T=await bo({userId:_,tenantId:I.tenantId,email:I.email}),T.csrfToken=I.csrfToken,p="cookie",I?.lastAccessedAt<Jk()&&await jp(I),h=!0}catch(O){h=!1,console.warn(`Auth Error: ${O.message}`),Yt(n,"budibase:auth")}}if(!h&&f){let A=e.populateUser?e.populateUser(n):null,{valid:_,user:I}=await Xk(f,A);_&&(h=!0,p="api_key",T=I,E=!I)}!T&&m?T={tenantId:m}:T&&"password"in T&&delete T.password,h||(h=!1);let y=s(A=>A&&A.email,"isUser");return y(T)&&z_.default.setUser({id:T._id,tenantId:T.tenantId,budibaseAccess:T.budibaseAccess,status:T.status}),H_(n,{authenticated:h,user:T,internal:E,version:a,publicEndpoint:o,loginMethod:p}),y(T)?mf(T,n,i):i()}catch(c){if(console.warn(`Auth Error: ${c.message}`),c instanceof Y_.JsonWebTokenError?Yt(n,"budibase:auth"):c?.code==="invalid_api_key"&&n.throw(403,c.message),e&&e.publicAllowed||o)return H_(n,{authenticated:!1,version:a,publicEndpoint:o}),i();n.throw(c.status||403,c.message||"Authentication failed")}})}s(bc,"authenticated");async function xc(t,e){if(t.internal)return e();let r=await dn(t);return!r&&!g.isWorker()?t.throw(403,"This request required a workspace id."):!r&&!Fe(t.user)?t.throw(403,"Builder user only endpoint."):r&&!Ii(t.user,r)&&t.throw(403,"Workspace builder user only endpoint."),e()}s(xc,"builderOnly");async function vc(t,e){if(t.internal||vt(t.user))return e();let r=await dn(t);return!r&&!g.isWorker()?t.throw(403,"This request required a workspace id."):!r&&!Fe(t.user)?t.throw(403,"Admin/Builder user only endpoint."):r&&!Ii(t.user,r)&&t.throw(403,"Workspace Admin/Builder user only endpoint."),e()}s(vc,"builderOrAdmin");var X_=W(require("crypto"));var J_={"default-src":["'self'"],"script-src":["'self'","'unsafe-eval'","https://*.budibase.net","https://cdn.budi.live","https://js.intercomcdn.com","https://widget.intercom.io","https://d2l5prqdbvm3op.cloudfront.net","https://us-assets.i.posthog.com","https://www.google.com/recaptcha/api.js","https://companion.frontapp.com"],"style-src":["'self'","'unsafe-inline'","https://cdn.jsdelivr.net","https://fonts.googleapis.com","https://rsms.me","https://maxcdn.bootstrapcdn.com"],"object-src":["'none'"],"base-uri":["'self'"],"connect-src":["'self'","https://*.budibase.app","https://*.budibaseqa.app","https://*.budibase.net","https://api-iam.intercom.io","https://api-ping.intercom.io","https://app.posthog.com","https://us.i.posthog.com","wss://nexus-websocket-a.intercom.io","wss://nexus-websocket-b.intercom.io","https://nexus-websocket-a.intercom.io","https://nexus-websocket-b.intercom.io","https://uploads.intercomcdn.com","https://uploads.intercomusercontent.com","https://*.amazonaws.com","https://*.s3.amazonaws.com","https://*.s3.us-east-2.amazonaws.com","https://*.s3.us-east-1.amazonaws.com","https://*.s3.us-west-1.amazonaws.com","https://*.s3.us-west-2.amazonaws.com","https://*.s3.af-south-1.amazonaws.com","https://*.s3.ap-east-1.amazonaws.com","https://*.s3.ap-south-1.amazonaws.com","https://*.s3.ap-northeast-2.amazonaws.com","https://*.s3.ap-southeast-1.amazonaws.com","https://*.s3.ap-southeast-2.amazonaws.com","https://*.s3.ap-northeast-1.amazonaws.com","https://*.s3.ca-central-1.amazonaws.com","https://*.s3.cn-north-1.amazonaws.com","https://*.s3.cn-northwest-1.amazonaws.com","https://*.s3.eu-central-1.amazonaws.com","https://*.s3.eu-west-1.amazonaws.com","https://*.s3.eu-west-2.amazonaws.com","https://*.s3.eu-south-1.amazonaws.com","https://*.s3.eu-west-3.amazonaws.com","https://*.s3.eu-north-1.amazonaws.com","https://*.s3.sa-east-1.amazonaws.com","https://*.s3.me-south-1.amazonaws.com","https://*.s3.us-gov-east-1.amazonaws.com","https://*.s3.us-gov-west-1.amazonaws.com","https://api.github.com","https://d2l5prqdbvm3op.cloudfront.net","https://companion.frontapp.com","https://*.frontapp.com"],"font-src":["'self'","data:","https://cdn.jsdelivr.net","https://fonts.gstatic.com","https://rsms.me","https://maxcdn.bootstrapcdn.com","https://js.intercomcdn.com","https://fonts.intercomcdn.com"],"frame-src":["'self'","https:"],"img-src":["http:","https:","data:","blob:"],"manifest-src":["'self'"],"media-src":["'self'","https://js.intercomcdn.com","https://cdn.budi.live"],"worker-src":["blob:","'self'"]},Wm=/^[A-Za-z0-9-*:/.]+$/,Z_=s((async(t,e)=>{let r=X_.default.randomBytes(16).toString("base64");t.state.nonce=r;let n={...J_};n["script-src"]=[...J_["script-src"],`'nonce-${r}'`];let i={"media-src":g.CUSTOM_CSP_MEDIA_SRC,"script-src":g.CUSTOM_CSP_SCRIPT_SRC,"connect-src":g.CUSTOM_CSP_CONNECT_SRC,"img-src":g.CUSTOM_CSP_IMG_SRC,"font-src":g.CUSTOM_CSP_FONT_SRC,"frame-src":g.CUSTOM_CSP_FRAME_SRC};for(let[c,l]of Object.entries(i))if(l){let d=l.split(",").map(f=>f.trim()).filter(f=>Wm.test(f));n[c]=[...n[c]||[],...d]}let o=t.request?.get("x-budibase-embed")?.toLowerCase()==="true",a=t.user?.license?.features.includes("customAppScripts");if(o&&(n["frame-ancestors"]=["*"]),t.appId&&(o||a))try{let c=await Bs.getWorkspaceMetadata(t.appId);if("name"in c){if(a)for(let l of c.scripts||[]){let d=(l.cspWhitelist||"").split(`
|
|
37
|
+
`);for(let o of i.filter(a=>a))t.push(no.default.readFileSync(o))}return t.push(no.default.readFileSync(dA(pA))),Buffer.concat(t.map(n=>new Uint8Array(n)))}s(MP,"getLogReadStream");function FP(t){return typeof t=="object"&&t!==null&&!(t instanceof Error)}s(FP,"isPlainObject");function BP(t){return t instanceof Error}s(BP,"isError");function WP(t){return typeof t=="string"}s(WP,"isMessage");var Dr;if(!g.DISABLE_PINO_LOGGER){let t=g.LOG_LEVEL,e={level:t,formatters:{level:s(c=>({level:c.toUpperCase()}),"level"),bindings:s(()=>g.SELF_HOSTED?{service:g.SERVICE_NAME}:{},"bindings")},timestamp:s(()=>`,"timestamp":"${new Date(Date.now()).toISOString()}"`,"timestamp")},r=[];r.push(g.isDev()?{stream:(0,EA.default)({singleLine:!0}),level:t}:{stream:process.stdout,level:t}),g.SELF_HOSTED&&r.push({stream:bp(),level:t}),Dr=r.length?(0,Lu.default)(e,Lu.default.multistream(r)):(0,Lu.default)(e);let n=s(c=>{let l,d=[],f="";c.forEach(p=>{WP(p)&&(f=`${f} ${p}`.trimStart()),FP(p)&&d.push(p),BP(p)&&(l=p)});let m=u(),h={};h={tenantId:i(),appId:o(),automationId:a(),identityId:m?._id,identityType:m?.type,correlationId:Ep()};let T=vp.default.scope().active();T&&vp.default.inject(T.context(),yA.formats.LOG,h);let E={err:l,pid:process.pid,...h};if(d.length){let p={},y=0;for(let A=0;A<d.length;A++){let _=d[A],I=_._logKey;I?(delete _._logKey,E[I]=_):(p[y]=_,y++)}Object.keys(p).length&&(E.data=p)}return[E,f]},"getLogParams");console.log=(...c)=>{let[l,d]=n(c);Dr?.info(l,d)},console.info=(...c)=>{let[l,d]=n(c);Dr?.info(l,d)},console.warn=(...c)=>{let[l,d]=n(c);Dr?.warn(l,d)},console.error=(...c)=>{let[l,d]=n(c);Dr?.error(l,d)},console.trace=(...c)=>{let[l,d]=n(c);l.err||(l.err=new Error),Dr?.trace(l,d)},console.debug=(...c)=>{let[l,d]=n(c);Dr?.debug(l,d)};let i=s(()=>{let c;try{c=$()}catch{}return c},"getTenantId"),o=s(()=>{let c;try{c=He()}catch{}return c},"getAppId"),a=s(()=>{let c;try{c=xf()}catch{}return c},"getAutomationId"),u=s(()=>{let c;try{c=Vt()}catch{}return c},"getIdentity")}var Uu=Dr;var GP=["AccountError"];function $P(t){return t&&t.suppressAlert}s($P,"isSuppressed");function mn(t,e){e&&GP.includes(e.name)&&$P(e)||console.error(`bb-alert: ${t}`,e)}s(mn,"logAlert");function VP(t,e,r,n){t=`${t} - db: ${e} - doc: ${r} - error: `,mn(t,n)}s(VP,"logAlertWithInfo");function di(t,e){console.warn(`bb-warn: ${t}`,e)}s(di,"logWarn");var ku=class extends Error{static{s(this,"UnretriableError")}constructor(e){super(e),this.name="PermanentError"}},Pp=class{static{s(this,"QueuedProcessor")}constructor(e,r={}){let{maxAttempts:n=3,removeOnFail:i=!0,removeOnComplete:o=!0,maxStalledCount:a=3}=r;this.waitForCompletionMs=r.waitForCompletionMs||1e4,this._queue=new Et(e,{maxStalledCount:a,jobOptions:{attempts:n,removeOnFail:i,removeOnComplete:o}}),this._queue.process(async(u,c)=>{try{let l=await this.processFn(u.data);c?.(null,l)}catch(l){l instanceof ku&&await u.discard(),mn(`Failed to process job in ${this._queue.name}`,l),c?.(l)}})}async close(e){await this._queue.close(e)}async execute(e){try{let r=await this._queue.add(e);return{success:!0,result:await Ue.withTimeout(this.waitForCompletionMs,()=>r.finished())}}catch(r){if(r.errno!=="ETIME")throw r;return{success:!1,reason:"timeout"}}}};var qP=100,Mu,so=class t{static{s(this,"DocWritethroughProcessor")}static get queue(){return t._queue||(t._queue=new Et("docWritethroughQueue",{jobOptions:{attempts:qP}})),t._queue}init(){return t.queue.process(async e=>{try{await this.persistToDb(e.data)}catch(r){throw r.status===409?new Error(`Conflict persisting message ${e.id}. Attempt ${e.attemptsMade}`):r}}),this}async persistToDb({dbName:e,docId:r,data:n}){if(r.startsWith("scimlog"))return;let i=De(e),o;try{o=await i.get(r)}catch{o={_id:r}}o={...o,...n},await i.put(o)}},Lp=class{static{s(this,"DocWritethrough")}constructor(e,r){this.db=e,this._docId=r}get docId(){return this._docId}async patch(e){await so.queue.add({dbName:this.db.name,docId:this.docId,data:e})}};function TA(){return Mu=new so().init(),Mu}s(TA,"init");function KP(){return Mu||TA()}s(KP,"getProcessor");var Bu={};L(Bu,{CacheKey:()=>Oe,TTL:()=>fi,bustCache:()=>pi,destroy:()=>ao,get:()=>oo,increment:()=>AA,keys:()=>Fu,store:()=>gn,withCache:()=>br,withCacheWithDynamicTTL:()=>SA});function yt(t){let e=$();return`${t}:${e}`}s(yt,"generateTenantKey");var hn=class{static{s(this,"BaseCache")}constructor(e=void 0){this.client=e}async getClient(){return this.client?this.client:await Ff()}async keys(e){return(await this.getClient()).keys(e)}async exists(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).exists(e)}async scan(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).scan(e)}async get(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).get(e)}async bulkGet(e,r={useTenancy:!0}){return e=r.useTenancy?e.map(i=>yt(i)):e,(await this.getClient()).bulkGet(e)}async store(e,r,n=null,i={useTenancy:!0}){e=i.useTenancy?yt(e):e,await(await this.getClient()).store(e,r,n)}async bulkStore(e,r=null,n={useTenancy:!0}){n.useTenancy&&(e=Object.entries(e).reduce((o,[a,u])=>(o[yt(a)]=u,o),{})),await(await this.getClient()).bulkStore(e,r)}async delete(e,r={useTenancy:!0}){return e=r.useTenancy?yt(e):e,(await this.getClient()).delete(e)}async bulkDelete(e,r={useTenancy:!0}){return e=r.useTenancy?e.map(i=>yt(i)):e,(await this.getClient()).bulkDelete(e)}async withCache(e,r=null,n,i={useTenancy:!0}){let o=await this.get(e,i);if(o)return o;try{let a=await n();return await this.store(e,a,r,i),a}catch(a){throw console.error("Error fetching before cache - ",a),a}}async withCacheWithDynamicTTL(e,r,n={useTenancy:!0}){let i=await this.get(e,n);if(i)return i;try{let o=await r(),{value:a,ttl:u}=o;return await this.store(e,a,u,{useTenancy:n.useTenancy}),a}catch(o){throw console.error("Error fetching before cache - ",o),o}}async bustCache(e){let r=await this.getClient();try{await r.delete(yt(e))}catch(n){throw console.error("Error busting cache - ",n),n}}async increment(e,r,n={useTenancy:!0}){e=n.useTenancy?yt(e):e;let i=await this.getClient(),o=await i.increment(e);return r&&await i.setExpiry(e,r),o}async deleteIfValue(e,r,n={useTenancy:!0}){e=n.useTenancy?yt(e):e,await(await this.getClient()).deleteIfValue(e,r)}};var Cr=new hn,Oe={CHECKLIST:"checklist",INSTALLATION:"installation",ANALYTICS_ENABLED:"analyticsEnabled",UNIQUE_TENANT_ID:"uniqueTenantId",EVENTS:"events",BACKFILL_METADATA:"backfillMetadata",EVENTS_RATE_LIMIT:"eventsRateLimit",OAUTH2_TOKEN:s(t=>`oauth2Token_${t}`,"OAUTH2_TOKEN")},fi=(n=>(n[n.ONE_MINUTE=600]="ONE_MINUTE",n[n.ONE_HOUR=3600]="ONE_HOUR",n[n.ONE_DAY=86400]="ONE_DAY",n))(fi||{}),Fu=s((...t)=>Cr.keys(...t),"keys"),oo=s((...t)=>Cr.get(...t),"get"),gn=s((...t)=>Cr.store(...t),"store"),ao=s((...t)=>Cr.delete(...t),"destroy"),br=s((...t)=>Cr.withCache(...t),"withCache"),SA=s((...t)=>Cr.withCacheWithDynamicTTL(...t),"withCacheWithDynamicTTL"),pi=s((...t)=>Cr.bustCache(...t),"bustCache"),AA=s((...t)=>Cr.increment(...t),"increment");var Fp={};L(Fp,{createCode:()=>ZP,deleteCode:()=>tN,getCode:()=>eN,getExistingInvites:()=>Mp,getInviteCodes:()=>CA,updateCode:()=>XP});var yn={};L(yn,{AUTO_EXTEND_POLLING_MS:()=>IA,doWithLock:()=>uo,newRedlock:()=>En});var OA=W(require("redlock"));async function QP(t,e){if(t==="custom")return En(e);switch(t){case"try_once":return En(mi.TRY_ONCE);case"try_twice":return En(mi.TRY_TWICE);case"default":return En(mi.DEFAULT);case"delay_500":return En(mi.DELAY_500);case"auto_extend":return En(mi.AUTO_EXTEND);default:throw wt.unreachable(t)}}s(QP,"getClient");var mi={TRY_ONCE:{retryCount:0},TRY_TWICE:{retryCount:1},DEFAULT:{driftFactor:.01,retryCount:10,retryDelay:200,retryJitter:100},DELAY_500:{retryDelay:500},CUSTOM:{},AUTO_EXTEND:{retryCount:-1}};async function En(t={}){let e={...mi.DEFAULT,...t},n=(await Wf()).client;return new OA.default([n],e)}s(En,"newRedlock");function jP(t){let r=`lock:${t.systemLock?"system":$()}_${t.name}`;return t.resource&&(r=r+`_${t.resource}`),r}s(jP,"getLockName");var IA=me.fromSeconds(10).toMs();async function uo(t,e){let r=await QP(t.type,t.customOptions),n,i,o,a=!1;try{let u=jP(t),c=t.type==="auto_extend"?IA:t.ttl;if(n=await r.lock(u,c),t.type==="auto_extend"){let d=s(()=>{i=setTimeout(async()=>{a||(o=(async()=>{n=await n.extend(c,()=>t.onExtend&&t.onExtend())})(),await o,o=void 0,d())},c/2)},"extendInIntervals");d()}return{executed:!0,result:await e()}}catch(u){if(u.name==="LockError"){if(t.type==="try_once")return{executed:!1};throw u}else throw u}finally{a=!0,clearTimeout(i),await o?.catch(()=>{}),await n?.unlock()}}s(uo,"doWithLock");var wA=me.fromDays(7).toSeconds(),YP=me.fromSeconds(10).toMs(),Wu="Invitation is not valid or has expired, please request a new one.";function RA(t,e){if(!t)return null;let r=t.tenantId||e;return r?{tenantId:r,invites:t.invites||{}}:null}s(RA,"normaliseInviteList");function zP(t){let e=!1,r=Date.now();for(let[n,i]of Object.entries(t.invites))(!i?.expiresAt||i.expiresAt<=r)&&(delete t.invites[n],e=!0);return{list:t,changed:e}}s(zP,"pruneExpiredInvites");async function kp(t){let r=await(await Ms()).get(t);return RA(r,t)}s(kp,"loadInviteList");async function co(t,e){await(await Ms()).store(t,e)}s(co,"saveInviteList");async function lo(t,e){let{result:r}=await uo({type:"default",name:"process_user_invite",systemLock:!0,resource:t,ttl:YP},e);return r}s(lo,"withInviteListLock");function JP(t,e){return{code:t,email:e.email,info:e.info}}s(JP,"toInviteWithCode");async function DA(t,e){let r=await Ms(),n=RA(await r.get(e),e);if(!n)throw new Error(Wu);if(!Object.keys(n.invites).includes(t))throw new Error(Wu);return{list:n,invite:n.invites[t]}}s(DA,"findInviteInList");async function XP(t,e){let r={...e.info},n=r.tenantId||$();r.tenantId=n,await lo(n,async()=>{let i=await kp(n)||{tenantId:n,invites:{}};i.invites[t]={email:e.email,info:r,expiresAt:Date.now()+wA*1e3},await co(n,i)})}s(XP,"updateCode");async function ZP(t,e){let r=Z(),n={...e||{}},i=n.tenantId||$();return n.tenantId=i,await lo(i,async()=>{let o=await kp(i)||{tenantId:i,invites:{}};o.invites[r]={email:t,info:n,expiresAt:Date.now()+wA*1e3},await co(i,o)}),r}s(ZP,"createCode");async function eN(t,e){let r=e||$();return await lo(r,async()=>{let n=await DA(t,r),{list:i,invite:o}=n;if(o.expiresAt<=Date.now())throw delete i.invites[t],await co(i.tenantId,i),new Error(Wu);return{email:o.email,info:o.info}})}s(eN,"getCode");async function tN(t,e){let r=e||$();try{await lo(r,async()=>{let n=await DA(t,r);delete n.list.invites[t],await co(n.list.tenantId,n.list)})}catch(n){if(n instanceof Error&&n.message===Wu)return;throw n}}s(tN,"deleteCode");async function CA(){let t=$(),e=await lo(t,async()=>{let n=await kp(t)||{tenantId:t,invites:{}},i=zP(n);return n=i.list,i.changed&&await co(t,n),n}),r=new Map;for(let[n,i]of Object.entries(e.invites))r.set(n,JP(n,i));return Array.from(r.values())}s(CA,"getInviteCodes");async function Mp(t){let e=new Set(t.map(r=>r.toLowerCase()));return(await CA()).filter(r=>e.has(r.email.toLowerCase()))}s(Mp,"getExistingInvites");var Bp={};L(Bp,{createCode:()=>nN,getCode:()=>iN,invalidateCode:()=>sN});var rN=me.fromHours(1).toSeconds();async function nN(t,e){let r=Z();return await(await Fs()).store(r,{userId:t,info:e},rN),r}s(nN,"createCode");async function iN(t){let r=await(await Fs()).get(t);if(!r)throw new Error("Provided information is not valid, cannot reset password - please try again.");return r}s(iN,"getCode");async function sN(t){await(await Fs()).delete(t)}s(sN,"invalidateCode");var tr={};L(tr,{getUser:()=>bo,getUsers:()=>K0,invalidateUser:()=>xo,invalidateUsers:()=>Q0});var fo={};L(fo,{getPlatformDB:()=>xr,users:()=>Tt});var Tt={};L(Tt,{addSsoUser:()=>xA,addUser:()=>dN,getUserDoc:()=>bA,lookupTenantId:()=>oN,removeUser:()=>fN,updateUserDoc:()=>aN});function xr(){return De(pe.PLATFORM_INFO.name)}s(xr,"getPlatformDB");async function oN(t){return g.MULTI_TENANCY?(await bA(t)).tenantId:ce}s(oN,"lookupTenantId");async function bA(t){return xr().get(t)}s(bA,"getUserDoc");async function aN(t){await xr().put(t)}s(aN,"updateUserDoc");function uN(t,e){return{_id:t,tenantId:e}}s(uN,"newUserIdDoc");function cN(t,e,r){return{_id:e,userId:t,tenantId:r}}s(cN,"newUserEmailDoc");function lN(t,e,r,n){return{_id:t,userId:r,email:e,tenantId:n}}s(lN,"newUserSsoIdDoc");async function Wp(t,e){let r=xr(),n;try{await r.get(t)}catch(i){if(i.status===404)n=e(),await r.put(n);else throw i}}s(Wp,"addUserDoc");async function xA(t,e,r,n){return Wp(t,()=>lN(t,e,r,n))}s(xA,"addSsoUser");async function dN(t,e,r,n){let i=[Wp(e,()=>uN(e,t)),Wp(r,()=>cN(e,r,t))];n&&i.push(xA(n,r,e,t)),await Promise.all(i)}s(dN,"addUser");async function fN(t){let e=xr(),r=[t._id,t.email],n=await e.allDocs({keys:r,include_docs:!0});await e.bulkRemove(n.rows.map(i=>i.doc),{silenceErrors:!0})}s(fN,"removeUser");var Sn={};L(Sn,{getAccount:()=>vr,getAccountByTenantId:()=>hi,getStatus:()=>pN});var vA=W(require("node-fetch"));var Tn=class{static{s(this,"API")}constructor(e){this.host=e}async apiCall(e,r,n){n.headers||(n.headers={}),n.headers["Content-Type"]||(n.headers={"Content-Type":"application/json",Accept:"application/json",...n.headers});let i=n.headers["Content-Type"]==="application/json";Xs.setHeader(n.headers);let o={method:e,body:i?JSON.stringify(n.body):n.body,headers:n.headers,credentials:"include"};return await(0,vA.default)(`${this.host}${r}`,o)}async post(e,r){return this.apiCall("POST",e,r)}async get(e,r){return this.apiCall("GET",e,r)}async patch(e,r){return this.apiCall("PATCH",e,r)}async del(e,r){return this.apiCall("DELETE",e,r)}async put(e,r){return this.apiCall("PUT",e,r)}};var Gp=new Tn(g.INTERNAL_ACCOUNT_PORTAL_URL),$p=g.SELF_HOSTED||g.DISABLE_ACCOUNT_PORTAL,vr=s(async t=>{if($p)return;let e={email:t},r=await Gp.post("/api/accounts/search",{body:e,headers:{"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY}});if(r.status!==200)throw new Error(`Error getting account by email ${t}`);return(await r.json())[0]},"getAccount"),hi=s(async t=>{if($p)return;let e={tenantId:t},r=await Gp.post("/api/accounts/search",{body:e,headers:{"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY}});if(r.status!==200)throw new Error(`Error getting account by tenantId ${t}`);return(await r.json())[0]},"getAccountByTenantId"),pN=s(async()=>{if($p)return;let t=await Gp.get("/api/status",{headers:{"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY}}),e=await t.json();if(t.status!==200)throw new Error("Error getting status");return e},"getStatus");var Ai={};L(Ai,{UserDB:()=>Pt,addAppBuilder:()=>G0,bulkGetGlobalUsersById:()=>uc,bulkUpdateGlobalUsers:()=>Ro,cleanseUserObject:()=>dm,creatorsInList:()=>Nr,doesUserExist:()=>k0,getAccountHolderFromUsers:()=>ac,getAllUserIds:()=>L0,getAllUsers:()=>U0,getById:()=>On,getCreatorCount:()=>B0,getExistingAccounts:()=>Si,getExistingPlatformUsers:()=>p_,getExistingTenantUsers:()=>f_,getFirstPlatformUser:()=>Io,getGlobalUserByAppPage:()=>S_,getGlobalUserByEmail:()=>_t,getPlatformUsers:()=>nc,getUserCount:()=>F0,hasAdminPermissions:()=>Pr,hasAppBuilderPermissions:()=>g_,hasBuilderPermissions:()=>Fe,isAdmin:()=>vt,isAdminOrBuilder:()=>h_,isAdminOrWorkspaceBuilder:()=>ic,isBuilder:()=>Ii,isCreatorAsync:()=>wo,isCreatorSync:()=>sc,isGlobalBuilder:()=>m_,paginatedUsers:()=>__,removeAppBuilder:()=>$0,removePortalUserPermissions:()=>W0,searchExistingEmails:()=>om,searchGlobalUsersByApp:()=>T_,searchGlobalUsersByAppAccess:()=>lm,searchGlobalUsersByEmail:()=>A_,validateUniqueUser:()=>oc});var Yu={};L(Yu,{ActiveContentFileError:()=>Vu,BadRequestError:()=>mo,BudibaseError:()=>po,EmailUnavailableError:()=>Xt,FeatureDisabledError:()=>Qu,ForbiddenError:()=>qu,HTTPError:()=>Me,NotFoundError:()=>$u,NotImplementedError:()=>Ku,UnexpectedError:()=>Gu,UsageLimitError:()=>ju,getErrorMessage:()=>PA,getPublicError:()=>Hu});var po=class extends Error{static{s(this,"BudibaseError")}constructor(e,r){super(e),this.code=r}};function PA(t){if(t==null)return"No error provided.";if(t instanceof Error)return t.message;if(typeof t=="string")return t;if(typeof t=="object"&&"message"in t)return String(t.message);try{let r=JSON.stringify(t);if(r!=="{}")return r}catch{}let e=String(t);return e!=="[object Object]"?e:"An unknown error occurred"}s(PA,"getErrorMessage");var Hu=s(t=>{let e;return t.code&&(e={code:t.code},t.getPublicError&&(e={...e,...t.getPublicError()})),e},"getPublicError"),Me=class t extends po{static{s(this,"HTTPError")}constructor(e,r,n="http"){super(e,n),this.status=r}static async fromResponse(e){let r=await e.text(),n=r,i=e.status,o="http";try{let a=JSON.parse(r);n=a.error?.message||a.message,i=a.status??e.status,o=a.error?.code??e.statusText}catch{}return new t(n,i,o)}},Gu=class extends Me{static{s(this,"UnexpectedError")}constructor(e){super(e,500)}},$u=class extends Me{static{s(this,"NotFoundError")}constructor(e){super(e,404)}},mo=class extends Me{static{s(this,"BadRequestError")}constructor(e){super(e,400)}},Vu=class extends mo{static{s(this,"ActiveContentFileError")}constructor(e){super(`File "${e}" contains active content which is not permitted`)}},qu=class extends Me{static{s(this,"ForbiddenError")}constructor(e){super(e,403)}},Ku=class extends Me{static{s(this,"NotImplementedError")}constructor(e){super(e,501)}},Qu=class extends Error{static{s(this,"FeatureDisabledError")}constructor(e){super(`Feature disabled: '${e}'`)}},ju=class extends Error{static{s(this,"UsageLimitError")}constructor(e){super(`Usage limit exceeded: '${e}'`)}},Xt=class extends Error{static{s(this,"EmailUnavailableError")}constructor(e){super(`Email already in use: '${e}'`)}};var Qp={};L(Qp,{PASSWORD_MAX_LENGTH:()=>qp,PASSWORD_MIN_LENGTH:()=>Vp,validatePassword:()=>Kp});var Vp=+(g.PASSWORD_MIN_LENGTH||12),qp=+(g.PASSWORD_MAX_LENGTH||512);function Kp(t){return!t||t.length<Vp?{valid:!1,error:`Password invalid. Minimum ${Vp} characters.`}:t.length>qp?{valid:!1,error:`Password invalid. Maximum ${qp} characters.`}:{valid:!0}}s(Kp,"validatePassword");var zu={};L(zu,{createASession:()=>mN,endSession:()=>hN,getSession:()=>Hp,getSessionsForUser:()=>ho,invalidateSessions:()=>An,updateSessionTTL:()=>jp});var LA=require("uuid");var UA=yu();function gi(t,e){return`${t}/${e}`}s(gi,"makeSessionID");async function ho(t){return t?(await(await Sr()).scan(t)).map(n=>n.value):(console.trace("Cannot get sessions for undefined userId"),[])}s(ho,"getSessionsForUser");async function An(t,e={}){try{let r=e?.reason||"unknown",n=e.sessionIds||[],i;if(n.length===0?i=(await ho(t)).map(a=>({key:gi(a.userId,a.sessionId)})):(n=Array.isArray(n)?n:[n],i=n.map(o=>({key:gi(t,o)}))),i&&i.length>0){let o=await Sr(),a=[];for(let u of i)a.push(o.delete(u.key));g.isTest()||di(`Invalidating sessions for ${t} (reason: ${r}) - ${i.map(u=>u.key).join(", ")}`),await Promise.all(a)}}catch(r){console.error(`Error invalidating sessions: ${r}`)}}s(An,"invalidateSessions");async function mN(t,e){let r=await ho(t),n=0;if(r.length>=3){let l=r.sort((m,h)=>new Date(m.createdAt).getTime()-new Date(h.createdAt).getTime()),d=r.length-3+1,f=l.slice(0,d).map(m=>m.sessionId);n=f.length,await An(t,{sessionIds:f,reason:"session limit exceeded"})}let i=await Sr(),o=e.sessionId,a=e.csrfToken?e.csrfToken:(0,LA.v4)(),u=gi(t,o),c={...e,csrfToken:a,createdAt:new Date().toISOString(),lastAccessedAt:new Date().toISOString(),userId:t};return await i.store(u,c,UA),{session:c,invalidatedSessionCount:n}}s(mN,"createASession");async function jp(t){let e=await Sr(),r=gi(t.userId,t.sessionId);t.lastAccessedAt=new Date().toISOString(),await e.store(r,t,UA)}s(jp,"updateSessionTTL");async function hN(t,e){await(await Sr()).delete(gi(t,e))}s(hN,"endSession");async function Hp(t,e){if(!t||!e)throw new Error(`Invalid session details - ${t} - ${e}`);let n=await(await Sr()).get(gi(t,e));if(!n)throw new Error(`Session not found - ${t} - ${e}`);return n}s(Hp,"getSession");var Ti={};L(Ti,{account:()=>GA,action:()=>$A,ai:()=>VA,analytics:()=>Yp,app:()=>qA,asyncEventQueue:()=>St,auditLog:()=>KA,auth:()=>rc,automation:()=>QA,backfill:()=>jA,backfillCache:()=>Zu,backup:()=>HA,datasource:()=>YA,email:()=>zA,environmentVariable:()=>JA,group:()=>XA,identification:()=>At,initAsyncEvents:()=>A0,installation:()=>yo,layout:()=>ZA,license:()=>e_,org:()=>t_,plugin:()=>r_,processors:()=>tm,publishEvent:()=>S,query:()=>n_,resource:()=>i_,role:()=>Oo,rowAction:()=>s_,rows:()=>o_,screen:()=>a_,serve:()=>u_,shutdown:()=>_0,table:()=>c_,user:()=>Be,view:()=>l_,workspace:()=>d_});var Yp={};L(Yp,{enabled:()=>gN});var gN=s(async()=>Ju(),"enabled");var St;function Xu(){St=new Et("systemEventQueue",{jobTags:s(t=>({"event.name":t.event}),"jobTags")})}s(Xu,"init");async function kA(){St&&await St.close()}s(kA,"shutdown");async function MA(t){St||Xu();let{event:e,identity:r}=t;lh.indexOf(e)!==-1&&r.tenantId&&await St.add(t)}s(MA,"publishAsyncEvent");var Zu={};L(Zu,{end:()=>yN,isAlreadySent:()=>Xp,isBackfillingEvent:()=>Jp,recordEvent:()=>zp,start:()=>EN});var EN=s(async t=>SN({eventWhitelist:t}),"start"),zp=s(async(t,e)=>{let r=Zp(t,e);await gn(r,e,void 0,{useTenancy:!1})},"recordEvent"),yN=s(async()=>{await AN(),await _N()},"end"),TN=s(async()=>oo(Oe.BACKFILL_METADATA),"getBackfillMetadata"),SN=s(async t=>gn(Oe.BACKFILL_METADATA,t),"saveBackfillMetadata"),AN=s(async()=>{await ao(Oe.BACKFILL_METADATA)},"deleteBackfillMetadata"),_N=s(async()=>{let t=Zp(),e=await Fu(t);for(let r of e)await ao(r,{useTenancy:!1})},"clearEvents"),Jp=s(async t=>{let r=(await TN())?.eventWhitelist;return!!(r&&r.includes(t))},"isBackfillingEvent"),Xp=s(async(t,e)=>{let r=Zp(t,e);return!!await oo(r,{useTenancy:!1})},"isAlreadySent"),ON={"automation:created":t=>t.automationId,"automation:step:created":t=>t.stepId,"datasource:created":t=>t.datasourceId,"layout:created":t=>t.layoutId,"query:created":t=>t.queryId,"role:created":t=>t.roleId,"screen:created":t=>t.screenId,"table:created":t=>t.tableId,"view:created":t=>t.tableId,"view:calculation:created":t=>t.tableId,"view:filter:created":t=>t.tableId,"app:created":t=>t.appId,"app:published":t=>t.appId,"auth:sso:created":t=>t.type,"auth:sso:activated":t=>t.type,"user:created":t=>t.userId,"user:admin:assigned":t=>t.userId,"user:builder:assigned":t=>t.userId,"role:assigned":t=>`${t.roleId}-${t.userId}`},Zp=s((t,e)=>{let r,n=$();if(t){r=`${Oe.EVENTS}:${n}:${t}`;let i=ON[t],o=i?i(e):void 0;o&&(r=`${r}:${o}`)}else r=`${Oe.EVENTS}:${n}:*`;return r},"getEventKey");var tm={};L(tm,{init:()=>CN,processors:()=>er});var em=g.SELF_HOSTED&&!g.isDev(),go=class{static{s(this,"LoggingProcessor")}async processEvent(e,r,n){em||console.log(`[audit] [identityType=${r.type}] ${e}`,n)}async identify(e){em||console.log("[audit] identified",e)}async identifyGroup(e){em||console.log("[audit] group identified",e)}async shutdown(){}};var Ei=class t{static{s(this,"AuditLogsProcessor")}static{this.auditLogsEnabled=!1}static init(e){t.auditLogsEnabled=!0;let r=e;return t.auditLogQueue=new Et("auditLogQueue",{jobTags:s(n=>({"event.name":n.event}),"jobTags")}),t.auditLogQueue.process(async n=>{await Ce(n.data.tenantId,async()=>{let i=n.data.properties;i.audited&&(i={...i,...i.audited},delete i.audited);let o={};g.ENABLE_AUDIT_LOG_IP_ADDR&&(o=n.data.opts.hostInfo),await r(n.data.event,i,{userId:n.data.opts.userId,timestamp:n.data.opts.timestamp,appId:n.data.opts.appId,hostInfo:o})})})}async processEvent(e,r,n,i){if(t.auditLogsEnabled&&np(e)){let o=r.type==="user"?r.id:void 0;await t.auditLogQueue.add({event:e,properties:n,opts:{userId:o,timestamp:i,appId:He(),hostInfo:r.hostInfo},tenantId:$()})}}async identify(){}async identifyGroup(){}async shutdown(){await t.auditLogQueue?.close()}};var FA=require("uuid");var IN=new Tn(g.INTERNAL_ACCOUNT_PORTAL_URL),yi=class t{static{s(this,"EventBrokerProcessor")}static init(e){t.getLicenseKeyFn=e}async processEvent(e,r,n,i){if(g.DISABLE_ACCOUNT_PORTAL)return;let o;if(g.SELF_HOSTED){if(!t.getLicenseKeyFn)return;let c=await t.getLicenseKeyFn();if(!c)return;o={"x-budibase-license-key":c}}else o={"x-budibase-api-key":g.ACCOUNT_PORTAL_API_KEY},r.tenantId&&(o["x-budibase-tenant-id"]=r.tenantId);let a=He(),u={id:(0,FA.v4)(),type:e,identity:r,properties:{...n,version:g.VERSION,service:g.SERVICE,environment:r.environment,hosting:r.hosting,...a&&{appId:a},...r.installationId&&{installationId:r.installationId},...r.tenantId&&{tenantId:r.tenantId}},timestamp:i===void 0?Date.now():new Date(i).getTime()};try{let c=await IN.post("/api/v2/analytics/event",{headers:o,body:u});c.ok||console.warn(`[EventBrokerProcessor] unexpected response status: ${c.status}`)}catch(c){console.error(`[EventBrokerProcessor] failed to send event: ${c}`)}}};var Eo=class{constructor(e){this.initialised=!1;this.processors=[];this.processors=e}static{s(this,"Processor")}async processEvent(e,r,n,i){for(let o of this.processors)await o.processEvent(e,r,n,i)}async identify(e,r){for(let n of this.processors)n.identify&&await n.identify(e,r)}async identifyGroup(e,r){for(let n of this.processors)n.identifyGroup&&await n.identifyGroup(e,r)}async shutdown(){for(let e of this.processors)e.shutdown&&await e.shutdown()}};var wN=new go,RN=new Ei,DN=new yi;function CN(t,e){return yi.init(e),Ei.init(t)}s(CN,"init");var er=new Eo([wN,RN,DN]);var ec={};L(ec,{checkInstallVersion:()=>vN,getInstall:()=>To,getInstallFromDB:()=>nm});var rm=W(require("semver"));var To=s(async()=>br(Oe.INSTALLATION,86400,nm,{useTenancy:!1}),"getInstall");async function bN(t){let e={_id:pe.PLATFORM_INFO.docs.install,installId:Z(),version:g.VERSION};try{let r=await t.put(e);return e._rev=r.rev,e}catch(r){if(r.status===409)return nm();throw r}}s(bN,"createInstallDoc");var nm=s(async()=>Qe(pe.PLATFORM_INFO.name,async t=>{let e;try{e=await t.get(pe.PLATFORM_INFO.docs.install)}catch(r){if(r.status===404)e=await bN(t);else throw r}return e}),"getInstallFromDB"),xN=s(async t=>{try{await Qe(pe.PLATFORM_INFO.name,async e=>{let r=await To();r.version=t,await e.put(r),await pi(Oe.INSTALLATION)})}catch(e){if(e.status===409)return!1;throw e}return!0},"updateVersion"),vN=s(async()=>{let t=await To(),e=t.version,r=g.VERSION;try{if(e!==r){let n=rm.default.gt(r,e),i=rm.default.lt(r,e);await xN(r)&&(await vs({_id:t.installId,type:"installation"},async()=>{n?await yo.upgraded(e,r):i&&await yo.downgraded(e,r)}),await At.identifyInstallationGroup(t.installId))}}catch(n){n?.message?.includes("Invalid Version")?mn(`Invalid version "${r}" - is it semver?`):mn("Failed to retrieve version",n)}},"checkInstallVersion");var PN=s(async()=>{let t=ff(),e=_o(),r;if(t?r=t.type:r="tenant",r==="installation"){let n=await _n(),i=So();return{id:BA(n,r),hosting:i,type:r,installationId:n,environment:e}}else if(r==="tenant"){let n=await _n(),i=await tc($()),o=So();return{id:BA(i,r),type:r,hosting:o,installationId:n,tenantId:i,realTenantId:$(),environment:e}}else if(r==="user"){let n=t,i=await tc($()),o=await _n(),a=n.account,u;return a?u=a.hosting:u=So(),{id:n._id,type:r,hosting:u,installationId:o,tenantId:i,environment:e,realTenantId:$(),hostInfo:n.hostInfo}}else throw new Error("Unknown identity type")},"getCurrentIdentity"),NN=s(async(t,e)=>{let r=t,n="installation",i=So(),o=g.VERSION,a=_o(),u={id:r,type:n,hosting:i,version:o,environment:a};await im(u,e),await Ao({...u,id:`$${n}_${r}`},e)},"identifyInstallationGroup"),LN=s(async(t,e,r,n=g.VERSION)=>{let i=await tc(t),o="tenant",a=await _n(),u=_o(),c={id:i,type:o,hosting:e,environment:u,installationId:a,createdAt:r,createdVersion:n};await im(c,r),await Ao({...c,id:`$${o}_${i}`},r)},"identifyTenantGroup"),UN=s(async(t,e,r)=>{let n=t._id,i=await tc(t.tenantId),o="user",a=Fe(t),u=Pr(t),c;jo(t)&&(c=t.providerType);let d=(await Si([t.email])).length>0,f=!!e&&d&&e.verified,m=await _n(),h=e?e.hosting:So(),T=_o();await Ao({id:n,type:o,hosting:h,installationId:m,tenantId:i,verified:f,accountHolder:d,providerType:c,builder:a,admin:u,environment:T},r)},"identifyUser"),kN=s(async t=>{let e=t.accountId,r=t.tenantId,n="user",i=Qo(t)?t.providerType:void 0,o=t.verified,a=!0,u=t.hosting,c=await _n(),l=_o();if(Ko(t)){let f=await _t(t.email);f?._id&&(e=f._id)}await Ao({id:e,type:n,hosting:u,installationId:c,tenantId:r,providerType:i,verified:o,accountHolder:a,environment:l})},"identifyAccount"),Ao=s(async(t,e)=>{await er.identify(t,e)},"identify"),im=s(async(t,e)=>{await er.identifyGroup(t,e)},"identifyGroup"),_o=s(()=>g.isDev()?"development":g.DEPLOYMENT_ENVIRONMENT,"getDeploymentEnvironment"),So=s(()=>g.SELF_HOSTED?"self":"cloud","getHostingFromEnv"),_n=s(async()=>MN()?"account-portal":(await To()).installId,"getInstallationId"),tc=s(async t=>g.SELF_HOSTED?WA(t):t,"getEventTenantId"),WA=s(async t=>Ce(t,()=>br(Oe.UNIQUE_TENANT_ID,86400,async()=>{let e=Y(),r=await _i(),n;return r.config.uniqueTenantId?r.config.uniqueTenantId:(n=`${Z()}_${t}`,r.config.uniqueTenantId=n,r.config.createdVersion=g.VERSION,await e.put(r),n)})),"getUniqueTenantId"),MN=s(()=>g.SERVICE==="account-portal","isAccountPortal"),BA=s((t,e)=>e==="installation"||e==="tenant"?`$${e}_${t}`:t,"formatDistinctId"),At={getCurrentIdentity:PN,identifyInstallationGroup:NN,identifyTenantGroup:LN,identifyUser:UN,identifyAccount:kN,identify:Ao,identifyGroup:im,getInstallationId:_n,getUniqueTenantId:WA};var S=s(async(t,e,r,n)=>{let i=n||await At.getCurrentIdentity();if(!(n?!1:await Jp(t))){await MA({event:t,identity:i,properties:e,timestamp:r}),await er.processEvent(t,i,e,r);return}await Xp(t,e)||(await er.processEvent(t,i,e,r),await zp(t,e))},"publishEvent");async function FN(t,e){let r={tenantId:t.tenantId};await S("account:created",r,void 0,e)}s(FN,"created");async function BN(t){let e={tenantId:t.tenantId};await S("account:deleted",e)}s(BN,"deleted");async function WN(t){let e={tenantId:t.tenantId};await S("account:verified",e)}s(WN,"verified");var GA={created:FN,deleted:BN,verified:WN};function GN(t,e){S("action:automation_step:executed",t,e).catch(r=>{console.error("automationStepExecuted telemetry failed",{action:t,err:r})})}s(GN,"automationStepExecuted");function $N(t){S("action:automation_step:failed",t).catch(e=>{console.error("automationStepFailed telemetry failed",{action:t,err:e})})}s($N,"automationStepFailed");function VN(t,e){S("action:crud:executed",t,e).catch(r=>{console.error("crudExecuted telemetry failed",{action:t,err:r})})}s(VN,"crudExecuted");function qN(t){S("action:crud:failed",t).catch(e=>{console.error("crudFailed telemetry failed",{action:t,err:e})})}s(qN,"crudFailed");function KN(t,e){S("action:ai_agent:executed",t,e).catch(r=>{console.error("aiAgentExecuted telemetry failed",{action:t,err:r})})}s(KN,"aiAgentExecuted");function QN(t){S("action:ai_agent:failed",t).catch(e=>{console.error("aiAgentFailed telemetry failed",{action:t,err:e})})}s(QN,"aiAgentFailed");var $A={aiAgentExecuted:KN,aiAgentFailed:QN,automationStepExecuted:GN,automationStepFailed:$N,crudExecuted:VN,crudFailed:qN};function jN(t,e){let r={configId:t._id,audited:{name:t.name}};S("ai:config:created",r,e).catch(n=>{console.error("configCreated telemetry failed",{configId:t._id,err:n})})}s(jN,"configCreated");function HN(t){let e={configId:t._id,audited:{name:t.name}};S("ai:config:updated",e).catch(r=>{console.error("configUpdated telemetry failed",{configId:t._id,err:r})})}s(HN,"configUpdated");function YN(t){let e={configId:t._id,audited:{name:t.name}};S("ai:config:deleted",e).catch(r=>{console.error("configDeleted telemetry failed",{configId:t._id,err:r})})}s(YN,"configDeleted");function zN(t){let e={agentId:t._id,audited:{name:t.name}};S("ai:agent:created",e).catch(r=>{console.error("agentCreated telemetry failed",{agentId:t._id,err:r})})}s(zN,"agentCreated");function JN(t){let e={agentId:t._id,audited:{name:t.name}};S("ai:agent:updated",e).catch(r=>{console.error("agentUpdated telemetry failed",{agentId:t._id,err:r})})}s(JN,"agentUpdated");function XN(t){let e={agentId:t._id,audited:{name:t.name}};S("ai:agent:deleted",e).catch(r=>{console.error("agentDeleted telemetry failed",{agentId:t._id,err:r})})}s(XN,"agentDeleted");function ZN(t){S("rag:file:uploaded",t).catch(e=>{console.error("ragFileUploaded telemetry failed",{event:t,err:e})})}s(ZN,"ragFileUploaded");function eL(t){S("rag:file:deleted",t).catch(e=>{console.error("ragFileDeleted telemetry failed",{event:t,err:e})})}s(eL,"ragFileDeleted");function tL(t){S("rag:file:sharepoint:connected",t).catch(e=>{console.error("ragFileSharePointConnected telemetry failed",{event:t,err:e})})}s(tL,"ragFileSharePointConnected");function rL(t){S("rag:file:sharepoint:disconnected",t).catch(e=>{console.error("ragFileSharePointDisconnected telemetry failed",{event:t,err:e})})}s(rL,"ragFileSharePointDisconnected");function nL(t){S("rag:file:processed",t).catch(e=>{console.error("ragFileProcessed telemetry failed",{event:t,err:e})})}s(nL,"ragFileProcessed");function iL(t){S("rag:file:sharepoint:sync",t).catch(e=>{console.error("ragFileSharePointSync telemetry failed",{event:t,err:e})})}s(iL,"ragFileSharePointSync");var VA={configCreated:jN,configUpdated:HN,configDeleted:YN,agentCreated:zN,agentUpdated:JN,agentDeleted:XN,ragFileUploaded:ZN,ragFileDeleted:eL,ragFileSharePointConnected:tL,ragFileSharePointDisconnected:rL,ragFileSharePointSync:iL,ragFileProcessed:nL};var sL=s(async(t,e)=>{let r={appId:t.appId,version:t.version,audited:{name:t.name}};await S("app:created",r,e)},"created");async function oL(t){let e={appId:t.appId,version:t.version,audited:{name:t.name}};await S("app:updated",e)}s(oL,"updated");async function aL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:deleted",e)}s(aL,"deleted");async function uL(t,e){let r={appId:t.appId,audited:{name:t.name}};await S("app:published",r,e)}s(uL,"published");async function cL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:unpublished",e)}s(cL,"unpublished");async function lL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:file:imported",e)}s(lL,"fileImported");async function dL(t,e){let r={duplicateAppId:e,appId:t.appId,audited:{name:t.name}};await S("app:duplicated",r)}s(dL,"duplicated");async function fL(t,e){let r={appId:t.appId,templateKey:e,audited:{name:t.name}};await S("app:template:imported",r)}s(fL,"templateImported");async function pL(t,e,r){let n={appId:t.appId,currentVersion:e,updatedToVersion:r,audited:{name:t.name}};await S("app:version:updated",n)}s(pL,"versionUpdated");async function mL(t,e,r){let n={appId:t.appId,currentVersion:e,revertedToVersion:r,audited:{name:t.name}};await S("app:version:reverted",n)}s(mL,"versionReverted");async function hL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:reverted",e)}s(hL,"reverted");async function gL(t){let e={appId:t.appId,audited:{name:t.name}};await S("app:exported",e)}s(gL,"exported");var qA={created:sL,updated:oL,deleted:aL,published:uL,unpublished:cL,fileImported:lL,duplicated:dL,templateImported:fL,versionUpdated:pL,versionReverted:mL,reverted:hL,exported:gL};async function EL(t){let e={filters:t};await S("audit_log:filtered",e)}s(EL,"filtered");async function yL(t){let e={filters:t};await S("audit_log:downloaded",e)}s(yL,"downloaded");var KA={filtered:EL,downloaded:yL};async function TL(t,e){let n={userId:(await At.getCurrentIdentity()).id,source:t,audited:{email:e}};await S("auth:login",n)}s(TL,"login");async function SL(t){let r={userId:(await At.getCurrentIdentity()).id,audited:{email:t}};await S("auth:logout",r)}s(SL,"logout");async function AL(t,e){let r={type:t};await S("auth:sso:created",r,e)}s(AL,"SSOCreated");async function _L(t){let e={type:t};await S("auth:sso:updated",e)}s(_L,"SSOUpdated");async function OL(t,e){let r={type:t};await S("auth:sso:activated",r,e)}s(OL,"SSOActivated");async function IL(t){let e={type:t};await S("auth:sso:deactivated",e)}s(IL,"SSODeactivated");var rc={login:TL,logout:SL,SSOCreated:AL,SSOUpdated:_L,SSOActivated:OL,SSODeactivated:IL};async function wL(t,e){let r={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,audited:{name:t.name}};await S("automation:created",r,e)}s(wL,"created");async function RL(t){let e={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId};await S("automation:trigger:updated",e)}s(RL,"triggerUpdated");async function DL(t){let e={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,audited:{name:t.name}};await S("automation:deleted",e)}s(DL,"deleted");async function CL(t){let e={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId};await S("automation:tested",e)}s(CL,"tested");var bL=s(async(t,e)=>{let r={count:t};await S("automations:run",r,e)},"run");async function xL(t,e,r){let n={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,stepId:e.id,stepType:e.stepId,audited:{name:t.name}};await S("automation:step:created",n,r)}s(xL,"stepCreated");async function vL(t,e){let r={appId:t.appId,automationId:t._id,triggerId:t.definition?.trigger?.id,triggerType:t.definition?.trigger?.stepId,stepId:e.id,stepType:e.stepId,audited:{name:t.name}};await S("automation:step:deleted",r)}s(vL,"stepDeleted");var QA={created:wL,triggerUpdated:RL,deleted:DL,tested:CL,run:bL,stepCreated:xL,stepDeleted:vL};var Oi=!g.SELF_HOSTED&&!g.isDev();async function PL(t){Oi||await S("app:backfill:succeeded",t)}s(PL,"appSucceeded");async function NL(t){if(Oi)return;let e={error:JSON.stringify(t,Object.getOwnPropertyNames(t))};await S("app:backfill:failed",e)}s(NL,"appFailed");async function LL(t){Oi||await S("tenant:backfill:succeeded",t)}s(LL,"tenantSucceeded");async function UL(t){if(Oi)return;let e={error:JSON.stringify(t,Object.getOwnPropertyNames(t))};await S("tenant:backfill:failed",e)}s(UL,"tenantFailed");async function kL(){if(Oi)return;let t={};await S("installation:backfill:succeeded",t)}s(kL,"installationSucceeded");async function ML(t){if(Oi)return;let e={error:JSON.stringify(t,Object.getOwnPropertyNames(t))};await S("installation:backfill:failed",e)}s(ML,"installationFailed");var jA={appSucceeded:PL,appFailed:NL,tenantSucceeded:LL,tenantFailed:UL,installationSucceeded:kL,installationFailed:ML};async function FL(t){let e={appId:t.appId,restoreId:t._id,backupCreatedAt:t.timestamp,name:t.name};await S("app:backup:restored",e)}s(FL,"workspaceBackupRestored");async function BL(t,e,r,n,i){let o={appId:t,backupId:e,type:r,trigger:n,name:i};await S("app:backup:triggered",o)}s(BL,"workspaceBackupTriggered");var HA={workspaceBackupRestored:FL,workspaceBackupTriggered:BL};function sm(t){return!Object.values(Go).includes(t.source)}s(sm,"isCustom");async function WL(t,e){let r={datasourceId:t._id,source:t.source,custom:sm(t)};await S("datasource:created",r,e)}s(WL,"created");async function GL(t){let e={datasourceId:t._id,source:t.source,custom:sm(t)};await S("datasource:updated",e)}s(GL,"updated");async function $L(t){let e={datasourceId:t._id,source:t.source,custom:sm(t)};await S("datasource:deleted",e)}s($L,"deleted");var YA={created:WL,updated:GL,deleted:$L};async function VL(t){let e={};await S("email:smtp:created",e,t)}s(VL,"SMTPCreated");async function qL(){let t={};await S("email:smtp:updated",t)}s(qL,"SMTPUpdated");var zA={SMTPCreated:VL,SMTPUpdated:qL};async function KL(t,e){let r={name:t,environments:e};await S("environment_variable:created",r)}s(KL,"created");async function QL(t){let e={name:t};await S("environment_variable:deleted",e)}s(QL,"deleted");async function jL(t){let e={userId:t};await S("environment_variable:upgrade_panel_opened",e)}s(jL,"upgradePanelOpened");var JA={created:KL,deleted:QL,upgradePanelOpened:jL};async function HL(t,e){let r={groupId:t._id,viaScim:gt(),audited:{name:t.name}};await S("user_group:created",r,e)}s(HL,"created");async function YL(t){let e={groupId:t._id,viaScim:gt(),audited:{name:t.name}};await S("user_group:updated",e)}s(YL,"updated");async function zL(t){let e={groupId:t._id,viaScim:gt(),audited:{name:t.name}};await S("user_group:deleted",e)}s(zL,"deleted");async function JL(t,e,r){let n={count:t,groupId:e._id,userIds:r,viaScim:gt(),audited:{name:e.name}};await S("user_group:user_added",n)}s(JL,"usersAdded");async function XL(t,e,r){let n={count:t,groupId:e._id,userIds:r,viaScim:gt(),audited:{name:e.name}};await S("user_group:users_deleted",n)}s(XL,"usersDeleted");async function ZL(t){let e={groupId:t,onboarding:!0};await S("user_group:onboarding_added",e)}s(ZL,"createdOnboarding");async function eU(t){let e={permissions:t.roles,groupId:t._id,audited:{name:t.name}};await S("user_group:permissions_edited",e)}s(eU,"permissionsEdited");var XA={created:HL,updated:YL,deleted:zL,usersAdded:JL,usersDeleted:XL,createdOnboarding:ZL,permissionsEdited:eU};async function tU(t){let e={currentVersion:t};await S("installation:version:checked",e)}s(tU,"versionChecked");async function rU(t,e){let r={from:t,to:e};await S("installation:version:upgraded",r)}s(rU,"upgraded");async function nU(t,e){let r={from:t,to:e};await S("installation:version:downgraded",r)}s(nU,"downgraded");async function iU(){let t={};await S("installation:firstStartup",t)}s(iU,"firstStartup");var yo={versionChecked:tU,upgraded:rU,downgraded:nU,firstStartup:iU};async function sU(t,e){let r={layoutId:t._id};await S("layout:created",r,e)}s(sU,"created");async function oU(t){let e={layoutId:t};await S("layout:deleted",e)}s(oU,"deleted");var ZA={created:sU,deleted:oU};async function aU(t,e){let r={accountId:t.accountId,...e};await S("license:plan:changed",r)}s(aU,"planChanged");async function uU(t){let e={accountId:t.accountId};await S("license:activated",e)}s(uU,"activated");async function cU(t){let e={accountId:t.accountId};await S("license:checkout:opened",e)}s(cU,"checkoutOpened");async function lU(t){let e={accountId:t.accountId};await S("license:checkout:success",e)}s(lU,"checkoutSuccess");async function dU(t){let e={accountId:t.accountId};await S("license:portal:opened",e)}s(dU,"portalOpened");async function fU(t){let e={accountId:t.accountId};await S("license:payment:failed",e)}s(fU,"paymentFailed");async function pU(t){let e={accountId:t.accountId};await S("license:payment:recovered",e)}s(pU,"paymentRecovered");var e_={planChanged:aU,activated:uU,checkoutOpened:cU,checkoutSuccess:lU,portalOpened:dU,paymentFailed:fU,paymentRecovered:pU};async function mU(t){let e={};await S("org:info:name:updated",e,t)}s(mU,"nameUpdated");async function hU(t){let e={};await S("org:info:logo:updated",e,t)}s(hU,"logoUpdated");async function gU(t){let e={};await S("org:platformurl:updated",e,t)}s(gU,"platformURLUpdated");async function EU(){let t={};await S("analytics:opt:out",t)}s(EU,"analyticsOptOut");async function yU(){let t={};await S("analytics:opt:out",t)}s(yU,"analyticsOptIn");var t_={nameUpdated:mU,logoUpdated:hU,platformURLUpdated:gU,analyticsOptOut:EU,analyticsOptIn:yU};async function TU(t){let e={type:t.schema.type,name:t.name,description:t.description,version:t.version};await S("plugin:init",e)}s(TU,"init");async function SU(t){let e={pluginId:t._id,type:t.schema.type,source:t.source,name:t.name,description:t.description,version:t.version};await S("plugin:imported",e)}s(SU,"imported");async function AU(t){let e={pluginId:t._id,type:t.schema.type,name:t.name,description:t.description,version:t.version};await S("plugin:deleted",e)}s(AU,"deleted");var r_={init:TU,imported:SU,deleted:AU};var _U=s(async(t,e,r)=>{let n={queryId:e._id,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb};await S("query:created",n,r)},"created"),OU=s(async(t,e)=>{let r={queryId:e._id,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb};await S("query:updated",r)},"updated"),IU=s(async(t,e,r)=>{let n={queryId:e._id,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb,appId:r};await S("query:deleted",n)},"deleted"),wU=s(async(t,e,r)=>{let n={datasourceId:t._id,source:t.source,count:r,importSource:e};await S("query:import",n)},"imported"),RU=s(async(t,e)=>{let r={count:t};await S("queries:run",r,e)},"run"),DU=s(async(t,e)=>{let r={queryId:e.queryId,datasourceId:t._id,source:t.source,queryVerb:e.queryVerb};await S("query:previewed",r)},"previewed"),n_={created:_U,updated:OU,deleted:IU,imported:wU,run:RU,previewed:DU};async function CU({resource:t,fromWorkspace:e,toWorkspace:r},n){let i={resource:t,fromWorkspace:e,toWorkspace:r};await S("resource:copied_to_workspace",i,n)}s(CU,"duplicatedToWorkspace");var i_={duplicatedToWorkspace:CU};async function bU(t,e){let r={roleId:t._id,permissionId:t.permissionId,inherits:t.inherits};await S("role:created",r,e)}s(bU,"created");async function xU(t){let e={roleId:t._id,permissionId:t.permissionId,inherits:t.inherits};await S("role:updated",e)}s(xU,"updated");async function vU(t){let e={roleId:t._id,permissionId:t.permissionId,inherits:t.inherits};await S("role:deleted",e)}s(vU,"deleted");async function PU(t,e,r){let n={userId:t._id,roleId:e};await S("role:assigned",n,r)}s(PU,"assigned");async function NU(t,e){let r={userId:t._id,roleId:e};await S("role:unassigned",r)}s(NU,"unassigned");var Oo={created:bU,updated:xU,deleted:vU,assigned:PU,unassigned:NU};async function LU(t,e){await S("row_action:created",t,e)}s(LU,"created");var s_={created:LU};var UU=s(async(t,e)=>{let r={count:t};await S("rows:created",r,e)},"created"),kU=s(async(t,e)=>{let r={tableId:t._id,count:e};await S("rows:imported",r)},"imported"),o_={created:UU,imported:kU};async function MU(t,e){let r={layoutId:t.layoutId,screenId:t._id,roleId:t.routing.roleId,audited:{name:t.routing?.route}};await S("screen:created",r,e)}s(MU,"created");async function FU(t){let e={layoutId:t.layoutId,screenId:t._id,roleId:t.routing.roleId,audited:{name:t.routing?.route}};await S("screen:deleted",e)}s(FU,"deleted");var a_={created:MU,deleted:FU};async function BU(t){let e={timezone:t};await S("served:builder",e)}s(BU,"servedBuilder");async function WU(t,e,r){let n={appVersion:t.version,timezone:e,embed:r===!0};await S("served:app",n)}s(WU,"servedApp");async function GU(t,e){let r={appId:t.appId,appVersion:t.version,timezone:e};await S("served:app:preview",r)}s(GU,"servedAppPreview");var u_={servedBuilder:BU,servedApp:WU,servedAppPreview:GU};async function $U(t,e){let r={tableId:t._id,audited:{name:t.name}};await S("table:created",r,e)}s($U,"created");async function VU(t,e){let r,n;for(let o in e.schema)if(!t.schema[o]){let a=e.schema[o];"default"in a&&a.default!=null&&(r=!0),a.type==="ai"&&(n=a.operation)}let i={tableId:e._id,defaultValues:r,aiColumn:n,audited:{name:e.name}};(r||n)&&await S("table:updated",i)}s(VU,"updated");async function qU(t,e){let r={tableId:t._id,audited:{name:t.name},appId:e};await S("table:deleted",r)}s(qU,"deleted");async function KU(t,e){let r={tableId:t._id,format:e,audited:{name:t.name}};await S("table:exported",r)}s(KU,"exported");async function QU(t){let e={tableId:t._id,audited:{name:t.name}};await S("table:imported",e)}s(QU,"imported");var c_={created:$U,updated:VU,deleted:qU,exported:KU,imported:QU};async function jU(t,e){let r={userId:t._id,viaScim:gt(),audited:{email:t.email}};await S("user:created",r,e)}s(jU,"created");async function HU(t){let e={userId:t._id,viaScim:gt(),audited:{email:t.email}};await S("user:updated",e)}s(HU,"updated");async function YU(t){let e={userId:t._id,viaScim:gt(),audited:{email:t.email}};await S("user:deleted",e)}s(YU,"deleted");async function zU(t,e){let r={userId:t._id,audited:{email:t.email}};await S("user:admin:assigned",r,e)}s(zU,"permissionAdminAssigned");async function JU(t){let e={userId:t._id,audited:{email:t.email}};await S("user:admin:removed",e)}s(JU,"permissionAdminRemoved");async function XU(t,e){let r={userId:t._id,audited:{email:t.email}};await S("user:builder:assigned",r,e)}s(XU,"permissionBuilderAssigned");async function ZU(t){let e={userId:t._id,audited:{email:t.email}};await S("user:builder:removed",e)}s(ZU,"permissionBuilderRemoved");async function e0(t){let e={audited:{email:t}};await S("user:invited",e)}s(e0,"invited");async function t0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:invite:accepted",e)}s(t0,"inviteAccepted");async function r0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:force:reset",e)}s(r0,"passwordForceReset");async function n0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:updated",e)}s(n0,"passwordUpdated");async function i0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:reset:requested",e)}s(i0,"passwordResetRequested");async function s0(t){let e={userId:t._id,audited:{email:t.email}};await S("user:password:reset",e)}s(s0,"passwordReset");async function o0(t){let e={users:t};await S("user:data:collaboration",e)}s(o0,"dataCollaboration");var Be={created:jU,updated:HU,deleted:YU,permissionAdminAssigned:zU,permissionAdminRemoved:JU,permissionBuilderAssigned:XU,permissionBuilderRemoved:ZU,invited:e0,inviteAccepted:t0,passwordForceReset:r0,passwordUpdated:n0,passwordResetRequested:i0,passwordReset:s0,dataCollaboration:o0};async function a0(t,e){let r={name:t.name,type:t.type,tableId:t.tableId};await S("view:created",r,e)}s(a0,"created");async function u0(t){let e={tableId:t.tableId};await S("view:updated",e)}s(u0,"updated");async function c0(t,e){let r={...Ue.views.isV2(t)?{id:t.id,tableId:t.tableId,appId:e}:{}};await S("view:deleted",r)}s(c0,"deleted");async function l0(t,e){let r={tableId:t._id,format:e};await S("view:exported",r)}s(l0,"exported");async function d0({tableId:t,filterGroups:e},r){let n={tableId:t,filterGroups:e};await S("view:filter:created",n,r)}s(d0,"filterCreated");async function f0({tableId:t,filterGroups:e}){let r={tableId:t,filterGroups:e};await S("view:filter:updated",r)}s(f0,"filterUpdated");async function p0(t){let e={tableId:t.tableId};await S("view:filter:deleted",e)}s(p0,"filterDeleted");async function m0({tableId:t,calculationType:e},r){let n={tableId:t,calculation:e};await S("view:calculation:created",n,r)}s(m0,"calculationCreated");async function h0(t){let e={tableId:t.tableId,calculation:t.calculation};await S("view:calculation:updated",e)}s(h0,"calculationUpdated");async function g0(t){let e={tableId:t.tableId,calculation:t.calculation};await S("view:calculation:deleted",e)}s(g0,"calculationDeleted");async function E0(t,e){let r={tableId:t};await S("view:join:created",r,e)}s(E0,"viewJoinCreated");var l_={created:a0,updated:u0,deleted:c0,exported:l0,filterCreated:d0,filterUpdated:f0,filterDeleted:p0,calculationCreated:m0,calculationUpdated:h0,calculationDeleted:g0,viewJoinCreated:E0};async function y0(t,e){let r={workspaceAppId:t._id,audited:{name:t.name},appId:e};S("workspace_app:created",r).catch(n=>{console.error("appCreated telemetry failed",{workspaceAppId:t._id,err:n})})}s(y0,"appCreated");async function T0(t,e){let r={workspaceAppId:t._id,audited:{name:t.name},appId:e};S("workspace_app:updated",r).catch(n=>{console.error("appUpdated telemetry failed",{workspaceAppId:t._id,err:n})})}s(T0,"appUpdated");async function S0(t,e){let r={workspaceAppId:t._id,audited:{name:t.name},appId:e};S("workspace_app:deleted",r).catch(n=>{console.error("appDeleted telemetry failed",{workspaceAppId:t._id,err:n})})}s(S0,"appDeleted");var d_={appCreated:y0,appUpdated:T0,appDeleted:S0};function A0(){}s(A0,"initAsyncEvents");var _0=s(async()=>{await er.shutdown(),console.log("Events shutdown")},"shutdown");var am={};L(am,{creatorsInList:()=>Nr,getAccountHolderFromUsers:()=>ac,hasAdminPermissions:()=>Pr,hasAppBuilderPermissions:()=>g_,hasBuilderPermissions:()=>Fe,isAdmin:()=>vt,isAdminOrBuilder:()=>h_,isAdminOrWorkspaceBuilder:()=>ic,isBuilder:()=>Ii,isCreatorAsync:()=>wo,isCreatorSync:()=>sc,isGlobalBuilder:()=>m_,validateUniqueUser:()=>oc});async function om(t){let e=[],r=await f_(t);e.push(...r.map(a=>a.email));let n=await p_(t);e.push(...n.map(a=>a._id));let i=await Si(t);e.push(...i.map(a=>a.email));let o=await Mp(t);return e.push(...o.map(a=>a.email)),[...new Set(e.map(a=>a.toLowerCase()))]}s(om,"searchExistingEmails");async function nc(t){return await Vs("platform_users_lowercase_2",{keys:[t.toLowerCase()],include_docs:!0})}s(nc,"getPlatformUsers");async function Io(t){return(await nc(t))[0]??null}s(Io,"getFirstPlatformUser");async function f_(t){let r={keys:t.map(i=>i.toLowerCase()),include_docs:!0},n={arrayResponse:!0};return await Qt("by_email2",r,void 0,n)}s(f_,"getExistingTenantUsers");async function p_(t){let r={keys:t.map(n=>n.toLowerCase()),include_docs:!0};return await Vs("platform_users_lowercase_2",r)}s(p_,"getExistingPlatformUsers");async function Si(t){let r={keys:t.map(n=>n.toLowerCase()),include_docs:!0};return await Vs("account_by_email",r)}s(Si,"getExistingAccounts");var Ii=ke.users.isBuilder,vt=ke.users.isAdmin,m_=ke.users.isGlobalBuilder,h_=ke.users.isAdminOrBuilder,Pr=ke.users.hasAdminPermissions,Fe=ke.users.hasBuilderPermissions,g_=ke.users.hasAppBuilderPermissions,ic=ke.users.isAdminOrWorkspaceBuilder;async function Nr(t,e){let r=[...new Set(t.filter(i=>i.userGroups).flatMap(i=>i.userGroups))];return e=await Y().getMultiple(r,{allowMissing:!0}),t.map(i=>sc(i,e))}s(Nr,"creatorsInList");async function wo(t){let e=[];return t.userGroups&&(e=await Y().getMultiple(t.userGroups)),sc(t,e)}s(wo,"isCreatorAsync");function sc(t,e){let r=ke.users.isCreator(t);return!r&&t?O0(t,e):r}s(sc,"isCreatorSync");function O0(t,e){let r=e?.filter(n=>t.userGroups?.indexOf(n._id)!==-1);return r&&r.length>0?r.some(n=>Object.values(n.roles||{}).includes("CREATOR")):!1}s(O0,"isCreatorByGroupMembership");async function oc(t,e){if(g.MULTI_TENANCY){let r=await Io(t);if(r!=null&&r.tenantId!==e)throw new Xt(t)}if(!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let r=await vr(t);if(r&&r.verified&&r.tenantId!==e)throw new Xt(t)}}s(oc,"validateUniqueUser");async function ac(t){if(!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let e=await Si(t.map(r=>r.email));return t.find(r=>e.map(n=>n.email).includes(r.email))}}s(ac,"getAccountHolderFromUsers");var um=s(async t=>{await Be.deleted(t),Fe(t)&&await Be.permissionBuilderRemoved(t),Pr(t)&&await Be.permissionAdminRemoved(t)},"handleDeleteEvents"),I0=s(async(t,e,r)=>{for(let[n,i]of Object.entries(e))(!r||r[n]!==i)&&await Oo.assigned(t,i)},"assignAppRoleEvents"),w0=s(async(t,e,r)=>{if(r)for(let[n,i]of Object.entries(r))(!e||e[n]!==i)&&await Oo.unassigned(t,i)},"unassignAppRoleEvents"),R0=s(async(t,e)=>{let r=t.roles,n=e?.roles;await I0(t,r,n),await w0(t,r,n)},"handleAppRoleEvents"),cm=s(async(t,e,r)=>{let n=r;!n&&!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL&&(n=await hi($())),await At.identifyUser(t,n),e?(await Be.updated(t),C0(t,e)&&await Be.permissionBuilderRemoved(t),x0(t,e)&&await Be.permissionAdminRemoved(t),!e.forceResetPassword&&t.forceResetPassword&&t.password&&await Be.passwordForceReset(t),t.password!==e.password&&await Be.passwordUpdated(t)):await Be.created(t),D0(t,e)&&await Be.permissionBuilderAssigned(t),b0(t,e)&&await Be.permissionAdminAssigned(t),await R0(t,e)},"handleSaveEvents"),D0=s((t,e)=>E_(t,e,Fe),"isAddingBuilder"),C0=s((t,e)=>y_(t,e,Fe),"isRemovingBuilder"),b0=s((t,e)=>E_(t,e,Pr),"isAddingAdmin"),x0=s((t,e)=>y_(t,e,Pr),"isRemovingAdmin"),E_=s((t,e,r)=>!(!r(t)||e&&r(e)),"isAddingPermission"),y_=s((t,e,r)=>!(r(t)||!e||!r(e)),"isRemovingPermission");var P0=s(async t=>{let e=t._id;await Tt.removeUser(t),await um(t),await tr.invalidateUser(e),await An(e,{reason:"bulk-deletion"})},"bulkDeleteProcessing"),Pt=class t{static{s(this,"UserDB")}static init(e,r,n){t.quotas=e,t.groups=r,t.features=n}static async isPreventPasswordActions(e,r){return g.ENABLE_SSO_MAINTENANCE_MODE&&vt(e)?!1:await t.features.isSSOEnforced()||jo(e)?!0:(r||(r=await hi($())),!!(r&&r.email===e.email&&Qo(r)))}static async buildUser(e,r={hashPassword:!0,requirePassword:!0},n,i,o){let{password:a,_id:u}=e;i&&!i.password&&(r.requirePassword=!1);let c;if(a&&a!==i?.password){if(await t.isPreventPasswordActions(e,o))throw new Me("Password change is disabled for this user",400);if(!r.skipPasswordValidation){let f=Kp(a);if(!f.valid)throw new Me(f.error,400)}c=r.hashPassword?await cf(a):a}else i&&(c=i.password);let l=r.requirePassword&&!await t.features.isSSOEnforced();if(!c&&l)throw"Password must be specified.";u=u||ni();let d={createdAt:Date.now(),...i,...e,_id:u,password:c,tenantId:n};return d.roles||(d.roles={}),d.status==null&&(d.status="active"),d}static async allUsers(){return(await Y().allDocs(ln(null,{include_docs:!0}))).rows.map(n=>n.doc)}static async countUsersByWorkspace(e){if(typeof e!="string"||!e)throw new Error("Must provide a string based workspace ID");return{userCount:(await qs("by_app",ii(e,{include_docs:!1}))).rows.length}}static async getUsersByAppAccess(e){return await lm(e.appId,{limit:e.limit||50})}static async getUserByEmail(e){return _t(e)}static async getUser(e){let r=await On(e);return r&&delete r.password,r}static async bulkGet(e){return await uc(e)}static async bulkUpdate(e){let r=await Ro(e);return await tr.invalidateUsers(e.map(n=>n._id)),r}static async save(e,r={}){r.hashPassword==null&&(r.hashPassword=!0),r.requirePassword==null&&(r.requirePassword=!0);let n=$(),i=Y(),{email:o,_id:a,userGroups:u=[],roles:c}=e;if(!o&&!a)throw new Error("_id or email is required");let l;if(a)try{if(l=await On(a),o&&l.email!==o&&!r.allowChangingEmail)throw new Error("Email address cannot be changed")}catch(p){if(p.status!==404)throw p}if(!l&&o&&(l=await _t(o),l&&l._id!==a))throw new Xt(o);let d=!l,f=!!l&&!!o&&l.email!==o,m=!r.isAccountHolder&&!!o&&(d||f),h=[...u];if(d&&h.length===0){let p=await t.groups.getDefaultGroup?.();p?._id&&(h=[p._id])}let T=1,E=0;if((r.isAccountHolder||l)&&(T=0,E=1),l){let[p,y]=await Nr([l,e]);E=p!==y?1:0}else if(!r.isAccountHolder){let p=h.length>0?{...e,userGroups:h}:e;E=(await Nr([p]))[0]?1:0}return t.quotas.addUsers(T,E,async()=>{m&&await oc(o,n);let p=await t.buildUser(e,r,n,l);r.currentUserId&&r.currentUserId===l?._id&&(p=dm(p,l)),!l&&c?.length&&(p.roles={...c});let y=[];if(d){h.length>0&&(p.userGroups=h);for(let A of h)y.push(t.groups.addUsers(A,[p._id]))}try{let A=await i.put(p);return p._rev=A.rev,await cm(p,l),l&&p.email!==l.email&&await Tt.removeUser({email:l.email}),await Tt.addUser(n,p._id,p.email,p.ssoId),await tr.invalidateUser(A.id),await Promise.all(y),i.get(p._id)}catch(A){throw A.status===409?"User exists already":A}})}static async bulkCreate(e,r){let n=$(),i=[],o=[],a=[],u=e.map(T=>T.email),c=await om(u),l=[],d=!!r?.length,f=d?[...r]:[];if(!d){let T=await t.groups.getDefaultGroup?.();T?._id&&(f=[T._id])}for(let T of e){let E=o.find(y=>y.email.toLowerCase()===T.email.toLowerCase()),p=c.includes(T.email.toLowerCase());if(E||p){l.push({email:T.email,reason:"Unavailable"});continue}T.userGroups=[...f],o.push(T),await wo(T)&&a.push(T)}let m=await hi(n),h=await t.features.isSSOEnforced();return t.quotas.addUsers(o.length,a.length,async()=>{for(let p of o)h&&delete p.password,i.push(t.buildUser(p,{hashPassword:!0,requirePassword:!h},n,void 0,m));let T=await Promise.all(i);await Ro(T);for(let p of T)await Tt.addUser(n,p._id,p.email),await cm(p,void 0,m);let E=T.map(p=>({_id:p._id,email:p.email}));if(Array.isArray(E)&&f.length){let p=[],y=E.map(A=>A._id);for(let A of f)p.push(t.groups.addUsers(A,y));await Promise.all(p)}return{successful:E,unsuccessful:l}})}static async bulkDelete(e){let r=Y(),n={successful:[],unsuccessful:[]},i=await ac(e);i&&(e=e.filter(h=>h.userId!==i.userId),n.unsuccessful.push({_id:i.userId,email:i.email,reason:"Account holder cannot be deleted"}));let a=(await r.allDocs({include_docs:!0,keys:e.map(h=>h.userId)})).rows.map(h=>h.doc),u=a.map(h=>({...h,_deleted:!0})),c=await Ro(u),d=(await Nr(a)).filter(h=>h).length,f=[];for(let h of a){let E=(await Io(h._id)).ssoId;E&&(await nc(E)).filter(y=>y.ssoId==null).forEach(y=>{f.push({...y,_deleted:!0})}),await P0(h)}await xr().bulkDocs(f),await t.quotas.removeUsers(u.length,d);let m={};return a.reduce((h,T)=>(h[T._id]=T,h),m),c.forEach(h=>{let T=m[h.id].email;h.ok?n.successful.push({_id:h.id,email:T}):n.unsuccessful.push({_id:h.id,email:T,reason:"Database error"})}),n}static async destroy(e){let r=Y(),n=await r.get(e),i=n._id;if(!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let a=n.email;if(await vr(a))throw n.userId===Vt()._id?new Me('Please visit "Account" to delete this user',400):new Me("Account holder cannot be deleted",400)}await Tt.removeUser(n),await r.remove(i,n._rev);let o=await wo(n)?1:0;await t.quotas.removeUsers(1,o),await um(n),await tr.invalidateUser(i),await An(i,{reason:"deletion"})}static async createAdminUser(e,r,n){let i=n?.password,o={email:e,password:i,createdAt:Date.now(),roles:{},builder:{global:!0},admin:{global:!0},tenantId:r,firstName:n?.firstName,lastName:n?.lastName};return n?.ssoId&&(o.ssoId=n.ssoId),await pi(Oe.CHECKLIST),await t.save(o,{hashPassword:n?.hashPassword,requirePassword:n?.requirePassword,skipPasswordValidation:n?.skipPasswordValidation,isAccountHolder:!0})}static async getGroups(e){return await this.groups.getBulk(e)}static async getGroupBuilderAppIds(e){return await this.groups.getGroupBuilderAppIds(e)}};function Co(t){return Array.isArray(t)?t.map(e=>{if(e)return delete e.password,e}):t&&(delete t.password,t)}s(Co,"removeUserPassword");async function uc(t,e){let n=(await Y().allDocs({keys:t,include_docs:!0})).rows.map(i=>i.doc);return e?.cleanup&&(n=Co(n)),n}s(uc,"bulkGetGlobalUsersById");async function L0(){let t=Y(),e=`us${"_"}`;return(await t.allDocs({startkey:e,endkey:`${e}${"\uFFF0"}`})).rows.map(n=>n.id)}s(L0,"getAllUserIds");async function U0(){let t=Y(),e=`us${"_"}`;return(await t.allDocs({startkey:e,endkey:`${e}${"\uFFF0"}`,include_docs:!0})).rows.map(n=>n.doc)}s(U0,"getAllUsers");async function Ro(t){return await Y().bulkDocs(t)}s(Ro,"bulkUpdateGlobalUsers");async function On(t,e){let n=await Y().get(t);return e?.cleanup&&(n=Co(n)),n}s(On,"getById");async function _t(t,e){if(t==null)throw"Must supply an email address to view";let r=await Qt("by_email2",{key:t.toLowerCase(),include_docs:!0});if(Array.isArray(r))throw new Error(`Multiple users found with email address: ${t}`);let n=r;return e?.cleanup&&(n=Co(n)),n}s(_t,"getGlobalUserByEmail");async function k0(t){try{let e=await _t(t);if(Array.isArray(e)||e!=null)return!0}catch{return!1}return!1}s(k0,"doesUserExist");async function T_(t,e,r){if(typeof t!="string")throw new Error("Must provide a string based workspace ID");let n=ii(t,{include_docs:!0});n.startkey=e&&e.startkey?e.startkey:n.startkey;let i=await Qt("by_app",n);i||(i=[]);let o=Array.isArray(i)?i:[i];return r?.cleanup&&(o=Co(o)),o}s(T_,"searchGlobalUsersByApp");async function lm(t,e){let r=`roles.${t}`,n=[{"builder.global":!0},{"admin.global":!0}];if(t){let a={[r]:{$exists:!0}};n.push(a)}return(await Y().find({selector:{$or:n,_id:{$regex:"^us_"}},limit:e?.limit||50})).docs}s(lm,"searchGlobalUsersByAppAccess");function S_(t,e){if(e)return hu(je(t),e._id)}s(S_,"getGlobalUserByAppPage");async function A_(t,e,r){if(typeof t!="string")throw new Error("Must provide a string to search by");let n=t.toLowerCase(),i=e&&e.startkey?e.startkey:n,o=await Qt("by_email2",{...e,startkey:i,endkey:`${n}${"\uFFF0"}`});o||(o=[]);let a=Array.isArray(o)?o:[o];return r?.cleanup&&(a=Co(a)),a}s(A_,"searchGlobalUsersByEmail");var M0=8;async function __({bookmark:t,query:e,appId:r,limit:n}={}){let i=Y(),o=n??M0,u={include_docs:!0,limit:o+1};t&&(u.startkey=t);let c,l="_id",d;return e?.equal?._id?c=[await On(e.equal._id)]:r?(c=await T_(r,u),d=s(f=>S_(r,f),"getKey")):e?.string?.email?(c=await A_(e?.string?.email,u),l="email"):e?.oneOf?._id?c=await uc(e?.oneOf?._id,{cleanup:!0}):e?(c=(await i.allDocs(ln(null,{...u,limit:void 0}))).rows.map(m=>m.doc),c=hr.search(c,{query:e,limit:u.limit}).rows):c=(await i.allDocs(ln(null,u))).rows.map(m=>m.doc),jf(c,o,{paginate:!0,property:l,getKey:d})}s(__,"paginatedUsers");async function F0(){return(await qs("by_email2",{limit:0,include_docs:!1})).total_rows}s(F0,"getUserCount");async function B0(){let t=0;async function e(r){let n=await __({bookmark:r}),i=await Nr(n.data);t+=i.filter(o=>o).length,n.hasNextPage&&await e(n.nextPage)}return s(e,"iterate"),await e(),t}s(B0,"getCreatorCount");function W0(t){return delete t.admin,delete t.builder,t}s(W0,"removePortalUserPermissions");function dm(t,e){return delete t.admin,delete t.builder,delete t.roles,e&&(t.admin=e.admin,t.builder=e.builder,t.roles=e.roles),t}s(dm,"cleanseUserObject");async function G0(t,e){let r=je(e);t.builder??={},t.builder.creator=!0,t.builder.apps??=[],t.builder.apps.push(r),await Pt.save(t,{hashPassword:!1})}s(G0,"addAppBuilder");async function $0(t,e){let r=je(e);t.builder&&t.builder.apps?.includes(r)&&(t.builder.apps=t.builder.apps.filter(n=>n!==r)),await Pt.save(t,{hashPassword:!1})}s($0,"removeAppBuilder");var O_=3600;async function V0(t,e){let n=await Xf(e).get(t);if(n.budibaseAccess=!0,!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let i=await vr(n.email);i&&(n.account=i,n.accountPortalAccess=!0)}return n}s(V0,"populateFromDB");async function q0(t){let e=await Pt.bulkGet(t),r=t.filter((i,o)=>!e[o]),n=e.filter(i=>i);return await Promise.all(n.map(async i=>{if(i.budibaseAccess=!0,!g.SELF_HOSTED&&!g.DISABLE_ACCOUNT_PORTAL){let o=await vr(i.email);o&&(i.account=o,i.accountPortalAccess=!0)}})),r.length?{users:n,notFoundIds:r}:{users:n}}s(q0,"populateUsersFromDB");async function bo({userId:t,tenantId:e,email:r,populateUser:n}){if(n||(n=V0),!e)try{e=$()}catch{e=await Tt.lookupTenantId(t)}let i=await ri(),o=await i.get(t);return o||(o=await n(t,e,r),await i.store(t,o,O_)),o&&!o.tenantId&&e&&(o.tenantId=e),o.userGroups&&!ke.users.isGlobalBuilder(o)&&await Ce(e,async()=>{let a=await Pt.getGroupBuilderAppIds(o);if(a.length){let u=o.builder?.apps||[];o.builder={apps:[...new Set(u.concat(a))]}}}),o}s(bo,"getUser");async function K0(t){let e=await ri(),r=await e.bulkGet(t),n=t.filter(a=>!r[a]),i=Object.values(r).filter(a=>!!a),o;if(n.length){let a=await q0(n);o=a.notFoundIds;for(let u of a.users)await e.store(u._id,u,O_);i.push(...a.users)}return{users:i,notFoundIds:o}}s(K0,"getUsers");async function xo(t){await(await ri()).delete(t)}s(xo,"invalidateUser");async function Q0(t){if(t.length===0)return;await(await ri()).bulkDelete(t)}s(Q0,"invalidateUsers");var hm={};L(hm,{Writethrough:()=>pm});var I_=1e4,fm=null;async function cc(){if(!fm){let t=await Bf();fm=new hn(t)}return fm}s(cc,"getCache");function vo(t,e){return t.name+e}s(vo,"makeCacheKey");function mm(t,e=null){return{doc:t,lastWrite:e||Date.now()}}s(mm,"makeCacheItem");async function j0(t,e,r=I_){let n=await cc(),i=e._id,o;i&&(o=await n.get(vo(t,i)));let a=!o||o.lastWrite<Date.now()-r,u=e;return a&&((await uo({type:"try_once",name:"persist_writethrough",resource:i,ttl:15e3},async()=>{let l=s(async d=>{let f=await t.put(d,{force:!0});u._id=f.id,u._rev=f.rev},"writeDb");try{await l(e)}catch(d){if(d.status!==409)throw d;di("Ignoring conflict in write-through cache")}})).executed||di("Ignoring redlock conflict in write-through cache")),o=mm(u,a?null:o?.lastWrite),u._id&&await n.store(vo(t,u._id),o),{ok:!0,id:u._id,rev:u._rev}}s(j0,"put");async function H0(t,e){let r=await cc(),n=vo(t,e),i=await r.get(n);if(!i){let o=await t.get(e);i=mm(o),await r.store(n,i)}return i.doc}s(H0,"get");async function Y0(t,e){let r=await cc(),n=vo(t,e),i=await r.get(n);if(!i){let o=await t.tryGet(e);if(!o)return null;i=mm(o),await r.store(n,i)}return i.doc}s(Y0,"tryGet");async function z0(t,e,r){let n=await cc();if(!e)throw new Error("No ID/Rev provided.");let i=typeof e=="string"?e:e._id;r=typeof e=="string"?r:e._rev;try{await n.delete(vo(t,i))}finally{await t.remove(i,r)}}s(z0,"remove");var pm=class{static{s(this,"Writethrough")}constructor(e,r=I_){this.db=e,this.writeRateMs=r}async put(e,r=this.writeRateMs){return j0(this.db,e,r)}async get(e){return H0(this.db,e)}async tryGet(e){return Y0(this.db,e)}async remove(e,r){return z0(this.db,e,r)}};function Po(t){return`config${"_"}${t}`}s(Po,"generateConfigID");var lc="en";function J0(){return{_id:Po("translations"),type:"translations",config:{defaultLocale:lc,locales:{[lc]:{label:"English",overrides:{}}}}}}s(J0,"createDefaultTranslationsConfig");function X0(t){let e=t?.defaultLocale||lc,r={...t?.locales??{}};r[e]||(r[e]={label:e===lc?"English":e,overrides:{}});for(let n of Object.keys(r))r[n].overrides||(r[n]={...r[n],overrides:{}});return{defaultLocale:e,locales:r}}s(X0,"prepareTranslationsConfig");async function We(t){let e=Y();try{return await e.get(Po(t))}catch(r){if(r.status===404)return;throw r}}s(We,"getConfig");async function Z0(t){return t._id||(t._id=Po(t.type)),Y().put(t)}s(Z0,"save");async function w_(){let t=await We("translations");return t?(t.config=X0(t.config),t):J0()}s(w_,"getTranslationsConfigDoc");async function ek(){return(await w_()).config}s(ek,"getTranslationsConfig");async function _i(){let t=await We("settings");return t||(t={_id:Po("settings"),type:"settings",config:{}}),t.config.platformUrl=await No({tenantAware:!0,config:t.config}),t.config.analyticsEnabled=await Ju({config:t.config}),t}s(_i,"getSettingsConfigDoc");async function Em(){return(await _i()).config}s(Em,"getSettingsConfig");async function No(t={tenantAware:!0}){let e=g.PLATFORM_URL||"http://localhost:10000";if(!g.SELF_HOSTED&&g.MULTI_TENANCY&&t.tenantAware){let r=$();e.includes("localhost:")||(e=e.replace("://",`://${r}.`))}else if(g.SELF_HOSTED){let r=t?.config?t.config:(await We("settings"))?.config;r?.platformUrl&&(e=r.platformUrl)}return e}s(No,"getPlatformUrl");var Ju=s(async t=>{if(!g.SELF_HOSTED)return!!g.ENABLE_ANALYTICS;let e=await br(Oe.ANALYTICS_ENABLED,86400,async()=>{let n=t?.config?t.config:(await We("settings"))?.config;if(n?.analyticsEnabled===!1)return!1;if(n?.analyticsEnabled===!0)return!0});if(e!==void 0)return e;let r=g.ENABLE_ANALYTICS;return!(r===0||r===!1)},"analyticsEnabled");async function tk(){return await We("google")}s(tk,"getGoogleConfigDoc");async function fc(){return(await tk())?.config}s(fc,"getGoogleConfig");async function ym(){if(!g.SELF_HOSTED)return gm();let t=await fc();return(!t||!t.activated)&&(t=gm()),t}s(ym,"getGoogleDatasourceConfig");function gm(){if(g.GOOGLE_CLIENT_ID&&g.GOOGLE_CLIENT_SECRET)return{clientID:g.GOOGLE_CLIENT_ID,clientSecret:g.GOOGLE_CLIENT_SECRET,activated:!0}}s(gm,"getDefaultGoogleConfig");async function rk(){return We("logos_oidc")}s(rk,"getOIDCLogosDoc");async function nk(){return We("oidc")}s(nk,"getOIDCConfigDoc");async function ik(){let t=(await nk())?.config;return t?.configs&&t.configs[0]}s(ik,"getOIDCConfig");async function Tm(t){let e=(await We("oidc"))?.config;return e&&e.configs.filter(r=>r.uuid===t)[0]}s(Tm,"getOIDCConfigById");async function R_(){return We("smtp")}s(R_,"getSMTPConfigDoc");async function sk(t){let e=await R_();if(e)return e.config;let r=g.SELF_HOSTED||!t;if(g.SMTP_FALLBACK_ENABLED&&r)return{port:g.SMTP_PORT,host:g.SMTP_HOST,secure:!1,from:g.SMTP_FROM_ADDRESS,auth:{user:g.SMTP_USER,pass:g.SMTP_PASSWORD},fallback:!0}}s(sk,"getSMTPConfig");async function ok(){return(await We("scim"))?.config}s(ok,"getSCIMConfig");async function ak(){return We("recaptcha")}s(ak,"getRecaptchaConfig");var bm={};L(bm,{AccessController:()=>_m,BUILTIN_ROLE_IDS:()=>Om,Role:()=>Lr,RoleHierarchyTraversal:()=>pc,RoleIDVersion:()=>Im,builtinRoleToNumber:()=>Lo,checkForRoleResourceArray:()=>x_,externalRole:()=>pk,findRole:()=>Uo,getAllRoleIds:()=>Ek,getAllRoles:()=>Cm,getBuiltinRole:()=>C_,getBuiltinRoles:()=>Rm,getDBRoleID:()=>v_,getExternalRoleID:()=>Ur,getExternalRoleIDs:()=>P_,getRole:()=>mk,getUserRoleHierarchy:()=>Dm,getUserRoleIdHierarchy:()=>b_,isBuiltin:()=>kr,lowerBuiltinRoleID:()=>fk,prefixRoleIDNoBuiltin:()=>Am,roleIDsAreEqual:()=>Ye,roleToNumber:()=>dk,saveRoles:()=>hk,validInherits:()=>lk});var D_=require("lodash"),mc=W(require("lodash/fp/cloneDeep")),Sm=W(require("semver"));var Om={ADMIN:"ADMIN",POWER:"POWER",BASIC:"BASIC",PUBLIC:"PUBLIC"},ne={...Om,BUILDER:"BUILDER"},Im={UUID:void 0,NAME:"name"};function ck(t,e){return Array.isArray(e)?e.filter(r=>t.includes(r)).length===e.length:t.includes(e)}s(ck,"rolesInList");var Lr=class{constructor(e,r,n,i){this.permissions={};this._id=e,this.name=r,this.uiMetadata=i,this.permissionId=n,this.version=Im.NAME}static{s(this,"Role")}addInheritance(e){return e&&typeof e=="string"?e=Am(e):e&&Array.isArray(e)&&(e=e.map(Am)),this.inherits=e,this}},pc=class{static{s(this,"RoleHierarchyTraversal")}constructor(e,r){this.allRoles=e,this.opts=r}walk(e){let r=this.opts,n=this.allRoles,i=[];if(!e||!e._id)return i;if(i.push(e),Array.isArray(e.inherits))for(let o of e.inherits){let a=Uo(o,n,r);a&&(i=i.concat(this.walk(a)))}else{let o=[],a=e;for(;a&&a.inherits&&!ck(o,a.inherits);){if(Array.isArray(a.inherits))return i.concat(this.walk(a));if(o.push(a.inherits),a=Uo(a.inherits,n,r),a&&i.push(a),Ue.roles.checkForRoleInheritanceLoops(i))break}}return(0,D_.uniqBy)(i,o=>o._id)}},wm={ADMIN:new Lr(ne.ADMIN,ne.ADMIN,"admin",{displayName:"Admin user",description:"Can do everything",color:"var(--spectrum-global-color-static-red-400)"}).addInheritance(ne.POWER),POWER:new Lr(ne.POWER,ne.POWER,"power",{displayName:"App power user",description:"An app user with more access",color:"var(--spectrum-global-color-static-orange-400)"}).addInheritance(ne.BASIC),BASIC:new Lr(ne.BASIC,ne.BASIC,"write",{displayName:"Basic user",description:"Any logged in user",color:"var(--spectrum-global-color-static-green-400)"}).addInheritance(ne.PUBLIC),PUBLIC:new Lr(ne.PUBLIC,ne.PUBLIC,"public",{displayName:"Public user",description:"Accessible to anyone",color:"var(--spectrum-global-color-static-blue-400)"}),BUILDER:new Lr(ne.BUILDER,ne.BUILDER,"admin",{displayName:"Builder user",description:"Users that can edit this app",color:"var(--spectrum-global-color-static-magenta-600)"})};function Rm(){return(0,mc.default)(wm)}s(Rm,"getBuiltinRoles");function kr(t){return Object.values(Om).includes(t)}s(kr,"isBuiltin");function Am(t){return kr(t)?t:qt(t)}s(Am,"prefixRoleIDNoBuiltin");function C_(t){let e=Object.values(wm).find(r=>t.includes(r._id));if(e)return(0,mc.default)(e)}s(C_,"getBuiltinRole");function lk(t,e){if(!e)return!1;let r=s(n=>t.find(i=>Ye(i._id,n)),"find");if(Array.isArray(e)){let n=e.filter(i=>r(i));return e.length!==0&&n.length===e.length}else return!!r(e)}s(lk,"validInherits");function Lo(t){let e=Rm(),r=Object.values(e).length+1;if(Ye(t,ne.ADMIN)||Ye(t,ne.BUILDER))return r;let n=e[t],i=0;do{if(!n)break;if(Array.isArray(n.inherits))throw new Error("Built-in roles don't support multi-inheritance");n=e[n.inherits],i++}while(n!==null);return i}s(Lo,"builtinRoleToNumber");async function dk(t){if(kr(t))return Lo(t);let e=await Dm(t,{defaultPublic:!0}),r=s(n=>{if(!n.inherits)return 0;if(Array.isArray(n.inherits)){let i=n.inherits.map(o=>{let a=e.find(u=>Ye(u._id,o));if(a)return r(a)+1}).filter(o=>o).sort().pop();if(i!=null)return i}else if(kr(n.inherits))return Lo(n.inherits)+1;return 0},"findNumber");return Math.max(...e.map(r))}s(dk,"roleToNumber");function fk(t,e){return t?e&&Lo(t)>Lo(e)?e:t:e}s(fk,"lowerBuiltinRoleID");function Ye(t,e){return qt(t)===qt(e)}s(Ye,"roleIDsAreEqual");function pk(t){let e;return t._id&&(e=Ur(t._id)),{...t,_id:e,inherits:P_(t.inherits,t.version)}}s(pk,"externalRole");function Uo(t,e,r){let n=C_(t);n||(t=qt(t));let i=e.find(o=>o._id&&Ye(o._id,t));return!i&&!kr(t)&&r?.defaultPublic?(0,mc.default)(wm.PUBLIC):(n=Object.assign(n||{},i),n?._id&&(n._id=Ur(n._id,n.version)),Object.keys(n).length===0?void 0:n)}s(Uo,"findRole");async function mk(t,e){let r=ei(),n=[];if(!kr(t)){let i=await r.tryGet(v_(t));i&&n.push(i)}return Uo(t,n,e)}s(mk,"getRole");async function hk(t){await ei().bulkDocs(t.filter(r=>r._id).map(r=>({...r,_id:qt(r._id)})))}s(hk,"saveRoles");async function gk(t,e){let r=await Cm();if(Ye(t,ne.ADMIN))return r;let n=Uo(t,r,e),i=[];return n&&(i=new pc(r,e).walk(n)),i}s(gk,"getAllUserRoles");async function b_(t){return(await Dm(t)).map(r=>r._id)}s(b_,"getUserRoleIdHierarchy");async function Dm(t,e){return gk(t,e)}s(Dm,"getUserRoleHierarchy");function x_(t,e){if(t&&!Array.isArray(t[e])){let r=t[e];t[e]=[r],r==="write"&&t[e].push("read")}return t}s(x_,"checkForRoleResourceArray");async function Ek(t){return(await Cm(t)).map(r=>r._id)}s(Ek,"getAllRoleIds");async function Cm(t){if(t)return Qe(t,e);{let r;try{r=ei()}catch{}return e(r)}async function e(r){let n=[];r&&(n=(await r.allDocs(gu(null,{include_docs:!0}))).rows.map(u=>u.doc),n.forEach(u=>u._id=Ur(u._id,u.version)));let i=Rm(),o=[];!r||await yk(r)?o=[ne.ADMIN,ne.POWER,ne.BASIC,ne.PUBLIC]:o=[ne.ADMIN,ne.BASIC,ne.PUBLIC];for(let a of o){let u=i[a],c=n.filter(l=>Ye(l._id,a))[0];c==null?n.push(u||i.BASIC):(n=n.filter(l=>l._id!==c._id),c._id=Ur(u._id,c.version),n.push({...u,...c,name:u.name,_id:Ur(u._id,u.version),uiMetadata:{...c.uiMetadata,...u.uiMetadata}}))}for(let a of n)if(a.permissions)for(let u of Object.keys(a.permissions))a.permissions=x_(a.permissions,u);return n}s(e,"internal")}s(Cm,"getAllRoles");async function yk(t){if(await Tk(t))return!0;let r=(await t.tryGet("app_metadata"))?.creationVersion;return!r||!Sm.default.valid(r)?!0:!Sm.default.gte(r,g.MIN_VERSION_WITHOUT_POWER_ROLE)}s(yk,"shouldIncludePowerRole");async function Tk(t){let r=(await t.tryGet("ta_users"))?.schema?.roleId?.constraints?.inclusion;return!Array.isArray(r)||!r.some(i=>Ye(i,ne.POWER))?!1:r.some(i=>!kr(i))}s(Tk,"hasLegacyPowerRole");var _m=class{static{s(this,"AccessController")}constructor(){this.userHierarchies={}}async hasAccess(e,r){if(e==null||e===""||Ye(e,ne.BUILDER)||Ye(r,e)||Ye(r,ne.BUILDER))return!0;let n=r?this.userHierarchies[r]:null;return!n&&r&&(n=await b_(r),this.userHierarchies[r]=n),n?.find(i=>Ye(i,e))!==void 0}async checkScreensAccess(e,r){let n=[];for(let i of e){let o=await this.checkScreenAccess(i,r);o&&n.push(o)}return n}async checkScreenAccess(e,r){let n=e&&e.routing?e.routing.roleId:void 0;return await this.hasAccess(n,r)?e:null}};function v_(t){return t?.startsWith("role")?t:qt(t)}s(v_,"getDBRoleID");function Ur(t,e){if(t.startsWith(`role${"_"}`)&&(kr(t)||e===Im.NAME)){let r=t.split("_");return r.shift(),r.join("_")}return t}s(Ur,"getExternalRoleID");function P_(t,e){return t&&(typeof t=="string"?Ur(t,e):t.map(r=>Ur(r,e)))}s(P_,"getExternalRoleIDs");var xm={};L(xm,{BUILDER:()=>Ik,BUILTIN_PERMISSIONS:()=>hc,CREATOR:()=>wk,GLOBAL_BUILDER:()=>Rk,PermissionImpl:()=>oe,PermissionLevel:()=>Pi,PermissionType:()=>qo,doesHaveBasePermission:()=>_k,getAllowedLevels:()=>k_,getBuiltinPermissionByID:()=>Ak,getBuiltinPermissions:()=>Sk,isPermissionLevelHigherThanRead:()=>Ok,levelToNumber:()=>U_});var N_=W(require("lodash/flatten")),L_=W(require("lodash/fp/cloneDeep"));var oe=class{static{s(this,"PermissionImpl")}constructor(e,r){this.type=e,this.level=r}};function U_(t){switch(t){case"execute":return 0;case"read":return 1;case"write":return 2;case"admin":return 3;default:return-1}}s(U_,"levelToNumber");function k_(t){switch(t){case"execute":return["execute"];case"read":return["execute","read"];case"write":case"admin":return["execute","read","write"];default:return[]}}s(k_,"getAllowedLevels");var hc={PUBLIC:{_id:"public",name:"Public",permissions:[new oe("webhook","execute")]},READ_ONLY:{_id:"read_only",name:"Read only",permissions:[new oe("query","read"),new oe("table","read"),new oe("app","read")]},WRITE:{_id:"write",name:"Read/Write",permissions:[new oe("query","write"),new oe("table","write"),new oe("automation","execute"),new oe("legacy_view","read"),new oe("app","read")]},POWER:{_id:"power",name:"Power",permissions:[new oe("table","write"),new oe("user","read"),new oe("automation","execute"),new oe("webhook","read"),new oe("legacy_view","read"),new oe("app","read")]},ADMIN:{_id:"admin",name:"Admin",permissions:[new oe("table","admin"),new oe("user","admin"),new oe("automation","admin"),new oe("webhook","read"),new oe("query","admin"),new oe("legacy_view","read"),new oe("app","read")]}};function Sk(){return(0,L_.default)(hc)}s(Sk,"getBuiltinPermissions");function Ak(t){return Object.values(hc).find(r=>r._id===t)}s(Ak,"getBuiltinPermissionByID");function _k(t,e,r){let n=[...new Set(r.map(a=>a.permissionId))],i=Object.values(hc),o=(0,N_.default)(i.filter(a=>n.indexOf(a._id)!==-1).map(a=>a.permissions));for(let a of o)if(a.type===t&&k_(a.level).indexOf(e)!==-1)return!0;return!1}s(_k,"doesHaveBasePermission");function Ok(t){return U_(t)>1}s(Ok,"isPermissionLevelHigherThanRead");var Ik="builder",wk="creator",Rk="globalBuilder";var Nm={};L(Nm,{FlagSet:()=>Ec,all:()=>Pk,flags:()=>vm,getEnvFlags:()=>W_,init:()=>Ck,isEnabled:()=>vk,parseEnvFlags:()=>Tc,shutdown:()=>bk,testutils:()=>Pm});var yc=W(require("crypto")),M_=W(require("dd-trace")),F_=require("lodash"),B_=require("posthog-node");var gc,Dk=s(()=>{let t=g.POSTHOG_FEATURE_FLAGS_POLLING_INTERVAL_MS;if(t){let e=parseInt(t,10);if(!Number.isNaN(e)&&e>0)return e}return me.fromDays(1).toMs()},"getFeatureFlagsPollingInterval");function Ck(t){g.POSTHOG_TOKEN&&g.POSTHOG_API_HOST&&!g.SELF_HOSTED&&g.POSTHOG_FEATURE_FLAGS_ENABLED?(console.log("initializing posthog client..."),gc=new B_.PostHog(g.POSTHOG_TOKEN,{host:g.POSTHOG_API_HOST,personalApiKey:g.POSTHOG_PERSONAL_TOKEN,featureFlagsPollingInterval:Dk(),...t})):console.log("posthog disabled")}s(Ck,"init");function bk(){gc?.shutdown()}s(bk,"shutdown");function Tc(t){let e=t.split(",").map(n=>n.split(":")),r=[];for(let[n,...i]of e)for(let o of i){let a=!0;o.startsWith("!")&&(o=o.slice(1),a=!1),r.push({tenantId:n,key:o,value:a})}return r}s(Tc,"parseEnvFlags");function W_(){return Tc(g.TENANT_FEATURE_FLAGS||"")}s(W_,"getEnvFlags");var Ec=class{constructor(e){this.flagSchema=e;this.setId=yc.randomUUID()}static{s(this,"FlagSet")}defaults(){return(0,F_.cloneDeep)(this.flagSchema)}isFlagName(e){return this.flagSchema[e]!==void 0}async isEnabled(e){return(await this.fetch())[e]}async fetch(){return await M_.default.trace("features.fetch",async e=>{let r=Nf(this.setId);if(r)return e?.addTags({fromCache:!0}),r;let n={},i=this.defaults(),o=$(),a=new Set;if(tu())return i;for(let{tenantId:f,key:m,value:h}of W_())if(!(!f||f!=="*"&&f!==o)&&(n.readFromEnvironmentVars=!0,h===!1&&a.add(m),!!this.isFlagName(m))){if(typeof i[m]!="boolean")throw new Error(`Feature: ${m} is not a boolean`);i[m]=h,n[`flags.${m}.source`]="environment"}let u=Vt(),c=u?._id;if(!c){let f=vf();f&&(c=yc.createHash("sha512").update(f).digest("hex"))}let l=u?.tenantId;if(l||(l=o),n["identity.type"]=u?.type,n["identity._id"]=u?._id,n.tenantId=l,n.userId=c,gc&&c){n.readFromPostHog=!0;let f=await _i(),m={tenantId:l},h={tenant:{id:l}};f.config.createdVersion&&(h.tenant.createdVersion=f.config.createdVersion),f.createdAt&&(h.tenant.createdAt=`${f.createdAt}`);let T=await gc.getAllFlags(c,{personProperties:m,onlyEvaluateLocally:!0,groups:{tenant:l},groupProperties:h});for(let[E,p]of Object.entries(T))if(this.isFlagName(E)){if(typeof p!="boolean"){console.warn(`Invalid value for posthog flag "${E}": ${p}`);continue}if(!(i[E]===!0||a.has(E)))try{i[E]=p,n[`flags.${E}.source`]="posthog"}catch(y){console.warn(`Error parsing posthog flag "${E}": ${p}`,y)}}}let d=Uf();for(let[f,m]of Object.entries(d))this.isFlagName(f)&&typeof m=="boolean"&&(i[f]=m,n[`flags.${f}.source`]="override");Lf(this.setId,i);for(let[f,m]of Object.entries(i))n[`flags.${f}.value`]=m;return e?.addTags(n),i})}},xk={USE_ZOD_VALIDATOR:!1,AI_RAG_SHAREPOINT:!1,AI_AGENT_INSTRUCTIONS:!1,AI_TESTS:!1,MULTIPLE_OPERATIONS:!1,FRONT_COMPANION:!1,DEBUG_UI:g.isDev(),DEV_USE_CLIENT_FROM_STORAGE:!1},vm=new Ec(xk);async function vk(t){return await vm.isEnabled(t)}s(vk,"isEnabled");async function Pk(){return await vm.fetch()}s(Pk,"all");var Pm={};L(Pm,{setFeatureFlags:()=>G_,withFeatureFlags:()=>Uk});function Nk(){let t={};for(let{tenantId:e,key:r,value:n}of Tc(process.env.TENANT_FEATURE_FLAGS||"")){let i=t[e]||{};i[r]!==!1&&(i[r]=n,t[e]=i)}return t}s(Nk,"getCurrentFlags");function Lk(t){let e=[];for(let[r,n]of Object.entries(t))for(let[i,o]of Object.entries(n))o===!1?e.push(`${r}:!${i}`):e.push(`${r}:${i}`);return e.join(",")}s(Lk,"buildFlagString");function G_(t,e){let r=Nk();for(let[i,o]of Object.entries(e)){let a=r[t]||{};a[i]=o,r[t]=a}let n=Lk(r);return bs({TENANT_FEATURE_FLAGS:n})}s(G_,"setFeatureFlags");function Uk(t,e,r){let n=G_(t,e),i=r();return i instanceof Promise?i.finally(n):(n(),i)}s(Uk,"withFeatureFlags");var Qm={};L(Qm,{adminOnly:()=>Sc,auditLog:()=>Ac,authError:()=>Ie,buildAuthMiddleware:()=>SM,buildCsrfMiddleware:()=>_M,buildTenancyMiddleware:()=>AM,builderOnly:()=>xc,builderOrAdmin:()=>vc,google:()=>ir,internalApi:()=>Nc,joiValidator:()=>ko,oidc:()=>sr,passport:()=>OM,platformLogout:()=>CM,refreshOAuthToken:()=>RM,ssoCallbackUrl:()=>Fr,updateUserOAuth:()=>DM,workspaceBuilderOrAdmin:()=>kc});var Km={};L(Km,{activeTenant:()=>fO,adminOnly:()=>Sc,auditLog:()=>Ac,authError:()=>Ie,authenticated:()=>bc,builderOnly:()=>xc,builderOrAdmin:()=>vc,correlation:()=>V_,csp:()=>Z_,csrf:()=>Pc,datasource:()=>yM,errorHandling:()=>tO,featureFlagCookie:()=>rO,google:()=>ir,internalApi:()=>Nc,ip:()=>nO,joiValidator:()=>ko,local:()=>Ri,oidc:()=>sr,pino:()=>q_,querystringToBody:()=>dO,ssoCallbackUrl:()=>Fr,tenancy:()=>Uc,workspaceBuilderOrAdmin:()=>kc});var $_=require("uuid");var kk=require("correlation-id"),V_=s((t,e)=>{let r=t.headers["x-budibase-correlation-id"];return r||(r=(0,$_.v4)()),kk.withId(r,()=>e())},"correlationMiddleware");var Mk=require("koa-pino-logger"),Fk=require("correlation-id");function Bk(){return{logger:Uu,genReqId:Fk.getId,autoLogging:{ignore:s(t=>!!t.url?.includes("/health"),"ignore")},serializers:{req:s(t=>({method:t.method,url:t.url,correlationId:t.id}),"req"),res:s(t=>({status:t.statusCode}),"res")}}}s(Bk,"pinoSettings");function Wk(){return g.HTTP_LOGGING?Mk(Bk()):(t,e)=>e()}s(Wk,"getMiddleware");var q_=Wk();var Sc=s(async(t,e)=>(!t.internal&&!vt(t.user)&&t.throw(403,"Admin user only endpoint."),e()),"adminOnly");var Ac=s((async(t,e)=>e()),"auditLog");var Y_=require("jsonwebtoken");var Gk=/\/:(.*?)(\/.*)?$/g,rr=s(t=>t?t.map(e=>{let r=e.route,n=e.method,i=r.match(Gk);if(i)for(let o of i){let u="/.*"+(o.endsWith("/")?"/":"");r=r.replace(o,u)}return{regex:new RegExp(`^${r}`),method:n,route:r}}):[],"buildMatcherRegex"),nr=s((t,e)=>e.find(({regex:r,method:n})=>{let i=r.test(t.path),o=n==="ALL"?!0:t.request.method.toLowerCase()===n.toLowerCase();return i&&o}),"matches");var Fm={};L(Fm,{SecretOption:()=>j_,compare:()=>Kk,decrypt:()=>wc,decryptFile:()=>Hk,encrypt:()=>qk,encryptFile:()=>Qk,getSecret:()=>Mm});var Nt=W(require("crypto")),Mr=W(require("fs")),Lm=require("path"),Um=W(require("zlib"));var _c="aes-256-ctr",Q_="-",$k=1e4,Vk=32,Oc=16,km=16,j_=(r=>(r.API="api",r.ENCRYPTION="encryption",r))(j_||{});function Mm(t){let e,r;if(t==="encryption"?(e=g.ENCRYPTION_KEY,r="ENCRYPTION_KEY"):(e=g.API_ENCRYPTION_KEY,r="API_ENCRYPTION_KEY"),!e)throw new Error(`Secret "${r}" has not been set in environment.`);return e}s(Mm,"getSecret");function Ic(t,e){return Nt.default.pbkdf2Sync(t,new Uint8Array(e),$k,Vk,"sha512")}s(Ic,"stretchString");function qk(t,e="api"){let r=Nt.default.randomBytes(Oc),n=Ic(Mm(e),r),i=Nt.default.createCipheriv(_c,new Uint8Array(n),new Uint8Array(r)),o=i.update(t,"utf8"),a=i.final(),u=Buffer.concat([new Uint8Array(o),new Uint8Array(a)]).toString("hex");return`${r.toString("hex")}${Q_}${u}`}s(qk,"encrypt");function wc(t,e="api"){let[r,n]=t.split(Q_),i=Buffer.from(r,"hex"),o=Ic(Mm(e),i),a=Nt.default.createDecipheriv(_c,new Uint8Array(o),new Uint8Array(i)),u=a.update(n,"hex"),c=a.final();return Buffer.concat([new Uint8Array(u),new Uint8Array(c)]).toString()}s(wc,"decrypt");function Kk(t,e,r="api"){try{let n=new TextEncoder,i=n.encode(wc(e,r)),o=n.encode(t);return i.length!==o.length?!1:Nt.default.timingSafeEqual(i,o)}catch{return!1}}s(Kk,"compare");async function Qk({dir:t,filename:e},r){let n=`${e}.enc`,i=(0,Lm.join)(t,e);if(Mr.default.lstatSync(i).isDirectory())throw new Error("Unable to encrypt directory");let o=Mr.default.createReadStream(i),a=Mr.default.createWriteStream((0,Lm.join)(t,n)),u=Nt.default.randomBytes(Oc),c=Nt.default.randomBytes(km),l=Ic(r,u),d=Nt.default.createCipheriv(_c,new Uint8Array(l),new Uint8Array(c));return a.write(u),a.write(c),o.pipe(Um.default.createGzip()).pipe(d).pipe(a),new Promise(f=>{a.on("finish",()=>{f({filename:n,dir:t})})})}s(Qk,"encryptFile");async function jk(t){let e=Mr.default.createReadStream(t),r=await K_(e,Oc),n=await K_(e,km);return e.close(),{salt:r,iv:n}}s(jk,"getSaltAndIV");async function Hk(t,e,r){if(Mr.default.lstatSync(t).isDirectory())throw new Error("Unable to decrypt directory");let{salt:n,iv:i}=await jk(t),o=Mr.default.createReadStream(t,{start:Oc+km}),a=Mr.default.createWriteStream(e),u=Ic(r,n),c=Nt.default.createDecipheriv(_c,new Uint8Array(u),new Uint8Array(i)),l=Um.default.createGunzip();return o.pipe(c).pipe(l).pipe(a),new Promise((d,f)=>{a.on("finish",()=>{a.close(),d()}),o.on("error",m=>{a.close(),f(m)}),c.on("error",m=>{a.close(),f(m)}),l.on("error",m=>{a.close(),f(m)}),a.on("error",m=>{a.close(),f(m)})})}s(Hk,"decryptFile");function K_(t,e){return new Promise((r,n)=>{let i=0,o=[];t.on("readable",()=>{let a;for(;(a=t.read(e-i))!==null;)o.push(a),i+=a.length;r(Buffer.concat(o.map(u=>new Uint8Array(u))))}),t.on("end",()=>{n(new Error("Insufficient data in the stream."))}),t.on("error",a=>{n(a)})})}s(K_,"readBytes");var Bm={};L(Bm,{APIWarning:()=>In,FeatureDisabledWarning:()=>Dc,InvalidAPIKeyWarning:()=>wi,UsageLimitWarning:()=>Rc});var In=class extends Error{static{s(this,"APIWarning")}constructor(e,r){super(e),this.code=r}},wi=class extends In{static{s(this,"InvalidAPIKeyWarning")}constructor(){super("Invalid API key","invalid_api_key")}},Rc=class extends In{static{s(this,"UsageLimitWarning")}constructor(e){super(`Usage limit exceeded: '${e}'`,"usage_limit_exceeded"),this.limitName=e}getPublicWarning(){return{limitName:this.limitName}}},Dc=class extends In{static{s(this,"FeatureDisabledWarning")}constructor(e){super(`Feature disabled: '${e}'`,"feature_disabled"),this.featureName=e,this.status=400}getPublicWarning(){return{featureName:this.featureName}}getPublicError(){return{featureName:this.featureName}}};var z_=W(require("dd-trace"));var zk=g.SESSION_UPDATE_PERIOD?parseInt(g.SESSION_UPDATE_PERIOD):60*1e3;function Jk(){return new Date(Date.now()-zk).toISOString()}s(Jk,"timeMinusOneMinute");function H_(t,e={}){t.publicEndpoint=e.publicEndpoint||!1,t.isAuthenticated=e.authenticated||!1,t.loginMethod=e.loginMethod,t.user=e.user,t.internal=e.internal||!1,t.version=e.version}s(H_,"finalise");async function Xk(t,e){if(Hs(t))return{valid:!0,user:void 0};let n=wc(t).split("_")[0];return Ce(n,async()=>{let i;try{let o=Y();i=await Qt("by_api_key",{key:t},o)}catch{i=void 0}if(i)return{valid:!0,user:await bo({userId:i,tenantId:n,populateUser:e})};throw new wi})}s(Xk,"checkApiKey");function Cc(t,e){let r=t.request.headers[e];if(Array.isArray(r))throw new Error("Unexpected header format");return r}s(Cc,"getHeader");function bc(t=[],e={publicAllowed:!1}){let r=t?rr(t):[];return(async(n,i)=>{let o=!1,a=Cc(n,"x-budibase-api-version");nr(n,r)&&(o=!0);try{let c=Cc(n,"x-budibase-token"),l=Ht(n,"budibase:auth"),d=l||Su(c);d&&!d.exp&&(l&&Yt(n,"budibase:auth"),n.throw(401,"Session token missing expiration, please log in again"));let f=Cc(n,"x-budibase-api-key");!f&&n.request.headers.authorization&&(f=n.request.headers.authorization.split(" ")[1]);let m=Cc(n,"x-budibase-tenant-id"),h=!1,T,E=!1,p;if(d&&!f){let A=d.sessionId,_=d.userId,I;try{I=await Hp(_,A),e&&e.populateUser?T=await bo({userId:_,tenantId:I.tenantId,email:I.email,populateUser:e.populateUser(n)}):T=await bo({userId:_,tenantId:I.tenantId,email:I.email}),T.csrfToken=I.csrfToken,p="cookie",I?.lastAccessedAt<Jk()&&await jp(I),h=!0}catch(O){h=!1,console.warn(`Auth Error: ${O.message}`),Yt(n,"budibase:auth")}}if(!h&&f){let A=e.populateUser?e.populateUser(n):null,{valid:_,user:I}=await Xk(f,A);_&&(h=!0,p="api_key",T=I,E=!I)}!T&&m?T={tenantId:m}:T&&"password"in T&&delete T.password,h||(h=!1);let y=s(A=>A&&A.email,"isUser");return y(T)&&z_.default.setUser({id:T._id,tenantId:T.tenantId,budibaseAccess:T.budibaseAccess,status:T.status}),H_(n,{authenticated:h,user:T,internal:E,version:a,publicEndpoint:o,loginMethod:p}),y(T)?mf(T,n,i):i()}catch(c){if(console.warn(`Auth Error: ${c.message}`),c instanceof Y_.JsonWebTokenError?Yt(n,"budibase:auth"):c?.code==="invalid_api_key"&&n.throw(403,c.message),e&&e.publicAllowed||o)return H_(n,{authenticated:!1,version:a,publicEndpoint:o}),i();n.throw(c.status||403,c.message||"Authentication failed")}})}s(bc,"authenticated");async function xc(t,e){if(t.internal)return e();let r=await dn(t);return!r&&!g.isWorker()?t.throw(403,"This request required a workspace id."):!r&&!Fe(t.user)?t.throw(403,"Builder user only endpoint."):r&&!Ii(t.user,r)&&t.throw(403,"Workspace builder user only endpoint."),e()}s(xc,"builderOnly");async function vc(t,e){if(t.internal||vt(t.user))return e();let r=await dn(t);return!r&&!g.isWorker()?t.throw(403,"This request required a workspace id."):!r&&!Fe(t.user)?t.throw(403,"Admin/Builder user only endpoint."):r&&!Ii(t.user,r)&&t.throw(403,"Workspace Admin/Builder user only endpoint."),e()}s(vc,"builderOrAdmin");var X_=W(require("crypto"));var J_={"default-src":["'self'"],"script-src":["'self'","'unsafe-eval'","https://*.budibase.net","https://cdn.budi.live","https://js.intercomcdn.com","https://widget.intercom.io","https://d2l5prqdbvm3op.cloudfront.net","https://us-assets.i.posthog.com","https://www.google.com/recaptcha/api.js","https://companion.frontapp.com"],"style-src":["'self'","'unsafe-inline'","https://cdn.jsdelivr.net","https://fonts.googleapis.com","https://rsms.me","https://maxcdn.bootstrapcdn.com"],"object-src":["'none'"],"base-uri":["'self'"],"connect-src":["'self'","https://*.budibase.app","https://*.budibaseqa.app","https://*.budibase.net","https://api-iam.intercom.io","https://api-ping.intercom.io","https://app.posthog.com","https://us.i.posthog.com","wss://nexus-websocket-a.intercom.io","wss://nexus-websocket-b.intercom.io","https://nexus-websocket-a.intercom.io","https://nexus-websocket-b.intercom.io","https://uploads.intercomcdn.com","https://uploads.intercomusercontent.com","https://*.amazonaws.com","https://*.s3.amazonaws.com","https://*.s3.us-east-2.amazonaws.com","https://*.s3.us-east-1.amazonaws.com","https://*.s3.us-west-1.amazonaws.com","https://*.s3.us-west-2.amazonaws.com","https://*.s3.af-south-1.amazonaws.com","https://*.s3.ap-east-1.amazonaws.com","https://*.s3.ap-south-1.amazonaws.com","https://*.s3.ap-northeast-2.amazonaws.com","https://*.s3.ap-southeast-1.amazonaws.com","https://*.s3.ap-southeast-2.amazonaws.com","https://*.s3.ap-northeast-1.amazonaws.com","https://*.s3.ca-central-1.amazonaws.com","https://*.s3.cn-north-1.amazonaws.com","https://*.s3.cn-northwest-1.amazonaws.com","https://*.s3.eu-central-1.amazonaws.com","https://*.s3.eu-west-1.amazonaws.com","https://*.s3.eu-west-2.amazonaws.com","https://*.s3.eu-south-1.amazonaws.com","https://*.s3.eu-west-3.amazonaws.com","https://*.s3.eu-north-1.amazonaws.com","https://*.s3.sa-east-1.amazonaws.com","https://*.s3.me-south-1.amazonaws.com","https://*.s3.us-gov-east-1.amazonaws.com","https://*.s3.us-gov-west-1.amazonaws.com","https://api.github.com","https://d2l5prqdbvm3op.cloudfront.net","https://companion.frontapp.com","https://*.frontapp.com"],"font-src":["'self'","data:","https://cdn.jsdelivr.net","https://fonts.gstatic.com","https://rsms.me","https://maxcdn.bootstrapcdn.com","https://js.intercomcdn.com","https://fonts.intercomcdn.com"],"frame-src":["'self'","https:"],"img-src":["http:","https:","data:","blob:"],"manifest-src":["'self'"],"media-src":["'self'","https://js.intercomcdn.com","https://cdn.budi.live"],"worker-src":["blob:","'self'"]},Wm=/^[A-Za-z0-9-*:/.]+$/,Z_=s((async(t,e)=>{let r=X_.default.randomBytes(16).toString("base64");t.state.nonce=r;let n={...J_};n["script-src"]=[...J_["script-src"],`'nonce-${r}'`];let i={"media-src":g.CUSTOM_CSP_MEDIA_SRC,"script-src":g.CUSTOM_CSP_SCRIPT_SRC,"connect-src":g.CUSTOM_CSP_CONNECT_SRC,"img-src":g.CUSTOM_CSP_IMG_SRC,"font-src":g.CUSTOM_CSP_FONT_SRC,"frame-src":g.CUSTOM_CSP_FRAME_SRC};for(let[c,l]of Object.entries(i))if(l){let d=l.split(",").map(f=>f.trim()).filter(f=>Wm.test(f));n[c]=[...n[c]||[],...d]}let o=t.request?.get("x-budibase-embed")?.toLowerCase()==="true",a=t.user?.license?.features.includes("customAppScripts");if(o&&(n["frame-ancestors"]=["*"]),t.appId&&(o||a))try{let c=await Bs.getWorkspaceMetadata(t.appId);if("name"in c){if(a)for(let l of c.scripts||[]){let d=(l.cspWhitelist||"").split(`
|
|
38
38
|
`).filter(m=>Wm.test(m)),f=["default-src","script-src","connect-src","media-src","img-src","font-src","frame-src"];for(let m of f)n[m]=[...n[m]||[],...d]}if(o){let l=(c.embedAllowedOrigins||[]).map(d=>d.trim()).filter(d=>Wm.test(d));n["frame-ancestors"]=l.length?l:["*"]}}}catch(c){console.error(`Error occurred in Content-Security-Policy middleware: ${c}`)}let u=Object.entries(n).map(([c,l])=>`${c} ${l.join(" ")}`).join("; ");t.set("Content-Security-Policy",u),await e()}),"contentSecurityPolicy");var Zk=["GET","HEAD","OPTIONS"],eM=["application/x-www-form-urlencoded","multipart/form-data","text/plain"];function Pc(t={noCsrfPatterns:[]}){let e=rr(t.noCsrfPatterns);return(async(r,n)=>{if(nr(r,e)||Zk.indexOf(r.method)!==-1)return n();let o=r.get("content-type")?r.get("content-type").toLowerCase():"";if(!eM.filter(c=>o.includes(c)).length||r.internal)return n();let a=r.user?.csrfToken;if(!a)return n();let u=r.get("x-csrf-token");return(!u||u!==a)&&r.throw(403,"Invalid CSRF token"),n()})}s(Pc,"csrf");function eO(t){if(t.includes("-----BEGIN PRIVATE KEY-----"))return!0;for(let e of dT){let r=g[e];if(!(typeof r!="string"||r==="")&&t.includes(r))return!0}return!1}s(eO,"stringContainsSecret");async function tO(t,e){try{await e()}catch(r){let n=r.status||r.statusCode||500;t.status=n,n>=400&&n<500?console.warn(r):console.error("Got 5xx response code",r);let i={message:r.message,status:n,validationErrors:r.validation,error:Hu(r)};if(eO(JSON.stringify(i))&&(i={message:"Unexpected error",status:n,error:"Unexpected error"}),g.isTest()&&t.headers["x-budibase-include-stacktrace"]){let o=r;for(;o.cause;)o=o.cause;i.stack=o.stack}t.body=i}}s(tO,"errorHandling");var rO=s((async(t,e)=>{let n=Ht(t,"budibase:featureflags")?.flags||{};await kf(n,async()=>{await e()})}),"featureFlagCookie");async function Nc(t,e){let r=t.request.headers["x-budibase-api-key"];return r||t.throw(403,"Unauthorized"),Array.isArray(r)&&t.throw(403,"Unauthorized"),Hs(r)||t.throw(403,"Unauthorized"),e()}s(Nc,"internalApi");async function nO(t,e){return t.ip?await Pf(t.ip,()=>e()):e()}s(nO,"ip");var ko={};L(ko,{body:()=>tM,params:()=>rM});var Gm=W(require("joi"));function iO(t,e,r){let n=r?.errorPrefix??`Invalid ${e}`;return(i,o)=>{if(!t)return o();let a=null,u=i.request?.[e];i[e]!=null?a=i[e]:u!=null&&(a=u),t.append&&(t=t.append({createdAt:Gm.default.any().optional(),updatedAt:Gm.default.any().optional()}));let{error:c}=t.validate(a,{allowUnknown:r?.allowUnknown});if(c){let l=c.message;n&&(l=`Invalid ${e} - ${l}`),i.throw(400,l)}return o()}}s(iO,"validate");function tM(t,e){return iO(t,"body",e)}s(tM,"body");function rM(t,e){return iO(t,"params",e)}s(rM,"params");var Ri={};L(Ri,{authenticate:()=>sM,options:()=>iM});function Ie(t,e,r){return t(r,null,{message:e})}s(Ie,"authError");async function Fr(t,e){if(e&&e.callbackURL)return e.callbackURL;let r=await Em(),n="/api/global/auth";return Tr()&&(n+=`/${$()}`),n+=`/${t}/callback`,`${r.platformUrl}${n}`}s(Fr,"ssoCallbackUrl");var $m="Invalid credentials",nM="This account has expired. Please reset your password",iM={passReqToCallback:!0};async function sM(t,e,r,n){if(!e)return Ie(n,"Email Required");if(!r)return Ie(n,"Password Required");let i=await _t(e);return i==null?(console.info(`user=${e} could not be found`),Ie(n,$m)):i.status==="inactive"?(console.info(`user=${e} is inactive`,i),Ie(n,$m)):i.password?await lf(r,i.password)?(delete i.password,n(null,i)):Ie(n,$m):(console.info(`user=${e} has no password set`,i),Ie(n,nM))}s(sM,"authenticate");var ir={};L(ir,{buildVerifyFn:()=>aO,getCallbackUrl:()=>uM,strategyFactory:()=>Vm});var Mo=s(t=>Promise.resolve(t),"ssoSaveUserNoOp");async function Lc(t,e=!0,r,n){if(!n)throw new Error("Save user function must be provided");if(!t.userId)return Ie(r,"sso user id required");if(!t.email)return Ie(r,"sso user email required");let i=ni(t.userId),o;try{o=await On(i)}catch(u){if(!u.status||u.status!==404)return Ie(r,"Unexpected error when retrieving existing user",u)}if(o||(o=await _t(t.email)),!o&&e)return Ie(r,"Email does not yet exist. You must set up your local budibase account first.");o||(o={_id:i,email:t.email,roles:{},tenantId:$()});let a=await oM(o,t);a.forceResetPassword=!1;try{delete a.password,a=await n(a,{hashPassword:!1,requirePassword:!1})}catch(u){return Ie(r,"Error saving user",u)}return r(null,a)}s(Lc,"authenticate");async function oM(t,e){let r,n,i;if(e.profile){let o=e.profile;if(o.name){let a=o.name;a.givenName&&(r=a.givenName),a.familyName&&(n=a.familyName)}}return e.oauth2&&(i={...e.oauth2}),{...t,provider:e.provider,providerType:e.providerType,firstName:r,lastName:n,oauth2:i}}s(oM,"syncUser");var aM=require("passport-google-oauth").OAuth2Strategy;function aO(t){return(e,r,n,i)=>{let o={provider:"google",providerType:"google",userId:n.id,profile:n,email:n._json.email,oauth2:{accessToken:e,refreshToken:r}};return Lc(o,!0,i,t)}}s(aO,"buildVerifyFn");async function Vm(t,e,r){try{let{clientID:n,clientSecret:i}=t;if(!n||!i)throw new Error("Configuration invalid. Must contain google clientID and clientSecret");let o=aO(r);return new aM({clientID:t.clientID,clientSecret:t.clientSecret,callbackURL:e},o)}catch(n){throw new Error(`Error constructing google authentication strategy: ${n}`)}}s(Vm,"strategyFactory");async function uM(t){return Fr("google",t)}s(uM,"getCallbackUrl");var sr={};L(sr,{buildVerifyFn:()=>lO,fetchStrategyConfig:()=>pM,getCallbackUrl:()=>mM,strategyFactory:()=>fM});var uO=W(require("node-fetch"));var cO=require("@govtechsg/passport-openidconnect");function lO(t){return async(e,r,n,i,o,a,u,c,l)=>{let d=cM(r,n),f=lM(r,n),m={provider:e,providerType:"oidc",userId:d.id,profile:d,email:dM(d,f),oauth2:{accessToken:a,refreshToken:u}};return Lc(m,!1,l,t)}}s(lO,"buildVerifyFn");function cM(t,e){let r={...t?._json||{}};!r.email&&e.emails?.length&&(r.email=e.emails[0].value);let n=t?.displayName||e.displayName;return{id:t?.id||e.id,name:t?.name||e.name||!!n&&{givenName:n,familyName:""}||void 0,_json:r,provider:t?.provider}}s(cM,"normalizeProfile");function lM(t,e){return{email:t?._json?.email||e.emails?.[0]?.value,preferred_username:e.username}}s(lM,"buildJwtClaims");function dM(t,e){if(t._json.email)return t._json.email.toLowerCase();if(e.email)return e.email.toLowerCase();let r=e.preferred_username;if(r&&ip(r))return r.toLowerCase();throw new Error(`Could not determine user email from profile ${JSON.stringify(t)} and claims ${JSON.stringify(e)}`)}s(dM,"getEmail");async function fM(t,e){try{let r=lO(e),n=new cO.Strategy(t,r);return n.name="oidc",n}catch(r){throw new Error(`Error constructing OIDC authentication strategy - ${r}`)}}s(fM,"strategyFactory");async function pM(t,e){try{let{clientID:r,clientSecret:n,configUrl:i,pkce:o}=t;if(!r||!n||!e||!i)throw new Error("Configuration invalid. Must contain clientID, clientSecret, callbackUrl and configUrl");let a=await(0,uO.default)(i);if(!a.ok)throw new Error(`Unexpected response when fetching openid-configuration: ${a.statusText}`);let u=await a.json();return{issuer:u.issuer,authorizationURL:u.authorization_endpoint,tokenURL:u.token_endpoint,userInfoURL:u.userinfo_endpoint,clientID:r,clientSecret:n,callbackURL:e,pkce:o}}catch(r){throw new Error(`Error constructing OIDC authentication configuration - ${r}`)}}s(pM,"fetchStrategyConfig");async function mM(){return Fr("oidc")}s(mM,"getCallbackUrl");function dO(t,e){let r=t.request.query?.query;if(t.request.method.toLowerCase()!=="get"&&t.throw(500,"Query to download middleware can only be used for get requests."),!r)return e();let n=decodeURIComponent(r),i;try{i=JSON.parse(n)}catch{return e()}return t.request.body=i,e()}s(dO,"querystringToBody");function Uc(t,e,r={noTenancyRequired:!1}){let n=rr(t),i=rr(e);return async function(o,a){let c={allowNoTenant:r.noTenancyRequired||!!nr(o,i)};nr(o,n)||(c.excludeStrategies=["query"]);let d=Qs(o,c);return d&&o.set("x-budibase-tenant-id",d),Ce(d,a)}}s(Uc,"tenancy");function fO(t=[]){let e=rr(t);return async function(r,n){if(nr(r,e))return n();try{if((await We("settings"))?.config?.active===!1){r.status=404,r.body={message:"Tenant not found"};return}}catch(i){if(i.message==="Global DB not found")return n();throw i}return n()}}s(fO,"activeTenant");async function kc(t,e){if(t.internal||vt(t.user))return e();let r=await dn(t);return r&&!ic(t.user,r)?t.throw(403,"Workspace Admin/Builder user only endpoint."):!r&&!g.isWorker()?t.throw(403,"This request required a workspace id."):!r&&!Fe(t.user)&&t.throw(403,"Admin/Builder user only endpoint."),e()}s(kc,"workspaceBuilderOrAdmin");var qm={};L(qm,{postAuth:()=>EM,preAuth:()=>gM});var hM=require("passport-google-oauth").OAuth2Strategy;async function pO(){let t=await ym();if(!t)throw new Error("No google configuration found");return t}s(pO,"fetchGoogleCreds");async function gM(t,e,r){let n=await pO(),o=`${await No({tenantAware:!1})}/api/global/auth/datasource/google/callback`,a=await Vm(n,o,Mo);return e.query.appId||e.throw(400,"appId query param not present."),t.authenticate(a,{scope:["profile","email","https://www.googleapis.com/auth/spreadsheets"],accessType:"offline",prompt:"consent"})(e,r)}s(gM,"preAuth");async function EM(t,e,r){let n=await pO(),o=`${await No({tenantAware:!1})}/api/global/auth/datasource/google/callback`,a=Ht(e,"budibase:datasourceauth");if(!a)throw new Error("Unable to fetch datasource auth cookie");return t.authenticate(new hM({clientID:n.clientID,clientSecret:n.clientSecret,callbackURL:o},(u,c,l,d)=>{Yt(e,"budibase:datasourceauth"),d(null,{accessToken:u,refreshToken:c})}),{successRedirect:"/",failureRedirect:"/error"},async(u,c)=>{let l=`/builder/workspace/${a.appId}/data`,d=Z();await gn(`datasource:creation:${a.appId}:google:${d}`,{tokens:c}),e.redirect(`${l}/new?continue_google_setup=${d}`)})(e,r)}s(EM,"postAuth");var yM={google:qm};var mO=require("koa-passport"),TM=require("passport-local").Strategy,Mc=require("passport-oauth2-refresh"),SM=bc,AM=Uc,_M=Pc,OM=mO;mO.use(new TM(Ri.options,Ri.authenticate));async function IM(t,e){let r=await sr.getCallbackUrl(),n,i;try{if(n=await sr.fetchStrategyConfig(t,r),!n)throw new Error("OIDC Config contents invalid");i=await sr.strategyFactory(n,Mo)}catch{throw new Error("Could not refresh OAuth Token")}return Mc.use(i),new Promise(o=>{Mc.requestNewAccessToken("oidc",e,(a,u,c,l)=>{o({err:a,accessToken:u,refreshToken:c,params:l})})})}s(IM,"refreshOIDCAccessToken");async function wM(t,e){let r=await ir.getCallbackUrl(t),n;try{n=await ir.strategyFactory(t,r,Mo)}catch(i){throw new Error(`Error constructing OIDC refresh strategy: message=${i.message}`)}return Mc.use(n),new Promise(i=>{Mc.requestNewAccessToken("google",e,(o,a,u,c)=>{i({err:o,accessToken:a,refreshToken:u,params:c})})})}s(wM,"refreshGoogleAccessToken");async function RM(t,e,r){switch(e){case"oidc":{if(!r)return{err:{data:"OIDC config id not provided"}};let n=await Tm(r);return n?IM(n,t):{err:{data:"OIDC configuration not found"}}}case"google":{let n=await fc();return n?wM(n,t):{err:{data:"Google configuration not found"}}}}}s(RM,"refreshOAuthToken");async function DM(t,e){let r={accessToken:e.accessToken,refreshToken:e.refreshToken};try{let n=Y(),i=await n.get(t);typeof r.refreshToken!="string"&&delete r.refreshToken,i.oauth2={...i.oauth2,...r},await n.put(i),await xo(t)}catch(n){console.error("Could not update OAuth details for current user",n)}}s(DM,"updateUserOAuth");async function CM(t){let e=t.ctx,r=t.userId,n=t.keepActiveSession;if(!e)throw new Error("Koa context must be supplied to logout.");let i=Ht(e,"budibase:auth"),o=await ho(r);i&&n?o=o.filter(u=>u.sessionId!==i.sessionId):Yt(e,"budibase:auth");let a=o.map(({sessionId:u})=>u);await An(r,{sessionIds:a,reason:"logout"}),await rc.logout(e.user?.email),await xo(r)}s(CM,"platformLogout");var Hm={};L(Hm,{validate:()=>NM});var P=W(require("joi"));var bM=["Relational","Non-relational","Spreadsheet","Object store","Graph","API"];function jm(t,e){let{error:r}=t.validate(e);if(r)throw r}s(jm,"runJoi");function xM(t){let e=P.default.object({type:P.default.string().allow("component").required(),metadata:P.default.object().unknown(!0).required(),hash:P.default.string().optional(),version:P.default.string().optional(),schema:P.default.object({name:P.default.string().required(),settings:P.default.array().items(P.default.object().unknown(!0)).required()}).unknown(!0)});jm(e,t)}s(xM,"validateComponent");function vM(t){let e=P.default.object({type:P.default.string().allow(...Object.values(Gc)).required(),required:P.default.boolean().required(),default:P.default.any(),display:P.default.string()}),r=P.default.object({type:P.default.string().allow(...Object.values(Wc)),readable:P.default.boolean(),displayName:P.default.string(),fields:P.default.object().pattern(P.default.string(),e)}).required(),n=P.default.object({type:P.default.string().allow("datasource").required(),metadata:P.default.object().unknown(!0).required(),hash:P.default.string().optional(),version:P.default.string().optional(),schema:P.default.object({docs:P.default.string(),plus:P.default.boolean().optional(),isSQL:P.default.boolean().optional(),auth:P.default.object({type:P.default.string().required()}).optional(),features:P.default.object(Object.fromEntries(Object.values($c).map(i=>[i,P.default.boolean().optional()]))).optional(),relationships:P.default.boolean().optional(),description:P.default.string().required(),friendlyName:P.default.string().required(),type:P.default.string().allow(...bM),datasource:P.default.object().pattern(P.default.string(),e).required(),query:P.default.object().pattern(P.default.string(),r).unknown(!0).required(),extra:P.default.object().pattern(P.default.string(),P.default.object({type:P.default.string().required(),displayName:P.default.string().required(),required:P.default.boolean(),data:P.default.object()}))})});jm(n,t)}s(vM,"validateDatasource");function PM(t){let e=P.default.object().pattern(P.default.string(),{type:P.default.string().allow(...Object.values(Vc)).required(),customType:P.default.string().allow(...Object.values(qc)),title:P.default.string(),description:P.default.string(),enum:P.default.array().items(P.default.string()),pretty:P.default.array().items(P.default.string())}),r=P.default.object({properties:e,required:P.default.array().items(P.default.string())}).concat(e).required(),n=P.default.object({type:P.default.string().allow("automation").required(),metadata:P.default.object().unknown(!0).required(),hash:P.default.string().optional(),version:P.default.string().optional(),schema:P.default.object({name:P.default.string().required(),tagline:P.default.string().required(),icon:P.default.string().required(),description:P.default.string().required(),type:P.default.string().allow("ACTION","LOGIC").required(),stepId:P.default.string().disallow(...hh).required(),inputs:P.default.object().optional(),schema:P.default.object({inputs:r,outputs:r}).required()})});jm(n,t)}s(PM,"validateAutomation");function NM(t){switch(t?.type){case"component":xM(t);break;case"datasource":vM(t);break;case"automation":PM(t);break;default:throw new Error(`Unknown plugin type - check schema.json: ${t.type}`)}}s(NM,"validate");var Ym={};L(Ym,{Client:()=>Re,clients:()=>Ar,locks:()=>yn,utils:()=>Ha});var Jm={};L(Jm,{init:()=>UM});var LM={"user:created":t=>t.userId,"user:updated":t=>t.userId,"user:deleted":t=>t.userId,"user:admin:assigned":t=>t.userId,"user:admin:removed":t=>t.userId,"user:builder:assigned":t=>t.userId,"user:builder:removed":t=>t.userId,"user_group:created":t=>t.groupId,"user_group:updated":t=>t.groupId,"user_group:deleted":t=>t.groupId,"user_group:user_added":t=>t.groupId,"user_group:users_deleted":t=>t.groupId,"user_group:permissions_edited":t=>t.groupId,"automation:deleted":t=>t.automationId,"datasource:deleted":t=>t.datasourceId,"table:deleted":t=>t.tableId,"query:deleted":t=>t.queryId,"workspace_app:deleted":t=>t.workspaceAppId,"view:deleted":t=>t.id};function hO(t,e){let r=LM[t];if(!r)throw new Error("Event does not have a method of document ID extraction");return r(e)}s(hO,"getDocumentId");var Fo=class{constructor(e){this.processors=[];this.processors=e}static{s(this,"DocumentUpdateProcessor")}async processEvent(e,r,n){let i=r.realTenantId,o=hO(e,n);if(!(!i||!o))for(let{events:a,processor:u}of this.processors)a.includes(e)&&await Ce(i,async()=>{await u({id:o,tenantId:i,appId:n.appId,properties:n})})}shutdown(){return kA()}};var gO,zm;function UM(t){St||Xu(),zm||(zm=new Fo(t)),gO||(gO=St.process(async e=>{let{event:r,identity:n,properties:i}=e.data;await zm.processEvent(r,n,i)}))}s(UM,"init");var oh={};L(oh,{COUNT_FIELD_NAME:()=>ih,Sql:()=>IO,SqlTable:()=>Fc,designDoc:()=>sh,utils:()=>wf});var SO=require("knex");var kM=require("knex");function Xm(t){return["link","formula","ai"].indexOf(t)!==-1}s(Xm,"isIgnoredType");function EO(t,e,r,n,i){let o=e&&e.primary?e.primary:[],a=Object.values(e.schema),u=a.filter(m=>m.meta),c=u.length===a.length,l=[];n||(c?t.primary(u.map(m=>m.name)):o.length===1?(t.increments(o[0]).primary(),l.push(o[0])):t.primary(o));let d=Object.values(e.schema).map(m=>m.foreignKey);for(let[m,h]of Object.entries(e.schema)){let T=n?.schema[m];if(T&&T.type||l.includes(m)||i?.updated===m)continue;let E=h.type;switch(E){case"string":case"options":case"longform":case"barcodeqr":case"bb_reference_single":o.includes(m)?t.string(m,255):t.text(m);break;case"number":if(h.meta&&h.meta.toKey&&h.meta.toTable){let{toKey:p,toTable:y}=h.meta;t.integer(m).unsigned(),t.foreign(m).references(`${y}.${p}`)}else d.indexOf(m)===-1&&t.float(m);break;case"bigint":t.bigint(m);break;case"boolean":t.boolean(m);break;case"datetime":h.timeOnly?t.time(m):t.datetime(m,{useTz:!h.ignoreTimezones});break;case"array":case"bb_reference":Ue.schema.isDeprecatedSingleUserColumn(h)?t.text(m):t.json(m);break;case"link":if(h.relationshipType!=="many-to-one"&&h.relationshipType!=="many-to-many"){if(!h.foreignKey||!h.tableId)throw new Error("Invalid relationship schema");let{tableName:p}=Sf(h.tableId),y=r[p];if(!y||!y.primary)throw new Error("Referenced table doesn't exist or has no primary keys");let A=y.primary[0],_=y.schema[A].externalType;_?t.specificType(h.foreignKey,_):t.integer(h.foreignKey).unsigned(),t.foreign(h.foreignKey).references(`${p}.${A}`)}break;case"signature_single":case"attachment":case"attachment_single":t.json(m);break;case"formula":break;case"ai":break;case"auto":case"json":case"internal":throw new Error(`${h.type} is not a valid SQL type`);default:wt.unreachable(E)}}let f=i?n?.schema[i.old].type:void 0;return i&&f&&!Xm(f)&&t.renameColumn(i.old,i.updated),n&&Object.entries(n.schema).filter(([h,T])=>!Xm(T.type)&&e.schema[h]==null).forEach(([h,T])=>{i?.old===h||Xm(T.type)||(n.constrained&&n.constrained.indexOf(h)!==-1&&t.dropForeign(h),t.dropColumn(h))}),t}s(EO,"generateSchema");function FM(t,e,r){return t.createTable(e.name,n=>{EO(n,e,r)})}s(FM,"buildCreateTable");function BM(t,e,r,n,i){return t.alterTable(e.name,o=>{EO(o,e,r,n,i)})}s(BM,"buildUpdateTable");function WM(t,e){return t.dropTable(e.name)}s(WM,"buildDeleteTable");var Zm=class{static{s(this,"SqlTableQueryBuilder")}constructor(e){this.sqlClient=e}getBaseSqlClient(){return this.sqlClient}getSqlClient(){return this.extendedSqlClient||this.sqlClient}setExtendedSqlClient(e){this.extendedSqlClient=e}_operation(e){return e.operation}_tableQuery(e){let r=(0,kM.knex)({client:this.sqlClient}).schema;e?.schema&&(r=r.withSchema(e.schema));let n;if(!e.table||!e.tables)throw new Error("Cannot execute without table being specified");if(e.table.sourceType==="internal")throw new Error("Cannot perform table actions for SQS.");switch(this._operation(e)){case"CREATE_TABLE":n=FM(r,e.table,e.tables);break;case"UPDATE_TABLE":if(!e.table)throw new Error("Must specify old table for update");if(this.sqlClient==="mysql2"&&e.meta?.renamed){let i=e.meta.renamed.updated;return{sql:`alter table ${e?.schema?`\`${e.schema}\`.\`${e.table.name}\``:`\`${e.table.name}\``} rename column \`${e.meta.renamed.old}\` to \`${i}\`;`,bindings:[]}}if(n=BM(r,e.table,e.tables,e.meta?.oldTable,e.meta?.renamed),this.sqlClient==="mssql"&&e.meta?.renamed){let i=e.meta.renamed.old,o=e.meta.renamed.updated,a=e?.schema?`${e.schema}.${e.table.name}`:`${e.table.name}`,u=Jn(n);if(Array.isArray(u))for(let c of u)c.sql.startsWith("exec sp_rename")&&(c.sql=`exec sp_rename '${a}.${i}', '${o}', 'COLUMN'`,c.bindings=[]);return u}break;case"DELETE_TABLE":n=WM(r,e.table);break;default:throw new Error("Table operation is of unknown type")}return Jn(n)}},Fc=Zm;var AO=require("lodash");var ih="__bb_total";function yO(){return(g.SQL_MAX_ROWS?parseInt(g.SQL_MAX_ROWS):null)||5e3}s(yO,"getBaseLimit");function eh(){return(g.SQL_MAX_RELATED_ROWS?parseInt(g.SQL_MAX_RELATED_ROWS):null)||500}s(eh,"getRelationshipLimit");function GM(t,e){return t.sort((r,n)=>{let i=e.find(a=>a&&r.endsWith(a)),o=e.find(a=>a&&n.endsWith(a));return i&&!o?-1:!i&&o?1:r.localeCompare(n)})}s(GM,"prioritisedArraySort");function _O(t){return Array.isArray(t)?t.map(e=>_O(e)):(t.bindings&&(t.bindings=t.bindings.map(e=>typeof e=="boolean"?e?1:0:e)),t)}s(_O,"convertBooleans");function TO(t){return t.sourceType==="internal"||t.sourceId===jc}s(TO,"isSqs");function $M(t,e='"'){return t.replace(new RegExp(e,"g"),`${e}${e}`)}s($M,"escapeQuotes");function VM(t,e='"'){return`${e}${$M(t,e)}${e}`}s(VM,"wrap");function qM(t,e='"'){for(let r in t)typeof t[r]=="string"&&(t[r]=VM(t[r],e));return`[${t.join(",")}]`}s(qM,"stringifyArray");function th(t){return`{${(Array.isArray(t)?t:t==null?[]:[t]).map(n=>{if(typeof n=="string"&&n.length>1){let i=n[0],o=n[n.length-1];if(i==='"'&&o==='"'||i==="'"&&o==="'")return n.substring(1,n.length-1)}return`${n}`}).join(",")}}`}s(th,"toPgArrayLiteral");function OO(t){return Eh.includes(t.type)&&!Ue.schema.isDeprecatedSingleUserColumn(t)}s(OO,"isJsonColumn");var KM={equal:!1,notEqual:!0,empty:!1,notEmpty:!0,fuzzy:!1,string:!1,range:!1,contains:!1,notContains:!0,containsAny:!1,oneOf:!1,notOneOf:!0,$and:!1,$or:!1},rh=class{constructor(e,r,n){this.SPECIAL_SELECT_CASES={POSTGRES_ARRAY:s(e=>this.client==="pg"&&e?.externalType?.toLowerCase()==="array","POSTGRES_ARRAY"),POSTGRES_MONEY:s(e=>this.client==="pg"&&e?.externalType?.includes("money"),"POSTGRES_MONEY"),POSTGRES_ENUM:s(e=>this.client==="pg"&&e?.externalType?.toLowerCase()==="user-defined"&&e?.type==="options","POSTGRES_ENUM"),MSSQL_DATES:s(e=>this.client==="mssql"&&e?.type==="datetime"&&e.timeOnly,"MSSQL_DATES")};this.client=e,this.query=n,this.knex=r,this.splitter=new hr.ColumnSplitter([this.table],{aliases:this.query.tableAliases,columnPrefix:this.query.meta?.columnPrefix})}static{s(this,"InternalBuilder")}get table(){return this.query.table}get knexClient(){return this.knex.client}getFieldSchema(e){let{column:r}=this.splitter.run(e);return this.table.schema[r]}requiresJsonAsStringClient(){return["mssql","mysql2","mariadb","oracledb"].includes(this.client)}quoteChars(){let e=this.knexClient.wrapIdentifier("foo",{});return[e[0],e[e.length-1]]}quote(e){return this.knexClient.wrapIdentifier(e,{})}isQuoted(e){let[r,n]=this.quoteChars();return e.startsWith(r)&&e.endsWith(n)}quotedIdentifier(e){return Array.isArray(e)||(e=this.splitIdentifier(e)),e.map(r=>this.quote(r)).join(".")}castIntToString(e){switch(this.client){case"oracledb":return this.knex.raw("to_char(??)",[e]);case"pg":return this.knex.raw("??::TEXT",[e]);case"mysql2":case"mariadb":return this.knex.raw("CAST(?? AS CHAR)",[e]);case"sqlite3":return this.knex.raw("printf('%d', ??)",[e]);case"mssql":return this.knex.raw("CONVERT(NVARCHAR, ??)",[e])}}rawQuotedIdentifier(e){return this.knex.raw(this.quotedIdentifier(e))}splitIdentifier(e){let[r,n]=this.quoteChars();return this.isQuoted(e)?e.slice(1,-1).split(`${n}.${r}`):e.split(".")}qualifyIdentifier(e){let r=this.getTableName(),n=this.splitIdentifier(e);return n[0]!==r&&n.unshift(r),this.isQuoted(e)?this.quotedIdentifier(n):n.join(".")}generateSelectStatement(){let{table:e,resource:r}=this.query;if(!r||!r.fields||r.fields.length===0)return"*";let n=this.getTableName(e),i=this.table.schema;return r.fields.map(a=>{let u=a.split(/\./g),c,l=u[0];return u.length>1&&(c=u[0],l=u.slice(1).join(".")),{table:c,column:l,field:a}}).filter(({table:a})=>!a||a===n).map(({table:a,column:u,field:c})=>{let l=i[u];return this.SPECIAL_SELECT_CASES.POSTGRES_MONEY(l)?this.knex.raw("??::money::numeric as ??",[this.rawQuotedIdentifier([a,u].join(".")),this.knex.raw(this.quote(c))]):this.SPECIAL_SELECT_CASES.MSSQL_DATES(l)?this.knex.raw("CONVERT(varchar, ??, 108) as ??",[this.rawQuotedIdentifier(c),this.knex.raw(this.quote(c))]):a?this.rawQuotedIdentifier(`${a}.${u}`):this.rawQuotedIdentifier(c)})}convertClobs(e,r){if(this.client!=="oracledb")throw new Error("you've called convertClobs on a DB that's not Oracle, this is a mistake");let i=this.splitIdentifier(e).pop(),o=this.table.schema[i],a=this.rawQuotedIdentifier(e);return(o.type==="string"||o.type==="longform"||o.type==="bb_reference_single"||o.type==="bb_reference"||o.type==="options"||o.type==="barcodeqr")&&(r?.forSelect?a=this.knex.raw("to_char(??) as ??",[a,this.rawQuotedIdentifier(i)]):a=this.knex.raw("to_char(??)",[a])),a}parse(e,r){if(Array.isArray(e))return JSON.stringify(e);if(e==null)return null;if(this.requiresJsonAsStringClient()&&OO(r)&&typeof e=="object")return JSON.stringify(e);if(this.SPECIAL_SELECT_CASES.POSTGRES_ARRAY(r))return`{${e}}`;if(this.client==="oracledb"&&r.type==="datetime"&&r.timeOnly){if(e instanceof Date){let n=e.getHours().toString().padStart(2,"0"),i=e.getMinutes().toString().padStart(2,"0"),o=e.getSeconds().toString().padStart(2,"0");return`${n}:${i}:${o}`}if(typeof e=="string")return new Date(`1970-01-01T${e}Z`)}if(typeof e=="string"&&r.type==="datetime")if(r.timeOnly){if(!Of(e))return null}else if(r.dateOnly){let n=_f(e);return n?new Date(n):null}else return r.ignoreTimezones?Xa(e)?new Date(e):Af(e)?new Date(e+"Z"):null:Xa(e)?new Date(e.trim()):null;return e}parseBody(e){for(let[r,n]of Object.entries(e)){let{column:i}=this.splitter.run(r),o=this.table.schema[i];o&&(e[r]=this.parse(n,o))}return e}parseFilters(e){e=(0,AO.cloneDeep)(e);for(let r of Object.values(Gr)){let n=e[r];if(n)for(let i of Object.keys(n)){if(Array.isArray(n[i])){n[i]=JSON.stringify(n[i]);continue}let{column:o}=this.splitter.run(i),a=this.table.schema[o];a&&(n[i]=this.parse(n[i],a))}}for(let r of Object.values(ar)){let n=e[r];if(n)for(let i of Object.keys(n)){let{column:o}=this.splitter.run(i),a=this.table.schema[o];a&&(n[i]=n[i].map(u=>this.parse(u,a)))}}for(let r of Object.values(Dn)){let n=e[r];if(n)for(let i of Object.keys(n)){let{column:o}=this.splitter.run(i),a=this.table.schema[o];if(!a)continue;let u=n[i];"low"in u&&(u.low=this.parse(u.low,a)),"high"in u&&(u.high=this.parse(u.high,a))}}return e}addJoinFieldCheck(e,r){let n=r.from?.split(".")[0]||"";return e.andWhere(`${n}.fieldName`,"=",r.column)}addRelationshipForFilter(e,r,n,i,o){let{relationships:a,schema:u,tableAliases:c,table:l}=this.query,d=c?.[l.name]||l.name,f=s(m=>n.match(new RegExp(`^${m}\\.`)),"matches");if(!a)return e;for(let m of a){let h=m.tableName,T=c?.[h]||h,E=f(h)||f(T),p=f(m.column),y=m.column===this.splitter.run(n).column&&!this.splitter.run(n).tableName;if((E||p||y)&&m.to&&m.tableName){let A=this.knex.select(this.knex.raw(1)).from({[T]:h}),_=A.clone(),I=If(m),O;if(E?O=n:O=n.replace(new RegExp(`^${m.column}.`),`${c?.[m.tableName]||m.tableName}.`),I){let C=c?.[I.through]||m.through,R=this.tableNameWithSchema(I.through,{alias:C,schema:u});_=_.innerJoin(R,function(){this.on(`${T}.${I.toPrimary}`,"=",`${C}.${I.to}`)}).where(`${C}.${I.from}`,"=",this.rawQuotedIdentifier(`${d}.${I.fromPrimary}`)),this.client==="sqlite3"&&(_=this.addJoinFieldCheck(_,I)),y&&i==="empty"?e=e.whereNotExists(_):y&&i==="notEmpty"?e=e.whereExists(_):e=e.where(w=>{w.whereExists(o(O,_)),r&&w.orWhereNotExists(A.clone().innerJoin(R,function(){this.on(`${d}.${I.fromPrimary}`,"=",`${C}.${I.from}`)}))})}else{let C=`${T}.${m.to}`,R=`${d}.${m.from}`;_=_.where(C,"=",this.rawQuotedIdentifier(R)),y&&i==="empty"?e=e.whereNotExists(_):y&&i==="notEmpty"?e=e.whereExists(_):e=e.where(w=>{w.whereExists(o(O,_.clone())),r&&w.orWhereNotExists(_)})}}}return e}addFilters(e,r,n){if(!r)return e;let i=this;r=this.parseFilters({...r});let o=this.query.tableAliases,a=r.allOr,c=this.client==="sqlite3"?this.table._id:this.table.name;function l(E){return o?.[E]||E}s(l,"getTableAlias");function d(E,p,y,A){let _=s((I,O,C)=>{let[R,...w]=O.split("."),x=w.join("."),G=l(R);return I.andWhere(ee=>y(ee,G?`${G}.${x}`:x,C))},"handleRelationship");for(let I in E){let O=E[I],C=Ks(I),R=C.includes(".")||i.getFieldSchema(C)?.type==="link",w=n?.relationship&&R,x;if(I==="_complexIdOperator"&&(x=E[I])&&A){let G=l(c);e=A(e,x.id.map(ee=>G?`${G}.${ee}`:ee),x.values)}else if(R)w&&(a&&(e=e.or),e=i.addRelationshipForFilter(e,KM[p],C,p,(G,ee)=>_(ee,G,O)));else{let G=l(c);e=y(e,G?`${G}.${C}`:C,O)}}}s(d,"iterate");let f=this.client==="sqlite3"&&this.query.meta?.sqliteUseLikeWithoutLower,m=s((E,p,y)=>((r?.fuzzyOr||a)&&(E=E.or),f?E.whereRaw("?? LIKE ?",[this.rawQuotedIdentifier(p),`%${y}%`]):this.client==="oracledb"||this.client==="sqlite3"?E.whereRaw("LOWER(??) LIKE ?",[this.rawQuotedIdentifier(p),`%${y.toLowerCase()}%`]):E.whereILike(this.rawQuotedIdentifier(p),this.knex.raw("?",[`%${y}%`]))),"like"),h=s((E,p=!1)=>{function y(A){return(a||E===r?.containsAny)&&(A=A.or),E===r?.notContains&&(A=A.not),A}s(y,"addModifiers"),this.client==="pg"?d(E,"contains",(A,_,I)=>{A=y(A);let O=this.getFieldSchema(_),C=this.rawQuotedIdentifier(_),R=Array.isArray(I)?[...I]:[I],w=this.SPECIAL_SELECT_CASES.POSTGRES_ARRAY(O);return p?w?A.whereRaw("COALESCE(?? && ?::text[], FALSE)",[C,th(R)]):A.whereRaw("COALESCE(??::jsonb \\?| ?::text[], FALSE)",[C,th(R)]):w?A.whereRaw("COALESCE(?? @> ?::text[], FALSE)",[C,th(R)]):A.whereRaw("COALESCE(??::jsonb @> ?::jsonb, FALSE)",[C,qM(R)])}):this.client==="mysql2"||this.client==="mariadb"?d(E,"contains",(A,_,I)=>{let O=Array.isArray(I)?I:[I];return y(A).whereRaw("COALESCE(?(??, ?), FALSE)",[this.knex.raw(p?"JSON_OVERLAPS":"JSON_CONTAINS"),this.rawQuotedIdentifier(_),JSON.stringify(O)])}):d(E,"contains",(A,_,I)=>(I.length===0||(A=A.where(O=>(E===r?.notContains&&(O=O.not),O=O.where(C=>{for(let R of I){E===r?.containsAny?C=C.or:C=C.and;let w=!f,x=typeof R=="string"?`"${w?R.toLowerCase():R}"`:R,G=w?"COALESCE(LOWER(??), '')":"COALESCE(??, '')";C=C.whereLike(this.knex.raw(G,[this.rawQuotedIdentifier(_)]),`%${x}%`)}}),E===r?.notContains&&(O=O.or.whereNull(this.rawQuotedIdentifier(_))),O))),A))},"contains");if(r.$and){let{$and:E}=r;for(let p of E.conditions)e=e.where(y=>{this.addFilters(y,p,n)})}if(r.$or){let{$or:E}=r;e=e.where(p=>{for(let y of E.conditions)p.orWhere(A=>this.addFilters(A,{...y,allOr:!0},n))})}r.oneOf&&d(r.oneOf,"oneOf",(E,p,y)=>{let A=this.getFieldSchema(p),_=Array.isArray(y)?y:[y];if(a&&(E=E.or),this.client==="oracledb")p=this.convertClobs(p);else if(this.client==="sqlite3"&&A?.type==="datetime"&&A.dateOnly){for(let I of _)I!=null?E=E.or.whereLike(p,`${I.toISOString().slice(0,10)}%`):E=E.or.whereNull(p);return E}return E.whereIn(p,_)},(E,p,y)=>(a&&(E=E.or),this.client==="oracledb"&&(p=p.map(A=>this.convertClobs(A))),E.whereIn(p,Array.isArray(y)?y:[y]))),r.notOneOf&&d(r.notOneOf,"notOneOf",(E,p,y)=>{let A=this.getFieldSchema(p),_=Array.isArray(y)?y:[y];if(a&&(E=E.or),this.client==="oracledb")p=this.convertClobs(p);else if(this.client==="sqlite3"&&A?.type==="datetime"&&A.dateOnly)return E.where(I=>{I.whereNot(O=>{for(let C of _)C!=null&&O.orWhereLike(p,`${C.toISOString().slice(0,10)}%`)}).orWhereNull(p)});return E.where(I=>{I.whereNotIn(p,_).orWhereNull(p)})},(E,p,y)=>(a&&(E=E.or),this.client==="oracledb"&&(p=p.map(A=>this.convertClobs(A))),E.whereNotIn(p,Array.isArray(y)?y:[y]))),r.string&&d(r.string,"string",(E,p,y)=>{if(a&&(E=E.or),f)return E.whereRaw("?? LIKE ?",[this.rawQuotedIdentifier(p),`${y}%`]);if(this.client==="oracledb"||this.client==="sqlite3")return E.whereRaw("LOWER(??) LIKE ?",[this.rawQuotedIdentifier(p),`${y.toLowerCase()}%`]);{let A=this.getFieldSchema(p);return this.SPECIAL_SELECT_CASES.POSTGRES_ENUM(A)?E.whereRaw("??::text ilike ?",[this.knex.raw(this.quote(A.name)),`${y}%`]):E.whereILike(p,`${y}%`)}}),r.fuzzy&&d(r.fuzzy,"fuzzy",m),r.range&&d(r.range,"range",(E,p,y)=>{let A=s(x=>x&&Object.keys(x).length===0&&Object.getPrototypeOf(x)===Object.prototype,"isEmptyObject");A(y.low)&&(y.low=""),A(y.high)&&(y.high="");let _=Za(y.low),I=Za(y.high),O=this.getFieldSchema(p),C=p,R=y.high,w=y.low;return this.client==="sqlite3"&&O?.type==="datetime"&&O.dateOnly&&(R!=null&&(R=`${R.toISOString().slice(0,10)}T23:59:59.999Z`),w!=null&&(w=w.toISOString().slice(0,10))),this.client==="oracledb"?C=this.convertClobs(p):this.client==="sqlite3"&&O?.type==="bigint"&&(C=this.knex.raw("CAST(?? AS INTEGER)",[this.rawQuotedIdentifier(p)]),R=this.knex.raw("CAST(? AS INTEGER)",[y.high]),w=this.knex.raw("CAST(? AS INTEGER)",[y.low])),a&&(E=E.or),_&&I?E.whereBetween(C,[w,R]):_?E.where(C,">=",w):I?E.where(C,"<=",R):E}),r.equal&&d(r.equal,"equal",(E,p,y)=>{let A=this.getFieldSchema(p);if(a&&(E=E.or),this.client==="mssql")return E.whereRaw("CASE WHEN ?? = ? THEN 1 ELSE 0 END = 1",[this.rawQuotedIdentifier(p),y]);if(this.client==="oracledb"){let _=this.convertClobs(p);return E.where(I=>I.whereNotNull(_).andWhere(_,y))}else return this.client==="sqlite3"&&A?.type==="datetime"&&A.dateOnly?y!=null?E.whereLike(p,`${y.toISOString().slice(0,10)}%`):E.whereNull(p):E.whereRaw("COALESCE(?? = ?, FALSE)",[this.rawQuotedIdentifier(p),y])}),r.notEqual&&d(r.notEqual,"notEqual",(E,p,y)=>{let A=this.getFieldSchema(p);if(a&&(E=E.or),this.client==="mssql")return E.whereRaw("CASE WHEN ?? = ? THEN 1 ELSE 0 END = 0",[this.rawQuotedIdentifier(p),y]);if(this.client==="oracledb"){let _=this.convertClobs(p);return E.where(I=>I.not.whereNull(_).and.where(_,"!=",y)).or.whereNull(_)}else return this.client==="sqlite3"&&A?.type==="datetime"&&A.dateOnly?y!=null?E.not.whereLike(p,`${y.toISOString().slice(0,10)}%`).or.whereNull(p):E.not.whereNull(p):E.whereRaw("COALESCE(?? != ?, TRUE)",[this.rawQuotedIdentifier(p),y])}),r.empty&&d(r.empty,"empty",(E,p)=>(a&&(E=E.or),E.whereNull(p))),r.notEmpty&&d(r.notEmpty,"notEmpty",(E,p)=>(a&&(E=E.or),E.whereNotNull(p))),r.contains&&h(r.contains),r.notContains&&h(r.notContains),r.containsAny&&h(r.containsAny,!0);let T=o?.[this.table._id]||this.table._id;return r.documentType&&!Tf(this.table)&&T&&e.andWhereLike(`${T}._id`,`${Ot(r.documentType)}%`),e}isSqs(){return TO(this.table)}getTableName(e){e||(e=this.table);let r=e.name;TO(e)&&e._id&&(r=e._id);let n=this.query.tableAliases||{};return n[r]?n[r]:r}addDistinctCount(e){if(!this.table.primary)throw new Error("SQL counting requires primary key to be supplied");return e.countDistinct(`${this.getTableName()}.${this.table.primary[0]} as ${ih}`)}addAggregations(e,r){let n=this.query.resource?.fields||[],i=this.getTableName();if(n.length>0){let o=n.map(a=>this.qualifyIdentifier(a));if(this.client==="oracledb"){let a=o.map(c=>this.convertClobs(c)),u=o.map(c=>this.convertClobs(c,{forSelect:!0}));e=e.groupBy(a).select(u)}else e=e.groupBy(o).select(o)}for(let o of r){let a=o.calculationType;if(a==="count")if("distinct"in o&&o.distinct)if(this.client==="oracledb"){let u=this.convertClobs(`${i}.${o.field}`);e=e.select(this.knex.raw("COUNT(DISTINCT ??) as ??",[u,o.name]))}else e=e.countDistinct(`${i}.${o.field} as ${o.name}`);else if(this.client==="oracledb"){let u=this.convertClobs(`${i}.${o.field}`);e=e.select(this.knex.raw("COUNT(??) as ??",[u,o.name]))}else e=e.count(`${o.field} as ${o.name}`);else{let u=this.getFieldSchema(o.field);if(!u)throw new Error(`field schema missing for aggregation target: ${o.field}`);let c=this.knex.raw("??(??)",[this.knex.raw(a),this.rawQuotedIdentifier(`${i}.${o.field}`)]);u.type==="bigint"&&(c=this.castIntToString(c)),e=e.select(this.knex.raw("?? as ??",[c,o.name]))}}return e}isAggregateField(e){return!!this.query.resource?.aggregations?.find(n=>n.name===e)}addSorting(e){let{sort:r,resource:n}=this.query,i=this.table.primary,o=this.getTableName();if(!Array.isArray(i))throw new Error("Sorting requires primary key to be specified for table");if(r&&Object.keys(r||{}).length>0)for(let[u,c]of Object.entries(r)){let l=this.getFieldSchema(u);if(this.isUnsortableField(l))continue;let d=c.direction==="ascending"?"asc":"desc",f;(this.client==="pg"||this.client==="oracledb")&&(f=c.direction==="ascending"?"first":"last");let m=`${o}.${u}`,h;this.isAggregateField(u)?h=this.rawQuotedIdentifier(u):this.client==="oracledb"?h=this.convertClobs(m):h=this.rawQuotedIdentifier(m),e=e.orderByRaw(`?? ?? ${f?"nulls ??":""}`,[h,this.knex.raw(d),...f?[this.knex.raw(f)]:[]])}if(!((n?.aggregations?.length??0)>0)){let u=this.findSortablePrimaryKey(i);if(u&&(!r||r[u]===void 0))e=e.orderBy(`${o}.${u}`);else if(!u&&(!r||Object.keys(r).length===0))throw new Error(`Primary key not found for table ${this.table.name}`)}return e}isUnsortableField(e){return e?.type==="json"}findSortablePrimaryKey(e){return e.find(r=>{if(r==null)return!1;let n=this.getFieldSchema(r);return!this.isUnsortableField(n)})}tableNameWithSchema(e,r){let n=r?.schema?`${r.schema}.${e}`:e;return r?.alias&&(n+=` as ${r.alias}`),n}buildJsonField(e,r){let n=r.split("."),i=n[n.length-1],o,a;if(n.length>1){let l=n.shift();o=n.join("."),a=`${l}.${o}`}else o=n.join("."),a=o;this.query.meta?.columnPrefix&&(i=i.replace(this.query.meta.columnPrefix,""));let u=this.rawQuotedIdentifier(a),c=e.schema[i];return c&&c.type==="bigint"&&(u=this.castIntToString(u)),[o,u]}maxFunctionParameters(){switch(this.client){case"sqlite3":return 127;case"pg":return 100;default:return 200}}addJsonRelationships(e,r,n){let i=this.client,o=this.knex,{resource:a,tableAliases:u,schema:c,tables:l}=this.query,d=a?.fields||[];for(let f of n){let{tableName:m,through:h,to:T,from:E,fromPrimary:p,toPrimary:y}=f;if(!m||!r)continue;let A=l[m];if(!A)throw new Error(`related table "${m}" not found in datasource`);let _=u?.[m]||m,I=u?.[r]||r,O=h&&u?.[h]||h,C=this.tableNameWithSchema(m,{alias:_,schema:c}),R=[...A?.primary||[],A?.primaryDisplay].filter(D=>D),w=GM(d.filter(D=>D.split(".")[0]===_),R);w=w.slice(0,Math.floor(this.maxFunctionParameters()/2));let x=w.map(D=>this.buildJsonField(A,D));if(!x.length)continue;let G=x.map(D=>{let J=this.client==="oracledb"?" VALUE ":",";return this.knex.raw(`?${J}??`,[D[0],D[1]]).toString()}).join(","),ee=`${_}.${y||T}`,F=o.from(C).orderBy(ee),k=h&&y&&p,U=k?`${O}.${E}`:`${_}.${T}`,V=k?`${I}.${p}`:`${I}.${E}`;if(k){let D=this.tableNameWithSchema(h,{alias:O,schema:c});F=F.join(D,function(){this.on(`${_}.${y}`,"=",`${O}.${T}`)})}F=F.where(this.rawQuotedIdentifier(U),"=",this.rawQuotedIdentifier(V));let B=s(D=>(F=F.select(w.map(J=>this.rawQuotedIdentifier(J))).limit(eh()),o.select(D).from({[_]:F})),"standardWrap"),Q;switch(i){case"sqlite3":F=this.addJoinFieldCheck(F,f),Q=B(this.knex.raw(`json_group_array(json_object(${G}))`));break;case"pg":Q=B(this.knex.raw(`json_agg(json_build_object(${G}))`));break;case"mariadb":Q=F.select(o.raw(`json_arrayagg(json_object(${G}) LIMIT ${eh()})`));break;case"mysql2":case"oracledb":Q=B(this.knex.raw(`json_arrayagg(json_object(${G}))`));break;case"mssql":{let D=o.select("*").from({[I]:F.select(x.map(J=>o.ref(J[1]).as(J[0]))).limit(eh())});Q=o.raw(`(SELECT ?? = (${D} FOR JSON PATH))`,[this.rawQuotedIdentifier(_)]);break}default:throw new Error(`JSON relationships not implement for ${i}`)}e=e.select({[f.column]:Q})}return e}addJoin(e,r,n){let{tableAliases:i,schema:o}=this.query,a=r.to,u=r.from,c=r.through,l=i?.[a]||a,d=c&&i?.[c]||c,f=i?.[u]||u,m=this.tableNameWithSchema(a,{alias:l,schema:o}),h=c?this.tableNameWithSchema(c,{alias:d,schema:o}):void 0;return c?e=e.leftJoin(h,function(){for(let T of n){let E=T.fromPrimary,p=T.from;this.orOn(`${f}.${E}`,"=",`${d}.${p}`)}}).leftJoin(m,function(){for(let T of n){let E=T.toPrimary,p=T.to;this.orOn(`${l}.${E}`,`${d}.${p}`)}}):e=e.leftJoin(m,function(){for(let T of n){let E=T.from,p=T.to;this.orOn(`${f}.${E}`,"=",`${l}.${p}`)}}),e}qualifiedKnex(e){let r=this.query.tableAliases?.[this.query.table.name];return e?.alias===!1?r=void 0:typeof e?.alias=="string"&&(r=e.alias),this.knex(this.tableNameWithSchema(this.query.table.name,{alias:r,schema:this.query.schema}))}create(e){let{body:r}=this.query;if(!r)throw new Error("Cannot create without row body");let n=this.qualifiedKnex({alias:!1}),i=this.parseBody(r);if(this.client==="oracledb")for(let[o,a]of Object.entries(this.query.table.schema)){if(a.constraints?.presence===!0||a.type==="formula"||a.type==="auto"||a.type==="link"||a.type==="ai")continue;i[o]==null&&(i[o]=null)}else for(let[o,a]of Object.entries(i))a==null&&delete i[o];return e.disableReturning?n.insert(i):n.insert(i).returning("*")}bulkCreate(){let{body:e}=this.query,r=this.qualifiedKnex({alias:!1});if(!Array.isArray(e))return r;let n=e.map(i=>this.parseBody(i));return r.insert(n)}bulkUpsert(){let{body:e}=this.query,r=this.qualifiedKnex({alias:!1});if(!Array.isArray(e))return r;let n=e.map(i=>this.parseBody(i));if(this.client==="pg"||this.client==="sqlite3"||this.client==="mysql2"||this.client==="mariadb"){let i=this.table.primary;if(!i)throw new Error("Primary key is required for upsert");return r.insert(n).onConflict(i).merge()}else if(this.client==="mssql"||this.client==="oracledb")return r.insert(n);return r.upsert(n)}read(e={}){let{operation:r,filters:n,paginate:i,relationships:o,table:a}=this.query,{limits:u}=e,c=this.qualifiedKnex(),l=null,d=u?.query||u?.base;if(i&&i.page&&i.limit){let h=(i.page<=1?0:i.page-1)*i.limit;d=i.limit,l=h}else i&&i.offset&&i.limit?(d=i.limit,l=i.offset):i&&i.limit&&(d=i.limit);r!=="COUNT"&&(d!=null&&(c=c.limit(d)),l!=null&&(c=c.offset(l)));let f=this.query.resource?.aggregations||[];if(r==="COUNT"?c=this.addDistinctCount(c):f.length>0?c=this.addAggregations(c,f):c=c.select(this.generateSelectStatement()),r!=="COUNT"&&(c=this.addSorting(c)),c=this.addFilters(c,n,{relationship:!0}),o?.length&&f.length===0){let m=this.query.tableAliases?.[a.name]||a.name,h=this.addSorting(this.knex.with("paginated",c.clone().clearSelect().select("*")).select(this.generateSelectStatement()).from({[m]:"paginated"}));return this.addJsonRelationships(h,a.name,o)}return c}update(e){let{body:r,filters:n}=this.query;if(!r)throw new Error("Cannot update without row body");let i=this.qualifiedKnex(),o=this.parseBody(r);return i=this.addFilters(i,n,{relationship:!0}),e.disableReturning?i.update(o):i.update(o).returning("*")}delete(e){let{filters:r}=this.query,n=this.qualifiedKnex();return n=this.addFilters(n,r,{relationship:!0}),e.disableReturning?n.delete():n.delete().returning(this.generateSelectStatement())}},nh=class extends Fc{static{s(this,"SqlQueryBuilder")}constructor(e,r=yO()){super(e),this.limit=r}convertToNative(e,r={}){let n=this.getSqlClient();if(r?.disableBindings)return{sql:e.toString()};{let i=Jn(e);return n==="sqlite3"&&(i=_O(i)),i}}_query(e,r={}){let n=this.getSqlClient(),i={client:this.getBaseSqlClient()};(n==="sqlite3"||n==="oracledb")&&(i.useNullAsDefault=!0);let o=(0,SO.knex)(i),a,u=new rh(n,o,e);switch(this._operation(e)){case"CREATE":a=u.create(r);break;case"READ":a=u.read({limits:{query:this.limit,base:yO()}});break;case"COUNT":a=u.read();break;case"UPDATE":a=u.update(r);break;case"DELETE":a=u.delete(r);break;case"BULK_CREATE":a=u.bulkCreate();break;case"BULK_UPSERT":a=u.bulkUpsert();break;case"CREATE_TABLE":case"UPDATE_TABLE":case"DELETE_TABLE":return this._tableQuery(e);default:throw"Operation type is not supported by SQL query builder"}return this.convertToNative(a,r)}async getReturningRow(e,r){if(!r.extra||!r.extra.idFilter)return{};let n=this._query({operation:"READ",datasource:r.datasource,schema:r.schema,table:r.table,tables:r.tables,resource:{fields:[]},filters:r.extra?.idFilter,paginate:{limit:1}});return e(n,"READ")}checkLookupKeys(e,r){if(!e||!r.table.primary)return r;let n=r.table.primary[0];return r.extra={idFilter:{equal:{[n]:e}}},r}async queryWithReturning(e,r,n=i=>i){let i=this.getSqlClient(),o=this._operation(e),a=this._query(e,{disableReturning:!0});if(Array.isArray(a)){let d=[];for(let f of a)d.push(await r(f,o));return d}let u;o==="DELETE"&&(u=n(await this.getReturningRow(r,e)));let c=await r(a,o),l=n(c);if(o==="CREATE"||o==="UPDATE"){let d;i==="mssql"?d=l?.[0].id:(i==="mysql2"||i==="mariadb")&&(d=l?.insertId),u=n(await this.getReturningRow(r,this.checkLookupKeys(d,e)))}return o==="COUNT"?l:o!=="READ"?u:l.length?l:[{[o.toLowerCase()]:!0}]}getTableName(e,r){let n=e.name;if(e.sourceType==="internal"||e.sourceId===jc){if(!e._id)return;n=e._id}return r?.[n]||n}convertJsonStringColumns(e,r,n){let i=this.getTableName(e,n);for(let[o,a]of Object.entries(e.schema)){if(!OO(a))continue;let u=`${i}.${o}`;for(let c of r)typeof c[u]=="string"&&(c[u]=JSON.parse(c[u])),typeof c[o]=="string"&&(c[o]=JSON.parse(c[o]))}return r}log(e,r){Ls(this.getSqlClient(),e,r)}},IO=nh;var sh={};L(sh,{base:()=>QM});function QM(t){return{_id:xt,language:"sqlite",sql:{tables:{},options:{table_name:t}}}}s(QM,"base");var ah={};L(ah,{jsonFromCsvString:()=>jM});var wO=W(require("csvtojson"));async function jM(t,e){let{ignoreEmpty:r=!1,allowSingleColumn:n=!1,possibleDelimiters:i=[",",";",":","|","~"," "," "]}=e||{};for(let o of i){let a,u=!1;try{let c=await(0,wO.default)({ignoreEmpty:r,delimiter:o}).fromString(t);for(let[,l]of c.entries()){let d=Object.keys(l);if(a==null&&(a=d),!n&&d.length===1){u=!0;break}if(a.length!==d.length){u=!0;break}for(let f of a)(l[f]===void 0||l[f]==="")&&(l[f]=null)}if(u)continue;return c}catch{continue}}throw new Error("Unable to determine delimiter")}s(jM,"jsonFromCsvString");var uh=class{static{s(this,"Endpoint")}constructor(e,r,n){this.method=e,this.url=r,this.controller=n,this.middlewares=[],this.outputMiddlewares=[]}addMiddleware(e,r){return r?.first?this.middlewares.unshift(e):this.middlewares.push(e),this}addOutputMiddleware(e,r){return r?.first?this.outputMiddlewares.unshift(e):this.outputMiddlewares.push(e),this}apply(e){let r=this.method,n=this.url,i=this.middlewares,o=this.controller,a=this.outputMiddlewares,u=s(()=>{},"complete"),c=[n,...i,o,...a,u];e[r](...c)}},Bc=uh;var RO=W(require("@koa/router"));var wn=class{constructor(){this.endpoints=[];this.middlewares=[];this.outputMiddlewares=[];this.applied=!1;this.locked=!1}static{s(this,"EndpointGroup")}addGroupMiddleware(e,r={first:!0}){if(this.locked)throw new Error("Group locked, no more middleware can be added.");return this.middlewares.push({fn:e,first:r.first}),this}addGroupMiddlewareOutput(e,r={first:!1}){if(this.locked)throw new Error("Group locked, no more middleware can be added.");return this.outputMiddlewares.push({fn:e,first:r.first}),this}addEndpoint(e,r,...n){let i=n.pop(),o=new Bc(e,r,i);if(n.length!==0)for(let a of n)o.addMiddleware(a);return this.endpoints.push(o),this}lockMiddleware(){this.locked=!0}post(e,...r){return this.addEndpoint("post",e,...r)}patch(e,...r){return this.addEndpoint("patch",e,...r)}put(e,...r){return this.addEndpoint("put",e,...r)}get(e,...r){return this.addEndpoint("get",e,...r)}delete(e,...r){return this.addEndpoint("delete",e,...r)}head(e,...r){return this.addEndpoint("head",e,...r)}apply(e){let r=this.endpointList();e||(e=new RO.default);for(let n of r)n.apply(e);return e}endpointList(){if(this.applied)throw new Error("Already applied to router");this.applied=!0;for(let e of this.endpoints)this.middlewares.forEach(({fn:r,first:n})=>e.addMiddleware(r,{first:n})),this.outputMiddlewares.forEach(({fn:r,first:n})=>e.addOutputMiddleware(r,{first:n}));return this.endpoints}};var Bo=class{constructor(){this.groups=[]}static{s(this,"EndpointGroupList")}group(...e){let r=new wn;return e.length&&e.forEach(n=>{"first"in n?r.addGroupMiddleware(n.middleware,{first:n.first}):r.addGroupMiddleware(n)}),this.groups.push(r),r}listAllEndpoints(){let e=this.groups.flatMap(i=>i.endpointList()),r=[],n=[];for(let i of e)i.url.includes(":")?n.push(i):r.push(i);return[...r,...n]}};var HM={...js,...le},YM=s((t={})=>{za(t.db)},"init");0&&(module.exports={APIWarning,ActiveContentFileError,AutomationViewMode,BUDIBASE_DATASOURCE_TYPE,BadRequestError,BudibaseError,Config,Cookie,DEFAULT_BB_DATASOURCE_ID,DEFAULT_EMPLOYEE_TABLE_ID,DEFAULT_EXPENSES_TABLE_ID,DEFAULT_INVENTORY_TABLE_ID,DEFAULT_JOBS_TABLE_ID,DEFAULT_TENANT_ID,DeprecatedViews,DesignDocuments,DocumentType,Duration,EmailUnavailableError,Endpoint,EndpointGroup,EndpointGroupList,FeatureDisabledError,FeatureDisabledWarning,ForbiddenError,GlobalRole,HTTPError,Header,InternalTable,InvalidAPIKeyWarning,MAX_VALID_DATE,MIN_VALID_DATE,NotFoundError,NotImplementedError,RedisClient,SEPARATOR,SQLITE_DESIGN_DOC_ID,SQS_DATASOURCE_INTERNAL,StaticDatabases,UNICODE_MAX,USER_METADATA_PREFIX,UnexpectedError,UsageLimitError,UsageLimitWarning,UserStatus,ViewName,WORKSPACE_DEV,WORKSPACE_DEV_PREFIX,WORKSPACE_PREFIX,accounts,auth,blacklist,cache,configs,constants,context,csv,db,docIds,docUpdates,encryption,env,errors,events,features,getErrorMessage,getPublicError,init,installation,locks,logging,middleware,objectStore,permissions,platform,plugins,queue,redis,roles,security,sessions,setEnv,sql,tenancy,timers,userUtils,users,utils,warnings,withEnv});
|
|
39
39
|
//# sourceMappingURL=index.js.map
|