npm - @c15t/backend - Versions diffs - 1.5.0 → 1.6.0 - Mend

@c15t/backend 1.5.0 → 1.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (489) hide show

package/.turbo/turbo-build.log +63 -37
package/CHANGELOG.md +4 -209
package/README.md +86 -164
package/dist/contracts/consent/index.d.ts +103 -615
package/dist/contracts/consent/index.d.ts.map +1 -1
package/dist/contracts/consent/post.contract.d.ts +42 -140
package/dist/contracts/consent/post.contract.d.ts.map +1 -1
package/dist/contracts/consent/show-banner.contract.d.ts +28 -376
package/dist/contracts/consent/show-banner.contract.d.ts.map +1 -1
package/dist/contracts/consent/verify.contract.d.ts +33 -99
package/dist/contracts/consent/verify.contract.d.ts.map +1 -1
package/dist/contracts/index.d.ts +222 -1356
package/dist/contracts/index.d.ts.map +1 -1
package/dist/contracts/meta/index.d.ts +8 -63
package/dist/contracts/meta/index.d.ts.map +1 -1
package/dist/contracts/meta/status.contract.d.ts +8 -63
package/dist/contracts/meta/status.contract.d.ts.map +1 -1
package/dist/contracts/shared/jurisdiction.schema.d.ts +21 -9
package/dist/contracts/shared/jurisdiction.schema.d.ts.map +1 -1
package/dist/contracts.cjs +100 -106
package/dist/contracts.js +100 -106
package/dist/core.cjs +681 -681
package/dist/core.d.ts +118 -678
package/dist/core.d.ts.map +1 -1
package/dist/core.js +634 -637
package/dist/handlers/consent/index.d.ts +103 -615
package/dist/handlers/consent/index.d.ts.map +1 -1
package/dist/handlers/consent/post.handler.d.ts +42 -140
package/dist/handlers/consent/post.handler.d.ts.map +1 -1
package/dist/handlers/consent/show-banner/handler.d.ts +28 -376
package/dist/handlers/consent/show-banner/handler.d.ts.map +1 -1
package/dist/handlers/consent/show-banner/translations.d.ts.map +1 -1
package/dist/handlers/consent/verify.handler.d.ts +33 -99
package/dist/handlers/consent/verify.handler.d.ts.map +1 -1
package/dist/handlers/meta/index.d.ts +8 -63
package/dist/handlers/meta/index.d.ts.map +1 -1
package/dist/handlers/meta/status.handler.d.ts +8 -63
package/dist/handlers/meta/status.handler.d.ts.map +1 -1
package/dist/init.d.ts.map +1 -1
package/dist/middleware/openapi/index.d.ts +2 -2
package/dist/middleware/openapi/index.d.ts.map +1 -1
package/dist/pkgs/data-model/fields/index.cjs +14 -26
package/dist/pkgs/data-model/fields/index.d.ts +4 -4
package/dist/pkgs/data-model/fields/index.d.ts.map +1 -1
package/dist/pkgs/data-model/fields/index.js +14 -26
package/dist/pkgs/data-model/fields/zod-fields.d.ts +195 -871
package/dist/pkgs/data-model/fields/zod-fields.d.ts.map +1 -1
package/dist/pkgs/data-model/hooks/index.d.ts +2 -2
package/dist/pkgs/data-model/hooks/index.d.ts.map +1 -1
package/dist/pkgs/data-model/index.cjs +346 -358
package/dist/pkgs/data-model/index.d.ts +1 -1
package/dist/pkgs/data-model/index.d.ts.map +1 -1
package/dist/pkgs/data-model/index.js +345 -357
package/dist/pkgs/data-model/schema/index.cjs +346 -358
package/dist/pkgs/data-model/schema/index.d.ts +1 -1
package/dist/pkgs/data-model/schema/index.d.ts.map +1 -1
package/dist/pkgs/data-model/schema/index.js +345 -357
package/dist/pkgs/data-model/schema/schemas.d.ts +2 -2
package/dist/pkgs/data-model/schema/schemas.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/drizzle-adapter/drizzle-adapter.d.ts +3 -0
package/dist/pkgs/db-adapters/adapters/drizzle-adapter/drizzle-adapter.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/drizzle-adapter/index.cjs +158 -170
package/dist/pkgs/db-adapters/adapters/drizzle-adapter/index.js +157 -169
package/dist/pkgs/db-adapters/adapters/index.d.ts +2 -2
package/dist/pkgs/db-adapters/adapters/index.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/kysely-adapter/index.cjs +215 -227
package/dist/pkgs/db-adapters/adapters/kysely-adapter/index.d.ts +2 -2
package/dist/pkgs/db-adapters/adapters/kysely-adapter/index.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/kysely-adapter/index.js +213 -225
package/dist/pkgs/db-adapters/adapters/kysely-adapter/kysely-adapter.d.ts +2 -0
package/dist/pkgs/db-adapters/adapters/kysely-adapter/kysely-adapter.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/kysely-adapter/tests/test-utils.d.ts +1 -1
package/dist/pkgs/db-adapters/adapters/kysely-adapter/tests/test-utils.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/memory-adapter/index.cjs +158 -170
package/dist/pkgs/db-adapters/adapters/memory-adapter/index.js +157 -169
package/dist/pkgs/db-adapters/adapters/memory-adapter/memory-adapter.d.ts +3 -0
package/dist/pkgs/db-adapters/adapters/memory-adapter/memory-adapter.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/prisma-adapter/index.cjs +243 -255
package/dist/pkgs/db-adapters/adapters/prisma-adapter/index.d.ts +1 -1
package/dist/pkgs/db-adapters/adapters/prisma-adapter/index.d.ts.map +1 -1
package/dist/pkgs/db-adapters/adapters/prisma-adapter/index.js +241 -253
package/dist/pkgs/db-adapters/adapters/prisma-adapter/prisma-adapter.d.ts +3 -0
package/dist/pkgs/db-adapters/adapters/prisma-adapter/prisma-adapter.d.ts.map +1 -1
package/dist/pkgs/db-adapters/index.cjs +714 -726
package/dist/pkgs/db-adapters/index.d.ts +6 -6
package/dist/pkgs/db-adapters/index.d.ts.map +1 -1
package/dist/pkgs/db-adapters/index.js +708 -720
package/dist/pkgs/migrations/get-migration.d.ts.map +1 -1
package/dist/pkgs/migrations/get-schema/get-schema.d.ts.map +1 -1
package/dist/pkgs/migrations/get-schema/process-tables.d.ts.map +1 -1
package/dist/pkgs/migrations/index.cjs +236 -248
package/dist/pkgs/migrations/index.d.ts +4 -4
package/dist/pkgs/migrations/index.d.ts.map +1 -1
package/dist/pkgs/migrations/index.js +235 -247
package/dist/pkgs/results/index.cjs +67 -67
package/dist/pkgs/results/index.d.ts +5 -5
package/dist/pkgs/results/index.d.ts.map +1 -1
package/dist/pkgs/results/index.js +67 -67
package/dist/pkgs/results/orpc-error-handler.d.ts +1 -1
package/dist/pkgs/results/orpc-error-handler.d.ts.map +1 -1
package/dist/pkgs/types/index.d.ts +1 -2
package/dist/pkgs/types/index.d.ts.map +1 -1
package/dist/pkgs/types/options.d.ts +9 -2
package/dist/pkgs/types/options.d.ts.map +1 -1
package/dist/pkgs/utils/index.d.ts +1 -1
package/dist/pkgs/utils/index.d.ts.map +1 -1
package/dist/pkgs/utils/logger.d.ts +1 -1
package/dist/pkgs/utils/logger.d.ts.map +1 -1
package/dist/router.cjs +114 -117
package/dist/router.d.ts +111 -678
package/dist/router.d.ts.map +1 -1
package/dist/router.js +114 -117
package/dist/schema/audit-log/schema.d.ts +2 -24
package/dist/schema/audit-log/schema.d.ts.map +1 -1
package/dist/schema/audit-log/table.d.ts +2 -24
package/dist/schema/audit-log/table.d.ts.map +1 -1
package/dist/schema/consent/registry.d.ts +8 -8
package/dist/schema/consent/schema.d.ts +9 -33
package/dist/schema/consent/schema.d.ts.map +1 -1
package/dist/schema/consent/table.d.ts +9 -33
package/dist/schema/consent/table.d.ts.map +1 -1
package/dist/schema/consent-policy/registry.d.ts +20 -20
package/dist/schema/consent-policy/schema.d.ts +22 -30
package/dist/schema/consent-policy/schema.d.ts.map +1 -1
package/dist/schema/consent-policy/table.d.ts +13 -29
package/dist/schema/consent-policy/table.d.ts.map +1 -1
package/dist/schema/consent-purpose/registry.d.ts +6 -6
package/dist/schema/consent-purpose/schema.d.ts +5 -27
package/dist/schema/consent-purpose/schema.d.ts.map +1 -1
package/dist/schema/consent-purpose/table.d.ts +5 -27
package/dist/schema/consent-purpose/table.d.ts.map +1 -1
package/dist/schema/consent-record/schema.d.ts +3 -19
package/dist/schema/consent-record/schema.d.ts.map +1 -1
package/dist/schema/consent-record/table.d.ts +3 -19
package/dist/schema/consent-record/table.d.ts.map +1 -1
package/dist/schema/create-registry.d.ts +58 -58
package/dist/schema/definition.d.ts +42 -176
package/dist/schema/definition.d.ts.map +1 -1
package/dist/schema/domain/registry.d.ts +20 -20
package/dist/schema/domain/schema.d.ts +6 -24
package/dist/schema/domain/schema.d.ts.map +1 -1
package/dist/schema/domain/table.d.ts +6 -24
package/dist/schema/domain/table.d.ts.map +1 -1
package/dist/schema/index.cjs +426 -438
package/dist/schema/index.d.ts +12 -12
package/dist/schema/index.d.ts.map +1 -1
package/dist/schema/index.js +426 -438
package/dist/schema/schemas.d.ts +42 -176
package/dist/schema/schemas.d.ts.map +1 -1
package/dist/schema/subject/registry.d.ts +4 -4
package/dist/schema/subject/schema.d.ts +4 -20
package/dist/schema/subject/schema.d.ts.map +1 -1
package/dist/schema/subject/table.d.ts +4 -20
package/dist/schema/subject/table.d.ts.map +1 -1
package/dist/schema/types.d.ts +1 -1
package/dist/schema/types.d.ts.map +1 -1
package/dist/testing/contract-testing.d.ts +3 -2
package/dist/testing/contract-testing.d.ts.map +1 -1
package/dist/types/index.d.ts +5 -4
package/dist/types/index.d.ts.map +1 -1
package/dist/types/options.d.ts +2 -2
package/dist/types/options.d.ts.map +1 -1
package/dist/v2/contracts/consent/index.d.ts +260 -0
package/dist/v2/contracts/consent/index.d.ts.map +1 -0
package/dist/v2/contracts/consent/index.test.d.ts +2 -0
package/dist/v2/contracts/consent/index.test.d.ts.map +1 -0
package/dist/v2/contracts/consent/post.contract.d.ts +114 -0
package/dist/v2/contracts/consent/post.contract.d.ts.map +1 -0
package/dist/v2/contracts/consent/post.contract.test.d.ts +2 -0
package/dist/v2/contracts/consent/post.contract.test.d.ts.map +1 -0
package/dist/v2/contracts/consent/show-banner.contract.d.ts +68 -0
package/dist/v2/contracts/consent/show-banner.contract.d.ts.map +1 -0
package/dist/v2/contracts/consent/show-banner.contract.test.d.ts +2 -0
package/dist/v2/contracts/consent/show-banner.contract.test.d.ts.map +1 -0
package/dist/v2/contracts/consent/verify.contract.d.ts +81 -0
package/dist/v2/contracts/consent/verify.contract.d.ts.map +1 -0
package/dist/v2/contracts/consent/verify.contract.test.d.ts +2 -0
package/dist/v2/contracts/consent/verify.contract.test.d.ts.map +1 -0
package/dist/v2/contracts/index.cjs +644 -0
package/dist/v2/contracts/index.d.ts +563 -0
package/dist/v2/contracts/index.d.ts.map +1 -0
package/dist/v2/contracts/index.js +607 -0
package/dist/v2/contracts/meta/index.d.ts +19 -0
package/dist/v2/contracts/meta/index.d.ts.map +1 -0
package/dist/v2/contracts/meta/index.test.d.ts +2 -0
package/dist/v2/contracts/meta/index.test.d.ts.map +1 -0
package/dist/v2/contracts/meta/status.contract.d.ts +18 -0
package/dist/v2/contracts/meta/status.contract.d.ts.map +1 -0
package/dist/v2/contracts/meta/status.contract.test.d.ts +2 -0
package/dist/v2/contracts/meta/status.contract.test.d.ts.map +1 -0
package/dist/v2/contracts/shared/jurisdiction.schema.d.ts +36 -0
package/dist/v2/contracts/shared/jurisdiction.schema.d.ts.map +1 -0
package/dist/v2/contracts/test.utils.d.ts +38 -0
package/dist/v2/contracts/test.utils.d.ts.map +1 -0
package/dist/v2/core.cjs +2181 -0
package/dist/v2/core.d.ts +364 -0
package/dist/v2/core.d.ts.map +1 -0
package/dist/v2/core.js +2130 -0
package/dist/v2/db/adapters/drizzle.cjs +36 -0
package/dist/v2/db/adapters/drizzle.d.ts +2 -0
package/dist/v2/db/adapters/drizzle.d.ts.map +1 -0
package/dist/v2/db/adapters/drizzle.js +3 -0
package/dist/v2/db/adapters/index.cjs +18 -0
package/dist/v2/db/adapters/index.d.ts +2 -0
package/dist/v2/db/adapters/index.d.ts.map +1 -0
package/dist/v2/db/adapters/index.js +0 -0
package/dist/v2/db/adapters/kysely.cjs +36 -0
package/dist/v2/db/adapters/kysely.d.ts +2 -0
package/dist/v2/db/adapters/kysely.d.ts.map +1 -0
package/dist/v2/db/adapters/kysely.js +3 -0
package/dist/v2/db/adapters/mongo.cjs +36 -0
package/dist/v2/db/adapters/mongo.d.ts +2 -0
package/dist/v2/db/adapters/mongo.d.ts.map +1 -0
package/dist/v2/db/adapters/mongo.js +3 -0
package/dist/v2/db/adapters/prisma.cjs +36 -0
package/dist/v2/db/adapters/prisma.d.ts +2 -0
package/dist/v2/db/adapters/prisma.d.ts.map +1 -0
package/dist/v2/db/adapters/prisma.js +3 -0
package/dist/v2/db/adapters/typeorm.cjs +36 -0
package/dist/v2/db/adapters/typeorm.d.ts +2 -0
package/dist/v2/db/adapters/typeorm.d.ts.map +1 -0
package/dist/v2/db/adapters/typeorm.js +3 -0
package/dist/v2/db/migrator/index.cjs +61 -0
package/dist/v2/db/migrator/index.d.ts +29 -0
package/dist/v2/db/migrator/index.d.ts.map +1 -0
package/dist/v2/db/migrator/index.js +27 -0
package/dist/v2/db/registry/audit-log.d.ts +21 -0
package/dist/v2/db/registry/audit-log.d.ts.map +1 -0
package/dist/v2/db/registry/audit-log.test.d.ts +2 -0
package/dist/v2/db/registry/audit-log.test.d.ts.map +1 -0
package/dist/v2/db/registry/consent-policy.d.ts +29 -0
package/dist/v2/db/registry/consent-policy.d.ts.map +1 -0
package/dist/v2/db/registry/consent-policy.test.d.ts +2 -0
package/dist/v2/db/registry/consent-policy.test.d.ts.map +1 -0
package/dist/v2/db/registry/consent-purpose.d.ts +16 -0
package/dist/v2/db/registry/consent-purpose.d.ts.map +1 -0
package/dist/v2/db/registry/consent-purpose.test.d.ts +2 -0
package/dist/v2/db/registry/consent-purpose.test.d.ts.map +1 -0
package/dist/v2/db/registry/consent.d.ts +20 -0
package/dist/v2/db/registry/consent.d.ts.map +1 -0
package/dist/v2/db/registry/consent.test.d.ts +2 -0
package/dist/v2/db/registry/consent.test.d.ts.map +1 -0
package/dist/v2/db/registry/domain.d.ts +24 -0
package/dist/v2/db/registry/domain.d.ts.map +1 -0
package/dist/v2/db/registry/domain.test.d.ts +2 -0
package/dist/v2/db/registry/domain.test.d.ts.map +1 -0
package/dist/v2/db/registry/index.d.ts +102 -0
package/dist/v2/db/registry/index.d.ts.map +1 -0
package/dist/v2/db/registry/subject.d.ts +18 -0
package/dist/v2/db/registry/subject.d.ts.map +1 -0
package/dist/v2/db/registry/subject.test.d.ts +2 -0
package/dist/v2/db/registry/subject.test.d.ts.map +1 -0
package/dist/v2/db/registry/types.d.ts +10 -0
package/dist/v2/db/registry/types.d.ts.map +1 -0
package/dist/v2/db/registry/utils/generate-id.d.ts +25 -0
package/dist/v2/db/registry/utils/generate-id.d.ts.map +1 -0
package/dist/v2/db/registry/utils/generate-id.test.d.ts +2 -0
package/dist/v2/db/registry/utils/generate-id.test.d.ts.map +1 -0
package/dist/v2/db/registry/utils.d.ts +25 -0
package/dist/v2/db/registry/utils.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/audit-log.d.ts +29 -0
package/dist/v2/db/schema/1.0.0/audit-log.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/consent-policy.d.ts +45 -0
package/dist/v2/db/schema/1.0.0/consent-policy.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/consent-purpose.d.ts +27 -0
package/dist/v2/db/schema/1.0.0/consent-purpose.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/consent-record.d.ts +19 -0
package/dist/v2/db/schema/1.0.0/consent-record.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/consent.d.ts +42 -0
package/dist/v2/db/schema/1.0.0/consent.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/domain.d.ts +23 -0
package/dist/v2/db/schema/1.0.0/domain.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/index.d.ts +1513 -0
package/dist/v2/db/schema/1.0.0/index.d.ts.map +1 -0
package/dist/v2/db/schema/1.0.0/subject.d.ts +23 -0
package/dist/v2/db/schema/1.0.0/subject.d.ts.map +1 -0
package/dist/v2/db/schema/index.cjs +326 -0
package/dist/v2/db/schema/index.d.ts +1507 -0
package/dist/v2/db/schema/index.d.ts.map +1 -0
package/dist/v2/db/schema/index.js +241 -0
package/dist/v2/define-config.cjs +36 -0
package/dist/v2/define-config.d.ts +5 -0
package/dist/v2/define-config.d.ts.map +1 -0
package/dist/v2/define-config.js +2 -0
package/dist/v2/handlers/consent/index.d.ts +260 -0
package/dist/v2/handlers/consent/index.d.ts.map +1 -0
package/dist/v2/handlers/consent/post.handler.d.ts +136 -0
package/dist/v2/handlers/consent/post.handler.d.ts.map +1 -0
package/dist/v2/handlers/consent/show-banner/geo.d.ts +10 -0
package/dist/v2/handlers/consent/show-banner/geo.d.ts.map +1 -0
package/dist/v2/handlers/consent/show-banner/geo.test.d.ts +2 -0
package/dist/v2/handlers/consent/show-banner/geo.test.d.ts.map +1 -0
package/dist/v2/handlers/consent/show-banner/handler.d.ts +71 -0
package/dist/v2/handlers/consent/show-banner/handler.d.ts.map +1 -0
package/dist/v2/handlers/consent/show-banner/handler.test.d.ts +2 -0
package/dist/v2/handlers/consent/show-banner/handler.test.d.ts.map +1 -0
package/dist/v2/handlers/consent/show-banner/translations.d.ts +13 -0
package/dist/v2/handlers/consent/show-banner/translations.d.ts.map +1 -0
package/dist/v2/handlers/consent/show-banner/translations.test.d.ts +2 -0
package/dist/v2/handlers/consent/show-banner/translations.test.d.ts.map +1 -0
package/dist/v2/handlers/consent/verify.handler.d.ts +103 -0
package/dist/v2/handlers/consent/verify.handler.d.ts.map +1 -0
package/dist/v2/handlers/meta/index.d.ts +19 -0
package/dist/v2/handlers/meta/index.d.ts.map +1 -0
package/dist/v2/handlers/meta/status.handler.d.ts +17 -0
package/dist/v2/handlers/meta/status.handler.d.ts.map +1 -0
package/dist/v2/init.d.ts +3 -0
package/dist/v2/init.d.ts.map +1 -0
package/dist/v2/init.test.d.ts +2 -0
package/dist/v2/init.test.d.ts.map +1 -0
package/dist/v2/middleware/cors/cors.d.ts +37 -0
package/dist/v2/middleware/cors/cors.d.ts.map +1 -0
package/dist/v2/middleware/cors/cors.test.d.ts +2 -0
package/dist/v2/middleware/cors/cors.test.d.ts.map +1 -0
package/dist/v2/middleware/cors/index.d.ts +30 -0
package/dist/v2/middleware/cors/index.d.ts.map +1 -0
package/dist/v2/middleware/cors/is-origin-trusted.d.ts +49 -0
package/dist/v2/middleware/cors/is-origin-trusted.d.ts.map +1 -0
package/dist/v2/middleware/cors/is-origin-trusted.test.d.ts +2 -0
package/dist/v2/middleware/cors/is-origin-trusted.test.d.ts.map +1 -0
package/dist/v2/middleware/cors/process-cors.d.ts +31 -0
package/dist/v2/middleware/cors/process-cors.d.ts.map +1 -0
package/dist/v2/middleware/openapi/config.d.ts +28 -0
package/dist/v2/middleware/openapi/config.d.ts.map +1 -0
package/dist/v2/middleware/openapi/handlers.d.ts +29 -0
package/dist/v2/middleware/openapi/handlers.d.ts.map +1 -0
package/dist/v2/middleware/openapi/index.d.ts +11 -0
package/dist/v2/middleware/openapi/index.d.ts.map +1 -0
package/dist/v2/middleware/process-ip/index.d.ts +3 -0
package/dist/v2/middleware/process-ip/index.d.ts.map +1 -0
package/dist/v2/router.cjs +1275 -0
package/dist/v2/router.d.ts +280 -0
package/dist/v2/router.d.ts.map +1 -0
package/dist/v2/router.js +1231 -0
package/dist/v2/types/api.d.ts +27 -0
package/dist/v2/types/api.d.ts.map +1 -0
package/dist/v2/types/index.cjs +40 -0
package/dist/v2/types/index.d.ts +104 -0
package/dist/v2/types/index.d.ts.map +1 -0
package/dist/v2/types/index.js +6 -0
package/dist/v2/utils/create-telemetry-options.d.ts +28 -0
package/dist/v2/utils/create-telemetry-options.d.ts.map +1 -0
package/dist/v2/utils/env.d.ts +60 -0
package/dist/v2/utils/env.d.ts.map +1 -0
package/dist/v2/utils/index.d.ts +3 -0
package/dist/v2/utils/index.d.ts.map +1 -0
package/dist/v2/utils/logger.d.ts +16 -0
package/dist/v2/utils/logger.d.ts.map +1 -0
package/dist/version.d.ts +1 -1
package/package.json +106 -15
package/readme.json +30 -0
package/rslib.config.ts +13 -14
package/src/__tests__/server.test.ts +1 -1
package/src/contracts/consent/post.contract.test.ts +3 -8
package/src/contracts/consent/post.contract.ts +13 -13
package/src/contracts/consent/show-banner.contract.test.ts +9 -0
package/src/contracts/consent/show-banner.contract.ts +2 -0
package/src/contracts/consent/verify.contract.ts +19 -23
package/src/core.ts +7 -0
package/src/handlers/consent/show-banner/handler.ts +12 -9
package/src/handlers/consent/show-banner/translations.ts +2 -2
package/src/init.ts +9 -6
package/src/middleware/openapi/index.ts +2 -2
package/src/pkgs/api-router/hooks/__tests__/processor.test.ts +1 -1
package/src/pkgs/data-model/fields/index.ts +17 -22
package/src/pkgs/data-model/fields/zod-fields.ts +14 -26
package/src/pkgs/data-model/hooks/index.ts +3 -2
package/src/pkgs/data-model/index.ts +2 -4
package/src/pkgs/data-model/schema/index.ts +6 -7
package/src/pkgs/data-model/schema/schemas.ts +3 -3
package/src/pkgs/db-adapters/adapters/drizzle-adapter/drizzle-adapter.ts +4 -1
package/src/pkgs/db-adapters/adapters/index.ts +2 -2
package/src/pkgs/db-adapters/adapters/kysely-adapter/index.ts +4 -4
package/src/pkgs/db-adapters/adapters/kysely-adapter/kysely-adapter.ts +4 -5
package/src/pkgs/db-adapters/adapters/kysely-adapter/tests/postgres.test.ts +2 -4
package/src/pkgs/db-adapters/adapters/kysely-adapter/tests/sqlite.test.ts +2 -3
package/src/pkgs/db-adapters/adapters/kysely-adapter/tests/test-utils.ts +1 -6
package/src/pkgs/db-adapters/adapters/memory-adapter/memory-adapter.ts +4 -1
package/src/pkgs/db-adapters/adapters/prisma-adapter/index.ts +1 -1
package/src/pkgs/db-adapters/adapters/prisma-adapter/prisma-adapter.ts +5 -2
package/src/pkgs/db-adapters/index.ts +12 -13
package/src/pkgs/migrations/get-migration.ts +4 -2
package/src/pkgs/migrations/get-schema/get-schema.ts +0 -1
package/src/pkgs/migrations/get-schema/process-fields.ts +1 -1
package/src/pkgs/migrations/get-schema/process-tables.ts +0 -2
package/src/pkgs/migrations/index.ts +7 -8
package/src/pkgs/results/__tests__/error-codes.test.ts +2 -2
package/src/pkgs/results/index.ts +22 -27
package/src/pkgs/results/orpc-error-handler.ts +1 -1
package/src/pkgs/results/results/result-helpers.ts +1 -1
package/src/pkgs/types/index.ts +4 -4
package/src/pkgs/types/options.ts +10 -3
package/src/pkgs/utils/index.ts +1 -1
package/src/pkgs/utils/logger.ts +1 -1
package/src/schema/audit-log/schema.ts +3 -3
package/src/schema/consent/schema.ts +4 -4
package/src/schema/consent-policy/schema.ts +3 -3
package/src/schema/consent-purpose/schema.ts +4 -4
package/src/schema/consent-record/schema.ts +3 -3
package/src/schema/definition.ts +1 -1
package/src/schema/domain/schema.ts +5 -5
package/src/schema/index.ts +14 -17
package/src/schema/subject/schema.ts +3 -3
package/src/schema/types.ts +1 -1
package/src/testing/contract-testing.ts +15 -52
package/src/types/index.ts +8 -8
package/src/types/options.ts +2 -3
package/src/v2/contracts/consent/index.test.ts +5 -0
package/src/v2/contracts/consent/index.ts +9 -0
package/src/v2/contracts/consent/post.contract.test.ts +521 -0
package/src/v2/contracts/consent/post.contract.ts +155 -0
package/src/v2/contracts/consent/show-banner.contract.test.ts +252 -0
package/src/v2/contracts/consent/show-banner.contract.ts +73 -0
package/src/v2/contracts/consent/verify.contract.test.ts +185 -0
package/src/v2/contracts/consent/verify.contract.ts +122 -0
package/src/v2/contracts/index.ts +20 -0
package/src/v2/contracts/meta/index.test.ts +5 -0
package/src/v2/contracts/meta/index.ts +5 -0
package/src/v2/contracts/meta/status.contract.test.ts +226 -0
package/src/v2/contracts/meta/status.contract.ts +34 -0
package/src/v2/contracts/shared/jurisdiction.schema.ts +30 -0
package/src/v2/contracts/test.utils.ts +400 -0
package/src/v2/core.ts +379 -0
package/src/v2/db/adapters/drizzle.ts +1 -0
package/src/v2/db/adapters/index.ts +1 -0
package/src/v2/db/adapters/kysely.ts +1 -0
package/src/v2/db/adapters/mongo.ts +1 -0
package/src/v2/db/adapters/prisma.ts +1 -0
package/src/v2/db/adapters/typeorm.ts +1 -0
package/src/v2/db/migrator/index.ts +80 -0
package/src/v2/db/registry/audit-log.test.ts +77 -0
package/src/v2/db/registry/audit-log.ts +46 -0
package/src/v2/db/registry/consent-policy.test.ts +778 -0
package/src/v2/db/registry/consent-policy.ts +74 -0
package/src/v2/db/registry/consent-purpose.test.ts +485 -0
package/src/v2/db/registry/consent-purpose.ts +41 -0
package/src/v2/db/registry/consent.test.ts +843 -0
package/src/v2/db/registry/consent.ts +42 -0
package/src/v2/db/registry/domain.test.ts +463 -0
package/src/v2/db/registry/domain.ts +51 -0
package/src/v2/db/registry/index.ts +18 -0
package/src/v2/db/registry/subject.test.ts +497 -0
package/src/v2/db/registry/subject.ts +101 -0
package/src/v2/db/registry/types.ts +10 -0
package/src/v2/db/registry/utils/generate-id.test.ts +217 -0
package/src/v2/db/registry/utils/generate-id.ts +134 -0
package/src/v2/db/registry/utils.ts +134 -0
package/src/v2/db/schema/1.0.0/audit-log.ts +32 -0
package/src/v2/db/schema/1.0.0/consent-policy.ts +41 -0
package/src/v2/db/schema/1.0.0/consent-purpose.ts +30 -0
package/src/v2/db/schema/1.0.0/consent-record.ts +22 -0
package/src/v2/db/schema/1.0.0/consent.ts +38 -0
package/src/v2/db/schema/1.0.0/domain.ts +26 -0
package/src/v2/db/schema/1.0.0/index.ts +56 -0
package/src/v2/db/schema/1.0.0/subject.ts +26 -0
package/src/v2/db/schema/index.ts +9 -0
package/src/v2/define-config.ts +5 -0
package/src/v2/handlers/consent/index.ts +9 -0
package/src/v2/handlers/consent/post.handler.ts +254 -0
package/src/v2/handlers/consent/show-banner/geo.test.ts +281 -0
package/src/v2/handlers/consent/show-banner/geo.ts +96 -0
package/src/v2/handlers/consent/show-banner/handler.test.ts +374 -0
package/src/v2/handlers/consent/show-banner/handler.ts +123 -0
package/src/v2/handlers/consent/show-banner/translations.test.ts +121 -0
package/src/v2/handlers/consent/show-banner/translations.ts +79 -0
package/src/v2/handlers/consent/verify.handler.ts +288 -0
package/src/v2/handlers/meta/index.ts +5 -0
package/src/v2/handlers/meta/status.handler.ts +43 -0
package/src/v2/init.test.ts +114 -0
package/src/v2/init.ts +126 -0
package/src/v2/middleware/cors/cors.test.ts +111 -0
package/src/v2/middleware/cors/cors.ts +192 -0
package/src/v2/middleware/cors/index.ts +30 -0
package/src/v2/middleware/cors/is-origin-trusted.test.ts +104 -0
package/src/v2/middleware/cors/is-origin-trusted.ts +126 -0
package/src/v2/middleware/cors/process-cors.ts +91 -0
package/src/v2/middleware/openapi/config.ts +27 -0
package/src/v2/middleware/openapi/handlers.ts +132 -0
package/src/v2/middleware/openapi/index.ts +11 -0
package/src/v2/middleware/process-ip/index.ts +39 -0
package/src/v2/router.ts +8 -0
package/src/v2/types/api.ts +32 -0
package/src/v2/types/index.ts +121 -0
package/src/v2/utils/create-telemetry-options.ts +115 -0
package/src/v2/utils/env.ts +84 -0
package/src/v2/utils/index.ts +2 -0
package/src/v2/utils/logger.ts +38 -0
package/src/version.ts +1 -1
package/vitest.config.ts +11 -2

package/src/v2/middleware/cors/cors.test.ts ADDED Viewed

@@ -0,0 +1,111 @@
+import { describe, expect, it } from 'vitest';
+import { createCORSOptions } from './cors';
+describe('createCORSOptions (unit)', () => {
+	describe('configuration shape', () => {
+		it('returns expected defaults when no trustedOrigins provided', async () => {
+			const config = createCORSOptions();
+			expect(config.credentials).toBe(true);
+			expect(config.maxAge).toBe(600);
+			expect(config.allowHeaders).toEqual([
+				'Content-Type',
+				'Authorization',
+				'x-request-id',
+			]);
+			expect(config.methods).toEqual([
+				'GET',
+				'POST',
+				'PUT',
+				'DELETE',
+				'PATCH',
+				'OPTIONS',
+			]);
+			// origin present -> echo
+			expect(await config.origin('http://localhost:3002')).toBe(
+				'http://localhost:3002'
+			);
+			// no origin -> '*'
+			expect(await config.origin('')).toBe('*');
+		});
+	});
+	describe('wildcard "*"', () => {
+		it('allows any concrete origin and echoes it back', async () => {
+			const config = createCORSOptions(['*']);
+			expect(await config.origin('http://localhost:3002')).toBe(
+				'http://localhost:3002'
+			);
+			// missing origin -> '*'
+			expect(await config.origin('')).toBe('*');
+		});
+	});
+	describe('specific origins', () => {
+		it('allows trusted origin and rejects untrusted', async () => {
+			const config = createCORSOptions(['http://localhost:3002']);
+			expect(await config.origin('http://localhost:3002')).toBe(
+				'http://localhost:3002'
+			);
+			expect(await config.origin('http://malicious-site.com')).toBeNull();
+		});
+		it('treats localhost variants (ports, IPs) as trusted when "localhost" provided', async () => {
+			const config = createCORSOptions(['localhost']);
+			expect(await config.origin('http://localhost:1234')).toBe(
+				'http://localhost:1234'
+			);
+			expect(await config.origin('http://127.0.0.1:3000')).toBe(
+				'http://127.0.0.1:3000'
+			);
+			expect(await config.origin('http://[::1]:3000')).toBe(
+				'http://[::1]:3000'
+			);
+		});
+	});
+	describe('www and non-www variants', () => {
+		it('allows www when non-www is trusted', async () => {
+			const config = createCORSOptions(['http://c15t.com']);
+			expect(await config.origin('http://www.c15t.com')).toBe(
+				'http://www.c15t.com'
+			);
+		});
+		it('allows non-www when www is trusted', async () => {
+			const config = createCORSOptions(['http://www.c15t.com']);
+			expect(await config.origin('http://c15t.com')).toBe('http://c15t.com');
+		});
+	});
+	describe('ports and protocols', () => {
+		it('matches with exact port when provided', async () => {
+			const config = createCORSOptions(['localhost:3002']);
+			expect(await config.origin('http://localhost:3002')).toBe(
+				'http://localhost:3002'
+			);
+			expect(await config.origin('http://localhost:4000')).toBeNull();
+		});
+		it('is protocol-agnostic for host comparison', async () => {
+			const config = createCORSOptions(['example.com']);
+			expect(await config.origin('http://example.com')).toBe(
+				'http://example.com'
+			);
+			expect(await config.origin('https://www.example.com')).toBe(
+				'https://www.example.com'
+			);
+		});
+	});
+	describe('invalid or missing origins', () => {
+		it('returns null for clearly invalid origins', async () => {
+			const config = createCORSOptions(['example.com']);
+			expect(await config.origin('::::invalid::::')).toBeNull();
+		});
+		it('returns "*" when origin header is missing/empty', async () => {
+			const config = createCORSOptions(['*']);
+			expect(await config.origin('')).toBe('*');
+		});
+	});
+});

package/src/v2/middleware/cors/cors.ts ADDED Viewed

@@ -0,0 +1,192 @@
+/**
+ * CORS middleware utility for c15t that handles origin validation and CORS headers
+ *
+ * @packageDocumentation
+ */
+/** Regular expression to match www prefix in domain names */
+const WWW_REGEX = /^www\./;
+/** Regular expression to match protocol and www prefix in URLs */
+const PROTOCOL_WWW_REGEX = /^https?:\/\/(www\.)?/;
+/**
+ * Supported HTTP methods for CORS
+ */
+const SUPPORTED_METHODS = [
+	'GET',
+	'POST',
+	'PUT',
+	'DELETE',
+	'PATCH',
+	'OPTIONS',
+] as const;
+/**
+ * Supported headers for CORS requests
+ */
+const SUPPORTED_HEADERS = [
+	'Content-Type',
+	'Authorization',
+	'x-request-id',
+] as const;
+/**
+ * CORS configuration options type
+ */
+export interface CORSConfig {
+	/** Origin validation function */
+	origin: (origin: string) => Promise<string | null>;
+	/** Whether to allow credentials */
+	credentials: boolean;
+	/** Allowed headers */
+	allowHeaders: readonly string[];
+	/** Max age for preflight requests */
+	maxAge: number;
+	/** Allowed HTTP methods */
+	methods: readonly string[];
+}
+/**
+ * Default CORS configuration for unrestricted access
+ */
+const DEFAULT_CORS_CONFIG: CORSConfig = {
+	origin: async (origin: string) => {
+		// For default config, always return the origin if it exists, or '*' if it doesn't
+		return await Promise.resolve(origin || '*');
+	},
+	credentials: true,
+	allowHeaders: SUPPORTED_HEADERS,
+	maxAge: 600,
+	methods: SUPPORTED_METHODS,
+} as const;
+/**
+ * Creates CORS options configuration for the c15t middleware
+ *
+ * @param trustedOrigins - Array of allowed origin patterns or single string. Can include wildcards ('*').
+ * If undefined, defaults to allowing all origins without credentials.
+ *
+ * @returns CORS configuration object with origin validation function and header settings
+ *
+ * @example
+ * ```ts
+ * const corsOptions = createCORSOptions(['http://localhost:3000', 'https://example.com']);
+ * ```
+ *
+ * @throws {TypeError} When URL parsing fails in origin validation
+ */
+export function createCORSOptions(
+	trustedOrigins?: string[] | string
+): CORSConfig {
+	// If trustedOrigins is undefined or empty, return default config that allows all origins
+	if (!trustedOrigins) {
+		return DEFAULT_CORS_CONFIG;
+	}
+	// Convert string to array if needed
+	const origins = Array.isArray(trustedOrigins)
+		? trustedOrigins
+		: [trustedOrigins];
+	if (origins.length === 0) {
+		return DEFAULT_CORS_CONFIG;
+	}
+	/**
+	 * Normalizes an origin string by removing protocol and www prefix
+	 *
+	 * @param origin - The origin URL to normalize
+	 * @returns Normalized origin string without protocol and www prefix
+	 *
+	 * @internal
+	 */
+	function normalizeOrigin(origin: string): string {
+		try {
+			// Handle bare domains like 'localhost' or 'example.com'
+			if (
+				!origin.includes('://') &&
+				!origin.includes(':') &&
+				!origin.includes('/')
+			) {
+				return origin.toLowerCase();
+			}
+			// Add protocol if missing
+			const originWithProtocol =
+				origin.startsWith('http://') ||
+				origin.startsWith('https://') ||
+				origin.startsWith('ws://') ||
+				origin.startsWith('wss://')
+					? origin
+					: `http://${origin}`;
+			const url = new URL(originWithProtocol);
+			const hostname = url.hostname.replace(WWW_REGEX, '');
+			// Return without protocol to match both http and https
+			return `${hostname}${url.port ? `:${url.port}` : ''}`;
+		} catch {
+			// Fallback: remove www manually and protocol
+			return origin.replace(PROTOCOL_WWW_REGEX, '').replace(WWW_REGEX, '');
+		}
+	}
+	/**
+	 * Expands a list of origins to include www variants
+	 *
+	 * @param origins - Array of origin strings to expand
+	 * @returns Array of origins including www variants
+	 *
+	 * @internal
+	 */
+	function expandWithWWW(origins: string[]): string[] {
+		const expanded = new Set<string>();
+		for (const origin of origins) {
+			if (origin === '*') {
+				expanded.add('*');
+				continue;
+			}
+			const normalized = normalizeOrigin(origin);
+			expanded.add(normalized);
+			// Add www version if not already present
+			if (!normalized.includes('www.')) {
+				expanded.add(`www.${normalized}`);
+			}
+		}
+		return Array.from(expanded);
+	}
+	const expandedTrusted = expandWithWWW(origins);
+	const returnConfig = {
+		origin: async (origin: string) => {
+			if (!origin) {
+				return '*';
+			}
+			const normalizedOrigin = normalizeOrigin(origin);
+			if (expandedTrusted.includes('*')) {
+				return origin;
+			}
+			// Check if the origin matches any trusted origin
+			const isTrusted = expandedTrusted.some((trusted) => {
+				const normalizedTrusted = normalizeOrigin(trusted);
+				// For localhost, match both with and without port
+				if (normalizedTrusted === 'localhost') {
+					return (
+						normalizedOrigin === 'localhost' ||
+						normalizedOrigin.startsWith('localhost:') ||
+						normalizedOrigin === '127.0.0.1' ||
+						normalizedOrigin.startsWith('127.0.0.1:') ||
+						normalizedOrigin === '[::1]' ||
+						normalizedOrigin.startsWith('[::1]:')
+					);
+				}
+				return normalizedTrusted === normalizedOrigin;
+			});
+			return isTrusted ? origin : null;
+		},
+		credentials: true,
+		allowHeaders: SUPPORTED_HEADERS,
+		maxAge: 600,
+		methods: SUPPORTED_METHODS,
+	};
+	return returnConfig;
+}

package/src/v2/middleware/cors/index.ts ADDED Viewed

@@ -0,0 +1,30 @@
+/**
+ * CORS middleware for c15t
+ *
+ * This module provides comprehensive CORS (Cross-Origin Resource Sharing) functionality including:
+ * - Origin validation with support for wildcards and subdomains
+ * - Flexible CORS options configuration
+ * - Context processing and enrichment
+ * - Protocol-agnostic matching
+ * - Support for www and non-www variants
+ *
+ * @example
+ * ```ts
+ * import { createCORSOptions, isOriginTrusted, processCors } from '@c15t/backend/middleware/cors';
+ *
+ * // Create CORS options with trusted origins
+ * const corsOptions = createCORSOptions(['https://example.com', '*.trusted-domain.com']);
+ *
+ * // Process CORS for a request
+ * const enrichedContext = processCors(request, context, trustedOrigins);
+ *
+ * // Validate an origin directly
+ * const isTrusted = isOriginTrusted('https://api.trusted-domain.com', trustedOrigins);
+ * ```
+ *
+ * @packageDocumentation
+ */
+export { createCORSOptions } from './cors';
+export { isOriginTrusted } from './is-origin-trusted';
+export { processCors } from './process-cors';

package/src/v2/middleware/cors/is-origin-trusted.test.ts ADDED Viewed

@@ -0,0 +1,104 @@
+import { describe, expect, it } from 'vitest';
+import { isOriginTrusted } from './is-origin-trusted';
+/**
+ * Test suite for CORS utility functions
+ */
+describe('CORS utilities', () => {
+	describe('isOriginTrusted', () => {
+		it('should match exact origins', () => {
+			const trustedDomains = ['example.com'];
+			expect(isOriginTrusted('https://example.com', trustedDomains)).toBe(true);
+			expect(isOriginTrusted('https://other.com', trustedDomains)).toBe(false);
+		});
+		it('should handle origins with trailing slashes', () => {
+			const trustedDomains = ['example.com'];
+			expect(isOriginTrusted('https://example.com/', trustedDomains)).toBe(
+				true
+			);
+			expect(isOriginTrusted('https://example.com//', trustedDomains)).toBe(
+				true
+			);
+		});
+		it('should handle origins with paths', () => {
+			const trustedDomains = ['example.com'];
+			expect(isOriginTrusted('https://example.com/path', trustedDomains)).toBe(
+				true
+			);
+			expect(
+				isOriginTrusted('https://example.com/path/subpath', trustedDomains)
+			).toBe(true);
+		});
+		it('should handle multiple trusted domains', () => {
+			const trustedDomains = ['example.com', 'test.com'];
+			expect(isOriginTrusted('https://example.com', trustedDomains)).toBe(true);
+			expect(isOriginTrusted('https://test.com', trustedDomains)).toBe(true);
+			expect(isOriginTrusted('https://other.com', trustedDomains)).toBe(false);
+		});
+		it('should handle wildcard subdomains', () => {
+			const trustedDomains = ['*.example.com'];
+			expect(isOriginTrusted('https://sub.example.com', trustedDomains)).toBe(
+				true
+			);
+			expect(
+				isOriginTrusted('https://other.sub.example.com', trustedDomains)
+			).toBe(true);
+			expect(isOriginTrusted('https://example.com', trustedDomains)).toBe(
+				false
+			);
+			expect(isOriginTrusted('https://other.com', trustedDomains)).toBe(false);
+		});
+		it('should handle different protocols', () => {
+			const trustedDomains = ['example.com'];
+			expect(isOriginTrusted('http://example.com', trustedDomains)).toBe(true);
+			expect(isOriginTrusted('wss://example.com', trustedDomains)).toBe(true);
+		});
+		it('should handle ports in origins', () => {
+			const trustedDomains = ['example.com'];
+			expect(isOriginTrusted('https://example.com:3000', trustedDomains)).toBe(
+				true
+			);
+			expect(isOriginTrusted('http://example.com:8080', trustedDomains)).toBe(
+				true
+			);
+		});
+		it('should handle empty trusted domains array', () => {
+			const trustedDomains: string[] = [];
+			expect(isOriginTrusted('https://example.com', trustedDomains)).toBe(
+				false
+			);
+		});
+		it('should handle invalid origin formats', () => {
+			const trustedDomains = ['example.com'];
+			expect(isOriginTrusted('invalid-url', trustedDomains)).toBe(false);
+			expect(isOriginTrusted('', trustedDomains)).toBe(false);
+		});
+		it('should handle case sensitivity', () => {
+			const trustedDomains = ['EXAMPLE.com'];
+			expect(isOriginTrusted('https://example.com', trustedDomains)).toBe(true);
+			expect(isOriginTrusted('https://EXAMPLE.COM', trustedDomains)).toBe(true);
+		});
+		it('should handle subdomain levels with wildcards', () => {
+			const trustedDomains = ['*.example.com'];
+			expect(isOriginTrusted('https://a.b.example.com', trustedDomains)).toBe(
+				true
+			);
+			expect(isOriginTrusted('https://a.example.com', trustedDomains)).toBe(
+				true
+			);
+			expect(isOriginTrusted('https://example.com', trustedDomains)).toBe(
+				false
+			);
+		});
+	});
+});

package/src/v2/middleware/cors/is-origin-trusted.ts ADDED Viewed

@@ -0,0 +1,126 @@
+/**
+ * Origin validation utilities for CORS security
+ *
+ * @packageDocumentation
+ */
+import type { Logger } from '@doubletie/logger';
+/**
+ * Regular expression to strip protocol, trailing slashes, and port numbers from URLs
+ * Matches:
+ * - http:// or https:// protocol
+ * - ws:// or wss:// protocol
+ * - trailing slashes
+ * - port numbers with colon
+ *
+ * @internal
+ */
+export const STRIP_REGEX = /^(https?:\/\/)|(wss?:\/\/)|(\/+$)|:\d+/g;
+/**
+ * Checks if a domain matches a wildcard pattern
+ *
+ * @param hostname - The hostname to check
+ * @param wildcardPattern - The wildcard pattern (e.g. *.example.com)
+ * @param logger - Optional logger for debugging
+ * @returns true if the hostname matches the wildcard pattern
+ *
+ * @internal
+ */
+function matchesWildcard(
+	hostname: string,
+	wildcardPattern: string,
+	logger?: Logger
+): boolean {
+	const wildcardDomain = wildcardPattern.slice(2); // Remove *. prefix
+	const parts = hostname.split('.');
+	const isValid = parts.length > 2 && hostname.endsWith(wildcardDomain);
+	logger?.debug(
+		`Wildcard match result: ${isValid} ${hostname} ends with ${wildcardDomain} ${parts.length > 2} ${hostname.endsWith(wildcardDomain)}`
+	);
+	return isValid;
+}
+/**
+ * Validates if a given origin matches any of the trusted domain patterns
+ *
+ * Supports:
+ * - Exact domain matches
+ * - Wildcard subdomains (e.g. *.example.com)
+ * - Protocol-agnostic matching
+ * - Case-insensitive comparison
+ *
+ * @param origin - The origin URL to validate (e.g. https://example.com)
+ * @param trustedDomains - Array of trusted domain patterns. Can include wildcards (e.g. *.example.com)
+ * @param logger - Optional logger for debugging validation process
+ *
+ * @returns `true` if the origin matches any trusted domain pattern, `false` otherwise
+ *
+ * @throws {Error} When trustedDomains array is empty
+ * @throws {TypeError} When origin URL is invalid
+ *
+ * @example
+ * ```ts
+ * // Simple domain matching
+ * isOriginTrusted('https://example.com', ['example.com']); // true
+ *
+ * // Wildcard subdomain matching
+ * isOriginTrusted('https://api.example.com', ['*.example.com']); // true
+ *
+ * // Allow all origins
+ * isOriginTrusted('https://any-domain.com', ['*']); // true
+ * ```
+ */
+export function isOriginTrusted(
+	origin: string,
+	trustedDomains: string[],
+	logger?: Logger
+): boolean {
+	try {
+		if (trustedDomains.length === 0) {
+			throw new Error('No trusted domains');
+		}
+		logger?.debug(
+			`Checking if origin ${origin} is trusted in ${trustedDomains}`
+		);
+		// Special case: if "*" is in trusted domains, allow all origins
+		if (trustedDomains.includes('*')) {
+			logger?.debug('Allowing all origins');
+			return true;
+		}
+		// Parse the origin URL to get just the hostname
+		const url = new URL(origin);
+		const originHostname = url.hostname.toLowerCase();
+		logger?.debug(`Parsed origin hostname: ${originHostname}`);
+		return trustedDomains.some((domain) => {
+			// Handle empty domains (which might come from splitting empty strings)
+			if (!domain || domain.trim() === '') {
+				logger?.debug('Skipping empty domain');
+				return false;
+			}
+			const strippedDomain = domain.replace(STRIP_REGEX, '').toLowerCase();
+			logger?.debug(`Checking against stripped domain: ${strippedDomain}`);
+			if (strippedDomain.startsWith('*.')) {
+				return matchesWildcard(originHostname, strippedDomain, logger);
+			}
+			const isMatch = originHostname === strippedDomain;
+			logger?.debug(
+				`Exact match result: ${isMatch} ${originHostname} === ${strippedDomain}`
+			);
+			return isMatch;
+		});
+	} catch (error) {
+		logger?.error('Error validating origin:', error);
+		return false;
+	}
+}

package/src/v2/middleware/cors/process-cors.ts ADDED Viewed

@@ -0,0 +1,91 @@
+/**
+ * CORS processing middleware for c15t
+ * Handles origin validation and context enrichment
+ *
+ * @packageDocumentation
+ */
+import type { C15TContext } from '~/v2/types';
+import { isOriginTrusted } from './is-origin-trusted';
+/**
+ * Result of CORS processing
+ * @internal
+ */
+interface CORSProcessingResult {
+	/** The origin from the request */
+	origin: string | null;
+	/** Whether the origin is trusted */
+	isTrusted: boolean;
+}
+/**
+ * Extracts and validates CORS information from a request
+ *
+ * @param request - The request to process
+ * @param trustedOrigins - Array of trusted origins
+ * @param logger - Optional logger for debugging
+ * @returns CORS processing result
+ *
+ * @internal
+ */
+function extractCORSInfo(
+	request: Request,
+	trustedOrigins?: string[],
+	logger?: C15TContext['logger']
+): CORSProcessingResult {
+	const origin = request.headers.get('origin');
+	if (!origin || !trustedOrigins) {
+		return {
+			origin: origin,
+			isTrusted: false,
+		};
+	}
+	return {
+		origin,
+		isTrusted: isOriginTrusted(origin, trustedOrigins, logger),
+	};
+}
+/**
+ * Processes CORS validation for an incoming request and enriches the context
+ * with origin information. This middleware function validates the origin against
+ * trusted patterns and updates the context with the validation results.
+ *
+ * @param request - The incoming HTTP request to process
+ * @param context - The c15t middleware context to enrich
+ * @param trustedOrigins - Array of trusted origin patterns. Can include wildcards ('*')
+ *
+ * @returns The enriched context with origin validation results
+ *
+ * @example
+ * ```ts
+ * const enrichedContext = processCors(
+ *   request,
+ *   context,
+ *   ['https://example.com', '*.trusted-domain.com']
+ * );
+ * ```
+ *
+ * @see {@link isOriginTrusted} for origin validation details
+ */
+export const processCors = (
+	request: Request,
+	context: C15TContext,
+	trustedOrigins?: string[]
+): C15TContext => {
+	const { origin, isTrusted } = extractCORSInfo(
+		request,
+		trustedOrigins,
+		context.logger
+	);
+	if (origin) {
+		context.origin = origin;
+		context.trustedOrigin = isTrusted;
+	}
+	return context;
+};

package/src/v2/middleware/openapi/config.ts ADDED Viewed

@@ -0,0 +1,27 @@
+import type { C15TOptions } from '~/v2/types';
+import { version } from '~/version';
+/**
+ * Default OpenAPI configuration
+ */
+export const createOpenAPIConfig = (options: C15TOptions) => {
+	const basePath = options.basePath || '';
+	return {
+		enabled: true,
+		specPath: `${basePath}/spec.json`,
+		docsPath: `${basePath}/docs`,
+		...(options.advanced?.openapi || {}),
+	};
+};
+/**
+ * Default OpenAPI options
+ */
+export const createDefaultOpenAPIOptions = (options: C15TOptions) => ({
+	info: {
+		title: options.appName || 'c15t API',
+		version,
+		description: 'API for consent management',
+	},
+	servers: [{ url: options.basePath || '/' }],
+	security: [{ bearerAuth: [] }],
+});