npm - @c15t/backend - Versions diffs - 2.0.0-rc.0 → 2.0.0-rc.10 - Mend

@c15t/backend 2.0.0-rc.0 → 2.0.0-rc.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (336) hide show

package/README.md +3 -3
package/dist/302.js +473 -0
package/dist/583.js +540 -0
package/dist/915.js +1771 -0
package/dist/cache.cjs +5 -5
package/dist/cache.js +4 -415
package/dist/core.cjs +1356 -120
package/dist/core.js +163 -1981
package/dist/db/adapters/drizzle.cjs +1 -1
package/dist/db/adapters/drizzle.js +1 -2
package/dist/db/adapters/kysely.cjs +1 -1
package/dist/db/adapters/kysely.js +1 -2
package/dist/db/adapters/mongo.cjs +1 -1
package/dist/db/adapters/mongo.js +1 -2
package/dist/db/adapters/prisma.cjs +1 -1
package/dist/db/adapters/prisma.js +1 -2
package/dist/db/adapters/typeorm.cjs +1 -1
package/dist/db/adapters/typeorm.js +1 -2
package/dist/db/adapters.cjs +1 -1
package/dist/db/migrator.cjs +1 -1
package/dist/db/schema.cjs +43 -3
package/dist/db/schema.js +35 -4
package/dist/define-config.cjs +1 -1
package/dist/edge.cjs +1106 -0
package/dist/edge.js +190 -0
package/dist/router.cjs +885 -123
package/dist/router.js +1 -1507
package/dist/{types.cjs → types/index.cjs} +1 -1
package/{dist → dist-types}/cache/adapters/cloudflare-kv.d.ts +0 -1
package/{dist → dist-types}/cache/adapters/index.d.ts +0 -1
package/{dist → dist-types}/cache/adapters/memory.d.ts +0 -1
package/{dist → dist-types}/cache/adapters/upstash-redis.d.ts +0 -1
package/{dist → dist-types}/cache/gvl-resolver.d.ts +0 -1
package/{dist → dist-types}/cache/index.d.ts +0 -1
package/{dist → dist-types}/cache/keys.d.ts +0 -1
package/{dist → dist-types}/cache/types.d.ts +0 -1
package/{dist → dist-types}/core.d.ts +8 -1
package/{dist → dist-types}/db/migrator/index.d.ts +0 -1
package/dist-types/db/registry/consent-policy.d.ts +78 -0
package/{dist → dist-types}/db/registry/consent-purpose.d.ts +0 -1
package/{dist → dist-types}/db/registry/domain.d.ts +0 -1
package/dist-types/db/registry/index.d.ts +118 -0
package/dist-types/db/registry/runtime-policy-decision.d.ts +60 -0
package/{dist → dist-types}/db/registry/subject.d.ts +0 -2
package/{dist → dist-types}/db/registry/types.d.ts +1 -1
package/{dist → dist-types}/db/registry/utils/generate-id.d.ts +0 -1
package/{dist → dist-types}/db/registry/utils.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/audit-log.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent-policy.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent-purpose.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent-record.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent.d.ts +1 -2
package/{dist → dist-types}/db/schema/1.0.0/domain.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/index.d.ts +0 -32
package/{dist → dist-types}/db/schema/1.0.0/subject.d.ts +0 -2
package/{dist → dist-types}/db/schema/2.0.0/audit-log.d.ts +1 -2
package/{dist → dist-types}/db/schema/2.0.0/consent-policy.d.ts +3 -3
package/{dist → dist-types}/db/schema/2.0.0/consent-purpose.d.ts +1 -2
package/{dist → dist-types}/db/schema/2.0.0/consent.d.ts +7 -2
package/{dist → dist-types}/db/schema/2.0.0/domain.d.ts +1 -2
package/{dist → dist-types}/db/schema/2.0.0/index.d.ts +455 -28
package/dist-types/db/schema/2.0.0/runtime-policy-decision.d.ts +23 -0
package/{dist → dist-types}/db/schema/2.0.0/subject.d.ts +1 -3
package/{dist → dist-types}/db/schema/index.d.ts +908 -86
package/{dist → dist-types}/db/tenant-scope.d.ts +0 -1
package/dist-types/define-config.d.ts +17 -0
package/dist-types/edge/index.d.ts +5 -0
package/dist-types/edge/init-handler.d.ts +40 -0
package/dist-types/edge/resolve-consent.d.ts +80 -0
package/dist-types/edge/types.d.ts +13 -0
package/{dist → dist-types}/handlers/consent/check.handler.d.ts +0 -1
package/{src/handlers/consent/index.ts → dist-types/handlers/consent/index.d.ts} +0 -1
package/{dist → dist-types}/handlers/init/geo.d.ts +2 -3
package/{dist → dist-types}/handlers/init/index.d.ts +2 -3
package/dist-types/handlers/init/policy.d.ts +26 -0
package/dist-types/handlers/init/resolve-init.d.ts +44 -0
package/dist-types/handlers/init/translations.d.ts +48 -0
package/dist-types/handlers/legal-document/current.handler.d.ts +11 -0
package/dist-types/handlers/legal-document/snapshot.d.ts +39 -0
package/dist-types/handlers/policy/snapshot.d.ts +99 -0
package/{src/handlers/status/index.ts → dist-types/handlers/status/index.d.ts} +0 -1
package/{dist → dist-types}/handlers/status/status.handler.d.ts +0 -1
package/{dist → dist-types}/handlers/subject/get.handler.d.ts +3 -2
package/{src/handlers/subject/index.ts → dist-types/handlers/subject/index.d.ts} +0 -1
package/{dist → dist-types}/handlers/subject/list.handler.d.ts +3 -2
package/{dist → dist-types}/handlers/subject/patch.handler.d.ts +0 -2
package/{dist → dist-types}/handlers/subject/post.handler.d.ts +12 -1
package/{dist → dist-types}/handlers/utils/consent-enrichment.d.ts +3 -1
package/{dist → dist-types}/init.d.ts +4 -7
package/{dist → dist-types}/middleware/auth/index.d.ts +0 -1
package/{dist → dist-types}/middleware/auth/validate-api-key.d.ts +0 -1
package/{dist → dist-types}/middleware/cors/cors.d.ts +0 -1
package/{src/middleware/cors/index.ts → dist-types/middleware/cors/index.d.ts} +0 -1
package/{dist → dist-types}/middleware/cors/is-origin-trusted.d.ts +0 -1
package/{dist → dist-types}/middleware/cors/process-cors.d.ts +0 -1
package/{dist → dist-types}/middleware/openapi/config.d.ts +0 -1
package/{dist → dist-types}/middleware/openapi/handlers.d.ts +0 -1
package/{src/middleware/openapi/index.ts → dist-types/middleware/openapi/index.d.ts} +0 -1
package/{dist → dist-types}/middleware/process-ip/index.d.ts +0 -1
package/dist-types/policies/builder.d.ts +127 -0
package/dist-types/policies/defaults.d.ts +2 -0
package/dist-types/policies/matchers.d.ts +3 -0
package/{dist → dist-types}/router.d.ts +0 -1
package/{dist → dist-types}/routes/consent.d.ts +0 -1
package/{dist → dist-types}/routes/index.d.ts +1 -1
package/{dist → dist-types}/routes/init.d.ts +0 -1
package/dist-types/routes/legal-document.d.ts +7 -0
package/{dist → dist-types}/routes/status.d.ts +0 -1
package/{dist → dist-types}/routes/subject.d.ts +0 -1
package/{dist → dist-types}/types/api.d.ts +0 -1
package/dist-types/types/index.d.ts +464 -0
package/dist-types/utils/background.d.ts +6 -0
package/{dist → dist-types}/utils/create-telemetry-options.d.ts +1 -2
package/{dist → dist-types}/utils/env.d.ts +0 -1
package/{dist → dist-types}/utils/extract-error-message.d.ts +0 -1
package/{dist → dist-types}/utils/instrumentation.d.ts +2 -3
package/{dist → dist-types}/utils/logger.d.ts +0 -1
package/{dist → dist-types}/utils/metrics.d.ts +0 -1
package/dist-types/version.d.ts +1 -0
package/docs/README.md +49 -0
package/docs/api/configuration.md +208 -0
package/docs/api/endpoints.md +211 -0
package/docs/guides/caching.md +85 -0
package/docs/guides/database-setup.md +128 -0
package/docs/guides/edge-deployment.md +251 -0
package/docs/guides/framework-integration.md +142 -0
package/docs/guides/iab-tcf.md +89 -0
package/docs/guides/observability.md +96 -0
package/docs/guides/policy-packs.md +396 -0
package/docs/quickstart.md +129 -0
package/package.json +53 -39
package/.turbo/turbo-build.log +0 -49
package/CHANGELOG.md +0 -89
package/dist/cache/adapters/cloudflare-kv.d.ts.map +0 -1
package/dist/cache/adapters/index.d.ts.map +0 -1
package/dist/cache/adapters/memory.d.ts.map +0 -1
package/dist/cache/adapters/upstash-redis.d.ts.map +0 -1
package/dist/cache/gvl-resolver.d.ts.map +0 -1
package/dist/cache/index.d.ts.map +0 -1
package/dist/cache/keys.d.ts.map +0 -1
package/dist/cache/types.d.ts.map +0 -1
package/dist/core.d.ts.map +0 -1
package/dist/db/adapters/drizzle.d.ts +0 -2
package/dist/db/adapters/drizzle.d.ts.map +0 -1
package/dist/db/adapters/index.d.ts +0 -2
package/dist/db/adapters/index.d.ts.map +0 -1
package/dist/db/adapters/kysely.d.ts +0 -2
package/dist/db/adapters/kysely.d.ts.map +0 -1
package/dist/db/adapters/mongo.d.ts +0 -2
package/dist/db/adapters/mongo.d.ts.map +0 -1
package/dist/db/adapters/prisma.d.ts +0 -2
package/dist/db/adapters/prisma.d.ts.map +0 -1
package/dist/db/adapters/typeorm.d.ts +0 -2
package/dist/db/adapters/typeorm.d.ts.map +0 -1
package/dist/db/migrator/index.d.ts.map +0 -1
package/dist/db/registry/consent-policy.d.ts +0 -23
package/dist/db/registry/consent-policy.d.ts.map +0 -1
package/dist/db/registry/consent-purpose.d.ts.map +0 -1
package/dist/db/registry/domain.d.ts.map +0 -1
package/dist/db/registry/index.d.ts +0 -57
package/dist/db/registry/index.d.ts.map +0 -1
package/dist/db/registry/subject.d.ts.map +0 -1
package/dist/db/registry/types.d.ts.map +0 -1
package/dist/db/registry/utils/generate-id.d.ts.map +0 -1
package/dist/db/registry/utils.d.ts.map +0 -1
package/dist/db/schema/1.0.0/audit-log.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent-policy.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent-purpose.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent-record.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent.d.ts.map +0 -1
package/dist/db/schema/1.0.0/domain.d.ts.map +0 -1
package/dist/db/schema/1.0.0/index.d.ts.map +0 -1
package/dist/db/schema/1.0.0/subject.d.ts.map +0 -1
package/dist/db/schema/2.0.0/audit-log.d.ts.map +0 -1
package/dist/db/schema/2.0.0/consent-policy.d.ts.map +0 -1
package/dist/db/schema/2.0.0/consent-purpose.d.ts.map +0 -1
package/dist/db/schema/2.0.0/consent.d.ts.map +0 -1
package/dist/db/schema/2.0.0/domain.d.ts.map +0 -1
package/dist/db/schema/2.0.0/index.d.ts.map +0 -1
package/dist/db/schema/2.0.0/subject.d.ts.map +0 -1
package/dist/db/schema/index.d.ts.map +0 -1
package/dist/db/tenant-scope.d.ts.map +0 -1
package/dist/define-config.d.ts +0 -5
package/dist/define-config.d.ts.map +0 -1
package/dist/handlers/consent/check.handler.d.ts.map +0 -1
package/dist/handlers/consent/index.d.ts +0 -12
package/dist/handlers/consent/index.d.ts.map +0 -1
package/dist/handlers/init/geo.d.ts.map +0 -1
package/dist/handlers/init/index.d.ts.map +0 -1
package/dist/handlers/init/translations.d.ts +0 -28
package/dist/handlers/init/translations.d.ts.map +0 -1
package/dist/handlers/status/index.d.ts +0 -7
package/dist/handlers/status/index.d.ts.map +0 -1
package/dist/handlers/status/status.handler.d.ts.map +0 -1
package/dist/handlers/subject/get.handler.d.ts.map +0 -1
package/dist/handlers/subject/index.d.ts +0 -10
package/dist/handlers/subject/index.d.ts.map +0 -1
package/dist/handlers/subject/list.handler.d.ts.map +0 -1
package/dist/handlers/subject/patch.handler.d.ts.map +0 -1
package/dist/handlers/subject/post.handler.d.ts.map +0 -1
package/dist/handlers/utils/consent-enrichment.d.ts.map +0 -1
package/dist/init.d.ts.map +0 -1
package/dist/middleware/auth/index.d.ts.map +0 -1
package/dist/middleware/auth/validate-api-key.d.ts.map +0 -1
package/dist/middleware/cors/cors.d.ts.map +0 -1
package/dist/middleware/cors/index.d.ts +0 -30
package/dist/middleware/cors/index.d.ts.map +0 -1
package/dist/middleware/cors/is-origin-trusted.d.ts.map +0 -1
package/dist/middleware/cors/process-cors.d.ts.map +0 -1
package/dist/middleware/openapi/config.d.ts.map +0 -1
package/dist/middleware/openapi/handlers.d.ts.map +0 -1
package/dist/middleware/openapi/index.d.ts +0 -12
package/dist/middleware/openapi/index.d.ts.map +0 -1
package/dist/middleware/process-ip/index.d.ts.map +0 -1
package/dist/router.d.ts.map +0 -1
package/dist/routes/consent.d.ts.map +0 -1
package/dist/routes/index.d.ts.map +0 -1
package/dist/routes/init.d.ts.map +0 -1
package/dist/routes/status.d.ts.map +0 -1
package/dist/routes/subject.d.ts.map +0 -1
package/dist/types/api.d.ts.map +0 -1
package/dist/types/index.d.ts +0 -255
package/dist/types/index.d.ts.map +0 -1
package/dist/utils/create-telemetry-options.d.ts.map +0 -1
package/dist/utils/env.d.ts.map +0 -1
package/dist/utils/extract-error-message.d.ts.map +0 -1
package/dist/utils/index.d.ts +0 -4
package/dist/utils/index.d.ts.map +0 -1
package/dist/utils/instrumentation.d.ts.map +0 -1
package/dist/utils/logger.d.ts.map +0 -1
package/dist/utils/metrics.d.ts.map +0 -1
package/dist/version.d.ts +0 -2
package/dist/version.d.ts.map +0 -1
package/knip.json +0 -31
package/rslib.config.ts +0 -93
package/src/cache/adapters/cloudflare-kv.ts +0 -71
package/src/cache/adapters/index.ts +0 -22
package/src/cache/adapters/memory.ts +0 -111
package/src/cache/adapters/upstash-redis.ts +0 -113
package/src/cache/gvl-resolver.ts +0 -289
package/src/cache/index.ts +0 -34
package/src/cache/keys.ts +0 -68
package/src/cache/types.ts +0 -66
package/src/core.ts +0 -368
package/src/db/migrator/index.ts +0 -80
package/src/db/registry/consent-policy.test.ts +0 -451
package/src/db/registry/consent-policy.ts +0 -82
package/src/db/registry/consent-purpose.test.ts +0 -428
package/src/db/registry/consent-purpose.ts +0 -61
package/src/db/registry/domain.test.ts +0 -445
package/src/db/registry/domain.ts +0 -91
package/src/db/registry/index.ts +0 -14
package/src/db/registry/subject.test.ts +0 -388
package/src/db/registry/subject.ts +0 -129
package/src/db/registry/types.ts +0 -10
package/src/db/registry/utils/generate-id.test.ts +0 -216
package/src/db/registry/utils/generate-id.ts +0 -133
package/src/db/registry/utils.ts +0 -133
package/src/db/schema/1.0.0/audit-log.ts +0 -15
package/src/db/schema/1.0.0/consent-policy.ts +0 -14
package/src/db/schema/1.0.0/consent-purpose.ts +0 -14
package/src/db/schema/1.0.0/consent-record.ts +0 -10
package/src/db/schema/1.0.0/consent.ts +0 -20
package/src/db/schema/1.0.0/domain.ts +0 -12
package/src/db/schema/1.0.0/index.ts +0 -48
package/src/db/schema/1.0.0/subject.ts +0 -12
package/src/db/schema/2.0.0/audit-log.ts +0 -18
package/src/db/schema/2.0.0/consent-policy.ts +0 -28
package/src/db/schema/2.0.0/consent-purpose.ts +0 -12
package/src/db/schema/2.0.0/consent.ts +0 -26
package/src/db/schema/2.0.0/domain.ts +0 -12
package/src/db/schema/2.0.0/index.ts +0 -47
package/src/db/schema/2.0.0/subject.ts +0 -14
package/src/db/schema/index.ts +0 -15
package/src/db/tenant-scope.test.ts +0 -750
package/src/db/tenant-scope.ts +0 -103
package/src/define-config.ts +0 -5
package/src/handlers/consent/check.handler.ts +0 -126
package/src/handlers/init/geo.test.ts +0 -317
package/src/handlers/init/geo.ts +0 -195
package/src/handlers/init/index.test.ts +0 -205
package/src/handlers/init/index.ts +0 -114
package/src/handlers/init/translations.test.ts +0 -121
package/src/handlers/init/translations.ts +0 -72
package/src/handlers/status/status.handler.test.ts +0 -155
package/src/handlers/status/status.handler.ts +0 -51
package/src/handlers/subject/get.handler.ts +0 -93
package/src/handlers/subject/list.handler.ts +0 -93
package/src/handlers/subject/patch.handler.ts +0 -122
package/src/handlers/subject/post.handler.test.ts +0 -294
package/src/handlers/subject/post.handler.ts +0 -254
package/src/handlers/utils/consent-enrichment.test.ts +0 -380
package/src/handlers/utils/consent-enrichment.ts +0 -218
package/src/init.test.ts +0 -126
package/src/init.ts +0 -87
package/src/middleware/auth/index.ts +0 -11
package/src/middleware/auth/validate-api-key.test.ts +0 -86
package/src/middleware/auth/validate-api-key.ts +0 -107
package/src/middleware/cors/cors.test.ts +0 -135
package/src/middleware/cors/cors.ts +0 -186
package/src/middleware/cors/is-origin-trusted.test.ts +0 -164
package/src/middleware/cors/is-origin-trusted.ts +0 -130
package/src/middleware/cors/process-cors.ts +0 -91
package/src/middleware/openapi/config.ts +0 -29
package/src/middleware/openapi/handlers.ts +0 -34
package/src/middleware/process-ip/index.test.ts +0 -195
package/src/middleware/process-ip/index.ts +0 -199
package/src/router.ts +0 -15
package/src/routes/consent.ts +0 -52
package/src/routes/index.ts +0 -10
package/src/routes/init.ts +0 -102
package/src/routes/status.ts +0 -46
package/src/routes/subject.ts +0 -152
package/src/types/api.ts +0 -48
package/src/types/index.ts +0 -288
package/src/utils/create-telemetry-options.test.ts +0 -302
package/src/utils/create-telemetry-options.ts +0 -229
package/src/utils/env.ts +0 -84
package/src/utils/extract-error-message.ts +0 -21
package/src/utils/instrumentation.test.ts +0 -185
package/src/utils/instrumentation.ts +0 -196
package/src/utils/logger.ts +0 -41
package/src/utils/metrics.test.ts +0 -323
package/src/utils/metrics.ts +0 -402
package/src/utils/telemetry-pii.test.ts +0 -325
package/src/version.ts +0 -2
package/tsconfig.json +0 -11
package/vitest.config.ts +0 -28
/package/dist/{types.js → types/index.js} +0 -0
/package/{src/db/adapters/drizzle.ts → dist-types/db/adapters/drizzle.d.ts} +0 -0
/package/{src/db/adapters/index.ts → dist-types/db/adapters/index.d.ts} +0 -0
/package/{src/db/adapters/kysely.ts → dist-types/db/adapters/kysely.d.ts} +0 -0
/package/{src/db/adapters/mongo.ts → dist-types/db/adapters/mongo.d.ts} +0 -0
/package/{src/db/adapters/prisma.ts → dist-types/db/adapters/prisma.d.ts} +0 -0
/package/{src/db/adapters/typeorm.ts → dist-types/db/adapters/typeorm.d.ts} +0 -0
/package/{src/utils/index.ts → dist-types/utils/index.d.ts} +0 -0

package/{dist → dist-types}/middleware/cors/process-cors.d.ts RENAMED Viewed

@@ -28,4 +28,3 @@ import type { C15TContext } from '../../types';
  * @see {@link isOriginTrusted} for origin validation details
  */
 export declare const processCors: (request: Request, context: C15TContext, trustedOrigins?: string[]) => C15TContext;
-//# sourceMappingURL=process-cors.d.ts.map

package/{dist → dist-types}/middleware/openapi/config.d.ts RENAMED Viewed

@@ -39,4 +39,3 @@ export declare const createDefaultOpenAPIOptions: (options: C15TOptions) => {
         bearerAuth: never[];
     }[];
 };
-//# sourceMappingURL=config.d.ts.map

package/{dist → dist-types}/middleware/openapi/handlers.d.ts RENAMED Viewed

@@ -3,4 +3,3 @@ import type { C15TOptions } from '../../types';
  * Generate the default UI for API documentation
  */
 export declare const createDocsUI: (options: C15TOptions) => string;
-//# sourceMappingURL=handlers.d.ts.map

package/{src/middleware/openapi/index.ts → dist-types/middleware/openapi/index.d.ts} RENAMED Viewed

@@ -7,6 +7,5 @@
  *
  * Note: OpenAPI spec generation is now handled by hono-openapi middleware.
  */
 export { createDefaultOpenAPIOptions, createOpenAPIConfig } from './config';
 export { createDocsUI } from './handlers';

package/{dist → dist-types}/middleware/process-ip/index.d.ts RENAMED Viewed

@@ -9,4 +9,3 @@ import type { C15TOptions } from '../../types';
  */
 export declare function maskIpAddress(ip: string | null): string | null;
 export declare function getIpAddress(req: Request | Headers, options: C15TOptions): string | null;
-//# sourceMappingURL=index.d.ts.map

package/dist-types/policies/builder.d.ts ADDED Viewed

@@ -0,0 +1,127 @@
+import type { PolicyConfig, PolicyModel, PolicyScopeMode, PolicyUiMode, PolicyUiSurfaceConfig } from '../types';
+/**
+ * High-level builder input for creating a backend policy config.
+ *
+ * @remarks
+ * This shape is intentionally flatter than {@link PolicyConfig} so backend
+ * configuration stays readable in `c15tInstance({ policyPacks })` setup files.
+ * Use the builder helpers to normalize this input into runtime-ready policy
+ * configs.
+ *
+ * @see {@link https://v2.c15t.com/docs/self-host/guides/policy-packs}
+ * @see {@link https://v2.c15t.com/docs/frameworks/react/concepts/policy-packs}
+ */
+export interface PolicyBuilderInput {
+    id: string;
+    /**
+     * @deprecated Metadata-only label. Not used at runtime, not sent to clients,
+     * and not fingerprinted. Will be removed in a future version.
+     */
+    name?: string;
+    countries?: string[];
+    regions?: Array<{
+        country: string;
+        region: string;
+    }>;
+    isDefault?: boolean;
+    model?: PolicyModel;
+    expiryDays?: number;
+    scopeMode?: PolicyScopeMode;
+    /**
+     * Consent categories scoped by the policy.
+     */
+    categories?: string[];
+    preselectedCategories?: string[];
+    /**
+     * Whether the policy should respect the Global Privacy Control signal.
+     */
+    gpc?: boolean;
+    uiMode?: PolicyUiMode;
+    banner?: PolicyUiSurfaceConfig;
+    dialog?: PolicyUiSurfaceConfig;
+    i18n?: {
+        language?: string;
+        messageProfile?: string;
+    };
+    proof?: {
+        storeIp?: boolean;
+        storeUserAgent?: boolean;
+        storeLanguage?: boolean;
+    };
+}
+/**
+ * Converts a single {@link PolicyBuilderInput} into a normalized
+ * backend-compatible {@link PolicyConfig}.
+ *
+ * @remarks
+ * Empty optional fields are removed from the final output, matcher input is
+ * merged into `match`, and duplicate string arrays are deduplicated.
+ *
+ * @see {@link https://v2.c15t.com/docs/self-host/guides/policy-packs}
+ */
+export declare function buildPolicyConfig(input: PolicyBuilderInput): PolicyConfig;
+/**
+ * Converts an ordered list of builder inputs into a policy pack.
+ *
+ * @remarks
+ * The resulting array preserves input order. That order matters because
+ * duplicate region/country matchers use first-match-wins semantics within the
+ * same matcher type.
+ *
+ * @see {@link https://v2.c15t.com/docs/self-host/guides/policy-packs}
+ */
+export declare function buildPolicyPack(inputs: PolicyBuilderInput[]): PolicyConfig[];
+/**
+ * Creates a policy pack and guarantees that it ends with a default policy.
+ *
+ * @remarks
+ * If the provided inputs already contain a default matcher, the pack is
+ * returned unchanged. Otherwise c15t appends either:
+ *
+ * - the supplied `defaultPolicy`, coerced to `match.isDefault = true`
+ * - or the built-in "World No Banner" fallback
+ *
+ * When `defaultPolicy` is provided, its `countries` and `regions` fields are
+ * stripped and replaced with `match.isDefault = true`.
+ *
+ * @see {@link https://v2.c15t.com/docs/self-host/guides/policy-packs}
+ */
+export declare function buildPolicyPackWithDefault(inputs: PolicyBuilderInput[], defaultPolicy?: PolicyBuilderInput): PolicyConfig[];
+/**
+ * Merges multiple policy packs or individual policies into a single pack.
+ *
+ * @remarks
+ * Useful for combining preset packs with custom policies without manual
+ * spread and deduplication. Policies are deduplicated by `id` — the first
+ * occurrence wins.
+ *
+ * @example
+ * ```ts
+ * import { composePacks, policyPackPresets, policyBuilder } from '@c15t/backend';
+ *
+ * const pack = composePacks(
+ *   [policyPackPresets.europeOptIn()],
+ *   [policyPackPresets.californiaOptOut()],
+ *   [policyBuilder.create({ id: 'custom', countries: ['JP'], model: 'opt-in' })],
+ *   [policyPackPresets.worldNoBanner()],
+ * );
+ * ```
+ *
+ * @see {@link https://v2.c15t.com/docs/self-host/guides/policy-packs}
+ */
+export declare function composePacks(...packs: PolicyConfig[][]): PolicyConfig[];
+/**
+ * Convenience namespace for the policy builder helpers.
+ *
+ * @remarks
+ * Useful when you prefer a grouped API such as `policyBuilder.createPack()`
+ * inside backend config files.
+ *
+ * @see {@link https://v2.c15t.com/docs/self-host/guides/policy-packs}
+ */
+export declare const policyBuilder: {
+    create: typeof buildPolicyConfig;
+    createPack: typeof buildPolicyPack;
+    createPackWithDefault: typeof buildPolicyPackWithDefault;
+    composePacks: typeof composePacks;
+};

package/dist-types/policies/defaults.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { policyPackPresets } from '@c15t/schema';
2	+ export type { EuropePolicyMode, PolicyPackPresets } from '@c15t/schema/types';

package/dist-types/policies/matchers.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { PolicyMatch } from '@c15t/schema/types';
+export { EEA_COUNTRY_CODES, EU_COUNTRY_CODES, POLICY_MATCH_DATASET_VERSION, policyMatchers, UK_COUNTRY_CODES, } from '@c15t/schema/types';
+export type { PolicyMatch };

package/{dist → dist-types}/router.d.ts RENAMED Viewed

@@ -7,4 +7,3 @@
  * @packageDocumentation
  */
 export { createConsentRoutes, createInitRoute, createStatusRoute, createSubjectRoutes, } from './routes';
-//# sourceMappingURL=router.d.ts.map

package/{dist → dist-types}/routes/consent.d.ts RENAMED Viewed

@@ -13,4 +13,3 @@ export declare const createConsentRoutes: () => Hono<{
         c15tContext: C15TContext;
     };
 }, import("hono/types").BlankSchema, "/">;
-//# sourceMappingURL=consent.d.ts.map

package/{dist → dist-types}/routes/index.d.ts RENAMED Viewed

@@ -5,6 +5,6 @@
  */
 export { createConsentRoutes } from './consent';
 export { createInitRoute } from './init';
+export { createLegalDocumentRoutes } from './legal-document';
 export { createStatusRoute } from './status';
 export { createSubjectRoutes } from './subject';
-//# sourceMappingURL=index.d.ts.map

package/{dist → dist-types}/routes/init.d.ts RENAMED Viewed

@@ -13,4 +13,3 @@ export declare const createInitRoute: (options: C15TOptions) => Hono<{
         c15tContext: C15TContext;
     };
 }, import("hono/types").BlankSchema, "/">;
-//# sourceMappingURL=init.d.ts.map

package/dist-types/routes/legal-document.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { Hono } from 'hono';
+import type { C15TContext } from '../types';
+export declare const createLegalDocumentRoutes: () => Hono<{
+    Variables: {
+        c15tContext: C15TContext;
+    };
+}, import("hono/types").BlankSchema, "/">;

package/{dist → dist-types}/routes/status.d.ts RENAMED Viewed

@@ -13,4 +13,3 @@ export declare const createStatusRoute: () => Hono<{
         c15tContext: C15TContext;
     };
 }, import("hono/types").BlankSchema, "/">;
-//# sourceMappingURL=status.d.ts.map

package/{dist → dist-types}/routes/subject.d.ts RENAMED Viewed

@@ -13,4 +13,3 @@ export declare const createSubjectRoutes: () => Hono<{
         c15tContext: C15TContext;
     };
 }, import("hono/types").BlankSchema, "/">;
-//# sourceMappingURL=subject.d.ts.map

package/{dist → dist-types}/types/api.d.ts RENAMED Viewed

@@ -28,4 +28,3 @@ export type ApiPathBase = `/api/c15t`;
  * ```
  */
 export type ApiPath = `${ApiPathBase}` | `${ApiPathBase}/consent` | `${ApiPathBase}/consent/:id` | `${ApiPathBase}/jurisdictions` | `${ApiPathBase}/jurisdictions/:code`;
-//# sourceMappingURL=api.d.ts.map

package/dist-types/types/index.d.ts ADDED Viewed

@@ -0,0 +1,464 @@
+import type { createLogger, LoggerOptions } from '@c15t/logger';
+import { type Branding, type GlobalVendorList, type NonIABVendor, type PolicyConfig } from '@c15t/schema/types';
+import type { Translations } from '@c15t/translations';
+import type { Meter, Tracer } from '@opentelemetry/api';
+import type { FumaDB, InferFumaDB } from 'fumadb';
+import type { CacheAdapter } from '../cache/types';
+import type { createRegistry } from '../db/registry';
+import type { DB, LatestDB } from '../db/schema';
+export * from './api';
+export declare const branding: readonly ["c15t", "inth", "consent", "none"];
+export type { Branding };
+export interface DatabaseOptions {
+    /**
+     * The database adapter to use.
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/database-setup}
+     */
+    adapter: FumaDB<FumaDBSchema>['adapter'];
+    /**
+     * Tenant ID for multi-tenant deployments.
+     * When set, all database queries are automatically scoped to this tenant.
+     */
+    tenantId?: string;
+    /**
+     * Optional prefix for all database table names.
+     * Useful when sharing a database with other applications to avoid naming conflicts.
+     *
+     * @example 'c15t_' // tables become: c15t_subject, c15t_consent, etc.
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/database-setup}
+     */
+    tablePrefix?: string;
+}
+/**
+ * OpenAPI spec generation and documentation UI options.
+ */
+export interface OpenAPIOptions {
+    /**
+     * Enable/disable OpenAPI spec generation
+     * @default true
+     */
+    enabled?: boolean;
+    /**
+     * Path to serve the OpenAPI JSON spec
+     * @default "/spec.json"
+     */
+    specPath?: string;
+    /**
+     * Path to serve the API documentation UI
+     * @default "/docs"
+     */
+    docsPath?: string;
+    /**
+     * OpenAPI specification options
+     */
+    options?: {
+        info?: {
+            title?: string;
+            version?: string;
+            description?: string;
+        };
+        servers?: Array<{
+            url: string;
+            description?: string;
+        }>;
+        security?: Array<Record<string, string[]>>;
+    };
+    /**
+     * Custom template for rendering the API documentation UI
+     * If provided, this will be used instead of the default Scalar UI
+     */
+    customUiTemplate?: string;
+}
+/**
+ * OpenTelemetry configuration for tracing and metrics.
+ * Telemetry is opt-in and disabled by default.
+ * Users must provide their own SDK setup (Node, Bun, edge, etc.).
+ */
+export interface TelemetryOptions {
+    /**
+     * Enable telemetry (tracing and metrics).
+     * Must be explicitly set to true to activate.
+     * @default false
+     */
+    enabled?: boolean;
+    /**
+     * User-provided tracer instance.
+     * Users should set up their own OpenTelemetry SDK and pass the tracer here.
+     * @example trace.getTracer('my-app')
+     */
+    tracer?: Tracer;
+    /**
+     * User-provided meter instance for metrics.
+     * Users should set up their own OpenTelemetry SDK and pass the meter here.
+     * @example metrics.getMeter('my-app')
+     */
+    meter?: Meter;
+    /**
+     * Default attributes to include on all spans and metrics.
+     */
+    defaultAttributes?: Record<string, string | number | boolean>;
+}
+/**
+ * IP address tracking and masking options.
+ */
+export interface IPAddressOptions {
+    /**
+     * Enable/disable IP address tracking.
+     * When disabled, all IP addresses will be stored as null.
+     * @default true
+     */
+    tracking?: boolean;
+    /**
+     * Enable/disable IP address masking to reduce PII collection.
+     * - IPv4: Last octet is replaced with 0 (e.g., 192.168.1.100 -> 192.168.1.0)
+     * - IPv6: Last 80 bits are masked (e.g., 2001:db8:85a3::1 -> 2001:db8:85a3::)
+     * @default true
+     */
+    masking?: boolean;
+    /**
+     * Override the default IP address headers used to extract client IP.
+     * Headers are checked in order, first match wins.
+     */
+    ipAddressHeaders?: string[];
+}
+/**
+ * Cache configuration for external persistent storage.
+ * Used for caching GVL and other data.
+ */
+export interface CacheOptions {
+    /**
+     * External cache adapter (Redis, KV, etc.).
+     * If not provided, only in-memory cache is used.
+     */
+    adapter?: CacheAdapter;
+}
+/**
+ * IAB TCF configuration including GVL, CMP registration, and custom vendors.
+ * Disabled by default - most users don't need IAB TCF.
+ * Set enabled: true to activate IAB support.
+ */
+export interface IABOptions {
+    /**
+     * Enable IAB TCF support.
+     * When false or not provided, /init does not include IAB payload fields.
+     * When true, /init includes IAB payload only when IAB is active for the
+     * resolved request policy (or when no policies are configured).
+     */
+    enabled: true;
+    /**
+     * CMP ID registered with IAB Europe.
+     * This is returned to clients via the /init endpoint so they
+     * can use the correct CMP identity in TC Strings.
+     *
+     * @see https://iabeurope.eu/cmp-list/ - List of registered CMPs
+     */
+    cmpId?: number;
+    /**
+     * Bundled GVL translations by language code.
+     * These are checked first before any cache or fetch.
+     *
+     * @example
+     * ```ts
+     * import enGVL from './gvl/en.json';
+     * import deGVL from './gvl/de.json';
+     *
+     * iab: {
+     *   enabled: true,
+     *   bundled: { en: enGVL, de: deGVL }
+     * }
+     * ```
+     */
+    bundled?: Record<string, GlobalVendorList>;
+    /**
+     * Vendor IDs to filter when fetching non-bundled languages.
+     * Reduces payload size.
+     */
+    vendorIds?: number[];
+    /**
+     * Override the default GVL endpoint.
+     * @default 'https://gvl.consent.io'
+     */
+    endpoint?: string;
+    /**
+     * Custom vendors not registered with IAB.
+     * These are synced to the frontend via the /init endpoint.
+     *
+     * @example
+     * ```ts
+     * customVendors: [
+     *   {
+     *     id: 'internal-analytics',
+     *     name: 'Our Analytics',
+     *     privacyPolicyUrl: 'https://example.com/privacy',
+     *     purposes: [1, 8],
+     *   }
+     * ]
+     * ```
+     */
+    customVendors?: NonIABVendor[];
+}
+type FumaDBSchema = InferFumaDB<typeof DB>['schemas'];
+export interface I18nMessageProfile {
+    /**
+     * Fallback language used when the requested language is not configured in
+     * this profile.
+     *
+     * @remarks
+     * This does not expand the profile's allowed languages. If the configured
+     * fallback is not present in the profile, c15t falls back to English when
+     * available, otherwise to the first configured language in the profile.
+     *
+     * @default "en"
+     */
+    fallbackLanguage?: string;
+    /**
+     * Translation overrides keyed by language code.
+     */
+    translations: Record<string, Partial<Translations>>;
+}
+export type I18nMessageProfiles = Record<string, I18nMessageProfile>;
+export interface I18nOptions {
+    /**
+     * Named translation catalogs grouped by profile.
+     *
+     * @example
+     * ```ts
+     * i18n: {
+     *   messages: {
+     *     default: {
+     *       translations: { en: { cookieBanner: { title: '...' } } },
+     *     },
+     *     us_ca: {
+     *       fallbackLanguage: 'en',
+     *       translations: { en: { cookieBanner: { title: '...' } } },
+     *     },
+     *   }
+     * }
+     * ```
+     */
+    messages?: I18nMessageProfiles;
+    /**
+     * Fallback profile used when a policy does not provide `messageProfile`.
+     * @default "default"
+     */
+    defaultProfile?: string;
+}
+export type { LegalDocumentPolicyType, PolicyConfig, PolicyModel, PolicyPack, PolicyScopeMode, PolicyUiAction, PolicyUiActionDirection, PolicyUiActionGroup, PolicyUiMode, PolicyUiProfile, PolicyUiSurfaceConfig, } from '@c15t/schema/types';
+export interface PolicySnapshotOptions {
+    /**
+     * Secret used for signing and verifying policy snapshot tokens.
+     */
+    signingKey: string;
+    /**
+     * How writes should behave when snapshot validation fails.
+     * @default "reject"
+     */
+    onValidationFailure?: 'reject' | 'resolve_current';
+    /**
+     * JWT issuer claim for snapshot tokens.
+     * @default "c15t"
+     */
+    issuer?: string;
+    /**
+     * JWT audience claim for snapshot tokens.
+     * When omitted, c15t derives a default snapshot audience and scopes it per tenant.
+     */
+    audience?: string;
+    /**
+     * Snapshot token lifetime in seconds.
+     * @default 1800 (30 minutes)
+     */
+    ttlSeconds?: number;
+}
+export interface LegalDocumentSnapshotOptions {
+    /**
+     * Secret used for signing and verifying legal-document snapshot tokens.
+     */
+    signingKey: string;
+    /**
+     * JWT issuer claim for legal-document snapshot tokens.
+     * @default "c15t"
+     */
+    issuer?: string;
+    /**
+     * JWT audience claim for legal-document snapshot tokens.
+     * When omitted, c15t derives a default audience and scopes it per tenant.
+     */
+    audience?: string;
+}
+export interface BackgroundOptions {
+    /**
+     * Executes non-critical tasks after the response path has completed.
+     */
+    run: (task: () => Promise<void>) => void;
+}
+export interface C15TOptions {
+    /**
+     * The database adapter to use.
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/database-setup}
+     */
+    adapter: FumaDB<FumaDBSchema>['adapter'];
+    /**
+     * Tenant ID for multi-tenant deployments.
+     * When set, all database queries are automatically scoped to this tenant.
+     */
+    tenantId?: string;
+    /**
+     * Optional prefix for all database table names.
+     * Useful when sharing a database with other applications to avoid naming conflicts.
+     *
+     * @example 'c15t_' // tables become: c15t_subject, c15t_consent, etc.
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/database-setup}
+     */
+    tablePrefix?: string;
+    /**
+     * Application name used as backend metadata and identity.
+     * Returned by `/init` (`appName`), used in logs, telemetry defaults (`service.name`),
+     * and cache key prefixing.
+     *
+     * @default "c15t"
+     * @see {@link https://v2.c15t.com/docs/self-host/api/configuration}
+     */
+    appName?: string;
+    /**
+     * Base path prefix for all API routes (e.g. `/api/self-host`).
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/api/endpoints}
+     */
+    basePath?: string;
+    /**
+     * Allowed origins for CORS. Required for browser-based consent collection.
+     * Protocol is optional; matching is protocol-agnostic and normalized.
+     *
+     * @example ['example.com', 'app.example.com', 'localhost:3000']
+     * @see {@link https://v2.c15t.com/docs/self-host/api/configuration}
+     */
+    trustedOrigins: string[];
+    /** Logger configuration. */
+    logger?: LoggerOptions;
+    /**
+     * Disables the use of Geo Location to determine the jurisdiction.
+     *
+     * When enabled, the jurisdiction will be set to "GDPR" to show the strictest
+     * version of the banner as we don't know the jurisdiction in this case.
+     *
+     * @default false
+     */
+    disableGeoLocation?: boolean;
+    /**
+     * Override base translations.
+     *
+     * @deprecated Use `i18n.messages` instead. This alias is kept for compatibility.
+     *
+     * @example
+     * ```ts
+     * {
+     *   en: enTranslations,
+     *   de: deTranslations,
+     * }
+     * ```
+     */
+    customTranslations?: Record<string, Partial<Translations>>;
+    /**
+     * Internationalization message profiles used by runtime policies.
+     */
+    i18n?: I18nOptions;
+    /**
+     * Runtime regional policy pack resolved per request.
+     *
+     * @remarks
+     * Omit this field to keep legacy non-policy behavior. Pass `[]` to force
+     * explicit no-banner mode. In production, prefer including a default policy
+     * so unmatched traffic still resolves deterministically.
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/policy-packs}
+     */
+    policyPacks?: PolicyConfig[];
+    /**
+     * Select which branding to show in the consent banner.
+     * Use "inth" for the INTH brand. "consent" is a deprecated alias for "inth".
+     * Use "none" to hide branding.
+     * @default "c15t"
+     */
+    branding?: Branding;
+    /**
+     * OpenAPI spec generation and documentation UI options.
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/api/endpoints}
+     */
+    openapi?: OpenAPIOptions;
+    /**
+     * OpenTelemetry configuration for tracing and metrics.
+     * Telemetry is opt-in and disabled by default.
+     * Users must provide their own SDK setup (Node, Bun, edge, etc.).
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/observability}
+     */
+    telemetry?: TelemetryOptions;
+    /**
+     * IP address tracking and masking options.
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/api/configuration}
+     */
+    ipAddress?: IPAddressOptions;
+    /**
+     * Cache configuration for external persistent storage.
+     * Used for caching GVL and other data.
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/caching}
+     */
+    cache?: CacheOptions;
+    /**
+     * API keys for authenticated endpoints.
+     * Used for server-side endpoints like GET /subjects.
+     *
+     * @example
+     * ```ts
+     * apiKeys: ['sk_live_abc123', 'sk_live_def456']
+     * ```
+     */
+    apiKeys?: string[];
+    /**
+     * IAB TCF configuration including GVL, CMP registration, and custom vendors.
+     * Disabled by default - most users don't need IAB TCF.
+     * Set enabled: true to activate IAB support.
+     *
+     * @see {@link https://v2.c15t.com/docs/self-host/guides/iab-tcf}
+     */
+    iab?: IABOptions;
+    /**
+     * Optional signed policy snapshots used to keep /init and /subjects consistent.
+     */
+    policySnapshot?: PolicySnapshotOptions;
+    /**
+     * Optional signed legal-document snapshots issued by external document renderers.
+     */
+    legalDocumentSnapshot?: LegalDocumentSnapshotOptions;
+    /**
+     * Optional background task runner for non-critical side effects.
+     */
+    background?: BackgroundOptions;
+}
+export interface C15TContext extends Omit<C15TOptions, 'ipAddress' | 'adapter' | 'logger' | 'tablePrefix'> {
+    appName: string;
+    logger: ReturnType<typeof createLogger>;
+    registry: ReturnType<typeof createRegistry>;
+    db: ReturnType<InferFumaDB<typeof LatestDB>['orm']>;
+    ipAddress?: string | null;
+    userAgent?: string;
+    origin?: string;
+    trustedOrigin?: boolean;
+    path?: string;
+    method?: string;
+    headers?: Headers;
+    /**
+     * Whether the request was authenticated with a valid API key.
+     * Set to true when a valid Bearer token is provided in the Authorization header.
+     */
+    apiKeyAuthenticated?: boolean;
+}
+export type DeepPartial<T> = T extends (...args: unknown[]) => unknown ? T : T extends object ? {
+    [K in keyof T]?: DeepPartial<T[K]>;
+} : T;