npm - @c15t/backend - Versions diffs - 2.0.0-rc.0 → 2.0.0-rc.10 - Mend

@c15t/backend 2.0.0-rc.0 → 2.0.0-rc.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (336) hide show

package/README.md +3 -3
package/dist/302.js +473 -0
package/dist/583.js +540 -0
package/dist/915.js +1771 -0
package/dist/cache.cjs +5 -5
package/dist/cache.js +4 -415
package/dist/core.cjs +1356 -120
package/dist/core.js +163 -1981
package/dist/db/adapters/drizzle.cjs +1 -1
package/dist/db/adapters/drizzle.js +1 -2
package/dist/db/adapters/kysely.cjs +1 -1
package/dist/db/adapters/kysely.js +1 -2
package/dist/db/adapters/mongo.cjs +1 -1
package/dist/db/adapters/mongo.js +1 -2
package/dist/db/adapters/prisma.cjs +1 -1
package/dist/db/adapters/prisma.js +1 -2
package/dist/db/adapters/typeorm.cjs +1 -1
package/dist/db/adapters/typeorm.js +1 -2
package/dist/db/adapters.cjs +1 -1
package/dist/db/migrator.cjs +1 -1
package/dist/db/schema.cjs +43 -3
package/dist/db/schema.js +35 -4
package/dist/define-config.cjs +1 -1
package/dist/edge.cjs +1106 -0
package/dist/edge.js +190 -0
package/dist/router.cjs +885 -123
package/dist/router.js +1 -1507
package/dist/{types.cjs → types/index.cjs} +1 -1
package/{dist → dist-types}/cache/adapters/cloudflare-kv.d.ts +0 -1
package/{dist → dist-types}/cache/adapters/index.d.ts +0 -1
package/{dist → dist-types}/cache/adapters/memory.d.ts +0 -1
package/{dist → dist-types}/cache/adapters/upstash-redis.d.ts +0 -1
package/{dist → dist-types}/cache/gvl-resolver.d.ts +0 -1
package/{dist → dist-types}/cache/index.d.ts +0 -1
package/{dist → dist-types}/cache/keys.d.ts +0 -1
package/{dist → dist-types}/cache/types.d.ts +0 -1
package/{dist → dist-types}/core.d.ts +8 -1
package/{dist → dist-types}/db/migrator/index.d.ts +0 -1
package/dist-types/db/registry/consent-policy.d.ts +78 -0
package/{dist → dist-types}/db/registry/consent-purpose.d.ts +0 -1
package/{dist → dist-types}/db/registry/domain.d.ts +0 -1
package/dist-types/db/registry/index.d.ts +118 -0
package/dist-types/db/registry/runtime-policy-decision.d.ts +60 -0
package/{dist → dist-types}/db/registry/subject.d.ts +0 -2
package/{dist → dist-types}/db/registry/types.d.ts +1 -1
package/{dist → dist-types}/db/registry/utils/generate-id.d.ts +0 -1
package/{dist → dist-types}/db/registry/utils.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/audit-log.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent-policy.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent-purpose.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent-record.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/consent.d.ts +1 -2
package/{dist → dist-types}/db/schema/1.0.0/domain.d.ts +0 -1
package/{dist → dist-types}/db/schema/1.0.0/index.d.ts +0 -32
package/{dist → dist-types}/db/schema/1.0.0/subject.d.ts +0 -2
package/{dist → dist-types}/db/schema/2.0.0/audit-log.d.ts +1 -2
package/{dist → dist-types}/db/schema/2.0.0/consent-policy.d.ts +3 -3
package/{dist → dist-types}/db/schema/2.0.0/consent-purpose.d.ts +1 -2
package/{dist → dist-types}/db/schema/2.0.0/consent.d.ts +7 -2
package/{dist → dist-types}/db/schema/2.0.0/domain.d.ts +1 -2
package/{dist → dist-types}/db/schema/2.0.0/index.d.ts +455 -28
package/dist-types/db/schema/2.0.0/runtime-policy-decision.d.ts +23 -0
package/{dist → dist-types}/db/schema/2.0.0/subject.d.ts +1 -3
package/{dist → dist-types}/db/schema/index.d.ts +908 -86
package/{dist → dist-types}/db/tenant-scope.d.ts +0 -1
package/dist-types/define-config.d.ts +17 -0
package/dist-types/edge/index.d.ts +5 -0
package/dist-types/edge/init-handler.d.ts +40 -0
package/dist-types/edge/resolve-consent.d.ts +80 -0
package/dist-types/edge/types.d.ts +13 -0
package/{dist → dist-types}/handlers/consent/check.handler.d.ts +0 -1
package/{src/handlers/consent/index.ts → dist-types/handlers/consent/index.d.ts} +0 -1
package/{dist → dist-types}/handlers/init/geo.d.ts +2 -3
package/{dist → dist-types}/handlers/init/index.d.ts +2 -3
package/dist-types/handlers/init/policy.d.ts +26 -0
package/dist-types/handlers/init/resolve-init.d.ts +44 -0
package/dist-types/handlers/init/translations.d.ts +48 -0
package/dist-types/handlers/legal-document/current.handler.d.ts +11 -0
package/dist-types/handlers/legal-document/snapshot.d.ts +39 -0
package/dist-types/handlers/policy/snapshot.d.ts +99 -0
package/{src/handlers/status/index.ts → dist-types/handlers/status/index.d.ts} +0 -1
package/{dist → dist-types}/handlers/status/status.handler.d.ts +0 -1
package/{dist → dist-types}/handlers/subject/get.handler.d.ts +3 -2
package/{src/handlers/subject/index.ts → dist-types/handlers/subject/index.d.ts} +0 -1
package/{dist → dist-types}/handlers/subject/list.handler.d.ts +3 -2
package/{dist → dist-types}/handlers/subject/patch.handler.d.ts +0 -2
package/{dist → dist-types}/handlers/subject/post.handler.d.ts +12 -1
package/{dist → dist-types}/handlers/utils/consent-enrichment.d.ts +3 -1
package/{dist → dist-types}/init.d.ts +4 -7
package/{dist → dist-types}/middleware/auth/index.d.ts +0 -1
package/{dist → dist-types}/middleware/auth/validate-api-key.d.ts +0 -1
package/{dist → dist-types}/middleware/cors/cors.d.ts +0 -1
package/{src/middleware/cors/index.ts → dist-types/middleware/cors/index.d.ts} +0 -1
package/{dist → dist-types}/middleware/cors/is-origin-trusted.d.ts +0 -1
package/{dist → dist-types}/middleware/cors/process-cors.d.ts +0 -1
package/{dist → dist-types}/middleware/openapi/config.d.ts +0 -1
package/{dist → dist-types}/middleware/openapi/handlers.d.ts +0 -1
package/{src/middleware/openapi/index.ts → dist-types/middleware/openapi/index.d.ts} +0 -1
package/{dist → dist-types}/middleware/process-ip/index.d.ts +0 -1
package/dist-types/policies/builder.d.ts +127 -0
package/dist-types/policies/defaults.d.ts +2 -0
package/dist-types/policies/matchers.d.ts +3 -0
package/{dist → dist-types}/router.d.ts +0 -1
package/{dist → dist-types}/routes/consent.d.ts +0 -1
package/{dist → dist-types}/routes/index.d.ts +1 -1
package/{dist → dist-types}/routes/init.d.ts +0 -1
package/dist-types/routes/legal-document.d.ts +7 -0
package/{dist → dist-types}/routes/status.d.ts +0 -1
package/{dist → dist-types}/routes/subject.d.ts +0 -1
package/{dist → dist-types}/types/api.d.ts +0 -1
package/dist-types/types/index.d.ts +464 -0
package/dist-types/utils/background.d.ts +6 -0
package/{dist → dist-types}/utils/create-telemetry-options.d.ts +1 -2
package/{dist → dist-types}/utils/env.d.ts +0 -1
package/{dist → dist-types}/utils/extract-error-message.d.ts +0 -1
package/{dist → dist-types}/utils/instrumentation.d.ts +2 -3
package/{dist → dist-types}/utils/logger.d.ts +0 -1
package/{dist → dist-types}/utils/metrics.d.ts +0 -1
package/dist-types/version.d.ts +1 -0
package/docs/README.md +49 -0
package/docs/api/configuration.md +208 -0
package/docs/api/endpoints.md +211 -0
package/docs/guides/caching.md +85 -0
package/docs/guides/database-setup.md +128 -0
package/docs/guides/edge-deployment.md +251 -0
package/docs/guides/framework-integration.md +142 -0
package/docs/guides/iab-tcf.md +89 -0
package/docs/guides/observability.md +96 -0
package/docs/guides/policy-packs.md +396 -0
package/docs/quickstart.md +129 -0
package/package.json +53 -39
package/.turbo/turbo-build.log +0 -49
package/CHANGELOG.md +0 -89
package/dist/cache/adapters/cloudflare-kv.d.ts.map +0 -1
package/dist/cache/adapters/index.d.ts.map +0 -1
package/dist/cache/adapters/memory.d.ts.map +0 -1
package/dist/cache/adapters/upstash-redis.d.ts.map +0 -1
package/dist/cache/gvl-resolver.d.ts.map +0 -1
package/dist/cache/index.d.ts.map +0 -1
package/dist/cache/keys.d.ts.map +0 -1
package/dist/cache/types.d.ts.map +0 -1
package/dist/core.d.ts.map +0 -1
package/dist/db/adapters/drizzle.d.ts +0 -2
package/dist/db/adapters/drizzle.d.ts.map +0 -1
package/dist/db/adapters/index.d.ts +0 -2
package/dist/db/adapters/index.d.ts.map +0 -1
package/dist/db/adapters/kysely.d.ts +0 -2
package/dist/db/adapters/kysely.d.ts.map +0 -1
package/dist/db/adapters/mongo.d.ts +0 -2
package/dist/db/adapters/mongo.d.ts.map +0 -1
package/dist/db/adapters/prisma.d.ts +0 -2
package/dist/db/adapters/prisma.d.ts.map +0 -1
package/dist/db/adapters/typeorm.d.ts +0 -2
package/dist/db/adapters/typeorm.d.ts.map +0 -1
package/dist/db/migrator/index.d.ts.map +0 -1
package/dist/db/registry/consent-policy.d.ts +0 -23
package/dist/db/registry/consent-policy.d.ts.map +0 -1
package/dist/db/registry/consent-purpose.d.ts.map +0 -1
package/dist/db/registry/domain.d.ts.map +0 -1
package/dist/db/registry/index.d.ts +0 -57
package/dist/db/registry/index.d.ts.map +0 -1
package/dist/db/registry/subject.d.ts.map +0 -1
package/dist/db/registry/types.d.ts.map +0 -1
package/dist/db/registry/utils/generate-id.d.ts.map +0 -1
package/dist/db/registry/utils.d.ts.map +0 -1
package/dist/db/schema/1.0.0/audit-log.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent-policy.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent-purpose.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent-record.d.ts.map +0 -1
package/dist/db/schema/1.0.0/consent.d.ts.map +0 -1
package/dist/db/schema/1.0.0/domain.d.ts.map +0 -1
package/dist/db/schema/1.0.0/index.d.ts.map +0 -1
package/dist/db/schema/1.0.0/subject.d.ts.map +0 -1
package/dist/db/schema/2.0.0/audit-log.d.ts.map +0 -1
package/dist/db/schema/2.0.0/consent-policy.d.ts.map +0 -1
package/dist/db/schema/2.0.0/consent-purpose.d.ts.map +0 -1
package/dist/db/schema/2.0.0/consent.d.ts.map +0 -1
package/dist/db/schema/2.0.0/domain.d.ts.map +0 -1
package/dist/db/schema/2.0.0/index.d.ts.map +0 -1
package/dist/db/schema/2.0.0/subject.d.ts.map +0 -1
package/dist/db/schema/index.d.ts.map +0 -1
package/dist/db/tenant-scope.d.ts.map +0 -1
package/dist/define-config.d.ts +0 -5
package/dist/define-config.d.ts.map +0 -1
package/dist/handlers/consent/check.handler.d.ts.map +0 -1
package/dist/handlers/consent/index.d.ts +0 -12
package/dist/handlers/consent/index.d.ts.map +0 -1
package/dist/handlers/init/geo.d.ts.map +0 -1
package/dist/handlers/init/index.d.ts.map +0 -1
package/dist/handlers/init/translations.d.ts +0 -28
package/dist/handlers/init/translations.d.ts.map +0 -1
package/dist/handlers/status/index.d.ts +0 -7
package/dist/handlers/status/index.d.ts.map +0 -1
package/dist/handlers/status/status.handler.d.ts.map +0 -1
package/dist/handlers/subject/get.handler.d.ts.map +0 -1
package/dist/handlers/subject/index.d.ts +0 -10
package/dist/handlers/subject/index.d.ts.map +0 -1
package/dist/handlers/subject/list.handler.d.ts.map +0 -1
package/dist/handlers/subject/patch.handler.d.ts.map +0 -1
package/dist/handlers/subject/post.handler.d.ts.map +0 -1
package/dist/handlers/utils/consent-enrichment.d.ts.map +0 -1
package/dist/init.d.ts.map +0 -1
package/dist/middleware/auth/index.d.ts.map +0 -1
package/dist/middleware/auth/validate-api-key.d.ts.map +0 -1
package/dist/middleware/cors/cors.d.ts.map +0 -1
package/dist/middleware/cors/index.d.ts +0 -30
package/dist/middleware/cors/index.d.ts.map +0 -1
package/dist/middleware/cors/is-origin-trusted.d.ts.map +0 -1
package/dist/middleware/cors/process-cors.d.ts.map +0 -1
package/dist/middleware/openapi/config.d.ts.map +0 -1
package/dist/middleware/openapi/handlers.d.ts.map +0 -1
package/dist/middleware/openapi/index.d.ts +0 -12
package/dist/middleware/openapi/index.d.ts.map +0 -1
package/dist/middleware/process-ip/index.d.ts.map +0 -1
package/dist/router.d.ts.map +0 -1
package/dist/routes/consent.d.ts.map +0 -1
package/dist/routes/index.d.ts.map +0 -1
package/dist/routes/init.d.ts.map +0 -1
package/dist/routes/status.d.ts.map +0 -1
package/dist/routes/subject.d.ts.map +0 -1
package/dist/types/api.d.ts.map +0 -1
package/dist/types/index.d.ts +0 -255
package/dist/types/index.d.ts.map +0 -1
package/dist/utils/create-telemetry-options.d.ts.map +0 -1
package/dist/utils/env.d.ts.map +0 -1
package/dist/utils/extract-error-message.d.ts.map +0 -1
package/dist/utils/index.d.ts +0 -4
package/dist/utils/index.d.ts.map +0 -1
package/dist/utils/instrumentation.d.ts.map +0 -1
package/dist/utils/logger.d.ts.map +0 -1
package/dist/utils/metrics.d.ts.map +0 -1
package/dist/version.d.ts +0 -2
package/dist/version.d.ts.map +0 -1
package/knip.json +0 -31
package/rslib.config.ts +0 -93
package/src/cache/adapters/cloudflare-kv.ts +0 -71
package/src/cache/adapters/index.ts +0 -22
package/src/cache/adapters/memory.ts +0 -111
package/src/cache/adapters/upstash-redis.ts +0 -113
package/src/cache/gvl-resolver.ts +0 -289
package/src/cache/index.ts +0 -34
package/src/cache/keys.ts +0 -68
package/src/cache/types.ts +0 -66
package/src/core.ts +0 -368
package/src/db/migrator/index.ts +0 -80
package/src/db/registry/consent-policy.test.ts +0 -451
package/src/db/registry/consent-policy.ts +0 -82
package/src/db/registry/consent-purpose.test.ts +0 -428
package/src/db/registry/consent-purpose.ts +0 -61
package/src/db/registry/domain.test.ts +0 -445
package/src/db/registry/domain.ts +0 -91
package/src/db/registry/index.ts +0 -14
package/src/db/registry/subject.test.ts +0 -388
package/src/db/registry/subject.ts +0 -129
package/src/db/registry/types.ts +0 -10
package/src/db/registry/utils/generate-id.test.ts +0 -216
package/src/db/registry/utils/generate-id.ts +0 -133
package/src/db/registry/utils.ts +0 -133
package/src/db/schema/1.0.0/audit-log.ts +0 -15
package/src/db/schema/1.0.0/consent-policy.ts +0 -14
package/src/db/schema/1.0.0/consent-purpose.ts +0 -14
package/src/db/schema/1.0.0/consent-record.ts +0 -10
package/src/db/schema/1.0.0/consent.ts +0 -20
package/src/db/schema/1.0.0/domain.ts +0 -12
package/src/db/schema/1.0.0/index.ts +0 -48
package/src/db/schema/1.0.0/subject.ts +0 -12
package/src/db/schema/2.0.0/audit-log.ts +0 -18
package/src/db/schema/2.0.0/consent-policy.ts +0 -28
package/src/db/schema/2.0.0/consent-purpose.ts +0 -12
package/src/db/schema/2.0.0/consent.ts +0 -26
package/src/db/schema/2.0.0/domain.ts +0 -12
package/src/db/schema/2.0.0/index.ts +0 -47
package/src/db/schema/2.0.0/subject.ts +0 -14
package/src/db/schema/index.ts +0 -15
package/src/db/tenant-scope.test.ts +0 -750
package/src/db/tenant-scope.ts +0 -103
package/src/define-config.ts +0 -5
package/src/handlers/consent/check.handler.ts +0 -126
package/src/handlers/init/geo.test.ts +0 -317
package/src/handlers/init/geo.ts +0 -195
package/src/handlers/init/index.test.ts +0 -205
package/src/handlers/init/index.ts +0 -114
package/src/handlers/init/translations.test.ts +0 -121
package/src/handlers/init/translations.ts +0 -72
package/src/handlers/status/status.handler.test.ts +0 -155
package/src/handlers/status/status.handler.ts +0 -51
package/src/handlers/subject/get.handler.ts +0 -93
package/src/handlers/subject/list.handler.ts +0 -93
package/src/handlers/subject/patch.handler.ts +0 -122
package/src/handlers/subject/post.handler.test.ts +0 -294
package/src/handlers/subject/post.handler.ts +0 -254
package/src/handlers/utils/consent-enrichment.test.ts +0 -380
package/src/handlers/utils/consent-enrichment.ts +0 -218
package/src/init.test.ts +0 -126
package/src/init.ts +0 -87
package/src/middleware/auth/index.ts +0 -11
package/src/middleware/auth/validate-api-key.test.ts +0 -86
package/src/middleware/auth/validate-api-key.ts +0 -107
package/src/middleware/cors/cors.test.ts +0 -135
package/src/middleware/cors/cors.ts +0 -186
package/src/middleware/cors/is-origin-trusted.test.ts +0 -164
package/src/middleware/cors/is-origin-trusted.ts +0 -130
package/src/middleware/cors/process-cors.ts +0 -91
package/src/middleware/openapi/config.ts +0 -29
package/src/middleware/openapi/handlers.ts +0 -34
package/src/middleware/process-ip/index.test.ts +0 -195
package/src/middleware/process-ip/index.ts +0 -199
package/src/router.ts +0 -15
package/src/routes/consent.ts +0 -52
package/src/routes/index.ts +0 -10
package/src/routes/init.ts +0 -102
package/src/routes/status.ts +0 -46
package/src/routes/subject.ts +0 -152
package/src/types/api.ts +0 -48
package/src/types/index.ts +0 -288
package/src/utils/create-telemetry-options.test.ts +0 -302
package/src/utils/create-telemetry-options.ts +0 -229
package/src/utils/env.ts +0 -84
package/src/utils/extract-error-message.ts +0 -21
package/src/utils/instrumentation.test.ts +0 -185
package/src/utils/instrumentation.ts +0 -196
package/src/utils/logger.ts +0 -41
package/src/utils/metrics.test.ts +0 -323
package/src/utils/metrics.ts +0 -402
package/src/utils/telemetry-pii.test.ts +0 -325
package/src/version.ts +0 -2
package/tsconfig.json +0 -11
package/vitest.config.ts +0 -28
/package/dist/{types.js → types/index.js} +0 -0
/package/{src/db/adapters/drizzle.ts → dist-types/db/adapters/drizzle.d.ts} +0 -0
/package/{src/db/adapters/index.ts → dist-types/db/adapters/index.d.ts} +0 -0
/package/{src/db/adapters/kysely.ts → dist-types/db/adapters/kysely.d.ts} +0 -0
/package/{src/db/adapters/mongo.ts → dist-types/db/adapters/mongo.d.ts} +0 -0
/package/{src/db/adapters/prisma.ts → dist-types/db/adapters/prisma.d.ts} +0 -0
/package/{src/db/adapters/typeorm.ts → dist-types/db/adapters/typeorm.d.ts} +0 -0
/package/{src/utils/index.ts → dist-types/utils/index.d.ts} +0 -0

package/src/middleware/process-ip/index.ts DELETED Viewed

@@ -1,199 +0,0 @@
-import type { C15TOptions } from '~/types';
-const DEFAULT_IP_HEADERS = [
-	'x-client-ip',
-	'x-forwarded-for',
-	'cf-connecting-ip',
-	'fastly-client-ip',
-	'x-real-ip',
-	'x-cluster-client-ip',
-	'x-forwarded',
-	'forwarded-for',
-	'forwarded',
-];
-/**
- * Expands a compressed IPv6 address to its full form.
- * For example: "2001:db8::1" -> "2001:0db8:0000:0000:0000:0000:0000:0001"
- */
-function expandIPv6(ip: string): string {
-	// Handle IPv4-mapped IPv6 addresses (e.g., ::ffff:192.168.1.1)
-	if (ip.includes('.')) {
-		return ip;
-	}
-	const parts = ip.split(':');
-	const emptyIndex = parts.indexOf('');
-	if (emptyIndex !== -1) {
-		// Count how many groups we need to insert
-		const nonEmptyParts = parts.filter((p) => p !== '');
-		const missingGroups = 8 - nonEmptyParts.length;
-		const zeros = Array(missingGroups).fill('0000');
-		// Handle leading ::
-		if (emptyIndex === 0) {
-			parts.shift();
-			if (parts[0] === '') {
-				parts.shift();
-			}
-			parts.unshift(...zeros);
-		}
-		// Handle trailing ::
-		else if (emptyIndex === parts.length - 1) {
-			parts.pop();
-			if (parts[parts.length - 1] === '') {
-				parts.pop();
-			}
-			parts.push(...zeros);
-		}
-		// Handle middle ::
-		else {
-			parts.splice(emptyIndex, 1, ...zeros);
-		}
-	}
-	// Pad each group to 4 characters
-	return parts.map((p) => p.padStart(4, '0')).join(':');
-}
-/**
- * Compresses an IPv6 address by removing leading zeros and using :: for consecutive zero groups.
- */
-function compressIPv6(ip: string): string {
-	// Remove leading zeros from each group
-	const groups = ip.split(':').map((g) => g.replace(/^0+/, '') || '0');
-	// Find the longest run of consecutive zeros
-	let longestStart = -1;
-	let longestLength = 0;
-	let currentStart = -1;
-	let currentLength = 0;
-	for (let i = 0; i < groups.length; i++) {
-		if (groups[i] === '0') {
-			if (currentStart === -1) {
-				currentStart = i;
-				currentLength = 1;
-			} else {
-				currentLength++;
-			}
-		} else {
-			if (currentLength > longestLength) {
-				longestStart = currentStart;
-				longestLength = currentLength;
-			}
-			currentStart = -1;
-			currentLength = 0;
-		}
-	}
-	// Check final run
-	if (currentLength > longestLength) {
-		longestStart = currentStart;
-		longestLength = currentLength;
-	}
-	// Replace longest run with ::
-	if (longestLength > 1) {
-		const before = groups.slice(0, longestStart);
-		const after = groups.slice(longestStart + longestLength);
-		if (before.length === 0 && after.length === 0) {
-			return '::';
-		}
-		if (before.length === 0) {
-			return `::${after.join(':')}`;
-		}
-		if (after.length === 0) {
-			return `${before.join(':')}::`;
-		}
-		return `${before.join(':')}::${after.join(':')}`;
-	}
-	return groups.join(':');
-}
-/**
- * Masks an IP address to reduce PII.
- * - IPv4: Replaces last octet with 0 (e.g., 192.168.1.100 -> 192.168.1.0)
- * - IPv6: Masks last 80 bits (e.g., 2001:db8:85a3::1 -> 2001:db8:85a3::)
- *
- * @param ip - The IP address to mask
- * @returns The masked IP address
- */
-export function maskIpAddress(ip: string | null): string | null {
-	if (!ip) {
-		return null;
-	}
-	// IPv4 detection (no colons, has dots)
-	if (ip.includes('.') && !ip.includes(':')) {
-		const parts = ip.split('.');
-		if (parts.length === 4) {
-			parts[3] = '0';
-			return parts.join('.');
-		}
-		return ip;
-	}
-	// IPv6 detection
-	if (ip.includes(':')) {
-		// Handle IPv4-mapped IPv6 (::ffff:192.168.1.100)
-		if (ip.includes('.')) {
-			const lastColon = ip.lastIndexOf(':');
-			const ipv4Part = ip.substring(lastColon + 1);
-			const ipv6Prefix = ip.substring(0, lastColon + 1);
-			const ipv4Parts = ipv4Part.split('.');
-			if (ipv4Parts.length === 4) {
-				ipv4Parts[3] = '0';
-				return ipv6Prefix + ipv4Parts.join('.');
-			}
-			return ip;
-		}
-		// Pure IPv6 - mask last 80 bits (keep first 48 bits / 3 groups)
-		const expanded = expandIPv6(ip);
-		const groups = expanded.split(':');
-		// Zero out groups 4-8 (indices 3-7)
-		for (let i = 3; i < 8; i++) {
-			groups[i] = '0000';
-		}
-		return compressIPv6(groups.join(':'));
-	}
-	return ip;
-}
-export function getIpAddress(
-	req: Request | Headers,
-	options: C15TOptions
-): string | null {
-	const ipAddressConfig = options.advanced?.ipAddress;
-	if (ipAddressConfig?.tracking === false) {
-		return null;
-	}
-	const ipHeaders = ipAddressConfig?.ipAddressHeaders || DEFAULT_IP_HEADERS;
-	const headers = req instanceof Request ? req.headers : req;
-	for (const key of ipHeaders) {
-		const value = headers.get(key);
-		if (value) {
-			const ip = value.split(',')[0]?.trim();
-			if (ip) {
-				if (ipAddressConfig?.masking !== false) {
-					return maskIpAddress(ip);
-				}
-				return ip;
-			}
-		}
-	}
-	return null;
-}

package/src/router.ts DELETED Viewed

@@ -1,15 +0,0 @@
-/**
- * Router exports
- *
- * Note: The router is now integrated into the Hono app in core.ts.
- * This file exports the route creators for direct usage.
- *
- * @packageDocumentation
- */
-export {
-	createConsentRoutes,
-	createInitRoute,
-	createStatusRoute,
-	createSubjectRoutes,
-} from './routes';

package/src/routes/consent.ts DELETED Viewed

@@ -1,52 +0,0 @@
-/**
- * Consent routes - Check consent status.
- *
- * @packageDocumentation
- */
-import {
-	checkConsentOutputSchema,
-	checkConsentQuerySchema,
-} from '@c15t/schema';
-import { Hono } from 'hono';
-import { describeRoute, resolver, validator as vValidator } from 'hono-openapi';
-import { checkConsentHandler } from '~/handlers/consent/check.handler';
-import type { C15TContext } from '~/types';
-/**
- * Creates the consent routes
- */
-export const createConsentRoutes = () => {
-	const app = new Hono<{ Variables: { c15tContext: C15TContext } }>();
-	// GET /consents/check - Check consent status for an external ID
-	app.get(
-		'/check',
-		describeRoute({
-			summary: 'Check consent by external user ID',
-			description: `Pre-banner cross-device consent check. Use to avoid showing the banner when the user has already consented on another device.
-**Query parameters:**
-- \`externalId\` – External user ID to check
-- \`type\` – Consent type(s) to check (comma-separated)`,
-			tags: ['Consent'],
-			responses: {
-				200: {
-					description: 'Consent check result per requested type(s)',
-					content: {
-						'application/json': {
-							schema: resolver(checkConsentOutputSchema),
-						},
-					},
-				},
-				422: {
-					description: 'Invalid or missing query parameters',
-				},
-			},
-		}),
-		vValidator('query', checkConsentQuerySchema),
-		checkConsentHandler
-	);
-	return app;
-};

package/src/routes/index.ts DELETED Viewed

@@ -1,10 +0,0 @@
-/**
- * Route exports
- *
- * @packageDocumentation
- */
-export { createConsentRoutes } from './consent';
-export { createInitRoute } from './init';
-export { createStatusRoute } from './status';
-export { createSubjectRoutes } from './subject';

package/src/routes/init.ts DELETED Viewed

@@ -1,102 +0,0 @@
-/**
- * Init route - Initializes the consent manager and returns the initial state.
- *
- * @packageDocumentation
- */
-import { initOutputSchema } from '@c15t/schema';
-import { Hono } from 'hono';
-import { describeRoute, resolver } from 'hono-openapi';
-import { createGVLResolver } from '~/cache/gvl-resolver';
-import { getJurisdiction, getLocation } from '~/handlers/init/geo';
-import { getTranslationsData } from '~/handlers/init/translations';
-import type { C15TContext, C15TOptions } from '~/types';
-import { getMetrics } from '~/utils/metrics';
-/**
- * Creates the init route handler
- */
-export const createInitRoute = (options: C15TOptions) => {
-	const app = new Hono<{ Variables: { c15tContext: C15TContext } }>();
-	app.get(
-		'/',
-		describeRoute({
-			summary: 'Get initial consent manager state',
-			description: `Returns the initial state required to render the consent manager.
-- **Jurisdiction** – User's jurisdiction (defaults to GDPR if geo-location is disabled)
-- **Location** – User's location (null if geo-location is disabled)
-- **Translations** – Consent manager copy (from \`Accept-Language\` header)
-- **Branding** – Configured branding key
-- **GVL** – Global Vendor List when enabled
-Use for geo-targeted consent banners and regional compliance.`,
-			tags: ['Init'],
-			responses: {
-				200: {
-					description:
-						'Initialization payload (jurisdiction, location, translations, branding, GVL)',
-					content: {
-						'application/json': {
-							schema: resolver(initOutputSchema),
-						},
-					},
-				},
-			},
-		}),
-		async (c) => {
-			const request = c.req.raw;
-			// Get accept-language header
-			const acceptLanguage = request.headers.get('accept-language') || 'en';
-			// Get location and jurisdiction
-			const location = await getLocation(request, options);
-			const jurisdiction = getJurisdiction(location, options);
-			// Get translations
-			const translationsResult = getTranslationsData(
-				acceptLanguage,
-				options.advanced?.customTranslations
-			);
-			// Get GVL if enabled
-			let gvl = null;
-			if (options.advanced?.gvl?.enabled) {
-				const language = translationsResult.language.split('-')[0] || 'en';
-				const gvlResolver = createGVLResolver({
-					appName: options.appName || 'c15t',
-					bundled: options.advanced.gvl.bundled,
-					cacheAdapter: options.advanced.cache?.adapter,
-					vendorIds: options.advanced.gvl.vendorIds,
-					endpoint: options.advanced.gvl.endpoint,
-				});
-				gvl = await gvlResolver.get(language);
-			}
-			// Get custom vendors if configured
-			const customVendors = options.advanced?.gvl?.customVendors;
-			// Record init metric
-			const gpc = request.headers.get('sec-gpc') === '1';
-			getMetrics()?.recordInit({
-				jurisdiction,
-				country: location?.countryCode ?? undefined,
-				region: location?.regionCode ?? undefined,
-				gpc,
-			});
-			return c.json({
-				jurisdiction,
-				location,
-				translations: translationsResult,
-				branding: options.advanced?.branding || 'c15t',
-				gvl,
-				customVendors,
-			});
-		}
-	);
-	return app;
-};

package/src/routes/status.ts DELETED Viewed

@@ -1,46 +0,0 @@
-/**
- * Status route - Health check and status endpoint.
- *
- * @packageDocumentation
- */
-import { statusOutputSchema } from '@c15t/schema';
-import { Hono } from 'hono';
-import { describeRoute, resolver } from 'hono-openapi';
-import { statusHandler } from '~/handlers/status/status.handler';
-import type { C15TContext } from '~/types';
-/**
- * Creates the status route
- */
-export const createStatusRoute = () => {
-	const app = new Hono<{ Variables: { c15tContext: C15TContext } }>();
-	// GET /status - Health check and status endpoint
-	app.get(
-		'/',
-		describeRoute({
-			summary: 'Health check and API status',
-			description: `Returns API version, timestamp, and client info (IP, region, user agent).
-Use for health checks, load balancer probes, and debugging. Performs a lightweight DB check; returns 503 if the database is unreachable.`,
-			tags: ['Status'],
-			responses: {
-				200: {
-					description: 'API is healthy (version, timestamp, client info)',
-					content: {
-						'application/json': {
-							schema: resolver(statusOutputSchema),
-						},
-					},
-				},
-				503: {
-					description: 'Service unavailable (e.g. database unreachable)',
-				},
-			},
-		}),
-		statusHandler
-	);
-	return app;
-};

package/src/routes/subject.ts DELETED Viewed

@@ -1,152 +0,0 @@
-/**
- * Subject routes - CRUD operations for consent subjects.
- *
- * @packageDocumentation
- */
-import {
-	getSubjectInputSchema,
-	getSubjectOutputSchema,
-	listSubjectsOutputSchema,
-	listSubjectsQuerySchema,
-	patchSubjectOutputSchema,
-	postSubjectInputSchema,
-	postSubjectOutputSchema,
-	subjectIdSchema,
-} from '@c15t/schema';
-import { Hono } from 'hono';
-import { describeRoute, resolver, validator as vValidator } from 'hono-openapi';
-import * as v from 'valibot';
-import { getSubjectHandler } from '~/handlers/subject/get.handler';
-import { listSubjectsHandler } from '~/handlers/subject/list.handler';
-import { patchSubjectHandler } from '~/handlers/subject/patch.handler';
-import { postSubjectHandler } from '~/handlers/subject/post.handler';
-import type { C15TContext } from '~/types';
-/**
- * Creates the subject routes
- */
-export const createSubjectRoutes = () => {
-	const app = new Hono<{ Variables: { c15tContext: C15TContext } }>();
-	// GET /subjects/:id - Get a subject's consent status
-	app.get(
-		'/:id',
-		describeRoute({
-			summary: 'Get subject consent status',
-			description: `Returns the subject's consent status for this device. Use to check if the subject has valid consent for given policy types.
-**Query:** \`type\` – Filter by consent type(s), comma-separated (e.g. \`privacy_policy,cookie_banner\`).
-**Response:** \`subject\`, \`consents\` (matching filter), \`isValid\` (valid consent for requested type(s)).`,
-			tags: ['Subject', 'Consent'],
-			responses: {
-				200: {
-					description: 'Subject and consent records for the requested type(s)',
-					content: {
-						'application/json': {
-							schema: resolver(getSubjectOutputSchema),
-						},
-					},
-				},
-				404: {
-					description: 'Subject not found for the given ID',
-				},
-			},
-		}),
-		vValidator('param', getSubjectInputSchema),
-		getSubjectHandler
-	);
-	// POST /subjects - Create a new consent record
-	app.post(
-		'/',
-		describeRoute({
-			summary: 'Record consent for a subject',
-			description: `Creates a new consent record (append-only). Creates the subject if it does not exist.
-**Request body by \`type\`:**
-- \`cookie_banner\` – Requires \`preferences\` object
-- \`privacy_policy\`, \`dpa\`, \`terms_and_conditions\` – Optional \`policyId\`
-- \`marketing_communications\`, \`age_verification\`, \`other\` – Optional \`preferences\``,
-			tags: ['Subject', 'Consent'],
-			responses: {
-				200: {
-					description: 'Consent recorded; subject and consent in response',
-					content: {
-						'application/json': {
-							schema: resolver(postSubjectOutputSchema),
-						},
-					},
-				},
-				422: {
-					description: 'Invalid request body (schema or validation failed)',
-				},
-			},
-		}),
-		vValidator('json', postSubjectInputSchema),
-		postSubjectHandler
-	);
-	// PATCH /subjects/:id - Link external ID to subject
-	app.patch(
-		'/:id',
-		describeRoute({
-			summary: 'Link external ID to subject',
-			description:
-				'Associates an external user ID with an existing subject (e.g. after login). Enables cross-device consent sync.',
-			tags: ['Subject'],
-			responses: {
-				200: {
-					description: 'Subject updated with external ID',
-					content: {
-						'application/json': {
-							schema: resolver(patchSubjectOutputSchema),
-						},
-					},
-				},
-				404: {
-					description: 'Subject not found for the given ID',
-				},
-			},
-		}),
-		vValidator('param', v.object({ id: subjectIdSchema })),
-		vValidator(
-			'json',
-			v.object({
-				externalId: v.string(),
-				identityProvider: v.optional(v.string()),
-			})
-		),
-		patchSubjectHandler
-	);
-	// GET /subjects - List all subjects by external ID (requires API key)
-	app.get(
-		'/',
-		describeRoute({
-			summary: 'List subjects by external ID (API key required)',
-			description:
-				'Returns all subjects linked to the given external ID. Requires Bearer token (API key). Use for server-side consent lookups.',
-			tags: ['Subject'],
-			security: [{ bearerAuth: [] }],
-			responses: {
-				200: {
-					description: 'List of subjects for the external ID',
-					content: {
-						'application/json': {
-							schema: resolver(listSubjectsOutputSchema),
-						},
-					},
-				},
-				401: {
-					description: 'Missing or invalid API key',
-				},
-			},
-		}),
-		vValidator('query', listSubjectsQuerySchema),
-		listSubjectsHandler
-	);
-	return app;
-};

package/src/types/api.ts DELETED Viewed

@@ -1,48 +0,0 @@
-/**
- * Jurisdiction code type for privacy regulations
- */
-export type JurisdictionCode =
-	| 'UK_GDPR' // United Kingdom's GDPR
-	| 'GDPR' // European Union's GDPR (includes EEA)
-	| 'CH'
-	| 'BR'
-	| 'PIPEDA'
-	| 'AU'
-	| 'APPI'
-	| 'PIPA'
-	| 'CCPA'
-	| 'QC_LAW25' // Quebec's Bill 25
-	| 'NONE';
-/**
- * Base API path template literal for c15t consent endpoints
- *
- * This type defines the base path for all consent API routes in the c15t system.
- * Used as a foundation for building type-safe consent API route paths.
- *
- * @see ApiPath for complete path patterns
- */
-export type ApiPathBase = `/api/c15t`;
-/**
- * Consent API route path with strict type checking
- *
- * This type union represents all valid consent API paths in the system.
- * It enforces type safety when defining routes or middlewares to
- * prevent typos and ensure consistency.
- *
- * @example
- * ```ts
- * // Valid consent API path
- * const consentPath: ApiPath = '/api/c15t/consent';
- *
- * // Invalid - would cause a type error
- * const invalidPath: ApiPath = '/api/c15t/unknown-endpoint';
- * ```
- */
-export type ApiPath =
-	| `${ApiPathBase}`
-	| `${ApiPathBase}/consent`
-	| `${ApiPathBase}/consent/:id`
-	| `${ApiPathBase}/jurisdictions`
-	| `${ApiPathBase}/jurisdictions/:code`;