@c15t/backend 2.0.0-rc.5 → 2.0.0-rc.6

package/dist/cache.js

@@ -1,6 +1,5 @@
 import { Redis } from "@upstash/redis";
-import { SpanKind as api_SpanKind, SpanStatusCode as api_SpanStatusCode, context, metrics, trace as api_trace } from "@opentelemetry/api";
-const GVL_TTL_MS = 259200000;
+import { GVL_TTL_MS } from "./302.js";
 function createCloudflareKVAdapter(kv) {
     return {
         async get (key) {
@@ -24,44 +23,6 @@ function createCloudflareKVAdapter(kv) {
         }
     };
 }
-const memory_memoryCache = new Map();
-function createMemoryCacheAdapter() {
-    return {
-        async get (key) {
-            const entry = memory_memoryCache.get(key);
-            if (!entry) return null;
-            if (Date.now() > entry.expiresAt) {
-                memory_memoryCache.delete(key);
-                return null;
-            }
-            return entry.value;
-        },
-        async set (key, value, ttlMs = 300000) {
-            memory_memoryCache.set(key, {
-                value,
-                expiresAt: Date.now() + ttlMs
-            });
-        },
-        async delete (key) {
-            memory_memoryCache.delete(key);
-        },
-        async has (key) {
-            const entry = memory_memoryCache.get(key);
-            if (!entry) return false;
-            if (Date.now() > entry.expiresAt) {
-                memory_memoryCache.delete(key);
-                return false;
-            }
-            return true;
-        }
-    };
-}
-function clearMemoryCache() {
-    memory_memoryCache.clear();
-}
-function getMemoryCacheSize() {
-    return memory_memoryCache.size;
-}
 function createUpstashRedisAdapter(options) {
     const client = new Redis({
         url: options.url,
@@ -90,378 +51,6 @@ function createUpstashRedisAdapterFromClient(client) {
         }
     };
 }
-function extractErrorMessage(error) {
-    if (error instanceof AggregateError && error.errors?.length > 0) {
-        const inner = error.errors.map((e)=>e instanceof Error ? e.message : String(e)).join('; ');
-        return `AggregateError: ${inner}`;
-    }
-    if (error instanceof Error) return error.message || error.name;
-    return String(error);
-}
-let cachedConfig = null;
-let cachedDefaultAttributes = {};
-function create_telemetry_options_isTelemetryEnabled(options) {
-    if (options) return options.telemetry?.enabled === true;
-    return cachedConfig?.enabled === true;
-}
-const create_telemetry_options_getTracer = (options)=>{
-    if (!create_telemetry_options_isTelemetryEnabled(options)) return api_trace.getTracer('c15t-noop');
-    const tracer = options?.telemetry?.tracer ?? cachedConfig?.tracer;
-    if (tracer) return tracer;
-    return api_trace.getTracer(options?.appName ?? 'c15t');
-};
-const getMeter = (options)=>{
-    if (!create_telemetry_options_isTelemetryEnabled(options)) return metrics.getMeter('c15t-noop');
-    const meter = options?.telemetry?.meter ?? cachedConfig?.meter;
-    if (meter) return meter;
-    return metrics.getMeter(options?.appName ?? 'c15t');
-};
-function getDefaultAttributes() {
-    return cachedDefaultAttributes;
-}
-const handleSpanError = (span, error)=>{
-    span.setStatus({
-        code: api_SpanStatusCode.ERROR,
-        message: extractErrorMessage(error)
-    });
-    if (error instanceof Error) span.setAttribute('error.type', error.name);
-};
-const withSpanContext = async (span, operation)=>context["with"](api_trace.setSpan(context.active(), span), operation);
-async function executeWithSpan(span, operation) {
-    try {
-        const result = await withSpanContext(span, operation);
-        span.setStatus({
-            code: api_SpanStatusCode.OK
-        });
-        return result;
-    } catch (error) {
-        handleSpanError(span, error);
-        throw error;
-    } finally{
-        span.end();
-    }
-}
-function resolveDefaultAttributes(options) {
-    return options?.telemetry?.defaultAttributes || getDefaultAttributes();
-}
-async function withExternalSpan(attributes, operation, options) {
-    if (!create_telemetry_options_isTelemetryEnabled(options)) return operation();
-    const tracer = create_telemetry_options_getTracer(options);
-    const url = new URL(attributes.url);
-    const spanName = `HTTP ${attributes.method} ${url.hostname}`;
-    const span = tracer.startSpan(spanName, {
-        kind: api_SpanKind.CLIENT,
-        attributes: {
-            'http.method': attributes.method,
-            'http.url': `${url.origin}${url.pathname}`,
-            'http.host': url.hostname,
-            ...resolveDefaultAttributes(options),
-            ...Object.fromEntries(Object.entries(attributes).filter(([key])=>![
-                    'url',
-                    'method'
-                ].includes(key)))
-        }
-    });
-    return executeWithSpan(span, operation);
-}
-async function withCacheSpan(operation, layer, fn, options) {
-    if (!create_telemetry_options_isTelemetryEnabled(options)) return fn();
-    const tracer = create_telemetry_options_getTracer(options);
-    const spanName = `cache.${layer}.${operation}`;
-    const span = tracer.startSpan(spanName, {
-        kind: api_SpanKind.CLIENT,
-        attributes: {
-            'cache.operation': operation,
-            'cache.layer': layer,
-            ...resolveDefaultAttributes(options)
-        }
-    });
-    return executeWithSpan(span, fn);
-}
-function sanitizeAttributes(attrs) {
-    return Object.fromEntries(Object.entries(attrs).filter(([_, v])=>null != v));
-}
-function createMetrics(meter) {
-    const consentCreated = meter.createCounter('c15t.consent.created', {
-        description: 'Number of consent submissions',
-        unit: '1'
-    });
-    const consentAccepted = meter.createCounter('c15t.consent.accepted', {
-        description: 'Number of consents accepted',
-        unit: '1'
-    });
-    const consentRejected = meter.createCounter('c15t.consent.rejected', {
-        description: 'Number of consents rejected',
-        unit: '1'
-    });
-    const subjectCreated = meter.createCounter('c15t.subject.created', {
-        description: 'Number of new subjects created',
-        unit: '1'
-    });
-    const subjectLinked = meter.createCounter('c15t.subject.linked', {
-        description: 'Number of subjects linked to external ID',
-        unit: '1'
-    });
-    const consentCheckCount = meter.createCounter('c15t.consent_check.count', {
-        description: 'Number of cross-device consent checks',
-        unit: '1'
-    });
-    const initCount = meter.createCounter('c15t.init.count', {
-        description: 'Number of init endpoint calls',
-        unit: '1'
-    });
-    const httpRequestDuration = meter.createHistogram('c15t.http.request.duration', {
-        description: 'HTTP request latency',
-        unit: 'ms'
-    });
-    const httpRequestCount = meter.createCounter('c15t.http.request.count', {
-        description: 'Number of HTTP requests',
-        unit: '1'
-    });
-    const httpErrorCount = meter.createCounter('c15t.http.error.count', {
-        description: 'Number of HTTP errors',
-        unit: '1'
-    });
-    const dbQueryDuration = meter.createHistogram('c15t.db.query.duration', {
-        description: 'Database query latency',
-        unit: 'ms'
-    });
-    const dbQueryCount = meter.createCounter('c15t.db.query.count', {
-        description: 'Number of database queries',
-        unit: '1'
-    });
-    const dbErrorCount = meter.createCounter('c15t.db.error.count', {
-        description: 'Number of database errors',
-        unit: '1'
-    });
-    const cacheHit = meter.createCounter('c15t.cache.hit', {
-        description: 'Number of cache hits',
-        unit: '1'
-    });
-    const cacheMiss = meter.createCounter('c15t.cache.miss', {
-        description: 'Number of cache misses',
-        unit: '1'
-    });
-    const cacheLatency = meter.createHistogram('c15t.cache.latency', {
-        description: 'Cache operation latency',
-        unit: 'ms'
-    });
-    const gvlFetchDuration = meter.createHistogram('c15t.gvl.fetch.duration', {
-        description: 'GVL fetch latency',
-        unit: 'ms'
-    });
-    const gvlFetchCount = meter.createCounter('c15t.gvl.fetch.count', {
-        description: 'Number of GVL fetches',
-        unit: '1'
-    });
-    const gvlFetchError = meter.createCounter('c15t.gvl.fetch.error', {
-        description: 'Number of GVL fetch errors',
-        unit: '1'
-    });
-    return {
-        consentCreated,
-        consentAccepted,
-        consentRejected,
-        subjectCreated,
-        subjectLinked,
-        consentCheckCount,
-        initCount,
-        httpRequestDuration,
-        httpRequestCount,
-        httpErrorCount,
-        dbQueryDuration,
-        dbQueryCount,
-        dbErrorCount,
-        cacheHit,
-        cacheMiss,
-        cacheLatency,
-        gvlFetchDuration,
-        gvlFetchCount,
-        gvlFetchError,
-        recordConsentCreated (attributes) {
-            consentCreated.add(1, sanitizeAttributes(attributes));
-        },
-        recordConsentAccepted (attributes) {
-            consentAccepted.add(1, sanitizeAttributes(attributes));
-        },
-        recordConsentRejected (attributes) {
-            consentRejected.add(1, sanitizeAttributes(attributes));
-        },
-        recordSubjectCreated (attributes) {
-            subjectCreated.add(1, sanitizeAttributes(attributes));
-        },
-        recordSubjectLinked (identityProvider) {
-            subjectLinked.add(1, {
-                identityProvider: identityProvider || 'unknown'
-            });
-        },
-        recordConsentCheck (type, found) {
-            consentCheckCount.add(1, {
-                type,
-                found: String(found)
-            });
-        },
-        recordInit (attributes) {
-            initCount.add(1, sanitizeAttributes(attributes));
-        },
-        recordHttpRequest (attributes, durationMs) {
-            const attrs = sanitizeAttributes(attributes);
-            httpRequestCount.add(1, attrs);
-            httpRequestDuration.record(durationMs, attrs);
-            if (attributes.status >= 400) httpErrorCount.add(1, attrs);
-        },
-        recordDbQuery (attributes, durationMs) {
-            const attrs = sanitizeAttributes(attributes);
-            dbQueryCount.add(1, attrs);
-            dbQueryDuration.record(durationMs, attrs);
-        },
-        recordDbError (attributes) {
-            dbErrorCount.add(1, sanitizeAttributes(attributes));
-        },
-        recordCacheHit (layer) {
-            cacheHit.add(1, {
-                layer
-            });
-        },
-        recordCacheMiss (layer) {
-            cacheMiss.add(1, {
-                layer
-            });
-        },
-        recordCacheLatency (attributes, durationMs) {
-            cacheLatency.record(durationMs, sanitizeAttributes(attributes));
-        },
-        recordGvlFetch (attributes, durationMs) {
-            const attrs = sanitizeAttributes(attributes);
-            gvlFetchCount.add(1, attrs);
-            gvlFetchDuration.record(durationMs, attrs);
-        },
-        recordGvlError (attributes) {
-            gvlFetchError.add(1, sanitizeAttributes(attributes));
-        }
-    };
-}
-let metricsInstance = null;
-function getMetrics(options) {
-    if (metricsInstance) return metricsInstance;
-    if (!create_telemetry_options_isTelemetryEnabled(options)) return null;
-    metricsInstance = createMetrics(getMeter(options));
-    return metricsInstance;
-}
-function createGVLCacheKey(appName, language, vendorIds) {
-    const sortedIds = vendorIds ? [
-        ...vendorIds
-    ].sort((a, b)=>a - b).join(',') : 'all';
-    return `${appName}:gvl:${language}:${sortedIds}`;
-}
-function createCacheKey(appName, namespace, ...parts) {
-    const allParts = [
-        appName,
-        namespace,
-        ...parts
-    ];
-    return allParts.join(':');
-}
-const GVL_ENDPOINT = 'https://gvl.consent.io';
-const inflightRequests = new Map();
-async function fetchGVLWithLanguage(language, vendorIds, endpoint = GVL_ENDPOINT) {
-    const sortedVendorIds = vendorIds ? [
-        ...vendorIds
-    ].sort((a, b)=>a - b) : [];
-    const dedupeKey = `${endpoint}|${language}|${sortedVendorIds.join(',')}`;
-    const existingRequest = inflightRequests.get(dedupeKey);
-    if (existingRequest) return existingRequest;
-    const url = new URL(endpoint);
-    if (sortedVendorIds.length > 0) url.searchParams.set('vendorIds', sortedVendorIds.join(','));
-    const promise = (async ()=>{
-        const fetchStart = Date.now();
-        try {
-            const gvl = await withExternalSpan({
-                url: url.toString(),
-                method: 'GET'
-            }, async ()=>{
-                const response = await fetch(url.toString(), {
-                    headers: {
-                        'Accept-Language': language
-                    }
-                });
-                if (204 === response.status) return null;
-                if (!response.ok) throw new Error(`Failed to fetch GVL: ${response.status} ${response.statusText}`);
-                const text = await response.text();
-                const trimmed = text.trim().replace(/^\uFEFF/, '');
-                let parsed;
-                try {
-                    parsed = JSON.parse(trimmed);
-                } catch  {
-                    let depth = 0;
-                    let end = -1;
-                    const start = trimmed.indexOf('{');
-                    if (start >= 0) for(let i = start; i < trimmed.length; i++){
-                        const c = trimmed[i];
-                        if ('{' === c) depth++;
-                        else if ('}' === c) {
-                            depth--;
-                            if (0 === depth) {
-                                end = i + 1;
-                                break;
-                            }
-                        }
-                    }
-                    if (end > 0) parsed = JSON.parse(trimmed.slice(0, end));
-                    else throw new SyntaxError('Invalid GVL response: not valid JSON');
-                }
-                if (!parsed.vendorListVersion || !parsed.purposes || !parsed.vendors) throw new Error('Invalid GVL response: missing required fields');
-                return parsed;
-            });
-            getMetrics()?.recordGvlFetch({
-                language,
-                source: 'fetch',
-                status: 200
-            }, Date.now() - fetchStart);
-            return gvl;
-        } catch (error) {
-            getMetrics()?.recordGvlError({
-                language,
-                errorType: error instanceof Error ? error.name : 'UnknownError'
-            });
-            throw error;
-        } finally{
-            inflightRequests.delete(dedupeKey);
-        }
-    })();
-    inflightRequests.set(dedupeKey, promise);
-    return promise;
-}
-function createGVLResolver(options) {
-    const { appName, bundled, cacheAdapter, vendorIds, endpoint } = options;
-    const memoryCache = createMemoryCacheAdapter();
-    return {
-        async get (language) {
-            const cacheKey = createGVLCacheKey(appName, language, vendorIds);
-            if (bundled?.[language]) return bundled[language];
-            const memoryHit = await withCacheSpan('get', 'memory', ()=>memoryCache.get(cacheKey));
-            if (memoryHit) {
-                getMetrics()?.recordCacheHit('memory');
-                return memoryHit;
-            }
-            getMetrics()?.recordCacheMiss('memory');
-            if (cacheAdapter) {
-                const externalHit = await withCacheSpan('get', 'external', ()=>cacheAdapter.get(cacheKey));
-                if (externalHit) {
-                    getMetrics()?.recordCacheHit('external');
-                    await withCacheSpan('set', 'memory', ()=>memoryCache.set(cacheKey, externalHit, 300000));
-                    return externalHit;
-                }
-                getMetrics()?.recordCacheMiss('external');
-            }
-            const gvl = await fetchGVLWithLanguage(language, vendorIds, endpoint);
-            if (gvl) {
-                await withCacheSpan('set', 'memory', ()=>memoryCache.set(cacheKey, gvl, 300000));
-                if (cacheAdapter) await withCacheSpan('set', 'external', ()=>cacheAdapter.set(cacheKey, gvl, GVL_TTL_MS));
-            }
-            return gvl;
-        }
-    };
-}
-var __webpack_exports__MEMORY_TTL_MS = 300000;
-export { GVL_TTL_MS, clearMemoryCache, createCacheKey, createCloudflareKVAdapter, createGVLCacheKey, createGVLResolver, createMemoryCacheAdapter, createUpstashRedisAdapter, createUpstashRedisAdapterFromClient, getMemoryCacheSize, __webpack_exports__MEMORY_TTL_MS as MEMORY_TTL_MS };
+var cache_MEMORY_TTL_MS = 300000;
+export { GVL_TTL_MS, clearMemoryCache, createCacheKey, createGVLCacheKey, createGVLResolver, createMemoryCacheAdapter, getMemoryCacheSize } from "./302.js";
+export { cache_MEMORY_TTL_MS as MEMORY_TTL_MS, createCloudflareKVAdapter, createUpstashRedisAdapter, createUpstashRedisAdapterFromClient };

package/dist/core.cjs

@@ -1,6 +1,6 @@
 "use strict";
 var __webpack_modules__ = {
-    "./src/db/schema/index.ts" (__unused_webpack_module, __webpack_exports__, __webpack_require__) {
+    "./src/db/schema/index.ts" (__unused_rspack_module, __webpack_exports__, __webpack_require__) {
         __webpack_require__.d(__webpack_exports__, {
             DB: ()=>DB
         });
@@ -294,7 +294,7 @@ var __webpack_modules__ = {
             ]
         });
     },
-    "./src/define-config.ts" (__unused_webpack_module, __webpack_exports__, __webpack_require__) {
+    "./src/define-config.ts" (__unused_rspack_module, __webpack_exports__, __webpack_require__) {
         __webpack_require__.d(__webpack_exports__, {
             defineConfig: ()=>defineConfig
         });
@@ -336,7 +336,7 @@ function __webpack_require__(moduleId) {
 })();
 (()=>{
     __webpack_require__.r = (exports1)=>{
-        if ('undefined' != typeof Symbol && Symbol.toStringTag) Object.defineProperty(exports1, Symbol.toStringTag, {
+        if ("u" > typeof Symbol && Symbol.toStringTag) Object.defineProperty(exports1, Symbol.toStringTag, {
             value: 'Module'
         });
         Object.defineProperty(exports1, '__esModule', {
@@ -737,7 +737,7 @@ var __webpack_exports__ = {};
             language
         };
     }
-    const version_version = '2.0.0-rc.5';
+    const version_version = '2.0.0-rc.6';
     function extractErrorMessage(error) {
         if (error instanceof AggregateError && error.errors?.length > 0) {
             const inner = error.errors.map((e)=>e instanceof Error ? e.message : String(e)).join('; ');
@@ -1772,11 +1772,7 @@ var __webpack_exports__ = {};
         const app = new external_hono_namespaceObject.Hono();
         app.get('/check', (0, external_hono_openapi_namespaceObject.describeRoute)({
             summary: 'Check consent by external user ID',
-            description: `Pre-banner cross-device consent check. Use to avoid showing the banner when the user has already consented on another device.
-
-**Query parameters:**
-- \`externalId\` – External user ID to check
-- \`type\` – Consent type(s) to check (comma-separated)`,
+            description: "Pre-banner cross-device consent check. Use to avoid showing the banner when the user has already consented on another device.\n\n**Query parameters:**\n- `externalId` – External user ID to check\n- `type` – Consent type(s) to check (comma-separated)",
             tags: [
                 'Consent'
             ],
@@ -2442,6 +2438,12 @@ Use for health checks, load balancer probes, and debugging. Performs a lightweig
         const subjectId = c.req.param('id');
         const type = c.req.query('type');
         const typeFilter = type?.split(',').map((t)=>t.trim()) || [];
+        if (!subjectId) throw new http_exception_namespaceObject.HTTPException(400, {
+            message: 'Subject ID is required',
+            cause: {
+                code: 'SUBJECT_ID_REQUIRED'
+            }
+        });
         logger.debug('Request parameters', {
             subjectId,
             typeFilter
@@ -2633,6 +2635,12 @@ Use for health checks, load balancer probes, and debugging. Performs a lightweig
         const subjectId = c.req.param('id');
         const body = await c.req.json();
         const { externalId, identityProvider = 'external' } = body;
+        if (!subjectId) throw new http_exception_namespaceObject.HTTPException(400, {
+            message: 'Subject ID is required',
+            cause: {
+                code: 'SUBJECT_ID_REQUIRED'
+            }
+        });
         logger.debug('Request parameters', {
             subjectId,
             externalId,
@@ -3150,11 +3158,7 @@ Use for health checks, load balancer probes, and debugging. Performs a lightweig
         const app = new external_hono_namespaceObject.Hono();
         app.get('/:id', (0, external_hono_openapi_namespaceObject.describeRoute)({
             summary: 'Get subject consent status',
-            description: `Returns the subject's consent status for this device. Use to check if the subject has valid consent for given policy types.
-
-**Query:** \`type\` – Filter by consent type(s), comma-separated (e.g. \`privacy_policy,cookie_banner\`).
-
-**Response:** \`subject\`, \`consents\` (matching filter), \`isValid\` (valid consent for requested type(s)).`,
+            description: "Returns the subject's consent status for this device. Use to check if the subject has valid consent for given policy types.\n\n**Query:** `type` – Filter by consent type(s), comma-separated (e.g. `privacy_policy,cookie_banner`).\n\n**Response:** `subject`, `consents` (matching filter), `isValid` (valid consent for requested type(s)).",
             tags: [
                 'Subject',
                 'Consent'
@@ -3175,12 +3179,7 @@ Use for health checks, load balancer probes, and debugging. Performs a lightweig
         }), (0, external_hono_openapi_namespaceObject.validator)('param', schema_.getSubjectInputSchema), getSubjectHandler);
         app.post('/', (0, external_hono_openapi_namespaceObject.describeRoute)({
             summary: 'Record consent for a subject',
-            description: `Creates a new consent record (append-only). Creates the subject if it does not exist.
-
-**Request body by \`type\`:**
-- \`cookie_banner\` – Requires \`preferences\` object
-- \`privacy_policy\`, \`dpa\`, \`terms_and_conditions\` – Optional \`policyId\`
-- \`marketing_communications\`, \`age_verification\`, \`other\` – Optional \`preferences\``,
+            description: "Creates a new consent record (append-only). Creates the subject if it does not exist.\n\n**Request body by `type`:**\n- `cookie_banner` – Requires `preferences` object\n- `privacy_policy`, `dpa`, `terms_and_conditions` – Optional `policyId`\n- `marketing_communications`, `age_verification`, `other` – Optional `preferences`",
             tags: [
                 'Subject',
                 'Consent'
@@ -3265,7 +3264,7 @@ Use for health checks, load balancer probes, and debugging. Performs a lightweig
         if (!value) return;
         return (0, schema_.compactDefined)({
             allowedActions: (0, schema_.dedupeTrimmedStrings)(value.allowedActions),
-            primaryAction: value.primaryAction,
+            primaryActions: value.primaryActions,
             layout: value.layout,
             direction: value.direction,
             uiProfile: value.uiProfile,
@@ -3413,9 +3412,7 @@ Use for health checks, load balancer probes, and debugging. Performs a lightweig
             }));
             const publicSpecUrl = `${basePath}${openApiConfig.specPath}`.replace(/\/+/g, '/');
             app.get(openApiConfig.docsPath, (0, hono_api_reference_namespaceObject.apiReference)({
-                spec: {
-                    url: publicSpecUrl
-                },
+                url: publicSpecUrl,
                 pageTitle: `${options.appName || 'c15t API'} Documentation`
             }));
         }