@camstack/server 0.1.7 → 0.2.0

package/src/api/core/auth.router.ts

@@ -43,23 +43,22 @@ const AuthProviderSummarySchema = z.object({
 })
 
 /** Wire shape of the authenticated user returned by `auth.me`. */
-const MeSchema = z.object({
-  id: z.string(),
-  username: z.string(),
-  isAdmin: z.boolean(),
-  permissions: z.object({
+const MeSchema = z
+  .object({
+    id: z.string(),
+    username: z.string(),
     isAdmin: z.boolean(),
-    allowedProviders: z.union([z.literal('*'), z.array(z.string())]),
-    allowedDevices: z.record(z.string(), z.unknown()),
-  }),
-  isApiKey: z.boolean(),
-  agentId: z.string().optional(),
-}).nullable()
+    permissions: z.object({
+      isAdmin: z.boolean(),
+      allowedProviders: z.union([z.literal('*'), z.array(z.string())]),
+      allowedDevices: z.record(z.string(), z.unknown()),
+    }),
+    isApiKey: z.boolean(),
+    agentId: z.string().optional(),
+  })
+  .nullable()
 
-export function createAuthRouter(
-  auth: AuthService,
-  registry: CapabilityRegistry | null,
-) {
+export function createAuthRouter(auth: AuthService, registry: CapabilityRegistry | null) {
   return trpcRouter({
     login: publicProcedure
       .input(z.object({ username: z.string(), password: z.string() }))
@@ -73,13 +72,16 @@ export function createAuthRouter(
           // common cause is a settings-store regression that breaks
           // the `users` collection query path.
           throw new Error(
-            'Login unavailable — `user-management` capability not registered. '
-            + 'The `local-auth` addon failed to initialize; check server logs '
-            + 'for an error tagged `[hub/local-auth]`.',
+            'Login unavailable — `user-management` capability not registered. ' +
+              'The `local-auth` addon failed to initialize; check server logs ' +
+              'for an error tagged `[hub/local-auth]`.',
           )
         }
 
-        const user = await userMgmt.validateCredentials({ username: input.username, password: input.password })
+        const user = await userMgmt.validateCredentials({
+          username: input.username,
+          password: input.password,
+        })
         if (!user) throw new Error('Invalid credentials')
 
         // ── TOTP gate ────────────────────────────────────────────────
@@ -91,9 +93,10 @@ export function createAuthRouter(
         // `kind: 'totp-challenge'` so it can't be replayed against
         // protected endpoints (the auth middleware rejects anything
         // without the standard session shape).
-        const totpStatus = typeof userMgmt.getTotpStatus === 'function'
-          ? await userMgmt.getTotpStatus({ userId: user.id })
-          : { enabled: false }
+        const totpStatus =
+          typeof userMgmt.getTotpStatus === 'function'
+            ? await userMgmt.getTotpStatus({ userId: user.id })
+            : { enabled: false }
         if (totpStatus.enabled) {
           const challengeToken = auth.signTotpChallengeToken({
             userId: user.id,
@@ -154,18 +157,20 @@ export function createAuthRouter(
         if (!userMgmt) {
           throw new Error('Login unavailable — `user-management` capability not registered')
         }
-        const verify = typeof userMgmt.verifyTotp === 'function'
-          ? await userMgmt.verifyTotp({ userId: claims.userId, code: input.code.trim() })
-          : { valid: false }
+        const verify =
+          typeof userMgmt.verifyTotp === 'function'
+            ? await userMgmt.verifyTotp({ userId: claims.userId, code: input.code.trim() })
+            : { valid: false }
         if (!verify.valid) {
           throw new Error('Invalid TOTP code')
         }
         // Re-fetch the user record so scopes / allowedDevices reflect
         // any admin change made between the two legs. Without this we
         // could mint a stale-scope session.
-        const fresh = typeof userMgmt.listUsers === 'function'
-          ? (await userMgmt.listUsers()).find((u) => u.id === claims.userId)
-          : null
+        const fresh =
+          typeof userMgmt.listUsers === 'function'
+            ? (await userMgmt.listUsers()).find((u) => u.id === claims.userId)
+            : null
         if (!fresh) {
           throw new Error('User no longer exists')
         }
@@ -202,15 +207,20 @@ export function createAuthRouter(
     // exists only to block third-party tampering — operators acting on
     // themselves bypass it intentionally.
     changeOwnPassword: protectedProcedure
-      .input(z.object({
-        currentPassword: z.string().min(1),
-        newPassword: z.string().min(8),
-      }))
+      .input(
+        z.object({
+          currentPassword: z.string().min(1),
+          newPassword: z.string().min(8),
+        }),
+      )
       .output(z.object({ success: z.literal(true) }))
       .mutation(async ({ input, ctx }) => {
         const userMgmt = registry?.getSingleton('user-management') as
           | {
-              validateCredentials: (i: { username: string; password: string }) => Promise<{ id: string } | null>
+              validateCredentials: (i: {
+                username: string
+                password: string
+              }) => Promise<{ id: string } | null>
               resetPassword: (i: { id: string; newPassword: string }) => Promise<{ success: true }>
             }
           | null
@@ -220,7 +230,10 @@ export function createAuthRouter(
         // Re-validate the current password against the live store to
         // confirm session identity → password ownership match. Stops a
         // stolen session-token from rotating credentials silently.
-        const ok = await userMgmt.validateCredentials({ username: ctx.user.username, password: input.currentPassword })
+        const ok = await userMgmt.validateCredentials({
+          username: ctx.user.username,
+          password: input.currentPassword,
+        })
         if (!ok) throw new Error('Current password is incorrect')
         await userMgmt.resetPassword({ id: ctx.user.id, newPassword: input.newPassword })
         return { success: true as const }
@@ -231,7 +244,9 @@ export function createAuthRouter(
       .output(z.object({ secret: z.string(), otpauthUrl: z.string() }))
       .mutation(async ({ ctx }) => {
         const userMgmt = registry?.getSingleton('user-management') as
-          | { setupTotp: (i: { userId: string }) => Promise<{ secret: string; otpauthUrl: string }> }
+          | {
+              setupTotp: (i: { userId: string }) => Promise<{ secret: string; otpauthUrl: string }>
+            }
           | null
           | undefined
         if (!userMgmt) throw new Error('user-management capability not available')
@@ -270,7 +285,11 @@ export function createAuthRouter(
       .output(z.object({ enabled: z.boolean(), confirmedAt: z.number().nullable() }))
       .query(async ({ ctx }) => {
         const userMgmt = registry?.getSingleton('user-management') as
-          | { getTotpStatus: (i: { userId: string }) => Promise<{ enabled: boolean; confirmedAt: number | null }> }
+          | {
+              getTotpStatus: (i: {
+                userId: string
+              }) => Promise<{ enabled: boolean; confirmedAt: number | null }>
+            }
           | null
           | undefined
         if (!userMgmt || !ctx.user) return { enabled: false, confirmedAt: null }

package/src/api/core/bulk-update-coordinator.ts

@@ -29,7 +29,11 @@ export interface IBulkUpdateLogger {
 export interface BulkUpdateCoordinatorDeps {
   readonly eventBus: IBulkUpdateEventBus
   readonly updateAddon: (input: { name: string; version: string }) => Promise<void>
-  readonly updateFrameworkPackage: (input: { packageName: string; version: string; deferRestart: boolean }) => Promise<void>
+  readonly updateFrameworkPackage: (input: {
+    packageName: string
+    version: string
+    deferRestart: boolean
+  }) => Promise<void>
   readonly restartServer: (input: { confirm: true }) => Promise<void>
   readonly logger: IBulkUpdateLogger
   /** Injectable clock for tests. Default: `() => Date.now()`. */
@@ -77,7 +81,7 @@ export class BulkUpdateCoordinator {
 
     const id = randomUUID()
 
-    const items: BulkUpdateItem[] = input.items.map(i => ({
+    const items: BulkUpdateItem[] = input.items.map((i) => ({
       name: i.name,
       isSystem: i.isSystem,
       // fromVersion: the cap interface receives name+version+isSystem only;
@@ -110,7 +114,7 @@ export class BulkUpdateCoordinator {
     // Emit initial state so clients see the bulk as started immediately
     this.emit(state)
 
-    void this.runLoop(id, cancelFlag).catch(err => {
+    void this.runLoop(id, cancelFlag).catch((err) => {
       this.deps.logger.error('BulkUpdateCoordinator: loop crashed unexpectedly', err)
     })
 
@@ -133,9 +137,9 @@ export class BulkUpdateCoordinator {
 
   list(nodeId?: string): readonly BulkUpdateState[] {
     const all = [...this.states.keys()]
-      .map(id => this.get(id))                // get() applies lazy-cleanup
+      .map((id) => this.get(id)) // get() applies lazy-cleanup
       .filter((s): s is BulkUpdateState => s !== null)
-    return nodeId === undefined ? all : all.filter(s => s.nodeId === nodeId)
+    return nodeId === undefined ? all : all.filter((s) => s.nodeId === nodeId)
   }
 
   cancel(id: string): { cancelled: boolean } {
@@ -148,7 +152,7 @@ export class BulkUpdateCoordinator {
     if (state.completedAtMs !== undefined) return { cancelled: false }
 
     flag.cancelled = true
-    this.mutate(id, s => ({ ...s, cancelled: true }))
+    this.mutate(id, (s) => ({ ...s, cancelled: true }))
     return { cancelled: true }
   }
 
@@ -160,24 +164,24 @@ export class BulkUpdateCoordinator {
     // ── Phase 1: regular addons ──────────────────────────────────────
     this.transitionPhase(id, 'regular')
 
-    for (const item of initial.items.filter(i => !i.isSystem)) {
+    for (const item of initial.items.filter((i) => !i.isSystem)) {
       if (cancelFlag.cancelled) break
       await this.processItem(id, item, false)
     }
 
     // ── Phase 2: system packages (deferRestart: true) ────────────────
-    if (!cancelFlag.cancelled && initial.items.some(i => i.isSystem)) {
+    if (!cancelFlag.cancelled && initial.items.some((i) => i.isSystem)) {
       this.transitionPhase(id, 'system')
 
-      for (const item of initial.items.filter(i => i.isSystem)) {
+      for (const item of initial.items.filter((i) => i.isSystem)) {
         if (cancelFlag.cancelled) break
         await this.processItem(id, item, true)
       }
 
       // ── Phase 3: single restart ──────────────────────────────────
-      const anySystemPendingRestart = this.states.get(id)!.items.some(
-        i => i.isSystem && i.status === 'done-pending-restart',
-      )
+      const anySystemPendingRestart = this.states
+        .get(id)!
+        .items.some((i) => i.isSystem && i.status === 'done-pending-restart')
 
       if (anySystemPendingRestart && !cancelFlag.cancelled) {
         this.transitionPhase(id, 'restarting')
@@ -214,7 +218,7 @@ export class BulkUpdateCoordinator {
 
   private async processItem(id: string, item: BulkUpdateItem, isSystem: boolean): Promise<void> {
     this.setItemStatus(id, item.name, 'updating', { startedAtMs: this.now() })
-    this.mutate(id, s => ({ ...s, current: item.name }))
+    this.mutate(id, (s) => ({ ...s, current: item.name }))
     this.emit(this.states.get(id)!)
 
     try {
@@ -234,7 +238,7 @@ export class BulkUpdateCoordinator {
       this.setItemStatus(id, item.name, 'failed', { error: msg, completedAtMs: this.now() })
     }
 
-    this.mutate(id, s => ({ ...s, current: null }))
+    this.mutate(id, (s) => ({ ...s, current: null }))
     this.emit(this.states.get(id)!)
   }
 
@@ -246,26 +250,25 @@ export class BulkUpdateCoordinator {
     status: BulkUpdateItemStatus,
     fields: { error?: string; startedAtMs?: number; completedAtMs?: number } = {},
   ): void {
-    this.mutate(id, s => {
-      const items = s.items.map(it =>
-        it.name === name ? { ...it, status, ...fields } : it,
-      )
+    this.mutate(id, (s) => {
+      const items = s.items.map((it) => (it.name === name ? { ...it, status, ...fields } : it))
       // completed = all terminal states: done | done-pending-restart | failed
       const completed = items.filter(
-        it => it.status === 'done' || it.status === 'done-pending-restart' || it.status === 'failed',
+        (it) =>
+          it.status === 'done' || it.status === 'done-pending-restart' || it.status === 'failed',
       ).length
-      const failed = items.filter(it => it.status === 'failed').length
+      const failed = items.filter((it) => it.status === 'failed').length
       return { ...s, items, completed, failed }
     })
   }
 
   private transitionPhase(id: string, phase: BulkUpdatePhase): void {
-    this.mutate(id, s => ({ ...s, phase }))
+    this.mutate(id, (s) => ({ ...s, phase }))
     this.emit(this.states.get(id)!)
   }
 
   private completeBulk(id: string): void {
-    this.mutate(id, s => ({ ...s, completedAtMs: this.now(), current: null }))
+    this.mutate(id, (s) => ({ ...s, completedAtMs: this.now(), current: null }))
     this.emit(this.states.get(id)!)
 
     // Free the nodeId slot so a new bulk for the same node can be started