npm - @classytic/arc - Versions diffs - 1.1.0 → 2.1.2 - Mend

@classytic/arc 1.1.0 → 2.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (322) hide show

package/README.md +247 -794
package/bin/arc.js +91 -52
package/dist/EventTransport-BD2U0BTc.d.mts +100 -0
package/dist/EventTransport-BD2U0BTc.d.mts.map +1 -0
package/dist/HookSystem-BsGV-j2l.mjs +405 -0
package/dist/HookSystem-BsGV-j2l.mjs.map +1 -0
package/dist/ResourceRegistry-DsN4KJjV.mjs +250 -0
package/dist/ResourceRegistry-DsN4KJjV.mjs.map +1 -0
package/dist/adapters/index.d.mts +5 -0
package/dist/adapters/index.mjs +3 -0
package/dist/audit/index.d.mts +82 -0
package/dist/audit/index.d.mts.map +1 -0
package/dist/audit/index.mjs +276 -0
package/dist/audit/index.mjs.map +1 -0
package/dist/audit/mongodb.d.mts +5 -0
package/dist/audit/mongodb.mjs +3 -0
package/dist/audited-C3T5DTUx.mjs +141 -0
package/dist/audited-C3T5DTUx.mjs.map +1 -0
package/dist/auth/index.d.mts +189 -0
package/dist/auth/index.d.mts.map +1 -0
package/dist/auth/index.mjs +1102 -0
package/dist/auth/index.mjs.map +1 -0
package/dist/auth/redis-session.d.mts +44 -0
package/dist/auth/redis-session.d.mts.map +1 -0
package/dist/auth/redis-session.mjs +76 -0
package/dist/auth/redis-session.mjs.map +1 -0
package/dist/betterAuthOpenApi-BrHKeSAx.mjs +250 -0
package/dist/betterAuthOpenApi-BrHKeSAx.mjs.map +1 -0
package/dist/cache/index.d.mts +146 -0
package/dist/cache/index.d.mts.map +1 -0
package/dist/cache/index.mjs +92 -0
package/dist/cache/index.mjs.map +1 -0
package/dist/caching-Bl28lYsR.mjs +94 -0
package/dist/caching-Bl28lYsR.mjs.map +1 -0
package/dist/chunk-C7Uep-_p.mjs +20 -0
package/dist/circuitBreaker-DeY4FCjs.mjs +1097 -0
package/dist/circuitBreaker-DeY4FCjs.mjs.map +1 -0
package/dist/cli/commands/describe.d.mts +19 -0
package/dist/cli/commands/describe.d.mts.map +1 -0
package/dist/cli/commands/describe.mjs +239 -0
package/dist/cli/commands/describe.mjs.map +1 -0
package/dist/cli/commands/docs.d.mts +14 -0
package/dist/cli/commands/docs.d.mts.map +1 -0
package/dist/cli/commands/docs.mjs +53 -0
package/dist/cli/commands/docs.mjs.map +1 -0
package/dist/cli/commands/{generate.d.ts → generate.d.mts} +3 -1
package/dist/cli/commands/generate.d.mts.map +1 -0
package/dist/cli/commands/generate.mjs +358 -0
package/dist/cli/commands/generate.mjs.map +1 -0
package/dist/cli/commands/{init.d.ts → init.d.mts} +12 -8
package/dist/cli/commands/init.d.mts.map +1 -0
package/dist/cli/commands/{init.js → init.mjs} +807 -616
package/dist/cli/commands/init.mjs.map +1 -0
package/dist/cli/commands/introspect.d.mts +11 -0
package/dist/cli/commands/introspect.d.mts.map +1 -0
package/dist/cli/commands/introspect.mjs +76 -0
package/dist/cli/commands/introspect.mjs.map +1 -0
package/dist/cli/index.d.mts +17 -0
package/dist/cli/index.d.mts.map +1 -0
package/dist/cli/index.mjs +157 -0
package/dist/cli/index.mjs.map +1 -0
package/dist/constants-DdXFXQtN.mjs +85 -0
package/dist/constants-DdXFXQtN.mjs.map +1 -0
package/dist/core/index.d.mts +5 -0
package/dist/core/index.mjs +4 -0
package/dist/createApp-CUgNqegw.mjs +560 -0
package/dist/createApp-CUgNqegw.mjs.map +1 -0
package/dist/defineResource-k0_BDn8v.mjs +2197 -0
package/dist/defineResource-k0_BDn8v.mjs.map +1 -0
package/dist/discovery/index.d.mts +47 -0
package/dist/discovery/index.d.mts.map +1 -0
package/dist/discovery/index.mjs +110 -0
package/dist/discovery/index.mjs.map +1 -0
package/dist/docs/index.d.mts +163 -0
package/dist/docs/index.d.mts.map +1 -0
package/dist/docs/index.mjs +73 -0
package/dist/docs/index.mjs.map +1 -0
package/dist/elevation-BRy3yFWT.mjs +113 -0
package/dist/elevation-BRy3yFWT.mjs.map +1 -0
package/dist/elevation-B_2dRLVP.d.mts +88 -0
package/dist/elevation-B_2dRLVP.d.mts.map +1 -0
package/dist/errorHandler-BbcgBmIH.d.mts +73 -0
package/dist/errorHandler-BbcgBmIH.d.mts.map +1 -0
package/dist/errorHandler-C1okiriz.mjs +109 -0
package/dist/errorHandler-C1okiriz.mjs.map +1 -0
package/dist/errors-B9bZok84.mjs +212 -0
package/dist/errors-B9bZok84.mjs.map +1 -0
package/dist/errors-ChKiFz62.d.mts +125 -0
package/dist/errors-ChKiFz62.d.mts.map +1 -0
package/dist/eventPlugin-CTrLH3mt.d.mts +125 -0
package/dist/eventPlugin-CTrLH3mt.d.mts.map +1 -0
package/dist/eventPlugin-DGR_B2on.mjs +230 -0
package/dist/eventPlugin-DGR_B2on.mjs.map +1 -0
package/dist/events/index.d.mts +54 -0
package/dist/events/index.d.mts.map +1 -0
package/dist/events/index.mjs +52 -0
package/dist/events/index.mjs.map +1 -0
package/dist/events/transports/redis-stream-entry.d.mts +2 -0
package/dist/events/transports/redis-stream-entry.mjs +178 -0
package/dist/events/transports/redis-stream-entry.mjs.map +1 -0
package/dist/events/transports/redis.d.mts +77 -0
package/dist/events/transports/redis.d.mts.map +1 -0
package/dist/events/transports/redis.mjs +125 -0
package/dist/events/transports/redis.mjs.map +1 -0
package/dist/externalPaths-DlINfKbP.d.mts +51 -0
package/dist/externalPaths-DlINfKbP.d.mts.map +1 -0
package/dist/factory/index.d.mts +64 -0
package/dist/factory/index.d.mts.map +1 -0
package/dist/factory/index.mjs +3 -0
package/dist/fastifyAdapter-BkrGrlFi.d.mts +217 -0
package/dist/fastifyAdapter-BkrGrlFi.d.mts.map +1 -0
package/dist/fields-DyaDVX4J.d.mts +110 -0
package/dist/fields-DyaDVX4J.d.mts.map +1 -0
package/dist/fields-iagOozy0.mjs +115 -0
package/dist/fields-iagOozy0.mjs.map +1 -0
package/dist/hooks/index.d.mts +4 -0
package/dist/hooks/index.mjs +3 -0
package/dist/idempotency/index.d.mts +97 -0
package/dist/idempotency/index.d.mts.map +1 -0
package/dist/idempotency/index.mjs +320 -0
package/dist/idempotency/index.mjs.map +1 -0
package/dist/idempotency/mongodb.d.mts +2 -0
package/dist/idempotency/mongodb.mjs +115 -0
package/dist/idempotency/mongodb.mjs.map +1 -0
package/dist/idempotency/redis.d.mts +2 -0
package/dist/idempotency/redis.mjs +104 -0
package/dist/idempotency/redis.mjs.map +1 -0
package/dist/index.d.mts +261 -0
package/dist/index.d.mts.map +1 -0
package/dist/index.mjs +105 -0
package/dist/index.mjs.map +1 -0
package/dist/integrations/event-gateway.d.mts +47 -0
package/dist/integrations/event-gateway.d.mts.map +1 -0
package/dist/integrations/event-gateway.mjs +44 -0
package/dist/integrations/event-gateway.mjs.map +1 -0
package/dist/integrations/index.d.mts +5 -0
package/dist/integrations/index.mjs +1 -0
package/dist/integrations/jobs.d.mts +104 -0
package/dist/integrations/jobs.d.mts.map +1 -0
package/dist/integrations/jobs.mjs +124 -0
package/dist/integrations/jobs.mjs.map +1 -0
package/dist/integrations/streamline.d.mts +61 -0
package/dist/integrations/streamline.d.mts.map +1 -0
package/dist/integrations/streamline.mjs +126 -0
package/dist/integrations/streamline.mjs.map +1 -0
package/dist/integrations/websocket.d.mts +83 -0
package/dist/integrations/websocket.d.mts.map +1 -0
package/dist/integrations/websocket.mjs +289 -0
package/dist/integrations/websocket.mjs.map +1 -0
package/dist/interface-B01JvPVc.d.mts +78 -0
package/dist/interface-B01JvPVc.d.mts.map +1 -0
package/dist/interface-CZe8IkMf.d.mts +55 -0
package/dist/interface-CZe8IkMf.d.mts.map +1 -0
package/dist/interface-Ch8HU9uM.d.mts +1098 -0
package/dist/interface-Ch8HU9uM.d.mts.map +1 -0
package/dist/introspectionPlugin-rFdO8ZUa.mjs +54 -0
package/dist/introspectionPlugin-rFdO8ZUa.mjs.map +1 -0
package/dist/keys-BqNejWup.mjs +43 -0
package/dist/keys-BqNejWup.mjs.map +1 -0
package/dist/logger-Df2O2WsW.mjs +79 -0
package/dist/logger-Df2O2WsW.mjs.map +1 -0
package/dist/memory-cQgelFOj.mjs +144 -0
package/dist/memory-cQgelFOj.mjs.map +1 -0
package/dist/migrations/index.d.mts +157 -0
package/dist/migrations/index.d.mts.map +1 -0
package/dist/migrations/index.mjs +261 -0
package/dist/migrations/index.mjs.map +1 -0
package/dist/mongodb-BfJVlUJH.mjs +94 -0
package/dist/mongodb-BfJVlUJH.mjs.map +1 -0
package/dist/mongodb-CGzRbfAK.d.mts +119 -0
package/dist/mongodb-CGzRbfAK.d.mts.map +1 -0
package/dist/mongodb-JN-9JA7K.d.mts +72 -0
package/dist/mongodb-JN-9JA7K.d.mts.map +1 -0
package/dist/openapi-G3Cw7XuM.mjs +524 -0
package/dist/openapi-G3Cw7XuM.mjs.map +1 -0
package/dist/org/index.d.mts +69 -0
package/dist/org/index.d.mts.map +1 -0
package/dist/org/index.mjs +514 -0
package/dist/org/index.mjs.map +1 -0
package/dist/org/types.d.mts +83 -0
package/dist/org/types.d.mts.map +1 -0
package/dist/org/types.mjs +1 -0
package/dist/permissions/index.d.mts +279 -0
package/dist/permissions/index.d.mts.map +1 -0
package/dist/permissions/index.mjs +579 -0
package/dist/permissions/index.mjs.map +1 -0
package/dist/plugins/index.d.mts +173 -0
package/dist/plugins/index.d.mts.map +1 -0
package/dist/plugins/index.mjs +523 -0
package/dist/plugins/index.mjs.map +1 -0
package/dist/plugins/response-cache.d.mts +88 -0
package/dist/plugins/response-cache.d.mts.map +1 -0
package/dist/plugins/response-cache.mjs +284 -0
package/dist/plugins/response-cache.mjs.map +1 -0
package/dist/plugins/tracing-entry.d.mts +2 -0
package/dist/plugins/tracing-entry.mjs +186 -0
package/dist/plugins/tracing-entry.mjs.map +1 -0
package/dist/pluralize-CEweyOEm.mjs +87 -0
package/dist/pluralize-CEweyOEm.mjs.map +1 -0
package/dist/policies/{index.d.ts → index.d.mts} +204 -169
package/dist/policies/index.d.mts.map +1 -0
package/dist/policies/index.mjs +322 -0
package/dist/policies/index.mjs.map +1 -0
package/dist/presets/{index.d.ts → index.d.mts} +63 -131
package/dist/presets/index.d.mts.map +1 -0
package/dist/presets/index.mjs +144 -0
package/dist/presets/index.mjs.map +1 -0
package/dist/presets/multiTenant.d.mts +25 -0
package/dist/presets/multiTenant.d.mts.map +1 -0
package/dist/presets/multiTenant.mjs +114 -0
package/dist/presets/multiTenant.mjs.map +1 -0
package/dist/presets-BITljm96.mjs +120 -0
package/dist/presets-BITljm96.mjs.map +1 -0
package/dist/presets-DzSMwlKj.d.mts +58 -0
package/dist/presets-DzSMwlKj.d.mts.map +1 -0
package/dist/prisma-DJbMt3yf.mjs +628 -0
package/dist/prisma-DJbMt3yf.mjs.map +1 -0
package/dist/prisma-Dg9GoVdj.d.mts +275 -0
package/dist/prisma-Dg9GoVdj.d.mts.map +1 -0
package/dist/queryCachePlugin-7THaI5mt.d.mts +72 -0
package/dist/queryCachePlugin-7THaI5mt.d.mts.map +1 -0
package/dist/queryCachePlugin-DMBnp2Q0.mjs +139 -0
package/dist/queryCachePlugin-DMBnp2Q0.mjs.map +1 -0
package/dist/redis-D-JAeLtm.d.mts +50 -0
package/dist/redis-D-JAeLtm.d.mts.map +1 -0
package/dist/redis-stream-Bdh_vUU8.d.mts +104 -0
package/dist/redis-stream-Bdh_vUU8.d.mts.map +1 -0
package/dist/registry/index.d.mts +12 -0
package/dist/registry/index.d.mts.map +1 -0
package/dist/registry/index.mjs +4 -0
package/dist/requestContext-QQD6ROJc.mjs +56 -0
package/dist/requestContext-QQD6ROJc.mjs.map +1 -0
package/dist/schemaConverter-BwrmWroW.mjs +99 -0
package/dist/schemaConverter-BwrmWroW.mjs.map +1 -0
package/dist/schemas/index.d.mts +64 -0
package/dist/schemas/index.d.mts.map +1 -0
package/dist/schemas/index.mjs +83 -0
package/dist/schemas/index.mjs.map +1 -0
package/dist/scope/index.d.mts +22 -0
package/dist/scope/index.d.mts.map +1 -0
package/dist/scope/index.mjs +66 -0
package/dist/scope/index.mjs.map +1 -0
package/dist/sessionManager-jPKLbHE0.d.mts +187 -0
package/dist/sessionManager-jPKLbHE0.d.mts.map +1 -0
package/dist/sse-B3c3_yZp.mjs +124 -0
package/dist/sse-B3c3_yZp.mjs.map +1 -0
package/dist/testing/index.d.mts +908 -0
package/dist/testing/index.d.mts.map +1 -0
package/dist/testing/index.mjs +1977 -0
package/dist/testing/index.mjs.map +1 -0
package/dist/tracing-Cc7vVQPp.d.mts +71 -0
package/dist/tracing-Cc7vVQPp.d.mts.map +1 -0
package/dist/typeGuards-DhMNLuvU.mjs +10 -0
package/dist/typeGuards-DhMNLuvU.mjs.map +1 -0
package/dist/types/index.d.mts +947 -0
package/dist/types/index.d.mts.map +1 -0
package/dist/types/index.mjs +15 -0
package/dist/types/index.mjs.map +1 -0
package/dist/types-Beqn1Un7.mjs +39 -0
package/dist/types-Beqn1Un7.mjs.map +1 -0
package/dist/types-CIgB7UUl.d.mts +446 -0
package/dist/types-CIgB7UUl.d.mts.map +1 -0
package/dist/types-aYB4V7uN.d.mts +87 -0
package/dist/types-aYB4V7uN.d.mts.map +1 -0
package/dist/utils/index.d.mts +748 -0
package/dist/utils/index.d.mts.map +1 -0
package/dist/utils/index.mjs +6 -0
package/package.json +194 -68
package/dist/BaseController-DVAiHxEQ.d.ts +0 -233
package/dist/adapters/index.d.ts +0 -237
package/dist/adapters/index.js +0 -668
package/dist/arcCorePlugin-CsShQdyP.d.ts +0 -273
package/dist/audit/index.d.ts +0 -195
package/dist/audit/index.js +0 -319
package/dist/auth/index.d.ts +0 -47
package/dist/auth/index.js +0 -174
package/dist/cli/commands/docs.d.ts +0 -11
package/dist/cli/commands/docs.js +0 -474
package/dist/cli/commands/generate.js +0 -334
package/dist/cli/commands/introspect.d.ts +0 -8
package/dist/cli/commands/introspect.js +0 -338
package/dist/cli/index.d.ts +0 -4
package/dist/cli/index.js +0 -3269
package/dist/core/index.d.ts +0 -220
package/dist/core/index.js +0 -2786
package/dist/createApp-Ce9wl8W9.d.ts +0 -77
package/dist/docs/index.d.ts +0 -166
package/dist/docs/index.js +0 -658
package/dist/errors-8WIxGS_6.d.ts +0 -122
package/dist/events/index.d.ts +0 -117
package/dist/events/index.js +0 -89
package/dist/factory/index.d.ts +0 -38
package/dist/factory/index.js +0 -1652
package/dist/hooks/index.d.ts +0 -4
package/dist/hooks/index.js +0 -199
package/dist/idempotency/index.d.ts +0 -323
package/dist/idempotency/index.js +0 -500
package/dist/index-B4t03KQ0.d.ts +0 -1366
package/dist/index.d.ts +0 -135
package/dist/index.js +0 -4756
package/dist/migrations/index.d.ts +0 -185
package/dist/migrations/index.js +0 -274
package/dist/org/index.d.ts +0 -129
package/dist/org/index.js +0 -220
package/dist/permissions/index.d.ts +0 -144
package/dist/permissions/index.js +0 -103
package/dist/plugins/index.d.ts +0 -46
package/dist/plugins/index.js +0 -1069
package/dist/policies/index.js +0 -196
package/dist/presets/index.js +0 -384
package/dist/presets/multiTenant.d.ts +0 -39
package/dist/presets/multiTenant.js +0 -112
package/dist/registry/index.d.ts +0 -16
package/dist/registry/index.js +0 -253
package/dist/testing/index.d.ts +0 -618
package/dist/testing/index.js +0 -48020
package/dist/types/index.d.ts +0 -4
package/dist/types/index.js +0 -8
package/dist/types-B99TBmFV.d.ts +0 -76
package/dist/types-BvckRbs2.d.ts +0 -143
package/dist/utils/index.d.ts +0 -679
package/dist/utils/index.js +0 -931

package/dist/constants-DdXFXQtN.mjs ADDED Viewed

@@ -0,0 +1,85 @@
+//#region src/constants.ts
+/**
+* Arc Framework Constants — Single Source of Truth
+*
+* Every default value, magic string, and framework constant lives here.
+* Import from this module instead of hard-coding values inline.
+*
+* All exported values are deeply frozen (Object.freeze) to prevent
+* accidental mutation at runtime — inspired by Go's const blocks
+* and Rust's immutable-by-default philosophy.
+*/
+/** Standard CRUD operation names */
+const CRUD_OPERATIONS = Object.freeze([
+	"list",
+	"get",
+	"create",
+	"update",
+	"delete"
+]);
+/** Mutation operations that emit events */
+const MUTATION_OPERATIONS = Object.freeze([
+	"create",
+	"update",
+	"delete"
+]);
+/** Lifecycle hook phases */
+const HOOK_PHASES = Object.freeze([
+	"before",
+	"around",
+	"after"
+]);
+/** Hook operations (superset of CRUD — includes 'read' alias for 'get') */
+const HOOK_OPERATIONS = Object.freeze([
+	"create",
+	"update",
+	"delete",
+	"read",
+	"list"
+]);
+/** Default items per page */
+const DEFAULT_LIMIT = 20;
+/** Maximum items per page (framework-wide ceiling) */
+const DEFAULT_MAX_LIMIT = 1e3;
+/** Default sort field (descending creation date) */
+const DEFAULT_SORT = "-createdAt";
+/** Default primary key field name */
+const DEFAULT_ID_FIELD = "_id";
+/** Default multi-tenant scoping field */
+const DEFAULT_TENANT_FIELD = "organizationId";
+/** Default HTTP method for update routes */
+const DEFAULT_UPDATE_METHOD = "PATCH";
+/** System-managed fields that cannot be set via request body */
+const SYSTEM_FIELDS = Object.freeze([
+	"_id",
+	"__v",
+	"createdAt",
+	"updatedAt",
+	"deletedAt"
+]);
+/** Maximum regex pattern length (ReDoS mitigation) */
+const MAX_REGEX_LENGTH = 200;
+/** Maximum search query length */
+const MAX_SEARCH_LENGTH = 200;
+/** Maximum filter nesting depth (prevents filter bombs) */
+const MAX_FILTER_DEPTH = 10;
+/**
+* Query parameters consumed by the framework — never treated as filters.
+* Shared by all query parsers (Arc built-in, Prisma, custom).
+*/
+const RESERVED_QUERY_PARAMS = Object.freeze(new Set([
+	"page",
+	"limit",
+	"sort",
+	"populate",
+	"search",
+	"select",
+	"after",
+	"cursor",
+	"lean",
+	"_policyFilters"
+]));
+//#endregion
+export { DEFAULT_SORT as a, HOOK_OPERATIONS as c, MAX_REGEX_LENGTH as d, MAX_SEARCH_LENGTH as f, SYSTEM_FIELDS as h, DEFAULT_MAX_LIMIT as i, HOOK_PHASES as l, RESERVED_QUERY_PARAMS as m, DEFAULT_ID_FIELD as n, DEFAULT_TENANT_FIELD as o, MUTATION_OPERATIONS as p, DEFAULT_LIMIT as r, DEFAULT_UPDATE_METHOD as s, CRUD_OPERATIONS as t, MAX_FILTER_DEPTH as u };
+//# sourceMappingURL=constants-DdXFXQtN.mjs.map

package/dist/constants-DdXFXQtN.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"constants-DdXFXQtN.mjs","names":[],"sources":["../src/constants.ts"],"sourcesContent":["/**\n * Arc Framework Constants — Single Source of Truth\n *\n * Every default value, magic string, and framework constant lives here.\n * Import from this module instead of hard-coding values inline.\n *\n * All exported values are deeply frozen (Object.freeze) to prevent\n * accidental mutation at runtime — inspired by Go's const blocks\n * and Rust's immutable-by-default philosophy.\n */\n\n// ============================================================================\n// CRUD Operations\n// ============================================================================\n\n/** Standard CRUD operation names */\nexport const CRUD_OPERATIONS = Object.freeze(\n ['list', 'get', 'create', 'update', 'delete'] as const,\n);\nexport type CrudOperation = (typeof CRUD_OPERATIONS)[number];\n\n/** Mutation operations that emit events */\nexport const MUTATION_OPERATIONS = Object.freeze(\n ['create', 'update', 'delete'] as const,\n);\nexport type MutationOperation = (typeof MUTATION_OPERATIONS)[number];\n\n// ============================================================================\n// Hook Phases\n// ============================================================================\n\n/** Lifecycle hook phases */\nexport const HOOK_PHASES = Object.freeze(\n ['before', 'around', 'after'] as const,\n);\nexport type HookPhase = (typeof HOOK_PHASES)[number];\n\n/** Hook operations (superset of CRUD — includes 'read' alias for 'get') */\nexport const HOOK_OPERATIONS = Object.freeze(\n ['create', 'update', 'delete', 'read', 'list'] as const,\n);\nexport type HookOperation = (typeof HOOK_OPERATIONS)[number];\n\n// ============================================================================\n// Pagination & Query Defaults\n// ============================================================================\n\n/** Default items per page */\nexport const DEFAULT_LIMIT = 20 as const;\n\n/** Maximum items per page (framework-wide ceiling) */\nexport const DEFAULT_MAX_LIMIT = 1000 as const;\n\n/** Default sort field (descending creation date) */\nexport const DEFAULT_SORT = '-createdAt' as const;\n\n// ============================================================================\n// Field & Schema Defaults\n// ============================================================================\n\n/** Default primary key field name */\nexport const DEFAULT_ID_FIELD = '_id' as const;\n\n/** Default multi-tenant scoping field */\nexport const DEFAULT_TENANT_FIELD = 'organizationId' as const;\n\n/** Default HTTP method for update routes */\nexport const DEFAULT_UPDATE_METHOD = 'PATCH' as const;\n\n/** System-managed fields that cannot be set via request body */\nexport const SYSTEM_FIELDS = Object.freeze(\n ['_id', '__v', 'createdAt', 'updatedAt', 'deletedAt'] as const,\n);\n\n// ============================================================================\n// Security Limits\n// ============================================================================\n\n/** Maximum regex pattern length (ReDoS mitigation) */\nexport const MAX_REGEX_LENGTH = 200 as const;\n\n/** Maximum search query length */\nexport const MAX_SEARCH_LENGTH = 200 as const;\n\n/** Maximum filter nesting depth (prevents filter bombs) */\nexport const MAX_FILTER_DEPTH = 10 as const;\n\n// ============================================================================\n// Reserved Query Parameters\n// ============================================================================\n\n/**\n * Query parameters consumed by the framework — never treated as filters.\n * Shared by all query parsers (Arc built-in, Prisma, custom).\n */\nexport const RESERVED_QUERY_PARAMS = Object.freeze(\n new Set([\n 'page',\n 'limit',\n 'sort',\n 'populate',\n 'search',\n 'select',\n 'after',\n 'cursor',\n 'lean',\n '_policyFilters',\n ]),\n);\n"],"mappings":";;;;;;;;;;;;AAgBA,MAAa,kBAAkB,OAAO,OACpC;CAAC;CAAQ;CAAO;CAAU;CAAU;CAAS,CAC9C;;AAID,MAAa,sBAAsB,OAAO,OACxC;CAAC;CAAU;CAAU;CAAS,CAC/B;;AAQD,MAAa,cAAc,OAAO,OAChC;CAAC;CAAU;CAAU;CAAQ,CAC9B;;AAID,MAAa,kBAAkB,OAAO,OACpC;CAAC;CAAU;CAAU;CAAU;CAAQ;CAAO,CAC/C;;AAQD,MAAa,gBAAgB;;AAG7B,MAAa,oBAAoB;;AAGjC,MAAa,eAAe;;AAO5B,MAAa,mBAAmB;;AAGhC,MAAa,uBAAuB;;AAGpC,MAAa,wBAAwB;;AAGrC,MAAa,gBAAgB,OAAO,OAClC;CAAC;CAAO;CAAO;CAAa;CAAa;CAAY,CACtD;;AAOD,MAAa,mBAAmB;;AAGhC,MAAa,oBAAoB;;AAGjC,MAAa,mBAAmB;;;;;AAUhC,MAAa,wBAAwB,OAAO,OAC1C,IAAI,IAAI;CACN;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACD,CAAC,CACH"}

package/dist/core/index.d.mts ADDED Viewed

@@ -0,0 +1,5 @@
+import "../elevation-B_2dRLVP.mjs";
+import { E as defineResource, T as ResourceDefinition, c as BaseController, d as QueryResolverConfig, f as BodySanitizer, h as AccessControlConfig, l as BaseControllerOptions, m as AccessControl, p as BodySanitizerConfig, u as QueryResolver } from "../interface-Ch8HU9uM.mjs";
+import "../types-aYB4V7uN.mjs";
+import { A as createCrudRouter, C as MutationOperation, D as ActionRouterConfig, E as ActionHandler, O as IdempotencyService, S as MUTATION_OPERATIONS, T as SYSTEM_FIELDS, _ as HookOperation, a as getControllerScope, b as MAX_REGEX_LENGTH, c as CrudOperation, d as DEFAULT_MAX_LIMIT, f as DEFAULT_SORT, g as HOOK_PHASES, h as HOOK_OPERATIONS, i as getControllerContext, j as createPermissionMiddleware, k as createActionRouter, l as DEFAULT_ID_FIELD, m as DEFAULT_UPDATE_METHOD, n as createFastifyHandler, o as sendControllerResponse, p as DEFAULT_TENANT_FIELD, r as createRequestContext, s as CRUD_OPERATIONS, t as createCrudHandlers, u as DEFAULT_LIMIT, v as HookPhase, w as RESERVED_QUERY_PARAMS, x as MAX_SEARCH_LENGTH, y as MAX_FILTER_DEPTH } from "../fastifyAdapter-BkrGrlFi.mjs";
+export { AccessControl, type AccessControlConfig, type ActionHandler, type ActionRouterConfig, BaseController, type BaseControllerOptions, BodySanitizer, type BodySanitizerConfig, CRUD_OPERATIONS, CrudOperation, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, HOOK_OPERATIONS, HOOK_PHASES, HookOperation, HookPhase, type IdempotencyService, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, MutationOperation, QueryResolver, type QueryResolverConfig, RESERVED_QUERY_PARAMS, ResourceDefinition, SYSTEM_FIELDS, createActionRouter, createCrudHandlers, createCrudRouter, createFastifyHandler, createPermissionMiddleware, createRequestContext, defineResource, getControllerContext, getControllerScope, sendControllerResponse };

package/dist/core/index.mjs ADDED Viewed

@@ -0,0 +1,4 @@
+import { a as DEFAULT_SORT, c as HOOK_OPERATIONS, d as MAX_REGEX_LENGTH, f as MAX_SEARCH_LENGTH, h as SYSTEM_FIELDS, i as DEFAULT_MAX_LIMIT, l as HOOK_PHASES, m as RESERVED_QUERY_PARAMS, n as DEFAULT_ID_FIELD, o as DEFAULT_TENANT_FIELD, p as MUTATION_OPERATIONS, r as DEFAULT_LIMIT, s as DEFAULT_UPDATE_METHOD, t as CRUD_OPERATIONS, u as MAX_FILTER_DEPTH } from "../constants-DdXFXQtN.mjs";
+import { _ as QueryResolver, c as createPermissionMiddleware, d as createFastifyHandler, f as createRequestContext, g as BaseController, h as sendControllerResponse, m as getControllerScope, n as defineResource, o as createActionRouter, p as getControllerContext, s as createCrudRouter, t as ResourceDefinition, u as createCrudHandlers, v as BodySanitizer, y as AccessControl } from "../defineResource-k0_BDn8v.mjs";
+export { AccessControl, BaseController, BodySanitizer, CRUD_OPERATIONS, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, HOOK_OPERATIONS, HOOK_PHASES, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, QueryResolver, RESERVED_QUERY_PARAMS, ResourceDefinition, SYSTEM_FIELDS, createActionRouter, createCrudHandlers, createCrudRouter, createFastifyHandler, createPermissionMiddleware, createRequestContext, defineResource, getControllerContext, getControllerScope, sendControllerResponse };

package/dist/createApp-CUgNqegw.mjs ADDED Viewed

@@ -0,0 +1,560 @@
+import { t as __exportAll } from "./chunk-C7Uep-_p.mjs";
+import { n as PUBLIC_SCOPE } from "./types-Beqn1Un7.mjs";
+import Fastify from "fastify";
+import qs from "qs";
+//#region src/factory/presets.ts
+/**
+* Production preset - strict security, performance optimized
+*/
+const productionPreset = {
+	logger: {
+		level: "info",
+		redact: {
+			paths: [
+				"req.headers.authorization",
+				"req.headers.cookie",
+				"req.headers[\"set-cookie\"]",
+				"*.password",
+				"*.secret",
+				"*.token",
+				"*.accessToken",
+				"*.refreshToken",
+				"*.creditCard"
+			],
+			censor: "[REDACTED]"
+		}
+	},
+	trustProxy: true,
+	helmet: { contentSecurityPolicy: { directives: {
+		defaultSrc: ["'self'"],
+		styleSrc: ["'self'", "'unsafe-inline'"],
+		scriptSrc: ["'self'"],
+		imgSrc: [
+			"'self'",
+			"data:",
+			"https:"
+		]
+	} } },
+	cors: {
+		origin: false,
+		credentials: true,
+		methods: [
+			"GET",
+			"POST",
+			"PUT",
+			"DELETE",
+			"PATCH",
+			"OPTIONS"
+		],
+		allowedHeaders: [
+			"Content-Type",
+			"Authorization",
+			"Accept"
+		]
+	},
+	rateLimit: {
+		max: 100,
+		timeWindow: "1 minute"
+	},
+	underPressure: {
+		exposeStatusRoute: true,
+		maxEventLoopDelay: 1e3,
+		maxHeapUsedBytes: 1024 * 1024 * 1024,
+		maxRssBytes: 1024 * 1024 * 1024
+	}
+};
+/**
+* Development preset - relaxed security, verbose logging
+*/
+const developmentPreset = {
+	logger: {
+		level: "debug",
+		transport: {
+			target: "pino-pretty",
+			options: {
+				colorize: true,
+				translateTime: "SYS:HH:MM:ss",
+				ignore: "pid,hostname"
+			}
+		}
+	},
+	trustProxy: true,
+	helmet: { contentSecurityPolicy: false },
+	cors: {
+		origin: true,
+		credentials: true,
+		methods: [
+			"GET",
+			"POST",
+			"PUT",
+			"DELETE",
+			"PATCH",
+			"OPTIONS"
+		],
+		allowedHeaders: [
+			"Content-Type",
+			"Authorization",
+			"Accept"
+		]
+	},
+	rateLimit: {
+		max: 1e3,
+		timeWindow: "1 minute"
+	},
+	underPressure: {
+		exposeStatusRoute: true,
+		maxEventLoopDelay: 5e3
+	}
+};
+/**
+* Testing preset - minimal setup, fast startup
+*/
+const testingPreset = {
+	logger: false,
+	trustProxy: false,
+	helmet: false,
+	cors: false,
+	rateLimit: false,
+	underPressure: false,
+	sensible: true,
+	multipart: { limits: {
+		fileSize: 1024 * 1024,
+		files: 5
+	} }
+};
+/**
+* Edge/Serverless preset - minimal cold-start overhead
+*
+* Optimized for AWS Lambda, Vercel, Cloudflare Workers, and similar environments.
+* Disables all heavy plugins that add cold-start latency:
+* - Security headers (handled by API Gateway / CDN)
+* - Rate limiting (handled by API Gateway / CDN)
+* - Health monitoring (Lambda has its own health checks)
+* - File uploads (use pre-signed URLs instead)
+* - Raw body parsing (register per-route if needed)
+*
+* Arc core plugins (requestId, health, gracefulShutdown) are also disabled
+* since the serverless runtime manages request lifecycle.
+*/
+const edgePreset = {
+	logger: { level: "warn" },
+	trustProxy: true,
+	helmet: false,
+	cors: false,
+	rateLimit: false,
+	underPressure: false,
+	sensible: true,
+	multipart: false,
+	rawBody: false,
+	arcPlugins: {
+		requestId: false,
+		health: false,
+		gracefulShutdown: false,
+		emitEvents: true
+	}
+};
+/**
+* Get preset by name
+*/
+function getPreset(name) {
+	switch (name) {
+		case "production": return productionPreset;
+		case "development": return developmentPreset;
+		case "testing": return testingPreset;
+		case "edge": return edgePreset;
+		default: throw new Error(`Unknown preset: ${name}`);
+	}
+}
+//#endregion
+//#region src/factory/createApp.ts
+/**
+* ArcFactory - Production-ready Fastify application factory
+*
+* Enforces security best practices by making plugins opt-out instead of opt-in.
+* A developer must explicitly disable security features rather than forget to enable them.
+*
+* Note: Arc is database-agnostic. Connect your database separately and provide
+* adapters when defining resources. This allows multiple databases, custom
+* connection pooling, and full control over your data layer.
+*
+* @example
+* // 1. Connect your database(s) separately
+* import mongoose from 'mongoose';
+* await mongoose.connect(process.env.MONGO_URI);
+*
+* // 2. Create Arc app (no database config needed)
+* const app = await createApp({
+*   preset: 'production',
+*   auth: { type: 'jwt', jwt: { secret: process.env.JWT_SECRET } },
+*   cors: { origin: ['https://example.com'] },
+* });
+*
+* // 3. Register resources with your adapters
+* await app.register(productResource.toPlugin());
+*
+* @example
+* // Multiple databases example
+* const primaryDb = await mongoose.connect(process.env.PRIMARY_DB);
+* const analyticsDb = mongoose.createConnection(process.env.ANALYTICS_DB);
+*
+* const orderResource = defineResource({
+*   adapter: createMongooseAdapter({ model: OrderModel, repository: orderRepo }),
+* });
+*
+* const analyticsResource = defineResource({
+*   adapter: createMongooseAdapter({ model: AnalyticsModel, repository: analyticsRepo }),
+* });
+*/
+var createApp_exports = /* @__PURE__ */ __exportAll({
+	ArcFactory: () => ArcFactory,
+	createApp: () => createApp
+});
+const PLUGIN_REGISTRY = {
+	cors: {
+		package: "@fastify/cors",
+		loader: () => import("@fastify/cors").then((m) => m.default)
+	},
+	helmet: {
+		package: "@fastify/helmet",
+		loader: () => import("@fastify/helmet").then((m) => m.default)
+	},
+	rateLimit: {
+		package: "@fastify/rate-limit",
+		loader: () => import("@fastify/rate-limit").then((m) => m.default)
+	},
+	underPressure: {
+		package: "@fastify/under-pressure",
+		loader: () => import("@fastify/under-pressure").then((m) => m.default)
+	},
+	sensible: {
+		package: "@fastify/sensible",
+		loader: () => import("@fastify/sensible").then((m) => m.default)
+	},
+	multipart: {
+		package: "@fastify/multipart",
+		loader: () => import("@fastify/multipart").then((m) => m.default),
+		optional: true
+	},
+	rawBody: {
+		package: "fastify-raw-body",
+		loader: () => import("fastify-raw-body").then((m) => m.default),
+		optional: true
+	}
+};
+async function loadPlugin(name, logger) {
+	const entry = PLUGIN_REGISTRY[name];
+	if (!entry) throw new Error(`Unknown plugin: ${name}`);
+	try {
+		return await entry.loader();
+	} catch (error) {
+		const err = error;
+		const isModuleNotFound = err.message.includes("Cannot find module") || err.message.includes("Cannot find package") || err.message.includes("MODULE_NOT_FOUND") || err.message.includes("Could not resolve");
+		if (isModuleNotFound && entry.optional) {
+			logger?.warn(`Optional plugin '${name}' skipped (${entry.package} not installed)`);
+			return null;
+		}
+		if (isModuleNotFound) throw new Error(`Plugin '${name}' requires package '${entry.package}' which is not installed.\nInstall it with: npm install ${entry.package}\nOr disable this plugin by setting ${name}: false in createApp options.`);
+		throw new Error(`Failed to load plugin '${name}': ${err.message}`);
+	}
+}
+/**
+* Create a production-ready Fastify application with Arc framework
+*
+* Security plugins are enabled by default (opt-out):
+* - helmet (security headers)
+* - cors (cross-origin requests)
+* - rateLimit (DDoS protection)
+* - underPressure (health monitoring)
+*
+* Note: Compression is not included due to known Fastify 5 issues.
+* Use a reverse proxy (Nginx, Caddy) or CDN for compression.
+*
+* @param options - Application configuration
+* @returns Configured Fastify instance
+*/
+async function createApp(options) {
+	if (options.debug !== void 0 && options.debug !== false) {
+		const { configureArcLogger } = await import("./logger-Df2O2WsW.mjs").then((n) => n.r);
+		configureArcLogger({ debug: options.debug });
+	}
+	const authConfig = options.auth;
+	const isAuthDisabled = authConfig === false;
+	if (!isAuthDisabled && authConfig && authConfig.type === "jwt") {
+		if (!authConfig.jwt?.secret && !authConfig.authenticate) throw new Error("createApp: JWT secret required when Arc auth is enabled.\nProvide auth.jwt.secret, auth.authenticate, or set auth: false to disable.\nExample: auth: { type: 'jwt', jwt: { secret: process.env.JWT_SECRET } }");
+	}
+	if (options.runtime === "distributed") {
+		const MEMORY_NAMES = new Set(["memory", "memory-cache"]);
+		const missing = [];
+		const eventsTransport = options.stores?.events;
+		if (!eventsTransport || MEMORY_NAMES.has(eventsTransport.name)) missing.push("events transport");
+		const cacheStore = options.stores?.cache;
+		if (!cacheStore || MEMORY_NAMES.has(cacheStore.name)) missing.push("cache store");
+		const idempotencyStore = options.stores?.idempotency;
+		if (!idempotencyStore || MEMORY_NAMES.has(idempotencyStore.name)) missing.push("idempotency store");
+		if (options.arcPlugins?.queryCache) {
+			const qcStore = options.stores?.queryCache;
+			if (!qcStore || MEMORY_NAMES.has(qcStore.name)) missing.push("queryCache store");
+		}
+		if (missing.length > 0) throw new Error(`[Arc] runtime: 'distributed' requires Redis/durable adapters.\nMissing: ${missing.join(", ")}.\nProvide Redis-backed stores or use runtime: 'memory' for development.`);
+	}
+	const config = {
+		...options.preset ? getPreset(options.preset) : {},
+		...options
+	};
+	let fastify = Fastify({
+		logger: config.logger ?? true,
+		trustProxy: config.trustProxy ?? false,
+		routerOptions: { querystringParser: (str) => qs.parse(str) },
+		ajv: { customOptions: {
+			coerceTypes: true,
+			useDefaults: true,
+			removeAdditional: false,
+			keywords: ["example"]
+		} }
+	});
+	if (config.typeProvider === "typebox") try {
+		const { TypeBoxValidatorCompiler } = await import("@fastify/type-provider-typebox");
+		fastify.setValidatorCompiler(TypeBoxValidatorCompiler);
+		fastify.log.debug("TypeBox type provider enabled");
+	} catch {
+		fastify.log.warn("typeProvider: \"typebox\" requested but @fastify/type-provider-typebox is not installed. Install it with: npm install @sinclair/typebox @fastify/type-provider-typebox");
+	}
+	fastify.removeContentTypeParser("application/json");
+	fastify.addContentTypeParser("application/json", { parseAs: "string" }, (_req, body, done) => {
+		if (!body || body.length === 0) return done(null, void 0);
+		try {
+			done(null, JSON.parse(body));
+		} catch (err) {
+			done(err);
+		}
+	});
+	if (config.helmet !== false) {
+		const helmet = await loadPlugin("helmet");
+		await fastify.register(helmet, config.helmet ?? {});
+		fastify.log.debug("Helmet (security headers) enabled");
+	} else fastify.log.warn("Helmet disabled - security headers not applied");
+	if (config.cors !== false) {
+		const cors = await loadPlugin("cors");
+		const corsOptions = config.cors ?? {};
+		if (config.preset === "production" && (!corsOptions || !("origin" in corsOptions))) throw new Error("CORS origin must be explicitly configured in production.\nSet cors.origin to allowed domains or set cors: false to disable.\nExample: cors: { origin: ['https://yourdomain.com'] }\nDocs: https://github.com/classytic/arc#security");
+		await fastify.register(cors, corsOptions);
+		fastify.log.debug("CORS enabled");
+	} else fastify.log.warn("CORS disabled");
+	if (config.rateLimit !== false) {
+		const rateLimit = await loadPlugin("rateLimit");
+		const rateLimitOpts = config.rateLimit ?? {
+			max: 100,
+			timeWindow: "1 minute"
+		};
+		await fastify.register(rateLimit, rateLimitOpts);
+		if (config.preset === "production") {
+			if (!(typeof rateLimitOpts === "object" && "store" in rateLimitOpts)) fastify.log.warn("Rate limiting is using in-memory store. In multi-instance deployments, each instance tracks limits independently. Configure a Redis store for distributed rate limiting: rateLimit: { store: new RedisStore({ ... }) }");
+		}
+		fastify.log.debug("Rate limiting enabled");
+	} else fastify.log.warn("Rate limiting disabled");
+	if (config.preset === "production") fastify.log.warn("Response compression is not enabled (Fastify 5 stream issues). Use a reverse proxy (Nginx, Caddy, Cloudflare) for gzip/brotli in production.");
+	if (config.underPressure !== false) {
+		const underPressure = await loadPlugin("underPressure");
+		await fastify.register(underPressure, config.underPressure ?? { exposeStatusRoute: true });
+		fastify.log.debug("Health monitoring (under-pressure) enabled");
+	} else fastify.log.debug("Health monitoring disabled");
+	if (config.sensible !== false) {
+		const sensible = await loadPlugin("sensible");
+		await fastify.register(sensible);
+		fastify.log.debug("Sensible (HTTP helpers) enabled");
+	}
+	if (config.multipart !== false) {
+		const multipart = await loadPlugin("multipart", fastify.log);
+		if (multipart) {
+			await fastify.register(multipart, {
+				limits: {
+					fileSize: 10 * 1024 * 1024,
+					files: 10
+				},
+				throwFileSizeLimit: true,
+				...config.multipart
+			});
+			fastify.log.debug("Multipart (file uploads) enabled");
+		}
+	}
+	if (config.rawBody !== false) {
+		const rawBody = await loadPlugin("rawBody", fastify.log);
+		if (rawBody) {
+			await fastify.register(rawBody, {
+				field: "rawBody",
+				global: false,
+				encoding: "utf8",
+				runFirst: true,
+				...config.rawBody
+			});
+			fastify.log.debug("Raw body parsing enabled");
+		}
+	}
+	const { arcCorePlugin, requestIdPlugin, healthPlugin, gracefulShutdownPlugin } = await import("./plugins/index.mjs");
+	await fastify.register(arcCorePlugin, { emitEvents: config.arcPlugins?.emitEvents !== false });
+	/** Track a plugin in the Arc plugin registry */
+	const trackPlugin = (name, opts) => {
+		fastify.arc.plugins.set(name, {
+			name,
+			options: opts,
+			registeredAt: (/* @__PURE__ */ new Date()).toISOString()
+		});
+	};
+	trackPlugin("arc-core");
+	if (config.arcPlugins?.events !== false) {
+		const { default: eventPlugin } = await import("./eventPlugin-DGR_B2on.mjs").then((n) => n.n);
+		const eventOpts = typeof config.arcPlugins?.events === "object" ? config.arcPlugins.events : {};
+		await fastify.register(eventPlugin, {
+			...eventOpts,
+			transport: options.stores?.events
+		});
+		trackPlugin("arc-events", eventOpts);
+		fastify.log.debug(`Arc events plugin enabled (transport: ${fastify.events.transportName})`);
+	}
+	if (config.arcPlugins?.requestId !== false) {
+		await fastify.register(requestIdPlugin);
+		trackPlugin("arc-request-id");
+		fastify.log.debug("Arc requestId plugin enabled");
+	}
+	if (config.arcPlugins?.health !== false) {
+		await fastify.register(healthPlugin);
+		trackPlugin("arc-health");
+		fastify.log.debug("Arc health plugin enabled");
+	}
+	if (config.arcPlugins?.gracefulShutdown !== false) {
+		await fastify.register(gracefulShutdownPlugin);
+		trackPlugin("arc-graceful-shutdown");
+		fastify.log.debug("Arc gracefulShutdown plugin enabled");
+	}
+	if (config.arcPlugins?.caching) {
+		const { default: cachingPlugin } = await import("./caching-Bl28lYsR.mjs").then((n) => n.r);
+		const cachingOpts = config.arcPlugins.caching === true ? {} : config.arcPlugins.caching;
+		await fastify.register(cachingPlugin, cachingOpts);
+		trackPlugin("arc-caching", cachingOpts);
+		fastify.log.debug("Arc caching plugin enabled");
+	}
+	if (config.arcPlugins?.queryCache) {
+		const { queryCachePlugin } = await import("./queryCachePlugin-DMBnp2Q0.mjs").then((n) => n.n);
+		const qcOpts = config.arcPlugins.queryCache === true ? {} : config.arcPlugins.queryCache;
+		const store = options.stores?.queryCache ?? new (await (import("./memory-cQgelFOj.mjs").then((n) => n.n))).MemoryCacheStore();
+		await fastify.register(queryCachePlugin, {
+			store,
+			...qcOpts
+		});
+		trackPlugin("arc-query-cache", qcOpts);
+		fastify.log.debug("Arc queryCache plugin enabled");
+	}
+	if (config.arcPlugins?.sse) if (config.arcPlugins?.events === false) fastify.log.warn("SSE plugin requires events plugin (arcPlugins.events). SSE disabled.");
+	else {
+		const { default: ssePlugin } = await import("./sse-B3c3_yZp.mjs").then((n) => n.r);
+		const sseOpts = config.arcPlugins.sse === true ? {} : config.arcPlugins.sse;
+		await fastify.register(ssePlugin, sseOpts);
+		trackPlugin("arc-sse", sseOpts);
+		fastify.log.debug("Arc SSE plugin enabled");
+	}
+	fastify.decorateRequest("scope", null);
+	fastify.addHook("onRequest", async (request) => {
+		if (!request.scope) request.scope = PUBLIC_SCOPE;
+	});
+	if (isAuthDisabled) fastify.log.debug("Authentication disabled");
+	else if (authConfig) switch (authConfig.type) {
+		case "betterAuth": {
+			const { plugin, openapi } = authConfig.betterAuth;
+			await fastify.register(plugin);
+			trackPlugin("auth-better-auth");
+			if (openapi && !fastify.arc.externalOpenApiPaths.includes(openapi)) fastify.arc.externalOpenApiPaths.push(openapi);
+			fastify.log.debug("Better Auth authentication enabled");
+			break;
+		}
+		case "custom":
+			await fastify.register(authConfig.plugin);
+			trackPlugin("auth-custom");
+			fastify.log.debug("Custom authentication plugin enabled");
+			break;
+		case "authenticator": {
+			const { authenticate } = authConfig;
+			fastify.decorate("authenticate", async function(request, reply) {
+				await authenticate(request, reply);
+			});
+			trackPlugin("auth-authenticator");
+			fastify.log.debug("Custom authenticator enabled");
+			break;
+		}
+		case "jwt": {
+			const { authPlugin } = await import("./auth/index.mjs");
+			const { type: _, ...arcAuthOpts } = authConfig;
+			await fastify.register(authPlugin, arcAuthOpts);
+			trackPlugin("auth-jwt");
+			fastify.log.debug("Arc authentication plugin enabled");
+			break;
+		}
+	}
+	if (config.elevation) {
+		const { elevationPlugin } = await import("./elevation-BRy3yFWT.mjs").then((n) => n.r);
+		await fastify.register(elevationPlugin, config.elevation);
+		trackPlugin("arc-elevation", config.elevation);
+		fastify.log.debug("Elevation plugin enabled");
+	}
+	if (config.errorHandler !== false) {
+		const { errorHandlerPlugin } = await import("./errorHandler-C1okiriz.mjs").then((n) => n.n);
+		const errorOpts = typeof config.errorHandler === "object" ? config.errorHandler : { includeStack: config.preset !== "production" };
+		await fastify.register(errorHandlerPlugin, errorOpts);
+		trackPlugin("arc-error-handler", errorOpts);
+		fastify.log.debug("Arc error handler enabled");
+	}
+	if (config.plugins) {
+		await config.plugins(fastify);
+		fastify.log.debug("Custom plugins registered");
+	}
+	if (config.onReady) {
+		const onReady = config.onReady;
+		fastify.addHook("onReady", async () => {
+			await onReady(fastify);
+		});
+	}
+	if (config.onClose) {
+		const onClose = config.onClose;
+		fastify.addHook("onClose", async () => {
+			await onClose(fastify);
+		});
+	}
+	const authMode = isAuthDisabled ? "none" : authConfig ? authConfig.type : "none";
+	fastify.log.info({
+		preset: config.preset ?? "custom",
+		runtime: config.runtime ?? "memory",
+		auth: authMode,
+		helmet: config.helmet !== false,
+		cors: config.cors !== false,
+		rateLimit: config.rateLimit !== false
+	}, "Arc application created");
+	return fastify;
+}
+/**
+* Quick factory for common scenarios
+*/
+const ArcFactory = {
+	async production(options) {
+		return createApp({
+			...options,
+			preset: "production"
+		});
+	},
+	async development(options) {
+		return createApp({
+			...options,
+			preset: "development"
+		});
+	},
+	async testing(options) {
+		return createApp({
+			...options,
+			preset: "testing"
+		});
+	}
+};
+//#endregion
+export { getPreset as a, developmentPreset as i, createApp as n, productionPreset as o, createApp_exports as r, testingPreset as s, ArcFactory as t };
+//# sourceMappingURL=createApp-CUgNqegw.mjs.map