@classytic/arc 2.4.3 → 2.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (78) hide show
  1. package/README.md +22 -6
  2. package/dist/{BaseController-CkM5dUh_.mjs → BaseController-AbbRx3e0.mjs} +5 -2
  3. package/dist/adapters/index.d.mts +2 -2
  4. package/dist/adapters/index.mjs +1 -1
  5. package/dist/{adapters-DTC4Ug66.mjs → adapters-CTn28N4y.mjs} +72 -11
  6. package/dist/audit/index.d.mts +1 -1
  7. package/dist/audit/index.mjs +11 -1
  8. package/dist/audit/mongodb.d.mts +1 -1
  9. package/dist/auth/index.d.mts +1 -1
  10. package/dist/auth/index.mjs +2 -2
  11. package/dist/cli/commands/init.mjs +12 -9
  12. package/dist/core/index.d.mts +2 -2
  13. package/dist/core/index.mjs +2 -2
  14. package/dist/{createApp-CBgVaFyh.mjs → createApp-Bol7DLUf.mjs} +404 -279
  15. package/dist/{defineResource-B22gcNvn.mjs → defineResource-bVKHjQzE.mjs} +116 -19
  16. package/dist/discovery/index.mjs +1 -1
  17. package/dist/docs/index.d.mts +1 -1
  18. package/dist/dynamic/index.d.mts +1 -1
  19. package/dist/dynamic/index.mjs +2 -2
  20. package/dist/{elevation-Ca_yveIO.d.mts → elevation-C_taLQrM.d.mts} +27 -1
  21. package/dist/{errorHandler-DMbGdzBG.mjs → errorHandler-r2595m8T.mjs} +1 -1
  22. package/dist/{errors-CPpvPHT0.d.mts → errors-CcVbl1-T.d.mts} +17 -1
  23. package/dist/{errors-rxhfP7Hf.mjs → errors-NoQKsbAT.mjs} +23 -1
  24. package/dist/{eventPlugin-iGrSEmwJ.d.mts → eventPlugin-DW45v4V5.d.mts} +30 -2
  25. package/dist/events/index.d.mts +2 -2
  26. package/dist/events/index.mjs +40 -10
  27. package/dist/factory/index.d.mts +44 -23
  28. package/dist/factory/index.mjs +136 -2
  29. package/dist/hooks/index.d.mts +1 -1
  30. package/dist/idempotency/index.d.mts +3 -3
  31. package/dist/idempotency/mongodb.d.mts +1 -1
  32. package/dist/idempotency/redis.d.mts +1 -1
  33. package/dist/{index-yhxyjqNb.d.mts → index-BIsZ_su5.d.mts} +4 -8
  34. package/dist/{index-BL8CaQih.d.mts → index-Cb3gtbg7.d.mts} +2 -2
  35. package/dist/{index-Diqcm14c.d.mts → index-NGZksqM5.d.mts} +30 -1
  36. package/dist/index.d.mts +6 -6
  37. package/dist/index.mjs +8 -7
  38. package/dist/integrations/event-gateway.mjs +1 -1
  39. package/dist/integrations/index.d.mts +1 -1
  40. package/dist/integrations/mcp/index.d.mts +4 -2
  41. package/dist/integrations/mcp/index.mjs +1 -1
  42. package/dist/integrations/mcp/testing.d.mts +1 -1
  43. package/dist/integrations/mcp/testing.mjs +1 -1
  44. package/dist/{interface-DGmPxakH.d.mts → interface-DDW43OmS.d.mts} +194 -13
  45. package/dist/{mongodb-CUpYfxfD.d.mts → mongodb-kltrBPa1.d.mts} +10 -0
  46. package/dist/{mongodb-bga9AbkD.d.mts → mongodb-pMvOlR5_.d.mts} +1 -1
  47. package/dist/org/index.d.mts +1 -1
  48. package/dist/org/index.mjs +1 -1
  49. package/dist/permissions/index.d.mts +2 -2
  50. package/dist/permissions/index.mjs +2 -2
  51. package/dist/{permissions-Jk5x3sxz.mjs → permissions-C8ImI8gC.mjs} +44 -2
  52. package/dist/plugins/index.d.mts +1 -1
  53. package/dist/plugins/index.mjs +3 -3
  54. package/dist/plugins/tracing-entry.mjs +1 -1
  55. package/dist/presets/index.d.mts +1 -1
  56. package/dist/presets/index.mjs +1 -1
  57. package/dist/presets/multiTenant.d.mts +1 -1
  58. package/dist/presets/multiTenant.mjs +1 -1
  59. package/dist/{presets-OMPaHMTY.mjs → presets-BMfdy34e.mjs} +2 -2
  60. package/dist/{redis-CQ5YxMC5.d.mts → redis-D0Qc-9EW.d.mts} +1 -1
  61. package/dist/registry/index.d.mts +1 -1
  62. package/dist/{resourceToTools-PMFE8HIv.mjs → resourceToTools-DH3c3e-T.mjs} +81 -7
  63. package/dist/scope/index.d.mts +2 -2
  64. package/dist/scope/index.mjs +2 -2
  65. package/dist/{sse-BkViJPlT.mjs → sse-BF7GR7IB.mjs} +1 -1
  66. package/dist/testing/index.d.mts +2 -2
  67. package/dist/testing/index.mjs +1 -1
  68. package/dist/types/index.d.mts +3 -3
  69. package/dist/types/index.mjs +23 -2
  70. package/dist/{types-C6TQjtdi.mjs → types-BhtYdxZU.mjs} +26 -1
  71. package/dist/{types-Dt0-AI6E.d.mts → types-D5hJ-k_3.d.mts} +189 -6
  72. package/dist/{types-BJmgxNbF.d.mts → types-D5rjsS_i.d.mts} +1 -1
  73. package/dist/utils/index.d.mts +2 -2
  74. package/dist/utils/index.mjs +1 -1
  75. package/package.json +6 -5
  76. package/skills/arc/SKILL.md +104 -4
  77. package/skills/arc/references/mcp.md +160 -2
  78. /package/dist/{interface-B4awm1RJ.d.mts → interface-gr-7qo9j.d.mts} +0 -0
package/dist/factory/index.mjs CHANGED
@@ -1,4 +1,7 @@
1
- import { a as getPreset, i as developmentPreset, n as createApp, o as productionPreset, s as testingPreset, t as ArcFactory } from "../createApp-CBgVaFyh.mjs";
1
+ import { a as edgePreset, c as testingPreset, i as developmentPreset, n as createApp, o as getPreset, s as productionPreset, t as ArcFactory } from "../createApp-Bol7DLUf.mjs";
2
+ import { readdir } from "node:fs/promises";
3
+ import { dirname, join, resolve } from "node:path";
4
+ import { fileURLToPath, pathToFileURL } from "node:url";
2
5
  //#region src/factory/edge.ts
3
6
  /**
4
7
  * Convert a Fastify app into a Web Standards fetch handler.
@@ -45,4 +48,135 @@ function toFetchHandler(app, options = {}) {
45
48
  };
46
49
  }
47
50
  //#endregion
48
- export { ArcFactory, createApp, developmentPreset, getPreset, productionPreset, testingPreset, toFetchHandler };
51
+ //#region src/factory/loadResources.ts
52
+ /**
53
+ * loadResources — Auto-discover resource files from a directory.
54
+ *
55
+ * Scans for `*.resource.{ts,js,mts,mjs}` files, imports each,
56
+ * and collects their default exports. No barrel file needed.
57
+ *
58
+ * @example
59
+ * ```ts
60
+ * import { createApp, loadResources } from '@classytic/arc/factory';
61
+ *
62
+ * // Recommended: import.meta.url — works in both src/ (dev) and dist/ (prod)
63
+ * const app = await createApp({
64
+ * resources: await loadResources(import.meta.url),
65
+ * auth: { type: 'jwt', jwt: { secret: process.env.JWT_SECRET } },
66
+ * });
67
+ *
68
+ * // Or explicit path (must match runtime layout)
69
+ * const app2 = await createApp({
70
+ * resources: await loadResources('./src/resources'),
71
+ * });
72
+ * ```
73
+ *
74
+ * File convention:
75
+ * ```
76
+ * src/resources/
77
+ * product/product.resource.ts → export default defineResource({ name: 'product', ... })
78
+ * order/order.resource.ts → export default defineResource({ name: 'order', ... })
79
+ * ```
80
+ */
81
+ /**
82
+ * Scan a directory for resource files and import their default exports.
83
+ *
84
+ * Accepts a directory path OR `import.meta.url` (file:// URL).
85
+ * When given a URL, resolves to the directory containing that file —
86
+ * so `loadResources(import.meta.url)` works in both dev (`src/`) and
87
+ * production (`dist/`) without path gymnastics.
88
+ *
89
+ * @param dir - Directory path, or `import.meta.url` (file:// URL resolved to its dirname)
90
+ * @param options - Pattern and recursion options
91
+ * @returns Array of resource definitions (anything with `.toPlugin()`)
92
+ *
93
+ * @example
94
+ * ```ts
95
+ * // Works from both src/ and dist/ — resolves relative to the calling file
96
+ * await loadResources(import.meta.url);
97
+ *
98
+ * // Subdirectory relative to the calling file
99
+ * await loadResources(import.meta.url, { suffix: '.resource' });
100
+ *
101
+ * // Explicit path (must match runtime layout)
102
+ * await loadResources('./src/resources');
103
+ * ```
104
+ */
105
+ async function loadResources(dir, options = {}) {
106
+ const { suffix = ".resource", recursive = true, exclude, include, silent = false } = options;
107
+ const files = await collectFiles(resolve(dir.startsWith("file://") ? dirname(fileURLToPath(dir)) : dir), new RegExp(`${escapeRegex(suffix)}\\.(ts|js|mts|mjs)$`), recursive);
108
+ files.sort();
109
+ const includeSet = include ? new Set(include) : null;
110
+ const excludeSet = exclude ? new Set(exclude) : null;
111
+ const skipped = [];
112
+ const failed = [];
113
+ const results = await Promise.all(files.map(async (file) => {
114
+ try {
115
+ let mod;
116
+ try {
117
+ mod = await import(pathToFileURL(file).href);
118
+ } catch (_importErr) {
119
+ mod = await import(file);
120
+ }
121
+ return {
122
+ file,
123
+ mod
124
+ };
125
+ } catch (err) {
126
+ const code = err.code;
127
+ const msg = err instanceof Error ? err.message : String(err);
128
+ if (code === "ERR_MODULE_NOT_FOUND" && msg.includes(".js")) failed.push(`${file}: ${msg}\n Hint: This file uses .js extension imports (TypeScript ESM convention).
129
+ In production, ensure your build compiles .ts→.js before loadResources() runs.
130
+ In tests, use vitest/tsx which resolves .js→.ts automatically.`);
131
+ else failed.push(`${file}: ${msg}`);
132
+ return null;
133
+ }
134
+ }));
135
+ const resources = [];
136
+ for (const result of results) {
137
+ if (!result) continue;
138
+ const resource = result.mod.default ?? result.mod.resource;
139
+ if (!resource || typeof resource.toPlugin !== "function") {
140
+ skipped.push(result.file);
141
+ continue;
142
+ }
143
+ const name = resource.name;
144
+ if (name) {
145
+ if (includeSet && !includeSet.has(name)) continue;
146
+ if (!includeSet && excludeSet?.has(name)) continue;
147
+ }
148
+ resources.push(resource);
149
+ }
150
+ if (!silent) {
151
+ if (failed.length) {
152
+ console.warn(`[arc] loadResources: ${failed.length} file(s) failed to import:`);
153
+ for (const f of failed) console.warn(` - ${f}`);
154
+ }
155
+ if (skipped.length) {
156
+ console.warn(`[arc] loadResources: ${skipped.length} file(s) skipped (no default export with toPlugin):`);
157
+ for (const f of skipped) console.warn(` - ${f}`);
158
+ }
159
+ }
160
+ return resources;
161
+ }
162
+ async function collectFiles(dir, pattern, recursive) {
163
+ const results = [];
164
+ let entries;
165
+ try {
166
+ entries = await readdir(dir, { withFileTypes: true });
167
+ } catch {
168
+ return results;
169
+ }
170
+ for (const entry of entries) {
171
+ const name = String(entry.name);
172
+ const fullPath = join(dir, name);
173
+ if (entry.isDirectory() && recursive) results.push(...await collectFiles(fullPath, pattern, recursive));
174
+ else if (entry.isFile() && pattern.test(name)) results.push(fullPath);
175
+ }
176
+ return results;
177
+ }
178
+ function escapeRegex(str) {
179
+ return str.replace(/[.*+?^${}()|[\]\\]/g, "\\$&");
180
+ }
181
+ //#endregion
182
+ export { ArcFactory, createApp, developmentPreset, edgePreset, getPreset, loadResources, productionPreset, testingPreset, toFetchHandler };
package/dist/hooks/index.d.mts CHANGED
@@ -1,2 +1,2 @@
1
- import { $t as HookContext, Qt as DefineHookOptions, an as HookSystemOptions, cn as afterUpdate, dn as beforeUpdate, en as HookHandler, fn as createHookSystem, in as HookSystem, ln as beforeCreate, nn as HookPhase, on as afterCreate, pn as defineHook, rn as HookRegistration, sn as afterDelete, tn as HookOperation, un as beforeDelete } from "../interface-DGmPxakH.mjs";
1
+ import { an as HookPhase, cn as HookSystemOptions, dn as afterUpdate, fn as beforeCreate, gn as defineHook, hn as createHookSystem, in as HookOperation, ln as afterCreate, mn as beforeUpdate, nn as HookContext, on as HookRegistration, pn as beforeDelete, rn as HookHandler, sn as HookSystem, tn as DefineHookOptions, un as afterDelete } from "../interface-DDW43OmS.mjs";
2
2
  export { type DefineHookOptions, type HookContext, type HookHandler, type HookOperation, type HookPhase, type HookRegistration, HookSystem, type HookSystemOptions, afterCreate, afterDelete, afterUpdate, beforeCreate, beforeDelete, beforeUpdate, createHookSystem, defineHook };
package/dist/idempotency/index.d.mts CHANGED
@@ -1,6 +1,6 @@
1
- import { i as createIdempotencyResult, n as IdempotencyResult, r as IdempotencyStore, t as IdempotencyLock } from "../interface-B4awm1RJ.mjs";
2
- import { n as MongoIdempotencyStoreOptions } from "../mongodb-bga9AbkD.mjs";
3
- import { r as RedisIdempotencyStoreOptions, t as RedisClient } from "../redis-CQ5YxMC5.mjs";
1
+ import { i as createIdempotencyResult, n as IdempotencyResult, r as IdempotencyStore, t as IdempotencyLock } from "../interface-gr-7qo9j.mjs";
2
+ import { n as MongoIdempotencyStoreOptions } from "../mongodb-pMvOlR5_.mjs";
3
+ import { r as RedisIdempotencyStoreOptions, t as RedisClient } from "../redis-D0Qc-9EW.mjs";
4
4
  import { FastifyPluginAsync } from "fastify";
5
5
 
6
6
  //#region src/idempotency/idempotencyPlugin.d.ts
package/dist/idempotency/mongodb.d.mts CHANGED
@@ -1,2 +1,2 @@
1
- import { n as MongoIdempotencyStoreOptions, t as MongoIdempotencyStore } from "../mongodb-bga9AbkD.mjs";
1
+ import { n as MongoIdempotencyStoreOptions, t as MongoIdempotencyStore } from "../mongodb-pMvOlR5_.mjs";
2
2
  export { MongoIdempotencyStore, type MongoIdempotencyStoreOptions };
package/dist/idempotency/redis.d.mts CHANGED
@@ -1,2 +1,2 @@
1
- import { n as RedisIdempotencyStore, r as RedisIdempotencyStoreOptions, t as RedisClient } from "../redis-CQ5YxMC5.mjs";
1
+ import { n as RedisIdempotencyStore, r as RedisIdempotencyStoreOptions, t as RedisClient } from "../redis-D0Qc-9EW.mjs";
2
2
  export { type RedisClient, RedisIdempotencyStore, type RedisIdempotencyStoreOptions };
package/dist/{index-yhxyjqNb.d.mts → index-BIsZ_su5.d.mts} RENAMED
@@ -1,16 +1,12 @@
1
- import { G as ParsedQuery, U as OpenApiSchemas, X as QueryParserInterface, a as RepositoryLike, lt as RouteSchemaOptions, n as DataAdapter, o as SchemaMetadata, s as ValidationResult, zt as CrudRepository } from "./interface-DGmPxakH.mjs";
1
+ import { Ht as CrudRepository, K as ParsedQuery, W as OpenApiSchemas, Z as QueryParserInterface, a as RepositoryLike, dt as RouteSchemaOptions, n as DataAdapter, o as SchemaMetadata, s as ValidationResult } from "./interface-DDW43OmS.mjs";
2
2
  import { Model } from "mongoose";
3
3
 
4
4
  //#region src/adapters/mongoose.d.ts
5
5
  /**
6
- * Options for creating a Mongoose adapter
6
+ * Options for creating a Mongoose adapter.
7
+ * TDoc is auto-inferred from the Mongoose model — no explicit type needed.
7
8
  *
8
- * @typeParam TDoc - The document type (inferred or explicit)
9
- */
10
- /**
11
- * Options for creating a Mongoose adapter
12
- *
13
- * @typeParam TDoc - The document type (inferred or explicit)
9
+ * @typeParam TDoc - Inferred from `model: Model<TDoc>`
14
10
  */
15
11
  interface MongooseAdapterOptions<TDoc = unknown> {
16
12
  /** Mongoose model instance — preserves document type for type safety */
package/dist/{index-BL8CaQih.d.mts → index-Cb3gtbg7.d.mts} RENAMED
@@ -1,5 +1,5 @@
1
- import { s as RequestScope } from "./elevation-Ca_yveIO.mjs";
2
- import { D as FastifyWithDecorators, Mt as IControllerResponse, Nt as IRequestContext, et as RequestContext, jt as IController, nt as RequestWithExtras, x as CrudRouterOptions, y as CrudController } from "./interface-DGmPxakH.mjs";
1
+ import { s as RequestScope } from "./elevation-C_taLQrM.mjs";
2
+ import { Ft as IControllerResponse, It as IRequestContext, O as FastifyWithDecorators, Pt as IController, S as CrudRouterOptions, b as CrudController, rt as RequestWithExtras, tt as RequestContext } from "./interface-DDW43OmS.mjs";
3
3
  import { t as PermissionCheck } from "./types-BNUccdcf.mjs";
4
4
  import { FastifyInstance, FastifyReply, FastifyRequest, RouteHandlerMethod } from "fastify";
5
5
 
package/dist/{index-Diqcm14c.d.mts → index-NGZksqM5.d.mts} RENAMED
@@ -199,7 +199,36 @@ declare function requireAuth(): PermissionCheck;
199
199
  */
200
200
  declare function requireRoles(roles: readonly string[], options?: {
201
201
  bypassRoles?: readonly string[];
202
+ /**
203
+ * Also check org membership roles (`scope.orgRoles`) when in org context.
204
+ * Default: `false` — only checks platform roles (`user.role`).
205
+ *
206
+ * Set to `true` when using Better Auth organization plugin where roles like
207
+ * 'admin' are assigned at the org level, not the user level.
208
+ *
209
+ * For org-only role checks, prefer `requireOrgRole('admin')` instead.
210
+ */
211
+ includeOrgRoles?: boolean;
202
212
  }): PermissionCheck;
213
+ /**
214
+ * Unified role check — checks both platform roles AND org roles.
215
+ *
216
+ * This is the recommended helper for Better Auth organization plugin users.
217
+ * It checks `user.role` (platform) first, then `scope.orgRoles` (org membership).
218
+ * Elevated scope always passes.
219
+ *
220
+ * For platform-only checks: use `requireRoles(['admin'])`
221
+ * For org-only checks: use `requireOrgRole('admin')`
222
+ *
223
+ * @example
224
+ * ```typescript
225
+ * permissions: {
226
+ * create: roles('admin', 'editor'), // passes if user has role at either level
227
+ * delete: roles('admin'),
228
+ * }
229
+ * ```
230
+ */
231
+ declare function roles(...args: string[] | [readonly string[]]): PermissionCheck;
203
232
  /**
204
233
  * Require resource ownership
205
234
  *
@@ -366,4 +395,4 @@ declare function createDynamicPermissionMatrix(config: DynamicPermissionMatrixCo
366
395
  */
367
396
  declare function requireTeamMembership<TDoc = Record<string, unknown>>(): PermissionCheck<TDoc>;
368
397
  //#endregion
369
- export { publicRead as C, createRoleHierarchy as D, RoleHierarchy as E, presets_d_exports as S, readOnly as T, when as _, allOf as a, fullPublic as b, createDynamicPermissionMatrix as c, requireAuth as d, requireOrgMembership as f, requireTeamMembership as g, requireRoles as h, PermissionEventBus as i, createOrgPermissions as l, requireOwnership as m, DynamicPermissionMatrix as n, allowPublic as o, requireOrgRole as p, DynamicPermissionMatrixConfig as r, anyOf as s, ConnectEventsOptions as t, denyAll as u, adminOnly as v, publicReadAdminWrite as w, ownerWithAdminBypass as x, authenticated as y };
398
+ export { presets_d_exports as C, RoleHierarchy as D, readOnly as E, createRoleHierarchy as O, ownerWithAdminBypass as S, publicReadAdminWrite as T, roles as _, allOf as a, authenticated as b, createDynamicPermissionMatrix as c, requireAuth as d, requireOrgMembership as f, requireTeamMembership as g, requireRoles as h, PermissionEventBus as i, createOrgPermissions as l, requireOwnership as m, DynamicPermissionMatrix as n, allowPublic as o, requireOrgRole as p, DynamicPermissionMatrixConfig as r, anyOf as s, ConnectEventsOptions as t, denyAll as u, when as v, publicRead as w, fullPublic as x, adminOnly as y };
package/dist/index.d.mts CHANGED
@@ -1,10 +1,10 @@
1
- import { $ as RegistryStats, A as HealthCheck, B as MiddlewareConfig, C as EventDefinition, D as FastifyWithDecorators, E as FastifyWithAuth, F as IntrospectionData, Gt as Interceptor, I as IntrospectionPluginOptions, Jt as PipelineConfig, Kt as NextFunction, L as JWTPayload, Lt as ResourceDefinition, M as InferAdapterDoc, Mt as IControllerResponse, N as InferDocType, Nt as IRequestContext, O as FieldRule, P as InferResourceDoc, Pt as RouteHandler, Q as RegistryEntry, Rt as defineResource, S as CrudSchemas, T as FastifyRequestExtras, Ut as QueryOptions, V as MiddlewareHandler, Vt as PaginatedResult, W as OwnershipCheck, Wt as Guard, Xt as PipelineStep, Y as PresetResult, Yt as PipelineContext, Z as RateLimitConfig, Zt as Transform, _ as ConfigError, _t as ValidateOptions, a as RepositoryLike, b as CrudRouteKey, bt as BaseController, c as AdditionalRoute, ct as RouteHandlerMethod, et as RequestContext, f as ArcInternalMetadata, ft as TypedController, gt as UserOrganization, i as RelationMetadata, it as ResourceConfig, j as HealthOptions, jt as IController, k as GracefulShutdownOptions, kt as ControllerLike, l as AnyRecord, lt as RouteSchemaOptions, m as AuthPluginOptions, mt as TypedResourceConfig, n as DataAdapter, nt as RequestWithExtras, o as SchemaMetadata, ot as ResourceMetadata, pt as TypedRepository, q as PresetFunction, qt as OperationFilter, r as FieldMetadata, s as ValidationResult, tt as RequestIdOptions, u as ApiResponse, ut as ServiceContext, vt as ValidationResult$1, x as CrudRouterOptions, xt as BaseControllerOptions, y as CrudController, zt as CrudRepository } from "./interface-DGmPxakH.mjs";
1
+ import { $ as RegistryEntry, $t as PipelineStep, A as GracefulShutdownOptions, Bt as ResourceDefinition, C as CrudSchemas, Ct as BaseController, D as FastifyWithAuth, E as FastifyRequestExtras, F as InferResourceDoc, Ft as IControllerResponse, G as OwnershipCheck, H as MiddlewareHandler, Ht as CrudRepository, I as IntrospectionData, It as IRequestContext, J as PresetFunction, Jt as Interceptor, Kt as QueryOptions, L as IntrospectionPluginOptions, Lt as RouteHandler, M as HealthOptions, Mt as ControllerLike, N as InferAdapterDoc, O as FastifyWithDecorators, P as InferDocType, Pt as IController, Q as RateLimitConfig, Qt as PipelineContext, R as JWTPayload, S as CrudRouterOptions, V as MiddlewareConfig, Vt as defineResource, Wt as PaginatedResult, X as PresetResult, Xt as OperationFilter, Yt as NextFunction, Zt as PipelineConfig, a as RepositoryLike, at as ResourceConfig, b as CrudController, bt as ValidationResult$1, c as AdditionalRoute, ct as ResourceMetadata, dt as RouteSchemaOptions, en as Transform, et as RegistryStats, f as ArcInternalMetadata, ft as ServiceContext, gt as TypedResourceConfig, h as AuthPluginOptions, ht as TypedRepository, i as RelationMetadata, j as HealthCheck, k as FieldRule, l as AnyRecord, mt as TypedController, n as DataAdapter, nt as RequestIdOptions, o as SchemaMetadata, p as ArcRequest, qt as Guard, r as FieldMetadata, rt as RequestWithExtras, s as ValidationResult, tt as RequestContext, u as ApiResponse, ut as RouteHandlerMethod, v as ConfigError, vt as UserOrganization, w as EventDefinition, wt as BaseControllerOptions, x as CrudRouteKey, xt as envelope, yt as ValidateOptions } from "./interface-DDW43OmS.mjs";
2
2
  import { a as applyFieldWritePermissions, i as applyFieldReadPermissions, n as FieldPermissionMap, o as fields, t as FieldPermission } from "./fields-DFwdaWCq.mjs";
3
3
  import { i as UserBase, n as PermissionContext, r as PermissionResult, t as PermissionCheck } from "./types-BNUccdcf.mjs";
4
- import { l as createMongooseAdapter, o as createPrismaAdapter, s as MongooseAdapter, t as PrismaAdapter } from "./index-yhxyjqNb.mjs";
5
- import { A as RESERVED_QUERY_PARAMS, C as HookOperation, D as MAX_SEARCH_LENGTH, E as MAX_REGEX_LENGTH, O as MUTATION_OPERATIONS, S as HOOK_PHASES, T as MAX_FILTER_DEPTH, _ as DEFAULT_MAX_LIMIT, a as getControllerScope, b as DEFAULT_UPDATE_METHOD, g as DEFAULT_LIMIT, h as DEFAULT_ID_FIELD, j as SYSTEM_FIELDS, k as MutationOperation, m as CrudOperation, p as CRUD_OPERATIONS, v as DEFAULT_SORT, w as HookPhase, x as HOOK_OPERATIONS, y as DEFAULT_TENANT_FIELD } from "./index-BL8CaQih.mjs";
6
- import { C as publicRead, S as presets_d_exports, T as readOnly, _ as when, a as allOf, b as fullPublic, c as createDynamicPermissionMatrix, d as requireAuth, f as requireOrgMembership, g as requireTeamMembership, h as requireRoles, l as createOrgPermissions, m as requireOwnership, n as DynamicPermissionMatrix, o as allowPublic, p as requireOrgRole, r as DynamicPermissionMatrixConfig, s as anyOf, u as denyAll, v as adminOnly, w as publicReadAdminWrite, x as ownerWithAdminBypass, y as authenticated } from "./index-Diqcm14c.mjs";
7
- import { a as NotFoundError, d as ValidationError, i as ForbiddenError, t as ArcError, u as UnauthorizedError } from "./errors-CPpvPHT0.mjs";
4
+ import { l as createMongooseAdapter, o as createPrismaAdapter, s as MongooseAdapter, t as PrismaAdapter } from "./index-BIsZ_su5.mjs";
5
+ import { A as RESERVED_QUERY_PARAMS, C as HookOperation, D as MAX_SEARCH_LENGTH, E as MAX_REGEX_LENGTH, O as MUTATION_OPERATIONS, S as HOOK_PHASES, T as MAX_FILTER_DEPTH, _ as DEFAULT_MAX_LIMIT, a as getControllerScope, b as DEFAULT_UPDATE_METHOD, g as DEFAULT_LIMIT, h as DEFAULT_ID_FIELD, j as SYSTEM_FIELDS, k as MutationOperation, m as CrudOperation, p as CRUD_OPERATIONS, v as DEFAULT_SORT, w as HookPhase, x as HOOK_OPERATIONS, y as DEFAULT_TENANT_FIELD } from "./index-Cb3gtbg7.mjs";
6
+ import { C as presets_d_exports, E as readOnly, S as ownerWithAdminBypass, T as publicReadAdminWrite, a as allOf, b as authenticated, c as createDynamicPermissionMatrix, d as requireAuth, f as requireOrgMembership, g as requireTeamMembership, h as requireRoles, l as createOrgPermissions, m as requireOwnership, n as DynamicPermissionMatrix, o as allowPublic, p as requireOrgRole, r as DynamicPermissionMatrixConfig, s as anyOf, u as denyAll, v as when, w as publicRead, x as fullPublic, y as adminOnly } from "./index-NGZksqM5.mjs";
7
+ import { a as NotFoundError, d as ValidationError, f as createDomainError, i as ForbiddenError, t as ArcError, u as UnauthorizedError } from "./errors-CcVbl1-T.mjs";
8
8
  import { AsyncLocalStorage } from "node:async_hooks";
9
9
 
10
10
  //#region src/context/requestContext.d.ts
@@ -252,4 +252,4 @@ declare function arcLog(module: string): ArcLogger;
252
252
  //#region src/index.d.ts
253
253
  declare const version: string;
254
254
  //#endregion
255
- export { type ValidationResult as AdapterValidationResult, type AdditionalRoute, type AnyRecord, type ApiResponse, ArcError, type ArcInternalMetadata, type ArcLogWriter, type ArcLogger, type ArcLoggerOptions, type AuthPluginOptions, BaseController, type BaseControllerOptions, CRUD_OPERATIONS, type ConfigError, type ControllerLike, type CrudController, CrudOperation, type CrudRepository, type CrudRouteKey, type CrudRouterOptions, type CrudSchemas, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, type DataAdapter, type DynamicPermissionMatrix, type DynamicPermissionMatrixConfig, type EventDefinition, type FastifyRequestExtras, type FastifyWithAuth, type FastifyWithDecorators, type FieldMetadata, type FieldPermission, type FieldPermissionMap, type FieldRule, ForbiddenError, type GracefulShutdownOptions, type Guard, HOOK_OPERATIONS, HOOK_PHASES, type HealthCheck, type HealthOptions, HookOperation, HookPhase, type IController, type IControllerResponse, type IRequestContext, type InferAdapterDoc, type InferDocType, type InferResourceDoc, type Interceptor, type IntrospectionData, type IntrospectionPluginOptions, type JWTPayload, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, type MiddlewareConfig, MongooseAdapter, MutationOperation, type NamedMiddleware, NotFoundError, type OwnershipCheck, type PaginatedResult, type PermissionCheck, type PermissionContext, type PermissionResult, type PipelineConfig, type PipelineContext, type PipelineStep, type PresetFunction, type PresetResult, PrismaAdapter, type QueryOptions, RESERVED_QUERY_PARAMS, type RateLimitConfig, type RegistryEntry, type RegistryStats, type RelationMetadata, type RepositoryLike, type RequestContext, type RequestIdOptions, type RequestStore, type RequestWithExtras, type ResourceConfig, ResourceDefinition, type ResourceMetadata, type RouteHandler, type RouteHandlerMethod, type RouteSchemaOptions, SYSTEM_FIELDS, type SchemaMetadata, type ServiceContext, type Transform, type TypedController, type TypedRepository, type TypedResourceConfig, UnauthorizedError, type UserBase, type UserOrganization, type ValidateOptions, ValidationError, type ValidationResult$1 as ValidationResult, adminOnly, allOf, allowPublic, anyOf, applyFieldReadPermissions, applyFieldWritePermissions, arcLog, assertValidConfig, authenticated, configureArcLogger, createDynamicPermissionMatrix, createMongooseAdapter, createOrgPermissions, createPrismaAdapter, defineResource, denyAll, fields, formatValidationErrors, fullPublic, getControllerScope, guard, intercept, middleware, ownerWithAdminBypass, presets_d_exports as permissions, pipe, publicRead, publicReadAdminWrite, readOnly, requestContext, requireAuth, requireOrgMembership, requireOrgRole, requireOwnership, requireRoles, requireTeamMembership, sortMiddlewares, transform, validateResourceConfig, version, when };
255
+ export { type ValidationResult as AdapterValidationResult, type AdditionalRoute, type AnyRecord, type ApiResponse, ArcError, type ArcInternalMetadata, type ArcLogWriter, type ArcLogger, type ArcLoggerOptions, type ArcRequest, type AuthPluginOptions, BaseController, type BaseControllerOptions, CRUD_OPERATIONS, type ConfigError, type ControllerLike, type CrudController, CrudOperation, type CrudRepository, type CrudRouteKey, type CrudRouterOptions, type CrudSchemas, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, type DataAdapter, type DynamicPermissionMatrix, type DynamicPermissionMatrixConfig, type EventDefinition, type FastifyRequestExtras, type FastifyWithAuth, type FastifyWithDecorators, type FieldMetadata, type FieldPermission, type FieldPermissionMap, type FieldRule, ForbiddenError, type GracefulShutdownOptions, type Guard, HOOK_OPERATIONS, HOOK_PHASES, type HealthCheck, type HealthOptions, HookOperation, HookPhase, type IController, type IControllerResponse, type IRequestContext, type InferAdapterDoc, type InferDocType, type InferResourceDoc, type Interceptor, type IntrospectionData, type IntrospectionPluginOptions, type JWTPayload, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, type MiddlewareConfig, MongooseAdapter, MutationOperation, type NamedMiddleware, NotFoundError, type OwnershipCheck, type PaginatedResult, type PermissionCheck, type PermissionContext, type PermissionResult, type PipelineConfig, type PipelineContext, type PipelineStep, type PresetFunction, type PresetResult, PrismaAdapter, type QueryOptions, RESERVED_QUERY_PARAMS, type RateLimitConfig, type RegistryEntry, type RegistryStats, type RelationMetadata, type RepositoryLike, type RequestContext, type RequestIdOptions, type RequestStore, type RequestWithExtras, type ResourceConfig, ResourceDefinition, type ResourceMetadata, type RouteHandler, type RouteHandlerMethod, type RouteSchemaOptions, SYSTEM_FIELDS, type SchemaMetadata, type ServiceContext, type Transform, type TypedController, type TypedRepository, type TypedResourceConfig, UnauthorizedError, type UserBase, type UserOrganization, type ValidateOptions, ValidationError, type ValidationResult$1 as ValidationResult, adminOnly, allOf, allowPublic, anyOf, applyFieldReadPermissions, applyFieldWritePermissions, arcLog, assertValidConfig, authenticated, configureArcLogger, createDomainError, createDynamicPermissionMatrix, createMongooseAdapter, createOrgPermissions, createPrismaAdapter, defineResource, denyAll, envelope, fields, formatValidationErrors, fullPublic, getControllerScope, guard, intercept, middleware, ownerWithAdminBypass, presets_d_exports as permissions, pipe, publicRead, publicReadAdminWrite, readOnly, requestContext, requireAuth, requireOrgMembership, requireOrgRole, requireOwnership, requireRoles, requireTeamMembership, sortMiddlewares, transform, validateResourceConfig, version, when };
package/dist/index.mjs CHANGED
@@ -1,11 +1,12 @@
1
1
  import { a as DEFAULT_SORT, c as HOOK_OPERATIONS, d as MAX_REGEX_LENGTH, f as MAX_SEARCH_LENGTH, h as SYSTEM_FIELDS, i as DEFAULT_MAX_LIMIT, l as HOOK_PHASES, m as RESERVED_QUERY_PARAMS, n as DEFAULT_ID_FIELD, o as DEFAULT_TENANT_FIELD, p as MUTATION_OPERATIONS, r as DEFAULT_LIMIT, s as DEFAULT_UPDATE_METHOD, t as CRUD_OPERATIONS, u as MAX_FILTER_DEPTH } from "./constants-Cxde4rpC.mjs";
2
- import { a as createMongooseAdapter, i as MongooseAdapter, r as createPrismaAdapter, t as PrismaAdapter } from "./adapters-DTC4Ug66.mjs";
3
- import { t as BaseController } from "./BaseController-CkM5dUh_.mjs";
2
+ import { a as createMongooseAdapter, i as MongooseAdapter, r as createPrismaAdapter, t as PrismaAdapter } from "./adapters-CTn28N4y.mjs";
3
+ import { t as BaseController } from "./BaseController-AbbRx3e0.mjs";
4
+ import { envelope } from "./types/index.mjs";
4
5
  import { n as applyFieldWritePermissions, r as fields, t as applyFieldReadPermissions } from "./fields-ipsbIRPK.mjs";
5
6
  import { t as requestContext } from "./requestContext-DYtmNpm5.mjs";
6
- import { i as NotFoundError, l as UnauthorizedError, r as ForbiddenError, t as ArcError, u as ValidationError } from "./errors-rxhfP7Hf.mjs";
7
- import { a as validateResourceConfig, f as getControllerScope, i as formatValidationErrors, m as pipe, n as defineResource, r as assertValidConfig, t as ResourceDefinition } from "./defineResource-B22gcNvn.mjs";
8
- import { _ as ownerWithAdminBypass, a as createOrgPermissions, b as publicReadAdminWrite, c as requireOrgMembership, d as requireRoles, f as requireTeamMembership, g as fullPublic, h as authenticated, i as createDynamicPermissionMatrix, l as requireOrgRole, m as adminOnly, n as allowPublic, o as denyAll, p as when, r as anyOf, s as requireAuth, t as allOf, u as requireOwnership, v as presets_exports, x as readOnly, y as publicRead } from "./permissions-Jk5x3sxz.mjs";
7
+ import { d as createDomainError, i as NotFoundError, l as UnauthorizedError, r as ForbiddenError, t as ArcError, u as ValidationError } from "./errors-NoQKsbAT.mjs";
8
+ import { a as validateResourceConfig, f as getControllerScope, i as formatValidationErrors, m as pipe, n as defineResource, r as assertValidConfig, t as ResourceDefinition } from "./defineResource-bVKHjQzE.mjs";
9
+ import { S as readOnly, _ as fullPublic, a as createOrgPermissions, b as publicRead, c as requireOrgMembership, d as requireRoles, f as requireTeamMembership, g as authenticated, h as adminOnly, i as createDynamicPermissionMatrix, l as requireOrgRole, m as when, n as allowPublic, o as denyAll, r as anyOf, s as requireAuth, t as allOf, u as requireOwnership, v as ownerWithAdminBypass, x as publicReadAdminWrite, y as presets_exports } from "./permissions-C8ImI8gC.mjs";
9
10
  import { n as configureArcLogger, t as arcLog } from "./logger-Dz3j1ItV.mjs";
10
11
  //#region src/middleware/middleware.ts
11
12
  /**
@@ -126,6 +127,6 @@ function transform(name, handlerOrOptions) {
126
127
  }
127
128
  //#endregion
128
129
  //#region src/index.ts
129
- const version = "2.4.3";
130
+ const version = "2.6.1";
130
131
  //#endregion
131
- export { ArcError, BaseController, CRUD_OPERATIONS, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, ForbiddenError, HOOK_OPERATIONS, HOOK_PHASES, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, MongooseAdapter, NotFoundError, PrismaAdapter, RESERVED_QUERY_PARAMS, ResourceDefinition, SYSTEM_FIELDS, UnauthorizedError, ValidationError, adminOnly, allOf, allowPublic, anyOf, applyFieldReadPermissions, applyFieldWritePermissions, arcLog, assertValidConfig, authenticated, configureArcLogger, createDynamicPermissionMatrix, createMongooseAdapter, createOrgPermissions, createPrismaAdapter, defineResource, denyAll, fields, formatValidationErrors, fullPublic, getControllerScope, guard, intercept, middleware, ownerWithAdminBypass, presets_exports as permissions, pipe, publicRead, publicReadAdminWrite, readOnly, requestContext, requireAuth, requireOrgMembership, requireOrgRole, requireOwnership, requireRoles, requireTeamMembership, sortMiddlewares, transform, validateResourceConfig, version, when };
132
+ export { ArcError, BaseController, CRUD_OPERATIONS, DEFAULT_ID_FIELD, DEFAULT_LIMIT, DEFAULT_MAX_LIMIT, DEFAULT_SORT, DEFAULT_TENANT_FIELD, DEFAULT_UPDATE_METHOD, ForbiddenError, HOOK_OPERATIONS, HOOK_PHASES, MAX_FILTER_DEPTH, MAX_REGEX_LENGTH, MAX_SEARCH_LENGTH, MUTATION_OPERATIONS, MongooseAdapter, NotFoundError, PrismaAdapter, RESERVED_QUERY_PARAMS, ResourceDefinition, SYSTEM_FIELDS, UnauthorizedError, ValidationError, adminOnly, allOf, allowPublic, anyOf, applyFieldReadPermissions, applyFieldWritePermissions, arcLog, assertValidConfig, authenticated, configureArcLogger, createDomainError, createDynamicPermissionMatrix, createMongooseAdapter, createOrgPermissions, createPrismaAdapter, defineResource, denyAll, envelope, fields, formatValidationErrors, fullPublic, getControllerScope, guard, intercept, middleware, ownerWithAdminBypass, presets_exports as permissions, pipe, publicRead, publicReadAdminWrite, readOnly, requestContext, requireAuth, requireOrgMembership, requireOrgRole, requireOwnership, requireRoles, requireTeamMembership, sortMiddlewares, transform, validateResourceConfig, version, when };
package/dist/integrations/event-gateway.mjs CHANGED
@@ -4,7 +4,7 @@ const eventGatewayPluginImpl = async (fastify, opts = {}) => {
4
4
  const { auth = true, orgScoped = false, roomPolicy, maxMessageBytes, maxSubscriptionsPerClient, authenticate } = opts;
5
5
  if (auth && !authenticate && !fastify.hasDecorator("authenticate")) throw new Error("[arc-event-gateway] auth is true but fastify.authenticate is not registered. Register an auth plugin first, provide a custom authenticate function, or set auth: false.");
6
6
  if (opts.sse !== false) {
7
- const { default: ssePlugin } = await import("../sse-BkViJPlT.mjs").then((n) => n.r);
7
+ const { default: ssePlugin } = await import("../sse-BF7GR7IB.mjs").then((n) => n.r);
8
8
  await fastify.register(ssePlugin, {
9
9
  path: opts.sse?.path ?? "/events/stream",
10
10
  requireAuth: auth,
package/dist/integrations/index.d.mts CHANGED
@@ -1,7 +1,7 @@
1
1
  import { WebSocketClient, WebSocketMessage, WebSocketPluginOptions } from "./websocket.mjs";
2
2
  import { EventGatewayOptions } from "./event-gateway.mjs";
3
3
  import { JobDefinition, JobDispatchOptions, JobDispatcher, JobMeta, JobsPluginOptions, QueueStats } from "./jobs.mjs";
4
- import { c as McpResourceConfig, f as ToolAnnotations, i as CrudOperation, l as PromptDefinition, m as ToolDefinition, n as CallToolResult, o as McpAuthResult, p as ToolContext, r as CreateMcpServerConfig, s as McpPluginOptions, t as BetterAuthHandler } from "../types-BJmgxNbF.mjs";
4
+ import { c as McpResourceConfig, f as ToolAnnotations, i as CrudOperation, l as PromptDefinition, m as ToolDefinition, n as CallToolResult, o as McpAuthResult, p as ToolContext, r as CreateMcpServerConfig, s as McpPluginOptions, t as BetterAuthHandler } from "../types-D5rjsS_i.mjs";
5
5
  import { StreamlinePluginOptions, WorkflowLike, WorkflowRunLike } from "./streamline.mjs";
6
6
  import { WebhookDeliveryRecord, WebhookManager, WebhookPluginOptions, WebhookStore, WebhookSubscription } from "./webhooks.mjs";
7
7
  export { type BetterAuthHandler, type CallToolResult, type CreateMcpServerConfig, type CrudOperation, type EventGatewayOptions, type JobDefinition, type JobDispatchOptions, type JobDispatcher, type JobMeta, type JobsPluginOptions, type McpAuthResult, type McpPluginOptions, type McpResourceConfig, type PromptDefinition, type QueueStats, type StreamlinePluginOptions, type ToolAnnotations, type ToolContext, type ToolDefinition, type WebSocketClient, type WebSocketMessage, type WebSocketPluginOptions, type WebhookDeliveryRecord, type WebhookManager, type WebhookPluginOptions, type WebhookStore, type WebhookSubscription, type WorkflowLike, type WorkflowRunLike };
package/dist/integrations/mcp/index.d.mts CHANGED
@@ -1,5 +1,5 @@
1
- import { Lt as ResourceDefinition } from "../../interface-DGmPxakH.mjs";
2
- import { a as McpAuthResolver, c as McpResourceConfig, d as SessionEntry, f as ToolAnnotations, i as CrudOperation, l as PromptDefinition, m as ToolDefinition, n as CallToolResult, o as McpAuthResult, p as ToolContext, r as CreateMcpServerConfig, s as McpPluginOptions, t as BetterAuthHandler, u as PromptResult } from "../../types-BJmgxNbF.mjs";
1
+ import { Bt as ResourceDefinition } from "../../interface-DDW43OmS.mjs";
2
+ import { a as McpAuthResolver, c as McpResourceConfig, d as SessionEntry, f as ToolAnnotations, i as CrudOperation, l as PromptDefinition, m as ToolDefinition, n as CallToolResult, o as McpAuthResult, p as ToolContext, r as CreateMcpServerConfig, s as McpPluginOptions, t as BetterAuthHandler, u as PromptResult } from "../../types-D5rjsS_i.mjs";
3
3
  import { FastifyPluginAsync } from "fastify";
4
4
  import { z } from "zod";
5
5
 
@@ -75,6 +75,8 @@ interface FieldRulesToZodOptions {
75
75
  extraHideFields?: string[];
76
76
  /** Filterable fields — only used in list mode */
77
77
  filterableFields?: readonly string[];
78
+ /** Allowed filter operators — generates `field[op]` entries in list mode (e.g., price[gt], price[lte]) */
79
+ allowedOperators?: readonly string[];
78
80
  }
79
81
  /** Single field rule entry from Arc's schemaOptions.fieldRules */
80
82
  interface FieldRuleEntry {
package/dist/integrations/mcp/index.mjs CHANGED
@@ -1,4 +1,4 @@
1
- import { n as fieldRulesToZod, r as createMcpServer, t as resourceToTools } from "../../resourceToTools-PMFE8HIv.mjs";
1
+ import { n as fieldRulesToZod, r as createMcpServer, t as resourceToTools } from "../../resourceToTools-DH3c3e-T.mjs";
2
2
  import { createHash } from "node:crypto";
3
3
  import fp from "fastify-plugin";
4
4
  //#region src/integrations/mcp/definePrompt.ts
package/dist/integrations/mcp/testing.d.mts CHANGED
@@ -1,4 +1,4 @@
1
- import { o as McpAuthResult, s as McpPluginOptions } from "../../types-BJmgxNbF.mjs";
1
+ import { o as McpAuthResult, s as McpPluginOptions } from "../../types-D5rjsS_i.mjs";
2
2
 
3
3
  //#region src/integrations/mcp/testing.d.ts
4
4
  interface TestMcpClientOptions {
package/dist/integrations/mcp/testing.mjs CHANGED
@@ -1,4 +1,4 @@
1
- import { r as createMcpServer, t as resourceToTools } from "../../resourceToTools-PMFE8HIv.mjs";
1
+ import { r as createMcpServer, t as resourceToTools } from "../../resourceToTools-DH3c3e-T.mjs";
2
2
  //#region src/integrations/mcp/testing.ts
3
3
  /**
4
4
  * @classytic/arc/mcp/testing — MCP Test Utilities