@codenokami/node-api-master 1.4.2 → 1.5.0

package/dist/index.mjs

@@ -1,368 +1 @@
-var __defProp = Object.defineProperty;
-var __export = (target, all) => {
-  for (var name in all)
-    __defProp(target, name, { get: all[name], enumerable: true });
-};
-
-// src/index.js
-import Joi3 from "joi";
-
-// src/db/connection.js
-import mongoose from "mongoose";
-var connectDB = async (url) => {
-  if (!url) {
-    console.error(
-      "\u274C Error: MongoDB URL is required to connect to the database."
-    );
-    process.exit(1);
-  }
-  try {
-    const conn = await mongoose.connect(url);
-    console.log(`\u2705 MongoDB Connected: ${conn.connection.host}`);
-  } catch (error) {
-    console.error(`\u274C Error: ${error.message}`);
-    process.exit(1);
-  }
-};
-var connection_default = connectDB;
-
-// src/middleware/auth.js
-import jwt from "jsonwebtoken";
-
-// src/utils/AppError.js
-var AppError = class extends Error {
-  constructor(message, statusCode) {
-    super(message);
-    this.statusCode = statusCode;
-    this.status = `${statusCode}`.startsWith("4") ? "fail" : "error";
-    this.isOperational = true;
-    Error.captureStackTrace(this, this.constructor);
-  }
-};
-var AppError_default = AppError;
-
-// src/utils/catchAsync.js
-var catchAsync = (fn) => {
-  return (req, res, next) => {
-    fn(req, res, next).catch(next);
-  };
-};
-var catchAsync_default = catchAsync;
-
-// src/middleware/auth.js
-var auth = (secret = process.env.JWT_SECRET) => catchAsync_default(async (req, res, next) => {
-  let token;
-  if (req.headers.authorization && req.headers.authorization.startsWith("Bearer")) {
-    token = req.headers.authorization.split(" ")[1];
-  } else if (req.cookies && req.cookies.jwt) {
-    token = req.cookies.jwt;
-  }
-  if (!secret) {
-    return next(
-      new AppError_default("JWT Secret is not defined in environment variables", 500)
-    );
-  }
-  if (!token) {
-    return next(
-      new AppError_default(
-        "You are not logged in! Please log in to get access.",
-        401
-      )
-    );
-  }
-  try {
-    const decoded = jwt.verify(token, secret);
-    req.user = decoded;
-    next();
-  } catch (error) {
-    return next(
-      new AppError_default("Invalid token or expired. Please log in again.", 401)
-    );
-  }
-});
-var admin = (req, res, next) => {
-  if (req.user && req.user.role === "admin") {
-    next();
-  } else {
-    return next(
-      new AppError_default("You do not have permission to perform this action", 403)
-    );
-  }
-};
-
-// src/middleware/validate.js
-var validate = (schema) => (req, res, next) => {
-  const { error, value } = schema.validate(req.body, {
-    abortEarly: false,
-    // Error အားလုံးကို တစ်ခါတည်း ပြရန်
-    allowUnknown: true,
-    // Schema ထဲမပါတဲ့ field တွေပါလာရင် လက်ခံရန်
-    stripUnknown: true
-    // Schema ထဲမပါတဲ့ field တွေကို ဖယ်ထုတ်ပစ်ရန်
-  });
-  if (error) {
-    const errorMessage = error.details.map((detail) => detail.message.replace(/"/g, "")).join(", ");
-    return next(new AppError_default(errorMessage, 400));
-  }
-  req.body = value;
-  next();
-};
-var validate_default = validate;
-
-// src/utils/constants.js
-var PORT = process.env.PORT || 5e3;
-var STATUS_CODES = {
-  // --- 2xx Success ---
-  OK: 200,
-  // Request အောင်မြင်သည်
-  CREATED: 201,
-  // Data အသစ် တည်ဆောက်မှု အောင်မြင်သည်
-  ACCEPTED: 202,
-  // လက်ခံရရှိသည် (နောက်မှ အလုပ်လုပ်မည်)
-  NO_CONTENT: 204,
-  // အောင်မြင်သည်၊ သို့သော် ပြစရာ Data မရှိ (ဥပမာ- Delete လုပ်ပြီးချိန်)
-  // --- 3xx Redirection ---
-  MOVED_PERMANENTLY: 301,
-  FOUND: 302,
-  // --- 4xx Client Errors ---
-  BAD_REQUEST: 400,
-  // ပေးပို့လိုက်သော Data Format မှားနေသည် (Validation error)
-  UNAUTHORIZED: 401,
-  // Login ဝင်ရန် လိုအပ်သည် (သို့မဟုတ် Token မှားသည်)
-  FORBIDDEN: 403,
-  // လုပ်ပိုင်ခွင့်မရှိ (ဥပမာ- Admin မဟုတ်ဘဲ Admin panel ဝင်ခြင်း)
-  NOT_FOUND: 404,
-  // ရှာဖွေနေသော Resource မရှိပါ
-  METHOD_NOT_ALLOWED: 405,
-  // API Method (GET, POST, etc.) မှားနေသည်
-  CONFLICT: 409,
-  // Data ထပ်နေသည် (ဥပမာ- ရှိပြီးသား Email နဲ့ Register လုပ်ခြင်း)
-  UNPROCESSABLE_ENTITY: 422,
-  // Validation Error များအတွက် အသုံးများသည်
-  TOO_MANY_REQUESTS: 429,
-  // API ကို ခဏခဏ ဆက်တိုက်ခေါ်ခြင်း (Rate limiting)
-  // --- 5xx Server Errors ---
-  INTERNAL_SERVER_ERROR: 500,
-  // Server ထဲတွင် Code မှားယွင်းခြင်း
-  NOT_IMPLEMENTED: 501,
-  BAD_GATEWAY: 502,
-  SERVICE_UNAVAILABLE: 503,
-  // Server ခေတ္တပိတ်ထားသည်
-  GATEWAY_TIMEOUT: 504,
-  PORT
-};
-var constants_default = STATUS_CODES;
-
-// src/middleware/errorMiddleware.js
-var errorMiddleware = (err, req, res, next) => {
-  err.statusCode = err.statusCode || constants_default.INTERNAL_SERVER_ERROR;
-  err.status = err.status || "error";
-  if (process.env.NODE_ENV === "development") {
-    res.status(err.statusCode).json({
-      status: err.status,
-      error: err,
-      message: err.message,
-      stack: err.stack
-    });
-  } else {
-    if (err.isOperational) {
-      res.status(err.statusCode).json({
-        status: err.status,
-        message: err.message
-      });
-    } else {
-      console.error("ERROR \u{1F4A5}", err);
-      res.status(constants_default.INTERNAL_SERVER_ERROR).json({
-        status: "error",
-        message: "Something went very wrong!"
-      });
-    }
-  }
-};
-var errorMiddleware_default = errorMiddleware;
-
-// src/utils/response.js
-var apiResponse = {
-  // အောင်မြင်တဲ့ response ပေးပို့ရန်
-  success: (res, data, message = "Success", statusCode = constants_default.OK) => {
-    return res.status(statusCode).json({
-      status: "success",
-      message,
-      data
-    });
-  },
-  // Error response ပေးပို့ရန် (Operational error များအတွက်)
-  error: (res, message = "Internal Server Error", statusCode = constants_default.INTERNAL_SERVER_ERROR) => {
-    return res.status(statusCode).json({
-      status: "error",
-      message
-    });
-  }
-};
-var response_default = apiResponse;
-
-// src/utils/authHelper.js
-import bcrypt from "bcryptjs";
-import jwt2 from "jsonwebtoken";
-var hashPassword = async (password) => {
-  const salt = await bcrypt.genSalt(10);
-  return await bcrypt.hash(password, salt);
-};
-var comparePassword = async (password, hashedPassword) => {
-  return await bcrypt.compare(password, hashedPassword);
-};
-var generateToken = (payload, res, options = {}) => {
-  const secret = options.secret || process.env.JWT_SECRET;
-  const expiresIn = options.expiresIn || "30d";
-  const cookieName = options.cookieName || "jwt";
-  const token = jwt2.sign(payload, secret, {
-    expiresIn
-  });
-  const cookieOptions = {
-    maxAge: options.maxAge || 30 * 24 * 60 * 60 * 1e3,
-    // Default 30 days
-    httpOnly: true,
-    // JavaScript မှ ဖတ်မရအောင် (Prevent XSS)
-    sameSite: process.env.NODE_ENV === "production" ? "none" : "lax",
-    // CSRF Protection
-    secure: process.env.NODE_ENV === "production",
-    // Production တွင် HTTPS သုံးမှသာ အလုပ်လုပ်မည်
-    ...options.extraCookieOptions
-    // တခြား အပို options များရှိလျှင် ထည့်ရန်
-  };
-  res.cookie(cookieName, token, cookieOptions);
-  return token;
-};
-
-// src/utils/uuid.js
-import crypto from "crypto";
-var generateUUID = () => {
-  if (typeof crypto.randomUUID === "function") {
-    return crypto.randomUUID();
-  }
-  return ("10000000-1000-4000-8000" + -1e11).replace(
-    /[018]/g,
-    (c) => (c ^ crypto.randomBytes(1).readUInt8() & 15 >> c / 4).toString(16)
-  );
-};
-var uuid_default = generateUUID;
-
-// src/validations/user.schema.js
-import Joi from "joi";
-var userSchema = {
-  // Standard Register Schema
-  register: Joi.object({
-    username: Joi.string().alphanum().min(3).max(30).required().messages({
-      "string.min": "Username must be at least 3 characters long",
-      "any.required": "Username is a required field"
-    }),
-    email: Joi.string().email({ minDomainSegments: 2, tlds: { allow: ["com", "net", "org"] } }).required().messages({
-      "string.email": "Please provide a valid email address"
-    }),
-    password: Joi.string().min(8).required().messages({
-      "string.min": "Password must be at least 8 characters long"
-    }),
-    confirmPassword: Joi.any().equal(Joi.ref("password")).required().messages({ "any.only": "Passwords do not match" }),
-    role: Joi.string().valid("user", "admin").default("user")
-  }),
-  // Login Schema
-  login: Joi.object({
-    email: Joi.string().email().required(),
-    password: Joi.string().required()
-  }),
-  // Password Update Schema
-  updatePassword: Joi.object({
-    currentPassword: Joi.string().required(),
-    newPassword: Joi.string().min(8).required()
-  }),
-  /**
-   * စိတ်ကြိုက် schema အသစ်ဆောက်ချင်ရင် သုံးရန် (Dynamic Flexibility)
-   * @param {Object} schemaDefinition - Joi object definition
-   */
-  custom: (schemaDefinition) => Joi.object(schemaDefinition)
-};
-var user_schema_default = userSchema;
-
-// src/validations/common.schema.js
-import Joi2 from "joi";
-var commonSchema = {
-  // MongoDB ObjectId စစ်ဆေးရန် (24 hex characters)
-  objectId: Joi2.string().regex(/^[0-9a-fA-F]{24}$/).messages({
-    "string.pattern.base": "Invalid ID format. Must be a valid ObjectId."
-  }),
-  // Pagination အတွက် (Query strings)
-  pagination: Joi2.object({
-    page: Joi2.number().integer().min(1).default(1),
-    limit: Joi2.number().integer().min(1).max(100).default(10),
-    sort: Joi2.string().optional(),
-    fields: Joi2.string().optional()
-  })
-};
-var common_schema_default = commonSchema;
-
-// src/validations/index.js
-var schemas = {
-  user: user_schema_default,
-  common: common_schema_default
-};
-var validations_default = schemas;
-
-// src/socket/index.js
-var socket_exports = {};
-__export(socket_exports, {
-  getIO: () => getIO,
-  initSocket: () => initSocket
-});
-import { Server } from "socket.io";
-import jwt3 from "jsonwebtoken";
-var io;
-var socketAuth = (secret) => {
-  return (socket, next) => {
-    var _a, _b;
-    const token = ((_a = socket.handshake.auth) == null ? void 0 : _a.token) || ((_b = socket.handshake.headers) == null ? void 0 : _b.token);
-    if (!token) {
-      return next(new Error("Authentication error: Token missing"));
-    }
-    try {
-      const decoded = jwt3.verify(token, secret || process.env.JWT_SECRET);
-      socket.user = decoded;
-      next();
-    } catch (err) {
-      next(new Error("Authentication error: Invalid token"));
-    }
-  };
-};
-var initSocket = (server, options = {}) => {
-  io = new Server(server, {
-    cors: {
-      origin: options.origin || "*"
-    },
-    ...options
-  });
-  if (options.authRequired) {
-    io.use(socketAuth(options.jwtSecret));
-  }
-  return io;
-};
-var getIO = () => {
-  if (!io) throw new Error("Socket.io not initialized!");
-  return io;
-};
-export {
-  AppError_default as AppError,
-  Joi3 as Joi,
-  constants_default as STATUS_CODES,
-  admin,
-  response_default as apiResponse,
-  auth,
-  catchAsync_default as catchAsync,
-  comparePassword,
-  connection_default as connectDB,
-  errorMiddleware_default as errorMiddleware,
-  generateToken,
-  uuid_default as generateUUID,
-  hashPassword,
-  validations_default as schemas,
-  socket_exports as socket,
-  validate_default as validate
-};
+import{a as c}from"./chunk-B3SAPWGT.mjs";import d from"mongoose";var R=async e=>{e||(console.error("\u274C Error: MongoDB URL is required to connect to the database."),process.exit(1));try{let t=await d.connect(e);console.log(`\u2705 MongoDB Connected: ${t.connection.host}`)}catch(t){console.error(`\u274C Error: ${t.message}`),process.exit(1)}},T=R;import O from"jsonwebtoken";var f=e=>(t,o,r)=>{e(t,o,r).catch(r)},m=f;var N=(e=process.env.JWT_SECRET,t={})=>m(async(o,r,n)=>{let a;if(o.headers.authorization&&o.headers.authorization.startsWith("Bearer")?a=o.headers.authorization.split(" ")[1]:o.cookies&&o.cookies[t.cookieName||"jwt"]&&(a=o.cookies[t.cookieName||"jwt"]),!e)return n(new c("JWT Secret is not defined in environment variables",500));if(!a)return n(new c("You are not logged in! Please log in to get access.",401));try{let i=O.verify(a,e);o.user=i,n()}catch{return n(new c("Invalid token or expired. Please log in again.",401))}}),l=(e,t,o)=>{if(e.user&&e.user.role==="admin")o();else return o(new c("You do not have permission to perform this action",403))};var A=process.env.PORT||5e3,S={OK:200,CREATED:201,ACCEPTED:202,NO_CONTENT:204,MOVED_PERMANENTLY:301,FOUND:302,BAD_REQUEST:400,UNAUTHORIZED:401,FORBIDDEN:403,NOT_FOUND:404,METHOD_NOT_ALLOWED:405,CONFLICT:409,UNPROCESSABLE_ENTITY:422,TOO_MANY_REQUESTS:429,INTERNAL_SERVER_ERROR:500,NOT_IMPLEMENTED:501,BAD_GATEWAY:502,SERVICE_UNAVAILABLE:503,GATEWAY_TIMEOUT:504,PORT:A},s=S;var _=(e,t,o,r)=>{e.statusCode=e.statusCode||s.INTERNAL_SERVER_ERROR,e.status=e.status||"error",process.env.NODE_ENV==="development"?o.status(e.statusCode).json({status:e.status,error:e,message:e.message,stack:e.stack}):e.isOperational?o.status(e.statusCode).json({status:e.status,message:e.message}):(console.error("ERROR \u{1F4A5}",e),o.status(s.INTERNAL_SERVER_ERROR).json({status:"error",message:"Something went very wrong!"}))},g=_;var D={success:(e,t,o="Success",r=s.OK)=>e.status(r).json({status:"success",message:o,data:t}),error:(e,t="Internal Server Error",o=s.INTERNAL_SERVER_ERROR)=>e.status(o).json({status:"error",message:t})},h=D;import E from"bcryptjs";import U from"jsonwebtoken";var I=async e=>{let t=await E.genSalt(10);return await E.hash(e,t)},w=async(e,t)=>await E.compare(e,t),C=(e,t,o={})=>{let r=o.secret||process.env.JWT_SECRET,n=o.expiresIn||"30d",a=o.cookieName||"jwt",i=U.sign(e,r,{expiresIn:n}),u={maxAge:o.maxAge||720*60*60*1e3,httpOnly:!0,sameSite:process.env.NODE_ENV==="production"?"none":"lax",secure:process.env.NODE_ENV==="production",...o.extraCookieOptions};return t.cookie(a,i,u),i};import p from"crypto";var x=()=>typeof p.randomUUID=="function"?p.randomUUID():("10000000-1000-4000-8000"+-1e11).replace(/[018]/g,e=>(e^p.randomBytes(1).readUInt8()&15>>e/4).toString(16)),k=x;export{c as AppError,s as STATUS_CODES,l as admin,h as apiResponse,N as auth,m as catchAsync,w as comparePassword,T as connectDB,g as errorMiddleware,C as generateToken,k as generateUUID,I as hashPassword};

package/dist/socket.d.mts

@@ -0,0 +1,55 @@
+import { Server } from 'socket.io';
+import jwt from 'jsonwebtoken';
+
+let io;
+
+/**
+ * Socket Authentication Middleware
+ */
+const socketAuth = (secret) => {
+  return (socket, next) => {
+    const token =
+      socket.handshake.auth?.token || socket.handshake.headers?.token;
+
+    if (!token) {
+      return next(new Error("Authentication error: Token missing"));
+    }
+
+    try {
+      const decoded = jwt.verify(token, secret || process.env.JWT_SECRET);
+      socket.user = decoded; // socket ထဲမှာ user data သိမ်းထားမယ်
+      next();
+    } catch (err) {
+      next(new Error("Authentication error: Invalid token"));
+    }
+  };
+};
+
+/**
+ * Socket Initialize လုပ်ခြင်း
+ */
+const initSocket = (server, options = {}) => {
+  io = new Server(server, {
+    cors: {
+      origin: options.origin || "*",
+    },
+    ...options,
+  });
+
+  // JWT Middleware ကို အသုံးပြုခြင်း
+  if (options.authRequired) {
+    io.use(socketAuth(options.jwtSecret));
+  }
+
+  return io;
+};
+
+/**
+ * Initialize ပြီးသား IO object ကို ပြန်ယူခြင်း
+ */
+const getIO = () => {
+  if (!io) throw new Error("Socket.io not initialized!");
+  return io;
+};
+
+export { getIO, initSocket };

package/dist/socket.d.ts

@@ -0,0 +1,55 @@
+import { Server } from 'socket.io';
+import jwt from 'jsonwebtoken';
+
+let io;
+
+/**
+ * Socket Authentication Middleware
+ */
+const socketAuth = (secret) => {
+  return (socket, next) => {
+    const token =
+      socket.handshake.auth?.token || socket.handshake.headers?.token;
+
+    if (!token) {
+      return next(new Error("Authentication error: Token missing"));
+    }
+
+    try {
+      const decoded = jwt.verify(token, secret || process.env.JWT_SECRET);
+      socket.user = decoded; // socket ထဲမှာ user data သိမ်းထားမယ်
+      next();
+    } catch (err) {
+      next(new Error("Authentication error: Invalid token"));
+    }
+  };
+};
+
+/**
+ * Socket Initialize လုပ်ခြင်း
+ */
+const initSocket = (server, options = {}) => {
+  io = new Server(server, {
+    cors: {
+      origin: options.origin || "*",
+    },
+    ...options,
+  });
+
+  // JWT Middleware ကို အသုံးပြုခြင်း
+  if (options.authRequired) {
+    io.use(socketAuth(options.jwtSecret));
+  }
+
+  return io;
+};
+
+/**
+ * Initialize ပြီးသား IO object ကို ပြန်ယူခြင်း
+ */
+const getIO = () => {
+  if (!io) throw new Error("Socket.io not initialized!");
+  return io;
+};
+
+export { getIO, initSocket };

package/dist/socket.js

@@ -0,0 +1 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true}); function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }var _socketio = require('socket.io');var _jsonwebtoken = require('jsonwebtoken'); var _jsonwebtoken2 = _interopRequireDefault(_jsonwebtoken);var e,s=t=>(r,o)=>{var i,c;let n=((i=r.handshake.auth)==null?void 0:i.token)||((c=r.handshake.headers)==null?void 0:c.token);if(!n)return o(new Error("Authentication error: Token missing"));try{let a=_jsonwebtoken2.default.verify(n,t||process.env.JWT_SECRET);r.user=a,o()}catch (e2){o(new Error("Authentication error: Invalid token"))}},f= exports.initSocket =(t,r={})=>(e=new (0, _socketio.Server)(t,{cors:{origin:r.origin||"*"},...r}),r.authRequired&&e.use(s(r.jwtSecret)),e),w= exports.getIO =()=>{if(!e)throw new Error("Socket.io not initialized!");return e};exports.getIO = w; exports.initSocket = f;

package/dist/socket.mjs

@@ -0,0 +1 @@
+import{Server as h}from"socket.io";import u from"jsonwebtoken";var e,s=t=>(r,o)=>{var i,c;let n=((i=r.handshake.auth)==null?void 0:i.token)||((c=r.handshake.headers)==null?void 0:c.token);if(!n)return o(new Error("Authentication error: Token missing"));try{let a=u.verify(n,t||process.env.JWT_SECRET);r.user=a,o()}catch{o(new Error("Authentication error: Invalid token"))}},f=(t,r={})=>(e=new h(t,{cors:{origin:r.origin||"*"},...r}),r.authRequired&&e.use(s(r.jwtSecret)),e),w=()=>{if(!e)throw new Error("Socket.io not initialized!");return e};export{w as getIO,f as initSocket};

package/dist/validation.d.mts

@@ -0,0 +1,101 @@
+import Joi from 'joi';
+export { default as Joi } from 'joi';
+import { A as AppError } from './AppError-ByGDb4IL.mjs';
+
+/**
+ * Joi Schema Validation Middleware
+ * @param {Object} schema - Joi validation schema
+ */
+const validate = (schema) => (req, res, next) => {
+  // body, query, params အားလုံးကို စစ်လို့ရအောင် req object တစ်ခုလုံးကို schema နဲ့ တိုက်စစ်မယ်
+  const { error, value } = schema.validate(req.body, {
+    abortEarly: false, // Error အားလုံးကို တစ်ခါတည်း ပြရန်
+    allowUnknown: true, // Schema ထဲမပါတဲ့ field တွေပါလာရင် လက်ခံရန်
+    stripUnknown: true, // Schema ထဲမပါတဲ့ field တွေကို ဖယ်ထုတ်ပစ်ရန်
+  });
+
+  if (error) {
+    // Error message တွေကို စုစည်းပြီး format လုပ်မယ်
+    const errorMessage = error.details
+      .map((detail) => detail.message.replace(/"/g, ""))
+      .join(", ");
+
+    return next(new AppError(errorMessage, 400));
+  }
+
+  // စစ်ဆေးပြီးသား data (sanitized data) ကို req.body ထဲ ပြန်ထည့်မယ်
+  req.body = value;
+  next();
+};
+
+/**
+ * User Validation Schemas
+ */
+const userSchema = {
+  // Standard Register Schema
+  register: Joi.object({
+    username: Joi.string().alphanum().min(3).max(30).required().messages({
+      "string.min": "Username must be at least 3 characters long",
+      "any.required": "Username is a required field",
+    }),
+    email: Joi.string()
+      .email({ minDomainSegments: 2, tlds: { allow: ["com", "net", "org"] } })
+      .required()
+      .messages({
+        "string.email": "Please provide a valid email address",
+      }),
+    password: Joi.string().min(8).required().messages({
+      "string.min": "Password must be at least 8 characters long",
+    }),
+    confirmPassword: Joi.any()
+      .equal(Joi.ref("password"))
+      .required()
+      .messages({ "any.only": "Passwords do not match" }),
+    role: Joi.string().valid("user", "admin").default("user"),
+  }),
+
+  // Login Schema
+  login: Joi.object({
+    email: Joi.string().email().required(),
+    password: Joi.string().required(),
+  }),
+
+  // Password Update Schema
+  updatePassword: Joi.object({
+    currentPassword: Joi.string().required(),
+    newPassword: Joi.string().min(8).required(),
+  }),
+
+  /**
+   * စိတ်ကြိုက် schema အသစ်ဆောက်ချင်ရင် သုံးရန် (Dynamic Flexibility)
+   * @param {Object} schemaDefinition - Joi object definition
+   */
+  custom: (schemaDefinition) => Joi.object(schemaDefinition),
+};
+
+/**
+ * Common Joi Schemas
+ */
+const commonSchema = {
+  // MongoDB ObjectId စစ်ဆေးရန် (24 hex characters)
+  objectId: Joi.string()
+    .regex(/^[0-9a-fA-F]{24}$/)
+    .messages({
+      "string.pattern.base": "Invalid ID format. Must be a valid ObjectId.",
+    }),
+
+  // Pagination အတွက် (Query strings)
+  pagination: Joi.object({
+    page: Joi.number().integer().min(1).default(1),
+    limit: Joi.number().integer().min(1).max(100).default(10),
+    sort: Joi.string().optional(),
+    fields: Joi.string().optional(),
+  }),
+};
+
+const schemas = {
+  user: userSchema,
+  common: commonSchema,
+};
+
+export { schemas as default, schemas, validate };

package/dist/validation.d.ts

@@ -0,0 +1,101 @@
+import Joi from 'joi';
+export { default as Joi } from 'joi';
+import { A as AppError } from './AppError-ByGDb4IL.js';
+
+/**
+ * Joi Schema Validation Middleware
+ * @param {Object} schema - Joi validation schema
+ */
+const validate = (schema) => (req, res, next) => {
+  // body, query, params အားလုံးကို စစ်လို့ရအောင် req object တစ်ခုလုံးကို schema နဲ့ တိုက်စစ်မယ်
+  const { error, value } = schema.validate(req.body, {
+    abortEarly: false, // Error အားလုံးကို တစ်ခါတည်း ပြရန်
+    allowUnknown: true, // Schema ထဲမပါတဲ့ field တွေပါလာရင် လက်ခံရန်
+    stripUnknown: true, // Schema ထဲမပါတဲ့ field တွေကို ဖယ်ထုတ်ပစ်ရန်
+  });
+
+  if (error) {
+    // Error message တွေကို စုစည်းပြီး format လုပ်မယ်
+    const errorMessage = error.details
+      .map((detail) => detail.message.replace(/"/g, ""))
+      .join(", ");
+
+    return next(new AppError(errorMessage, 400));
+  }
+
+  // စစ်ဆေးပြီးသား data (sanitized data) ကို req.body ထဲ ပြန်ထည့်မယ်
+  req.body = value;
+  next();
+};
+
+/**
+ * User Validation Schemas
+ */
+const userSchema = {
+  // Standard Register Schema
+  register: Joi.object({
+    username: Joi.string().alphanum().min(3).max(30).required().messages({
+      "string.min": "Username must be at least 3 characters long",
+      "any.required": "Username is a required field",
+    }),
+    email: Joi.string()
+      .email({ minDomainSegments: 2, tlds: { allow: ["com", "net", "org"] } })
+      .required()
+      .messages({
+        "string.email": "Please provide a valid email address",
+      }),
+    password: Joi.string().min(8).required().messages({
+      "string.min": "Password must be at least 8 characters long",
+    }),
+    confirmPassword: Joi.any()
+      .equal(Joi.ref("password"))
+      .required()
+      .messages({ "any.only": "Passwords do not match" }),
+    role: Joi.string().valid("user", "admin").default("user"),
+  }),
+
+  // Login Schema
+  login: Joi.object({
+    email: Joi.string().email().required(),
+    password: Joi.string().required(),
+  }),
+
+  // Password Update Schema
+  updatePassword: Joi.object({
+    currentPassword: Joi.string().required(),
+    newPassword: Joi.string().min(8).required(),
+  }),
+
+  /**
+   * စိတ်ကြိုက် schema အသစ်ဆောက်ချင်ရင် သုံးရန် (Dynamic Flexibility)
+   * @param {Object} schemaDefinition - Joi object definition
+   */
+  custom: (schemaDefinition) => Joi.object(schemaDefinition),
+};
+
+/**
+ * Common Joi Schemas
+ */
+const commonSchema = {
+  // MongoDB ObjectId စစ်ဆေးရန် (24 hex characters)
+  objectId: Joi.string()
+    .regex(/^[0-9a-fA-F]{24}$/)
+    .messages({
+      "string.pattern.base": "Invalid ID format. Must be a valid ObjectId.",
+    }),
+
+  // Pagination အတွက် (Query strings)
+  pagination: Joi.object({
+    page: Joi.number().integer().min(1).default(1),
+    limit: Joi.number().integer().min(1).max(100).default(10),
+    sort: Joi.string().optional(),
+    fields: Joi.string().optional(),
+  }),
+};
+
+const schemas = {
+  user: userSchema,
+  common: commonSchema,
+};
+
+export { schemas as default, schemas, validate };