npm - @crowi/api - Versions diffs - 2.0.0-alpha.0 - Mend

@crowi/api 2.0.0-alpha.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (887) hide show

package/LICENSE +21 -0
package/dist/app.d.ts +8 -0
package/dist/app.js +65 -0
package/dist/app.js.map +1 -0
package/dist/collab/attach.d.ts +33 -0
package/dist/collab/attach.js +341 -0
package/dist/collab/attach.js.map +1 -0
package/dist/collab/extension-redis.d.ts +25 -0
package/dist/collab/extension-redis.js +133 -0
package/dist/collab/extension-redis.js.map +1 -0
package/dist/common/functions/path2name.d.ts +1 -0
package/dist/common/functions/path2name.js +22 -0
package/dist/common/functions/path2name.js.map +1 -0
package/dist/common/functions/renderIcon.d.ts +1 -0
package/dist/common/functions/renderIcon.js +9 -0
package/dist/common/functions/renderIcon.js.map +1 -0
package/dist/controllers/admin.d.ts +3 -0
package/dist/controllers/admin.js +474 -0
package/dist/controllers/admin.js.map +1 -0
package/dist/controllers/attachment.d.ts +4 -0
package/dist/controllers/attachment.js +200 -0
package/dist/controllers/attachment.js.map +1 -0
package/dist/controllers/backlink.d.ts +3 -0
package/dist/controllers/backlink.js +42 -0
package/dist/controllers/backlink.js.map +1 -0
package/dist/controllers/bookmark.d.ts +3 -0
package/dist/controllers/bookmark.js +100 -0
package/dist/controllers/bookmark.js.map +1 -0
package/dist/controllers/comment.d.ts +3 -0
package/dist/controllers/comment.js +111 -0
package/dist/controllers/comment.js.map +1 -0
package/dist/controllers/index.d.ts +25 -0
package/dist/controllers/index.js +44 -0
package/dist/controllers/index.js.map +1 -0
package/dist/controllers/installer.d.ts +3 -0
package/dist/controllers/installer.js +48 -0
package/dist/controllers/installer.js.map +1 -0
package/dist/controllers/login.d.ts +4 -0
package/dist/controllers/login.js +438 -0
package/dist/controllers/login.js.map +1 -0
package/dist/controllers/logout.d.ts +5 -0
package/dist/controllers/logout.js +11 -0
package/dist/controllers/logout.js.map +1 -0
package/dist/controllers/me.d.ts +4 -0
package/dist/controllers/me.js +369 -0
package/dist/controllers/me.js.map +1 -0
package/dist/controllers/notification.d.ts +3 -0
package/dist/controllers/notification.js +88 -0
package/dist/controllers/notification.js.map +1 -0
package/dist/controllers/page.d.ts +3 -0
package/dist/controllers/page.js +881 -0
package/dist/controllers/page.js.map +1 -0
package/dist/controllers/revision.d.ts +3 -0
package/dist/controllers/revision.js +91 -0
package/dist/controllers/revision.js.map +1 -0
package/dist/controllers/search.d.ts +3 -0
package/dist/controllers/search.js +93 -0
package/dist/controllers/search.js.map +1 -0
package/dist/controllers/share.d.ts +3 -0
package/dist/controllers/share.js +207 -0
package/dist/controllers/share.js.map +1 -0
package/dist/controllers/shareAccess.d.ts +3 -0
package/dist/controllers/shareAccess.js +28 -0
package/dist/controllers/shareAccess.js.map +1 -0
package/dist/controllers/slack.d.ts +3 -0
package/dist/controllers/slack.js +87 -0
package/dist/controllers/slack.js.map +1 -0
package/dist/controllers/tokenAuth.d.ts +10 -0
package/dist/controllers/tokenAuth.js +292 -0
package/dist/controllers/tokenAuth.js.map +1 -0
package/dist/controllers/user.d.ts +3 -0
package/dist/controllers/user.js +67 -0
package/dist/controllers/user.js.map +1 -0
package/dist/controllers/version.d.ts +4 -0
package/dist/controllers/version.js +19 -0
package/dist/controllers/version.js.map +1 -0
package/dist/crowi/express-init.d.ts +4 -0
package/dist/crowi/express-init.js +101 -0
package/dist/crowi/express-init.js.map +1 -0
package/dist/crowi/index.d.ts +245 -0
package/dist/crowi/index.js +726 -0
package/dist/crowi/index.js.map +1 -0
package/dist/events/activity.d.ts +7 -0
package/dist/events/activity.js +15 -0
package/dist/events/activity.js.map +1 -0
package/dist/events/bookmark.d.ts +8 -0
package/dist/events/bookmark.js +16 -0
package/dist/events/bookmark.js.map +1 -0
package/dist/events/comment.d.ts +6 -0
package/dist/events/comment.js +14 -0
package/dist/events/comment.js.map +1 -0
package/dist/events/config.d.ts +6 -0
package/dist/events/config.js +12 -0
package/dist/events/config.js.map +1 -0
package/dist/events/index.d.ts +17 -0
package/dist/events/index.js +22 -0
package/dist/events/index.js.map +1 -0
package/dist/events/mention-dispatch.d.ts +44 -0
package/dist/events/mention-dispatch.js +151 -0
package/dist/events/mention-dispatch.js.map +1 -0
package/dist/events/notification.d.ts +7 -0
package/dist/events/notification.js +15 -0
package/dist/events/notification.js.map +1 -0
package/dist/events/page.d.ts +44 -0
package/dist/events/page.js +134 -0
package/dist/events/page.js.map +1 -0
package/dist/events/render-cache.d.ts +24 -0
package/dist/events/render-cache.js +63 -0
package/dist/events/render-cache.js.map +1 -0
package/dist/events/user.d.ts +9 -0
package/dist/events/user.js +39 -0
package/dist/events/user.js.map +1 -0
package/dist/form/admin/app.d.ts +2 -0
package/dist/form/admin/app.js +9 -0
package/dist/form/admin/app.js.map +1 -0
package/dist/form/admin/auth.d.ts +2 -0
package/dist/form/admin/auth.js +9 -0
package/dist/form/admin/auth.js.map +1 -0
package/dist/form/admin/aws.d.ts +2 -0
package/dist/form/admin/aws.js +13 -0
package/dist/form/admin/aws.js.map +1 -0
package/dist/form/admin/github.d.ts +2 -0
package/dist/form/admin/github.js +15 -0
package/dist/form/admin/github.js.map +1 -0
package/dist/form/admin/google.d.ts +2 -0
package/dist/form/admin/google.js +13 -0
package/dist/form/admin/google.js.map +1 -0
package/dist/form/admin/mail.d.ts +2 -0
package/dist/form/admin/mail.js +13 -0
package/dist/form/admin/mail.js.map +1 -0
package/dist/form/admin/sec.d.ts +2 -0
package/dist/form/admin/sec.js +10 -0
package/dist/form/admin/sec.js.map +1 -0
package/dist/form/admin/slackSetting.d.ts +2 -0
package/dist/form/admin/slackSetting.js +13 -0
package/dist/form/admin/slackSetting.js.map +1 -0
package/dist/form/admin/userEdit.d.ts +2 -0
package/dist/form/admin/userEdit.js +9 -0
package/dist/form/admin/userEdit.js.map +1 -0
package/dist/form/admin/userInvite.d.ts +2 -0
package/dist/form/admin/userInvite.js +9 -0
package/dist/form/admin/userInvite.js.map +1 -0
package/dist/form/comment.d.ts +2 -0
package/dist/form/comment.js +9 -0
package/dist/form/comment.js.map +1 -0
package/dist/form/index.d.ts +25 -0
package/dist/form/index.js +48 -0
package/dist/form/index.js.map +1 -0
package/dist/form/invited.d.ts +2 -0
package/dist/form/invited.js +13 -0
package/dist/form/invited.js.map +1 -0
package/dist/form/login.d.ts +2 -0
package/dist/form/login.js +11 -0
package/dist/form/login.js.map +1 -0
package/dist/form/me/apiToken.d.ts +2 -0
package/dist/form/me/apiToken.js +9 -0
package/dist/form/me/apiToken.js.map +1 -0
package/dist/form/me/password.d.ts +2 -0
package/dist/form/me/password.js +11 -0
package/dist/form/me/password.js.map +1 -0
package/dist/form/me/user.d.ts +2 -0
package/dist/form/me/user.js +9 -0
package/dist/form/me/user.js.map +1 -0
package/dist/form/register.d.ts +2 -0
package/dist/form/register.js +13 -0
package/dist/form/register.js.map +1 -0
package/dist/form/revision.d.ts +2 -0
package/dist/form/revision.js +13 -0
package/dist/form/revision.js.map +1 -0
package/dist/hono/app.d.ts +19 -0
package/dist/hono/app.js +21 -0
package/dist/hono/app.js.map +1 -0
package/dist/hono/handlers/_helpers/errors.d.ts +61 -0
package/dist/hono/handlers/_helpers/errors.js +51 -0
package/dist/hono/handlers/_helpers/errors.js.map +1 -0
package/dist/hono/handlers/_helpers/user-shape.d.ts +46 -0
package/dist/hono/handlers/_helpers/user-shape.js +23 -0
package/dist/hono/handlers/_helpers/user-shape.js.map +1 -0
package/dist/hono/handlers/access-token.d.ts +221 -0
package/dist/hono/handlers/access-token.js +113 -0
package/dist/hono/handlers/access-token.js.map +1 -0
package/dist/hono/handlers/activation.d.ts +117 -0
package/dist/hono/handlers/activation.js +77 -0
package/dist/hono/handlers/activation.js.map +1 -0
package/dist/hono/handlers/admin/app.d.ts +123 -0
package/dist/hono/handlers/admin/app.js +76 -0
package/dist/hono/handlers/admin/app.js.map +1 -0
package/dist/hono/handlers/admin/auth.d.ts +127 -0
package/dist/hono/handlers/admin/auth.js +91 -0
package/dist/hono/handlers/admin/auth.js.map +1 -0
package/dist/hono/handlers/admin/mail.d.ts +168 -0
package/dist/hono/handlers/admin/mail.js +76 -0
package/dist/hono/handlers/admin/mail.js.map +1 -0
package/dist/hono/handlers/admin/plugins.d.ts +409 -0
package/dist/hono/handlers/admin/plugins.js +257 -0
package/dist/hono/handlers/admin/plugins.js.map +1 -0
package/dist/hono/handlers/admin/search.d.ts +57 -0
package/dist/hono/handlers/admin/search.js +55 -0
package/dist/hono/handlers/admin/search.js.map +1 -0
package/dist/hono/handlers/admin/security.d.ts +112 -0
package/dist/hono/handlers/admin/security.js +71 -0
package/dist/hono/handlers/admin/security.js.map +1 -0
package/dist/hono/handlers/admin/share.d.ts +106 -0
package/dist/hono/handlers/admin/share.js +55 -0
package/dist/hono/handlers/admin/share.js.map +1 -0
package/dist/hono/handlers/admin/storage.d.ts +55 -0
package/dist/hono/handlers/admin/storage.js +40 -0
package/dist/hono/handlers/admin/storage.js.map +1 -0
package/dist/hono/handlers/admin/users.d.ts +1230 -0
package/dist/hono/handlers/admin/users.js +316 -0
package/dist/hono/handlers/admin/users.js.map +1 -0
package/dist/hono/handlers/adminCrypto.d.ts +110 -0
package/dist/hono/handlers/adminCrypto.js +151 -0
package/dist/hono/handlers/adminCrypto.js.map +1 -0
package/dist/hono/handlers/app.d.ts +26 -0
package/dist/hono/handlers/app.js +34 -0
package/dist/hono/handlers/app.js.map +1 -0
package/dist/hono/handlers/attachment-stream.d.ts +4 -0
package/dist/hono/handlers/attachment-stream.js +211 -0
package/dist/hono/handlers/attachment-stream.js.map +1 -0
package/dist/hono/handlers/attachment.d.ts +687 -0
package/dist/hono/handlers/attachment.js +566 -0
package/dist/hono/handlers/attachment.js.map +1 -0
package/dist/hono/handlers/autocomplete.d.ts +160 -0
package/dist/hono/handlers/autocomplete.js +181 -0
package/dist/hono/handlers/autocomplete.js.map +1 -0
package/dist/hono/handlers/backlink.d.ts +78 -0
package/dist/hono/handlers/backlink.js +93 -0
package/dist/hono/handlers/backlink.js.map +1 -0
package/dist/hono/handlers/bookmark.d.ts +558 -0
package/dist/hono/handlers/bookmark.js +166 -0
package/dist/hono/handlers/bookmark.js.map +1 -0
package/dist/hono/handlers/comment.d.ts +231 -0
package/dist/hono/handlers/comment.js +191 -0
package/dist/hono/handlers/comment.js.map +1 -0
package/dist/hono/handlers/draft.d.ts +136 -0
package/dist/hono/handlers/draft.js +191 -0
package/dist/hono/handlers/draft.js.map +1 -0
package/dist/hono/handlers/emailChange.d.ts +124 -0
package/dist/hono/handlers/emailChange.js +79 -0
package/dist/hono/handlers/emailChange.js.map +1 -0
package/dist/hono/handlers/installer.d.ts +94 -0
package/dist/hono/handlers/installer.js +93 -0
package/dist/hono/handlers/installer.js.map +1 -0
package/dist/hono/handlers/inviteAccept.d.ts +180 -0
package/dist/hono/handlers/inviteAccept.js +94 -0
package/dist/hono/handlers/inviteAccept.js.map +1 -0
package/dist/hono/handlers/me.d.ts +401 -0
package/dist/hono/handlers/me.js +390 -0
package/dist/hono/handlers/me.js.map +1 -0
package/dist/hono/handlers/notification.d.ts +274 -0
package/dist/hono/handlers/notification.js +224 -0
package/dist/hono/handlers/notification.js.map +1 -0
package/dist/hono/handlers/oauth.d.ts +299 -0
package/dist/hono/handlers/oauth.js +443 -0
package/dist/hono/handlers/oauth.js.map +1 -0
package/dist/hono/handlers/page-collab.d.ts +79 -0
package/dist/hono/handlers/page-collab.js +98 -0
package/dist/hono/handlers/page-collab.js.map +1 -0
package/dist/hono/handlers/page-preview.d.ts +48 -0
package/dist/hono/handlers/page-preview.js +83 -0
package/dist/hono/handlers/page-preview.js.map +1 -0
package/dist/hono/handlers/page.d.ts +2059 -0
package/dist/hono/handlers/page.js +793 -0
package/dist/hono/handlers/page.js.map +1 -0
package/dist/hono/handlers/passwordReset.d.ts +181 -0
package/dist/hono/handlers/passwordReset.js +101 -0
package/dist/hono/handlers/passwordReset.js.map +1 -0
package/dist/hono/handlers/presence.d.ts +178 -0
package/dist/hono/handlers/presence.js +163 -0
package/dist/hono/handlers/presence.js.map +1 -0
package/dist/hono/handlers/revision.d.ts +345 -0
package/dist/hono/handlers/revision.js +202 -0
package/dist/hono/handlers/revision.js.map +1 -0
package/dist/hono/handlers/search.d.ts +208 -0
package/dist/hono/handlers/search.js +152 -0
package/dist/hono/handlers/search.js.map +1 -0
package/dist/hono/handlers/tokenAuth.d.ts +369 -0
package/dist/hono/handlers/tokenAuth.js +240 -0
package/dist/hono/handlers/tokenAuth.js.map +1 -0
package/dist/hono/handlers/user.d.ts +710 -0
package/dist/hono/handlers/user.js +212 -0
package/dist/hono/handlers/user.js.map +1 -0
package/dist/hono/index.d.ts +289 -0
package/dist/hono/index.js +240 -0
package/dist/hono/index.js.map +1 -0
package/dist/hono/middleware/admin.d.ts +5 -0
package/dist/hono/middleware/admin.js +34 -0
package/dist/hono/middleware/admin.js.map +1 -0
package/dist/hono/middleware/auth.d.ts +54 -0
package/dist/hono/middleware/auth.js +142 -0
package/dist/hono/middleware/auth.js.map +1 -0
package/dist/hono/middleware/cors.d.ts +3 -0
package/dist/hono/middleware/cors.js +86 -0
package/dist/hono/middleware/cors.js.map +1 -0
package/dist/hono/middleware/default-hook.d.ts +8 -0
package/dist/hono/middleware/default-hook.js +17 -0
package/dist/hono/middleware/default-hook.js.map +1 -0
package/dist/hono/middleware/error-handler.d.ts +2 -0
package/dist/hono/middleware/error-handler.js +20 -0
package/dist/hono/middleware/error-handler.js.map +1 -0
package/dist/hono/middleware/rate-limit.d.ts +57 -0
package/dist/hono/middleware/rate-limit.js +42 -0
package/dist/hono/middleware/rate-limit.js.map +1 -0
package/dist/hono/middleware/require-scope.d.ts +50 -0
package/dist/hono/middleware/require-scope.js +64 -0
package/dist/hono/middleware/require-scope.js.map +1 -0
package/dist/hono/path-rewrite.d.ts +15 -0
package/dist/hono/path-rewrite.js +59 -0
package/dist/hono/path-rewrite.js.map +1 -0
package/dist/mail/i18n/en.d.ts +2 -0
package/dist/mail/i18n/en.js +66 -0
package/dist/mail/i18n/en.js.map +1 -0
package/dist/mail/i18n/index.d.ts +46 -0
package/dist/mail/i18n/index.js +31 -0
package/dist/mail/i18n/index.js.map +1 -0
package/dist/mail/i18n/ja.d.ts +2 -0
package/dist/mail/i18n/ja.js +66 -0
package/dist/mail/i18n/ja.js.map +1 -0
package/dist/mcp/attach.d.ts +25 -0
package/dist/mcp/attach.js +104 -0
package/dist/mcp/attach.js.map +1 -0
package/dist/mcp/dispatch.d.ts +59 -0
package/dist/mcp/dispatch.js +70 -0
package/dist/mcp/dispatch.js.map +1 -0
package/dist/mcp/result.d.ts +40 -0
package/dist/mcp/result.js +78 -0
package/dist/mcp/result.js.map +1 -0
package/dist/mcp/server.d.ts +67 -0
package/dist/mcp/server.js +113 -0
package/dist/mcp/server.js.map +1 -0
package/dist/mcp/tools/page.d.ts +2 -0
package/dist/mcp/tools/page.js +256 -0
package/dist/mcp/tools/page.js.map +1 -0
package/dist/mcp/tools/search.d.ts +2 -0
package/dist/mcp/tools/search.js +36 -0
package/dist/mcp/tools/search.js.map +1 -0
package/dist/middlewares/accessTokenParser.d.ts +4 -0
package/dist/middlewares/accessTokenParser.js +29 -0
package/dist/middlewares/accessTokenParser.js.map +1 -0
package/dist/middlewares/adminRequired.d.ts +10 -0
package/dist/middlewares/adminRequired.js +35 -0
package/dist/middlewares/adminRequired.js.map +1 -0
package/dist/middlewares/applicationInstalled.d.ts +3 -0
package/dist/middlewares/applicationInstalled.js +20 -0
package/dist/middlewares/applicationInstalled.js.map +1 -0
package/dist/middlewares/applicationNotInstalled.d.ts +3 -0
package/dist/middlewares/applicationNotInstalled.js +13 -0
package/dist/middlewares/applicationNotInstalled.js.map +1 -0
package/dist/middlewares/basicAuth.d.ts +4 -0
package/dist/middlewares/basicAuth.js +23 -0
package/dist/middlewares/basicAuth.js.map +1 -0
package/dist/middlewares/csrfVerify.d.ts +4 -0
package/dist/middlewares/csrfVerify.js +24 -0
package/dist/middlewares/csrfVerify.js.map +1 -0
package/dist/middlewares/encodeSpace.d.ts +3 -0
package/dist/middlewares/encodeSpace.js +14 -0
package/dist/middlewares/encodeSpace.js.map +1 -0
package/dist/middlewares/fileAccessRightOrLoginRequired.d.ts +4 -0
package/dist/middlewares/fileAccessRightOrLoginRequired.js +29 -0
package/dist/middlewares/fileAccessRightOrLoginRequired.js.map +1 -0
package/dist/middlewares/index.d.ts +16 -0
package/dist/middlewares/index.js +30 -0
package/dist/middlewares/index.js.map +1 -0
package/dist/middlewares/jwtAdminRequired.d.ts +8 -0
package/dist/middlewares/jwtAdminRequired.js +35 -0
package/dist/middlewares/jwtAdminRequired.js.map +1 -0
package/dist/middlewares/jwtAuth.d.ts +4 -0
package/dist/middlewares/jwtAuth.js +104 -0
package/dist/middlewares/jwtAuth.js.map +1 -0
package/dist/middlewares/loginChecker.d.ts +4 -0
package/dist/middlewares/loginChecker.js +32 -0
package/dist/middlewares/loginChecker.js.map +1 -0
package/dist/middlewares/loginRequired.d.ts +4 -0
package/dist/middlewares/loginRequired.js +88 -0
package/dist/middlewares/loginRequired.js.map +1 -0
package/dist/migration/cli-api.d.ts +83 -0
package/dist/migration/cli-api.js +128 -0
package/dist/migration/cli-api.js.map +1 -0
package/dist/migration/migrations/index.d.ts +12 -0
package/dist/migration/migrations/index.js +24 -0
package/dist/migration/migrations/index.js.map +1 -0
package/dist/migration/migrations/page-status-default.d.ts +25 -0
package/dist/migration/migrations/page-status-default.js +79 -0
package/dist/migration/migrations/page-status-default.js.map +1 -0
package/dist/migration/migrations/revisions-schema-unify.d.ts +33 -0
package/dist/migration/migrations/revisions-schema-unify.js +88 -0
package/dist/migration/migrations/revisions-schema-unify.js.map +1 -0
package/dist/migration/migrations/user-unique-prepare.d.ts +1 -0
package/dist/migration/migrations/user-unique-prepare.js +214 -0
package/dist/migration/migrations/user-unique-prepare.js.map +1 -0
package/dist/migration/migrations/wikilink-format.d.ts +97 -0
package/dist/migration/migrations/wikilink-format.js +418 -0
package/dist/migration/migrations/wikilink-format.js.map +1 -0
package/dist/migration/rebuild-api.d.ts +50 -0
package/dist/migration/rebuild-api.js +45 -0
package/dist/migration/rebuild-api.js.map +1 -0
package/dist/migration/rebuild-runner.d.ts +64 -0
package/dist/migration/rebuild-runner.js +42 -0
package/dist/migration/rebuild-runner.js.map +1 -0
package/dist/migration/rebuilds/index.d.ts +26 -0
package/dist/migration/rebuilds/index.js +69 -0
package/dist/migration/rebuilds/index.js.map +1 -0
package/dist/migration/registry.d.ts +15 -0
package/dist/migration/registry.js +96 -0
package/dist/migration/registry.js.map +1 -0
package/dist/migration/run-boot-migrations.d.ts +31 -0
package/dist/migration/run-boot-migrations.js +95 -0
package/dist/migration/run-boot-migrations.js.map +1 -0
package/dist/migration/runner.d.ts +120 -0
package/dist/migration/runner.js +276 -0
package/dist/migration/runner.js.map +1 -0
package/dist/migration/types.d.ts +153 -0
package/dist/migration/types.js +13 -0
package/dist/migration/types.js.map +1 -0
package/dist/models/activity.d.ts +34 -0
package/dist/models/activity.js +263 -0
package/dist/models/activity.js.map +1 -0
package/dist/models/attachment.d.ts +25 -0
package/dist/models/attachment.js +82 -0
package/dist/models/attachment.js.map +1 -0
package/dist/models/backlink.d.ts +19 -0
package/dist/models/backlink.js +138 -0
package/dist/models/backlink.js.map +1 -0
package/dist/models/bookmark.d.ts +28 -0
package/dist/models/bookmark.js +136 -0
package/dist/models/bookmark.js.map +1 -0
package/dist/models/comment.d.ts +21 -0
package/dist/models/comment.js +87 -0
package/dist/models/comment.js.map +1 -0
package/dist/models/config-sensitive.d.ts +21 -0
package/dist/models/config-sensitive.js +71 -0
package/dist/models/config-sensitive.js.map +1 -0
package/dist/models/config.d.ts +34 -0
package/dist/models/config.js +161 -0
package/dist/models/config.js.map +1 -0
package/dist/models/index.d.ts +30 -0
package/dist/models/index.js +55 -0
package/dist/models/index.js.map +1 -0
package/dist/models/migration-application.d.ts +54 -0
package/dist/models/migration-application.js +36 -0
package/dist/models/migration-application.js.map +1 -0
package/dist/models/notification.d.ts +28 -0
package/dist/models/notification.js +285 -0
package/dist/models/notification.js.map +1 -0
package/dist/models/oauth-authorization-code.d.ts +34 -0
package/dist/models/oauth-authorization-code.js +100 -0
package/dist/models/oauth-authorization-code.js.map +1 -0
package/dist/models/oauth-client.d.ts +36 -0
package/dist/models/oauth-client.js +56 -0
package/dist/models/oauth-client.js.map +1 -0
package/dist/models/oauth-device-code.d.ts +55 -0
package/dist/models/oauth-device-code.js +158 -0
package/dist/models/oauth-device-code.js.map +1 -0
package/dist/models/oauth-refresh-token.d.ts +31 -0
package/dist/models/oauth-refresh-token.js +118 -0
package/dist/models/oauth-refresh-token.js.map +1 -0
package/dist/models/page-yjs-update.d.ts +35 -0
package/dist/models/page-yjs-update.js +33 -0
package/dist/models/page-yjs-update.js.map +1 -0
package/dist/models/page.d.ts +200 -0
package/dist/models/page.js +1117 -0
package/dist/models/page.js.map +1 -0
package/dist/models/personal-access-token.d.ts +30 -0
package/dist/models/personal-access-token.js +107 -0
package/dist/models/personal-access-token.js.map +1 -0
package/dist/models/plugin-render-cache.d.ts +40 -0
package/dist/models/plugin-render-cache.js +39 -0
package/dist/models/plugin-render-cache.js.map +1 -0
package/dist/models/revision.d.ts +145 -0
package/dist/models/revision.js +241 -0
package/dist/models/revision.js.map +1 -0
package/dist/models/share.d.ts +38 -0
package/dist/models/share.js +137 -0
package/dist/models/share.js.map +1 -0
package/dist/models/shareAccess.d.ts +20 -0
package/dist/models/shareAccess.js +45 -0
package/dist/models/shareAccess.js.map +1 -0
package/dist/models/tracking.d.ts +14 -0
package/dist/models/tracking.js +14 -0
package/dist/models/tracking.js.map +1 -0
package/dist/models/updatePost.d.ts +25 -0
package/dist/models/updatePost.js +87 -0
package/dist/models/updatePost.js.map +1 -0
package/dist/models/user.d.ts +144 -0
package/dist/models/user.js +681 -0
package/dist/models/user.js.map +1 -0
package/dist/models/watcher.d.ts +23 -0
package/dist/models/watcher.js +75 -0
package/dist/models/watcher.js.map +1 -0
package/dist/notifications/attach.d.ts +63 -0
package/dist/notifications/attach.js +426 -0
package/dist/notifications/attach.js.map +1 -0
package/dist/notifications/channel.d.ts +13 -0
package/dist/notifications/channel.js +18 -0
package/dist/notifications/channel.js.map +1 -0
package/dist/plugin/index.d.ts +2 -0
package/dist/plugin/index.js +6 -0
package/dist/plugin/index.js.map +1 -0
package/dist/plugin/plugin-context.d.ts +22 -0
package/dist/plugin/plugin-context.js +126 -0
package/dist/plugin/plugin-context.js.map +1 -0
package/dist/plugin/plugin-manager.d.ts +164 -0
package/dist/plugin/plugin-manager.js +328 -0
package/dist/plugin/plugin-manager.js.map +1 -0
package/dist/plugin/plugin-namespace.d.ts +28 -0
package/dist/plugin/plugin-namespace.js +53 -0
package/dist/plugin/plugin-namespace.js.map +1 -0
package/dist/plugin/registries.d.ts +38 -0
package/dist/plugin/registries.js +71 -0
package/dist/plugin/registries.js.map +1 -0
package/dist/plugin/schema-serializer.d.ts +34 -0
package/dist/plugin/schema-serializer.js +122 -0
package/dist/plugin/schema-serializer.js.map +1 -0
package/dist/plugin/topo-sort.d.ts +15 -0
package/dist/plugin/topo-sort.js +59 -0
package/dist/plugin/topo-sort.js.map +1 -0
package/dist/presence/attach.d.ts +36 -0
package/dist/presence/attach.js +399 -0
package/dist/presence/attach.js.map +1 -0
package/dist/renderer/__fixtures__/echo-embed.d.ts +27 -0
package/dist/renderer/__fixtures__/echo-embed.js +24 -0
package/dist/renderer/__fixtures__/echo-embed.js.map +1 -0
package/dist/renderer/cache/index.d.ts +60 -0
package/dist/renderer/cache/index.js +219 -0
package/dist/renderer/cache/index.js.map +1 -0
package/dist/renderer/cache/mongodb-cache.d.ts +82 -0
package/dist/renderer/cache/mongodb-cache.js +180 -0
package/dist/renderer/cache/mongodb-cache.js.map +1 -0
package/dist/renderer/cache/reservation.d.ts +20 -0
package/dist/renderer/cache/reservation.js +115 -0
package/dist/renderer/cache/reservation.js.map +1 -0
package/dist/renderer/core/_mdast-walk.d.ts +35 -0
package/dist/renderer/core/_mdast-walk.js +45 -0
package/dist/renderer/core/_mdast-walk.js.map +1 -0
package/dist/renderer/core/code-block-dispatch.d.ts +31 -0
package/dist/renderer/core/code-block-dispatch.js +166 -0
package/dist/renderer/core/code-block-dispatch.js.map +1 -0
package/dist/renderer/core/code-blocks.d.ts +12 -0
package/dist/renderer/core/code-blocks.js +32 -0
package/dist/renderer/core/code-blocks.js.map +1 -0
package/dist/renderer/core/embed-tags.d.ts +14 -0
package/dist/renderer/core/embed-tags.js +154 -0
package/dist/renderer/core/embed-tags.js.map +1 -0
package/dist/renderer/core/headings.d.ts +16 -0
package/dist/renderer/core/headings.js +31 -0
package/dist/renderer/core/headings.js.map +1 -0
package/dist/renderer/core/index.d.ts +65 -0
package/dist/renderer/core/index.js +83 -0
package/dist/renderer/core/index.js.map +1 -0
package/dist/renderer/core/mention-resolve.d.ts +39 -0
package/dist/renderer/core/mention-resolve.js +75 -0
package/dist/renderer/core/mention-resolve.js.map +1 -0
package/dist/renderer/core/mentions.d.ts +2 -0
package/dist/renderer/core/mentions.js +83 -0
package/dist/renderer/core/mentions.js.map +1 -0
package/dist/renderer/core/syntax-highlight.d.ts +21 -0
package/dist/renderer/core/syntax-highlight.js +64 -0
package/dist/renderer/core/syntax-highlight.js.map +1 -0
package/dist/renderer/core/url-inline-expand.d.ts +9 -0
package/dist/renderer/core/url-inline-expand.js +157 -0
package/dist/renderer/core/url-inline-expand.js.map +1 -0
package/dist/renderer/core/wikilinks.d.ts +2 -0
package/dist/renderer/core/wikilinks.js +118 -0
package/dist/renderer/core/wikilinks.js.map +1 -0
package/dist/renderer/index.d.ts +67 -0
package/dist/renderer/index.js +99 -0
package/dist/renderer/index.js.map +1 -0
package/dist/renderer/pipeline.d.ts +134 -0
package/dist/renderer/pipeline.js +203 -0
package/dist/renderer/pipeline.js.map +1 -0
package/dist/renderer/registry.d.ts +83 -0
package/dist/renderer/registry.js +130 -0
package/dist/renderer/registry.js.map +1 -0
package/dist/renderer/serialize.d.ts +27 -0
package/dist/renderer/serialize.js +46 -0
package/dist/renderer/serialize.js.map +1 -0
package/dist/renderer/version.d.ts +30 -0
package/dist/renderer/version.js +34 -0
package/dist/renderer/version.js.map +1 -0
package/dist/routes/admin.d.ts +4 -0
package/dist/routes/admin.js +17 -0
package/dist/routes/admin.js.map +1 -0
package/dist/routes/api/admin.d.ts +4 -0
package/dist/routes/api/admin.js +37 -0
package/dist/routes/api/admin.js.map +1 -0
package/dist/routes/api/attachment.d.ts +4 -0
package/dist/routes/api/attachment.js +19 -0
package/dist/routes/api/attachment.js.map +1 -0
package/dist/routes/api/bookmark.d.ts +4 -0
package/dist/routes/api/bookmark.js +15 -0
package/dist/routes/api/bookmark.js.map +1 -0
package/dist/routes/api/comment.d.ts +4 -0
package/dist/routes/api/comment.js +14 -0
package/dist/routes/api/comment.js.map +1 -0
package/dist/routes/api/index.d.ts +4 -0
package/dist/routes/api/index.js +36 -0
package/dist/routes/api/index.js.map +1 -0
package/dist/routes/api/like.d.ts +4 -0
package/dist/routes/api/like.js +13 -0
package/dist/routes/api/like.js.map +1 -0
package/dist/routes/api/notification.d.ts +4 -0
package/dist/routes/api/notification.js +15 -0
package/dist/routes/api/notification.js.map +1 -0
package/dist/routes/api/page.d.ts +4 -0
package/dist/routes/api/page.js +24 -0
package/dist/routes/api/page.js.map +1 -0
package/dist/routes/api/revision.d.ts +4 -0
package/dist/routes/api/revision.js +14 -0
package/dist/routes/api/revision.js.map +1 -0
package/dist/routes/api/share.d.ts +4 -0
package/dist/routes/api/share.js +16 -0
package/dist/routes/api/share.js.map +1 -0
package/dist/routes/api/version.d.ts +4 -0
package/dist/routes/api/version.js +10 -0
package/dist/routes/api/version.js.map +1 -0
package/dist/routes/index.d.ts +4 -0
package/dist/routes/index.js +71 -0
package/dist/routes/index.js.map +1 -0
package/dist/routes/login.d.ts +4 -0
package/dist/routes/login.js +18 -0
package/dist/routes/login.js.map +1 -0
package/dist/routes/me.d.ts +4 -0
package/dist/routes/me.js +24 -0
package/dist/routes/me.js.map +1 -0
package/dist/routes/ts-rest/admin/app.d.ts +4 -0
package/dist/routes/ts-rest/admin/app.js +67 -0
package/dist/routes/ts-rest/admin/app.js.map +1 -0
package/dist/routes/ts-rest/admin/auth.d.ts +4 -0
package/dist/routes/ts-rest/admin/auth.js +95 -0
package/dist/routes/ts-rest/admin/auth.js.map +1 -0
package/dist/routes/ts-rest/admin/index.d.ts +10 -0
package/dist/routes/ts-rest/admin/index.js +35 -0
package/dist/routes/ts-rest/admin/index.js.map +1 -0
package/dist/routes/ts-rest/admin/mail.d.ts +4 -0
package/dist/routes/ts-rest/admin/mail.js +156 -0
package/dist/routes/ts-rest/admin/mail.js.map +1 -0
package/dist/routes/ts-rest/admin/plugins.d.ts +4 -0
package/dist/routes/ts-rest/admin/plugins.js +317 -0
package/dist/routes/ts-rest/admin/plugins.js.map +1 -0
package/dist/routes/ts-rest/admin/search.d.ts +4 -0
package/dist/routes/ts-rest/admin/search.js +67 -0
package/dist/routes/ts-rest/admin/search.js.map +1 -0
package/dist/routes/ts-rest/admin/security.d.ts +4 -0
package/dist/routes/ts-rest/admin/security.js +114 -0
package/dist/routes/ts-rest/admin/security.js.map +1 -0
package/dist/routes/ts-rest/admin/share.d.ts +4 -0
package/dist/routes/ts-rest/admin/share.js +69 -0
package/dist/routes/ts-rest/admin/share.js.map +1 -0
package/dist/routes/ts-rest/admin/storage.d.ts +4 -0
package/dist/routes/ts-rest/admin/storage.js +59 -0
package/dist/routes/ts-rest/admin/storage.js.map +1 -0
package/dist/routes/ts-rest/admin/users.d.ts +4 -0
package/dist/routes/ts-rest/admin/users.js +215 -0
package/dist/routes/ts-rest/admin/users.js.map +1 -0
package/dist/routes/ts-rest/adminCrypto.d.ts +4 -0
package/dist/routes/ts-rest/adminCrypto.js +111 -0
package/dist/routes/ts-rest/adminCrypto.js.map +1 -0
package/dist/routes/ts-rest/app.d.ts +4 -0
package/dist/routes/ts-rest/app.js +23 -0
package/dist/routes/ts-rest/app.js.map +1 -0
package/dist/routes/ts-rest/attachment.d.ts +4 -0
package/dist/routes/ts-rest/attachment.js +830 -0
package/dist/routes/ts-rest/attachment.js.map +1 -0
package/dist/routes/ts-rest/auth.d.ts +4 -0
package/dist/routes/ts-rest/auth.js +70 -0
package/dist/routes/ts-rest/auth.js.map +1 -0
package/dist/routes/ts-rest/autocomplete.d.ts +30 -0
package/dist/routes/ts-rest/autocomplete.js +189 -0
package/dist/routes/ts-rest/autocomplete.js.map +1 -0
package/dist/routes/ts-rest/backlink.d.ts +4 -0
package/dist/routes/ts-rest/backlink.js +106 -0
package/dist/routes/ts-rest/backlink.js.map +1 -0
package/dist/routes/ts-rest/bookmark.d.ts +4 -0
package/dist/routes/ts-rest/bookmark.js +189 -0
package/dist/routes/ts-rest/bookmark.js.map +1 -0
package/dist/routes/ts-rest/comment.d.ts +4 -0
package/dist/routes/ts-rest/comment.js +217 -0
package/dist/routes/ts-rest/comment.js.map +1 -0
package/dist/routes/ts-rest/draft.d.ts +22 -0
package/dist/routes/ts-rest/draft.js +200 -0
package/dist/routes/ts-rest/draft.js.map +1 -0
package/dist/routes/ts-rest/index.d.ts +4 -0
package/dist/routes/ts-rest/index.js +103 -0
package/dist/routes/ts-rest/index.js.map +1 -0
package/dist/routes/ts-rest/installer.d.ts +4 -0
package/dist/routes/ts-rest/installer.js +77 -0
package/dist/routes/ts-rest/installer.js.map +1 -0
package/dist/routes/ts-rest/me.d.ts +4 -0
package/dist/routes/ts-rest/me.js +410 -0
package/dist/routes/ts-rest/me.js.map +1 -0
package/dist/routes/ts-rest/notification.d.ts +4 -0
package/dist/routes/ts-rest/notification.js +241 -0
package/dist/routes/ts-rest/notification.js.map +1 -0
package/dist/routes/ts-rest/page-collab.d.ts +29 -0
package/dist/routes/ts-rest/page-collab.js +90 -0
package/dist/routes/ts-rest/page-collab.js.map +1 -0
package/dist/routes/ts-rest/page-preview.d.ts +26 -0
package/dist/routes/ts-rest/page-preview.js +80 -0
package/dist/routes/ts-rest/page-preview.js.map +1 -0
package/dist/routes/ts-rest/page.d.ts +4 -0
package/dist/routes/ts-rest/page.js +676 -0
package/dist/routes/ts-rest/page.js.map +1 -0
package/dist/routes/ts-rest/presence.d.ts +30 -0
package/dist/routes/ts-rest/presence.js +155 -0
package/dist/routes/ts-rest/presence.js.map +1 -0
package/dist/routes/ts-rest/revision.d.ts +4 -0
package/dist/routes/ts-rest/revision.js +240 -0
package/dist/routes/ts-rest/revision.js.map +1 -0
package/dist/routes/ts-rest/search.d.ts +4 -0
package/dist/routes/ts-rest/search.js +121 -0
package/dist/routes/ts-rest/search.js.map +1 -0
package/dist/routes/ts-rest/tokenAuth.d.ts +4 -0
package/dist/routes/ts-rest/tokenAuth.js +94 -0
package/dist/routes/ts-rest/tokenAuth.js.map +1 -0
package/dist/routes/ts-rest/user.d.ts +4 -0
package/dist/routes/ts-rest/user.js +307 -0
package/dist/routes/ts-rest/user.js.map +1 -0
package/dist/service/config.d.ts +50 -0
package/dist/service/config.js +202 -0
package/dist/service/config.js.map +1 -0
package/dist/service/lru.d.ts +11 -0
package/dist/service/lru.js +47 -0
package/dist/service/lru.js.map +1 -0
package/dist/service/mail.d.ts +107 -0
package/dist/service/mail.js +220 -0
package/dist/service/mail.js.map +1 -0
package/dist/service/notification.d.ts +9 -0
package/dist/service/notification.js +19 -0
package/dist/service/notification.js.map +1 -0
package/dist/service/presence.d.ts +219 -0
package/dist/service/presence.js +602 -0
package/dist/service/presence.js.map +1 -0
package/dist/types/error.d.ts +13 -0
package/dist/types/error.js +13 -0
package/dist/types/error.js.map +1 -0
package/dist/types/express.d.ts +34 -0
package/dist/types/express.js +50 -0
package/dist/types/express.js.map +1 -0
package/dist/types/mongoose-extensions.d.ts +8 -0
package/dist/types/mongoose-extensions.js +24 -0
package/dist/types/mongoose-extensions.js.map +1 -0
package/dist/util/accessTokenParser.d.ts +1 -0
package/dist/util/accessTokenParser.js +34 -0
package/dist/util/accessTokenParser.js.map +1 -0
package/dist/util/activityDefine.d.ts +15 -0
package/dist/util/activityDefine.js +52 -0
package/dist/util/activityDefine.js.map +1 -0
package/dist/util/admin-config.d.ts +57 -0
package/dist/util/admin-config.js +99 -0
package/dist/util/admin-config.js.map +1 -0
package/dist/util/admin-pager.d.ts +24 -0
package/dist/util/admin-pager.js +73 -0
package/dist/util/admin-pager.js.map +1 -0
package/dist/util/apiPaginate.d.ts +11 -0
package/dist/util/apiPaginate.js +33 -0
package/dist/util/apiPaginate.js.map +1 -0
package/dist/util/apiResponse.d.ts +9 -0
package/dist/util/apiResponse.js +23 -0
package/dist/util/apiResponse.js.map +1 -0
package/dist/util/auth.d.ts +11 -0
package/dist/util/auth.js +48 -0
package/dist/util/auth.js.map +1 -0
package/dist/util/auto-watch.d.ts +35 -0
package/dist/util/auto-watch.js +24 -0
package/dist/util/auto-watch.js.map +1 -0
package/dist/util/autocomplete-match.d.ts +44 -0
package/dist/util/autocomplete-match.js +80 -0
package/dist/util/autocomplete-match.js.map +1 -0
package/dist/util/aws-config-migration.d.ts +11 -0
package/dist/util/aws-config-migration.js +68 -0
package/dist/util/aws-config-migration.js.map +1 -0
package/dist/util/boot-reporter.d.ts +130 -0
package/dist/util/boot-reporter.js +242 -0
package/dist/util/boot-reporter.js.map +1 -0
package/dist/util/collab-cap.d.ts +39 -0
package/dist/util/collab-cap.js +90 -0
package/dist/util/collab-cap.js.map +1 -0
package/dist/util/crypto.d.ts +39 -0
package/dist/util/crypto.js +105 -0
package/dist/util/crypto.js.map +1 -0
package/dist/util/dedup-users.d.ts +96 -0
package/dist/util/dedup-users.js +149 -0
package/dist/util/dedup-users.js.map +1 -0
package/dist/util/editor-cap-counter.d.ts +90 -0
package/dist/util/editor-cap-counter.js +175 -0
package/dist/util/editor-cap-counter.js.map +1 -0
package/dist/util/fileUploader.d.ts +55 -0
package/dist/util/fileUploader.js +70 -0
package/dist/util/fileUploader.js.map +1 -0
package/dist/util/formUtil.d.ts +2 -0
package/dist/util/formUtil.js +15 -0
package/dist/util/formUtil.js.map +1 -0
package/dist/util/githubAuth.d.ts +2 -0
package/dist/util/githubAuth.js +82 -0
package/dist/util/githubAuth.js.map +1 -0
package/dist/util/googleAuth.d.ts +2 -0
package/dist/util/googleAuth.js +85 -0
package/dist/util/googleAuth.js.map +1 -0
package/dist/util/jwt.d.ts +50 -0
package/dist/util/jwt.js +127 -0
package/dist/util/jwt.js.map +1 -0
package/dist/util/linkDetector.d.ts +3 -0
package/dist/util/linkDetector.js +91 -0
package/dist/util/linkDetector.js.map +1 -0
package/dist/util/mail-token.d.ts +24 -0
package/dist/util/mail-token.js +117 -0
package/dist/util/mail-token.js.map +1 -0
package/dist/util/mailer.d.ts +7 -0
package/dist/util/mailer.js +98 -0
package/dist/util/mailer.js.map +1 -0
package/dist/util/map-duplicate-key-error.d.ts +26 -0
package/dist/util/map-duplicate-key-error.js +41 -0
package/dist/util/map-duplicate-key-error.js.map +1 -0
package/dist/util/mongoose-paginate.d.ts +10 -0
package/dist/util/mongoose-paginate.js +23 -0
package/dist/util/mongoose-paginate.js.map +1 -0
package/dist/util/notifications-token.d.ts +35 -0
package/dist/util/notifications-token.js +140 -0
package/dist/util/notifications-token.js.map +1 -0
package/dist/util/oauth-client-seed.d.ts +2 -0
package/dist/util/oauth-client-seed.js +48 -0
package/dist/util/oauth-client-seed.js.map +1 -0
package/dist/util/oauth-redirect-uri.d.ts +2 -0
package/dist/util/oauth-redirect-uri.js +55 -0
package/dist/util/oauth-redirect-uri.js.map +1 -0
package/dist/util/page-response.d.ts +113 -0
package/dist/util/page-response.js +154 -0
package/dist/util/page-response.js.map +1 -0
package/dist/util/page-search-index.d.ts +19 -0
package/dist/util/page-search-index.js +91 -0
package/dist/util/page-search-index.js.map +1 -0
package/dist/util/page-status-migration.d.ts +23 -0
package/dist/util/page-status-migration.js +48 -0
package/dist/util/page-status-migration.js.map +1 -0
package/dist/util/path.d.ts +2 -0
package/dist/util/path.js +12 -0
package/dist/util/path.js.map +1 -0
package/dist/util/pkce.d.ts +13 -0
package/dist/util/pkce.js +30 -0
package/dist/util/pkce.js.map +1 -0
package/dist/util/presence-token.d.ts +21 -0
package/dist/util/presence-token.js +120 -0
package/dist/util/presence-token.js.map +1 -0
package/dist/util/rate-limit.d.ts +67 -0
package/dist/util/rate-limit.js +87 -0
package/dist/util/rate-limit.js.map +1 -0
package/dist/util/rebuild-backlink.d.ts +25 -0
package/dist/util/rebuild-backlink.js +7 -0
package/dist/util/rebuild-backlink.js.map +1 -0
package/dist/util/rebuild-renderer.d.ts +31 -0
package/dist/util/rebuild-renderer.js +7 -0
package/dist/util/rebuild-renderer.js.map +1 -0
package/dist/util/redis-opts.d.ts +17 -0
package/dist/util/redis-opts.js +40 -0
package/dist/util/redis-opts.js.map +1 -0
package/dist/util/regex.d.ts +2 -0
package/dist/util/regex.js +8 -0
package/dist/util/regex.js.map +1 -0
package/dist/util/search-rebuild.d.ts +18 -0
package/dist/util/search-rebuild.js +28 -0
package/dist/util/search-rebuild.js.map +1 -0
package/dist/util/ssr.d.ts +3 -0
package/dist/util/ssr.js +9 -0
package/dist/util/ssr.js.map +1 -0
package/dist/util/storage-copy.d.ts +40 -0
package/dist/util/storage-copy.js +123 -0
package/dist/util/storage-copy.js.map +1 -0
package/dist/util/ts-rest-helpers.d.ts +110 -0
package/dist/util/ts-rest-helpers.js +110 -0
package/dist/util/ts-rest-helpers.js.map +1 -0
package/dist/util/url.d.ts +1 -0
package/dist/util/url.js +11 -0
package/dist/util/url.js.map +1 -0
package/dist/util/user-code.d.ts +10 -0
package/dist/util/user-code.js +55 -0
package/dist/util/user-code.js.map +1 -0
package/dist/util/view.d.ts +10 -0
package/dist/util/view.js +99 -0
package/dist/util/view.js.map +1 -0
package/dist/util/watcher-backfill.d.ts +30 -0
package/dist/util/watcher-backfill.js +43 -0
package/dist/util/watcher-backfill.js.map +1 -0
package/dist/util/ws-token.d.ts +24 -0
package/dist/util/ws-token.js +134 -0
package/dist/util/ws-token.js.map +1 -0
package/package.json +106 -0

package/dist/models/oauth-client.d.ts ADDED Viewed

@@ -0,0 +1,36 @@
+import { Document, Model, Types } from 'mongoose';
+import Crowi from '../crowi';
+/**
+ * RFC-0010 §Mongoose models — OAuth 2.0 client registration.
+ *
+ * v1 ships a single first-party `crowi-cli` client (seeded idempotently at
+ * boot, see `util/oauth-client-seed.ts`). The model is shaped from the
+ * start to admit operator-registered apps later (confidential clients with
+ * a `secretHash`, arbitrary `redirectUris`), but no registration UI exists
+ * in v1 — `crowi-cli` is the only row.
+ *
+ * `crowi-cli` is a **public** client: it has no secret (`secretHash: null`)
+ * and authenticates purely via PKCE (RFC-0010 §Security). `redirectUris`
+ * for it list the loopback hosts; the actual port is matched at request
+ * time by `util/oauth-redirect-uri.ts` (loopback host match, any port).
+ */
+export type OAuthClientType = 'public' | 'confidential';
+export interface OAuthClientDocument extends Document {
+    _id: Types.ObjectId;
+    clientId: string;
+    name: string;
+    type: OAuthClientType;
+    /** Confidential clients only; `null` for public (PKCE) clients. */
+    secretHash: string | null;
+    redirectUris: string[];
+    allowedScopes: string[];
+    firstParty: boolean;
+    /** Reserved: even a trusted client still shows the consent screen in v1. */
+    trusted: boolean;
+    createdAt: Date;
+}
+export interface OAuthClientModel extends Model<OAuthClientDocument> {
+    findByClientId(clientId: string): Promise<OAuthClientDocument | null>;
+}
+declare const _default: (_crowi: Crowi) => OAuthClientModel;
+export default _default;

package/dist/models/oauth-client.js ADDED Viewed

@@ -0,0 +1,56 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const mongoose_1 = require("mongoose");
+exports.default = (_crowi) => {
+    const schema = new mongoose_1.Schema({
+        clientId: {
+            type: String,
+            required: true,
+            unique: true,
+            index: true,
+        },
+        name: {
+            type: String,
+            required: true,
+        },
+        type: {
+            type: String,
+            enum: ['public', 'confidential'],
+            required: true,
+        },
+        secretHash: {
+            type: String,
+            default: null,
+        },
+        redirectUris: {
+            type: [String],
+            required: true,
+            default: [],
+        },
+        allowedScopes: {
+            type: [String],
+            required: true,
+            default: [],
+        },
+        firstParty: {
+            type: Boolean,
+            required: true,
+            default: false,
+        },
+        trusted: {
+            type: Boolean,
+            required: true,
+            default: false,
+        },
+        createdAt: {
+            type: Date,
+            default: Date.now,
+        },
+    });
+    schema.statics.findByClientId = function (clientId) {
+        return OAuthClient.findOne({ clientId }).exec();
+    };
+    const OAuthClient = (0, mongoose_1.model)('OAuthClient', schema);
+    return OAuthClient;
+};
+//# sourceMappingURL=oauth-client.js.map

package/dist/models/oauth-client.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"oauth-client.js","sourceRoot":"","sources":["../../src/models/oauth-client.ts"],"names":[],"mappings":";;AAAA,uCAAiE;AAuCjE,kBAAe,CAAC,MAAa,EAAE,EAAE;IAC/B,MAAM,MAAM,GAAG,IAAI,iBAAM,CAAwC;QAC/D,QAAQ,EAAE;YACR,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,IAAI;YACZ,KAAK,EAAE,IAAI;SACZ;QACD,IAAI,EAAE;YACJ,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;SACf;QACD,IAAI,EAAE;YACJ,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,CAAC,QAAQ,EAAE,cAAc,CAAC;YAChC,QAAQ,EAAE,IAAI;SACf;QACD,UAAU,EAAE;YACV,IAAI,EAAE,MAAM;YACZ,OAAO,EAAE,IAAI;SACd;QACD,YAAY,EAAE;YACZ,IAAI,EAAE,CAAC,MAAM,CAAC;YACd,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,EAAE;SACZ;QACD,aAAa,EAAE;YACb,IAAI,EAAE,CAAC,MAAM,CAAC;YACd,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,EAAE;SACZ;QACD,UAAU,EAAE;YACV,IAAI,EAAE,OAAO;YACb,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,KAAK;SACf;QACD,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,KAAK;SACf;QACD,SAAS,EAAE;YACT,IAAI,EAAE,IAAI;YACV,OAAO,EAAE,IAAI,CAAC,GAAG;SAClB;KACF,CAAC,CAAC;IAEH,MAAM,CAAC,OAAO,CAAC,cAAc,GAAG,UAAU,QAAgB;QACxD,OAAO,WAAW,CAAC,OAAO,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IAClD,CAAC,CAAC;IAEF,MAAM,WAAW,GAAG,IAAA,gBAAK,EAAwC,aAAa,EAAE,MAAM,CAAC,CAAC;IAExF,OAAO,WAAW,CAAC;AACrB,CAAC,CAAC"}

package/dist/models/oauth-device-code.d.ts ADDED Viewed

@@ -0,0 +1,55 @@
+import { Document, Model, Types } from 'mongoose';
+import Crowi from '../crowi';
+export type OAuthDeviceCodeStatus = 'pending' | 'approved' | 'denied';
+export interface OAuthDeviceCodeDocument extends Document {
+    _id: Types.ObjectId;
+    deviceCodeHash: string;
+    userCode: string;
+    clientId: string;
+    requestedScopes: string[];
+    grantedScopes: string[];
+    status: OAuthDeviceCodeStatus;
+    userId: Types.ObjectId | null;
+    expiresAt: Date;
+    interval: number;
+    lastPolledAt: Date | null;
+    consumedAt: Date | null;
+    createdAt: Date;
+}
+export interface OAuthDeviceCodeModel extends Model<OAuthDeviceCodeDocument> {
+    /** SHA-256-hex of an opaque device code (the form stored in `deviceCodeHash`). */
+    hashDeviceCode(deviceCode: string): string;
+    /** Generate a fresh opaque device-code plaintext + its SHA-256 hash. */
+    generateDeviceCode(): {
+        deviceCode: string;
+        deviceCodeHash: string;
+    };
+    /**
+     * Create a pending device code, retrying `generateUserCode()` on a
+     * `userCode` collision (unique index). Returns the saved document plus the
+     * one-time plaintext `deviceCode`.
+     */
+    createPending(input: {
+        clientId: string;
+        requestedScopes: string[];
+        expiresAt: Date;
+        interval: number;
+    }): Promise<{
+        doc: OAuthDeviceCodeDocument;
+        deviceCode: string;
+    }>;
+    /** A usable (unconsumed, unexpired) device code by hash, or null. */
+    findByDeviceCodeHash(deviceCodeHash: string): Promise<OAuthDeviceCodeDocument | null>;
+    /** An unexpired device code by its human `user_code`, or null. */
+    findByUserCode(userCode: string): Promise<OAuthDeviceCodeDocument | null>;
+    /** Lightweight `lastPolledAt` bump on the poll path (failures swallowed). */
+    touchPolled(deviceCodeHash: string): Promise<void>;
+    /**
+     * Atomically mark an approved, unconsumed, unexpired code consumed and
+     * return it, or null otherwise. Prevents a device code from minting tokens
+     * twice even under concurrent polls.
+     */
+    consume(deviceCodeHash: string): Promise<OAuthDeviceCodeDocument | null>;
+}
+declare const _default: (_crowi: Crowi) => OAuthDeviceCodeModel;
+export default _default;

package/dist/models/oauth-device-code.js ADDED Viewed

@@ -0,0 +1,158 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const node_crypto_1 = __importDefault(require("node:crypto"));
+const mongoose_1 = require("mongoose");
+const user_code_1 = require("../util/user-code");
+/**
+ * RFC-0010 Phase 4 — OAuth 2.0 Device Authorization Grant device code
+ * (RFC 8628).
+ *
+ * Issued by `POST /oauth/device/authorize` for a headless client, approved
+ * (or denied) by the user at `POST /oauth/device/verify` on a second device,
+ * and polled at `POST /oauth/token` (device_code grant). Storage mirrors the
+ * authorization-code model:
+ *
+ *  - Only the SHA-256 **hash** of the opaque `device_code` is stored; the
+ *    plaintext is returned once from `/oauth/device/authorize` and never
+ *    persisted. `user_code` is the human-typed handle and *is* stored
+ *    verbatim (it is short, single-use, and only meaningful while the row
+ *    lives), guarded by a unique index.
+ *  - A TTL index on `expiresAt` sweeps stale rows (~10min lifetime); the
+ *    query side (`findByDeviceCodeHash` / `findByUserCode`) also filters
+ *    `expiresAt > now` because the TTL monitor lags by up to a minute.
+ *  - `consume` flips `consumedAt` atomically so two concurrent token polls of
+ *    an approved code cannot both mint tokens.
+ */
+const DEVICE_CODE_RANDOM_BYTES = 32;
+/** Retries on a `userCode` unique-index collision before giving up. */
+const USER_CODE_MAX_ATTEMPTS = 5;
+exports.default = (_crowi) => {
+    const schema = new mongoose_1.Schema({
+        deviceCodeHash: {
+            type: String,
+            required: true,
+            unique: true,
+            index: true,
+        },
+        userCode: {
+            type: String,
+            required: true,
+            unique: true,
+            index: true,
+        },
+        clientId: {
+            type: String,
+            required: true,
+            index: true,
+        },
+        requestedScopes: {
+            type: [String],
+            required: true,
+            default: [],
+        },
+        grantedScopes: {
+            type: [String],
+            required: true,
+            default: [],
+        },
+        status: {
+            type: String,
+            enum: ['pending', 'approved', 'denied'],
+            required: true,
+            default: 'pending',
+        },
+        userId: {
+            type: mongoose_1.Schema.Types.ObjectId,
+            ref: 'User',
+            default: null,
+        },
+        expiresAt: {
+            type: Date,
+            required: true,
+        },
+        interval: {
+            type: Number,
+            required: true,
+            default: 5,
+        },
+        lastPolledAt: {
+            type: Date,
+            default: null,
+        },
+        consumedAt: {
+            type: Date,
+            default: null,
+        },
+        createdAt: {
+            type: Date,
+            default: Date.now,
+        },
+    });
+    // TTL — MongoDB removes rows once `expiresAt` is past. The sweep can lag the
+    // ~10min lifetime by up to a minute, so the lookups re-check `expiresAt`.
+    schema.index({ expiresAt: 1 }, { expireAfterSeconds: 0, name: 'oauthDeviceCode_ttl' });
+    schema.statics.hashDeviceCode = function (deviceCode) {
+        return node_crypto_1.default.createHash('sha256').update(deviceCode).digest('hex');
+    };
+    schema.statics.generateDeviceCode = function () {
+        const deviceCode = node_crypto_1.default.randomBytes(DEVICE_CODE_RANDOM_BYTES).toString('base64url');
+        return { deviceCode, deviceCodeHash: OAuthDeviceCode.hashDeviceCode(deviceCode) };
+    };
+    schema.statics.createPending = async function (input) {
+        const { deviceCode, deviceCodeHash } = OAuthDeviceCode.generateDeviceCode();
+        let lastErr;
+        for (let attempt = 0; attempt < USER_CODE_MAX_ATTEMPTS; attempt += 1) {
+            try {
+                const doc = await OAuthDeviceCode.create({
+                    deviceCodeHash,
+                    userCode: (0, user_code_1.generateUserCode)(),
+                    clientId: input.clientId,
+                    requestedScopes: input.requestedScopes,
+                    status: 'pending',
+                    expiresAt: input.expiresAt,
+                    interval: input.interval,
+                });
+                return { doc, deviceCode };
+            }
+            catch (err) {
+                // Retry only on a duplicate `userCode`; rethrow anything else.
+                if (err != null && typeof err === 'object' && 'code' in err && err.code === 11000) {
+                    lastErr = err;
+                    continue;
+                }
+                throw err;
+            }
+        }
+        throw lastErr ?? new Error('Failed to allocate a unique user_code');
+    };
+    schema.statics.findByDeviceCodeHash = function (deviceCodeHash) {
+        return OAuthDeviceCode.findOne({
+            deviceCodeHash,
+            consumedAt: null,
+            expiresAt: { $gt: new Date() },
+        }).exec();
+    };
+    schema.statics.findByUserCode = function (userCode) {
+        return OAuthDeviceCode.findOne({
+            userCode,
+            expiresAt: { $gt: new Date() },
+        }).exec();
+    };
+    schema.statics.touchPolled = async function (deviceCodeHash) {
+        try {
+            await OAuthDeviceCode.updateOne({ deviceCodeHash }, { lastPolledAt: new Date() }).exec();
+        }
+        catch {
+            // Best-effort: a failed poll-timestamp bump must not block the poll.
+        }
+    };
+    schema.statics.consume = function (deviceCodeHash) {
+        return OAuthDeviceCode.findOneAndUpdate({ deviceCodeHash, status: 'approved', consumedAt: null, expiresAt: { $gt: new Date() } }, { consumedAt: new Date() }, { new: true }).exec();
+    };
+    const OAuthDeviceCode = (0, mongoose_1.model)('OAuthDeviceCode', schema);
+    return OAuthDeviceCode;
+};
+//# sourceMappingURL=oauth-device-code.js.map

package/dist/models/oauth-device-code.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"oauth-device-code.js","sourceRoot":"","sources":["../../src/models/oauth-device-code.ts"],"names":[],"mappings":";;;;;AAAA,8DAAiC;AAEjC,uCAAiE;AAGjE,kDAAsD;AAEtD;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,wBAAwB,GAAG,EAAE,CAAC;AACpC,uEAAuE;AACvE,MAAM,sBAAsB,GAAG,CAAC,CAAC;AAkDjC,kBAAe,CAAC,MAAa,EAAE,EAAE;IAC/B,MAAM,MAAM,GAAG,IAAI,iBAAM,CAAgD;QACvE,cAAc,EAAE;YACd,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,IAAI;YACZ,KAAK,EAAE,IAAI;SACZ;QACD,QAAQ,EAAE;YACR,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,IAAI;YACZ,KAAK,EAAE,IAAI;SACZ;QACD,QAAQ,EAAE;YACR,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,KAAK,EAAE,IAAI;SACZ;QACD,eAAe,EAAE;YACf,IAAI,EAAE,CAAC,MAAM,CAAC;YACd,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,EAAE;SACZ;QACD,aAAa,EAAE;YACb,IAAI,EAAE,CAAC,MAAM,CAAC;YACd,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,EAAE;SACZ;QACD,MAAM,EAAE;YACN,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,QAAQ,CAAC;YACvC,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,SAAS;SACnB;QACD,MAAM,EAAE;YACN,IAAI,EAAE,iBAAM,CAAC,KAAK,CAAC,QAAQ;YAC3B,GAAG,EAAE,MAAM;YACX,OAAO,EAAE,IAAI;SACd;QACD,SAAS,EAAE;YACT,IAAI,EAAE,IAAI;YACV,QAAQ,EAAE,IAAI;SACf;QACD,QAAQ,EAAE;YACR,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,CAAC;SACX;QACD,YAAY,EAAE;YACZ,IAAI,EAAE,IAAI;YACV,OAAO,EAAE,IAAI;SACd;QACD,UAAU,EAAE;YACV,IAAI,EAAE,IAAI;YACV,OAAO,EAAE,IAAI;SACd;QACD,SAAS,EAAE;YACT,IAAI,EAAE,IAAI;YACV,OAAO,EAAE,IAAI,CAAC,GAAG;SAClB;KACF,CAAC,CAAC;IAEH,6EAA6E;IAC7E,0EAA0E;IAC1E,MAAM,CAAC,KAAK,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,EAAE,EAAE,kBAAkB,EAAE,CAAC,EAAE,IAAI,EAAE,qBAAqB,EAAE,CAAC,CAAC;IAEvF,MAAM,CAAC,OAAO,CAAC,cAAc,GAAG,UAAU,UAAkB;QAC1D,OAAO,qBAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACtE,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,kBAAkB,GAAG;QAClC,MAAM,UAAU,GAAG,qBAAM,CAAC,WAAW,CAAC,wBAAwB,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QACtF,OAAO,EAAE,UAAU,EAAE,cAAc,EAAE,eAAe,CAAC,cAAc,CAAC,UAAU,CAAC,EAAE,CAAC;IACpF,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,aAAa,GAAG,KAAK,WAAW,KAK9C;QACC,MAAM,EAAE,UAAU,EAAE,cAAc,EAAE,GAAG,eAAe,CAAC,kBAAkB,EAAE,CAAC;QAC5E,IAAI,OAAgB,CAAC;QACrB,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,sBAAsB,EAAE,OAAO,IAAI,CAAC,EAAE,CAAC;YACrE,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC,MAAM,CAAC;oBACvC,cAAc;oBACd,QAAQ,EAAE,IAAA,4BAAgB,GAAE;oBAC5B,QAAQ,EAAE,KAAK,CAAC,QAAQ;oBACxB,eAAe,EAAE,KAAK,CAAC,eAAe;oBACtC,MAAM,EAAE,SAAS;oBACjB,SAAS,EAAE,KAAK,CAAC,SAAS;oBAC1B,QAAQ,EAAE,KAAK,CAAC,QAAQ;iBACzB,CAAC,CAAC;gBACH,OAAO,EAAE,GAAG,EAAE,UAAU,EAAE,CAAC;YAC7B,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,+DAA+D;gBAC/D,IAAI,GAAG,IAAI,IAAI,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,MAAM,IAAI,GAAG,IAAK,GAAyB,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;oBACzG,OAAO,GAAG,GAAG,CAAC;oBACd,SAAS;gBACX,CAAC;gBACD,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QACD,MAAM,OAAO,IAAI,IAAI,KAAK,CAAC,uCAAuC,CAAC,CAAC;IACtE,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,oBAAoB,GAAG,UAAU,cAAsB;QACpE,OAAO,eAAe,CAAC,OAAO,CAAC;YAC7B,cAAc;YACd,UAAU,EAAE,IAAI;YAChB,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE;SAC/B,CAAC,CAAC,IAAI,EAAE,CAAC;IACZ,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,cAAc,GAAG,UAAU,QAAgB;QACxD,OAAO,eAAe,CAAC,OAAO,CAAC;YAC7B,QAAQ;YACR,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE;SAC/B,CAAC,CAAC,IAAI,EAAE,CAAC;IACZ,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,WAAW,GAAG,KAAK,WAAW,cAAsB;QACjE,IAAI,CAAC;YACH,MAAM,eAAe,CAAC,SAAS,CAAC,EAAE,cAAc,EAAE,EAAE,EAAE,YAAY,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAC3F,CAAC;QAAC,MAAM,CAAC;YACP,qEAAqE;QACvE,CAAC;IACH,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,OAAO,GAAG,UAAU,cAAsB;QACvD,OAAO,eAAe,CAAC,gBAAgB,CACrC,EAAE,cAAc,EAAE,MAAM,EAAE,UAAU,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE,EAAE,EACxF,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,EAAE,EAC1B,EAAE,GAAG,EAAE,IAAI,EAAE,CACd,CAAC,IAAI,EAAE,CAAC;IACX,CAAC,CAAC;IAEF,MAAM,eAAe,GAAG,IAAA,gBAAK,EAAgD,iBAAiB,EAAE,MAAM,CAAC,CAAC;IAExG,OAAO,eAAe,CAAC;AACzB,CAAC,CAAC"}

package/dist/models/oauth-refresh-token.d.ts ADDED Viewed

@@ -0,0 +1,31 @@
+import { Document, Model, Types } from 'mongoose';
+import Crowi from '../crowi';
+export interface OAuthRefreshTokenDocument extends Document {
+    _id: Types.ObjectId;
+    tokenHash: string;
+    clientId: string;
+    userId: Types.ObjectId;
+    scopes: string[];
+    expiresAt: Date;
+    createdAt: Date;
+    revokedAt: Date | null;
+    /** Successor token's hash once this one is rotated; null while active. */
+    rotatedTo: string | null;
+}
+export interface OAuthRefreshTokenModel extends Model<OAuthRefreshTokenDocument> {
+    generateToken(): {
+        token: string;
+        tokenHash: string;
+    };
+    hashToken(token: string): string;
+    /** Active (= not revoked, not expired) token matching `tokenHash`, or null. */
+    findActiveByHash(tokenHash: string): Promise<OAuthRefreshTokenDocument | null>;
+    /**
+     * Revoke the entire rotation chain a token belongs to (reuse detection).
+     * Walks descendants via `rotatedTo` and ancestors via the reverse link.
+     */
+    revokeChain(tokenHash: string): Promise<void>;
+    TOKEN_PREFIX: string;
+}
+declare const _default: (_crowi: Crowi) => OAuthRefreshTokenModel;
+export default _default;

package/dist/models/oauth-refresh-token.js ADDED Viewed

@@ -0,0 +1,118 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const node_crypto_1 = __importDefault(require("node:crypto"));
+const mongoose_1 = require("mongoose");
+/**
+ * RFC-0010 §Mongoose models — OAuth 2.0 refresh token with rotation +
+ * reuse detection.
+ *
+ * `POST /oauth/token` issues a refresh token alongside every access token.
+ * On each refresh the old token is **rotated**: it is revoked (`revokedAt`
+ * set) and its `rotatedTo` is stamped with the successor's hash, then a
+ * fresh token is issued. This makes refresh tokens single-use.
+ *
+ * Reuse detection (RFC-0010 §Security, PHASE3-Q5): if a *revoked* refresh
+ * token is presented again — the hallmark of a stolen-token replay — the
+ * whole rotation chain is revoked via `revokeChain`, walking both backward
+ * (ancestors) via `findOne({ rotatedTo })` and forward (descendants) via
+ * `rotatedTo`. Both the attacker's and the legitimate client's tokens die,
+ * forcing a fresh authorization.
+ *
+ * Only the SHA-256 hash of the opaque `crowi_rt_…` secret is stored; the
+ * `crowi_rt_` prefix lets `POST /oauth/revoke` tell a refresh token from a
+ * PAT (`crowi_pat_`) without a DB round-trip.
+ */
+const RT_PREFIX = 'crowi_rt_';
+const RT_RANDOM_BYTES = 32;
+exports.default = (_crowi) => {
+    const schema = new mongoose_1.Schema({
+        tokenHash: {
+            type: String,
+            required: true,
+            unique: true,
+            index: true,
+        },
+        clientId: {
+            type: String,
+            required: true,
+            index: true,
+        },
+        userId: {
+            type: mongoose_1.Schema.Types.ObjectId,
+            ref: 'User',
+            required: true,
+            index: true,
+        },
+        scopes: {
+            type: [String],
+            required: true,
+            default: [],
+        },
+        expiresAt: {
+            type: Date,
+            required: true,
+        },
+        createdAt: {
+            type: Date,
+            default: Date.now,
+        },
+        revokedAt: {
+            type: Date,
+            default: null,
+        },
+        rotatedTo: {
+            type: String,
+            default: null,
+        },
+    });
+    // TTL on `expiresAt` — sweeps long-dead tokens. Active lookups filter
+    // `expiresAt > now` so the sweep lag never lets an expired token through.
+    schema.index({ expiresAt: 1 }, { expireAfterSeconds: 0, name: 'oauthRefreshToken_ttl' });
+    schema.statics.hashToken = function (token) {
+        return node_crypto_1.default.createHash('sha256').update(token).digest('hex');
+    };
+    schema.statics.generateToken = function () {
+        const token = `${RT_PREFIX}${node_crypto_1.default.randomBytes(RT_RANDOM_BYTES).toString('base64url')}`;
+        return { token, tokenHash: OAuthRefreshToken.hashToken(token) };
+    };
+    schema.statics.findActiveByHash = function (tokenHash) {
+        return OAuthRefreshToken.findOne({
+            tokenHash,
+            revokedAt: null,
+            expiresAt: { $gt: new Date() },
+        }).exec();
+    };
+    schema.statics.revokeChain = async function (tokenHash) {
+        const now = new Date();
+        const seen = new Set();
+        // Forward + backward frontier of hashes to revoke.
+        const queue = [tokenHash];
+        while (queue.length > 0) {
+            const hash = queue.shift();
+            if (hash == null || seen.has(hash))
+                continue;
+            seen.add(hash);
+            const node = await OAuthRefreshToken.findOne({ tokenHash: hash }).exec();
+            if (!node)
+                continue;
+            // Descendant (the token this one rotated to).
+            if (node.rotatedTo && !seen.has(node.rotatedTo)) {
+                queue.push(node.rotatedTo);
+            }
+            // Ancestor(s) — whoever rotated *into* this hash.
+            const ancestors = await OAuthRefreshToken.find({ rotatedTo: hash }).exec();
+            for (const anc of ancestors) {
+                if (!seen.has(anc.tokenHash))
+                    queue.push(anc.tokenHash);
+            }
+        }
+        await OAuthRefreshToken.updateMany({ tokenHash: { $in: [...seen] }, revokedAt: null }, { revokedAt: now });
+    };
+    const OAuthRefreshToken = (0, mongoose_1.model)('OAuthRefreshToken', schema);
+    OAuthRefreshToken.TOKEN_PREFIX = RT_PREFIX;
+    return OAuthRefreshToken;
+};
+//# sourceMappingURL=oauth-refresh-token.js.map

package/dist/models/oauth-refresh-token.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"oauth-refresh-token.js","sourceRoot":"","sources":["../../src/models/oauth-refresh-token.ts"],"names":[],"mappings":";;;;;AAAA,8DAAiC;AAEjC,uCAAiE;AAIjE;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,SAAS,GAAG,WAAW,CAAC;AAC9B,MAAM,eAAe,GAAG,EAAE,CAAC;AA6B3B,kBAAe,CAAC,MAAa,EAAE,EAAE;IAC/B,MAAM,MAAM,GAAG,IAAI,iBAAM,CAAoD;QAC3E,SAAS,EAAE;YACT,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,IAAI;YACZ,KAAK,EAAE,IAAI;SACZ;QACD,QAAQ,EAAE;YACR,IAAI,EAAE,MAAM;YACZ,QAAQ,EAAE,IAAI;YACd,KAAK,EAAE,IAAI;SACZ;QACD,MAAM,EAAE;YACN,IAAI,EAAE,iBAAM,CAAC,KAAK,CAAC,QAAQ;YAC3B,GAAG,EAAE,MAAM;YACX,QAAQ,EAAE,IAAI;YACd,KAAK,EAAE,IAAI;SACZ;QACD,MAAM,EAAE;YACN,IAAI,EAAE,CAAC,MAAM,CAAC;YACd,QAAQ,EAAE,IAAI;YACd,OAAO,EAAE,EAAE;SACZ;QACD,SAAS,EAAE;YACT,IAAI,EAAE,IAAI;YACV,QAAQ,EAAE,IAAI;SACf;QACD,SAAS,EAAE;YACT,IAAI,EAAE,IAAI;YACV,OAAO,EAAE,IAAI,CAAC,GAAG;SAClB;QACD,SAAS,EAAE;YACT,IAAI,EAAE,IAAI;YACV,OAAO,EAAE,IAAI;SACd;QACD,SAAS,EAAE;YACT,IAAI,EAAE,MAAM;YACZ,OAAO,EAAE,IAAI;SACd;KACF,CAAC,CAAC;IAEH,sEAAsE;IACtE,0EAA0E;IAC1E,MAAM,CAAC,KAAK,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,EAAE,EAAE,kBAAkB,EAAE,CAAC,EAAE,IAAI,EAAE,uBAAuB,EAAE,CAAC,CAAC;IAEzF,MAAM,CAAC,OAAO,CAAC,SAAS,GAAG,UAAU,KAAa;QAChD,OAAO,qBAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACjE,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,aAAa,GAAG;QAC7B,MAAM,KAAK,GAAG,GAAG,SAAS,GAAG,qBAAM,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;QACzF,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,iBAAiB,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,CAAC;IAClE,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,gBAAgB,GAAG,UAAU,SAAiB;QAC3D,OAAO,iBAAiB,CAAC,OAAO,CAAC;YAC/B,SAAS;YACT,SAAS,EAAE,IAAI;YACf,SAAS,EAAE,EAAE,GAAG,EAAE,IAAI,IAAI,EAAE,EAAE;SAC/B,CAAC,CAAC,IAAI,EAAE,CAAC;IACZ,CAAC,CAAC;IAEF,MAAM,CAAC,OAAO,CAAC,WAAW,GAAG,KAAK,WAAW,SAAiB;QAC5D,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;QAC/B,mDAAmD;QACnD,MAAM,KAAK,GAAa,CAAC,SAAS,CAAC,CAAC;QAEpC,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,IAAI,GAAG,KAAK,CAAC,KAAK,EAAE,CAAC;YAC3B,IAAI,IAAI,IAAI,IAAI,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC;gBAAE,SAAS;YAC7C,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YAEf,MAAM,IAAI,GAAG,MAAM,iBAAiB,CAAC,OAAO,CAAC,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;YACzE,IAAI,CAAC,IAAI;gBAAE,SAAS;YAEpB,8CAA8C;YAC9C,IAAI,IAAI,CAAC,SAAS,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;gBAChD,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC7B,CAAC;YACD,kDAAkD;YAClD,MAAM,SAAS,GAAG,MAAM,iBAAiB,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;YAC3E,KAAK,MAAM,GAAG,IAAI,SAAS,EAAE,CAAC;gBAC5B,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,SAAS,CAAC;oBAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;YAC1D,CAAC;QACH,CAAC;QAED,MAAM,iBAAiB,CAAC,UAAU,CAAC,EAAE,SAAS,EAAE,EAAE,GAAG,EAAE,CAAC,GAAG,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,EAAE,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC,CAAC;IAC7G,CAAC,CAAC;IAEF,MAAM,iBAAiB,GAAG,IAAA,gBAAK,EAAoD,mBAAmB,EAAE,MAAM,CAAC,CAAC;IAEhH,iBAAiB,CAAC,YAAY,GAAG,SAAS,CAAC;IAE3C,OAAO,iBAAiB,CAAC;AAC3B,CAAC,CAAC"}

package/dist/models/page-yjs-update.d.ts ADDED Viewed

@@ -0,0 +1,35 @@
+import type Crowi from '../crowi';
+import { type Document, type Model, type Types } from 'mongoose';
+/**
+ * Append-only log of high-frequency Yjs updates for a page.
+ *
+ * RFC-0003 Phase 4 will write one document per Yjs `onChange` event so
+ * Hocuspocus can recover edits made between the periodic checkpoints
+ * that compact into `Page.yjsState`. Compaction (Phase 4) batches the
+ * latest N documents per `pageId`, encodes them into `Page.yjsState`,
+ * then deletes the source rows. Anything left behind is swept by the
+ * TTL index after 1 hour — a safety net against crashed Hocuspocus
+ * instances that fail to checkpoint.
+ *
+ * Indexes:
+ *   1. compound `(pageId, createdAt)` — drives "load all updates for a
+ *      page newer than the last checkpoint" on Hocuspocus recovery.
+ *   2. `createdAt` TTL (`expireAfterSeconds: 3600`) — MongoDB sweeps
+ *      rows older than 1 hour. Compaction normally clears them sooner;
+ *      the TTL only kicks in for orphaned updates whose owning page
+ *      was deleted or whose Hocuspocus instance crashed before
+ *      checkpointing.
+ *
+ * Phase 1 only introduces the schema. The append + compaction paths
+ * land in Phase 4 once Hocuspocus is wired up.
+ */
+export interface PageYjsUpdateDocument extends Document {
+    _id: Types.ObjectId;
+    pageId: Types.ObjectId;
+    payload: Buffer;
+    createdAt: Date;
+}
+export interface PageYjsUpdateModel extends Model<PageYjsUpdateDocument> {
+}
+declare const _default: (_crowi: Crowi) => PageYjsUpdateModel;
+export default _default;

package/dist/models/page-yjs-update.js ADDED Viewed

@@ -0,0 +1,33 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const mongoose_1 = require("mongoose");
+exports.default = (_crowi) => {
+    const PageYjsUpdateSchema = new mongoose_1.Schema({
+        pageId: { type: mongoose_1.Schema.Types.ObjectId, required: true, ref: 'Page' },
+        // Binary Yjs update payload (`Y.encodeStateAsUpdate` or the
+        // delta from `onChange`). Buffer (not Mixed) so the BSON driver
+        // round-trips a typed binary blob rather than a generic sub-doc.
+        // Named `payload` rather than `update` to avoid colliding with
+        // Mongoose's `Document.prototype.update()` method in TS typings.
+        // Subject to MongoDB's 16 MB BSON document cap — Yjs delta
+        // sizes are typically well below that, but Phase 4's append
+        // step should bail out if a single delta exceeds the limit.
+        payload: { type: Buffer, required: true },
+        createdAt: { type: Date, required: true, default: () => new Date() },
+    }, {
+        // `createdAt` is declared explicitly above so the TTL index has
+        // a stable anchor; Mongoose's automatic timestamps would also
+        // add `updatedAt` which is meaningless for an append-only log.
+        timestamps: false,
+    });
+    // (1) Compound `(pageId, createdAt)` — supports the Phase 4 read
+    // pattern "all updates for this page in chronological order since
+    // the last checkpoint".
+    PageYjsUpdateSchema.index({ pageId: 1, createdAt: 1 }, { name: 'pageYjsUpdate_pageId_createdAt' });
+    // (2) TTL — MongoDB removes rows older than 1 hour. Compaction in
+    // Phase 4 normally deletes rows before this fires; the TTL is a
+    // safety net for orphaned updates after a Hocuspocus crash.
+    PageYjsUpdateSchema.index({ createdAt: 1 }, { expireAfterSeconds: 3600, name: 'pageYjsUpdate_ttl' });
+    return (0, mongoose_1.model)('PageYjsUpdate', PageYjsUpdateSchema);
+};
+//# sourceMappingURL=page-yjs-update.js.map

package/dist/models/page-yjs-update.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"page-yjs-update.js","sourceRoot":"","sources":["../../src/models/page-yjs-update.ts"],"names":[],"mappings":";;AACA,uCAAgF;AAmChF,kBAAe,CAAC,MAAa,EAAE,EAAE;IAC/B,MAAM,mBAAmB,GAAG,IAAI,iBAAM,CACpC;QACE,MAAM,EAAE,EAAE,IAAI,EAAE,iBAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,GAAG,EAAE,MAAM,EAAE;QACpE,4DAA4D;QAC5D,gEAAgE;QAChE,iEAAiE;QACjE,+DAA+D;QAC/D,iEAAiE;QACjE,2DAA2D;QAC3D,4DAA4D;QAC5D,4DAA4D;QAC5D,OAAO,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE;QACzC,SAAS,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC,IAAI,IAAI,EAAE,EAAE;KACrE,EACD;QACE,gEAAgE;QAChE,8DAA8D;QAC9D,+DAA+D;QAC/D,UAAU,EAAE,KAAK;KAClB,CACF,CAAC;IAEF,iEAAiE;IACjE,kEAAkE;IAClE,wBAAwB;IACxB,mBAAmB,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,gCAAgC,EAAE,CAAC,CAAC;IAEnG,kEAAkE;IAClE,gEAAgE;IAChE,4DAA4D;IAC5D,mBAAmB,CAAC,KAAK,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,EAAE,EAAE,kBAAkB,EAAE,IAAI,EAAE,IAAI,EAAE,mBAAmB,EAAE,CAAC,CAAC;IAErG,OAAO,IAAA,gBAAK,EAA4C,eAAe,EAAE,mBAAmB,CAAC,CAAC;AAChG,CAAC,CAAC"}