@design-edito/publisher-core 0.0.1

package/dist/types/api/internals.d.ts

@@ -0,0 +1,270 @@
+import type { Request, Response as ExpressResponse } from 'express';
+import type { ParamsDictionary } from 'express-serve-static-core';
+import type multer from 'multer';
+import type { Readable } from 'stream';
+import type { MessageOf, DetailsOf, Codes, ErrorData, DetailsMaker } from '../errors/index.js';
+import type { AccessTokenSigned, AccessTokenPayload } from '../jwt/index.js';
+import type { IUser } from '../schema/index.js';
+import type { UploadedFile } from '../uploads/index.js';
+export type WorkerErrorResponse<C extends Codes> = {
+    type: 'error';
+    httpStatus: number;
+    code: C;
+    message: MessageOf<C>;
+    details: DetailsOf<C>;
+};
+export type WorkerErrorResponseMaker = <C extends Codes>(httpStatus: number, code: C, ...details: Parameters<DetailsMaker<C>>) => WorkerErrorResponse<C>;
+export type WorkerVoidResponse = {
+    type: 'void';
+};
+export type WorkerVoidResponseMaker = () => WorkerVoidResponse;
+export type WorkerJsonResponse<P extends object> = {
+    type: 'json';
+    httpStatus: number;
+    payload: P;
+};
+export type WorkerJsonResponseMaker = <P extends object>(httpStatus: number, payload: P) => WorkerJsonResponse<P>;
+export type WorkerListResponse<P extends object> = {
+    type: 'list';
+    httpStatus: number;
+    payload: P[];
+    page: number;
+    total: number;
+    prev: string | null;
+    next: string | null;
+};
+export type WorkerListResponseMaker = <P extends object>(httpStatus: number, payload: P[], page: number, total: number, prev: string | null, next: string | null) => WorkerListResponse<P>;
+export type WorkerFileResponse = {
+    type: 'file';
+    httpStatus: number;
+    filename: string;
+    payload: Readable | Buffer;
+    contentType: string;
+    cacheControl: string;
+    contentLengthBytes: number;
+};
+export type WorkerFileResponseMaker = (httpStatus: number, filename: string, payload: Readable | Buffer, contentType: string, cacheControl: string, contentLengthBytes: number) => WorkerFileResponse;
+export type WorkerHooks<TBody extends unknown = unknown, TQuery extends Request['query'] = Request['query'], TParams extends ParamsDictionary = ParamsDictionary, TFileFields extends string | null = null, TUser extends IUser | null = IUser | null, TAccessTokenSigned extends AccessTokenSigned | undefined = AccessTokenSigned | undefined, TAccessTokenPayload extends AccessTokenPayload | undefined = AccessTokenPayload | undefined> = {
+    body: TBody;
+    query: TQuery;
+    params: TParams;
+    files: TFileFields extends string ? Record<string, UploadedFile[]> : {};
+    headers: Request['headers'];
+    cookies: Request['cookies'];
+    originalUrl: Request['originalUrl'];
+    ip: string | null;
+    accessTokenSigned: TAccessTokenSigned;
+    accessTokenPayload: TAccessTokenPayload;
+    user: TUser;
+    setCookie: ExpressResponse['cookie'];
+    setHeader: ExpressResponse['setHeader'];
+    _unsafeReq: Request;
+    _unsafeRes: ExpressResponse;
+};
+export type VoidWorker<TBody extends unknown = unknown, TQuery extends Request['query'] = Request['query'], TParams extends ParamsDictionary = ParamsDictionary, TFileFields extends string | null = null, TUser extends IUser | null = IUser | null, TAccessTokenSigned extends AccessTokenSigned | undefined = AccessTokenSigned | undefined, TAccessTokenPayload extends AccessTokenPayload | undefined = AccessTokenPayload | undefined, TErrCodes extends Codes = Codes> = (hooks: WorkerHooks<TBody, TQuery, TParams, TFileFields, TUser, TAccessTokenSigned, TAccessTokenPayload>) => Promise<WorkerVoidResponse | WorkerErrorResponse<TErrCodes>>;
+export type JsonWorker<TBody extends unknown = unknown, TQuery extends Request['query'] = Request['query'], TParams extends ParamsDictionary = ParamsDictionary, TFileFields extends string | null = null, TUser extends IUser | null = IUser | null, TAccessTokenSigned extends AccessTokenSigned | undefined = AccessTokenSigned | undefined, TAccessTokenPayload extends AccessTokenPayload | undefined = AccessTokenPayload | undefined, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = (hooks: WorkerHooks<TBody, TQuery, TParams, TFileFields, TUser, TAccessTokenSigned, TAccessTokenPayload>) => Promise<WorkerJsonResponse<TSuccessPayload> | WorkerErrorResponse<TErrCodes>>;
+export type ListWorker<TBody extends unknown = unknown, TQuery extends Request['query'] = Request['query'], TParams extends ParamsDictionary = ParamsDictionary, TFileFields extends string | null = null, TUser extends IUser | null = IUser | null, TAccessTokenSigned extends AccessTokenSigned | undefined = AccessTokenSigned | undefined, TAccessTokenPayload extends AccessTokenPayload | undefined = AccessTokenPayload | undefined, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = (hooks: WorkerHooks<TBody, TQuery, TParams, TFileFields, TUser, TAccessTokenSigned, TAccessTokenPayload>) => Promise<WorkerListResponse<TSuccessPayload> | WorkerErrorResponse<TErrCodes>>;
+export type FileWorker<TBody extends unknown = unknown, TQuery extends Request['query'] = Request['query'], TParams extends ParamsDictionary = ParamsDictionary, TFileFields extends string | null = null, TUser extends IUser | null = IUser | null, TAccessTokenSigned extends AccessTokenSigned | undefined = AccessTokenSigned | undefined, TAccessTokenPayload extends AccessTokenPayload | undefined = AccessTokenPayload | undefined, TErrCodes extends Codes = Codes> = (hooks: WorkerHooks<TBody, TQuery, TParams, TFileFields, TUser, TAccessTokenSigned, TAccessTokenPayload>) => Promise<WorkerFileResponse | WorkerErrorResponse<TErrCodes>>;
+export type AuthenticatorAllowedErrorCodes = Codes.USER_DOES_NOT_EXIST | Codes.USER_NOT_AUTHENTICATED | Codes.USER_NOT_AUTHORIZED;
+export type WeakAuthenticatorPayload = {
+    accessTokenSigned: AccessTokenSigned;
+    accessTokenPayload: AccessTokenPayload;
+};
+export type StrongAuthenticatorPayload = {
+    user: IUser;
+    accessTokenSigned: AccessTokenSigned;
+    accessTokenPayload: AccessTokenPayload;
+};
+export type WeakAuthenticator<TErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes> = JsonWorker<unknown, Request['query'], ParamsDictionary, null, null, AccessTokenSigned, AccessTokenPayload, TErrCodes, WeakAuthenticatorPayload>;
+export type StrongAuthenticator<TErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes> = JsonWorker<unknown, Request['query'], ParamsDictionary, null, IUser, AccessTokenSigned, AccessTokenPayload, TErrCodes, StrongAuthenticatorPayload>;
+export type ValidatorAllowedErrorCodes = Codes.INVALID_REQUEST_BODY | Codes.INVALID_REQUEST_QUERY | Codes.INVALID_REQUEST_FILES;
+export type ValidatorSuccessPayload<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary> = {
+    body: TExpectedBody;
+    query: TExpectedQuery;
+    params: TExpectedParams;
+};
+export type NoAuthValidator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes> = JsonWorker<unknown, Request['query'], ParamsDictionary, TExpectedFileFields, null, undefined, undefined, TErrCodes, ValidatorSuccessPayload<TExpectedBody, TExpectedQuery, TExpectedParams>>;
+export type WeakAuthValidator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes> = JsonWorker<unknown, Request['query'], ParamsDictionary, TExpectedFileFields, null, AccessTokenSigned, AccessTokenPayload, TErrCodes, ValidatorSuccessPayload<TExpectedBody, TExpectedQuery, TExpectedParams>>;
+export type StrongAuthValidator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes> = JsonWorker<unknown, Request['query'], ParamsDictionary, TExpectedFileFields, IUser, AccessTokenSigned, AccessTokenPayload, TErrCodes, ValidatorSuccessPayload<TExpectedBody, TExpectedQuery, TExpectedParams>>;
+export type NoAuthVoidOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes> = VoidWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, undefined, undefined, TErrCodes>;
+export type WeakAuthVoidOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes> = VoidWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, AccessTokenSigned, AccessTokenPayload, TErrCodes>;
+export type StrongAuthVoidOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes> = VoidWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, IUser, AccessTokenSigned, AccessTokenPayload, TErrCodes>;
+export type NoAuthJsonOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = JsonWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, undefined, undefined, TErrCodes, TSuccessPayload>;
+export type WeakAuthJsonOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = JsonWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, AccessTokenSigned, AccessTokenPayload, TErrCodes, TSuccessPayload>;
+export type StrongAuthJsonOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = JsonWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, IUser, AccessTokenSigned, AccessTokenPayload, TErrCodes, TSuccessPayload>;
+export type NoAuthListOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = ListWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, undefined, undefined, TErrCodes, TSuccessPayload>;
+export type WeakAuthListOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = ListWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, AccessTokenSigned, AccessTokenPayload, TErrCodes, TSuccessPayload>;
+export type StrongAuthListOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes, TSuccessPayload extends object = object> = ListWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, IUser, AccessTokenSigned, AccessTokenPayload, TErrCodes, TSuccessPayload>;
+export type NoAuthFileOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes> = FileWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, undefined, undefined, TErrCodes>;
+export type WeakAuthFileOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes> = FileWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, null, AccessTokenSigned, AccessTokenPayload, TErrCodes>;
+export type StrongAuthFileOperator<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TErrCodes extends Codes = Codes> = FileWorker<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, IUser, AccessTokenSigned, AccessTokenPayload, TErrCodes>;
+export type UploadsDescriptor<TExpectedFileFields extends string = string> = {
+    fields: Array<{
+        name: TExpectedFileFields;
+        maxCount?: number;
+    }>;
+    limits?: multer.Options['limits'];
+    filter?: multer.Options['fileFilter'];
+    incrementQuotas?: boolean;
+};
+export type UploadsProcessorErrCodes = Codes.FILE_TOO_LARGE | Codes.INVALID_REQUEST_FILES | Codes.USER_NOT_AUTHENTICATED | Codes.USER_UPLOAD_QUOTA_EXCEEDED | Codes.FILE_INFECTED | Codes.FILE_HASH_FAILED | Codes.FILE_SCANNER_NOT_REACHABLE;
+export type NoAuthVoidProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes> = {
+    _authType: 'none';
+    _opType: 'void';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    validation: NoAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: NoAuthVoidOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes>;
+};
+export type WeakAuthVoidProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes> = {
+    _authType: 'weak';
+    _opType: 'void';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: WeakAuthenticator<TAuthErrCodes>;
+    validation: WeakAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: WeakAuthVoidOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes>;
+};
+export type StrongAuthVoidProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes> = {
+    _authType: 'strong';
+    _opType: 'void';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: StrongAuthenticator<TAuthErrCodes>;
+    validation: StrongAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: StrongAuthVoidOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes>;
+};
+export type NoAuthJsonProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = {
+    _authType: 'none';
+    _opType: 'json';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    validation: NoAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: NoAuthJsonOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes, TOperationPayload>;
+};
+export type WeakAuthJsonProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = {
+    _authType: 'weak';
+    _opType: 'json';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: WeakAuthenticator<TAuthErrCodes>;
+    validation: WeakAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: WeakAuthJsonOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes, TOperationPayload>;
+};
+export type StrongAuthJsonProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = {
+    _authType: 'strong';
+    _opType: 'json';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: StrongAuthenticator<TAuthErrCodes>;
+    validation: StrongAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: StrongAuthJsonOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes, TOperationPayload>;
+};
+export type NoAuthListProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = {
+    _authType: 'none';
+    _opType: 'list';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    validation: NoAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: NoAuthListOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes, TOperationPayload>;
+};
+export type WeakAuthListProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = {
+    _authType: 'weak';
+    _opType: 'list';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: WeakAuthenticator<TAuthErrCodes>;
+    validation: WeakAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: WeakAuthListOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes, TOperationPayload>;
+};
+export type StrongAuthListProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = {
+    _authType: 'strong';
+    _opType: 'list';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: StrongAuthenticator<TAuthErrCodes>;
+    validation: StrongAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: StrongAuthListOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes, TOperationPayload>;
+};
+export type NoAuthFileProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes> = {
+    _authType: 'none';
+    _opType: 'file';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    validation: NoAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: NoAuthFileOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes>;
+};
+export type WeakAuthFileProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes> = {
+    _authType: 'weak';
+    _opType: 'file';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: WeakAuthenticator<TAuthErrCodes>;
+    validation: WeakAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: WeakAuthFileOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes>;
+};
+export type StrongAuthFileProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes> = {
+    _authType: 'strong';
+    _opType: 'file';
+    uploads?: TExpectedFileFields extends string ? UploadsDescriptor<TExpectedFileFields> : undefined;
+    skipCsrfProtection?: boolean;
+    authentication: StrongAuthenticator<TAuthErrCodes>;
+    validation: StrongAuthValidator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes>;
+    operation: StrongAuthFileOperator<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TOperationErrCodes>;
+};
+export type NoAuthProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = NoAuthVoidProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes, TOperationErrCodes> | NoAuthJsonProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | NoAuthListProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | NoAuthFileProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes, TOperationErrCodes>;
+export type WeakAuthProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = WeakAuthVoidProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes> | WeakAuthJsonProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | WeakAuthListProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | WeakAuthFileProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes>;
+export type StrongAuthProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = StrongAuthVoidProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes> | StrongAuthJsonProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | StrongAuthListProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | StrongAuthFileProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes>;
+export type ProcessContract<TExpectedBody extends unknown = unknown, TExpectedQuery extends Request['query'] = Request['query'], TExpectedParams extends ParamsDictionary = ParamsDictionary, TExpectedFileFields extends string | null = null, TAuthErrCodes extends AuthenticatorAllowedErrorCodes = AuthenticatorAllowedErrorCodes, TValidationErrCodes extends ValidatorAllowedErrorCodes = ValidatorAllowedErrorCodes, TOperationErrCodes extends Codes = Codes, TOperationPayload extends object = object> = NoAuthProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | WeakAuthProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes, TOperationPayload> | StrongAuthProcessContract<TExpectedBody, TExpectedQuery, TExpectedParams, TExpectedFileFields, TAuthErrCodes, TValidationErrCodes, TOperationErrCodes, TOperationPayload>;
+export type InitServerResponseMeta = {
+    ip: string | null;
+    userId: string | null;
+    requestId: string;
+    startHrTimeNs: bigint;
+    timestampMs: number;
+};
+export type ServerResponseMeta = Omit<InitServerResponseMeta, 'startHrTimeNs'> & {
+    elapsedMs: number;
+};
+export type ServerErrorResponse<C extends Codes> = {
+    success: false;
+    httpStatus: number;
+    type: 'error';
+    error: ErrorData<C>;
+    meta: ServerResponseMeta;
+};
+export type ServerJsonResponse<P extends object> = {
+    success: true;
+    httpStatus: number;
+    type: 'json';
+    payload: P;
+    meta: ServerResponseMeta;
+};
+export type ServerListResponse<P extends object> = {
+    success: true;
+    httpStatus: number;
+    type: 'list';
+    payload: P[];
+    page: number;
+    total: number;
+    prev: string | null;
+    next: string | null;
+    meta: ServerResponseMeta;
+};
+export type WeakAuthenticatorPayloadGetterErrCodes = Codes.USER_NOT_AUTHENTICATED;
+export type StrongAuthenticatorPayloadGetterErrCodes = Codes.USER_NOT_AUTHENTICATED | Codes.USER_DOES_NOT_EXIST;
+export type WeakAuthenticatorPayloadGetterResponse = WorkerErrorResponse<WeakAuthenticatorPayloadGetterErrCodes> | WorkerJsonResponse<WeakAuthenticatorPayload>;
+export type StrongAuthenticatorPayloadGetterResponse = WorkerErrorResponse<StrongAuthenticatorPayloadGetterErrCodes> | WorkerJsonResponse<StrongAuthenticatorPayload>;
+export type ExtractExpectedBody<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<infer B, any, any, any, any, any, any, any> ? B : never;
+export type ExtractExpectedQuery<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<any, infer Q, any, any, any, any, any, any> ? Q : never;
+export type ExtractExpectedParams<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<any, any, infer PA, any, any, any, any, any> ? PA : never;
+export type ExtractExpectedFileFields<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<any, any, any, infer F, any, any, any, any> ? F : null;
+export type ExtractUploadsErrCodes<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P['uploads'] extends undefined ? never : UploadsProcessorErrCodes;
+export type ExtractCsrfErrCodes<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P['skipCsrfProtection'] extends true ? never : Codes.INVALID_CSRF_TOKEN;
+export type ExtractAuthErrCodes<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends WeakAuthProcessContract<any, any, any, any, infer C, any, any, any> ? C | WeakAuthenticatorPayloadGetterErrCodes : P extends StrongAuthProcessContract<any, any, any, any, infer C, any, any, any> ? C | StrongAuthenticatorPayloadGetterErrCodes : never;
+export type ExtractValidationErrCodes<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<any, any, any, any, any, infer C, any, any> ? C : never;
+export type ExtractOperationErrCodes<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<any, any, any, any, any, any, infer C, any> ? C : never;
+export type ExtractOperationPayload<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<any, any, any, any, any, any, any, infer OP> ? OP : never;
+export type InferServerErrorResponse<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends ProcessContract<any, any, any, any, any, any, any, any> ? ServerErrorResponse<ExtractCsrfErrCodes<P> | ExtractUploadsErrCodes<P> | ExtractAuthErrCodes<P> | ExtractValidationErrCodes<P> | ExtractOperationErrCodes<P>> : never;
+export type InferServerSuccessResponse<P extends ProcessContract<any, any, any, any, any, any, any, any>> = P extends NoAuthJsonProcessContract<any, any, any, any, any, any, infer Payload> | WeakAuthJsonProcessContract<any, any, any, any, any, any, any, infer Payload> | StrongAuthJsonProcessContract<any, any, any, any, any, any, any, infer Payload> ? ServerJsonResponse<Payload> : P extends NoAuthListProcessContract<any, any, any, any, any, any, infer Payload> | WeakAuthListProcessContract<any, any, any, any, any, any, any, infer Payload> | StrongAuthListProcessContract<any, any, any, any, any, any, any, infer Payload> ? ServerListResponse<Payload> : never;
+export type InferServerResponse<P extends ProcessContract<any, any, any, any, any, any, any, any>> = InferServerErrorResponse<P> | InferServerSuccessResponse<P>;

package/dist/types/api/system/kill/index.d.ts

@@ -0,0 +1,3 @@
+import { AllowerErrCodes } from '../../../auth/index.js';
+import type { StrongAuthVoidProcessContract } from '../../internals.js';
+export type SystemKillProcessContract = StrongAuthVoidProcessContract<{}, {}, {}, null, AllowerErrCodes, never, never>;

package/dist/types/api/system/ping/index.d.ts

@@ -0,0 +1,6 @@
+import type { NoAuthJsonProcessContract } from '../../internals.js';
+type SuccessPayload = {
+    pong: true;
+};
+export type SystemPingProcessContract = NoAuthJsonProcessContract<{}, {}, {}, null, never, never, SuccessPayload>;
+export {};

package/dist/types/api/system/send-mail/index.d.ts

@@ -0,0 +1,11 @@
+import { AllowerErrCodes } from '../../../auth/index.js';
+import { Codes } from '../../../errors/index.js';
+import type { StrongAuthVoidProcessContract } from '../../internals.js';
+type ExpectedQuery = {
+    to: string;
+    subject: string;
+    text: string;
+};
+type ValidationErrCodes = Codes.INVALID_REQUEST_QUERY;
+export type SystemSendMailProcessContract = StrongAuthVoidProcessContract<{}, ExpectedQuery, {}, null, AllowerErrCodes, ValidationErrCodes, never>;
+export {};

package/dist/types/api/system/status-check/index.d.ts

@@ -0,0 +1,22 @@
+import type { NoAuthJsonProcessContract } from '../../internals.js';
+type SuccessPayload = {
+    isHealthy: boolean;
+    builtOn: string;
+    aliveSince: string;
+    uptimeSeconds: number;
+    database: {
+        connected: boolean;
+        pingMs: number | null;
+    };
+    fs: {
+        type: 'gcs' | 'aws' | 'ftps' | 'sftp';
+        connected: boolean;
+        pingMs: number | null;
+    };
+    clamav: {
+        connected: boolean;
+        pingMs: number | null;
+    };
+};
+export type SystemStatusCheckProcessContract = NoAuthJsonProcessContract<{}, {}, {}, null, never, never, SuccessPayload>;
+export {};

package/dist/types/auth/index.d.ts

@@ -0,0 +1,11 @@
+import type { UserRole, UserStatus, UserBadge } from '../schema/index.js';
+import type { Codes } from '../errors/index.js';
+import { StrongAuthenticator } from '../api/internals.js';
+export type AllowerOptions = {
+    roles?: UserRole[];
+    statuses?: UserStatus[];
+    badges?: UserBadge[];
+    verified?: boolean;
+};
+export type AllowerErrCodes = Codes.USER_DOES_NOT_EXIST | Codes.USER_NOT_AUTHENTICATED | Codes.USER_NOT_AUTHORIZED;
+export type Allower = (options: AllowerOptions) => StrongAuthenticator<AllowerErrCodes>;

package/dist/types/csrf/index.d.ts

@@ -0,0 +1,5 @@
+export declare enum VerifyErrCodes {
+    CSRF_SECRET_NOT_FOUND = "CSRF secret not found",
+    CSRF_TOKEN_NOT_FOUND = "CSRF token not found",
+    INVALID_CSRF_TOKEN = "Invalid CSRF token"
+}

package/dist/types/database/index.d.ts

@@ -0,0 +1,69 @@
+import type { Query as MongooseQuery, Types as MongooseTypes, Document as MongooseDocument, Model as MongooseModel, FilterQuery as MongooseFilterQuery, SortOrder as MongooseSortOrder, RootFilterQuery as MongooseRootFilterQuery, UpdateQuery as MongooseUpdateQuery } from 'mongoose';
+import type { Outcome } from '@design-edito/tools/agnostic/misc/outcome/index.js';
+import type { WithId } from '../schema/index.js';
+import type { ErrorData, Codes } from '../errors/index.js';
+export type OperationContext = {
+    initiatorId: string | null;
+};
+export interface DocumentWithLocals<T> extends MongooseDocument<MongooseTypes.ObjectId, any, T> {
+    $locals: {
+        context?: OperationContext;
+    };
+}
+export interface QueryWithLocals<T, R = T | null> extends MongooseQuery<T, R> {
+    getOptions(): {
+        $locals?: {
+            context?: OperationContext;
+        };
+    };
+}
+export type POJOInput<T> = {
+    [K in keyof T]: T[K] extends MongooseTypes.DocumentArray<infer U> ? U[] : T[K];
+};
+export type PartialPOJOInput<T> = Partial<{
+    [K in keyof T]: T[K] extends MongooseTypes.DocumentArray<infer U> ? U[] : T[K];
+}>;
+export interface InsertOne {
+    <T extends WithId<{}>>(model: MongooseModel<T>, data: PartialPOJOInput<T>, context: OperationContext): Promise<Outcome.Either<T, ErrorData<Codes.DB_ERROR>>>;
+}
+export interface InsertMany {
+    <T extends WithId<{}>>(model: MongooseModel<T>, data: PartialPOJOInput<T>[], context: OperationContext): Promise<Outcome.Either<{
+        inserted: T[];
+        insertedCount: number;
+    }, ErrorData<Codes.DB_ERROR>>>;
+}
+export interface FindOne {
+    <T extends WithId<{}>>(model: MongooseModel<T>, filter: MongooseFilterQuery<T>, context: OperationContext): Promise<Outcome.Either<T, ErrorData<Codes.DB_NO_DOCUMENT_MATCHES_FILTER> | ErrorData<Codes.DB_ERROR>>>;
+}
+export type FindManyOptions<T> = {
+    limit?: number;
+    skip?: number;
+    sort?: Partial<Record<keyof T, MongooseSortOrder>>;
+};
+export type FindManyFailure = ErrorData<Codes.DB_NO_DOCUMENT_MATCHES_FILTER> | ErrorData<Codes.DB_ERROR>;
+export type FindManySuccess<T> = {
+    found: T[];
+    foundCount: number;
+    totalCount: number;
+    next: null | (() => Promise<Outcome.Either<FindManySuccess<T>, FindManyFailure>>);
+    prev: null | (() => Promise<Outcome.Either<FindManySuccess<T>, FindManyFailure>>);
+};
+export interface FindMany {
+    <T extends WithId<{}>>(model: MongooseModel<T>, filter: MongooseFilterQuery<T>, context: OperationContext, options?: FindManyOptions<T>): Promise<Outcome.Either<FindManySuccess<T>, FindManyFailure>>;
+}
+export interface UpdateOne {
+    <T extends WithId<{}>>(model: MongooseModel<T>, filter: MongooseRootFilterQuery<T>, update: MongooseUpdateQuery<T>, context: OperationContext): Promise<Outcome.Either<T, ErrorData<Codes.DB_NO_DOCUMENT_MATCHES_FILTER> | ErrorData<Codes.DB_ERROR>>>;
+}
+export interface UpdateMany {
+    <T extends WithId<{}>>(model: MongooseModel<T>, filter: MongooseRootFilterQuery<T>, update: MongooseUpdateQuery<T>, context: OperationContext): Promise<Outcome.Either<{
+        updatedCount: number;
+    }, ErrorData<Codes.DB_NO_DOCUMENT_MATCHES_FILTER> | ErrorData<Codes.DB_ERROR>>>;
+}
+export interface DeleteOne {
+    <T extends WithId<{}>>(model: MongooseModel<T>, filter: MongooseRootFilterQuery<T>, context: OperationContext): Promise<Outcome.Either<T, ErrorData<Codes.DB_NO_DOCUMENT_MATCHES_FILTER> | ErrorData<Codes.DB_ERROR>>>;
+}
+export interface DeleteMany {
+    <T extends WithId<{}>>(model: MongooseModel<T>, filter: MongooseRootFilterQuery<T>, context: OperationContext): Promise<Outcome.Either<{
+        deletedCount: number;
+    }, ErrorData<Codes.DB_NO_DOCUMENT_MATCHES_FILTER> | ErrorData<Codes.DB_ERROR>>>;
+}

package/dist/types/dto/index.d.ts

@@ -0,0 +1,25 @@
+import type { UserRole, UserStatus, UserBadge } from '../schema/index.js';
+type WithIdDTO<T> = T & {
+    _id: string;
+};
+export type UserUploadQuotaDTO = {
+    userId: string;
+    dailyUploadsByteSize: number;
+    monthlyUploadsByteSize: number;
+    totalUploadsByteSize: number;
+};
+export type BaseUserDTO = WithIdDTO<{
+    username: string;
+    role: UserRole;
+    status: UserStatus;
+    badges: UserBadge[];
+}>;
+export type LocalUserDTO = BaseUserDTO & {
+    email: string;
+    verified: boolean;
+};
+export type GoogleUserDTO = BaseUserDTO & {
+    googleId: string;
+    verified: true;
+};
+export {};

package/dist/types/email/index.d.ts

@@ -0,0 +1,6 @@
+import type { Outcome } from '@design-edito/tools/agnostic/misc/outcome/index.js';
+import type { APIResponse } from 'mailersend/lib/services/request.service.js';
+import type { SentMessageInfo } from 'nodemailer';
+export interface Send {
+    (from: string, fromName: string, to: string, toName: string, subject: string, htmlBody: string): Promise<Outcome.Either<APIResponse | SentMessageInfo, string>>;
+}

package/dist/types/env/index.d.ts

@@ -0,0 +1,83 @@
+export type Env = {
+    APP_LABEL?: string;
+    ALLOW_MAIN_ADMIN_USER_EMAIL_NOTIFICATIONS: 'true' | 'false';
+    ALLOW_HTTP: 'true' | 'false';
+    PORT: string;
+    CORS_WHITELIST: string[];
+    DB_PROTOCOL: 'mongodb' | 'mongodb+srv';
+    DB_HOST: string;
+    DB_PORT?: string;
+    DB_NAME?: string;
+    DB_USR: string;
+    DB_PWD: string;
+    DB_OPT: string;
+    DB_RESERVED_AGENDA_JOBS_COLLECTION_NAME: string;
+    ROOT_USER_ID: string;
+    ROOT_USER_NAME: string;
+    ROOT_USER_EMAIL: string;
+    ROOT_USER_PWD: string;
+    MAIN_ADMIN_USER_ID: string;
+    MAIN_ADMIN_USER_NAME: string;
+    MAIN_ADMIN_USER_EMAIL: string;
+    MAIN_ADMIN_USER_PWD: string;
+    USER_EMAIL_VALIDATION_TOKEN_LIFETIME_MINUTES: number;
+    USER_PASSWORD_RENEWAL_TOKEN_LIFETIME_MINUTES: number;
+    JWT_SECRET: string;
+    ACCESS_TOKEN_EXPIRATION_SECONDS: number;
+    ACCESS_TOKEN_RENEWAL_THRESHOLD_SECONDS: number;
+    REFRESH_TOKEN_EXPIRATION_SECONDS: number;
+    ACCESS_TOKEN_MAX_REFRESH_COUNT: number;
+    REFRESH_TOKEN_MAX_REFRESH_COUNT: number;
+    ACCESS_TOKEN_EXPIRATION_SECONDS_ADMIN: number;
+    ACCESS_TOKEN_RENEWAL_THRESHOLD_SECONDS_ADMIN: number;
+    REFRESH_TOKEN_EXPIRATION_SECONDS_ADMIN: number;
+    ACCESS_TOKEN_MAX_REFRESH_COUNT_ADMIN: number;
+    REFRESH_TOKEN_MAX_REFRESH_COUNT_ADMIN: number;
+    TEMP_DIR_PREFIX: string;
+    TEMP_DIR_MAX_MEBIBYTES_SIZE: number;
+    CSRF_COOKIE_NAME: string;
+    CSRF_TOKEN_HEADER: string;
+    USER_UPLOAD_DAILY_LIMIT_MEBIBYTES: number;
+    USER_UPLOAD_MONTHLY_LIMIT_MEBIBYTES: number;
+    USER_UPLOAD_TOTAL_LIMIT_MEBIBYTES: number;
+    USER_UPLOAD_ALLOWED_EXTENSIONS: string[];
+    CLAMAV_PROTOCOL: 'http' | 'https';
+    CLAMAV_HOST: string;
+    CLAMAV_PORT?: number;
+    CLAMAV_AUTH_MODE: 'none' | 'gcp';
+    ESBUILD_BUILT_ON: string;
+} & ({
+    FS_STORAGE_TYPE: 'gcs';
+    FS_STORAGE_GCS_BUCKET_NAME: string;
+    FS_STORAGE_GCS_PROJECT_ID: string;
+    FS_STORAGE_GCS_CLIENT_EMAIL: string;
+    FS_STORAGE_GCS_PRIVATE_KEY: string;
+} | {
+    FS_STORAGE_TYPE: 'aws';
+    FS_STORAGE_AWS_REGION: string;
+    FS_STORAGE_AWS_ACCESS_KEY_ID: string;
+    FS_STORAGE_AWS_SECRET_ACCESS_KEY: string;
+    FS_STORAGE_AWS_BUCKET_NAME: string;
+} | {
+    FS_STORAGE_TYPE: 'ftps';
+    FS_STORAGE_FTP_HOST: string;
+    FS_STORAGE_FTP_PORT: string;
+    FS_STORAGE_FTP_USER: string;
+    FS_STORAGE_FTP_PASSWORD: string;
+} | {
+    FS_STORAGE_TYPE: 'sftp';
+    FS_STORAGE_FTP_HOST: string;
+    FS_STORAGE_FTP_PORT: string;
+    FS_STORAGE_FTP_USER: string;
+    FS_STORAGE_FTP_PASSWORD: string;
+}) & ({
+    EMAILER_TYPE: 'mailersend';
+    EMAILER_MAILERSEND_API_KEY: string;
+    EMAILER_MAILERSEND_EMAILER_EMAIL: string;
+    EMAILER_MAILERSEND_EMAILER_NAME: string;
+} | {
+    EMAILER_TYPE: 'gmail';
+    EMAILER_GMAIL_EMAIL: string;
+    EMAILER_GMAIL_NAME: string;
+    EMAILER_GMAIL_PASSWORD: string;
+});