npm - @edge-base/server - Versions diffs - 0.1.1 - Mend

@edge-base/server 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/admin-build/.gitkeep +0 -0
package/admin-build/_app/env.js +1 -0
package/admin-build/_app/immutable/assets/0.Bm6cF078.css +1 -0
package/admin-build/_app/immutable/assets/1.BfW3pUNa.css +1 -0
package/admin-build/_app/immutable/assets/11.CVmQOewb.css +1 -0
package/admin-build/_app/immutable/assets/12.B1EhbRZT.css +1 -0
package/admin-build/_app/immutable/assets/13.BvwYeuwE.css +1 -0
package/admin-build/_app/immutable/assets/14.CdVfcO0R.css +1 -0
package/admin-build/_app/immutable/assets/15.2yeZ66b-.css +1 -0
package/admin-build/_app/immutable/assets/17.BVg0JEVu.css +1 -0
package/admin-build/_app/immutable/assets/18.Rwnl3x_i.css +1 -0
package/admin-build/_app/immutable/assets/20.DsPWA9AV.css +1 -0
package/admin-build/_app/immutable/assets/21.Dz2RJ56c.css +1 -0
package/admin-build/_app/immutable/assets/22.DwNLk5Ai.css +1 -0
package/admin-build/_app/immutable/assets/23.CFpu0gOO.css +1 -0
package/admin-build/_app/immutable/assets/24.Cy5LBeoJ.css +1 -0
package/admin-build/_app/immutable/assets/25.pUyLVf-h.css +1 -0
package/admin-build/_app/immutable/assets/26.DBcGrlXa.css +1 -0
package/admin-build/_app/immutable/assets/27.BswYyAJD.css +1 -0
package/admin-build/_app/immutable/assets/28.B4ueB1Kf.css +1 -0
package/admin-build/_app/immutable/assets/29.B-qU6PdF.css +1 -0
package/admin-build/_app/immutable/assets/3.Dg81Pgmd.css +1 -0
package/admin-build/_app/immutable/assets/30.CsdWum94.css +1 -0
package/admin-build/_app/immutable/assets/31.U6OwIp50.css +1 -0
package/admin-build/_app/immutable/assets/4.CyawCCux.css +1 -0
package/admin-build/_app/immutable/assets/5.C0YO2HTk.css +1 -0
package/admin-build/_app/immutable/assets/8.Br5jd6kD.css +1 -0
package/admin-build/_app/immutable/assets/Badge.EMYLHBxE.css +1 -0
package/admin-build/_app/immutable/assets/Button.DpzMRTjK.css +1 -0
package/admin-build/_app/immutable/assets/ConfirmDialog.DAnaWRRk.css +1 -0
package/admin-build/_app/immutable/assets/EmptyState.CwKsu57Y.css +1 -0
package/admin-build/_app/immutable/assets/Input.BDUSenmU.css +1 -0
package/admin-build/_app/immutable/assets/Modal.Dm5B0Xie.css +1 -0
package/admin-build/_app/immutable/assets/PageShell.CmU-Xh-b.css +1 -0
package/admin-build/_app/immutable/assets/SchemaFieldEditor.g4NsCdno.css +1 -0
package/admin-build/_app/immutable/assets/Select.BW4Keufm.css +1 -0
package/admin-build/_app/immutable/assets/Skeleton.KWUulTKJ.css +1 -0
package/admin-build/_app/immutable/assets/Tabs.CniGYb67.css +1 -0
package/admin-build/_app/immutable/assets/TimeChart.BTCDAvmT.css +1 -0
package/admin-build/_app/immutable/assets/Toggle.Cy_K12OM.css +1 -0
package/admin-build/_app/immutable/assets/TopList.ClFzmPlA.css +1 -0
package/admin-build/_app/immutable/chunks/7B47DvSx.js +1 -0
package/admin-build/_app/immutable/chunks/7f08Id8e.js +1 -0
package/admin-build/_app/immutable/chunks/8wJeQ7LN.js +1 -0
package/admin-build/_app/immutable/chunks/B-h2afW5.js +1 -0
package/admin-build/_app/immutable/chunks/B8vJP3wz.js +1 -0
package/admin-build/_app/immutable/chunks/BR_fL5Yv.js +1 -0
package/admin-build/_app/immutable/chunks/BY92tFS2.js +1 -0
package/admin-build/_app/immutable/chunks/BcR-Rdj9.js +1 -0
package/admin-build/_app/immutable/chunks/BdrwyZv8.js +1 -0
package/admin-build/_app/immutable/chunks/Bh56EfQ_.js +1 -0
package/admin-build/_app/immutable/chunks/BkrCkgYp.js +1 -0
package/admin-build/_app/immutable/chunks/BmRjiP5k.js +1 -0
package/admin-build/_app/immutable/chunks/BsokvhWC.js +1 -0
package/admin-build/_app/immutable/chunks/C4D51vTW.js +1 -0
package/admin-build/_app/immutable/chunks/C6puvcoR.js +2 -0
package/admin-build/_app/immutable/chunks/CCKNu7m7.js +1 -0
package/admin-build/_app/immutable/chunks/CWj6FrbW.js +1 -0
package/admin-build/_app/immutable/chunks/Ce-ngf4p.js +5 -0
package/admin-build/_app/immutable/chunks/Cs0GwzJA.js +1 -0
package/admin-build/_app/immutable/chunks/CwROoZK0.js +1 -0
package/admin-build/_app/immutable/chunks/CxCPv_Ut.js +1 -0
package/admin-build/_app/immutable/chunks/CxbRue-5.js +1 -0
package/admin-build/_app/immutable/chunks/CyqB6g-D.js +1 -0
package/admin-build/_app/immutable/chunks/D5h5A1cc.js +2 -0
package/admin-build/_app/immutable/chunks/DnyL7Zq-.js +1 -0
package/admin-build/_app/immutable/chunks/DoPXzH7F.js +1 -0
package/admin-build/_app/immutable/chunks/DrQSgw-f.js +1 -0
package/admin-build/_app/immutable/chunks/DttM2zNO.js +1 -0
package/admin-build/_app/immutable/chunks/DuXuUBWN.js +1 -0
package/admin-build/_app/immutable/chunks/MdeqaOQx.js +10 -0
package/admin-build/_app/immutable/chunks/NuUjtcO2.js +1 -0
package/admin-build/_app/immutable/chunks/Q2nPFxS6.js +1 -0
package/admin-build/_app/immutable/chunks/R6arueIl.js +1 -0
package/admin-build/_app/immutable/chunks/UUazaC_N.js +1 -0
package/admin-build/_app/immutable/chunks/cOYbrQxx.js +1 -0
package/admin-build/_app/immutable/chunks/eFQHTGwA.js +1 -0
package/admin-build/_app/immutable/chunks/ehbppgYb.js +1 -0
package/admin-build/_app/immutable/chunks/glwixJlP.js +1 -0
package/admin-build/_app/immutable/chunks/vApWTCBs.js +1 -0
package/admin-build/_app/immutable/chunks/w89G9Xpi.js +1 -0
package/admin-build/_app/immutable/chunks/wJsUhbfZ.js +1 -0
package/admin-build/_app/immutable/chunks/zfauFM8P.js +1 -0
package/admin-build/_app/immutable/entry/app.CcO-Uos3.js +2 -0
package/admin-build/_app/immutable/entry/start.COebYq3I.js +1 -0
package/admin-build/_app/immutable/nodes/0.CjtHKU-6.js +1 -0
package/admin-build/_app/immutable/nodes/1.DEisjlM0.js +1 -0
package/admin-build/_app/immutable/nodes/10.CvhdyWVB.js +1 -0
package/admin-build/_app/immutable/nodes/11.DjHqcOvy.js +1 -0
package/admin-build/_app/immutable/nodes/12.mQLz4Mj_.js +1 -0
package/admin-build/_app/immutable/nodes/13.CBonZZyP.js +110 -0
package/admin-build/_app/immutable/nodes/14.d-oiZL0j.js +3 -0
package/admin-build/_app/immutable/nodes/15.CKPQsUYF.js +1 -0
package/admin-build/_app/immutable/nodes/16.wPzAPQGx.js +1 -0
package/admin-build/_app/immutable/nodes/17.DayhKyEZ.js +1 -0
package/admin-build/_app/immutable/nodes/18.DKwS0Ir0.js +1 -0
package/admin-build/_app/immutable/nodes/19.wPzAPQGx.js +1 -0
package/admin-build/_app/immutable/nodes/2.BKoKrw1i.js +1 -0
package/admin-build/_app/immutable/nodes/20.BvIkkkrW.js +1 -0
package/admin-build/_app/immutable/nodes/21.DMaFhdHk.js +128 -0
package/admin-build/_app/immutable/nodes/22.3xdgwuK1.js +1 -0
package/admin-build/_app/immutable/nodes/23.8Bvgjbsl.js +112 -0
package/admin-build/_app/immutable/nodes/24.DzSSzRhG.js +2 -0
package/admin-build/_app/immutable/nodes/25.9KKYBnAE.js +2 -0
package/admin-build/_app/immutable/nodes/26.Bhn9dfhY.js +1 -0
package/admin-build/_app/immutable/nodes/27.kRLiC24G.js +1 -0
package/admin-build/_app/immutable/nodes/28.BVIN1-7N.js +1 -0
package/admin-build/_app/immutable/nodes/29.3yabZWj4.js +1 -0
package/admin-build/_app/immutable/nodes/3.BFtSOkX7.js +2 -0
package/admin-build/_app/immutable/nodes/30.CyCQlwaP.js +1 -0
package/admin-build/_app/immutable/nodes/31.C4LDXjES.js +1 -0
package/admin-build/_app/immutable/nodes/4.CvbiMlCa.js +1 -0
package/admin-build/_app/immutable/nodes/5.C6BLv2eM.js +1 -0
package/admin-build/_app/immutable/nodes/6.BcXvfl2P.js +1 -0
package/admin-build/_app/immutable/nodes/7.CIuqhPiK.js +1 -0
package/admin-build/_app/immutable/nodes/8.BQOR_JfO.js +1 -0
package/admin-build/_app/immutable/nodes/9.NZqXQxPy.js +1 -0
package/admin-build/_app/version.json +1 -0
package/admin-build/favicon.svg +26 -0
package/admin-build/index.html +45 -0
package/openapi.json +19543 -0
package/package.json +66 -0
package/src/__tests__/admin-assets.test.ts +55 -0
package/src/__tests__/admin-data-routes.test.ts +488 -0
package/src/__tests__/admin-db-target.test.ts +103 -0
package/src/__tests__/admin-routing.test.ts +31 -0
package/src/__tests__/admin-user-management.test.ts +311 -0
package/src/__tests__/analytics-query.test.ts +75 -0
package/src/__tests__/auth-d1.test.ts +749 -0
package/src/__tests__/auth-db-adapter.test.ts +73 -0
package/src/__tests__/auth-jwt.test.ts +440 -0
package/src/__tests__/auth-oauth.test.ts +389 -0
package/src/__tests__/auth-password.test.ts +367 -0
package/src/__tests__/auth-redirect.test.ts +87 -0
package/src/__tests__/backup-restore.test.ts +711 -0
package/src/__tests__/broadcast.test.ts +128 -0
package/src/__tests__/cli.test.ts +178 -0
package/src/__tests__/cloudflare-realtime.test.ts +113 -0
package/src/__tests__/config.test.ts +469 -0
package/src/__tests__/cors.test.ts +154 -0
package/src/__tests__/cron.test.ts +302 -0
package/src/__tests__/d1-handler.test.ts +402 -0
package/src/__tests__/d1-sql.test.ts +120 -0
package/src/__tests__/database-live-config.test.ts +42 -0
package/src/__tests__/database-live-emitter.test.ts +56 -0
package/src/__tests__/database-live-filters.test.ts +63 -0
package/src/__tests__/database-live-route.test.ts +113 -0
package/src/__tests__/db-sql.test.ts +163 -0
package/src/__tests__/do-lifecycle.test.ts +263 -0
package/src/__tests__/do-router.test.ts +729 -0
package/src/__tests__/email-provider.test.ts +128 -0
package/src/__tests__/email-templates.test.ts +528 -0
package/src/__tests__/error-format.test.ts +250 -0
package/src/__tests__/field-ops.test.ts +242 -0
package/src/__tests__/functions-context.test.ts +334 -0
package/src/__tests__/functions-d1-proxy.test.ts +229 -0
package/src/__tests__/functions-registry-runtime-config.test.ts +17 -0
package/src/__tests__/functions-route.test.ts +139 -0
package/src/__tests__/internal-request.test.ts +77 -0
package/src/__tests__/log-writer.test.ts +44 -0
package/src/__tests__/logger.test.ts +58 -0
package/src/__tests__/meta-admin-proxy.test.ts +48 -0
package/src/__tests__/meta-export-coverage.test.ts +191 -0
package/src/__tests__/meta-route-registration.test.ts +47 -0
package/src/__tests__/namespace-dump.test.ts +28 -0
package/src/__tests__/oauth-providers.test.ts +337 -0
package/src/__tests__/openapi-coverage.test.ts +144 -0
package/src/__tests__/pagination.test.ts +59 -0
package/src/__tests__/password-policy.test.ts +191 -0
package/src/__tests__/plugin-migrations.test.ts +379 -0
package/src/__tests__/postgres-batch-compat.test.ts +133 -0
package/src/__tests__/postgres-dialect.test.ts +328 -0
package/src/__tests__/postgres-executor.test.ts +79 -0
package/src/__tests__/postgres-field-ops-compat.test.ts +222 -0
package/src/__tests__/postgres-schema-init.test.ts +105 -0
package/src/__tests__/postgres-table-utils.test.ts +107 -0
package/src/__tests__/presence.test.ts +199 -0
package/src/__tests__/provider.test.ts +550 -0
package/src/__tests__/public-user-profile.test.ts +339 -0
package/src/__tests__/push-handlers.test.ts +179 -0
package/src/__tests__/push-provider.test.ts +80 -0
package/src/__tests__/push-token.test.ts +418 -0
package/src/__tests__/query.test.ts +771 -0
package/src/__tests__/rate-limit.test.ts +260 -0
package/src/__tests__/room-access-policy.test.ts +101 -0
package/src/__tests__/room-handler-context.test.ts +130 -0
package/src/__tests__/room-monitoring.test.ts +138 -0
package/src/__tests__/room-runtime-routing.test.ts +222 -0
package/src/__tests__/room.test.ts +254 -0
package/src/__tests__/route-parser.test.ts +490 -0
package/src/__tests__/rules.test.ts +234 -0
package/src/__tests__/runtime-surface-accounting.test.ts +120 -0
package/src/__tests__/scheduled.test.ts +80 -0
package/src/__tests__/schema.test.ts +1273 -0
package/src/__tests__/security-hardening.test.ts +312 -0
package/src/__tests__/server.unit.test.ts +333 -0
package/src/__tests__/service-key-db-proxy.test.ts +650 -0
package/src/__tests__/service-key-provider-bypass.test.ts +138 -0
package/src/__tests__/service-key.test.ts +757 -0
package/src/__tests__/smoke-skip-report.test.ts +72 -0
package/src/__tests__/sms-provider.test.ts +39 -0
package/src/__tests__/sql-route.test.ts +218 -0
package/src/__tests__/storage-hook-context.test.ts +115 -0
package/src/__tests__/totp.test.ts +200 -0
package/src/__tests__/uuid.test.ts +144 -0
package/src/__tests__/validation.test.ts +773 -0
package/src/__tests__/websocket-pending.test.ts +163 -0
package/src/_functions-registry.ts +51 -0
package/src/bench-entry.ts +9 -0
package/src/cloudflare-test.d.ts +1 -0
package/src/durable-objects/auth-do.ts +49 -0
package/src/durable-objects/database-do.ts +2240 -0
package/src/durable-objects/database-live-do.ts +949 -0
package/src/durable-objects/logs-do.ts +1200 -0
package/src/durable-objects/room-runtime-base.ts +1604 -0
package/src/durable-objects/rooms-do.ts +2191 -0
package/src/generated-config.ts +6 -0
package/src/index.ts +382 -0
package/src/lib/admin-assets.ts +54 -0
package/src/lib/admin-db-target.ts +301 -0
package/src/lib/admin-routing.ts +35 -0
package/src/lib/admin-user-management.ts +464 -0
package/src/lib/analytics-adapter.ts +103 -0
package/src/lib/analytics-query.ts +579 -0
package/src/lib/auth-d1-service.ts +1193 -0
package/src/lib/auth-d1.ts +1056 -0
package/src/lib/auth-db-adapter.ts +289 -0
package/src/lib/auth-redirect.ts +116 -0
package/src/lib/cidr.ts +115 -0
package/src/lib/client-ip.ts +51 -0
package/src/lib/cloudflare-realtime.ts +251 -0
package/src/lib/control-db.ts +36 -0
package/src/lib/cron.ts +163 -0
package/src/lib/d1-handler.ts +1425 -0
package/src/lib/d1-schema-init.ts +255 -0
package/src/lib/d1-sql.ts +33 -0
package/src/lib/database-live-config.ts +24 -0
package/src/lib/database-live-emitter.ts +111 -0
package/src/lib/db-sql.ts +66 -0
package/src/lib/do-retry.ts +36 -0
package/src/lib/do-router.ts +270 -0
package/src/lib/do-sql.ts +73 -0
package/src/lib/email-provider.ts +379 -0
package/src/lib/email-templates.ts +285 -0
package/src/lib/email-translations.ts +422 -0
package/src/lib/errors.ts +151 -0
package/src/lib/functions.ts +2091 -0
package/src/lib/hono.ts +56 -0
package/src/lib/internal-request.ts +56 -0
package/src/lib/jwt.ts +354 -0
package/src/lib/log-writer.ts +272 -0
package/src/lib/namespace-dump.ts +125 -0
package/src/lib/oauth-providers.ts +1225 -0
package/src/lib/op-parser.ts +99 -0
package/src/lib/openapi.ts +146 -0
package/src/lib/pagination.ts +19 -0
package/src/lib/password-policy.ts +102 -0
package/src/lib/password.ts +145 -0
package/src/lib/plugin-migrations.ts +612 -0
package/src/lib/postgres-executor.ts +203 -0
package/src/lib/postgres-handler.ts +1102 -0
package/src/lib/postgres-schema-init.ts +341 -0
package/src/lib/postgres-table-utils.ts +87 -0
package/src/lib/public-user-profile.ts +187 -0
package/src/lib/push-provider.ts +409 -0
package/src/lib/push-token.ts +294 -0
package/src/lib/query-engine.ts +768 -0
package/src/lib/room-monitoring.ts +97 -0
package/src/lib/room-runtime.ts +14 -0
package/src/lib/route-parser.ts +434 -0
package/src/lib/schema.ts +538 -0
package/src/lib/schemas.ts +152 -0
package/src/lib/service-key.ts +419 -0
package/src/lib/sms-provider.ts +230 -0
package/src/lib/startup-config.ts +99 -0
package/src/lib/totp.ts +242 -0
package/src/lib/uuid.ts +87 -0
package/src/lib/validation.ts +205 -0
package/src/lib/version.ts +2 -0
package/src/lib/websocket-pending.ts +40 -0
package/src/middleware/auth.ts +169 -0
package/src/middleware/captcha-verify.ts +217 -0
package/src/middleware/cors.ts +159 -0
package/src/middleware/error-handler.ts +54 -0
package/src/middleware/internal-guard.ts +26 -0
package/src/middleware/logger.ts +126 -0
package/src/middleware/rate-limit.ts +283 -0
package/src/middleware/rules.ts +475 -0
package/src/routes/admin-auth.ts +447 -0
package/src/routes/admin.ts +3501 -0
package/src/routes/analytics-api.ts +290 -0
package/src/routes/auth.ts +4222 -0
package/src/routes/backup.ts +1466 -0
package/src/routes/config.ts +53 -0
package/src/routes/d1.ts +109 -0
package/src/routes/database-live.ts +281 -0
package/src/routes/functions.ts +155 -0
package/src/routes/health.ts +32 -0
package/src/routes/kv.ts +167 -0
package/src/routes/oauth.ts +1055 -0
package/src/routes/push.ts +1465 -0
package/src/routes/room.ts +639 -0
package/src/routes/schema-endpoint.ts +76 -0
package/src/routes/sql.ts +176 -0
package/src/routes/storage.ts +1674 -0
package/src/routes/tables.ts +699 -0
package/src/routes/users.ts +21 -0
package/src/routes/vectorize.ts +372 -0
package/src/types.ts +99 -0

package/src/__tests__/room-runtime-routing.test.ts ADDED Viewed

@@ -0,0 +1,222 @@
+import { afterEach, describe, expect, it, vi } from 'vitest';
+import { defineConfig } from '@edge-base/shared';
+import { OpenAPIHono, type HonoEnv } from '../lib/hono.js';
+import { setConfig } from '../lib/do-router.js';
+import { resolveRoomRuntime } from '../lib/room-runtime.js';
+import { roomRoute } from '../routes/room.js';
+import type { Env } from '../types.js';
+function createRoomRuntimeEnv(): Env {
+  return {
+    KV: {
+      get: async () => null,
+      put: async () => undefined,
+      delete: async () => undefined,
+      list: async () => ({ keys: [], list_complete: true, cacheStatus: null }),
+      getWithMetadata: async () => ({ value: null, metadata: null, cacheStatus: null }),
+    } as unknown as KVNamespace,
+    ROOMS: {
+      idFromName: (name: string) => name as unknown as DurableObjectId,
+      get: () => ({
+        fetch: async () => new Response(JSON.stringify({ runtime: 'rooms' }), {
+          headers: { 'Content-Type': 'application/json' },
+          status: 201,
+        }),
+      }),
+    } as unknown as DurableObjectNamespace,
+  } as unknown as Env;
+}
+function createRoomApp() {
+  const app = new OpenAPIHono<HonoEnv>();
+  app.route('/api/room', roomRoute);
+  return app;
+}
+function createAuthedRoomApp() {
+  const app = new OpenAPIHono<HonoEnv>();
+  app.use('/api/*', async (c, next) => {
+    c.set('auth', {
+      id: 'user-1',
+      role: 'user',
+      isAnonymous: false,
+      meta: {},
+    });
+    await next();
+  });
+  app.route('/api/room', roomRoute);
+  return app;
+}
+describe('room runtime selection', () => {
+  afterEach(() => {
+    setConfig({});
+  });
+  it('always resolves to the rooms runtime', () => {
+    const env = createRoomRuntimeEnv();
+    const resolved = resolveRoomRuntime(env);
+    expect(resolved.target).toBe('rooms');
+    expect(resolved.binding).toBe(env.ROOMS);
+  });
+  it('resolves the ROOMS binding regardless of namespace config', () => {
+    const env = createRoomRuntimeEnv();
+    const resolved = resolveRoomRuntime(env);
+    expect(resolved.target).toBe('rooms');
+    expect(resolved.binding).toBe(env.ROOMS);
+  });
+});
+describe('room route runtime routing', () => {
+  afterEach(() => {
+    setConfig({});
+  });
+  it('routes metadata requests to the rooms runtime', async () => {
+    setConfig(defineConfig({
+      rooms: {
+        game: {
+          runtime: {
+            target: 'rooms',
+          },
+          public: {
+            metadata: true,
+          },
+        },
+      },
+    }));
+    const app = createRoomApp();
+    const response = await app.request('/api/room/metadata?namespace=game&id=room-1', {
+      method: 'GET',
+    }, createRoomRuntimeEnv());
+    expect(response.status).toBe(201);
+    await expect(response.json()).resolves.toEqual({ runtime: 'rooms' });
+  });
+  it('routes websocket upgrades to the rooms runtime', async () => {
+    setConfig(defineConfig({
+      rooms: {
+        game: {
+          runtime: {
+            target: 'rooms',
+          },
+        },
+      },
+    }));
+    const app = createRoomApp();
+    const response = await app.request('/api/room?namespace=game&id=room-1', {
+      method: 'GET',
+      headers: {
+        Upgrade: 'websocket',
+      },
+    }, createRoomRuntimeEnv());
+    expect(response.status).toBe(201);
+    await expect(response.json()).resolves.toEqual({ runtime: 'rooms' });
+  });
+  it('returns an error when ROOMS binding is missing', async () => {
+    setConfig(defineConfig({
+      rooms: {
+        game: {
+          runtime: {
+            target: 'rooms',
+          },
+          public: {
+            metadata: true,
+          },
+        },
+      },
+    }));
+    const env = createRoomRuntimeEnv();
+    delete (env as unknown as Record<string, unknown>).ROOMS;
+    const app = createRoomApp();
+    const response = await app.request('/api/room/metadata?namespace=game&id=room-1', {
+      method: 'GET',
+    }, env);
+    expect(response.status).toBe(404);
+    await expect(response.json()).resolves.toMatchObject({
+      message: "Room runtime 'rooms' not configured",
+    });
+  });
+  it('reports the rooms runtime in connect-check diagnostics', async () => {
+    setConfig(defineConfig({
+      rooms: {
+        game: {
+          runtime: {
+            target: 'rooms',
+          },
+        },
+      },
+    }));
+    const app = createRoomApp();
+    const response = await app.request('/api/room/connect-check?namespace=game&id=room-1', {
+      method: 'GET',
+    }, createRoomRuntimeEnv());
+    expect(response.status).toBe(200);
+    await expect(response.json()).resolves.toMatchObject({
+      ok: true,
+      runtime: 'rooms',
+    });
+  });
+  it('routes room media requests to the rooms runtime', async () => {
+    setConfig(defineConfig({
+      rooms: {
+        game: {
+          runtime: {
+            target: 'rooms',
+          },
+        },
+      },
+    }));
+    const doFetch = vi.fn(async (request: Request) => new Response(JSON.stringify({
+      runtime: 'rooms',
+      path: new URL(request.url).pathname,
+      auth: request.headers.get('Authorization'),
+      body: await request.clone().json(),
+    }), {
+      headers: { 'Content-Type': 'application/json' },
+      status: 201,
+    }));
+    const env = createRoomRuntimeEnv();
+    env.ROOMS = {
+      idFromName: (name: string) => name as unknown as DurableObjectId,
+      get: () => ({ fetch: doFetch }),
+    } as unknown as DurableObjectNamespace;
+    const app = createAuthedRoomApp();
+    const response = await app.request('/api/room/media/realtime/session?namespace=game&id=room-1', {
+      method: 'POST',
+      headers: {
+        Authorization: 'Bearer room-token',
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify({ connectionId: 'conn-1' }),
+    }, env);
+    expect(response.status).toBe(201);
+    await expect(response.json()).resolves.toMatchObject({
+      runtime: 'rooms',
+      path: '/media/realtime/session',
+      auth: 'Bearer room-token',
+      body: { connectionId: 'conn-1' },
+    });
+    expect(doFetch).toHaveBeenCalledTimes(1);
+    expect(new URL((doFetch.mock.calls[0][0] as Request).url).searchParams.get('room')).toBe('game::room-1');
+  });
+});

package/src/__tests__/room.test.ts ADDED Viewed

@@ -0,0 +1,254 @@
+/**
+ * 서버 단위 테스트 — RoomsDO pure logic functions
+ * 1-17 room.test.ts — 80개 (순수 로직만, WebSocket 불필요)
+ *
+ * 실행: cd packages/server && npx vitest run src/__tests__/room.test.ts
+ *
+ * 주의: RoomsDO 내부 함수(isValidDotPath, deepSet, computeDelta)들은
+ *       모듈 외부에서 직접 임포트 불가이므로,
+ *       여기서는 동일 로직을 검증하는 단위 테스트를 작성
+ */
+import { describe, it, expect } from 'vitest';
+// ── 1. isValidDotPath 동일 로직 구현 (module-private → copy logic) ─────────────
+const BLOCKED_KEYS = new Set(['__proto__', 'constructor', 'prototype']);
+const MAX_DOT_PATH_DEPTH = 5;
+function isValidDotPath(path: string): boolean {
+  const segments = path.split('.');
+  if (segments.length > MAX_DOT_PATH_DEPTH) return false;
+  for (const seg of segments) {
+    if (seg === '' || BLOCKED_KEYS.has(seg)) return false;
+    if (/^\d+$/.test(seg)) return false;
+  }
+  return true;
+}
+// ── 2. deepSet 동일 로직 ────────────────────────────────────────────────────
+function deepSet(obj: Record<string, unknown>, path: string, value: unknown): void {
+  const segments = path.split('.');
+  let current: Record<string, unknown> = obj;
+  for (let i = 0; i < segments.length - 1; i++) {
+    const seg = segments[i];
+    if (typeof current[seg] !== 'object' || current[seg] === null || Array.isArray(current[seg])) {
+      current[seg] = {};
+    }
+    current = current[seg] as Record<string, unknown>;
+  }
+  const lastSeg = segments[segments.length - 1];
+  if (value === null) {
+    delete current[lastSeg];
+  } else {
+    current[lastSeg] = value;
+  }
+}
+// ── 3. computeDelta 동일 로직 ────────────────────────────────────────────────
+function computeDelta(
+  oldState: Record<string, unknown>,
+  newState: Record<string, unknown>,
+): Record<string, unknown> | null {
+  const delta: Record<string, unknown> = {};
+  let hasChanges = false;
+  for (const key of Object.keys(newState)) {
+    if (JSON.stringify(oldState[key]) !== JSON.stringify(newState[key])) {
+      delta[key] = newState[key];
+      hasChanges = true;
+    }
+  }
+  for (const key of Object.keys(oldState)) {
+    if (!(key in newState)) {
+      delta[key] = null;
+      hasChanges = true;
+    }
+  }
+  return hasChanges ? delta : null;
+}
+// ─── A. isValidDotPath ───────────────────────────────────────────────────────
+describe('isValidDotPath', () => {
+  it('simple key → valid', () => {
+    expect(isValidDotPath('health')).toBe(true);
+  });
+  it('dot path → valid', () => {
+    expect(isValidDotPath('player.position.x')).toBe(true);
+  });
+  it('5-level depth → valid (max)', () => {
+    expect(isValidDotPath('a.b.c.d.e')).toBe(true);
+  });
+  it('6-level depth → invalid (exceeds max)', () => {
+    expect(isValidDotPath('a.b.c.d.e.f')).toBe(false);
+  });
+  it('empty segment (double dot) → invalid', () => {
+    expect(isValidDotPath('a..b')).toBe(false);
+  });
+  it('leading dot → invalid', () => {
+    expect(isValidDotPath('.a.b')).toBe(false);
+  });
+  it('__proto__ → invalid (prototype pollution)', () => {
+    expect(isValidDotPath('__proto__')).toBe(false);
+  });
+  it('constructor → invalid', () => {
+    expect(isValidDotPath('constructor')).toBe(false);
+  });
+  it('prototype → invalid', () => {
+    expect(isValidDotPath('prototype')).toBe(false);
+  });
+  it('nested __proto__ → invalid', () => {
+    expect(isValidDotPath('a.__proto__.b')).toBe(false);
+  });
+  it('numeric-only key → invalid (array injection)', () => {
+    expect(isValidDotPath('0')).toBe(false);
+    expect(isValidDotPath('items.0')).toBe(false);
+  });
+  it('alphanumeric key → valid', () => {
+    expect(isValidDotPath('item2')).toBe(true);
+    expect(isValidDotPath('player1.score')).toBe(true);
+  });
+  it('trailing dot → invalid', () => {
+    expect(isValidDotPath('a.b.')).toBe(false);
+  });
+});
+// ─── B. deepSet ──────────────────────────────────────────────────────────────
+describe('deepSet', () => {
+  it('sets top-level key', () => {
+    const obj: Record<string, unknown> = {};
+    deepSet(obj, 'score', 100);
+    expect(obj['score']).toBe(100);
+  });
+  it('sets nested key (creates intermediary)', () => {
+    const obj: Record<string, unknown> = {};
+    deepSet(obj, 'player.position.x', 42);
+    const player = obj['player'] as Record<string, unknown>;
+    const pos = player['position'] as Record<string, unknown>;
+    expect(pos['x']).toBe(42);
+  });
+  it('deletes key when value is null', () => {
+    const obj: Record<string, unknown> = { title: 'hello' };
+    deepSet(obj, 'title', null);
+    expect('title' in obj).toBe(false);
+  });
+  it('overwrites existing value', () => {
+    const obj: Record<string, unknown> = { x: 1 };
+    deepSet(obj, 'x', 99);
+    expect(obj['x']).toBe(99);
+  });
+  it('replaces non-object with object on path', () => {
+    const obj: Record<string, unknown> = { player: 'string-value' };
+    deepSet(obj, 'player.score', 50);
+    const player = obj['player'] as Record<string, unknown>;
+    expect(player['score']).toBe(50);
+  });
+  it('replaces array with object on path', () => {
+    const obj: Record<string, unknown> = { player: [1, 2, 3] };
+    deepSet(obj, 'player.score', 10);
+    expect((obj['player'] as Record<string, unknown>)['score']).toBe(10);
+  });
+  it('sets deep nested path', () => {
+    const obj: Record<string, unknown> = {};
+    deepSet(obj, 'a.b.c.d', 'leaf');
+    const a = obj['a'] as Record<string, unknown>;
+    const b = a['b'] as Record<string, unknown>;
+    const c = b['c'] as Record<string, unknown>;
+    expect(c['d']).toBe('leaf');
+  });
+});
+// ─── C. computeDelta ─────────────────────────────────────────────────────────
+describe('computeDelta', () => {
+  it('returns null when states are identical', () => {
+    const state = { x: 1, y: 2 };
+    expect(computeDelta(state, { ...state })).toBeNull();
+  });
+  it('detects modified value', () => {
+    const delta = computeDelta({ x: 1 }, { x: 2 });
+    expect(delta).not.toBeNull();
+    expect(delta?.x).toBe(2);
+  });
+  it('detects added key → in delta', () => {
+    const delta = computeDelta({ x: 1 }, { x: 1, y: 2 });
+    expect(delta?.y).toBe(2);
+  });
+  it('detects deleted key → null in delta', () => {
+    const delta = computeDelta({ x: 1, y: 2 }, { x: 1 });
+    expect(delta?.y).toBeNull();
+  });
+  it('empty → empty → null', () => {
+    expect(computeDelta({}, {})).toBeNull();
+  });
+  it('empty → with values → delta has new values', () => {
+    const delta = computeDelta({}, { a: 1, b: 2 });
+    expect(delta?.a).toBe(1);
+    expect(delta?.b).toBe(2);
+  });
+  it('with values → empty → delta has null for each key', () => {
+    const delta = computeDelta({ a: 1, b: 2 }, {});
+    expect(delta?.a).toBeNull();
+    expect(delta?.b).toBeNull();
+  });
+  it('nested object change detected', () => {
+    const delta = computeDelta(
+      { player: { x: 1, y: 2 } },
+      { player: { x: 1, y: 99 } },
+    );
+    expect(delta?.player).toBeDefined();
+  });
+  it('no spurious delta for deeply equal objects', () => {
+    const delta = computeDelta(
+      { items: [1, 2, 3] },
+      { items: [1, 2, 3] },
+    );
+    expect(delta).toBeNull();
+  });
+});
+// ─── D. RoomsDO constants 검증 ────────────────────────────────────────────────
+describe('RoomsDO constants (design verification)', () => {
+  it('MAX_DOT_PATH_DEPTH is 5', () => {
+    // 5-level deep is valid
+    expect(isValidDotPath('a.b.c.d.e')).toBe(true);
+    // 6-level deep is invalid
+    expect(isValidDotPath('a.b.c.d.e.f')).toBe(false);
+  });
+  it('BLOCKED_KEYS contains proto-pollution keys', () => {
+    expect(BLOCKED_KEYS.has('__proto__')).toBe(true);
+    expect(BLOCKED_KEYS.has('constructor')).toBe(true);
+    expect(BLOCKED_KEYS.has('prototype')).toBe(true);
+  });
+});