npm - @edge-base/server - Versions diffs - 0.1.1 - Mend

@edge-base/server 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/admin-build/.gitkeep +0 -0
package/admin-build/_app/env.js +1 -0
package/admin-build/_app/immutable/assets/0.Bm6cF078.css +1 -0
package/admin-build/_app/immutable/assets/1.BfW3pUNa.css +1 -0
package/admin-build/_app/immutable/assets/11.CVmQOewb.css +1 -0
package/admin-build/_app/immutable/assets/12.B1EhbRZT.css +1 -0
package/admin-build/_app/immutable/assets/13.BvwYeuwE.css +1 -0
package/admin-build/_app/immutable/assets/14.CdVfcO0R.css +1 -0
package/admin-build/_app/immutable/assets/15.2yeZ66b-.css +1 -0
package/admin-build/_app/immutable/assets/17.BVg0JEVu.css +1 -0
package/admin-build/_app/immutable/assets/18.Rwnl3x_i.css +1 -0
package/admin-build/_app/immutable/assets/20.DsPWA9AV.css +1 -0
package/admin-build/_app/immutable/assets/21.Dz2RJ56c.css +1 -0
package/admin-build/_app/immutable/assets/22.DwNLk5Ai.css +1 -0
package/admin-build/_app/immutable/assets/23.CFpu0gOO.css +1 -0
package/admin-build/_app/immutable/assets/24.Cy5LBeoJ.css +1 -0
package/admin-build/_app/immutable/assets/25.pUyLVf-h.css +1 -0
package/admin-build/_app/immutable/assets/26.DBcGrlXa.css +1 -0
package/admin-build/_app/immutable/assets/27.BswYyAJD.css +1 -0
package/admin-build/_app/immutable/assets/28.B4ueB1Kf.css +1 -0
package/admin-build/_app/immutable/assets/29.B-qU6PdF.css +1 -0
package/admin-build/_app/immutable/assets/3.Dg81Pgmd.css +1 -0
package/admin-build/_app/immutable/assets/30.CsdWum94.css +1 -0
package/admin-build/_app/immutable/assets/31.U6OwIp50.css +1 -0
package/admin-build/_app/immutable/assets/4.CyawCCux.css +1 -0
package/admin-build/_app/immutable/assets/5.C0YO2HTk.css +1 -0
package/admin-build/_app/immutable/assets/8.Br5jd6kD.css +1 -0
package/admin-build/_app/immutable/assets/Badge.EMYLHBxE.css +1 -0
package/admin-build/_app/immutable/assets/Button.DpzMRTjK.css +1 -0
package/admin-build/_app/immutable/assets/ConfirmDialog.DAnaWRRk.css +1 -0
package/admin-build/_app/immutable/assets/EmptyState.CwKsu57Y.css +1 -0
package/admin-build/_app/immutable/assets/Input.BDUSenmU.css +1 -0
package/admin-build/_app/immutable/assets/Modal.Dm5B0Xie.css +1 -0
package/admin-build/_app/immutable/assets/PageShell.CmU-Xh-b.css +1 -0
package/admin-build/_app/immutable/assets/SchemaFieldEditor.g4NsCdno.css +1 -0
package/admin-build/_app/immutable/assets/Select.BW4Keufm.css +1 -0
package/admin-build/_app/immutable/assets/Skeleton.KWUulTKJ.css +1 -0
package/admin-build/_app/immutable/assets/Tabs.CniGYb67.css +1 -0
package/admin-build/_app/immutable/assets/TimeChart.BTCDAvmT.css +1 -0
package/admin-build/_app/immutable/assets/Toggle.Cy_K12OM.css +1 -0
package/admin-build/_app/immutable/assets/TopList.ClFzmPlA.css +1 -0
package/admin-build/_app/immutable/chunks/7B47DvSx.js +1 -0
package/admin-build/_app/immutable/chunks/7f08Id8e.js +1 -0
package/admin-build/_app/immutable/chunks/8wJeQ7LN.js +1 -0
package/admin-build/_app/immutable/chunks/B-h2afW5.js +1 -0
package/admin-build/_app/immutable/chunks/B8vJP3wz.js +1 -0
package/admin-build/_app/immutable/chunks/BR_fL5Yv.js +1 -0
package/admin-build/_app/immutable/chunks/BY92tFS2.js +1 -0
package/admin-build/_app/immutable/chunks/BcR-Rdj9.js +1 -0
package/admin-build/_app/immutable/chunks/BdrwyZv8.js +1 -0
package/admin-build/_app/immutable/chunks/Bh56EfQ_.js +1 -0
package/admin-build/_app/immutable/chunks/BkrCkgYp.js +1 -0
package/admin-build/_app/immutable/chunks/BmRjiP5k.js +1 -0
package/admin-build/_app/immutable/chunks/BsokvhWC.js +1 -0
package/admin-build/_app/immutable/chunks/C4D51vTW.js +1 -0
package/admin-build/_app/immutable/chunks/C6puvcoR.js +2 -0
package/admin-build/_app/immutable/chunks/CCKNu7m7.js +1 -0
package/admin-build/_app/immutable/chunks/CWj6FrbW.js +1 -0
package/admin-build/_app/immutable/chunks/Ce-ngf4p.js +5 -0
package/admin-build/_app/immutable/chunks/Cs0GwzJA.js +1 -0
package/admin-build/_app/immutable/chunks/CwROoZK0.js +1 -0
package/admin-build/_app/immutable/chunks/CxCPv_Ut.js +1 -0
package/admin-build/_app/immutable/chunks/CxbRue-5.js +1 -0
package/admin-build/_app/immutable/chunks/CyqB6g-D.js +1 -0
package/admin-build/_app/immutable/chunks/D5h5A1cc.js +2 -0
package/admin-build/_app/immutable/chunks/DnyL7Zq-.js +1 -0
package/admin-build/_app/immutable/chunks/DoPXzH7F.js +1 -0
package/admin-build/_app/immutable/chunks/DrQSgw-f.js +1 -0
package/admin-build/_app/immutable/chunks/DttM2zNO.js +1 -0
package/admin-build/_app/immutable/chunks/DuXuUBWN.js +1 -0
package/admin-build/_app/immutable/chunks/MdeqaOQx.js +10 -0
package/admin-build/_app/immutable/chunks/NuUjtcO2.js +1 -0
package/admin-build/_app/immutable/chunks/Q2nPFxS6.js +1 -0
package/admin-build/_app/immutable/chunks/R6arueIl.js +1 -0
package/admin-build/_app/immutable/chunks/UUazaC_N.js +1 -0
package/admin-build/_app/immutable/chunks/cOYbrQxx.js +1 -0
package/admin-build/_app/immutable/chunks/eFQHTGwA.js +1 -0
package/admin-build/_app/immutable/chunks/ehbppgYb.js +1 -0
package/admin-build/_app/immutable/chunks/glwixJlP.js +1 -0
package/admin-build/_app/immutable/chunks/vApWTCBs.js +1 -0
package/admin-build/_app/immutable/chunks/w89G9Xpi.js +1 -0
package/admin-build/_app/immutable/chunks/wJsUhbfZ.js +1 -0
package/admin-build/_app/immutable/chunks/zfauFM8P.js +1 -0
package/admin-build/_app/immutable/entry/app.CcO-Uos3.js +2 -0
package/admin-build/_app/immutable/entry/start.COebYq3I.js +1 -0
package/admin-build/_app/immutable/nodes/0.CjtHKU-6.js +1 -0
package/admin-build/_app/immutable/nodes/1.DEisjlM0.js +1 -0
package/admin-build/_app/immutable/nodes/10.CvhdyWVB.js +1 -0
package/admin-build/_app/immutable/nodes/11.DjHqcOvy.js +1 -0
package/admin-build/_app/immutable/nodes/12.mQLz4Mj_.js +1 -0
package/admin-build/_app/immutable/nodes/13.CBonZZyP.js +110 -0
package/admin-build/_app/immutable/nodes/14.d-oiZL0j.js +3 -0
package/admin-build/_app/immutable/nodes/15.CKPQsUYF.js +1 -0
package/admin-build/_app/immutable/nodes/16.wPzAPQGx.js +1 -0
package/admin-build/_app/immutable/nodes/17.DayhKyEZ.js +1 -0
package/admin-build/_app/immutable/nodes/18.DKwS0Ir0.js +1 -0
package/admin-build/_app/immutable/nodes/19.wPzAPQGx.js +1 -0
package/admin-build/_app/immutable/nodes/2.BKoKrw1i.js +1 -0
package/admin-build/_app/immutable/nodes/20.BvIkkkrW.js +1 -0
package/admin-build/_app/immutable/nodes/21.DMaFhdHk.js +128 -0
package/admin-build/_app/immutable/nodes/22.3xdgwuK1.js +1 -0
package/admin-build/_app/immutable/nodes/23.8Bvgjbsl.js +112 -0
package/admin-build/_app/immutable/nodes/24.DzSSzRhG.js +2 -0
package/admin-build/_app/immutable/nodes/25.9KKYBnAE.js +2 -0
package/admin-build/_app/immutable/nodes/26.Bhn9dfhY.js +1 -0
package/admin-build/_app/immutable/nodes/27.kRLiC24G.js +1 -0
package/admin-build/_app/immutable/nodes/28.BVIN1-7N.js +1 -0
package/admin-build/_app/immutable/nodes/29.3yabZWj4.js +1 -0
package/admin-build/_app/immutable/nodes/3.BFtSOkX7.js +2 -0
package/admin-build/_app/immutable/nodes/30.CyCQlwaP.js +1 -0
package/admin-build/_app/immutable/nodes/31.C4LDXjES.js +1 -0
package/admin-build/_app/immutable/nodes/4.CvbiMlCa.js +1 -0
package/admin-build/_app/immutable/nodes/5.C6BLv2eM.js +1 -0
package/admin-build/_app/immutable/nodes/6.BcXvfl2P.js +1 -0
package/admin-build/_app/immutable/nodes/7.CIuqhPiK.js +1 -0
package/admin-build/_app/immutable/nodes/8.BQOR_JfO.js +1 -0
package/admin-build/_app/immutable/nodes/9.NZqXQxPy.js +1 -0
package/admin-build/_app/version.json +1 -0
package/admin-build/favicon.svg +26 -0
package/admin-build/index.html +45 -0
package/openapi.json +19543 -0
package/package.json +66 -0
package/src/__tests__/admin-assets.test.ts +55 -0
package/src/__tests__/admin-data-routes.test.ts +488 -0
package/src/__tests__/admin-db-target.test.ts +103 -0
package/src/__tests__/admin-routing.test.ts +31 -0
package/src/__tests__/admin-user-management.test.ts +311 -0
package/src/__tests__/analytics-query.test.ts +75 -0
package/src/__tests__/auth-d1.test.ts +749 -0
package/src/__tests__/auth-db-adapter.test.ts +73 -0
package/src/__tests__/auth-jwt.test.ts +440 -0
package/src/__tests__/auth-oauth.test.ts +389 -0
package/src/__tests__/auth-password.test.ts +367 -0
package/src/__tests__/auth-redirect.test.ts +87 -0
package/src/__tests__/backup-restore.test.ts +711 -0
package/src/__tests__/broadcast.test.ts +128 -0
package/src/__tests__/cli.test.ts +178 -0
package/src/__tests__/cloudflare-realtime.test.ts +113 -0
package/src/__tests__/config.test.ts +469 -0
package/src/__tests__/cors.test.ts +154 -0
package/src/__tests__/cron.test.ts +302 -0
package/src/__tests__/d1-handler.test.ts +402 -0
package/src/__tests__/d1-sql.test.ts +120 -0
package/src/__tests__/database-live-config.test.ts +42 -0
package/src/__tests__/database-live-emitter.test.ts +56 -0
package/src/__tests__/database-live-filters.test.ts +63 -0
package/src/__tests__/database-live-route.test.ts +113 -0
package/src/__tests__/db-sql.test.ts +163 -0
package/src/__tests__/do-lifecycle.test.ts +263 -0
package/src/__tests__/do-router.test.ts +729 -0
package/src/__tests__/email-provider.test.ts +128 -0
package/src/__tests__/email-templates.test.ts +528 -0
package/src/__tests__/error-format.test.ts +250 -0
package/src/__tests__/field-ops.test.ts +242 -0
package/src/__tests__/functions-context.test.ts +334 -0
package/src/__tests__/functions-d1-proxy.test.ts +229 -0
package/src/__tests__/functions-registry-runtime-config.test.ts +17 -0
package/src/__tests__/functions-route.test.ts +139 -0
package/src/__tests__/internal-request.test.ts +77 -0
package/src/__tests__/log-writer.test.ts +44 -0
package/src/__tests__/logger.test.ts +58 -0
package/src/__tests__/meta-admin-proxy.test.ts +48 -0
package/src/__tests__/meta-export-coverage.test.ts +191 -0
package/src/__tests__/meta-route-registration.test.ts +47 -0
package/src/__tests__/namespace-dump.test.ts +28 -0
package/src/__tests__/oauth-providers.test.ts +337 -0
package/src/__tests__/openapi-coverage.test.ts +144 -0
package/src/__tests__/pagination.test.ts +59 -0
package/src/__tests__/password-policy.test.ts +191 -0
package/src/__tests__/plugin-migrations.test.ts +379 -0
package/src/__tests__/postgres-batch-compat.test.ts +133 -0
package/src/__tests__/postgres-dialect.test.ts +328 -0
package/src/__tests__/postgres-executor.test.ts +79 -0
package/src/__tests__/postgres-field-ops-compat.test.ts +222 -0
package/src/__tests__/postgres-schema-init.test.ts +105 -0
package/src/__tests__/postgres-table-utils.test.ts +107 -0
package/src/__tests__/presence.test.ts +199 -0
package/src/__tests__/provider.test.ts +550 -0
package/src/__tests__/public-user-profile.test.ts +339 -0
package/src/__tests__/push-handlers.test.ts +179 -0
package/src/__tests__/push-provider.test.ts +80 -0
package/src/__tests__/push-token.test.ts +418 -0
package/src/__tests__/query.test.ts +771 -0
package/src/__tests__/rate-limit.test.ts +260 -0
package/src/__tests__/room-access-policy.test.ts +101 -0
package/src/__tests__/room-handler-context.test.ts +130 -0
package/src/__tests__/room-monitoring.test.ts +138 -0
package/src/__tests__/room-runtime-routing.test.ts +222 -0
package/src/__tests__/room.test.ts +254 -0
package/src/__tests__/route-parser.test.ts +490 -0
package/src/__tests__/rules.test.ts +234 -0
package/src/__tests__/runtime-surface-accounting.test.ts +120 -0
package/src/__tests__/scheduled.test.ts +80 -0
package/src/__tests__/schema.test.ts +1273 -0
package/src/__tests__/security-hardening.test.ts +312 -0
package/src/__tests__/server.unit.test.ts +333 -0
package/src/__tests__/service-key-db-proxy.test.ts +650 -0
package/src/__tests__/service-key-provider-bypass.test.ts +138 -0
package/src/__tests__/service-key.test.ts +757 -0
package/src/__tests__/smoke-skip-report.test.ts +72 -0
package/src/__tests__/sms-provider.test.ts +39 -0
package/src/__tests__/sql-route.test.ts +218 -0
package/src/__tests__/storage-hook-context.test.ts +115 -0
package/src/__tests__/totp.test.ts +200 -0
package/src/__tests__/uuid.test.ts +144 -0
package/src/__tests__/validation.test.ts +773 -0
package/src/__tests__/websocket-pending.test.ts +163 -0
package/src/_functions-registry.ts +51 -0
package/src/bench-entry.ts +9 -0
package/src/cloudflare-test.d.ts +1 -0
package/src/durable-objects/auth-do.ts +49 -0
package/src/durable-objects/database-do.ts +2240 -0
package/src/durable-objects/database-live-do.ts +949 -0
package/src/durable-objects/logs-do.ts +1200 -0
package/src/durable-objects/room-runtime-base.ts +1604 -0
package/src/durable-objects/rooms-do.ts +2191 -0
package/src/generated-config.ts +6 -0
package/src/index.ts +382 -0
package/src/lib/admin-assets.ts +54 -0
package/src/lib/admin-db-target.ts +301 -0
package/src/lib/admin-routing.ts +35 -0
package/src/lib/admin-user-management.ts +464 -0
package/src/lib/analytics-adapter.ts +103 -0
package/src/lib/analytics-query.ts +579 -0
package/src/lib/auth-d1-service.ts +1193 -0
package/src/lib/auth-d1.ts +1056 -0
package/src/lib/auth-db-adapter.ts +289 -0
package/src/lib/auth-redirect.ts +116 -0
package/src/lib/cidr.ts +115 -0
package/src/lib/client-ip.ts +51 -0
package/src/lib/cloudflare-realtime.ts +251 -0
package/src/lib/control-db.ts +36 -0
package/src/lib/cron.ts +163 -0
package/src/lib/d1-handler.ts +1425 -0
package/src/lib/d1-schema-init.ts +255 -0
package/src/lib/d1-sql.ts +33 -0
package/src/lib/database-live-config.ts +24 -0
package/src/lib/database-live-emitter.ts +111 -0
package/src/lib/db-sql.ts +66 -0
package/src/lib/do-retry.ts +36 -0
package/src/lib/do-router.ts +270 -0
package/src/lib/do-sql.ts +73 -0
package/src/lib/email-provider.ts +379 -0
package/src/lib/email-templates.ts +285 -0
package/src/lib/email-translations.ts +422 -0
package/src/lib/errors.ts +151 -0
package/src/lib/functions.ts +2091 -0
package/src/lib/hono.ts +56 -0
package/src/lib/internal-request.ts +56 -0
package/src/lib/jwt.ts +354 -0
package/src/lib/log-writer.ts +272 -0
package/src/lib/namespace-dump.ts +125 -0
package/src/lib/oauth-providers.ts +1225 -0
package/src/lib/op-parser.ts +99 -0
package/src/lib/openapi.ts +146 -0
package/src/lib/pagination.ts +19 -0
package/src/lib/password-policy.ts +102 -0
package/src/lib/password.ts +145 -0
package/src/lib/plugin-migrations.ts +612 -0
package/src/lib/postgres-executor.ts +203 -0
package/src/lib/postgres-handler.ts +1102 -0
package/src/lib/postgres-schema-init.ts +341 -0
package/src/lib/postgres-table-utils.ts +87 -0
package/src/lib/public-user-profile.ts +187 -0
package/src/lib/push-provider.ts +409 -0
package/src/lib/push-token.ts +294 -0
package/src/lib/query-engine.ts +768 -0
package/src/lib/room-monitoring.ts +97 -0
package/src/lib/room-runtime.ts +14 -0
package/src/lib/route-parser.ts +434 -0
package/src/lib/schema.ts +538 -0
package/src/lib/schemas.ts +152 -0
package/src/lib/service-key.ts +419 -0
package/src/lib/sms-provider.ts +230 -0
package/src/lib/startup-config.ts +99 -0
package/src/lib/totp.ts +242 -0
package/src/lib/uuid.ts +87 -0
package/src/lib/validation.ts +205 -0
package/src/lib/version.ts +2 -0
package/src/lib/websocket-pending.ts +40 -0
package/src/middleware/auth.ts +169 -0
package/src/middleware/captcha-verify.ts +217 -0
package/src/middleware/cors.ts +159 -0
package/src/middleware/error-handler.ts +54 -0
package/src/middleware/internal-guard.ts +26 -0
package/src/middleware/logger.ts +126 -0
package/src/middleware/rate-limit.ts +283 -0
package/src/middleware/rules.ts +475 -0
package/src/routes/admin-auth.ts +447 -0
package/src/routes/admin.ts +3501 -0
package/src/routes/analytics-api.ts +290 -0
package/src/routes/auth.ts +4222 -0
package/src/routes/backup.ts +1466 -0
package/src/routes/config.ts +53 -0
package/src/routes/d1.ts +109 -0
package/src/routes/database-live.ts +281 -0
package/src/routes/functions.ts +155 -0
package/src/routes/health.ts +32 -0
package/src/routes/kv.ts +167 -0
package/src/routes/oauth.ts +1055 -0
package/src/routes/push.ts +1465 -0
package/src/routes/room.ts +639 -0
package/src/routes/schema-endpoint.ts +76 -0
package/src/routes/sql.ts +176 -0
package/src/routes/storage.ts +1674 -0
package/src/routes/tables.ts +699 -0
package/src/routes/users.ts +21 -0
package/src/routes/vectorize.ts +372 -0
package/src/types.ts +99 -0

package/src/lib/schema.ts ADDED Viewed

@@ -0,0 +1,538 @@
+/**
+ * Schema → DDL conversion engine.
+ *
+ * Responsibilities:
+ * 1. Convert table schema to CREATE TABLE DDL
+ * 2. Generate index DDL (single/composite, unique)
+ * 3. Generate FTS5 virtual table DDL
+ * 4. Inject auto fields (id, createdAt, updatedAt)
+ * 6. Hash schemas for Lazy Schema Init change detection
+ */
+import type {
+  TableConfig,
+  SchemaField,
+  IndexConfig,
+  FkReference,
+} from '@edge-base/shared';
+// ─── Type Mapping ───
+const TYPE_MAP: Record<string, string> = {
+  string: 'TEXT',
+  text: 'TEXT',
+  number: 'REAL',
+  boolean: 'INTEGER',
+  datetime: 'TEXT',
+  json: 'TEXT',
+};
+// Auth users are stored in AUTH_DB, so app tables can only keep logical references.
+const AUTH_LOGICAL_REFERENCE_TABLES = new Set(['users', '_users', '_users_public']);
+// ─── Auto Fields ───
+const AUTO_FIELDS: Record<string, SchemaField> = {
+  id: { type: 'string', primaryKey: true },
+  createdAt: { type: 'datetime' },
+  updatedAt: { type: 'datetime', onUpdate: 'now' },
+};
+// ─── System Table DDL ───
+/** DDL for _meta table — exists on ALL Database DO instances. */
+export const META_TABLE_DDL = `CREATE TABLE IF NOT EXISTS _meta (
+  key TEXT PRIMARY KEY,
+  value TEXT NOT NULL
+);`;
+// ─── Schema → DDL Conversion ───
+/**
+ * Build the effective schema with auto fields injected.
+ * AutoFields can be disabled by setting them to `false` in schema.
+ * Type override of auto-fields is not supported — only `false` is allowed.
+ * When schema is undefined (schemaless CRUD,), returns auto-fields only.
+ */
+export function buildEffectiveSchema(
+  userSchema?: Record<string, SchemaField | false>,
+): Record<string, SchemaField> {
+  const effective: Record<string, SchemaField> = {};
+  // Schemaless: return auto-fields only
+  if (!userSchema) {
+    for (const [name, field] of Object.entries(AUTO_FIELDS)) {
+      effective[name] = { ...field };
+    }
+    return effective;
+  }
+  // Inject auto fields — only `false` disables them, type override is blocked
+  for (const [name, field] of Object.entries(AUTO_FIELDS)) {
+    if (userSchema[name] === false) {
+      continue; // Disabled
+    }
+    effective[name] = { ...field };
+  }
+  // Add user fields (excluding auto field names already handled)
+  for (const [name, field] of Object.entries(userSchema)) {
+    if (name in AUTO_FIELDS) continue; // Already handled above
+    if (field === false) continue;
+    effective[name] = field;
+  }
+  return effective;
+}
+/**
+ * Generate CREATE TABLE DDL for a table.
+ */
+export function generateCreateTableDDL(
+  tableName: string,
+  config: TableConfig,
+): string {
+  const schema = buildEffectiveSchema(config.schema);
+  const columns: string[] = [];
+  for (const [name, field] of Object.entries(schema)) {
+    columns.push(buildColumnDef(name, field));
+  }
+  return `CREATE TABLE IF NOT EXISTS ${esc(tableName)} (\n  ${columns.join(',\n  ')}\n);`;
+}
+/**
+ * Build a single column definition.
+ */
+function buildColumnDef(name: string, field: SchemaField): string {
+  const parts: string[] = [esc(name), TYPE_MAP[field.type] || 'TEXT'];
+  if (field.primaryKey) {
+    parts.push('PRIMARY KEY');
+  }
+  if (field.required && !field.primaryKey) {
+    parts.push('NOT NULL');
+  }
+  if (field.unique) {
+    parts.push('UNIQUE');
+  }
+  if (field.default !== undefined) {
+    parts.push(`DEFAULT ${formatDefault(field.default)}`);
+  }
+  const referenceClause = buildReferenceClause(field.references);
+  if (referenceClause) {
+    parts.push(referenceClause);
+  }
+  // SQLite inline CHECK constraint (#133 §35)
+  if (field.check) {
+    parts.push(`CHECK (${field.check})`);
+  }
+  return parts.join(' ');
+}
+/**
+ * Generate ALTER TABLE ADD COLUMN for new fields.
+ */
+export function generateAddColumnDDL(
+  tableName: string,
+  name: string,
+  field: SchemaField,
+): string {
+  return `ALTER TABLE ${esc(tableName)} ADD COLUMN ${buildColumnDef(name, field)};`;
+}
+// ─── Index DDL ───
+/**
+ * Generate CREATE INDEX DDL for indexes.
+ */
+export function generateIndexDDL(
+  tableName: string,
+  indexes: IndexConfig[],
+): string[] {
+  return indexes.map((idx, _i) => {
+    const indexName = `idx_${tableName}_${idx.fields.join('_')}`;
+    const unique = idx.unique ? 'UNIQUE ' : '';
+    const fields = idx.fields.map(esc).join(', ');
+    return `CREATE ${unique}INDEX IF NOT EXISTS ${esc(indexName)} ON ${esc(tableName)}(${fields});`;
+  });
+}
+// ─── FTS5 DDL ───
+/**
+ * Generate FTS5 virtual table DDL with trigram tokenizer.
+ * @param tableName Base table name
+ * @param ftsFields Fields to index for full-text search
+ */
+export function generateFTS5DDL(
+  tableName: string,
+  ftsFields: string[],
+): string {
+  const ftsTableName = `${tableName}_fts`;
+  const fields = ftsFields.join(', ');
+  // content-sync with base table
+  return `CREATE VIRTUAL TABLE IF NOT EXISTS ${esc(ftsTableName)} USING fts5(${fields}, content='${tableName}', content_rowid='rowid', tokenize='trigram');`;
+}
+/**
+ * Generate FTS5 triggers for auto-sync with base table.
+ */
+export function generateFTS5Triggers(
+  tableName: string,
+  ftsFields: string[],
+): string[] {
+  const ftsTableName = `${tableName}_fts`;
+  const newFields = ftsFields.map(f => `new.${esc(f)}`).join(', ');
+  const oldFields = ftsFields.map(f => `old.${esc(f)}`).join(', ');
+  return [
+    // INSERT trigger
+    `CREATE TRIGGER IF NOT EXISTS ${esc(`${tableName}_ai`)} AFTER INSERT ON ${esc(tableName)} BEGIN
+  INSERT INTO ${esc(ftsTableName)}(rowid, ${ftsFields.map(esc).join(', ')}) VALUES (new.rowid, ${newFields});
+END;`,
+    // DELETE trigger
+    `CREATE TRIGGER IF NOT EXISTS ${esc(`${tableName}_ad`)} AFTER DELETE ON ${esc(tableName)} BEGIN
+  INSERT INTO ${esc(ftsTableName)}(${esc(ftsTableName)}, rowid, ${ftsFields.map(esc).join(', ')}) VALUES ('delete', old.rowid, ${oldFields});
+END;`,
+    // UPDATE trigger
+    `CREATE TRIGGER IF NOT EXISTS ${esc(`${tableName}_au`)} AFTER UPDATE ON ${esc(tableName)} BEGIN
+  INSERT INTO ${esc(ftsTableName)}(${esc(ftsTableName)}, rowid, ${ftsFields.map(esc).join(', ')}) VALUES ('delete', old.rowid, ${oldFields});
+  INSERT INTO ${esc(ftsTableName)}(rowid, ${ftsFields.map(esc).join(', ')}) VALUES (new.rowid, ${newFields});
+END;`,
+  ];
+}
+// ─── Schema Hashing ───
+function deepSort(obj: unknown): unknown {
+  if (obj === null || typeof obj !== 'object') return obj;
+  if (Array.isArray(obj)) return obj.map(deepSort);
+  const sorted: Record<string, unknown> = {};
+  for (const key of Object.keys(obj as Record<string, unknown>).sort()) {
+    sorted[key] = deepSort((obj as Record<string, unknown>)[key]);
+  }
+  return sorted;
+}
+/**
+ * Compute a deterministic hash of a table schema for change detection.
+ * Uses JSON serialization with deep sorted keys + SHA-256.
+ */
+export async function computeSchemaHash(
+  config: TableConfig,
+): Promise<string> {
+  const schemaOnly = { schema: config.schema ?? {} };
+  const str = JSON.stringify(deepSort(schemaOnly));
+  const data = new TextEncoder().encode(str);
+  const hash = await crypto.subtle.digest('SHA-256', data);
+  const bytes = new Uint8Array(hash);
+  return Array.from(bytes).map(b => b.toString(16).padStart(2, '0')).join('');
+}
+/**
+ * Synchronous schema hash using simple djb2 — for use in DO constructor.
+ * Only hashes the `schema` field (table column definitions), NOT rules/hooks
+ * (functions serialize to undefined in JSON.stringify).
+ * Schema changes trigger DDL migration; rules/hooks changes are picked up
+ * by Worker redeployment without DDL changes. (#133 §27)
+ */
+export function computeSchemaHashSync(
+  config: TableConfig,
+): string {
+  // Only schema field — rules/hooks are functions and would serialize to undefined
+  const schemaOnly = { schema: config.schema ?? {} };
+  const str = JSON.stringify(deepSort(schemaOnly));
+  let hash = 5381;
+  for (let i = 0; i < str.length; i++) {
+    hash = ((hash << 5) + hash + str.charCodeAt(i)) & 0xffffffff;
+  }
+  return (hash >>> 0).toString(16).padStart(8, '0');
+}
+// ─── Utility ───
+/** Escape identifiers (table/column names). */
+function esc(name: string): string {
+  // Double-quote escaping for SQLite identifiers
+  return `"${name.replace(/"/g, '""')}"`;
+}
+function extractReferenceTable(reference: string | FkReference | undefined): string | null {
+  if (!reference) return null;
+  if (typeof reference === 'string') {
+    const match = reference.trim().match(/^(\w+)(?:\((\w+)\))?$/);
+    return match?.[1] ?? null;
+  }
+  return reference.table;
+}
+function isLogicalOnlyReference(reference: string | FkReference | undefined): boolean {
+  const table = extractReferenceTable(reference);
+  return table !== null && AUTH_LOGICAL_REFERENCE_TABLES.has(table);
+}
+function buildReferenceClause(reference: string | FkReference | undefined): string | null {
+  if (!reference || isLogicalOnlyReference(reference)) {
+    return null;
+  }
+  if (typeof reference === 'string') {
+    const ref = reference.trim();
+    if (ref.includes('(')) {
+      const match = ref.match(/^(\w+)\((\w+)\)$/);
+      if (match) {
+        return `REFERENCES ${esc(match[1])}(${esc(match[2])}) ON DELETE CASCADE`;
+      }
+      return null;
+    }
+    return `REFERENCES ${esc(ref)}("id") ON DELETE SET NULL`;
+  }
+  const col = reference.column ?? 'id';
+  const delAction = reference.onDelete ? ` ON DELETE ${reference.onDelete}` : '';
+  const updAction = reference.onUpdate ? ` ON UPDATE ${reference.onUpdate}` : '';
+  return `REFERENCES ${esc(reference.table)}(${esc(col)})${delAction}${updAction}`;
+}
+function formatDefault(val: unknown): string {
+  if (typeof val === 'string') return `'${val.replace(/'/g, "''")}'`;
+  if (typeof val === 'boolean') return val ? '1' : '0';
+  if (val === null) return 'NULL';
+  return String(val);
+}
+/**
+ * Get all DDL statements needed for a single table (#133 §26).
+ * Returns array of DDL strings to execute in order.
+ */
+export function generateTableDDL(
+  tableName: string,
+  config: TableConfig,
+): string[] {
+  const ddl: string[] = [];
+  // 1. CREATE TABLE
+  ddl.push(generateCreateTableDDL(tableName, config));
+  // 2. Indexes
+  if (config.indexes?.length) {
+    ddl.push(...generateIndexDDL(tableName, config.indexes));
+  }
+  // 3. FTS5
+  if (config.fts?.length) {
+    ddl.push(generateFTS5DDL(tableName, config.fts));
+    ddl.push(...generateFTS5Triggers(tableName, config.fts));
+  }
+  return ddl;
+}
+// ═══════════════════════════════════════════════════════════════════════════
+// PostgreSQL DDL Generation
+// ═══════════════════════════════════════════════════════════════════════════
+// ─── PostgreSQL Type Mapping ───
+const PG_TYPE_MAP: Record<string, string> = {
+  string: 'TEXT',
+  text: 'TEXT',
+  number: 'DOUBLE PRECISION',
+  boolean: 'BOOLEAN',
+  datetime: 'TIMESTAMPTZ',
+  json: 'JSONB',
+};
+// ─── PostgreSQL System Table DDL ───
+/** DDL for _meta table on PostgreSQL databases. */
+export const PG_META_TABLE_DDL = `CREATE TABLE IF NOT EXISTS _meta (
+  key TEXT PRIMARY KEY,
+  value TEXT NOT NULL
+);`;
+// ─── PostgreSQL Schema → DDL Conversion ───
+/**
+ * Generate PostgreSQL CREATE TABLE DDL for a table.
+ */
+export function generatePgCreateTableDDL(
+  tableName: string,
+  config: TableConfig,
+): string {
+  const schema = buildEffectiveSchema(config.schema);
+  const columns: string[] = [];
+  for (const [name, field] of Object.entries(schema)) {
+    columns.push(buildPgColumnDef(name, field));
+  }
+  return `CREATE TABLE IF NOT EXISTS ${esc(tableName)} (\n  ${columns.join(',\n  ')}\n);`;
+}
+/**
+ * Build a single PostgreSQL column definition.
+ */
+function buildPgColumnDef(name: string, field: SchemaField): string {
+  const parts: string[] = [esc(name), PG_TYPE_MAP[field.type] || 'TEXT'];
+  if (field.primaryKey) {
+    parts.push('PRIMARY KEY');
+  }
+  if (field.required && !field.primaryKey) {
+    parts.push('NOT NULL');
+  }
+  if (field.unique) {
+    parts.push('UNIQUE');
+  }
+  if (field.default !== undefined) {
+    parts.push(`DEFAULT ${formatPgDefault(field.default)}`);
+  }
+  const referenceClause = buildReferenceClause(field.references);
+  if (referenceClause) {
+    parts.push(referenceClause);
+  }
+  // CHECK constraint (same syntax as SQLite)
+  if (field.check) {
+    parts.push(`CHECK (${field.check})`);
+  }
+  return parts.join(' ');
+}
+/**
+ * Generate PostgreSQL ALTER TABLE ADD COLUMN for new fields.
+ */
+export function generatePgAddColumnDDL(
+  tableName: string,
+  name: string,
+  field: SchemaField,
+): string {
+  return `ALTER TABLE ${esc(tableName)} ADD COLUMN ${buildPgColumnDef(name, field)};`;
+}
+// ─── PostgreSQL Index DDL ───
+/**
+ * Generate PostgreSQL CREATE INDEX DDL.
+ * Syntax is identical to SQLite — kept separate for future B-tree hints.
+ */
+export function generatePgIndexDDL(
+  tableName: string,
+  indexes: IndexConfig[],
+): string[] {
+  return indexes.map((idx) => {
+    const indexName = `idx_${tableName}_${idx.fields.join('_')}`;
+    const unique = idx.unique ? 'UNIQUE ' : '';
+    const fields = idx.fields.map(esc).join(', ');
+    return `CREATE ${unique}INDEX IF NOT EXISTS ${esc(indexName)} ON ${esc(tableName)}(${fields});`;
+  });
+}
+// ─── PostgreSQL FTS (tsvector + GIN) ───
+/**
+ * Generate PostgreSQL full-text search DDL:
+ * 1. Add `_fts` tsvector column to the table
+ * 2. Create GIN index on the tsvector column
+ * 3. Create trigger function to auto-update tsvector on write
+ * 4. Create BEFORE INSERT OR UPDATE trigger
+ * 5. Backfill existing rows (harmless on empty tables)
+ *
+ * Uses 'simple' text search config for language-agnostic matching
+ * (closest equivalent to SQLite FTS5 trigram tokenizer).
+ */
+export function generatePgFTSDDL(
+  tableName: string,
+  ftsFields: string[],
+): string[] {
+  const ddl: string[] = [];
+  const ftsCol = '_fts';
+  const triggerName = `${tableName}_fts_update`;
+  const funcName = `${tableName}_fts_trigger`;
+  const indexName = `idx_${tableName}_fts`;
+  // Coalesce expression: coalesce(NEW."field", '') || ' ' || ...
+  const newCoalesce = ftsFields
+    .map(f => `coalesce(NEW.${esc(f)}, '')`)
+    .join(` || ' ' || `);
+  const bareCoalesce = ftsFields
+    .map(f => `coalesce(${esc(f)}, '')`)
+    .join(` || ' ' || `);
+  // 1. Add tsvector column (IF NOT EXISTS — PG 9.6+)
+  ddl.push(
+    `ALTER TABLE ${esc(tableName)} ADD COLUMN IF NOT EXISTS ${esc(ftsCol)} tsvector;`,
+  );
+  // 2. GIN index for fast @@ queries
+  ddl.push(
+    `CREATE INDEX IF NOT EXISTS ${esc(indexName)} ON ${esc(tableName)} USING gin(${esc(ftsCol)});`,
+  );
+  // 3. Trigger function — builds tsvector from indexed fields
+  ddl.push(
+    `CREATE OR REPLACE FUNCTION ${esc(funcName)}() RETURNS trigger AS $$\nBEGIN\n  NEW.${esc(ftsCol)} := to_tsvector('simple', ${newCoalesce});\n  RETURN NEW;\nEND;\n$$ LANGUAGE plpgsql;`,
+  );
+  // 4. Trigger (drop + create to handle field list changes)
+  ddl.push(
+    `DROP TRIGGER IF EXISTS ${esc(triggerName)} ON ${esc(tableName)};\nCREATE TRIGGER ${esc(triggerName)} BEFORE INSERT OR UPDATE ON ${esc(tableName)}\n  FOR EACH ROW EXECUTE FUNCTION ${esc(funcName)}();`,
+  );
+  // 5. Backfill existing rows
+  ddl.push(
+    `UPDATE ${esc(tableName)} SET ${esc(ftsCol)} = to_tsvector('simple', ${bareCoalesce});`,
+  );
+  return ddl;
+}
+// ─── PostgreSQL Full Table DDL ───
+/**
+ * Get all DDL statements needed for a single PostgreSQL table.
+ * Returns array of DDL strings to execute in order.
+ */
+export function generatePgTableDDL(
+  tableName: string,
+  config: TableConfig,
+): string[] {
+  const ddl: string[] = [];
+  // 1. CREATE TABLE
+  ddl.push(generatePgCreateTableDDL(tableName, config));
+  // 2. Indexes
+  if (config.indexes?.length) {
+    ddl.push(...generatePgIndexDDL(tableName, config.indexes));
+  }
+  // 3. FTS (tsvector + GIN + trigger)
+  if (config.fts?.length) {
+    ddl.push(...generatePgFTSDDL(tableName, config.fts));
+  }
+  return ddl;
+}
+// ─── PostgreSQL Default Value Formatting ───
+function formatPgDefault(val: unknown): string {
+  if (typeof val === 'string') return `'${val.replace(/'/g, "''")}'`;
+  if (typeof val === 'boolean') return val ? 'TRUE' : 'FALSE';
+  if (val === null) return 'NULL';
+  return String(val);
+}

package/src/lib/schemas.ts ADDED Viewed

@@ -0,0 +1,152 @@
+/**
+ * Shared Zod schemas — single source of truth for request/response shapes.
+ *
+ * These schemas serve three purposes:
+ *   1. Runtime validation (Zod)
+ *   2. OpenAPI spec generation (@hono/zod-openapi)
+ *   3. SDK type generation (via OpenAPI)
+ *
+ * IMPORTANT: queryParamsSchema keys MUST stay in sync with QUERY_PARAM_KEYS
+ * in query-engine.ts. The 3-way sync test in query.test.ts enforces this.
+ */
+import { z } from '@hono/zod-openapi';
+// ─── Query Parameters ───────────────────────────────────────────────────────
+/** Zod schema for REST query parameters. Keys mirror QUERY_PARAM_KEYS. */
+export const queryParamsSchema = z.object({
+  limit: z.string().optional().openapi({ description: 'Max items to return', example: '20' }),
+  offset: z.string().optional().openapi({ description: 'Offset for pagination', example: '0' }),
+  page: z.string().optional().openapi({ description: 'Page number (1-based)', example: '1' }),
+  perPage: z.string().optional().openapi({ description: 'Items per page', example: '20' }),
+  after: z.string().optional().openapi({ description: 'Cursor for next page' }),
+  before: z.string().optional().openapi({ description: 'Cursor for previous page' }),
+  sort: z.string().optional().openapi({ description: 'Sort: field:asc,field2:desc', example: 'createdAt:desc' }),
+  filter: z.string().optional().openapi({ description: 'JSON-encoded filter tuples', example: '[["status","==","active"]]' }),
+  orFilter: z.string().optional().openapi({ description: 'JSON-encoded OR filter tuples' }),
+  fields: z.string().optional().openapi({ description: 'Comma-separated field names to return' }),
+  search: z.string().optional().openapi({ description: 'Full-text search query' }),
+});
+// ─── Response Schemas ───────────────────────────────────────────────────────
+/** List response — shared by all paginated endpoints. */
+export const listResponseSchema = z.object({
+  items: z.array(z.record(z.string(), z.unknown())).openapi({ description: 'Result items' }),
+  total: z.number().nullable().openapi({ description: 'Total count (offset mode)' }),
+  hasMore: z.boolean().nullable().openapi({ description: 'More pages available (cursor mode)' }),
+  cursor: z.string().nullable().openapi({ description: 'Cursor for next page' }),
+  page: z.number().nullable().openapi({ description: 'Current page (offset mode)' }),
+  perPage: z.number().nullable().openapi({ description: 'Items per page (offset mode)' }),
+});
+/** Standard error response. */
+export const errorResponseSchema = z.object({
+  code: z.number().openapi({ description: 'HTTP status code', example: 400 }),
+  message: z.string().openapi({ description: 'Human-readable message', example: 'Invalid request body' }),
+});
+/** Single record response (generic). */
+export const recordResponseSchema = z.record(z.string(), z.unknown()).openapi({
+  description: 'A single database record',
+});
+/** Success response for mutations. */
+export const successResponseSchema = z.object({
+  success: z.literal(true),
+}).openapi({ description: 'Operation completed successfully' });
+/** Health check response. */
+export const healthResponseSchema = z.object({
+  status: z.string().openapi({ example: 'ok' }),
+  timestamp: z.string().openapi({ example: '2026-01-01T00:00:00.000Z' }),
+  version: z.string().optional().openapi({ example: '0.1.0' }),
+});
+// ─── Shared Parameter Schemas ─────────────────────────────────────────────
+export const idParamSchema = z.object({ id: z.string().openapi({ description: 'Record ID' }) });
+export const nameParamSchema = z.object({ name: z.string().openapi({ description: 'Resource name' }) });
+export const bucketParamSchema = z.object({ bucket: z.string().openapi({ description: 'Storage bucket name' }) });
+export const providerParamSchema = z.object({ provider: z.string().openapi({ description: 'OAuth provider name' }) });
+// ─── Generic Response Schemas ─────────────────────────────────────────────
+/** Generic JSON response (for endpoints with dynamic shapes). */
+export const jsonResponseSchema = z.record(z.string(), z.unknown()).openapi({ description: 'JSON response' });
+/** Simple ok response. */
+export const okResponseSchema = z.object({
+  ok: z.literal(true),
+}).openapi({ description: 'Operation succeeded' });
+// ─── Shared Body Schemas ──────────────────────────────────────────────────
+export const d1BodySchema = z.object({
+  query: z.string().openapi({ description: 'SQL query string' }),
+  params: z.array(z.unknown()).optional().openapi({ description: 'Bind parameters' }),
+});
+export const sqlBodySchema = z.object({
+  namespace: z.string().openapi({ description: 'Database namespace' }),
+  id: z.string().optional().openapi({ description: 'Instance ID (for dynamic DBs)' }),
+  sql: z.string().openapi({ description: 'SQL query' }),
+  params: z.array(z.unknown()).optional().openapi({ description: 'Bind parameters' }),
+});
+export const kvBodySchema = z.object({
+  action: z.enum(['get', 'set', 'delete', 'list']).openapi({ description: 'KV operation' }),
+  key: z.string().optional().openapi({ description: 'KV key' }),
+  value: z.string().optional().openapi({ description: 'Value to set' }),
+  ttl: z.number().optional().openapi({ description: 'TTL in seconds' }),
+  prefix: z.string().optional().openapi({ description: 'Key prefix for list' }),
+  limit: z.number().optional().openapi({ description: 'Max keys for list' }),
+  cursor: z.string().optional().openapi({ description: 'Pagination cursor for list' }),
+});
+export const vectorizeBodySchema = z.object({
+  action: z.enum(['upsert', 'insert', 'search', 'queryById', 'getByIds', 'delete', 'describe']).openapi({ description: 'Vectorize operation' }),
+  vectors: z.array(z.object({
+    id: z.string(),
+    values: z.array(z.number()),
+    metadata: z.record(z.string(), z.unknown()).optional(),
+    namespace: z.string().optional(),
+  })).optional(),
+  vector: z.array(z.number()).optional(),
+  vectorId: z.string().optional(),
+  topK: z.number().optional(),
+  filter: z.record(z.string(), z.unknown()).optional(),
+  ids: z.array(z.string()).optional(),
+  namespace: z.string().optional(),
+  returnValues: z.boolean().optional(),
+  returnMetadata: z.union([z.boolean(), z.enum(['all', 'indexed', 'none'])]).optional(),
+});
+export const broadcastBodySchema = z.object({
+  channel: z.string().openapi({ description: 'Database live channel name' }),
+  event: z.string().openapi({ description: 'Event name' }),
+  payload: z.record(z.string(), z.unknown()).optional().openapi({ description: 'Event payload' }),
+});
+export const trackEventsBodySchema = z.object({
+  events: z.array(z.record(z.string(), z.unknown())).openapi({ description: 'Events to track' }),
+});
+// ─── OpenAPIHono defaultHook ──────────────────────────────────────────────
+/**
+ * Shared defaultHook for all OpenAPIHono instances.
+ * Returns Zod validation errors in the standard { code, message } format.
+ */
+/* eslint-disable @typescript-eslint/no-explicit-any */
+export function zodDefaultHook(result: { success: boolean; error?: { issues?: Array<{ message: string }>; errors?: Array<{ message: string }> } }, c: any) {
+  if (!result.success) {
+    // Zod v4 uses `issues`, Zod v3 uses `errors`
+    const items = (result.error as any)?.issues ?? (result.error as any)?.errors ?? [];
+    return c.json({
+      code: 400,
+      message: items.map((e: any) => e.message).join(', '),
+    }, 400);
+  }
+}
+/* eslint-enable @typescript-eslint/no-explicit-any */