npm - @edge-base/server - Versions diffs - 0.1.1 - Mend

@edge-base/server 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/admin-build/.gitkeep +0 -0
package/admin-build/_app/env.js +1 -0
package/admin-build/_app/immutable/assets/0.Bm6cF078.css +1 -0
package/admin-build/_app/immutable/assets/1.BfW3pUNa.css +1 -0
package/admin-build/_app/immutable/assets/11.CVmQOewb.css +1 -0
package/admin-build/_app/immutable/assets/12.B1EhbRZT.css +1 -0
package/admin-build/_app/immutable/assets/13.BvwYeuwE.css +1 -0
package/admin-build/_app/immutable/assets/14.CdVfcO0R.css +1 -0
package/admin-build/_app/immutable/assets/15.2yeZ66b-.css +1 -0
package/admin-build/_app/immutable/assets/17.BVg0JEVu.css +1 -0
package/admin-build/_app/immutable/assets/18.Rwnl3x_i.css +1 -0
package/admin-build/_app/immutable/assets/20.DsPWA9AV.css +1 -0
package/admin-build/_app/immutable/assets/21.Dz2RJ56c.css +1 -0
package/admin-build/_app/immutable/assets/22.DwNLk5Ai.css +1 -0
package/admin-build/_app/immutable/assets/23.CFpu0gOO.css +1 -0
package/admin-build/_app/immutable/assets/24.Cy5LBeoJ.css +1 -0
package/admin-build/_app/immutable/assets/25.pUyLVf-h.css +1 -0
package/admin-build/_app/immutable/assets/26.DBcGrlXa.css +1 -0
package/admin-build/_app/immutable/assets/27.BswYyAJD.css +1 -0
package/admin-build/_app/immutable/assets/28.B4ueB1Kf.css +1 -0
package/admin-build/_app/immutable/assets/29.B-qU6PdF.css +1 -0
package/admin-build/_app/immutable/assets/3.Dg81Pgmd.css +1 -0
package/admin-build/_app/immutable/assets/30.CsdWum94.css +1 -0
package/admin-build/_app/immutable/assets/31.U6OwIp50.css +1 -0
package/admin-build/_app/immutable/assets/4.CyawCCux.css +1 -0
package/admin-build/_app/immutable/assets/5.C0YO2HTk.css +1 -0
package/admin-build/_app/immutable/assets/8.Br5jd6kD.css +1 -0
package/admin-build/_app/immutable/assets/Badge.EMYLHBxE.css +1 -0
package/admin-build/_app/immutable/assets/Button.DpzMRTjK.css +1 -0
package/admin-build/_app/immutable/assets/ConfirmDialog.DAnaWRRk.css +1 -0
package/admin-build/_app/immutable/assets/EmptyState.CwKsu57Y.css +1 -0
package/admin-build/_app/immutable/assets/Input.BDUSenmU.css +1 -0
package/admin-build/_app/immutable/assets/Modal.Dm5B0Xie.css +1 -0
package/admin-build/_app/immutable/assets/PageShell.CmU-Xh-b.css +1 -0
package/admin-build/_app/immutable/assets/SchemaFieldEditor.g4NsCdno.css +1 -0
package/admin-build/_app/immutable/assets/Select.BW4Keufm.css +1 -0
package/admin-build/_app/immutable/assets/Skeleton.KWUulTKJ.css +1 -0
package/admin-build/_app/immutable/assets/Tabs.CniGYb67.css +1 -0
package/admin-build/_app/immutable/assets/TimeChart.BTCDAvmT.css +1 -0
package/admin-build/_app/immutable/assets/Toggle.Cy_K12OM.css +1 -0
package/admin-build/_app/immutable/assets/TopList.ClFzmPlA.css +1 -0
package/admin-build/_app/immutable/chunks/7B47DvSx.js +1 -0
package/admin-build/_app/immutable/chunks/7f08Id8e.js +1 -0
package/admin-build/_app/immutable/chunks/8wJeQ7LN.js +1 -0
package/admin-build/_app/immutable/chunks/B-h2afW5.js +1 -0
package/admin-build/_app/immutable/chunks/B8vJP3wz.js +1 -0
package/admin-build/_app/immutable/chunks/BR_fL5Yv.js +1 -0
package/admin-build/_app/immutable/chunks/BY92tFS2.js +1 -0
package/admin-build/_app/immutable/chunks/BcR-Rdj9.js +1 -0
package/admin-build/_app/immutable/chunks/BdrwyZv8.js +1 -0
package/admin-build/_app/immutable/chunks/Bh56EfQ_.js +1 -0
package/admin-build/_app/immutable/chunks/BkrCkgYp.js +1 -0
package/admin-build/_app/immutable/chunks/BmRjiP5k.js +1 -0
package/admin-build/_app/immutable/chunks/BsokvhWC.js +1 -0
package/admin-build/_app/immutable/chunks/C4D51vTW.js +1 -0
package/admin-build/_app/immutable/chunks/C6puvcoR.js +2 -0
package/admin-build/_app/immutable/chunks/CCKNu7m7.js +1 -0
package/admin-build/_app/immutable/chunks/CWj6FrbW.js +1 -0
package/admin-build/_app/immutable/chunks/Ce-ngf4p.js +5 -0
package/admin-build/_app/immutable/chunks/Cs0GwzJA.js +1 -0
package/admin-build/_app/immutable/chunks/CwROoZK0.js +1 -0
package/admin-build/_app/immutable/chunks/CxCPv_Ut.js +1 -0
package/admin-build/_app/immutable/chunks/CxbRue-5.js +1 -0
package/admin-build/_app/immutable/chunks/CyqB6g-D.js +1 -0
package/admin-build/_app/immutable/chunks/D5h5A1cc.js +2 -0
package/admin-build/_app/immutable/chunks/DnyL7Zq-.js +1 -0
package/admin-build/_app/immutable/chunks/DoPXzH7F.js +1 -0
package/admin-build/_app/immutable/chunks/DrQSgw-f.js +1 -0
package/admin-build/_app/immutable/chunks/DttM2zNO.js +1 -0
package/admin-build/_app/immutable/chunks/DuXuUBWN.js +1 -0
package/admin-build/_app/immutable/chunks/MdeqaOQx.js +10 -0
package/admin-build/_app/immutable/chunks/NuUjtcO2.js +1 -0
package/admin-build/_app/immutable/chunks/Q2nPFxS6.js +1 -0
package/admin-build/_app/immutable/chunks/R6arueIl.js +1 -0
package/admin-build/_app/immutable/chunks/UUazaC_N.js +1 -0
package/admin-build/_app/immutable/chunks/cOYbrQxx.js +1 -0
package/admin-build/_app/immutable/chunks/eFQHTGwA.js +1 -0
package/admin-build/_app/immutable/chunks/ehbppgYb.js +1 -0
package/admin-build/_app/immutable/chunks/glwixJlP.js +1 -0
package/admin-build/_app/immutable/chunks/vApWTCBs.js +1 -0
package/admin-build/_app/immutable/chunks/w89G9Xpi.js +1 -0
package/admin-build/_app/immutable/chunks/wJsUhbfZ.js +1 -0
package/admin-build/_app/immutable/chunks/zfauFM8P.js +1 -0
package/admin-build/_app/immutable/entry/app.CcO-Uos3.js +2 -0
package/admin-build/_app/immutable/entry/start.COebYq3I.js +1 -0
package/admin-build/_app/immutable/nodes/0.CjtHKU-6.js +1 -0
package/admin-build/_app/immutable/nodes/1.DEisjlM0.js +1 -0
package/admin-build/_app/immutable/nodes/10.CvhdyWVB.js +1 -0
package/admin-build/_app/immutable/nodes/11.DjHqcOvy.js +1 -0
package/admin-build/_app/immutable/nodes/12.mQLz4Mj_.js +1 -0
package/admin-build/_app/immutable/nodes/13.CBonZZyP.js +110 -0
package/admin-build/_app/immutable/nodes/14.d-oiZL0j.js +3 -0
package/admin-build/_app/immutable/nodes/15.CKPQsUYF.js +1 -0
package/admin-build/_app/immutable/nodes/16.wPzAPQGx.js +1 -0
package/admin-build/_app/immutable/nodes/17.DayhKyEZ.js +1 -0
package/admin-build/_app/immutable/nodes/18.DKwS0Ir0.js +1 -0
package/admin-build/_app/immutable/nodes/19.wPzAPQGx.js +1 -0
package/admin-build/_app/immutable/nodes/2.BKoKrw1i.js +1 -0
package/admin-build/_app/immutable/nodes/20.BvIkkkrW.js +1 -0
package/admin-build/_app/immutable/nodes/21.DMaFhdHk.js +128 -0
package/admin-build/_app/immutable/nodes/22.3xdgwuK1.js +1 -0
package/admin-build/_app/immutable/nodes/23.8Bvgjbsl.js +112 -0
package/admin-build/_app/immutable/nodes/24.DzSSzRhG.js +2 -0
package/admin-build/_app/immutable/nodes/25.9KKYBnAE.js +2 -0
package/admin-build/_app/immutable/nodes/26.Bhn9dfhY.js +1 -0
package/admin-build/_app/immutable/nodes/27.kRLiC24G.js +1 -0
package/admin-build/_app/immutable/nodes/28.BVIN1-7N.js +1 -0
package/admin-build/_app/immutable/nodes/29.3yabZWj4.js +1 -0
package/admin-build/_app/immutable/nodes/3.BFtSOkX7.js +2 -0
package/admin-build/_app/immutable/nodes/30.CyCQlwaP.js +1 -0
package/admin-build/_app/immutable/nodes/31.C4LDXjES.js +1 -0
package/admin-build/_app/immutable/nodes/4.CvbiMlCa.js +1 -0
package/admin-build/_app/immutable/nodes/5.C6BLv2eM.js +1 -0
package/admin-build/_app/immutable/nodes/6.BcXvfl2P.js +1 -0
package/admin-build/_app/immutable/nodes/7.CIuqhPiK.js +1 -0
package/admin-build/_app/immutable/nodes/8.BQOR_JfO.js +1 -0
package/admin-build/_app/immutable/nodes/9.NZqXQxPy.js +1 -0
package/admin-build/_app/version.json +1 -0
package/admin-build/favicon.svg +26 -0
package/admin-build/index.html +45 -0
package/openapi.json +19543 -0
package/package.json +66 -0
package/src/__tests__/admin-assets.test.ts +55 -0
package/src/__tests__/admin-data-routes.test.ts +488 -0
package/src/__tests__/admin-db-target.test.ts +103 -0
package/src/__tests__/admin-routing.test.ts +31 -0
package/src/__tests__/admin-user-management.test.ts +311 -0
package/src/__tests__/analytics-query.test.ts +75 -0
package/src/__tests__/auth-d1.test.ts +749 -0
package/src/__tests__/auth-db-adapter.test.ts +73 -0
package/src/__tests__/auth-jwt.test.ts +440 -0
package/src/__tests__/auth-oauth.test.ts +389 -0
package/src/__tests__/auth-password.test.ts +367 -0
package/src/__tests__/auth-redirect.test.ts +87 -0
package/src/__tests__/backup-restore.test.ts +711 -0
package/src/__tests__/broadcast.test.ts +128 -0
package/src/__tests__/cli.test.ts +178 -0
package/src/__tests__/cloudflare-realtime.test.ts +113 -0
package/src/__tests__/config.test.ts +469 -0
package/src/__tests__/cors.test.ts +154 -0
package/src/__tests__/cron.test.ts +302 -0
package/src/__tests__/d1-handler.test.ts +402 -0
package/src/__tests__/d1-sql.test.ts +120 -0
package/src/__tests__/database-live-config.test.ts +42 -0
package/src/__tests__/database-live-emitter.test.ts +56 -0
package/src/__tests__/database-live-filters.test.ts +63 -0
package/src/__tests__/database-live-route.test.ts +113 -0
package/src/__tests__/db-sql.test.ts +163 -0
package/src/__tests__/do-lifecycle.test.ts +263 -0
package/src/__tests__/do-router.test.ts +729 -0
package/src/__tests__/email-provider.test.ts +128 -0
package/src/__tests__/email-templates.test.ts +528 -0
package/src/__tests__/error-format.test.ts +250 -0
package/src/__tests__/field-ops.test.ts +242 -0
package/src/__tests__/functions-context.test.ts +334 -0
package/src/__tests__/functions-d1-proxy.test.ts +229 -0
package/src/__tests__/functions-registry-runtime-config.test.ts +17 -0
package/src/__tests__/functions-route.test.ts +139 -0
package/src/__tests__/internal-request.test.ts +77 -0
package/src/__tests__/log-writer.test.ts +44 -0
package/src/__tests__/logger.test.ts +58 -0
package/src/__tests__/meta-admin-proxy.test.ts +48 -0
package/src/__tests__/meta-export-coverage.test.ts +191 -0
package/src/__tests__/meta-route-registration.test.ts +47 -0
package/src/__tests__/namespace-dump.test.ts +28 -0
package/src/__tests__/oauth-providers.test.ts +337 -0
package/src/__tests__/openapi-coverage.test.ts +144 -0
package/src/__tests__/pagination.test.ts +59 -0
package/src/__tests__/password-policy.test.ts +191 -0
package/src/__tests__/plugin-migrations.test.ts +379 -0
package/src/__tests__/postgres-batch-compat.test.ts +133 -0
package/src/__tests__/postgres-dialect.test.ts +328 -0
package/src/__tests__/postgres-executor.test.ts +79 -0
package/src/__tests__/postgres-field-ops-compat.test.ts +222 -0
package/src/__tests__/postgres-schema-init.test.ts +105 -0
package/src/__tests__/postgres-table-utils.test.ts +107 -0
package/src/__tests__/presence.test.ts +199 -0
package/src/__tests__/provider.test.ts +550 -0
package/src/__tests__/public-user-profile.test.ts +339 -0
package/src/__tests__/push-handlers.test.ts +179 -0
package/src/__tests__/push-provider.test.ts +80 -0
package/src/__tests__/push-token.test.ts +418 -0
package/src/__tests__/query.test.ts +771 -0
package/src/__tests__/rate-limit.test.ts +260 -0
package/src/__tests__/room-access-policy.test.ts +101 -0
package/src/__tests__/room-handler-context.test.ts +130 -0
package/src/__tests__/room-monitoring.test.ts +138 -0
package/src/__tests__/room-runtime-routing.test.ts +222 -0
package/src/__tests__/room.test.ts +254 -0
package/src/__tests__/route-parser.test.ts +490 -0
package/src/__tests__/rules.test.ts +234 -0
package/src/__tests__/runtime-surface-accounting.test.ts +120 -0
package/src/__tests__/scheduled.test.ts +80 -0
package/src/__tests__/schema.test.ts +1273 -0
package/src/__tests__/security-hardening.test.ts +312 -0
package/src/__tests__/server.unit.test.ts +333 -0
package/src/__tests__/service-key-db-proxy.test.ts +650 -0
package/src/__tests__/service-key-provider-bypass.test.ts +138 -0
package/src/__tests__/service-key.test.ts +757 -0
package/src/__tests__/smoke-skip-report.test.ts +72 -0
package/src/__tests__/sms-provider.test.ts +39 -0
package/src/__tests__/sql-route.test.ts +218 -0
package/src/__tests__/storage-hook-context.test.ts +115 -0
package/src/__tests__/totp.test.ts +200 -0
package/src/__tests__/uuid.test.ts +144 -0
package/src/__tests__/validation.test.ts +773 -0
package/src/__tests__/websocket-pending.test.ts +163 -0
package/src/_functions-registry.ts +51 -0
package/src/bench-entry.ts +9 -0
package/src/cloudflare-test.d.ts +1 -0
package/src/durable-objects/auth-do.ts +49 -0
package/src/durable-objects/database-do.ts +2240 -0
package/src/durable-objects/database-live-do.ts +949 -0
package/src/durable-objects/logs-do.ts +1200 -0
package/src/durable-objects/room-runtime-base.ts +1604 -0
package/src/durable-objects/rooms-do.ts +2191 -0
package/src/generated-config.ts +6 -0
package/src/index.ts +382 -0
package/src/lib/admin-assets.ts +54 -0
package/src/lib/admin-db-target.ts +301 -0
package/src/lib/admin-routing.ts +35 -0
package/src/lib/admin-user-management.ts +464 -0
package/src/lib/analytics-adapter.ts +103 -0
package/src/lib/analytics-query.ts +579 -0
package/src/lib/auth-d1-service.ts +1193 -0
package/src/lib/auth-d1.ts +1056 -0
package/src/lib/auth-db-adapter.ts +289 -0
package/src/lib/auth-redirect.ts +116 -0
package/src/lib/cidr.ts +115 -0
package/src/lib/client-ip.ts +51 -0
package/src/lib/cloudflare-realtime.ts +251 -0
package/src/lib/control-db.ts +36 -0
package/src/lib/cron.ts +163 -0
package/src/lib/d1-handler.ts +1425 -0
package/src/lib/d1-schema-init.ts +255 -0
package/src/lib/d1-sql.ts +33 -0
package/src/lib/database-live-config.ts +24 -0
package/src/lib/database-live-emitter.ts +111 -0
package/src/lib/db-sql.ts +66 -0
package/src/lib/do-retry.ts +36 -0
package/src/lib/do-router.ts +270 -0
package/src/lib/do-sql.ts +73 -0
package/src/lib/email-provider.ts +379 -0
package/src/lib/email-templates.ts +285 -0
package/src/lib/email-translations.ts +422 -0
package/src/lib/errors.ts +151 -0
package/src/lib/functions.ts +2091 -0
package/src/lib/hono.ts +56 -0
package/src/lib/internal-request.ts +56 -0
package/src/lib/jwt.ts +354 -0
package/src/lib/log-writer.ts +272 -0
package/src/lib/namespace-dump.ts +125 -0
package/src/lib/oauth-providers.ts +1225 -0
package/src/lib/op-parser.ts +99 -0
package/src/lib/openapi.ts +146 -0
package/src/lib/pagination.ts +19 -0
package/src/lib/password-policy.ts +102 -0
package/src/lib/password.ts +145 -0
package/src/lib/plugin-migrations.ts +612 -0
package/src/lib/postgres-executor.ts +203 -0
package/src/lib/postgres-handler.ts +1102 -0
package/src/lib/postgres-schema-init.ts +341 -0
package/src/lib/postgres-table-utils.ts +87 -0
package/src/lib/public-user-profile.ts +187 -0
package/src/lib/push-provider.ts +409 -0
package/src/lib/push-token.ts +294 -0
package/src/lib/query-engine.ts +768 -0
package/src/lib/room-monitoring.ts +97 -0
package/src/lib/room-runtime.ts +14 -0
package/src/lib/route-parser.ts +434 -0
package/src/lib/schema.ts +538 -0
package/src/lib/schemas.ts +152 -0
package/src/lib/service-key.ts +419 -0
package/src/lib/sms-provider.ts +230 -0
package/src/lib/startup-config.ts +99 -0
package/src/lib/totp.ts +242 -0
package/src/lib/uuid.ts +87 -0
package/src/lib/validation.ts +205 -0
package/src/lib/version.ts +2 -0
package/src/lib/websocket-pending.ts +40 -0
package/src/middleware/auth.ts +169 -0
package/src/middleware/captcha-verify.ts +217 -0
package/src/middleware/cors.ts +159 -0
package/src/middleware/error-handler.ts +54 -0
package/src/middleware/internal-guard.ts +26 -0
package/src/middleware/logger.ts +126 -0
package/src/middleware/rate-limit.ts +283 -0
package/src/middleware/rules.ts +475 -0
package/src/routes/admin-auth.ts +447 -0
package/src/routes/admin.ts +3501 -0
package/src/routes/analytics-api.ts +290 -0
package/src/routes/auth.ts +4222 -0
package/src/routes/backup.ts +1466 -0
package/src/routes/config.ts +53 -0
package/src/routes/d1.ts +109 -0
package/src/routes/database-live.ts +281 -0
package/src/routes/functions.ts +155 -0
package/src/routes/health.ts +32 -0
package/src/routes/kv.ts +167 -0
package/src/routes/oauth.ts +1055 -0
package/src/routes/push.ts +1465 -0
package/src/routes/room.ts +639 -0
package/src/routes/schema-endpoint.ts +76 -0
package/src/routes/sql.ts +176 -0
package/src/routes/storage.ts +1674 -0
package/src/routes/tables.ts +699 -0
package/src/routes/users.ts +21 -0
package/src/routes/vectorize.ts +372 -0
package/src/types.ts +99 -0

package/src/routes/users.ts ADDED Viewed

@@ -0,0 +1,21 @@
+import type { Env } from '../types.js';
+import { ensureAuthSchema } from '../lib/auth-d1.js';
+import { resolveAuthDb, type AuthDb } from '../lib/auth-db-adapter.js';
+import { getPublicProfileWithCache as getCachedPublicProfile } from '../lib/public-user-profile.js';
+function getAuthDbFromEnv(env: unknown): AuthDb {
+  return resolveAuthDb(env as Record<string, unknown>);
+}
+export async function getPublicProfileWithCache(
+  userId: string,
+  env: Env,
+  executionCtx: ExecutionContext,
+): Promise<Record<string, unknown> | null> {
+  const authDb = getAuthDbFromEnv(env as unknown as Record<string, unknown>);
+  await ensureAuthSchema(authDb);
+  return getCachedPublicProfile(authDb, userId, {
+    executionCtx,
+    kv: env.KV,
+  });
+}

package/src/routes/vectorize.ts ADDED Viewed

@@ -0,0 +1,372 @@
+/**
+ * Vectorize route — POST /api/vectorize/:index
+ *
+ * Allows server SDK (with Service Key) to access user-defined Vectorize indexes.
+ * NOT available to client SDK (server-only,).
+ *
+ * Supported actions:
+ *   upsert   — Insert or replace vectors (write)
+ *   insert   — Insert vectors, error on duplicate ID (write)
+ *   search   — Similarity search by vector values (query)
+ *   queryById — Similarity search using an existing vector's ID (query, Vectorize v2 only)
+ *   getByIds — Retrieve vectors by ID (query)
+ *   delete   — Remove vectors by ID (write)
+ *   describe — Get index info: vectorCount, dimensions, metric (query)
+ *
+ * Security:
+ * - Config Allowlist: index must be declared in config.vectorize
+ * - Service Key required with scoped validation
+ *
+ * Note: Vectorize is Cloudflare Edge-only. In local/Docker (Miniflare), the binding
+ * will not exist — the route returns a stub response with a warning.
+ *
+ * Flow: Server SDK → POST /api/vectorize/:index → Worker → Vectorize binding → JSON
+ */
+import { OpenAPIHono, createRoute, z, type HonoEnv } from '../lib/hono.js';
+import { parseConfig } from '../lib/do-router.js';
+import { validateKey, buildConstraintCtx } from '../lib/service-key.js';
+import { zodDefaultHook, vectorizeBodySchema, jsonResponseSchema, errorResponseSchema } from '../lib/schemas.js';
+const VALID_ACTIONS = ['upsert', 'insert', 'search', 'queryById', 'getByIds', 'delete', 'describe'] as const;
+type Action = typeof VALID_ACTIONS[number];
+const READ_ACTIONS: Action[] = ['search', 'getByIds', 'queryById', 'describe'];
+const STUB_WARNING = 'Vectorize not available in this environment';
+const VECTOR_BATCH_LIMIT = 20;
+export const vectorizeRoute = new OpenAPIHono<HonoEnv>({ defaultHook: zodDefaultHook });
+/**
+ * POST /api/vectorize/:index
+ * Body: { action, vectors?, vector?, vectorId?, topK?, filter?, ids?, namespace?, returnValues?, returnMetadata? }
+ */
+const vectorizeOperation = createRoute({
+  operationId: 'vectorizeOperation',
+  method: 'post',
+  path: '/{index}',
+  tags: ['admin'],
+  summary: 'Execute Vectorize operation',
+  request: {
+    params: z.object({ index: z.string() }),
+    body: { content: { 'application/json': { schema: vectorizeBodySchema } }, required: true },
+  },
+  responses: {
+    200: { description: 'Operation result', content: { 'application/json': { schema: jsonResponseSchema } } },
+    400: { description: 'Bad request', content: { 'application/json': { schema: errorResponseSchema } } },
+    401: { description: 'Unauthorized', content: { 'application/json': { schema: errorResponseSchema } } },
+    403: { description: 'Forbidden', content: { 'application/json': { schema: errorResponseSchema } } },
+  },
+});
+vectorizeRoute.openapi(vectorizeOperation, async (c) => {
+  const nameParam = c.req.param('index')!;
+  let body: {
+    action?: string;
+    vectors?: Array<{ id: string; values: number[]; metadata?: Record<string, unknown>; namespace?: string }>;
+    vector?: number[];
+    vectorId?: string;
+    topK?: number;
+    filter?: Record<string, unknown>;
+    ids?: string[];
+    namespace?: string;
+    returnValues?: boolean;
+    returnMetadata?: boolean | 'all' | 'indexed' | 'none';
+  };
+  try {
+    body = await c.req.json();
+  } catch {
+    return c.json({ code: 400, message: 'Invalid JSON body' }, 400);
+  }
+  const { action } = body;
+  if (!action || !(VALID_ACTIONS as readonly string[]).includes(action)) {
+    return c.json({ code: 400, message: `action must be one of: ${VALID_ACTIONS.join(', ')}` }, 400);
+  }
+  // §2 Allowlist: validate index is declared in config
+  const config = parseConfig(c.env);
+  const vectorConfig = config.vectorize?.[nameParam];
+  if (!vectorConfig) {
+    return c.json({ code: 404, message: `Vectorize index '${nameParam}' not found in config.` }, 404);
+  }
+  // §4 Scope mapping: read vs write
+  const scope = READ_ACTIONS.includes(action as Action)
+    ? `vectorize:index:${nameParam}:query`
+    : `vectorize:index:${nameParam}:write`;
+  // Service Key validation
+  const { result: skResult } = validateKey(
+    c.req.header('X-EdgeBase-Service-Key'),
+    scope,
+    config,
+    c.env,
+    undefined,
+    buildConstraintCtx(c.env, c.req),
+  );
+  if (skResult === 'missing') {
+    return c.json({ code: 403, message: 'Service Key required to access Vectorize' }, 403);
+  }
+  if (skResult === 'invalid') {
+    return c.json({ code: 401, message: 'Unauthorized. Invalid Service Key.' }, 401);
+  }
+  // ─── Input validation ─────────────────────────────────────────────────
+  if (action === 'upsert' || action === 'insert') {
+    if (!body.vectors || !Array.isArray(body.vectors) || body.vectors.length === 0) {
+      return c.json({ code: 400, message: 'vectors array is required and must not be empty for ' + action }, 400);
+    }
+    const invalidVector = body.vectors.find((vector) => !Array.isArray(vector.values) || vector.values.length !== vectorConfig.dimensions);
+    if (invalidVector) {
+      const actual = Array.isArray(invalidVector.values) ? invalidVector.values.length : 0;
+      return c.json({
+        code: 400,
+        message: `vector dimension mismatch: expected ${vectorConfig.dimensions}, got ${actual}`,
+      }, 400);
+    }
+  }
+  if (action === 'delete' || action === 'getByIds') {
+    if (!body.ids || !Array.isArray(body.ids) || body.ids.length === 0) {
+      return c.json({ code: 400, message: 'ids array is required and must not be empty for ' + action }, 400);
+    }
+  }
+  if (action === 'search' || action === 'queryById') {
+    const topK = body.topK ?? 10;
+    if (topK < 1 || topK > 100) {
+      return c.json({ code: 400, message: 'topK must be between 1 and 100' }, 400);
+    }
+  }
+  if (action === 'search') {
+    if (!body.vector || !Array.isArray(body.vector)) {
+      return c.json({ code: 400, message: 'vector array is required for search' }, 400);
+    }
+    if (body.vector.length !== vectorConfig.dimensions) {
+      return c.json({ code: 400, message: `vector dimension mismatch: expected ${vectorConfig.dimensions}, got ${body.vector.length}` }, 400);
+    }
+  }
+  if (action === 'queryById') {
+    if (!body.vectorId || typeof body.vectorId !== 'string') {
+      return c.json({ code: 400, message: 'vectorId string is required for queryById' }, 400);
+    }
+  }
+  // ─── Binding access ───────────────────────────────────────────────────
+  // §1 Env type — dynamic binding access via type assertion
+  // §7: Vectorize is Edge-only, Miniflare doesn't support it
+  const bindingName = vectorConfig.binding ?? `VECTORIZE_${nameParam.toUpperCase()}`;
+  const binding = (c.env as unknown as Record<string, unknown>)[bindingName] as VectorizeIndex | undefined;
+  if (!binding) {
+    console.warn(`⚠️ Vectorize binding '${bindingName}' for '${nameParam}' not available. Running locally or binding not configured.`);
+    // Return stub responses for local development
+    // Include both v1 (count) and v2 (mutationId) fields so code for either version works.
+    switch (action) {
+      case 'search':
+        return c.json({ matches: [], count: 0, _stub: true, _warning: STUB_WARNING });
+      case 'upsert':
+        return c.json({ ok: true, count: 0, mutationId: null, _stub: true, _warning: STUB_WARNING });
+      case 'insert':
+        return c.json({ ok: true, count: 0, mutationId: null, _stub: true, _warning: STUB_WARNING });
+      case 'delete':
+        return c.json({ ok: true, count: 0, mutationId: null, _stub: true, _warning: STUB_WARNING });
+      case 'getByIds':
+        return c.json({ vectors: [], _stub: true, _warning: STUB_WARNING });
+      case 'queryById':
+        return c.json({ matches: [], count: 0, _stub: true, _warning: STUB_WARNING });
+      case 'describe':
+        return c.json({
+          vectorCount: 0,
+          dimensions: vectorConfig.dimensions,
+          metric: vectorConfig.metric,
+          processedUpToDatetime: null,
+          processedUpToMutation: null,
+          _stub: true,
+          _warning: STUB_WARNING,
+        });
+    }
+  }
+  // ─── Execute Vectorize operation ──────────────────────────────────────
+  switch (action) {
+    case 'upsert': {
+      const vectors = applyNamespace(body.vectors!, body.namespace) as VectorizeVector[];
+      let count = 0;
+      let mutationId: string | undefined;
+      for (const chunk of chunkArray(vectors, VECTOR_BATCH_LIMIT)) {
+        const result = await binding!.upsert(chunk);
+        count += 'count' in result ? result.count : chunk.length;
+        if ('mutationId' in result) {
+          mutationId = (result as { mutationId: string }).mutationId;
+        }
+      }
+      return c.json({
+        ok: true,
+        count,
+        ...(mutationId ? { mutationId } : {}),
+      });
+    }
+    case 'insert': {
+      const vectors = applyNamespace(body.vectors!, body.namespace) as VectorizeVector[];
+      try {
+        let count = 0;
+        let mutationId: string | undefined;
+        for (const chunk of chunkArray(vectors, VECTOR_BATCH_LIMIT)) {
+          const result = await binding!.insert(chunk);
+          count += 'count' in result ? result.count : chunk.length;
+          if ('mutationId' in result) {
+            mutationId = (result as { mutationId: string }).mutationId;
+          }
+        }
+        return c.json({
+          ok: true,
+          count,
+          ...(mutationId ? { mutationId } : {}),
+        });
+      } catch (err: unknown) {
+        // insert() throws on duplicate ID — surface as 409 Conflict
+        const message = err instanceof Error ? err.message : 'Insert failed — duplicate ID';
+        return c.json({ code: 409, message }, 409);
+      }
+    }
+    case 'search': {
+      const queryOpts: VectorizeQueryOptions = {
+        topK: body.topK ?? 10,
+        filter: body.filter as VectorizeVectorMetadataFilter | undefined,
+      };
+      if (body.returnValues !== undefined) queryOpts.returnValues = body.returnValues;
+      if (body.returnMetadata !== undefined) queryOpts.returnMetadata = body.returnMetadata;
+      if (body.namespace) queryOpts.namespace = body.namespace;
+      const results = await binding!.query(body.vector!, queryOpts);
+      return c.json({
+        matches: mapMatches(results.matches),
+        count: results.count,
+      });
+    }
+    case 'queryById': {
+      // queryById only exists on the new Vectorize class, not legacy VectorizeIndex
+      const asVectorize = binding as unknown as {
+        queryById?: (id: string, opts?: VectorizeQueryOptions) => Promise<VectorizeMatches>;
+      };
+      if (typeof asVectorize.queryById !== 'function') {
+        return c.json({
+          code: 501,
+          message: 'queryById is not available on this Vectorize binding (requires Vectorize v2)',
+        }, 501);
+      }
+      const queryOpts: VectorizeQueryOptions = {
+        topK: body.topK ?? 10,
+        filter: body.filter as VectorizeVectorMetadataFilter | undefined,
+      };
+      if (body.returnValues !== undefined) queryOpts.returnValues = body.returnValues;
+      if (body.returnMetadata !== undefined) queryOpts.returnMetadata = body.returnMetadata;
+      if (body.namespace) queryOpts.namespace = body.namespace;
+      const results = await asVectorize.queryById(body.vectorId!, queryOpts);
+      return c.json({
+        matches: mapMatches(results.matches),
+        count: results.count,
+      });
+    }
+    case 'getByIds': {
+      const vectors = (
+        await Promise.all(chunkArray(body.ids!, VECTOR_BATCH_LIMIT).map((chunk) => binding!.getByIds(chunk)))
+      ).flat();
+      return c.json({
+        vectors: vectors.map((v) => ({
+          id: v.id,
+          values: v.values instanceof Float32Array || v.values instanceof Float64Array
+            ? Array.from(v.values)
+            : v.values,
+          ...(v.metadata !== undefined && { metadata: v.metadata }),
+          ...(v.namespace && { namespace: v.namespace }),
+        })),
+      });
+    }
+    case 'delete': {
+      let count = 0;
+      let mutationId: string | undefined;
+      for (const chunk of chunkArray(body.ids!, VECTOR_BATCH_LIMIT)) {
+        const result = await binding!.deleteByIds(chunk);
+        count += 'count' in result ? result.count : chunk.length;
+        if ('mutationId' in result) {
+          mutationId = (result as { mutationId: string }).mutationId;
+        }
+      }
+      return c.json({
+        ok: true,
+        count,
+        ...(mutationId ? { mutationId } : {}),
+      });
+    }
+    case 'describe': {
+      const info = await binding!.describe();
+      // Handle both VectorizeIndexDetails (beta) and VectorizeIndexInfo (new)
+      const details = info as unknown as Record<string, unknown>;
+      return c.json({
+        vectorCount: details.vectorCount ?? details.vectorsCount ?? 0,
+        dimensions: details.dimensions ?? (details.config as Record<string, unknown>)?.dimensions ?? vectorConfig.dimensions,
+        metric: details.metric ?? (details.config as Record<string, unknown>)?.metric ?? vectorConfig.metric,
+        ...('id' in details && { id: details.id }),
+        ...('name' in details && { name: details.name }),
+        // v2 Vectorize: processedUpTo fields for mutation tracking
+        ...('processedUpToDatetime' in details && { processedUpToDatetime: details.processedUpToDatetime }),
+        ...('processedUpToMutation' in details && { processedUpToMutation: details.processedUpToMutation }),
+      });
+    }
+    default:
+      return c.json({ code: 400, message: 'Unknown action' }, 400);
+  }
+});
+// ─── Helpers ──────────────────────────────────────────────────────────────────
+/** Apply a default namespace to vectors that don't have one set. */
+function applyNamespace(
+  vectors: Array<{ id: string; values: number[]; metadata?: Record<string, unknown>; namespace?: string }>,
+  defaultNs?: string,
+): Array<{ id: string; values: number[]; metadata?: Record<string, unknown>; namespace?: string }> {
+  if (!defaultNs) return vectors;
+  return vectors.map((v) => (v.namespace ? v : { ...v, namespace: defaultNs }));
+}
+function chunkArray<T>(items: T[], size: number): T[][] {
+  if (items.length === 0) return [];
+  const chunks: T[][] = [];
+  for (let index = 0; index < items.length; index += size) {
+    chunks.push(items.slice(index, index + size));
+  }
+  return chunks;
+}
+/** Map VectorizeMatch to a clean JSON-safe response object. */
+function mapMatches(matches: VectorizeMatch[]): Array<Record<string, unknown>> {
+  return matches.map((m) => ({
+    id: m.id,
+    score: m.score,
+    ...(m.values !== undefined && {
+      values: m.values instanceof Float32Array || m.values instanceof Float64Array
+        ? Array.from(m.values)
+        : m.values,
+    }),
+    ...(m.metadata !== undefined && { metadata: m.metadata }),
+    ...(m.namespace && { namespace: m.namespace }),
+  }));
+}

package/src/types.ts ADDED Viewed

@@ -0,0 +1,99 @@
+/**
+ * Cloudflare Worker environment bindings.
+ * Each binding corresponds to a wrangler.toml entry.
+ */
+export interface Env {
+  // ─── Durable Objects ───
+  DATABASE: DurableObjectNamespace;
+  AUTH: DurableObjectNamespace;
+  DATABASE_LIVE: DurableObjectNamespace;
+  /** Room DO — per-room state synchronization, members, signals, media */
+  ROOMS: DurableObjectNamespace;
+  // ─── R2 Storage ───
+  STORAGE: R2Bucket;
+  // ─── KV (OAuth state, WebSocket pending) ───
+  KV: KVNamespace;
+  // ─── Rate Limiting Bindings ───
+  GLOBAL_RATE_LIMITER?: RateLimit;
+  DB_RATE_LIMITER?: RateLimit;
+  STORAGE_RATE_LIMITER?: RateLimit;
+  FUNCTIONS_RATE_LIMITER?: RateLimit;
+  AUTH_RATE_LIMITER?: RateLimit;
+  AUTH_SIGNIN_RATE_LIMITER?: RateLimit;
+  AUTH_SIGNUP_RATE_LIMITER?: RateLimit;
+  EVENTS_RATE_LIMITER?: RateLimit;
+  // ─── D1 (Internal Control Plane + Auth,) ───
+  AUTH_DB: D1Database;
+  CONTROL_DB: D1Database;
+  // ─── Analytics Engine ───
+  ANALYTICS?: AnalyticsEngineDataset;
+  // ─── Analytics Engine for App Functions ───
+  ANALYTICS_APP?: AnalyticsEngineDataset;
+  // ─── LogsDO (Analytics log storage for Docker/self-hosted,) ───
+  LOGS?: DurableObjectNamespace;
+  // ─── Cloudflare API (Analytics Engine SQL API proxy,) ───
+  CF_ACCOUNT_ID?: string;
+  CF_API_TOKEN?: string;
+  // ─── Static Assets ───
+  ASSETS?: { fetch(request: Request): Promise<Response> };
+  /** External admin dashboard origin when the dashboard is deployed separately. */
+  ADMIN_ORIGIN?: string;
+  // ─── Secrets ───
+  JWT_USER_SECRET?: string;
+  /** Old JWT user secret — valid during 28d grace period after rotate-jwt */
+  JWT_USER_SECRET_OLD?: string;
+  /** ISO 8601 timestamp of last JWT user key rotation */
+  JWT_USER_SECRET_OLD_AT?: string;
+  JWT_ADMIN_SECRET?: string;
+  /** Old JWT admin secret — valid during 28d grace period after rotate-jwt */
+  JWT_ADMIN_SECRET_OLD?: string;
+  /** ISO 8601 timestamp of last JWT admin key rotation */
+  JWT_ADMIN_SECRET_OLD_AT?: string;
+  SERVICE_KEY?: string;
+  // ─── Captcha ───
+  /** Turnstile secret key — auto-provisioned via deploy or manually set */
+  TURNSTILE_SECRET?: string;
+  /** Turnstile site key — public, returned to clients via GET /api/config (§34) */
+  CAPTCHA_SITE_KEY?: string;
+  /** Cloudflare Realtime app ID for SFU session control. */
+  CF_REALTIME_APP_ID?: string;
+  /** Cloudflare Realtime app secret for SFU session control. */
+  CF_REALTIME_APP_SECRET?: string;
+  /** Optional override for the Cloudflare Realtime API base URL. */
+  CF_REALTIME_BASE_URL?: string;
+  /** Cloudflare TURN key ID used to mint short-lived ICE credentials. */
+  CF_REALTIME_TURN_KEY_ID?: string;
+  /** Cloudflare TURN API token returned when the TURN key is created. */
+  CF_REALTIME_TURN_API_TOKEN?: string;
+  // ─── Environment Identification ───
+  /** Server environment name for Service Key constraints.env evaluation */
+  ENVIRONMENT?: string;
+  // ─── Push Secrets ───
+  /** FCM Service Account JSON string */
+  PUSH_FCM_SERVICE_ACCOUNT?: string;
+  /** Optional override base URL for mock FCM endpoints in local/Docker test runs. */
+  MOCK_FCM_BASE_URL?: string;
+  /** Optional internal base URL used for Worker self-calls behind Docker/proxy port mapping. */
+  EDGEBASE_INTERNAL_WORKER_URL?: string;
+  /** Optional override for email delivery in deployed/local mock environments. */
+  EDGEBASE_EMAIL_API_URL?: string;
+  /** Optional override for SMS delivery in deployed/local mock environments. */
+  EDGEBASE_SMS_API_URL?: string;
+  // ─── Dev Mode ───
+  /** Schema Editor sidecar port — set by CLI dev command via --var */
+  EDGEBASE_DEV_SIDECAR_PORT?: string;
+}