@etus/bhono-app 0.1.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cli.d.ts +13 -0
- package/dist/cli.js +46 -0
- package/dist/cli.js.map +1 -0
- package/dist/cli.test.d.ts +1 -0
- package/dist/cli.test.js +26 -0
- package/dist/cli.test.js.map +1 -0
- package/dist/generator.d.ts +14 -0
- package/dist/generator.js +142 -0
- package/dist/generator.js.map +1 -0
- package/dist/generator.test.d.ts +1 -0
- package/dist/generator.test.js +127 -0
- package/dist/generator.test.js.map +1 -0
- package/dist/index.d.ts +2 -0
- package/dist/index.js +97 -0
- package/dist/index.js.map +1 -0
- package/dist/prompts.d.ts +25 -0
- package/dist/prompts.js +83 -0
- package/dist/prompts.js.map +1 -0
- package/dist/prompts.test.d.ts +1 -0
- package/dist/prompts.test.js +24 -0
- package/dist/prompts.test.js.map +1 -0
- package/dist/providers/cloudflare.d.ts +37 -0
- package/dist/providers/cloudflare.js +61 -0
- package/dist/providers/cloudflare.js.map +1 -0
- package/dist/providers/cloudflare.test.d.ts +1 -0
- package/dist/providers/cloudflare.test.js +29 -0
- package/dist/providers/cloudflare.test.js.map +1 -0
- package/dist/providers/github.d.ts +16 -0
- package/dist/providers/github.js +57 -0
- package/dist/providers/github.js.map +1 -0
- package/dist/providers/github.test.d.ts +1 -0
- package/dist/providers/github.test.js +16 -0
- package/dist/providers/github.test.js.map +1 -0
- package/dist/templates.d.ts +8 -0
- package/dist/templates.js +88 -0
- package/dist/templates.js.map +1 -0
- package/dist/templates.test.d.ts +1 -0
- package/dist/templates.test.js +26 -0
- package/dist/templates.test.js.map +1 -0
- package/package.json +36 -0
- package/templates/base/.claude/agents/architect-review.md +160 -0
- package/templates/base/.claude/agents/backend-architect.md +308 -0
- package/templates/base/.claude/agents/code-reviewer.md +170 -0
- package/templates/base/.claude/agents/performance-engineer.md +166 -0
- package/templates/base/.claude/agents/test-automator.md +219 -0
- package/templates/base/.claude/commands/check-skill-rules.md +53 -0
- package/templates/base/.claude/commands/claude-md.md +250 -0
- package/templates/base/.claude/commands/code-prompt.md +212 -0
- package/templates/base/.claude/commands/explain-code.md +194 -0
- package/templates/base/.claude/commands/init-projec.md +89 -0
- package/templates/base/.claude/commands/linear/README.md +297 -0
- package/templates/base/.claude/commands/linear/create-issue.md +190 -0
- package/templates/base/.claude/commands/linear/implement-issue.md +248 -0
- package/templates/base/.claude/commands/linear/process-triage.md +399 -0
- package/templates/base/.claude/commands/linear/setup.md +180 -0
- package/templates/base/.claude/commands/prime.md +9 -0
- package/templates/base/.claude/commands/review-gap.md +10 -0
- package/templates/base/.claude/commands/setup-aa.md +311 -0
- package/templates/base/.claude/commands/ship.md +262 -0
- package/templates/base/.claude/commands/tools.md +3 -0
- package/templates/base/.claude/docs/claude-progress.txt +107 -0
- package/templates/base/.claude/hooks/package-lock.json +556 -0
- package/templates/base/.claude/hooks/package.json +16 -0
- package/templates/base/.claude/hooks/skill-activation-prompt.sh +7 -0
- package/templates/base/.claude/hooks/skill-activation-prompt.ts +142 -0
- package/templates/base/.claude/hooks/tsconfig.json +19 -0
- package/templates/base/.claude/scripts/check-updates.sh +85 -0
- package/templates/base/.claude/scripts/install_pkgs.sh +66 -0
- package/templates/base/.claude/scripts/setup-project.sh +177 -0
- package/templates/base/.claude/scripts/validate-skill-rules.sh +94 -0
- package/templates/base/.claude/settings.json +113 -0
- package/templates/base/.claude/settings.local.json +11 -0
- package/templates/base/.claude/skills/architecture-analyzer/SKILL.md +531 -0
- package/templates/base/.claude/skills/architecture-analyzer/assets/report-template.md +215 -0
- package/templates/base/.claude/skills/architecture-analyzer/references/c4-templates.md +234 -0
- package/templates/base/.claude/skills/architecture-analyzer/references/confidence-levels.md +203 -0
- package/templates/base/.claude/skills/architecture-analyzer/scripts/analyze_structure.py +266 -0
- package/templates/base/.claude/skills/architecture-analyzer/scripts/analyze_tech_debt.py +776 -0
- package/templates/base/.claude/skills/architecture-analyzer/scripts/extract_apis.py +338 -0
- package/templates/base/.claude/skills/architecture-analyzer/scripts/generate_c4.py +283 -0
- package/templates/base/.claude/skills/architecture-analyzer/scripts/generate_erd.py +935 -0
- package/templates/base/.claude/skills/architecture-analyzer/scripts/map_dependencies.py +555 -0
- package/templates/base/.claude/skills/dev-browser/SKILL.md +318 -0
- package/templates/base/.claude/skills/dev-browser/bun.lock +443 -0
- package/templates/base/.claude/skills/dev-browser/package-lock.json +2927 -0
- package/templates/base/.claude/skills/dev-browser/package.json +27 -0
- package/templates/base/.claude/skills/dev-browser/scripts/start-server.ts +117 -0
- package/templates/base/.claude/skills/dev-browser/server.sh +24 -0
- package/templates/base/.claude/skills/dev-browser/src/client.ts +403 -0
- package/templates/base/.claude/skills/dev-browser/src/index.ts +281 -0
- package/templates/base/.claude/skills/dev-browser/src/snapshot/__tests__/snapshot.test.ts +223 -0
- package/templates/base/.claude/skills/dev-browser/src/snapshot/browser-script.ts +877 -0
- package/templates/base/.claude/skills/dev-browser/src/snapshot/index.ts +14 -0
- package/templates/base/.claude/skills/dev-browser/src/snapshot/inject.ts +13 -0
- package/templates/base/.claude/skills/dev-browser/src/types.ts +27 -0
- package/templates/base/.claude/skills/dev-browser/tsconfig.json +36 -0
- package/templates/base/.claude/skills/dev-browser/vitest.config.ts +12 -0
- package/templates/base/.claude/skills/linear/SKILL.md +440 -0
- package/templates/base/.claude/skills/linear/examples.md +262 -0
- package/templates/base/.claude/skills/linear/lib/client.ts +51 -0
- package/templates/base/.claude/skills/linear/lib/config.ts +106 -0
- package/templates/base/.claude/skills/linear/lib/output.ts +34 -0
- package/templates/base/.claude/skills/linear/package-lock.json +698 -0
- package/templates/base/.claude/skills/linear/package.json +27 -0
- package/templates/base/.claude/skills/linear/reference.md +263 -0
- package/templates/base/.claude/skills/linear/scripts/comments/create.ts +47 -0
- package/templates/base/.claude/skills/linear/scripts/comments/list.ts +47 -0
- package/templates/base/.claude/skills/linear/scripts/issues/archive.ts +30 -0
- package/templates/base/.claude/skills/linear/scripts/issues/create.ts +279 -0
- package/templates/base/.claude/skills/linear/scripts/issues/get.ts +68 -0
- package/templates/base/.claude/skills/linear/scripts/issues/list.ts +67 -0
- package/templates/base/.claude/skills/linear/scripts/issues/update.ts +281 -0
- package/templates/base/.claude/skills/linear/scripts/labels/add-to-issue.ts +63 -0
- package/templates/base/.claude/skills/linear/scripts/labels/create.ts +45 -0
- package/templates/base/.claude/skills/linear/scripts/labels/list.ts +30 -0
- package/templates/base/.claude/skills/linear/scripts/list-teams.ts +52 -0
- package/templates/base/.claude/skills/linear/scripts/setup/setup-credentials.ts +96 -0
- package/templates/base/.claude/skills/linear/scripts/status/list.ts +31 -0
- package/templates/base/.claude/skills/linear/scripts/status/set-by-name.ts +78 -0
- package/templates/base/.claude/skills/linear/scripts/status/update.ts +44 -0
- package/templates/base/.claude/skills/linear/scripts/users/list.ts +59 -0
- package/templates/base/.claude/skills/linear/scripts/users/me.ts +20 -0
- package/templates/base/.claude/skills/linear/templates/README.md +203 -0
- package/templates/base/.claude/skills/linear/templates/api-reference.md +258 -0
- package/templates/base/.claude/skills/linear/templates/bug-report.md +99 -0
- package/templates/base/.claude/skills/linear/templates/feature-request.md +118 -0
- package/templates/base/.claude/skills/linear/templates/security-issue.md +162 -0
- package/templates/base/.claude/skills/linear/templates/sprint-task.md +175 -0
- package/templates/base/.claude/skills/linear/templates/tech-debt.md +137 -0
- package/templates/base/.claude/skills/linear/tsconfig.json +17 -0
- package/templates/base/.claude/skills/linear/workflows/issue-lifecycle.md +317 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/SKILL.md +113 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/assets/global-setup.template.js +97 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/assets/playwright.config.template.js +171 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/assets/test-template.spec.js +163 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/examples/README.md +26 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/examples/ads.email-deeplink.spec.ts +12 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/examples/mobile.realism.spec.ts +16 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/examples/smoke.home.spec.ts +6 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/architecture.md +578 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/best-practices.md +260 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/ci-reporting.md +86 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/debugging.md +629 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/mobile-realism.md +50 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/optimization.md +488 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/patterns.md +513 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/resources.md +44 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/references/visual-a11y.md +66 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/scripts/auth-setup.js +202 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/scripts/performance-analyzer.js +240 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/scripts/trace-url.js +132 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/ci/github-actions.playwright.yml +78 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/fixtures.ts +44 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/global-setup.template.js +97 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/global.setup.ts +35 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/helpers/ad-gpt-observer.ts +80 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/helpers/chromium-mobile-profile.ts +93 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/playwright.config.template.js +171 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/playwright.config.ts +126 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/test-template.spec.js +163 -0
- package/templates/base/.claude/skills/playwright-e2e-testing/templates/tests/email-deeplink.ads.spec.ts +44 -0
- package/templates/base/.claude/skills/skill-rules.json +184 -0
- package/templates/base/.claude/skills/wrangler/SKILL.md +209 -0
- package/templates/base/.claude/skills/wrangler/resources/api.md +494 -0
- package/templates/base/.claude/skills/wrangler/resources/bundling.md +83 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/cert.md +64 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/check.md +66 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/containers.md +157 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/d1.md +843 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/delete.md +27 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/deploy.md +139 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/deployments.md +56 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/dev.md +157 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/dispatch-namespace.md +69 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/docs.md +61 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/how-to-run.md +62 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/hyperdrive.md +425 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/init.md +31 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/kv-bulk.md +265 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/kv-key.md +353 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/kv-namespace.md +265 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/login.md +23 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/logout.md +19 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/mtls-certificate.md +69 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/pages.md +175 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/pipelines.md +76 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/queues.md +132 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/r2-bucket.md +342 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/r2-object.md +267 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/r2-sql.md +65 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/rollback.md +40 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/secret.md +308 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/secrets-store-secret.md +100 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/secrets-store-store.md +60 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/setup.md +67 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/tail.md +37 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/telemetry.md +64 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/triggers.md +39 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/types.md +73 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/vectorize.md +941 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/versions.md +95 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/whoami.md +49 -0
- package/templates/base/.claude/skills/wrangler/resources/commands/workflows.md +117 -0
- package/templates/base/.claude/skills/wrangler/resources/commands.md +138 -0
- package/templates/base/.claude/skills/wrangler/resources/configuration.md +2176 -0
- package/templates/base/.claude/skills/wrangler/resources/custom-builds.md +55 -0
- package/templates/base/.claude/skills/wrangler/resources/deprecations.md +279 -0
- package/templates/base/.claude/skills/wrangler/resources/enviroments.md +416 -0
- package/templates/base/.claude/skills/wrangler/resources/extract_sections.py +119 -0
- package/templates/base/.claude/skills/wrangler/resources/process_content.py +94 -0
- package/templates/base/.claude/skills/wrangler/resources/system-enviroments-variables.md +120 -0
- package/templates/base/.dev.vars.example +15 -0
- package/templates/base/.env.example +29 -0
- package/templates/base/.github/workflows/test.yml +127 -0
- package/templates/base/.nycrc.json +16 -0
- package/templates/base/CLAUDE.md +218 -0
- package/templates/base/README.md +670 -0
- package/templates/base/auth-setup-error.png +0 -0
- package/templates/base/config/drizzle.config.ts +10 -0
- package/templates/base/config/eslint.config.js +364 -0
- package/templates/base/config/wrangler.json +76 -0
- package/templates/base/docs/app_spec.txt +879 -0
- package/templates/base/docs/app_spec_template.md +681 -0
- package/templates/base/docs/architecture/README.md +8 -0
- package/templates/base/docs/architecture/data-requirements.md +109 -0
- package/templates/base/docs/architecture/erd.md +91 -0
- package/templates/base/docs/features/feature_list.json +3128 -0
- package/templates/base/docs/hono-boilerplate-plan.md +1774 -0
- package/templates/base/docs/test-coverage-gap-analysis.md +242 -0
- package/templates/base/docs/testing.md +188 -0
- package/templates/base/index.html +16 -0
- package/templates/base/package.json +115 -0
- package/templates/base/playwright.config.ts +158 -0
- package/templates/base/pnpm-lock.yaml +8175 -0
- package/templates/base/scripts/capture-prod-session.ts +250 -0
- package/templates/base/scripts/generate-openapi.ts +23 -0
- package/templates/base/scripts/init.sh +121 -0
- package/templates/base/src/client/__tests__/button.test.tsx +30 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-authenticated-should-display-dashboard-stats-cards-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-authenticated-should-display-quick-action-cards-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-authenticated-should-display-recent-activity-section-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-authenticated-should-display-user-first-name-in-welcome-message-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-authenticated-should-display-user-information-in-sidebar-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-authenticated-should-render-dashboard-when-authenticated-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-authenticated-should-show-navigation-sidebar-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/dashboard.test.tsx/Dashboard-Page-when-unauthenticated-should-redirect-to-login-when-not-authenticated-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/login.test.tsx/Login-Page-should-display-Google-OAuth-login-button-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/login.test.tsx/Login-Page-should-have-a-link-back-to-home-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/login.test.tsx/Login-Page-should-render-login-content-without-waiting-for-authentication-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/login.test.tsx/Login-Page-should-render-login-page-at--login-route-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/login.test.tsx/Login-Page-should-show-Terms-of-Service-and-Privacy-Policy-links-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/login.test.tsx/Login-Page-should-trigger-OAuth-flow-when-clicking-login-button-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-404-handling-should-display-404-text-on-not-found-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-404-handling-should-have-navigation-options-on-404-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-404-handling-should-render-404-page-for-unknown-routes-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-authenticated-navigation-should-navigate-from-dashboard-to-account-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-authenticated-navigation-should-navigate-from-dashboard-to-integrations-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-authenticated-navigation-should-navigate-from-dashboard-to-settings-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-authenticated-navigation-should-navigate-from-dashboard-to-team-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-home-page-navigation-should-display-navigation-links-on-home-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-home-page-navigation-should-have-correct-link-destinations-on-home-page-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-unauthenticated-navigation-should-allow-access-to-home-page-without-authentication-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-unauthenticated-navigation-should-allow-access-to-login-page-without-authentication-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-unauthenticated-navigation-should-redirect-unauthenticated-users-from-dashboard-to-login-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-unauthenticated-navigation-should-redirect-unauthenticated-users-from-settings-to-login-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/__screenshots__/navigation.test.tsx/Navigation-unauthenticated-navigation-should-redirect-unauthenticated-users-from-team-to-login-1.png +0 -0
- package/templates/base/src/client/__tests__/routes/authenticated-layout.test.tsx +252 -0
- package/templates/base/src/client/__tests__/routes/dashboard.test.tsx +136 -0
- package/templates/base/src/client/__tests__/routes/error-components.test.tsx +186 -0
- package/templates/base/src/client/__tests__/routes/login.test.tsx +112 -0
- package/templates/base/src/client/__tests__/routes/navigation.test.tsx +272 -0
- package/templates/base/src/client/__tests__/routes/root-layout.test.tsx +65 -0
- package/templates/base/src/client/__tests__/setup-browser.ts +15 -0
- package/templates/base/src/client/__tests__/setup.ts +32 -0
- package/templates/base/src/client/__tests__/test-utils.tsx +135 -0
- package/templates/base/src/client/api/.gitkeep +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-can-be-collapsed-by-default-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-expands-when-collapsed-and-expand-button-is-clicked-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-handles-logout-button-click-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-handles-navigation-clicks-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-hides-navigation-labels-when-collapsed-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-highlights-active-route-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-renders-sidebar-navigation-items-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-shows-keyboard-shortcut-hint-when-expanded-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-shows-user-info-when-authenticated-1.png +0 -0
- package/templates/base/src/client/components/__tests__/__screenshots__/sidebar.test.tsx/Sidebar-shows-user-initials-in-avatar-fallback-1.png +0 -0
- package/templates/base/src/client/components/__tests__/error-boundary.test.tsx +97 -0
- package/templates/base/src/client/components/__tests__/sidebar.test.tsx +281 -0
- package/templates/base/src/client/components/error-boundary.tsx +68 -0
- package/templates/base/src/client/components/icons.tsx +106 -0
- package/templates/base/src/client/components/layout/.gitkeep +0 -0
- package/templates/base/src/client/components/sidebar.tsx +267 -0
- package/templates/base/src/client/components/ui/.gitkeep +0 -0
- package/templates/base/src/client/components/ui/__tests__/avatar.test.tsx +308 -0
- package/templates/base/src/client/components/ui/__tests__/card.test.tsx +214 -0
- package/templates/base/src/client/components/ui/__tests__/dialog.test.tsx +297 -0
- package/templates/base/src/client/components/ui/__tests__/error-fallback.test.tsx +145 -0
- package/templates/base/src/client/components/ui/__tests__/input.test.tsx +98 -0
- package/templates/base/src/client/components/ui/__tests__/loading-skeleton.test.tsx +139 -0
- package/templates/base/src/client/components/ui/__tests__/skeleton.test.tsx +44 -0
- package/templates/base/src/client/components/ui/__tests__/sonner.test.tsx +28 -0
- package/templates/base/src/client/components/ui/__tests__/tabs.test.tsx +233 -0
- package/templates/base/src/client/components/ui/avatar.tsx +101 -0
- package/templates/base/src/client/components/ui/badge.tsx +46 -0
- package/templates/base/src/client/components/ui/button.tsx +72 -0
- package/templates/base/src/client/components/ui/card.tsx +86 -0
- package/templates/base/src/client/components/ui/dialog.tsx +140 -0
- package/templates/base/src/client/components/ui/error-fallback.tsx +179 -0
- package/templates/base/src/client/components/ui/form.tsx +172 -0
- package/templates/base/src/client/components/ui/input.tsx +24 -0
- package/templates/base/src/client/components/ui/label.tsx +22 -0
- package/templates/base/src/client/components/ui/loading-skeleton.tsx +154 -0
- package/templates/base/src/client/components/ui/separator.tsx +33 -0
- package/templates/base/src/client/components/ui/skeleton.tsx +16 -0
- package/templates/base/src/client/components/ui/sonner.tsx +29 -0
- package/templates/base/src/client/components/ui/tabs.tsx +121 -0
- package/templates/base/src/client/hooks/.gitkeep +0 -0
- package/templates/base/src/client/hooks/__tests__/use-auth.test.tsx +306 -0
- package/templates/base/src/client/hooks/__tests__/use-theme.test.tsx +172 -0
- package/templates/base/src/client/hooks/use-auth.ts +53 -0
- package/templates/base/src/client/hooks/use-theme.tsx +78 -0
- package/templates/base/src/client/index.css +881 -0
- package/templates/base/src/client/lib/query-client.ts +11 -0
- package/templates/base/src/client/lib/utils.ts +7 -0
- package/templates/base/src/client/main.tsx +26 -0
- package/templates/base/src/client/routeTree.gen.ts +258 -0
- package/templates/base/src/client/router.ts +15 -0
- package/templates/base/src/client/routes/$.tsx +77 -0
- package/templates/base/src/client/routes/.gitkeep +0 -0
- package/templates/base/src/client/routes/__root.tsx +34 -0
- package/templates/base/src/client/routes/__tests__/__screenshots__/invite.test.tsx/Invite-Token-Page-pending-invitation-state-should-display-accept-invitation-button-1.png +0 -0
- package/templates/base/src/client/routes/__tests__/__screenshots__/invite.test.tsx/Invite-Token-Page-pending-invitation-state-should-display-decline-button-linking-to-homepage-1.png +0 -0
- package/templates/base/src/client/routes/__tests__/__screenshots__/invite.test.tsx/Invite-Token-Page-pending-invitation-state-should-display-invitation-details--email--workspace--role--1.png +0 -0
- package/templates/base/src/client/routes/__tests__/__screenshots__/invite.test.tsx/Invite-Token-Page-pending-invitation-state-should-have-a-logo-link-to-homepage-1.png +0 -0
- package/templates/base/src/client/routes/__tests__/__screenshots__/invite.test.tsx/Invite-Token-Page-pending-invitation-state-should-render-invitation-page-with-inviter-name-and-workspace-1.png +0 -0
- package/templates/base/src/client/routes/__tests__/__screenshots__/invite.test.tsx/Invite-Token-Page-pending-invitation-state-should-show-terms-of-service-and-privacy-policy-links-1.png +0 -0
- package/templates/base/src/client/routes/__tests__/invite.test.tsx +138 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/account.test.tsx/Account-Page-should-render-Active-Sessions-section-with-session-cards-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/account.test.tsx/Account-Page-should-render-page-with-correct-title--Account--1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/account.test.tsx/Account-Page-should-show-API-Access-section-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/account.test.tsx/Account-Page-should-show-Connected-Accounts-section-with-Google-connected-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/account.test.tsx/Account-Page-should-show-Danger-Zone-section-with-delete-button-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/account.test.tsx/Account-Page-should-show-Security-section-with-Two-Factor-Authentication-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-API-documentation-section-should-display-API-documentation-link-section-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-Create-Webhook-Dialog-should-have-Add-Webhook-trigger-button-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-category-filters-should-display-all-category-buttons-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-integration-cards-should-display-all-integration-cards-with-names-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-integration-cards-should-display-category-badges-on-cards-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-integration-cards-should-show-Configure-button-for-connected-integrations-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-integration-cards-should-show-Connect-button-for-not-connected-integrations-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-integration-cards-should-show-Connected-badge-for-connected-integrations-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-page-rendering-should-display-Available-Integrations-section-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-page-rendering-should-display-Webhooks-section-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-page-rendering-should-display-connected-count-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-page-rendering-should-display-page-description-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-page-rendering-should-display-search-input-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-page-rendering-should-render-with-correct-title--Integrations--1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-search-functionality-should-filter-integrations-based-on-search-query-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-search-functionality-should-search-by-description-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-search-functionality-should-show-no-results-message-when-search-has-no-matches-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-webhooks-section-should-display-existing-webhook-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-webhooks-section-should-display-webhook-events-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-webhooks-section-should-display-webhook-last-delivery-info-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-webhooks-section-should-display-webhook-success-status-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/integrations.test.tsx/Integrations-Page-webhooks-section-should-have-Add-Webhook-button-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Account-tab-should-display-connected-accounts-section-with-Google-provider-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Account-tab-should-display-sessions-and-danger-zone-sections-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Notifications-tab-should-display-all-notification-toggle-options-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Notifications-tab-should-display-email-notifications-section-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Notifications-tab-should-display-toggle-switches-for-notification-options-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Notifications-tab-should-have-toggles-checked-by-default-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Profile-tab-should-display--Save-Changes--button-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Profile-tab-should-display-personal-information-form-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Profile-tab-should-display-profile-picture-section-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Profile-tab-should-display-user-email-in-disabled-email-input-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Profile-tab-should-display-user-initials-in-avatar-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-Profile-tab-should-display-user-name-in-the-name-input-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-page-rendering-should-display-all-three-tabs-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-page-rendering-should-display-page-description-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-page-rendering-should-render-with-correct-title--Settings--1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-tab-navigation-should-show-Profile-tab-as-default-active-tab-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-tab-navigation-should-switch-to-Account-tab-when-clicked-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/settings.test.tsx/Settings-Page-tab-navigation-should-switch-to-Notifications-tab-when-clicked-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/team.test.tsx/Team-Page-should-display-Active-Members-section-with-member-count-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/team.test.tsx/Team-Page-should-display-Pending-Invitations-section-with-invitation-details-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/team.test.tsx/Team-Page-should-have-invite-member-button-that-can-be-clicked-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/team.test.tsx/Team-Page-should-render-page-with-correct-title-and-description-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/team.test.tsx/Team-Page-should-render-search-input-that-filters-team-members-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/__screenshots__/team.test.tsx/Team-Page-should-show-current-user-with---you---indicator-and-role-badge-1.png +0 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/account.test.tsx +324 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/integrations.test.tsx +520 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/settings.test.tsx +414 -0
- package/templates/base/src/client/routes/_authenticated/__tests__/team.test.tsx +374 -0
- package/templates/base/src/client/routes/_authenticated/account.tsx +416 -0
- package/templates/base/src/client/routes/_authenticated/dashboard.tsx +151 -0
- package/templates/base/src/client/routes/_authenticated/integrations.tsx +553 -0
- package/templates/base/src/client/routes/_authenticated/settings.tsx +310 -0
- package/templates/base/src/client/routes/_authenticated/team.tsx +395 -0
- package/templates/base/src/client/routes/_authenticated.tsx +69 -0
- package/templates/base/src/client/routes/index.tsx +155 -0
- package/templates/base/src/client/routes/invite.$token.tsx +191 -0
- package/templates/base/src/client/routes/login.tsx +92 -0
- package/templates/base/src/server/__tests__/fixtures.ts +461 -0
- package/templates/base/src/server/__tests__/mocks/__tests__/db.test.ts +239 -0
- package/templates/base/src/server/__tests__/mocks/__tests__/kv.test.ts +293 -0
- package/templates/base/src/server/__tests__/mocks/__tests__/r2.test.ts +363 -0
- package/templates/base/src/server/__tests__/mocks/db.ts +186 -0
- package/templates/base/src/server/__tests__/mocks/index.ts +33 -0
- package/templates/base/src/server/__tests__/mocks/kv.ts +286 -0
- package/templates/base/src/server/__tests__/mocks/r2.ts +397 -0
- package/templates/base/src/server/__tests__/setup.ts +281 -0
- package/templates/base/src/server/auth/__tests__/guards.test.ts +162 -0
- package/templates/base/src/server/auth/guards.ts +92 -0
- package/templates/base/src/server/auth/permissions.test.ts +45 -0
- package/templates/base/src/server/auth/permissions.ts +139 -0
- package/templates/base/src/server/auth/roles.test.ts +169 -0
- package/templates/base/src/server/auth/roles.ts +141 -0
- package/templates/base/src/server/db/client.ts +12 -0
- package/templates/base/src/server/db/schema/accounts.ts +20 -0
- package/templates/base/src/server/db/schema/audit-logs.ts +26 -0
- package/templates/base/src/server/db/schema/index.ts +7 -0
- package/templates/base/src/server/db/schema/invitations.ts +30 -0
- package/templates/base/src/server/db/schema/refresh-tokens.ts +22 -0
- package/templates/base/src/server/db/schema/user-accounts.ts +25 -0
- package/templates/base/src/server/db/schema/users.ts +33 -0
- package/templates/base/src/server/db/seed.ts +267 -0
- package/templates/base/src/server/env.test.ts +84 -0
- package/templates/base/src/server/env.ts +78 -0
- package/templates/base/src/server/index.ts +82 -0
- package/templates/base/src/server/lib/audit.ts +73 -0
- package/templates/base/src/server/lib/audited-db.test.ts +107 -0
- package/templates/base/src/server/lib/audited-db.ts +154 -0
- package/templates/base/src/server/lib/email.test.ts +116 -0
- package/templates/base/src/server/lib/email.ts +82 -0
- package/templates/base/src/server/lib/errors.test.ts +49 -0
- package/templates/base/src/server/lib/errors.ts +64 -0
- package/templates/base/src/server/lib/oauth.test.ts +238 -0
- package/templates/base/src/server/lib/oauth.ts +113 -0
- package/templates/base/src/server/lib/pagination.test.ts +52 -0
- package/templates/base/src/server/lib/pagination.ts +32 -0
- package/templates/base/src/server/lib/password.test.ts +151 -0
- package/templates/base/src/server/lib/password.ts +151 -0
- package/templates/base/src/server/lib/providers.test.ts +105 -0
- package/templates/base/src/server/lib/providers.ts +62 -0
- package/templates/base/src/server/lib/r2-storage.test.ts +202 -0
- package/templates/base/src/server/lib/r2-storage.ts +107 -0
- package/templates/base/src/server/lib/schema-helpers.ts +16 -0
- package/templates/base/src/server/lib/session.test.ts +758 -0
- package/templates/base/src/server/lib/session.ts +267 -0
- package/templates/base/src/server/lib/tokens.test.ts +208 -0
- package/templates/base/src/server/lib/tokens.ts +65 -0
- package/templates/base/src/server/lib/transaction.test.ts +45 -0
- package/templates/base/src/server/lib/transaction.ts +24 -0
- package/templates/base/src/server/middleware/account.test.ts +201 -0
- package/templates/base/src/server/middleware/account.ts +66 -0
- package/templates/base/src/server/middleware/auth.test.ts +345 -0
- package/templates/base/src/server/middleware/auth.ts +146 -0
- package/templates/base/src/server/middleware/cors.test.ts +88 -0
- package/templates/base/src/server/middleware/cors.ts +26 -0
- package/templates/base/src/server/middleware/error-handler.test.ts +69 -0
- package/templates/base/src/server/middleware/error-handler.ts +43 -0
- package/templates/base/src/server/middleware/index.ts +8 -0
- package/templates/base/src/server/middleware/rate-limit.test.ts +472 -0
- package/templates/base/src/server/middleware/rate-limit.ts +294 -0
- package/templates/base/src/server/middleware/request-context.test.ts +175 -0
- package/templates/base/src/server/middleware/request-context.ts +28 -0
- package/templates/base/src/server/middleware/request-logger.test.ts +92 -0
- package/templates/base/src/server/middleware/request-logger.ts +50 -0
- package/templates/base/src/server/routes/accounts/__tests__/handlers.test.ts +460 -0
- package/templates/base/src/server/routes/accounts/handlers.ts +179 -0
- package/templates/base/src/server/routes/accounts/index.ts +55 -0
- package/templates/base/src/server/routes/accounts/routes.ts +205 -0
- package/templates/base/src/server/routes/accounts/schemas.ts +31 -0
- package/templates/base/src/server/routes/api.ts +37 -0
- package/templates/base/src/server/routes/audits/__tests__/handlers.test.ts +349 -0
- package/templates/base/src/server/routes/audits/handlers.ts +37 -0
- package/templates/base/src/server/routes/audits/index.ts +14 -0
- package/templates/base/src/server/routes/audits/routes.ts +29 -0
- package/templates/base/src/server/routes/audits/schemas.ts +43 -0
- package/templates/base/src/server/routes/auth/__tests__/handlers.test.ts +381 -0
- package/templates/base/src/server/routes/auth/handlers.ts +222 -0
- package/templates/base/src/server/routes/auth/index.ts +37 -0
- package/templates/base/src/server/routes/auth/routes.ts +136 -0
- package/templates/base/src/server/routes/auth/schemas.ts +48 -0
- package/templates/base/src/server/routes/auth/test-login.ts +156 -0
- package/templates/base/src/server/routes/health/__tests__/handlers.test.ts +237 -0
- package/templates/base/src/server/routes/health/handlers.ts +83 -0
- package/templates/base/src/server/routes/health/index.ts +13 -0
- package/templates/base/src/server/routes/health/routes.ts +90 -0
- package/templates/base/src/server/routes/index.ts +53 -0
- package/templates/base/src/server/routes/invitations/__tests__/handlers.test.ts +473 -0
- package/templates/base/src/server/routes/invitations/handlers.ts +71 -0
- package/templates/base/src/server/routes/invitations/index.ts +25 -0
- package/templates/base/src/server/routes/invitations/routes.ts +69 -0
- package/templates/base/src/server/routes/invitations/schemas.ts +39 -0
- package/templates/base/src/server/routes/openapi.ts +14 -0
- package/templates/base/src/server/routes/schemas.ts +53 -0
- package/templates/base/src/server/routes/storage/__tests__/handlers.test.ts +408 -0
- package/templates/base/src/server/routes/storage/handlers.ts +100 -0
- package/templates/base/src/server/routes/storage/index.ts +42 -0
- package/templates/base/src/server/routes/storage/routes.ts +91 -0
- package/templates/base/src/server/routes/storage/schemas.ts +56 -0
- package/templates/base/src/server/routes/users/__tests__/handlers.test.ts +526 -0
- package/templates/base/src/server/routes/users/handlers.ts +228 -0
- package/templates/base/src/server/routes/users/index.ts +67 -0
- package/templates/base/src/server/routes/users/routes.ts +265 -0
- package/templates/base/src/server/routes/users/schemas.ts +67 -0
- package/templates/base/src/server/services/__tests__/accounts.test.ts +764 -0
- package/templates/base/src/server/services/__tests__/audits.test.ts +235 -0
- package/templates/base/src/server/services/__tests__/auth.test.ts +765 -0
- package/templates/base/src/server/services/__tests__/invitations.test.ts +704 -0
- package/templates/base/src/server/services/__tests__/users.test.ts +755 -0
- package/templates/base/src/server/services/accounts.ts +269 -0
- package/templates/base/src/server/services/audits.ts +82 -0
- package/templates/base/src/server/services/auth.ts +225 -0
- package/templates/base/src/server/services/index.ts +6 -0
- package/templates/base/src/server/services/invitations.ts +306 -0
- package/templates/base/src/server/services/users.ts +350 -0
- package/templates/base/src/server/types/auth.ts +36 -0
- package/templates/base/src/server/types/index.ts +117 -0
- package/templates/base/src/shared/schemas/.gitkeep +0 -0
- package/templates/base/src/shared/schemas/__tests__/schemas.test.ts +547 -0
- package/templates/base/src/shared/schemas/account.ts +15 -0
- package/templates/base/src/shared/schemas/index.ts +6 -0
- package/templates/base/src/shared/schemas/invitation.ts +9 -0
- package/templates/base/src/shared/schemas/profile.ts +10 -0
- package/templates/base/src/shared/schemas/user.ts +16 -0
- package/templates/base/src/shared/schemas/webhook.ts +12 -0
- package/templates/base/src/shared/types/.gitkeep +0 -0
- package/templates/base/src/shared/types/account.ts +12 -0
- package/templates/base/src/shared/types/api.ts +1399 -0
- package/templates/base/src/shared/types/auth.ts +24 -0
- package/templates/base/src/shared/types/index.ts +5 -0
- package/templates/base/src/shared/types/user.ts +31 -0
- package/templates/base/src/test/vitest-zod-matcher.ts +37 -0
- package/templates/base/src/test/vitest.d.ts +19 -0
- package/templates/base/tests/e2e/README.md +141 -0
- package/templates/base/tests/e2e/a11y/accessibility.spec.ts +925 -0
- package/templates/base/tests/e2e/a11y/keyboard-navigation.spec.ts +610 -0
- package/templates/base/tests/e2e/api/accounts.spec.ts +148 -0
- package/templates/base/tests/e2e/api/audit-logs.spec.ts +130 -0
- package/templates/base/tests/e2e/api/authenticated-api.spec.ts +311 -0
- package/templates/base/tests/e2e/api/storage.spec.ts +109 -0
- package/templates/base/tests/e2e/auth-flows.unauth.spec.ts +117 -0
- package/templates/base/tests/e2e/auth-logout.unauth.spec.ts +103 -0
- package/templates/base/tests/e2e/auth.setup.ts +115 -0
- package/templates/base/tests/e2e/auth.spec.ts +146 -0
- package/templates/base/tests/e2e/compatibility/cross-browser.spec.ts +152 -0
- package/templates/base/tests/e2e/compatibility/cross-browser.spec.ts-snapshots/login-chromium-chromium-darwin.png +0 -0
- package/templates/base/tests/e2e/crud/account.spec.ts +356 -0
- package/templates/base/tests/e2e/crud/integrations.spec.ts +419 -0
- package/templates/base/tests/e2e/crud/team.spec.ts +287 -0
- package/templates/base/tests/e2e/crud/users.spec.ts +239 -0
- package/templates/base/tests/e2e/errors/error-boundary.spec.ts +428 -0
- package/templates/base/tests/e2e/errors/error-handling.spec.ts +47 -0
- package/templates/base/tests/e2e/errors/error-handling.unauth.spec.ts +205 -0
- package/templates/base/tests/e2e/fixtures.ts +266 -0
- package/templates/base/tests/e2e/forms/validation.spec.ts +569 -0
- package/templates/base/tests/e2e/invitations/invite-flow.unauth.spec.ts +204 -0
- package/templates/base/tests/e2e/journeys/account-lifecycle.spec.ts +314 -0
- package/templates/base/tests/e2e/journeys/audit-investigation.spec.ts +299 -0
- package/templates/base/tests/e2e/journeys/auth-onboarding.spec.ts +232 -0
- package/templates/base/tests/e2e/journeys/critical-flows.spec.ts +281 -0
- package/templates/base/tests/e2e/journeys/error-recovery.spec.ts +354 -0
- package/templates/base/tests/e2e/journeys/file-management.spec.ts +307 -0
- package/templates/base/tests/e2e/journeys/integrations.spec.ts +372 -0
- package/templates/base/tests/e2e/journeys/multi-account.spec.ts +317 -0
- package/templates/base/tests/e2e/journeys/rbac-enforcement.spec.ts +389 -0
- package/templates/base/tests/e2e/journeys/settings-profile.spec.ts +400 -0
- package/templates/base/tests/e2e/journeys/team-collaboration.spec.ts +410 -0
- package/templates/base/tests/e2e/mobile/responsive.spec.ts +178 -0
- package/templates/base/tests/e2e/navigation/routing.spec.ts +371 -0
- package/templates/base/tests/e2e/navigation/sidebar.spec.ts +425 -0
- package/templates/base/tests/e2e/pages/ui-features.spec.ts +393 -0
- package/templates/base/tests/e2e/performance/baselines.spec.ts +162 -0
- package/templates/base/tests/e2e/performance/benchmarks.spec.ts +371 -0
- package/templates/base/tests/e2e/smoke.unauth.spec.ts +196 -0
- package/templates/base/tests/e2e/visual/components.spec.ts +650 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/confirmation-dialog-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/dark-mode-background-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/dark-mode-card-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/dark-mode-sidebar-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/dashboard-card-single-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/dialog-content-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/dialog-with-backdrop-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/empty-search-results-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/input-default-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/input-focus-ring-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/primary-button-focus-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/primary-button-hover-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/primary-button-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/sidebar-active-nav-item-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/sidebar-collapsed-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/components.spec.ts-snapshots/sidebar-navigation-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts +192 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/account-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/create-webhook-dialog-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/dashboard-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/delete-account-dialog-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/integrations-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/invite-member-dialog-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/login-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/settings-account-tab-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/settings-profile-tab-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/sidebar-navigation-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/core-components.spec.ts-snapshots/team-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts +230 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/404-page-chromium-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/404-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/account-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/login-page-chromium-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/login-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/settings-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/team-invite-dialog-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/team-page-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/screenshots.spec.ts-snapshots/webhook-create-dialog-visual-darwin.png +0 -0
- package/templates/base/tests/e2e/visual/theme-colors.spec.ts +293 -0
- package/templates/base/tests/e2e/visual/ui-components.spec.ts +502 -0
- package/templates/base/tests/integration/accounts/crud.test.ts +1402 -0
- package/templates/base/tests/integration/audits/list.test.ts +1133 -0
- package/templates/base/tests/integration/auth/auth-service.test.ts +415 -0
- package/templates/base/tests/integration/auth/invitation-token.test.ts +529 -0
- package/templates/base/tests/integration/auth/logout.test.ts +524 -0
- package/templates/base/tests/integration/auth/oauth.test.ts +768 -0
- package/templates/base/tests/integration/auth/refresh-token.test.ts +364 -0
- package/templates/base/tests/integration/auth/session-expiry.test.ts +569 -0
- package/templates/base/tests/integration/auth/session.test.ts +520 -0
- package/templates/base/tests/integration/auth/super-admin.test.ts +451 -0
- package/templates/base/tests/integration/authorization/analytics-role.test.ts +1026 -0
- package/templates/base/tests/integration/authorization/billing-role.test.ts +776 -0
- package/templates/base/tests/integration/authorization/guards-roles.test.ts +539 -0
- package/templates/base/tests/integration/authorization/multi-tenancy.test.ts +1112 -0
- package/templates/base/tests/integration/authorization/role-hierarchy.test.ts +931 -0
- package/templates/base/tests/integration/authorization/roles.test.ts +1347 -0
- package/templates/base/tests/integration/config/production-behavior.test.ts +536 -0
- package/templates/base/tests/integration/db/constraints.test.ts +695 -0
- package/templates/base/tests/integration/fixtures/accounts.ts +136 -0
- package/templates/base/tests/integration/fixtures/index.ts +232 -0
- package/templates/base/tests/integration/fixtures/invitations.ts +195 -0
- package/templates/base/tests/integration/fixtures/users.ts +144 -0
- package/templates/base/tests/integration/health/health.test.ts +351 -0
- package/templates/base/tests/integration/invitations/crud.test.ts +1457 -0
- package/templates/base/tests/integration/invitations/email.test.ts +506 -0
- package/templates/base/tests/integration/lib/email.test.ts +174 -0
- package/templates/base/tests/integration/lib/oauth.test.ts +368 -0
- package/templates/base/tests/integration/lib/password.test.ts +192 -0
- package/templates/base/tests/integration/lib/schema-helpers.test.ts +129 -0
- package/templates/base/tests/integration/lib/tokens.test.ts +304 -0
- package/templates/base/tests/integration/middleware/auth.test.ts +499 -0
- package/templates/base/tests/integration/middleware/cors.test.ts +334 -0
- package/templates/base/tests/integration/middleware/request-context.test.ts +156 -0
- package/templates/base/tests/integration/middleware/request-logger.test.ts +313 -0
- package/templates/base/tests/integration/performance/response-times.test.ts +509 -0
- package/templates/base/tests/integration/security/cookie-security.test.ts +567 -0
- package/templates/base/tests/integration/security/csrf-protection.test.ts +542 -0
- package/templates/base/tests/integration/security/jwt-validation.test.ts +209 -0
- package/templates/base/tests/integration/security/log-sanitization.test.ts +658 -0
- package/templates/base/tests/integration/security/rate-limiting.test.ts +1251 -0
- package/templates/base/tests/integration/security/sql-injection.test.ts +663 -0
- package/templates/base/tests/integration/security/token-hashing.test.ts +371 -0
- package/templates/base/tests/integration/security/xss-prevention.test.ts +541 -0
- package/templates/base/tests/integration/setup.ts +834 -0
- package/templates/base/tests/integration/smoke.test.ts +288 -0
- package/templates/base/tests/integration/storage/upload.test.ts +1162 -0
- package/templates/base/tests/integration/storage/validation.test.ts +746 -0
- package/templates/base/tests/integration/users/crud.test.ts +1297 -0
- package/templates/base/tests/integration/users/list.test.ts +698 -0
- package/templates/base/tests/integration/vitest.config.ts +80 -0
- package/templates/base/tsconfig.app.json +18 -0
- package/templates/base/tsconfig.json +39 -0
- package/templates/base/tsconfig.node.json +16 -0
- package/templates/base/tsconfig.server.json +26 -0
- package/templates/base/tsconfig.tsbuildinfo +1 -0
- package/templates/base/vite.config.ts +46 -0
- package/templates/base/vitest.config.browser.ts +47 -0
- package/templates/base/vitest.config.frontend.ts +47 -0
- package/templates/base/vitest.config.ts +82 -0
- package/templates/base/vitest.workspace.ts +22 -0
- package/templates/modules/audit-logs/.gitkeep +0 -0
- package/templates/modules/billing/.gitkeep +0 -0
- package/templates/modules/invitations/.gitkeep +0 -0
- package/templates/modules/storage/.gitkeep +0 -0
- package/templates/modules/webhooks/.gitkeep +0 -0
- package/templates/providers/auth-email/.gitkeep +0 -0
- package/templates/providers/auth-github/.gitkeep +0 -0
- package/templates/providers/auth-google/.gitkeep +0 -0
- package/templates/providers/email-resend/.gitkeep +0 -0
- package/templates/providers/email-sendgrid/.gitkeep +0 -0
|
@@ -0,0 +1,758 @@
|
|
|
1
|
+
// src/server/lib/session.test.ts
|
|
2
|
+
import { describe, it, expect, vi, beforeEach } from 'vitest'
|
|
3
|
+
import {
|
|
4
|
+
createSession,
|
|
5
|
+
destroySession,
|
|
6
|
+
getSession,
|
|
7
|
+
isAuthenticated,
|
|
8
|
+
sessionMiddleware,
|
|
9
|
+
type SessionData,
|
|
10
|
+
} from './session'
|
|
11
|
+
import { createMockKV, type MockKVNamespace } from '../__tests__/mocks/kv'
|
|
12
|
+
|
|
13
|
+
/**
|
|
14
|
+
* Create a mock Hono context for testing session functions
|
|
15
|
+
*/
|
|
16
|
+
function createMockContext(opts: {
|
|
17
|
+
url?: string
|
|
18
|
+
sessionData?: SessionData
|
|
19
|
+
sessionId?: string
|
|
20
|
+
cookies?: Record<string, string>
|
|
21
|
+
env?: { SESSIONS?: MockKVNamespace }
|
|
22
|
+
userAgent?: string
|
|
23
|
+
} = {}) {
|
|
24
|
+
const contextVars = new Map<string, unknown>()
|
|
25
|
+
if (opts.sessionData) contextVars.set('sessionData', opts.sessionData)
|
|
26
|
+
if (opts.sessionId) contextVars.set('sessionId', opts.sessionId)
|
|
27
|
+
contextVars.set('sessionCookies', [])
|
|
28
|
+
|
|
29
|
+
const mockKv = opts.env?.SESSIONS ?? createMockKV()
|
|
30
|
+
|
|
31
|
+
return {
|
|
32
|
+
req: {
|
|
33
|
+
url: opts.url ?? 'http://localhost:3000/test',
|
|
34
|
+
header: vi.fn().mockImplementation((name: string) => {
|
|
35
|
+
if (name === 'user-agent') return opts.userAgent ?? 'TestAgent/1.0'
|
|
36
|
+
if (name === 'cookie') {
|
|
37
|
+
const cookies = opts.cookies ?? {}
|
|
38
|
+
return Object.entries(cookies).map(([k, v]) => `${k}=${v}`).join('; ')
|
|
39
|
+
}
|
|
40
|
+
return
|
|
41
|
+
}),
|
|
42
|
+
},
|
|
43
|
+
env: { SESSIONS: mockKv },
|
|
44
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
45
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
46
|
+
header: vi.fn(),
|
|
47
|
+
_contextVars: contextVars,
|
|
48
|
+
_mockKv: mockKv,
|
|
49
|
+
}
|
|
50
|
+
}
|
|
51
|
+
|
|
52
|
+
describe('session library', () => {
|
|
53
|
+
describe('getSession', () => {
|
|
54
|
+
it('should return null when no session data in context', () => {
|
|
55
|
+
const c = createMockContext()
|
|
56
|
+
|
|
57
|
+
const result = getSession(c as never)
|
|
58
|
+
|
|
59
|
+
expect(result).toBeNull()
|
|
60
|
+
})
|
|
61
|
+
|
|
62
|
+
it('should return session data when present in context', () => {
|
|
63
|
+
const sessionData: SessionData = {
|
|
64
|
+
userId: 'user-123',
|
|
65
|
+
email: 'test@example.com',
|
|
66
|
+
name: 'Test User',
|
|
67
|
+
isSuperAdmin: false,
|
|
68
|
+
}
|
|
69
|
+
const c = createMockContext({ sessionData })
|
|
70
|
+
|
|
71
|
+
const result = getSession(c as never)
|
|
72
|
+
|
|
73
|
+
expect(result).toEqual(sessionData)
|
|
74
|
+
})
|
|
75
|
+
})
|
|
76
|
+
|
|
77
|
+
describe('isAuthenticated', () => {
|
|
78
|
+
it('should return false when no session data', () => {
|
|
79
|
+
const c = createMockContext()
|
|
80
|
+
|
|
81
|
+
const result = isAuthenticated(c as never)
|
|
82
|
+
|
|
83
|
+
expect(result).toBe(false)
|
|
84
|
+
})
|
|
85
|
+
|
|
86
|
+
it('should return true when session data exists', () => {
|
|
87
|
+
const sessionData: SessionData = {
|
|
88
|
+
userId: 'user-123',
|
|
89
|
+
email: 'test@example.com',
|
|
90
|
+
name: 'Test User',
|
|
91
|
+
isSuperAdmin: false,
|
|
92
|
+
}
|
|
93
|
+
const c = createMockContext({ sessionData })
|
|
94
|
+
|
|
95
|
+
const result = isAuthenticated(c as never)
|
|
96
|
+
|
|
97
|
+
expect(result).toBe(true)
|
|
98
|
+
})
|
|
99
|
+
})
|
|
100
|
+
|
|
101
|
+
describe('createSession', () => {
|
|
102
|
+
it('should generate a session ID', async () => {
|
|
103
|
+
const c = createMockContext()
|
|
104
|
+
const sessionData = {
|
|
105
|
+
userId: 'user-123',
|
|
106
|
+
email: 'test@example.com',
|
|
107
|
+
name: 'Test User',
|
|
108
|
+
isSuperAdmin: false,
|
|
109
|
+
}
|
|
110
|
+
|
|
111
|
+
const sid = await createSession(c as never, sessionData)
|
|
112
|
+
|
|
113
|
+
expect(sid).toBeDefined()
|
|
114
|
+
expect(typeof sid).toBe('string')
|
|
115
|
+
expect(sid.length).toBeGreaterThan(0)
|
|
116
|
+
})
|
|
117
|
+
|
|
118
|
+
it('should store session data in KV with fingerprint', async () => {
|
|
119
|
+
const c = createMockContext()
|
|
120
|
+
const sessionData = {
|
|
121
|
+
userId: 'user-123',
|
|
122
|
+
email: 'test@example.com',
|
|
123
|
+
name: 'Test User',
|
|
124
|
+
isSuperAdmin: false,
|
|
125
|
+
}
|
|
126
|
+
|
|
127
|
+
const sid = await createSession(c as never, sessionData)
|
|
128
|
+
|
|
129
|
+
// Check KV was called with correct key
|
|
130
|
+
expect(c._mockKv.put).toHaveBeenCalled()
|
|
131
|
+
const putCall = c._mockKv.put.mock.calls[0]
|
|
132
|
+
expect(putCall[0]).toBe(`sid:${sid}`)
|
|
133
|
+
|
|
134
|
+
// Check stored data includes fingerprint
|
|
135
|
+
const storedData = JSON.parse(putCall[1])
|
|
136
|
+
expect(storedData.userId).toBe('user-123')
|
|
137
|
+
expect(storedData.email).toBe('test@example.com')
|
|
138
|
+
expect(storedData.fingerprint).toBeDefined()
|
|
139
|
+
expect(storedData.fingerprint.userAgent).toBe('TestAgent/1.0')
|
|
140
|
+
})
|
|
141
|
+
|
|
142
|
+
it('should add cookie to sessionCookies', async () => {
|
|
143
|
+
const c = createMockContext()
|
|
144
|
+
const sessionData = {
|
|
145
|
+
userId: 'user-123',
|
|
146
|
+
email: 'test@example.com',
|
|
147
|
+
name: 'Test User',
|
|
148
|
+
isSuperAdmin: false,
|
|
149
|
+
}
|
|
150
|
+
|
|
151
|
+
const sid = await createSession(c as never, sessionData)
|
|
152
|
+
|
|
153
|
+
// Check sessionCookies was updated
|
|
154
|
+
const cookieJar = c._contextVars.get('sessionCookies') as string[]
|
|
155
|
+
expect(cookieJar.length).toBeGreaterThan(0)
|
|
156
|
+
expect(cookieJar[0]).toContain('sid=')
|
|
157
|
+
expect(cookieJar[0]).toContain(sid)
|
|
158
|
+
})
|
|
159
|
+
|
|
160
|
+
it('should set sessionId and sessionData in context', async () => {
|
|
161
|
+
const c = createMockContext()
|
|
162
|
+
const sessionData = {
|
|
163
|
+
userId: 'user-123',
|
|
164
|
+
email: 'test@example.com',
|
|
165
|
+
name: 'Test User',
|
|
166
|
+
isSuperAdmin: false,
|
|
167
|
+
}
|
|
168
|
+
|
|
169
|
+
const sid = await createSession(c as never, sessionData)
|
|
170
|
+
|
|
171
|
+
// Check context was updated
|
|
172
|
+
expect(c._contextVars.get('sessionId')).toBe(sid)
|
|
173
|
+
const storedSession = c._contextVars.get('sessionData') as SessionData
|
|
174
|
+
expect(storedSession.userId).toBe('user-123')
|
|
175
|
+
expect(storedSession.fingerprint).toBeDefined()
|
|
176
|
+
})
|
|
177
|
+
|
|
178
|
+
it('should use custom options when provided', async () => {
|
|
179
|
+
const c = createMockContext()
|
|
180
|
+
const sessionData = {
|
|
181
|
+
userId: 'user-123',
|
|
182
|
+
email: 'test@example.com',
|
|
183
|
+
name: 'Test User',
|
|
184
|
+
isSuperAdmin: false,
|
|
185
|
+
}
|
|
186
|
+
|
|
187
|
+
const sid = await createSession(c as never, sessionData, {
|
|
188
|
+
cookieName: 'custom-session',
|
|
189
|
+
keyPrefix: 'custom:',
|
|
190
|
+
ttlSeconds: 3600,
|
|
191
|
+
})
|
|
192
|
+
|
|
193
|
+
// Check KV was called with custom prefix
|
|
194
|
+
const putCall = c._mockKv.put.mock.calls[0]
|
|
195
|
+
expect(putCall[0]).toBe(`custom:${sid}`)
|
|
196
|
+
expect(putCall[2]).toEqual({ expirationTtl: 3600 })
|
|
197
|
+
|
|
198
|
+
// Check cookie uses custom name
|
|
199
|
+
const cookieJar = c._contextVars.get('sessionCookies') as string[]
|
|
200
|
+
expect(cookieJar[0]).toContain('custom-session=')
|
|
201
|
+
})
|
|
202
|
+
})
|
|
203
|
+
|
|
204
|
+
describe('destroySession', () => {
|
|
205
|
+
it('should delete session from KV', async () => {
|
|
206
|
+
const mockKv = createMockKV()
|
|
207
|
+
const sessionId = 'test-session-id'
|
|
208
|
+
// Pre-populate the session in KV
|
|
209
|
+
await mockKv.put(`sid:${sessionId}`, JSON.stringify({ userId: 'user-123' }))
|
|
210
|
+
|
|
211
|
+
const c = createMockContext({
|
|
212
|
+
sessionId,
|
|
213
|
+
env: { SESSIONS: mockKv },
|
|
214
|
+
})
|
|
215
|
+
|
|
216
|
+
await destroySession(c as never)
|
|
217
|
+
|
|
218
|
+
expect(mockKv.delete).toHaveBeenCalledWith(`sid:${sessionId}`)
|
|
219
|
+
})
|
|
220
|
+
|
|
221
|
+
it('should clear session cookie', async () => {
|
|
222
|
+
const mockKv = createMockKV()
|
|
223
|
+
const sessionId = 'test-session-id'
|
|
224
|
+
|
|
225
|
+
const c = createMockContext({
|
|
226
|
+
sessionId,
|
|
227
|
+
env: { SESSIONS: mockKv },
|
|
228
|
+
})
|
|
229
|
+
|
|
230
|
+
await destroySession(c as never)
|
|
231
|
+
|
|
232
|
+
// Check that an expired cookie was added
|
|
233
|
+
const cookieJar = c._contextVars.get('sessionCookies') as string[]
|
|
234
|
+
expect(cookieJar.length).toBeGreaterThan(0)
|
|
235
|
+
expect(cookieJar[0]).toContain('sid=')
|
|
236
|
+
expect(cookieJar[0]).toContain('Expires=')
|
|
237
|
+
})
|
|
238
|
+
|
|
239
|
+
it('should set sessionId and sessionData to undefined', async () => {
|
|
240
|
+
const mockKv = createMockKV()
|
|
241
|
+
const sessionId = 'test-session-id'
|
|
242
|
+
const sessionData: SessionData = {
|
|
243
|
+
userId: 'user-123',
|
|
244
|
+
email: 'test@example.com',
|
|
245
|
+
name: 'Test User',
|
|
246
|
+
isSuperAdmin: false,
|
|
247
|
+
}
|
|
248
|
+
|
|
249
|
+
const c = createMockContext({
|
|
250
|
+
sessionId,
|
|
251
|
+
sessionData,
|
|
252
|
+
env: { SESSIONS: mockKv },
|
|
253
|
+
})
|
|
254
|
+
|
|
255
|
+
await destroySession(c as never)
|
|
256
|
+
|
|
257
|
+
// Verify set was called with undefined values
|
|
258
|
+
const setCalls = c.set.mock.calls
|
|
259
|
+
const sessionIdCall = setCalls.find((call: unknown[]) => call[0] === 'sessionId' && call[1] === undefined)
|
|
260
|
+
const sessionDataCall = setCalls.find((call: unknown[]) => call[0] === 'sessionData' && call[1] === undefined)
|
|
261
|
+
|
|
262
|
+
expect(sessionIdCall).toBeDefined()
|
|
263
|
+
expect(sessionDataCall).toBeDefined()
|
|
264
|
+
})
|
|
265
|
+
|
|
266
|
+
it('should use custom options when provided', async () => {
|
|
267
|
+
const mockKv = createMockKV()
|
|
268
|
+
const sessionId = 'test-session-id'
|
|
269
|
+
await mockKv.put(`custom:${sessionId}`, JSON.stringify({ userId: 'user-123' }))
|
|
270
|
+
|
|
271
|
+
const c = createMockContext({
|
|
272
|
+
sessionId,
|
|
273
|
+
env: { SESSIONS: mockKv },
|
|
274
|
+
})
|
|
275
|
+
|
|
276
|
+
await destroySession(c as never, {
|
|
277
|
+
cookieName: 'custom-session',
|
|
278
|
+
keyPrefix: 'custom:',
|
|
279
|
+
})
|
|
280
|
+
|
|
281
|
+
expect(mockKv.delete).toHaveBeenCalledWith(`custom:${sessionId}`)
|
|
282
|
+
|
|
283
|
+
const cookieJar = c._contextVars.get('sessionCookies') as string[]
|
|
284
|
+
expect(cookieJar[0]).toContain('custom-session=')
|
|
285
|
+
})
|
|
286
|
+
})
|
|
287
|
+
|
|
288
|
+
describe('sessionMiddleware', () => {
|
|
289
|
+
it('should read session from cookie and populate context', async () => {
|
|
290
|
+
const mockKv = createMockKV()
|
|
291
|
+
const sessionId = 'valid-session-id'
|
|
292
|
+
const sessionData: SessionData = {
|
|
293
|
+
userId: 'user-123',
|
|
294
|
+
email: 'test@example.com',
|
|
295
|
+
name: 'Test User',
|
|
296
|
+
isSuperAdmin: false,
|
|
297
|
+
fingerprint: { userAgent: 'TestAgent/1.0' },
|
|
298
|
+
}
|
|
299
|
+
await mockKv.put(`sid:${sessionId}`, JSON.stringify(sessionData))
|
|
300
|
+
|
|
301
|
+
const contextVars = new Map<string, unknown>()
|
|
302
|
+
const c = {
|
|
303
|
+
req: {
|
|
304
|
+
url: 'http://localhost:3000/test',
|
|
305
|
+
header: vi.fn().mockImplementation((name: string) => {
|
|
306
|
+
if (name === 'user-agent') return 'TestAgent/1.0'
|
|
307
|
+
return
|
|
308
|
+
}),
|
|
309
|
+
raw: {
|
|
310
|
+
headers: new Headers(),
|
|
311
|
+
},
|
|
312
|
+
},
|
|
313
|
+
env: { SESSIONS: mockKv },
|
|
314
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
315
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
316
|
+
header: vi.fn(),
|
|
317
|
+
}
|
|
318
|
+
|
|
319
|
+
// Mock getCookie by injecting cookie header
|
|
320
|
+
c.req.raw.headers.set('Cookie', `sid=${sessionId}`)
|
|
321
|
+
|
|
322
|
+
const middleware = sessionMiddleware()
|
|
323
|
+
let nextCalled = false
|
|
324
|
+
await middleware(c as never, async () => { nextCalled = true })
|
|
325
|
+
|
|
326
|
+
expect(nextCalled).toBe(true)
|
|
327
|
+
expect(contextVars.get('sessionId')).toBe(sessionId)
|
|
328
|
+
expect(contextVars.get('sessionData')).toEqual(sessionData)
|
|
329
|
+
})
|
|
330
|
+
|
|
331
|
+
it('should invalidate session on fingerprint mismatch', async () => {
|
|
332
|
+
const mockKv = createMockKV()
|
|
333
|
+
const sessionId = 'hijacked-session-id'
|
|
334
|
+
const sessionData: SessionData = {
|
|
335
|
+
userId: 'user-123',
|
|
336
|
+
email: 'test@example.com',
|
|
337
|
+
name: 'Test User',
|
|
338
|
+
isSuperAdmin: false,
|
|
339
|
+
fingerprint: { userAgent: 'OriginalAgent/1.0' },
|
|
340
|
+
}
|
|
341
|
+
await mockKv.put(`sid:${sessionId}`, JSON.stringify(sessionData))
|
|
342
|
+
|
|
343
|
+
const contextVars = new Map<string, unknown>()
|
|
344
|
+
const c = {
|
|
345
|
+
req: {
|
|
346
|
+
url: 'http://localhost:3000/test',
|
|
347
|
+
header: vi.fn().mockImplementation((name: string) => {
|
|
348
|
+
if (name === 'user-agent') return 'DifferentAgent/2.0' // Different user agent
|
|
349
|
+
return
|
|
350
|
+
}),
|
|
351
|
+
raw: {
|
|
352
|
+
headers: new Headers(),
|
|
353
|
+
},
|
|
354
|
+
},
|
|
355
|
+
env: { SESSIONS: mockKv },
|
|
356
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
357
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
358
|
+
header: vi.fn(),
|
|
359
|
+
}
|
|
360
|
+
|
|
361
|
+
c.req.raw.headers.set('Cookie', `sid=${sessionId}`)
|
|
362
|
+
|
|
363
|
+
// Suppress console.warn during test
|
|
364
|
+
const consoleSpy = vi.spyOn(console, 'warn').mockImplementation(() => {})
|
|
365
|
+
|
|
366
|
+
const middleware = sessionMiddleware()
|
|
367
|
+
let nextCalled = false
|
|
368
|
+
await middleware(c as never, async () => { nextCalled = true })
|
|
369
|
+
|
|
370
|
+
expect(nextCalled).toBe(true)
|
|
371
|
+
// Session should be deleted due to fingerprint mismatch
|
|
372
|
+
expect(mockKv.delete).toHaveBeenCalledWith(`sid:${sessionId}`)
|
|
373
|
+
// Context should NOT have session data
|
|
374
|
+
expect(contextVars.get('sessionId')).toBeUndefined()
|
|
375
|
+
expect(contextVars.get('sessionData')).toBeUndefined()
|
|
376
|
+
|
|
377
|
+
consoleSpy.mockRestore()
|
|
378
|
+
})
|
|
379
|
+
|
|
380
|
+
it('should initialize sessionCookies array', async () => {
|
|
381
|
+
const mockKv = createMockKV()
|
|
382
|
+
const contextVars = new Map<string, unknown>()
|
|
383
|
+
const c = {
|
|
384
|
+
req: {
|
|
385
|
+
url: 'http://localhost:3000/test',
|
|
386
|
+
header: vi.fn().mockReturnValue(),
|
|
387
|
+
raw: {
|
|
388
|
+
headers: new Headers(),
|
|
389
|
+
},
|
|
390
|
+
},
|
|
391
|
+
env: { SESSIONS: mockKv },
|
|
392
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
393
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
394
|
+
header: vi.fn(),
|
|
395
|
+
}
|
|
396
|
+
|
|
397
|
+
const middleware = sessionMiddleware()
|
|
398
|
+
await middleware(c as never, async () => {})
|
|
399
|
+
|
|
400
|
+
expect(contextVars.get('sessionCookies')).toEqual([])
|
|
401
|
+
})
|
|
402
|
+
|
|
403
|
+
it('should apply cookies from sessionCookies after next()', async () => {
|
|
404
|
+
const mockKv = createMockKV()
|
|
405
|
+
const contextVars = new Map<string, unknown>()
|
|
406
|
+
// Pre-set a cookie in the jar that should be applied
|
|
407
|
+
contextVars.set('sessionCookies', ['test-cookie=value; Path=/', 'another-cookie=value2; Path=/'])
|
|
408
|
+
|
|
409
|
+
const c = {
|
|
410
|
+
req: {
|
|
411
|
+
url: 'http://localhost:3000/test',
|
|
412
|
+
header: vi.fn().mockReturnValue(),
|
|
413
|
+
raw: {
|
|
414
|
+
headers: new Headers(),
|
|
415
|
+
},
|
|
416
|
+
},
|
|
417
|
+
env: { SESSIONS: mockKv },
|
|
418
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
419
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
420
|
+
header: vi.fn(),
|
|
421
|
+
}
|
|
422
|
+
|
|
423
|
+
const middleware = sessionMiddleware()
|
|
424
|
+
await middleware(c as never, async () => {})
|
|
425
|
+
|
|
426
|
+
// Should have set both cookies
|
|
427
|
+
expect(c.header).toHaveBeenCalledTimes(2)
|
|
428
|
+
expect(c.header).toHaveBeenCalledWith('Set-Cookie', 'test-cookie=value; Path=/', { append: true })
|
|
429
|
+
expect(c.header).toHaveBeenCalledWith('Set-Cookie', 'another-cookie=value2; Path=/', { append: true })
|
|
430
|
+
})
|
|
431
|
+
|
|
432
|
+
it('should NOT apply cookies when sessionCookies is empty', async () => {
|
|
433
|
+
const mockKv = createMockKV()
|
|
434
|
+
const contextVars = new Map<string, unknown>()
|
|
435
|
+
contextVars.set('sessionCookies', [])
|
|
436
|
+
|
|
437
|
+
const c = {
|
|
438
|
+
req: {
|
|
439
|
+
url: 'http://localhost:3000/test',
|
|
440
|
+
header: vi.fn().mockReturnValue(),
|
|
441
|
+
raw: {
|
|
442
|
+
headers: new Headers(),
|
|
443
|
+
},
|
|
444
|
+
},
|
|
445
|
+
env: { SESSIONS: mockKv },
|
|
446
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
447
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
448
|
+
header: vi.fn(),
|
|
449
|
+
}
|
|
450
|
+
|
|
451
|
+
const middleware = sessionMiddleware()
|
|
452
|
+
await middleware(c as never, async () => {})
|
|
453
|
+
|
|
454
|
+
// Should NOT have set any cookies
|
|
455
|
+
expect(c.header).not.toHaveBeenCalled()
|
|
456
|
+
})
|
|
457
|
+
|
|
458
|
+
it('should skip sliding expiration when sliding is false', async () => {
|
|
459
|
+
const mockKv = createMockKV()
|
|
460
|
+
const sessionId = 'no-slide-session'
|
|
461
|
+
const sessionData: SessionData = {
|
|
462
|
+
userId: 'user-123',
|
|
463
|
+
email: 'test@example.com',
|
|
464
|
+
name: 'Test User',
|
|
465
|
+
isSuperAdmin: false,
|
|
466
|
+
fingerprint: { userAgent: 'TestAgent/1.0' },
|
|
467
|
+
}
|
|
468
|
+
await mockKv.put(`sid:${sessionId}`, JSON.stringify(sessionData))
|
|
469
|
+
|
|
470
|
+
const contextVars = new Map<string, unknown>()
|
|
471
|
+
const c = {
|
|
472
|
+
req: {
|
|
473
|
+
url: 'http://localhost:3000/test',
|
|
474
|
+
header: vi.fn().mockImplementation((name: string) => {
|
|
475
|
+
if (name === 'user-agent') return 'TestAgent/1.0'
|
|
476
|
+
return
|
|
477
|
+
}),
|
|
478
|
+
raw: {
|
|
479
|
+
headers: new Headers(),
|
|
480
|
+
},
|
|
481
|
+
},
|
|
482
|
+
env: { SESSIONS: mockKv },
|
|
483
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
484
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
485
|
+
header: vi.fn(),
|
|
486
|
+
}
|
|
487
|
+
|
|
488
|
+
c.req.raw.headers.set('Cookie', `sid=${sessionId}`)
|
|
489
|
+
|
|
490
|
+
// Clear put calls to track only sliding behavior
|
|
491
|
+
mockKv.put.mockClear()
|
|
492
|
+
|
|
493
|
+
const middleware = sessionMiddleware({ sliding: false })
|
|
494
|
+
await middleware(c as never, async () => {})
|
|
495
|
+
|
|
496
|
+
// Should NOT have called put again (no sliding expiration)
|
|
497
|
+
expect(mockKv.put).not.toHaveBeenCalled()
|
|
498
|
+
// But session should still be valid
|
|
499
|
+
expect(contextVars.get('sessionId')).toBe(sessionId)
|
|
500
|
+
})
|
|
501
|
+
|
|
502
|
+
it('should handle invalid JSON in session store gracefully', async () => {
|
|
503
|
+
const mockKv = createMockKV()
|
|
504
|
+
const sessionId = 'invalid-json-session'
|
|
505
|
+
// Store invalid JSON
|
|
506
|
+
await mockKv.put(`sid:${sessionId}`, 'not valid json {{{')
|
|
507
|
+
|
|
508
|
+
const contextVars = new Map<string, unknown>()
|
|
509
|
+
const c = {
|
|
510
|
+
req: {
|
|
511
|
+
url: 'http://localhost:3000/test',
|
|
512
|
+
header: vi.fn().mockReturnValue('TestAgent/1.0'),
|
|
513
|
+
raw: {
|
|
514
|
+
headers: new Headers(),
|
|
515
|
+
},
|
|
516
|
+
},
|
|
517
|
+
env: { SESSIONS: mockKv },
|
|
518
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
519
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
520
|
+
header: vi.fn(),
|
|
521
|
+
}
|
|
522
|
+
|
|
523
|
+
c.req.raw.headers.set('Cookie', `sid=${sessionId}`)
|
|
524
|
+
|
|
525
|
+
const middleware = sessionMiddleware()
|
|
526
|
+
// Should not throw
|
|
527
|
+
await middleware(c as never, async () => {})
|
|
528
|
+
|
|
529
|
+
// Session should NOT be populated due to invalid JSON
|
|
530
|
+
expect(contextVars.get('sessionId')).toBeUndefined()
|
|
531
|
+
expect(contextVars.get('sessionData')).toBeUndefined()
|
|
532
|
+
})
|
|
533
|
+
|
|
534
|
+
it('should handle missing SESSIONS store gracefully', async () => {
|
|
535
|
+
const contextVars = new Map<string, unknown>()
|
|
536
|
+
const c = {
|
|
537
|
+
req: {
|
|
538
|
+
url: 'http://localhost:3000/test',
|
|
539
|
+
header: vi.fn().mockReturnValue(),
|
|
540
|
+
raw: {
|
|
541
|
+
headers: new Headers(),
|
|
542
|
+
},
|
|
543
|
+
},
|
|
544
|
+
env: { SESSIONS: undefined }, // No store
|
|
545
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
546
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
547
|
+
header: vi.fn(),
|
|
548
|
+
}
|
|
549
|
+
|
|
550
|
+
c.req.raw.headers.set('Cookie', `sid=some-session-id`)
|
|
551
|
+
|
|
552
|
+
const middleware = sessionMiddleware()
|
|
553
|
+
// Should not throw
|
|
554
|
+
await middleware(c as never, async () => {})
|
|
555
|
+
|
|
556
|
+
// Session should NOT be populated
|
|
557
|
+
expect(contextVars.get('sessionId')).toBeUndefined()
|
|
558
|
+
})
|
|
559
|
+
})
|
|
560
|
+
|
|
561
|
+
describe('createSession edge cases', () => {
|
|
562
|
+
it('should handle missing SESSIONS store gracefully', async () => {
|
|
563
|
+
const contextVars = new Map<string, unknown>()
|
|
564
|
+
contextVars.set('sessionCookies', [])
|
|
565
|
+
|
|
566
|
+
const c = {
|
|
567
|
+
req: {
|
|
568
|
+
url: 'http://localhost:3000/test',
|
|
569
|
+
header: vi.fn().mockReturnValue('TestAgent/1.0'),
|
|
570
|
+
},
|
|
571
|
+
env: { SESSIONS: undefined }, // No store
|
|
572
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
573
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
574
|
+
header: vi.fn(),
|
|
575
|
+
}
|
|
576
|
+
|
|
577
|
+
const sessionData = {
|
|
578
|
+
userId: 'user-123',
|
|
579
|
+
email: 'test@example.com',
|
|
580
|
+
name: 'Test User',
|
|
581
|
+
isSuperAdmin: false,
|
|
582
|
+
}
|
|
583
|
+
|
|
584
|
+
// Should not throw even without store
|
|
585
|
+
const sid = await createSession(c as never, sessionData)
|
|
586
|
+
|
|
587
|
+
expect(sid).toBeDefined()
|
|
588
|
+
// Cookie should still be set
|
|
589
|
+
const cookieJar = contextVars.get('sessionCookies') as string[]
|
|
590
|
+
expect(cookieJar.length).toBeGreaterThan(0)
|
|
591
|
+
})
|
|
592
|
+
|
|
593
|
+
it('should use secure cookie name for HTTPS URLs', async () => {
|
|
594
|
+
const mockKv = createMockKV()
|
|
595
|
+
const contextVars = new Map<string, unknown>()
|
|
596
|
+
contextVars.set('sessionCookies', [])
|
|
597
|
+
|
|
598
|
+
const c = {
|
|
599
|
+
req: {
|
|
600
|
+
url: 'https://example.com/test', // HTTPS
|
|
601
|
+
header: vi.fn().mockReturnValue('TestAgent/1.0'),
|
|
602
|
+
},
|
|
603
|
+
env: { SESSIONS: mockKv },
|
|
604
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
605
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
606
|
+
header: vi.fn(),
|
|
607
|
+
}
|
|
608
|
+
|
|
609
|
+
const sessionData = {
|
|
610
|
+
userId: 'user-123',
|
|
611
|
+
email: 'test@example.com',
|
|
612
|
+
name: 'Test User',
|
|
613
|
+
isSuperAdmin: false,
|
|
614
|
+
}
|
|
615
|
+
|
|
616
|
+
await createSession(c as never, sessionData)
|
|
617
|
+
|
|
618
|
+
// Cookie should use __Host- prefix for secure
|
|
619
|
+
const cookieJar = contextVars.get('sessionCookies') as string[]
|
|
620
|
+
expect(cookieJar[0]).toContain('__Host-sid=')
|
|
621
|
+
expect(cookieJar[0]).toContain('Secure')
|
|
622
|
+
})
|
|
623
|
+
})
|
|
624
|
+
|
|
625
|
+
describe('destroySession edge cases', () => {
|
|
626
|
+
it('should handle missing session ID gracefully', async () => {
|
|
627
|
+
const mockKv = createMockKV()
|
|
628
|
+
const contextVars = new Map<string, unknown>()
|
|
629
|
+
contextVars.set('sessionCookies', [])
|
|
630
|
+
// No sessionId set
|
|
631
|
+
|
|
632
|
+
const c = {
|
|
633
|
+
req: {
|
|
634
|
+
url: 'http://localhost:3000/test',
|
|
635
|
+
header: vi.fn().mockReturnValue(),
|
|
636
|
+
raw: {
|
|
637
|
+
headers: new Headers(),
|
|
638
|
+
},
|
|
639
|
+
},
|
|
640
|
+
env: { SESSIONS: mockKv },
|
|
641
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
642
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
643
|
+
header: vi.fn(),
|
|
644
|
+
}
|
|
645
|
+
|
|
646
|
+
// Should not throw
|
|
647
|
+
await destroySession(c as never)
|
|
648
|
+
|
|
649
|
+
// Should still clear cookie even without session
|
|
650
|
+
const cookieJar = contextVars.get('sessionCookies') as string[]
|
|
651
|
+
expect(cookieJar.length).toBeGreaterThan(0)
|
|
652
|
+
expect(cookieJar[0]).toContain('Expires=')
|
|
653
|
+
})
|
|
654
|
+
|
|
655
|
+
it('should handle missing SESSIONS store gracefully', async () => {
|
|
656
|
+
const contextVars = new Map<string, unknown>()
|
|
657
|
+
contextVars.set('sessionId', 'some-session')
|
|
658
|
+
contextVars.set('sessionCookies', [])
|
|
659
|
+
|
|
660
|
+
const c = {
|
|
661
|
+
req: {
|
|
662
|
+
url: 'http://localhost:3000/test',
|
|
663
|
+
header: vi.fn().mockReturnValue(),
|
|
664
|
+
},
|
|
665
|
+
env: { SESSIONS: undefined }, // No store
|
|
666
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
667
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
668
|
+
header: vi.fn(),
|
|
669
|
+
}
|
|
670
|
+
|
|
671
|
+
// Should not throw
|
|
672
|
+
await destroySession(c as never)
|
|
673
|
+
|
|
674
|
+
// Should still set cleared session in context
|
|
675
|
+
const setCalls = c.set.mock.calls
|
|
676
|
+
const sessionIdCall = setCalls.find((call: unknown[]) => call[0] === 'sessionId' && call[1] === undefined)
|
|
677
|
+
expect(sessionIdCall).toBeDefined()
|
|
678
|
+
})
|
|
679
|
+
})
|
|
680
|
+
|
|
681
|
+
describe('fingerprint validation', () => {
|
|
682
|
+
it('should allow session when both fingerprints are undefined', async () => {
|
|
683
|
+
const mockKv = createMockKV()
|
|
684
|
+
const sessionId = 'no-fingerprint-session'
|
|
685
|
+
const sessionData: SessionData = {
|
|
686
|
+
userId: 'user-123',
|
|
687
|
+
email: 'test@example.com',
|
|
688
|
+
name: 'Test User',
|
|
689
|
+
isSuperAdmin: false,
|
|
690
|
+
// No fingerprint stored
|
|
691
|
+
}
|
|
692
|
+
await mockKv.put(`sid:${sessionId}`, JSON.stringify(sessionData))
|
|
693
|
+
|
|
694
|
+
const contextVars = new Map<string, unknown>()
|
|
695
|
+
const c = {
|
|
696
|
+
req: {
|
|
697
|
+
url: 'http://localhost:3000/test',
|
|
698
|
+
header: vi.fn().mockReturnValue(undefined), // No user-agent
|
|
699
|
+
raw: {
|
|
700
|
+
headers: new Headers(),
|
|
701
|
+
},
|
|
702
|
+
},
|
|
703
|
+
env: { SESSIONS: mockKv },
|
|
704
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
705
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
706
|
+
header: vi.fn(),
|
|
707
|
+
}
|
|
708
|
+
|
|
709
|
+
c.req.raw.headers.set('Cookie', `sid=${sessionId}`)
|
|
710
|
+
|
|
711
|
+
const middleware = sessionMiddleware()
|
|
712
|
+
await middleware(c as never, async () => {})
|
|
713
|
+
|
|
714
|
+
// Session should be valid
|
|
715
|
+
expect(contextVars.get('sessionId')).toBe(sessionId)
|
|
716
|
+
expect(contextVars.get('sessionData')).toEqual(sessionData)
|
|
717
|
+
})
|
|
718
|
+
|
|
719
|
+
it('should allow session when only stored fingerprint is undefined', async () => {
|
|
720
|
+
const mockKv = createMockKV()
|
|
721
|
+
const sessionId = 'stored-no-fingerprint'
|
|
722
|
+
const sessionData: SessionData = {
|
|
723
|
+
userId: 'user-123',
|
|
724
|
+
email: 'test@example.com',
|
|
725
|
+
name: 'Test User',
|
|
726
|
+
isSuperAdmin: false,
|
|
727
|
+
// No stored fingerprint
|
|
728
|
+
}
|
|
729
|
+
await mockKv.put(`sid:${sessionId}`, JSON.stringify(sessionData))
|
|
730
|
+
|
|
731
|
+
const contextVars = new Map<string, unknown>()
|
|
732
|
+
const c = {
|
|
733
|
+
req: {
|
|
734
|
+
url: 'http://localhost:3000/test',
|
|
735
|
+
header: vi.fn().mockImplementation((name: string) => {
|
|
736
|
+
if (name === 'user-agent') return 'SomeAgent/1.0'
|
|
737
|
+
return
|
|
738
|
+
}),
|
|
739
|
+
raw: {
|
|
740
|
+
headers: new Headers(),
|
|
741
|
+
},
|
|
742
|
+
},
|
|
743
|
+
env: { SESSIONS: mockKv },
|
|
744
|
+
get: vi.fn().mockImplementation((key: string) => contextVars.get(key)),
|
|
745
|
+
set: vi.fn().mockImplementation((key: string, value: unknown) => contextVars.set(key, value)),
|
|
746
|
+
header: vi.fn(),
|
|
747
|
+
}
|
|
748
|
+
|
|
749
|
+
c.req.raw.headers.set('Cookie', `sid=${sessionId}`)
|
|
750
|
+
|
|
751
|
+
const middleware = sessionMiddleware()
|
|
752
|
+
await middleware(c as never, async () => {})
|
|
753
|
+
|
|
754
|
+
// Session should be valid (stored fingerprint is undefined)
|
|
755
|
+
expect(contextVars.get('sessionId')).toBe(sessionId)
|
|
756
|
+
})
|
|
757
|
+
})
|
|
758
|
+
})
|