@facetlayer/prism-framework 0.4.0 → 0.4.1

package/dist/launch/launchConfig.d.ts

@@ -0,0 +1,18 @@
+import type { DatabaseInitializationOptions } from '../databases/DatabaseInitializationOptions.ts';
+import type { LoadDatabaseFn } from '@facetlayer/sqlite-wrapper';
+export interface LoggingSettings {
+    databaseFilename: string;
+    enableConsoleLogging: boolean;
+    loadDatabase: LoadDatabaseFn;
+}
+export interface LaunchConfig {
+    logging?: LoggingSettings;
+    database?: {
+        [databaseName: string]: DatabaseInitializationOptions;
+    };
+}
+export declare function getLaunchConfig(): LaunchConfig;
+export declare function setLaunchConfig(config: LaunchConfig): void;
+export declare function getDatabaseConfig(databaseName: string): DatabaseInitializationOptions;
+export declare function getLoggingConfig(): LoggingSettings;
+//# sourceMappingURL=launchConfig.d.ts.map

package/dist/launch/launchConfig.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"launchConfig.d.ts","sourceRoot":"","sources":["../../src/launch/launchConfig.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,6BAA6B,EAAE,MAAM,+CAA+C,CAAC;AACnG,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AASjE,MAAM,WAAW,eAAe;IAC9B,gBAAgB,EAAE,MAAM,CAAC;IACzB,oBAAoB,EAAE,OAAO,CAAC;IAC9B,YAAY,EAAE,cAAc,CAAC;CAC9B;AAED,MAAM,WAAW,YAAY;IAC3B,OAAO,CAAC,EAAE,eAAe,CAAC;IAC1B,QAAQ,CAAC,EAAE;QACT,CAAC,YAAY,EAAE,MAAM,GAAG,6BAA6B,CAAC;KACvD,CAAC;CACH;AAID,wBAAgB,eAAe,IAAI,YAAY,CAK9C;AAED,wBAAgB,eAAe,CAAC,MAAM,EAAE,YAAY,GAAG,IAAI,CAK1D;AAED,wBAAgB,iBAAiB,CAAC,YAAY,EAAE,MAAM,GAAG,6BAA6B,CAYrF;AAED,wBAAgB,gBAAgB,IAAI,eAAe,CAKlD"}

package/dist/logging/index.d.ts

@@ -0,0 +1,9 @@
+/**
+ * When enabled, logInfo writes to stderr instead of stdout.
+ * This is used in stdin protocol mode to avoid corrupting the JSON protocol on stdout.
+ */
+export declare function setLogStderr(enabled: boolean): void;
+export declare function logInfo(...args: any[]): void;
+export declare function logWarn(...args: any[]): void;
+export declare function logError(...args: any[]): void;
+//# sourceMappingURL=index.d.ts.map

package/dist/logging/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/logging/index.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI,CAEnD;AAED,wBAAgB,OAAO,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,QAMrC;AAED,wBAAgB,OAAO,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,QAErC;AAED,wBAAgB,QAAQ,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,QAEtC"}

package/dist/sse/ConnectionManager.d.ts

@@ -0,0 +1,23 @@
+import type { SseResponse } from '../web/SseResponse.ts';
+interface SetupOptions {
+    managerName: string;
+    logDebug?: (message: string) => void;
+    logError?: (message: string, error?: any) => void;
+}
+interface Connection {
+    key: string;
+    sseResponse: SseResponse;
+    connectedAt: Date;
+}
+export declare class ConnectionManager<EventType extends object> {
+    private connections;
+    private managerName;
+    private logDebug;
+    private logError;
+    constructor(options: SetupOptions);
+    addConnection(key: string, sseResponse: SseResponse): void;
+    getConnections(key: string): Connection[];
+    postEvent(key: string, event: EventType): Promise<void>;
+}
+export {};
+//# sourceMappingURL=ConnectionManager.d.ts.map

package/dist/sse/ConnectionManager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ConnectionManager.d.ts","sourceRoot":"","sources":["../../src/sse/ConnectionManager.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AAEzD,UAAU,YAAY;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,KAAK,IAAI,CAAC;IACrC,QAAQ,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,GAAG,KAAK,IAAI,CAAC;CACnD;AAED,UAAU,UAAU;IAClB,GAAG,EAAE,MAAM,CAAC;IACZ,WAAW,EAAE,WAAW,CAAC;IACzB,WAAW,EAAE,IAAI,CAAC;CACnB;AAWD,qBAAa,iBAAiB,CAAC,SAAS,SAAS,MAAM;IACrD,OAAO,CAAC,WAAW,CAAwC;IAC3D,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,QAAQ,CAA4B;IAC5C,OAAO,CAAC,QAAQ,CAAyC;gBAE7C,OAAO,EAAE,YAAY;IAMjC,aAAa,CAAC,GAAG,EAAE,MAAM,EAAE,WAAW,EAAE,WAAW,GAAG,IAAI;IA0B1D,cAAc,CAAC,GAAG,EAAE,MAAM,GAAG,UAAU,EAAE;IAInC,SAAS,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC;CAa9D"}

package/dist/stdin/StdinServer.d.ts

@@ -0,0 +1,38 @@
+import { PrismApp } from '../app/PrismApp.ts';
+/**
+ * JSON message sent from the parent process to the stdin server.
+ */
+export interface StdinRequest {
+    /** Unique request ID for correlating responses. */
+    id: string;
+    /** HTTP method (GET, POST, PUT, DELETE, PATCH). */
+    method: string;
+    /** Endpoint path, e.g. "/users" or "/users/123". */
+    path: string;
+    /** Request body / input data. */
+    body?: any;
+}
+/**
+ * JSON message sent back from the stdin server to the parent process.
+ */
+export interface StdinResponse {
+    /** Matches the request ID. */
+    id: string;
+    /** HTTP-style status code. */
+    status: number;
+    /** Response body. */
+    body: any;
+}
+export interface StdinServerConfig {
+    app: PrismApp;
+}
+/**
+ * Start processing requests from stdin and writing responses to stdout.
+ *
+ * Each line on stdin must be a JSON-encoded StdinRequest.
+ * Each response is a JSON-encoded StdinResponse written as a single line to stdout.
+ *
+ * When stdin closes, the process exits.
+ */
+export declare function startStdinServer(config: StdinServerConfig): void;
+//# sourceMappingURL=StdinServer.d.ts.map

package/dist/stdin/StdinServer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"StdinServer.d.ts","sourceRoot":"","sources":["../../src/stdin/StdinServer.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAK9C;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,mDAAmD;IACnD,EAAE,EAAE,MAAM,CAAC;IACX,mDAAmD;IACnD,MAAM,EAAE,MAAM,CAAC;IACf,oDAAoD;IACpD,IAAI,EAAE,MAAM,CAAC;IACb,iCAAiC;IACjC,IAAI,CAAC,EAAE,GAAG,CAAC;CACZ;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,8BAA8B;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,8BAA8B;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,qBAAqB;IACrB,IAAI,EAAE,GAAG,CAAC;CACX;AAED,MAAM,WAAW,iBAAiB;IAChC,GAAG,EAAE,QAAQ,CAAC;CACf;AAED;;;;;;;GAOG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,iBAAiB,GAAG,IAAI,CAoFhE"}

package/dist/web/EndpointListing.d.ts

@@ -0,0 +1,3 @@
+import { type EndpointDefinition } from './ExpressEndpointSetup.ts';
+export declare function createListingEndpoints(endpoints: EndpointDefinition[]): EndpointDefinition[];
+//# sourceMappingURL=EndpointListing.d.ts.map

package/dist/web/EndpointListing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"EndpointListing.d.ts","sourceRoot":"","sources":["../../src/web/EndpointListing.ts"],"names":[],"mappings":"AAAA,OAAO,EAAkB,KAAK,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAKpF,wBAAgB,sBAAsB,CAAC,SAAS,EAAE,kBAAkB,EAAE,wBA+DrE"}

package/dist/web/ExpressAppSetup.d.ts

@@ -0,0 +1,18 @@
+import express from 'express';
+import type { Server } from 'http';
+import { PrismApp } from '../app/PrismApp.ts';
+import { type CorsConfig } from './corsMiddleware.ts';
+import { type OpenAPIConfig } from './openapi/OpenAPI.ts';
+import { type WebConfig } from './ViteIntegration.ts';
+export type { WebConfig } from './ViteIntegration.ts';
+export interface ServerSetupConfig {
+    port: number;
+    app: PrismApp;
+    openapiConfig?: OpenAPIConfig;
+    corsConfig?: CorsConfig;
+    /** Serve web files alongside the API. When provided, API endpoints are mounted at /api/. */
+    web?: WebConfig;
+}
+export declare function createExpressApp(config: ServerSetupConfig): express.Application;
+export declare function startServer(config: ServerSetupConfig): Promise<Server>;
+//# sourceMappingURL=ExpressAppSetup.d.ts.map

package/dist/web/ExpressAppSetup.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ExpressAppSetup.d.ts","sourceRoot":"","sources":["../../src/web/ExpressAppSetup.ts"],"names":[],"mappings":"AACA,OAAO,OAAO,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,MAAM,CAAC;AACnC,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAE9C,OAAO,EAAkB,KAAK,UAAU,EAAE,MAAM,qBAAqB,CAAC;AAItE,OAAO,EAAyB,KAAK,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAKjF,OAAO,EAAsB,KAAK,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAE1E,YAAY,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAEtD,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,QAAQ,CAAC;IACd,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,4FAA4F;IAC5F,GAAG,CAAC,EAAE,SAAS,CAAC;CACjB;AAED,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,iBAAiB,GAAG,OAAO,CAAC,WAAW,CAoE/E;AAED,wBAAsB,WAAW,CAAC,MAAM,EAAE,iBAAiB,GAAG,OAAO,CAAC,MAAM,CAAC,CA2B5E"}

package/dist/web/ExpressEndpointSetup.d.ts

@@ -0,0 +1,31 @@
+import express, { type NextFunction, type Request, type Response } from 'express';
+import { z } from 'zod';
+import { PrismApp } from '../app/PrismApp.ts';
+export { createEndpoint } from '../endpoints/createEndpoint.ts';
+type EndpointRequireOption = 'authenticated-user';
+export interface EndpointDefinition {
+    method: 'GET' | 'POST' | 'PUT' | 'DELETE' | 'PATCH';
+    path: string;
+    handler: (input: any) => Promise<any> | any;
+    requestSchema?: z.ZodSchema;
+    responseSchema?: z.ZodSchema;
+    description?: string;
+    requires?: EndpointRequireOption[];
+    /**
+     * Unique identifier for this endpoint in the OpenAPI schema.
+     * If not provided, one will be generated from the method and path.
+     * Must be unique across all endpoints in the app.
+     */
+    operationId?: string;
+}
+export declare function getRequestDataFromReq(req: Request): any;
+export declare function mountPrismApp(app: express.Application | express.Router, prismApp: PrismApp): void;
+export declare function mountMiddleware(app: express.Application, middleware: {
+    path: string;
+    handler: (req: Request, res: Response, next: NextFunction) => void;
+}): void;
+export declare function mountMiddlewares(app: express.Application, middlewares: {
+    path: string;
+    handler: (req: Request, res: Response, next: NextFunction) => void;
+}[]): void;
+//# sourceMappingURL=ExpressEndpointSetup.d.ts.map

package/dist/web/ExpressEndpointSetup.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ExpressEndpointSetup.d.ts","sourceRoot":"","sources":["../../src/web/ExpressEndpointSetup.ts"],"names":[],"mappings":"AAAA,OAAO,OAAO,EAAE,EAAE,KAAK,YAAY,EAAE,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,SAAS,CAAC;AAClF,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAKxB,OAAO,EAAE,QAAQ,EAAe,MAAM,oBAAoB,CAAC;AAG3D,OAAO,EAAE,cAAc,EAAE,MAAM,gCAAgC,CAAC;AAEhE,KAAK,qBAAqB,GAAG,oBAAoB,CAAC;AAElD,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,OAAO,CAAC;IACpD,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,CAAC,KAAK,EAAE,GAAG,KAAK,OAAO,CAAC,GAAG,CAAC,GAAG,GAAG,CAAC;IAC5C,aAAa,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC;IAC5B,cAAc,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,qBAAqB,EAAE,CAAC;IACnC;;;;OAIG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,wBAAgB,qBAAqB,CAAC,GAAG,EAAE,OAAO,GAAG,GAAG,CAgBvD;AAiFD,wBAAgB,aAAa,CAC3B,GAAG,EAAE,OAAO,CAAC,WAAW,GAAG,OAAO,CAAC,MAAM,EACzC,QAAQ,EAAE,QAAQ,GACjB,IAAI,CA2BN;AAED,wBAAgB,eAAe,CAC7B,GAAG,EAAE,OAAO,CAAC,WAAW,EACxB,UAAU,EAAE;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,KAAK,IAAI,CAAA;CAAE,GAC/F,IAAI,CAEN;AAED,wBAAgB,gBAAgB,CAC9B,GAAG,EAAE,OAAO,CAAC,WAAW,EACxB,WAAW,EAAE;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,KAAK,IAAI,CAAC;CACpE,EAAE,GACF,IAAI,CAEN"}

package/dist/web/SseResponse.d.ts

@@ -0,0 +1,15 @@
+import type { Response } from 'express';
+export declare class SseResponse {
+    response: Response;
+    private isResponseOpen;
+    private _onClose;
+    constructor(response: Response);
+    private setupSseHeaders;
+    private setupCloseHandlers;
+    send(data: object): void;
+    isOpen(): boolean;
+    close(): void;
+    _triggerOnClose(): void;
+    onClose(callback: () => void): void;
+}
+//# sourceMappingURL=SseResponse.d.ts.map

package/dist/web/SseResponse.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SseResponse.d.ts","sourceRoot":"","sources":["../../src/web/SseResponse.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAQxC,qBAAa,WAAW;IACf,QAAQ,EAAE,QAAQ,CAAC;IAC1B,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,QAAQ,CAAa;gBAEjB,QAAQ,EAAE,QAAQ;IAM9B,OAAO,CAAC,eAAe;IAQvB,OAAO,CAAC,kBAAkB;IAU1B,IAAI,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI;IASxB,MAAM,IAAI,OAAO;IAKjB,KAAK,IAAI,IAAI;IAWb,eAAe,IAAI,IAAI;IASvB,OAAO,CAAC,QAAQ,EAAE,MAAM,IAAI,GAAG,IAAI;CAMpC"}

package/dist/web/ViteIntegration.d.ts

@@ -0,0 +1,19 @@
+import express from 'express';
+export interface WebConfig {
+    /** Directory containing web files (index.html, etc.). In production, serves from dir/dist if it exists. */
+    dir: string;
+}
+/**
+ * Sets up web file serving on the Express app. This should be called AFTER
+ * API routes are mounted so that /api/* takes priority.
+ *
+ * In development (NODE_ENV !== 'production'):
+ *   - Tries to use Vite dev server in middleware mode
+ *   - Falls back to express.static if Vite is not installed
+ *
+ * In production:
+ *   - Serves static files from dir/dist (or dir if dist doesn't exist)
+ *   - SPA fallback: unmatched GET requests serve index.html
+ */
+export declare function setupWebMiddleware(expressApp: express.Application, webConfig: WebConfig): Promise<void>;
+//# sourceMappingURL=ViteIntegration.d.ts.map

package/dist/web/ViteIntegration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ViteIntegration.d.ts","sourceRoot":"","sources":["../../src/web/ViteIntegration.ts"],"names":[],"mappings":"AAQA,OAAO,OAAO,MAAM,SAAS,CAAC;AAK9B,MAAM,WAAW,SAAS;IACxB,2GAA2G;IAC3G,GAAG,EAAE,MAAM,CAAC;CACb;AAED;;;;;;;;;;;GAWG;AACH,wBAAsB,kBAAkB,CACtC,UAAU,EAAE,OAAO,CAAC,WAAW,EAC/B,SAAS,EAAE,SAAS,GACnB,OAAO,CAAC,IAAI,CAAC,CAsCf"}

package/dist/web/corsMiddleware.d.ts

@@ -0,0 +1,14 @@
+import express from 'express';
+export interface CorsConfig {
+    /** Base URL for web application (e.g., 'example.com' or 'https://example.com') */
+    webBaseUrl?: string;
+    /** Allow any localhost origin (http://localhost:*) for local development */
+    allowLocalhost?: boolean;
+    /**
+     * @deprecated Use `allowLocalhost` instead. This field controls both test endpoints and localhost CORS.
+     * When `allowLocalhost` is set, it takes precedence for CORS behavior.
+     */
+    enableTestEndpoints?: boolean;
+}
+export declare function corsMiddleware(config?: CorsConfig): (req: express.Request, res: express.Response, next: express.NextFunction) => void;
+//# sourceMappingURL=corsMiddleware.d.ts.map

package/dist/web/corsMiddleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"corsMiddleware.d.ts","sourceRoot":"","sources":["../../src/web/corsMiddleware.ts"],"names":[],"mappings":"AAAA,OAAO,OAAO,MAAM,SAAS,CAAC;AAE9B,MAAM,WAAW,UAAU;IACzB,kFAAkF;IAClF,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,4EAA4E;IAC5E,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB;;;OAGG;IACH,mBAAmB,CAAC,EAAE,OAAO,CAAC;CAC/B;AA+BD,wBAAgB,cAAc,CAAC,MAAM,GAAE,UAAe,SACvC,OAAO,CAAC,OAAO,OAAO,OAAO,CAAC,QAAQ,QAAQ,OAAO,CAAC,YAAY,UAkBhF"}

package/dist/web/localhostOnlyMiddleware.d.ts

@@ -0,0 +1,3 @@
+import type { NextFunction, Request, Response } from 'express';
+export declare function localhostOnlyMiddleware(req: Request, res: Response, next: NextFunction): Response<any, Record<string, any>>;
+//# sourceMappingURL=localhostOnlyMiddleware.d.ts.map

package/dist/web/localhostOnlyMiddleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"localhostOnlyMiddleware.d.ts","sourceRoot":"","sources":["../../src/web/localhostOnlyMiddleware.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAQ/D,wBAAgB,uBAAuB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,sCAUtF"}

package/dist/web/openapi/OpenAPI.d.ts

@@ -0,0 +1,37 @@
+import type { OpenAPIObject } from 'openapi3-ts/oas31';
+import type { ServiceDefinition } from '../../ServiceDefinition.ts';
+import { PrismApp } from '../../app/PrismApp.ts';
+import express from 'express';
+export { validateServicesForOpenapi as validateEndpointForOpenapi } from './validateServicesForOpenapi.ts';
+export interface OpenAPIConfig {
+    enable: boolean;
+    enableSwagger?: boolean;
+}
+export type ParseExpressPathForOpenAPIResult = {
+    openApiPath: string;
+    pathParams: string[];
+};
+export interface OpenAPIDocumentInfo {
+    version: string;
+    title: string;
+    description: string;
+}
+/**
+ * Transforms path parameters in an Express-style URL path (e.g. :pathParameter) into their OpenAPI equivalents (e.g. {pathParameter})
+ * Returns the transformed OpenAPI-style URL path along with any path parameters found.
+ *
+ * @param {string} expressApiPath - An Express-style URL path
+ * @returns {ParseExpressPathForOpenAPIResult} - the transformed OpenAPI-style URL path with any path parameters found
+ */
+export declare function parseExpressPathForOpenAPI(expressApiPath: string): ParseExpressPathForOpenAPIResult;
+/**
+ * Generates the Open API Schema for all services.
+ *
+ * @param {ServiceDefinition[]} services - Array of service definitions to generate OpenAPI schema for
+ * @param {OpenAPIDocumentInfo} documentInfo - Metadata for the OpenAPI document
+ * @returns {OpenAPIObject} - the Open API schema for all service definitions.
+ */
+export declare function generateOpenAPISchema(services: ServiceDefinition[], documentInfo: OpenAPIDocumentInfo): OpenAPIObject;
+export declare function setupSwaggerUI(app: express.Application | express.Router, openApiJsonPath?: string): void;
+export declare function mountOpenAPIEndpoints(config: OpenAPIConfig, target: express.Application | express.Router, prismApp: PrismApp): void;
+//# sourceMappingURL=OpenAPI.d.ts.map

package/dist/web/openapi/OpenAPI.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OpenAPI.d.ts","sourceRoot":"","sources":["../../../src/web/openapi/OpenAPI.ts"],"names":[],"mappings":"AAcA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAEvD,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAC;AACpE,OAAO,EAAE,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AACjD,OAAO,OAAwC,MAAM,SAAS,CAAC;AAK/D,OAAO,EAAE,0BAA0B,IAAI,0BAA0B,EAAE,MAAM,iCAAiC,CAAC;AAI3G,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,OAAO,CAAA;IACf,aAAa,CAAC,EAAE,OAAO,CAAA;CACxB;AAED,MAAM,MAAM,gCAAgC,GAAG;IAC7C,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,EAAE,CAAC;CACtB,CAAC;AAEF,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;CACrB;AAKD;;;;;;GAMG;AACH,wBAAgB,0BAA0B,CAAC,cAAc,EAAE,MAAM,GAAG,gCAAgC,CAkBnG;AAED;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CACnC,QAAQ,EAAE,iBAAiB,EAAE,EAC7B,YAAY,EAAE,mBAAmB,GAChC,aAAa,CA0Hf;AAED,wBAAgB,cAAc,CAAC,GAAG,EAAE,OAAO,CAAC,WAAW,GAAG,OAAO,CAAC,MAAM,EAAE,eAAe,GAAE,MAAwB,GAAG,IAAI,CAYzH;AAED,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,aAAa,EAAE,MAAM,EAAE,OAAO,CAAC,WAAW,GAAG,OAAO,CAAC,MAAM,EAAE,QAAQ,EAAE,QAAQ,GAAG,IAAI,CA0BnI"}

package/dist/web/openapi/validateServicesForOpenapi.d.ts

@@ -0,0 +1,32 @@
+import type { ServiceDefinition } from "../../ServiceDefinition.ts";
+import type { EndpointDefinition } from "../ExpressEndpointSetup.ts";
+import { type ErrorDetails } from "@facetlayer/streams";
+export interface EndpointValidationResult {
+    error: ErrorDetails;
+}
+export interface FailedEndpoint {
+    serviceName: string;
+    path: string;
+    method: string;
+    error: ErrorDetails;
+}
+export interface ServicesValidationResult {
+    problemEndpoints: FailedEndpoint[];
+}
+/**
+ * Validates a single endpoint for OpenAPI schema generation compatibility.
+ *
+ * @param serviceName - Name of the service containing the endpoint
+ * @param endpoint - The endpoint definition to validate
+ * @returns ProblematicEndpoint if validation fails, null if endpoint is valid
+ */
+export declare function validateEndpointForOpenapi(endpoint: EndpointDefinition): EndpointValidationResult;
+/**
+ * Finds endpoints that will fail OpenAPI schema generation.
+ * Tests each endpoint individually to identify which ones have unsupported Zod types.
+ *
+ * @param services - Array of service definitions to check
+ * @returns ValidationResult containing any problematic endpoints
+ */
+export declare function validateServicesForOpenapi(services: ServiceDefinition[]): ServicesValidationResult;
+//# sourceMappingURL=validateServicesForOpenapi.d.ts.map

package/dist/web/openapi/validateServicesForOpenapi.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validateServicesForOpenapi.d.ts","sourceRoot":"","sources":["../../../src/web/openapi/validateServicesForOpenapi.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,4BAA4B,CAAC;AACpE,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,4BAA4B,CAAC;AAErE,OAAO,EAAgB,KAAK,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEtE,MAAM,WAAW,wBAAwB;IACrC,KAAK,EAAE,YAAY,CAAA;CACtB;AAED,MAAM,WAAW,cAAc;IAC3B,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,YAAY,CAAC;CACvB;AAED,MAAM,WAAW,wBAAwB;IACrC,gBAAgB,EAAE,cAAc,EAAE,CAAC;CACtC;AAGD;;;;;;GAMG;AACH,wBAAgB,0BAA0B,CACxC,QAAQ,EAAE,kBAAkB,GAC3B,wBAAwB,CAgB1B;AAED;;;;;;GAMG;AACH,wBAAgB,0BAA0B,CAAC,QAAQ,EAAE,iBAAiB,EAAE,GAAG,wBAAwB,CAoBhG"}

package/dist/web/requestContextMiddleware.d.ts

@@ -0,0 +1,3 @@
+import type { NextFunction, Request, Response } from 'express';
+export declare function requestContextMiddleware(req: Request, res: Response, next: NextFunction): void;
+//# sourceMappingURL=requestContextMiddleware.d.ts.map

package/dist/web/requestContextMiddleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"requestContextMiddleware.d.ts","sourceRoot":"","sources":["../../src/web/requestContextMiddleware.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAM/D,wBAAgB,wBAAwB,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,GAAG,IAAI,CAiB9F"}

package/docs/authorization.md

@@ -0,0 +1,281 @@
+---
+name: authorization
+description: Authorization system with resources, auth sources, and permissions
+---
+
+# Authorization System
+
+Prism Framework includes a flexible authorization system based on resources, auth sources, and permissions.
+
+## Core Concepts
+
+### Resources
+
+Resources represent entities that can be accessed:
+
+```typescript
+interface Resource {
+  type: 'user' | 'project' | 'session' | 'custom';
+  id: string;
+}
+```
+
+### Auth Sources
+
+Auth sources represent how a user authenticated:
+
+```typescript
+interface AuthSource {
+  type: string;
+}
+
+interface CookieAuthSource extends AuthSource {
+  type: 'cookie';
+  sessionId: string;
+}
+```
+
+### Permissions
+
+Permissions are string-based capabilities:
+
+```typescript
+type Permission = string;
+
+interface UserPermissions {
+  userId: string;
+  permissions: Permission[];
+}
+```
+
+## Authorization Class
+
+The `Authorization` class manages resources, auth sources, and permissions:
+
+```typescript
+import { Authorization } from '@facetlayer/prism-framework';
+
+const auth = new Authorization();
+
+// Add resources
+auth.addResource({ type: 'user', id: '123' });
+auth.addResource({ type: 'project', id: 'abc' });
+
+// Check resources
+if (auth.hasResource('user')) {
+  const user = auth.getResource('user');
+  console.log(user.id); // '123'
+}
+
+// Add auth sources
+auth.addAuthSource({
+  type: 'cookie',
+  sessionId: 'session-xyz',
+});
+
+// Set permissions
+auth.setUserPermissions({
+  userId: '123',
+  permissions: ['read:projects', 'write:projects'],
+});
+
+// Check permissions
+if (auth.hasPermission('write:projects')) {
+  // User can write projects
+}
+```
+
+## Request Context Integration
+
+Every request has an `Authorization` instance in its context:
+
+```typescript
+import { getCurrentRequestContext } from '@facetlayer/prism-framework';
+
+// In endpoint handler
+const context = getCurrentRequestContext();
+const auth = context.auth;
+
+// Check if user is authenticated
+const user = auth.getResource('user');
+if (!user) {
+  throw new UnauthorizedError('Authentication required');
+}
+```
+
+## Middleware Example
+
+Create middleware to populate authorization:
+
+```typescript
+import { MiddlewareDefinition } from '@facetlayer/prism-framework';
+
+export const authMiddleware: MiddlewareDefinition = {
+  path: '/api/*',
+  handler: async (req, res, next) => {
+    const context = getCurrentRequestContext();
+
+    // Check for session cookie
+    const sessionId = req.cookies.sessionId;
+    if (sessionId) {
+      // Look up session
+      const session = await getSession(sessionId);
+      if (session) {
+        // Add auth source
+        context.auth.addAuthSource({
+          type: 'cookie',
+          sessionId,
+        });
+
+        // Add user resource
+        context.auth.addResource({
+          type: 'user',
+          id: session.userId,
+        });
+
+        // Load and set permissions
+        const permissions = await getUserPermissions(session.userId);
+        context.auth.setUserPermissions({
+          userId: session.userId,
+          permissions,
+        });
+      }
+    }
+
+    next();
+  },
+};
+```
+
+## Endpoint Requirements
+
+Use the `requires` array to enforce authentication:
+
+```typescript
+createEndpoint({
+  method: 'GET',
+  path: '/api/protected',
+  requires: ['authenticated-user'],
+  handler: async () => {
+    // This handler only runs if user is authenticated
+    const context = getCurrentRequestContext();
+    const user = context.auth.getResource('user');
+    return { userId: user.id };
+  },
+});
+```
+
+The `'authenticated-user'` requirement checks that a user resource exists in the authorization context.
+
+## Custom Authorization Checks
+
+Implement custom authorization logic in your handlers:
+
+```typescript
+import { ForbiddenError } from '@facetlayer/prism-framework';
+
+createEndpoint({
+  method: 'DELETE',
+  path: '/api/projects/:projectId',
+  requires: ['authenticated-user'],
+  handler: async (input) => {
+    const context = getCurrentRequestContext();
+
+    // Check permission
+    if (!context.auth.hasPermission('delete:projects')) {
+      throw new ForbiddenError('Insufficient permissions');
+    }
+
+    // Check project ownership
+    const project = await getProject(input.projectId);
+    const user = context.auth.getResource('user');
+
+    if (project.ownerId !== user.id) {
+      throw new ForbiddenError('Not the project owner');
+    }
+
+    await deleteProject(input.projectId);
+    return { success: true };
+  },
+});
+```
+
+## Permission Patterns
+
+Common permission naming patterns:
+
+```typescript
+// Resource:Action format
+'read:projects'
+'write:projects'
+'delete:projects'
+'admin:users'
+
+// Hierarchical permissions
+'projects:read'
+'projects:write'
+'projects:delete'
+
+// Role-based
+'role:admin'
+'role:editor'
+'role:viewer'
+```
+
+## Helper Functions
+
+Create helper functions for common authorization checks:
+
+```typescript
+import { getCurrentRequestContext, ForbiddenError } from '@facetlayer/prism-framework';
+
+export function requirePermission(permission: string) {
+  const context = getCurrentRequestContext();
+  if (!context?.auth.hasPermission(permission)) {
+    throw new ForbiddenError(`Missing permission: ${permission}`);
+  }
+}
+
+export function requireProjectAccess(projectId: string) {
+  const context = getCurrentRequestContext();
+  const user = context?.auth.getResource('user');
+  if (!user) {
+    throw new UnauthorizedError('Authentication required');
+  }
+
+  const project = getProject(projectId);
+  if (project.ownerId !== user.id) {
+    throw new ForbiddenError('Project access denied');
+  }
+}
+
+// Usage in handlers
+handler: async (input) => {
+  requirePermission('write:projects');
+  requireProjectAccess(input.projectId);
+
+  // Proceed with the operation
+  await updateProject(input.projectId, input.updates);
+  return { success: true };
+}
+```
+
+## Multi-Tenant Support
+
+Use resources to track tenant/organization context:
+
+```typescript
+// Add organization resource
+context.auth.addResource({
+  type: 'custom',
+  id: 'org:acme-corp',
+});
+
+// Check organization access
+const org = context.auth.getAllResources()
+  .find(r => r.id.startsWith('org:'));
+
+if (!org) {
+  throw new ForbiddenError('No organization context');
+}
+```