@flightdev/core 0.6.7

package/dist/chunk-OYF2OAKS.js

@@ -0,0 +1,394 @@
+// src/middleware/index.ts
+function createMiddlewareChain() {
+  const stack = [];
+  function use(pathOrMiddleware, maybeMiddleware) {
+    if (typeof pathOrMiddleware === "function") {
+      stack.push({ handler: pathOrMiddleware });
+    } else if (typeof pathOrMiddleware === "string" && maybeMiddleware) {
+      stack.push({ path: pathOrMiddleware, handler: maybeMiddleware });
+    } else if (typeof pathOrMiddleware === "object") {
+      stack.push(pathOrMiddleware);
+    }
+    return chain;
+  }
+  async function execute(ctx) {
+    let index = -1;
+    async function dispatch(i) {
+      if (i <= index) {
+        throw new Error("next() called multiple times");
+      }
+      index = i;
+      if (i >= stack.length) {
+        return;
+      }
+      const definition = stack[i];
+      if (!definition) {
+        return dispatch(i + 1);
+      }
+      if (!shouldRun(definition, ctx)) {
+        return dispatch(i + 1);
+      }
+      await definition.handler(ctx, () => dispatch(i + 1));
+    }
+    await dispatch(0);
+  }
+  const chain = {
+    use,
+    execute,
+    middlewares: () => [...stack]
+  };
+  return chain;
+}
+function shouldRun(def, ctx) {
+  if (def.methods && !def.methods.includes(ctx.method.toUpperCase())) {
+    return false;
+  }
+  if (def.path) {
+    const path = ctx.url.pathname;
+    if (typeof def.path === "string") {
+      if (def.path.endsWith("*")) {
+        const prefix = def.path.slice(0, -1);
+        if (!path.startsWith(prefix)) {
+          return false;
+        }
+      } else if (def.path !== path) {
+        return false;
+      }
+    } else if (def.path instanceof RegExp) {
+      if (!def.path.test(path)) {
+        return false;
+      }
+    }
+  }
+  return true;
+}
+function cors(options = {}) {
+  const {
+    origin = "*",
+    methods = ["GET", "POST", "PUT", "DELETE", "PATCH", "OPTIONS"],
+    headers = ["Content-Type", "Authorization"],
+    credentials = false,
+    maxAge = 86400,
+    exposeHeaders = []
+  } = options;
+  const isDynamicOrigin = typeof origin === "function" || Array.isArray(origin);
+  return async (ctx, next) => {
+    const requestOrigin = ctx.headers.get("Origin") || "";
+    if (isDynamicOrigin) {
+      const existingVary = ctx.responseHeaders.get("Vary");
+      if (existingVary) {
+        if (!existingVary.includes("Origin")) {
+          ctx.responseHeaders.set("Vary", `${existingVary}, Origin`);
+        }
+      } else {
+        ctx.responseHeaders.set("Vary", "Origin");
+      }
+    }
+    let allowedOrigin = null;
+    if (origin === "*") {
+      allowedOrigin = "*";
+    } else if (typeof origin === "string") {
+      allowedOrigin = origin;
+    } else if (Array.isArray(origin)) {
+      if (origin.includes(requestOrigin)) {
+        allowedOrigin = requestOrigin;
+      }
+    } else if (typeof origin === "function") {
+      const isAllowed = await origin(requestOrigin);
+      if (isAllowed) {
+        allowedOrigin = requestOrigin;
+      }
+    }
+    if (allowedOrigin) {
+      ctx.responseHeaders.set("Access-Control-Allow-Origin", allowedOrigin);
+      ctx.responseHeaders.set("Access-Control-Allow-Methods", methods.join(", "));
+      ctx.responseHeaders.set("Access-Control-Allow-Headers", headers.join(", "));
+      if (credentials) {
+        ctx.responseHeaders.set("Access-Control-Allow-Credentials", "true");
+      }
+      if (maxAge) {
+        ctx.responseHeaders.set("Access-Control-Max-Age", String(maxAge));
+      }
+      if (exposeHeaders.length > 0) {
+        ctx.responseHeaders.set("Access-Control-Expose-Headers", exposeHeaders.join(", "));
+      }
+    }
+    if (ctx.method === "OPTIONS") {
+      ctx.status = 204;
+      ctx.responseBody = null;
+      return;
+    }
+    await next();
+  };
+}
+var LOG_LEVEL_PRIORITY = {
+  debug: 0,
+  info: 1,
+  warn: 2,
+  error: 3,
+  silent: 4
+};
+var LOG_LEVEL_COLORS = {
+  debug: "\x1B[36m",
+  // Cyan
+  info: "\x1B[32m",
+  // Green
+  warn: "\x1B[33m",
+  // Yellow
+  error: "\x1B[31m",
+  // Red
+  silent: ""
+};
+var STATUS_COLORS = {
+  "2": "\x1B[32m",
+  // Green for 2xx
+  "3": "\x1B[36m",
+  // Cyan for 3xx
+  "4": "\x1B[33m",
+  // Yellow for 4xx
+  "5": "\x1B[31m"
+  // Red for 5xx
+};
+var RESET = "\x1B[0m";
+var DIM = "\x1B[2m";
+function logger(options = {}) {
+  const {
+    level = "info",
+    format = "pretty",
+    skip,
+    writer,
+    includeHeaders = false,
+    colorize = true
+  } = options;
+  const outputLog = (ctx, logLevel, startTime, duration, error) => {
+    const status = error ? 500 : ctx.status;
+    const userAgent = ctx.headers.get("user-agent");
+    const forwardedFor = ctx.headers.get("x-forwarded-for");
+    const ip = forwardedFor || "unknown";
+    const entry = {
+      timestamp: startTime,
+      level: logLevel,
+      method: ctx.method,
+      path: ctx.url.pathname,
+      status,
+      duration
+    };
+    if (userAgent) entry.userAgent = userAgent;
+    entry.ip = ip;
+    if (error) {
+      entry.error = error.message;
+      entry.stack = error.stack;
+    }
+    if (includeHeaders) {
+      const headers = {};
+      ctx.headers.forEach((value, key) => {
+        if (!key.toLowerCase().includes("authorization")) {
+          headers[key] = value;
+        }
+      });
+      entry.headers = headers;
+    }
+    let formatted;
+    switch (format) {
+      case "json":
+        formatted = JSON.stringify(entry);
+        break;
+      case "combined":
+        formatted = `${ip} - - [${startTime}] "${ctx.method} ${ctx.url.pathname}" ${status} - "${userAgent || "-"}"`;
+        break;
+      case "common":
+        formatted = `${ip} - - [${startTime}] "${ctx.method} ${ctx.url.pathname}" ${status}`;
+        break;
+      case "short":
+        formatted = `${ctx.method} ${ctx.url.pathname} ${status} ${duration}ms`;
+        break;
+      case "tiny":
+        formatted = `${ctx.method} ${ctx.url.pathname} ${status}`;
+        break;
+      case "pretty":
+      default:
+        if (colorize) {
+          const statusFirstChar = String(status).charAt(0) || "2";
+          const statusColor = STATUS_COLORS[statusFirstChar] ?? "";
+          const levelColor = LOG_LEVEL_COLORS[logLevel];
+          const errorSuffix = error ? ` ${LOG_LEVEL_COLORS.error}[${error.message}]${RESET}` : "";
+          formatted = `${DIM}${startTime}${RESET} ${levelColor}${logLevel.toUpperCase().padEnd(5)}${RESET} ${ctx.method.padEnd(7)} ${ctx.url.pathname} ${statusColor}${status}${RESET} ${DIM}${duration}ms${RESET}${errorSuffix}`;
+        } else {
+          const errorSuffix = error ? ` [${error.message}]` : "";
+          formatted = `${startTime} ${logLevel.toUpperCase().padEnd(5)} ${ctx.method.padEnd(7)} ${ctx.url.pathname} ${status} ${duration}ms${errorSuffix}`;
+        }
+        break;
+    }
+    if (writer) {
+      writer(entry, formatted);
+    } else {
+      switch (logLevel) {
+        case "error":
+          console.error(formatted);
+          break;
+        case "warn":
+          console.warn(formatted);
+          break;
+        case "debug":
+          console.debug(formatted);
+          break;
+        default:
+          console.log(formatted);
+      }
+    }
+  };
+  return async (ctx, next) => {
+    if (skip?.(ctx)) {
+      return next();
+    }
+    const start = Date.now();
+    const startTime = (/* @__PURE__ */ new Date()).toISOString();
+    try {
+      await next();
+      const duration = Date.now() - start;
+      const status = ctx.status;
+      let logLevel = "info";
+      if (status >= 500) {
+        logLevel = "error";
+      } else if (status >= 400) {
+        logLevel = "warn";
+      } else if (status >= 300) {
+        logLevel = "info";
+      } else {
+        logLevel = "debug";
+      }
+      if (LOG_LEVEL_PRIORITY[logLevel] >= LOG_LEVEL_PRIORITY[level]) {
+        outputLog(ctx, logLevel, startTime, duration);
+      }
+    } catch (error) {
+      const duration = Date.now() - start;
+      if (LOG_LEVEL_PRIORITY.error >= LOG_LEVEL_PRIORITY[level]) {
+        outputLog(ctx, "error", startTime, duration, error);
+      }
+      throw error;
+    }
+  };
+}
+function securityHeaders(options = {}) {
+  const {
+    contentSecurityPolicy = "default-src 'self'",
+    xFrameOptions = "DENY",
+    xContentTypeOptions = true,
+    referrerPolicy = "strict-origin-when-cross-origin",
+    permissionsPolicy
+  } = options;
+  return async (ctx, next) => {
+    if (contentSecurityPolicy) {
+      ctx.responseHeaders.set("Content-Security-Policy", contentSecurityPolicy);
+    }
+    if (xFrameOptions) {
+      ctx.responseHeaders.set("X-Frame-Options", xFrameOptions);
+    }
+    if (xContentTypeOptions) {
+      ctx.responseHeaders.set("X-Content-Type-Options", "nosniff");
+    }
+    if (referrerPolicy) {
+      ctx.responseHeaders.set("Referrer-Policy", referrerPolicy);
+    }
+    if (permissionsPolicy) {
+      ctx.responseHeaders.set("Permissions-Policy", permissionsPolicy);
+    }
+    await next();
+  };
+}
+function compress() {
+  return async (ctx, next) => {
+    ctx.locals["flight:compress"] = true;
+    await next();
+  };
+}
+function errorHandler(options = {}) {
+  const {
+    onError,
+    expose = false,
+    defaultStatus = 500,
+    emit
+  } = options;
+  return async (ctx, next) => {
+    try {
+      await next();
+    } catch (err) {
+      const error = err instanceof Error ? err : new Error(String(err));
+      const status = error.status ?? error.statusCode ?? defaultStatus;
+      const code = error.code;
+      const timestamp = (/* @__PURE__ */ new Date()).toISOString();
+      const errorInfo = {
+        error,
+        status,
+        code,
+        ctx,
+        timestamp
+      };
+      if (emit) {
+        try {
+          emit(error, ctx);
+        } catch {
+        }
+      }
+      if (onError) {
+        await onError(errorInfo);
+      } else {
+        ctx.status = status;
+        ctx.responseHeaders.set("Content-Type", "application/json");
+        const body = expose ? {
+          error: error.message,
+          code,
+          status,
+          timestamp,
+          stack: error.stack
+        } : {
+          error: status >= 500 ? "Internal Server Error" : error.message,
+          code,
+          status,
+          timestamp
+        };
+        ctx.responseBody = JSON.stringify(body);
+      }
+    }
+  };
+}
+function createContextFromRequest(request, params = {}) {
+  const url = new URL(request.url);
+  return {
+    url,
+    method: request.method,
+    headers: request.headers,
+    params,
+    query: url.searchParams,
+    locals: {},
+    request,
+    status: 200,
+    responseHeaders: new Headers()
+  };
+}
+function createResponseFromContext(ctx) {
+  return new Response(ctx.responseBody, {
+    status: ctx.status,
+    headers: ctx.responseHeaders
+  });
+}
+function compose(...middlewares) {
+  return async (ctx, next) => {
+    let index = -1;
+    async function dispatch(i) {
+      if (i <= index) {
+        throw new Error("next() called multiple times");
+      }
+      index = i;
+      const fn = i === middlewares.length ? next : middlewares[i];
+      if (fn) {
+        await fn(ctx, () => dispatch(i + 1));
+      }
+    }
+    await dispatch(0);
+  };
+}
+
+export { compose, compress, cors, createContextFromRequest, createMiddlewareChain, createResponseFromContext, errorHandler, logger, securityHeaders };
+//# sourceMappingURL=chunk-OYF2OAKS.js.map
+//# sourceMappingURL=chunk-OYF2OAKS.js.map

package/dist/chunk-OYF2OAKS.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/middleware/index.ts"],"names":[],"mappings":";AAiHO,SAAS,qBAAA,GAAyC;AACrD,EAAA,MAAM,QAAgC,EAAC;AAEvC,EAAA,SAAS,GAAA,CACL,kBACA,eAAA,EACe;AACf,IAAA,IAAI,OAAO,qBAAqB,UAAA,EAAY;AAExC,MAAA,KAAA,CAAM,IAAA,CAAK,EAAE,OAAA,EAAS,gBAAA,EAAkB,CAAA;AAAA,IAC5C,CAAA,MAAA,IAAW,OAAO,gBAAA,KAAqB,QAAA,IAAY,eAAA,EAAiB;AAEhE,MAAA,KAAA,CAAM,KAAK,EAAE,IAAA,EAAM,gBAAA,EAAkB,OAAA,EAAS,iBAAiB,CAAA;AAAA,IACnE,CAAA,MAAA,IAAW,OAAO,gBAAA,KAAqB,QAAA,EAAU;AAE7C,MAAA,KAAA,CAAM,KAAK,gBAAgB,CAAA;AAAA,IAC/B;AACA,IAAA,OAAO,KAAA;AAAA,EACX;AAEA,EAAA,eAAe,QAAQ,GAAA,EAAuC;AAC1D,IAAA,IAAI,KAAA,GAAQ,EAAA;AAEZ,IAAA,eAAe,SAAS,CAAA,EAA0B;AAC9C,MAAA,IAAI,KAAK,KAAA,EAAO;AACZ,QAAA,MAAM,IAAI,MAAM,8BAA8B,CAAA;AAAA,MAClD;AACA,MAAA,KAAA,GAAQ,CAAA;AAER,MAAA,IAAI,CAAA,IAAK,MAAM,MAAA,EAAQ;AACnB,QAAA;AAAA,MACJ;AAEA,MAAA,MAAM,UAAA,GAAa,MAAM,CAAC,CAAA;AAC1B,MAAA,IAAI,CAAC,UAAA,EAAY;AACb,QAAA,OAAO,QAAA,CAAS,IAAI,CAAC,CAAA;AAAA,MACzB;AAGA,MAAA,IAAI,CAAC,SAAA,CAAU,UAAA,EAAY,GAAG,CAAA,EAAG;AAC7B,QAAA,OAAO,QAAA,CAAS,IAAI,CAAC,CAAA;AAAA,MACzB;AAEA,MAAA,MAAM,WAAW,OAAA,CAAQ,GAAA,EAAK,MAAM,QAAA,CAAS,CAAA,GAAI,CAAC,CAAC,CAAA;AAAA,IACvD;AAEA,IAAA,MAAM,SAAS,CAAC,CAAA;AAAA,EACpB;AAEA,EAAA,MAAM,KAAA,GAAyB;AAAA,IAC3B,GAAA;AAAA,IACA,OAAA;AAAA,IACA,WAAA,EAAa,MAAM,CAAC,GAAG,KAAK;AAAA,GAChC;AAEA,EAAA,OAAO,KAAA;AACX;AAKA,SAAS,SAAA,CAAU,KAA2B,GAAA,EAAiC;AAE3E,EAAA,IAAI,GAAA,CAAI,OAAA,IAAW,CAAC,GAAA,CAAI,OAAA,CAAQ,SAAS,GAAA,CAAI,MAAA,CAAO,WAAA,EAAa,CAAA,EAAG;AAChE,IAAA,OAAO,KAAA;AAAA,EACX;AAGA,EAAA,IAAI,IAAI,IAAA,EAAM;AACV,IAAA,MAAM,IAAA,GAAO,IAAI,GAAA,CAAI,QAAA;AAErB,IAAA,IAAI,OAAO,GAAA,CAAI,IAAA,KAAS,QAAA,EAAU;AAE9B,MAAA,IAAI,GAAA,CAAI,IAAA,CAAK,QAAA,CAAS,GAAG,CAAA,EAAG;AACxB,QAAA,MAAM,MAAA,GAAS,GAAA,CAAI,IAAA,CAAK,KAAA,CAAM,GAAG,EAAE,CAAA;AACnC,QAAA,IAAI,CAAC,IAAA,CAAK,UAAA,CAAW,MAAM,CAAA,EAAG;AAC1B,UAAA,OAAO,KAAA;AAAA,QACX;AAAA,MACJ,CAAA,MAAA,IAAW,GAAA,CAAI,IAAA,KAAS,IAAA,EAAM;AAC1B,QAAA,OAAO,KAAA;AAAA,MACX;AAAA,IACJ,CAAA,MAAA,IAAW,GAAA,CAAI,IAAA,YAAgB,MAAA,EAAQ;AACnC,MAAA,IAAI,CAAC,GAAA,CAAI,IAAA,CAAK,IAAA,CAAK,IAAI,CAAA,EAAG;AACtB,QAAA,OAAO,KAAA;AAAA,MACX;AAAA,IACJ;AAAA,EACJ;AAEA,EAAA,OAAO,IAAA;AACX;AAuDO,SAAS,IAAA,CAAK,OAAA,GAAuB,EAAC,EAAe;AACxD,EAAA,MAAM;AAAA,IACF,MAAA,GAAS,GAAA;AAAA,IACT,UAAU,CAAC,KAAA,EAAO,QAAQ,KAAA,EAAO,QAAA,EAAU,SAAS,SAAS,CAAA;AAAA,IAC7D,OAAA,GAAU,CAAC,cAAA,EAAgB,eAAe,CAAA;AAAA,IAC1C,WAAA,GAAc,KAAA;AAAA,IACd,MAAA,GAAS,KAAA;AAAA,IACT,gBAAgB;AAAC,GACrB,GAAI,OAAA;AAGJ,EAAA,MAAM,kBAAkB,OAAO,MAAA,KAAW,UAAA,IAAc,KAAA,CAAM,QAAQ,MAAM,CAAA;AAE5E,EAAA,OAAO,OAAO,KAAK,IAAA,KAAS;AACxB,IAAA,MAAM,aAAA,GAAgB,GAAA,CAAI,OAAA,CAAQ,GAAA,CAAI,QAAQ,CAAA,IAAK,EAAA;AAGnD,IAAA,IAAI,eAAA,EAAiB;AACjB,MAAA,MAAM,YAAA,GAAe,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,MAAM,CAAA;AACnD,MAAA,IAAI,YAAA,EAAc;AACd,QAAA,IAAI,CAAC,YAAA,CAAa,QAAA,CAAS,QAAQ,CAAA,EAAG;AAClC,UAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,MAAA,EAAQ,CAAA,EAAG,YAAY,CAAA,QAAA,CAAU,CAAA;AAAA,QAC7D;AAAA,MACJ,CAAA,MAAO;AACH,QAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,MAAA,EAAQ,QAAQ,CAAA;AAAA,MAC5C;AAAA,IACJ;AAGA,IAAA,IAAI,aAAA,GAA+B,IAAA;AACnC,IAAA,IAAI,WAAW,GAAA,EAAK;AAChB,MAAA,aAAA,GAAgB,GAAA;AAAA,IACpB,CAAA,MAAA,IAAW,OAAO,MAAA,KAAW,QAAA,EAAU;AACnC,MAAA,aAAA,GAAgB,MAAA;AAAA,IACpB,CAAA,MAAA,IAAW,KAAA,CAAM,OAAA,CAAQ,MAAM,CAAA,EAAG;AAC9B,MAAA,IAAI,MAAA,CAAO,QAAA,CAAS,aAAa,CAAA,EAAG;AAChC,QAAA,aAAA,GAAgB,aAAA;AAAA,MACpB;AAAA,IACJ,CAAA,MAAA,IAAW,OAAO,MAAA,KAAW,UAAA,EAAY;AACrC,MAAA,MAAM,SAAA,GAAY,MAAM,MAAA,CAAO,aAAa,CAAA;AAC5C,MAAA,IAAI,SAAA,EAAW;AACX,QAAA,aAAA,GAAgB,aAAA;AAAA,MACpB;AAAA,IACJ;AAEA,IAAA,IAAI,aAAA,EAAe;AACf,MAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,6BAAA,EAA+B,aAAa,CAAA;AACpE,MAAA,GAAA,CAAI,gBAAgB,GAAA,CAAI,8BAAA,EAAgC,OAAA,CAAQ,IAAA,CAAK,IAAI,CAAC,CAAA;AAC1E,MAAA,GAAA,CAAI,gBAAgB,GAAA,CAAI,8BAAA,EAAgC,OAAA,CAAQ,IAAA,CAAK,IAAI,CAAC,CAAA;AAE1E,MAAA,IAAI,WAAA,EAAa;AACb,QAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,kCAAA,EAAoC,MAAM,CAAA;AAAA,MACtE;AAEA,MAAA,IAAI,MAAA,EAAQ;AACR,QAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,wBAAA,EAA0B,MAAA,CAAO,MAAM,CAAC,CAAA;AAAA,MACpE;AAEA,MAAA,IAAI,aAAA,CAAc,SAAS,CAAA,EAAG;AAC1B,QAAA,GAAA,CAAI,gBAAgB,GAAA,CAAI,+BAAA,EAAiC,aAAA,CAAc,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,MACrF;AAAA,IACJ;AAGA,IAAA,IAAI,GAAA,CAAI,WAAW,SAAA,EAAW;AAC1B,MAAA,GAAA,CAAI,MAAA,GAAS,GAAA;AACb,MAAA,GAAA,CAAI,YAAA,GAAe,IAAA;AACnB,MAAA;AAAA,IACJ;AAEA,IAAA,MAAM,IAAA,EAAK;AAAA,EACf,CAAA;AACJ;AA2CA,IAAM,kBAAA,GAA+C;AAAA,EACjD,KAAA,EAAO,CAAA;AAAA,EACP,IAAA,EAAM,CAAA;AAAA,EACN,IAAA,EAAM,CAAA;AAAA,EACN,KAAA,EAAO,CAAA;AAAA,EACP,MAAA,EAAQ;AACZ,CAAA;AAEA,IAAM,gBAAA,GAA6C;AAAA,EAC/C,KAAA,EAAO,UAAA;AAAA;AAAA,EACP,IAAA,EAAM,UAAA;AAAA;AAAA,EACN,IAAA,EAAM,UAAA;AAAA;AAAA,EACN,KAAA,EAAO,UAAA;AAAA;AAAA,EACP,MAAA,EAAQ;AACZ,CAAA;AAEA,IAAM,aAAA,GAAwC;AAAA,EAC1C,GAAA,EAAK,UAAA;AAAA;AAAA,EACL,GAAA,EAAK,UAAA;AAAA;AAAA,EACL,GAAA,EAAK,UAAA;AAAA;AAAA,EACL,GAAA,EAAK;AAAA;AACT,CAAA;AAEA,IAAM,KAAA,GAAQ,SAAA;AACd,IAAM,GAAA,GAAM,SAAA;AAyBL,SAAS,MAAA,CAAO,OAAA,GAAyB,EAAC,EAAe;AAC5D,EAAA,MAAM;AAAA,IACF,KAAA,GAAQ,MAAA;AAAA,IACR,MAAA,GAAS,QAAA;AAAA,IACT,IAAA;AAAA,IACA,MAAA;AAAA,IACA,cAAA,GAAiB,KAAA;AAAA,IACjB,QAAA,GAAW;AAAA,GACf,GAAI,OAAA;AAGJ,EAAA,MAAM,YAAY,CACd,GAAA,EACA,QAAA,EACA,SAAA,EACA,UACA,KAAA,KACO;AACP,IAAA,MAAM,MAAA,GAAS,KAAA,GAAQ,GAAA,GAAM,GAAA,CAAI,MAAA;AACjC,IAAA,MAAM,SAAA,GAAY,GAAA,CAAI,OAAA,CAAQ,GAAA,CAAI,YAAY,CAAA;AAC9C,IAAA,MAAM,YAAA,GAAe,GAAA,CAAI,OAAA,CAAQ,GAAA,CAAI,iBAAiB,CAAA;AACtD,IAAA,MAAM,KAAK,YAAA,IAAgB,SAAA;AAG3B,IAAA,MAAM,KAAA,GAAkB;AAAA,MACpB,SAAA,EAAW,SAAA;AAAA,MACX,KAAA,EAAO,QAAA;AAAA,MACP,QAAQ,GAAA,CAAI,MAAA;AAAA,MACZ,IAAA,EAAM,IAAI,GAAA,CAAI,QAAA;AAAA,MACd,MAAA;AAAA,MACA;AAAA,KACJ;AAEA,IAAA,IAAI,SAAA,QAAiB,SAAA,GAAY,SAAA;AACjC,IAAA,KAAA,CAAM,EAAA,GAAK,EAAA;AAEX,IAAA,IAAI,KAAA,EAAO;AACP,MAAA,KAAA,CAAM,QAAQ,KAAA,CAAM,OAAA;AACpB,MAAA,KAAA,CAAM,QAAQ,KAAA,CAAM,KAAA;AAAA,IACxB;AAEA,IAAA,IAAI,cAAA,EAAgB;AAChB,MAAA,MAAM,UAAkC,EAAC;AACzC,MAAA,GAAA,CAAI,OAAA,CAAQ,OAAA,CAAQ,CAAC,KAAA,EAAO,GAAA,KAAQ;AAChC,QAAA,IAAI,CAAC,GAAA,CAAI,WAAA,EAAY,CAAE,QAAA,CAAS,eAAe,CAAA,EAAG;AAC9C,UAAA,OAAA,CAAQ,GAAG,CAAA,GAAI,KAAA;AAAA,QACnB;AAAA,MACJ,CAAC,CAAA;AACD,MAAA,KAAA,CAAM,OAAA,GAAU,OAAA;AAAA,IACpB;AAGA,IAAA,IAAI,SAAA;AAEJ,IAAA,QAAQ,MAAA;AAAQ,MACZ,KAAK,MAAA;AACD,QAAA,SAAA,GAAY,IAAA,CAAK,UAAU,KAAK,CAAA;AAChC,QAAA;AAAA,MAEJ,KAAK,UAAA;AACD,QAAA,SAAA,GAAY,CAAA,EAAG,EAAE,CAAA,MAAA,EAAS,SAAS,MAAM,GAAA,CAAI,MAAM,CAAA,CAAA,EAAI,GAAA,CAAI,IAAI,QAAQ,CAAA,EAAA,EAAK,MAAM,CAAA,IAAA,EAAO,aAAa,GAAG,CAAA,CAAA,CAAA;AACzG,QAAA;AAAA,MAEJ,KAAK,QAAA;AACD,QAAA,SAAA,GAAY,CAAA,EAAG,EAAE,CAAA,MAAA,EAAS,SAAS,CAAA,GAAA,EAAM,GAAA,CAAI,MAAM,CAAA,CAAA,EAAI,GAAA,CAAI,GAAA,CAAI,QAAQ,CAAA,EAAA,EAAK,MAAM,CAAA,CAAA;AAClF,QAAA;AAAA,MAEJ,KAAK,OAAA;AACD,QAAA,SAAA,GAAY,CAAA,EAAG,GAAA,CAAI,MAAM,CAAA,CAAA,EAAI,GAAA,CAAI,IAAI,QAAQ,CAAA,CAAA,EAAI,MAAM,CAAA,CAAA,EAAI,QAAQ,CAAA,EAAA,CAAA;AACnE,QAAA;AAAA,MAEJ,KAAK,MAAA;AACD,QAAA,SAAA,GAAY,CAAA,EAAG,IAAI,MAAM,CAAA,CAAA,EAAI,IAAI,GAAA,CAAI,QAAQ,IAAI,MAAM,CAAA,CAAA;AACvD,QAAA;AAAA,MAEJ,KAAK,QAAA;AAAA,MACL;AACI,QAAA,IAAI,QAAA,EAAU;AACV,UAAA,MAAM,kBAAkB,MAAA,CAAO,MAAM,CAAA,CAAE,MAAA,CAAO,CAAC,CAAA,IAAK,GAAA;AACpD,UAAA,MAAM,WAAA,GAAc,aAAA,CAAc,eAAe,CAAA,IAAK,EAAA;AACtD,UAAA,MAAM,UAAA,GAAa,iBAAiB,QAAQ,CAAA;AAC5C,UAAA,MAAM,WAAA,GAAc,KAAA,GAAQ,CAAA,CAAA,EAAI,gBAAA,CAAiB,KAAK,IAAI,KAAA,CAAM,OAAO,CAAA,CAAA,EAAI,KAAK,CAAA,CAAA,GAAK,EAAA;AACrF,UAAA,SAAA,GAAY,GAAG,GAAG,CAAA,EAAG,SAAS,CAAA,EAAG,KAAK,IAAI,UAAU,CAAA,EAAG,QAAA,CAAS,WAAA,GAAc,MAAA,CAAO,CAAC,CAAC,CAAA,EAAG,KAAK,IAAI,GAAA,CAAI,MAAA,CAAO,MAAA,CAAO,CAAC,CAAC,CAAA,CAAA,EAAI,GAAA,CAAI,IAAI,QAAQ,CAAA,CAAA,EAAI,WAAW,CAAA,EAAG,MAAM,CAAA,EAAG,KAAK,IAAI,GAAG,CAAA,EAAG,QAAQ,CAAA,EAAA,EAAK,KAAK,GAAG,WAAW,CAAA,CAAA;AAAA,QACzN,CAAA,MAAO;AACH,UAAA,MAAM,WAAA,GAAc,KAAA,GAAQ,CAAA,EAAA,EAAK,KAAA,CAAM,OAAO,CAAA,CAAA,CAAA,GAAM,EAAA;AACpD,UAAA,SAAA,GAAY,CAAA,EAAG,SAAS,CAAA,CAAA,EAAI,QAAA,CAAS,WAAA,GAAc,MAAA,CAAO,CAAC,CAAC,CAAA,CAAA,EAAI,GAAA,CAAI,MAAA,CAAO,OAAO,CAAC,CAAC,CAAA,CAAA,EAAI,GAAA,CAAI,GAAA,CAAI,QAAQ,IAAI,MAAM,CAAA,CAAA,EAAI,QAAQ,CAAA,EAAA,EAAK,WAAW,CAAA,CAAA;AAAA,QAClJ;AACA,QAAA;AAAA;AAIR,IAAA,IAAI,MAAA,EAAQ;AACR,MAAA,MAAA,CAAO,OAAO,SAAS,CAAA;AAAA,IAC3B,CAAA,MAAO;AACH,MAAA,QAAQ,QAAA;AAAU,QACd,KAAK,OAAA;AACD,UAAA,OAAA,CAAQ,MAAM,SAAS,CAAA;AACvB,UAAA;AAAA,QACJ,KAAK,MAAA;AACD,UAAA,OAAA,CAAQ,KAAK,SAAS,CAAA;AACtB,UAAA;AAAA,QACJ,KAAK,OAAA;AACD,UAAA,OAAA,CAAQ,MAAM,SAAS,CAAA;AACvB,UAAA;AAAA,QACJ;AACI,UAAA,OAAA,CAAQ,IAAI,SAAS,CAAA;AAAA;AAC7B,IACJ;AAAA,EACJ,CAAA;AAEA,EAAA,OAAO,OAAO,KAAK,IAAA,KAAS;AAExB,IAAA,IAAI,IAAA,GAAO,GAAG,CAAA,EAAG;AACb,MAAA,OAAO,IAAA,EAAK;AAAA,IAChB;AAEA,IAAA,MAAM,KAAA,GAAQ,KAAK,GAAA,EAAI;AACvB,IAAA,MAAM,SAAA,GAAA,iBAAY,IAAI,IAAA,EAAK,EAAE,WAAA,EAAY;AAEzC,IAAA,IAAI;AACA,MAAA,MAAM,IAAA,EAAK;AAEX,MAAA,MAAM,QAAA,GAAW,IAAA,CAAK,GAAA,EAAI,GAAI,KAAA;AAC9B,MAAA,MAAM,SAAS,GAAA,CAAI,MAAA;AAGnB,MAAA,IAAI,QAAA,GAAqB,MAAA;AACzB,MAAA,IAAI,UAAU,GAAA,EAAK;AACf,QAAA,QAAA,GAAW,OAAA;AAAA,MACf,CAAA,MAAA,IAAW,UAAU,GAAA,EAAK;AACtB,QAAA,QAAA,GAAW,MAAA;AAAA,MACf,CAAA,MAAA,IAAW,UAAU,GAAA,EAAK;AACtB,QAAA,QAAA,GAAW,MAAA;AAAA,MACf,CAAA,MAAO;AACH,QAAA,QAAA,GAAW,OAAA;AAAA,MACf;AAGA,MAAA,IAAI,kBAAA,CAAmB,QAAQ,CAAA,IAAK,kBAAA,CAAmB,KAAK,CAAA,EAAG;AAC3D,QAAA,SAAA,CAAU,GAAA,EAAK,QAAA,EAAU,SAAA,EAAW,QAAQ,CAAA;AAAA,MAChD;AAAA,IACJ,SAAS,KAAA,EAAO;AAEZ,MAAA,MAAM,QAAA,GAAW,IAAA,CAAK,GAAA,EAAI,GAAI,KAAA;AAC9B,MAAA,IAAI,kBAAA,CAAmB,KAAA,IAAS,kBAAA,CAAmB,KAAK,CAAA,EAAG;AACvD,QAAA,SAAA,CAAU,GAAA,EAAK,OAAA,EAAS,SAAA,EAAW,QAAA,EAAU,KAAc,CAAA;AAAA,MAC/D;AACA,MAAA,MAAM,KAAA;AAAA,IACV;AAAA,EACJ,CAAA;AACJ;AAKO,SAAS,eAAA,CAAgB,OAAA,GAM5B,EAAC,EAAe;AAChB,EAAA,MAAM;AAAA,IACF,qBAAA,GAAwB,oBAAA;AAAA,IACxB,aAAA,GAAgB,MAAA;AAAA,IAChB,mBAAA,GAAsB,IAAA;AAAA,IACtB,cAAA,GAAiB,iCAAA;AAAA,IACjB;AAAA,GACJ,GAAI,OAAA;AAEJ,EAAA,OAAO,OAAO,KAAK,IAAA,KAAS;AACxB,IAAA,IAAI,qBAAA,EAAuB;AACvB,MAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,yBAAA,EAA2B,qBAAqB,CAAA;AAAA,IAC5E;AACA,IAAA,IAAI,aAAA,EAAe;AACf,MAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,iBAAA,EAAmB,aAAa,CAAA;AAAA,IAC5D;AACA,IAAA,IAAI,mBAAA,EAAqB;AACrB,MAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,wBAAA,EAA0B,SAAS,CAAA;AAAA,IAC/D;AACA,IAAA,IAAI,cAAA,EAAgB;AAChB,MAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,iBAAA,EAAmB,cAAc,CAAA;AAAA,IAC7D;AACA,IAAA,IAAI,iBAAA,EAAmB;AACnB,MAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,oBAAA,EAAsB,iBAAiB,CAAA;AAAA,IACnE;AAEA,IAAA,MAAM,IAAA,EAAK;AAAA,EACf,CAAA;AACJ;AAKO,SAAS,QAAA,GAAuB;AACnC,EAAA,OAAO,OAAO,KAAK,IAAA,KAAS;AAExB,IAAA,GAAA,CAAI,MAAA,CAAO,iBAAiB,CAAA,GAAI,IAAA;AAChC,IAAA,MAAM,IAAA,EAAK;AAAA,EACf,CAAA;AACJ;AAwFO,SAAS,YAAA,CAAa,OAAA,GAA+B,EAAC,EAAe;AACxE,EAAA,MAAM;AAAA,IACF,OAAA;AAAA,IACA,MAAA,GAAS,KAAA;AAAA,IACT,aAAA,GAAgB,GAAA;AAAA,IAChB;AAAA,GACJ,GAAI,OAAA;AAEJ,EAAA,OAAO,OAAO,KAAK,IAAA,KAAS;AACxB,IAAA,IAAI;AACA,MAAA,MAAM,IAAA,EAAK;AAAA,IACf,SAAS,GAAA,EAAK;AACV,MAAA,MAAM,KAAA,GAAQ,eAAe,KAAA,GAAQ,GAAA,GAAM,IAAI,KAAA,CAAM,MAAA,CAAO,GAAG,CAAC,CAAA;AAGhE,MAAA,MAAM,MAAA,GAAU,KAAA,CAA2D,MAAA,IACnE,KAAA,CAA2D,UAAA,IAC5D,aAAA;AAGP,MAAA,MAAM,OAAQ,KAAA,CAAoC,IAAA;AAElD,MAAA,MAAM,SAAA,GAAA,iBAAY,IAAI,IAAA,EAAK,EAAE,WAAA,EAAY;AAEzC,MAAA,MAAM,SAAA,GAAuB;AAAA,QACzB,KAAA;AAAA,QACA,MAAA;AAAA,QACA,IAAA;AAAA,QACA,GAAA;AAAA,QACA;AAAA,OACJ;AAGA,MAAA,IAAI,IAAA,EAAM;AACN,QAAA,IAAI;AACA,UAAA,IAAA,CAAK,OAAO,GAAG,CAAA;AAAA,QACnB,CAAA,CAAA,MAAQ;AAAA,QAER;AAAA,MACJ;AAGA,MAAA,IAAI,OAAA,EAAS;AACT,QAAA,MAAM,QAAQ,SAAS,CAAA;AAAA,MAC3B,CAAA,MAAO;AAEH,QAAA,GAAA,CAAI,MAAA,GAAS,MAAA;AACb,QAAA,GAAA,CAAI,eAAA,CAAgB,GAAA,CAAI,cAAA,EAAgB,kBAAkB,CAAA;AAE1D,QAAA,MAAM,OAAO,MAAA,GACP;AAAA,UACE,OAAO,KAAA,CAAM,OAAA;AAAA,UACb,IAAA;AAAA,UACA,MAAA;AAAA,UACA,SAAA;AAAA,UACA,OAAO,KAAA,CAAM;AAAA,SACjB,GACE;AAAA,UACE,KAAA,EAAO,MAAA,IAAU,GAAA,GAAM,uBAAA,GAA0B,KAAA,CAAM,OAAA;AAAA,UACvD,IAAA;AAAA,UACA,MAAA;AAAA,UACA;AAAA,SACJ;AAEJ,QAAA,GAAA,CAAI,YAAA,GAAe,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA;AAAA,MAC1C;AAAA,IACJ;AAAA,EACJ,CAAA;AACJ;AAUO,SAAS,wBAAA,CACZ,OAAA,EACA,MAAA,GAA4C,EAAC,EAC5B;AACjB,EAAA,MAAM,GAAA,GAAM,IAAI,GAAA,CAAI,OAAA,CAAQ,GAAG,CAAA;AAE/B,EAAA,OAAO;AAAA,IACH,GAAA;AAAA,IACA,QAAQ,OAAA,CAAQ,MAAA;AAAA,IAChB,SAAS,OAAA,CAAQ,OAAA;AAAA,IACjB,MAAA;AAAA,IACA,OAAO,GAAA,CAAI,YAAA;AAAA,IACX,QAAQ,EAAC;AAAA,IACT,OAAA;AAAA,IACA,MAAA,EAAQ,GAAA;AAAA,IACR,eAAA,EAAiB,IAAI,OAAA;AAAQ,GACjC;AACJ;AAKO,SAAS,0BAA0B,GAAA,EAAkC;AACxE,EAAA,OAAO,IAAI,QAAA,CAAS,GAAA,CAAI,YAAA,EAAc;AAAA,IAClC,QAAQ,GAAA,CAAI,MAAA;AAAA,IACZ,SAAS,GAAA,CAAI;AAAA,GAChB,CAAA;AACL;AAKO,SAAS,WAAW,WAAA,EAAuC;AAC9D,EAAA,OAAO,OAAO,KAAK,IAAA,KAAS;AACxB,IAAA,IAAI,KAAA,GAAQ,EAAA;AAEZ,IAAA,eAAe,SAAS,CAAA,EAA0B;AAC9C,MAAA,IAAI,KAAK,KAAA,EAAO;AACZ,QAAA,MAAM,IAAI,MAAM,8BAA8B,CAAA;AAAA,MAClD;AACA,MAAA,KAAA,GAAQ,CAAA;AAER,MAAA,MAAM,KAAK,CAAA,KAAM,WAAA,CAAY,MAAA,GAAS,IAAA,GAAO,YAAY,CAAC,CAAA;AAE1D,MAAA,IAAI,EAAA,EAAI;AACJ,QAAA,MAAM,GAAG,GAAA,EAAK,MAAM,QAAA,CAAS,CAAA,GAAI,CAAC,CAAC,CAAA;AAAA,MACvC;AAAA,IACJ;AAEA,IAAA,MAAM,SAAS,CAAC,CAAA;AAAA,EACpB,CAAA;AACJ","file":"chunk-OYF2OAKS.js","sourcesContent":["/**\r\n * Flight Middleware - Composable request/response handlers\r\n * \r\n * Framework-agnostic middleware system inspired by Koa/Hono.\r\n * Provides primitives for building your own middleware solutions.\r\n * \r\n * @example\r\n * ```typescript\r\n * // Type-safe middleware with custom variables (Hono pattern)\r\n * interface MyLocals {\r\n *     user: { id: string; role: string };\r\n *     requestId: string;\r\n * }\r\n * \r\n * const authMiddleware: Middleware<MyLocals> = async (ctx, next) => {\r\n *     ctx.locals.user = { id: '123', role: 'admin' };\r\n *     await next();\r\n * };\r\n * ```\r\n */\r\n\r\n// ============================================================================\r\n// Types\r\n// ============================================================================\r\n\r\n/**\r\n * Request context passed through middleware chain.\r\n * \r\n * Supports generic type parameter for type-safe locals (like Hono Variables).\r\n * \r\n * @typeParam TLocals - Type of the locals object for type-safe middleware data sharing\r\n * \r\n * @example\r\n * ```typescript\r\n * interface AppLocals {\r\n *     user: User;\r\n *     db: DatabaseClient;\r\n * }\r\n * \r\n * const ctx: MiddlewareContext<AppLocals> = createContextFromRequest(request);\r\n * ctx.locals.user = currentUser; // Type-safe!\r\n * ```\r\n */\r\nexport interface MiddlewareContext<TLocals extends Record<string, unknown> = Record<string, unknown>> {\r\n    /** Request URL */\r\n    url: URL;\r\n    /** Request method */\r\n    method: string;\r\n    /** Request headers */\r\n    headers: Headers;\r\n    /** URL parameters from routing */\r\n    params: Record<string, string | string[]>;\r\n    /** Query parameters */\r\n    query: URLSearchParams;\r\n    /** Parsed request body (if any) */\r\n    body?: unknown;\r\n    /** Local data shared between middleware - type-safe with generics */\r\n    locals: TLocals;\r\n    /** Original request (platform-specific) */\r\n    request?: Request;\r\n\r\n    // Response building\r\n    /** Response status code */\r\n    status: number;\r\n    /** Response headers */\r\n    responseHeaders: Headers;\r\n    /** Response body */\r\n    responseBody?: BodyInit | null;\r\n}\r\n\r\n/** Next function to call the next middleware */\r\nexport type MiddlewareNext = () => Promise<void>;\r\n\r\n/**\r\n * Middleware function signature with optional typed locals.\r\n * \r\n * @typeParam TLocals - Type of the locals object for type-safe data sharing\r\n */\r\nexport type Middleware<TLocals extends Record<string, unknown> = Record<string, unknown>> = (\r\n    ctx: MiddlewareContext<TLocals>,\r\n    next: MiddlewareNext\r\n) => Promise<void> | void;\r\n\r\n/** Middleware with optional path matching */\r\nexport interface MiddlewareDefinition {\r\n    /** Path pattern to match (undefined = match all) */\r\n    path?: string | RegExp;\r\n    /** HTTP methods to match (undefined = match all) */\r\n    methods?: string[];\r\n    /** The middleware function */\r\n    handler: Middleware;\r\n}\r\n\r\n// ============================================================================\r\n// Middleware Chain\r\n// ============================================================================\r\n\r\nexport interface MiddlewareChain {\r\n    /** Add middleware to the chain */\r\n    use(middleware: Middleware): MiddlewareChain;\r\n    use(path: string, middleware: Middleware): MiddlewareChain;\r\n    use(definition: MiddlewareDefinition): MiddlewareChain;\r\n\r\n    /** Execute the middleware chain */\r\n    execute(ctx: MiddlewareContext): Promise<void>;\r\n\r\n    /** Get all middleware definitions */\r\n    middlewares(): MiddlewareDefinition[];\r\n}\r\n\r\n/**\r\n * Create a new middleware chain\r\n */\r\nexport function createMiddlewareChain(): MiddlewareChain {\r\n    const stack: MiddlewareDefinition[] = [];\r\n\r\n    function use(\r\n        pathOrMiddleware: string | Middleware | MiddlewareDefinition,\r\n        maybeMiddleware?: Middleware\r\n    ): MiddlewareChain {\r\n        if (typeof pathOrMiddleware === 'function') {\r\n            // use(middleware)\r\n            stack.push({ handler: pathOrMiddleware });\r\n        } else if (typeof pathOrMiddleware === 'string' && maybeMiddleware) {\r\n            // use(path, middleware)\r\n            stack.push({ path: pathOrMiddleware, handler: maybeMiddleware });\r\n        } else if (typeof pathOrMiddleware === 'object') {\r\n            // use(definition)\r\n            stack.push(pathOrMiddleware);\r\n        }\r\n        return chain;\r\n    }\r\n\r\n    async function execute(ctx: MiddlewareContext): Promise<void> {\r\n        let index = -1;\r\n\r\n        async function dispatch(i: number): Promise<void> {\r\n            if (i <= index) {\r\n                throw new Error('next() called multiple times');\r\n            }\r\n            index = i;\r\n\r\n            if (i >= stack.length) {\r\n                return;\r\n            }\r\n\r\n            const definition = stack[i];\r\n            if (!definition) {\r\n                return dispatch(i + 1);\r\n            }\r\n\r\n            // Check if middleware should run\r\n            if (!shouldRun(definition, ctx)) {\r\n                return dispatch(i + 1);\r\n            }\r\n\r\n            await definition.handler(ctx, () => dispatch(i + 1));\r\n        }\r\n\r\n        await dispatch(0);\r\n    }\r\n\r\n    const chain: MiddlewareChain = {\r\n        use: use as MiddlewareChain['use'],\r\n        execute,\r\n        middlewares: () => [...stack],\r\n    };\r\n\r\n    return chain;\r\n}\r\n\r\n/**\r\n * Check if a middleware should run for the given context\r\n */\r\nfunction shouldRun(def: MiddlewareDefinition, ctx: MiddlewareContext): boolean {\r\n    // Check method\r\n    if (def.methods && !def.methods.includes(ctx.method.toUpperCase())) {\r\n        return false;\r\n    }\r\n\r\n    // Check path\r\n    if (def.path) {\r\n        const path = ctx.url.pathname;\r\n\r\n        if (typeof def.path === 'string') {\r\n            // Simple path matching (supports wildcards)\r\n            if (def.path.endsWith('*')) {\r\n                const prefix = def.path.slice(0, -1);\r\n                if (!path.startsWith(prefix)) {\r\n                    return false;\r\n                }\r\n            } else if (def.path !== path) {\r\n                return false;\r\n            }\r\n        } else if (def.path instanceof RegExp) {\r\n            if (!def.path.test(path)) {\r\n                return false;\r\n            }\r\n        }\r\n    }\r\n\r\n    return true;\r\n}\r\n\r\n// ============================================================================\r\n// Built-in Middleware Factories\r\n// ============================================================================\r\n\r\n/**\r\n * CORS middleware factory\r\n */\r\n/**\r\n * CORS options for configuring cross-origin requests.\r\n */\r\nexport interface CorsOptions {\r\n    /** \r\n     * Allowed origins. Can be:\r\n     * - '*' for any origin\r\n     * - A specific origin string\r\n     * - An array of allowed origins\r\n     * - A function that returns true if origin is allowed\r\n     * - An async function for dynamic origin validation\r\n     */\r\n    origin?: string | string[] | ((origin: string) => boolean | Promise<boolean>);\r\n    /** Allowed HTTP methods */\r\n    methods?: string[];\r\n    /** Allowed headers */\r\n    headers?: string[];\r\n    /** Whether to include credentials */\r\n    credentials?: boolean;\r\n    /** Preflight cache duration in seconds */\r\n    maxAge?: number;\r\n    /** Exposed headers that can be accessed from the response */\r\n    exposeHeaders?: string[];\r\n}\r\n\r\n/**\r\n * CORS middleware factory.\r\n * \r\n * Handles cross-origin resource sharing with best practices:\r\n * - Adds Vary: Origin for dynamic origins (CDN compatibility)\r\n * - Supports async origin validation\r\n * - Proper preflight handling\r\n * \r\n * @example\r\n * ```typescript\r\n * // Allow specific origins\r\n * chain.use(cors({ origin: ['https://app.example.com'] }));\r\n * \r\n * // Dynamic validation\r\n * chain.use(cors({\r\n *     origin: async (origin) => {\r\n *         return await db.allowedOrigins.exists(origin);\r\n *     }\r\n * }));\r\n * ```\r\n */\r\nexport function cors(options: CorsOptions = {}): Middleware {\r\n    const {\r\n        origin = '*',\r\n        methods = ['GET', 'POST', 'PUT', 'DELETE', 'PATCH', 'OPTIONS'],\r\n        headers = ['Content-Type', 'Authorization'],\r\n        credentials = false,\r\n        maxAge = 86400,\r\n        exposeHeaders = [],\r\n    } = options;\r\n\r\n    // Track if origin is dynamic (requires Vary header)\r\n    const isDynamicOrigin = typeof origin === 'function' || Array.isArray(origin);\r\n\r\n    return async (ctx, next) => {\r\n        const requestOrigin = ctx.headers.get('Origin') || '';\r\n\r\n        // Add Vary: Origin for dynamic origins (CDN/cache compatibility)\r\n        if (isDynamicOrigin) {\r\n            const existingVary = ctx.responseHeaders.get('Vary');\r\n            if (existingVary) {\r\n                if (!existingVary.includes('Origin')) {\r\n                    ctx.responseHeaders.set('Vary', `${existingVary}, Origin`);\r\n                }\r\n            } else {\r\n                ctx.responseHeaders.set('Vary', 'Origin');\r\n            }\r\n        }\r\n\r\n        // Determine allowed origin\r\n        let allowedOrigin: string | null = null;\r\n        if (origin === '*') {\r\n            allowedOrigin = '*';\r\n        } else if (typeof origin === 'string') {\r\n            allowedOrigin = origin;\r\n        } else if (Array.isArray(origin)) {\r\n            if (origin.includes(requestOrigin)) {\r\n                allowedOrigin = requestOrigin;\r\n            }\r\n        } else if (typeof origin === 'function') {\r\n            const isAllowed = await origin(requestOrigin);\r\n            if (isAllowed) {\r\n                allowedOrigin = requestOrigin;\r\n            }\r\n        }\r\n\r\n        if (allowedOrigin) {\r\n            ctx.responseHeaders.set('Access-Control-Allow-Origin', allowedOrigin);\r\n            ctx.responseHeaders.set('Access-Control-Allow-Methods', methods.join(', '));\r\n            ctx.responseHeaders.set('Access-Control-Allow-Headers', headers.join(', '));\r\n\r\n            if (credentials) {\r\n                ctx.responseHeaders.set('Access-Control-Allow-Credentials', 'true');\r\n            }\r\n\r\n            if (maxAge) {\r\n                ctx.responseHeaders.set('Access-Control-Max-Age', String(maxAge));\r\n            }\r\n\r\n            if (exposeHeaders.length > 0) {\r\n                ctx.responseHeaders.set('Access-Control-Expose-Headers', exposeHeaders.join(', '));\r\n            }\r\n        }\r\n\r\n        // Handle preflight\r\n        if (ctx.method === 'OPTIONS') {\r\n            ctx.status = 204;\r\n            ctx.responseBody = null;\r\n            return;\r\n        }\r\n\r\n        await next();\r\n    };\r\n}\r\n// ============================================================================\r\n// Logger Types and Constants\r\n// ============================================================================\r\n\r\n/** Log levels in order of verbosity */\r\nexport type LogLevel = 'debug' | 'info' | 'warn' | 'error' | 'silent';\r\n\r\n/** Log format types */\r\nexport type LogFormat = 'pretty' | 'json' | 'combined' | 'common' | 'short' | 'tiny';\r\n\r\n/** Log entry structure for JSON format */\r\nexport interface LogEntry {\r\n    timestamp: string;\r\n    level: LogLevel;\r\n    method: string;\r\n    path: string;\r\n    status: number;\r\n    duration: number;\r\n    userAgent?: string;\r\n    ip?: string;\r\n    [key: string]: unknown;\r\n}\r\n\r\n/** Custom log writer function */\r\nexport type LogWriter = (entry: LogEntry, formatted: string) => void;\r\n\r\n/** Logger options */\r\nexport interface LoggerOptions {\r\n    /** Minimum log level (default: 'info') */\r\n    level?: LogLevel;\r\n    /** Output format (default: 'pretty') */\r\n    format?: LogFormat;\r\n    /** Skip logging for certain requests */\r\n    skip?: (ctx: MiddlewareContext) => boolean;\r\n    /** Custom log writer (replaces console output) */\r\n    writer?: LogWriter;\r\n    /** Include request headers in logs */\r\n    includeHeaders?: boolean;\r\n    /** Colorize output (only for 'pretty' format, default: true) */\r\n    colorize?: boolean;\r\n}\r\n\r\nconst LOG_LEVEL_PRIORITY: Record<LogLevel, number> = {\r\n    debug: 0,\r\n    info: 1,\r\n    warn: 2,\r\n    error: 3,\r\n    silent: 4,\r\n};\r\n\r\nconst LOG_LEVEL_COLORS: Record<LogLevel, string> = {\r\n    debug: '\\x1b[36m', // Cyan\r\n    info: '\\x1b[32m',  // Green\r\n    warn: '\\x1b[33m',  // Yellow\r\n    error: '\\x1b[31m', // Red\r\n    silent: '',\r\n};\r\n\r\nconst STATUS_COLORS: Record<string, string> = {\r\n    '2': '\\x1b[32m', // Green for 2xx\r\n    '3': '\\x1b[36m', // Cyan for 3xx\r\n    '4': '\\x1b[33m', // Yellow for 4xx\r\n    '5': '\\x1b[31m', // Red for 5xx\r\n};\r\n\r\nconst RESET = '\\x1b[0m';\r\nconst DIM = '\\x1b[2m';\r\n\r\n/**\r\n * Professional logger middleware with configurable levels\r\n * \r\n * @example\r\n * ```typescript\r\n * // Basic usage\r\n * server.use(logger());\r\n * \r\n * // With level control\r\n * server.use(logger({ level: 'warn' })); // Only warn and error\r\n * \r\n * // JSON format for production/observability\r\n * server.use(logger({ format: 'json', level: 'info' }));\r\n * \r\n * // Custom writer (e.g., for external logging service)\r\n * server.use(logger({\r\n *     writer: (entry) => myLoggingService.log(entry)\r\n * }));\r\n * \r\n * // Silent in production\r\n * server.use(logger({ level: process.env.NODE_ENV === 'production' ? 'error' : 'debug' }));\r\n * ```\r\n */\r\nexport function logger(options: LoggerOptions = {}): Middleware {\r\n    const {\r\n        level = 'info',\r\n        format = 'pretty',\r\n        skip,\r\n        writer,\r\n        includeHeaders = false,\r\n        colorize = true,\r\n    } = options;\r\n\r\n    // Helper to format and output log\r\n    const outputLog = (\r\n        ctx: MiddlewareContext,\r\n        logLevel: LogLevel,\r\n        startTime: string,\r\n        duration: number,\r\n        error?: Error\r\n    ): void => {\r\n        const status = error ? 500 : ctx.status;\r\n        const userAgent = ctx.headers.get('user-agent');\r\n        const forwardedFor = ctx.headers.get('x-forwarded-for');\r\n        const ip = forwardedFor || 'unknown';\r\n\r\n        // Build log entry\r\n        const entry: LogEntry = {\r\n            timestamp: startTime,\r\n            level: logLevel,\r\n            method: ctx.method,\r\n            path: ctx.url.pathname,\r\n            status,\r\n            duration,\r\n        };\r\n\r\n        if (userAgent) entry.userAgent = userAgent;\r\n        entry.ip = ip;\r\n\r\n        if (error) {\r\n            entry.error = error.message;\r\n            entry.stack = error.stack;\r\n        }\r\n\r\n        if (includeHeaders) {\r\n            const headers: Record<string, string> = {};\r\n            ctx.headers.forEach((value, key) => {\r\n                if (!key.toLowerCase().includes('authorization')) {\r\n                    headers[key] = value;\r\n                }\r\n            });\r\n            entry.headers = headers;\r\n        }\r\n\r\n        // Format the log line\r\n        let formatted: string;\r\n\r\n        switch (format) {\r\n            case 'json':\r\n                formatted = JSON.stringify(entry);\r\n                break;\r\n\r\n            case 'combined':\r\n                formatted = `${ip} - - [${startTime}] \"${ctx.method} ${ctx.url.pathname}\" ${status} - \"${userAgent || '-'}\"`;\r\n                break;\r\n\r\n            case 'common':\r\n                formatted = `${ip} - - [${startTime}] \"${ctx.method} ${ctx.url.pathname}\" ${status}`;\r\n                break;\r\n\r\n            case 'short':\r\n                formatted = `${ctx.method} ${ctx.url.pathname} ${status} ${duration}ms`;\r\n                break;\r\n\r\n            case 'tiny':\r\n                formatted = `${ctx.method} ${ctx.url.pathname} ${status}`;\r\n                break;\r\n\r\n            case 'pretty':\r\n            default:\r\n                if (colorize) {\r\n                    const statusFirstChar = String(status).charAt(0) || '2';\r\n                    const statusColor = STATUS_COLORS[statusFirstChar] ?? '';\r\n                    const levelColor = LOG_LEVEL_COLORS[logLevel];\r\n                    const errorSuffix = error ? ` ${LOG_LEVEL_COLORS.error}[${error.message}]${RESET}` : '';\r\n                    formatted = `${DIM}${startTime}${RESET} ${levelColor}${logLevel.toUpperCase().padEnd(5)}${RESET} ${ctx.method.padEnd(7)} ${ctx.url.pathname} ${statusColor}${status}${RESET} ${DIM}${duration}ms${RESET}${errorSuffix}`;\r\n                } else {\r\n                    const errorSuffix = error ? ` [${error.message}]` : '';\r\n                    formatted = `${startTime} ${logLevel.toUpperCase().padEnd(5)} ${ctx.method.padEnd(7)} ${ctx.url.pathname} ${status} ${duration}ms${errorSuffix}`;\r\n                }\r\n                break;\r\n        }\r\n\r\n        // Output\r\n        if (writer) {\r\n            writer(entry, formatted);\r\n        } else {\r\n            switch (logLevel) {\r\n                case 'error':\r\n                    console.error(formatted);\r\n                    break;\r\n                case 'warn':\r\n                    console.warn(formatted);\r\n                    break;\r\n                case 'debug':\r\n                    console.debug(formatted);\r\n                    break;\r\n                default:\r\n                    console.log(formatted);\r\n            }\r\n        }\r\n    };\r\n\r\n    return async (ctx, next) => {\r\n        // Skip if configured\r\n        if (skip?.(ctx)) {\r\n            return next();\r\n        }\r\n\r\n        const start = Date.now();\r\n        const startTime = new Date().toISOString();\r\n\r\n        try {\r\n            await next();\r\n\r\n            const duration = Date.now() - start;\r\n            const status = ctx.status;\r\n\r\n            // Determine log level based on status\r\n            let logLevel: LogLevel = 'info';\r\n            if (status >= 500) {\r\n                logLevel = 'error';\r\n            } else if (status >= 400) {\r\n                logLevel = 'warn';\r\n            } else if (status >= 300) {\r\n                logLevel = 'info';\r\n            } else {\r\n                logLevel = 'debug';\r\n            }\r\n\r\n            // Check if we should log based on level\r\n            if (LOG_LEVEL_PRIORITY[logLevel] >= LOG_LEVEL_PRIORITY[level]) {\r\n                outputLog(ctx, logLevel, startTime, duration);\r\n            }\r\n        } catch (error) {\r\n            // Always log errors, then re-throw\r\n            const duration = Date.now() - start;\r\n            if (LOG_LEVEL_PRIORITY.error >= LOG_LEVEL_PRIORITY[level]) {\r\n                outputLog(ctx, 'error', startTime, duration, error as Error);\r\n            }\r\n            throw error;\r\n        }\r\n    };\r\n}\r\n\r\n/**\r\n * Security headers middleware\r\n */\r\nexport function securityHeaders(options: {\r\n    contentSecurityPolicy?: string | false;\r\n    xFrameOptions?: 'DENY' | 'SAMEORIGIN' | false;\r\n    xContentTypeOptions?: boolean;\r\n    referrerPolicy?: string;\r\n    permissionsPolicy?: string;\r\n} = {}): Middleware {\r\n    const {\r\n        contentSecurityPolicy = \"default-src 'self'\",\r\n        xFrameOptions = 'DENY',\r\n        xContentTypeOptions = true,\r\n        referrerPolicy = 'strict-origin-when-cross-origin',\r\n        permissionsPolicy,\r\n    } = options;\r\n\r\n    return async (ctx, next) => {\r\n        if (contentSecurityPolicy) {\r\n            ctx.responseHeaders.set('Content-Security-Policy', contentSecurityPolicy);\r\n        }\r\n        if (xFrameOptions) {\r\n            ctx.responseHeaders.set('X-Frame-Options', xFrameOptions);\r\n        }\r\n        if (xContentTypeOptions) {\r\n            ctx.responseHeaders.set('X-Content-Type-Options', 'nosniff');\r\n        }\r\n        if (referrerPolicy) {\r\n            ctx.responseHeaders.set('Referrer-Policy', referrerPolicy);\r\n        }\r\n        if (permissionsPolicy) {\r\n            ctx.responseHeaders.set('Permissions-Policy', permissionsPolicy);\r\n        }\r\n\r\n        await next();\r\n    };\r\n}\r\n\r\n/**\r\n * Compression middleware (requires implementation in adapter)\r\n */\r\nexport function compress(): Middleware {\r\n    return async (ctx, next) => {\r\n        // Mark that compression is desired\r\n        ctx.locals['flight:compress'] = true;\r\n        await next();\r\n    };\r\n}\r\n\r\n// ============================================================================\r\n// Error Handler Middleware\r\n// ============================================================================\r\n\r\n/**\r\n * Error information passed to error handlers.\r\n */\r\nexport interface ErrorInfo {\r\n    /** The original error */\r\n    error: Error;\r\n    /** HTTP status code (derived from error or default 500) */\r\n    status: number;\r\n    /** Error code for categorization */\r\n    code?: string;\r\n    /** Request context */\r\n    ctx: MiddlewareContext;\r\n    /** Request timestamp */\r\n    timestamp: string;\r\n}\r\n\r\n/**\r\n * Error handler options.\r\n */\r\nexport interface ErrorHandlerOptions {\r\n    /**\r\n     * Custom error handler function.\r\n     * Called when an error is caught. Can modify ctx to set response.\r\n     * If not provided, a default JSON response is sent.\r\n     */\r\n    onError?: (info: ErrorInfo) => void | Promise<void>;\r\n\r\n    /**\r\n     * Whether to expose error details in response.\r\n     * Set to false in production to hide internal error messages.\r\n     * @default false\r\n     */\r\n    expose?: boolean;\r\n\r\n    /**\r\n     * Default status code for errors without a status property.\r\n     * @default 500\r\n     */\r\n    defaultStatus?: number;\r\n\r\n    /**\r\n     * Emit error events for centralized logging (Koa pattern).\r\n     * Provide a function to receive error events.\r\n     */\r\n    emit?: (error: Error, ctx: MiddlewareContext) => void;\r\n}\r\n\r\n/**\r\n * Error handler middleware factory.\r\n * \r\n * Provides centralized error handling following Koa best practices:\r\n * - Catches all downstream errors\r\n * - Sets appropriate status codes\r\n * - Supports custom error handlers\r\n * - Supports error event emission for logging\r\n * \r\n * Place this as one of the FIRST middleware in your chain.\r\n * \r\n * @example\r\n * ```typescript\r\n * // Basic usage - default JSON error response\r\n * chain.use(errorHandler());\r\n * \r\n * // With custom handler\r\n * chain.use(errorHandler({\r\n *     onError: ({ error, status, ctx }) => {\r\n *         ctx.status = status;\r\n *         ctx.responseBody = JSON.stringify({\r\n *             error: error.message,\r\n *             code: 'SERVER_ERROR'\r\n *         });\r\n *     },\r\n *     emit: (error, ctx) => {\r\n *         logger.error('Request error:', error);\r\n *         errorTracker.capture(error);\r\n *     }\r\n * }));\r\n * \r\n * // Production-safe (hide error details)\r\n * chain.use(errorHandler({ expose: false }));\r\n * ```\r\n */\r\nexport function errorHandler(options: ErrorHandlerOptions = {}): Middleware {\r\n    const {\r\n        onError,\r\n        expose = false,\r\n        defaultStatus = 500,\r\n        emit,\r\n    } = options;\r\n\r\n    return async (ctx, next) => {\r\n        try {\r\n            await next();\r\n        } catch (err) {\r\n            const error = err instanceof Error ? err : new Error(String(err));\r\n\r\n            // Extract status from error if available\r\n            const status = (error as Error & { status?: number; statusCode?: number }).status\r\n                ?? (error as Error & { status?: number; statusCode?: number }).statusCode\r\n                ?? defaultStatus;\r\n\r\n            // Extract error code if available\r\n            const code = (error as Error & { code?: string }).code;\r\n\r\n            const timestamp = new Date().toISOString();\r\n\r\n            const errorInfo: ErrorInfo = {\r\n                error,\r\n                status,\r\n                code,\r\n                ctx,\r\n                timestamp,\r\n            };\r\n\r\n            // Emit error event for centralized logging (Koa pattern)\r\n            if (emit) {\r\n                try {\r\n                    emit(error, ctx);\r\n                } catch {\r\n                    // Ignore emission errors to prevent infinite loops\r\n                }\r\n            }\r\n\r\n            // Call custom error handler if provided\r\n            if (onError) {\r\n                await onError(errorInfo);\r\n            } else {\r\n                // Default error response\r\n                ctx.status = status;\r\n                ctx.responseHeaders.set('Content-Type', 'application/json');\r\n\r\n                const body = expose\r\n                    ? {\r\n                        error: error.message,\r\n                        code,\r\n                        status,\r\n                        timestamp,\r\n                        stack: error.stack,\r\n                    }\r\n                    : {\r\n                        error: status >= 500 ? 'Internal Server Error' : error.message,\r\n                        code,\r\n                        status,\r\n                        timestamp,\r\n                    };\r\n\r\n                ctx.responseBody = JSON.stringify(body);\r\n            }\r\n        }\r\n    };\r\n}\r\n\r\n\r\n// ============================================================================\r\n// Utility Functions\r\n// ============================================================================\r\n\r\n/**\r\n * Create a middleware context from a Web Request\r\n */\r\nexport function createContextFromRequest(\r\n    request: Request,\r\n    params: Record<string, string | string[]> = {}\r\n): MiddlewareContext {\r\n    const url = new URL(request.url);\r\n\r\n    return {\r\n        url,\r\n        method: request.method,\r\n        headers: request.headers,\r\n        params,\r\n        query: url.searchParams,\r\n        locals: {},\r\n        request,\r\n        status: 200,\r\n        responseHeaders: new Headers(),\r\n    };\r\n}\r\n\r\n/**\r\n * Create a Web Response from middleware context\r\n */\r\nexport function createResponseFromContext(ctx: MiddlewareContext): Response {\r\n    return new Response(ctx.responseBody, {\r\n        status: ctx.status,\r\n        headers: ctx.responseHeaders,\r\n    });\r\n}\r\n\r\n/**\r\n * Compose multiple middleware into one\r\n */\r\nexport function compose(...middlewares: Middleware[]): Middleware {\r\n    return async (ctx, next) => {\r\n        let index = -1;\r\n\r\n        async function dispatch(i: number): Promise<void> {\r\n            if (i <= index) {\r\n                throw new Error('next() called multiple times');\r\n            }\r\n            index = i;\r\n\r\n            const fn = i === middlewares.length ? next : middlewares[i];\r\n\r\n            if (fn) {\r\n                await fn(ctx, () => dispatch(i + 1));\r\n            }\r\n        }\r\n\r\n        await dispatch(0);\r\n    };\r\n}\r\n"]}