@grapity/grapity 0.4.0 → 0.4.1

package/dist/cli/index.js

@@ -95,7 +95,7 @@ function buildKeycloakUrls(config) {
     tokenUrl: `${base}/protocol/openid-connect/token`
   };
 }
-function createAuthMiddleware(config, routeScopes) {
+function createAuthMiddleware(config, routeScopes2) {
   if (config.auth?.mode !== "keycloak") {
     return async (_c, next) => await next();
   }
@@ -103,7 +103,7 @@ function createAuthMiddleware(config, routeScopes) {
   const { issuer, jwksUri } = buildKeycloakUrls(authConfig);
   const jwks = createRemoteJWKSet(new URL(jwksUri));
   const scopeByRoute = /* @__PURE__ */ new Map();
-  for (const route of routeScopes) {
+  for (const route of routeScopes2) {
     const key = `${route.method.toUpperCase()}:${route.path}`;
     scopeByRoute.set(key, {
       operationId: route.operationId,
@@ -165,37 +165,6 @@ function extractScopes(payload, source) {
   }
   return /* @__PURE__ */ new Set();
 }
-function parseRouteScopes(spec) {
-  const routes = [];
-  const paths = spec.paths;
-  if (!paths) return routes;
-  for (const [path12, operations] of Object.entries(paths)) {
-    for (const [method, operation] of Object.entries(operations)) {
-      if (typeof operation !== "object" || operation === null) continue;
-      const op = operation;
-      const operationId = op.operationId;
-      if (!operationId) continue;
-      const security = op.security;
-      const scopes = [];
-      if (security) {
-        for (const sec of security) {
-          for (const [name, required] of Object.entries(sec)) {
-            if (name === "keycloak" && Array.isArray(required)) {
-              scopes.push(...required);
-            }
-          }
-        }
-      }
-      routes.push({
-        method: method.toUpperCase(),
-        path: path12.replace(/\{([^}]+)\}/g, ":$1"),
-        operationId,
-        scopes
-      });
-    }
-  }
-  return routes;
-}
 
 // src/cli/auth.ts
 var cachedToken = null;
@@ -4821,15 +4790,193 @@ var gatewayLogStatsRoute = new Hono21().get("/stats", async (c2) => {
   });
 });
 
+// src/registry/generated/route-scopes.ts
+var routeScopes = [
+  {
+    "method": "GET",
+    "path": "/v1/health",
+    "operationId": "getHealth",
+    "scopes": []
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs",
+    "operationId": "listSpecs",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/specs",
+    "operationId": "pushSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name",
+    "operationId": "getSpec",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "DELETE",
+    "path": "/v1/specs/:name",
+    "operationId": "deleteSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/specs/:name/validate",
+    "operationId": "validateSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions",
+    "operationId": "listVersions",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver",
+    "operationId": "getVersion",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/spec.json",
+    "operationId": "getSpecJson",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/spec.yaml",
+    "operationId": "getSpecYaml",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver/spec.json",
+    "operationId": "getVersionSpecJson",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver/spec.yaml",
+    "operationId": "getVersionSpecYaml",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/compat/:semver",
+    "operationId": "getCompatReport",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/compare",
+    "operationId": "compareVersions",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs",
+    "operationId": "listGatewayConfigs",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/gateway-configs",
+    "operationId": "pushGatewayConfig",
+    "scopes": [
+      "gateway-configs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name",
+    "operationId": "getGatewayConfig",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name/versions",
+    "operationId": "listGatewayConfigVersions",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name/versions/:versionId",
+    "operationId": "getGatewayConfigVersion",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/gateway-logs/ingest/:provider/:environment",
+    "operationId": "ingestGatewayLog",
+    "scopes": [
+      "gateway-logs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs",
+    "operationId": "listGatewayLogs",
+    "scopes": [
+      "gateway-logs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs/stats",
+    "operationId": "getGatewayLogStats",
+    "scopes": [
+      "gateway-logs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs/:id",
+    "operationId": "getGatewayLog",
+    "scopes": [
+      "gateway-logs:read"
+    ]
+  }
+];
+
 // src/registry/server.ts
-import { readFileSync } from "fs";
-import { fileURLToPath } from "url";
-import yaml10 from "js-yaml";
-function loadOpenApiSpec() {
-  const path12 = fileURLToPath(new URL("../../openapi.yaml", import.meta.url));
-  const content = readFileSync(path12, "utf-8");
-  return yaml10.load(content);
-}
 function createApp(config, store) {
   const app = new Hono22();
   app.use("*", logger());
@@ -4840,8 +4987,8 @@ function createApp(config, store) {
     c2.set("config", config);
     await next();
   });
-  const routeScopes = parseRouteScopes(loadOpenApiSpec());
-  app.use("*", createAuthMiddleware(config, routeScopes));
+  const authRouteScopes = config.auth?.mode === "keycloak" ? routeScopes : [];
+  app.use("*", createAuthMiddleware(config, authRouteScopes));
   app.onError((err, c2) => {
     if (err instanceof AuthError) {
       return c2.json(

package/dist/registry/index.js

@@ -2963,7 +2963,7 @@ function buildKeycloakUrls(config) {
     tokenUrl: `${base}/protocol/openid-connect/token`
   };
 }
-function createAuthMiddleware(config, routeScopes) {
+function createAuthMiddleware(config, routeScopes2) {
   if (config.auth?.mode !== "keycloak") {
     return async (_c, next) => await next();
   }
@@ -2971,7 +2971,7 @@ function createAuthMiddleware(config, routeScopes) {
   const { issuer, jwksUri } = buildKeycloakUrls(authConfig);
   const jwks = createRemoteJWKSet(new URL(jwksUri));
   const scopeByRoute = /* @__PURE__ */ new Map();
-  for (const route of routeScopes) {
+  for (const route of routeScopes2) {
     const key = `${route.method.toUpperCase()}:${route.path}`;
     scopeByRoute.set(key, {
       operationId: route.operationId,
@@ -3033,47 +3033,194 @@ function extractScopes(payload, source) {
   }
   return /* @__PURE__ */ new Set();
 }
-function parseRouteScopes(spec) {
-  const routes = [];
-  const paths = spec.paths;
-  if (!paths) return routes;
-  for (const [path, operations] of Object.entries(paths)) {
-    for (const [method, operation] of Object.entries(operations)) {
-      if (typeof operation !== "object" || operation === null) continue;
-      const op = operation;
-      const operationId = op.operationId;
-      if (!operationId) continue;
-      const security = op.security;
-      const scopes = [];
-      if (security) {
-        for (const sec of security) {
-          for (const [name, required] of Object.entries(sec)) {
-            if (name === "keycloak" && Array.isArray(required)) {
-              scopes.push(...required);
-            }
-          }
-        }
-      }
-      routes.push({
-        method: method.toUpperCase(),
-        path: path.replace(/\{([^}]+)\}/g, ":$1"),
-        operationId,
-        scopes
-      });
-    }
+
+// src/registry/generated/route-scopes.ts
+var routeScopes = [
+  {
+    "method": "GET",
+    "path": "/v1/health",
+    "operationId": "getHealth",
+    "scopes": []
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs",
+    "operationId": "listSpecs",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/specs",
+    "operationId": "pushSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name",
+    "operationId": "getSpec",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "DELETE",
+    "path": "/v1/specs/:name",
+    "operationId": "deleteSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/specs/:name/validate",
+    "operationId": "validateSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions",
+    "operationId": "listVersions",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver",
+    "operationId": "getVersion",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/spec.json",
+    "operationId": "getSpecJson",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/spec.yaml",
+    "operationId": "getSpecYaml",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver/spec.json",
+    "operationId": "getVersionSpecJson",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver/spec.yaml",
+    "operationId": "getVersionSpecYaml",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/compat/:semver",
+    "operationId": "getCompatReport",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/compare",
+    "operationId": "compareVersions",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs",
+    "operationId": "listGatewayConfigs",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/gateway-configs",
+    "operationId": "pushGatewayConfig",
+    "scopes": [
+      "gateway-configs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name",
+    "operationId": "getGatewayConfig",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name/versions",
+    "operationId": "listGatewayConfigVersions",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name/versions/:versionId",
+    "operationId": "getGatewayConfigVersion",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/gateway-logs/ingest/:provider/:environment",
+    "operationId": "ingestGatewayLog",
+    "scopes": [
+      "gateway-logs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs",
+    "operationId": "listGatewayLogs",
+    "scopes": [
+      "gateway-logs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs/stats",
+    "operationId": "getGatewayLogStats",
+    "scopes": [
+      "gateway-logs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs/:id",
+    "operationId": "getGatewayLog",
+    "scopes": [
+      "gateway-logs:read"
+    ]
   }
-  return routes;
-}
+];
 
 // src/registry/server.ts
-import { readFileSync } from "fs";
-import { fileURLToPath } from "url";
-import yaml6 from "js-yaml";
-function loadOpenApiSpec() {
-  const path = fileURLToPath(new URL("../../openapi.yaml", import.meta.url));
-  const content = readFileSync(path, "utf-8");
-  return yaml6.load(content);
-}
 function createApp(config, store) {
   const app = new Hono22();
   app.use("*", logger());
@@ -3084,8 +3231,8 @@ function createApp(config, store) {
     c.set("config", config);
     await next();
   });
-  const routeScopes = parseRouteScopes(loadOpenApiSpec());
-  app.use("*", createAuthMiddleware(config, routeScopes));
+  const authRouteScopes = config.auth?.mode === "keycloak" ? routeScopes : [];
+  app.use("*", createAuthMiddleware(config, authRouteScopes));
   app.onError((err, c) => {
     if (err instanceof AuthError) {
       return c.json(

package/dist/registry/serve.js

@@ -2968,7 +2968,7 @@ function buildKeycloakUrls(config) {
     tokenUrl: `${base}/protocol/openid-connect/token`
   };
 }
-function createAuthMiddleware(config, routeScopes) {
+function createAuthMiddleware(config, routeScopes2) {
   if (config.auth?.mode !== "keycloak") {
     return async (_c, next) => await next();
   }
@@ -2976,7 +2976,7 @@ function createAuthMiddleware(config, routeScopes) {
   const { issuer, jwksUri } = buildKeycloakUrls(authConfig);
   const jwks = createRemoteJWKSet(new URL(jwksUri));
   const scopeByRoute = /* @__PURE__ */ new Map();
-  for (const route of routeScopes) {
+  for (const route of routeScopes2) {
     const key = `${route.method.toUpperCase()}:${route.path}`;
     scopeByRoute.set(key, {
       operationId: route.operationId,
@@ -3038,47 +3038,194 @@ function extractScopes(payload, source) {
   }
   return /* @__PURE__ */ new Set();
 }
-function parseRouteScopes(spec) {
-  const routes = [];
-  const paths = spec.paths;
-  if (!paths) return routes;
-  for (const [path2, operations] of Object.entries(paths)) {
-    for (const [method, operation] of Object.entries(operations)) {
-      if (typeof operation !== "object" || operation === null) continue;
-      const op = operation;
-      const operationId = op.operationId;
-      if (!operationId) continue;
-      const security = op.security;
-      const scopes = [];
-      if (security) {
-        for (const sec of security) {
-          for (const [name, required] of Object.entries(sec)) {
-            if (name === "keycloak" && Array.isArray(required)) {
-              scopes.push(...required);
-            }
-          }
-        }
-      }
-      routes.push({
-        method: method.toUpperCase(),
-        path: path2.replace(/\{([^}]+)\}/g, ":$1"),
-        operationId,
-        scopes
-      });
-    }
+
+// src/registry/generated/route-scopes.ts
+var routeScopes = [
+  {
+    "method": "GET",
+    "path": "/v1/health",
+    "operationId": "getHealth",
+    "scopes": []
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs",
+    "operationId": "listSpecs",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/specs",
+    "operationId": "pushSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name",
+    "operationId": "getSpec",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "DELETE",
+    "path": "/v1/specs/:name",
+    "operationId": "deleteSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/specs/:name/validate",
+    "operationId": "validateSpec",
+    "scopes": [
+      "specs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions",
+    "operationId": "listVersions",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver",
+    "operationId": "getVersion",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/spec.json",
+    "operationId": "getSpecJson",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/spec.yaml",
+    "operationId": "getSpecYaml",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver/spec.json",
+    "operationId": "getVersionSpecJson",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/versions/:semver/spec.yaml",
+    "operationId": "getVersionSpecYaml",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/compat/:semver",
+    "operationId": "getCompatReport",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/specs/:name/compare",
+    "operationId": "compareVersions",
+    "scopes": [
+      "specs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs",
+    "operationId": "listGatewayConfigs",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/gateway-configs",
+    "operationId": "pushGatewayConfig",
+    "scopes": [
+      "gateway-configs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name",
+    "operationId": "getGatewayConfig",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name/versions",
+    "operationId": "listGatewayConfigVersions",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-configs/:name/versions/:versionId",
+    "operationId": "getGatewayConfigVersion",
+    "scopes": [
+      "gateway-configs:read"
+    ]
+  },
+  {
+    "method": "POST",
+    "path": "/v1/gateway-logs/ingest/:provider/:environment",
+    "operationId": "ingestGatewayLog",
+    "scopes": [
+      "gateway-logs:write"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs",
+    "operationId": "listGatewayLogs",
+    "scopes": [
+      "gateway-logs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs/stats",
+    "operationId": "getGatewayLogStats",
+    "scopes": [
+      "gateway-logs:read"
+    ]
+  },
+  {
+    "method": "GET",
+    "path": "/v1/gateway-logs/:id",
+    "operationId": "getGatewayLog",
+    "scopes": [
+      "gateway-logs:read"
+    ]
   }
-  return routes;
-}
+];
 
 // src/registry/server.ts
-import { readFileSync } from "fs";
-import { fileURLToPath } from "url";
-import yaml6 from "js-yaml";
-function loadOpenApiSpec() {
-  const path2 = fileURLToPath(new URL("../../openapi.yaml", import.meta.url));
-  const content = readFileSync(path2, "utf-8");
-  return yaml6.load(content);
-}
 function createApp(config, store) {
   const app = new Hono22();
   app.use("*", logger());
@@ -3089,8 +3236,8 @@ function createApp(config, store) {
     c.set("config", config);
     await next();
   });
-  const routeScopes = parseRouteScopes(loadOpenApiSpec());
-  app.use("*", createAuthMiddleware(config, routeScopes));
+  const authRouteScopes = config.auth?.mode === "keycloak" ? routeScopes : [];
+  app.use("*", createAuthMiddleware(config, authRouteScopes));
   app.onError((err, c) => {
     if (err instanceof AuthError) {
       return c.json(

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@grapity/grapity",
-  "version": "0.4.0",
+  "version": "0.4.1",
   "type": "module",
   "description": "grapity - API spec registry and compatibility guardian",
   "license": "Apache-2.0",