@hammadj/better-auth 1.5.0-beta.9

package/dist/plugins/anonymous/types.d.mts

@@ -0,0 +1,68 @@
+import { Session, User } from "../../types/models.mjs";
+import { InferOptionSchema } from "../../types/plugins.mjs";
+import "../../types/index.mjs";
+import { schema } from "./schema.mjs";
+import { AuthContext, Awaitable, GenericEndpointContext } from "@better-auth/core";
+import { EndpointContext } from "better-call";
+
+//#region src/plugins/anonymous/types.d.ts
+type AnonymousSession = {
+  session: Session;
+  user: User;
+} & {
+  user: {
+    isAnonymous: boolean | null;
+  };
+} & Record<string, any>;
+interface UserWithAnonymous extends User {
+  isAnonymous: boolean;
+}
+interface AnonymousOptions {
+  /**
+   * Configure the domain name of the temporary email
+   * address for anonymous users in the database.
+   * @default "baseURL"
+   */
+  emailDomainName?: string | undefined;
+  /**
+   * A useful hook to run after an anonymous user
+   * is about to link their account.
+   */
+  onLinkAccount?: ((data: {
+    anonymousUser: {
+      user: UserWithAnonymous & Record<string, any>;
+      session: Session & Record<string, any>;
+    };
+    newUser: {
+      user: User & Record<string, any>;
+      session: Session & Record<string, any>;
+    };
+    ctx: GenericEndpointContext;
+  }) => Awaitable<void>) | undefined;
+  /**
+   * Disable deleting the anonymous user
+   */
+  disableDeleteAnonymousUser?: boolean | undefined;
+  /**
+   * A hook to generate a name for the anonymous user.
+   * Useful if you want to have random names for anonymous users, or if `name` is unique in your database.
+   * @returns The name for the anonymous user.
+   */
+  generateName?: ((ctx: EndpointContext<"/sign-in/anonymous", {
+    method: "POST";
+  }, AuthContext>) => Awaitable<string>) | undefined;
+  /**
+   * A custom random email generation function.
+   * Useful when you want to specify a temporary email in a different format from the default.
+   * You are responsible for ensuring the email is unique to avoid conflicts.
+   * @returns The email address for the anonymous user.
+   */
+  generateRandomEmail?: (() => Awaitable<string>) | undefined;
+  /**
+   * Custom schema for the anonymous plugin
+   */
+  schema?: InferOptionSchema<typeof schema> | undefined;
+}
+//#endregion
+export { AnonymousOptions, AnonymousSession, UserWithAnonymous };
+//# sourceMappingURL=types.d.mts.map

package/dist/plugins/api-key/adapter.mjs

@@ -0,0 +1,468 @@
+import { safeJSONParse } from "@better-auth/core/utils/json";
+
+//#region src/plugins/api-key/adapter.ts
+/**
+* Parses double-stringified metadata synchronously without updating the database.
+* Use this for reading metadata, then call migrateLegacyMetadataInBackground for DB updates.
+*
+* @returns The properly parsed metadata object, or the original if already an object
+*/
+function parseDoubleStringifiedMetadata(metadata) {
+	if (metadata == null) return null;
+	if (typeof metadata === "object") return metadata;
+	return safeJSONParse(metadata);
+}
+/**
+* Checks if metadata needs migration (is a string instead of object)
+*/
+function needsMetadataMigration(metadata) {
+	return metadata != null && typeof metadata === "string";
+}
+/**
+* Batch migrates double-stringified metadata for multiple API keys.
+* Runs all updates in parallel to avoid N sequential database calls.
+*/
+async function batchMigrateLegacyMetadata(ctx, apiKeys, opts) {
+	if (opts.storage !== "database" && !opts.fallbackToDatabase) return;
+	const keysToMigrate = apiKeys.filter((key) => needsMetadataMigration(key.metadata));
+	if (keysToMigrate.length === 0) return;
+	const migrationPromises = keysToMigrate.map(async (apiKey) => {
+		const parsed = parseDoubleStringifiedMetadata(apiKey.metadata);
+		try {
+			await ctx.context.adapter.update({
+				model: "apikey",
+				where: [{
+					field: "id",
+					value: apiKey.id
+				}],
+				update: { metadata: parsed }
+			});
+		} catch (error) {
+			ctx.context.logger.warn(`Failed to migrate double-stringified metadata for API key ${apiKey.id}:`, error);
+		}
+	});
+	await Promise.all(migrationPromises);
+}
+/**
+* Migrates double-stringified metadata to properly parsed object.
+*
+* This handles legacy data where metadata was incorrectly double-stringified.
+* If metadata is a string (should be object after adapter's transform.output),
+* it parses it and optionally updates the database.
+*
+* @returns The properly parsed metadata object
+*/
+async function migrateDoubleStringifiedMetadata(ctx, apiKey, opts) {
+	const parsed = parseDoubleStringifiedMetadata(apiKey.metadata);
+	if (needsMetadataMigration(apiKey.metadata) && (opts.storage === "database" || opts.fallbackToDatabase)) try {
+		await ctx.context.adapter.update({
+			model: "apikey",
+			where: [{
+				field: "id",
+				value: apiKey.id
+			}],
+			update: { metadata: parsed }
+		});
+	} catch (error) {
+		ctx.context.logger.warn(`Failed to migrate double-stringified metadata for API key ${apiKey.id}:`, error);
+	}
+	return parsed;
+}
+/**
+* Generate storage key for API key by hashed key
+*/
+function getStorageKeyByHashedKey(hashedKey) {
+	return `api-key:${hashedKey}`;
+}
+/**
+* Generate storage key for API key by ID
+*/
+function getStorageKeyById(id) {
+	return `api-key:by-id:${id}`;
+}
+/**
+* Generate storage key for user's API key list
+*/
+function getStorageKeyByUserId(userId) {
+	return `api-key:by-user:${userId}`;
+}
+/**
+* Serialize API key for storage
+*/
+function serializeApiKey(apiKey) {
+	return JSON.stringify({
+		...apiKey,
+		createdAt: apiKey.createdAt.toISOString(),
+		updatedAt: apiKey.updatedAt.toISOString(),
+		expiresAt: apiKey.expiresAt?.toISOString() ?? null,
+		lastRefillAt: apiKey.lastRefillAt?.toISOString() ?? null,
+		lastRequest: apiKey.lastRequest?.toISOString() ?? null
+	});
+}
+/**
+* Deserialize API key from storage
+*/
+function deserializeApiKey(data) {
+	if (!data || typeof data !== "string") return null;
+	try {
+		const parsed = JSON.parse(data);
+		return {
+			...parsed,
+			createdAt: new Date(parsed.createdAt),
+			updatedAt: new Date(parsed.updatedAt),
+			expiresAt: parsed.expiresAt ? new Date(parsed.expiresAt) : null,
+			lastRefillAt: parsed.lastRefillAt ? new Date(parsed.lastRefillAt) : null,
+			lastRequest: parsed.lastRequest ? new Date(parsed.lastRequest) : null
+		};
+	} catch {
+		return null;
+	}
+}
+/**
+* Get the storage instance to use (custom methods take precedence)
+*/
+function getStorageInstance(ctx, opts) {
+	if (opts.customStorage) return opts.customStorage;
+	return ctx.context.secondaryStorage || null;
+}
+/**
+* Calculate TTL in seconds for an API key
+*/
+function calculateTTL(apiKey) {
+	if (apiKey.expiresAt) {
+		const now = Date.now();
+		const expiresAt = new Date(apiKey.expiresAt).getTime();
+		const ttlSeconds = Math.floor((expiresAt - now) / 1e3);
+		if (ttlSeconds > 0) return ttlSeconds;
+	}
+}
+/**
+* Get API key from secondary storage by hashed key
+*/
+async function getApiKeyFromStorage(ctx, hashedKey, storage) {
+	const key = getStorageKeyByHashedKey(hashedKey);
+	return deserializeApiKey(await storage.get(key));
+}
+/**
+* Get API key from secondary storage by ID
+*/
+async function getApiKeyByIdFromStorage(ctx, id, storage) {
+	const key = getStorageKeyById(id);
+	return deserializeApiKey(await storage.get(key));
+}
+/**
+* Store API key in secondary storage
+*/
+async function setApiKeyInStorage(ctx, apiKey, storage, ttl) {
+	const serialized = serializeApiKey(apiKey);
+	const hashedKey = apiKey.key;
+	const id = apiKey.id;
+	await storage.set(getStorageKeyByHashedKey(hashedKey), serialized, ttl);
+	await storage.set(getStorageKeyById(id), serialized, ttl);
+	const userKey = getStorageKeyByUserId(apiKey.userId);
+	const userListData = await storage.get(userKey);
+	let userIds = [];
+	if (userListData && typeof userListData === "string") try {
+		userIds = JSON.parse(userListData);
+	} catch {
+		userIds = [];
+	}
+	else if (Array.isArray(userListData)) userIds = userListData;
+	if (!userIds.includes(id)) {
+		userIds.push(id);
+		await storage.set(userKey, JSON.stringify(userIds));
+	}
+}
+/**
+* Delete API key from secondary storage
+*/
+async function deleteApiKeyFromStorage(ctx, apiKey, storage) {
+	const hashedKey = apiKey.key;
+	const id = apiKey.id;
+	const userId = apiKey.userId;
+	await storage.delete(getStorageKeyByHashedKey(hashedKey));
+	await storage.delete(getStorageKeyById(id));
+	const userKey = getStorageKeyByUserId(userId);
+	const userListData = await storage.get(userKey);
+	let userIds = [];
+	if (userListData && typeof userListData === "string") try {
+		userIds = JSON.parse(userListData);
+	} catch {
+		userIds = [];
+	}
+	else if (Array.isArray(userListData)) userIds = userListData;
+	const filteredIds = userIds.filter((keyId) => keyId !== id);
+	if (filteredIds.length === 0) await storage.delete(userKey);
+	else await storage.set(userKey, JSON.stringify(filteredIds));
+}
+/**
+* Unified getter for API keys with support for all storage modes
+*/
+async function getApiKey(ctx, hashedKey, opts) {
+	const storage = getStorageInstance(ctx, opts);
+	if (opts.storage === "database") return await ctx.context.adapter.findOne({
+		model: "apikey",
+		where: [{
+			field: "key",
+			value: hashedKey
+		}]
+	});
+	if (opts.storage === "secondary-storage" && opts.fallbackToDatabase) {
+		if (storage) {
+			const cached = await getApiKeyFromStorage(ctx, hashedKey, storage);
+			if (cached) return cached;
+		}
+		const dbKey = await ctx.context.adapter.findOne({
+			model: "apikey",
+			where: [{
+				field: "key",
+				value: hashedKey
+			}]
+		});
+		if (dbKey && storage) await setApiKeyInStorage(ctx, dbKey, storage, calculateTTL(dbKey));
+		return dbKey;
+	}
+	if (opts.storage === "secondary-storage") {
+		if (!storage) return null;
+		return await getApiKeyFromStorage(ctx, hashedKey, storage);
+	}
+	return await ctx.context.adapter.findOne({
+		model: "apikey",
+		where: [{
+			field: "key",
+			value: hashedKey
+		}]
+	});
+}
+/**
+* Unified getter for API keys by ID
+*/
+async function getApiKeyById(ctx, id, opts) {
+	const storage = getStorageInstance(ctx, opts);
+	if (opts.storage === "database") return await ctx.context.adapter.findOne({
+		model: "apikey",
+		where: [{
+			field: "id",
+			value: id
+		}]
+	});
+	if (opts.storage === "secondary-storage" && opts.fallbackToDatabase) {
+		if (storage) {
+			const cached = await getApiKeyByIdFromStorage(ctx, id, storage);
+			if (cached) return cached;
+		}
+		const dbKey = await ctx.context.adapter.findOne({
+			model: "apikey",
+			where: [{
+				field: "id",
+				value: id
+			}]
+		});
+		if (dbKey && storage) await setApiKeyInStorage(ctx, dbKey, storage, calculateTTL(dbKey));
+		return dbKey;
+	}
+	if (opts.storage === "secondary-storage") {
+		if (!storage) return null;
+		return await getApiKeyByIdFromStorage(ctx, id, storage);
+	}
+	return await ctx.context.adapter.findOne({
+		model: "apikey",
+		where: [{
+			field: "id",
+			value: id
+		}]
+	});
+}
+/**
+* Unified setter for API keys with support for all storage modes
+*/
+async function setApiKey(ctx, apiKey, opts) {
+	const storage = getStorageInstance(ctx, opts);
+	const ttl = calculateTTL(apiKey);
+	if (opts.storage === "database") return;
+	if (opts.storage === "secondary-storage") {
+		if (!storage) throw new Error("Secondary storage is required when storage mode is 'secondary-storage'");
+		await setApiKeyInStorage(ctx, apiKey, storage, ttl);
+		return;
+	}
+}
+/**
+* Unified deleter for API keys with support for all storage modes
+*/
+async function deleteApiKey(ctx, apiKey, opts) {
+	const storage = getStorageInstance(ctx, opts);
+	if (opts.storage === "database") return;
+	if (opts.storage === "secondary-storage") {
+		if (!storage) throw new Error("Secondary storage is required when storage mode is 'secondary-storage'");
+		await deleteApiKeyFromStorage(ctx, apiKey, storage);
+		return;
+	}
+}
+/**
+* Apply sorting and pagination to an array of API keys in memory
+* Used for secondary storage mode where we can't rely on database operations
+*/
+function applySortingAndPagination(apiKeys, sortBy, sortDirection, limit, offset) {
+	let result = [...apiKeys];
+	if (sortBy) {
+		const direction = sortDirection || "asc";
+		result.sort((a, b) => {
+			const aValue = a[sortBy];
+			const bValue = b[sortBy];
+			if (aValue == null && bValue == null) return 0;
+			if (aValue == null) return direction === "asc" ? -1 : 1;
+			if (bValue == null) return direction === "asc" ? 1 : -1;
+			if (aValue < bValue) return direction === "asc" ? -1 : 1;
+			if (aValue > bValue) return direction === "asc" ? 1 : -1;
+			return 0;
+		});
+	}
+	if (offset !== void 0) result = result.slice(offset);
+	if (limit !== void 0) result = result.slice(0, limit);
+	return result;
+}
+/**
+* List API keys for a user with support for all storage modes
+*/
+async function listApiKeys(ctx, userId, opts, paginationOpts) {
+	const storage = getStorageInstance(ctx, opts);
+	const { limit, offset, sortBy, sortDirection } = paginationOpts || {};
+	if (opts.storage === "database") {
+		const [apiKeys, total] = await Promise.all([ctx.context.adapter.findMany({
+			model: "apikey",
+			where: [{
+				field: "userId",
+				value: userId
+			}],
+			limit,
+			offset,
+			sortBy: sortBy ? {
+				field: sortBy,
+				direction: sortDirection || "asc"
+			} : void 0
+		}), ctx.context.adapter.count({
+			model: "apikey",
+			where: [{
+				field: "userId",
+				value: userId
+			}]
+		})]);
+		return {
+			apiKeys,
+			total
+		};
+	}
+	if (opts.storage === "secondary-storage" && opts.fallbackToDatabase) {
+		const userKey = getStorageKeyByUserId(userId);
+		if (storage) {
+			const userListData = await storage.get(userKey);
+			let userIds = [];
+			if (userListData && typeof userListData === "string") try {
+				userIds = JSON.parse(userListData);
+			} catch {
+				userIds = [];
+			}
+			else if (Array.isArray(userListData)) userIds = userListData;
+			if (userIds.length > 0) {
+				const apiKeys = [];
+				for (const id of userIds) {
+					const apiKey = await getApiKeyByIdFromStorage(ctx, id, storage);
+					if (apiKey) apiKeys.push(apiKey);
+				}
+				return {
+					apiKeys: applySortingAndPagination(apiKeys, sortBy, sortDirection, limit, offset),
+					total: apiKeys.length
+				};
+			}
+		}
+		const [dbKeys, total] = await Promise.all([ctx.context.adapter.findMany({
+			model: "apikey",
+			where: [{
+				field: "userId",
+				value: userId
+			}],
+			limit,
+			offset,
+			sortBy: sortBy ? {
+				field: sortBy,
+				direction: sortDirection || "asc"
+			} : void 0
+		}), ctx.context.adapter.count({
+			model: "apikey",
+			where: [{
+				field: "userId",
+				value: userId
+			}]
+		})]);
+		if (storage && dbKeys.length > 0) {
+			const userIds = [];
+			for (const apiKey of dbKeys) {
+				await setApiKeyInStorage(ctx, apiKey, storage, calculateTTL(apiKey));
+				userIds.push(apiKey.id);
+			}
+			await storage.set(userKey, JSON.stringify(userIds));
+		}
+		return {
+			apiKeys: dbKeys,
+			total
+		};
+	}
+	if (opts.storage === "secondary-storage") {
+		if (!storage) return {
+			apiKeys: [],
+			total: 0
+		};
+		const userKey = getStorageKeyByUserId(userId);
+		const userListData = await storage.get(userKey);
+		let userIds = [];
+		if (userListData && typeof userListData === "string") try {
+			userIds = JSON.parse(userListData);
+		} catch {
+			return {
+				apiKeys: [],
+				total: 0
+			};
+		}
+		else if (Array.isArray(userListData)) userIds = userListData;
+		else return {
+			apiKeys: [],
+			total: 0
+		};
+		const apiKeys = [];
+		for (const id of userIds) {
+			const apiKey = await getApiKeyByIdFromStorage(ctx, id, storage);
+			if (apiKey) apiKeys.push(apiKey);
+		}
+		return {
+			apiKeys: applySortingAndPagination(apiKeys, sortBy, sortDirection, limit, offset),
+			total: apiKeys.length
+		};
+	}
+	const [apiKeys, total] = await Promise.all([ctx.context.adapter.findMany({
+		model: "apikey",
+		where: [{
+			field: "userId",
+			value: userId
+		}],
+		limit,
+		offset,
+		sortBy: sortBy ? {
+			field: sortBy,
+			direction: sortDirection || "asc"
+		} : void 0
+	}), ctx.context.adapter.count({
+		model: "apikey",
+		where: [{
+			field: "userId",
+			value: userId
+		}]
+	})]);
+	return {
+		apiKeys,
+		total
+	};
+}
+
+//#endregion
+export { batchMigrateLegacyMetadata, deleteApiKey, getApiKey, getApiKeyById, listApiKeys, migrateDoubleStringifiedMetadata, parseDoubleStringifiedMetadata, setApiKey };
+//# sourceMappingURL=adapter.mjs.map

package/dist/plugins/api-key/adapter.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"adapter.mjs","names":[],"sources":["../../../src/plugins/api-key/adapter.ts"],"sourcesContent":["import type { GenericEndpointContext } from \"@better-auth/core\";\nimport type { SecondaryStorage } from \"@better-auth/core/db\";\nimport { safeJSONParse } from \"@better-auth/core/utils/json\";\nimport type { PredefinedApiKeyOptions } from \"./routes\";\nimport type { ApiKey } from \"./types\";\n\n/**\n * Parses double-stringified metadata synchronously without updating the database.\n * Use this for reading metadata, then call migrateLegacyMetadataInBackground for DB updates.\n *\n * @returns The properly parsed metadata object, or the original if already an object\n */\nexport function parseDoubleStringifiedMetadata(\n\tmetadata: ApiKey[\"metadata\"],\n): Record<string, any> | null {\n\t// If metadata is null/undefined, return null\n\tif (metadata == null) {\n\t\treturn null;\n\t}\n\n\t// If metadata is already an object, no migration needed\n\tif (typeof metadata === \"object\") {\n\t\treturn metadata;\n\t}\n\n\t// Metadata is a string - this is legacy double-stringified data\n\t// Parse it to get the actual object\n\treturn safeJSONParse<Record<string, any>>(metadata);\n}\n\n/**\n * Checks if metadata needs migration (is a string instead of object)\n */\nfunction needsMetadataMigration(metadata: ApiKey[\"metadata\"]): boolean {\n\treturn metadata != null && typeof metadata === \"string\";\n}\n\n/**\n * Batch migrates double-stringified metadata for multiple API keys.\n * Runs all updates in parallel to avoid N sequential database calls.\n */\nexport async function batchMigrateLegacyMetadata(\n\tctx: GenericEndpointContext,\n\tapiKeys: ApiKey[],\n\topts: PredefinedApiKeyOptions,\n): Promise<void> {\n\t// Only migrate for database storage\n\tif (opts.storage !== \"database\" && !opts.fallbackToDatabase) {\n\t\treturn;\n\t}\n\n\t// Filter keys that need migration\n\tconst keysToMigrate = apiKeys.filter((key) =>\n\t\tneedsMetadataMigration(key.metadata),\n\t);\n\n\tif (keysToMigrate.length === 0) {\n\t\treturn;\n\t}\n\n\t// Run migrations in parallel (not sequentially)\n\tconst migrationPromises = keysToMigrate.map(async (apiKey) => {\n\t\tconst parsed = parseDoubleStringifiedMetadata(apiKey.metadata);\n\t\ttry {\n\t\t\tawait ctx.context.adapter.update({\n\t\t\t\tmodel: \"apikey\",\n\t\t\t\twhere: [{ field: \"id\", value: apiKey.id }],\n\t\t\t\tupdate: { metadata: parsed },\n\t\t\t});\n\t\t} catch (error) {\n\t\t\tctx.context.logger.warn(\n\t\t\t\t`Failed to migrate double-stringified metadata for API key ${apiKey.id}:`,\n\t\t\t\terror,\n\t\t\t);\n\t\t}\n\t});\n\n\tawait Promise.all(migrationPromises);\n}\n\n/**\n * Migrates double-stringified metadata to properly parsed object.\n *\n * This handles legacy data where metadata was incorrectly double-stringified.\n * If metadata is a string (should be object after adapter's transform.output),\n * it parses it and optionally updates the database.\n *\n * @returns The properly parsed metadata object\n */\nexport async function migrateDoubleStringifiedMetadata(\n\tctx: GenericEndpointContext,\n\tapiKey: ApiKey,\n\topts: PredefinedApiKeyOptions,\n): Promise<Record<string, any> | null> {\n\tconst parsed = parseDoubleStringifiedMetadata(apiKey.metadata);\n\n\t// Update the database to fix the legacy data (only for database storage)\n\tif (\n\t\tneedsMetadataMigration(apiKey.metadata) &&\n\t\t(opts.storage === \"database\" || opts.fallbackToDatabase)\n\t) {\n\t\ttry {\n\t\t\tawait ctx.context.adapter.update({\n\t\t\t\tmodel: \"apikey\",\n\t\t\t\twhere: [{ field: \"id\", value: apiKey.id }],\n\t\t\t\tupdate: { metadata: parsed },\n\t\t\t});\n\t\t} catch (error) {\n\t\t\t// Log but don't fail the request if migration update fails\n\t\t\tctx.context.logger.warn(\n\t\t\t\t`Failed to migrate double-stringified metadata for API key ${apiKey.id}:`,\n\t\t\t\terror,\n\t\t\t);\n\t\t}\n\t}\n\n\treturn parsed;\n}\n\n/**\n * Generate storage key for API key by hashed key\n */\nfunction getStorageKeyByHashedKey(hashedKey: string): string {\n\treturn `api-key:${hashedKey}`;\n}\n\n/**\n * Generate storage key for API key by ID\n */\nfunction getStorageKeyById(id: string): string {\n\treturn `api-key:by-id:${id}`;\n}\n\n/**\n * Generate storage key for user's API key list\n */\nfunction getStorageKeyByUserId(userId: string): string {\n\treturn `api-key:by-user:${userId}`;\n}\n\n/**\n * Serialize API key for storage\n */\nfunction serializeApiKey(apiKey: ApiKey): string {\n\treturn JSON.stringify({\n\t\t...apiKey,\n\t\tcreatedAt: apiKey.createdAt.toISOString(),\n\t\tupdatedAt: apiKey.updatedAt.toISOString(),\n\t\texpiresAt: apiKey.expiresAt?.toISOString() ?? null,\n\t\tlastRefillAt: apiKey.lastRefillAt?.toISOString() ?? null,\n\t\tlastRequest: apiKey.lastRequest?.toISOString() ?? null,\n\t});\n}\n\n/**\n * Deserialize API key from storage\n */\nfunction deserializeApiKey(data: unknown): ApiKey | null {\n\tif (!data || typeof data !== \"string\") {\n\t\treturn null;\n\t}\n\n\ttry {\n\t\tconst parsed = JSON.parse(data);\n\t\treturn {\n\t\t\t...parsed,\n\t\t\tcreatedAt: new Date(parsed.createdAt),\n\t\t\tupdatedAt: new Date(parsed.updatedAt),\n\t\t\texpiresAt: parsed.expiresAt ? new Date(parsed.expiresAt) : null,\n\t\t\tlastRefillAt: parsed.lastRefillAt ? new Date(parsed.lastRefillAt) : null,\n\t\t\tlastRequest: parsed.lastRequest ? new Date(parsed.lastRequest) : null,\n\t\t} as ApiKey;\n\t} catch {\n\t\treturn null;\n\t}\n}\n\n/**\n * Get the storage instance to use (custom methods take precedence)\n */\nfunction getStorageInstance(\n\tctx: GenericEndpointContext,\n\topts: PredefinedApiKeyOptions,\n): SecondaryStorage | null {\n\tif (opts.customStorage) {\n\t\treturn opts.customStorage as SecondaryStorage;\n\t}\n\treturn ctx.context.secondaryStorage || null;\n}\n\n/**\n * Calculate TTL in seconds for an API key\n */\nfunction calculateTTL(apiKey: ApiKey): number | undefined {\n\tif (apiKey.expiresAt) {\n\t\tconst now = Date.now();\n\t\tconst expiresAt = new Date(apiKey.expiresAt).getTime();\n\t\tconst ttlSeconds = Math.floor((expiresAt - now) / 1000);\n\t\t// Only set TTL if expiration is in the future\n\t\tif (ttlSeconds > 0) {\n\t\t\treturn ttlSeconds;\n\t\t}\n\t}\n\n\treturn undefined;\n}\n\n/**\n * Get API key from secondary storage by hashed key\n */\nasync function getApiKeyFromStorage(\n\tctx: GenericEndpointContext,\n\thashedKey: string,\n\tstorage: SecondaryStorage,\n): Promise<ApiKey | null> {\n\tconst key = getStorageKeyByHashedKey(hashedKey);\n\tconst data = await storage.get(key);\n\treturn deserializeApiKey(data);\n}\n\n/**\n * Get API key from secondary storage by ID\n */\nasync function getApiKeyByIdFromStorage(\n\tctx: GenericEndpointContext,\n\tid: string,\n\tstorage: SecondaryStorage,\n): Promise<ApiKey | null> {\n\tconst key = getStorageKeyById(id);\n\tconst data = await storage.get(key);\n\treturn deserializeApiKey(data);\n}\n\n/**\n * Store API key in secondary storage\n */\nasync function setApiKeyInStorage(\n\tctx: GenericEndpointContext,\n\tapiKey: ApiKey,\n\tstorage: SecondaryStorage,\n\tttl?: number | undefined,\n): Promise<void> {\n\tconst serialized = serializeApiKey(apiKey);\n\tconst hashedKey = apiKey.key;\n\tconst id = apiKey.id;\n\n\t// Store by hashed key (primary lookup)\n\tawait storage.set(getStorageKeyByHashedKey(hashedKey), serialized, ttl);\n\n\t// Store by ID (for ID-based lookups)\n\tawait storage.set(getStorageKeyById(id), serialized, ttl);\n\n\t// Update user's API key list\n\tconst userKey = getStorageKeyByUserId(apiKey.userId);\n\tconst userListData = await storage.get(userKey);\n\tlet userIds: string[] = [];\n\n\tif (userListData && typeof userListData === \"string\") {\n\t\ttry {\n\t\t\tuserIds = JSON.parse(userListData);\n\t\t} catch {\n\t\t\tuserIds = [];\n\t\t}\n\t} else if (Array.isArray(userListData)) {\n\t\tuserIds = userListData;\n\t}\n\n\tif (!userIds.includes(id)) {\n\t\tuserIds.push(id);\n\t\tawait storage.set(userKey, JSON.stringify(userIds));\n\t}\n}\n\n/**\n * Delete API key from secondary storage\n */\nasync function deleteApiKeyFromStorage(\n\tctx: GenericEndpointContext,\n\tapiKey: ApiKey,\n\tstorage: SecondaryStorage,\n): Promise<void> {\n\tconst hashedKey = apiKey.key;\n\tconst id = apiKey.id;\n\tconst userId = apiKey.userId;\n\n\t// Delete by hashed key\n\tawait storage.delete(getStorageKeyByHashedKey(hashedKey));\n\n\t// Delete by ID\n\tawait storage.delete(getStorageKeyById(id));\n\n\t// Update user's API key list\n\tconst userKey = getStorageKeyByUserId(userId);\n\tconst userListData = await storage.get(userKey);\n\tlet userIds: string[] = [];\n\n\tif (userListData && typeof userListData === \"string\") {\n\t\ttry {\n\t\t\tuserIds = JSON.parse(userListData);\n\t\t} catch {\n\t\t\tuserIds = [];\n\t\t}\n\t} else if (Array.isArray(userListData)) {\n\t\tuserIds = userListData;\n\t}\n\n\tconst filteredIds = userIds.filter((keyId) => keyId !== id);\n\tif (filteredIds.length === 0) {\n\t\tawait storage.delete(userKey);\n\t} else {\n\t\tawait storage.set(userKey, JSON.stringify(filteredIds));\n\t}\n}\n\n/**\n * Unified getter for API keys with support for all storage modes\n */\nexport async function getApiKey(\n\tctx: GenericEndpointContext,\n\thashedKey: string,\n\topts: PredefinedApiKeyOptions,\n): Promise<ApiKey | null> {\n\tconst storage = getStorageInstance(ctx, opts);\n\n\t// Database mode only\n\tif (opts.storage === \"database\") {\n\t\treturn await ctx.context.adapter.findOne<ApiKey>({\n\t\t\tmodel: \"apikey\",\n\t\t\twhere: [\n\t\t\t\t{\n\t\t\t\t\tfield: \"key\",\n\t\t\t\t\tvalue: hashedKey,\n\t\t\t\t},\n\t\t\t],\n\t\t});\n\t}\n\n\t// Secondary storage mode with fallback\n\tif (opts.storage === \"secondary-storage\" && opts.fallbackToDatabase) {\n\t\tif (storage) {\n\t\t\tconst cached = await getApiKeyFromStorage(ctx, hashedKey, storage);\n\t\t\tif (cached) {\n\t\t\t\treturn cached;\n\t\t\t}\n\t\t}\n\t\tconst dbKey = await ctx.context.adapter.findOne<ApiKey>({\n\t\t\tmodel: \"apikey\",\n\t\t\twhere: [\n\t\t\t\t{\n\t\t\t\t\tfield: \"key\",\n\t\t\t\t\tvalue: hashedKey,\n\t\t\t\t},\n\t\t\t],\n\t\t});\n\n\t\tif (dbKey && storage) {\n\t\t\t// Populate secondary storage for future reads\n\t\t\tconst ttl = calculateTTL(dbKey);\n\t\t\tawait setApiKeyInStorage(ctx, dbKey, storage, ttl);\n\t\t}\n\n\t\treturn dbKey;\n\t}\n\n\t// Secondary storage mode only\n\tif (opts.storage === \"secondary-storage\") {\n\t\tif (!storage) {\n\t\t\treturn null;\n\t\t}\n\t\treturn await getApiKeyFromStorage(ctx, hashedKey, storage);\n\t}\n\n\t// Default fallback\n\treturn await ctx.context.adapter.findOne<ApiKey>({\n\t\tmodel: \"apikey\",\n\t\twhere: [\n\t\t\t{\n\t\t\t\tfield: \"key\",\n\t\t\t\tvalue: hashedKey,\n\t\t\t},\n\t\t],\n\t});\n}\n\n/**\n * Unified getter for API keys by ID\n */\nexport async function getApiKeyById(\n\tctx: GenericEndpointContext,\n\tid: string,\n\topts: PredefinedApiKeyOptions,\n): Promise<ApiKey | null> {\n\tconst storage = getStorageInstance(ctx, opts);\n\n\t// Database mode only\n\tif (opts.storage === \"database\") {\n\t\treturn await ctx.context.adapter.findOne<ApiKey>({\n\t\t\tmodel: \"apikey\",\n\t\t\twhere: [\n\t\t\t\t{\n\t\t\t\t\tfield: \"id\",\n\t\t\t\t\tvalue: id,\n\t\t\t\t},\n\t\t\t],\n\t\t});\n\t}\n\n\t// Secondary storage mode with fallback\n\tif (opts.storage === \"secondary-storage\" && opts.fallbackToDatabase) {\n\t\tif (storage) {\n\t\t\tconst cached = await getApiKeyByIdFromStorage(ctx, id, storage);\n\t\t\tif (cached) {\n\t\t\t\treturn cached;\n\t\t\t}\n\t\t}\n\t\tconst dbKey = await ctx.context.adapter.findOne<ApiKey>({\n\t\t\tmodel: \"apikey\",\n\t\t\twhere: [\n\t\t\t\t{\n\t\t\t\t\tfield: \"id\",\n\t\t\t\t\tvalue: id,\n\t\t\t\t},\n\t\t\t],\n\t\t});\n\n\t\tif (dbKey && storage) {\n\t\t\t// Populate secondary storage for future reads\n\t\t\tconst ttl = calculateTTL(dbKey);\n\t\t\tawait setApiKeyInStorage(ctx, dbKey, storage, ttl);\n\t\t}\n\n\t\treturn dbKey;\n\t}\n\n\t// Secondary storage mode only\n\tif (opts.storage === \"secondary-storage\") {\n\t\tif (!storage) {\n\t\t\treturn null;\n\t\t}\n\t\treturn await getApiKeyByIdFromStorage(ctx, id, storage);\n\t}\n\n\t// Default fallback\n\treturn await ctx.context.adapter.findOne<ApiKey>({\n\t\tmodel: \"apikey\",\n\t\twhere: [\n\t\t\t{\n\t\t\t\tfield: \"id\",\n\t\t\t\tvalue: id,\n\t\t\t},\n\t\t],\n\t});\n}\n\n/**\n * Unified setter for API keys with support for all storage modes\n */\nexport async function setApiKey(\n\tctx: GenericEndpointContext,\n\tapiKey: ApiKey,\n\topts: PredefinedApiKeyOptions,\n): Promise<void> {\n\tconst storage = getStorageInstance(ctx, opts);\n\tconst ttl = calculateTTL(apiKey);\n\n\t// Database mode only - handled by adapter in route handlers\n\tif (opts.storage === \"database\") {\n\t\treturn;\n\t}\n\n\t// Secondary storage mode (with or without fallback)\n\tif (opts.storage === \"secondary-storage\") {\n\t\tif (!storage) {\n\t\t\tthrow new Error(\n\t\t\t\t\"Secondary storage is required when storage mode is 'secondary-storage'\",\n\t\t\t);\n\t\t}\n\t\tawait setApiKeyInStorage(ctx, apiKey, storage, ttl);\n\t\treturn;\n\t}\n}\n\n/**\n * Unified deleter for API keys with support for all storage modes\n */\nexport async function deleteApiKey(\n\tctx: GenericEndpointContext,\n\tapiKey: ApiKey,\n\topts: PredefinedApiKeyOptions,\n): Promise<void> {\n\tconst storage = getStorageInstance(ctx, opts);\n\n\t// Database mode only - handled by adapter in route handlers\n\tif (opts.storage === \"database\") {\n\t\treturn;\n\t}\n\n\t// Secondary storage mode (with or without fallback)\n\tif (opts.storage === \"secondary-storage\") {\n\t\tif (!storage) {\n\t\t\tthrow new Error(\n\t\t\t\t\"Secondary storage is required when storage mode is 'secondary-storage'\",\n\t\t\t);\n\t\t}\n\t\tawait deleteApiKeyFromStorage(ctx, apiKey, storage);\n\t\treturn;\n\t}\n}\n\nexport interface ListApiKeysOptions {\n\tlimit?: number;\n\toffset?: number;\n\tsortBy?: string;\n\tsortDirection?: \"asc\" | \"desc\";\n}\n\nexport interface ListApiKeysResult {\n\tapiKeys: ApiKey[];\n\ttotal: number;\n}\n\n/**\n * Apply sorting and pagination to an array of API keys in memory\n * Used for secondary storage mode where we can't rely on database operations\n */\nfunction applySortingAndPagination(\n\tapiKeys: ApiKey[],\n\tsortBy?: string,\n\tsortDirection?: \"asc\" | \"desc\",\n\tlimit?: number,\n\toffset?: number,\n): ApiKey[] {\n\tlet result = [...apiKeys];\n\n\t// Apply sorting if sortBy is specified\n\tif (sortBy) {\n\t\tconst direction = sortDirection || \"asc\";\n\t\tresult.sort((a, b) => {\n\t\t\tconst aValue = a[sortBy as keyof ApiKey];\n\t\t\tconst bValue = b[sortBy as keyof ApiKey];\n\n\t\t\t// Handle null/undefined values\n\t\t\tif (aValue == null && bValue == null) return 0;\n\t\t\tif (aValue == null) return direction === \"asc\" ? -1 : 1;\n\t\t\tif (bValue == null) return direction === \"asc\" ? 1 : -1;\n\n\t\t\t// Compare values\n\t\t\tif (aValue < bValue) return direction === \"asc\" ? -1 : 1;\n\t\t\tif (aValue > bValue) return direction === \"asc\" ? 1 : -1;\n\t\t\treturn 0;\n\t\t});\n\t}\n\n\t// Apply pagination\n\tif (offset !== undefined) {\n\t\tresult = result.slice(offset);\n\t}\n\tif (limit !== undefined) {\n\t\tresult = result.slice(0, limit);\n\t}\n\n\treturn result;\n}\n\n/**\n * List API keys for a user with support for all storage modes\n */\nexport async function listApiKeys(\n\tctx: GenericEndpointContext,\n\tuserId: string,\n\topts: PredefinedApiKeyOptions,\n\tpaginationOpts?: ListApiKeysOptions,\n): Promise<ListApiKeysResult> {\n\tconst storage = getStorageInstance(ctx, opts);\n\tconst { limit, offset, sortBy, sortDirection } = paginationOpts || {};\n\n\t// Database mode only\n\tif (opts.storage === \"database\") {\n\t\tconst [apiKeys, total] = await Promise.all([\n\t\t\tctx.context.adapter.findMany<ApiKey>({\n\t\t\t\tmodel: \"apikey\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tfield: \"userId\",\n\t\t\t\t\t\tvalue: userId,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t\tlimit,\n\t\t\t\toffset,\n\t\t\t\tsortBy: sortBy\n\t\t\t\t\t? { field: sortBy, direction: sortDirection || \"asc\" }\n\t\t\t\t\t: undefined,\n\t\t\t}),\n\t\t\tctx.context.adapter.count({\n\t\t\t\tmodel: \"apikey\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tfield: \"userId\",\n\t\t\t\t\t\tvalue: userId,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t}),\n\t\t]);\n\t\treturn { apiKeys, total };\n\t}\n\n\t// Secondary storage mode with fallback\n\tif (opts.storage === \"secondary-storage\" && opts.fallbackToDatabase) {\n\t\tconst userKey = getStorageKeyByUserId(userId);\n\n\t\tif (storage) {\n\t\t\tconst userListData = await storage.get(userKey);\n\t\t\tlet userIds: string[] = [];\n\n\t\t\tif (userListData && typeof userListData === \"string\") {\n\t\t\t\ttry {\n\t\t\t\t\tuserIds = JSON.parse(userListData);\n\t\t\t\t} catch {\n\t\t\t\t\tuserIds = [];\n\t\t\t\t}\n\t\t\t} else if (Array.isArray(userListData)) {\n\t\t\t\tuserIds = userListData;\n\t\t\t}\n\n\t\t\tif (userIds.length > 0) {\n\t\t\t\tconst apiKeys: ApiKey[] = [];\n\t\t\t\tfor (const id of userIds) {\n\t\t\t\t\tconst apiKey = await getApiKeyByIdFromStorage(ctx, id, storage);\n\t\t\t\t\tif (apiKey) {\n\t\t\t\t\t\tapiKeys.push(apiKey);\n\t\t\t\t\t}\n\t\t\t\t}\n\t\t\t\t// Apply sorting and pagination in memory for secondary storage\n\t\t\t\tconst sortedKeys = applySortingAndPagination(\n\t\t\t\t\tapiKeys,\n\t\t\t\t\tsortBy,\n\t\t\t\t\tsortDirection,\n\t\t\t\t\tlimit,\n\t\t\t\t\toffset,\n\t\t\t\t);\n\t\t\t\treturn { apiKeys: sortedKeys, total: apiKeys.length };\n\t\t\t}\n\t\t}\n\t\t// Fallback to database\n\t\tconst [dbKeys, total] = await Promise.all([\n\t\t\tctx.context.adapter.findMany<ApiKey>({\n\t\t\t\tmodel: \"apikey\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tfield: \"userId\",\n\t\t\t\t\t\tvalue: userId,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t\tlimit,\n\t\t\t\toffset,\n\t\t\t\tsortBy: sortBy\n\t\t\t\t\t? { field: sortBy, direction: sortDirection || \"asc\" }\n\t\t\t\t\t: undefined,\n\t\t\t}),\n\t\t\tctx.context.adapter.count({\n\t\t\t\tmodel: \"apikey\",\n\t\t\t\twhere: [\n\t\t\t\t\t{\n\t\t\t\t\t\tfield: \"userId\",\n\t\t\t\t\t\tvalue: userId,\n\t\t\t\t\t},\n\t\t\t\t],\n\t\t\t}),\n\t\t]);\n\n\t\t// Populate secondary storage with fetched keys\n\t\tif (storage && dbKeys.length > 0) {\n\t\t\tconst userIds: string[] = [];\n\t\t\tfor (const apiKey of dbKeys) {\n\t\t\t\t// Store each key in secondary storage\n\t\t\t\tconst ttl = calculateTTL(apiKey);\n\t\t\t\tawait setApiKeyInStorage(ctx, apiKey, storage, ttl);\n\t\t\t\tuserIds.push(apiKey.id);\n\t\t\t}\n\t\t\t// Update user's key list in secondary storage\n\t\t\tawait storage.set(userKey, JSON.stringify(userIds));\n\t\t}\n\n\t\treturn { apiKeys: dbKeys, total };\n\t}\n\n\t// Secondary storage mode only\n\tif (opts.storage === \"secondary-storage\") {\n\t\tif (!storage) {\n\t\t\treturn { apiKeys: [], total: 0 };\n\t\t}\n\n\t\tconst userKey = getStorageKeyByUserId(userId);\n\t\tconst userListData = await storage.get(userKey);\n\t\tlet userIds: string[] = [];\n\n\t\tif (userListData && typeof userListData === \"string\") {\n\t\t\ttry {\n\t\t\t\tuserIds = JSON.parse(userListData);\n\t\t\t} catch {\n\t\t\t\treturn { apiKeys: [], total: 0 };\n\t\t\t}\n\t\t} else if (Array.isArray(userListData)) {\n\t\t\tuserIds = userListData;\n\t\t} else {\n\t\t\treturn { apiKeys: [], total: 0 };\n\t\t}\n\n\t\tconst apiKeys: ApiKey[] = [];\n\t\tfor (const id of userIds) {\n\t\t\tconst apiKey = await getApiKeyByIdFromStorage(ctx, id, storage);\n\t\t\tif (apiKey) {\n\t\t\t\tapiKeys.push(apiKey);\n\t\t\t}\n\t\t}\n\n\t\t// Apply sorting and pagination in memory for secondary storage\n\t\tconst sortedKeys = applySortingAndPagination(\n\t\t\tapiKeys,\n\t\t\tsortBy,\n\t\t\tsortDirection,\n\t\t\tlimit,\n\t\t\toffset,\n\t\t);\n\t\treturn { apiKeys: sortedKeys, total: apiKeys.length };\n\t}\n\n\t// Default fallback\n\tconst [apiKeys, total] = await Promise.all([\n\t\tctx.context.adapter.findMany<ApiKey>({\n\t\t\tmodel: \"apikey\",\n\t\t\twhere: [\n\t\t\t\t{\n\t\t\t\t\tfield: \"userId\",\n\t\t\t\t\tvalue: userId,\n\t\t\t\t},\n\t\t\t],\n\t\t\tlimit,\n\t\t\toffset,\n\t\t\tsortBy: sortBy\n\t\t\t\t? { field: sortBy, direction: sortDirection || \"asc\" }\n\t\t\t\t: undefined,\n\t\t}),\n\t\tctx.context.adapter.count({\n\t\t\tmodel: \"apikey\",\n\t\t\twhere: [\n\t\t\t\t{\n\t\t\t\t\tfield: \"userId\",\n\t\t\t\t\tvalue: userId,\n\t\t\t\t},\n\t\t\t],\n\t\t}),\n\t]);\n\treturn { apiKeys, total };\n}\n"],"mappings":";;;;;;;;;AAYA,SAAgB,+BACf,UAC6B;AAE7B,KAAI,YAAY,KACf,QAAO;AAIR,KAAI,OAAO,aAAa,SACvB,QAAO;AAKR,QAAO,cAAmC,SAAS;;;;;AAMpD,SAAS,uBAAuB,UAAuC;AACtE,QAAO,YAAY,QAAQ,OAAO,aAAa;;;;;;AAOhD,eAAsB,2BACrB,KACA,SACA,MACgB;AAEhB,KAAI,KAAK,YAAY,cAAc,CAAC,KAAK,mBACxC;CAID,MAAM,gBAAgB,QAAQ,QAAQ,QACrC,uBAAuB,IAAI,SAAS,CACpC;AAED,KAAI,cAAc,WAAW,EAC5B;CAID,MAAM,oBAAoB,cAAc,IAAI,OAAO,WAAW;EAC7D,MAAM,SAAS,+BAA+B,OAAO,SAAS;AAC9D,MAAI;AACH,SAAM,IAAI,QAAQ,QAAQ,OAAO;IAChC,OAAO;IACP,OAAO,CAAC;KAAE,OAAO;KAAM,OAAO,OAAO;KAAI,CAAC;IAC1C,QAAQ,EAAE,UAAU,QAAQ;IAC5B,CAAC;WACM,OAAO;AACf,OAAI,QAAQ,OAAO,KAClB,6DAA6D,OAAO,GAAG,IACvE,MACA;;GAED;AAEF,OAAM,QAAQ,IAAI,kBAAkB;;;;;;;;;;;AAYrC,eAAsB,iCACrB,KACA,QACA,MACsC;CACtC,MAAM,SAAS,+BAA+B,OAAO,SAAS;AAG9D,KACC,uBAAuB,OAAO,SAAS,KACtC,KAAK,YAAY,cAAc,KAAK,oBAErC,KAAI;AACH,QAAM,IAAI,QAAQ,QAAQ,OAAO;GAChC,OAAO;GACP,OAAO,CAAC;IAAE,OAAO;IAAM,OAAO,OAAO;IAAI,CAAC;GAC1C,QAAQ,EAAE,UAAU,QAAQ;GAC5B,CAAC;UACM,OAAO;AAEf,MAAI,QAAQ,OAAO,KAClB,6DAA6D,OAAO,GAAG,IACvE,MACA;;AAIH,QAAO;;;;;AAMR,SAAS,yBAAyB,WAA2B;AAC5D,QAAO,WAAW;;;;;AAMnB,SAAS,kBAAkB,IAAoB;AAC9C,QAAO,iBAAiB;;;;;AAMzB,SAAS,sBAAsB,QAAwB;AACtD,QAAO,mBAAmB;;;;;AAM3B,SAAS,gBAAgB,QAAwB;AAChD,QAAO,KAAK,UAAU;EACrB,GAAG;EACH,WAAW,OAAO,UAAU,aAAa;EACzC,WAAW,OAAO,UAAU,aAAa;EACzC,WAAW,OAAO,WAAW,aAAa,IAAI;EAC9C,cAAc,OAAO,cAAc,aAAa,IAAI;EACpD,aAAa,OAAO,aAAa,aAAa,IAAI;EAClD,CAAC;;;;;AAMH,SAAS,kBAAkB,MAA8B;AACxD,KAAI,CAAC,QAAQ,OAAO,SAAS,SAC5B,QAAO;AAGR,KAAI;EACH,MAAM,SAAS,KAAK,MAAM,KAAK;AAC/B,SAAO;GACN,GAAG;GACH,WAAW,IAAI,KAAK,OAAO,UAAU;GACrC,WAAW,IAAI,KAAK,OAAO,UAAU;GACrC,WAAW,OAAO,YAAY,IAAI,KAAK,OAAO,UAAU,GAAG;GAC3D,cAAc,OAAO,eAAe,IAAI,KAAK,OAAO,aAAa,GAAG;GACpE,aAAa,OAAO,cAAc,IAAI,KAAK,OAAO,YAAY,GAAG;GACjE;SACM;AACP,SAAO;;;;;;AAOT,SAAS,mBACR,KACA,MAC0B;AAC1B,KAAI,KAAK,cACR,QAAO,KAAK;AAEb,QAAO,IAAI,QAAQ,oBAAoB;;;;;AAMxC,SAAS,aAAa,QAAoC;AACzD,KAAI,OAAO,WAAW;EACrB,MAAM,MAAM,KAAK,KAAK;EACtB,MAAM,YAAY,IAAI,KAAK,OAAO,UAAU,CAAC,SAAS;EACtD,MAAM,aAAa,KAAK,OAAO,YAAY,OAAO,IAAK;AAEvD,MAAI,aAAa,EAChB,QAAO;;;;;;AAUV,eAAe,qBACd,KACA,WACA,SACyB;CACzB,MAAM,MAAM,yBAAyB,UAAU;AAE/C,QAAO,kBADM,MAAM,QAAQ,IAAI,IAAI,CACL;;;;;AAM/B,eAAe,yBACd,KACA,IACA,SACyB;CACzB,MAAM,MAAM,kBAAkB,GAAG;AAEjC,QAAO,kBADM,MAAM,QAAQ,IAAI,IAAI,CACL;;;;;AAM/B,eAAe,mBACd,KACA,QACA,SACA,KACgB;CAChB,MAAM,aAAa,gBAAgB,OAAO;CAC1C,MAAM,YAAY,OAAO;CACzB,MAAM,KAAK,OAAO;AAGlB,OAAM,QAAQ,IAAI,yBAAyB,UAAU,EAAE,YAAY,IAAI;AAGvE,OAAM,QAAQ,IAAI,kBAAkB,GAAG,EAAE,YAAY,IAAI;CAGzD,MAAM,UAAU,sBAAsB,OAAO,OAAO;CACpD,MAAM,eAAe,MAAM,QAAQ,IAAI,QAAQ;CAC/C,IAAI,UAAoB,EAAE;AAE1B,KAAI,gBAAgB,OAAO,iBAAiB,SAC3C,KAAI;AACH,YAAU,KAAK,MAAM,aAAa;SAC3B;AACP,YAAU,EAAE;;UAEH,MAAM,QAAQ,aAAa,CACrC,WAAU;AAGX,KAAI,CAAC,QAAQ,SAAS,GAAG,EAAE;AAC1B,UAAQ,KAAK,GAAG;AAChB,QAAM,QAAQ,IAAI,SAAS,KAAK,UAAU,QAAQ,CAAC;;;;;;AAOrD,eAAe,wBACd,KACA,QACA,SACgB;CAChB,MAAM,YAAY,OAAO;CACzB,MAAM,KAAK,OAAO;CAClB,MAAM,SAAS,OAAO;AAGtB,OAAM,QAAQ,OAAO,yBAAyB,UAAU,CAAC;AAGzD,OAAM,QAAQ,OAAO,kBAAkB,GAAG,CAAC;CAG3C,MAAM,UAAU,sBAAsB,OAAO;CAC7C,MAAM,eAAe,MAAM,QAAQ,IAAI,QAAQ;CAC/C,IAAI,UAAoB,EAAE;AAE1B,KAAI,gBAAgB,OAAO,iBAAiB,SAC3C,KAAI;AACH,YAAU,KAAK,MAAM,aAAa;SAC3B;AACP,YAAU,EAAE;;UAEH,MAAM,QAAQ,aAAa,CACrC,WAAU;CAGX,MAAM,cAAc,QAAQ,QAAQ,UAAU,UAAU,GAAG;AAC3D,KAAI,YAAY,WAAW,EAC1B,OAAM,QAAQ,OAAO,QAAQ;KAE7B,OAAM,QAAQ,IAAI,SAAS,KAAK,UAAU,YAAY,CAAC;;;;;AAOzD,eAAsB,UACrB,KACA,WACA,MACyB;CACzB,MAAM,UAAU,mBAAmB,KAAK,KAAK;AAG7C,KAAI,KAAK,YAAY,WACpB,QAAO,MAAM,IAAI,QAAQ,QAAQ,QAAgB;EAChD,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO;GACP,CACD;EACD,CAAC;AAIH,KAAI,KAAK,YAAY,uBAAuB,KAAK,oBAAoB;AACpE,MAAI,SAAS;GACZ,MAAM,SAAS,MAAM,qBAAqB,KAAK,WAAW,QAAQ;AAClE,OAAI,OACH,QAAO;;EAGT,MAAM,QAAQ,MAAM,IAAI,QAAQ,QAAQ,QAAgB;GACvD,OAAO;GACP,OAAO,CACN;IACC,OAAO;IACP,OAAO;IACP,CACD;GACD,CAAC;AAEF,MAAI,SAAS,QAGZ,OAAM,mBAAmB,KAAK,OAAO,SADzB,aAAa,MAAM,CACmB;AAGnD,SAAO;;AAIR,KAAI,KAAK,YAAY,qBAAqB;AACzC,MAAI,CAAC,QACJ,QAAO;AAER,SAAO,MAAM,qBAAqB,KAAK,WAAW,QAAQ;;AAI3D,QAAO,MAAM,IAAI,QAAQ,QAAQ,QAAgB;EAChD,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO;GACP,CACD;EACD,CAAC;;;;;AAMH,eAAsB,cACrB,KACA,IACA,MACyB;CACzB,MAAM,UAAU,mBAAmB,KAAK,KAAK;AAG7C,KAAI,KAAK,YAAY,WACpB,QAAO,MAAM,IAAI,QAAQ,QAAQ,QAAgB;EAChD,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO;GACP,CACD;EACD,CAAC;AAIH,KAAI,KAAK,YAAY,uBAAuB,KAAK,oBAAoB;AACpE,MAAI,SAAS;GACZ,MAAM,SAAS,MAAM,yBAAyB,KAAK,IAAI,QAAQ;AAC/D,OAAI,OACH,QAAO;;EAGT,MAAM,QAAQ,MAAM,IAAI,QAAQ,QAAQ,QAAgB;GACvD,OAAO;GACP,OAAO,CACN;IACC,OAAO;IACP,OAAO;IACP,CACD;GACD,CAAC;AAEF,MAAI,SAAS,QAGZ,OAAM,mBAAmB,KAAK,OAAO,SADzB,aAAa,MAAM,CACmB;AAGnD,SAAO;;AAIR,KAAI,KAAK,YAAY,qBAAqB;AACzC,MAAI,CAAC,QACJ,QAAO;AAER,SAAO,MAAM,yBAAyB,KAAK,IAAI,QAAQ;;AAIxD,QAAO,MAAM,IAAI,QAAQ,QAAQ,QAAgB;EAChD,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO;GACP,CACD;EACD,CAAC;;;;;AAMH,eAAsB,UACrB,KACA,QACA,MACgB;CAChB,MAAM,UAAU,mBAAmB,KAAK,KAAK;CAC7C,MAAM,MAAM,aAAa,OAAO;AAGhC,KAAI,KAAK,YAAY,WACpB;AAID,KAAI,KAAK,YAAY,qBAAqB;AACzC,MAAI,CAAC,QACJ,OAAM,IAAI,MACT,yEACA;AAEF,QAAM,mBAAmB,KAAK,QAAQ,SAAS,IAAI;AACnD;;;;;;AAOF,eAAsB,aACrB,KACA,QACA,MACgB;CAChB,MAAM,UAAU,mBAAmB,KAAK,KAAK;AAG7C,KAAI,KAAK,YAAY,WACpB;AAID,KAAI,KAAK,YAAY,qBAAqB;AACzC,MAAI,CAAC,QACJ,OAAM,IAAI,MACT,yEACA;AAEF,QAAM,wBAAwB,KAAK,QAAQ,QAAQ;AACnD;;;;;;;AAoBF,SAAS,0BACR,SACA,QACA,eACA,OACA,QACW;CACX,IAAI,SAAS,CAAC,GAAG,QAAQ;AAGzB,KAAI,QAAQ;EACX,MAAM,YAAY,iBAAiB;AACnC,SAAO,MAAM,GAAG,MAAM;GACrB,MAAM,SAAS,EAAE;GACjB,MAAM,SAAS,EAAE;AAGjB,OAAI,UAAU,QAAQ,UAAU,KAAM,QAAO;AAC7C,OAAI,UAAU,KAAM,QAAO,cAAc,QAAQ,KAAK;AACtD,OAAI,UAAU,KAAM,QAAO,cAAc,QAAQ,IAAI;AAGrD,OAAI,SAAS,OAAQ,QAAO,cAAc,QAAQ,KAAK;AACvD,OAAI,SAAS,OAAQ,QAAO,cAAc,QAAQ,IAAI;AACtD,UAAO;IACN;;AAIH,KAAI,WAAW,OACd,UAAS,OAAO,MAAM,OAAO;AAE9B,KAAI,UAAU,OACb,UAAS,OAAO,MAAM,GAAG,MAAM;AAGhC,QAAO;;;;;AAMR,eAAsB,YACrB,KACA,QACA,MACA,gBAC6B;CAC7B,MAAM,UAAU,mBAAmB,KAAK,KAAK;CAC7C,MAAM,EAAE,OAAO,QAAQ,QAAQ,kBAAkB,kBAAkB,EAAE;AAGrE,KAAI,KAAK,YAAY,YAAY;EAChC,MAAM,CAAC,SAAS,SAAS,MAAM,QAAQ,IAAI,CAC1C,IAAI,QAAQ,QAAQ,SAAiB;GACpC,OAAO;GACP,OAAO,CACN;IACC,OAAO;IACP,OAAO;IACP,CACD;GACD;GACA;GACA,QAAQ,SACL;IAAE,OAAO;IAAQ,WAAW,iBAAiB;IAAO,GACpD;GACH,CAAC,EACF,IAAI,QAAQ,QAAQ,MAAM;GACzB,OAAO;GACP,OAAO,CACN;IACC,OAAO;IACP,OAAO;IACP,CACD;GACD,CAAC,CACF,CAAC;AACF,SAAO;GAAE;GAAS;GAAO;;AAI1B,KAAI,KAAK,YAAY,uBAAuB,KAAK,oBAAoB;EACpE,MAAM,UAAU,sBAAsB,OAAO;AAE7C,MAAI,SAAS;GACZ,MAAM,eAAe,MAAM,QAAQ,IAAI,QAAQ;GAC/C,IAAI,UAAoB,EAAE;AAE1B,OAAI,gBAAgB,OAAO,iBAAiB,SAC3C,KAAI;AACH,cAAU,KAAK,MAAM,aAAa;WAC3B;AACP,cAAU,EAAE;;YAEH,MAAM,QAAQ,aAAa,CACrC,WAAU;AAGX,OAAI,QAAQ,SAAS,GAAG;IACvB,MAAM,UAAoB,EAAE;AAC5B,SAAK,MAAM,MAAM,SAAS;KACzB,MAAM,SAAS,MAAM,yBAAyB,KAAK,IAAI,QAAQ;AAC/D,SAAI,OACH,SAAQ,KAAK,OAAO;;AAWtB,WAAO;KAAE,SAPU,0BAClB,SACA,QACA,eACA,OACA,OACA;KAC6B,OAAO,QAAQ;KAAQ;;;EAIvD,MAAM,CAAC,QAAQ,SAAS,MAAM,QAAQ,IAAI,CACzC,IAAI,QAAQ,QAAQ,SAAiB;GACpC,OAAO;GACP,OAAO,CACN;IACC,OAAO;IACP,OAAO;IACP,CACD;GACD;GACA;GACA,QAAQ,SACL;IAAE,OAAO;IAAQ,WAAW,iBAAiB;IAAO,GACpD;GACH,CAAC,EACF,IAAI,QAAQ,QAAQ,MAAM;GACzB,OAAO;GACP,OAAO,CACN;IACC,OAAO;IACP,OAAO;IACP,CACD;GACD,CAAC,CACF,CAAC;AAGF,MAAI,WAAW,OAAO,SAAS,GAAG;GACjC,MAAM,UAAoB,EAAE;AAC5B,QAAK,MAAM,UAAU,QAAQ;AAG5B,UAAM,mBAAmB,KAAK,QAAQ,SAD1B,aAAa,OAAO,CACmB;AACnD,YAAQ,KAAK,OAAO,GAAG;;AAGxB,SAAM,QAAQ,IAAI,SAAS,KAAK,UAAU,QAAQ,CAAC;;AAGpD,SAAO;GAAE,SAAS;GAAQ;GAAO;;AAIlC,KAAI,KAAK,YAAY,qBAAqB;AACzC,MAAI,CAAC,QACJ,QAAO;GAAE,SAAS,EAAE;GAAE,OAAO;GAAG;EAGjC,MAAM,UAAU,sBAAsB,OAAO;EAC7C,MAAM,eAAe,MAAM,QAAQ,IAAI,QAAQ;EAC/C,IAAI,UAAoB,EAAE;AAE1B,MAAI,gBAAgB,OAAO,iBAAiB,SAC3C,KAAI;AACH,aAAU,KAAK,MAAM,aAAa;UAC3B;AACP,UAAO;IAAE,SAAS,EAAE;IAAE,OAAO;IAAG;;WAEvB,MAAM,QAAQ,aAAa,CACrC,WAAU;MAEV,QAAO;GAAE,SAAS,EAAE;GAAE,OAAO;GAAG;EAGjC,MAAM,UAAoB,EAAE;AAC5B,OAAK,MAAM,MAAM,SAAS;GACzB,MAAM,SAAS,MAAM,yBAAyB,KAAK,IAAI,QAAQ;AAC/D,OAAI,OACH,SAAQ,KAAK,OAAO;;AAYtB,SAAO;GAAE,SAPU,0BAClB,SACA,QACA,eACA,OACA,OACA;GAC6B,OAAO,QAAQ;GAAQ;;CAItD,MAAM,CAAC,SAAS,SAAS,MAAM,QAAQ,IAAI,CAC1C,IAAI,QAAQ,QAAQ,SAAiB;EACpC,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO;GACP,CACD;EACD;EACA;EACA,QAAQ,SACL;GAAE,OAAO;GAAQ,WAAW,iBAAiB;GAAO,GACpD;EACH,CAAC,EACF,IAAI,QAAQ,QAAQ,MAAM;EACzB,OAAO;EACP,OAAO,CACN;GACC,OAAO;GACP,OAAO;GACP,CACD;EACD,CAAC,CACF,CAAC;AACF,QAAO;EAAE;EAAS;EAAO"}

package/dist/plugins/api-key/client.d.mts

@@ -0,0 +1,9 @@
+import { API_KEY_ERROR_CODES } from "./error-codes.mjs";
+import { ApiKey, ApiKeyOptions } from "./types.mjs";
+
+//#region src/plugins/api-key/client.d.ts
+declare const apiKeyClient: () => BetterAuthClientPlugin;
+type ApiKeyClientPlugin = ReturnType<typeof apiKeyClient>;
+//#endregion
+export { ApiKeyClientPlugin, apiKeyClient };
+//# sourceMappingURL=client.d.mts.map

package/dist/plugins/api-key/client.mjs

@@ -0,0 +1,19 @@
+import { API_KEY_ERROR_CODES } from "./error-codes.mjs";
+
+//#region src/plugins/api-key/client.ts
+const apiKeyClient = () => {
+	return {
+		id: "api-key",
+		$InferServerPlugin: {},
+		pathMethods: {
+			"/api-key/create": "POST",
+			"/api-key/delete": "POST",
+			"/api-key/delete-all-expired-api-keys": "POST"
+		},
+		$ERROR_CODES: API_KEY_ERROR_CODES
+	};
+};
+
+//#endregion
+export { apiKeyClient };
+//# sourceMappingURL=client.mjs.map

package/dist/plugins/api-key/client.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.mjs","names":[],"sources":["../../../src/plugins/api-key/client.ts"],"sourcesContent":["import type { BetterAuthClientPlugin } from \"@better-auth/core\";\nimport type { apiKey } from \".\";\nimport { API_KEY_ERROR_CODES } from \"./error-codes\";\n\nexport * from \"./error-codes\";\n\nexport const apiKeyClient = () => {\n\treturn {\n\t\tid: \"api-key\",\n\t\t$InferServerPlugin: {} as ReturnType<typeof apiKey>,\n\t\tpathMethods: {\n\t\t\t\"/api-key/create\": \"POST\",\n\t\t\t\"/api-key/delete\": \"POST\",\n\t\t\t\"/api-key/delete-all-expired-api-keys\": \"POST\",\n\t\t},\n\t\t$ERROR_CODES: API_KEY_ERROR_CODES,\n\t} satisfies BetterAuthClientPlugin;\n};\n\nexport type ApiKeyClientPlugin = ReturnType<typeof apiKeyClient>;\n\nexport type * from \"./types\";\n"],"mappings":";;;AAMA,MAAa,qBAAqB;AACjC,QAAO;EACN,IAAI;EACJ,oBAAoB,EAAE;EACtB,aAAa;GACZ,mBAAmB;GACnB,mBAAmB;GACnB,wCAAwC;GACxC;EACD,cAAc;EACd"}

package/dist/plugins/api-key/error-codes.d.mts

@@ -0,0 +1,5 @@
+//#region src/plugins/api-key/error-codes.d.ts
+declare const API_KEY_ERROR_CODES: any;
+//#endregion
+export { API_KEY_ERROR_CODES };
+//# sourceMappingURL=error-codes.d.mts.map

package/dist/plugins/api-key/error-codes.mjs

@@ -0,0 +1,34 @@
+import { defineErrorCodes } from "@better-auth/core/utils/error-codes";
+
+//#region src/plugins/api-key/error-codes.ts
+const API_KEY_ERROR_CODES = defineErrorCodes({
+	INVALID_METADATA_TYPE: "metadata must be an object or undefined",
+	REFILL_AMOUNT_AND_INTERVAL_REQUIRED: "refillAmount is required when refillInterval is provided",
+	REFILL_INTERVAL_AND_AMOUNT_REQUIRED: "refillInterval is required when refillAmount is provided",
+	USER_BANNED: "User is banned",
+	UNAUTHORIZED_SESSION: "Unauthorized or invalid session",
+	KEY_NOT_FOUND: "API Key not found",
+	KEY_DISABLED: "API Key is disabled",
+	KEY_EXPIRED: "API Key has expired",
+	USAGE_EXCEEDED: "API Key has reached its usage limit",
+	KEY_NOT_RECOVERABLE: "API Key is not recoverable",
+	EXPIRES_IN_IS_TOO_SMALL: "The expiresIn is smaller than the predefined minimum value.",
+	EXPIRES_IN_IS_TOO_LARGE: "The expiresIn is larger than the predefined maximum value.",
+	INVALID_REMAINING: "The remaining count is either too large or too small.",
+	INVALID_PREFIX_LENGTH: "The prefix length is either too large or too small.",
+	INVALID_NAME_LENGTH: "The name length is either too large or too small.",
+	METADATA_DISABLED: "Metadata is disabled.",
+	RATE_LIMIT_EXCEEDED: "Rate limit exceeded.",
+	NO_VALUES_TO_UPDATE: "No values to update.",
+	KEY_DISABLED_EXPIRATION: "Custom key expiration values are disabled.",
+	INVALID_API_KEY: "Invalid API key.",
+	INVALID_USER_ID_FROM_API_KEY: "The user id from the API key is invalid.",
+	INVALID_API_KEY_GETTER_RETURN_TYPE: "API Key getter returned an invalid key type. Expected string.",
+	SERVER_ONLY_PROPERTY: "The property you're trying to set can only be set from the server auth instance only.",
+	FAILED_TO_UPDATE_API_KEY: "Failed to update API key",
+	NAME_REQUIRED: "API Key name is required."
+});
+
+//#endregion
+export { API_KEY_ERROR_CODES };
+//# sourceMappingURL=error-codes.mjs.map