@heyhru/business-dms-datasource 0.4.0

package/README.md

@@ -0,0 +1,50 @@
+# @heyhru/business-dms-datasource
+
+DMS data source domain logic: service, model, sql, and connection pool management.
+
+## Exports
+
+### Route handlers
+
+```ts
+import {
+  datasourceList,
+  datasourceGet,
+  datasourceCreate,
+  datasourceDelete,
+} from "@heyhru/business-dms-datasource";
+
+// Direct handlers (no encryptionKey needed)
+app.post("/datasources/list", datasourceList);
+app.post("/datasources/get", datasourceGet);
+app.post("/datasources/delete", datasourceDelete);
+
+// Curried handlers (encryptionKey required)
+app.post("/datasources/create", datasourceCreate(config.encryptionKey));
+app.post("/datasources/update", datasourceUpdate(config.encryptionKey));
+```
+
+### Cross-module functions
+
+```ts
+import {
+  getDataSourceWithPassword,
+  getPool,
+  getPoolForDatabase,
+} from "@heyhru/business-dms-datasource";
+
+// Decrypt password and return full data source object
+const ds = await getDataSourceWithPassword(dataSourceId, config.encryptionKey);
+
+// Get or create a connection pool
+const pool = getPool(ds);
+
+// Get pool for a specific database within an instance
+const pool = await getPoolForDatabase(dataSourceId, database, config.encryptionKey);
+```
+
+## Types
+
+```ts
+import type { DbPool, DataSourceWithPassword } from "@heyhru/business-dms-datasource";
+```

package/dist/datasources.model.d.ts

@@ -0,0 +1,19 @@
+export declare function listDataSources(): Promise<Record<string, unknown>[]>;
+export declare function getDataSourceById(id: string): Promise<Record<string, unknown> | undefined>;
+export declare function getDataSourceRow(id: string): Promise<Record<string, unknown> | undefined>;
+export declare function insertDataSource(data: {
+    name: string;
+    type: string;
+    host: string;
+    port: number;
+    database: string;
+    username: string;
+    ssl: boolean;
+    pool_min: number;
+    pool_max: number;
+}, encryptedPassword: string, createdBy: string): Promise<Record<string, unknown> | undefined>;
+export declare function updateDataSource(id: string, data: Record<string, unknown>, encryptedPassword?: string): Promise<Record<string, unknown> | undefined>;
+export declare function removeDataSource(id: string): Promise<{
+    changes: number;
+}>;
+//# sourceMappingURL=datasources.model.d.ts.map

package/dist/datasources.model.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"datasources.model.d.ts","sourceRoot":"","sources":["../src/datasources.model.ts"],"names":[],"mappings":"AAGA,wBAAgB,eAAe,uCAE9B;AAED,wBAAgB,iBAAiB,CAAC,EAAE,EAAE,MAAM,gDAE3C;AAED,wBAAgB,gBAAgB,CAAC,EAAE,EAAE,MAAM,gDAE1C;AAED,wBAAgB,gBAAgB,CAC9B,IAAI,EAAE;IACJ,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,GAAG,EAAE,OAAO,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB,EACD,iBAAiB,EAAE,MAAM,EACzB,SAAS,EAAE,MAAM,gDAelB;AAED,wBAAsB,gBAAgB,CACpC,EAAE,EAAE,MAAM,EACV,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC7B,iBAAiB,CAAC,EAAE,MAAM,gDAoB3B;AAED,wBAAgB,gBAAgB,CAAC,EAAE,EAAE,MAAM;;GAE1C"}

package/dist/datasources.service.d.ts

@@ -0,0 +1,40 @@
+import { type FastifyRequest, type FastifyReply } from "fastify";
+interface AuthenticatedRequest extends FastifyRequest {
+    user: {
+        id: string;
+    };
+}
+import type { DbPool } from "@heyhru/server-plugin-mysql";
+export type { DbPool };
+export declare function getPool(ds: {
+    id: string;
+    type: "mysql" | "postgres";
+    host: string;
+    port: number;
+    database: string;
+    username: string;
+    password: string;
+    ssl: boolean;
+    pool_min: number;
+    pool_max: number;
+}): DbPool;
+export declare function getDataSourceWithPassword(id: string, encryptionKey: string): Promise<DataSourceWithPassword | null>;
+export declare function getPoolForDatabase(dataSourceId: string, database: string, encryptionKey: string): Promise<DbPool | null>;
+export interface DataSourceWithPassword {
+    id: string;
+    type: "mysql" | "postgres";
+    host: string;
+    port: number;
+    database: string | null;
+    username: string;
+    password: string;
+    ssl: boolean;
+    pool_min: number;
+    pool_max: number;
+}
+export declare function datasourceList(_req: FastifyRequest, reply: FastifyReply): Promise<never>;
+export declare function datasourceGet(req: FastifyRequest, reply: FastifyReply): Promise<never>;
+export declare function datasourceCreate(encryptionKey: string): (req: AuthenticatedRequest, reply: FastifyReply) => Promise<never>;
+export declare function datasourceUpdate(encryptionKey: string): (req: FastifyRequest, reply: FastifyReply) => Promise<never>;
+export declare function datasourceDelete(req: FastifyRequest, reply: FastifyReply): Promise<never>;
+//# sourceMappingURL=datasources.service.d.ts.map

package/dist/datasources.service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"datasources.service.d.ts","sourceRoot":"","sources":["../src/datasources.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,cAAc,EAAE,KAAK,YAAY,EAAE,MAAM,SAAS,CAAC;AAEjE,UAAU,oBAAqB,SAAQ,cAAc;IACnD,IAAI,EAAE;QAAE,EAAE,EAAE,MAAM,CAAA;KAAE,CAAC;CACtB;AAID,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,6BAA6B,CAAC;AAW1D,YAAY,EAAE,MAAM,EAAE,CAAC;AAUvB,wBAAgB,OAAO,CAAC,EAAE,EAAE;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,OAAO,GAAG,UAAU,CAAC;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,GAAG,EAAE,OAAO,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB,GAAG,MAAM,CA4BT;AAED,wBAAsB,yBAAyB,CAC7C,EAAE,EAAE,MAAM,EACV,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,sBAAsB,GAAG,IAAI,CAAC,CAexC;AAED,wBAAsB,kBAAkB,CACtC,YAAY,EAAE,MAAM,EACpB,QAAQ,EAAE,MAAM,EAChB,aAAa,EAAE,MAAM,GACpB,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAIxB;AAaD,MAAM,WAAW,sBAAsB;IACrC,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,OAAO,GAAG,UAAU,CAAC;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,GAAG,EAAE,OAAO,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,wBAAsB,cAAc,CAAC,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,YAAY,kBAE7E;AAED,wBAAsB,aAAa,CAAC,GAAG,EAAE,cAAc,EAAE,KAAK,EAAE,YAAY,kBAK3E;AAED,wBAAgB,gBAAgB,CAAC,aAAa,EAAE,MAAM,IACtC,KAAK,oBAAoB,EAAE,OAAO,YAAY,oBAoB7D;AAED,wBAAgB,gBAAgB,CAAC,aAAa,EAAE,MAAM,IACtC,KAAK,cAAc,EAAE,OAAO,YAAY,oBAavD;AAED,wBAAsB,gBAAgB,CAAC,GAAG,EAAE,cAAc,EAAE,KAAK,EAAE,YAAY,kBAK9E"}

package/dist/datasources.sql.d.ts

@@ -0,0 +1,7 @@
+export declare const LIST = "\nSELECT id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at\nFROM data_sources\nORDER BY created_at DESC";
+export declare const FIND_BY_ID = "\nSELECT id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at\nFROM data_sources\nWHERE id = ?";
+export declare const FIND_WITH_PASSWORD = "\nSELECT *\nFROM data_sources\nWHERE id = ?";
+export declare const CREATE = "\nINSERT INTO data_sources (name, type, host, port, database, username, password_encrypted, ssl, pool_min, pool_max, created_by)\nVALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)\nRETURNING id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at";
+export declare const UPDATE_FIELDS: string[];
+export declare const DELETE = "\nDELETE FROM data_sources\nWHERE id = ?";
+//# sourceMappingURL=datasources.sql.d.ts.map

package/dist/datasources.sql.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"datasources.sql.d.ts","sourceRoot":"","sources":["../src/datasources.sql.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,IAAI,0JAGQ,CAAC;AAE1B,eAAO,MAAM,UAAU,8IAGV,CAAC;AAEd,eAAO,MAAM,kBAAkB,gDAGlB,CAAC;AAEd,eAAO,MAAM,MAAM,0RAGuF,CAAC;AAE3G,eAAO,MAAM,aAAa,UAA0F,CAAC;AAErH,eAAO,MAAM,MAAM,6CAEN,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,3 @@
+export { getPool, getDataSourceWithPassword, getPoolForDatabase, datasourceList, datasourceGet, datasourceCreate, datasourceUpdate, datasourceDelete, } from "./datasources.service.js";
+export type { DbPool, DataSourceWithPassword } from "./datasources.service.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,OAAO,EACP,yBAAyB,EACzB,kBAAkB,EAClB,cAAc,EACd,aAAa,EACb,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,0BAA0B,CAAC;AAElC,YAAY,EAAE,MAAM,EAAE,sBAAsB,EAAE,MAAM,0BAA0B,CAAC"}

package/dist/index.js

@@ -0,0 +1,222 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  datasourceCreate: () => datasourceCreate,
+  datasourceDelete: () => datasourceDelete,
+  datasourceGet: () => datasourceGet,
+  datasourceList: () => datasourceList,
+  datasourceUpdate: () => datasourceUpdate,
+  getDataSourceWithPassword: () => getDataSourceWithPassword,
+  getPool: () => getPool,
+  getPoolForDatabase: () => getPoolForDatabase
+});
+module.exports = __toCommonJS(index_exports);
+
+// src/datasources.service.ts
+var import_server_util_crypto = require("@heyhru/server-util-crypto");
+var import_server_plugin_mysql = require("@heyhru/server-plugin-mysql");
+var import_server_plugin_pg2 = require("@heyhru/server-plugin-pg");
+var import_common_util_logger = require("@heyhru/common-util-logger");
+
+// src/datasources.model.ts
+var import_server_plugin_pg = require("@heyhru/server-plugin-pg");
+
+// src/datasources.sql.ts
+var LIST = `
+SELECT id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at
+FROM data_sources
+ORDER BY created_at DESC`;
+var FIND_BY_ID = `
+SELECT id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at
+FROM data_sources
+WHERE id = ?`;
+var FIND_WITH_PASSWORD = `
+SELECT *
+FROM data_sources
+WHERE id = ?`;
+var CREATE = `
+INSERT INTO data_sources (name, type, host, port, database, username, password_encrypted, ssl, pool_min, pool_max, created_by)
+VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
+RETURNING id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at`;
+var UPDATE_FIELDS = ["name", "type", "host", "port", "database", "username", "ssl", "pool_min", "pool_max"];
+var DELETE = `
+DELETE FROM data_sources
+WHERE id = ?`;
+
+// src/datasources.model.ts
+function listDataSources() {
+  return (0, import_server_plugin_pg.getPgDb)().query(LIST);
+}
+function getDataSourceById(id) {
+  return (0, import_server_plugin_pg.getPgDb)().queryOne(FIND_BY_ID, [id]);
+}
+function getDataSourceRow(id) {
+  return (0, import_server_plugin_pg.getPgDb)().queryOne(FIND_WITH_PASSWORD, [id]);
+}
+function insertDataSource(data, encryptedPassword, createdBy) {
+  return (0, import_server_plugin_pg.getPgDb)().queryOne(CREATE, [
+    data.name,
+    data.type,
+    data.host,
+    data.port,
+    data.database,
+    data.username,
+    encryptedPassword,
+    data.ssl,
+    data.pool_min,
+    data.pool_max,
+    createdBy
+  ]);
+}
+async function updateDataSource(id, data, encryptedPassword) {
+  const fields = [];
+  const values = [];
+  for (const key of UPDATE_FIELDS) {
+    if (data[key] !== void 0) {
+      fields.push(`${key} = ?`);
+      values.push(data[key]);
+    }
+  }
+  if (encryptedPassword) {
+    fields.push("password_encrypted = ?");
+    values.push(encryptedPassword);
+  }
+  if (!fields.length) return getDataSourceById(id);
+  values.push(id);
+  return (0, import_server_plugin_pg.getPgDb)().queryOne(
+    `UPDATE data_sources SET ${fields.join(", ")} WHERE id = ? RETURNING id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at`,
+    values
+  );
+}
+function removeDataSource(id) {
+  return (0, import_server_plugin_pg.getPgDb)().run(DELETE, [id]);
+}
+
+// src/datasources.service.ts
+var logger = (0, import_common_util_logger.createLogger)({ name: "@heyhru/business-dms-datasource" });
+var pools = /* @__PURE__ */ new Map();
+function poolKey(id, database) {
+  return database ? `${id}:${database}` : id;
+}
+function getPool(ds) {
+  const key = poolKey(ds.id, ds.database);
+  if (pools.has(key)) return pools.get(key);
+  const pool = ds.type === "mysql" ? (0, import_server_plugin_mysql.createPool)({
+    host: ds.host,
+    port: ds.port,
+    database: ds.database,
+    username: ds.username,
+    password: ds.password,
+    poolMax: ds.pool_max
+  }) : (0, import_server_plugin_pg2.createPool)({
+    host: ds.host,
+    port: ds.port,
+    database: ds.database,
+    username: ds.username,
+    password: ds.password,
+    poolMin: ds.pool_min,
+    poolMax: ds.pool_max,
+    ssl: ds.ssl
+  });
+  pools.set(key, pool);
+  logger.info("Connection pool created (ds=%s, db=%s, type=%s)", ds.id, ds.database, ds.type);
+  return pool;
+}
+async function getDataSourceWithPassword(id, encryptionKey) {
+  const row = await getDataSourceRow(id);
+  if (!row) return null;
+  return {
+    id: row.id,
+    type: row.type,
+    host: row.host,
+    port: row.port,
+    database: row.database ?? null,
+    username: row.username,
+    password: (0, import_server_util_crypto.decrypt)(row.password_encrypted, encryptionKey),
+    ssl: row.ssl,
+    pool_min: row.pool_min,
+    pool_max: row.pool_max
+  };
+}
+async function getPoolForDatabase(dataSourceId, database, encryptionKey) {
+  const ds = await getDataSourceWithPassword(dataSourceId, encryptionKey);
+  if (!ds) return null;
+  return getPool({ ...ds, database });
+}
+async function destroyPool(id) {
+  const prefix = `${id}:`;
+  for (const [key, pool] of pools) {
+    if (key === id || key.startsWith(prefix)) {
+      await pool.end();
+      pools.delete(key);
+      logger.info("Connection pool destroyed (key=%s)", key);
+    }
+  }
+}
+async function datasourceList(_req, reply) {
+  return reply.send(await listDataSources());
+}
+async function datasourceGet(req, reply) {
+  const { id } = req.body ?? {};
+  const ds = await getDataSourceById(id);
+  if (!ds) return reply.code(404).send({ error: "Not found" });
+  return reply.send(ds);
+}
+function datasourceCreate(encryptionKey) {
+  return async (req, reply) => {
+    const body = req.body ?? {};
+    const ds = await insertDataSource(
+      { ...body, ssl: body.ssl ?? false, pool_min: body.pool_min ?? 1, pool_max: body.pool_max ?? 10 },
+      (0, import_server_util_crypto.encrypt)(body.password, encryptionKey),
+      req.user.id
+    );
+    return reply.code(201).send(ds);
+  };
+}
+function datasourceUpdate(encryptionKey) {
+  return async (req, reply) => {
+    const { id, password, ...rest } = req.body ?? {};
+    const existing = await getDataSourceById(id);
+    if (!existing) return reply.code(404).send({ error: "Not found" });
+    const encryptedPassword = password ? (0, import_server_util_crypto.encrypt)(password, encryptionKey) : void 0;
+    await destroyPool(id);
+    const ds = await updateDataSource(id, rest, encryptedPassword);
+    return reply.send(ds);
+  };
+}
+async function datasourceDelete(req, reply) {
+  const { id } = req.body ?? {};
+  await destroyPool(id);
+  await removeDataSource(id);
+  return reply.code(204).send();
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  datasourceCreate,
+  datasourceDelete,
+  datasourceGet,
+  datasourceList,
+  datasourceUpdate,
+  getDataSourceWithPassword,
+  getPool,
+  getPoolForDatabase
+});

package/dist/index.mjs

@@ -0,0 +1,188 @@
+// src/datasources.service.ts
+import { encrypt, decrypt } from "@heyhru/server-util-crypto";
+import { createPool as createMysqlPool } from "@heyhru/server-plugin-mysql";
+import { createPool as createPgPool } from "@heyhru/server-plugin-pg";
+import { createLogger } from "@heyhru/common-util-logger";
+
+// src/datasources.model.ts
+import { getPgDb } from "@heyhru/server-plugin-pg";
+
+// src/datasources.sql.ts
+var LIST = `
+SELECT id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at
+FROM data_sources
+ORDER BY created_at DESC`;
+var FIND_BY_ID = `
+SELECT id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at
+FROM data_sources
+WHERE id = ?`;
+var FIND_WITH_PASSWORD = `
+SELECT *
+FROM data_sources
+WHERE id = ?`;
+var CREATE = `
+INSERT INTO data_sources (name, type, host, port, database, username, password_encrypted, ssl, pool_min, pool_max, created_by)
+VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
+RETURNING id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at`;
+var UPDATE_FIELDS = ["name", "type", "host", "port", "database", "username", "ssl", "pool_min", "pool_max"];
+var DELETE = `
+DELETE FROM data_sources
+WHERE id = ?`;
+
+// src/datasources.model.ts
+function listDataSources() {
+  return getPgDb().query(LIST);
+}
+function getDataSourceById(id) {
+  return getPgDb().queryOne(FIND_BY_ID, [id]);
+}
+function getDataSourceRow(id) {
+  return getPgDb().queryOne(FIND_WITH_PASSWORD, [id]);
+}
+function insertDataSource(data, encryptedPassword, createdBy) {
+  return getPgDb().queryOne(CREATE, [
+    data.name,
+    data.type,
+    data.host,
+    data.port,
+    data.database,
+    data.username,
+    encryptedPassword,
+    data.ssl,
+    data.pool_min,
+    data.pool_max,
+    createdBy
+  ]);
+}
+async function updateDataSource(id, data, encryptedPassword) {
+  const fields = [];
+  const values = [];
+  for (const key of UPDATE_FIELDS) {
+    if (data[key] !== void 0) {
+      fields.push(`${key} = ?`);
+      values.push(data[key]);
+    }
+  }
+  if (encryptedPassword) {
+    fields.push("password_encrypted = ?");
+    values.push(encryptedPassword);
+  }
+  if (!fields.length) return getDataSourceById(id);
+  values.push(id);
+  return getPgDb().queryOne(
+    `UPDATE data_sources SET ${fields.join(", ")} WHERE id = ? RETURNING id, name, type, host, port, database, username, ssl, pool_min, pool_max, created_by, created_at`,
+    values
+  );
+}
+function removeDataSource(id) {
+  return getPgDb().run(DELETE, [id]);
+}
+
+// src/datasources.service.ts
+var logger = createLogger({ name: "@heyhru/business-dms-datasource" });
+var pools = /* @__PURE__ */ new Map();
+function poolKey(id, database) {
+  return database ? `${id}:${database}` : id;
+}
+function getPool(ds) {
+  const key = poolKey(ds.id, ds.database);
+  if (pools.has(key)) return pools.get(key);
+  const pool = ds.type === "mysql" ? createMysqlPool({
+    host: ds.host,
+    port: ds.port,
+    database: ds.database,
+    username: ds.username,
+    password: ds.password,
+    poolMax: ds.pool_max
+  }) : createPgPool({
+    host: ds.host,
+    port: ds.port,
+    database: ds.database,
+    username: ds.username,
+    password: ds.password,
+    poolMin: ds.pool_min,
+    poolMax: ds.pool_max,
+    ssl: ds.ssl
+  });
+  pools.set(key, pool);
+  logger.info("Connection pool created (ds=%s, db=%s, type=%s)", ds.id, ds.database, ds.type);
+  return pool;
+}
+async function getDataSourceWithPassword(id, encryptionKey) {
+  const row = await getDataSourceRow(id);
+  if (!row) return null;
+  return {
+    id: row.id,
+    type: row.type,
+    host: row.host,
+    port: row.port,
+    database: row.database ?? null,
+    username: row.username,
+    password: decrypt(row.password_encrypted, encryptionKey),
+    ssl: row.ssl,
+    pool_min: row.pool_min,
+    pool_max: row.pool_max
+  };
+}
+async function getPoolForDatabase(dataSourceId, database, encryptionKey) {
+  const ds = await getDataSourceWithPassword(dataSourceId, encryptionKey);
+  if (!ds) return null;
+  return getPool({ ...ds, database });
+}
+async function destroyPool(id) {
+  const prefix = `${id}:`;
+  for (const [key, pool] of pools) {
+    if (key === id || key.startsWith(prefix)) {
+      await pool.end();
+      pools.delete(key);
+      logger.info("Connection pool destroyed (key=%s)", key);
+    }
+  }
+}
+async function datasourceList(_req, reply) {
+  return reply.send(await listDataSources());
+}
+async function datasourceGet(req, reply) {
+  const { id } = req.body ?? {};
+  const ds = await getDataSourceById(id);
+  if (!ds) return reply.code(404).send({ error: "Not found" });
+  return reply.send(ds);
+}
+function datasourceCreate(encryptionKey) {
+  return async (req, reply) => {
+    const body = req.body ?? {};
+    const ds = await insertDataSource(
+      { ...body, ssl: body.ssl ?? false, pool_min: body.pool_min ?? 1, pool_max: body.pool_max ?? 10 },
+      encrypt(body.password, encryptionKey),
+      req.user.id
+    );
+    return reply.code(201).send(ds);
+  };
+}
+function datasourceUpdate(encryptionKey) {
+  return async (req, reply) => {
+    const { id, password, ...rest } = req.body ?? {};
+    const existing = await getDataSourceById(id);
+    if (!existing) return reply.code(404).send({ error: "Not found" });
+    const encryptedPassword = password ? encrypt(password, encryptionKey) : void 0;
+    await destroyPool(id);
+    const ds = await updateDataSource(id, rest, encryptedPassword);
+    return reply.send(ds);
+  };
+}
+async function datasourceDelete(req, reply) {
+  const { id } = req.body ?? {};
+  await destroyPool(id);
+  await removeDataSource(id);
+  return reply.code(204).send();
+}
+export {
+  datasourceCreate,
+  datasourceDelete,
+  datasourceGet,
+  datasourceList,
+  datasourceUpdate,
+  getDataSourceWithPassword,
+  getPool,
+  getPoolForDatabase
+};

package/package.json

@@ -0,0 +1,41 @@
+{
+  "name": "@heyhru/business-dms-datasource",
+  "publishConfig": {
+    "access": "public"
+  },
+  "version": "0.4.0",
+  "description": "DMS data source domain logic: service, model, sql, pool management",
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsup && tsc --emitDeclarationOnly",
+    "dev": "tsup --watch",
+    "lint": "eslint src",
+    "test": "vitest run",
+    "clean": "rm -rf dist"
+  },
+  "dependencies": {
+    "@heyhru/common-util-logger": "0.4.0",
+    "@heyhru/server-plugin-mysql": "0.4.0",
+    "@heyhru/server-plugin-pg": "0.4.0",
+    "@heyhru/server-util-crypto": "0.4.0",
+    "fastify": "^5.8.4"
+  },
+  "devDependencies": {
+    "tsup": "^8.5.1",
+    "typescript": "^6.0.2",
+    "vitest": "^4.1.2"
+  },
+  "gitHead": "48f00e1f0b1ca5d0789c0df9384a12f2c8e847c4"
+}