@intlayer/backend 7.2.1-canary.1 → 7.2.2

package/dist/cjs/utils/AI/auditTag/index.cjs

@@ -1,40 +0,0 @@
-const require_rolldown_runtime = require('../../../_virtual/rolldown_runtime.cjs');
-const require_logger_index = require('../../../logger/index.cjs');
-const require__utils_asset = require('../../../_virtual/_utils_asset.cjs');
-const require_utils_extractJSON = require('../../extractJSON.cjs');
-let ai = require("ai");
-
-//#region src/utils/AI/auditTag/index.ts
-const CHAT_GPT_PROMPT = require__utils_asset.readAsset("./PROMPT.md");
-const aiDefaultOptions = {};
-/**
-* Audits a tag by constructing a prompt for AI models.
-* The prompt includes details about the tag and related dictionaries.
-*/
-const auditTag = async ({ dictionaries, tag, aiConfig, applicationContext }) => {
-	const prompt = CHAT_GPT_PROMPT.replace("{{tag.description}}", tag.description ?? "").replace("{{tag.key}}", tag.key).replace("{{applicationContext}}", applicationContext ?? "");
-	const { text: newContent, usage } = await (0, ai.generateText)({
-		...aiConfig,
-		messages: [{
-			role: "system",
-			content: prompt
-		}, {
-			role: "user",
-			content: [
-				"**Tag to audit:**",
-				"This is the tag that you should consider to audit:",
-				JSON.stringify(tag)
-			].join("\n")
-		}]
-	});
-	require_logger_index.logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);
-	return {
-		fileContent: require_utils_extractJSON.extractJson(newContent),
-		tokenUsed: usage?.totalTokens ?? 0
-	};
-};
-
-//#endregion
-exports.aiDefaultOptions = aiDefaultOptions;
-exports.auditTag = auditTag;
-//# sourceMappingURL=index.cjs.map

package/dist/cjs/utils/AI/auditTag/index.cjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.cjs","names":["readAsset","aiDefaultOptions: AIOptions","extractJson"],"sources":["../../../../../src/utils/AI/auditTag/index.ts"],"sourcesContent":["import { readAsset } from 'utils:asset';\nimport { logger } from '@logger';\nimport { extractJson } from '@utils/extractJSON';\nimport { generateText } from 'ai';\nimport type { Dictionary } from '@/types/dictionary.types';\nimport type { TagAPI } from '@/types/tag.types';\nimport type { AIConfig, AIOptions } from '../aiSdk';\n\nexport type AuditOptions = {\n  dictionaries: Dictionary[];\n  tag: TagAPI;\n  aiConfig: AIConfig;\n  applicationContext?: string;\n};\n\nexport type TranslateJSONResultData = {\n  fileContent: string;\n  tokenUsed: number;\n};\n\n// The prompt template to send to AI models\nconst CHAT_GPT_PROMPT = readAsset('./PROMPT.md');\n\nexport const aiDefaultOptions: AIOptions = {\n  // Keep default options\n};\n\n/**\n * Audits a tag by constructing a prompt for AI models.\n * The prompt includes details about the tag and related dictionaries.\n */\nexport const auditTag = async ({\n  dictionaries,\n  tag,\n  aiConfig,\n  applicationContext,\n}: AuditOptions): Promise<TranslateJSONResultData | undefined> => {\n  // Prepare the prompt for AI by replacing placeholders with actual values.\n  const prompt = CHAT_GPT_PROMPT.replace(\n    '{{tag.description}}',\n    tag.description ?? ''\n  )\n    .replace('{{tag.key}}', tag.key)\n    .replace('{{applicationContext}}', applicationContext ?? '');\n\n  // Use the AI SDK to generate the completion\n  const { text: newContent, usage } = await generateText({\n    ...aiConfig,\n    messages: [\n      { role: 'system', content: prompt },\n      {\n        role: 'user',\n        content: [\n          '**Tag to audit:**',\n          'This is the tag that you should consider to audit:',\n          JSON.stringify(tag),\n        ].join('\\n'),\n      },\n    ],\n  });\n\n  logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);\n\n  return {\n    fileContent: extractJson(newContent),\n    tokenUsed: usage?.totalTokens ?? 0,\n  };\n};\n"],"mappings":";;;;;;;AAqBA,MAAM,kBAAkBA,+BAAU,cAAc;AAEhD,MAAaC,mBAA8B,EAE1C;;;;;AAMD,MAAa,WAAW,OAAO,EAC7B,cACA,KACA,UACA,yBACgE;CAEhE,MAAM,SAAS,gBAAgB,QAC7B,uBACA,IAAI,eAAe,GACpB,CACE,QAAQ,eAAe,IAAI,IAAI,CAC/B,QAAQ,0BAA0B,sBAAsB,GAAG;CAG9D,MAAM,EAAE,MAAM,YAAY,UAAU,2BAAmB;EACrD,GAAG;EACH,UAAU,CACR;GAAE,MAAM;GAAU,SAAS;GAAQ,EACnC;GACE,MAAM;GACN,SAAS;IACP;IACA;IACA,KAAK,UAAU,IAAI;IACpB,CAAC,KAAK,KAAK;GACb,CACF;EACF,CAAC;AAEF,6BAAO,KAAK,GAAG,OAAO,eAAe,EAAE,6BAA6B;AAEpE,QAAO;EACL,aAAaC,sCAAY,WAAW;EACpC,WAAW,OAAO,eAAe;EAClC"}

package/dist/cjs/utils/AI/autocomplete/index.cjs

@@ -1,41 +0,0 @@
-const require_rolldown_runtime = require('../../../_virtual/rolldown_runtime.cjs');
-const require_logger_index = require('../../../logger/index.cjs');
-const require_utils_AI_aiSdk = require('../aiSdk.cjs');
-const require__utils_asset = require('../../../_virtual/_utils_asset.cjs');
-let ai = require("ai");
-
-//#region src/utils/AI/autocomplete/index.ts
-const CHAT_GPT_PROMPT = require__utils_asset.readAsset("./PROMPT.md");
-const aiDefaultOptions = {
-	provider: require_utils_AI_aiSdk.AIProvider.OPENAI,
-	model: "gpt-4o-mini",
-	temperature: .7
-};
-/**
-* Autocompletes a content declaration file by constructing a prompt for AI models.
-* The prompt includes details about the project's locales, file paths of content declarations,
-* and requests for identifying issues or inconsistencies.
-*/
-const autocomplete = async ({ text, aiConfig, applicationContext, contextBefore, currentLine, contextAfter }) => {
-	const prompt = CHAT_GPT_PROMPT.replace("{{applicationContext}}", applicationContext ?? "").replace("{{contextBefore}}", contextBefore ?? "").replace("{{currentLine}}", currentLine ?? "").replace("{{contextAfter}}", contextAfter ?? "");
-	const { text: newContent, usage } = await (0, ai.generateText)({
-		...aiConfig,
-		messages: [{
-			role: "system",
-			content: prompt
-		}, {
-			role: "assistant",
-			content: text
-		}]
-	});
-	require_logger_index.logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);
-	return {
-		autocompletion: newContent,
-		tokenUsed: usage?.totalTokens ?? 0
-	};
-};
-
-//#endregion
-exports.aiDefaultOptions = aiDefaultOptions;
-exports.autocomplete = autocomplete;
-//# sourceMappingURL=index.cjs.map

package/dist/cjs/utils/AI/autocomplete/index.cjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.cjs","names":["readAsset","aiDefaultOptions: AIOptions","AIProvider"],"sources":["../../../../../src/utils/AI/autocomplete/index.ts"],"sourcesContent":["import { readAsset } from 'utils:asset';\nimport { logger } from '@logger';\nimport { generateText } from 'ai';\nimport { type AIConfig, type AIOptions, AIProvider } from '../aiSdk';\n\nexport type AutocompleteOptions = {\n  text: string;\n  aiConfig: AIConfig;\n  applicationContext?: string;\n  contextBefore?: string;\n  currentLine?: string;\n  contextAfter?: string;\n};\n\nexport type AutocompleteFileResultData = {\n  autocompletion: string;\n  tokenUsed: number;\n};\n\n// The prompt template to send to the AI model\nconst CHAT_GPT_PROMPT = readAsset('./PROMPT.md');\n\nexport const aiDefaultOptions: AIOptions = {\n  provider: AIProvider.OPENAI,\n  model: 'gpt-4o-mini',\n  temperature: 0.7,\n};\n\n/**\n * Autocompletes a content declaration file by constructing a prompt for AI models.\n * The prompt includes details about the project's locales, file paths of content declarations,\n * and requests for identifying issues or inconsistencies.\n */\nexport const autocomplete = async ({\n  text,\n  aiConfig,\n  applicationContext,\n  contextBefore,\n  currentLine,\n  contextAfter,\n}: AutocompleteOptions): Promise<AutocompleteFileResultData | undefined> => {\n  // Prepare the prompt for AI by replacing placeholders with actual values.\n  const prompt = CHAT_GPT_PROMPT.replace(\n    '{{applicationContext}}',\n    applicationContext ?? ''\n  )\n    .replace('{{contextBefore}}', contextBefore ?? '')\n    .replace('{{currentLine}}', currentLine ?? '')\n    .replace('{{contextAfter}}', contextAfter ?? '');\n\n  // Use the AI SDK to generate the completion\n  const { text: newContent, usage } = await generateText({\n    ...aiConfig,\n    messages: [\n      { role: 'system', content: prompt },\n      { role: 'assistant', content: text },\n    ],\n  });\n\n  logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);\n\n  return {\n    autocompletion: newContent,\n    tokenUsed: usage?.totalTokens ?? 0,\n  };\n};\n"],"mappings":";;;;;;;AAoBA,MAAM,kBAAkBA,+BAAU,cAAc;AAEhD,MAAaC,mBAA8B;CACzC,UAAUC,kCAAW;CACrB,OAAO;CACP,aAAa;CACd;;;;;;AAOD,MAAa,eAAe,OAAO,EACjC,MACA,UACA,oBACA,eACA,aACA,mBAC0E;CAE1E,MAAM,SAAS,gBAAgB,QAC7B,0BACA,sBAAsB,GACvB,CACE,QAAQ,qBAAqB,iBAAiB,GAAG,CACjD,QAAQ,mBAAmB,eAAe,GAAG,CAC7C,QAAQ,oBAAoB,gBAAgB,GAAG;CAGlD,MAAM,EAAE,MAAM,YAAY,UAAU,2BAAmB;EACrD,GAAG;EACH,UAAU,CACR;GAAE,MAAM;GAAU,SAAS;GAAQ,EACnC;GAAE,MAAM;GAAa,SAAS;GAAM,CACrC;EACF,CAAC;AAEF,6BAAO,KAAK,GAAG,OAAO,eAAe,EAAE,6BAA6B;AAEpE,QAAO;EACL,gBAAgB;EAChB,WAAW,OAAO,eAAe;EAClC"}

package/dist/cjs/utils/AI/customQuery/index.cjs

@@ -1,27 +0,0 @@
-const require_rolldown_runtime = require('../../../_virtual/rolldown_runtime.cjs');
-const require_logger_index = require('../../../logger/index.cjs');
-let ai = require("ai");
-
-//#region src/utils/AI/customQuery/index.ts
-const aiDefaultOptions = { model: "gpt-4o-mini" };
-/**
-* CustomQuerys a content declaration file by constructing a prompt for AI models.
-* The prompt includes details about the project's locales, file paths of content declarations,
-* and requests for identifying issues or inconsistencies.
-*/
-const customQuery = async ({ messages, aiConfig }) => {
-	const { text: newContent, usage } = await (0, ai.generateText)({
-		...aiConfig,
-		messages
-	});
-	require_logger_index.logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);
-	return {
-		fileContent: newContent,
-		tokenUsed: usage?.totalTokens ?? 0
-	};
-};
-
-//#endregion
-exports.aiDefaultOptions = aiDefaultOptions;
-exports.customQuery = customQuery;
-//# sourceMappingURL=index.cjs.map

package/dist/cjs/utils/AI/customQuery/index.cjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.cjs","names":["aiDefaultOptions: AIOptions"],"sources":["../../../../../src/utils/AI/customQuery/index.ts"],"sourcesContent":["import { logger } from '@logger';\nimport { generateText } from 'ai';\nimport type { AIConfig, AIOptions, Messages } from '../aiSdk';\n\nexport type CustomQueryOptions = {\n  messages: Messages;\n  aiConfig: AIConfig;\n};\n\nexport type CustomQueryResultData = {\n  fileContent: string;\n  tokenUsed: number;\n};\n\nexport const aiDefaultOptions: AIOptions = {\n  model: 'gpt-4o-mini',\n  // Keep default options\n};\n\n/**\n * CustomQuerys a content declaration file by constructing a prompt for AI models.\n * The prompt includes details about the project's locales, file paths of content declarations,\n * and requests for identifying issues or inconsistencies.\n */\nexport const customQuery = async ({\n  messages,\n  aiConfig,\n}: CustomQueryOptions): Promise<CustomQueryResultData | undefined> => {\n  // Use the AI SDK to generate the completion\n  const { text: newContent, usage } = await generateText({\n    ...aiConfig,\n    messages,\n  });\n\n  logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);\n\n  return {\n    fileContent: newContent,\n    tokenUsed: usage?.totalTokens ?? 0,\n  };\n};\n"],"mappings":";;;;;AAcA,MAAaA,mBAA8B,EACzC,OAAO,eAER;;;;;;AAOD,MAAa,cAAc,OAAO,EAChC,UACA,eACoE;CAEpE,MAAM,EAAE,MAAM,YAAY,UAAU,2BAAmB;EACrD,GAAG;EACH;EACD,CAAC;AAEF,6BAAO,KAAK,GAAG,OAAO,eAAe,EAAE,6BAA6B;AAEpE,QAAO;EACL,aAAa;EACb,WAAW,OAAO,eAAe;EAClC"}

package/dist/cjs/utils/AI/translateJSON/index.cjs

@@ -1,71 +0,0 @@
-const require_rolldown_runtime = require('../../../_virtual/rolldown_runtime.cjs');
-const require_logger_index = require('../../../logger/index.cjs');
-const require_utils_AI_aiSdk = require('../aiSdk.cjs');
-const require__utils_asset = require('../../../_virtual/_utils_asset.cjs');
-const require_utils_extractJSON = require('../../extractJSON.cjs');
-let __intlayer_types = require("@intlayer/types");
-let __intlayer_core = require("@intlayer/core");
-let ai = require("ai");
-
-//#region src/utils/AI/translateJSON/index.ts
-const CHAT_GPT_PROMPT = require__utils_asset.readAsset("./PROMPT.md");
-const aiDefaultOptions = {
-	provider: require_utils_AI_aiSdk.AIProvider.OPENAI,
-	model: "gpt-5-mini"
-};
-/**
-* Format a locale with its name.
-*
-* @param locale - The locale to format.
-* @returns A string in the format "locale: name", e.g. "en: English".
-*/
-const formatLocaleWithName = (locale) => `${locale}: ${(0, __intlayer_core.getLocaleName)(locale, __intlayer_types.Locales.ENGLISH)}`;
-/**
-* Formats tag instructions for the AI prompt.
-* Creates a string with all available tags and their descriptions.
-*
-* @param tags - The list of tags to format.
-* @returns A formatted string with tag instructions.
-*/
-const formatTagInstructions = (tags) => {
-	if (!tags || tags.length === 0) return "";
-	return `Based on the dictionary content, identify specific tags from the list below that would be relevant:
-  
-${tags.map(({ key, description }) => `- ${key}: ${description}`).join("\n\n")}`;
-};
-const getModeInstructions = (mode) => {
-	if (mode === "complete") return "Mode: \"Complete\" - Enrich the preset content with the missing keys and values in the output locale. Do not update existing keys. Everything should be returned in the output.";
-	return "Mode: \"Review\" - Fill missing content and review existing keys from the preset content. If a key from the entry is missing in the output, it must be translated to the target language and added. If you detect misspelled content, or content that should be reformulated, correct it. If a translation is not coherent with the desired language, translate it.";
-};
-/**
-* TranslateJSONs a content declaration file by constructing a prompt for AI models.
-* The prompt includes details about the project's locales, file paths of content declarations,
-* and requests for identifying issues or inconsistencies.
-*/
-const translateJSON = async ({ entryFileContent, presetOutputContent, dictionaryDescription, aiConfig, entryLocale, outputLocale, tags, mode, applicationContext }) => {
-	const prompt = CHAT_GPT_PROMPT.replace("{{entryLocale}}", formatLocaleWithName(entryLocale)).replace("{{outputLocale}}", formatLocaleWithName(outputLocale)).replace("{{presetOutputContent}}", JSON.stringify(presetOutputContent)).replace("{{dictionaryDescription}}", dictionaryDescription ?? "").replace("{{applicationContext}}", applicationContext ?? "").replace("{{tagsInstructions}}", formatTagInstructions(tags)).replace("{{modeInstructions}}", getModeInstructions(mode));
-	const { text: newContent, usage } = await (0, ai.generateText)({
-		...aiConfig,
-		messages: [{
-			role: "system",
-			content: prompt
-		}, {
-			role: "user",
-			content: [
-				"**Entry Content to Translate:**",
-				"- Given Language: {{entryLocale}}",
-				JSON.stringify(entryFileContent)
-			].join("\n")
-		}]
-	});
-	require_logger_index.logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);
-	return {
-		fileContent: require_utils_extractJSON.extractJson(newContent),
-		tokenUsed: usage?.totalTokens ?? 0
-	};
-};
-
-//#endregion
-exports.aiDefaultOptions = aiDefaultOptions;
-exports.translateJSON = translateJSON;
-//# sourceMappingURL=index.cjs.map

package/dist/cjs/utils/AI/translateJSON/index.cjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.cjs","names":["readAsset","aiDefaultOptions: AIOptions","AIProvider","Locales","extractJson"],"sources":["../../../../../src/utils/AI/translateJSON/index.ts"],"sourcesContent":["import { readAsset } from 'utils:asset';\nimport { getLocaleName } from '@intlayer/core';\nimport { type Locale, Locales } from '@intlayer/types';\nimport { logger } from '@logger';\nimport { extractJson } from '@utils/extractJSON';\nimport { generateText } from 'ai';\nimport type { Tag } from '@/types/tag.types';\nimport { type AIConfig, type AIOptions, AIProvider } from '../aiSdk';\n\nexport type TranslateJSONOptions = {\n  entryFileContent: JSON;\n  presetOutputContent: JSON;\n  dictionaryDescription?: string;\n  entryLocale: Locale;\n  outputLocale: Locale;\n  tags: Tag[];\n  aiConfig: AIConfig;\n  mode: 'complete' | 'review';\n  applicationContext?: string;\n};\n\nexport type TranslateJSONResultData = {\n  fileContent: string;\n  tokenUsed: number;\n};\n\n// The prompt template to send to the AI model\nconst CHAT_GPT_PROMPT = readAsset('./PROMPT.md');\n\nexport const aiDefaultOptions: AIOptions = {\n  provider: AIProvider.OPENAI,\n  model: 'gpt-5-mini',\n};\n\n/**\n * Format a locale with its name.\n *\n * @param locale - The locale to format.\n * @returns A string in the format \"locale: name\", e.g. \"en: English\".\n */\nconst formatLocaleWithName = (locale: Locale): string =>\n  `${locale}: ${getLocaleName(locale, Locales.ENGLISH)}`;\n\n/**\n * Formats tag instructions for the AI prompt.\n * Creates a string with all available tags and their descriptions.\n *\n * @param tags - The list of tags to format.\n * @returns A formatted string with tag instructions.\n */\nconst formatTagInstructions = (tags: Tag[]): string => {\n  if (!tags || tags.length === 0) {\n    return '';\n  }\n\n  // Prepare the tag instructions.\n  return `Based on the dictionary content, identify specific tags from the list below that would be relevant:\n  \n${tags.map(({ key, description }) => `- ${key}: ${description}`).join('\\n\\n')}`;\n};\n\nconst getModeInstructions = (mode: 'complete' | 'review'): string => {\n  if (mode === 'complete') {\n    return 'Mode: \"Complete\" - Enrich the preset content with the missing keys and values in the output locale. Do not update existing keys. Everything should be returned in the output.';\n  }\n\n  return 'Mode: \"Review\" - Fill missing content and review existing keys from the preset content. If a key from the entry is missing in the output, it must be translated to the target language and added. If you detect misspelled content, or content that should be reformulated, correct it. If a translation is not coherent with the desired language, translate it.';\n};\n\n/**\n * TranslateJSONs a content declaration file by constructing a prompt for AI models.\n * The prompt includes details about the project's locales, file paths of content declarations,\n * and requests for identifying issues or inconsistencies.\n */\nexport const translateJSON = async ({\n  entryFileContent,\n  presetOutputContent,\n  dictionaryDescription,\n  aiConfig,\n  entryLocale,\n  outputLocale,\n  tags,\n  mode,\n  applicationContext,\n}: TranslateJSONOptions): Promise<TranslateJSONResultData | undefined> => {\n  // Prepare the prompt for AI by replacing placeholders with actual values.\n  const prompt = CHAT_GPT_PROMPT.replace(\n    '{{entryLocale}}',\n    formatLocaleWithName(entryLocale)\n  )\n    .replace('{{outputLocale}}', formatLocaleWithName(outputLocale))\n    .replace('{{presetOutputContent}}', JSON.stringify(presetOutputContent))\n    .replace('{{dictionaryDescription}}', dictionaryDescription ?? '')\n    .replace('{{applicationContext}}', applicationContext ?? '')\n    .replace('{{tagsInstructions}}', formatTagInstructions(tags))\n    .replace('{{modeInstructions}}', getModeInstructions(mode));\n\n  // Use the AI SDK to generate the completion\n  const { text: newContent, usage } = await generateText({\n    ...aiConfig,\n    messages: [\n      { role: 'system', content: prompt },\n      {\n        role: 'user',\n        content: [\n          '**Entry Content to Translate:**',\n          '- Given Language: {{entryLocale}}',\n          JSON.stringify(entryFileContent),\n        ].join('\\n'),\n      },\n    ],\n  });\n\n  logger.info(`${usage?.totalTokens ?? 0} tokens used in the request`);\n\n  return {\n    fileContent: extractJson(newContent),\n    tokenUsed: usage?.totalTokens ?? 0,\n  };\n};\n"],"mappings":";;;;;;;;;;AA2BA,MAAM,kBAAkBA,+BAAU,cAAc;AAEhD,MAAaC,mBAA8B;CACzC,UAAUC,kCAAW;CACrB,OAAO;CACR;;;;;;;AAQD,MAAM,wBAAwB,WAC5B,GAAG,OAAO,uCAAkB,QAAQC,yBAAQ,QAAQ;;;;;;;;AAStD,MAAM,yBAAyB,SAAwB;AACrD,KAAI,CAAC,QAAQ,KAAK,WAAW,EAC3B,QAAO;AAIT,QAAO;;EAEP,KAAK,KAAK,EAAE,KAAK,kBAAkB,KAAK,IAAI,IAAI,cAAc,CAAC,KAAK,OAAO;;AAG7E,MAAM,uBAAuB,SAAwC;AACnE,KAAI,SAAS,WACX,QAAO;AAGT,QAAO;;;;;;;AAQT,MAAa,gBAAgB,OAAO,EAClC,kBACA,qBACA,uBACA,UACA,aACA,cACA,MACA,MACA,yBACwE;CAExE,MAAM,SAAS,gBAAgB,QAC7B,mBACA,qBAAqB,YAAY,CAClC,CACE,QAAQ,oBAAoB,qBAAqB,aAAa,CAAC,CAC/D,QAAQ,2BAA2B,KAAK,UAAU,oBAAoB,CAAC,CACvE,QAAQ,6BAA6B,yBAAyB,GAAG,CACjE,QAAQ,0BAA0B,sBAAsB,GAAG,CAC3D,QAAQ,wBAAwB,sBAAsB,KAAK,CAAC,CAC5D,QAAQ,wBAAwB,oBAAoB,KAAK,CAAC;CAG7D,MAAM,EAAE,MAAM,YAAY,UAAU,2BAAmB;EACrD,GAAG;EACH,UAAU,CACR;GAAE,MAAM;GAAU,SAAS;GAAQ,EACnC;GACE,MAAM;GACN,SAAS;IACP;IACA;IACA,KAAK,UAAU,iBAAiB;IACjC,CAAC,KAAK,KAAK;GACb,CACF;EACF,CAAC;AAEF,6BAAO,KAAK,GAAG,OAAO,eAAe,EAAE,6BAA6B;AAEpE,QAAO;EACL,aAAaC,sCAAY,WAAW;EACpC,WAAW,OAAO,eAAe;EAClC"}

package/dist/cjs/utils/accessControl.cjs

@@ -1,133 +0,0 @@
-const require_logger_index = require('../logger/index.cjs');
-const require_utils_httpStatusCodes = require('./httpStatusCodes.cjs');
-
-//#region src/utils/accessControl.ts
-let AccessRule = /* @__PURE__ */ function(AccessRule$1) {
-	AccessRule$1["none"] = "none";
-	AccessRule$1["authenticated"] = "authenticated";
-	AccessRule$1["admin"] = "admin";
-	AccessRule$1["noneAuthenticated"] = "not-authenticated";
-	AccessRule$1["hasOrganization"] = "has-organization";
-	AccessRule$1["hasProject"] = "has-project";
-	AccessRule$1["hasBearer"] = "has-bearer";
-	AccessRule$1["oauth2"] = "oauth2";
-	return AccessRule$1;
-}({});
-const accessControl = (res, accessRule) => {
-	const accessRuleArray = Array.isArray(accessRule) ? accessRule : [accessRule];
-	const { user, organization, project, authType } = res.locals;
-	if (accessRuleArray.includes(AccessRule.none)) return {
-		success: true,
-		message: null,
-		data: {
-			user,
-			organization,
-			project,
-			authType
-		}
-	};
-	let success = true;
-	const messages = [];
-	if (accessRuleArray.includes(AccessRule.authenticated)) {
-		if (!user) {
-			success = false;
-			messages.push("User is not authenticated");
-		}
-	}
-	if (accessRuleArray.includes(AccessRule.noneAuthenticated)) {
-		if (user) {
-			success = false;
-			messages.push("User is authenticated");
-		}
-	}
-	if (accessRuleArray.includes(AccessRule.hasOrganization)) {
-		if (!organization) {
-			success = false;
-			messages.push("Organization is not set");
-		}
-	}
-	if (accessRuleArray.includes(AccessRule.hasProject)) {
-		if (!project) {
-			success = false;
-			messages.push("Project is not set");
-		}
-	}
-	if (accessRuleArray.includes(AccessRule.oauth2)) {
-		if (authType !== "oauth2") {
-			success = false;
-			messages.push("OAuth2 authentication is required");
-		}
-	}
-	const knownRules = Object.values(AccessRule);
-	const unknownRules = accessRuleArray.filter((rule) => !knownRules.includes(rule));
-	if (unknownRules.length > 0) {
-		success = false;
-		messages.push(`Unknown access rules: ${unknownRules.join(", ")}`);
-	}
-	return {
-		success,
-		message: messages.join(", "),
-		data: {
-			user,
-			organization,
-			project,
-			authType
-		}
-	};
-};
-/**
-* Middleware to control API access based on access rules.
-*
-* This middleware allows for multiple access rules to be passed, either as individual `AccessRule` or
-* an array of `AccessRule` groups. Access is granted if at least one of the following conditions is met:
-*
-* - The user satisfies all `AccessRule` within any group of rules passed as an array.
-* - The user satisfies any single `AccessRule` passed individually.
-*
-* Example usage:
-*
-* ```typescript
-* // Allow access if the user has both `hasProject` and `hasOrganization`, or if they have `admin` rights
-* app.use('/protected-route', apiAccessControlMiddleWare([AccessRule.hasProject, AccessRule.hasOrganization], AccessRule.admin));
-* ```
-*
-* In this example:
-* - The user will be granted access if they have both `hasProject` and `hasOrganization`.
-* - Alternatively, the user will also be granted access if they have `admin` privileges.
-*
-* @param {...(AccessRule | AccessRule[])[]} accessRules - One or more access rules or groups of access rules.
-* - Single `AccessRule`: The user must satisfy this rule for access to be granted.
-* - Array of `AccessRule`: The user must satisfy all rules in the array for access to be granted.
-* @returns {Function} Express middleware function that checks if the user has the required access.
-*
-* If the user does not meet any of the provided access rules, a 403 Forbidden status is returned.
-*
-* @example
-* // Example 1: Require admin privileges
-* app.use('/admin', apiAccessControlMiddleWare(AccessRule.admin));
-*
-* @example
-* // Example 2: Require both project and organization access, or admin privileges
-* app.use('/dashboard', apiAccessControlMiddleWare([AccessRule.hasProject, AccessRule.hasOrganization], AccessRule.admin));
-*/
-const accessControlMiddleWare = (...accessRules) => (_req, res, next) => {
-	let hasAccess = false;
-	for (const ruleGroup of accessRules) {
-		if (Array.isArray(ruleGroup)) hasAccess = ruleGroup.map((rule) => accessControl(res, rule).success).every((result) => result);
-		else if (accessControl(res, ruleGroup).success) hasAccess = true;
-		if (hasAccess) break;
-	}
-	if (!hasAccess) {
-		require_logger_index.logger.error("Access denied");
-		const errorStatusCode = require_utils_httpStatusCodes.HttpStatusCodes.FORBIDDEN_403;
-		res.sendStatus(errorStatusCode);
-		return;
-	}
-	next();
-};
-
-//#endregion
-exports.AccessRule = AccessRule;
-exports.accessControl = accessControl;
-exports.accessControlMiddleWare = accessControlMiddleWare;
-//# sourceMappingURL=accessControl.cjs.map

package/dist/cjs/utils/accessControl.cjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"accessControl.cjs","names":["accessRuleArray: AccessRule[]","messages: string[]","HttpStatusCodes"],"sources":["../../../src/utils/accessControl.ts"],"sourcesContent":["import { logger } from '@logger';\n\nimport type { NextFunction, Request, Response } from 'express';\nimport { HttpStatusCodes } from './httpStatusCodes';\n\nexport enum AccessRule {\n  none = 'none',\n  authenticated = 'authenticated',\n  admin = 'admin',\n  noneAuthenticated = 'not-authenticated',\n  hasOrganization = 'has-organization',\n  hasProject = 'has-project',\n  hasBearer = 'has-bearer',\n  oauth2 = 'oauth2',\n}\n\nexport const accessControl = <R extends AccessRule | AccessRule[]>(\n  res: Response,\n  accessRule: R\n) => {\n  const accessRuleArray: AccessRule[] = Array.isArray(accessRule)\n    ? accessRule\n    : [accessRule];\n\n  const localsAuthInformation = res.locals;\n  const { user, organization, project, authType } = localsAuthInformation;\n\n  // If 'none' access rule is present, immediately return success\n  if (accessRuleArray.includes(AccessRule.none)) {\n    return {\n      success: true,\n      message: null,\n      data: { user, organization, project, authType },\n    };\n  }\n\n  let success = true;\n  const messages: string[] = [];\n\n  // Check for 'authenticated' access rule\n  if (accessRuleArray.includes(AccessRule.authenticated)) {\n    if (!user) {\n      success = false;\n      messages.push('User is not authenticated');\n    }\n  }\n\n  // Check for 'admin' access rule\n  // if (accessRuleArray.includes(AccessRule.admin)) {\n  //   if (!user?.role.includes('admin')) {\n  //     success = false;\n  //     messages.push('User is not an admin');\n  //   }\n  // }\n\n  // Check for 'not-authenticated' access rule\n  if (accessRuleArray.includes(AccessRule.noneAuthenticated)) {\n    if (user) {\n      success = false;\n      messages.push('User is authenticated');\n    }\n  }\n\n  // Check for 'has-organization' access rule\n  if (accessRuleArray.includes(AccessRule.hasOrganization)) {\n    if (!organization) {\n      success = false;\n      messages.push('Organization is not set');\n    }\n  }\n\n  // Check for 'has-project' access rule\n  if (accessRuleArray.includes(AccessRule.hasProject)) {\n    if (!project) {\n      success = false;\n      messages.push('Project is not set');\n    }\n  }\n\n  // Check for 'oauth2' access rule\n  if (accessRuleArray.includes(AccessRule.oauth2)) {\n    if (authType !== 'oauth2') {\n      success = false;\n      messages.push('OAuth2 authentication is required');\n    }\n  }\n\n  // Handle unknown access rules\n  const knownRules = Object.values(AccessRule);\n  const unknownRules = accessRuleArray.filter(\n    (rule) => !knownRules.includes(rule)\n  );\n  if (unknownRules.length > 0) {\n    success = false;\n    messages.push(`Unknown access rules: ${unknownRules.join(', ')}`);\n  }\n\n  return {\n    success,\n    message: messages.join(', '),\n    data: { user, organization, project, authType },\n  };\n};\n\n/**\n * Middleware to control API access based on access rules.\n *\n * This middleware allows for multiple access rules to be passed, either as individual `AccessRule` or\n * an array of `AccessRule` groups. Access is granted if at least one of the following conditions is met:\n *\n * - The user satisfies all `AccessRule` within any group of rules passed as an array.\n * - The user satisfies any single `AccessRule` passed individually.\n *\n * Example usage:\n *\n * ```typescript\n * // Allow access if the user has both `hasProject` and `hasOrganization`, or if they have `admin` rights\n * app.use('/protected-route', apiAccessControlMiddleWare([AccessRule.hasProject, AccessRule.hasOrganization], AccessRule.admin));\n * ```\n *\n * In this example:\n * - The user will be granted access if they have both `hasProject` and `hasOrganization`.\n * - Alternatively, the user will also be granted access if they have `admin` privileges.\n *\n * @param {...(AccessRule | AccessRule[])[]} accessRules - One or more access rules or groups of access rules.\n * - Single `AccessRule`: The user must satisfy this rule for access to be granted.\n * - Array of `AccessRule`: The user must satisfy all rules in the array for access to be granted.\n * @returns {Function} Express middleware function that checks if the user has the required access.\n *\n * If the user does not meet any of the provided access rules, a 403 Forbidden status is returned.\n *\n * @example\n * // Example 1: Require admin privileges\n * app.use('/admin', apiAccessControlMiddleWare(AccessRule.admin));\n *\n * @example\n * // Example 2: Require both project and organization access, or admin privileges\n * app.use('/dashboard', apiAccessControlMiddleWare([AccessRule.hasProject, AccessRule.hasOrganization], AccessRule.admin));\n */\nexport const accessControlMiddleWare =\n  (...accessRules: (AccessRule | AccessRule[])[]) =>\n  (_req: Request<unknown>, res: Response, next: NextFunction): void => {\n    let hasAccess = false;\n\n    // Iterate over each access rule group (either single AccessRule or an array of AccessRules)\n    for (const ruleGroup of accessRules) {\n      if (Array.isArray(ruleGroup)) {\n        // If ruleGroup is an array, check if all rules in the group are satisfied\n        const accessResults = ruleGroup.map(\n          (rule) => accessControl(res, rule).success\n        );\n        hasAccess = accessResults.every((result) => result); // All rules must be satisfied in this case\n      } else {\n        // Single rule: just check this one\n        const accessResult = accessControl(res, ruleGroup);\n        if (accessResult.success) {\n          hasAccess = true;\n        }\n      }\n\n      // If access is granted at any point, stop further checks\n      if (hasAccess) {\n        break;\n      }\n    }\n\n    // If no access rule group was satisfied, deny access\n    if (!hasAccess) {\n      logger.error('Access denied');\n\n      const errorStatusCode = HttpStatusCodes.FORBIDDEN_403;\n      res.sendStatus(errorStatusCode);\n      return;\n    }\n\n    next();\n  };\n"],"mappings":";;;;AAKA,IAAY,oDAAL;AACL;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;;AAGF,MAAa,iBACX,KACA,eACG;CACH,MAAMA,kBAAgC,MAAM,QAAQ,WAAW,GAC3D,aACA,CAAC,WAAW;CAGhB,MAAM,EAAE,MAAM,cAAc,SAAS,aADP,IAAI;AAIlC,KAAI,gBAAgB,SAAS,WAAW,KAAK,CAC3C,QAAO;EACL,SAAS;EACT,SAAS;EACT,MAAM;GAAE;GAAM;GAAc;GAAS;GAAU;EAChD;CAGH,IAAI,UAAU;CACd,MAAMC,WAAqB,EAAE;AAG7B,KAAI,gBAAgB,SAAS,WAAW,cAAc,EACpD;MAAI,CAAC,MAAM;AACT,aAAU;AACV,YAAS,KAAK,4BAA4B;;;AAa9C,KAAI,gBAAgB,SAAS,WAAW,kBAAkB,EACxD;MAAI,MAAM;AACR,aAAU;AACV,YAAS,KAAK,wBAAwB;;;AAK1C,KAAI,gBAAgB,SAAS,WAAW,gBAAgB,EACtD;MAAI,CAAC,cAAc;AACjB,aAAU;AACV,YAAS,KAAK,0BAA0B;;;AAK5C,KAAI,gBAAgB,SAAS,WAAW,WAAW,EACjD;MAAI,CAAC,SAAS;AACZ,aAAU;AACV,YAAS,KAAK,qBAAqB;;;AAKvC,KAAI,gBAAgB,SAAS,WAAW,OAAO,EAC7C;MAAI,aAAa,UAAU;AACzB,aAAU;AACV,YAAS,KAAK,oCAAoC;;;CAKtD,MAAM,aAAa,OAAO,OAAO,WAAW;CAC5C,MAAM,eAAe,gBAAgB,QAClC,SAAS,CAAC,WAAW,SAAS,KAAK,CACrC;AACD,KAAI,aAAa,SAAS,GAAG;AAC3B,YAAU;AACV,WAAS,KAAK,yBAAyB,aAAa,KAAK,KAAK,GAAG;;AAGnE,QAAO;EACL;EACA,SAAS,SAAS,KAAK,KAAK;EAC5B,MAAM;GAAE;GAAM;GAAc;GAAS;GAAU;EAChD;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAsCH,MAAa,2BACV,GAAG,iBACH,MAAwB,KAAe,SAA6B;CACnE,IAAI,YAAY;AAGhB,MAAK,MAAM,aAAa,aAAa;AACnC,MAAI,MAAM,QAAQ,UAAU,CAK1B,aAHsB,UAAU,KAC7B,SAAS,cAAc,KAAK,KAAK,CAAC,QACpC,CACyB,OAAO,WAAW,OAAO;WAG9B,cAAc,KAAK,UAAU,CACjC,QACf,aAAY;AAKhB,MAAI,UACF;;AAKJ,KAAI,CAAC,WAAW;AACd,8BAAO,MAAM,gBAAgB;EAE7B,MAAM,kBAAkBC,8CAAgB;AACxC,MAAI,WAAW,gBAAgB;AAC/B;;AAGF,OAAM"}

package/dist/cjs/utils/auth/getAuth.cjs

@@ -1,218 +0,0 @@
-const require_rolldown_runtime = require('../../_virtual/rolldown_runtime.cjs');
-const require_logger_index = require('../../logger/index.cjs');
-const require_services_organization_service = require('../../services/organization.service.cjs');
-const require_services_project_service = require('../../services/project.service.cjs');
-const require_utils_permissions = require('../permissions.cjs');
-const require_services_user_service = require('../../services/user.service.cjs');
-const require_utils_mapper_user = require('../mapper/user.cjs');
-const require_services_email_service = require('../../services/email.service.cjs');
-const require_utils_mapper_organization = require('../mapper/organization.cjs');
-const require_utils_mapper_project = require('../mapper/project.cjs');
-const require_controllers_user_controller = require('../../controllers/user.controller.cjs');
-const require_utils_mapper_session = require('../mapper/session.cjs');
-let better_auth = require("better-auth");
-let better_auth_adapters_mongodb = require("better-auth/adapters/mongodb");
-let better_auth_api = require("better-auth/api");
-let better_auth_plugins = require("better-auth/plugins");
-let better_auth_plugins_magic_link = require("better-auth/plugins/magic-link");
-let better_auth_plugins_passkey = require("better-auth/plugins/passkey");
-
-//#region src/utils/auth/getAuth.ts
-const formatSession = (session) => {
-	const roles = require_utils_permissions.getSessionRoles(session);
-	let permissions = require_utils_permissions.computeEffectivePermission(roles);
-	if (session.permissions) permissions = require_utils_permissions.intersectPermissions(permissions, session.permissions);
-	return {
-		session: session.session,
-		user: session.user,
-		organization: session.organization,
-		project: session.project,
-		authType: "session",
-		permissions,
-		roles
-	};
-};
-const getAuth = (dbClient) => {
-	if (!dbClient) throw new Error("MongoDB connection not established");
-	return (0, better_auth.betterAuth)({
-		appName: "Intlayer",
-		database: (0, better_auth_adapters_mongodb.mongodbAdapter)(dbClient.db()),
-		user: { modelName: "users" },
-		databaseHooks: { user: { create: { after: async (user) => {
-			if (!user?.emailVerified) return;
-			await require_services_email_service.sendEmail({
-				type: "welcome",
-				to: user.email,
-				username: user.name ?? user.email.split("@")[0],
-				loginLink: `${process.env.CLIENT_URL}/auth/login`,
-				locale: user.lang
-			});
-			require_logger_index.logger.info("Welcome e‑mail delivered", { email: user.email });
-		} } } },
-		hooks: { after: (0, better_auth_api.createAuthMiddleware)(async (ctx) => {
-			const { path, context } = ctx;
-			const newUser = context.newSession?.user;
-			const existingUser = context.session?.user;
-			const user = newUser ?? existingUser;
-			if (!user) return;
-			if (["/verify-email"].includes(path)) {
-				require_controllers_user_controller.sendVerificationUpdate(user);
-				require_logger_index.logger.info("SSE verification update sent", {
-					email: user.email,
-					userId: user.id
-				});
-				await require_services_email_service.sendEmail({
-					type: "welcome",
-					to: user.email,
-					username: user.name ?? user.email.split("@")[0],
-					loginLink: `${process.env.CLIENT_URL}/auth/login`,
-					locale: user.lang
-				});
-				require_logger_index.logger.info("Welcome e‑mail delivered", { email: user.email });
-			}
-		}) },
-		advanced: {
-			cookiePrefix: "intlayer",
-			cookies: { session_token: {} }
-		},
-		secret: process.env.AUTH_SECRET,
-		session: {
-			modelName: "sessions",
-			id: "id",
-			additionalFields: {
-				activeOrganizationId: {
-					type: "string",
-					nullable: true,
-					input: false
-				},
-				activeProjectId: {
-					type: "string",
-					nullable: true,
-					input: false
-				}
-			}
-		},
-		plugins: [
-			(0, better_auth_plugins.customSession)(async ({ session }) => {
-				const typedSession = session;
-				let userAPI = null;
-				let organizationAPI = null;
-				let projectAPI = null;
-				if (typedSession.userId) {
-					const userData = await require_services_user_service.getUserById(typedSession.userId);
-					if (userData) userAPI = require_utils_mapper_user.mapUserToAPI(userData);
-				}
-				if (typedSession.activeOrganizationId) {
-					const orgData = await require_services_organization_service.getOrganizationById(typedSession.activeOrganizationId);
-					if (orgData) organizationAPI = require_utils_mapper_organization.mapOrganizationToAPI(orgData);
-				}
-				if (typedSession.activeProjectId) {
-					const projectData = await require_services_project_service.getProjectById(typedSession.activeProjectId);
-					if (projectData) projectAPI = require_utils_mapper_project.mapProjectToAPI(projectData);
-				}
-				return require_utils_mapper_session.mapSessionToAPI(formatSession({
-					session: typedSession,
-					user: userAPI,
-					organization: organizationAPI ?? null,
-					project: projectAPI ?? null,
-					authType: "session"
-				}));
-			}),
-			(0, better_auth_plugins.lastLoginMethod)({
-				storeInDatabase: true,
-				schema: { user: { lastLoginMethod: "lastLoginMethod" } },
-				customResolveMethod: (context) => {
-					if (context.path === "/magic-link/verify") return "magic-link";
-					return null;
-				}
-			}),
-			(0, better_auth_plugins_passkey.passkey)(),
-			(0, better_auth_plugins.twoFactor)(),
-			(0, better_auth_plugins_magic_link.magicLink)({ sendMagicLink: async ({ email, url }) => {
-				require_logger_index.logger.info("sending magic link", {
-					email,
-					url
-				});
-				await require_services_email_service.sendEmail({
-					type: "magicLink",
-					to: email,
-					username: email.split("@")[0],
-					magicLink: url
-				});
-			} })
-		],
-		emailAndPassword: {
-			enabled: true,
-			disableSignUp: false,
-			requireEmailVerification: true,
-			minPasswordLength: 8,
-			maxPasswordLength: 128,
-			autoSignIn: true,
-			sendResetPassword: async ({ user, token }) => {
-				require_logger_index.logger.info("sending reset password email", { email: user.email });
-				await require_services_email_service.sendEmail({
-					type: "resetPassword",
-					to: user.email,
-					username: user.name ?? user.email.split("@")[0],
-					resetLink: `${process.env.CLIENT_URL}/auth/password/reset?token=${token}`
-				});
-			},
-			resetPasswordTokenExpiresIn: 3600
-		},
-		accountLinking: {
-			enabled: true,
-			trustedProviders: [
-				"google",
-				"github",
-				"linkedin"
-			]
-		},
-		emailVerification: {
-			autoSignInAfterVerification: true,
-			sendOnSignIn: true,
-			sendVerificationEmail: async ({ user, url }) => {
-				require_logger_index.logger.info("sending verification email", { email: user.email });
-				await require_services_email_service.sendEmail({
-					type: "validate",
-					to: user.email,
-					username: user.name ?? user.email.split("@")[0],
-					validationLink: url
-				});
-			}
-		},
-		crossSubDomainCookies: {
-			enabled: true,
-			additionalCookies: ["session_token"],
-			domain: process.env.CLIENT_URL
-		},
-		cookiePrefix: "intlayer",
-		cookies: { session_token: {
-			name: "session_token",
-			attributes: {
-				httpOnly: true,
-				secure: true
-			}
-		} },
-		trustedOrigins: [process.env.CLIENT_URL],
-		socialProviders: {
-			google: {
-				clientId: process.env.GOOGLE_CLIENT_ID,
-				clientSecret: process.env.GOOGLE_CLIENT_SECRET
-			},
-			github: {
-				clientId: process.env.GITHUB_CLIENT_ID,
-				clientSecret: process.env.GITHUB_CLIENT_SECRET
-			},
-			linkedin: {
-				clientId: process.env.LINKEDIN_CLIENT_ID,
-				clientSecret: process.env.LINKEDIN_CLIENT_SECRET
-			}
-		},
-		logger: { log: (level, message, ...args) => require_logger_index.logger[level](message, ...args) }
-	});
-};
-
-//#endregion
-exports.formatSession = formatSession;
-exports.getAuth = getAuth;
-//# sourceMappingURL=getAuth.cjs.map

package/dist/cjs/utils/auth/getAuth.cjs.map

@@ -1 +0,0 @@
-{"version":3,"file":"getAuth.cjs","names":["getSessionRoles","computeEffectivePermission","intersectPermissions","sendEmail","userAPI: UserAPI | null","organizationAPI: OrganizationAPI | null","projectAPI: ProjectAPI | null","getUserById","mapUserToAPI","getOrganizationById","mapOrganizationToAPI","getProjectById","mapProjectToAPI","mapSessionToAPI","logger"],"sources":["../../../../src/utils/auth/getAuth.ts"],"sourcesContent":["// import { sso } from '@better-auth/sso';\nimport { sendVerificationUpdate } from '@controllers/user.controller';\nimport { logger } from '@logger';\nimport { sendEmail } from '@services/email.service';\nimport { getOrganizationById } from '@services/organization.service';\nimport { getProjectById } from '@services/project.service';\nimport { getUserById } from '@services/user.service';\nimport { mapOrganizationToAPI } from '@utils/mapper/organization';\nimport { mapProjectToAPI } from '@utils/mapper/project';\nimport { mapSessionToAPI } from '@utils/mapper/session';\nimport { mapUserToAPI } from '@utils/mapper/user';\nimport {\n  computeEffectivePermission,\n  getSessionRoles,\n  intersectPermissions,\n} from '@utils/permissions';\nimport { betterAuth, type OmitId } from 'better-auth';\nimport { mongodbAdapter } from 'better-auth/adapters/mongodb';\nimport { createAuthMiddleware } from 'better-auth/api';\nimport { customSession, lastLoginMethod, twoFactor } from 'better-auth/plugins';\nimport { magicLink } from 'better-auth/plugins/magic-link';\nimport { passkey } from 'better-auth/plugins/passkey';\nimport type { MongoClient } from 'mongodb';\nimport type { OrganizationAPI } from '@/types/organization.types';\nimport type { ProjectAPI } from '@/types/project.types';\nimport type {\n  Session,\n  SessionContext,\n  SessionDataApi,\n} from '@/types/session.types';\nimport type { User, UserAPI } from '@/types/user.types';\n\nexport type Auth = ReturnType<typeof betterAuth>;\n\nexport const formatSession = (session: SessionContext): OmitId<Session> => {\n  const roles = getSessionRoles(session);\n  let permissions = computeEffectivePermission(roles);\n\n  // Intersect in the case a Access Token try to override the permissions\n  if (session.permissions) {\n    permissions = intersectPermissions(permissions, session.permissions);\n  }\n\n  const resultSession = {\n    session: session.session,\n    user: session.user,\n    organization: session.organization,\n    project: session.project,\n    authType: 'session',\n    permissions,\n    roles,\n  } as OmitId<Session>;\n\n  return resultSession;\n};\n\nexport const getAuth = (dbClient: MongoClient): Auth => {\n  if (!dbClient) {\n    throw new Error('MongoDB connection not established');\n  }\n\n  const auth = betterAuth({\n    appName: 'Intlayer',\n\n    database: mongodbAdapter(dbClient.db()),\n\n    /**\n     * User model\n     */\n    user: {\n      modelName: 'users',\n    },\n\n    databaseHooks: {\n      user: {\n        create: {\n          // Runs once, immediately after the INSERT\n          after: async (user) => {\n            if (!user?.emailVerified) return;\n\n            await sendEmail({\n              type: 'welcome',\n              to: user.email,\n              username: user.name ?? user.email.split('@')[0],\n              loginLink: `${process.env.CLIENT_URL}/auth/login`,\n              locale: (user as any).lang,\n            });\n            logger.info('Welcome e‑mail delivered', {\n              email: user.email,\n            });\n          },\n        },\n      },\n    },\n\n    hooks: {\n      after: createAuthMiddleware(async (ctx) => {\n        const { path, context } = ctx;\n\n        const newUser = context.newSession?.user;\n        const existingUser = context.session?.user;\n        const user = newUser ?? existingUser;\n\n        if (!user) return;\n\n        if (['/verify-email'].includes(path)) {\n          sendVerificationUpdate(user as unknown as User);\n          logger.info('SSE verification update sent', {\n            email: user.email,\n            userId: user.id,\n          });\n\n          await sendEmail({\n            type: 'welcome',\n            to: user.email,\n            username: user.name ?? user.email.split('@')[0],\n            loginLink: `${process.env.CLIENT_URL}/auth/login`,\n            locale: (user as any).lang,\n          });\n          logger.info('Welcome e‑mail delivered', {\n            email: user.email,\n          });\n        }\n      }),\n    },\n\n    advanced: {\n      // 1️⃣  Change or drop the global prefix\n      // cookiePrefix: \"intlayer\",          // =>  intlayer.session_token\n      cookiePrefix: 'intlayer', // =>  session_token  (no prefix)\n\n      // 2️⃣  Override just the session‑token cookie\n      cookies: {\n        session_token: {\n          // name: 'intlayer_session_token', // final name depends on the prefix above\n          // attributes: { sameSite: \"lax\", maxAge: 60 * 60 * 24 } // optional\n        },\n      },\n\n      // 3️⃣  (optional) turn off the automatic __Secure‑ prefix in non‑prod\n      // useSecureCookies: false,\n    },\n\n    secret: process.env.AUTH_SECRET as string,\n    session: {\n      modelName: 'sessions',\n      id: 'id',\n\n      additionalFields: {\n        activeOrganizationId: { type: 'string', nullable: true, input: false },\n        activeProjectId: { type: 'string', nullable: true, input: false },\n      },\n    },\n\n    plugins: [\n      customSession(async ({ session }) => {\n        const typedSession = session as unknown as SessionDataApi;\n\n        let userAPI: UserAPI | null = null;\n        let organizationAPI: OrganizationAPI | null = null;\n        let projectAPI: ProjectAPI | null = null;\n\n        if (typedSession.userId) {\n          const userData = await getUserById(typedSession.userId);\n\n          if (userData) {\n            userAPI = mapUserToAPI(userData);\n          }\n        }\n\n        if (typedSession.activeOrganizationId) {\n          const orgData = await getOrganizationById(\n            typedSession.activeOrganizationId\n          );\n\n          if (orgData) {\n            organizationAPI = mapOrganizationToAPI(orgData);\n          }\n        }\n        if (typedSession.activeProjectId) {\n          const projectData = await getProjectById(\n            typedSession.activeProjectId\n          );\n\n          if (projectData) {\n            projectAPI = mapProjectToAPI(projectData);\n          }\n        }\n\n        const sessionWithNoPermission: SessionContext = {\n          session: typedSession,\n          user: userAPI!,\n          organization: organizationAPI ?? null,\n          project: projectAPI ?? null,\n          authType: 'session',\n        };\n\n        const formattedSession = formatSession(sessionWithNoPermission);\n\n        return mapSessionToAPI(formattedSession);\n      }),\n      lastLoginMethod({\n        storeInDatabase: true, // adds user.lastLoginMethod in DB and session\n        schema: {\n          user: {\n            lastLoginMethod: 'lastLoginMethod', // Custom field name\n          },\n        },\n        customResolveMethod: (context) => {\n          // When user clicks the magic link\n          if (context.path === '/magic-link/verify') {\n            return 'magic-link';\n          }\n\n          // Fallback to default behavior for everything else\n          return null;\n        },\n      }),\n      passkey(),\n      twoFactor(),\n      magicLink({\n        sendMagicLink: async ({ email, url }) => {\n          logger.info('sending magic link', { email, url });\n          await sendEmail({\n            type: 'magicLink',\n            to: email,\n            username: email.split('@')[0],\n            magicLink: url,\n          });\n        },\n      }),\n      // sso(),\n    ],\n\n    emailAndPassword: {\n      enabled: true,\n      disableSignUp: false,\n      requireEmailVerification: true,\n      minPasswordLength: 8,\n      maxPasswordLength: 128,\n      autoSignIn: true,\n      sendResetPassword: async ({ user, token }) => {\n        logger.info('sending reset password email', { email: user.email });\n        await sendEmail({\n          type: 'resetPassword',\n          to: user.email,\n          username: user.name ?? user.email.split('@')[0],\n          resetLink: `${process.env.CLIENT_URL}/auth/password/reset?token=${token}`,\n        });\n      },\n      resetPasswordTokenExpiresIn: 3600,\n    },\n    accountLinking: {\n      enabled: true, // allow linking in general\n      trustedProviders: ['google', 'github', 'linkedin'], // optional: auto‑link when Google verifies the e‑mail\n    },\n    emailVerification: {\n      autoSignInAfterVerification: true,\n      sendOnSignIn: true,\n      sendVerificationEmail: async ({ user, url }) => {\n        logger.info('sending verification email', { email: user.email });\n        await sendEmail({\n          type: 'validate',\n          to: user.email,\n          username: user.name ?? user.email.split('@')[0],\n          validationLink: url,\n        });\n      },\n    },\n\n    crossSubDomainCookies: {\n      enabled: true,\n      additionalCookies: ['session_token'],\n      domain: process.env.CLIENT_URL as string,\n    },\n    cookiePrefix: 'intlayer',\n    cookies: {\n      session_token: {\n        name: 'session_token',\n        attributes: {\n          httpOnly: true,\n          secure: true,\n        },\n      },\n    },\n\n    trustedOrigins: [process.env.CLIENT_URL as string],\n\n    socialProviders: {\n      google: {\n        clientId: process.env.GOOGLE_CLIENT_ID as string,\n        clientSecret: process.env.GOOGLE_CLIENT_SECRET as string,\n      },\n      github: {\n        clientId: process.env.GITHUB_CLIENT_ID as string,\n        clientSecret: process.env.GITHUB_CLIENT_SECRET as string,\n      },\n      linkedin: {\n        clientId: process.env.LINKEDIN_CLIENT_ID as string,\n        clientSecret: process.env.LINKEDIN_CLIENT_SECRET as string,\n      },\n      // socialProviders: {\n      //   apple: {\n      //     clientId: process.env.APPLE_CLIENT_ID as string,\n      //     clientSecret: process.env.APPLE_CLIENT_SECRET as string,\n      //     // Optional\n      //     appBundleIdentifier: process.env\n      //       .APPLE_APP_BUNDLE_IDENTIFIER as string,\n      //   },\n      // },\n      // // Add appleid.apple.com to trustedOrigins for Sign In with Apple flows\n      // trustedOrigins: ['https://appleid.apple.com'],\n    },\n\n    logger: {\n      log: (level, message, ...args) => logger[level](message, ...args),\n    },\n  });\n\n  return auth;\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAkCA,MAAa,iBAAiB,YAA6C;CACzE,MAAM,QAAQA,0CAAgB,QAAQ;CACtC,IAAI,cAAcC,qDAA2B,MAAM;AAGnD,KAAI,QAAQ,YACV,eAAcC,+CAAqB,aAAa,QAAQ,YAAY;AAatE,QAVsB;EACpB,SAAS,QAAQ;EACjB,MAAM,QAAQ;EACd,cAAc,QAAQ;EACtB,SAAS,QAAQ;EACjB,UAAU;EACV;EACA;EACD;;AAKH,MAAa,WAAW,aAAgC;AACtD,KAAI,CAAC,SACH,OAAM,IAAI,MAAM,qCAAqC;AAqQvD,oCAlQwB;EACtB,SAAS;EAET,2DAAyB,SAAS,IAAI,CAAC;EAKvC,MAAM,EACJ,WAAW,SACZ;EAED,eAAe,EACb,MAAM,EACJ,QAAQ,EAEN,OAAO,OAAO,SAAS;AACrB,OAAI,CAAC,MAAM,cAAe;AAE1B,SAAMC,yCAAU;IACd,MAAM;IACN,IAAI,KAAK;IACT,UAAU,KAAK,QAAQ,KAAK,MAAM,MAAM,IAAI,CAAC;IAC7C,WAAW,GAAG,QAAQ,IAAI,WAAW;IACrC,QAAS,KAAa;IACvB,CAAC;AACF,+BAAO,KAAK,4BAA4B,EACtC,OAAO,KAAK,OACb,CAAC;KAEL,EACF,EACF;EAED,OAAO,EACL,iDAA4B,OAAO,QAAQ;GACzC,MAAM,EAAE,MAAM,YAAY;GAE1B,MAAM,UAAU,QAAQ,YAAY;GACpC,MAAM,eAAe,QAAQ,SAAS;GACtC,MAAM,OAAO,WAAW;AAExB,OAAI,CAAC,KAAM;AAEX,OAAI,CAAC,gBAAgB,CAAC,SAAS,KAAK,EAAE;AACpC,+DAAuB,KAAwB;AAC/C,gCAAO,KAAK,gCAAgC;KAC1C,OAAO,KAAK;KACZ,QAAQ,KAAK;KACd,CAAC;AAEF,UAAMA,yCAAU;KACd,MAAM;KACN,IAAI,KAAK;KACT,UAAU,KAAK,QAAQ,KAAK,MAAM,MAAM,IAAI,CAAC;KAC7C,WAAW,GAAG,QAAQ,IAAI,WAAW;KACrC,QAAS,KAAa;KACvB,CAAC;AACF,gCAAO,KAAK,4BAA4B,EACtC,OAAO,KAAK,OACb,CAAC;;IAEJ,EACH;EAED,UAAU;GAGR,cAAc;GAGd,SAAS,EACP,eAAe,EAGd,EACF;GAIF;EAED,QAAQ,QAAQ,IAAI;EACpB,SAAS;GACP,WAAW;GACX,IAAI;GAEJ,kBAAkB;IAChB,sBAAsB;KAAE,MAAM;KAAU,UAAU;KAAM,OAAO;KAAO;IACtE,iBAAiB;KAAE,MAAM;KAAU,UAAU;KAAM,OAAO;KAAO;IAClE;GACF;EAED,SAAS;0CACO,OAAO,EAAE,cAAc;IACnC,MAAM,eAAe;IAErB,IAAIC,UAA0B;IAC9B,IAAIC,kBAA0C;IAC9C,IAAIC,aAAgC;AAEpC,QAAI,aAAa,QAAQ;KACvB,MAAM,WAAW,MAAMC,0CAAY,aAAa,OAAO;AAEvD,SAAI,SACF,WAAUC,uCAAa,SAAS;;AAIpC,QAAI,aAAa,sBAAsB;KACrC,MAAM,UAAU,MAAMC,0DACpB,aAAa,qBACd;AAED,SAAI,QACF,mBAAkBC,uDAAqB,QAAQ;;AAGnD,QAAI,aAAa,iBAAiB;KAChC,MAAM,cAAc,MAAMC,gDACxB,aAAa,gBACd;AAED,SAAI,YACF,cAAaC,6CAAgB,YAAY;;AAc7C,WAAOC,6CAFkB,cARuB;KAC9C,SAAS;KACT,MAAM;KACN,cAAc,mBAAmB;KACjC,SAAS,cAAc;KACvB,UAAU;KACX,CAE8D,CAEvB;KACxC;4CACc;IACd,iBAAiB;IACjB,QAAQ,EACN,MAAM,EACJ,iBAAiB,mBAClB,EACF;IACD,sBAAsB,YAAY;AAEhC,SAAI,QAAQ,SAAS,qBACnB,QAAO;AAIT,YAAO;;IAEV,CAAC;6CACO;uCACE;iDACD,EACR,eAAe,OAAO,EAAE,OAAO,UAAU;AACvC,gCAAO,KAAK,sBAAsB;KAAE;KAAO;KAAK,CAAC;AACjD,UAAMV,yCAAU;KACd,MAAM;KACN,IAAI;KACJ,UAAU,MAAM,MAAM,IAAI,CAAC;KAC3B,WAAW;KACZ,CAAC;MAEL,CAAC;GAEH;EAED,kBAAkB;GAChB,SAAS;GACT,eAAe;GACf,0BAA0B;GAC1B,mBAAmB;GACnB,mBAAmB;GACnB,YAAY;GACZ,mBAAmB,OAAO,EAAE,MAAM,YAAY;AAC5C,gCAAO,KAAK,gCAAgC,EAAE,OAAO,KAAK,OAAO,CAAC;AAClE,UAAMA,yCAAU;KACd,MAAM;KACN,IAAI,KAAK;KACT,UAAU,KAAK,QAAQ,KAAK,MAAM,MAAM,IAAI,CAAC;KAC7C,WAAW,GAAG,QAAQ,IAAI,WAAW,6BAA6B;KACnE,CAAC;;GAEJ,6BAA6B;GAC9B;EACD,gBAAgB;GACd,SAAS;GACT,kBAAkB;IAAC;IAAU;IAAU;IAAW;GACnD;EACD,mBAAmB;GACjB,6BAA6B;GAC7B,cAAc;GACd,uBAAuB,OAAO,EAAE,MAAM,UAAU;AAC9C,gCAAO,KAAK,8BAA8B,EAAE,OAAO,KAAK,OAAO,CAAC;AAChE,UAAMA,yCAAU;KACd,MAAM;KACN,IAAI,KAAK;KACT,UAAU,KAAK,QAAQ,KAAK,MAAM,MAAM,IAAI,CAAC;KAC7C,gBAAgB;KACjB,CAAC;;GAEL;EAED,uBAAuB;GACrB,SAAS;GACT,mBAAmB,CAAC,gBAAgB;GACpC,QAAQ,QAAQ,IAAI;GACrB;EACD,cAAc;EACd,SAAS,EACP,eAAe;GACb,MAAM;GACN,YAAY;IACV,UAAU;IACV,QAAQ;IACT;GACF,EACF;EAED,gBAAgB,CAAC,QAAQ,IAAI,WAAqB;EAElD,iBAAiB;GACf,QAAQ;IACN,UAAU,QAAQ,IAAI;IACtB,cAAc,QAAQ,IAAI;IAC3B;GACD,QAAQ;IACN,UAAU,QAAQ,IAAI;IACtB,cAAc,QAAQ,IAAI;IAC3B;GACD,UAAU;IACR,UAAU,QAAQ,IAAI;IACtB,cAAc,QAAQ,IAAI;IAC3B;GAYF;EAED,QAAQ,EACN,MAAM,OAAO,SAAS,GAAG,SAASW,4BAAO,OAAO,SAAS,GAAG,KAAK,EAClE;EACF,CAAC"}