@jant/core 0.3.27 → 0.3.28

package/dist/routes/auth/reset.js

@@ -1,221 +0,0 @@
-import { jsx as _jsx, jsxs as _jsxs } from "hono/jsx/jsx-runtime";
-/**
- * Password Reset Routes
- *
- * One-time token-based password reset flow.
- */ import { Hono } from "hono";
-import { useLingui as $_useLingui } from "@jant/core/i18n";
-import { hashPassword } from "better-auth/crypto";
-import { BaseLayout } from "../../ui/layouts/BaseLayout.js";
-import { dsRedirect, dsToast } from "../../lib/sse.js";
-import { SETTINGS_KEYS } from "../../lib/constants.js";
-import { ResetPasswordSchema } from "../../lib/schemas.js";
-const ResetContent = ({ token })=>{
-    const { i18n: $__i18n, _: $__ } = $_useLingui();
-    const signals = JSON.stringify({
-        password: "",
-        confirmPassword: "",
-        token
-    }).replace(/</g, "\\u003c");
-    return /*#__PURE__*/ _jsx("div", {
-        class: "min-h-screen flex items-center justify-center",
-        children: /*#__PURE__*/ _jsxs("div", {
-            class: "card max-w-md w-full",
-            children: [
-                /*#__PURE__*/ _jsxs("header", {
-                    children: [
-                        /*#__PURE__*/ _jsx("h2", {
-                            children: $__i18n._({
-                                id: "KbS2K9",
-                                message: "Reset Password"
-                            })
-                        }),
-                        /*#__PURE__*/ _jsx("p", {
-                            children: $__i18n._({
-                                id: "hWOZIv",
-                                message: "Enter your new password."
-                            })
-                        })
-                    ]
-                }),
-                /*#__PURE__*/ _jsx("section", {
-                    children: /*#__PURE__*/ _jsxs("form", {
-                        "data-signals": signals,
-                        "data-on:submit__prevent": "@post('/reset')",
-                        "data-indicator": "_loading",
-                        class: "flex flex-col gap-4",
-                        children: [
-                            /*#__PURE__*/ _jsxs("div", {
-                                class: "field",
-                                children: [
-                                    /*#__PURE__*/ _jsx("label", {
-                                        class: "label",
-                                        children: $__i18n._({
-                                            id: "7vhWI8",
-                                            message: "New Password"
-                                        })
-                                    }),
-                                    /*#__PURE__*/ _jsx("input", {
-                                        type: "password",
-                                        "data-bind": "password",
-                                        class: "input",
-                                        required: true,
-                                        minLength: 8,
-                                        autocomplete: "new-password"
-                                    })
-                                ]
-                            }),
-                            /*#__PURE__*/ _jsxs("div", {
-                                class: "field",
-                                children: [
-                                    /*#__PURE__*/ _jsx("label", {
-                                        class: "label",
-                                        children: $__i18n._({
-                                            id: "p2/GCq",
-                                            message: "Confirm Password"
-                                        })
-                                    }),
-                                    /*#__PURE__*/ _jsx("input", {
-                                        type: "password",
-                                        "data-bind": "confirmPassword",
-                                        class: "input",
-                                        required: true,
-                                        minLength: 8,
-                                        autocomplete: "new-password"
-                                    })
-                                ]
-                            }),
-                            /*#__PURE__*/ _jsxs("button", {
-                                type: "submit",
-                                class: "btn",
-                                "data-attr:disabled": "$_loading",
-                                children: [
-                                    /*#__PURE__*/ _jsx("svg", {
-                                        "data-show": "$_loading",
-                                        style: "display:none",
-                                        class: "animate-spin size-4",
-                                        xmlns: "http://www.w3.org/2000/svg",
-                                        viewBox: "0 0 24 24",
-                                        fill: "none",
-                                        stroke: "currentColor",
-                                        "stroke-width": "2",
-                                        "stroke-linecap": "round",
-                                        "stroke-linejoin": "round",
-                                        role: "status",
-                                        children: /*#__PURE__*/ _jsx("path", {
-                                            d: "M21 12a9 9 0 1 1-6.219-8.56"
-                                        })
-                                    }),
-                                    $__i18n._({
-                                        id: "KbS2K9",
-                                        message: "Reset Password"
-                                    })
-                                ]
-                            })
-                        ]
-                    })
-                })
-            ]
-        })
-    });
-};
-const ResetErrorContent = ()=>{
-    const { i18n: $__i18n, _: $__ } = $_useLingui();
-    return /*#__PURE__*/ _jsx("div", {
-        class: "min-h-screen flex items-center justify-center",
-        children: /*#__PURE__*/ _jsxs("div", {
-            class: "card max-w-md w-full",
-            children: [
-                /*#__PURE__*/ _jsx("header", {
-                    children: /*#__PURE__*/ _jsx("h2", {
-                        children: $__i18n._({
-                            id: "7aECQB",
-                            message: "Invalid or Expired Link"
-                        })
-                    })
-                }),
-                /*#__PURE__*/ _jsx("section", {
-                    children: /*#__PURE__*/ _jsx("p", {
-                        class: "text-muted-foreground",
-                        children: $__i18n._({
-                            id: "GbVAnd",
-                            message: "This password reset link is invalid or has expired. Please generate a new one."
-                        })
-                    })
-                })
-            ]
-        })
-    });
-};
-/**
- * Validate a password reset token against the stored value.
- * Returns true if the token is valid and not expired.
- */ async function validateResetToken(settings, token) {
-    const stored = await settings.get(SETTINGS_KEYS.PASSWORD_RESET_TOKEN);
-    if (!stored) return false;
-    const separatorIndex = stored.lastIndexOf(":");
-    const storedToken = stored.substring(0, separatorIndex);
-    const expiry = parseInt(stored.substring(separatorIndex + 1), 10);
-    const now = Math.floor(Date.now() / 1000);
-    return token === storedToken && now <= expiry;
-}
-export const resetRoutes = new Hono();
-resetRoutes.get("/reset", async (c)=>{
-    const token = c.req.query("token");
-    if (!token) {
-        return c.html(/*#__PURE__*/ _jsx(BaseLayout, {
-            title: "Reset Password - Jant",
-            c: c,
-            children: /*#__PURE__*/ _jsx(ResetErrorContent, {})
-        }));
-    }
-    const isValid = await validateResetToken(c.var.services.settings, token);
-    if (!isValid) {
-        return c.html(/*#__PURE__*/ _jsx(BaseLayout, {
-            title: "Reset Password - Jant",
-            c: c,
-            children: /*#__PURE__*/ _jsx(ResetErrorContent, {})
-        }));
-    }
-    return c.html(/*#__PURE__*/ _jsx(BaseLayout, {
-        title: "Reset Password - Jant",
-        c: c,
-        children: /*#__PURE__*/ _jsx(ResetContent, {
-            token: token
-        })
-    }));
-});
-resetRoutes.post("/reset", async (c)=>{
-    const body = await c.req.json();
-    const parsed = ResetPasswordSchema.safeParse(body);
-    if (!parsed.success) {
-        const msg = parsed.error.errors[0]?.message ?? "Invalid input";
-        return dsToast(msg, "error");
-    }
-    const { password, token } = parsed.data;
-    // Validate token
-    const isValid = await validateResetToken(c.var.services.settings, token);
-    if (!isValid) {
-        return dsToast("Invalid or expired reset link.", "error");
-    }
-    try {
-        const hashedPassword = await hashPassword(password);
-        const db = c.env.DB.withSession();
-        // Get admin user
-        const userResult = await db.prepare("SELECT id FROM user LIMIT 1").first();
-        if (!userResult) {
-            return dsToast("No user account found.", "error");
-        }
-        // Update password
-        await db.prepare("UPDATE account SET password = ? WHERE user_id = ? AND provider_id = 'credential'").bind(hashedPassword, userResult.id).run();
-        // Delete all sessions
-        await db.prepare("DELETE FROM session WHERE user_id = ?").bind(userResult.id).run();
-        // Delete the reset token
-        await c.var.services.settings.remove(SETTINGS_KEYS.PASSWORD_RESET_TOKEN);
-        return dsRedirect("/signin?reset");
-    } catch (err) {
-        // eslint-disable-next-line no-console -- Error logging is intentional
-        console.error("Password reset error:", err);
-        return dsToast("Failed to reset password.", "error");
-    }
-});

package/dist/routes/auth/setup.js

@@ -1,194 +0,0 @@
-import { jsx as _jsx, jsxs as _jsxs } from "hono/jsx/jsx-runtime";
-/**
- * Setup Routes
- *
- * Initial admin account creation during first-time setup.
- */ import { Hono } from "hono";
-import { useLingui as $_useLingui } from "@jant/core/i18n";
-import { BaseLayout } from "../../ui/layouts/BaseLayout.js";
-import { dsRedirect, dsToast } from "../../lib/sse.js";
-import { SetupSchema } from "../../lib/schemas.js";
-import { mapIanaToTimezone } from "../../lib/timezones.js";
-const SetupContent = ()=>{
-    const { i18n: $__i18n, _: $__ } = $_useLingui();
-    return /*#__PURE__*/ _jsx("div", {
-        class: "min-h-screen flex items-center justify-center",
-        children: /*#__PURE__*/ _jsxs("div", {
-            class: "card max-w-md w-full",
-            children: [
-                /*#__PURE__*/ _jsxs("header", {
-                    children: [
-                        /*#__PURE__*/ _jsx("h2", {
-                            children: $__i18n._({
-                                id: "GorKul",
-                                message: "Welcome to Jant"
-                            })
-                        }),
-                        /*#__PURE__*/ _jsx("p", {
-                            children: $__i18n._({
-                                id: "GX2VMa",
-                                message: "Create your admin account."
-                            })
-                        })
-                    ]
-                }),
-                /*#__PURE__*/ _jsx("section", {
-                    children: /*#__PURE__*/ _jsxs("form", {
-                        "data-signals": "{name: '', email: '', password: '', _timezone: ''}",
-                        "data-init": "$_timezone = Intl.DateTimeFormat().resolvedOptions().timeZone || ''",
-                        "data-on:submit__prevent": "@post('/setup')",
-                        "data-indicator": "_loading",
-                        class: "flex flex-col gap-4",
-                        children: [
-                            /*#__PURE__*/ _jsxs("div", {
-                                class: "field",
-                                children: [
-                                    /*#__PURE__*/ _jsx("label", {
-                                        class: "label",
-                                        children: $__i18n._({
-                                            id: "/Rj5P4",
-                                            message: "Your Name"
-                                        })
-                                    }),
-                                    /*#__PURE__*/ _jsx("input", {
-                                        type: "text",
-                                        "data-bind": "name",
-                                        class: "input",
-                                        required: true,
-                                        placeholder: "John Doe"
-                                    })
-                                ]
-                            }),
-                            /*#__PURE__*/ _jsxs("div", {
-                                class: "field",
-                                children: [
-                                    /*#__PURE__*/ _jsx("label", {
-                                        class: "label",
-                                        children: $__i18n._({
-                                            id: "O3oNi5",
-                                            message: "Email"
-                                        })
-                                    }),
-                                    /*#__PURE__*/ _jsx("input", {
-                                        type: "email",
-                                        "data-bind": "email",
-                                        class: "input",
-                                        required: true,
-                                        placeholder: "you@example.com"
-                                    })
-                                ]
-                            }),
-                            /*#__PURE__*/ _jsxs("div", {
-                                class: "field",
-                                children: [
-                                    /*#__PURE__*/ _jsx("label", {
-                                        class: "label",
-                                        children: $__i18n._({
-                                            id: "8ZsakT",
-                                            message: "Password"
-                                        })
-                                    }),
-                                    /*#__PURE__*/ _jsx("input", {
-                                        type: "password",
-                                        "data-bind": "password",
-                                        class: "input",
-                                        required: true,
-                                        minLength: 8
-                                    })
-                                ]
-                            }),
-                            /*#__PURE__*/ _jsxs("button", {
-                                type: "submit",
-                                class: "btn",
-                                "data-attr:disabled": "$_loading",
-                                children: [
-                                    /*#__PURE__*/ _jsx("svg", {
-                                        "data-show": "$_loading",
-                                        style: "display:none",
-                                        class: "animate-spin size-4",
-                                        xmlns: "http://www.w3.org/2000/svg",
-                                        viewBox: "0 0 24 24",
-                                        fill: "none",
-                                        stroke: "currentColor",
-                                        "stroke-width": "2",
-                                        "stroke-linecap": "round",
-                                        "stroke-linejoin": "round",
-                                        role: "status",
-                                        children: /*#__PURE__*/ _jsx("path", {
-                                            d: "M21 12a9 9 0 1 1-6.219-8.56"
-                                        })
-                                    }),
-                                    $__i18n._({
-                                        id: "EGwzOK",
-                                        message: "Complete Setup"
-                                    })
-                                ]
-                            })
-                        ]
-                    })
-                })
-            ]
-        })
-    });
-};
-export const setupRoutes = new Hono();
-setupRoutes.get("/setup", async (c)=>{
-    const isComplete = await c.var.services.settings.isOnboardingComplete();
-    if (isComplete) return c.redirect("/");
-    return c.html(/*#__PURE__*/ _jsx(BaseLayout, {
-        title: "Setup - Jant",
-        c: c,
-        children: /*#__PURE__*/ _jsx(SetupContent, {})
-    }));
-});
-setupRoutes.post("/setup", async (c)=>{
-    const isComplete = await c.var.services.settings.isOnboardingComplete();
-    if (isComplete) return c.redirect("/");
-    const body = await c.req.json();
-    const parsed = SetupSchema.safeParse(body);
-    const browserTimezone = body._timezone;
-    if (!parsed.success) {
-        const msg = parsed.error.errors[0]?.message ?? "Invalid input";
-        return dsToast(msg, "error");
-    }
-    const { name, email, password } = parsed.data;
-    if (!c.var.auth) {
-        return dsToast("AUTH_SECRET not configured", "error");
-    }
-    try {
-        const signUpResponse = await c.var.auth.api.signUpEmail({
-            body: {
-                name,
-                email,
-                password
-            }
-        });
-        if (!signUpResponse || "error" in signUpResponse) {
-            return dsToast("Failed to create account", "error");
-        }
-        await c.var.services.settings.completeOnboarding();
-        // Save auto-detected timezone
-        if (browserTimezone) {
-            const tz = mapIanaToTimezone(browserTimezone);
-            if (tz !== "UTC") {
-                await c.var.services.settings.set("TIME_ZONE", tz);
-            }
-        }
-        // Seed default navigation items
-        await c.var.services.navItems.create({
-            type: "link",
-            label: "Featured",
-            url: "/featured"
-        });
-        await c.var.services.navItems.create({
-            type: "link",
-            label: "Collections",
-            url: "/collections"
-        });
-        return dsRedirect("/signin?setup");
-    } catch (err) {
-        // eslint-disable-next-line no-console -- Error logging is intentional
-        console.error("Setup error:", err);
-        return dsToast("Failed to create account", "error");
-    }
-});

package/dist/routes/auth/signin.js

@@ -1,176 +0,0 @@
-import { jsx as _jsx, jsxs as _jsxs } from "hono/jsx/jsx-runtime";
-/**
- * Sign-in / Sign-out Routes
- */ import { Hono } from "hono";
-import { useLingui as $_useLingui } from "@jant/core/i18n";
-import { BaseLayout } from "../../ui/layouts/BaseLayout.js";
-import { dsRedirect, dsToast } from "../../lib/sse.js";
-import { SigninSchema } from "../../lib/schemas.js";
-const SigninContent = ({ demoEmail, demoPassword })=>{
-    const { i18n: $__i18n, _: $__ } = $_useLingui();
-    const signals = JSON.stringify({
-        email: demoEmail || "",
-        password: demoPassword || ""
-    }).replace(/</g, "\\u003c");
-    return /*#__PURE__*/ _jsx("div", {
-        class: "min-h-screen flex items-center justify-center",
-        children: /*#__PURE__*/ _jsxs("div", {
-            class: "card max-w-md w-full",
-            children: [
-                /*#__PURE__*/ _jsx("header", {
-                    children: /*#__PURE__*/ _jsx("h2", {
-                        children: $__i18n._({
-                            id: "n1ekoW",
-                            message: "Sign In"
-                        })
-                    })
-                }),
-                /*#__PURE__*/ _jsxs("section", {
-                    children: [
-                        demoEmail && demoPassword && /*#__PURE__*/ _jsx("p", {
-                            class: "text-muted-foreground text-sm mb-4",
-                            children: $__i18n._({
-                                id: "er8+x7",
-                                message: "Demo account pre-filled. Just click Sign In."
-                            })
-                        }),
-                        /*#__PURE__*/ _jsxs("form", {
-                            "data-signals": signals,
-                            "data-on:submit__prevent": "@post('/signin')",
-                            "data-indicator": "_loading",
-                            class: "flex flex-col gap-4",
-                            children: [
-                                /*#__PURE__*/ _jsxs("div", {
-                                    class: "field",
-                                    children: [
-                                        /*#__PURE__*/ _jsx("label", {
-                                            class: "label",
-                                            children: $__i18n._({
-                                                id: "O3oNi5",
-                                                message: "Email"
-                                            })
-                                        }),
-                                        /*#__PURE__*/ _jsx("input", {
-                                            type: "email",
-                                            "data-bind": "email",
-                                            class: "input",
-                                            required: true
-                                        })
-                                    ]
-                                }),
-                                /*#__PURE__*/ _jsxs("div", {
-                                    class: "field",
-                                    children: [
-                                        /*#__PURE__*/ _jsx("label", {
-                                            class: "label",
-                                            children: $__i18n._({
-                                                id: "8ZsakT",
-                                                message: "Password"
-                                            })
-                                        }),
-                                        /*#__PURE__*/ _jsx("input", {
-                                            type: "password",
-                                            "data-bind": "password",
-                                            class: "input",
-                                            required: true
-                                        })
-                                    ]
-                                }),
-                                /*#__PURE__*/ _jsxs("button", {
-                                    type: "submit",
-                                    class: "btn",
-                                    "data-attr:disabled": "$_loading",
-                                    children: [
-                                        /*#__PURE__*/ _jsx("svg", {
-                                            "data-show": "$_loading",
-                                            style: "display:none",
-                                            class: "animate-spin size-4",
-                                            xmlns: "http://www.w3.org/2000/svg",
-                                            viewBox: "0 0 24 24",
-                                            fill: "none",
-                                            stroke: "currentColor",
-                                            "stroke-width": "2",
-                                            "stroke-linecap": "round",
-                                            "stroke-linejoin": "round",
-                                            role: "status",
-                                            children: /*#__PURE__*/ _jsx("path", {
-                                                d: "M21 12a9 9 0 1 1-6.219-8.56"
-                                            })
-                                        }),
-                                        $__i18n._({
-                                            id: "n1ekoW",
-                                            message: "Sign In"
-                                        })
-                                    ]
-                                })
-                            ]
-                        })
-                    ]
-                })
-            ]
-        })
-    });
-};
-export const signinRoutes = new Hono();
-signinRoutes.get("/signin", async (c)=>{
-    const isSetup = c.req.query("setup") !== undefined;
-    const isReset = c.req.query("reset") !== undefined;
-    let toast;
-    if (isSetup) {
-        toast = {
-            message: "Account created successfully. Please sign in."
-        };
-    } else if (isReset) {
-        toast = {
-            message: "Password reset successfully. Please sign in."
-        };
-    }
-    return c.html(/*#__PURE__*/ _jsx(BaseLayout, {
-        title: "Sign In - Jant",
-        c: c,
-        toast: toast,
-        children: /*#__PURE__*/ _jsx(SigninContent, {
-            demoEmail: c.env.DEMO_EMAIL,
-            demoPassword: c.env.DEMO_PASSWORD
-        })
-    }));
-});
-signinRoutes.post("/signin", async (c)=>{
-    if (!c.var.auth) {
-        return dsToast("Auth not configured", "error");
-    }
-    const body = await c.req.json();
-    const parsed = SigninSchema.safeParse(body);
-    if (!parsed.success) {
-        const msg = parsed.error.errors[0]?.message ?? "Invalid input";
-        return dsToast(msg, "error");
-    }
-    const { email, password } = parsed.data;
-    try {
-        const { headers } = await c.var.auth.api.signInEmail({
-            returnHeaders: true,
-            body: {
-                email,
-                password
-            },
-            headers: c.req.raw.headers
-        });
-        return dsRedirect("/dash", {
-            headers
-        });
-    } catch  {
-        return dsToast("Invalid email or password", "error");
-    }
-});
-signinRoutes.get("/signout", async (c)=>{
-    if (c.var.auth) {
-        try {
-            await c.var.auth.api.signOut({
-                headers: c.req.raw.headers
-            });
-        } catch  {
-        // Ignore signout errors
-        }
-    }
-    return c.redirect("/");
-});

package/dist/routes/compose.js

@@ -1,48 +0,0 @@
-/**
- * Compose Route
- *
- * Handles post creation from the public-site compose dialog.
- * Returns dsRedirect to the new post's permalink (Datastar form pattern).
- */ import { Hono } from "hono";
-import { requireAuth } from "../middleware/auth.js";
-import { CreatePostSchema, validateMediaCount } from "../lib/schemas.js";
-import * as sqid from "../lib/sqid.js";
-import { dsRedirect, dsToast } from "../lib/sse.js";
-export const composeRoutes = new Hono();
-// All compose routes require authentication
-composeRoutes.use("*", requireAuth());
-composeRoutes.post("/", async (c)=>{
-    const raw = await c.req.json();
-    const result = CreatePostSchema.safeParse(raw);
-    if (!result.success) {
-        const firstError = result.error.issues[0]?.message ?? "Invalid input";
-        return dsToast(firstError, "error");
-    }
-    const data = result.data;
-    // Validate media count
-    if (data.mediaIds) {
-        const mediaError = validateMediaCount(data.mediaIds);
-        if (mediaError) {
-            return dsToast(mediaError, "error");
-        }
-    }
-    const post = await c.var.services.posts.create({
-        format: data.format,
-        title: data.title || undefined,
-        body: data.body || undefined,
-        status: data.status ?? "published",
-        featured: data.featured,
-        pinned: data.pinned,
-        url: data.url || undefined,
-        quoteText: data.quoteText || undefined,
-        rating: data.rating || undefined,
-        collectionId: data.collectionId || undefined
-    });
-    // Attach media if provided
-    if (data.mediaIds && data.mediaIds.length > 0) {
-        await c.var.services.media.attachToPost(post.id, data.mediaIds);
-    }
-    // Redirect to the new post's permalink
-    const permalink = post.path ? `/${post.path}` : `/p/${sqid.encode(post.id)}`;
-    return dsRedirect(permalink);
-});