npm - @mastra/server - Versions diffs - 0.0.0-span-scorring-test-20251124132129 → 0.0.0-standard-schema-20260123120255 - Mend

@mastra/server 0.0.0-span-scorring-test-20251124132129 → 0.0.0-standard-schema-20260123120255

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (399) hide show

package/CHANGELOG.md +1811 -32
package/README.md +2 -2
package/a2a/store.d.ts +1 -0
package/auth.d.ts +1 -0
package/dist/{chunk-SHWNNZBL.js → chunk-24SISJRB.js} +13 -17
package/dist/chunk-24SISJRB.js.map +1 -0
package/dist/{chunk-G7BPNX2V.js → chunk-2JNW2CLE.js} +64 -14
package/dist/chunk-2JNW2CLE.js.map +1 -0
package/dist/chunk-2UHOWYFV.js +184 -0
package/dist/chunk-2UHOWYFV.js.map +1 -0
package/dist/chunk-3W67K7YE.js +13 -0
package/dist/chunk-3W67K7YE.js.map +1 -0
package/dist/chunk-4HFYR562.cjs +82 -0
package/dist/chunk-4HFYR562.cjs.map +1 -0
package/dist/chunk-55TH4ME5.js +170 -0
package/dist/chunk-55TH4ME5.js.map +1 -0
package/dist/{chunk-Z36N2OQA.cjs → chunk-55XIQCGI.cjs} +358 -137
package/dist/chunk-55XIQCGI.cjs.map +1 -0
package/dist/{chunk-QGWCNTG6.cjs → chunk-5NQ3GWUJ.cjs} +493 -172
package/dist/chunk-5NQ3GWUJ.cjs.map +1 -0
package/dist/{chunk-QU6N55W6.cjs → chunk-6G2RQWKA.cjs} +17 -21
package/dist/chunk-6G2RQWKA.cjs.map +1 -0
package/dist/{chunk-KB5NSROG.cjs → chunk-6NLJ5YC3.cjs} +47 -42
package/dist/chunk-6NLJ5YC3.cjs.map +1 -0
package/dist/chunk-6OFKRQQL.js +45 -0
package/dist/chunk-6OFKRQQL.js.map +1 -0
package/dist/{chunk-UXGQZUYZ.js → chunk-7AINN3FK.js} +13 -3
package/dist/chunk-7AINN3FK.js.map +1 -0
package/dist/chunk-7D3UAMQM.cjs +82 -0
package/dist/chunk-7D3UAMQM.cjs.map +1 -0
package/dist/{chunk-I5VZ5SKG.js → chunk-7ERB6H6K.js} +17 -11
package/dist/chunk-7ERB6H6K.js.map +1 -0
package/dist/{chunk-NDFAQBQD.cjs → chunk-AEMLCRS5.cjs} +514 -166
package/dist/chunk-AEMLCRS5.cjs.map +1 -0
package/dist/chunk-BLCHLNBT.js +442 -0
package/dist/chunk-BLCHLNBT.js.map +1 -0
package/dist/{chunk-ZLRTFRL4.js → chunk-BSOLG32W.js} +407 -91
package/dist/chunk-BSOLG32W.js.map +1 -0
package/dist/{chunk-ASZUOBKV.js → chunk-CQUWREB2.js} +42 -20
package/dist/chunk-CQUWREB2.js.map +1 -0
package/dist/chunk-CRCXQW5R.cjs +47 -0
package/dist/chunk-CRCXQW5R.cjs.map +1 -0
package/dist/{chunk-3R5EV3HV.js → chunk-CT7S7VRG.js} +36 -29
package/dist/chunk-CT7S7VRG.js.map +1 -0
package/dist/{chunk-FAQICBMH.js → chunk-D23WBCJ6.js} +70 -7
package/dist/chunk-D23WBCJ6.js.map +1 -0
package/dist/{chunk-R4M3BSUG.js → chunk-DOU5IGJB.js} +26 -10
package/dist/chunk-DOU5IGJB.js.map +1 -0
package/dist/chunk-DUTGH2DM.js +31748 -0
package/dist/chunk-DUTGH2DM.js.map +1 -0
package/dist/{chunk-5PONYNYP.cjs → chunk-E2SZSFGZ.cjs} +20 -17
package/dist/chunk-E2SZSFGZ.cjs.map +1 -0
package/dist/chunk-EH45MGLR.cjs +322 -0
package/dist/chunk-EH45MGLR.cjs.map +1 -0
package/dist/chunk-FRRHYZR6.cjs +88 -0
package/dist/chunk-FRRHYZR6.cjs.map +1 -0
package/dist/{chunk-ZULZ2752.js → chunk-FXW7MD4U.js} +3 -3
package/dist/chunk-FXW7MD4U.js.map +1 -0
package/dist/{chunk-YJ3VDL3Z.cjs → chunk-GGAV65A7.cjs} +37 -31
package/dist/chunk-GGAV65A7.cjs.map +1 -0
package/dist/{chunk-PKRHEXX7.js → chunk-HT4LP3BO.js} +19 -18
package/dist/chunk-HT4LP3BO.js.map +1 -0
package/dist/chunk-HZINLMHL.cjs +252 -0
package/dist/chunk-HZINLMHL.cjs.map +1 -0
package/dist/{chunk-RQK4FQUD.js → chunk-IGXRQWNN.js} +6 -48
package/dist/chunk-IGXRQWNN.js.map +1 -0
package/dist/chunk-IROUDQSO.js +246 -0
package/dist/chunk-IROUDQSO.js.map +1 -0
package/dist/chunk-IS3HHGL4.js +250 -0
package/dist/chunk-IS3HHGL4.js.map +1 -0
package/dist/chunk-JJLEVKG7.js +576 -0
package/dist/chunk-JJLEVKG7.js.map +1 -0
package/dist/{chunk-UJNHKFBR.cjs → chunk-K34R4R2T.cjs} +72 -6
package/dist/chunk-K34R4R2T.cjs.map +1 -0
package/dist/chunk-K4HSW5ZF.js +77 -0
package/dist/chunk-K4HSW5ZF.js.map +1 -0
package/dist/{chunk-ZODCSH2W.cjs → chunk-L2U75ERO.cjs} +54 -32
package/dist/chunk-L2U75ERO.cjs.map +1 -0
package/dist/chunk-L2VZFGWH.cjs +31787 -0
package/dist/chunk-L2VZFGWH.cjs.map +1 -0
package/dist/chunk-L7LB66KK.cjs +450 -0
package/dist/chunk-L7LB66KK.cjs.map +1 -0
package/dist/chunk-LJ6YRVDI.cjs +15 -0
package/dist/chunk-LJ6YRVDI.cjs.map +1 -0
package/dist/{chunk-2NW6POYK.cjs → chunk-MCYD5LW7.cjs} +19 -18
package/dist/chunk-MCYD5LW7.cjs.map +1 -0
package/dist/{chunk-6DTV6NEW.js → chunk-MF4PZE2D.js} +11 -8
package/dist/chunk-MF4PZE2D.js.map +1 -0
package/dist/{chunk-35NT4TMQ.cjs → chunk-MP6TNZXA.cjs} +66 -55
package/dist/chunk-MP6TNZXA.cjs.map +1 -0
package/dist/chunk-MPM2W4IS.js +312 -0
package/dist/chunk-MPM2W4IS.js.map +1 -0
package/dist/chunk-NE4CLM6P.cjs +190 -0
package/dist/chunk-NE4CLM6P.cjs.map +1 -0
package/dist/chunk-NL6ELCFS.cjs +603 -0
package/dist/chunk-NL6ELCFS.cjs.map +1 -0
package/dist/{chunk-MWQQRVQC.cjs → chunk-OD6Y7FEM.cjs} +34 -13
package/dist/chunk-OD6Y7FEM.cjs.map +1 -0
package/dist/chunk-OS7SAIRA.js +250 -0
package/dist/chunk-OS7SAIRA.js.map +1 -0
package/dist/chunk-PWXUI3OG.cjs +252 -0
package/dist/chunk-PWXUI3OG.cjs.map +1 -0
package/dist/{chunk-UOFV2ZCI.js → chunk-QAXO2LQT.js} +316 -96
package/dist/chunk-QAXO2LQT.js.map +1 -0
package/dist/chunk-RIX6WEJ2.js +83 -0
package/dist/chunk-RIX6WEJ2.js.map +1 -0
package/dist/{chunk-FXDZLX2Y.js → chunk-RRVA4RVW.js} +37 -26
package/dist/chunk-RRVA4RVW.js.map +1 -0
package/dist/{chunk-LPM6BBAX.cjs → chunk-SLDAFSKJ.cjs} +5 -56
package/dist/chunk-SLDAFSKJ.cjs.map +1 -0
package/dist/{chunk-2PLXW4ZX.cjs → chunk-T6YYVQHJ.cjs} +74 -74
package/dist/chunk-T6YYVQHJ.cjs.map +1 -0
package/dist/chunk-TF4LSD27.cjs +180 -0
package/dist/chunk-TF4LSD27.cjs.map +1 -0
package/dist/chunk-TM6IOINJ.cjs +252 -0
package/dist/chunk-TM6IOINJ.cjs.map +1 -0
package/dist/{chunk-ICANWSEW.js → chunk-UVE6SV6I.js} +25 -20
package/dist/chunk-UVE6SV6I.js.map +1 -0
package/dist/{chunk-V5WWQN7P.cjs → chunk-UWYAL2Z3.cjs} +13 -2
package/dist/chunk-UWYAL2Z3.cjs.map +1 -0
package/dist/{chunk-UZ6CYAOG.cjs → chunk-VES6QKOW.cjs} +64 -14
package/dist/chunk-VES6QKOW.cjs.map +1 -0
package/dist/{chunk-VQAT5HX6.js → chunk-W7HAZD2A.js} +458 -116
package/dist/chunk-W7HAZD2A.js.map +1 -0
package/dist/{chunk-4ECGVOJZ.cjs → chunk-WNQUNLRT.cjs} +40 -33
package/dist/chunk-WNQUNLRT.cjs.map +1 -0
package/dist/chunk-XKLJYRAA.js +77 -0
package/dist/chunk-XKLJYRAA.js.map +1 -0
package/dist/{dist-G2BYZJOC.cjs → dist-2GQKYJ34.cjs} +28 -28
package/dist/dist-2GQKYJ34.cjs.map +1 -0
package/dist/{dist-X7XR3M3Z.js → dist-C6BUHOEE.js} +3 -3
package/dist/dist-C6BUHOEE.js.map +1 -0
package/dist/dist-DGOEFPQD.cjs +16 -0
package/dist/{dist-P4MXBQ3U.cjs.map → dist-DGOEFPQD.cjs.map} +1 -1
package/dist/dist-FT2OR7OS.js +3 -0
package/dist/{dist-YREX2TJT.js.map → dist-FT2OR7OS.js.map} +1 -1
package/dist/{dist-XVBSOGFK.js → dist-G4CR4WYY.js} +3 -3
package/dist/dist-G4CR4WYY.js.map +1 -0
package/dist/{dist-PQZUVLPC.js → dist-G5QFRYLQ.js} +3 -3
package/dist/dist-G5QFRYLQ.js.map +1 -0
package/dist/{dist-4MVGNSRL.cjs → dist-JPQK5S4K.cjs} +20 -20
package/dist/dist-JPQK5S4K.cjs.map +1 -0
package/dist/{dist-R7WYX6LC.js → dist-MIDN25GT.js} +3 -3
package/dist/dist-MIDN25GT.js.map +1 -0
package/dist/{dist-RFMYFILX.cjs → dist-SNKH6NS2.cjs} +30 -30
package/dist/dist-SNKH6NS2.cjs.map +1 -0
package/dist/{dist-FZYCV3VB.cjs → dist-XBQPKAO4.cjs} +26 -26
package/dist/dist-XBQPKAO4.cjs.map +1 -0
package/dist/docs/README.md +31 -0
package/dist/docs/SKILL.md +32 -0
package/dist/docs/SOURCE_MAP.json +6 -0
package/dist/docs/server/01-custom-adapters.md +380 -0
package/dist/docs/server/02-reference.md +819 -0
package/dist/server/auth/defaults.d.ts +3 -0
package/dist/server/auth/defaults.d.ts.map +1 -0
package/dist/server/auth/helpers.d.ts +14 -0
package/dist/server/auth/helpers.d.ts.map +1 -0
package/dist/server/auth/index.cjs +44 -0
package/dist/server/auth/index.cjs.map +1 -0
package/dist/server/auth/index.d.ts +3 -0
package/dist/server/auth/index.d.ts.map +1 -0
package/dist/server/auth/index.js +3 -0
package/dist/server/auth/index.js.map +1 -0
package/dist/server/auth/path-pattern.d.ts +43 -0
package/dist/server/auth/path-pattern.d.ts.map +1 -0
package/dist/server/handlers/a2a.cjs +9 -9
package/dist/server/handlers/a2a.d.ts +34 -420
package/dist/server/handlers/a2a.d.ts.map +1 -1
package/dist/server/handlers/a2a.js +1 -1
package/dist/server/handlers/agent-builder.cjs +16 -28
package/dist/server/handlers/agent-builder.d.ts +154 -460
package/dist/server/handlers/agent-builder.d.ts.map +1 -1
package/dist/server/handlers/agent-builder.js +1 -1
package/dist/server/handlers/agent-versions.cjs +60 -0
package/dist/server/handlers/agent-versions.cjs.map +1 -0
package/dist/server/handlers/agent-versions.d.ts +425 -0
package/dist/server/handlers/agent-versions.d.ts.map +1 -0
package/dist/server/handlers/agent-versions.js +3 -0
package/dist/server/handlers/agent-versions.js.map +1 -0
package/dist/server/handlers/agents.cjs +43 -23
package/dist/server/handlers/agents.d.ts +362 -2912
package/dist/server/handlers/agents.d.ts.map +1 -1
package/dist/server/handlers/agents.js +1 -1
package/dist/server/handlers/error.cjs +6 -2
package/dist/server/handlers/error.d.ts +22 -0
package/dist/server/handlers/error.d.ts.map +1 -1
package/dist/server/handlers/error.js +1 -1
package/dist/server/handlers/logs.cjs +4 -4
package/dist/server/handlers/logs.d.ts +63 -111
package/dist/server/handlers/logs.d.ts.map +1 -1
package/dist/server/handlers/logs.js +1 -1
package/dist/server/handlers/mcp.cjs +40 -0
package/dist/server/handlers/mcp.cjs.map +1 -0
package/dist/server/handlers/mcp.d.ts +92 -0
package/dist/server/handlers/mcp.d.ts.map +1 -0
package/dist/server/handlers/mcp.js +3 -0
package/dist/server/handlers/mcp.js.map +1 -0
package/dist/server/handlers/memory.cjs +28 -24
package/dist/server/handlers/memory.d.ts +244 -756
package/dist/server/handlers/memory.d.ts.map +1 -1
package/dist/server/handlers/memory.js +1 -1
package/dist/server/handlers/observability.cjs +7 -23
package/dist/server/handlers/observability.d.ts +97 -114
package/dist/server/handlers/observability.d.ts.map +1 -1
package/dist/server/handlers/observability.js +1 -1
package/dist/server/handlers/processors.cjs +20 -0
package/dist/server/handlers/processors.cjs.map +1 -0
package/dist/server/handlers/processors.d.ts +90 -0
package/dist/server/handlers/processors.d.ts.map +1 -0
package/dist/server/handlers/processors.js +3 -0
package/dist/server/handlers/processors.js.map +1 -0
package/dist/server/handlers/scores.cjs +7 -7
package/dist/server/handlers/scores.d.ts +18 -54
package/dist/server/handlers/scores.d.ts.map +1 -1
package/dist/server/handlers/scores.js +1 -1
package/dist/server/handlers/stored-agents.cjs +28 -0
package/dist/server/handlers/stored-agents.cjs.map +1 -0
package/dist/server/handlers/stored-agents.d.ts +214 -0
package/dist/server/handlers/stored-agents.d.ts.map +1 -0
package/dist/server/handlers/stored-agents.js +3 -0
package/dist/server/handlers/stored-agents.js.map +1 -0
package/dist/server/handlers/system.cjs +12 -0
package/dist/server/handlers/system.cjs.map +1 -0
package/dist/server/handlers/system.d.ts +7 -0
package/dist/server/handlers/system.d.ts.map +1 -0
package/dist/server/handlers/system.js +3 -0
package/dist/server/handlers/system.js.map +1 -0
package/dist/server/handlers/test-utils.cjs +2 -2
package/dist/server/handlers/test-utils.cjs.map +1 -1
package/dist/server/handlers/test-utils.d.ts +3 -3
package/dist/server/handlers/test-utils.d.ts.map +1 -1
package/dist/server/handlers/test-utils.js +2 -2
package/dist/server/handlers/test-utils.js.map +1 -1
package/dist/server/handlers/tools.cjs +6 -6
package/dist/server/handlers/tools.d.ts +7 -36
package/dist/server/handlers/tools.d.ts.map +1 -1
package/dist/server/handlers/tools.js +1 -1
package/dist/server/handlers/vector.cjs +13 -13
package/dist/server/handlers/vector.d.ts +16 -57
package/dist/server/handlers/vector.d.ts.map +1 -1
package/dist/server/handlers/vector.js +1 -1
package/dist/server/handlers/voice.cjs +8 -8
package/dist/server/handlers/voice.d.ts +18 -56
package/dist/server/handlers/voice.d.ts.map +1 -1
package/dist/server/handlers/voice.js +1 -1
package/dist/server/handlers/workflows.cjs +46 -26
package/dist/server/handlers/workflows.d.ts +358 -533
package/dist/server/handlers/workflows.d.ts.map +1 -1
package/dist/server/handlers/workflows.js +1 -1
package/dist/server/handlers.cjs +36 -31
package/dist/server/handlers.d.ts +1 -0
package/dist/server/handlers.d.ts.map +1 -1
package/dist/server/handlers.js +12 -11
package/dist/server/schemas/a2a.d.ts +56 -700
package/dist/server/schemas/a2a.d.ts.map +1 -1
package/dist/server/schemas/agent-builder.d.ts +26 -143
package/dist/server/schemas/agent-builder.d.ts.map +1 -1
package/dist/server/schemas/agent-versions.d.ts +379 -0
package/dist/server/schemas/agent-versions.d.ts.map +1 -0
package/dist/server/schemas/agents.d.ts +152 -1031
package/dist/server/schemas/agents.d.ts.map +1 -1
package/dist/server/schemas/common.d.ts +37 -103
package/dist/server/schemas/common.d.ts.map +1 -1
package/dist/server/schemas/logs.d.ts +38 -106
package/dist/server/schemas/logs.d.ts.map +1 -1
package/dist/server/schemas/mcp.d.ts +91 -0
package/dist/server/schemas/mcp.d.ts.map +1 -0
package/dist/server/schemas/memory.d.ts +288 -831
package/dist/server/schemas/memory.d.ts.map +1 -1
package/dist/server/schemas/processors.d.ts +162 -0
package/dist/server/schemas/processors.d.ts.map +1 -0
package/dist/server/schemas/scores.d.ts +31 -213
package/dist/server/schemas/scores.d.ts.map +1 -1
package/dist/server/schemas/stored-agents.d.ts +274 -0
package/dist/server/schemas/stored-agents.d.ts.map +1 -0
package/dist/server/schemas/system.d.ts +14 -0
package/dist/server/schemas/system.d.ts.map +1 -0
package/dist/server/schemas/vectors.d.ts +21 -81
package/dist/server/schemas/vectors.d.ts.map +1 -1
package/dist/server/schemas/workflows.d.ts +248 -382
package/dist/server/schemas/workflows.d.ts.map +1 -1
package/dist/server/server-adapter/index.cjs +441 -137
package/dist/server/server-adapter/index.cjs.map +1 -1
package/dist/server/server-adapter/index.d.ts +94 -16
package/dist/server/server-adapter/index.d.ts.map +1 -1
package/dist/server/server-adapter/index.js +325 -35
package/dist/server/server-adapter/index.js.map +1 -1
package/dist/server/server-adapter/redact.d.ts +26 -0
package/dist/server/server-adapter/redact.d.ts.map +1 -0
package/dist/server/server-adapter/routes/agent-builder.d.ts.map +1 -1
package/dist/server/server-adapter/routes/agents.d.ts.map +1 -1
package/dist/server/server-adapter/routes/index.d.ts +18 -7
package/dist/server/server-adapter/routes/index.d.ts.map +1 -1
package/dist/server/server-adapter/routes/mcp.d.ts +9 -0
package/dist/server/server-adapter/routes/mcp.d.ts.map +1 -0
package/dist/server/server-adapter/routes/memory.d.ts.map +1 -1
package/dist/server/server-adapter/routes/processors.d.ts +3 -0
package/dist/server/server-adapter/routes/processors.d.ts.map +1 -0
package/dist/server/server-adapter/routes/route-builder.d.ts +66 -6
package/dist/server/server-adapter/routes/route-builder.d.ts.map +1 -1
package/dist/server/server-adapter/routes/stored-agents.d.ts +8 -0
package/dist/server/server-adapter/routes/stored-agents.d.ts.map +1 -0
package/dist/server/server-adapter/routes/system.d.ts +12 -0
package/dist/server/server-adapter/routes/system.d.ts.map +1 -0
package/dist/server/server-adapter/routes/workflows.d.ts.map +1 -1
package/dist/server/utils.d.ts +1 -1
package/dist/server/utils.d.ts.map +1 -1
package/dist/{token-375W3LEI.cjs → token-6GSAFR2W-ABXTQD64-MC4IMVOB.cjs} +11 -12
package/dist/token-6GSAFR2W-ABXTQD64-MC4IMVOB.cjs.map +1 -0
package/dist/{token-C3IMNCC4.js → token-6GSAFR2W-ABXTQD64-Z6U2TA2C.js} +8 -9
package/dist/token-6GSAFR2W-ABXTQD64-Z6U2TA2C.js.map +1 -0
package/dist/token-6GSAFR2W-F2L44NEJ-B3QIV63M.cjs +63 -0
package/dist/token-6GSAFR2W-F2L44NEJ-B3QIV63M.cjs.map +1 -0
package/dist/token-6GSAFR2W-F2L44NEJ-GFZ37A2V.js +61 -0
package/dist/token-6GSAFR2W-F2L44NEJ-GFZ37A2V.js.map +1 -0
package/dist/token-6GSAFR2W-WGTMOPEU-6HSZQUFZ.cjs +63 -0
package/dist/token-6GSAFR2W-WGTMOPEU-6HSZQUFZ.cjs.map +1 -0
package/dist/token-6GSAFR2W-WGTMOPEU-JKP67ZX4.js +61 -0
package/dist/token-6GSAFR2W-WGTMOPEU-JKP67ZX4.js.map +1 -0
package/dist/token-util-NEHG7TUY-4YJ4EPCL-MBTAVIJ3.js +8 -0
package/dist/token-util-NEHG7TUY-4YJ4EPCL-MBTAVIJ3.js.map +1 -0
package/dist/token-util-NEHG7TUY-4YJ4EPCL-SQ4NADRW.cjs +10 -0
package/dist/token-util-NEHG7TUY-4YJ4EPCL-SQ4NADRW.cjs.map +1 -0
package/dist/token-util-NEHG7TUY-TV2H7N56-GGCGMPDG.js +8 -0
package/dist/token-util-NEHG7TUY-TV2H7N56-GGCGMPDG.js.map +1 -0
package/dist/token-util-NEHG7TUY-TV2H7N56-R7OENTCJ.cjs +10 -0
package/dist/token-util-NEHG7TUY-TV2H7N56-R7OENTCJ.cjs.map +1 -0
package/dist/token-util-NEHG7TUY-XQP3QSPX-BL5O5N7R.cjs +10 -0
package/dist/token-util-NEHG7TUY-XQP3QSPX-BL5O5N7R.cjs.map +1 -0
package/dist/token-util-NEHG7TUY-XQP3QSPX-YCJRRNXO.js +8 -0
package/dist/token-util-NEHG7TUY-XQP3QSPX-YCJRRNXO.js.map +1 -0
package/handlers/server/handlers.d.ts +1 -0
package/handlers.d.ts +1 -0
package/package.json +29 -17
package/server-adapter.d.ts +1 -0
package/dist/chunk-2NW6POYK.cjs.map +0 -1
package/dist/chunk-2PLXW4ZX.cjs.map +0 -1
package/dist/chunk-35NT4TMQ.cjs.map +0 -1
package/dist/chunk-3R5EV3HV.js.map +0 -1
package/dist/chunk-4ECGVOJZ.cjs.map +0 -1
package/dist/chunk-5PONYNYP.cjs.map +0 -1
package/dist/chunk-6BISSAIF.js +0 -23494
package/dist/chunk-6BISSAIF.js.map +0 -1
package/dist/chunk-6DTV6NEW.js.map +0 -1
package/dist/chunk-AEO6IHLK.cjs +0 -368
package/dist/chunk-AEO6IHLK.cjs.map +0 -1
package/dist/chunk-ASZUOBKV.js.map +0 -1
package/dist/chunk-ECIVTQ4E.js +0 -354
package/dist/chunk-ECIVTQ4E.js.map +0 -1
package/dist/chunk-FAQICBMH.js.map +0 -1
package/dist/chunk-FXDZLX2Y.js.map +0 -1
package/dist/chunk-G7BPNX2V.js.map +0 -1
package/dist/chunk-I5VZ5SKG.js.map +0 -1
package/dist/chunk-ICANWSEW.js.map +0 -1
package/dist/chunk-KB5NSROG.cjs.map +0 -1
package/dist/chunk-LPM6BBAX.cjs.map +0 -1
package/dist/chunk-MWQQRVQC.cjs.map +0 -1
package/dist/chunk-NDFAQBQD.cjs.map +0 -1
package/dist/chunk-PKRHEXX7.js.map +0 -1
package/dist/chunk-QGWCNTG6.cjs.map +0 -1
package/dist/chunk-QU6N55W6.cjs.map +0 -1
package/dist/chunk-R4M3BSUG.js.map +0 -1
package/dist/chunk-RQK4FQUD.js.map +0 -1
package/dist/chunk-SHWNNZBL.js.map +0 -1
package/dist/chunk-TBVUN4XN.cjs +0 -23536
package/dist/chunk-TBVUN4XN.cjs.map +0 -1
package/dist/chunk-TOCYBDP2.js +0 -46
package/dist/chunk-TOCYBDP2.js.map +0 -1
package/dist/chunk-UJNHKFBR.cjs.map +0 -1
package/dist/chunk-UOFV2ZCI.js.map +0 -1
package/dist/chunk-UXGQZUYZ.js.map +0 -1
package/dist/chunk-UZ6CYAOG.cjs.map +0 -1
package/dist/chunk-V5WWQN7P.cjs.map +0 -1
package/dist/chunk-VQAT5HX6.js.map +0 -1
package/dist/chunk-X6C7BUWN.cjs +0 -48
package/dist/chunk-X6C7BUWN.cjs.map +0 -1
package/dist/chunk-YJ3VDL3Z.cjs.map +0 -1
package/dist/chunk-Z36N2OQA.cjs.map +0 -1
package/dist/chunk-ZLRTFRL4.js.map +0 -1
package/dist/chunk-ZODCSH2W.cjs.map +0 -1
package/dist/chunk-ZULZ2752.js.map +0 -1
package/dist/dist-4MVGNSRL.cjs.map +0 -1
package/dist/dist-FZYCV3VB.cjs.map +0 -1
package/dist/dist-G2BYZJOC.cjs.map +0 -1
package/dist/dist-P4MXBQ3U.cjs +0 -16
package/dist/dist-PQZUVLPC.js.map +0 -1
package/dist/dist-R7WYX6LC.js.map +0 -1
package/dist/dist-RFMYFILX.cjs.map +0 -1
package/dist/dist-X7XR3M3Z.js.map +0 -1
package/dist/dist-XVBSOGFK.js.map +0 -1
package/dist/dist-YREX2TJT.js +0 -3
package/dist/server/schemas/observability.d.ts +0 -402
package/dist/server/schemas/observability.d.ts.map +0 -1
package/dist/token-375W3LEI.cjs.map +0 -1
package/dist/token-C3IMNCC4.js.map +0 -1
package/dist/token-util-CV3RRG6K.cjs +0 -9
package/dist/token-util-CV3RRG6K.cjs.map +0 -1
package/dist/token-util-E5QO2RCL.js +0 -7
package/dist/token-util-E5QO2RCL.js.map +0 -1

package/dist/chunk-55TH4ME5.js ADDED Viewed

@@ -0,0 +1,170 @@
+// src/server/auth/defaults.ts
+var defaultAuthConfig = {
+  protected: ["/api/*"],
+  public: ["/api"],
+  // Simple rule system
+  rules: [
+    // Admin users can do anything
+    {
+      condition: (user) => {
+        if (typeof user === "object" && user !== null) {
+          if ("isAdmin" in user) {
+            return !!user.isAdmin;
+          }
+          if ("role" in user) {
+            return user.role === "admin";
+          }
+        }
+        return false;
+      },
+      allow: true
+    }
+  ]
+};
+// src/server/auth/path-pattern.ts
+function parse(input, loose) {
+  if (input instanceof RegExp) return { keys: false, pattern: input };
+  let c;
+  let o;
+  let tmp;
+  let ext;
+  const keys = [];
+  let pattern = "";
+  const arr = input.split("/");
+  arr[0] || arr.shift();
+  while (tmp = arr.shift()) {
+    c = tmp[0];
+    if (c === "*") {
+      keys.push(c);
+      pattern += tmp[1] === "?" ? "(?:/(.*))?" : "/(.*)";
+    } else if (c === ":") {
+      o = tmp.indexOf("?", 1);
+      ext = tmp.indexOf(".", 1);
+      keys.push(tmp.substring(1, !!~o ? o : !!~ext ? ext : tmp.length));
+      pattern += !!~o && !~ext ? "(?:/([^/]+?))?" : "/([^/]+?)";
+      if (!!~ext) pattern += (!!~o ? "?" : "") + "\\" + tmp.substring(ext);
+    } else {
+      pattern += "/" + tmp;
+    }
+  }
+  return {
+    keys,
+    pattern: new RegExp("^" + pattern + ("/?$"), "i")
+  };
+}
+// src/server/auth/helpers.ts
+var isDevPlaygroundRequest = (path, method, getHeader, authConfig) => {
+  const protectedAccess = [...defaultAuthConfig.protected || [], ...authConfig.protected || []];
+  return process.env.MASTRA_DEV === "true" && (!isAnyMatch(path, method, protectedAccess) || getHeader("x-mastra-dev-playground") === "true");
+};
+var isCustomRoutePublic = (path, method, customRouteAuthConfig) => {
+  if (!customRouteAuthConfig) {
+    return false;
+  }
+  const exactRouteKey = `${method}:${path}`;
+  if (customRouteAuthConfig.has(exactRouteKey)) {
+    return !customRouteAuthConfig.get(exactRouteKey);
+  }
+  const allRouteKey = `ALL:${path}`;
+  if (customRouteAuthConfig.has(allRouteKey)) {
+    return !customRouteAuthConfig.get(allRouteKey);
+  }
+  for (const [routeKey, requiresAuth] of customRouteAuthConfig.entries()) {
+    const colonIndex = routeKey.indexOf(":");
+    if (colonIndex === -1) {
+      continue;
+    }
+    const routeMethod = routeKey.substring(0, colonIndex);
+    const routePattern = routeKey.substring(colonIndex + 1);
+    if (routeMethod !== method && routeMethod !== "ALL") {
+      continue;
+    }
+    if (pathMatchesPattern(path, routePattern)) {
+      return !requiresAuth;
+    }
+  }
+  return false;
+};
+var isProtectedPath = (path, method, authConfig, customRouteAuthConfig) => {
+  const protectedAccess = [...defaultAuthConfig.protected || [], ...authConfig.protected || []];
+  return isAnyMatch(path, method, protectedAccess) || !isCustomRoutePublic(path, method, customRouteAuthConfig);
+};
+var canAccessPublicly = (path, method, authConfig) => {
+  const publicAccess = [...defaultAuthConfig.public || [], ...authConfig.public || []];
+  return isAnyMatch(path, method, publicAccess);
+};
+var isAnyMatch = (path, method, patterns) => {
+  if (!patterns) {
+    return false;
+  }
+  for (const patternPathOrMethod of patterns) {
+    if (patternPathOrMethod instanceof RegExp) {
+      if (patternPathOrMethod.test(path)) {
+        return true;
+      }
+    }
+    if (typeof patternPathOrMethod === "string" && pathMatchesPattern(path, patternPathOrMethod)) {
+      return true;
+    }
+    if (Array.isArray(patternPathOrMethod) && patternPathOrMethod.length === 2) {
+      const [pattern, methodOrMethods] = patternPathOrMethod;
+      if (pathMatchesPattern(path, pattern) && matchesOrIncludes(methodOrMethods, method)) {
+        return true;
+      }
+    }
+  }
+  return false;
+};
+var pathMatchesPattern = (path, pattern) => {
+  const { pattern: regex } = parse(pattern);
+  return regex.test(path);
+};
+var pathMatchesRule = (path, rulePath) => {
+  if (!rulePath) return true;
+  if (typeof rulePath === "string") {
+    return pathMatchesPattern(path, rulePath);
+  }
+  if (rulePath instanceof RegExp) {
+    return rulePath.test(path);
+  }
+  if (Array.isArray(rulePath)) {
+    return rulePath.some((p) => pathMatchesPattern(path, p));
+  }
+  return false;
+};
+var matchesOrIncludes = (values, value) => {
+  if (typeof values === "string") {
+    return values === value;
+  }
+  if (Array.isArray(values)) {
+    return values.includes(value);
+  }
+  return false;
+};
+var checkRules = async (rules, path, method, user) => {
+  for (const i in rules || []) {
+    const rule = rules?.[i];
+    if (!pathMatchesRule(path, rule.path)) {
+      continue;
+    }
+    if (rule.methods && !matchesOrIncludes(rule.methods, method)) {
+      continue;
+    }
+    const condition = rule.condition;
+    if (typeof condition === "function") {
+      const allowed = await Promise.resolve().then(() => condition(user)).catch(() => false);
+      if (allowed) {
+        return true;
+      }
+    } else if (rule.allow) {
+      return true;
+    }
+  }
+  return false;
+};
+export { canAccessPublicly, checkRules, defaultAuthConfig, isCustomRoutePublic, isDevPlaygroundRequest, isProtectedPath, matchesOrIncludes, pathMatchesPattern, pathMatchesRule };
+//# sourceMappingURL=chunk-55TH4ME5.js.map
+//# sourceMappingURL=chunk-55TH4ME5.js.map

package/dist/chunk-55TH4ME5.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/server/auth/defaults.ts","../src/server/auth/path-pattern.ts","../src/server/auth/helpers.ts"],"names":[],"mappings":";AAGO,IAAM,iBAAA,GAAsC;AAAA,EACjD,SAAA,EAAW,CAAC,QAAQ,CAAA;AAAA,EACpB,MAAA,EAAQ,CAAC,MAAM,CAAA;AAAA;AAAA,EAEf,KAAA,EAAO;AAAA;AAAA,IAEL;AAAA,MACE,WAAW,CAAA,IAAA,KAAQ;AACjB,QAAA,IAAI,OAAO,IAAA,KAAS,QAAA,IAAY,IAAA,KAAS,IAAA,EAAM;AAC7C,UAAA,IAAI,aAAa,IAAA,EAAM;AACrB,YAAA,OAAO,CAAC,CAAC,IAAA,CAAK,OAAA;AAAA,UAChB;AAEA,UAAA,IAAI,UAAU,IAAA,EAAM;AAClB,YAAA,OAAO,KAAK,IAAA,KAAS,OAAA;AAAA,UACvB;AAAA,QACF;AACA,QAAA,OAAO,KAAA;AAAA,MACT,CAAA;AAAA,MACA,KAAA,EAAO;AAAA;AACT;AAEJ;;;ACcO,SAAS,KAAA,CAAM,OAAwB,KAAA,EAAgC;AAC5E,EAAA,IAAI,iBAAiB,MAAA,EAAQ,OAAO,EAAE,IAAA,EAAM,KAAA,EAAO,SAAS,KAAA,EAAM;AAElE,EAAA,IAAI,CAAA;AACJ,EAAA,IAAI,CAAA;AACJ,EAAA,IAAI,GAAA;AACJ,EAAA,IAAI,GAAA;AACJ,EAAA,MAAM,OAAiB,EAAC;AACxB,EAAA,IAAI,OAAA,GAAU,EAAA;AACd,EAAA,MAAM,GAAA,GAAM,KAAA,CAAM,KAAA,CAAM,GAAG,CAAA;AAE3B,EAAA,GAAA,CAAI,CAAC,CAAA,IAAK,GAAA,CAAI,KAAA,EAAM;AAEpB,EAAA,OAAQ,GAAA,GAAM,GAAA,CAAI,KAAA,EAAM,EAAI;AAC1B,IAAA,CAAA,GAAI,IAAI,CAAC,CAAA;AACT,IAAA,IAAI,MAAM,GAAA,EAAK;AACb,MAAA,IAAA,CAAK,KAAK,CAAC,CAAA;AACX,MAAA,OAAA,IAAW,GAAA,CAAI,CAAC,CAAA,KAAM,GAAA,GAAM,YAAA,GAAe,OAAA;AAAA,IAC7C,CAAA,MAAA,IAAW,MAAM,GAAA,EAAK;AACpB,MAAA,CAAA,GAAI,GAAA,CAAI,OAAA,CAAQ,GAAA,EAAK,CAAC,CAAA;AACtB,MAAA,GAAA,GAAM,GAAA,CAAI,OAAA,CAAQ,GAAA,EAAK,CAAC,CAAA;AACxB,MAAA,IAAA,CAAK,KAAK,GAAA,CAAI,SAAA,CAAU,CAAA,EAAG,CAAC,CAAC,CAAC,CAAA,GAAI,CAAA,GAAI,CAAC,CAAC,CAAC,GAAA,GAAM,GAAA,GAAM,GAAA,CAAI,MAAM,CAAC,CAAA;AAChE,MAAA,OAAA,IAAW,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,MAAM,gBAAA,GAAmB,WAAA;AAC9C,MAAA,IAAI,CAAC,CAAC,CAAC,GAAA,cAAiB,CAAC,CAAC,CAAC,CAAA,GAAI,GAAA,GAAM,EAAA,IAAM,IAAA,GAAO,GAAA,CAAI,UAAU,GAAG,CAAA;AAAA,IACrE,CAAA,MAAO;AACL,MAAA,OAAA,IAAW,GAAA,GAAM,GAAA;AAAA,IACnB;AAAA,EACF;AAEA,EAAA,OAAO;AAAA,IACL,IAAA;AAAA,IACA,OAAA,EAAS,IAAI,MAAA,CAAO,GAAA,GAAM,WAA+B,QAAQ,GAAG;AAAA,GACtE;AACF;;;AC/DO,IAAM,sBAAA,GAAyB,CACpC,IAAA,EACA,MAAA,EACA,WACA,UAAA,KACY;AACZ,EAAA,MAAM,eAAA,GAAkB,CAAC,GAAI,iBAAA,CAAkB,SAAA,IAAa,EAAC,EAAI,GAAI,UAAA,CAAW,SAAA,IAAa,EAAG,CAAA;AAChG,EAAA,OACE,OAAA,CAAQ,GAAA,CAAI,UAAA,KAAe,MAAA,KAC1B,CAAC,UAAA,CAAW,IAAA,EAAM,MAAA,EAAQ,eAAe,CAAA,IAAK,SAAA,CAAU,yBAAyB,CAAA,KAAM,MAAA,CAAA;AAE5F;AAEO,IAAM,mBAAA,GAAsB,CACjC,IAAA,EACA,MAAA,EACA,qBAAA,KACY;AACZ,EAAA,IAAI,CAAC,qBAAA,EAAuB;AAC1B,IAAA,OAAO,KAAA;AAAA,EACT;AAGA,EAAA,MAAM,aAAA,GAAgB,CAAA,EAAG,MAAM,CAAA,CAAA,EAAI,IAAI,CAAA,CAAA;AACvC,EAAA,IAAI,qBAAA,CAAsB,GAAA,CAAI,aAAa,CAAA,EAAG;AAC5C,IAAA,OAAO,CAAC,qBAAA,CAAsB,GAAA,CAAI,aAAa,CAAA;AAAA,EACjD;AAGA,EAAA,MAAM,WAAA,GAAc,OAAO,IAAI,CAAA,CAAA;AAC/B,EAAA,IAAI,qBAAA,CAAsB,GAAA,CAAI,WAAW,CAAA,EAAG;AAC1C,IAAA,OAAO,CAAC,qBAAA,CAAsB,GAAA,CAAI,WAAW,CAAA;AAAA,EAC/C;AAGA,EAAA,KAAA,MAAW,CAAC,QAAA,EAAU,YAAY,CAAA,IAAK,qBAAA,CAAsB,SAAQ,EAAG;AACtE,IAAA,MAAM,UAAA,GAAa,QAAA,CAAS,OAAA,CAAQ,GAAG,CAAA;AACvC,IAAA,IAAI,eAAe,EAAA,EAAI;AACrB,MAAA;AAAA,IACF;AAEA,IAAA,MAAM,WAAA,GAAc,QAAA,CAAS,SAAA,CAAU,CAAA,EAAG,UAAU,CAAA;AACpD,IAAA,MAAM,YAAA,GAAe,QAAA,CAAS,SAAA,CAAU,UAAA,GAAa,CAAC,CAAA;AAGtD,IAAA,IAAI,WAAA,KAAgB,MAAA,IAAU,WAAA,KAAgB,KAAA,EAAO;AACnD,MAAA;AAAA,IACF;AAGA,IAAA,IAAI,kBAAA,CAAmB,IAAA,EAAM,YAAY,CAAA,EAAG;AAC1C,MAAA,OAAO,CAAC,YAAA;AAAA,IACV;AAAA,EACF;AAEA,EAAA,OAAO,KAAA;AACT;AAEO,IAAM,eAAA,GAAkB,CAC7B,IAAA,EACA,MAAA,EACA,YACA,qBAAA,KACY;AACZ,EAAA,MAAM,eAAA,GAAkB,CAAC,GAAI,iBAAA,CAAkB,SAAA,IAAa,EAAC,EAAI,GAAI,UAAA,CAAW,SAAA,IAAa,EAAG,CAAA;AAChG,EAAA,OAAO,UAAA,CAAW,MAAM,MAAA,EAAQ,eAAe,KAAK,CAAC,mBAAA,CAAoB,IAAA,EAAM,MAAA,EAAQ,qBAAqB,CAAA;AAC9G;AAEO,IAAM,iBAAA,GAAoB,CAAC,IAAA,EAAc,MAAA,EAAgB,UAAA,KAA0C;AAExG,EAAA,MAAM,YAAA,GAAe,CAAC,GAAI,iBAAA,CAAkB,MAAA,IAAU,EAAC,EAAI,GAAI,UAAA,CAAW,MAAA,IAAU,EAAG,CAAA;AAEvF,EAAA,OAAO,UAAA,CAAW,IAAA,EAAM,MAAA,EAAQ,YAAY,CAAA;AAC9C;AAEA,IAAM,UAAA,GAAa,CACjB,IAAA,EACA,MAAA,EACA,QAAA,KACY;AACZ,EAAA,IAAI,CAAC,QAAA,EAAU;AACb,IAAA,OAAO,KAAA;AAAA,EACT;AAEA,EAAA,KAAA,MAAW,uBAAuB,QAAA,EAAU;AAC1C,IAAA,IAAI,+BAA+B,MAAA,EAAQ;AACzC,MAAA,IAAI,mBAAA,CAAoB,IAAA,CAAK,IAAI,CAAA,EAAG;AAClC,QAAA,OAAO,IAAA;AAAA,MACT;AAAA,IACF;AAEA,IAAA,IAAI,OAAO,mBAAA,KAAwB,QAAA,IAAY,kBAAA,CAAmB,IAAA,EAAM,mBAAmB,CAAA,EAAG;AAC5F,MAAA,OAAO,IAAA;AAAA,IACT;AAEA,IAAA,IAAI,MAAM,OAAA,CAAQ,mBAAmB,CAAA,IAAK,mBAAA,CAAoB,WAAW,CAAA,EAAG;AAC1E,MAAA,MAAM,CAAC,OAAA,EAAS,eAAe,CAAA,GAAI,mBAAA;AACnC,MAAA,IAAI,mBAAmB,IAAA,EAAM,OAAO,KAAK,iBAAA,CAAkB,eAAA,EAAiB,MAAM,CAAA,EAAG;AACnF,QAAA,OAAO,IAAA;AAAA,MACT;AAAA,IACF;AAAA,EACF;AAEA,EAAA,OAAO,KAAA;AACT,CAAA;AAEO,IAAM,kBAAA,GAAqB,CAAC,IAAA,EAAc,OAAA,KAA6B;AAQ5E,EAAA,MAAM,EAAE,OAAA,EAAS,KAAA,EAAM,GAAI,MAAM,OAAO,CAAA;AACxC,EAAA,OAAO,KAAA,CAAM,KAAK,IAAI,CAAA;AACxB;AAEO,IAAM,eAAA,GAAkB,CAAC,IAAA,EAAc,QAAA,KAA8D;AAC1G,EAAA,IAAI,CAAC,UAAU,OAAO,IAAA;AAEtB,EAAA,IAAI,OAAO,aAAa,QAAA,EAAU;AAChC,IAAA,OAAO,kBAAA,CAAmB,MAAM,QAAQ,CAAA;AAAA,EAC1C;AAEA,EAAA,IAAI,oBAAoB,MAAA,EAAQ;AAC9B,IAAA,OAAO,QAAA,CAAS,KAAK,IAAI,CAAA;AAAA,EAC3B;AAEA,EAAA,IAAI,KAAA,CAAM,OAAA,CAAQ,QAAQ,CAAA,EAAG;AAC3B,IAAA,OAAO,SAAS,IAAA,CAAK,CAAA,CAAA,KAAK,kBAAA,CAAmB,IAAA,EAAM,CAAC,CAAC,CAAA;AAAA,EACvD;AAEA,EAAA,OAAO,KAAA;AACT;AAEO,IAAM,iBAAA,GAAoB,CAAC,MAAA,EAA2B,KAAA,KAA2B;AACtF,EAAA,IAAI,OAAO,WAAW,QAAA,EAAU;AAC9B,IAAA,OAAO,MAAA,KAAW,KAAA;AAAA,EACpB;AAEA,EAAA,IAAI,KAAA,CAAM,OAAA,CAAQ,MAAM,CAAA,EAAG;AACzB,IAAA,OAAO,MAAA,CAAO,SAAS,KAAK,CAAA;AAAA,EAC9B;AAEA,EAAA,OAAO,KAAA;AACT;AAGO,IAAM,UAAA,GAAa,OACxB,KAAA,EACA,IAAA,EACA,QACA,IAAA,KACqB;AAErB,EAAA,KAAA,MAAW,CAAA,IAAK,KAAA,IAAS,EAAC,EAAG;AAC3B,IAAA,MAAM,IAAA,GAAO,QAAQ,CAAC,CAAA;AAEtB,IAAA,IAAI,CAAC,eAAA,CAAgB,IAAA,EAAM,IAAA,CAAK,IAAI,CAAA,EAAG;AACrC,MAAA;AAAA,IACF;AAGA,IAAA,IAAI,KAAK,OAAA,IAAW,CAAC,kBAAkB,IAAA,CAAK,OAAA,EAAS,MAAM,CAAA,EAAG;AAC5D,MAAA;AAAA,IACF;AAGA,IAAA,MAAM,YAAY,IAAA,CAAK,SAAA;AACvB,IAAA,IAAI,OAAO,cAAc,UAAA,EAAY;AACnC,MAAA,MAAM,OAAA,GAAU,MAAM,OAAA,CAAQ,OAAA,EAAQ,CACnC,IAAA,CAAK,MAAM,SAAA,CAAU,IAAI,CAAC,CAAA,CAC1B,KAAA,CAAM,MAAM,KAAK,CAAA;AAEpB,MAAA,IAAI,OAAA,EAAS;AACX,QAAA,OAAO,IAAA;AAAA,MACT;AAAA,IACF,CAAA,MAAA,IAAW,KAAK,KAAA,EAAO;AACrB,MAAA,OAAO,IAAA;AAAA,IACT;AAAA,EACF;AAGA,EAAA,OAAO,KAAA;AACT","file":"chunk-55TH4ME5.js","sourcesContent":["import type { MastraAuthConfig } from '@mastra/core/server';\n\n// Default configuration that can be extended by clients\nexport const defaultAuthConfig: MastraAuthConfig = {\n protected: ['/api/*'],\n public: ['/api'],\n // Simple rule system\n rules: [\n // Admin users can do anything\n {\n condition: user => {\n if (typeof user === 'object' && user !== null) {\n if ('isAdmin' in user) {\n return !!user.isAdmin;\n }\n\n if ('role' in user) {\n return user.role === 'admin';\n }\n }\n return false;\n },\n allow: true,\n },\n ],\n};\n","/**\n * Path pattern matching utility\n * Inlined from regexparam v3.0.0 (MIT License)\n * https://github.com/lukeed/regexparam\n *\n * Copyright (c) Luke Edwards <luke.edwards05@gmail.com> (lukeed.com)\n *\n * Permission is hereby granted, free of charge, to any person obtaining a copy\n * of this software and associated documentation files (the \"Software\"), to deal\n * in the Software without restriction, including without limitation the rights\n * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell\n * copies of the Software, and to permit persons to whom the Software is\n * furnished to do so, subject to the following conditions:\n *\n * The above copyright notice and this permission notice shall be included in all\n * copies or substantial portions of the Software.\n *\n * THE SOFTWARE IS PROVIDED \"AS IS\", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR\n * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,\n * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE\n * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER\n * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,\n * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE\n * SOFTWARE.\n */\n\nexport interface ParsedPattern {\n keys: string[] | false;\n pattern: RegExp;\n}\n\n/**\n * Parse a route pattern into a RegExp\n * Supports:\n * - Named parameters: /users/:id\n * - Optional parameters: /users/:id?\n * - Wildcards: /files/*\n * - Mixed patterns: /api/:version/users/:id\n */\nexport function parse(input: string | RegExp, loose?: boolean): ParsedPattern {\n if (input instanceof RegExp) return { keys: false, pattern: input };\n\n let c: string;\n let o: number;\n let tmp: string | undefined;\n let ext: number;\n const keys: string[] = [];\n let pattern = '';\n const arr = input.split('/');\n\n arr[0] || arr.shift();\n\n while ((tmp = arr.shift())) {\n c = tmp[0]!;\n if (c === '*') {\n keys.push(c);\n pattern += tmp[1] === '?' ? '(?:/(.*))?' : '/(.*)';\n } else if (c === ':') {\n o = tmp.indexOf('?', 1);\n ext = tmp.indexOf('.', 1);\n keys.push(tmp.substring(1, !!~o ? o : !!~ext ? ext : tmp.length));\n pattern += !!~o && !~ext ? '(?:/([^/]+?))?' : '/([^/]+?)';\n if (!!~ext) pattern += (!!~o ? '?' : '') + '\\\\' + tmp.substring(ext);\n } else {\n pattern += '/' + tmp;\n }\n }\n\n return {\n keys: keys,\n pattern: new RegExp('^' + pattern + (loose ? '(?=$|/)' : '/?$'), 'i'),\n };\n}\n\n/**\n * Test if a path matches a pattern\n */\nexport function matchPath(path: string, pattern: string | RegExp): boolean {\n const { pattern: regex } = parse(pattern);\n return regex.test(path);\n}\n","import type { MastraAuthConfig } from '@mastra/core/server';\n\nimport { defaultAuthConfig } from './defaults';\nimport { parse } from './path-pattern';\n\n/**\n * Check if request is from dev playground\n * @param getHeader - Function to get header value from request\n */\nexport const isDevPlaygroundRequest = (\n path: string,\n method: string,\n getHeader: (name: string) => string | undefined,\n authConfig: MastraAuthConfig,\n): boolean => {\n const protectedAccess = [...(defaultAuthConfig.protected || []), ...(authConfig.protected || [])];\n return (\n process.env.MASTRA_DEV === 'true' &&\n (!isAnyMatch(path, method, protectedAccess) || getHeader('x-mastra-dev-playground') === 'true')\n );\n};\n\nexport const isCustomRoutePublic = (\n path: string,\n method: string,\n customRouteAuthConfig?: Map<string, boolean>,\n): boolean => {\n if (!customRouteAuthConfig) {\n return false;\n }\n\n // Check exact match first (fast path for static routes)\n const exactRouteKey = `${method}:${path}`;\n if (customRouteAuthConfig.has(exactRouteKey)) {\n return !customRouteAuthConfig.get(exactRouteKey); // True when route opts out of auth\n }\n\n // Check exact match for ALL method\n const allRouteKey = `ALL:${path}`;\n if (customRouteAuthConfig.has(allRouteKey)) {\n return !customRouteAuthConfig.get(allRouteKey);\n }\n\n // Check pattern matches for dynamic routes (e.g., '/users/:id')\n for (const [routeKey, requiresAuth] of customRouteAuthConfig.entries()) {\n const colonIndex = routeKey.indexOf(':');\n if (colonIndex === -1) {\n continue; // Skip malformed keys\n }\n\n const routeMethod = routeKey.substring(0, colonIndex);\n const routePattern = routeKey.substring(colonIndex + 1);\n\n // Check if method matches (exact match or ALL)\n if (routeMethod !== method && routeMethod !== 'ALL') {\n continue;\n }\n\n // Check if path matches the pattern\n if (pathMatchesPattern(path, routePattern)) {\n return !requiresAuth; // True when route opts out of auth\n }\n }\n\n return false;\n};\n\nexport const isProtectedPath = (\n path: string,\n method: string,\n authConfig: MastraAuthConfig,\n customRouteAuthConfig?: Map<string, boolean>,\n): boolean => {\n const protectedAccess = [...(defaultAuthConfig.protected || []), ...(authConfig.protected || [])];\n return isAnyMatch(path, method, protectedAccess) || !isCustomRoutePublic(path, method, customRouteAuthConfig);\n};\n\nexport const canAccessPublicly = (path: string, method: string, authConfig: MastraAuthConfig): boolean => {\n // Check if this path+method combination is publicly accessible\n const publicAccess = [...(defaultAuthConfig.public || []), ...(authConfig.public || [])];\n\n return isAnyMatch(path, method, publicAccess);\n};\n\nconst isAnyMatch = (\n path: string,\n method: string,\n patterns: MastraAuthConfig['protected'] | MastraAuthConfig['public'],\n): boolean => {\n if (!patterns) {\n return false;\n }\n\n for (const patternPathOrMethod of patterns) {\n if (patternPathOrMethod instanceof RegExp) {\n if (patternPathOrMethod.test(path)) {\n return true;\n }\n }\n\n if (typeof patternPathOrMethod === 'string' && pathMatchesPattern(path, patternPathOrMethod)) {\n return true;\n }\n\n if (Array.isArray(patternPathOrMethod) && patternPathOrMethod.length === 2) {\n const [pattern, methodOrMethods] = patternPathOrMethod;\n if (pathMatchesPattern(path, pattern) && matchesOrIncludes(methodOrMethods, method)) {\n return true;\n }\n }\n }\n\n return false;\n};\n\nexport const pathMatchesPattern = (path: string, pattern: string): boolean => {\n // Use regexparam for battle-tested path matching\n // Supports:\n // - Exact paths: '/api/users'\n // - Wildcards: '/api/agents/*' matches '/api/agents/123'\n // - Path parameters: '/users/:id' matches '/users/123'\n // - Optional parameters: '/users/:id?' matches '/users' and '/users/123'\n // - Mixed patterns: '/api/:version/users/:id/profile'\n const { pattern: regex } = parse(pattern);\n return regex.test(path);\n};\n\nexport const pathMatchesRule = (path: string, rulePath: string | RegExp | string[] | undefined): boolean => {\n if (!rulePath) return true; // No path specified means all paths\n\n if (typeof rulePath === 'string') {\n return pathMatchesPattern(path, rulePath);\n }\n\n if (rulePath instanceof RegExp) {\n return rulePath.test(path);\n }\n\n if (Array.isArray(rulePath)) {\n return rulePath.some(p => pathMatchesPattern(path, p));\n }\n\n return false;\n};\n\nexport const matchesOrIncludes = (values: string | string[], value: string): boolean => {\n if (typeof values === 'string') {\n return values === value;\n }\n\n if (Array.isArray(values)) {\n return values.includes(value);\n }\n\n return false;\n};\n\n// Check authorization rules\nexport const checkRules = async (\n rules: MastraAuthConfig['rules'],\n path: string,\n method: string,\n user: unknown,\n): Promise<boolean> => {\n // Go through rules in order (first match wins)\n for (const i in rules || []) {\n const rule = rules?.[i]!;\n // Check if rule applies to this path\n if (!pathMatchesRule(path, rule.path)) {\n continue;\n }\n\n // Check if rule applies to this method\n if (rule.methods && !matchesOrIncludes(rule.methods, method)) {\n continue;\n }\n\n // Rule matches, check conditions\n const condition = rule.condition;\n if (typeof condition === 'function') {\n const allowed = await Promise.resolve()\n .then(() => condition(user))\n .catch(() => false);\n\n if (allowed) {\n return true;\n }\n } else if (rule.allow) {\n return true;\n }\n }\n\n // No matching rules, deny by default\n return false;\n};\n"]}