@mastra/server 1.36.0-alpha.1 → 1.36.0-alpha.10

package/dist/{chunk-L3WM4IWR.cjs → chunk-DYXX34YU.cjs}

@@ -1,12 +1,13 @@
 'use strict';
 
-var chunkY5LNMKEY_cjs = require('./chunk-Y5LNMKEY.cjs');
 var chunkXCZ44WKI_cjs = require('./chunk-XCZ44WKI.cjs');
-var chunkAZORAK4H_cjs = require('./chunk-AZORAK4H.cjs');
-var chunkB34S64RC_cjs = require('./chunk-B34S64RC.cjs');
+var chunk43KD3CRE_cjs = require('./chunk-43KD3CRE.cjs');
+var chunkYNSUYESL_cjs = require('./chunk-YNSUYESL.cjs');
+var chunkXTFWFQZ7_cjs = require('./chunk-XTFWFQZ7.cjs');
 var chunk64ITUOXI_cjs = require('./chunk-64ITUOXI.cjs');
+var chunk65T6KVYX_cjs = require('./chunk-65T6KVYX.cjs');
+var v4 = require('zod/v4');
 
-// src/server/handlers/auth.ts
 var _buildCapabilitiesPromise;
 function loadBuildCapabilities() {
   if (!_buildCapabilitiesPromise) {
@@ -51,7 +52,7 @@ function getFGAProvider(mastra) {
 function implementsInterface(auth, method) {
   return auth !== null && typeof auth === "object" && typeof auth[method] === "function";
 }
-var GET_AUTH_CAPABILITIES_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var GET_AUTH_CAPABILITIES_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "GET",
   path: "/auth/capabilities",
   responseType: "json",
@@ -73,7 +74,7 @@ var GET_AUTH_CAPABILITIES_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
         return { enabled: false, login: null };
       }
       const capabilities = await buildCapabilities(auth, request, { rbac, fga, apiPrefix: routePrefix });
-      if (!("user" in capabilities) && chunkY5LNMKEY_cjs.supportsSessionRefresh(auth)) {
+      if (!("user" in capabilities) && chunk43KD3CRE_cjs.supportsSessionRefresh(auth)) {
         try {
           const sessionId = await auth.getSessionIdFromRequest(request);
           if (sessionId) {
@@ -103,7 +104,7 @@ var GET_AUTH_CAPABILITIES_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
       }
       return capabilities;
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error getting auth capabilities");
+      return chunkYNSUYESL_cjs.handleError(error, "Error getting auth capabilities");
     }
   }
 });
@@ -113,7 +114,7 @@ function extractCookieFromHeaders(headers) {
   const match = setCookie.match(/^([^;]+)/);
   return match ? match[1] ?? null : null;
 }
-var GET_CURRENT_USER_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var GET_CURRENT_USER_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "GET",
   path: "/auth/me",
   responseType: "json",
@@ -149,11 +150,11 @@ var GET_CURRENT_USER_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
         permissions
       };
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error getting current user");
+      return chunkYNSUYESL_cjs.handleError(error, "Error getting current user");
     }
   }
 });
-var GET_SSO_LOGIN_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var GET_SSO_LOGIN_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "GET",
   path: "/auth/sso/login",
   responseType: "datastream-response",
@@ -205,11 +206,11 @@ var GET_SSO_LOGIN_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
       }
       return new Response(JSON.stringify({ url: loginUrl }), { status: 200, headers });
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error initiating SSO login");
+      return chunkYNSUYESL_cjs.handleError(error, "Error initiating SSO login");
     }
   }
 });
-var GET_SSO_CALLBACK_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var GET_SSO_CALLBACK_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "GET",
   path: "/auth/sso/callback",
   responseType: "datastream-response",
@@ -285,7 +286,7 @@ var GET_SSO_CALLBACK_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
     }
   }
 });
-var POST_LOGOUT_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var POST_LOGOUT_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "POST",
   path: "/auth/logout",
   responseType: "datastream-response",
@@ -326,11 +327,11 @@ var POST_LOGOUT_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
         headers
       });
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error logging out");
+      return chunkYNSUYESL_cjs.handleError(error, "Error logging out");
     }
   }
 });
-var POST_REFRESH_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var POST_REFRESH_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "POST",
   path: "/auth/refresh",
   responseType: "datastream-response",
@@ -366,11 +367,11 @@ var POST_REFRESH_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
       });
     } catch (error) {
       if (error instanceof chunk64ITUOXI_cjs.HTTPException) throw error;
-      return chunkB34S64RC_cjs.handleError(error, "Error refreshing session");
+      return chunkYNSUYESL_cjs.handleError(error, "Error refreshing session");
     }
   }
 });
-var POST_CREDENTIALS_SIGN_IN_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var POST_CREDENTIALS_SIGN_IN_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "POST",
   path: "/auth/credentials/sign-in",
   responseType: "datastream-response",
@@ -411,7 +412,7 @@ var POST_CREDENTIALS_SIGN_IN_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
     }
   }
 });
-var POST_CREDENTIALS_SIGN_UP_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
+var POST_CREDENTIALS_SIGN_UP_ROUTE = chunkXTFWFQZ7_cjs.createPublicRoute({
   method: "POST",
   path: "/auth/credentials/sign-up",
   responseType: "datastream-response",
@@ -456,6 +457,38 @@ var POST_CREDENTIALS_SIGN_UP_ROUTE = chunkAZORAK4H_cjs.createPublicRoute({
     }
   }
 });
+var rolePermissionsPathSchema = v4.z.object({ roleId: v4.z.string() });
+var rolePermissionsResponseSchema = v4.z.object({ roleId: v4.z.string(), permissions: v4.z.array(v4.z.string()) });
+var GET_ROLE_PERMISSIONS_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
+  method: "GET",
+  path: "/auth/roles/:roleId/permissions",
+  requiresAuth: true,
+  responseType: "json",
+  pathParamSchema: rolePermissionsPathSchema,
+  responseSchema: rolePermissionsResponseSchema,
+  summary: "Get permissions for a role",
+  description: 'Returns the resolved permissions for a specific role. Only accessible by admin users. Used by the "View as role" feature.',
+  tags: ["Auth"],
+  handler: async (ctx) => {
+    try {
+      const { mastra, requestContext, roleId } = ctx;
+      const callerPermissions = requestContext?.get(chunk65T6KVYX_cjs.MASTRA_USER_PERMISSIONS_KEY) ?? [];
+      const isAdmin = callerPermissions.some((p) => p === "*" || p === "*:*");
+      if (!isAdmin) {
+        throw new chunk64ITUOXI_cjs.HTTPException(403, { message: "Admin access required" });
+      }
+      const rbac = getRBACProvider(mastra);
+      if (!rbac?.getPermissionsForRole) {
+        throw new chunk64ITUOXI_cjs.HTTPException(404, { message: "RBAC provider does not support role permission resolution" });
+      }
+      const permissions = await rbac.getPermissionsForRole(roleId);
+      return { roleId, permissions };
+    } catch (error) {
+      if (error instanceof chunk64ITUOXI_cjs.HTTPException) throw error;
+      return chunkYNSUYESL_cjs.handleError(error, "Error getting role permissions");
+    }
+  }
+});
 var AUTH_ROUTES = [
   GET_AUTH_CAPABILITIES_ROUTE,
   GET_CURRENT_USER_ROUTE,
@@ -464,12 +497,14 @@ var AUTH_ROUTES = [
   POST_LOGOUT_ROUTE,
   POST_REFRESH_ROUTE,
   POST_CREDENTIALS_SIGN_IN_ROUTE,
-  POST_CREDENTIALS_SIGN_UP_ROUTE
+  POST_CREDENTIALS_SIGN_UP_ROUTE,
+  GET_ROLE_PERMISSIONS_ROUTE
 ];
 
 exports.AUTH_ROUTES = AUTH_ROUTES;
 exports.GET_AUTH_CAPABILITIES_ROUTE = GET_AUTH_CAPABILITIES_ROUTE;
 exports.GET_CURRENT_USER_ROUTE = GET_CURRENT_USER_ROUTE;
+exports.GET_ROLE_PERMISSIONS_ROUTE = GET_ROLE_PERMISSIONS_ROUTE;
 exports.GET_SSO_CALLBACK_ROUTE = GET_SSO_CALLBACK_ROUTE;
 exports.GET_SSO_LOGIN_ROUTE = GET_SSO_LOGIN_ROUTE;
 exports.POST_CREDENTIALS_SIGN_IN_ROUTE = POST_CREDENTIALS_SIGN_IN_ROUTE;
@@ -477,5 +512,5 @@ exports.POST_CREDENTIALS_SIGN_UP_ROUTE = POST_CREDENTIALS_SIGN_UP_ROUTE;
 exports.POST_LOGOUT_ROUTE = POST_LOGOUT_ROUTE;
 exports.POST_REFRESH_ROUTE = POST_REFRESH_ROUTE;
 exports.getPublicOrigin = getPublicOrigin;
-//# sourceMappingURL=chunk-L3WM4IWR.cjs.map
-//# sourceMappingURL=chunk-L3WM4IWR.cjs.map
+//# sourceMappingURL=chunk-DYXX34YU.cjs.map
+//# sourceMappingURL=chunk-DYXX34YU.cjs.map

package/dist/chunk-DYXX34YU.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/server/handlers/auth.ts"],"names":["createPublicRoute","capabilitiesResponseSchema","supportsSessionRefresh","handleError","currentUserResponseSchema","ssoLoginQuerySchema","HTTPException","ssoCallbackQuerySchema","refreshResponseSchema","credentialsSignInBodySchema","credentialsSignUpBodySchema","mastra","z","createRoute","MASTRA_USER_PERMISSIONS_KEY"],"mappings":";;;;;;;;;;AAyCA,IAAI,yBAAA;AACJ,SAAS,qBAAA,GAAkE;AACzE,EAAA,IAAI,CAAC,yBAAA,EAA2B;AAC9B,IAAA,yBAAA,GAA4B,OAAO,sBAAsB,CAAA,CACtD,IAAA,CAAK,OAAK,CAAA,CAAE,iBAAwC,CAAA,CACpD,KAAA,CAAM,MAAM;AACX,MAAA,OAAA,CAAQ,KAAA;AAAA,QACN;AAAA,OACF;AACA,MAAA,OAAO,MAAA;AAAA,IACT,CAAC,CAAA;AAAA,EACL;AACA,EAAA,OAAO,yBAAA;AACT;AAKA,SAAS,gBAAgB,MAAA,EAAwC;AAC/D,EAAA,MAAM,YAAA,GAAe,OAAO,SAAA,IAAY;AACxC,EAAA,IAAI,CAAC,YAAA,EAAc,IAAA,EAAM,OAAO,IAAA;AAIhC,EAAA,IAAI,OAAO,YAAA,CAAa,IAAA,CAAK,iBAAA,KAAsB,UAAA,EAAY;AAC7D,IAAA,OAAO,YAAA,CAAa,IAAA;AAAA,EACtB;AAEA,EAAA,OAAO,IAAA;AACT;AAoBO,SAAS,gBAAgB,OAAA,EAA0B;AACxD,EAAA,MAAM,aAAA,GAAgB,OAAA,CAAQ,OAAA,CAAQ,GAAA,CAAI,kBAAkB,CAAA,EAAG,KAAA,CAAM,GAAG,CAAA,CAAE,CAAC,CAAA,EAAG,IAAA,EAAK;AACnF,EAAA,IAAI,aAAA,EAAe;AACjB,IAAA,OAAO,WAAW,aAAa,CAAA,CAAA;AAAA,EACjC;AAEA,EAAA,MAAM,IAAA,GAAO,OAAA,CAAQ,OAAA,CAAQ,GAAA,CAAI,MAAM,CAAA;AACvC,EAAA,IAAI,IAAA,EAAM;AACR,IAAA,MAAM,cAAA,GAAiB,OAAA,CAAQ,OAAA,CAAQ,GAAA,CAAI,mBAAmB,CAAA,EAAG,KAAA,CAAM,GAAG,CAAA,CAAE,CAAC,CAAA,EAAG,IAAA,EAAK;AACrF,IAAA,MAAM,KAAA,GAAQ,cAAA,IAAkB,IAAI,GAAA,CAAI,OAAA,CAAQ,GAAG,CAAA,CAAE,QAAA,CAAS,OAAA,CAAQ,GAAA,EAAK,EAAE,CAAA;AAC7E,IAAA,OAAO,CAAA,EAAG,KAAK,CAAA,GAAA,EAAM,IAAI,CAAA,CAAA;AAAA,EAC3B;AAEA,EAAA,OAAO,IAAI,GAAA,CAAI,OAAA,CAAQ,GAAG,CAAA,CAAE,MAAA;AAC9B;AAKA,SAAS,gBAAgB,MAAA,EAAgD;AACvE,EAAA,MAAM,YAAA,GAAe,OAAO,SAAA,IAAY;AACxC,EAAA,OAAO,YAAA,EAAc,IAAA;AACvB;AAKA,SAAS,eAAe,MAAA,EAA+C;AACrE,EAAA,MAAM,YAAA,GAAe,OAAO,SAAA,IAAY;AACxC,EAAA,OAAO,YAAA,EAAc,GAAA;AACvB;AAKA,SAAS,mBAAA,CAAuB,MAAe,MAAA,EAA4B;AACzE,EAAA,OAAO,IAAA,KAAS,QAAQ,OAAO,IAAA,KAAS,YAAY,OAAQ,IAAA,CAAa,MAAM,CAAA,KAAM,UAAA;AACvF;AAMO,IAAM,8BAA8BA,mCAAA,CAAkB;AAAA,EAC3D,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,oBAAA;AAAA,EACN,YAAA,EAAc,MAAA;AAAA,EACd,cAAA,EAAgBC,4CAAA;AAAA,EAChB,OAAA,EAAS,uBAAA;AAAA,EACT,WAAA,EACE,2HAAA;AAAA,EACF,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,IAAI;AACF,MAAA,MAAM,EAAE,MAAA,EAAQ,OAAA,EAAS,WAAA,EAAY,GAAI,GAAA;AAEzC,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IAAI,CAAC,IAAA,EAAM;AACT,QAAA,OAAO,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,IAAA,EAAK;AAAA,MACvC;AAEA,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AACnC,MAAA,MAAM,GAAA,GAAM,eAAe,MAAM,CAAA;AAEjC,MAAA,MAAM,iBAAA,GAAoB,MAAM,qBAAA,EAAsB;AACtD,MAAA,IAAI,CAAC,iBAAA,EAAmB;AACtB,QAAA,OAAO,EAAE,OAAA,EAAS,KAAA,EAAO,KAAA,EAAO,IAAA,EAAK;AAAA,MACvC;AACA,MAAA,MAAM,YAAA,GAAe,MAAM,iBAAA,CAAkB,IAAA,EAAM,OAAA,EAAS,EAAE,IAAA,EAAM,GAAA,EAAK,SAAA,EAAW,WAAA,EAAa,CAAA;AAIjG,MAAA,IAAI,EAAE,MAAA,IAAU,YAAA,CAAA,IAAiBC,wCAAA,CAAuB,IAAI,CAAA,EAAG;AAC7D,QAAA,IAAI;AACF,UAAA,MAAM,SAAA,GAAY,MAAM,IAAA,CAAK,uBAAA,CAAwB,OAAO,CAAA;AAC5D,UAAA,IAAI,SAAA,EAAW;AACb,YAAA,MAAM,gBAAA,GAAmB,MAAM,IAAA,CAAK,cAAA,CAAe,SAAS,CAAA;AAC5D,YAAA,IAAI,gBAAA,EAAkB;AACpB,cAAA,MAAM,cAAA,GAAiB,MAAM,IAAA,CAAK,iBAAA,CAAkB,gBAAgB,CAAA;AACpE,cAAA,MAAM,WAAA,GAAc,yBAAyB,cAAc,CAAA;AAC3D,cAAA,IAAI,WAAA,EAAa;AAEf,gBAAA,MAAM,gBAAA,GAAmB,IAAI,OAAA,CAAQ,OAAA,CAAQ,GAAA,EAAK;AAAA,kBAChD,QAAQ,OAAA,CAAQ,MAAA;AAAA,kBAChB,OAAA,EAAS,IAAI,OAAA,CAAQ,OAAA,CAAQ,OAAO;AAAA,iBACrC,CAAA;AACD,gBAAA,gBAAA,CAAiB,OAAA,CAAQ,GAAA,CAAI,QAAA,EAAU,WAAW,CAAA;AAClD,gBAAA,MAAM,qBAAA,GAAwB,MAAM,iBAAA,CAAkB,IAAA,EAAM,gBAAA,EAAkB;AAAA,kBAC5E,IAAA;AAAA,kBACA,SAAA,EAAW;AAAA,iBACZ,CAAA;AAGD,gBAAA,IAAI,UAAU,qBAAA,EAAuB;AACnC,kBAAC,sBAA8B,gBAAA,GAAmB,cAAA;AAAA,gBACpD;AACA,gBAAA,OAAO,qBAAA;AAAA,cACT;AAAA,YACF;AAAA,UACF;AAAA,QACF,CAAA,CAAA,MAAQ;AAAA,QAER;AAAA,MACF;AAEA,MAAA,OAAO,YAAA;AAAA,IACT,SAAS,KAAA,EAAO;AACd,MAAA,OAAOC,6BAAA,CAAY,OAAO,iCAAiC,CAAA;AAAA,IAC7D;AAAA,EACF;AACF,CAAC;AAKD,SAAS,yBAAyB,OAAA,EAAgD;AAChF,EAAA,MAAM,SAAA,GAAY,OAAA,CAAQ,YAAY,CAAA,IAAK,QAAQ,YAAY,CAAA;AAC/D,EAAA,IAAI,CAAC,WAAW,OAAO,IAAA;AAEvB,EAAA,MAAM,KAAA,GAAQ,SAAA,CAAU,KAAA,CAAM,UAAU,CAAA;AACxC,EAAA,OAAO,KAAA,GAAS,KAAA,CAAM,CAAC,CAAA,IAAK,IAAA,GAAQ,IAAA;AACtC;AAMO,IAAM,yBAAyBH,mCAAA,CAAkB;AAAA,EACtD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,UAAA;AAAA,EACN,YAAA,EAAc,MAAA;AAAA,EACd,cAAA,EAAgBI,2CAAA;AAAA,EAChB,OAAA,EAAS,kBAAA;AAAA,EACT,WAAA,EAAa,yEAAA;AAAA,EACb,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,IAAI;AACF,MAAA,MAAM,EAAE,MAAA,EAAQ,OAAA,EAAQ,GAAI,GAAA;AAC5B,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AACnC,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IAAI,CAAC,IAAA,IAAQ,CAAC,mBAAA,CAAmC,IAAA,EAAM,gBAAgB,CAAA,EAAG;AACxE,QAAA,OAAO,IAAA;AAAA,MACT;AAEA,MAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,cAAA,CAAe,OAAO,CAAA;AAC9C,MAAA,IAAI,CAAC,MAAM,OAAO,IAAA;AAGlB,MAAA,IAAI,KAAA;AACJ,MAAA,IAAI,WAAA;AAEJ,MAAA,IAAI,IAAA,EAAM;AACR,QAAA,IAAI;AACF,UAAA,KAAA,GAAQ,MAAM,IAAA,CAAK,QAAA,CAAS,IAAI,CAAA;AAChC,UAAA,WAAA,GAAc,MAAM,IAAA,CAAK,cAAA,CAAe,IAAI,CAAA;AAAA,QAC9C,CAAA,CAAA,MAAQ;AAAA,QAER;AAAA,MACF;AAEA,MAAA,OAAO;AAAA,QACL,IAAI,IAAA,CAAK,EAAA;AAAA,QACT,OAAO,IAAA,CAAK,KAAA;AAAA,QACZ,MAAM,IAAA,CAAK,IAAA;AAAA,QACX,WAAW,IAAA,CAAK,SAAA;AAAA,QAChB,KAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF,SAAS,KAAA,EAAO;AACd,MAAA,OAAOD,6BAAA,CAAY,OAAO,4BAA4B,CAAA;AAAA,IACxD;AAAA,EACF;AACF,CAAC;AAMM,IAAM,sBAAsBH,mCAAA,CAAkB;AAAA,EACnD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,iBAAA;AAAA,EACN,YAAA,EAAc,qBAAA;AAAA,EACd,gBAAA,EAAkBK,qCAAA;AAAA,EAClB,OAAA,EAAS,oBAAA;AAAA,EACT,WAAA,EAAa,4DAAA;AAAA,EACb,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,IAAI;AACF,MAAA,MAAM,EAAE,MAAA,EAAQ,YAAA,EAAc,OAAA,EAAS,aAAY,GAAI,GAAA;AACvD,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IAAI,CAAC,IAAA,IAAQ,CAAC,mBAAA,CAAkC,IAAA,EAAM,aAAa,CAAA,EAAG;AACpE,QAAA,MAAM,IAAIC,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,sBAAsB,CAAA;AAAA,MAChE;AAGA,MAAA,MAAM,MAAA,GAAS,gBAAgB,OAAO,CAAA;AACtC,MAAA,MAAM,GAAA,GAAA,CAAQ,WAAA,IAA0B,MAAA,EAAQ,IAAA,EAAK;AACrD,MAAA,MAAM,YAAY,GAAA,CAAI,UAAA,CAAW,GAAG,CAAA,GAAI,GAAA,GAAM,IAAI,GAAG,CAAA,CAAA;AACrD,MAAA,MAAM,MAAA,GAAS,UAAU,QAAA,CAAS,GAAG,IAAI,SAAA,CAAU,KAAA,CAAM,CAAA,EAAG,EAAE,CAAA,GAAI,SAAA;AAClE,MAAA,MAAM,gBAAA,GAAmB,CAAA,EAAG,MAAM,CAAA,EAAG,MAAM,CAAA,kBAAA,CAAA;AAO3C,MAAA,IAAI,iBAAA,GAAoB,GAAA;AACxB,MAAA,IAAI,YAAA,EAAc;AAChB,QAAA,IAAI,CAAC,YAAA,CAAa,UAAA,CAAW,MAAM,CAAA,EAAG;AAEpC,UAAA,iBAAA,GAAoB,YAAA;AAAA,QACtB,CAAA,MAAO;AACL,UAAA,IAAI;AACF,YAAA,MAAM,WAAA,GAAc,IAAI,GAAA,CAAI,YAAY,CAAA;AACxC,YAAA,MAAM,aAAA,GAAgB,IAAI,GAAA,CAAI,MAAM,CAAA;AACpC,YAAA,MAAM,OAAA,GAAU,WAAA,CAAY,QAAA,KAAa,OAAA,IAAW,YAAY,QAAA,KAAa,QAAA;AAC7E,YAAA,MAAM,YAAA,GAAe,WAAA,CAAY,MAAA,KAAW,aAAA,CAAc,MAAA;AAC1D,YAAA,MAAM,WAAA,GACJ,YAAY,QAAA,KAAa,WAAA,IACzB,YAAY,QAAA,KAAa,WAAA,IACzB,YAAY,QAAA,KAAa,OAAA;AAC3B,YAAA,IAAI,OAAA,KAAY,gBAAgB,WAAA,CAAA,EAAc;AAC5C,cAAA,iBAAA,GAAoB,YAAA;AAAA,YACtB;AAAA,UACF,CAAA,CAAA,MAAQ;AAAA,UAER;AAAA,QACF;AAAA,MACF;AACA,MAAA,MAAM,OAAA,GAAU,OAAO,UAAA,EAAW;AAClC,MAAA,MAAM,QAAQ,CAAA,EAAG,OAAO,CAAA,CAAA,EAAI,kBAAA,CAAmB,iBAAiB,CAAC,CAAA,CAAA;AAEjE,MAAA,MAAM,QAAA,GAAW,IAAA,CAAK,WAAA,CAAY,gBAAA,EAAkB,KAAK,CAAA;AAGzD,MAAA,MAAM,UAAU,IAAI,OAAA,CAAQ,EAAE,cAAA,EAAgB,oBAAoB,CAAA;AAGlE,MAAA,IAAI,mBAAA,CAAkC,IAAA,EAAM,iBAAiB,CAAA,IAAK,KAAK,eAAA,EAAiB;AACtF,QAAA,MAAM,OAAA,GAAU,IAAA,CAAK,eAAA,CAAgB,gBAAA,EAAkB,KAAK,CAAA;AAC5D,QAAA,IAAI,SAAS,MAAA,EAAQ;AAEnB,UAAA,KAAA,MAAW,UAAU,OAAA,EAAS;AAC5B,YAAA,OAAA,CAAQ,MAAA,CAAO,cAAc,MAAM,CAAA;AAAA,UACrC;AAAA,QACF;AAAA,MACF;AAEA,MAAA,OAAO,IAAI,QAAA,CAAS,IAAA,CAAK,SAAA,CAAU,EAAE,GAAA,EAAK,QAAA,EAAU,CAAA,EAAG,EAAE,MAAA,EAAQ,GAAA,EAAK,SAAS,CAAA;AAAA,IACjF,SAAS,KAAA,EAAO;AACd,MAAA,OAAOH,6BAAA,CAAY,OAAO,4BAA4B,CAAA;AAAA,IACxD;AAAA,EACF;AACF,CAAC;AAMM,IAAM,yBAAyBH,mCAAA,CAAkB;AAAA,EACtD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,oBAAA;AAAA,EACN,YAAA,EAAc,qBAAA;AAAA,EACd,gBAAA,EAAkBO,wCAAA;AAAA,EAClB,OAAA,EAAS,qBAAA;AAAA,EACT,WAAA,EAAa,mFAAA;AAAA,EACb,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,MAAM,EAAE,MAAA,EAAQ,IAAA,EAAM,KAAA,EAAO,SAAQ,GAAI,GAAA;AAGzC,IAAA,MAAM,OAAA,GAAU,gBAAgB,OAAO,CAAA;AAGvC,IAAA,IAAI,UAAA,GAAa,GAAA;AACjB,IAAA,IAAI,UAAU,KAAA,IAAS,EAAA;AACvB,IAAA,IAAI,KAAA,IAAS,KAAA,CAAM,QAAA,CAAS,GAAG,CAAA,EAAG;AAChC,MAAA,MAAM,CAAC,EAAA,EAAI,eAAe,IAAI,KAAA,CAAM,KAAA,CAAM,KAAK,CAAC,CAAA;AAChD,MAAA,OAAA,GAAU,EAAA;AACV,MAAA,IAAI;AACF,QAAA,UAAA,GAAa,mBAAmB,eAAe,CAAA;AAAA,MACjD,CAAA,CAAA,MAAQ;AACN,QAAA,UAAA,GAAa,GAAA;AAAA,MACf;AAAA,IACF;AAMA,IAAA,IAAI,gBAAA;AACJ,IAAA,IAAI,UAAA,CAAW,UAAA,CAAW,MAAM,CAAA,EAAG;AACjC,MAAA,IAAI;AACF,QAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,UAAU,CAAA;AACjC,QAAA,MAAM,UAAA,GAAa,IAAI,GAAA,CAAI,OAAO,CAAA;AAClC,QAAA,MAAM,OAAA,GAAU,MAAA,CAAO,QAAA,KAAa,OAAA,IAAW,OAAO,QAAA,KAAa,QAAA;AACnE,QAAA,MAAM,YAAA,GAAe,MAAA,CAAO,MAAA,KAAW,UAAA,CAAW,MAAA;AAClD,QAAA,MAAM,WAAA,GACJ,OAAO,QAAA,KAAa,WAAA,IAAe,OAAO,QAAA,KAAa,WAAA,IAAe,OAAO,QAAA,KAAa,OAAA;AAC5F,QAAA,gBAAA,GAAmB,OAAA,KAAY,YAAA,IAAgB,WAAA,CAAA,GAAe,UAAA,GAAa,GAAG,OAAO,CAAA,CAAA,CAAA;AAAA,MACvF,CAAA,CAAA,MAAQ;AACN,QAAA,gBAAA,GAAmB,GAAG,OAAO,CAAA,CAAA,CAAA;AAAA,MAC/B;AAAA,IACF,CAAA,MAAO;AACL,MAAA,gBAAA,GAAmB,CAAA,EAAG,OAAO,CAAA,EAAG,UAAU,CAAA,CAAA;AAAA,IAC5C;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IAAI,CAAC,IAAA,IAAQ,CAAC,mBAAA,CAAkC,IAAA,EAAM,gBAAgB,CAAA,EAAG;AACvE,QAAA,OAAO,QAAA,CAAS,QAAA,CAAS,CAAA,EAAG,gBAAgB,6BAA6B,GAAG,CAAA;AAAA,MAC9E;AAGA,MAAA,MAAM,eAAA,GAAkB,OAAA,CAAQ,OAAA,CAAQ,GAAA,CAAI,QAAQ,CAAA;AACpD,MAAA,IAAI,OAAQ,IAAA,CAAa,uBAAA,KAA4B,UAAA,EAAY;AAC/D,QAAC,IAAA,CAAa,wBAAwB,eAAe,CAAA;AAAA,MACvD;AAEA,MAAA,MAAM,MAAA,GAAU,MAAM,IAAA,CAAK,cAAA,CAAe,MAAM,OAAO,CAAA;AACvD,MAAA,MAAM,OAAO,MAAA,CAAO,IAAA;AAGpB,MAAA,MAAM,OAAA,GAAU,IAAI,OAAA,EAAQ;AAC5B,MAAA,OAAA,CAAQ,GAAA,CAAI,YAAY,gBAAgB,CAAA;AAGxC,MAAA,IAAI,MAAA,CAAO,SAAS,MAAA,EAAQ;AAC1B,QAAA,KAAA,MAAW,MAAA,IAAU,OAAO,OAAA,EAAS;AACnC,UAAA,OAAA,CAAQ,MAAA,CAAO,cAAc,MAAM,CAAA;AAAA,QACrC;AAAA,MACF,WAAW,mBAAA,CAAsC,IAAA,EAAM,eAAe,CAAA,IAAK,OAAO,MAAA,EAAQ;AAExF,QAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,aAAA,CAAc,KAAK,EAAA,EAAI;AAAA,UAChD,WAAA,EAAa,OAAO,MAAA,CAAO,WAAA;AAAA,UAC3B,YAAA,EAAc,OAAO,MAAA,CAAO,YAAA;AAAA,UAC5B,SAAA,EAAW,OAAO,MAAA,CAAO,SAAA;AAAA,UACzB,gBAAiB,IAAA,CAAa;AAAA,SAC/B,CAAA;AACD,QAAA,MAAM,cAAA,GAAiB,IAAA,CAAK,iBAAA,CAAkB,OAAO,CAAA;AACrD,QAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,cAAc,CAAA,EAAG;AACzD,UAAA,OAAA,CAAQ,MAAA,CAAO,KAAK,KAAK,CAAA;AAAA,QAC3B;AAAA,MACF;AAEA,MAAA,OAAO,IAAI,SAAS,IAAA,EAAM;AAAA,QACxB,MAAA,EAAQ,GAAA;AAAA,QACR;AAAA,OACD,CAAA;AAAA,IACH,SAAS,KAAA,EAAO;AAEd,MAAA,MAAM,eAAe,kBAAA,CAAmB,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,UAAU,eAAe,CAAA;AAChG,MAAA,OAAO,SAAS,QAAA,CAAS,CAAA,EAAG,gBAAgB,CAAA,OAAA,EAAU,YAAY,IAAI,GAAG,CAAA;AAAA,IAC3E;AAAA,EACF;AACF,CAAC;AAMM,IAAM,oBAAoBP,mCAAA,CAAkB;AAAA,EACjD,MAAA,EAAQ,MAAA;AAAA,EACR,IAAA,EAAM,cAAA;AAAA,EACN,YAAA,EAAc,qBAAA;AAAA,EACd,OAAA,EAAS,QAAA;AAAA,EACT,WAAA,EAAa,4EAAA;AAAA,EACb,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,MAAM,EAAE,MAAA,EAAQ,OAAA,EAAQ,GAAI,GAAA;AAE5B,IAAA,IAAI;AACF,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IAAI,CAAC,IAAA,EAAM;AACT,QAAA,OAAO,IAAI,SAAS,IAAA,CAAK,SAAA,CAAU,EAAE,OAAA,EAAS,IAAA,EAAM,CAAA,EAAG;AAAA,UACrD,MAAA,EAAQ,GAAA;AAAA,UACR,OAAA,EAAS,EAAE,cAAA,EAAgB,kBAAA;AAAmB,SAC/C,CAAA;AAAA,MACH;AAGA,MAAA,IAAI,mBAAA,CAAsC,IAAA,EAAM,yBAAyB,CAAA,EAAG;AAC1E,QAAA,MAAM,SAAA,GAAY,IAAA,CAAK,uBAAA,CAAwB,OAAO,CAAA;AACtD,QAAA,IAAI,SAAA,IAAa,mBAAA,CAAsC,IAAA,EAAM,gBAAgB,CAAA,EAAG;AAC9E,UAAA,MAAM,IAAA,CAAK,eAAe,SAAS,CAAA;AAAA,QACrC;AAAA,MACF;AAGA,MAAA,IAAI,UAAA;AACJ,MAAA,IAAI,mBAAA,CAAkC,IAAA,EAAM,cAAc,CAAA,IAAK,KAAK,YAAA,EAAc;AAEhF,QAAA,MAAM,MAAA,GAAS,gBAAgB,OAAO,CAAA;AACtC,QAAA,MAAM,SAAA,GAAY,MAAM,IAAA,CAAK,YAAA,CAAa,QAAQ,OAAO,CAAA;AACzD,QAAA,UAAA,GAAa,SAAA,IAAa,MAAA;AAAA,MAC5B;AAGA,MAAA,MAAM,UAAU,IAAI,OAAA,CAAQ,EAAE,cAAA,EAAgB,oBAAoB,CAAA;AAGlE,MAAA,IAAI,mBAAA,CAAsC,IAAA,EAAM,wBAAwB,CAAA,EAAG;AACzE,QAAA,MAAM,YAAA,GAAe,KAAK,sBAAA,EAAuB;AACjD,QAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,YAAY,CAAA,EAAG;AACvD,UAAA,OAAA,CAAQ,MAAA,CAAO,KAAK,KAAK,CAAA;AAAA,QAC3B;AAAA,MACF;AAEA,MAAA,OAAO,IAAI,SAAS,IAAA,CAAK,SAAA,CAAU,EAAE,OAAA,EAAS,IAAA,EAAM,UAAA,EAAY,CAAA,EAAG;AAAA,QACjE,MAAA,EAAQ,GAAA;AAAA,QACR;AAAA,OACD,CAAA;AAAA,IACH,SAAS,KAAA,EAAO;AACd,MAAA,OAAOG,6BAAA,CAAY,OAAO,mBAAmB,CAAA;AAAA,IAC/C;AAAA,EACF;AACF,CAAC;AAMM,IAAM,qBAAqBH,mCAAA,CAAkB;AAAA,EAClD,MAAA,EAAQ,MAAA;AAAA,EACR,IAAA,EAAM,eAAA;AAAA,EACN,YAAA,EAAc,qBAAA;AAAA,EACd,cAAA,EAAgBQ,uCAAA;AAAA,EAChB,OAAA,EAAS,iBAAA;AAAA,EACT,WAAA,EAAa,4FAAA;AAAA,EACb,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,MAAM,EAAE,MAAA,EAAQ,OAAA,EAAQ,GAAI,GAAA;AAE5B,IAAA,IAAI;AACF,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IACE,CAAC,IAAA,IACD,CAAC,mBAAA,CAAsC,IAAA,EAAM,gBAAgB,CAAA,IAC7D,CAAC,mBAAA,CAAsC,IAAA,EAAM,yBAAyB,CAAA,EACtE;AACA,QAAA,MAAM,IAAIF,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,kCAAkC,CAAA;AAAA,MAC5E;AAGA,MAAA,MAAM,SAAA,GAAY,IAAA,CAAK,uBAAA,CAAwB,OAAO,CAAA;AACtD,MAAA,IAAI,CAAC,SAAA,EAAW;AACd,QAAA,MAAM,IAAIA,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,cAAc,CAAA;AAAA,MACxD;AAGA,MAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,cAAA,CAAe,SAAS,CAAA;AACtD,MAAA,IAAI,CAAC,UAAA,EAAY;AACf,QAAA,MAAM,IAAIA,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,mBAAmB,CAAA;AAAA,MAC7D;AAGA,MAAA,MAAM,UAAU,IAAI,OAAA,CAAQ,EAAE,cAAA,EAAgB,oBAAoB,CAAA;AAClE,MAAA,IAAI,mBAAA,CAAsC,IAAA,EAAM,mBAAmB,CAAA,EAAG;AACpE,QAAA,MAAM,cAAA,GAAiB,IAAA,CAAK,iBAAA,CAAkB,UAAU,CAAA;AACxD,QAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,cAAc,CAAA,EAAG;AACzD,UAAA,OAAA,CAAQ,MAAA,CAAO,KAAK,KAAK,CAAA;AAAA,QAC3B;AAAA,MACF;AAEA,MAAA,OAAO,IAAI,SAAS,IAAA,CAAK,SAAA,CAAU,EAAE,OAAA,EAAS,IAAA,EAAM,CAAA,EAAG;AAAA,QACrD,MAAA,EAAQ,GAAA;AAAA,QACR;AAAA,OACD,CAAA;AAAA,IACH,SAAS,KAAA,EAAO;AACd,MAAA,IAAI,KAAA,YAAiBA,iCAAe,MAAM,KAAA;AAC1C,MAAA,OAAOH,6BAAA,CAAY,OAAO,0BAA0B,CAAA;AAAA,IACtD;AAAA,EACF;AACF,CAAC;AAMM,IAAM,iCAAiCH,mCAAA,CAAkB;AAAA,EAC9D,MAAA,EAAQ,MAAA;AAAA,EACR,IAAA,EAAM,2BAAA;AAAA,EACN,YAAA,EAAc,qBAAA;AAAA,EACd,UAAA,EAAYS,6CAAA;AAAA,EACZ,OAAA,EAAS,0BAAA;AAAA,EACT,WAAA,EAAa,+CAAA;AAAA,EACb,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,MAAM,EAAE,MAAA,EAAQ,OAAA,EAAS,KAAA,EAAO,UAAS,GAAI,GAAA;AAE7C,IAAA,IAAI;AACF,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IAAI,CAAC,IAAA,IAAQ,CAAC,mBAAA,CAA0C,IAAA,EAAM,QAAQ,CAAA,EAAG;AACvE,QAAA,MAAM,IAAIH,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6CAA6C,CAAA;AAAA,MACvF;AAEA,MAAA,MAAM,SAAS,MAAM,IAAA,CAAK,MAAA,CAAO,KAAA,EAAO,UAAU,OAAO,CAAA;AACzD,MAAA,MAAM,OAAO,MAAA,CAAO,IAAA;AAEpB,MAAA,MAAM,YAAA,GAAe,KAAK,SAAA,CAAU;AAAA,QAClC,IAAA,EAAM;AAAA,UACJ,IAAI,IAAA,CAAK,EAAA;AAAA,UACT,OAAO,IAAA,CAAK,KAAA;AAAA,UACZ,MAAM,IAAA,CAAK,IAAA;AAAA,UACX,WAAW,IAAA,CAAK;AAAA,SAClB;AAAA,QACA,OAAO,MAAA,CAAO;AAAA,OACf,CAAA;AAGD,MAAA,MAAM,OAAA,GAAU,IAAI,OAAA,CAAQ;AAAA,QAC1B,cAAA,EAAgB;AAAA,OACjB,CAAA;AAGD,MAAA,IAAI,MAAA,CAAO,SAAS,MAAA,EAAQ;AAC1B,QAAA,KAAA,MAAW,MAAA,IAAU,OAAO,OAAA,EAAS;AACnC,UAAA,OAAA,CAAQ,MAAA,CAAO,cAAc,MAAM,CAAA;AAAA,QACrC;AAAA,MACF;AAEA,MAAA,OAAO,IAAI,QAAA,CAAS,YAAA,EAAc,EAAE,MAAA,EAAQ,GAAA,EAAK,SAAS,CAAA;AAAA,IAC5D,SAAS,KAAA,EAAO;AACd,MAAA,IAAI,KAAA,YAAiBA,iCAAe,MAAM,KAAA;AAE1C,MAAA,MAAM,IAAIA,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6BAA6B,CAAA;AAAA,IACvE;AAAA,EACF;AACF,CAAC;AAMM,IAAM,iCAAiCN,mCAAA,CAAkB;AAAA,EAC9D,MAAA,EAAQ,MAAA;AAAA,EACR,IAAA,EAAM,2BAAA;AAAA,EACN,YAAA,EAAc,qBAAA;AAAA,EACd,UAAA,EAAYU,6CAAA;AAAA,EACZ,OAAA,EAAS,0BAAA;AAAA,EACT,WAAA,EAAa,qDAAA;AAAA,EACb,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,MAAM,EAAE,MAAA,EAAQ,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,MAAK,GAAI,GAAA;AAEnD,IAAA,IAAI;AACF,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AAEnC,MAAA,IAAI,CAAC,IAAA,IAAQ,CAAC,mBAAA,CAA0C,IAAA,EAAM,QAAQ,CAAA,EAAG;AACvE,QAAA,MAAM,IAAIJ,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6CAA6C,CAAA;AAAA,MACvF;AAEA,MAAA,MAAM,SAAS,MAAM,IAAA,CAAK,OAAO,KAAA,EAAO,QAAA,EAAU,MAAM,OAAO,CAAA;AAC/D,MAAA,MAAM,OAAO,MAAA,CAAO,IAAA;AAEpB,MAAA,MAAM,YAAA,GAAe,KAAK,SAAA,CAAU;AAAA,QAClC,IAAA,EAAM;AAAA,UACJ,IAAI,IAAA,CAAK,EAAA;AAAA,UACT,OAAO,IAAA,CAAK,KAAA;AAAA,UACZ,MAAM,IAAA,CAAK,IAAA;AAAA,UACX,WAAW,IAAA,CAAK;AAAA,SAClB;AAAA,QACA,OAAO,MAAA,CAAO;AAAA,OACf,CAAA;AAGD,MAAA,MAAM,OAAA,GAAU,IAAI,OAAA,CAAQ;AAAA,QAC1B,cAAA,EAAgB;AAAA,OACjB,CAAA;AAGD,MAAA,IAAI,MAAA,CAAO,SAAS,MAAA,EAAQ;AAC1B,QAAA,KAAA,MAAW,MAAA,IAAU,OAAO,OAAA,EAAS;AACnC,UAAA,OAAA,CAAQ,MAAA,CAAO,cAAc,MAAM,CAAA;AAAA,QACrC;AAAA,MACF;AAEA,MAAA,OAAO,IAAI,QAAA,CAAS,YAAA,EAAc,EAAE,MAAA,EAAQ,GAAA,EAAK,SAAS,CAAA;AAAA,IAC5D,SAAS,KAAA,EAAO;AACd,MAAA,IAAI,KAAA,YAAiBA,iCAAe,MAAM,KAAA;AAC1C,MAAA,MAAMK,UAAU,GAAA,CAAY,MAAA;AAC5B,MAAAA,OAAAA,EAAQ,SAAA,IAAY,EAAG,KAAA,CAAM,eAAA,EAAiB;AAAA,QAC5C,KAAA,EAAO,KAAA,YAAiB,KAAA,GAAQ,EAAE,OAAA,EAAS,MAAM,OAAA,EAAS,KAAA,EAAO,KAAA,CAAM,KAAA,EAAM,GAAI;AAAA,OAClF,CAAA;AACD,MAAA,MAAM,IAAIL,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,4BAA4B,CAAA;AAAA,IACtE;AAAA,EACF;AACF,CAAC;AAMD,IAAM,yBAAA,GAA4BM,KAAE,MAAA,CAAO,EAAE,QAAQA,IAAA,CAAE,MAAA,IAAU,CAAA;AACjE,IAAM,6BAAA,GAAgCA,IAAA,CAAE,MAAA,CAAO,EAAE,QAAQA,IAAA,CAAE,MAAA,EAAO,EAAG,WAAA,EAAaA,KAAE,KAAA,CAAMA,IAAA,CAAE,MAAA,EAAQ,GAAG,CAAA;AAEhG,IAAM,6BAA6BC,6BAAA,CAAY;AAAA,EACpD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,iCAAA;AAAA,EACN,YAAA,EAAc,IAAA;AAAA,EACd,YAAA,EAAc,MAAA;AAAA,EACd,eAAA,EAAiB,yBAAA;AAAA,EACjB,cAAA,EAAgB,6BAAA;AAAA,EAChB,OAAA,EAAS,4BAAA;AAAA,EACT,WAAA,EACE,2HAAA;AAAA,EACF,IAAA,EAAM,CAAC,MAAM,CAAA;AAAA,EACb,OAAA,EAAS,OAAM,GAAA,KAAO;AACpB,IAAA,IAAI;AACF,MAAA,MAAM,EAAE,MAAA,EAAQ,cAAA,EAAgB,MAAA,EAAO,GAAI,GAAA;AAG3C,MAAA,MAAM,iBAAA,GAA8B,cAAA,EAAgB,GAAA,CAAIC,6CAA2B,KAAK,EAAC;AACzF,MAAA,MAAM,OAAA,GAAU,kBAAkB,IAAA,CAAK,CAAC,MAAc,CAAA,KAAM,GAAA,IAAO,MAAM,KAAK,CAAA;AAC9E,MAAA,IAAI,CAAC,OAAA,EAAS;AACZ,QAAA,MAAM,IAAIR,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,yBAAyB,CAAA;AAAA,MACnE;AAEA,MAAA,MAAM,IAAA,GAAO,gBAAgB,MAAM,CAAA;AACnC,MAAA,IAAI,CAAC,MAAM,qBAAA,EAAuB;AAChC,QAAA,MAAM,IAAIA,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6DAA6D,CAAA;AAAA,MACvG;AAEA,MAAA,MAAM,WAAA,GAAc,MAAM,IAAA,CAAK,qBAAA,CAAsB,MAAM,CAAA;AAC3D,MAAA,OAAO,EAAE,QAAQ,WAAA,EAAY;AAAA,IAC/B,SAAS,KAAA,EAAO;AACd,MAAA,IAAI,KAAA,YAAiBA,iCAAe,MAAM,KAAA;AAC1C,MAAA,OAAOH,6BAAA,CAAY,OAAO,gCAAgC,CAAA;AAAA,IAC5D;AAAA,EACF;AACF,CAAC;AAMM,IAAM,WAAA,GAAc;AAAA,EACzB,2BAAA;AAAA,EACA,sBAAA;AAAA,EACA,mBAAA;AAAA,EACA,sBAAA;AAAA,EACA,iBAAA;AAAA,EACA,kBAAA;AAAA,EACA,8BAAA;AAAA,EACA,8BAAA;AAAA,EACA;AACF","file":"chunk-DYXX34YU.cjs","sourcesContent":["/**\n * Auth handlers for EE authentication capabilities.\n *\n * These routes enable Studio to:\n * - Detect available auth capabilities\n * - Initiate SSO login flows\n * - Handle OAuth callbacks\n * - Logout users\n */\n\nimport type {\n  IUserProvider,\n  ISessionProvider,\n  ISSOProvider,\n  ICredentialsProvider,\n  SSOCallbackResult,\n} from '@mastra/core/auth';\nimport type { IRBACProvider, IFGAProvider, EEUser } from '@mastra/core/auth/ee';\nimport type { MastraAuthProvider } from '@mastra/core/server';\n\nimport { z } from 'zod/v4';\nimport { supportsSessionRefresh } from '../auth/helpers';\nimport { MASTRA_USER_PERMISSIONS_KEY } from '../constants';\nimport { HTTPException } from '../http-exception';\nimport {\n  capabilitiesResponseSchema,\n  ssoLoginQuerySchema,\n  ssoCallbackQuerySchema,\n  currentUserResponseSchema,\n  credentialsSignInBodySchema,\n  credentialsSignUpBodySchema,\n  refreshResponseSchema,\n} from '../schemas/auth';\nimport { createPublicRoute, createRoute } from '../server-adapter/routes/route-builder';\nimport { handleError } from './error';\n\ntype BuildCapabilitiesFn = (\n  auth: any,\n  request: Request,\n  options?: { rbac?: any; fga?: any; apiPrefix?: string },\n) => Promise<any>;\nlet _buildCapabilitiesPromise: Promise<BuildCapabilitiesFn | undefined> | undefined;\nfunction loadBuildCapabilities(): Promise<BuildCapabilitiesFn | undefined> {\n  if (!_buildCapabilitiesPromise) {\n    _buildCapabilitiesPromise = import('@mastra/core/auth/ee')\n      .then(m => m.buildCapabilities as BuildCapabilitiesFn)\n      .catch(() => {\n        console.error(\n          '[@mastra/server] EE auth features require @mastra/core >= 1.6.0. Please upgrade: npm install @mastra/core@latest',\n        );\n        return undefined;\n      });\n  }\n  return _buildCapabilitiesPromise;\n}\n\n/**\n * Helper to get auth provider from Mastra instance.\n */\nfunction getAuthProvider(mastra: any): MastraAuthProvider | null {\n  const serverConfig = mastra.getServer?.();\n  if (!serverConfig?.auth) return null;\n\n  // Auth can be either MastraAuthConfig or MastraAuthProvider\n  // If it has authenticateToken method, it's a provider\n  if (typeof serverConfig.auth.authenticateToken === 'function') {\n    return serverConfig.auth as MastraAuthProvider;\n  }\n\n  return null;\n}\n\n/**\n * Get the public-facing origin from a request, respecting reverse proxy headers.\n * Behind a proxy (e.g. edge router), request.url contains the internal hostname,\n * so we rely on forwarded headers to reconstruct the real public origin.\n *\n * Assumes the server is behind a trusted proxy (or running locally). When\n * exposed directly to untrusted clients, the Host header is attacker-controlled\n * and must be validated upstream.\n *\n * Priority:\n * 1. X-Forwarded-Host (traditional reverse proxy) → always HTTPS. Knative's\n *    queue-proxy overwrites X-Forwarded-Proto based on the internal HTTP\n *    connection, so X-Forwarded-Proto is ignored here.\n * 2. Host header with X-Forwarded-Proto (AWS ALB, some proxies) → respect proto.\n * 3. Host header alone → use the scheme from request.url (covers both direct\n *    HTTP access and proxies that preserve Host but don't set a proto header).\n * 4. No Host header → fall back to request.url.origin (local dev / direct access).\n */\nexport function getPublicOrigin(request: Request): string {\n  const forwardedHost = request.headers.get('x-forwarded-host')?.split(',')[0]?.trim();\n  if (forwardedHost) {\n    return `https://${forwardedHost}`;\n  }\n\n  const host = request.headers.get('host');\n  if (host) {\n    const forwardedProto = request.headers.get('x-forwarded-proto')?.split(',')[0]?.trim();\n    const proto = forwardedProto || new URL(request.url).protocol.replace(':', '');\n    return `${proto}://${host}`;\n  }\n\n  return new URL(request.url).origin;\n}\n\n/**\n * Helper to get RBAC provider from Mastra server config.\n */\nfunction getRBACProvider(mastra: any): IRBACProvider<EEUser> | undefined {\n  const serverConfig = mastra.getServer?.();\n  return serverConfig?.rbac as IRBACProvider<EEUser> | undefined;\n}\n\n/**\n * Helper to get FGA provider from Mastra server config.\n */\nfunction getFGAProvider(mastra: any): IFGAProvider<EEUser> | undefined {\n  const serverConfig = mastra.getServer?.();\n  return serverConfig?.fga as IFGAProvider<EEUser> | undefined;\n}\n\n/**\n * Type guard to check if auth provider implements an interface.\n */\nfunction implementsInterface<T>(auth: unknown, method: keyof T): auth is T {\n  return auth !== null && typeof auth === 'object' && typeof (auth as any)[method] === 'function';\n}\n\n// ============================================================================\n// GET /auth/capabilities\n// ============================================================================\n\nexport const GET_AUTH_CAPABILITIES_ROUTE = createPublicRoute({\n  method: 'GET',\n  path: '/auth/capabilities',\n  responseType: 'json',\n  responseSchema: capabilitiesResponseSchema,\n  summary: 'Get auth capabilities',\n  description:\n    'Returns authentication capabilities and current user info. Used by Studio to determine available features and user state.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    try {\n      const { mastra, request, routePrefix } = ctx as any;\n\n      const auth = getAuthProvider(mastra);\n\n      if (!auth) {\n        return { enabled: false, login: null };\n      }\n\n      const rbac = getRBACProvider(mastra);\n      const fga = getFGAProvider(mastra);\n\n      const buildCapabilities = await loadBuildCapabilities();\n      if (!buildCapabilities) {\n        return { enabled: false, login: null };\n      }\n      const capabilities = await buildCapabilities(auth, request, { rbac, fga, apiPrefix: routePrefix });\n\n      // If capabilities came back without a user, the session may have expired.\n      // Attempt a transparent refresh (same logic as coreAuthMiddleware) and retry.\n      if (!('user' in capabilities) && supportsSessionRefresh(auth)) {\n        try {\n          const sessionId = await auth.getSessionIdFromRequest(request);\n          if (sessionId) {\n            const refreshedSession = await auth.refreshSession(sessionId);\n            if (refreshedSession) {\n              const sessionHeaders = await auth.getSessionHeaders(refreshedSession);\n              const cookieValue = extractCookieFromHeaders(sessionHeaders);\n              if (cookieValue) {\n                // Rebuild capabilities with the refreshed cookie\n                const refreshedRequest = new Request(request.url, {\n                  method: request.method,\n                  headers: new Headers(request.headers),\n                });\n                refreshedRequest.headers.set('Cookie', cookieValue);\n                const refreshedCapabilities = await buildCapabilities(auth, refreshedRequest, {\n                  rbac,\n                  apiPrefix: routePrefix,\n                });\n\n                // Attach refresh headers so the adapter can set the new cookie\n                if ('user' in refreshedCapabilities) {\n                  (refreshedCapabilities as any).__refreshHeaders = sessionHeaders;\n                }\n                return refreshedCapabilities;\n              }\n            }\n          }\n        } catch {\n          // Refresh failed — return original unauthenticated capabilities\n        }\n      }\n\n      return capabilities;\n    } catch (error) {\n      return handleError(error, 'Error getting auth capabilities');\n    }\n  },\n});\n\n/**\n * Extract a full cookie string from session headers (e.g. Set-Cookie → Cookie).\n */\nfunction extractCookieFromHeaders(headers: Record<string, string>): string | null {\n  const setCookie = headers['Set-Cookie'] || headers['set-cookie'];\n  if (!setCookie) return null;\n  // Set-Cookie value is \"name=value; Path=/; ...\" — extract \"name=value\"\n  const match = setCookie.match(/^([^;]+)/);\n  return match ? (match[1] ?? null) : null;\n}\n\n// ============================================================================\n// GET /auth/me\n// ============================================================================\n\nexport const GET_CURRENT_USER_ROUTE = createPublicRoute({\n  method: 'GET',\n  path: '/auth/me',\n  responseType: 'json',\n  responseSchema: currentUserResponseSchema,\n  summary: 'Get current user',\n  description: 'Returns the currently authenticated user, or null if not authenticated.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    try {\n      const { mastra, request } = ctx as any;\n      const auth = getAuthProvider(mastra);\n      const rbac = getRBACProvider(mastra);\n\n      if (!auth || !implementsInterface<IUserProvider>(auth, 'getCurrentUser')) {\n        return null;\n      }\n\n      const user = await auth.getCurrentUser(request);\n      if (!user) return null;\n\n      // Get roles/permissions from RBAC provider if available\n      let roles: string[] | undefined;\n      let permissions: string[] | undefined;\n\n      if (rbac) {\n        try {\n          roles = await rbac.getRoles(user);\n          permissions = await rbac.getPermissions(user);\n        } catch {\n          // RBAC not available or failed\n        }\n      }\n\n      return {\n        id: user.id,\n        email: user.email,\n        name: user.name,\n        avatarUrl: user.avatarUrl,\n        roles,\n        permissions,\n      };\n    } catch (error) {\n      return handleError(error, 'Error getting current user');\n    }\n  },\n});\n\n// ============================================================================\n// GET /auth/sso/login\n// ============================================================================\n\nexport const GET_SSO_LOGIN_ROUTE = createPublicRoute({\n  method: 'GET',\n  path: '/auth/sso/login',\n  responseType: 'datastream-response',\n  queryParamSchema: ssoLoginQuerySchema,\n  summary: 'Initiate SSO login',\n  description: 'Returns the SSO login URL and sets PKCE cookies if needed.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    try {\n      const { mastra, redirect_uri, request, routePrefix } = ctx as any;\n      const auth = getAuthProvider(mastra);\n\n      if (!auth || !implementsInterface<ISSOProvider>(auth, 'getLoginUrl')) {\n        throw new HTTPException(404, { message: 'SSO not configured' });\n      }\n\n      // Build OAuth callback URI using the configured route prefix\n      const origin = getPublicOrigin(request);\n      const raw = ((routePrefix as string) || '/api').trim();\n      const withSlash = raw.startsWith('/') ? raw : `/${raw}`;\n      const prefix = withSlash.endsWith('/') ? withSlash.slice(0, -1) : withSlash;\n      const oauthCallbackUri = `${origin}${prefix}/auth/sso/callback`;\n\n      // Encode the post-login redirect in state (where user goes after auth completes)\n      // State format: uuid|postLoginRedirect\n      // Validate redirect_uri to prevent open-redirect attacks: allow relative paths,\n      // same-origin URLs, and localhost URLs (for dev setups where Studio runs on a\n      // different port).\n      let postLoginRedirect = '/';\n      if (redirect_uri) {\n        if (!redirect_uri.startsWith('http')) {\n          // Relative path — always safe\n          postLoginRedirect = redirect_uri;\n        } else {\n          try {\n            const redirectUrl = new URL(redirect_uri);\n            const requestOrigin = new URL(origin);\n            const isHttps = redirectUrl.protocol === 'http:' || redirectUrl.protocol === 'https:';\n            const isSameOrigin = redirectUrl.origin === requestOrigin.origin;\n            const isLocalhost =\n              redirectUrl.hostname === 'localhost' ||\n              redirectUrl.hostname === '127.0.0.1' ||\n              redirectUrl.hostname === '[::1]';\n            if (isHttps && (isSameOrigin || isLocalhost)) {\n              postLoginRedirect = redirect_uri;\n            }\n          } catch {\n            // Malformed URL — fall back to /\n          }\n        }\n      }\n      const stateId = crypto.randomUUID();\n      const state = `${stateId}|${encodeURIComponent(postLoginRedirect)}`;\n\n      const loginUrl = auth.getLoginUrl(oauthCallbackUri, state);\n\n      // Build response with optional PKCE cookies\n      const headers = new Headers({ 'Content-Type': 'application/json' });\n\n      // Check for PKCE cookies (e.g., MastraCloudAuthProvider)\n      if (implementsInterface<ISSOProvider>(auth, 'getLoginCookies') && auth.getLoginCookies) {\n        const cookies = auth.getLoginCookies(oauthCallbackUri, state);\n        if (cookies?.length) {\n          // PKCE cookies set for SSO state management\n          for (const cookie of cookies) {\n            headers.append('Set-Cookie', cookie);\n          }\n        }\n      }\n\n      return new Response(JSON.stringify({ url: loginUrl }), { status: 200, headers });\n    } catch (error) {\n      return handleError(error, 'Error initiating SSO login');\n    }\n  },\n});\n\n// ============================================================================\n// GET /auth/sso/callback\n// ============================================================================\n\nexport const GET_SSO_CALLBACK_ROUTE = createPublicRoute({\n  method: 'GET',\n  path: '/auth/sso/callback',\n  responseType: 'datastream-response',\n  queryParamSchema: ssoCallbackQuerySchema,\n  summary: 'Handle SSO callback',\n  description: 'Handles the OAuth callback, exchanges code for session, and redirects to the app.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    const { mastra, code, state, request } = ctx as any;\n\n    // Build base URL for redirects (Response.redirect requires absolute URL)\n    const baseUrl = getPublicOrigin(request);\n\n    // Extract post-login redirect from state (format: uuid|encodedRedirect)\n    let redirectTo = '/';\n    let stateId = state || '';\n    if (state && state.includes('|')) {\n      const [id, encodedRedirect] = state.split('|', 2);\n      stateId = id;\n      try {\n        redirectTo = decodeURIComponent(encodedRedirect);\n      } catch {\n        redirectTo = '/';\n      }\n    }\n\n    // Build absolute redirect URL.\n    // The redirect_uri was validated at the login endpoint (same-origin or localhost\n    // only), so the state should only contain safe URLs. We still apply defense-in-depth\n    // checks here: allow http(s) same-origin or localhost, reject everything else.\n    let absoluteRedirect: string;\n    if (redirectTo.startsWith('http')) {\n      try {\n        const parsed = new URL(redirectTo);\n        const baseOrigin = new URL(baseUrl);\n        const isHttps = parsed.protocol === 'http:' || parsed.protocol === 'https:';\n        const isSameOrigin = parsed.origin === baseOrigin.origin;\n        const isLocalhost =\n          parsed.hostname === 'localhost' || parsed.hostname === '127.0.0.1' || parsed.hostname === '[::1]';\n        absoluteRedirect = isHttps && (isSameOrigin || isLocalhost) ? redirectTo : `${baseUrl}/`;\n      } catch {\n        absoluteRedirect = `${baseUrl}/`;\n      }\n    } else {\n      absoluteRedirect = `${baseUrl}${redirectTo}`;\n    }\n\n    try {\n      const auth = getAuthProvider(mastra);\n\n      if (!auth || !implementsInterface<ISSOProvider>(auth, 'handleCallback')) {\n        return Response.redirect(`${absoluteRedirect}?error=sso_not_configured`, 302);\n      }\n\n      // Pass cookie header to provider for PKCE validation (if supported)\n      const reqCookieHeader = request.headers.get('cookie');\n      if (typeof (auth as any).setCallbackCookieHeader === 'function') {\n        (auth as any).setCallbackCookieHeader(reqCookieHeader);\n      }\n\n      const result = (await auth.handleCallback(code, stateId)) as SSOCallbackResult<EEUser>;\n      const user = result.user as EEUser;\n\n      // Build response headers (session cookies, etc.)\n      const headers = new Headers();\n      headers.set('Location', absoluteRedirect);\n\n      // Set session cookies from the SSO result\n      if (result.cookies?.length) {\n        for (const cookie of result.cookies) {\n          headers.append('Set-Cookie', cookie);\n        }\n      } else if (implementsInterface<ISessionProvider>(auth, 'createSession') && result.tokens) {\n        // Fallback: Create session manually for providers without cookie support\n        const session = await auth.createSession(user.id, {\n          accessToken: result.tokens.accessToken,\n          refreshToken: result.tokens.refreshToken,\n          expiresAt: result.tokens.expiresAt,\n          organizationId: (user as any).organizationId,\n        });\n        const sessionHeaders = auth.getSessionHeaders(session);\n        for (const [key, value] of Object.entries(sessionHeaders)) {\n          headers.append(key, value);\n        }\n      }\n\n      return new Response(null, {\n        status: 302,\n        headers,\n      });\n    } catch (error) {\n      // Redirect with error (use absolute URL)\n      const errorMessage = encodeURIComponent(error instanceof Error ? error.message : 'Unknown error');\n      return Response.redirect(`${absoluteRedirect}?error=${errorMessage}`, 302);\n    }\n  },\n});\n\n// ============================================================================\n// POST /auth/logout\n// ============================================================================\n\nexport const POST_LOGOUT_ROUTE = createPublicRoute({\n  method: 'POST',\n  path: '/auth/logout',\n  responseType: 'datastream-response',\n  summary: 'Logout',\n  description: 'Destroys the current session and returns logout redirect URL if available.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    const { mastra, request } = ctx as any;\n\n    try {\n      const auth = getAuthProvider(mastra);\n\n      if (!auth) {\n        return new Response(JSON.stringify({ success: true }), {\n          status: 200,\n          headers: { 'Content-Type': 'application/json' },\n        });\n      }\n\n      // Get session ID and destroy it\n      if (implementsInterface<ISessionProvider>(auth, 'getSessionIdFromRequest')) {\n        const sessionId = auth.getSessionIdFromRequest(request);\n        if (sessionId && implementsInterface<ISessionProvider>(auth, 'destroySession')) {\n          await auth.destroySession(sessionId);\n        }\n      }\n\n      // Get logout URL if available\n      let redirectTo: string | undefined;\n      if (implementsInterface<ISSOProvider>(auth, 'getLogoutUrl') && auth.getLogoutUrl) {\n        // Use public origin (respects X-Forwarded-Host behind reverse proxy)\n        const origin = getPublicOrigin(request);\n        const logoutUrl = await auth.getLogoutUrl(origin, request);\n        redirectTo = logoutUrl ?? undefined;\n      }\n\n      // Build response with session clearing headers\n      const headers = new Headers({ 'Content-Type': 'application/json' });\n\n      // Clear session cookie\n      if (implementsInterface<ISessionProvider>(auth, 'getClearSessionHeaders')) {\n        const clearHeaders = auth.getClearSessionHeaders();\n        for (const [key, value] of Object.entries(clearHeaders)) {\n          headers.append(key, value);\n        }\n      }\n\n      return new Response(JSON.stringify({ success: true, redirectTo }), {\n        status: 200,\n        headers,\n      });\n    } catch (error) {\n      return handleError(error, 'Error logging out');\n    }\n  },\n});\n\n// ============================================================================\n// POST /auth/refresh\n// ============================================================================\n\nexport const POST_REFRESH_ROUTE = createPublicRoute({\n  method: 'POST',\n  path: '/auth/refresh',\n  responseType: 'datastream-response',\n  responseSchema: refreshResponseSchema,\n  summary: 'Refresh session',\n  description: 'Refreshes the current session, extending its expiry. Sets a new session cookie on success.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    const { mastra, request } = ctx as any;\n\n    try {\n      const auth = getAuthProvider(mastra);\n\n      if (\n        !auth ||\n        !implementsInterface<ISessionProvider>(auth, 'refreshSession') ||\n        !implementsInterface<ISessionProvider>(auth, 'getSessionIdFromRequest')\n      ) {\n        throw new HTTPException(404, { message: 'Session refresh not configured' });\n      }\n\n      // Get session ID from request\n      const sessionId = auth.getSessionIdFromRequest(request);\n      if (!sessionId) {\n        throw new HTTPException(401, { message: 'No session' });\n      }\n\n      // Refresh the session\n      const newSession = await auth.refreshSession(sessionId);\n      if (!newSession) {\n        throw new HTTPException(401, { message: 'Session expired' });\n      }\n\n      // Build response with new session headers\n      const headers = new Headers({ 'Content-Type': 'application/json' });\n      if (implementsInterface<ISessionProvider>(auth, 'getSessionHeaders')) {\n        const sessionHeaders = auth.getSessionHeaders(newSession);\n        for (const [key, value] of Object.entries(sessionHeaders)) {\n          headers.append(key, value);\n        }\n      }\n\n      return new Response(JSON.stringify({ success: true }), {\n        status: 200,\n        headers,\n      });\n    } catch (error) {\n      if (error instanceof HTTPException) throw error;\n      return handleError(error, 'Error refreshing session');\n    }\n  },\n});\n\n// ============================================================================\n// POST /auth/credentials/sign-in\n// ============================================================================\n\nexport const POST_CREDENTIALS_SIGN_IN_ROUTE = createPublicRoute({\n  method: 'POST',\n  path: '/auth/credentials/sign-in',\n  responseType: 'datastream-response',\n  bodySchema: credentialsSignInBodySchema,\n  summary: 'Sign in with credentials',\n  description: 'Authenticates a user with email and password.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    const { mastra, request, email, password } = ctx as any;\n\n    try {\n      const auth = getAuthProvider(mastra);\n\n      if (!auth || !implementsInterface<ICredentialsProvider>(auth, 'signIn')) {\n        throw new HTTPException(404, { message: 'Credentials authentication not configured' });\n      }\n\n      const result = await auth.signIn(email, password, request);\n      const user = result.user as EEUser;\n\n      const responseBody = JSON.stringify({\n        user: {\n          id: user.id,\n          email: user.email,\n          name: user.name,\n          avatarUrl: user.avatarUrl,\n        },\n        token: result.token,\n      });\n\n      // Build response headers, including cookies from the auth provider\n      const headers = new Headers({\n        'Content-Type': 'application/json',\n      });\n\n      // Forward session cookies from the auth provider\n      if (result.cookies?.length) {\n        for (const cookie of result.cookies) {\n          headers.append('Set-Cookie', cookie);\n        }\n      }\n\n      return new Response(responseBody, { status: 200, headers });\n    } catch (error) {\n      if (error instanceof HTTPException) throw error;\n      // Return a generic error for auth failures to avoid leaking info\n      throw new HTTPException(401, { message: 'Invalid email or password' });\n    }\n  },\n});\n\n// ============================================================================\n// POST /auth/credentials/sign-up\n// ============================================================================\n\nexport const POST_CREDENTIALS_SIGN_UP_ROUTE = createPublicRoute({\n  method: 'POST',\n  path: '/auth/credentials/sign-up',\n  responseType: 'datastream-response',\n  bodySchema: credentialsSignUpBodySchema,\n  summary: 'Sign up with credentials',\n  description: 'Creates a new user account with email and password.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    const { mastra, request, email, password, name } = ctx as any;\n\n    try {\n      const auth = getAuthProvider(mastra);\n\n      if (!auth || !implementsInterface<ICredentialsProvider>(auth, 'signUp')) {\n        throw new HTTPException(404, { message: 'Credentials authentication not configured' });\n      }\n\n      const result = await auth.signUp(email, password, name, request);\n      const user = result.user as EEUser;\n\n      const responseBody = JSON.stringify({\n        user: {\n          id: user.id,\n          email: user.email,\n          name: user.name,\n          avatarUrl: user.avatarUrl,\n        },\n        token: result.token,\n      });\n\n      // Build response headers, including cookies from the auth provider\n      const headers = new Headers({\n        'Content-Type': 'application/json',\n      });\n\n      // Forward session cookies from the auth provider\n      if (result.cookies?.length) {\n        for (const cookie of result.cookies) {\n          headers.append('Set-Cookie', cookie);\n        }\n      }\n\n      return new Response(responseBody, { status: 200, headers });\n    } catch (error) {\n      if (error instanceof HTTPException) throw error;\n      const mastra = (ctx as any).mastra;\n      mastra?.getLogger?.()?.error('Sign-up error', {\n        error: error instanceof Error ? { message: error.message, stack: error.stack } : error,\n      });\n      throw new HTTPException(400, { message: 'Failed to create account' });\n    }\n  },\n});\n\n// ============================================================================\n// GET /auth/roles/:roleId/permissions\n// ============================================================================\n\nconst rolePermissionsPathSchema = z.object({ roleId: z.string() });\nconst rolePermissionsResponseSchema = z.object({ roleId: z.string(), permissions: z.array(z.string()) });\n\nexport const GET_ROLE_PERMISSIONS_ROUTE = createRoute({\n  method: 'GET',\n  path: '/auth/roles/:roleId/permissions',\n  requiresAuth: true,\n  responseType: 'json',\n  pathParamSchema: rolePermissionsPathSchema,\n  responseSchema: rolePermissionsResponseSchema,\n  summary: 'Get permissions for a role',\n  description:\n    'Returns the resolved permissions for a specific role. Only accessible by admin users. Used by the \"View as role\" feature.',\n  tags: ['Auth'],\n  handler: async ctx => {\n    try {\n      const { mastra, requestContext, roleId } = ctx as any;\n\n      // Check that the caller is an admin\n      const callerPermissions: string[] = requestContext?.get(MASTRA_USER_PERMISSIONS_KEY) ?? [];\n      const isAdmin = callerPermissions.some((p: string) => p === '*' || p === '*:*');\n      if (!isAdmin) {\n        throw new HTTPException(403, { message: 'Admin access required' });\n      }\n\n      const rbac = getRBACProvider(mastra);\n      if (!rbac?.getPermissionsForRole) {\n        throw new HTTPException(404, { message: 'RBAC provider does not support role permission resolution' });\n      }\n\n      const permissions = await rbac.getPermissionsForRole(roleId);\n      return { roleId, permissions };\n    } catch (error) {\n      if (error instanceof HTTPException) throw error;\n      return handleError(error, 'Error getting role permissions');\n    }\n  },\n});\n\n// ============================================================================\n// Export all auth routes\n// ============================================================================\n\nexport const AUTH_ROUTES = [\n  GET_AUTH_CAPABILITIES_ROUTE,\n  GET_CURRENT_USER_ROUTE,\n  GET_SSO_LOGIN_ROUTE,\n  GET_SSO_CALLBACK_ROUTE,\n  POST_LOGOUT_ROUTE,\n  POST_REFRESH_ROUTE,\n  POST_CREDENTIALS_SIGN_IN_ROUTE,\n  POST_CREDENTIALS_SIGN_UP_ROUTE,\n  GET_ROLE_PERMISSIONS_ROUTE,\n] as const;\n"]}

package/dist/{chunk-DZWFQD53.cjs → chunk-EAPGRYRG.cjs}

@@ -1,6 +1,6 @@
 'use strict';
 
-var chunkAZORAK4H_cjs = require('./chunk-AZORAK4H.cjs');
+var chunkXTFWFQZ7_cjs = require('./chunk-XTFWFQZ7.cjs');
 var chunk64ITUOXI_cjs = require('./chunk-64ITUOXI.cjs');
 var zod = require('zod');
 
@@ -67,7 +67,7 @@ var listBackgroundTaskResponseSchema = zod.z.object({
 var backgroundTaskStreamResponseSchema = zod.z.any();
 
 // src/server/handlers/background-tasks.ts
-var BACKGROUND_TASK_STREAM_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var BACKGROUND_TASK_STREAM_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "GET",
   path: "/background-tasks/stream",
   responseType: "stream",
@@ -95,7 +95,7 @@ var BACKGROUND_TASK_STREAM_ROUTE = chunkAZORAK4H_cjs.createRoute({
     return bgManager.stream({ agentId, runId, threadId, resourceId, taskId, abortSignal });
   }
 });
-var LIST_BACKGROUND_TASKS_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var LIST_BACKGROUND_TASKS_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "GET",
   path: "/background-tasks",
   responseType: "json",
@@ -113,7 +113,7 @@ var LIST_BACKGROUND_TASKS_ROUTE = chunkAZORAK4H_cjs.createRoute({
     return bgManager.listTasks(params);
   }
 });
-var GET_BACKGROUND_TASK_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var GET_BACKGROUND_TASK_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "GET",
   path: "/background-tasks/:backgroundTaskId",
   responseType: "json",
@@ -139,5 +139,5 @@ var GET_BACKGROUND_TASK_ROUTE = chunkAZORAK4H_cjs.createRoute({
 exports.BACKGROUND_TASK_STREAM_ROUTE = BACKGROUND_TASK_STREAM_ROUTE;
 exports.GET_BACKGROUND_TASK_ROUTE = GET_BACKGROUND_TASK_ROUTE;
 exports.LIST_BACKGROUND_TASKS_ROUTE = LIST_BACKGROUND_TASKS_ROUTE;
-//# sourceMappingURL=chunk-DZWFQD53.cjs.map
-//# sourceMappingURL=chunk-DZWFQD53.cjs.map
+//# sourceMappingURL=chunk-EAPGRYRG.cjs.map
+//# sourceMappingURL=chunk-EAPGRYRG.cjs.map

package/dist/{chunk-DZWFQD53.cjs.map → chunk-EAPGRYRG.cjs.map}

@@ -1 +1 @@
-{"version":3,"sources":["../src/server/schemas/background-tasks.ts","../src/server/handlers/background-tasks.ts"],"names":["z","createRoute","HTTPException"],"mappings":";;;;;;AAEO,IAAM,0BAAA,GAA6BA,MAAE,IAAA,CAAK;AAAA,EAC/C,SAAA;AAAA,EACA,SAAA;AAAA,EACA,WAAA;AAAA,EACA,WAAA;AAAA,EACA,QAAA;AAAA,EACA,WAAA;AAAA,EACA;AACF,CAAC,CAAA;AAEM,IAAM,+BAAA,GAAkCA,MAAE,MAAA,CAAO;AAAA,EACtD,OAAA,EAASA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,MAAA,EAAQA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACrB,CAAC,CAAA;AAEM,IAAM,8BAAA,GAAiCA,MAAE,IAAA,CAAK,CAAC,aAAa,WAAA,EAAa,aAAA,EAAe,aAAa,CAAC,CAAA;AAEtG,IAAM,8BAAA,GAAiCA,MAAE,MAAA,CAAO;AAAA,EACrD,OAAA,EAASA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,MAAA,EAAQ,2BAA2B,QAAA,EAAS;AAAA,EAC5C,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,QAAA,EAAUA,KAAA,CAAE,MAAA,CAAO,IAAA,GAAO,QAAA,EAAS;AAAA,EACnC,MAAA,EAAQA,KAAA,CAAE,MAAA,CAAO,IAAA,GAAO,QAAA,EAAS;AAAA,EACjC,YAAA,EAAc,+BAA+B,QAAA,EAAS;AAAA,EACtD,OAAA,EAAS,+BAA+B,QAAA,EAAS;AAAA,EACjD,cAAA,EAAgBA,MAAE,IAAA,CAAK,CAAC,OAAO,MAAM,CAAC,EAAE,QAAA,EAAS;AAAA,EACjD,IAAA,EAAMA,KAAA,CAAE,MAAA,CAAO,MAAA,GAAS,QAAA,EAAS;AAAA,EACjC,OAAA,EAASA,KAAA,CAAE,MAAA,CAAO,MAAA,GAAS,QAAA;AAC7B,CAAC,CAAA;AAEM,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA,EACjD,gBAAA,EAAkBA,MAAE,MAAA;AACtB,CAAC,CAAA;AAEM,IAAM,4BAAA,GAA+BA,MAAE,MAAA,CAAO;AAAA,EACnD,EAAA,EAAIA,MAAE,MAAA,EAAO;AAAA,EACb,MAAA,EAAQ,0BAAA;AAAA,EACR,QAAA,EAAUA,MAAE,MAAA,EAAO;AAAA,EACnB,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,EACrB,IAAA,EAAMA,MAAE,MAAA,CAAOA,KAAA,CAAE,QAAO,EAAGA,KAAA,CAAE,SAAS,CAAA;AAAA,EACtC,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,KAAA,EAAOA,MAAE,MAAA,EAAO;AAAA,EAChB,MAAA,EAAQA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAC7B,OAAOA,KAAA,CAAE,MAAA,CAAO,EAAE,OAAA,EAASA,MAAE,MAAA,EAAO,EAAG,KAAA,EAAOA,KAAA,CAAE,QAAO,CAAE,QAAA,EAAS,EAAG,EAAE,QAAA,EAAS;AAAA,EAChF,SAAA,EAAWA,MAAE,IAAA,EAAK;AAAA,EAClB,SAAA,EAAWA,KAAA,CAAE,IAAA,EAAK,CAAE,QAAA,EAAS;AAAA,EAC7B,WAAA,EAAaA,KAAA,CAAE,IAAA,EAAK,CAAE,QAAA,EAAS;AAAA,EAC/B,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,EACrB,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,EACrB,SAAA,EAAWA,MAAE,MAAA,EAAO;AAAA,EACpB,cAAA,EAAgBA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA;AAC9B,CAAC,CAAA;AAEM,IAAM,gCAAA,GAAmCA,MAAE,MAAA,CAAO;AAAA,EACvD,KAAA,EAAOA,KAAA,CAAE,KAAA,CAAM,4BAA4B,CAAA;AAAA,EAC3C,KAAA,EAAOA,MAAE,MAAA;AACX,CAAC,CAAA;AAEM,IAAM,kCAAA,GAAqCA,MAAE,GAAA,EAAI;;;AC1DjD,IAAM,+BAA+BC,6BAAA,CAAY;AAAA,EACtD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,0BAAA;AAAA,EACN,YAAA,EAAc,QAAA;AAAA,EACd,YAAA,EAAc,KAAA;AAAA,EACd,gBAAA,EAAkB,+BAAA;AAAA,EAClB,cAAA,EAAgB,kCAAA;AAAA,EAChB,OAAA,EAAS,uCAAA;AAAA,EACT,WAAA,EAAa,mFAAA;AAAA,EACb,IAAA,EAAM,CAAC,kBAAkB,CAAA;AAAA,EACzB,YAAA,EAAc,IAAA;AAAA,EACd,OAAA,EAAS,OAAO,EAAE,MAAA,EAAQ,OAAA,EAAS,OAAO,QAAA,EAAU,UAAA,EAAY,MAAA,EAAQ,WAAA,EAAY,KAAM;AACxF,IAAA,MAAM,YAAY,MAAA,CAAO,qBAAA;AACzB,IAAA,IAAI,CAAC,SAAA,EAAW;AAKd,MAAA,OAAO,IAAI,cAAA,CAAe;AAAA,QACxB,MAAM,UAAA,EAAY;AAChB,UAAA,WAAA,EAAa,gBAAA,CAAiB,SAAS,MAAM;AAC3C,YAAA,IAAI;AACF,cAAA,UAAA,CAAW,KAAA,EAAM;AAAA,YACnB,CAAA,CAAA,MAAQ;AAAA,YAER;AAAA,UACF,CAAC,CAAA;AAAA,QACH;AAAA,OACD,CAAA;AAAA,IACH;AAEA,IAAA,OAAO,SAAA,CAAU,OAAO,EAAE,OAAA,EAAS,OAAO,QAAA,EAAU,UAAA,EAAY,MAAA,EAAQ,WAAA,EAAa,CAAA;AAAA,EACvF;AACF,CAAC;AAEM,IAAM,8BAA8BA,6BAAA,CAAY;AAAA,EACrD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,mBAAA;AAAA,EACN,YAAA,EAAc,MAAA;AAAA,EACd,gBAAA,EAAkB,8BAAA;AAAA,EAClB,cAAA,EAAgB,gCAAA;AAAA,EAChB,OAAA,EAAS,uBAAA;AAAA,EACT,WAAA,EAAa,+DAAA;AAAA,EACb,IAAA,EAAM,CAAC,kBAAkB,CAAA;AAAA,EACzB,YAAA,EAAc,IAAA;AAAA,EACd,SAAS,OAAO,EAAE,MAAA,EAAQ,GAAG,QAAO,KAAM;AACxC,IAAA,MAAM,YAAY,MAAA,CAAO,qBAAA;AACzB,IAAA,IAAI,CAAC,SAAA,EAAW;AAEd,MAAA,OAAO,EAAE,KAAA,EAAO,EAAC,EAAG,OAAO,CAAA,EAAE;AAAA,IAC/B;AAEA,IAAA,OAAO,SAAA,CAAU,UAAU,MAAM,CAAA;AAAA,EACnC;AACF,CAAC;AAEM,IAAM,4BAA4BA,6BAAA,CAAY;AAAA,EACnD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,qCAAA;AAAA,EACN,YAAA,EAAc,MAAA;AAAA,EACd,eAAA,EAAiB,0BAAA;AAAA,EACjB,cAAA,EAAgB,4BAAA;AAAA,EAChB,OAAA,EAAS,6BAAA;AAAA,EACT,WAAA,EAAa,kCAAA;AAAA,EACb,IAAA,EAAM,CAAC,kBAAkB,CAAA;AAAA,EACzB,YAAA,EAAc,IAAA;AAAA,EACd,OAAA,EAAS,OAAO,EAAE,MAAA,EAAQ,kBAAiB,KAAM;AAC/C,IAAA,MAAM,YAAY,MAAA,CAAO,qBAAA;AACzB,IAAA,IAAI,CAAC,SAAA,EAAW;AAEd,MAAA,MAAM,IAAIC,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6BAA6B,CAAA;AAAA,IACvE;AAEA,IAAA,MAAM,IAAA,GAAO,MAAM,SAAA,CAAU,OAAA,CAAQ,gBAAgB,CAAA;AACrD,IAAA,IAAI,CAAC,IAAA,EAAM;AACT,MAAA,MAAM,IAAIA,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6BAA6B,CAAA;AAAA,IACvE;AACA,IAAA,OAAO,IAAA;AAAA,EACT;AACF,CAAC","file":"chunk-DZWFQD53.cjs","sourcesContent":["import { z } from 'zod';\n\nexport const backgroundTaskStatusSchema = z.enum([\n  'pending',\n  'running',\n  'suspended',\n  'completed',\n  'failed',\n  'cancelled',\n  'timed_out',\n]);\n\nexport const backgroundTaskStreamQuerySchema = z.object({\n  agentId: z.string().optional(),\n  runId: z.string().optional(),\n  threadId: z.string().optional(),\n  resourceId: z.string().optional(),\n  taskId: z.string().optional(),\n});\n\nexport const backgroundTaskDateColumnSchema = z.enum(['createdAt', 'startedAt', 'suspendedAt', 'completedAt']);\n\nexport const listBackgroundTasksQuerySchema = z.object({\n  agentId: z.string().optional(),\n  status: backgroundTaskStatusSchema.optional(),\n  runId: z.string().optional(),\n  threadId: z.string().optional(),\n  resourceId: z.string().optional(),\n  toolName: z.string().optional(),\n  toolCallId: z.string().optional(),\n  fromDate: z.coerce.date().optional(),\n  toDate: z.coerce.date().optional(),\n  dateFilterBy: backgroundTaskDateColumnSchema.optional(),\n  orderBy: backgroundTaskDateColumnSchema.optional(),\n  orderDirection: z.enum(['asc', 'desc']).optional(),\n  page: z.coerce.number().optional(),\n  perPage: z.coerce.number().optional(),\n});\n\nexport const backgroundTaskIdPathParams = z.object({\n  backgroundTaskId: z.string(),\n});\n\nexport const backgroundTaskResponseSchema = z.object({\n  id: z.string(),\n  status: backgroundTaskStatusSchema,\n  toolName: z.string(),\n  toolCallId: z.string(),\n  args: z.record(z.string(), z.unknown()),\n  agentId: z.string(),\n  threadId: z.string().optional(),\n  resourceId: z.string().optional(),\n  runId: z.string(),\n  result: z.unknown().optional(),\n  error: z.object({ message: z.string(), stack: z.string().optional() }).optional(),\n  createdAt: z.date(),\n  startedAt: z.date().optional(),\n  completedAt: z.date().optional(),\n  retryCount: z.number(),\n  maxRetries: z.number(),\n  timeoutMs: z.number(),\n  suspendPayload: z.unknown().optional(),\n});\n\nexport const listBackgroundTaskResponseSchema = z.object({\n  tasks: z.array(backgroundTaskResponseSchema),\n  total: z.number(),\n});\n\nexport const backgroundTaskStreamResponseSchema = z.any();\n","import { HTTPException } from '../http-exception';\nimport {\n  backgroundTaskResponseSchema,\n  backgroundTaskStreamQuerySchema,\n  backgroundTaskStreamResponseSchema,\n  listBackgroundTaskResponseSchema,\n  listBackgroundTasksQuerySchema,\n  backgroundTaskIdPathParams,\n} from '../schemas/background-tasks';\nimport { createRoute } from '../server-adapter/routes/route-builder';\n\nexport const BACKGROUND_TASK_STREAM_ROUTE = createRoute({\n  method: 'GET',\n  path: '/background-tasks/stream',\n  responseType: 'stream' as const,\n  streamFormat: 'sse' as const,\n  queryParamSchema: backgroundTaskStreamQuerySchema,\n  responseSchema: backgroundTaskStreamResponseSchema,\n  summary: 'Stream background task events via SSE',\n  description: 'Real-time Server-Sent Events stream of background task completion/failure events.',\n  tags: ['Background Tasks'],\n  requiresAuth: true,\n  handler: async ({ mastra, agentId, runId, threadId, resourceId, taskId, abortSignal }) => {\n    const bgManager = mastra.backgroundTaskManager;\n    if (!bgManager) {\n      // Background tasks are not enabled — return an empty stream that stays\n      // open until the client disconnects. This avoids spamming the logs with\n      // false-positive errors when clients (e.g. the studio UI) optimistically\n      // subscribe to the stream.\n      return new ReadableStream({\n        start(controller) {\n          abortSignal?.addEventListener('abort', () => {\n            try {\n              controller.close();\n            } catch {\n              // Already closed\n            }\n          });\n        },\n      });\n    }\n\n    return bgManager.stream({ agentId, runId, threadId, resourceId, taskId, abortSignal });\n  },\n});\n\nexport const LIST_BACKGROUND_TASKS_ROUTE = createRoute({\n  method: 'GET',\n  path: '/background-tasks',\n  responseType: 'json' as const,\n  queryParamSchema: listBackgroundTasksQuerySchema,\n  responseSchema: listBackgroundTaskResponseSchema,\n  summary: 'List background tasks',\n  description: 'Returns background tasks filtered by status, agent, run, etc.',\n  tags: ['Background Tasks'],\n  requiresAuth: true,\n  handler: async ({ mastra, ...params }) => {\n    const bgManager = mastra.backgroundTaskManager;\n    if (!bgManager) {\n      // Background tasks not enabled — there are no tasks to return.\n      return { tasks: [], total: 0 };\n    }\n\n    return bgManager.listTasks(params);\n  },\n});\n\nexport const GET_BACKGROUND_TASK_ROUTE = createRoute({\n  method: 'GET',\n  path: '/background-tasks/:backgroundTaskId',\n  responseType: 'json' as const,\n  pathParamSchema: backgroundTaskIdPathParams,\n  responseSchema: backgroundTaskResponseSchema,\n  summary: 'Get a background task by ID',\n  description: 'Returns a background task by ID.',\n  tags: ['Background Tasks'],\n  requiresAuth: true,\n  handler: async ({ mastra, backgroundTaskId }) => {\n    const bgManager = mastra.backgroundTaskManager;\n    if (!bgManager) {\n      // Background tasks not enabled — the task can't exist.\n      throw new HTTPException(404, { message: 'Background task not found' });\n    }\n\n    const task = await bgManager.getTask(backgroundTaskId);\n    if (!task) {\n      throw new HTTPException(404, { message: 'Background task not found' });\n    }\n    return task;\n  },\n});\n"]}
+{"version":3,"sources":["../src/server/schemas/background-tasks.ts","../src/server/handlers/background-tasks.ts"],"names":["z","createRoute","HTTPException"],"mappings":";;;;;;AAEO,IAAM,0BAAA,GAA6BA,MAAE,IAAA,CAAK;AAAA,EAC/C,SAAA;AAAA,EACA,SAAA;AAAA,EACA,WAAA;AAAA,EACA,WAAA;AAAA,EACA,QAAA;AAAA,EACA,WAAA;AAAA,EACA;AACF,CAAC,CAAA;AAEM,IAAM,+BAAA,GAAkCA,MAAE,MAAA,CAAO;AAAA,EACtD,OAAA,EAASA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,MAAA,EAAQA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACrB,CAAC,CAAA;AAEM,IAAM,8BAAA,GAAiCA,MAAE,IAAA,CAAK,CAAC,aAAa,WAAA,EAAa,aAAA,EAAe,aAAa,CAAC,CAAA;AAEtG,IAAM,8BAAA,GAAiCA,MAAE,MAAA,CAAO;AAAA,EACrD,OAAA,EAASA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,MAAA,EAAQ,2BAA2B,QAAA,EAAS;AAAA,EAC5C,KAAA,EAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC3B,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,QAAA,EAAUA,KAAA,CAAE,MAAA,CAAO,IAAA,GAAO,QAAA,EAAS;AAAA,EACnC,MAAA,EAAQA,KAAA,CAAE,MAAA,CAAO,IAAA,GAAO,QAAA,EAAS;AAAA,EACjC,YAAA,EAAc,+BAA+B,QAAA,EAAS;AAAA,EACtD,OAAA,EAAS,+BAA+B,QAAA,EAAS;AAAA,EACjD,cAAA,EAAgBA,MAAE,IAAA,CAAK,CAAC,OAAO,MAAM,CAAC,EAAE,QAAA,EAAS;AAAA,EACjD,IAAA,EAAMA,KAAA,CAAE,MAAA,CAAO,MAAA,GAAS,QAAA,EAAS;AAAA,EACjC,OAAA,EAASA,KAAA,CAAE,MAAA,CAAO,MAAA,GAAS,QAAA;AAC7B,CAAC,CAAA;AAEM,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA,EACjD,gBAAA,EAAkBA,MAAE,MAAA;AACtB,CAAC,CAAA;AAEM,IAAM,4BAAA,GAA+BA,MAAE,MAAA,CAAO;AAAA,EACnD,EAAA,EAAIA,MAAE,MAAA,EAAO;AAAA,EACb,MAAA,EAAQ,0BAAA;AAAA,EACR,QAAA,EAAUA,MAAE,MAAA,EAAO;AAAA,EACnB,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,EACrB,IAAA,EAAMA,MAAE,MAAA,CAAOA,KAAA,CAAE,QAAO,EAAGA,KAAA,CAAE,SAAS,CAAA;AAAA,EACtC,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,UAAA,EAAYA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAChC,KAAA,EAAOA,MAAE,MAAA,EAAO;AAAA,EAChB,MAAA,EAAQA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA,EAC7B,OAAOA,KAAA,CAAE,MAAA,CAAO,EAAE,OAAA,EAASA,MAAE,MAAA,EAAO,EAAG,KAAA,EAAOA,KAAA,CAAE,QAAO,CAAE,QAAA,EAAS,EAAG,EAAE,QAAA,EAAS;AAAA,EAChF,SAAA,EAAWA,MAAE,IAAA,EAAK;AAAA,EAClB,SAAA,EAAWA,KAAA,CAAE,IAAA,EAAK,CAAE,QAAA,EAAS;AAAA,EAC7B,WAAA,EAAaA,KAAA,CAAE,IAAA,EAAK,CAAE,QAAA,EAAS;AAAA,EAC/B,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,EACrB,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,EACrB,SAAA,EAAWA,MAAE,MAAA,EAAO;AAAA,EACpB,cAAA,EAAgBA,KAAA,CAAE,OAAA,EAAQ,CAAE,QAAA;AAC9B,CAAC,CAAA;AAEM,IAAM,gCAAA,GAAmCA,MAAE,MAAA,CAAO;AAAA,EACvD,KAAA,EAAOA,KAAA,CAAE,KAAA,CAAM,4BAA4B,CAAA;AAAA,EAC3C,KAAA,EAAOA,MAAE,MAAA;AACX,CAAC,CAAA;AAEM,IAAM,kCAAA,GAAqCA,MAAE,GAAA,EAAI;;;AC1DjD,IAAM,+BAA+BC,6BAAA,CAAY;AAAA,EACtD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,0BAAA;AAAA,EACN,YAAA,EAAc,QAAA;AAAA,EACd,YAAA,EAAc,KAAA;AAAA,EACd,gBAAA,EAAkB,+BAAA;AAAA,EAClB,cAAA,EAAgB,kCAAA;AAAA,EAChB,OAAA,EAAS,uCAAA;AAAA,EACT,WAAA,EAAa,mFAAA;AAAA,EACb,IAAA,EAAM,CAAC,kBAAkB,CAAA;AAAA,EACzB,YAAA,EAAc,IAAA;AAAA,EACd,OAAA,EAAS,OAAO,EAAE,MAAA,EAAQ,OAAA,EAAS,OAAO,QAAA,EAAU,UAAA,EAAY,MAAA,EAAQ,WAAA,EAAY,KAAM;AACxF,IAAA,MAAM,YAAY,MAAA,CAAO,qBAAA;AACzB,IAAA,IAAI,CAAC,SAAA,EAAW;AAKd,MAAA,OAAO,IAAI,cAAA,CAAe;AAAA,QACxB,MAAM,UAAA,EAAY;AAChB,UAAA,WAAA,EAAa,gBAAA,CAAiB,SAAS,MAAM;AAC3C,YAAA,IAAI;AACF,cAAA,UAAA,CAAW,KAAA,EAAM;AAAA,YACnB,CAAA,CAAA,MAAQ;AAAA,YAER;AAAA,UACF,CAAC,CAAA;AAAA,QACH;AAAA,OACD,CAAA;AAAA,IACH;AAEA,IAAA,OAAO,SAAA,CAAU,OAAO,EAAE,OAAA,EAAS,OAAO,QAAA,EAAU,UAAA,EAAY,MAAA,EAAQ,WAAA,EAAa,CAAA;AAAA,EACvF;AACF,CAAC;AAEM,IAAM,8BAA8BA,6BAAA,CAAY;AAAA,EACrD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,mBAAA;AAAA,EACN,YAAA,EAAc,MAAA;AAAA,EACd,gBAAA,EAAkB,8BAAA;AAAA,EAClB,cAAA,EAAgB,gCAAA;AAAA,EAChB,OAAA,EAAS,uBAAA;AAAA,EACT,WAAA,EAAa,+DAAA;AAAA,EACb,IAAA,EAAM,CAAC,kBAAkB,CAAA;AAAA,EACzB,YAAA,EAAc,IAAA;AAAA,EACd,SAAS,OAAO,EAAE,MAAA,EAAQ,GAAG,QAAO,KAAM;AACxC,IAAA,MAAM,YAAY,MAAA,CAAO,qBAAA;AACzB,IAAA,IAAI,CAAC,SAAA,EAAW;AAEd,MAAA,OAAO,EAAE,KAAA,EAAO,EAAC,EAAG,OAAO,CAAA,EAAE;AAAA,IAC/B;AAEA,IAAA,OAAO,SAAA,CAAU,UAAU,MAAM,CAAA;AAAA,EACnC;AACF,CAAC;AAEM,IAAM,4BAA4BA,6BAAA,CAAY;AAAA,EACnD,MAAA,EAAQ,KAAA;AAAA,EACR,IAAA,EAAM,qCAAA;AAAA,EACN,YAAA,EAAc,MAAA;AAAA,EACd,eAAA,EAAiB,0BAAA;AAAA,EACjB,cAAA,EAAgB,4BAAA;AAAA,EAChB,OAAA,EAAS,6BAAA;AAAA,EACT,WAAA,EAAa,kCAAA;AAAA,EACb,IAAA,EAAM,CAAC,kBAAkB,CAAA;AAAA,EACzB,YAAA,EAAc,IAAA;AAAA,EACd,OAAA,EAAS,OAAO,EAAE,MAAA,EAAQ,kBAAiB,KAAM;AAC/C,IAAA,MAAM,YAAY,MAAA,CAAO,qBAAA;AACzB,IAAA,IAAI,CAAC,SAAA,EAAW;AAEd,MAAA,MAAM,IAAIC,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6BAA6B,CAAA;AAAA,IACvE;AAEA,IAAA,MAAM,IAAA,GAAO,MAAM,SAAA,CAAU,OAAA,CAAQ,gBAAgB,CAAA;AACrD,IAAA,IAAI,CAAC,IAAA,EAAM;AACT,MAAA,MAAM,IAAIA,+BAAA,CAAc,GAAA,EAAK,EAAE,OAAA,EAAS,6BAA6B,CAAA;AAAA,IACvE;AACA,IAAA,OAAO,IAAA;AAAA,EACT;AACF,CAAC","file":"chunk-EAPGRYRG.cjs","sourcesContent":["import { z } from 'zod';\n\nexport const backgroundTaskStatusSchema = z.enum([\n  'pending',\n  'running',\n  'suspended',\n  'completed',\n  'failed',\n  'cancelled',\n  'timed_out',\n]);\n\nexport const backgroundTaskStreamQuerySchema = z.object({\n  agentId: z.string().optional(),\n  runId: z.string().optional(),\n  threadId: z.string().optional(),\n  resourceId: z.string().optional(),\n  taskId: z.string().optional(),\n});\n\nexport const backgroundTaskDateColumnSchema = z.enum(['createdAt', 'startedAt', 'suspendedAt', 'completedAt']);\n\nexport const listBackgroundTasksQuerySchema = z.object({\n  agentId: z.string().optional(),\n  status: backgroundTaskStatusSchema.optional(),\n  runId: z.string().optional(),\n  threadId: z.string().optional(),\n  resourceId: z.string().optional(),\n  toolName: z.string().optional(),\n  toolCallId: z.string().optional(),\n  fromDate: z.coerce.date().optional(),\n  toDate: z.coerce.date().optional(),\n  dateFilterBy: backgroundTaskDateColumnSchema.optional(),\n  orderBy: backgroundTaskDateColumnSchema.optional(),\n  orderDirection: z.enum(['asc', 'desc']).optional(),\n  page: z.coerce.number().optional(),\n  perPage: z.coerce.number().optional(),\n});\n\nexport const backgroundTaskIdPathParams = z.object({\n  backgroundTaskId: z.string(),\n});\n\nexport const backgroundTaskResponseSchema = z.object({\n  id: z.string(),\n  status: backgroundTaskStatusSchema,\n  toolName: z.string(),\n  toolCallId: z.string(),\n  args: z.record(z.string(), z.unknown()),\n  agentId: z.string(),\n  threadId: z.string().optional(),\n  resourceId: z.string().optional(),\n  runId: z.string(),\n  result: z.unknown().optional(),\n  error: z.object({ message: z.string(), stack: z.string().optional() }).optional(),\n  createdAt: z.date(),\n  startedAt: z.date().optional(),\n  completedAt: z.date().optional(),\n  retryCount: z.number(),\n  maxRetries: z.number(),\n  timeoutMs: z.number(),\n  suspendPayload: z.unknown().optional(),\n});\n\nexport const listBackgroundTaskResponseSchema = z.object({\n  tasks: z.array(backgroundTaskResponseSchema),\n  total: z.number(),\n});\n\nexport const backgroundTaskStreamResponseSchema = z.any();\n","import { HTTPException } from '../http-exception';\nimport {\n  backgroundTaskResponseSchema,\n  backgroundTaskStreamQuerySchema,\n  backgroundTaskStreamResponseSchema,\n  listBackgroundTaskResponseSchema,\n  listBackgroundTasksQuerySchema,\n  backgroundTaskIdPathParams,\n} from '../schemas/background-tasks';\nimport { createRoute } from '../server-adapter/routes/route-builder';\n\nexport const BACKGROUND_TASK_STREAM_ROUTE = createRoute({\n  method: 'GET',\n  path: '/background-tasks/stream',\n  responseType: 'stream' as const,\n  streamFormat: 'sse' as const,\n  queryParamSchema: backgroundTaskStreamQuerySchema,\n  responseSchema: backgroundTaskStreamResponseSchema,\n  summary: 'Stream background task events via SSE',\n  description: 'Real-time Server-Sent Events stream of background task completion/failure events.',\n  tags: ['Background Tasks'],\n  requiresAuth: true,\n  handler: async ({ mastra, agentId, runId, threadId, resourceId, taskId, abortSignal }) => {\n    const bgManager = mastra.backgroundTaskManager;\n    if (!bgManager) {\n      // Background tasks are not enabled — return an empty stream that stays\n      // open until the client disconnects. This avoids spamming the logs with\n      // false-positive errors when clients (e.g. the studio UI) optimistically\n      // subscribe to the stream.\n      return new ReadableStream({\n        start(controller) {\n          abortSignal?.addEventListener('abort', () => {\n            try {\n              controller.close();\n            } catch {\n              // Already closed\n            }\n          });\n        },\n      });\n    }\n\n    return bgManager.stream({ agentId, runId, threadId, resourceId, taskId, abortSignal });\n  },\n});\n\nexport const LIST_BACKGROUND_TASKS_ROUTE = createRoute({\n  method: 'GET',\n  path: '/background-tasks',\n  responseType: 'json' as const,\n  queryParamSchema: listBackgroundTasksQuerySchema,\n  responseSchema: listBackgroundTaskResponseSchema,\n  summary: 'List background tasks',\n  description: 'Returns background tasks filtered by status, agent, run, etc.',\n  tags: ['Background Tasks'],\n  requiresAuth: true,\n  handler: async ({ mastra, ...params }) => {\n    const bgManager = mastra.backgroundTaskManager;\n    if (!bgManager) {\n      // Background tasks not enabled — there are no tasks to return.\n      return { tasks: [], total: 0 };\n    }\n\n    return bgManager.listTasks(params);\n  },\n});\n\nexport const GET_BACKGROUND_TASK_ROUTE = createRoute({\n  method: 'GET',\n  path: '/background-tasks/:backgroundTaskId',\n  responseType: 'json' as const,\n  pathParamSchema: backgroundTaskIdPathParams,\n  responseSchema: backgroundTaskResponseSchema,\n  summary: 'Get a background task by ID',\n  description: 'Returns a background task by ID.',\n  tags: ['Background Tasks'],\n  requiresAuth: true,\n  handler: async ({ mastra, backgroundTaskId }) => {\n    const bgManager = mastra.backgroundTaskManager;\n    if (!bgManager) {\n      // Background tasks not enabled — the task can't exist.\n      throw new HTTPException(404, { message: 'Background task not found' });\n    }\n\n    const task = await bgManager.getTask(backgroundTaskId);\n    if (!task) {\n      throw new HTTPException(404, { message: 'Background task not found' });\n    }\n    return task;\n  },\n});\n"]}

package/dist/{chunk-RGUKCKGB.cjs → chunk-EQICIFWJ.cjs}

@@ -1,11 +1,11 @@
 'use strict';
 
-var chunk3PQSHLG7_cjs = require('./chunk-3PQSHLG7.cjs');
-var chunk3NA22RQ5_cjs = require('./chunk-3NA22RQ5.cjs');
-var chunkAZORAK4H_cjs = require('./chunk-AZORAK4H.cjs');
-var chunkB34S64RC_cjs = require('./chunk-B34S64RC.cjs');
+var chunk35SOHRUB_cjs = require('./chunk-35SOHRUB.cjs');
+var chunkJIB75MHZ_cjs = require('./chunk-JIB75MHZ.cjs');
+var chunk4BLUIUHS_cjs = require('./chunk-4BLUIUHS.cjs');
+var chunkYNSUYESL_cjs = require('./chunk-YNSUYESL.cjs');
+var chunkXTFWFQZ7_cjs = require('./chunk-XTFWFQZ7.cjs');
 var chunk64ITUOXI_cjs = require('./chunk-64ITUOXI.cjs');
-var chunkZRU7KWNW_cjs = require('./chunk-ZRU7KWNW.cjs');
 var chunkO7I5CWRX_cjs = require('./chunk-O7I5CWRX.cjs');
 var stream = require('stream');
 var error = require('@mastra/core/error');
@@ -21,12 +21,12 @@ chunkO7I5CWRX_cjs.__export(voice_exports, {
   TRANSCRIBE_SPEECH_DEPRECATED_ROUTE: () => TRANSCRIBE_SPEECH_DEPRECATED_ROUTE,
   TRANSCRIBE_SPEECH_ROUTE: () => TRANSCRIBE_SPEECH_ROUTE
 });
-var GET_SPEAKERS_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var GET_SPEAKERS_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "GET",
   path: "/agents/:agentId/voice/speakers",
   responseType: "json",
-  pathParamSchema: chunkZRU7KWNW_cjs.agentIdPathParams,
-  responseSchema: chunkZRU7KWNW_cjs.voiceSpeakersResponseSchema,
+  pathParamSchema: chunkJIB75MHZ_cjs.agentIdPathParams,
+  responseSchema: chunkJIB75MHZ_cjs.voiceSpeakersResponseSchema,
   summary: "Get voice speakers",
   description: "Returns available voice speakers for the specified agent",
   tags: ["Agents", "Voice"],
@@ -36,7 +36,7 @@ var GET_SPEAKERS_ROUTE = chunkAZORAK4H_cjs.createRoute({
       if (!agentId) {
         throw new chunk64ITUOXI_cjs.HTTPException(400, { message: "Agent ID is required" });
       }
-      const agent = await chunk3PQSHLG7_cjs.getAgentFromSystem({ mastra, agentId });
+      const agent = await chunk35SOHRUB_cjs.getAgentFromSystem({ mastra, agentId });
       const voice = await agent.getVoice({ requestContext });
       const speakers = await Promise.resolve().then(() => voice.getSpeakers()).catch((err) => {
         if (err instanceof error.MastraError) {
@@ -46,29 +46,29 @@ var GET_SPEAKERS_ROUTE = chunkAZORAK4H_cjs.createRoute({
       });
       return speakers;
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error getting speakers");
+      return chunkYNSUYESL_cjs.handleError(error, "Error getting speakers");
     }
   }
 });
-var GET_SPEAKERS_DEPRECATED_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var GET_SPEAKERS_DEPRECATED_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "GET",
   path: "/agents/:agentId/speakers",
   responseType: "json",
-  pathParamSchema: chunkZRU7KWNW_cjs.agentIdPathParams,
-  responseSchema: chunkZRU7KWNW_cjs.voiceSpeakersResponseSchema,
+  pathParamSchema: chunkJIB75MHZ_cjs.agentIdPathParams,
+  responseSchema: chunkJIB75MHZ_cjs.voiceSpeakersResponseSchema,
   summary: "Get available speakers for an agent",
   description: "[DEPRECATED] Use /agents/:agentId/voice/speakers instead. Get available speakers for an agent",
   tags: ["Agents", "Voice"],
   requiresAuth: true,
   handler: GET_SPEAKERS_ROUTE.handler
 });
-var GENERATE_SPEECH_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var GENERATE_SPEECH_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "POST",
   path: "/agents/:agentId/voice/speak",
   responseType: "stream",
-  pathParamSchema: chunkZRU7KWNW_cjs.agentIdPathParams,
-  bodySchema: chunkZRU7KWNW_cjs.generateSpeechBodySchema,
-  responseSchema: chunkZRU7KWNW_cjs.speakResponseSchema,
+  pathParamSchema: chunkJIB75MHZ_cjs.agentIdPathParams,
+  bodySchema: chunkJIB75MHZ_cjs.generateSpeechBodySchema,
+  responseSchema: chunkJIB75MHZ_cjs.speakResponseSchema,
   summary: "Generate speech",
   description: "Generates speech audio from text using the agent voice configuration",
   tags: ["Agents", "Voice"],
@@ -78,8 +78,8 @@ var GENERATE_SPEECH_ROUTE = chunkAZORAK4H_cjs.createRoute({
       if (!agentId) {
         throw new chunk64ITUOXI_cjs.HTTPException(400, { message: "Agent ID is required" });
       }
-      chunk3NA22RQ5_cjs.validateBody({ text });
-      const agent = await chunk3PQSHLG7_cjs.getAgentFromSystem({ mastra, agentId });
+      chunk4BLUIUHS_cjs.validateBody({ text });
+      const agent = await chunk35SOHRUB_cjs.getAgentFromSystem({ mastra, agentId });
       const voice = await agent.getVoice({ requestContext });
       if (!voice) {
         throw new chunk64ITUOXI_cjs.HTTPException(400, { message: "Agent does not have voice capabilities" });
@@ -95,30 +95,30 @@ var GENERATE_SPEECH_ROUTE = chunkAZORAK4H_cjs.createRoute({
       }
       return audioStream;
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error generating speech");
+      return chunkYNSUYESL_cjs.handleError(error, "Error generating speech");
     }
   }
 });
-var GENERATE_SPEECH_DEPRECATED_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var GENERATE_SPEECH_DEPRECATED_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "POST",
   path: "/agents/:agentId/speak",
   responseType: "stream",
-  pathParamSchema: chunkZRU7KWNW_cjs.agentIdPathParams,
-  bodySchema: chunkZRU7KWNW_cjs.generateSpeechBodySchema,
-  responseSchema: chunkZRU7KWNW_cjs.speakResponseSchema,
+  pathParamSchema: chunkJIB75MHZ_cjs.agentIdPathParams,
+  bodySchema: chunkJIB75MHZ_cjs.generateSpeechBodySchema,
+  responseSchema: chunkJIB75MHZ_cjs.speakResponseSchema,
   summary: "Convert text to speech",
   description: "[DEPRECATED] Use /agents/:agentId/voice/speak instead. Convert text to speech using the agent's voice provider",
   tags: ["Agents", "Voice"],
   requiresAuth: true,
   handler: GENERATE_SPEECH_ROUTE.handler
 });
-var TRANSCRIBE_SPEECH_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var TRANSCRIBE_SPEECH_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "POST",
   path: "/agents/:agentId/voice/listen",
   responseType: "json",
-  pathParamSchema: chunkZRU7KWNW_cjs.agentIdPathParams,
-  bodySchema: chunkZRU7KWNW_cjs.transcribeSpeechBodySchema,
-  responseSchema: chunkZRU7KWNW_cjs.transcribeSpeechResponseSchema,
+  pathParamSchema: chunkJIB75MHZ_cjs.agentIdPathParams,
+  bodySchema: chunkJIB75MHZ_cjs.transcribeSpeechBodySchema,
+  responseSchema: chunkJIB75MHZ_cjs.transcribeSpeechResponseSchema,
   summary: "Transcribe speech",
   description: "Transcribes speech audio to text using the agent voice configuration",
   tags: ["Agents", "Voice"],
@@ -131,7 +131,7 @@ var TRANSCRIBE_SPEECH_ROUTE = chunkAZORAK4H_cjs.createRoute({
       if (!audio) {
         throw new chunk64ITUOXI_cjs.HTTPException(400, { message: "Audio data is required" });
       }
-      const agent = await chunk3PQSHLG7_cjs.getAgentFromSystem({ mastra, agentId });
+      const agent = await chunk35SOHRUB_cjs.getAgentFromSystem({ mastra, agentId });
       const voice = await agent.getVoice({ requestContext });
       if (!voice) {
         throw new chunk64ITUOXI_cjs.HTTPException(400, { message: "Agent does not have voice capabilities" });
@@ -142,29 +142,29 @@ var TRANSCRIBE_SPEECH_ROUTE = chunkAZORAK4H_cjs.createRoute({
       const text = await voice.listen(audioStream, options);
       return { text };
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error transcribing speech");
+      return chunkYNSUYESL_cjs.handleError(error, "Error transcribing speech");
     }
   }
 });
-var TRANSCRIBE_SPEECH_DEPRECATED_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var TRANSCRIBE_SPEECH_DEPRECATED_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "POST",
   path: "/agents/:agentId/listen",
   responseType: "json",
-  pathParamSchema: chunkZRU7KWNW_cjs.agentIdPathParams,
-  bodySchema: chunkZRU7KWNW_cjs.transcribeSpeechBodySchema,
-  responseSchema: chunkZRU7KWNW_cjs.transcribeSpeechResponseSchema,
+  pathParamSchema: chunkJIB75MHZ_cjs.agentIdPathParams,
+  bodySchema: chunkJIB75MHZ_cjs.transcribeSpeechBodySchema,
+  responseSchema: chunkJIB75MHZ_cjs.transcribeSpeechResponseSchema,
   summary: "Convert speech to text",
   description: "[DEPRECATED] Use /agents/:agentId/voice/listen instead. Convert speech to text using the agent's voice provider. Additional provider-specific options can be passed as query parameters.",
   tags: ["Agents", "Voice"],
   requiresAuth: true,
   handler: TRANSCRIBE_SPEECH_ROUTE.handler
 });
-var GET_LISTENER_ROUTE = chunkAZORAK4H_cjs.createRoute({
+var GET_LISTENER_ROUTE = chunkXTFWFQZ7_cjs.createRoute({
   method: "GET",
   path: "/agents/:agentId/voice/listener",
   responseType: "json",
-  pathParamSchema: chunkZRU7KWNW_cjs.agentIdPathParams,
-  responseSchema: chunkZRU7KWNW_cjs.getListenerResponseSchema,
+  pathParamSchema: chunkJIB75MHZ_cjs.agentIdPathParams,
+  responseSchema: chunkJIB75MHZ_cjs.getListenerResponseSchema,
   summary: "Get voice listener",
   description: "Returns the voice listener configuration for the agent",
   tags: ["Agents", "Voice"],
@@ -187,7 +187,7 @@ var GET_LISTENER_ROUTE = chunkAZORAK4H_cjs.createRoute({
       });
       return listeners;
     } catch (error) {
-      return chunkB34S64RC_cjs.handleError(error, "Error getting listeners");
+      return chunkYNSUYESL_cjs.handleError(error, "Error getting listeners");
     }
   }
 });
@@ -200,5 +200,5 @@ exports.GET_SPEAKERS_ROUTE = GET_SPEAKERS_ROUTE;
 exports.TRANSCRIBE_SPEECH_DEPRECATED_ROUTE = TRANSCRIBE_SPEECH_DEPRECATED_ROUTE;
 exports.TRANSCRIBE_SPEECH_ROUTE = TRANSCRIBE_SPEECH_ROUTE;
 exports.voice_exports = voice_exports;
-//# sourceMappingURL=chunk-RGUKCKGB.cjs.map
-//# sourceMappingURL=chunk-RGUKCKGB.cjs.map
+//# sourceMappingURL=chunk-EQICIFWJ.cjs.map
+//# sourceMappingURL=chunk-EQICIFWJ.cjs.map