@mrxsys/mrx-core 2.6.0 → 2.7.0

package/CHANGELOG.md

@@ -1,33 +1,79 @@
 
-## v2.6.0
+## v2.7.0
 
-[compare changes](https://github.com/MRX-Systems/MRX-Core/compare/v2.6.0-canary-20250805-40e4647...v2.6.0)
+[compare changes](https://github.com/MRX-Systems/MRX-Core/compare/v2.6.0-canary-20250805-40e4647...v2.7.0)
 
-### 🌊 Types
+### 🚀 Enhancements
 
-- **🌊:** [fix TOperations with default CrudOperationsOptions] ([b8b6169d](https://github.com/MRX-Systems/MRX-Core/commit/b8b6169d))
+- **🚀:** AND-228 fix throwIfNoResult custom message ([a1228463](https://github.com/MRX-Systems/MRX-Core/commit/a1228463))
+- **🚀:** [add Base32 encoding and decoding utilities] ([e64b06cd](https://github.com/MRX-Systems/MRX-Core/commit/e64b06cd))
+- **🚀:** [add createCounterBuffer utility function] ([29af86e4](https://github.com/MRX-Systems/MRX-Core/commit/29af86e4))
+- **🚀:** [add generateHmac utility function] ([30142a1e](https://github.com/MRX-Systems/MRX-Core/commit/30142a1e))
+- **🚀:** [add unit tests for generateHmac utility function] ([9ff1643a](https://github.com/MRX-Systems/MRX-Core/commit/9ff1643a))
+- **🚀:** [add TOTP error keys and generateSecretBytes utility function] ([527008ea](https://github.com/MRX-Systems/MRX-Core/commit/527008ea))
+- **🚀:** [add dynamic truncation utility function for HMAC results] ([31c261b0](https://github.com/MRX-Systems/MRX-Core/commit/31c261b0))
+- **🚀:** [add utility functions exports for TOTP module] ## Features - Exported utility functions: base32Decode, base32Encode, createCounterBuffer, generateSecretBytes, generateHmac, and dynamicTruncation. ([c92359bd](https://github.com/MRX-Systems/MRX-Core/commit/c92359bd))
+- **🚀:** [implement TOTP and HOTP functionalities] ([9a9a3983](https://github.com/MRX-Systems/MRX-Core/commit/9a9a3983))
+- **🚀:** [add TOTP module exports for better accessibility] ([aec89c93](https://github.com/MRX-Systems/MRX-Core/commit/aec89c93))
+- **🚀:** [add TOTP_ERROR_KEYS export for error handling] ([73e361e3](https://github.com/MRX-Systems/MRX-Core/commit/73e361e3))
+- **🚀:** [Add OtpAuth URI type and refactor related code] ([2c2d2b88](https://github.com/MRX-Systems/MRX-Core/commit/2c2d2b88))
+- **🚀:** [refactor rate limiting implementation and add MemoryStore] ([158b7ddf](https://github.com/MRX-Systems/MRX-Core/commit/158b7ddf))
 
-### 🤖 CI
+### 🔧 Fixes
 
-- **🤖:** [Add CI workflows for build, test, and deployment] ([7d98d68b](https://github.com/MRX-Systems/MRX-Core/commit/7d98d68b))
+- **🔧:** [Improve error message handling for no results] ([76c297fa](https://github.com/MRX-Systems/MRX-Core/commit/76c297fa))
+- **🔧:** [Fix review] ([87c68deb](https://github.com/MRX-Systems/MRX-Core/commit/87c68deb))
 
-### ❤️ Contributors
+### 🧹 Refactors
 
-- Ruby <necrelox@proton.me>
+- **🧹:** [Change in tenary expression] ([4b4c4864](https://github.com/MRX-Systems/MRX-Core/commit/4b4c4864))
+- **🧹:** [Update orderBy syntax for query builder] - Refactored the orderBy method to include table name in the query. - Ensured that selected fields are properly referenced with the table name for better clarity and to avoid potential conflicts. ([53eb355e](https://github.com/MRX-Systems/MRX-Core/commit/53eb355e))
+- **🧹:** [Refactor query returning and selection logic] ([a6b46fb2](https://github.com/MRX-Systems/MRX-Core/commit/a6b46fb2))
+- **🧹:** [Simplify query returning and selection logic] ([b6c04169](https://github.com/MRX-Systems/MRX-Core/commit/b6c04169))
+- **🧹:** [Refactor HOTP options parameter initialization] ## Refactoring - Updated the HOTP function's options parameter to provide a default value. ([3937ae22](https://github.com/MRX-Systems/MRX-Core/commit/3937ae22))
+- **🧹:** [correct export name for rate limiting module] ([cbb3e9f7](https://github.com/MRX-Systems/MRX-Core/commit/cbb3e9f7))
+- **🧹:** [standardize rate limit module exports and structure] ## Refactoring - Corrected export names in the rate limiting module for consistency. - Removed outdated `ratelimitErrorKeys` file and integrated its functionality into the main rate limiting logic. - Updated test cases to reflect the new export structure and ensure proper functionality. - Introduced a new `rateLimit` function with comprehensive documentation. ([f192bb39](https://github.com/MRX-Systems/MRX-Core/commit/f192bb39))
 
-## v2.6.0-canary-20250805-40e4647
+### 📖 Documentation
 
-[compare changes](https://github.com/MRX-Systems/MRX-Core/compare/v2.5.1...v2.6.0-canary-20250805-40e4647)
+- **📖:** [Update documentation for RenameKey type utility] ([379a2403](https://github.com/MRX-Systems/MRX-Core/commit/379a2403))
 
-### 🚀 Enhancements
+### 📦 Build
+
+- **📦:** [update devDependencies to latest versions] Updated @eslint/js, @stylistic/eslint-plugin, @types/bun, eslint, and typescript-eslint to their latest versions for improved functionality and compatibility. ([1c40c8e7](https://github.com/MRX-Systems/MRX-Core/commit/1c40c8e7))
+- **📦:** [add TOTP module paths to builder and package.json] ([d5ad0b26](https://github.com/MRX-Systems/MRX-Core/commit/d5ad0b26))
 
-- **🚀:** [add enums exports for various modules] ## Features - Added enums exports for error handling and data management modules. ([be66af33](https://github.com/MRX-Systems/MRX-Core/commit/be66af33))
+### 🌊 Types
+
+- **🌊:** [fix TOperations with default CrudOperationsOptions] ([b8b6169d](https://github.com/MRX-Systems/MRX-Core/commit/b8b6169d))
+- **🌊:** [add RenameKey type utility for key renaming in objects] ([0d661646](https://github.com/MRX-Systems/MRX-Core/commit/0d661646))
+- **🌊:** [Add RenameKey type to type definitions] ## Type Changes - Added `RenameKey` type to the type definitions in `index.ts`. ([e389bcba](https://github.com/MRX-Systems/MRX-Core/commit/e389bcba))
+- **🌊:** [add type definitions for TOTP module] ([03917acc](https://github.com/MRX-Systems/MRX-Core/commit/03917acc))
+- **🌊:** [Update OtpAuthUri interface for optional properties] ## Type Changes - Made `algorithm`, `digits`, and `period` properties optional in the `OtpAuthUri` interface. ([d1d47681](https://github.com/MRX-Systems/MRX-Core/commit/d1d47681))
 
 ### 🦉 Chore
 
-- **🦉:** [Clean CHANGELOG] ([f291cbbd](https://github.com/MRX-Systems/MRX-Core/commit/f291cbbd))
+- **🦉:** V2.6.0 ([3a016766](https://github.com/MRX-Systems/MRX-Core/commit/3a016766))
+- **🦉:** [clean up CHANGELOG.md for better readability] ([ab70e0fc](https://github.com/MRX-Systems/MRX-Core/commit/ab70e0fc))
+
+### 🧪 Tests
+
+- **🧪:** [Update error message for no result case] ## Tests - Changed the error message for the no result case in the repository tests. ([0f71ce8f](https://github.com/MRX-Systems/MRX-Core/commit/0f71ce8f))
+- **🧪:** [add unit tests for Base32 encoding and decoding] ([2b25e11d](https://github.com/MRX-Systems/MRX-Core/commit/2b25e11d))
+- **🧪:** [add unit tests for createCounterBuffer function] ([71153e42](https://github.com/MRX-Systems/MRX-Core/commit/71153e42))
+- **🧪:** [add unit tests for generateSecretBytes utility function] ([bb33cd78](https://github.com/MRX-Systems/MRX-Core/commit/bb33cd78))
+- **🧪:** [add unit tests for dynamic truncation utility function] ([ba6fee56](https://github.com/MRX-Systems/MRX-Core/commit/ba6fee56))
+- **🧪:** [add comprehensive unit tests for TOTP functionalities] ([82d5f4d1](https://github.com/MRX-Systems/MRX-Core/commit/82d5f4d1))
+- **🧪:** [add comprehensive tests for MemoryStore functionality] ([d1364340](https://github.com/MRX-Systems/MRX-Core/commit/d1364340))
+- **🧪:** Enhance rate limiting tests for Redis and memory stores ([2df081e1](https://github.com/MRX-Systems/MRX-Core/commit/2df081e1))
+
+### 🤖 CI
+
+- **🤖:** [Add CI workflows for build, test, and deployment] ([7d98d68b](https://github.com/MRX-Systems/MRX-Core/commit/7d98d68b))
+- **🤖:** [update copilot instructions] ([a8540b78](https://github.com/MRX-Systems/MRX-Core/commit/a8540b78))
 
 ### ❤️ Contributors
 
 - Ruby <necrelox@proton.me>
+- Github-actions <maxime.meriaux@mrxsys.com>
 

package/dist/chunk-4mt568fz.js

@@ -0,0 +1,26 @@
+// source/modules/totp/utils/createCounterBuffer.ts
+var createCounterBuffer = (counter) => {
+  const counterBuffer = new ArrayBuffer(8);
+  const counterView = new DataView(counterBuffer);
+  if (typeof counter === "bigint")
+    counterView.setBigUint64(0, counter, false);
+  else
+    counterView.setUint32(4, counter, false);
+  return counterBuffer;
+};
+
+// source/modules/totp/utils/dynamicTruncation.ts
+var dynamicTruncation = (hmacArray, digits) => {
+  const offset = hmacArray[hmacArray.length - 1] & 15;
+  const code = ((hmacArray[offset] & 127) << 24 | (hmacArray[offset + 1] & 255) << 16 | (hmacArray[offset + 2] & 255) << 8 | hmacArray[offset + 3] & 255) % 10 ** digits;
+  return code.toString().padStart(digits, "0");
+};
+
+// source/modules/totp/utils/generateHmac.ts
+import { webcrypto } from "crypto";
+var generateHmac = async (key, data) => {
+  const hmac = await webcrypto.subtle.sign("HMAC", key, data);
+  return new Uint8Array(hmac);
+};
+
+export { createCounterBuffer, dynamicTruncation, generateHmac };

package/dist/{chunk-7m70tmz2.js → chunk-qb6x364m.js}

@@ -1,6 +1,6 @@
 import {
   Repository
-} from "./chunk-9wk2pajt.js";
+} from "./chunk-z6q192p8.js";
 import {
   TypedEventEmitter
 } from "./chunk-yvyahr2h.js";

package/dist/chunk-snqdnkk7.js

@@ -0,0 +1,10 @@
+// source/modules/totp/enums/totpErrorKeys.ts
+var TOTP_ERROR_KEYS = {
+  INVALID_BASE32_CHARACTER: "totp.error.invalid_base32_character",
+  INVALID_SECRET_LENGTH: "totp.error.invalid_secret_length",
+  INVALID_ALGORITHM: "totp.error.invalid_algorithm",
+  INVALID_OTP_AUTH_URI: "totp.error.invalid_otp_auth_uri",
+  MISSING_SECRET: "totp.error.missing_secret"
+};
+
+export { TOTP_ERROR_KEYS };

package/dist/{chunk-64d6w5kt.js → chunk-tm71j126.js}

@@ -6,7 +6,7 @@ import {
 } from "./chunk-dwfyt1m6.js";
 import {
   MSSQL
-} from "./chunk-7m70tmz2.js";
+} from "./chunk-qb6x364m.js";
 import {
   HttpError
 } from "./chunk-683sda6e.js";

package/dist/chunk-yd82hdxv.js

@@ -0,0 +1,6 @@
+// source/modules/elysia/rateLimit/enums/rateLimitErrorKeys.ts
+var RATE_LIMIT_ERROR_KEYS = {
+  RATE_LIMIT_EXCEEDED: "elysia.rateLimit.error.exceeded"
+};
+
+export { RATE_LIMIT_ERROR_KEYS };

package/dist/{chunk-9wk2pajt.js → chunk-z6q192p8.js}

@@ -124,10 +124,11 @@ class Repository {
   }
   _applySelectedFields(query, selectedFields) {
     const qMethod = query._method;
+    const sanitizedFields = selectedFields ? Array.isArray(selectedFields) ? selectedFields.map((selectedField) => `${selectedField} as ${selectedField}`) : `${selectedFields} as ${selectedFields}` : "*";
     if (qMethod === "del" || qMethod === "update" || qMethod === "insert")
-      query.returning(selectedFields ?? "*");
+      query.returning(sanitizedFields);
     else
-      query.select(selectedFields ?? "*");
+      query.select(sanitizedFields);
   }
   _applyFilter(query, search) {
     const processing = (query2, search2) => {
@@ -166,13 +167,13 @@ class Repository {
     if (!(qMethod === "select"))
       return;
     if (!orderBy)
-      query.orderBy(this._table.primaryKey[0], "asc");
+      query.orderBy(`[${this._table.name}].${this._table.primaryKey[0]}`, "asc");
     else if (Array.isArray(orderBy))
       orderBy.forEach((item) => {
-        query.orderBy(item.selectedField, item.direction);
+        query.orderBy(`[${this._table.name}].${item.selectedField}`, item.direction);
       });
     else
-      query.orderBy(orderBy.selectedField, orderBy.direction);
+      query.orderBy(`[${this._table.name}].${orderBy.selectedField}`, orderBy.direction);
   }
   _applyQueryOptions(query, options) {
     this._applyFilter(query, options?.filters);
@@ -201,7 +202,7 @@ class Repository {
       const result = await query;
       if (throwIfNoResult && result.length === 0)
         throw new HttpError({
-          message: DATABASE_ERROR_KEYS.MSSQL_NO_RESULT,
+          message: typeof throwIfNoResult === "string" ? throwIfNoResult : DATABASE_ERROR_KEYS.MSSQL_NO_RESULT,
           cause: {
             query: query.toSQL().sql
           },

package/dist/modules/database/index.js

@@ -2,8 +2,8 @@
 import {
   MSSQL,
   Table
-} from "../../chunk-7m70tmz2.js";
-import"../../chunk-9wk2pajt.js";
+} from "../../chunk-qb6x364m.js";
+import"../../chunk-z6q192p8.js";
 import"../../chunk-5qtpggzv.js";
 import"../../chunk-yvyahr2h.js";
 import"../../chunk-zaje5tv4.js";

package/dist/modules/elysia/crud/index.js

@@ -1,7 +1,7 @@
 // @bun
 import {
   dbResolver
-} from "../../../chunk-64d6w5kt.js";
+} from "../../../chunk-tm71j126.js";
 import"../../../chunk-7jsxw1ts.js";
 import"../../../chunk-hcc6g1fd.js";
 import"../../../chunk-dwfyt1m6.js";
@@ -11,8 +11,8 @@ import {
 import"../../../chunk-26brdrbz.js";
 import"../../../chunk-4n72ks5x.js";
 import"../../../chunk-j28jpfv2.js";
-import"../../../chunk-7m70tmz2.js";
-import"../../../chunk-9wk2pajt.js";
+import"../../../chunk-qb6x364m.js";
+import"../../../chunk-z6q192p8.js";
 import"../../../chunk-5qtpggzv.js";
 import"../../../chunk-yvyahr2h.js";
 import"../../../chunk-zaje5tv4.js";

package/dist/modules/elysia/dbResolver/index.js

@@ -1,12 +1,12 @@
 // @bun
 import {
   dbResolver
-} from "../../../chunk-64d6w5kt.js";
+} from "../../../chunk-tm71j126.js";
 import"../../../chunk-7jsxw1ts.js";
 import"../../../chunk-hcc6g1fd.js";
 import"../../../chunk-dwfyt1m6.js";
-import"../../../chunk-7m70tmz2.js";
-import"../../../chunk-9wk2pajt.js";
+import"../../../chunk-qb6x364m.js";
+import"../../../chunk-z6q192p8.js";
 import"../../../chunk-5qtpggzv.js";
 import"../../../chunk-yvyahr2h.js";
 import"../../../chunk-zaje5tv4.js";

package/dist/modules/elysia/rateLimit/enums/index.d.ts

@@ -0,0 +1 @@
+export { RATE_LIMIT_ERROR_KEYS } from './rateLimitErrorKeys';

package/dist/modules/elysia/rateLimit/enums/index.js

@@ -0,0 +1,7 @@
+// @bun
+import {
+  RATE_LIMIT_ERROR_KEYS
+} from "../../../../chunk-yd82hdxv.js";
+export {
+  RATE_LIMIT_ERROR_KEYS
+};

package/dist/modules/elysia/rateLimit/enums/rateLimitErrorKeys.d.ts

@@ -0,0 +1,3 @@
+export declare const RATE_LIMIT_ERROR_KEYS: {
+    readonly RATE_LIMIT_EXCEEDED: "elysia.rateLimit.error.exceeded";
+};

package/dist/modules/elysia/rateLimit/index.d.ts

@@ -0,0 +1 @@
+export { rateLimit } from './rateLimit';

package/dist/modules/elysia/rateLimit/index.js

@@ -0,0 +1,139 @@
+// @bun
+import {
+  RATE_LIMIT_ERROR_KEYS
+} from "../../../chunk-yd82hdxv.js";
+import {
+  HttpError
+} from "../../../chunk-683sda6e.js";
+import"../../../chunk-9nw6qekv.js";
+import"../../../chunk-vknq69e0.js";
+
+// source/modules/elysia/rateLimit/rateLimit.ts
+import { Elysia } from "elysia";
+
+// source/modules/elysia/rateLimit/stores/memoryStore.ts
+class MemoryStore {
+  _store = new Map;
+  _cleanupInterval;
+  _cleanupTimer = null;
+  constructor(cleanupIntervalMs) {
+    this._cleanupInterval = cleanupIntervalMs ?? 300000;
+    this._startCleanup();
+  }
+  get(key) {
+    const entry = this._store.get(key);
+    if (!entry)
+      return null;
+    const now = Date.now();
+    if (now > entry.expiresAt && entry.expiresAt !== -1) {
+      this._store.delete(key);
+      return null;
+    }
+    return entry.value;
+  }
+  setex(key, seconds, value) {
+    if (seconds <= 0)
+      return;
+    const expiresAt = Date.now() + seconds * 1000;
+    this._store.set(key, {
+      value,
+      expiresAt
+    });
+  }
+  incr(key) {
+    const now = Date.now();
+    const entry = this._store.get(key);
+    if (!entry || now > entry.expiresAt && entry.expiresAt !== -1) {
+      if (entry)
+        this._store.delete(key);
+      this._store.set(key, {
+        value: "1",
+        expiresAt: -1
+      });
+      return 1;
+    }
+    const currentValue = parseInt(entry.value) || 0;
+    const newValue = currentValue + 1;
+    this._store.set(key, {
+      value: newValue.toString(),
+      expiresAt: entry.expiresAt
+    });
+    return newValue;
+  }
+  ttl(key) {
+    const entry = this._store.get(key);
+    if (!entry)
+      return -1;
+    if (entry.expiresAt === -1)
+      return -1;
+    const now = Date.now();
+    if (now > entry.expiresAt) {
+      this._store.delete(key);
+      return -1;
+    }
+    return Math.ceil((entry.expiresAt - now) / 1000);
+  }
+  _startCleanup() {
+    this._cleanupTimer = setInterval(() => {
+      this._cleanup();
+    }, this._cleanupInterval);
+  }
+  _cleanup() {
+    const now = Date.now();
+    for (const [key, entry] of this._store.entries())
+      if (now > entry.expiresAt && entry.expiresAt !== -1)
+        this._store.delete(key);
+  }
+  destroy() {
+    if (this._cleanupTimer) {
+      clearInterval(this._cleanupTimer);
+      this._cleanupTimer = null;
+    }
+    this._store.clear();
+  }
+}
+
+// source/modules/elysia/rateLimit/rateLimit.ts
+var rateLimit = ({ store, limit, window }) => {
+  const storeInstance = store === ":memory:" || !store ? new MemoryStore : store;
+  return new Elysia({
+    name: "rateLimit",
+    seed: {
+      store,
+      limit,
+      window
+    }
+  }).onRequest(async ({ set, request, server }) => {
+    const ip = request.headers.get("x-forwarded-for") || request.headers.get("x-real-ip") || server?.requestIP(request)?.address || "127.0.0.1";
+    const key = `rateLimit:${ip}`;
+    const current = await storeInstance.get(key);
+    const count = current ? parseInt(current) : 0;
+    if (count === 0)
+      await storeInstance.setex(key, window, "1");
+    else
+      await storeInstance.incr(key);
+    const newCount = await storeInstance.get(key);
+    const currentCount = newCount ? parseInt(newCount) : 0;
+    if (currentCount > limit) {
+      set.status = 429;
+      throw new HttpError({
+        message: RATE_LIMIT_ERROR_KEYS.RATE_LIMIT_EXCEEDED,
+        httpStatusCode: "TOO_MANY_REQUESTS",
+        cause: {
+          limit,
+          window,
+          remaining: 0,
+          reset: await storeInstance.ttl(key)
+        }
+      });
+    }
+    set.headers = {
+      "X-RateLimit-Limit": limit.toString(),
+      "X-RateLimit-Remaining": Math.max(0, limit - currentCount).toString(),
+      "X-RateLimit-Reset": (await storeInstance.ttl(key)).toString()
+    };
+  }).as("global");
+};
+export {
+  rateLimit
+};

package/dist/modules/elysia/{ratelimit/ratelimit.d.ts → rateLimit/rateLimit.d.ts}

@@ -27,7 +27,7 @@ import type { RateLimitOptions } from './types/rateLimitOptions';
  * // Create and configure the application with rate limiting
  * const app = new Elysia()
  *   .use(rateLimit({
- *     redis,
+ *     store: redis,
  *     limit: 100,           // 100 requests
  *     window: 60,           // per minute
  *   }))
@@ -39,7 +39,7 @@ import type { RateLimitOptions } from './types/rateLimitOptions';
  * app.listen(3000);
  * ```
  */
-export declare const rateLimit: ({ redis, limit, window }: RateLimitOptions) => Elysia<"", {
+export declare const rateLimit: ({ store, limit, window }: RateLimitOptions) => Elysia<"", {
     decorator: {};
     store: {};
     derive: {};
@@ -48,7 +48,7 @@ export declare const rateLimit: ({ redis, limit, window }: RateLimitOptions) =>
     typebox: {};
     error: {};
 }, {
-    schema: {};
+    schema: import("elysia").MergeSchema<import("elysia").MergeSchema<{}, {}, "">, {}, "">;
     standaloneSchema: {};
     macro: {};
     macroFn: {};
@@ -56,8 +56,8 @@ export declare const rateLimit: ({ redis, limit, window }: RateLimitOptions) =>
 }, {}, {
     derive: {};
     resolve: {};
-    schema: import("elysia").MergeSchema<{}, {}, "">;
-    standaloneSchema: import("elysia/types").PrettifySchema<{}>;
+    schema: {};
+    standaloneSchema: {};
 }, {
     derive: {};
     resolve: {};

package/dist/modules/elysia/rateLimit/stores/memoryStore.d.ts

@@ -0,0 +1,47 @@
+import type { RateLimitStore } from '../../../../modules/elysia/rateLimit/types/rateLimitStore';
+export declare class MemoryStore implements RateLimitStore {
+    /**
+     * Internal storage map.
+     */
+    private readonly _store;
+    /**
+     * Cleanup interval (5 minutes by default).
+     */
+    private readonly _cleanupInterval;
+    /**
+     * Timer for cleanup operations.
+     */
+    private _cleanupTimer;
+    /**
+     * Creates instance and starts cleanup process.
+     */
+    constructor(cleanupIntervalMs?: number);
+    /**
+     * Get current count for a key.
+     */
+    get(key: string): string | null;
+    /**
+     * Set key with expiration time.
+     */
+    setex(key: string, seconds: number, value: string): void;
+    /**
+     * Increment key value and return new count.
+     */
+    incr(key: string): number;
+    /**
+     * Get time to live for key in seconds.
+     */
+    ttl(key: string): number;
+    /**
+     * Start cleanup process.
+     */
+    private _startCleanup;
+    /**
+     * Clean up expired entries.
+     */
+    private _cleanup;
+    /**
+     * Stop cleanup and clear data.
+     */
+    destroy(): void;
+}

package/dist/modules/elysia/rateLimit/types/memoryStoreEntry.d.ts

@@ -0,0 +1,11 @@
+export interface MemoryStoreEntry {
+    /**
+     * Current count value for the key.
+     */
+    readonly value: string;
+    /**
+     * Timestamp when this entry expires (in milliseconds).
+     * -1 means no expiration (like Redis behavior).
+     */
+    readonly expiresAt: number;
+}

package/dist/modules/elysia/{ratelimit → rateLimit}/types/rateLimitOptions.d.ts

@@ -5,18 +5,21 @@ import type { Redis } from 'ioredis';
  * @example
  * ```ts
  * const options: RateLimitOptions = {
- *   redis: redisInstance, // Your Redis instance
+ *   store: redisInstance, // Your Redis instance
  *   limit: 100,          // Allow 100 requests
  *   window: 60,          // Per 60 seconds
- *   message: 'You have exceeded the rate limit. Please try again later.'
  * };
  * ```
  */
 export interface RateLimitOptions {
     /**
-     * Redis instance used for storing rate limit data.
+     * Storage backend for rate limit data.
+     *
+     * - If not specified, defaults to in-memory storage
+     * - Use ':memory:' to explicitly specify in-memory storage
+     * - Provide a Redis instance for persistent distributed storage
      */
-    readonly redis: Redis;
+    readonly store?: ':memory:' | Redis;
     /**
      * Maximum number of requests allowed in the time window.
      *

package/dist/modules/elysia/rateLimit/types/rateLimitStore.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Common interface for rate limit storage backends (Memory, Redis, etc.).
+ */
+export interface RateLimitStore {
+    /**
+     * Get value for a key.
+     */
+    get(key: string): string | null | Promise<string | null>;
+    /**
+     * Set key with expiration.
+     */
+    setex(key: string, seconds: number, value: string): void | Promise<void>;
+    /**
+     * Increment key value.
+     */
+    incr(key: string): number | Promise<number>;
+    /**
+     * Get time to live for key.
+     */
+    ttl(key: string): number | Promise<number>;
+}

package/dist/modules/repository/index.js

@@ -1,7 +1,7 @@
 // @bun
 import {
   Repository
-} from "../../chunk-9wk2pajt.js";
+} from "../../chunk-z6q192p8.js";
 import"../../chunk-5qtpggzv.js";
 import"../../chunk-zaje5tv4.js";
 import"../../chunk-683sda6e.js";

package/dist/modules/totp/enums/index.d.ts

@@ -0,0 +1 @@
+export { TOTP_ERROR_KEYS } from './totpErrorKeys';

package/dist/modules/totp/enums/index.js

@@ -0,0 +1,7 @@
+// @bun
+import {
+  TOTP_ERROR_KEYS
+} from "../../../chunk-snqdnkk7.js";
+export {
+  TOTP_ERROR_KEYS
+};

package/dist/modules/totp/enums/totpErrorKeys.d.ts

@@ -0,0 +1,7 @@
+export declare const TOTP_ERROR_KEYS: {
+    readonly INVALID_BASE32_CHARACTER: "totp.error.invalid_base32_character";
+    readonly INVALID_SECRET_LENGTH: "totp.error.invalid_secret_length";
+    readonly INVALID_ALGORITHM: "totp.error.invalid_algorithm";
+    readonly INVALID_OTP_AUTH_URI: "totp.error.invalid_otp_auth_uri";
+    readonly MISSING_SECRET: "totp.error.missing_secret";
+};

package/dist/modules/totp/index.d.ts

@@ -0,0 +1 @@
+export { hotp, totp, verifyTotp, buildOtpAuthUri, parseOtpAuthUri, timeRemaining } from './totp';

package/dist/modules/totp/index.js

@@ -0,0 +1,113 @@
+// @bun
+import {
+  createCounterBuffer,
+  dynamicTruncation,
+  generateHmac
+} from "../../chunk-4mt568fz.js";
+import {
+  TOTP_ERROR_KEYS
+} from "../../chunk-snqdnkk7.js";
+import {
+  BaseError
+} from "../../chunk-vknq69e0.js";
+
+// source/modules/totp/totp.ts
+import { webcrypto } from "crypto";
+var hotp = async (secret, counter, {
+  algorithm = "SHA-1",
+  digits = 6
+} = {}) => {
+  const counterBuffer = createCounterBuffer(counter);
+  const key = await webcrypto.subtle.importKey("raw", secret, { name: "HMAC", hash: algorithm }, false, ["sign"]);
+  const hmacArray = await generateHmac(key, counterBuffer);
+  return dynamicTruncation(hmacArray, digits);
+};
+var totp = async (secret, {
+  algorithm = "SHA-1",
+  digits = 6,
+  period = 30,
+  now = Date.now()
+} = {}) => {
+  const timeStep = Math.floor(now / 1000 / period);
+  return hotp(secret, timeStep, { algorithm, digits });
+};
+var verifyTotp = async (secret, code, {
+  algorithm = "SHA-1",
+  digits = 6,
+  period = 30,
+  window = 0,
+  now = Date.now()
+} = {}) => {
+  const currentTimeStep = Math.floor(now / 1000 / period);
+  for (let i = -window;i <= window; ++i) {
+    const timeStep = currentTimeStep + i;
+    const expectedCode = await hotp(secret, timeStep, { algorithm, digits });
+    if (expectedCode === code)
+      return true;
+  }
+  return false;
+};
+var buildOtpAuthUri = ({
+  secretBase32,
+  label,
+  issuer,
+  algorithm = "SHA-1",
+  digits = 6,
+  period = 30
+}) => {
+  const encodedLabel = encodeURIComponent(label);
+  const encodedIssuer = issuer ? encodeURIComponent(issuer) : undefined;
+  let uri = `otpauth://totp/${encodedLabel}?secret=${secretBase32}`;
+  if (encodedIssuer)
+    uri += `&issuer=${encodedIssuer}`;
+  if (algorithm !== "SHA-1")
+    uri += `&algorithm=${algorithm}`;
+  if (digits !== 6)
+    uri += `&digits=${digits}`;
+  if (period !== 30)
+    uri += `&period=${period}`;
+  return uri;
+};
+var parseOtpAuthUri = (uri) => {
+  const url = new URL(uri);
+  if (url.protocol !== "otpauth:")
+    throw new BaseError({
+      message: TOTP_ERROR_KEYS.INVALID_OTP_AUTH_URI
+    });
+  if (url.hostname !== "totp")
+    throw new BaseError({
+      message: TOTP_ERROR_KEYS.INVALID_OTP_AUTH_URI
+    });
+  const label = decodeURIComponent(url.pathname.slice(1));
+  const secretBase32 = url.searchParams.get("secret");
+  if (!secretBase32)
+    throw new BaseError({
+      message: TOTP_ERROR_KEYS.MISSING_SECRET
+    });
+  const issuerParam = url.searchParams.get("issuer");
+  const issuer = issuerParam ? decodeURIComponent(issuerParam) : undefined;
+  const algorithm = url.searchParams.get("algorithm") || "SHA-1";
+  const digits = parseInt(url.searchParams.get("digits") || "6", 10);
+  const period = parseInt(url.searchParams.get("period") || "30", 10);
+  const result = {
+    secretBase32,
+    label,
+    algorithm,
+    digits,
+    period,
+    ...issuer && { issuer }
+  };
+  return result;
+};
+var timeRemaining = (period = 30, now = Date.now()) => {
+  const elapsed = Math.floor(now / 1000) % period;
+  return period - elapsed;
+};
+export {
+  verifyTotp,
+  totp,
+  timeRemaining,
+  parseOtpAuthUri,
+  hotp,
+  buildOtpAuthUri
+};

package/dist/modules/totp/totp.d.ts

@@ -0,0 +1,63 @@
+import type { OtpAuthUri } from './types/otpAuthUri';
+import type { TotpOptions } from './types/totpOptions';
+import type { VerifyOptions } from './types/verifyOptions';
+/**
+ * HMAC-based One-Time Password (HOTP) implementation
+ *
+ * @param secret - Secret key as bytes
+ * @param counter - Counter value
+ * @param opts - HOTP options
+ *
+ * @returns Promise resolving to the HOTP code
+ */
+export declare const hotp: (secret: Uint8Array, counter: number | bigint, { algorithm, digits }?: TotpOptions) => Promise<string>;
+/**
+ * Time-based One-Time Password (TOTP) implementation
+ *
+ * @param secret - Secret key as bytes
+ * @param opts - TOTP options including current time
+ *
+ * @returns Promise resolving to the TOTP code
+ */
+export declare const totp: (secret: Uint8Array, { algorithm, digits, period, now }?: TotpOptions & {
+    now?: number;
+}) => Promise<string>;
+/**
+ * Verify a TOTP code against a secret
+ *
+ * @param secret - Secret key as bytes
+ * @param code - Code to verify
+ * @param opts - Verification options
+ *
+ * @returns Promise resolving to true if code is valid
+ */
+export declare const verifyTotp: (secret: Uint8Array, code: string, { algorithm, digits, period, window, now }?: VerifyOptions) => Promise<boolean>;
+/**
+ * Build an OTPAuth URI for QR code generation
+ *
+ * @param params - URI parameters
+ *
+ * @returns OTPAuth URI string
+ */
+export declare const buildOtpAuthUri: ({ secretBase32, label, issuer, algorithm, digits, period }: OtpAuthUri) => string;
+/**
+ * Parse an OTPAuth URI
+ *
+ * @param uri - OTPAuth URI to parse
+ *
+ * @throws ({@link BaseError}) if the URI is invalid or missing required parameters
+ *
+ * @returns Parsed URI parameters
+ */
+export declare const parseOtpAuthUri: (uri: string) => Required<Omit<OtpAuthUri, "issuer">> & {
+    issuer?: string;
+};
+/**
+ * Calculate remaining time until next TOTP code
+ *
+ * @param period - Time period in seconds (default: 30)
+ * @param now - Current timestamp in milliseconds (default: Date.now())
+ *
+ * @returns Seconds remaining until next code
+ */
+export declare const timeRemaining: (period?: number, now?: number) => number;

package/dist/modules/totp/types/index.d.ts

@@ -0,0 +1,3 @@
+export type { OtpAuthUri } from './otpAuthUri';
+export type { TotpOptions } from './totpOptions';
+export type { VerifyOptions } from './verifyOptions';

package/dist/modules/totp/types/index.js

@@ -0,0 +1 @@
+// @bun

package/dist/modules/totp/types/otpAuthUri.d.ts

@@ -0,0 +1,35 @@
+/**
+ * Complete OTPAuth URI data structure
+ */
+export interface OtpAuthUri {
+    /**
+     * Base32 encoded secret
+     */
+    secretBase32: string;
+    /**
+     * Label for the account (usually email or username)
+     */
+    label: string;
+    /**
+     * Issuer name (app/service name)
+     */
+    issuer: string;
+    /**
+     * Hash algorithm
+     *
+     * @defaultValue 'SHA-1'
+     */
+    algorithm?: 'SHA-1' | 'SHA-256' | 'SHA-512';
+    /**
+     * Number of digits
+     *
+     * @defaultValue 6
+     */
+    digits?: 6 | 8;
+    /**
+     * Time period in seconds
+     *
+     * @defaultValue 30
+     */
+    period?: number;
+}

package/dist/modules/totp/types/totpOptions.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Options for TOTP/HOTP generation
+ */
+export interface TotpOptions {
+    /**
+     * Hash algorithm to use
+     *
+     * @defaultValue SHA-1
+     */
+    algorithm?: 'SHA-1' | 'SHA-256' | 'SHA-512';
+    /**
+     * Number of digits in the code
+     *
+     * @defaultValue 6
+     */
+    digits?: 6 | 8;
+    /**
+     * Time step in seconds for TOTP
+     *
+     * @defaultValue 30
+     */
+    period?: number;
+}

package/dist/modules/totp/types/verifyOptions.d.ts

@@ -0,0 +1,18 @@
+import type { TotpOptions } from './totpOptions';
+/**
+ * Options for TOTP verification
+ */
+export interface VerifyOptions extends TotpOptions {
+    /**
+     * Time window for verification (±window periods)
+     *
+     * @defaultValue 1
+     */
+    window?: number;
+    /**
+     * Current timestamp in milliseconds
+     *
+     * @defaultValue Date.now()
+     */
+    now?: number;
+}

package/dist/modules/totp/utils/base32.d.ts

@@ -0,0 +1,19 @@
+/**
+ * Encode bytes to Base32 string
+ *
+ * @param input - Bytes or string to encode
+ * @param withPadding - Whether to include padding (default: true)
+ *
+ * @returns Base32 encoded string
+ */
+export declare const base32Encode: (input: string | Uint8Array, withPadding?: boolean) => string;
+/**
+ * Decode Base32 string to bytes
+ *
+ * @param base32 - Base32 string to decode
+ *
+ * @throws ({@link BaseError}) if invalid Base32 character is found
+ *
+ * @returns Decoded bytes
+ */
+export declare const base32Decode: (base32: string) => Uint8Array;

package/dist/modules/totp/utils/createCounterBuffer.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Convert a counter value to an 8-byte big-endian buffer
+ *
+ * @param counter - Counter value as number or bigint
+ *
+ * @returns ArrayBuffer containing the counter in big-endian format
+ */
+export declare const createCounterBuffer: (counter: number | bigint) => ArrayBuffer;

package/dist/modules/totp/utils/dynamicTruncation.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Perform dynamic truncation on HMAC result according to RFC 4226
+ *
+ * @param hmacArray - HMAC result as byte array
+ * @param digits - Number of digits in the final code
+ *
+ * @returns Truncated code as string with leading zeros
+ */
+export declare const dynamicTruncation: (hmacArray: Uint8Array, digits: number) => string;

package/dist/modules/totp/utils/generateHmac.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Generate HMAC for given data using a crypto key
+ *
+ * @param key - Crypto key for HMAC
+ * @param data - Data to sign
+ *
+ * @returns Promise resolving to HMAC as Uint8Array
+ */
+export declare const generateHmac: (key: CryptoKey, data: ArrayBuffer) => Promise<Uint8Array>;

package/dist/modules/totp/utils/generateSecretBytes.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Generate cryptographically secure random bytes for TOTP secret
+ *
+ * @param length - Number of bytes to generate (default: 20)
+ *
+ * @throws ({@link BaseError}) if length is not positive
+ *
+ * @returns Uint8Array containing the random bytes
+ */
+export declare const generateSecretBytes: (length?: number) => Uint8Array;

package/dist/modules/totp/utils/index.d.ts

@@ -0,0 +1,5 @@
+export { base32Decode, base32Encode } from './base32';
+export { createCounterBuffer } from './createCounterBuffer';
+export { generateSecretBytes } from './generateSecretBytes';
+export { generateHmac } from './generateHmac';
+export { dynamicTruncation } from './dynamicTruncation';

package/dist/modules/totp/utils/index.js

@@ -0,0 +1,75 @@
+// @bun
+import {
+  createCounterBuffer,
+  dynamicTruncation,
+  generateHmac
+} from "../../../chunk-4mt568fz.js";
+import {
+  TOTP_ERROR_KEYS
+} from "../../../chunk-snqdnkk7.js";
+import {
+  BaseError
+} from "../../../chunk-vknq69e0.js";
+
+// source/modules/totp/utils/base32.ts
+var BASE32_ALPHABET = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567";
+var base32Encode = (input, withPadding = true) => {
+  let result = "";
+  let bits = 0;
+  let value = 0;
+  const bytes = input instanceof Uint8Array ? input : new TextEncoder().encode(input);
+  for (const byte of bytes) {
+    value = value << 8 | byte;
+    bits += 8;
+    while (bits >= 5) {
+      result += BASE32_ALPHABET[value >>> bits - 5 & 31];
+      bits -= 5;
+    }
+  }
+  if (bits > 0)
+    result += BASE32_ALPHABET[value << 5 - bits & 31];
+  if (withPadding)
+    while (result.length % 8 !== 0)
+      result += "=";
+  return result;
+};
+var base32Decode = (base32) => {
+  const cleanBase32 = base32.replace(/=+$/, "");
+  if (cleanBase32.length === 0)
+    return new Uint8Array(0);
+  const result = [];
+  let bits = 0;
+  let value = 0;
+  for (const char of cleanBase32) {
+    const charValue = BASE32_ALPHABET.indexOf(char);
+    if (charValue === -1)
+      throw new BaseError({
+        message: TOTP_ERROR_KEYS.INVALID_BASE32_CHARACTER,
+        cause: `Invalid Base32 character: ${char}`
+      });
+    value = value << 5 | charValue;
+    bits += 5;
+    if (bits >= 8) {
+      result.push(value >>> bits - 8 & 255);
+      bits -= 8;
+    }
+  }
+  return new Uint8Array(result);
+};
+// source/modules/totp/utils/generateSecretBytes.ts
+import { getRandomValues } from "crypto";
+var generateSecretBytes = (length = 20) => {
+  if (length <= 0)
+    throw new BaseError({
+      message: TOTP_ERROR_KEYS.INVALID_SECRET_LENGTH
+    });
+  return getRandomValues(new Uint8Array(length));
+};
+export {
+  generateSecretBytes,
+  generateHmac,
+  dynamicTruncation,
+  createCounterBuffer,
+  base32Encode,
+  base32Decode
+};

package/dist/utils/types/index.d.ts

@@ -1 +1,2 @@
+export type { RenameKey } from './renameKey';
 export type { StreamWithAsyncIterable } from './streamWithAsyncIterable';

package/dist/utils/types/renameKey.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Renames a key in an object type while preserving all other properties.
+ *
+ * @template T - The original object type
+ * @template From - The key to rename (must exist in T)
+ * @template To - The new key name
+*/
+export type RenameKey<T, From extends keyof T, To extends PropertyKey> = {
+    [K in keyof T as K extends From ? To : K]: T[K];
+};

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@mrxsys/mrx-core",
-	"version": "2.6.0",
+	"version": "2.7.0",
 	"author": "Ruby",
 	"description": " Core provides a set of tools to help you build a microservice",
 	"type": "module",
@@ -35,9 +35,9 @@
 		"./modules/elysia/jwt/enums": "./dist/modules/elysia/jwt/enums/index.js",
 		"./modules/elysia/jwt/types": "./dist/modules/elysia/jwt/types/index.js",
 		"./modules/elysia/microservice": "./dist/modules/elysia/microservice/index.js",
-		"./modules/elysia/ratelimit": "./dist/modules/elysia/ratelimit/index.js",
-		"./modules/elysia/ratelimit/enums": "./dist/modules/elysia/ratelimit/enums/index.js",
-		"./modules/elysia/ratelimit/types": "./dist/modules/elysia/ratelimit/types/index.js",
+		"./modules/elysia/rateLimit": "./dist/modules/elysia/rateLimit/index.js",
+		"./modules/elysia/rateLimit/enums": "./dist/modules/elysia/rateLimit/enums/index.js",
+		"./modules/elysia/rateLimit/types": "./dist/modules/elysia/rateLimit/types/index.js",
 		"./modules/logger": "./dist/modules/logger/index.js",
 		"./modules/logger/enums": "./dist/modules/logger/enums/index.js",
 		"./modules/logger/events": "./dist/modules/logger/events/index.js",
@@ -50,6 +50,10 @@
 		"./modules/repository/types": "./dist/modules/repository/types/index.js",
 		"./modules/singletonManager": "./dist/modules/singletonManager/index.js",
 		"./modules/singletonManager/enums": "./dist/modules/singletonManager/enums/index.js",
+		"./modules/totp": "./dist/modules/totp/index.js",
+		"./modules/totp/enums": "./dist/modules/totp/enums/index.js",
+		"./modules/totp/types": "./dist/modules/totp/types/index.js",
+		"./modules/totp/utils": "./dist/modules/totp/utils/index.js",
 		"./modules/typedEventEmitter": "./dist/modules/typedEventEmitter/index.js",
 		"./modules/typedEventEmitter/types": "./dist/modules/typedEventEmitter/types/index.js",
 		"./utils": "./dist/utils/index.js",
@@ -67,20 +71,20 @@
 		"test": "bun test --coverage --timeout 5500"
 	},
 	"devDependencies": {
-		"@eslint/js": "^9.32.0",
+		"@eslint/js": "^9.33.0",
 		"@sinclair/typebox": "0.34.38",
-		"@stylistic/eslint-plugin": "^5.2.2",
-		"@types/bun": "^1.2.19",
+		"@stylistic/eslint-plugin": "^5.2.3",
+		"@types/bun": "^1.2.20",
 		"@types/nodemailer": "^6.4.17",
 		"elysia": "^1.3.8",
-		"eslint": "^9.32.0",
+		"eslint": "^9.33.0",
 		"globals": "^16.3.0",
 		"ioredis": "^5.7.0",
 		"jose": "^6.0.12",
 		"knex": "^3.1.0",
 		"mssql": "^11.0.1",
 		"nodemailer": "^7.0.5",
-		"typescript-eslint": "^8.38.0"
+		"typescript-eslint": "^8.39.0"
 	},
 	"peerDependencies": {
 		"@sinclair/typebox": "0.34.38",

package/dist/chunk-twaga0fp.js

@@ -1,6 +0,0 @@
-// source/modules/elysia/ratelimit/enums/ratelimitErrorKeys.ts
-var RATELIMIT_ERROR_KEYS = {
-  RATELIMIT_EXCEEDED: "elysia.ratelimit.error.exceeded"
-};
-
-export { RATELIMIT_ERROR_KEYS };

package/dist/modules/elysia/ratelimit/enums/index.d.ts

@@ -1 +0,0 @@
-export { RATELIMIT_ERROR_KEYS } from './ratelimitErrorKeys';

package/dist/modules/elysia/ratelimit/enums/index.js

@@ -1,7 +0,0 @@
-// @bun
-import {
-  RATELIMIT_ERROR_KEYS
-} from "../../../../chunk-twaga0fp.js";
-export {
-  RATELIMIT_ERROR_KEYS
-};

package/dist/modules/elysia/ratelimit/enums/ratelimitErrorKeys.d.ts

@@ -1,3 +0,0 @@
-export declare const RATELIMIT_ERROR_KEYS: {
-    readonly RATELIMIT_EXCEEDED: "elysia.ratelimit.error.exceeded";
-};

package/dist/modules/elysia/ratelimit/index.d.ts

@@ -1 +0,0 @@
-export { rateLimit } from './ratelimit';

package/dist/modules/elysia/ratelimit/index.js

@@ -1,52 +0,0 @@
-// @bun
-import {
-  RATELIMIT_ERROR_KEYS
-} from "../../../chunk-twaga0fp.js";
-import {
-  HttpError
-} from "../../../chunk-683sda6e.js";
-import"../../../chunk-9nw6qekv.js";
-import"../../../chunk-vknq69e0.js";
-
-// source/modules/elysia/ratelimit/ratelimit.ts
-import { Elysia } from "elysia";
-var rateLimit = ({ redis, limit, window }) => new Elysia({
-  name: "rateLimit",
-  seed: {
-    redis,
-    limit,
-    window
-  }
-}).onRequest(async ({ set, request, server }) => {
-  const ip = request.headers.get("x-forwarded-for") || request.headers.get("x-real-ip") || server?.requestIP(request)?.address || "127.0.0.1";
-  const key = `ratelimit:${ip}`;
-  const current = await redis.get(key);
-  const count = current ? parseInt(current) : 0;
-  if (count === 0)
-    await redis.setex(key, window, "1");
-  else
-    await redis.incr(key);
-  const newCount = await redis.get(key);
-  const currentCount = newCount ? parseInt(newCount) : 0;
-  if (currentCount > limit) {
-    set.status = 429;
-    throw new HttpError({
-      message: RATELIMIT_ERROR_KEYS.RATELIMIT_EXCEEDED,
-      httpStatusCode: "TOO_MANY_REQUESTS",
-      cause: {
-        limit,
-        window,
-        remaining: 0,
-        reset: await redis.ttl(key)
-      }
-    });
-  }
-  set.headers = {
-    "X-RateLimit-Limit": limit.toString(),
-    "X-RateLimit-Remaining": Math.max(0, limit - currentCount).toString(),
-    "X-RateLimit-Reset": (await redis.ttl(key)).toString()
-  };
-}).as("scoped");
-export {
-  rateLimit
-};