@muhgholy/next-drive 4.23.3 → 4.23.5

package/dist/{chunk-RBLDH7CP.cjs → chunk-VIB7R4JN.cjs}

@@ -7,9 +7,9 @@ var os2 = require('os');
 var crypto2 = require('crypto');
 var mongoose = require('mongoose');
 var sharp2 = require('sharp');
-var zod = require('zod');
 var ffmpeg = require('fluent-ffmpeg');
 var googleapis = require('googleapis');
+var zod = require('zod');
 
 function _interopDefault (e) { return e && e.__esModule ? e : { default: e }; }
 
@@ -337,35 +337,6 @@ var getDriveInformation = async (input) => {
   }
   return config.information(input);
 };
-var StorageAccountSchema = new mongoose.Schema(
-  {
-    owner: { type: mongoose.Schema.Types.Mixed, default: null },
-    name: { type: String, required: true },
-    metadata: {
-      provider: { type: String, enum: ["GOOGLE"], required: true },
-      google: {
-        email: { type: String, required: true },
-        credentials: { type: mongoose.Schema.Types.Mixed, required: true }
-      }
-    },
-    createdAt: { type: Date, default: Date.now }
-  },
-  { minimize: false }
-);
-StorageAccountSchema.index({ owner: 1, "metadata.provider": 1 });
-StorageAccountSchema.index({ owner: 1, "metadata.google.email": 1 });
-StorageAccountSchema.method("toClient", async function() {
-  const data = this.toJSON();
-  return {
-    id: String(data._id),
-    owner: data.owner,
-    name: data.name,
-    metadata: data.metadata,
-    createdAt: data.createdAt
-  };
-});
-var StorageAccount = mongoose__default.default.models.StorageAccount || mongoose__default.default.model("StorageAccount", StorageAccountSchema);
-var account_default = StorageAccount;
 var validateMimeType = (mime, allowedTypes) => {
   if (allowedTypes.includes("*/*")) return true;
   return allowedTypes.some((pattern) => {
@@ -529,97 +500,6 @@ var getImageSettings = (fileSizeInBytes, qualityPreset, display, size, fit, posi
     ...resolvedPosition && { position: resolvedPosition }
   };
 };
-var objectIdSchema = zod.z.string().refine((val) => mongoose.isValidObjectId(val), {
-  message: "Invalid ObjectId format"
-});
-var sanitizeFilename = (name) => {
-  return name.replace(/[<>:"|?*\x00-\x1F]/g, "").replace(/^\.+/, "").replace(/\.+$/, "").replace(/\\/g, "/").replace(/\/+/g, "/").replace(/\.\.\//g, "").replace(/\.\.+/g, "").split("/").pop() || "".trim().slice(0, 255);
-};
-var sanitizeRegexInput = (input) => {
-  return input.replace(/[.*+?^${}()|[\]\\]/g, "\\$&").slice(0, 100);
-};
-var nameSchema = zod.z.string().min(1, "Name is required").max(255, "Name too long").transform(sanitizeFilename).refine((val) => val.length > 0, { message: "Invalid name after sanitization" });
-var uploadChunkSchema = zod.z.object({
-  chunkIndex: zod.z.number().int().min(0).max(1e4),
-  totalChunks: zod.z.number().int().min(1).max(1e4),
-  driveId: zod.z.string().optional(),
-  fileName: nameSchema,
-  fileSize: zod.z.number().int().min(0).max(Number.MAX_SAFE_INTEGER),
-  fileType: zod.z.string().min(1).max(255),
-  folderId: zod.z.string().optional()
-}).refine((data) => data.chunkIndex < data.totalChunks, {
-  message: "Chunk index must be less than total chunks"
-});
-var listQuerySchema = zod.z.object({
-  folderId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.undefined()]),
-  limit: zod.z.string().optional().transform((val) => {
-    const num = parseInt(val || "50", 10);
-    return Math.min(Math.max(1, num), 100);
-  }),
-  afterId: objectIdSchema.optional()
-});
-zod.z.object({
-  id: objectIdSchema,
-  token: zod.z.string().optional()
-});
-zod.z.object({
-  id: objectIdSchema,
-  size: zod.z.enum(["small", "medium", "large"]).optional().default("medium"),
-  token: zod.z.string().optional()
-});
-var renameBodySchema = zod.z.object({
-  id: objectIdSchema,
-  newName: nameSchema
-});
-var deleteQuerySchema = zod.z.object({
-  id: objectIdSchema
-});
-zod.z.object({
-  ids: zod.z.array(objectIdSchema).min(1).max(1e3)
-});
-var createFolderBodySchema = zod.z.object({
-  name: nameSchema,
-  parentId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.string().length(0), zod.z.undefined()]).optional()
-});
-var moveBodySchema = zod.z.object({
-  ids: zod.z.array(objectIdSchema).min(1).max(1e3),
-  targetFolderId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.undefined()]).optional()
-});
-zod.z.object({
-  ids: zod.z.array(objectIdSchema).min(1).max(1e3)
-});
-var searchQuerySchema = zod.z.object({
-  q: zod.z.string().min(1).max(100).transform(sanitizeRegexInput),
-  folderId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.undefined()]).optional(),
-  limit: zod.z.string().optional().transform((val) => {
-    const num = parseInt(val || "50", 10);
-    return Math.min(Math.max(1, num), 100);
-  }),
-  trashed: zod.z.string().optional().transform((val) => val === "true")
-});
-zod.z.object({
-  id: objectIdSchema
-});
-var cancelQuerySchema = zod.z.object({
-  id: zod.z.string().uuid()
-});
-zod.z.object({
-  days: zod.z.number().int().min(1).max(365).optional()
-});
-var driveFileSchemaZod = zod.z.object({
-  id: zod.z.string(),
-  file: zod.z.object({
-    name: zod.z.string(),
-    mime: zod.z.string(),
-    size: zod.z.number()
-  })
-});
-
-// src/server/security/cryptoUtils.ts
-function sanitizeContentDispositionFilename(filename) {
-  const basename = filename.replace(/^.*[\\\/]/, "");
-  return basename.replace(/["\r\n]/g, "").replace(/[^\x20-\x7E]/g, "").slice(0, 255);
-}
 var generatePlaceholderThumbnail = async (outputPath, mimeType) => {
   const typeParts = mimeType.split("/");
   const subtype = typeParts[1] || "file";
@@ -816,6 +696,37 @@ var LocalStorageProvider = {
   revokeToken: async (owner, accountId) => {
   }
 };
+var StorageAccountSchema = new mongoose.Schema(
+  {
+    owner: { type: mongoose.Schema.Types.Mixed, default: null },
+    name: { type: String, required: true },
+    metadata: {
+      provider: { type: String, enum: ["GOOGLE"], required: true },
+      google: {
+        email: { type: String, required: true },
+        credentials: { type: mongoose.Schema.Types.Mixed, required: true }
+      }
+    },
+    createdAt: { type: Date, default: Date.now }
+  },
+  { minimize: false }
+);
+StorageAccountSchema.index({ owner: 1, "metadata.provider": 1 });
+StorageAccountSchema.index({ owner: 1, "metadata.google.email": 1 });
+StorageAccountSchema.method("toClient", async function() {
+  const data = this.toJSON();
+  return {
+    id: String(data._id),
+    owner: data.owner,
+    name: data.name,
+    metadata: data.metadata,
+    createdAt: data.createdAt
+  };
+});
+var StorageAccount = mongoose__default.default.models.StorageAccount || mongoose__default.default.model("StorageAccount", StorageAccountSchema);
+var account_default = StorageAccount;
+
+// src/server/providers/google.ts
 var createAuthClient = async (owner, accountId) => {
   const query = { owner, "metadata.provider": "GOOGLE" };
   if (accountId) query._id = accountId;
@@ -1282,6 +1193,8 @@ var GoogleDriveProvider = {
     }
   }
 };
+
+// src/server/controllers/drive.ts
 var getNextOrderValue = async (owner) => {
   const lastItem = await drive_default.findOne({ owner }, {}, { sort: { order: -1 } });
   return lastItem ? lastItem.order + 1 : 0;
@@ -1302,7 +1215,22 @@ var driveGetUrl = (fileId, options) => {
   }
   const signature = crypto2__default.default.createHmac("sha256", secret).update(`${fileId}:${expiryTimestamp}`).digest("hex");
   const token = Buffer.from(`${expiryTimestamp}:${signature}`).toString("base64url");
-  return `/api/drive?action=serve&id=${fileId}&token=${token}`;
+  return `${config.apiUrl || "/api/drive"}?action=serve&id=${fileId}&token=${token}`;
+};
+var driveAddSignedUrlToken = (item, config) => {
+  let token;
+  if (config.security?.signedUrls?.enabled && config.security.signedUrls.secret) {
+    const { secret, expiresIn } = config.security.signedUrls;
+    const expiryTimestamp = Math.floor(Date.now() / 1e3) + expiresIn;
+    const signature = crypto2__default.default.createHmac("sha256", secret).update(`${item.id}:${expiryTimestamp}`).digest("hex");
+    token = Buffer.from(`${expiryTimestamp}:${signature}`).toString("base64url");
+  }
+  const apiUrl = config.apiUrl || "/api/drive";
+  const url = `${apiUrl}?action=serve&id=${item.id}${token ? `&token=${token}` : ""}`;
+  return { ...item, token, url };
+};
+var driveAddSignedUrlTokens = (items, config) => {
+  return items.map((item) => driveAddSignedUrlToken(item, config));
 };
 var driveReadFile = async (file) => {
   let drive;
@@ -1462,7 +1390,8 @@ var driveList = async (options) => {
     query._id = { $lt: afterId };
   }
   const items = await drive_default.find(query, {}, { sort: { order: 1, _id: -1 }, limit });
-  return await Promise.all(items.map((item) => item.toClient()));
+  const config = getDriveConfig();
+  return driveAddSignedUrlTokens(await Promise.all(items.map((item) => item.toClient())), config);
 };
 var driveListFiles = async (options) => {
   const { key, folderId, accountId } = options;
@@ -1498,8 +1427,9 @@ var driveListFiles = async (options) => {
     drive_default.find(query, {}, { sort: { createdAt: -1 }, skip, limit })
   ]);
   const totalPages = Math.ceil(totalCount / limit);
+  const config = getDriveConfig();
   return {
-    items: await Promise.all(items.map((item) => item.toClient())),
+    items: driveAddSignedUrlTokens(await Promise.all(items.map((item) => item.toClient())), config),
     pagination: {
       page,
       limit,
@@ -1791,8 +1721,97 @@ var driveCleanup = async () => {
   }
   return { removed, totalFreedInBytes };
 };
+var objectIdSchema = zod.z.string().refine((val) => mongoose.isValidObjectId(val), {
+  message: "Invalid ObjectId format"
+});
+var sanitizeFilename = (name) => {
+  return name.replace(/[<>:"|?*\x00-\x1F]/g, "").replace(/^\.+/, "").replace(/\.+$/, "").replace(/\\/g, "/").replace(/\/+/g, "/").replace(/\.\.\//g, "").replace(/\.\.+/g, "").split("/").pop() || "".trim().slice(0, 255);
+};
+var sanitizeRegexInput = (input) => {
+  return input.replace(/[.*+?^${}()|[\]\\]/g, "\\$&").slice(0, 100);
+};
+var nameSchema = zod.z.string().min(1, "Name is required").max(255, "Name too long").transform(sanitizeFilename).refine((val) => val.length > 0, { message: "Invalid name after sanitization" });
+var uploadChunkSchema = zod.z.object({
+  chunkIndex: zod.z.number().int().min(0).max(1e4),
+  totalChunks: zod.z.number().int().min(1).max(1e4),
+  driveId: zod.z.string().optional(),
+  fileName: nameSchema,
+  fileSize: zod.z.number().int().min(0).max(Number.MAX_SAFE_INTEGER),
+  fileType: zod.z.string().min(1).max(255),
+  folderId: zod.z.string().optional()
+}).refine((data) => data.chunkIndex < data.totalChunks, {
+  message: "Chunk index must be less than total chunks"
+});
+var listQuerySchema = zod.z.object({
+  folderId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.undefined()]),
+  limit: zod.z.string().optional().transform((val) => {
+    const num = parseInt(val || "50", 10);
+    return Math.min(Math.max(1, num), 100);
+  }),
+  afterId: objectIdSchema.optional()
+});
+zod.z.object({
+  id: objectIdSchema,
+  token: zod.z.string().optional()
+});
+zod.z.object({
+  id: objectIdSchema,
+  size: zod.z.enum(["small", "medium", "large"]).optional().default("medium"),
+  token: zod.z.string().optional()
+});
+var renameBodySchema = zod.z.object({
+  id: objectIdSchema,
+  newName: nameSchema
+});
+var deleteQuerySchema = zod.z.object({
+  id: objectIdSchema
+});
+zod.z.object({
+  ids: zod.z.array(objectIdSchema).min(1).max(1e3)
+});
+var createFolderBodySchema = zod.z.object({
+  name: nameSchema,
+  parentId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.string().length(0), zod.z.undefined()]).optional()
+});
+var moveBodySchema = zod.z.object({
+  ids: zod.z.array(objectIdSchema).min(1).max(1e3),
+  targetFolderId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.undefined()]).optional()
+});
+zod.z.object({
+  ids: zod.z.array(objectIdSchema).min(1).max(1e3)
+});
+var searchQuerySchema = zod.z.object({
+  q: zod.z.string().min(1).max(100).transform(sanitizeRegexInput),
+  folderId: zod.z.union([zod.z.literal("root"), objectIdSchema, zod.z.undefined()]).optional(),
+  limit: zod.z.string().optional().transform((val) => {
+    const num = parseInt(val || "50", 10);
+    return Math.min(Math.max(1, num), 100);
+  }),
+  trashed: zod.z.string().optional().transform((val) => val === "true")
+});
+zod.z.object({
+  id: objectIdSchema
+});
+var cancelQuerySchema = zod.z.object({
+  id: zod.z.string().uuid()
+});
+zod.z.object({
+  days: zod.z.number().int().min(1).max(365).optional()
+});
+var driveFileSchemaZod = zod.z.object({
+  id: zod.z.string(),
+  file: zod.z.object({
+    name: zod.z.string(),
+    mime: zod.z.string(),
+    size: zod.z.number()
+  })
+});
 
-// src/server/index.ts
+// src/server/security/cryptoUtils.ts
+function sanitizeContentDispositionFilename(filename) {
+  const basename = filename.replace(/^.*[\\\/]/, "");
+  return basename.replace(/["\r\n]/g, "").replace(/[^\x20-\x7E]/g, "").slice(0, 255);
+}
 var getProvider = async (req, owner) => {
   const accountId = req.headers["x-drive-account"];
   if (!accountId || accountId === "LOCAL") {
@@ -1806,19 +1825,10 @@ var getProvider = async (req, owner) => {
   return { provider: LocalStorageProvider };
 };
 var addSignedUrlToken = (item, config) => {
-  if (!config.security?.signedUrls?.enabled || !config.security.signedUrls.secret) {
-    return item;
-  }
-  const { secret, expiresIn } = config.security.signedUrls;
-  const expiryTimestamp = Math.floor(Date.now() / 1e3) + expiresIn;
-  const signature = crypto2__default.default.createHmac("sha256", secret).update(`${item.id}:${expiryTimestamp}`).digest("hex");
-  return { ...item, token: Buffer.from(`${expiryTimestamp}:${signature}`).toString("base64url") };
+  return driveAddSignedUrlToken(item, config);
 };
 var addSignedUrlTokens = (items, config) => {
-  if (!config.security?.signedUrls?.enabled || !config.security.signedUrls.secret) {
-    return items;
-  }
-  return items.map((item) => addSignedUrlToken(item, config));
+  return driveAddSignedUrlTokens(items, config);
 };
 var applyCorsHeaders = (req, res, config) => {
   const cors = config.cors;
@@ -2552,5 +2562,5 @@ exports.driveUpload = driveUpload;
 exports.drive_default = drive_default;
 exports.getDriveConfig = getDriveConfig;
 exports.getDriveInformation = getDriveInformation;
-//# sourceMappingURL=chunk-RBLDH7CP.cjs.map
-//# sourceMappingURL=chunk-RBLDH7CP.cjs.map
+//# sourceMappingURL=chunk-VIB7R4JN.cjs.map
+//# sourceMappingURL=chunk-VIB7R4JN.cjs.map