@multitenantkit/adapter-transport-supabase-edge 0.2.1

package/README.md

@@ -0,0 +1,180 @@
+# @multitenantkit/adapter-transport-supabase-edge
+
+Supabase Edge Functions transport adapter for MultiTenantKit HTTP API.
+
+This adapter enables running MultiTenantKit API endpoints as a single Supabase Edge Function with internal routing (the "fat function" pattern).
+
+## Features
+
+- **Single Edge Function**: All endpoints run in one function, minimizing cold starts
+- **Native Deno**: Uses `Deno.serve()` directly without additional frameworks
+- **Full Compatibility**: Works with all `@multitenantkit/api-handlers` HandlerPackages
+- **Built-in CORS**: Configurable CORS handling for browser clients
+- **Authentication**: Integrates with `@multitenantkit/adapter-auth-supabase` for JWT validation
+- **Request Validation**: Zod-based validation for body, params, and query
+
+## Installation
+
+```bash
+npm install @multitenantkit/adapter-transport-supabase-edge
+```
+
+## Usage
+
+### Basic Setup
+
+```typescript
+// supabase/functions/multitenantkit/index.ts
+
+import { buildEdgeFunction } from '@multitenantkit/adapter-transport-supabase-edge';
+import { buildHandlers } from '@multitenantkit/api-handlers';
+import { createUseCases } from '@multitenantkit/composition';
+import { SupabaseAuthService } from '@multitenantkit/adapter-auth-supabase';
+
+// Initialize your adapters and use cases
+const useCases = createUseCases(adapters);
+const handlers = buildHandlers(useCases);
+
+// Create auth service
+const authService = new SupabaseAuthService({
+    supabaseUrl: Deno.env.get('SUPABASE_URL')!,
+    supabaseServiceKey: Deno.env.get('SUPABASE_SERVICE_ROLE_KEY')!
+});
+
+// Build the Edge Function handler
+const handler = buildEdgeFunction(handlers, authService, {
+    basePath: '/multitenantkit',
+    cors: {
+        allowOrigin: '*',
+        allowHeaders: ['authorization', 'x-client-info', 'apikey', 'content-type'],
+        allowMethods: ['GET', 'POST', 'PUT', 'DELETE', 'PATCH', 'OPTIONS']
+    },
+    debug: true // Enable for development
+});
+
+// Start the server
+Deno.serve(handler);
+```
+
+### Configuration Options
+
+```typescript
+interface EdgeFunctionOptions {
+    /** Base path prefix for all routes (usually the function name) */
+    basePath: string;
+
+    /** CORS configuration */
+    cors?: {
+        allowOrigin: string | string[];
+        allowHeaders: string[];
+        allowMethods: string[];
+        maxAge?: number;
+    };
+
+    /** Enable debug logging */
+    debug?: boolean;
+}
+```
+
+## Project Structure
+
+For a Supabase project using this adapter:
+
+```
+supabase/
+├── functions/
+│   ├── import_map.json
+│   ├── _shared/
+│   │   └── multitenantkit.ts    # Shared configuration
+│   └── multitenantkit/
+│       └── index.ts             # Entry point
+├── migrations/
+└── config.toml
+```
+
+### Supabase Config (`config.toml`)
+
+```toml
+[functions.multitenantkit]
+verify_jwt = false  # We handle JWT verification ourselves
+```
+
+## Available Endpoints
+
+Once deployed, the following endpoints are available (prefixed with your function path):
+
+### Users
+- `POST /users` - Create user
+- `GET /users/me` - Get current user
+- `PATCH /users/me` - Update current user
+- `DELETE /users/me` - Delete current user
+- `GET /users/me/organizations` - List user's organizations
+
+### Organizations
+- `POST /organizations` - Create organization
+- `GET /organizations/:id` - Get organization
+- `PATCH /organizations/:id` - Update organization
+- `DELETE /organizations/:id` - Delete organization
+
+### Memberships
+- `POST /organizations/:organizationId/memberships` - Add member
+- `GET /organizations/:organizationId/memberships` - List members
+- `GET /organizations/:organizationId/memberships/:memberId` - Get member
+- `PATCH /organizations/:organizationId/memberships/:memberId` - Update member
+- `DELETE /organizations/:organizationId/memberships/:memberId` - Remove member
+
+### Health
+- `GET /health` - Health check endpoint (built-in)
+
+## API Reference
+
+### `buildEdgeFunction(handlers, authService, options)`
+
+Creates a Deno.serve() compatible handler function.
+
+**Parameters:**
+- `handlers` - Array of HandlerPackages from `@multitenantkit/api-handlers`
+- `authService` - AuthService implementation (e.g., SupabaseAuthService)
+- `options` - Configuration options
+
+**Returns:** `(request: Request) => Promise<Response>`
+
+### `EdgeRouter`
+
+Low-level router class for advanced use cases.
+
+```typescript
+import { EdgeRouter } from '@multitenantkit/adapter-transport-supabase-edge';
+
+const router = new EdgeRouter('/api', handlers);
+const match = router.match('GET', '/api/users/me');
+```
+
+### Middleware Utilities
+
+For custom implementations:
+
+```typescript
+import {
+    authenticateRequest,
+    buildCorsHeaders,
+    handleCorsPreflightRequest,
+    getRequestId,
+    validateRequest
+} from '@multitenantkit/adapter-transport-supabase-edge';
+```
+
+## Differences from Express Adapter
+
+| Aspect | Express | Supabase Edge |
+|--------|---------|---------------|
+| Runtime | Node.js | Deno |
+| Deploy | Manual | Automatic (Supabase) |
+| Scaling | Manual | Automatic (edge) |
+| CORS | `cors` middleware | Manual headers |
+| Body parsing | `express.json()` | Native `request.json()` |
+| Path params | Express router | Regex matching |
+
+## License
+
+MIT

package/dist/buildEdgeFunction.d.ts

@@ -0,0 +1,29 @@
+import type { AuthService } from '@multitenantkit/api-contracts/shared/ports';
+import type { HandlerPackage } from '@multitenantkit/api-handlers';
+import type { EdgeFunctionOptions } from './types';
+/**
+ * Build the Edge Function handler from HandlerPackages
+ *
+ * This function creates a Deno.serve() compatible handler that:
+ * - Routes requests to appropriate handlers
+ * - Handles CORS
+ * - Authenticates requests
+ * - Validates input
+ * - Returns consistent responses
+ *
+ * @param handlers - Array of HandlerPackages from api-handlers
+ * @param authService - AuthService implementation (e.g., SupabaseAuthService)
+ * @param options - Configuration options
+ * @returns Handler function for Deno.serve()
+ *
+ * @example
+ * ```typescript
+ * const handler = buildEdgeFunction(handlers, authService, {
+ *     basePath: '/multitenantkit'
+ * });
+ *
+ * Deno.serve(handler);
+ * ```
+ */
+export declare function buildEdgeFunction(handlers: HandlerPackage<unknown, unknown>[], authService: AuthService<unknown>, options: EdgeFunctionOptions): (request: Request) => Promise<Response>;
+//# sourceMappingURL=buildEdgeFunction.d.ts.map

package/dist/buildEdgeFunction.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildEdgeFunction.d.ts","sourceRoot":"","sources":["../src/buildEdgeFunction.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,4CAA4C,CAAC;AAC9E,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAQnE,OAAO,KAAK,EAAe,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAwDhE;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,wBAAgB,iBAAiB,CAC7B,QAAQ,EAAE,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC,EAAE,EAC5C,WAAW,EAAE,WAAW,CAAC,OAAO,CAAC,EACjC,OAAO,EAAE,mBAAmB,GAC7B,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CA0HzC"}

package/dist/buildEdgeFunction.js

@@ -0,0 +1,150 @@
+// Main builder for Supabase Edge Functions handler
+import { ANONYMOUS_PRINCIPAL } from '@multitenantkit/domain-contracts/shared/auth';
+import { authenticateRequest } from './middleware/auth';
+import { buildCorsHeaders, handleCorsPreflightRequest } from './middleware/cors';
+import { getRequestId } from './middleware/requestId';
+import { validateRequest } from './middleware/validation';
+import { EdgeRouter } from './router';
+/**
+ * Default CORS configuration
+ */
+const DEFAULT_CORS = {
+    allowOrigin: '*',
+    allowHeaders: ['authorization', 'x-client-info', 'apikey', 'content-type', 'x-request-id'],
+    allowMethods: ['GET', 'POST', 'PUT', 'DELETE', 'PATCH', 'OPTIONS']
+};
+/**
+ * Default options for Edge Function
+ */
+const DEFAULT_OPTIONS = {
+    cors: DEFAULT_CORS,
+    debug: false
+};
+/**
+ * Build error response with consistent format
+ */
+function buildErrorResponse(status, code, message, requestId, corsHeaders, details) {
+    const errorBody = {
+        code,
+        message,
+        requestId,
+        timestamp: new Date().toISOString()
+    };
+    if (details) {
+        errorBody.details = details;
+    }
+    return new Response(JSON.stringify({
+        error: errorBody
+    }), {
+        status,
+        headers: {
+            'Content-Type': 'application/json',
+            'X-Request-ID': requestId,
+            ...corsHeaders
+        }
+    });
+}
+/**
+ * Build the Edge Function handler from HandlerPackages
+ *
+ * This function creates a Deno.serve() compatible handler that:
+ * - Routes requests to appropriate handlers
+ * - Handles CORS
+ * - Authenticates requests
+ * - Validates input
+ * - Returns consistent responses
+ *
+ * @param handlers - Array of HandlerPackages from api-handlers
+ * @param authService - AuthService implementation (e.g., SupabaseAuthService)
+ * @param options - Configuration options
+ * @returns Handler function for Deno.serve()
+ *
+ * @example
+ * ```typescript
+ * const handler = buildEdgeFunction(handlers, authService, {
+ *     basePath: '/multitenantkit'
+ * });
+ *
+ * Deno.serve(handler);
+ * ```
+ */
+export function buildEdgeFunction(handlers, authService, options) {
+    const opts = { ...DEFAULT_OPTIONS, ...options };
+    const corsConfig = opts.cors ?? DEFAULT_CORS;
+    const corsHeaders = buildCorsHeaders(corsConfig);
+    const router = new EdgeRouter(opts.basePath, handlers);
+    return async (request) => {
+        const requestId = getRequestId(request);
+        try {
+            // Handle CORS preflight
+            if (request.method === 'OPTIONS') {
+                return handleCorsPreflightRequest(corsHeaders);
+            }
+            const url = new URL(request.url);
+            const pathname = url.pathname;
+            const method = request.method;
+            if (opts.debug) {
+                console.log(`📍 ${method} ${pathname} [${requestId}]`);
+            }
+            // Health check endpoint
+            if (pathname === `${opts.basePath}/health` && method === 'GET') {
+                return new Response(JSON.stringify({
+                    status: 'healthy',
+                    timestamp: new Date().toISOString(),
+                    requestId
+                }), {
+                    status: 200,
+                    headers: {
+                        'Content-Type': 'application/json',
+                        'X-Request-ID': requestId,
+                        ...corsHeaders
+                    }
+                });
+            }
+            // Route matching
+            const routeMatch = router.match(method, pathname);
+            if (!routeMatch) {
+                return buildErrorResponse(404, 'NOT_FOUND', `Route ${method} ${pathname} not found`, requestId, corsHeaders);
+            }
+            const { handler: pkg, params } = routeMatch;
+            const handlerPackage = pkg;
+            const { route, schema, handler } = handlerPackage;
+            // Authentication
+            let principal = ANONYMOUS_PRINCIPAL;
+            if (route.auth === 'required' || route.auth === 'optional') {
+                principal = await authenticateRequest(request, authService);
+                // If auth is required but we got anonymous, return 401
+                if (route.auth === 'required' && principal === ANONYMOUS_PRINCIPAL) {
+                    return buildErrorResponse(401, 'UNAUTHORIZED', 'Authentication required', requestId, corsHeaders);
+                }
+            }
+            // Validation
+            const validationResult = await validateRequest(request, url, params, schema);
+            if (!validationResult.success) {
+                return buildErrorResponse(400, 'VALIDATION_ERROR', 'Request validation failed', requestId, corsHeaders, { issues: validationResult.errors });
+            }
+            // Execute handler
+            const result = await handler({
+                input: validationResult.data,
+                principal,
+                requestId
+            });
+            // Build response
+            const responseHeaders = {
+                'Content-Type': 'application/json',
+                'X-Request-ID': requestId,
+                ...corsHeaders,
+                ...(result.headers || {})
+            };
+            return new Response(JSON.stringify(result.body), {
+                status: result.status,
+                headers: responseHeaders
+            });
+        }
+        catch (error) {
+            console.error('Edge Function error:', error);
+            return buildErrorResponse(500, 'INTERNAL_SERVER_ERROR', 'An unexpected error occurred', requestId, corsHeaders);
+        }
+    };
+}
+//# sourceMappingURL=buildEdgeFunction.js.map

package/dist/buildEdgeFunction.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildEdgeFunction.js","sourceRoot":"","sources":["../src/buildEdgeFunction.ts"],"names":[],"mappings":"AAAA,mDAAmD;AAInD,OAAO,EAAE,mBAAmB,EAAE,MAAM,8CAA8C,CAAC;AAEnF,OAAO,EAAE,mBAAmB,EAAE,MAAM,mBAAmB,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,0BAA0B,EAAE,MAAM,mBAAmB,CAAC;AACjF,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AACtD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAGtC;;GAEG;AACH,MAAM,YAAY,GAAgB;IAC9B,WAAW,EAAE,GAAG;IAChB,YAAY,EAAE,CAAC,eAAe,EAAE,eAAe,EAAE,QAAQ,EAAE,cAAc,EAAE,cAAc,CAAC;IAC1F,YAAY,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,CAAC;CACrE,CAAC;AAEF;;GAEG;AACH,MAAM,eAAe,GAAiC;IAClD,IAAI,EAAE,YAAY;IAClB,KAAK,EAAE,KAAK;CACf,CAAC;AAEF;;GAEG;AACH,SAAS,kBAAkB,CACvB,MAAc,EACd,IAAY,EACZ,OAAe,EACf,SAAiB,EACjB,WAAmC,EACnC,OAAiC;IAEjC,MAAM,SAAS,GAA4B;QACvC,IAAI;QACJ,OAAO;QACP,SAAS;QACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACtC,CAAC;IAEF,IAAI,OAAO,EAAE,CAAC;QACV,SAAS,CAAC,OAAO,GAAG,OAAO,CAAC;IAChC,CAAC;IAED,OAAO,IAAI,QAAQ,CACf,IAAI,CAAC,SAAS,CAAC;QACX,KAAK,EAAE,SAAS;KACnB,CAAC,EACF;QACI,MAAM;QACN,OAAO,EAAE;YACL,cAAc,EAAE,kBAAkB;YAClC,cAAc,EAAE,SAAS;YACzB,GAAG,WAAW;SACjB;KACJ,CACJ,CAAC;AACN,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAM,UAAU,iBAAiB,CAC7B,QAA4C,EAC5C,WAAiC,EACjC,OAA4B;IAE5B,MAAM,IAAI,GAAG,EAAE,GAAG,eAAe,EAAE,GAAG,OAAO,EAAE,CAAC;IAChD,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,IAAI,YAAY,CAAC;IAC7C,MAAM,WAAW,GAAG,gBAAgB,CAAC,UAAU,CAAC,CAAC;IACjD,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAEvD,OAAO,KAAK,EAAE,OAAgB,EAAqB,EAAE;QACjD,MAAM,SAAS,GAAG,YAAY,CAAC,OAAO,CAAC,CAAC;QAExC,IAAI,CAAC;YACD,wBAAwB;YACxB,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;gBAC/B,OAAO,0BAA0B,CAAC,WAAW,CAAC,CAAC;YACnD,CAAC;YAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YACjC,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAC;YAC9B,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;YAE9B,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;gBACb,OAAO,CAAC,GAAG,CAAC,MAAM,MAAM,IAAI,QAAQ,KAAK,SAAS,GAAG,CAAC,CAAC;YAC3D,CAAC;YAED,wBAAwB;YACxB,IAAI,QAAQ,KAAK,GAAG,IAAI,CAAC,QAAQ,SAAS,IAAI,MAAM,KAAK,KAAK,EAAE,CAAC;gBAC7D,OAAO,IAAI,QAAQ,CACf,IAAI,CAAC,SAAS,CAAC;oBACX,MAAM,EAAE,SAAS;oBACjB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;oBACnC,SAAS;iBACZ,CAAC,EACF;oBACI,MAAM,EAAE,GAAG;oBACX,OAAO,EAAE;wBACL,cAAc,EAAE,kBAAkB;wBAClC,cAAc,EAAE,SAAS;wBACzB,GAAG,WAAW;qBACjB;iBACJ,CACJ,CAAC;YACN,CAAC;YAED,iBAAiB;YACjB,MAAM,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;YAElD,IAAI,CAAC,UAAU,EAAE,CAAC;gBACd,OAAO,kBAAkB,CACrB,GAAG,EACH,WAAW,EACX,SAAS,MAAM,IAAI,QAAQ,YAAY,EACvC,SAAS,EACT,WAAW,CACd,CAAC;YACN,CAAC;YAED,MAAM,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,UAAU,CAAC;YAC5C,MAAM,cAAc,GAAG,GAAuC,CAAC;YAC/D,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,cAAc,CAAC;YAElD,iBAAiB;YACjB,IAAI,SAAS,GAAG,mBAAmB,CAAC;YAEpC,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;gBACzD,SAAS,GAAG,MAAM,mBAAmB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;gBAE5D,uDAAuD;gBACvD,IAAI,KAAK,CAAC,IAAI,KAAK,UAAU,IAAI,SAAS,KAAK,mBAAmB,EAAE,CAAC;oBACjE,OAAO,kBAAkB,CACrB,GAAG,EACH,cAAc,EACd,yBAAyB,EACzB,SAAS,EACT,WAAW,CACd,CAAC;gBACN,CAAC;YACL,CAAC;YAED,aAAa;YACb,MAAM,gBAAgB,GAAG,MAAM,eAAe,CAAC,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;YAE7E,IAAI,CAAC,gBAAgB,CAAC,OAAO,EAAE,CAAC;gBAC5B,OAAO,kBAAkB,CACrB,GAAG,EACH,kBAAkB,EAClB,2BAA2B,EAC3B,SAAS,EACT,WAAW,EACX,EAAE,MAAM,EAAE,gBAAgB,CAAC,MAAM,EAAE,CACtC,CAAC;YACN,CAAC;YAED,kBAAkB;YAClB,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC;gBACzB,KAAK,EAAE,gBAAgB,CAAC,IAAI;gBAC5B,SAAS;gBACT,SAAS;aACZ,CAAC,CAAC;YAEH,iBAAiB;YACjB,MAAM,eAAe,GAA2B;gBAC5C,cAAc,EAAE,kBAAkB;gBAClC,cAAc,EAAE,SAAS;gBACzB,GAAG,WAAW;gBACd,GAAG,CAAC,MAAM,CAAC,OAAO,IAAI,EAAE,CAAC;aAC5B,CAAC;YAEF,OAAO,IAAI,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE;gBAC7C,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,OAAO,EAAE,eAAe;aAC3B,CAAC,CAAC;QACP,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,OAAO,CAAC,KAAK,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;YAE7C,OAAO,kBAAkB,CACrB,GAAG,EACH,uBAAuB,EACvB,8BAA8B,EAC9B,SAAS,EACT,WAAW,CACd,CAAC;QACN,CAAC;IACL,CAAC,CAAC;AACN,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,32 @@
+/**
+ * @module @multitenantkit/adapter-transport-supabase-edge
+ *
+ * Supabase Edge Functions Transport Adapter for MultiTenantKit
+ *
+ * This adapter enables running MultiTenantKit API endpoints as a single
+ * Supabase Edge Function with internal routing (the "fat function" pattern).
+ *
+ * @example
+ * ```typescript
+ * import { buildEdgeFunction } from '@multitenantkit/adapter-transport-supabase-edge';
+ * import { buildHandlers } from '@multitenantkit/api-handlers';
+ * import { SupabaseAuthService } from '@multitenantkit/adapter-auth-supabase';
+ *
+ * const handlers = buildHandlers(useCases);
+ * const authService = new SupabaseAuthService({ supabaseUrl, supabaseServiceKey });
+ *
+ * const handler = buildEdgeFunction(handlers, authService, {
+ *     basePath: '/multitenantkit'
+ * });
+ *
+ * Deno.serve(handler);
+ * ```
+ */
+export { buildEdgeFunction } from './buildEdgeFunction';
+export { authenticateRequest } from './middleware/auth';
+export { buildCorsHeaders, handleCorsPreflightRequest } from './middleware/cors';
+export { getRequestId } from './middleware/requestId';
+export { validateRequest } from './middleware/validation';
+export { EdgeRouter } from './router';
+export type { CorsOptions, EdgeContext, EdgeFunctionOptions, RouteMatch } from './types';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAGH,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAExD,OAAO,EAAE,mBAAmB,EAAE,MAAM,mBAAmB,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,0BAA0B,EAAE,MAAM,mBAAmB,CAAC;AACjF,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AACtD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAE1D,OAAO,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAGtC,YAAY,EAAE,WAAW,EAAE,WAAW,EAAE,mBAAmB,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC"}

package/dist/index.js

@@ -0,0 +1,34 @@
+/**
+ * @module @multitenantkit/adapter-transport-supabase-edge
+ *
+ * Supabase Edge Functions Transport Adapter for MultiTenantKit
+ *
+ * This adapter enables running MultiTenantKit API endpoints as a single
+ * Supabase Edge Function with internal routing (the "fat function" pattern).
+ *
+ * @example
+ * ```typescript
+ * import { buildEdgeFunction } from '@multitenantkit/adapter-transport-supabase-edge';
+ * import { buildHandlers } from '@multitenantkit/api-handlers';
+ * import { SupabaseAuthService } from '@multitenantkit/adapter-auth-supabase';
+ *
+ * const handlers = buildHandlers(useCases);
+ * const authService = new SupabaseAuthService({ supabaseUrl, supabaseServiceKey });
+ *
+ * const handler = buildEdgeFunction(handlers, authService, {
+ *     basePath: '/multitenantkit'
+ * });
+ *
+ * Deno.serve(handler);
+ * ```
+ */
+// Main builder
+export { buildEdgeFunction } from './buildEdgeFunction';
+// Middleware utilities (for custom implementations)
+export { authenticateRequest } from './middleware/auth';
+export { buildCorsHeaders, handleCorsPreflightRequest } from './middleware/cors';
+export { getRequestId } from './middleware/requestId';
+export { validateRequest } from './middleware/validation';
+// Router (for advanced use cases)
+export { EdgeRouter } from './router';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAEH,eAAe;AACf,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACxD,oDAAoD;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,mBAAmB,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,0BAA0B,EAAE,MAAM,mBAAmB,CAAC;AACjF,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AACtD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,kCAAkC;AAClC,OAAO,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC"}

package/dist/middleware/auth.d.ts

@@ -0,0 +1,8 @@
+import type { AuthService } from '@multitenantkit/api-contracts/shared/ports';
+import { type Principal } from '@multitenantkit/domain-contracts/shared/auth';
+/**
+ * Authenticate a request using the provided AuthService
+ * Adapts Deno Request headers to the format expected by AuthService
+ */
+export declare function authenticateRequest(request: Request, authService: AuthService<unknown>): Promise<Principal>;
+//# sourceMappingURL=auth.d.ts.map

package/dist/middleware/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,4CAA4C,CAAC;AAC9E,OAAO,EAAuB,KAAK,SAAS,EAAE,MAAM,8CAA8C,CAAC;AAEnG;;;GAGG;AACH,wBAAsB,mBAAmB,CACrC,OAAO,EAAE,OAAO,EAChB,WAAW,EAAE,WAAW,CAAC,OAAO,CAAC,GAClC,OAAO,CAAC,SAAS,CAAC,CAqBpB"}

package/dist/middleware/auth.js

@@ -0,0 +1,27 @@
+// Authentication middleware for Supabase Edge Functions
+import { ANONYMOUS_PRINCIPAL } from '@multitenantkit/domain-contracts/shared/auth';
+/**
+ * Authenticate a request using the provided AuthService
+ * Adapts Deno Request headers to the format expected by AuthService
+ */
+export async function authenticateRequest(request, authService) {
+    try {
+        // Convert Deno Headers to Record<string, string>
+        const headers = {};
+        request.headers.forEach((value, key) => {
+            headers[key.toLowerCase()] = value;
+        });
+        // Build auth input (compatible with SupabaseAuthService)
+        const authInput = {
+            headers,
+            cookies: {} // Edge Functions typically use header-based auth
+        };
+        const principal = await authService.authenticate(authInput);
+        return principal || ANONYMOUS_PRINCIPAL;
+    }
+    catch (error) {
+        console.error('Authentication error:', error);
+        return ANONYMOUS_PRINCIPAL;
+    }
+}
+//# sourceMappingURL=auth.js.map

package/dist/middleware/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/middleware/auth.ts"],"names":[],"mappings":"AAAA,wDAAwD;AAGxD,OAAO,EAAE,mBAAmB,EAAkB,MAAM,8CAA8C,CAAC;AAEnG;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACrC,OAAgB,EAChB,WAAiC;IAEjC,IAAI,CAAC;QACD,iDAAiD;QACjD,MAAM,OAAO,GAA2B,EAAE,CAAC;QAC3C,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;YACnC,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,GAAG,KAAK,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,yDAAyD;QACzD,MAAM,SAAS,GAAG;YACd,OAAO;YACP,OAAO,EAAE,EAAE,CAAC,iDAAiD;SAChE,CAAC;QAEF,MAAM,SAAS,GAAG,MAAM,WAAW,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC;QAE5D,OAAO,SAAS,IAAI,mBAAmB,CAAC;IAC5C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;QAC9C,OAAO,mBAAmB,CAAC;IAC/B,CAAC;AACL,CAAC"}

package/dist/middleware/cors.d.ts

@@ -0,0 +1,10 @@
+import type { CorsOptions } from '../types';
+/**
+ * Build CORS headers object
+ */
+export declare function buildCorsHeaders(options?: CorsOptions): Record<string, string>;
+/**
+ * Handle CORS preflight (OPTIONS) request
+ */
+export declare function handleCorsPreflightRequest(corsHeaders: Record<string, string>): Response;
+//# sourceMappingURL=cors.d.ts.map

package/dist/middleware/cors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cors.d.ts","sourceRoot":"","sources":["../../src/middleware/cors.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AAW5C;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,GAAE,WAA0B,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAW5F;AAED;;GAEG;AACH,wBAAgB,0BAA0B,CAAC,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,QAAQ,CAExF"}

package/dist/middleware/cors.js

@@ -0,0 +1,30 @@
+// CORS Handler for Supabase Edge Functions
+/**
+ * Default CORS configuration
+ */
+const DEFAULT_CORS = {
+    allowOrigin: '*',
+    allowHeaders: ['authorization', 'x-client-info', 'apikey', 'content-type', 'x-request-id'],
+    allowMethods: ['GET', 'POST', 'PUT', 'DELETE', 'PATCH', 'OPTIONS']
+};
+/**
+ * Build CORS headers object
+ */
+export function buildCorsHeaders(options = DEFAULT_CORS) {
+    const origin = Array.isArray(options.allowOrigin)
+        ? options.allowOrigin.join(', ')
+        : options.allowOrigin;
+    return {
+        'Access-Control-Allow-Origin': origin,
+        'Access-Control-Allow-Headers': options.allowHeaders.join(', '),
+        'Access-Control-Allow-Methods': options.allowMethods.join(', '),
+        ...(options.maxAge && { 'Access-Control-Max-Age': String(options.maxAge) })
+    };
+}
+/**
+ * Handle CORS preflight (OPTIONS) request
+ */
+export function handleCorsPreflightRequest(corsHeaders) {
+    return new Response('ok', { headers: corsHeaders });
+}
+//# sourceMappingURL=cors.js.map

package/dist/middleware/cors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cors.js","sourceRoot":"","sources":["../../src/middleware/cors.ts"],"names":[],"mappings":"AAAA,2CAA2C;AAI3C;;GAEG;AACH,MAAM,YAAY,GAAgB;IAC9B,WAAW,EAAE,GAAG;IAChB,YAAY,EAAE,CAAC,eAAe,EAAE,eAAe,EAAE,QAAQ,EAAE,cAAc,EAAE,cAAc,CAAC;IAC1F,YAAY,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,CAAC;CACrE,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,UAAuB,YAAY;IAChE,MAAM,MAAM,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,WAAW,CAAC;QAC7C,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC;QAChC,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC;IAE1B,OAAO;QACH,6BAA6B,EAAE,MAAM;QACrC,8BAA8B,EAAE,OAAO,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC;QAC/D,8BAA8B,EAAE,OAAO,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC;QAC/D,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,wBAAwB,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;KAC9E,CAAC;AACN,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,0BAA0B,CAAC,WAAmC;IAC1E,OAAO,IAAI,QAAQ,CAAC,IAAI,EAAE,EAAE,OAAO,EAAE,WAAW,EAAE,CAAC,CAAC;AACxD,CAAC"}

package/dist/middleware/index.d.ts

@@ -0,0 +1,5 @@
+export { authenticateRequest } from './auth';
+export { buildCorsHeaders, handleCorsPreflightRequest } from './cors';
+export { getRequestId } from './requestId';
+export { validateRequest } from './validation';
+//# sourceMappingURL=index.d.ts.map

package/dist/middleware/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/middleware/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,mBAAmB,EAAE,MAAM,QAAQ,CAAC;AAC7C,OAAO,EAAE,gBAAgB,EAAE,0BAA0B,EAAE,MAAM,QAAQ,CAAC;AACtE,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC"}

package/dist/middleware/index.js

@@ -0,0 +1,6 @@
+// Middleware exports for Supabase Edge Functions adapter
+export { authenticateRequest } from './auth';
+export { buildCorsHeaders, handleCorsPreflightRequest } from './cors';
+export { getRequestId } from './requestId';
+export { validateRequest } from './validation';
+//# sourceMappingURL=index.js.map

package/dist/middleware/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/middleware/index.ts"],"names":[],"mappings":"AAAA,yDAAyD;AAEzD,OAAO,EAAE,mBAAmB,EAAE,MAAM,QAAQ,CAAC;AAC7C,OAAO,EAAE,gBAAgB,EAAE,0BAA0B,EAAE,MAAM,QAAQ,CAAC;AACtE,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC"}

package/dist/middleware/requestId.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Generate or extract request ID from headers
+ * Uses the Web Crypto API (available in Deno) to generate UUIDs
+ */
+export declare function getRequestId(request: Request): string;
+//# sourceMappingURL=requestId.d.ts.map

package/dist/middleware/requestId.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"requestId.d.ts","sourceRoot":"","sources":["../../src/middleware/requestId.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,OAAO,GAAG,MAAM,CASrD"}

package/dist/middleware/requestId.js

@@ -0,0 +1,14 @@
+// Request ID middleware for Supabase Edge Functions
+/**
+ * Generate or extract request ID from headers
+ * Uses the Web Crypto API (available in Deno) to generate UUIDs
+ */
+export function getRequestId(request) {
+    const existingId = request.headers.get('x-request-id');
+    if (existingId) {
+        return existingId;
+    }
+    // Generate new UUID using Web Crypto API (available in Deno)
+    return crypto.randomUUID();
+}
+//# sourceMappingURL=requestId.js.map

package/dist/middleware/requestId.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"requestId.js","sourceRoot":"","sources":["../../src/middleware/requestId.ts"],"names":[],"mappings":"AAAA,oDAAoD;AAEpD;;;GAGG;AACH,MAAM,UAAU,YAAY,CAAC,OAAgB;IACzC,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;IAEvD,IAAI,UAAU,EAAE,CAAC;QACb,OAAO,UAAU,CAAC;IACtB,CAAC;IAED,6DAA6D;IAC7D,OAAO,MAAM,CAAC,UAAU,EAAE,CAAC;AAC/B,CAAC"}

package/dist/middleware/validation.d.ts

@@ -0,0 +1,31 @@
+import type { ZodSchema } from 'zod';
+/**
+ * Validation schema configuration
+ */
+interface ValidationSchemaConfig {
+    body?: ZodSchema;
+    params?: ZodSchema;
+    query?: ZodSchema;
+}
+/**
+ * Validation error detail
+ */
+interface ValidationError {
+    field: string;
+    message: string;
+    code: string;
+}
+/**
+ * Result of validation
+ */
+interface ValidationResult {
+    success: boolean;
+    data?: unknown;
+    errors?: ValidationError[];
+}
+/**
+ * Validate request using Zod schema
+ */
+export declare function validateRequest(request: Request, url: URL, params: Record<string, string>, schema: ZodSchema | ValidationSchemaConfig): Promise<ValidationResult>;
+export {};
+//# sourceMappingURL=validation.d.ts.map

package/dist/middleware/validation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.d.ts","sourceRoot":"","sources":["../../src/middleware/validation.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,KAAK,CAAC;AAErC;;GAEG;AACH,UAAU,sBAAsB;IAC5B,IAAI,CAAC,EAAE,SAAS,CAAC;IACjB,MAAM,CAAC,EAAE,SAAS,CAAC;IACnB,KAAK,CAAC,EAAE,SAAS,CAAC;CACrB;AAED;;GAEG;AACH,UAAU,eAAe;IACrB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,UAAU,gBAAgB;IACtB,OAAO,EAAE,OAAO,CAAC;IACjB,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,eAAe,EAAE,CAAC;CAC9B;AA8BD;;GAEG;AACH,wBAAsB,eAAe,CACjC,OAAO,EAAE,OAAO,EAChB,GAAG,EAAE,GAAG,EACR,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,EAC9B,MAAM,EAAE,SAAS,GAAG,sBAAsB,GAC3C,OAAO,CAAC,gBAAgB,CAAC,CAuF3B"}

package/dist/middleware/validation.js

@@ -0,0 +1,104 @@
+// Request validation middleware for Supabase Edge Functions
+/**
+ * Parse request body as JSON
+ */
+async function parseBody(request) {
+    try {
+        const contentType = request.headers.get('content-type');
+        if (contentType?.includes('application/json')) {
+            return await request.json();
+        }
+        return {};
+    }
+    catch {
+        return {};
+    }
+}
+/**
+ * Parse query parameters from URL
+ */
+function parseQuery(url) {
+    const query = {};
+    url.searchParams.forEach((value, key) => {
+        query[key] = value;
+    });
+    return query;
+}
+/**
+ * Validate request using Zod schema
+ */
+export async function validateRequest(request, url, params, schema) {
+    const errors = [];
+    let validatedInput = {};
+    const body = await parseBody(request);
+    const query = parseQuery(url);
+    // Handle simple schema (validates entire request object)
+    if ('safeParse' in schema && typeof schema.safeParse === 'function') {
+        const requestData = {
+            body,
+            params,
+            query
+        };
+        const result = schema.safeParse(requestData);
+        if (!result.success) {
+            return {
+                success: false,
+                errors: result.error.errors.map((err) => ({
+                    field: err.path.join('.'),
+                    message: err.message,
+                    code: err.code
+                }))
+            };
+        }
+        return {
+            success: true,
+            data: result.data
+        };
+    }
+    // Handle complex schema configuration
+    const config = schema;
+    if (config.body) {
+        const bodyResult = config.body.safeParse(body);
+        if (!bodyResult.success) {
+            errors.push(...bodyResult.error.errors.map((err) => ({
+                field: `body.${err.path.join('.')}`,
+                message: err.message,
+                code: err.code
+            })));
+        }
+        else {
+            validatedInput.body = bodyResult.data;
+        }
+    }
+    if (config.params) {
+        const paramsResult = config.params.safeParse(params);
+        if (!paramsResult.success) {
+            errors.push(...paramsResult.error.errors.map((err) => ({
+                field: `params.${err.path.join('.')}`,
+                message: err.message,
+                code: err.code
+            })));
+        }
+        else {
+            validatedInput = { ...validatedInput, ...paramsResult.data };
+        }
+    }
+    if (config.query) {
+        const queryResult = config.query.safeParse(query);
+        if (!queryResult.success) {
+            errors.push(...queryResult.error.errors.map((err) => ({
+                field: `query.${err.path.join('.')}`,
+                message: err.message,
+                code: err.code
+            })));
+        }
+        else {
+            validatedInput = { ...validatedInput, ...queryResult.data };
+        }
+    }
+    if (errors.length > 0) {
+        return { success: false, errors };
+    }
+    return { success: true, data: validatedInput };
+}
+//# sourceMappingURL=validation.js.map

package/dist/middleware/validation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.js","sourceRoot":"","sources":["../../src/middleware/validation.ts"],"names":[],"mappings":"AAAA,4DAA4D;AA+B5D;;GAEG;AACH,KAAK,UAAU,SAAS,CAAC,OAAgB;IACrC,IAAI,CAAC;QACD,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;QAExD,IAAI,WAAW,EAAE,QAAQ,CAAC,kBAAkB,CAAC,EAAE,CAAC;YAC5C,OAAO,MAAM,OAAO,CAAC,IAAI,EAAE,CAAC;QAChC,CAAC;QAED,OAAO,EAAE,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACL,OAAO,EAAE,CAAC;IACd,CAAC;AACL,CAAC;AAED;;GAEG;AACH,SAAS,UAAU,CAAC,GAAQ;IACxB,MAAM,KAAK,GAA2B,EAAE,CAAC;IACzC,GAAG,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;QACpC,KAAK,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;IACvB,CAAC,CAAC,CAAC;IACH,OAAO,KAAK,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACjC,OAAgB,EAChB,GAAQ,EACR,MAA8B,EAC9B,MAA0C;IAE1C,MAAM,MAAM,GAAsB,EAAE,CAAC;IACrC,IAAI,cAAc,GAA4B,EAAE,CAAC;IAEjD,MAAM,IAAI,GAAG,MAAM,SAAS,CAAC,OAAO,CAAC,CAAC;IACtC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;IAE9B,yDAAyD;IACzD,IAAI,WAAW,IAAI,MAAM,IAAI,OAAO,MAAM,CAAC,SAAS,KAAK,UAAU,EAAE,CAAC;QAClE,MAAM,WAAW,GAAG;YAChB,IAAI;YACJ,MAAM;YACN,KAAK;SACR,CAAC;QAEF,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAE7C,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YAClB,OAAO;gBACH,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;oBACtC,KAAK,EAAE,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;oBACzB,OAAO,EAAE,GAAG,CAAC,OAAO;oBACpB,IAAI,EAAE,GAAG,CAAC,IAAI;iBACjB,CAAC,CAAC;aACN,CAAC;QACN,CAAC;QAED,OAAO;YACH,OAAO,EAAE,IAAI;YACb,IAAI,EAAE,MAAM,CAAC,IAAI;SACpB,CAAC;IACN,CAAC;IAED,sCAAsC;IACtC,MAAM,MAAM,GAAG,MAAgC,CAAC;IAEhD,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC;QACd,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QAC/C,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;YACtB,MAAM,CAAC,IAAI,CACP,GAAG,UAAU,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;gBACrC,KAAK,EAAE,QAAQ,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;gBACnC,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,IAAI,EAAE,GAAG,CAAC,IAAI;aACjB,CAAC,CAAC,CACN,CAAC;QACN,CAAC;aAAM,CAAC;YACJ,cAAc,CAAC,IAAI,GAAG,UAAU,CAAC,IAAI,CAAC;QAC1C,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QAChB,MAAM,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QACrD,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,CAAC;YACxB,MAAM,CAAC,IAAI,CACP,GAAG,YAAY,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;gBACvC,KAAK,EAAE,UAAU,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;gBACrC,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,IAAI,EAAE,GAAG,CAAC,IAAI;aACjB,CAAC,CAAC,CACN,CAAC;QACN,CAAC;aAAM,CAAC;YACJ,cAAc,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,YAAY,CAAC,IAAI,EAAE,CAAC;QACjE,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QACf,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAClD,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YACvB,MAAM,CAAC,IAAI,CACP,GAAG,WAAW,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;gBACtC,KAAK,EAAE,SAAS,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE;gBACpC,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,IAAI,EAAE,GAAG,CAAC,IAAI;aACjB,CAAC,CAAC,CACN,CAAC;QACN,CAAC;aAAM,CAAC;YACJ,cAAc,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,WAAW,CAAC,IAAI,EAAE,CAAC;QAChE,CAAC;IACL,CAAC;IAED,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC;IACtC,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,cAAc,EAAE,CAAC;AACnD,CAAC"}

package/dist/router.d.ts

@@ -0,0 +1,53 @@
+/**
+ * Edge Function Router
+ *
+ * Provides Express-style routing for Supabase Edge Functions.
+ * Converts HandlerPackages to a routing table with regex-based path matching.
+ *
+ * @module
+ */
+import type { HandlerPackage } from '@multitenantkit/api-handlers';
+import type { RouteMatch } from './types';
+/**
+ * Route matcher for Supabase Edge Functions.
+ *
+ * Converts Express-style paths (e.g., `/users/:id`) to regex patterns
+ * and matches incoming requests to the appropriate handlers.
+ *
+ * @example
+ * ```typescript
+ * import { EdgeRouter } from '@multitenantkit/adapter-transport-supabase-edge';
+ *
+ * const router = new EdgeRouter('/api', handlers);
+ *
+ * // Match a request
+ * const match = router.match('GET', '/api/organizations/123');
+ * if (match) {
+ *     console.log(match.params); // { id: '123' }
+ *     // Call match.handler...
+ * }
+ * ```
+ */
+export declare class EdgeRouter {
+    private routes;
+    private readonly basePath;
+    constructor(basePath: string, handlers: HandlerPackage<unknown, unknown>[]);
+    /**
+     * Register all handler packages as routes
+     */
+    private registerHandlers;
+    /**
+     * Convert Express-style path to regex
+     * Example: /users/:id → /^\/users\/([^/]+)$/
+     */
+    private pathToRegex;
+    /**
+     * Match an incoming request to a registered handler.
+     *
+     * @param method - HTTP method (GET, POST, PUT, DELETE, PATCH)
+     * @param pathname - Full pathname including base path (e.g., '/api/users/123')
+     * @returns RouteMatch with handler and extracted params, or null if no match
+     */
+    match(method: string, pathname: string): RouteMatch | null;
+}
+//# sourceMappingURL=router.d.ts.map

package/dist/router.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"router.d.ts","sourceRoot":"","sources":["../src/router.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AACnE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAY1C;;;;;;;;;;;;;;;;;;;GAmBG;AACH,qBAAa,UAAU;IACnB,OAAO,CAAC,MAAM,CAAoB;IAClC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;gBAEtB,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC,EAAE;IAK1E;;OAEG;IAEH,OAAO,CAAC,gBAAgB;IAcxB;;;OAGG;IACH,OAAO,CAAC,WAAW;IAiBnB;;;;;;OAMG;IACH,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,UAAU,GAAG,IAAI;CAoB7D"}

package/dist/router.js

@@ -0,0 +1,96 @@
+/**
+ * Edge Function Router
+ *
+ * Provides Express-style routing for Supabase Edge Functions.
+ * Converts HandlerPackages to a routing table with regex-based path matching.
+ *
+ * @module
+ */
+/**
+ * Route matcher for Supabase Edge Functions.
+ *
+ * Converts Express-style paths (e.g., `/users/:id`) to regex patterns
+ * and matches incoming requests to the appropriate handlers.
+ *
+ * @example
+ * ```typescript
+ * import { EdgeRouter } from '@multitenantkit/adapter-transport-supabase-edge';
+ *
+ * const router = new EdgeRouter('/api', handlers);
+ *
+ * // Match a request
+ * const match = router.match('GET', '/api/organizations/123');
+ * if (match) {
+ *     console.log(match.params); // { id: '123' }
+ *     // Call match.handler...
+ * }
+ * ```
+ */
+export class EdgeRouter {
+    routes = [];
+    basePath;
+    constructor(basePath, handlers) {
+        this.basePath = basePath;
+        this.registerHandlers(handlers);
+    }
+    /**
+     * Register all handler packages as routes
+     */
+    // biome-ignore lint/correctness/noUnusedPrivateClassMembers: Called in constructor - false positive
+    registerHandlers(handlers) {
+        for (const handler of handlers) {
+            const { method, path } = handler.route;
+            const { pattern, paramNames } = this.pathToRegex(path);
+            this.routes.push({
+                method: method.toUpperCase(),
+                pattern,
+                paramNames,
+                handler
+            });
+        }
+    }
+    /**
+     * Convert Express-style path to regex
+     * Example: /users/:id → /^\/users\/([^/]+)$/
+     */
+    pathToRegex(path) {
+        const paramNames = [];
+        const fullPath = this.basePath + path;
+        const regexStr = fullPath
+            .replace(/:[a-zA-Z]+/g, (match) => {
+            paramNames.push(match.slice(1)); // Remove ':'
+            return '([^/]+)';
+        })
+            .replace(/\//g, '\\/');
+        return {
+            pattern: new RegExp(`^${regexStr}$`),
+            paramNames
+        };
+    }
+    /**
+     * Match an incoming request to a registered handler.
+     *
+     * @param method - HTTP method (GET, POST, PUT, DELETE, PATCH)
+     * @param pathname - Full pathname including base path (e.g., '/api/users/123')
+     * @returns RouteMatch with handler and extracted params, or null if no match
+     */
+    match(method, pathname) {
+        for (const route of this.routes) {
+            if (route.method !== method.toUpperCase())
+                continue;
+            const match = pathname.match(route.pattern);
+            if (match) {
+                const params = {};
+                route.paramNames.forEach((name, i) => {
+                    params[name] = match[i + 1];
+                });
+                return {
+                    handler: route.handler,
+                    params
+                };
+            }
+        }
+        return null;
+    }
+}
+//# sourceMappingURL=router.js.map

package/dist/router.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"router.js","sourceRoot":"","sources":["../src/router.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAeH;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,OAAO,UAAU;IACX,MAAM,GAAiB,EAAE,CAAC;IACjB,QAAQ,CAAS;IAElC,YAAY,QAAgB,EAAE,QAA4C;QACtE,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;IACpC,CAAC;IAED;;OAEG;IACH,oGAAoG;IAC5F,gBAAgB,CAAC,QAA4C;QACjE,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC7B,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,KAAK,CAAC;YACvC,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC;YAEvD,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC;gBACb,MAAM,EAAE,MAAM,CAAC,WAAW,EAAE;gBAC5B,OAAO;gBACP,UAAU;gBACV,OAAO;aACV,CAAC,CAAC;QACP,CAAC;IACL,CAAC;IAED;;;OAGG;IACK,WAAW,CAAC,IAAY;QAC5B,MAAM,UAAU,GAAa,EAAE,CAAC;QAChC,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QAEtC,MAAM,QAAQ,GAAG,QAAQ;aACpB,OAAO,CAAC,aAAa,EAAE,CAAC,KAAK,EAAE,EAAE;YAC9B,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,aAAa;YAC9C,OAAO,SAAS,CAAC;QACrB,CAAC,CAAC;aACD,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;QAE3B,OAAO;YACH,OAAO,EAAE,IAAI,MAAM,CAAC,IAAI,QAAQ,GAAG,CAAC;YACpC,UAAU;SACb,CAAC;IACN,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,MAAc,EAAE,QAAgB;QAClC,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAC9B,IAAI,KAAK,CAAC,MAAM,KAAK,MAAM,CAAC,WAAW,EAAE;gBAAE,SAAS;YAEpD,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAC5C,IAAI,KAAK,EAAE,CAAC;gBACR,MAAM,MAAM,GAA2B,EAAE,CAAC;gBAC1C,KAAK,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE;oBACjC,MAAM,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;gBAChC,CAAC,CAAC,CAAC;gBAEH,OAAO;oBACH,OAAO,EAAE,KAAK,CAAC,OAAO;oBACtB,MAAM;iBACT,CAAC;YACN,CAAC;QACL,CAAC;QAED,OAAO,IAAI,CAAC;IAChB,CAAC;CACJ"}

package/dist/types.d.ts

@@ -0,0 +1,90 @@
+/**
+ * Types specific to Supabase Edge Functions adapter
+ * @module
+ */
+import type { Principal } from '@multitenantkit/domain-contracts/shared/auth';
+/**
+ * Context passed through the Edge Function pipeline.
+ * Contains all request information after parsing and authentication.
+ */
+export interface EdgeContext {
+    /** The original Deno Request object */
+    request: Request;
+    /** Unique identifier for this request (from header or generated) */
+    requestId: string;
+    /** Authenticated principal, or null if not authenticated */
+    principal: Principal | null;
+    /** Path parameters extracted from the URL (e.g., { id: '123' }) */
+    params: Record<string, string>;
+    /** Query parameters from the URL */
+    query: Record<string, string>;
+    /** Parsed request body */
+    body: unknown;
+}
+/**
+ * CORS (Cross-Origin Resource Sharing) configuration options.
+ *
+ * @example
+ * ```typescript
+ * const cors: CorsOptions = {
+ *     allowOrigin: 'https://myapp.com',
+ *     allowHeaders: ['authorization', 'content-type'],
+ *     allowMethods: ['GET', 'POST', 'PUT', 'DELETE'],
+ *     maxAge: 86400 // 24 hours
+ * };
+ * ```
+ */
+export interface CorsOptions {
+    /** Allowed origins - can be '*' for all, a single origin, or array of origins */
+    allowOrigin: string | string[];
+    /** Headers that can be used in the actual request */
+    allowHeaders: string[];
+    /** HTTP methods allowed when accessing the resource */
+    allowMethods: string[];
+    /** How long (in seconds) the results of a preflight request can be cached */
+    maxAge?: number;
+}
+/**
+ * Configuration options for the Edge Function builder.
+ *
+ * @example
+ * ```typescript
+ * const options: EdgeFunctionOptions = {
+ *     basePath: '/multitenantkit',
+ *     cors: {
+ *         allowOrigin: '*',
+ *         allowHeaders: ['authorization', 'content-type'],
+ *         allowMethods: ['GET', 'POST', 'PUT', 'DELETE', 'PATCH']
+ *     },
+ *     debug: true
+ * };
+ * ```
+ */
+export interface EdgeFunctionOptions {
+    /**
+     * Base path prefix for all routes.
+     * This is typically the Edge Function name (e.g., '/multitenantkit').
+     * All handler routes will be prefixed with this path.
+     */
+    basePath: string;
+    /**
+     * CORS configuration. If not provided, defaults to allowing all origins.
+     */
+    cors?: CorsOptions;
+    /**
+     * Enable debug logging. Logs request method, path, and requestId.
+     * @default false
+     */
+    debug?: boolean;
+}
+/**
+ * Result of matching a request to a registered route.
+ * Used internally by the router.
+ */
+export interface RouteMatch {
+    /** The matched HandlerPackage */
+    handler: unknown;
+    /** Extracted path parameters */
+    params: Record<string, string>;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,8CAA8C,CAAC;AAE9E;;;GAGG;AACH,MAAM,WAAW,WAAW;IACxB,uCAAuC;IACvC,OAAO,EAAE,OAAO,CAAC;IACjB,oEAAoE;IACpE,SAAS,EAAE,MAAM,CAAC;IAClB,4DAA4D;IAC5D,SAAS,EAAE,SAAS,GAAG,IAAI,CAAC;IAC5B,mEAAmE;IACnE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,oCAAoC;IACpC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9B,0BAA0B;IAC1B,IAAI,EAAE,OAAO,CAAC;CACjB;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,WAAW,WAAW;IACxB,iFAAiF;IACjF,WAAW,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IAC/B,qDAAqD;IACrD,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,uDAAuD;IACvD,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,6EAA6E;IAC7E,MAAM,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,WAAW,mBAAmB;IAChC;;;;OAIG;IACH,QAAQ,EAAE,MAAM,CAAC;IACjB;;OAEG;IACH,IAAI,CAAC,EAAE,WAAW,CAAC;IACnB;;;OAGG;IACH,KAAK,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;;GAGG;AACH,MAAM,WAAW,UAAU;IACvB,iCAAiC;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,gCAAgC;IAChC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAClC"}

package/dist/types.js

@@ -0,0 +1,6 @@
+/**
+ * Types specific to Supabase Edge Functions adapter
+ * @module
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;GAGG"}

package/package.json

@@ -0,0 +1,63 @@
+{
+    "name": "@multitenantkit/adapter-transport-supabase-edge",
+    "version": "0.2.1",
+    "type": "module",
+    "description": "Supabase Edge Functions transport adapter for MultiTenantKit HTTP API",
+    "keywords": [
+        "multitenantkit",
+        "saas",
+        "multi-tenant",
+        "multitenancy",
+        "adapter",
+        "supabase",
+        "edge-functions",
+        "deno",
+        "rest-api",
+        "api-server",
+        "http",
+        "serverless",
+        "organizations",
+        "teams",
+        "users",
+        "typescript"
+    ],
+    "author": "",
+    "license": "MIT",
+    "repository": {
+        "type": "git",
+        "url": "https://github.com/multitenantkit/multitenantkit.git",
+        "directory": "packages/adapters/transport/supabase-edge"
+    },
+    "bugs": {
+        "url": "https://github.com/multitenantkit/multitenantkit/issues"
+    },
+    "homepage": "https://github.com/multitenantkit/multitenantkit#readme",
+    "publishConfig": {
+        "access": "public"
+    },
+    "main": "./dist/index.js",
+    "types": "./dist/index.d.ts",
+    "files": [
+        "dist",
+        "README.md"
+    ],
+    "scripts": {
+        "build": "tsc --build",
+        "clean": "rm -rf dist",
+        "type-check": "tsc --noEmit",
+        "test": "vitest run",
+        "test:watch": "vitest",
+        "test:coverage": "vitest run --coverage"
+    },
+    "dependencies": {
+        "@multitenantkit/api-contracts": "^0.2.0",
+        "@multitenantkit/domain-contracts": "^0.2.0",
+        "@multitenantkit/api-handlers": "^0.2.0",
+        "zod": "^3.22.0"
+    },
+    "devDependencies": {
+        "@types/node": "^20.0.0",
+        "typescript": "^5.0.0",
+        "vitest": "^1.0.0"
+    }
+}