@nexpress/core 0.2.2 → 0.3.1

package/dist/auth.d.ts

@@ -1,5 +1,5 @@
-import { p as NpAccessFunction, n as NpUserRole, e as NpAuthUser } from './types-C-r01wmU.js';
-export { F as NpPrincipal } from './types-C-r01wmU.js';
+import { p as NpAccessFunction, m as NpUserRole, e as NpAuthUser } from './types-BY1UmEiY.js';
+export { H as NpPrincipal } from './types-BY1UmEiY.js';
 import { NodePgDatabase } from 'drizzle-orm/node-postgres';
 import { Options } from '@node-rs/argon2';
 
@@ -72,6 +72,29 @@ declare function verifyToken(token: string, secret: string, expectedUse?: NpToke
  */
 declare function isTokenVerificationError(err: unknown): boolean;
 
+/**
+ * Minimal public projection of a user row — `id` + `name` + `email`.
+ * Themes / plugins reach for this when they need to display a byline
+ * (post.author → user) without pulling in session machinery. Password
+ * hash + tokenVersion + reset state stay private to the auth module.
+ */
+interface NpUserBasic {
+    id: string;
+    name: string;
+    email: string;
+}
+/**
+ * Look up a user by id. Returns `null` when the id doesn't exist
+ * (caller handles missing-author UI). UUID validation lives at the
+ * caller — Postgres rejects malformed ids inside `eq()` and the
+ * surfacing error is already informative.
+ *
+ * This is the supported entry point for theme code that needs to
+ * render a byline from `posts.author: relationTo("users")`. Direct
+ * drizzle reads against `np_users` are private to the framework.
+ */
+declare function getUserById(id: string): Promise<NpUserBasic | null>;
+
 declare const ARGON2_OPTIONS: Options;
 declare function hashPassword(password: string): Promise<string>;
 declare function verifyPassword(passwordHash: string, password: string): Promise<boolean>;
@@ -637,4 +660,4 @@ interface NpConsumeMemberResetResult {
 }
 declare function consumeMemberPasswordReset(db: NodePgDatabase<Record<string, unknown>>, token: string, newPassword: string): Promise<NpConsumeMemberResetResult>;
 
-export { ARGON2_OPTIONS, type ArcticLikeProvider, type ArcticLikeTokens, type FromArcticOptions, type IssuedOAuthState, type NpCapability, type NpConsumeMemberEmailVerifyResult, type NpConsumeMemberResetResult, type NpConsumeResetTokenOptions, type NpConsumeResetTokenResult, type NpCreateResetTokenOptions, type NpIssuedMemberToken, type NpIssuedResetToken, type NpMemberAuthRow, type NpMemberIdentityRow, type NpMemberResetRequestResult, type NpMemberTokenPayload, type NpPasswordResetPurpose, type NpResetRequestResult, type NpTokenPayload, type NpUserIdentityRow, type OAuthAuthorizeParams, type OAuthExchangeParams, type OAuthProfile, type OAuthProvider, type OAuthStatePayload, type ResolveMemberOAuthLoginInput, type ResolveMemberOAuthLoginResult, type ResolveOAuthLoginInput, type ResolveOAuthLoginResult, type ResolvedOAuthMember, type ResolvedOAuthUser, type VerifyOAuthStateResult, authenticated, can, consumeMemberEmailVerifyToken, consumeMemberPasswordReset, consumePasswordResetToken, createMemberEmailVerifyToken, createPasswordResetToken, fromArctic, getMemberFromTokenPayload, getOAuthProvider, hashPassword, invalidateAllMemberSessions, invalidateAllSessions, isAdmin, isEditorOrAbove, isOwnerOrAdmin, isTokenVerificationError, issueOAuthState, listMemberIdentities, listOAuthProviders, listUserIdentities, registerOAuthProvider, requestMemberPasswordReset, requestPasswordReset, resetOAuthProviders, resolveMemberOAuthLogin, resolveOAuthLogin, revokeMemberIdentity, revokeUserIdentity, sha256, signMemberToken, signToken, verifyCsrf, verifyMemberToken, verifyOAuthState, verifyPassword, verifyToken, verifyTokenFull };
+export { ARGON2_OPTIONS, type ArcticLikeProvider, type ArcticLikeTokens, type FromArcticOptions, type IssuedOAuthState, type NpCapability, type NpConsumeMemberEmailVerifyResult, type NpConsumeMemberResetResult, type NpConsumeResetTokenOptions, type NpConsumeResetTokenResult, type NpCreateResetTokenOptions, type NpIssuedMemberToken, type NpIssuedResetToken, type NpMemberAuthRow, type NpMemberIdentityRow, type NpMemberResetRequestResult, type NpMemberTokenPayload, type NpPasswordResetPurpose, type NpResetRequestResult, type NpTokenPayload, type NpUserBasic, type NpUserIdentityRow, type OAuthAuthorizeParams, type OAuthExchangeParams, type OAuthProfile, type OAuthProvider, type OAuthStatePayload, type ResolveMemberOAuthLoginInput, type ResolveMemberOAuthLoginResult, type ResolveOAuthLoginInput, type ResolveOAuthLoginResult, type ResolvedOAuthMember, type ResolvedOAuthUser, type VerifyOAuthStateResult, authenticated, can, consumeMemberEmailVerifyToken, consumeMemberPasswordReset, consumePasswordResetToken, createMemberEmailVerifyToken, createPasswordResetToken, fromArctic, getMemberFromTokenPayload, getOAuthProvider, getUserById, hashPassword, invalidateAllMemberSessions, invalidateAllSessions, isAdmin, isEditorOrAbove, isOwnerOrAdmin, isTokenVerificationError, issueOAuthState, listMemberIdentities, listOAuthProviders, listUserIdentities, registerOAuthProvider, requestMemberPasswordReset, requestPasswordReset, resetOAuthProviders, resolveMemberOAuthLogin, resolveOAuthLogin, revokeMemberIdentity, revokeUserIdentity, sha256, signMemberToken, signToken, verifyCsrf, verifyMemberToken, verifyOAuthState, verifyPassword, verifyToken, verifyTokenFull };

package/dist/auth.js

@@ -9,6 +9,7 @@ import {
   fromArctic,
   getMemberFromTokenPayload,
   getOAuthProvider,
+  getUserById,
   hashPassword,
   invalidateAllMemberSessions,
   invalidateAllSessions,
@@ -37,14 +38,14 @@ import {
   verifyPassword,
   verifyToken,
   verifyTokenFull
-} from "./chunk-QYP6E5FP.js";
+} from "./chunk-6UV2P5MW.js";
 import {
   can
 } from "./chunk-EQ2Z3KMD.js";
 import "./chunk-ML2E3P3X.js";
-import "./chunk-74CGJJDY.js";
-import "./chunk-ZCINJSS4.js";
+import "./chunk-RKM4GDWM.js";
 import "./chunk-SBCVAC2Z.js";
+import "./chunk-ZCINJSS4.js";
 import "./chunk-OROPGO65.js";
 import "./chunk-NFHS7CFV.js";
 import "./chunk-XANPEOJC.js";
@@ -62,6 +63,7 @@ export {
   fromArctic,
   getMemberFromTokenPayload,
   getOAuthProvider,
+  getUserById,
   hashPassword,
   invalidateAllMemberSessions,
   invalidateAllSessions,

package/dist/{can-FKIEV54H.js → can-UJ2NAOIR.js}

@@ -3,10 +3,10 @@ import {
   isMemberBanned,
   memberCan,
   withMemberWrite
-} from "./chunk-PQBJWZ7D.js";
+} from "./chunk-RJ76SKWQ.js";
 import "./chunk-U4QCCLAW.js";
-import "./chunk-ZCINJSS4.js";
 import "./chunk-SBCVAC2Z.js";
+import "./chunk-ZCINJSS4.js";
 import "./chunk-XANPEOJC.js";
 import "./chunk-X7K5F2UI.js";
 import "./chunk-PZ5AY32C.js";
@@ -16,4 +16,4 @@ export {
   memberCan,
   withMemberWrite
 };
-//# sourceMappingURL=can-FKIEV54H.js.map
+//# sourceMappingURL=can-UJ2NAOIR.js.map

package/dist/{chunk-CHQJG4BB.js → chunk-2N53KKIL.js}

@@ -1,6 +1,6 @@
 import {
   getStorageAdapter
-} from "./chunk-DWG3RZH2.js";
+} from "./chunk-2VZZ7M26.js";
 import {
   getDb
 } from "./chunk-XANPEOJC.js";
@@ -38,4 +38,4 @@ async function getMediaUrl(id, options = {}) {
 export {
   getMediaUrl
 };
-//# sourceMappingURL=chunk-CHQJG4BB.js.map
+//# sourceMappingURL=chunk-2N53KKIL.js.map

package/dist/{chunk-DWG3RZH2.js → chunk-2VZZ7M26.js}

@@ -170,7 +170,7 @@ async function uploadMedia(file, uploader, folderId) {
   return { id, status: "processing" };
 }
 async function assertMemberUploadQuota(memberId, txDb) {
-  const { getCommunitySettings } = await import("./settings-JODDWMDB.js");
+  const { getCommunitySettings } = await import("./settings-OZWM6L2K.js");
   const { NpRateLimitError } = await import("./errors-5OS3S2J3.js");
   const settings = await getCommunitySettings();
   const { perDay, total } = settings.memberUploadQuota;
@@ -535,4 +535,4 @@ export {
   listMedia,
   cleanupDeletedMedia
 };
-//# sourceMappingURL=chunk-DWG3RZH2.js.map
+//# sourceMappingURL=chunk-2VZZ7M26.js.map

package/dist/{chunk-5LCLS6VE.js → chunk-56ZK5PWM.js}

@@ -1,11 +1,16 @@
+import {
+  getCommunityRole,
+  memberCan,
+  withMemberWrite
+} from "./chunk-RJ76SKWQ.js";
 import {
   getMutedTargetIds
-} from "./chunk-CKT4QZDC.js";
+} from "./chunk-WJJ5MBH5.js";
 import {
   createNotification,
   extractMentionHandles,
   fanOutMentionNotifications
-} from "./chunk-HM46WM45.js";
+} from "./chunk-RDTTK27V.js";
 import {
   applyReputation
 } from "./chunk-L6VG7IK6.js";
@@ -16,17 +21,18 @@ import {
   getProfanityAdapter
 } from "./chunk-KU5M27ZC.js";
 import {
-  getCommunityRole,
-  memberCan,
-  withMemberWrite
-} from "./chunk-PQBJWZ7D.js";
+  getMediaUrl
+} from "./chunk-2N53KKIL.js";
 import {
   buildWeightedSearchVectorSql,
   deleteDocument,
   findDocuments,
   getDocumentById,
   saveDocument
-} from "./chunk-S37WWNBB.js";
+} from "./chunk-6IEYOY2L.js";
+import {
+  deleteMedia
+} from "./chunk-2VZZ7M26.js";
 import {
   can
 } from "./chunk-EQ2Z3KMD.js";
@@ -35,7 +41,7 @@ import {
 } from "./chunk-ML2E3P3X.js";
 import {
   getCommunitySettings
-} from "./chunk-74CGJJDY.js";
+} from "./chunk-RKM4GDWM.js";
 import {
   getI18nConfig
 } from "./chunk-4ZLMEKFX.js";
@@ -46,22 +52,16 @@ import {
   getCollectionRegistration,
   getCollectionTable
 } from "./chunk-U4QCCLAW.js";
+import {
+  getCurrentSiteId,
+  requireSiteId
+} from "./chunk-SBCVAC2Z.js";
 import {
   NpConflictError,
   NpForbiddenError,
   NpNotFoundError,
   NpValidationError
 } from "./chunk-ZCINJSS4.js";
-import {
-  getCurrentSiteId,
-  requireSiteId
-} from "./chunk-SBCVAC2Z.js";
-import {
-  getMediaUrl
-} from "./chunk-CHQJG4BB.js";
-import {
-  deleteMedia
-} from "./chunk-DWG3RZH2.js";
 import {
   getLogger
 } from "./chunk-NFHS7CFV.js";
@@ -1956,4 +1956,4 @@ export {
   revokeMemberRole,
   purgeMemberContent
 };
-//# sourceMappingURL=chunk-5LCLS6VE.js.map
+//# sourceMappingURL=chunk-56ZK5PWM.js.map

package/dist/{chunk-S37WWNBB.js → chunk-6IEYOY2L.js}

@@ -1,3 +1,13 @@
+import {
+  deleteMedia,
+  getMediaById,
+  getStorageAdapter,
+  listMedia,
+  uploadMedia
+} from "./chunk-2VZZ7M26.js";
+import {
+  getCollectionZodSchema
+} from "./chunk-P5WGQRSG.js";
 import {
   getI18nConfig
 } from "./chunk-4ZLMEKFX.js";
@@ -7,6 +17,9 @@ import {
   getCollectionRegistration,
   getCollectionTable
 } from "./chunk-U4QCCLAW.js";
+import {
+  getCurrentSiteId
+} from "./chunk-SBCVAC2Z.js";
 import {
   NpError,
   NpForbiddenError,
@@ -14,21 +27,11 @@ import {
   NpValidationError
 } from "./chunk-ZCINJSS4.js";
 import {
-  getCurrentSiteId
-} from "./chunk-SBCVAC2Z.js";
+  enqueueJob
+} from "./chunk-V2UNHGAP.js";
 import {
   reportError
 } from "./chunk-WV272MPW.js";
-import {
-  deleteMedia,
-  getMediaById,
-  getStorageAdapter,
-  listMedia,
-  uploadMedia
-} from "./chunk-DWG3RZH2.js";
-import {
-  enqueueJob
-} from "./chunk-V2UNHGAP.js";
 import {
   getLogger,
   getScopedLogger
@@ -85,100 +88,6 @@ function applySlugField(config, data, originalDoc) {
   data.slug = candidate;
 }
 
-// src/collections/validation.ts
-import { z } from "zod";
-function buildZodSchema(fields) {
-  const shape = {};
-  for (const field of fields) {
-    if (field.type === "row" || field.type === "collapsible") {
-      Object.assign(shape, buildZodSchema(field.fields).shape);
-      continue;
-    }
-    if (field.type === "group") {
-      const schema = buildZodSchema(field.fields);
-      shape[field.name] = applyOptionality(schema, field.required);
-      continue;
-    }
-    shape[field.name] = applyOptionality(buildFieldSchema(field), field.required);
-  }
-  return z.object(shape);
-}
-function getCollectionZodSchema(config) {
-  const base = buildZodSchema(config.fields).extend({
-    // Phase 21.17 — per-doc visibility flag. Optional on writes;
-    // the pipeline lets the column default to "public" when the
-    // caller doesn't specify. Allowed values are the same
-    // codegen enum from `getBaseColumns`.
-    visibility: z.enum(["public", "private"]).optional()
-  });
-  if (config.i18n) {
-    return base.extend({
-      locale: z.string().min(1).optional(),
-      translationGroupId: z.string().uuid().optional()
-    });
-  }
-  return base;
-}
-function buildFieldSchema(field) {
-  switch (field.type) {
-    case "text": {
-      let schema = z.string();
-      if (field.minLength !== void 0) schema = schema.min(field.minLength);
-      if (field.maxLength !== void 0) schema = schema.max(field.maxLength);
-      return schema;
-    }
-    case "textarea": {
-      let schema = z.string();
-      if (field.minLength !== void 0) schema = schema.min(field.minLength);
-      if (field.maxLength !== void 0) schema = schema.max(field.maxLength);
-      return schema;
-    }
-    case "email":
-      return z.string().email();
-    case "number": {
-      let schema = z.number();
-      if (field.integerOnly) schema = schema.int();
-      if (field.min !== void 0) schema = schema.min(field.min);
-      if (field.max !== void 0) schema = schema.max(field.max);
-      return schema;
-    }
-    case "checkbox":
-      return z.boolean();
-    case "select":
-      return createEnumSchema(field.options.map((option) => option.value));
-    case "radio":
-      return createEnumSchema(field.options.map((option) => option.value));
-    case "relationship":
-      return field.hasMany ? z.array(z.string().uuid()) : z.string().uuid();
-    case "upload":
-      return z.string().uuid();
-    case "date":
-      return z.coerce.date();
-    case "richText":
-    case "blocks":
-    case "json":
-      return z.unknown();
-    case "array": {
-      let schema = z.array(buildZodSchema(field.fields));
-      if (field.minRows !== void 0) schema = schema.min(field.minRows);
-      if (field.maxRows !== void 0) schema = schema.max(field.maxRows);
-      return schema;
-    }
-    default:
-      return z.unknown();
-  }
-}
-function applyOptionality(schema, required) {
-  return required ? schema : schema.optional().nullable();
-}
-function createEnumSchema(values) {
-  const [first, ...rest] = values;
-  if (!first) {
-    return z.string();
-  }
-  return z.enum([first, ...rest]);
-}
-
 // src/collections/search.ts
 import { sql } from "drizzle-orm";
 function buildSearchVector(config, data) {
@@ -318,7 +227,7 @@ async function updateMemberDocument(collection, docId, data, memberId, options)
   if (authorId !== memberId) {
     throw new NpForbiddenError(collection, "update");
   }
-  const { assertNotBanned } = await import("./can-FKIEV54H.js");
+  const { assertNotBanned } = await import("./can-UJ2NAOIR.js");
   await assertNotBanned(memberId);
   const moderation = await runMemberDocModeration({
     collection,
@@ -352,7 +261,7 @@ async function updateMemberDocument(collection, docId, data, memberId, options)
   });
   const resultStatus = result.doc.status;
   if (resultStatus === "published") {
-    const { extractMentionHandlesFromDocData, fanOutMentionNotifications } = await import("./mentions-NCQR4B72.js");
+    const { extractMentionHandlesFromDocData, fanOutMentionNotifications } = await import("./mentions-U4JACYI6.js");
     const previousHandles = new Set(extractMentionHandlesFromDocData(originalDoc));
     await fanOutMentionNotifications({
       actorMemberId: memberId,
@@ -372,7 +281,7 @@ async function createMemberDocument(collection, data, memberId, options) {
   if (!config.community?.memberWrite?.create) {
     throw new NpForbiddenError(collection, "create");
   }
-  const { assertNotBanned } = await import("./can-FKIEV54H.js");
+  const { assertNotBanned } = await import("./can-UJ2NAOIR.js");
   await assertNotBanned(memberId);
   const defaultStatus = config.community?.memberWrite?.defaultStatus === "pending" ? "pending" : "published";
   const moderation = await runMemberDocModeration({
@@ -416,7 +325,7 @@ async function createMemberDocument(collection, data, memberId, options) {
     });
   }
   if (spamStatus === "published") {
-    const { fanOutMentionNotifications } = await import("./mentions-NCQR4B72.js");
+    const { fanOutMentionNotifications } = await import("./mentions-U4JACYI6.js");
     await fanOutMentionNotifications({
       actorMemberId: memberId,
       kind: "document.mention",
@@ -502,7 +411,7 @@ async function initSaveContext(collection, docId, data, actor, options) {
   const registration = getCollectionRegistration(collection);
   const table = getCollectionTable(collection);
   const db = getDb();
-  const validatedData = toRecord(getCollectionZodSchema(config).parse(data));
+  const validatedData = toRecord(getCollectionZodSchema(config, data).parse(data));
   const operation = docId ? "update" : "create";
   const originalDoc = docId ? await getDocumentByIdInternal(db, table, collection, docId) : null;
   return {
@@ -533,7 +442,7 @@ async function validateActorAccess(ctx) {
     );
     return;
   }
-  const { assertNotBanned } = await import("./can-FKIEV54H.js");
+  const { assertNotBanned } = await import("./can-UJ2NAOIR.js");
   if (ctx.operation === "create") {
     if (!ctx.config.community?.memberWrite?.create) {
       throw new NpForbiddenError(ctx.collection, "create");
@@ -981,7 +890,7 @@ async function deleteDocumentImpl(collection, docId, actor) {
     if (authorId !== actor.memberId) {
       throw new NpForbiddenError(collection, "delete");
     }
-    const { assertNotBanned } = await import("./can-FKIEV54H.js");
+    const { assertNotBanned } = await import("./can-UJ2NAOIR.js");
     await assertNotBanned(actor.memberId);
   }
   const userForHooks = actorUserOrNull(actor);
@@ -1885,7 +1794,7 @@ function createPluginRuntimeContext(options) {
         return row.value;
       },
       async getPlugin() {
-        const { getPluginConfig } = await import("./config-65OBL4YH.js");
+        const { getPluginConfig } = await import("./config-44MFLLIX.js");
         const value = await getPluginConfig(pluginId);
         if (value && typeof value === "object" && !Array.isArray(value)) {
           return value;
@@ -1893,8 +1802,8 @@ function createPluginRuntimeContext(options) {
         return {};
       },
       async setPlugin(data) {
-        const { setPluginConfig } = await import("./config-65OBL4YH.js");
-        const { getPluginRegistration: getPluginRegistration2 } = await import("./host-55D6RX3U.js");
+        const { setPluginConfig } = await import("./config-44MFLLIX.js");
+        const { getPluginRegistration: getPluginRegistration2 } = await import("./host-DKOWZWKA.js");
         const reg = getPluginRegistration2(pluginId);
         if (reg?.configSchema) {
           await setPluginConfig(pluginId, data, null);
@@ -2125,7 +2034,7 @@ function invalidatePluginEnabled(pluginId) {
 var fetchOverride = null;
 
 // src/plugins/compat.ts
-var FRAMEWORK_VERSION_FROM_PACKAGE = true ? "0.2.2" : "0.0.0-dev";
+var FRAMEWORK_VERSION_FROM_PACKAGE = true ? "0.3.1" : "0.0.0-dev";
 var frameworkVersion = FRAMEWORK_VERSION_FROM_PACKAGE;
 function getFrameworkVersion() {
   return frameworkVersion;
@@ -2275,7 +2184,7 @@ function insertSortedByPriority(list, entry) {
   list.sort((a, b) => a.priority - b.priority);
 }
 async function loadPluginConfig(pluginId) {
-  const { getPluginConfig } = await import("./config-65OBL4YH.js");
+  const { getPluginConfig } = await import("./config-44MFLLIX.js");
   const value = await getPluginConfig(pluginId);
   if (value && typeof value === "object" && !Array.isArray(value)) {
     return value;
@@ -2755,8 +2664,6 @@ export {
   buildSearchVector,
   buildSearchVectorParts,
   buildWeightedSearchVectorSql,
-  buildZodSchema,
-  getCollectionZodSchema,
   isPluginEnabled,
   invalidatePluginEnabled,
   getFrameworkVersion,
@@ -2787,4 +2694,4 @@ export {
   findDocuments,
   getDocumentById
 };
-//# sourceMappingURL=chunk-S37WWNBB.js.map
+//# sourceMappingURL=chunk-6IEYOY2L.js.map