@o-zone/scorer-core 0.0.1

package/README.md

@@ -0,0 +1,108 @@
+# @o-zone/scorer-core
+
+Orienteering scoring core library with modular exports for server, race, and competition management.
+
+## Installation
+
+```bash
+bun add @o-zone/scorer-core
+```
+
+## Usage
+
+### Server Module
+```typescript
+import { Scorer } from '@o-zone/scorer-core/server';
+```
+
+### Race Module
+```typescript
+import { ... } from '@o-zone/scorer-core/race';
+```
+
+### Competition Module
+```typescript
+import { ... } from '@o-zone/scorer-core/competition';
+```
+
+## Development
+
+### Setup
+```bash
+bun install
+```
+
+### Build
+```bash
+bun run build              # Compile TypeScript → dist/
+bun run build:watch        # Watch mode for development
+```
+
+### Quality Checks
+```bash
+bun run check:types         # TypeScript type checking
+bun run lint               # Code quality with Biome
+bun run lint:fix           # Auto-fix lint issues
+bun run format             # Code formatting
+```
+
+## Publishing
+
+This package uses [Changesets](https://github.com/changesets/changesets) for automated version management and npm publishing.
+
+### Workflow
+1. Make code changes
+2. Run `bun changeset add` to document changes
+3. Push to main branch
+4. GitHub Actions automatically:
+   - Creates a Release PR (bumps version, updates changelog)
+   - Publishes to npm when PR is merged
+
+### Documentation
+- [Quick Reference](QUICK_REF.md) - One-page reference
+
+## Package Structure
+
+```
+src/
+├── server.ts          # Server module
+├── race/index.ts      # Race module
+└── competition/       # Competition module
+
+dist/                  # Built output (published to npm)
+```
+
+## Scripts
+
+| Command | Purpose |
+|---------|---------|
+| `bun run build` | Build TypeScript to dist/ |
+| `bun run build:watch` | Watch mode build |
+| `bun run check:types` | Type check without emit |
+| `bun run lint` | Lint code |
+| `bun run lint:fix` | Auto-fix lint issues |
+| `bun run format` | Format code |
+| `bun changeset add` | Create a changeset |
+| `bun run publish` | Build and publish |
+
+## Technologies
+
+- **Language**: TypeScript 5.3+
+- **Runtime**: Bun 1.3.5+
+- **Package Manager**: Bun
+- **Linter**: Biome
+- **Release Management**: Changesets
+- **CI/CD**: GitHub Actions
+- **Module Format**: ES Modules (ESM)
+
+## License
+
+MIT
+
+## Contributing
+
+1. Create a feature branch
+2. Make your changes
+3. Run `bun run lint:fix` to format
+4. Create a changeset: `bun changes`
+5. Push and create a pull request

package/dist/auth.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Check bearer authorization header. Token will be a JWT.
+ */
+export declare const authenticate: (authorization: string | null | undefined, req: Request) => Promise<boolean>;
+//# sourceMappingURL=auth.d.ts.map

package/dist/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAeA;;GAEG;AACH,eAAO,MAAM,YAAY,GACvB,eAAe,MAAM,GAAG,IAAI,GAAG,SAAS,EACxC,KAAK,OAAO,qBAkEb,CAAC"}

package/dist/auth.js

@@ -0,0 +1,148 @@
+import { Buffer } from 'node:buffer';
+/**
+ * Check bearer authorization header. Token will be a JWT.
+ */
+export const authenticate = async (authorization, req) => {
+    if (!authorization) {
+        console.error('No authorization header');
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    const proto = req.headers.get('X-Forwarded-Proto') ?? 'http';
+    const host = req.headers.get('X-Forwarded-Host') ??
+        req.headers.get('Host') ??
+        'unknown-host';
+    const aud = `${proto}://${host}${new URL(req.url).pathname}`;
+    const token = authorization.startsWith('Bearer ')
+        ? authorization.slice('Bearer '.length).trim()
+        : authorization.trim();
+    const parts = token.split('.');
+    if (parts.length !== 3) {
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    const [encodedHeader, encodedPayload, encodedSignature] = parts;
+    const header = parseJsonSection(encodedHeader);
+    const payload = parseJsonSection(encodedPayload);
+    const iss = typeof payload.iss === 'string' ? payload.iss : null;
+    const kid = typeof header.kid === 'string' ? header.kid : null;
+    const alg = typeof header.alg === 'string' ? header.alg : null;
+    if (!iss || !kid || !alg) {
+        console.error('Invalid token structure');
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    if (process.env.AUTH_ALLOWED_ISSUERS &&
+        !process.env.AUTH_ALLOWED_ISSUERS.split(',')
+            .map((s) => s.trim())
+            .includes(iss)) {
+        console.error('Unauthorized issuer', iss);
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    const audienceValid = payload.aud === aud ||
+        (Array.isArray(payload.aud) && payload.aud.includes(aud));
+    if (!audienceValid) {
+        console.error('Invalid audience', payload.aud, 'expected', aud);
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    const jwk = await getJwkForIssuer(iss, kid);
+    const verified = await verifySignature(alg, jwk, `${encodedHeader}.${encodedPayload}`, encodedSignature);
+    if (!verified) {
+        console.error('Invalid signature');
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    return true;
+};
+const openIdConfigCache = new Map();
+const jwksCache = new Map();
+const cryptoKeyCache = new Map();
+const parseJsonSection = (section) => {
+    const bytes = base64UrlToUint8Array(section);
+    const text = new TextDecoder().decode(bytes);
+    return JSON.parse(text);
+};
+const base64UrlToUint8Array = (input) => {
+    const normalized = input.replace(/-/g, '+').replace(/_/g, '/');
+    const padded = normalized.padEnd(normalized.length + ((4 - (normalized.length % 4)) % 4), '=');
+    return Uint8Array.from(Buffer.from(padded, 'base64'));
+};
+const getOpenIdConfig = async (issuer) => {
+    const cached = openIdConfigCache.get(issuer);
+    if (cached) {
+        return cached;
+    }
+    const configUrl = new URL('.well-known/openid-configuration', issuer.endsWith('/') ? issuer : `${issuer}/`);
+    const res = await fetch(configUrl);
+    if (!res.ok) {
+        console.error('Failed to fetch OpenID config');
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    const json = (await res.json());
+    if (!json.jwks_uri) {
+        console.error('Invalid OpenID config');
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    openIdConfigCache.set(issuer, json.jwks_uri);
+    return json.jwks_uri;
+};
+const getJwkForIssuer = async (issuer, kid) => {
+    const jwksUri = await getOpenIdConfig(issuer);
+    const cachedKeys = jwksCache.get(jwksUri);
+    if (cachedKeys) {
+        const key = cachedKeys.find((k) => k.kid === kid);
+        if (key) {
+            return key;
+        }
+    }
+    const res = await fetch(jwksUri);
+    if (!res.ok) {
+        console.error('Failed to fetch JWKS');
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    const json = (await res.json());
+    if (!json.keys?.length) {
+        console.error('Invalid JWKS');
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    jwksCache.set(jwksUri, json.keys);
+    const key = json.keys.find((k) => k.kid === kid);
+    if (!key) {
+        console.error('JWK not found for kid', kid);
+        throw new Response('Unauthorized', { status: 401 });
+    }
+    return key;
+};
+const verifySignature = async (alg, jwk, signingInput, encodedSignature) => {
+    const cryptoAlg = getCryptoAlgorithm(alg, jwk);
+    const cacheKey = `${jwk.kid}:${jwk.x5t ?? ''}:${jwk.n ?? ''}`;
+    let cryptoKey = cryptoKeyCache.get(cacheKey);
+    if (!cryptoKey) {
+        cryptoKey = await crypto.subtle.importKey('jwk', jwk, cryptoAlg, false, [
+            'verify',
+        ]);
+        cryptoKeyCache.set(cacheKey, cryptoKey);
+    }
+    const data = new TextEncoder().encode(signingInput);
+    const signature = base64UrlToUint8Array(encodedSignature);
+    return crypto.subtle.verify(cryptoAlg, cryptoKey, signature, data);
+};
+const getCryptoAlgorithm = (alg, jwk) => {
+    if (alg === 'RS256') {
+        return { name: 'RSASSA-PKCS1-v1_5', hash: 'SHA-256' };
+    }
+    if (alg === 'RS384') {
+        return { name: 'RSASSA-PKCS1-v1_5', hash: 'SHA-384' };
+    }
+    if (alg === 'RS512') {
+        return { name: 'RSASSA-PKCS1-v1_5', hash: 'SHA-512' };
+    }
+    if (alg === 'ES256') {
+        return { name: 'ECDSA', hash: 'SHA-256', namedCurve: jwk.crv };
+    }
+    if (alg === 'ES384') {
+        return { name: 'ECDSA', hash: 'SHA-384', namedCurve: jwk.crv };
+    }
+    if (alg === 'ES512') {
+        return { name: 'ECDSA', hash: 'SHA-512', namedCurve: jwk.crv };
+    }
+    console.error('Unsupported algorithm', alg);
+    throw new Response('Unauthorized', { status: 401 });
+};
+//# sourceMappingURL=auth.js.map

package/dist/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAerC;;GAEG;AACH,MAAM,CAAC,MAAM,YAAY,GAAG,KAAK,EAC/B,aAAwC,EACxC,GAAY,EACZ,EAAE;IACF,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;QACzC,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IAED,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,IAAI,MAAM,CAAC;IAC7D,MAAM,IAAI,GACR,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;QACnC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC;QACvB,cAAc,CAAC;IACjB,MAAM,GAAG,GAAG,GAAG,KAAK,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,CAAC;IAE7D,MAAM,KAAK,GAAG,aAAa,CAAC,UAAU,CAAC,SAAS,CAAC;QAC/C,CAAC,CAAC,aAAa,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE;QAC9C,CAAC,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC;IACzB,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAA6B,CAAC;IAC3D,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvB,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IAED,MAAM,CAAC,aAAa,EAAE,cAAc,EAAE,gBAAgB,CAAC,GAAG,KAAK,CAAC;IAChE,MAAM,MAAM,GAAG,gBAAgB,CAA0B,aAAa,CAAC,CAAC;IACxE,MAAM,OAAO,GAAG,gBAAgB,CAA0B,cAAc,CAAC,CAAC;IAE1E,MAAM,GAAG,GAAG,OAAO,OAAO,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC;IACjE,MAAM,GAAG,GAAG,OAAO,MAAM,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC;IAC/D,MAAM,GAAG,GAAG,OAAO,MAAM,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC;IAE/D,IAAI,CAAC,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACzB,OAAO,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;QACzC,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IAED,IACE,OAAO,CAAC,GAAG,CAAC,oBAAoB;QAChC,CAAC,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,KAAK,CAAC,GAAG,CAAC;aACzC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;aACpB,QAAQ,CAAC,GAAG,CAAC,EAChB,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,qBAAqB,EAAE,GAAG,CAAC,CAAC;QAC1C,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IAED,MAAM,aAAa,GACjB,OAAO,CAAC,GAAG,KAAK,GAAG;QACnB,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;IAC5D,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,CAAC,KAAK,CAAC,kBAAkB,EAAE,OAAO,CAAC,GAAG,EAAE,UAAU,EAAE,GAAG,CAAC,CAAC;QAChE,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IAC5C,MAAM,QAAQ,GAAG,MAAM,eAAe,CACpC,GAAG,EACH,GAAG,EACH,GAAG,aAAa,IAAI,cAAc,EAAE,EACpC,gBAAgB,CACjB,CAAC;IACF,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;QACnC,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;AAEF,MAAM,iBAAiB,GAAG,IAAI,GAAG,EAAkB,CAAC;AACpD,MAAM,SAAS,GAAG,IAAI,GAAG,EAAwB,CAAC;AAClD,MAAM,cAAc,GAAG,IAAI,GAAG,EAAqB,CAAC;AAEpD,MAAM,gBAAgB,GAAG,CAAI,OAAe,EAAK,EAAE;IACjD,MAAM,KAAK,GAAG,qBAAqB,CAAC,OAAO,CAAC,CAAC;IAC7C,MAAM,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAC7C,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAM,CAAC;AAC/B,CAAC,CAAC;AAEF,MAAM,qBAAqB,GAAG,CAAC,KAAa,EAAE,EAAE;IAC9C,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC/D,MAAM,MAAM,GAAG,UAAU,CAAC,MAAM,CAC9B,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EACvD,GAAG,CACJ,CAAC;IACF,OAAO,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC;AACxD,CAAC,CAAC;AAEF,MAAM,eAAe,GAAG,KAAK,EAAE,MAAc,EAAE,EAAE;IAC/C,MAAM,MAAM,GAAG,iBAAiB,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC7C,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,GAAG,CACvB,kCAAkC,EAClC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,MAAM,GAAG,CAC7C,CAAC;IACF,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,SAAS,CAAC,CAAC;IACnC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,OAAO,CAAC,KAAK,CAAC,+BAA+B,CAAC,CAAC;QAC/C,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAA0B,CAAC;IACzD,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;QACnB,OAAO,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;QACvC,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,iBAAiB,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC7C,OAAO,IAAI,CAAC,QAAQ,CAAC;AACvB,CAAC,CAAC;AAEF,MAAM,eAAe,GAAG,KAAK,EAAE,MAAc,EAAE,GAAW,EAAE,EAAE;IAC5D,MAAM,OAAO,GAAG,MAAM,eAAe,CAAC,MAAM,CAAC,CAAC;IAC9C,MAAM,UAAU,GAAG,SAAS,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAC1C,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,GAAG,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC;QAClD,IAAI,GAAG,EAAE,CAAC;YACR,OAAO,GAAG,CAAC;QACb,CAAC;IACH,CAAC;IAED,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,OAAO,CAAC,CAAC;IACjC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,OAAO,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC;QACtC,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAE7B,CAAC;IACF,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,EAAE,CAAC;QACvB,OAAO,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;QAC9B,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,SAAS,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;IAElC,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC;IACjD,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,OAAO,CAAC,KAAK,CAAC,uBAAuB,EAAE,GAAG,CAAC,CAAC;QAC5C,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACtD,CAAC;IAED,OAAO,GAAG,CAAC;AACb,CAAC,CAAC;AAEF,MAAM,eAAe,GAAG,KAAK,EAC3B,GAAW,EACX,GAAe,EACf,YAAoB,EACpB,gBAAwB,EACxB,EAAE;IACF,MAAM,SAAS,GAAG,kBAAkB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IAC/C,MAAM,QAAQ,GAAG,GAAG,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,GAAG,IAAI,EAAE,IAAI,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC;IAE9D,IAAI,SAAS,GAAG,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC7C,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE;YACtE,QAAQ;SACT,CAAC,CAAC;QACH,cAAc,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAC1C,CAAC;IAED,MAAM,IAAI,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;IACpD,MAAM,SAAS,GAAG,qBAAqB,CAAC,gBAAgB,CAAC,CAAC;IAC1D,OAAO,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,IAAI,CAAC,CAAC;AACrE,CAAC,CAAC;AAEF,MAAM,kBAAkB,GAAG,CAAC,GAAW,EAAE,GAAe,EAAE,EAAE;IAC1D,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;QACpB,OAAO,EAAE,IAAI,EAAE,mBAAmB,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;IACxD,CAAC;IACD,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;QACpB,OAAO,EAAE,IAAI,EAAE,mBAAmB,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;IACxD,CAAC;IACD,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;QACpB,OAAO,EAAE,IAAI,EAAE,mBAAmB,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;IACxD,CAAC;IACD,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;QACpB,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC;IACjE,CAAC;IACD,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;QACpB,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC;IACjE,CAAC;IACD,IAAI,GAAG,KAAK,OAAO,EAAE,CAAC;QACpB,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,CAAC,GAAG,EAAE,CAAC;IACjE,CAAC;IACD,OAAO,CAAC,KAAK,CAAC,uBAAuB,EAAE,GAAG,CAAC,CAAC;IAC5C,MAAM,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;AACtD,CAAC,CAAC"}

package/dist/competition/index.d.ts

@@ -0,0 +1,7 @@
+export type Competition = {
+    id: string;
+    name: string;
+    season: number;
+};
+export declare function createCompetition(name: string, season: number): Competition;
+//# sourceMappingURL=index.d.ts.map

package/dist/competition/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/competition/index.ts"],"names":[],"mappings":"AAGA,MAAM,MAAM,WAAW,GAAG;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;CAEhB,CAAC;AAEF,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,WAAW,CAM3E"}

package/dist/competition/index.js

@@ -0,0 +1,10 @@
+// Competition module exports
+// Add your competition-related types and functions here
+export function createCompetition(name, season) {
+    return {
+        id: Math.random().toString(36).substring(7),
+        name,
+        season,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/competition/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/competition/index.ts"],"names":[],"mappings":"AAAA,6BAA6B;AAC7B,wDAAwD;AASxD,MAAM,UAAU,iBAAiB,CAAC,IAAY,EAAE,MAAc;IAC5D,OAAO;QACL,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC;QAC3C,IAAI;QACJ,MAAM;KACP,CAAC;AACJ,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,4 @@
+export { createRace, type Race } from './race/index.js';
+export { createCompetition, type Competition } from './competition/index.js';
+export * from './server.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,KAAK,IAAI,EAAE,MAAM,iBAAiB,CAAC;AACxD,OAAO,EAAE,iBAAiB,EAAE,KAAK,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAC7E,cAAc,aAAa,CAAC"}

package/dist/index.js

@@ -0,0 +1,5 @@
+// Main entry point for @o-zone/scorer-core
+export { createRace } from './race/index.js';
+export { createCompetition } from './competition/index.js';
+export * from './server.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,2CAA2C;AAC3C,OAAO,EAAE,UAAU,EAAa,MAAM,iBAAiB,CAAC;AACxD,OAAO,EAAE,iBAAiB,EAAoB,MAAM,wBAAwB,CAAC;AAC7E,cAAc,aAAa,CAAC"}

package/dist/race/index.d.ts

@@ -0,0 +1,7 @@
+export type Race = {
+    id: string;
+    name: string;
+    date: Date;
+};
+export declare function createRace(name: string, date: Date): Race;
+//# sourceMappingURL=index.d.ts.map

package/dist/race/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/race/index.ts"],"names":[],"mappings":"AAGA,MAAM,MAAM,IAAI,GAAG;IACjB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,IAAI,CAAC;CAEZ,CAAC;AAEF,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,GAAG,IAAI,CAMzD"}

package/dist/race/index.js

@@ -0,0 +1,10 @@
+// Race module exports
+// Add your race-related types and functions here
+export function createRace(name, date) {
+    return {
+        id: Math.random().toString(36).substring(7),
+        name,
+        date,
+    };
+}
+//# sourceMappingURL=index.js.map

package/dist/race/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/race/index.ts"],"names":[],"mappings":"AAAA,sBAAsB;AACtB,iDAAiD;AASjD,MAAM,UAAU,UAAU,CAAC,IAAY,EAAE,IAAU;IACjD,OAAO;QACL,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC;QAC3C,IAAI;QACJ,IAAI;KACL,CAAC;AACJ,CAAC"}

package/dist/router.d.ts

@@ -0,0 +1,3 @@
+export type RouteHandler = (req: Request) => Promise<Response>;
+export declare const router: (routes: Record<string, RouteHandler>) => ((req: Request) => Promise<Response>);
+//# sourceMappingURL=router.d.ts.map

package/dist/router.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"router.d.ts","sourceRoot":"","sources":["../src/router.ts"],"names":[],"mappings":"AAYA,MAAM,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAC;AAE/D,eAAO,MAAM,MAAM,GAEf,QAAQ,MAAM,CAAC,MAAM,EAAE,YAAY,CAAC,KACnC,CAAC,CAAC,GAAG,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAoCtC,CAAC"}

package/dist/router.js

@@ -0,0 +1,46 @@
+import { authenticate } from './auth';
+const verify = async (req) => {
+    const token = req.headers.get('O-Zone-Endpoint-Verification');
+    if (!token) {
+        return new Response('Unauthorized', { status: 401 });
+    }
+    return new Response('Verify', {
+        headers: { 'O-Zone-Endpoint-Verification-Response': token },
+    });
+};
+export const router = (routes) => async (req) => {
+    try {
+        const authorization = req.headers.get('Authorization');
+        await authenticate(authorization, req);
+        switch (req.method) {
+            case 'OPTIONS':
+                return new Response(null, {
+                    headers: {
+                        'Access-Control-Allow-Origin': 'null',
+                        'Access-Control-Allow-Methods': 'GET, POST, OPTIONS',
+                        'Access-Control-Allow-Headers': 'Content-Type, Authorization, O-Zone-Endpoint-Verification',
+                    },
+                });
+            case 'GET':
+                return verify(req);
+            case 'POST': {
+                const url = new URL(req.url);
+                const routeHandler = routes[url.pathname];
+                if (routeHandler) {
+                    return routeHandler(req);
+                }
+                return new Response('Not Found', { status: 404 });
+            }
+            default:
+                return new Response('Method Not Allowed', { status: 405 });
+        }
+    }
+    catch (err) {
+        if (err instanceof Response) {
+            return err;
+        }
+        console.error('Internal server error', err);
+        return new Response('Internal Server Error', { status: 500 });
+    }
+};
+//# sourceMappingURL=router.js.map

package/dist/router.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"router.js","sourceRoot":"","sources":["../src/router.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAEtC,MAAM,MAAM,GAAG,KAAK,EAAE,GAAY,EAAE,EAAE;IACpC,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;IAC9D,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,IAAI,QAAQ,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IACvD,CAAC;IACD,OAAO,IAAI,QAAQ,CAAC,QAAQ,EAAE;QAC5B,OAAO,EAAE,EAAE,uCAAuC,EAAE,KAAK,EAAE;KAC5D,CAAC,CAAC;AACL,CAAC,CAAC;AAIF,MAAM,CAAC,MAAM,MAAM,GACjB,CACE,MAAoC,EACG,EAAE,CAC3C,KAAK,EAAE,GAAY,EAAE,EAAE;IACrB,IAAI,CAAC;QACH,MAAM,aAAa,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;QACvD,MAAM,YAAY,CAAC,aAAa,EAAE,GAAG,CAAC,CAAC;QAEvC,QAAQ,GAAG,CAAC,MAAM,EAAE,CAAC;YACnB,KAAK,SAAS;gBACZ,OAAO,IAAI,QAAQ,CAAC,IAAI,EAAE;oBACxB,OAAO,EAAE;wBACP,6BAA6B,EAAE,MAAM;wBACrC,8BAA8B,EAAE,oBAAoB;wBACpD,8BAA8B,EAC5B,2DAA2D;qBAC9D;iBACF,CAAC,CAAC;YACL,KAAK,KAAK;gBACR,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC;YACrB,KAAK,MAAM,CAAC,CAAC,CAAC;gBACZ,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBAC7B,MAAM,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;gBAC1C,IAAI,YAAY,EAAE,CAAC;oBACjB,OAAO,YAAY,CAAC,GAAG,CAAC,CAAC;gBAC3B,CAAC;gBACD,OAAO,IAAI,QAAQ,CAAC,WAAW,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;YACpD,CAAC;YACD;gBACE,OAAO,IAAI,QAAQ,CAAC,oBAAoB,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;QAC/D,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,QAAQ,EAAE,CAAC;YAC5B,OAAO,GAAG,CAAC;QACb,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,uBAAuB,EAAE,GAAG,CAAC,CAAC;QAC5C,OAAO,IAAI,QAAQ,CAAC,uBAAuB,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IAChE,CAAC;AACH,CAAC,CAAC"}

package/dist/server.d.ts

@@ -0,0 +1,6 @@
+import { type RouteHandler } from './router.js';
+export declare namespace Scorer {
+    const serve: (routes: Record<string, RouteHandler>) => void;
+}
+export type { RouteHandler } from './router.js';
+//# sourceMappingURL=server.d.ts.map

package/dist/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAU,KAAK,YAAY,EAAE,MAAM,aAAa,CAAC;AAKxD,yBAAiB,MAAM,CAAC;IACf,MAAM,KAAK,GAAI,QAAQ,MAAM,CAAC,MAAM,EAAE,YAAY,CAAC,SAOzD,CAAC;CACH;AAED,YAAY,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC"}

package/dist/server.js

@@ -0,0 +1,13 @@
+import { router } from './router.js';
+const getPort = () => process.env.PORT ? Number.parseInt(process.env.PORT, 10) : 3000;
+export var Scorer;
+(function (Scorer) {
+    Scorer.serve = (routes) => {
+        const server = Bun.serve({
+            port: getPort(),
+            fetch: router(routes),
+        });
+        console.info(`Listening on ${server.url}`);
+    };
+})(Scorer || (Scorer = {}));
+//# sourceMappingURL=server.js.map

package/dist/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAqB,MAAM,aAAa,CAAC;AAExD,MAAM,OAAO,GAAG,GAAG,EAAE,CACnB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAElE,MAAM,KAAW,MAAM,CAStB;AATD,WAAiB,MAAM;IACR,YAAK,GAAG,CAAC,MAAoC,EAAE,EAAE;QAC5D,MAAM,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC;YACvB,IAAI,EAAE,OAAO,EAAE;YACf,KAAK,EAAE,MAAM,CAAC,MAAM,CAAC;SACtB,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,CAAC,gBAAgB,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC;IAC7C,CAAC,CAAC;AACJ,CAAC,EATgB,MAAM,KAAN,MAAM,QAStB"}

package/package.json

@@ -0,0 +1,58 @@
+{
+  "name": "@o-zone/scorer-core",
+  "version": "0.0.1",
+  "description": "Orienteering scoring core library with modular exports",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/orienteering-nz/scorer-core"
+  },
+  "license": "MIT",
+  "type": "module",
+  "exports": {
+    "./server": {
+      "import": "./dist/server.js",
+      "types": "./dist/server.d.ts"
+    },
+    "./race": {
+      "import": "./dist/race/index.js",
+      "types": "./dist/race/index.d.ts"
+    },
+    "./competition": {
+      "import": "./dist/competition/index.js",
+      "types": "./dist/competition/index.d.ts"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsc --project tsconfig.build.json",
+    "build:watch": "tsc --project tsconfig.build.json --watch",
+    "changes": "changeset add",
+    "changeset": "changeset",
+    "changeset:release": "changeset version && npm run build",
+    "check:types": "tsc --noEmit",
+    "format": "biome format . --write",
+    "lint": "biome check .",
+    "lint:fix": "biome check . --write",
+    "publish": "npm run build && changeset publish"
+  },
+  "dependencies": {
+    "zod": "^4.3.6"
+  },
+  "devDependencies": {
+    "@biomejs/biome": "^2.3.11",
+    "@changesets/changelog-github": "^0.5.0",
+    "@changesets/cli": "^2.29.8",
+    "@total-typescript/ts-reset": "^0.6.1",
+    "@types/bun": "latest",
+    "typescript": "^5.3.3"
+  },
+  "peerDependencies": {
+    "typescript": "^5"
+  },
+  "packageManager": "bun@1.3.5",
+  "publishConfig": {
+    "access": "public"
+  }
+}