@package-broker/core 0.2.15

package/dist/queue/consumer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"consumer.js","sourceRoot":"","sources":["../../src/queue/consumer.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,4CAA4C;AAE5C,OAAO,EAAE,gBAAgB,EAAE,MAAM,OAAO,CAAC;AACzC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC/D,OAAO,EAAE,EAAE,EAAE,MAAM,aAAa,CAAC;AAEjC,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAM5C;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,OAAqB,EACrB,GAAqB;IAErB,MAAM,EAAE,GAAG,gBAAgB,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAEpC,QAAQ,OAAO,CAAC,IAAI,EAAE,CAAC;QACrB,KAAK,wBAAwB,CAAC,CAAC,CAAC;YAC9B,MAAM,EAAE;iBACL,MAAM,CAAC,MAAM,CAAC;iBACd,GAAG,CAAC,EAAE,YAAY,EAAE,OAAO,CAAC,SAAS,EAAE,CAAC;iBACxC,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,EAAE,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;YACzC,MAAM;QACR,CAAC;QAED,KAAK,0BAA0B,CAAC,CAAC,CAAC;YAChC,+CAA+C;YAC/C,2BAA2B;YAC3B,MAAM,CAAC,QAAQ,CAAC,GAAG,MAAM,EAAE;iBACxB,MAAM,EAAE;iBACR,IAAI,CAAC,SAAS,CAAC;iBACf,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,EAAE,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC;iBAC3C,KAAK,CAAC,CAAC,CAAC,CAAC;YAEZ,IAAI,QAAQ,EAAE,CAAC;gBACb,MAAM,EAAE;qBACL,MAAM,CAAC,SAAS,CAAC;qBACjB,GAAG,CAAC;oBACH,cAAc,EAAE,CAAC,QAAQ,CAAC,cAAc,IAAI,CAAC,CAAC,GAAG,CAAC;oBAClD,kBAAkB,EAAE,OAAO,CAAC,SAAS;iBACtC,CAAC;qBACD,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,EAAE,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC;YACjD,CAAC;YACD,MAAM;QACR,CAAC;QAED,KAAK,wBAAwB,CAAC,CAAC,CAAC;YAC9B,MAAM,EAAE;iBACL,MAAM,CAAC,YAAY,CAAC;iBACpB,GAAG,CAAC;gBACH,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,aAAa,EAAE,OAAO,CAAC,YAAY,IAAI,IAAI;gBAC3C,cAAc,EAAE,OAAO,CAAC,SAAS;aAClC,CAAC;iBACD,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,EAAE,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC;YAC9C,MAAM;QACR,CAAC;QAED,OAAO,CAAC,CAAC,CAAC;YACR,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;YAC3B,MAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE,EAAE,WAAW,EAAG,OAAe,CAAC,IAAI,EAAE,CAAC,CAAC;QACpF,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,eAAe;IACb,KAAK,CAAC,KAAK,CAAC,KAAiC,EAAE,GAAqB;QAClE,qDAAqD;QACrD,MAAM,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;YAC1C,IAAI,CAAC;gBACH,OAAO,mBAAmB,CAAC,GAAG,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;YAC5C,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;gBAC3B,MAAM,CAAC,KAAK,CAAC,gCAAgC,EAAE,EAAE,WAAW,EAAE,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC1I,0CAA0C;gBAC1C,OAAO,OAAO,CAAC,OAAO,EAAE,CAAC;YAC3B,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,MAAM,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC9B,CAAC;CACF,CAAC"}

package/dist/queue/index.d.ts

@@ -0,0 +1,2 @@
+export * from './memory-driver';
+//# sourceMappingURL=index.d.ts.map

package/dist/queue/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/queue/index.ts"],"names":[],"mappings":"AACA,cAAc,iBAAiB,CAAC"}

package/dist/queue/index.js

@@ -0,0 +1,2 @@
+export * from './memory-driver';
+//# sourceMappingURL=index.js.map

package/dist/queue/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/queue/index.ts"],"names":[],"mappings":"AACA,cAAc,iBAAiB,CAAC"}

package/dist/queue/memory-driver.d.ts

@@ -0,0 +1,13 @@
+import type { QueuePort } from '../ports';
+/**
+ * In-memory queue driver
+ * Drains immediately or stores in array (simple implementation)
+ * For this implementation, we'll just log and maybe process if we had a processor interface,
+ * but since the Port only defines `send`, we effectively just "ack" it.
+ */
+export declare class MemoryQueueDriver implements QueuePort {
+    private messages;
+    send(message: any): Promise<void>;
+    sendBatch(messages: any[]): Promise<void>;
+}
+//# sourceMappingURL=memory-driver.d.ts.map

package/dist/queue/memory-driver.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"memory-driver.d.ts","sourceRoot":"","sources":["../../src/queue/memory-driver.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAE1C;;;;;GAKG;AACH,qBAAa,iBAAkB,YAAW,SAAS;IAC/C,OAAO,CAAC,QAAQ,CAAa;IAEvB,IAAI,CAAC,OAAO,EAAE,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC;IAQjC,SAAS,CAAC,QAAQ,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;CAKlD"}

package/dist/queue/memory-driver.js

@@ -0,0 +1,22 @@
+/**
+ * In-memory queue driver
+ * Drains immediately or stores in array (simple implementation)
+ * For this implementation, we'll just log and maybe process if we had a processor interface,
+ * but since the Port only defines `send`, we effectively just "ack" it.
+ */
+export class MemoryQueueDriver {
+    messages = [];
+    async send(message) {
+        // In a real local setup, you might want to process this immediately 
+        // or have a background loop. For now, we store it.
+        this.messages.push({ message, timestamp: Date.now() });
+        // Simulate processing logging
+        console.log('[MemoryQueue] Message received:', message);
+    }
+    async sendBatch(messages) {
+        for (const msg of messages) {
+            await this.send(msg);
+        }
+    }
+}
+//# sourceMappingURL=memory-driver.js.map

package/dist/queue/memory-driver.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"memory-driver.js","sourceRoot":"","sources":["../../src/queue/memory-driver.ts"],"names":[],"mappings":"AAGA;;;;;GAKG;AACH,MAAM,OAAO,iBAAiB;IAClB,QAAQ,GAAU,EAAE,CAAC;IAE7B,KAAK,CAAC,IAAI,CAAC,OAAY;QACnB,qEAAqE;QACrE,mDAAmD;QACnD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QACvD,8BAA8B;QAC9B,OAAO,CAAC,GAAG,CAAC,iCAAiC,EAAE,OAAO,CAAC,CAAC;IAC5D,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,QAAe;QAC3B,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YACzB,MAAM,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACzB,CAAC;IACL,CAAC;CACJ"}

package/dist/queue/types.d.ts

@@ -0,0 +1,19 @@
+/**
+ * Queue message types for async database updates
+ */
+export type QueueMessage = {
+    type: 'update_token_last_used';
+    tokenId: string;
+    timestamp: number;
+} | {
+    type: 'update_artifact_download';
+    artifactId: string;
+    timestamp: number;
+} | {
+    type: 'update_repository_sync';
+    repoId: string;
+    status: 'active' | 'error';
+    errorMessage?: string;
+    timestamp: number;
+};
+//# sourceMappingURL=types.d.ts.map

package/dist/queue/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/queue/types.ts"],"names":[],"mappings":"AAEA;;GAEG;AACH,MAAM,MAAM,YAAY,GACpB;IACE,IAAI,EAAE,wBAAwB,CAAC;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;CACnB,GACD;IACE,IAAI,EAAE,0BAA0B,CAAC;IACjC,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;CACnB,GACD;IACE,IAAI,EAAE,wBAAwB,CAAC;IAC/B,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,QAAQ,GAAG,OAAO,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;CACnB,CAAC"}

package/dist/queue/types.js

@@ -0,0 +1,3 @@
+// Queue message types
+export {};
+//# sourceMappingURL=types.js.map

package/dist/queue/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/queue/types.ts"],"names":[],"mappings":"AAAA,sBAAsB"}

package/dist/routes/api/artifacts.d.ts

@@ -0,0 +1,25 @@
+import type { Context } from 'hono';
+import type { DatabasePort } from '../../ports';
+import type { StorageDriver } from '../../storage/driver';
+export interface ArtifactsRouteEnv {
+    Bindings: {
+        DB: D1Database;
+        STORAGE: StorageDriver;
+    };
+    Variables: {
+        database: DatabasePort;
+        storage: StorageDriver;
+    };
+}
+/**
+ * DELETE /api/artifacts/:id
+ * Delete an artifact (from storage and database)
+ */
+export declare function deleteArtifact(c: Context<ArtifactsRouteEnv>): Promise<Response>;
+/**
+ * POST /api/artifacts/cleanup
+ * Clean up old artifacts (on-demand cleanup)
+ * Deletes artifacts where last_downloaded_at is older than retention_days
+ */
+export declare function cleanupArtifacts(c: Context<ArtifactsRouteEnv>): Promise<Response>;
+//# sourceMappingURL=artifacts.d.ts.map

package/dist/routes/api/artifacts.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"artifacts.d.ts","sourceRoot":"","sources":["../../../src/routes/api/artifacts.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACpC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAIhD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAE1D,MAAM,WAAW,iBAAiB;IAChC,QAAQ,EAAE;QACR,EAAE,EAAE,UAAU,CAAC;QACf,OAAO,EAAE,aAAa,CAAC;KACxB,CAAC;IACF,SAAS,EAAE;QACT,QAAQ,EAAE,YAAY,CAAC;QACvB,OAAO,EAAE,aAAa,CAAC;KACxB,CAAC;CACH;AAED;;;GAGG;AACH,wBAAsB,cAAc,CAAC,CAAC,EAAE,OAAO,CAAC,iBAAiB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAmBrF;AAED;;;;GAIG;AACH,wBAAsB,gBAAgB,CAAC,CAAC,EAAE,OAAO,CAAC,iBAAiB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAgCvF"}

package/dist/routes/api/artifacts.js

@@ -0,0 +1,57 @@
+// Artifacts API routes
+import { artifacts } from '../../db/schema';
+import { eq, lt } from 'drizzle-orm';
+import { buildStorageKey } from '../../storage/driver';
+/**
+ * DELETE /api/artifacts/:id
+ * Delete an artifact (from storage and database)
+ */
+export async function deleteArtifact(c) {
+    const id = c.req.param('id');
+    const db = c.get('database');
+    // Get artifact to find storage key
+    const [artifact] = await db.select().from(artifacts).where(eq(artifacts.id, id)).limit(1);
+    if (!artifact) {
+        return c.json({ error: 'Not Found', message: 'Artifact not found' }, 404);
+    }
+    // Delete from storage
+    const storageKey = buildStorageKey('private', artifact.repo_id, artifact.package_name, artifact.version);
+    await c.env.STORAGE.delete(storageKey);
+    // Delete from database
+    await db.delete(artifacts).where(eq(artifacts.id, id));
+    return c.json({ message: 'Artifact deleted' });
+}
+/**
+ * POST /api/artifacts/cleanup
+ * Clean up old artifacts (on-demand cleanup)
+ * Deletes artifacts where last_downloaded_at is older than retention_days
+ */
+export async function cleanupArtifacts(c) {
+    const body = await c.req.json();
+    const retentionDays = body.retention_days ?? 90; // Default 90 days
+    const cutoffTimestamp = Math.floor(Date.now() / 1000) - retentionDays * 24 * 60 * 60;
+    const db = c.get('database');
+    // Find old artifacts
+    const oldArtifacts = await db
+        .select()
+        .from(artifacts)
+        .where(lt(artifacts.last_downloaded_at, cutoffTimestamp));
+    let deletedCount = 0;
+    // Delete each artifact from storage and database
+    for (const artifact of oldArtifacts) {
+        const storageKey = buildStorageKey('private', artifact.repo_id, artifact.package_name, artifact.version);
+        try {
+            await c.env.STORAGE.delete(storageKey);
+            await db.delete(artifacts).where(eq(artifacts.id, artifact.id));
+            deletedCount++;
+        }
+        catch (error) {
+            console.error(`Error deleting artifact ${artifact.id}:`, error);
+        }
+    }
+    return c.json({
+        message: 'Cleanup completed',
+        deleted_count: deletedCount,
+    });
+}
+//# sourceMappingURL=artifacts.js.map

package/dist/routes/api/artifacts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"artifacts.js","sourceRoot":"","sources":["../../../src/routes/api/artifacts.ts"],"names":[],"mappings":"AAAA,uBAAuB;AAIvB,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAcvD;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,CAA6B;IAChE,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC7B,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAE7B,mCAAmC;IACnC,MAAM,CAAC,QAAQ,CAAC,GAAG,MAAM,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAE1F,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,OAAO,EAAE,oBAAoB,EAAE,EAAE,GAAG,CAAC,CAAC;IAC5E,CAAC;IAED,sBAAsB;IACtB,MAAM,UAAU,GAAG,eAAe,CAAC,SAAS,EAAE,QAAQ,CAAC,OAAO,EAAE,QAAQ,CAAC,YAAY,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;IACzG,MAAM,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IAEvC,uBAAuB;IACvB,MAAM,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC;IAEvD,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,kBAAkB,EAAE,CAAC,CAAC;AACjD,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,CAA6B;IAClE,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;IAChC,MAAM,aAAa,GAAG,IAAI,CAAC,cAAc,IAAI,EAAE,CAAC,CAAC,kBAAkB;IACnE,MAAM,eAAe,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,aAAa,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC;IAErF,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAE7B,qBAAqB;IACrB,MAAM,YAAY,GAAG,MAAM,EAAE;SAC1B,MAAM,EAAE;SACR,IAAI,CAAC,SAAS,CAAC;SACf,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,kBAAkB,EAAE,eAAe,CAAC,CAAC,CAAC;IAE5D,IAAI,YAAY,GAAG,CAAC,CAAC;IAErB,iDAAiD;IACjD,KAAK,MAAM,QAAQ,IAAI,YAAY,EAAE,CAAC;QACpC,MAAM,UAAU,GAAG,eAAe,CAAC,SAAS,EAAE,QAAQ,CAAC,OAAO,EAAE,QAAQ,CAAC,YAAY,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC;QAEzG,IAAI,CAAC;YACH,MAAM,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;YACvC,MAAM,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,SAAS,CAAC,EAAE,EAAE,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC;YAChE,YAAY,EAAE,CAAC;QACjB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CAAC,2BAA2B,QAAQ,CAAC,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;QAClE,CAAC;IACH,CAAC;IAED,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,OAAO,EAAE,mBAAmB;QAC5B,aAAa,EAAE,YAAY;KAC5B,CAAC,CAAC;AACL,CAAC"}

package/dist/routes/api/auth.d.ts

@@ -0,0 +1,50 @@
+import type { Context } from 'hono';
+/**
+ * POST /api/auth/login
+ * Authenticate admin user and return session token
+ */
+export declare function loginRoute(c: Context): Promise<Response>;
+/**
+ * POST /api/auth/logout
+ * Invalidate session token
+ */
+export declare function logoutRoute(c: Context): Promise<Response>;
+/**
+ * GET /api/auth/me
+ * Get current authenticated user
+ */
+export declare function meRoute(c: Context): Promise<Response>;
+/**
+ * POST /api/setup
+ * Create initial admin user
+ */
+export declare function setupRoute(c: Context): Promise<Response>;
+/**
+ * POST /api/auth/2fa/setup
+ * Start 2FA setup flow
+ */
+export declare function setup2FARoute(c: Context): Promise<Response>;
+/**
+ * POST /api/auth/2fa/enable
+ * Confirm 2FA setup with code
+ */
+export declare function enable2FARoute(c: Context): Promise<Response>;
+/**
+ * POST /api/auth/2fa/disable
+ * Disable 2FA
+ */
+export declare function disable2FARoute(c: Context): Promise<Response>;
+/**
+ * POST /api/auth/invite/accept
+ * Accept invite and set password
+ */
+export declare function acceptInviteRoute(c: Context): Promise<Response>;
+/**
+ * Middleware to verify session token
+ */
+export declare function sessionMiddleware(c: Context, next: () => Promise<void>): Promise<Response | void>;
+/**
+ * Check if auth is required / setup is needed
+ */
+export declare function checkAuthRequired(c: Context): Promise<Response>;
+//# sourceMappingURL=auth.d.ts.map

package/dist/routes/api/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../src/routes/api/auth.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAapC;;;GAGG;AACH,wBAAsB,UAAU,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CA4E9D;AAED;;;GAGG;AACH,wBAAsB,WAAW,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAO/D;AAED;;;GAGG;AACH,wBAAsB,OAAO,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAuB3D;AAED;;;GAGG;AACH,wBAAsB,UAAU,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAqC9D;AAED;;;GAGG;AACH,wBAAsB,aAAa,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAUjE;AAED;;;GAGG;AACH,wBAAsB,cAAc,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAwBlE;AAED;;;GAGG;AACH,wBAAsB,eAAe,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAOnE;AAED;;;GAGG;AACH,wBAAsB,iBAAiB,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAuBrE;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CAAC,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAoBvG;AAED;;GAEG;AACH,wBAAsB,iBAAiB,CAAC,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,QAAQ,CAAC,CAUrE"}

package/dist/routes/api/auth.js

@@ -0,0 +1,268 @@
+/*
+ * PACKAGE.broker
+ * Copyright (C) 2025 Łukasz Bajsarowicz
+ * Licensed under AGPL-3.0
+ */
+import { UserService } from '../../services/UserService';
+import { getAnalytics } from '../../utils/analytics';
+// Generate a session token
+function generateSessionToken() {
+    const bytes = crypto.getRandomValues(new Uint8Array(32));
+    return btoa(String.fromCharCode(...bytes))
+        .replace(/\+/g, '-')
+        .replace(/\//g, '_')
+        .replace(/=/g, '');
+}
+/**
+ * POST /api/auth/login
+ * Authenticate admin user and return session token
+ */
+export async function loginRoute(c) {
+    const db = c.get('database');
+    const userService = new UserService(db);
+    let body;
+    try {
+        body = await c.req.json();
+    }
+    catch {
+        return c.json({ error: 'Invalid JSON' }, 400);
+    }
+    const { email, password } = body;
+    if (!email || !password) {
+        return c.json({ error: 'Email and password required' }, 400);
+    }
+    const user = await userService.verifyCredentials(email, password);
+    const requestId = c.get('requestId');
+    const analytics = getAnalytics();
+    if (!user) {
+        analytics.trackAuthLogin({
+            requestId,
+            userId: 'unknown',
+            success: false,
+        });
+        return c.json({ error: 'Invalid credentials' }, 401);
+    }
+    // Check 2FA
+    if (user.two_factor_enabled) {
+        const { code } = body;
+        if (!code) {
+            return c.json({ error: '2FA required', code: '2fa_required' }, 403);
+        }
+        const isValid = await userService.validateTwoFactorLogin(user.id, code);
+        if (!isValid) {
+            analytics.trackAuthLogin({
+                requestId,
+                userId: user.id,
+                success: false,
+            });
+            return c.json({ error: 'Invalid 2FA code' }, 401);
+        }
+    }
+    // Generate session token
+    const sessionToken = generateSessionToken();
+    analytics.trackAuthLogin({
+        requestId,
+        userId: user.id,
+        success: true,
+    });
+    // Store session in KV (expires in 24 hours)
+    await c.env.KV.put(`session:${sessionToken}`, JSON.stringify({
+        userId: user.id,
+        email: user.email,
+        role: user.role,
+        createdAt: Date.now(),
+    }), {
+        expirationTtl: 86400, // 24 hours
+    });
+    return c.json({
+        token: sessionToken,
+        user: {
+            id: user.id,
+            email: user.email,
+            role: user.role,
+            two_factor_enabled: user.two_factor_enabled,
+        },
+    });
+}
+/**
+ * POST /api/auth/logout
+ * Invalidate session token
+ */
+export async function logoutRoute(c) {
+    const authHeader = c.req.header('Authorization');
+    if (authHeader?.startsWith('Bearer ')) {
+        const token = authHeader.slice(7);
+        await c.env.KV.delete(`session:${token}`);
+    }
+    return c.json({ message: 'Logged out' });
+}
+/**
+ * GET /api/auth/me
+ * Get current authenticated user
+ */
+export async function meRoute(c) {
+    const session = c.get('session');
+    if (!session) {
+        return c.json({ error: 'Not authenticated' }, 401);
+    }
+    // Refresh user data from DB to get latest status
+    const db = c.get('database');
+    const userService = new UserService(db);
+    const user = await userService.findById(session.userId);
+    if (!user) {
+        return c.json({ error: 'User not found' }, 404);
+    }
+    return c.json({
+        user: {
+            id: user.id,
+            email: user.email,
+            role: user.role,
+            two_factor_enabled: user.two_factor_enabled
+        }
+    });
+}
+/**
+ * POST /api/setup
+ * Create initial admin user
+ */
+export async function setupRoute(c) {
+    const db = c.get('database');
+    const userService = new UserService(db);
+    // Check if any user exists
+    const count = await userService.count();
+    if (count > 0) {
+        return c.json({ error: 'Setup already completed' }, 403);
+    }
+    let body;
+    try {
+        body = await c.req.json();
+    }
+    catch {
+        return c.json({ error: 'Invalid JSON' }, 400);
+    }
+    const { email, password } = body;
+    if (!email || !password) {
+        return c.json({ error: 'Email and password required' }, 400);
+    }
+    // Create first admin
+    const user = await userService.create({
+        email,
+        password,
+        role: 'admin'
+    });
+    return c.json({
+        message: 'Setup complete',
+        user: {
+            id: user?.id,
+            email: user?.email
+        }
+    });
+}
+/**
+ * POST /api/auth/2fa/setup
+ * Start 2FA setup flow
+ */
+export async function setup2FARoute(c) {
+    const db = c.get('database');
+    const userService = new UserService(db);
+    const session = c.get('session');
+    // Generate new secret
+    const secret = await userService.setupTwoFactor(session.userId);
+    const qrCode = await userService.generateTwoFactorQrCode(session.email, secret);
+    return c.json({ secret, qrCode });
+}
+/**
+ * POST /api/auth/2fa/enable
+ * Confirm 2FA setup with code
+ */
+export async function enable2FARoute(c) {
+    const db = c.get('database');
+    const userService = new UserService(db);
+    const session = c.get('session');
+    let body;
+    try {
+        body = await c.req.json();
+    }
+    catch {
+        return c.json({ error: 'Invalid JSON' }, 400);
+    }
+    const { secret, code } = body;
+    if (!secret || !code) {
+        return c.json({ error: 'Secret and code required' }, 400);
+    }
+    try {
+        const recoveryCodes = await userService.enableTwoFactor(session.userId, secret, code);
+        return c.json({ recoveryCodes });
+    }
+    catch (err) {
+        return c.json({ error: err.message }, 400);
+    }
+}
+/**
+ * POST /api/auth/2fa/disable
+ * Disable 2FA
+ */
+export async function disable2FARoute(c) {
+    const db = c.get('database');
+    const userService = new UserService(db);
+    const session = c.get('session');
+    await userService.disableTwoFactor(session.userId);
+    return c.json({ message: '2FA disabled' });
+}
+/**
+ * POST /api/auth/invite/accept
+ * Accept invite and set password
+ */
+export async function acceptInviteRoute(c) {
+    const db = c.get('database');
+    const userService = new UserService(db);
+    let body;
+    try {
+        body = await c.req.json();
+    }
+    catch {
+        return c.json({ error: 'Invalid JSON' }, 400);
+    }
+    const { token, password } = body;
+    if (!token || !password) {
+        return c.json({ error: 'Token and password required' }, 400);
+    }
+    try {
+        const user = await userService.acceptInvite(token, password);
+        return c.json({ message: 'Invite accepted', user: { email: user.email } });
+    }
+    catch (err) {
+        return c.json({ error: err.message }, 400);
+    }
+}
+/**
+ * Middleware to verify session token
+ */
+export async function sessionMiddleware(c, next) {
+    const authHeader = c.req.header('Authorization');
+    if (!authHeader || !authHeader.startsWith('Bearer ')) {
+        return c.json({ error: 'Unauthorized', message: 'Session token required' }, 401);
+    }
+    const token = authHeader.slice(7);
+    // Check KV for session
+    const sessionData = await c.env.KV.get(`session:${token}`, 'json');
+    if (!sessionData) {
+        return c.json({ error: 'Unauthorized', message: 'Invalid or expired session' }, 401);
+    }
+    // Attach session to context
+    c.set('session', sessionData);
+    return await next();
+}
+/**
+ * Check if auth is required / setup is needed
+ */
+export async function checkAuthRequired(c) {
+    const db = c.get('database');
+    const userService = new UserService(db);
+    const count = await userService.count();
+    return c.json({
+        authRequired: true,
+        setupRequired: count === 0
+    });
+}
+//# sourceMappingURL=auth.js.map

package/dist/routes/api/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/routes/api/auth.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAKH,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AACzD,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAErD,2BAA2B;AAC3B,SAAS,oBAAoB;IAC3B,MAAM,KAAK,GAAG,MAAM,CAAC,eAAe,CAAC,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC;IACzD,OAAO,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,GAAG,KAAK,CAAC,CAAC;SACvC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;AACvB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,CAAU;IACzC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,IAAI,IAAI,CAAC;IACT,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,EAAE,GAAG,CAAC,CAAC;IAChD,CAAC;IAED,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;IAEjC,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;QACxB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/D,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,iBAAiB,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;IAClE,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAuB,CAAC;IAC3D,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IAEjC,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,SAAS,CAAC,cAAc,CAAC;YACvB,SAAS;YACT,MAAM,EAAE,SAAS;YACjB,OAAO,EAAE,KAAK;SACf,CAAC,CAAC;QACH,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,qBAAqB,EAAE,EAAE,GAAG,CAAC,CAAC;IACvD,CAAC;IAED,YAAY;IACZ,IAAI,IAAI,CAAC,kBAAkB,EAAE,CAAC;QAC5B,MAAM,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC;QACtB,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,IAAI,EAAE,cAAc,EAAE,EAAE,GAAG,CAAC,CAAC;QACtE,CAAC;QAED,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,sBAAsB,CAAC,IAAI,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;QACxE,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,SAAS,CAAC,cAAc,CAAC;gBACvB,SAAS;gBACT,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,OAAO,EAAE,KAAK;aACf,CAAC,CAAC;YACH,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,kBAAkB,EAAE,EAAE,GAAG,CAAC,CAAC;QACpD,CAAC;IACH,CAAC;IAED,yBAAyB;IACzB,MAAM,YAAY,GAAG,oBAAoB,EAAE,CAAC;IAE5C,SAAS,CAAC,cAAc,CAAC;QACvB,SAAS;QACT,MAAM,EAAE,IAAI,CAAC,EAAE;QACf,OAAO,EAAE,IAAI;KACd,CAAC,CAAC;IAEH,4CAA4C;IAC5C,MAAM,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,WAAW,YAAY,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC;QAC3D,MAAM,EAAE,IAAI,CAAC,EAAE;QACf,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;KACtB,CAAC,EAAE;QACF,aAAa,EAAE,KAAK,EAAE,WAAW;KAClC,CAAC,CAAC;IAEH,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,KAAK,EAAE,YAAY;QACnB,IAAI,EAAE;YACJ,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;SAC5C;KACF,CAAC,CAAC;AACL,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,CAAU;IAC1C,MAAM,UAAU,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;IACjD,IAAI,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACtC,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAClC,MAAM,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,MAAM,CAAC,WAAW,KAAK,EAAE,CAAC,CAAC;IAC5C,CAAC;IACD,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,YAAY,EAAE,CAAC,CAAC;AAC3C,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,CAAU;IACtC,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACjC,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,EAAE,GAAG,CAAC,CAAC;IACrD,CAAC;IAED,iDAAiD;IACjD,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACxC,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAExD,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,EAAE,GAAG,CAAC,CAAC;IAClD,CAAC;IAED,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,IAAI,EAAE;YACJ,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,kBAAkB,EAAE,IAAI,CAAC,kBAAkB;SAC5C;KACF,CAAC,CAAC;AACL,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,CAAU;IACzC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,2BAA2B;IAC3B,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,KAAK,EAAE,CAAC;IACxC,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;QACd,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,EAAE,GAAG,CAAC,CAAC;IAC3D,CAAC;IAED,IAAI,IAAI,CAAC;IACT,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,EAAE,GAAG,CAAC,CAAC;IAChD,CAAC;IAED,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;IAEjC,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;QACxB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/D,CAAC;IAED,qBAAqB;IACrB,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC;QACpC,KAAK;QACL,QAAQ;QACR,IAAI,EAAE,OAAO;KACd,CAAC,CAAC;IAEH,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,OAAO,EAAE,gBAAgB;QACzB,IAAI,EAAE;YACJ,EAAE,EAAE,IAAI,EAAE,EAAE;YACZ,KAAK,EAAE,IAAI,EAAE,KAAK;SACnB;KACF,CAAC,CAAC;AACL,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,CAAU;IAC5C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACxC,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAEjC,sBAAsB;IACtB,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAChE,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,uBAAuB,CAAC,OAAO,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAEhF,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;AACpC,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,CAAU;IAC7C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACxC,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAEjC,IAAI,IAAI,CAAC;IACT,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,EAAE,GAAG,CAAC,CAAC;IAChD,CAAC;IAED,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,IAAI,CAAC;IAE9B,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;QACrB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,0BAA0B,EAAE,EAAE,GAAG,CAAC,CAAC;IAC5D,CAAC;IAED,IAAI,CAAC;QACH,MAAM,aAAa,GAAG,MAAM,WAAW,CAAC,eAAe,CAAC,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,CAAC,CAAC;QACtF,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,aAAa,EAAE,CAAC,CAAC;IACnC,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,OAAO,EAAE,EAAE,GAAG,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CAAC,CAAU;IAC9C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IACxC,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAEjC,MAAM,WAAW,CAAC,gBAAgB,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IACnD,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAC;AAC7C,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,CAAU;IAChD,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,IAAI,IAAI,CAAC;IACT,IAAI,CAAC;QACH,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,EAAE,GAAG,CAAC,CAAC;IAChD,CAAC;IAED,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;IAEjC,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;QACxB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/D,CAAC;IAED,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,YAAY,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;QAC7D,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,iBAAiB,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IAC7E,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,OAAO,EAAE,EAAE,GAAG,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,CAAU,EAAE,IAAyB;IAC3E,MAAM,UAAU,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;IAEjD,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACrD,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,OAAO,EAAE,wBAAwB,EAAE,EAAE,GAAG,CAAC,CAAC;IACnF,CAAC;IAED,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAElC,uBAAuB;IACvB,MAAM,WAAW,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,WAAW,KAAK,EAAE,EAAE,MAAM,CAAC,CAAC;IAEnE,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,cAAc,EAAE,OAAO,EAAE,4BAA4B,EAAE,EAAE,GAAG,CAAC,CAAC;IACvF,CAAC;IAED,4BAA4B;IAC5B,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC;IAE9B,OAAO,MAAM,IAAI,EAAE,CAAC;AACtB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,CAAU;IAChD,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,EAAE,CAAC,CAAC;IAExC,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,KAAK,EAAE,CAAC;IAExC,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,YAAY,EAAE,IAAI;QAClB,aAAa,EAAE,KAAK,KAAK,CAAC;KAC3B,CAAC,CAAC;AACL,CAAC"}

package/dist/routes/api/index.d.ts

@@ -0,0 +1,9 @@
+export * from './repositories';
+export * from './tokens';
+export * from './packages';
+export * from './stats';
+export * from './artifacts';
+export * from './auth';
+export * from './users';
+export * from './settings';
+//# sourceMappingURL=index.d.ts.map

package/dist/routes/api/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/routes/api/index.ts"],"names":[],"mappings":"AACA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,UAAU,CAAC;AACzB,cAAc,YAAY,CAAC;AAC3B,cAAc,SAAS,CAAC;AACxB,cAAc,aAAa,CAAC;AAC5B,cAAc,QAAQ,CAAC;AACvB,cAAc,SAAS,CAAC;AACxB,cAAc,YAAY,CAAC"}

package/dist/routes/api/index.js

@@ -0,0 +1,10 @@
+// API routes exports
+export * from './repositories';
+export * from './tokens';
+export * from './packages';
+export * from './stats';
+export * from './artifacts';
+export * from './auth';
+export * from './users';
+export * from './settings';
+//# sourceMappingURL=index.js.map

package/dist/routes/api/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/routes/api/index.ts"],"names":[],"mappings":"AAAA,qBAAqB;AACrB,cAAc,gBAAgB,CAAC;AAC/B,cAAc,UAAU,CAAC;AACzB,cAAc,YAAY,CAAC;AAC3B,cAAc,SAAS,CAAC;AACxB,cAAc,aAAa,CAAC;AAC5B,cAAc,QAAQ,CAAC;AACvB,cAAc,SAAS,CAAC;AACxB,cAAc,YAAY,CAAC"}

package/dist/routes/api/packages.d.ts

@@ -0,0 +1,47 @@
+import type { Context } from 'hono';
+import type { DatabasePort } from '../../ports';
+import type { StorageDriver } from '../../storage/driver';
+export interface PackagesRouteEnv {
+    Bindings: {
+        DB: D1Database;
+        KV: KVNamespace;
+        ENCRYPTION_KEY: string;
+    };
+    Variables: {
+        database: DatabasePort;
+        storage: StorageDriver;
+    };
+}
+/**
+ * GET /api/packages
+ * List all packages (with optional search)
+ */
+export declare function listPackages(c: Context<PackagesRouteEnv>): Promise<Response>;
+/**
+ * GET /api/packages/:name
+ * Get a single package with all versions
+ */
+export declare function getPackage(c: Context<PackagesRouteEnv>): Promise<Response>;
+/**
+ * GET /api/packages/:name/:version/readme
+ * Get README.md content for a specific package version
+ * Uses R2/S3 storage instead of KV for better scalability
+ */
+export declare function getPackageReadme(c: Context<PackagesRouteEnv>): Promise<Response>;
+/**
+ * GET /api/packages/:name/:version/changelog
+ * Get CHANGELOG.md content for a specific package version
+ * Uses R2/S3 storage instead of KV for better scalability
+ */
+export declare function getPackageChangelog(c: Context<PackagesRouteEnv>): Promise<Response>;
+/**
+ * POST /api/packages/add-from-mirror
+ * Manually fetch and store packages from a selected mirror repository
+ */
+export declare function addPackagesFromMirror(c: Context<PackagesRouteEnv>): Promise<Response>;
+/**
+ * POST /packages/cleanup-numeric-versions
+ * Temporary utility to fix versioning issues
+ */
+export declare function cleanupNumericVersions(c: Context<PackagesRouteEnv>): Promise<Response>;
+//# sourceMappingURL=packages.d.ts.map

package/dist/routes/api/packages.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"packages.d.ts","sourceRoot":"","sources":["../../../src/routes/api/packages.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACpC,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAIhD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAC;AAS1D,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE;QACR,EAAE,EAAE,UAAU,CAAC;QACf,EAAE,EAAE,WAAW,CAAC;QAChB,cAAc,EAAE,MAAM,CAAC;KACxB,CAAC;IACF,SAAS,EAAE;QACT,QAAQ,EAAE,YAAY,CAAC;QACvB,OAAO,EAAE,aAAa,CAAC;KACxB,CAAC;CACH;AAED;;;GAGG;AACH,wBAAsB,YAAY,CAAC,CAAC,EAAE,OAAO,CAAC,gBAAgB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAgBlF;AAED;;;GAGG;AACH,wBAAsB,UAAU,CAAC,CAAC,EAAE,OAAO,CAAC,gBAAgB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAoBhF;AA4ED;;;;GAIG;AACH,wBAAsB,gBAAgB,CAAC,CAAC,EAAE,OAAO,CAAC,gBAAgB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAsRtF;AAED;;;;GAIG;AACH,wBAAsB,mBAAmB,CAAC,CAAC,EAAE,OAAO,CAAC,gBAAgB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAqRzF;AAED;;;GAGG;AACH,wBAAsB,qBAAqB,CAAC,CAAC,EAAE,OAAO,CAAC,gBAAgB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAsF3F;AAED;;;GAGG;AACH,wBAAsB,sBAAsB,CAAC,CAAC,EAAE,OAAO,CAAC,gBAAgB,CAAC,GAAG,OAAO,CAAC,QAAQ,CAAC,CAI5F"}