@panguard-ai/panguard-auth 0.1.0

package/dist/usage-meter.js

@@ -0,0 +1,123 @@
+/**
+ * Usage metering and quota enforcement for tier-based limits.
+ * Tracks monthly usage per resource per user.
+ *
+ * @module @panguard-ai/panguard-auth/usage-meter
+ */
+/** Quota limits per tier. -1 means unlimited. */
+const TIER_QUOTAS = {
+    community: {
+        scan: 100,
+        guard_endpoints: 1,
+        reports: 0,
+        api_calls: 1000,
+        notifications: 0,
+        trap_instances: 0,
+    },
+    solo: {
+        scan: -1,
+        guard_endpoints: 3,
+        reports: 0,
+        api_calls: 10000,
+        notifications: 1,
+        trap_instances: 1,
+    },
+    pro: {
+        scan: -1,
+        guard_endpoints: 10,
+        reports: 5,
+        api_calls: 50000,
+        notifications: 3,
+        trap_instances: 3,
+    },
+    business: {
+        scan: -1,
+        guard_endpoints: 25,
+        reports: 20,
+        api_calls: -1,
+        notifications: -1,
+        trap_instances: 8,
+    },
+    enterprise: {
+        scan: -1,
+        guard_endpoints: -1,
+        reports: -1,
+        api_calls: -1,
+        notifications: -1,
+        trap_instances: -1,
+    },
+};
+/** Monthly resources that reset each calendar month. */
+const MONTHLY_RESOURCES = new Set(['scan', 'reports', 'api_calls']);
+/** Get the current month period string, e.g. '2026-02'. */
+export function currentPeriod() {
+    const now = new Date();
+    const y = now.getUTCFullYear();
+    const m = String(now.getUTCMonth() + 1).padStart(2, '0');
+    return `${y}-${m}`;
+}
+/** Get the period string for a resource (monthly vs lifetime). */
+function getPeriod(resource) {
+    return MONTHLY_RESOURCES.has(resource) ? currentPeriod() : 'lifetime';
+}
+/**
+ * Check if a user has quota remaining for a given resource.
+ */
+export function checkQuota(db, userId, tier, resource) {
+    const quotas = TIER_QUOTAS[tier] ?? TIER_QUOTAS['community'];
+    const limit = quotas[resource] ?? 0;
+    const period = getPeriod(resource);
+    const current = db.getUsage(userId, resource, period);
+    if (limit === -1) {
+        return { allowed: true, current, limit: -1, remaining: -1, resource };
+    }
+    const remaining = Math.max(0, limit - current);
+    return {
+        allowed: current < limit,
+        current,
+        limit,
+        remaining,
+        resource,
+    };
+}
+/**
+ * Record usage for a resource. Call after the operation succeeds.
+ */
+export function recordUsage(db, userId, resource, count = 1) {
+    const period = getPeriod(resource);
+    db.incrementUsage(userId, resource, period, count);
+}
+/**
+ * Set absolute usage for count-based resources (e.g. guard_endpoints).
+ */
+export function setUsage(db, userId, resource, count) {
+    const period = getPeriod(resource);
+    db.setUsage(userId, resource, period, count);
+}
+/**
+ * Get usage summary for all resources for a user.
+ */
+export function getUsageSummary(db, userId, tier) {
+    const quotas = TIER_QUOTAS[tier] ?? TIER_QUOTAS['community'];
+    const resources = Object.keys(quotas);
+    return resources.map((resource) => {
+        const limit = quotas[resource] ?? 0;
+        const period = getPeriod(resource);
+        const current = db.getUsage(userId, resource, period);
+        const percentage = limit === -1
+            ? 0
+            : limit === 0
+                ? current > 0
+                    ? 100
+                    : 0
+                : Math.min(100, Math.round((current / limit) * 100));
+        return { resource, current, limit, percentage };
+    });
+}
+/**
+ * Get quota limits for a tier (for display purposes).
+ */
+export function getQuotaLimits(tier) {
+    return { ...(TIER_QUOTAS[tier] ?? TIER_QUOTAS['community']) };
+}
+//# sourceMappingURL=usage-meter.js.map

package/dist/usage-meter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"usage-meter.js","sourceRoot":"","sources":["../src/usage-meter.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAgCH,iDAAiD;AACjD,MAAM,WAAW,GAAsD;IACrE,SAAS,EAAE;QACT,IAAI,EAAE,GAAG;QACT,eAAe,EAAE,CAAC;QAClB,OAAO,EAAE,CAAC;QACV,SAAS,EAAE,IAAI;QACf,aAAa,EAAE,CAAC;QAChB,cAAc,EAAE,CAAC;KAClB;IACD,IAAI,EAAE;QACJ,IAAI,EAAE,CAAC,CAAC;QACR,eAAe,EAAE,CAAC;QAClB,OAAO,EAAE,CAAC;QACV,SAAS,EAAE,KAAK;QAChB,aAAa,EAAE,CAAC;QAChB,cAAc,EAAE,CAAC;KAClB;IACD,GAAG,EAAE;QACH,IAAI,EAAE,CAAC,CAAC;QACR,eAAe,EAAE,EAAE;QACnB,OAAO,EAAE,CAAC;QACV,SAAS,EAAE,KAAK;QAChB,aAAa,EAAE,CAAC;QAChB,cAAc,EAAE,CAAC;KAClB;IACD,QAAQ,EAAE;QACR,IAAI,EAAE,CAAC,CAAC;QACR,eAAe,EAAE,EAAE;QACnB,OAAO,EAAE,EAAE;QACX,SAAS,EAAE,CAAC,CAAC;QACb,aAAa,EAAE,CAAC,CAAC;QACjB,cAAc,EAAE,CAAC;KAClB;IACD,UAAU,EAAE;QACV,IAAI,EAAE,CAAC,CAAC;QACR,eAAe,EAAE,CAAC,CAAC;QACnB,OAAO,EAAE,CAAC,CAAC;QACX,SAAS,EAAE,CAAC,CAAC;QACb,aAAa,EAAE,CAAC,CAAC;QACjB,cAAc,EAAE,CAAC,CAAC;KACnB;CACF,CAAC;AAEF,wDAAwD;AACxD,MAAM,iBAAiB,GAA2B,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC,CAAC;AAE5F,2DAA2D;AAC3D,MAAM,UAAU,aAAa;IAC3B,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,CAAC,GAAG,GAAG,CAAC,cAAc,EAAE,CAAC;IAC/B,MAAM,CAAC,GAAG,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;IACzD,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;AACrB,CAAC;AAED,kEAAkE;AAClE,SAAS,SAAS,CAAC,QAA2B;IAC5C,OAAO,iBAAiB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,aAAa,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC;AACxE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,UAAU,CACxB,EAAU,EACV,MAAc,EACd,IAAY,EACZ,QAA2B;IAE3B,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC,IAAI,WAAW,CAAC,WAAW,CAAE,CAAC;IAC9D,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;IACpC,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;IACnC,MAAM,OAAO,GAAG,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;IAEtD,IAAI,KAAK,KAAK,CAAC,CAAC,EAAE,CAAC;QACjB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC;IACxE,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,GAAG,OAAO,CAAC,CAAC;IAC/C,OAAO;QACL,OAAO,EAAE,OAAO,GAAG,KAAK;QACxB,OAAO;QACP,KAAK;QACL,SAAS;QACT,QAAQ;KACT,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CACzB,EAAU,EACV,MAAc,EACd,QAA2B,EAC3B,QAAgB,CAAC;IAEjB,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;IACnC,EAAE,CAAC,cAAc,CAAC,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC;AACrD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,QAAQ,CACtB,EAAU,EACV,MAAc,EACd,QAA2B,EAC3B,KAAa;IAEb,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;IACnC,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,KAAK,CAAC,CAAC;AAC/C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,EAAU,EAAE,MAAc,EAAE,IAAY;IACtE,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC,IAAI,WAAW,CAAC,WAAW,CAAE,CAAC;IAC9D,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAwB,CAAC;IAE7D,OAAO,SAAS,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE,EAAE;QAChC,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACpC,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;QACnC,MAAM,OAAO,GAAG,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;QACtD,MAAM,UAAU,GACd,KAAK,KAAK,CAAC,CAAC;YACV,CAAC,CAAC,CAAC;YACH,CAAC,CAAC,KAAK,KAAK,CAAC;gBACX,CAAC,CAAC,OAAO,GAAG,CAAC;oBACX,CAAC,CAAC,GAAG;oBACL,CAAC,CAAC,CAAC;gBACL,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,OAAO,GAAG,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;QAE3D,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC;IAClD,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,IAAY;IACzC,OAAO,EAAE,GAAG,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,WAAW,CAAC,WAAW,CAAE,CAAC,EAAE,CAAC;AACjE,CAAC"}

package/package.json

@@ -0,0 +1,33 @@
+{
+  "name": "@panguard-ai/panguard-auth",
+  "version": "0.1.0",
+  "type": "module",
+  "description": "Authentication and waitlist system for Panguard AI",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "publishConfig": {
+    "access": "public"
+  },
+  "files": [
+    "dist",
+    "package.json",
+    "README.md"
+  ],
+  "scripts": {
+    "build": "tsc --build",
+    "clean": "rm -rf dist tsconfig.tsbuildinfo",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run",
+    "dev": "tsc --build --watch",
+    "prepublishOnly": "pnpm run build"
+  },
+  "dependencies": {
+    "@panguard-ai/security-hardening": "workspace:*",
+    "better-sqlite3": "^11.0.0"
+  },
+  "devDependencies": {
+    "@types/better-sqlite3": "^7.6.8",
+    "@types/node": "^22.14.0",
+    "typescript": "~5.7.3"
+  }
+}