npm - @rebasepro/server-core - Versions diffs - 0.0.1-canary.4d4fb3e - Mend

@rebasepro/server-core 0.0.1-canary.4d4fb3e

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (254) hide show

package/LICENSE +6 -0
package/README.md +40 -0
package/build-errors.txt +52 -0
package/coverage/clover.xml +3739 -0
package/coverage/coverage-final.json +31 -0
package/coverage/lcov-report/base.css +224 -0
package/coverage/lcov-report/block-navigation.js +87 -0
package/coverage/lcov-report/favicon.png +0 -0
package/coverage/lcov-report/index.html +266 -0
package/coverage/lcov-report/prettify.css +1 -0
package/coverage/lcov-report/prettify.js +2 -0
package/coverage/lcov-report/sort-arrow-sprite.png +0 -0
package/coverage/lcov-report/sorter.js +210 -0
package/coverage/lcov-report/src/api/ast-schema-editor.ts.html +952 -0
package/coverage/lcov-report/src/api/errors.ts.html +472 -0
package/coverage/lcov-report/src/api/graphql/graphql-schema-generator.ts.html +1069 -0
package/coverage/lcov-report/src/api/graphql/index.html +116 -0
package/coverage/lcov-report/src/api/index.html +176 -0
package/coverage/lcov-report/src/api/openapi-generator.ts.html +565 -0
package/coverage/lcov-report/src/api/rest/api-generator.ts.html +994 -0
package/coverage/lcov-report/src/api/rest/index.html +131 -0
package/coverage/lcov-report/src/api/rest/query-parser.ts.html +550 -0
package/coverage/lcov-report/src/api/schema-editor-routes.ts.html +202 -0
package/coverage/lcov-report/src/api/server.ts.html +823 -0
package/coverage/lcov-report/src/auth/admin-routes.ts.html +973 -0
package/coverage/lcov-report/src/auth/index.html +176 -0
package/coverage/lcov-report/src/auth/jwt.ts.html +574 -0
package/coverage/lcov-report/src/auth/middleware.ts.html +745 -0
package/coverage/lcov-report/src/auth/password.ts.html +310 -0
package/coverage/lcov-report/src/auth/services.ts.html +2074 -0
package/coverage/lcov-report/src/collections/index.html +116 -0
package/coverage/lcov-report/src/collections/loader.ts.html +232 -0
package/coverage/lcov-report/src/db/auth-schema.ts.html +523 -0
package/coverage/lcov-report/src/db/data-transformer.ts.html +1753 -0
package/coverage/lcov-report/src/db/entityService.ts.html +700 -0
package/coverage/lcov-report/src/db/index.html +146 -0
package/coverage/lcov-report/src/db/services/EntityFetchService.ts.html +4048 -0
package/coverage/lcov-report/src/db/services/EntityPersistService.ts.html +883 -0
package/coverage/lcov-report/src/db/services/RelationService.ts.html +3121 -0
package/coverage/lcov-report/src/db/services/entity-helpers.ts.html +442 -0
package/coverage/lcov-report/src/db/services/index.html +176 -0
package/coverage/lcov-report/src/db/services/index.ts.html +124 -0
package/coverage/lcov-report/src/generate-drizzle-schema-logic.ts.html +1960 -0
package/coverage/lcov-report/src/index.html +116 -0
package/coverage/lcov-report/src/services/driver-registry.ts.html +631 -0
package/coverage/lcov-report/src/services/index.html +131 -0
package/coverage/lcov-report/src/services/postgresDataDriver.ts.html +3025 -0
package/coverage/lcov-report/src/storage/LocalStorageController.ts.html +1189 -0
package/coverage/lcov-report/src/storage/S3StorageController.ts.html +970 -0
package/coverage/lcov-report/src/storage/index.html +161 -0
package/coverage/lcov-report/src/storage/storage-registry.ts.html +646 -0
package/coverage/lcov-report/src/storage/types.ts.html +451 -0
package/coverage/lcov-report/src/utils/drizzle-conditions.ts.html +3082 -0
package/coverage/lcov-report/src/utils/index.html +116 -0
package/coverage/lcov.info +7179 -0
package/dist/common/src/collections/CollectionRegistry.d.ts +48 -0
package/dist/common/src/collections/index.d.ts +1 -0
package/dist/common/src/data/buildRebaseData.d.ts +14 -0
package/dist/common/src/index.d.ts +3 -0
package/dist/common/src/util/builders.d.ts +57 -0
package/dist/common/src/util/callbacks.d.ts +6 -0
package/dist/common/src/util/collections.d.ts +11 -0
package/dist/common/src/util/common.d.ts +2 -0
package/dist/common/src/util/conditions.d.ts +26 -0
package/dist/common/src/util/entities.d.ts +36 -0
package/dist/common/src/util/enums.d.ts +3 -0
package/dist/common/src/util/index.d.ts +16 -0
package/dist/common/src/util/navigation_from_path.d.ts +34 -0
package/dist/common/src/util/navigation_utils.d.ts +20 -0
package/dist/common/src/util/parent_references_from_path.d.ts +6 -0
package/dist/common/src/util/paths.d.ts +14 -0
package/dist/common/src/util/permissions.d.ts +5 -0
package/dist/common/src/util/references.d.ts +2 -0
package/dist/common/src/util/relations.d.ts +12 -0
package/dist/common/src/util/resolutions.d.ts +72 -0
package/dist/common/src/util/storage.d.ts +24 -0
package/dist/index-BeMqpmfQ.js +239 -0
package/dist/index-BeMqpmfQ.js.map +1 -0
package/dist/index-bl4J3lNb.js +55823 -0
package/dist/index-bl4J3lNb.js.map +1 -0
package/dist/index.es.js +58 -0
package/dist/index.es.js.map +1 -0
package/dist/index.umd.js +56062 -0
package/dist/index.umd.js.map +1 -0
package/dist/server-core/src/api/ast-schema-editor.d.ts +21 -0
package/dist/server-core/src/api/collections_for_test/callbacks_test_collection.d.ts +2 -0
package/dist/server-core/src/api/errors.d.ts +35 -0
package/dist/server-core/src/api/graphql/graphql-schema-generator.d.ts +35 -0
package/dist/server-core/src/api/graphql/index.d.ts +1 -0
package/dist/server-core/src/api/index.d.ts +9 -0
package/dist/server-core/src/api/openapi-generator.d.ts +2 -0
package/dist/server-core/src/api/rest/api-generator.d.ts +64 -0
package/dist/server-core/src/api/rest/index.d.ts +1 -0
package/dist/server-core/src/api/rest/query-parser.d.ts +9 -0
package/dist/server-core/src/api/schema-editor-routes.d.ts +3 -0
package/dist/server-core/src/api/server.d.ts +40 -0
package/dist/server-core/src/api/types.d.ts +90 -0
package/dist/server-core/src/auth/admin-routes.d.ts +7 -0
package/dist/server-core/src/auth/google-oauth.d.ts +20 -0
package/dist/server-core/src/auth/index.d.ts +12 -0
package/dist/server-core/src/auth/interfaces.d.ts +270 -0
package/dist/server-core/src/auth/jwt.d.ts +42 -0
package/dist/server-core/src/auth/middleware.d.ts +56 -0
package/dist/server-core/src/auth/password.d.ts +22 -0
package/dist/server-core/src/auth/rate-limiter.d.ts +31 -0
package/dist/server-core/src/auth/routes.d.ts +17 -0
package/dist/server-core/src/bootstrappers/index.d.ts +0 -0
package/dist/server-core/src/collections/BackendCollectionRegistry.d.ts +13 -0
package/dist/server-core/src/collections/loader.d.ts +5 -0
package/dist/server-core/src/db/interfaces.d.ts +18 -0
package/dist/server-core/src/email/index.d.ts +6 -0
package/dist/server-core/src/email/smtp-email-service.d.ts +25 -0
package/dist/server-core/src/email/templates.d.ts +33 -0
package/dist/server-core/src/email/types.d.ts +110 -0
package/dist/server-core/src/functions/function-loader.d.ts +17 -0
package/dist/server-core/src/functions/function-routes.d.ts +10 -0
package/dist/server-core/src/functions/index.d.ts +3 -0
package/dist/server-core/src/history/history-routes.d.ts +23 -0
package/dist/server-core/src/history/index.d.ts +1 -0
package/dist/server-core/src/index.d.ts +24 -0
package/dist/server-core/src/init.d.ts +49 -0
package/dist/server-core/src/serve-spa.d.ts +30 -0
package/dist/server-core/src/services/driver-registry.d.ts +78 -0
package/dist/server-core/src/storage/LocalStorageController.d.ts +46 -0
package/dist/server-core/src/storage/S3StorageController.d.ts +36 -0
package/dist/server-core/src/storage/index.d.ts +18 -0
package/dist/server-core/src/storage/routes.d.ts +38 -0
package/dist/server-core/src/storage/storage-registry.d.ts +78 -0
package/dist/server-core/src/storage/types.d.ts +91 -0
package/dist/server-core/src/types/index.d.ts +11 -0
package/dist/server-core/src/utils/logging.d.ts +9 -0
package/dist/server-core/src/utils/sql.d.ts +27 -0
package/dist/types/src/controllers/analytics_controller.d.ts +7 -0
package/dist/types/src/controllers/auth.d.ts +117 -0
package/dist/types/src/controllers/client.d.ts +58 -0
package/dist/types/src/controllers/collection_registry.d.ts +44 -0
package/dist/types/src/controllers/customization_controller.d.ts +54 -0
package/dist/types/src/controllers/data.d.ts +141 -0
package/dist/types/src/controllers/data_driver.d.ts +168 -0
package/dist/types/src/controllers/database_admin.d.ts +11 -0
package/dist/types/src/controllers/dialogs_controller.d.ts +36 -0
package/dist/types/src/controllers/effective_role.d.ts +4 -0
package/dist/types/src/controllers/index.d.ts +17 -0
package/dist/types/src/controllers/local_config_persistence.d.ts +20 -0
package/dist/types/src/controllers/navigation.d.ts +213 -0
package/dist/types/src/controllers/registry.d.ts +51 -0
package/dist/types/src/controllers/side_dialogs_controller.d.ts +67 -0
package/dist/types/src/controllers/side_entity_controller.d.ts +89 -0
package/dist/types/src/controllers/snackbar.d.ts +24 -0
package/dist/types/src/controllers/storage.d.ts +173 -0
package/dist/types/src/index.d.ts +4 -0
package/dist/types/src/rebase_context.d.ts +101 -0
package/dist/types/src/types/backend.d.ts +533 -0
package/dist/types/src/types/builders.d.ts +14 -0
package/dist/types/src/types/chips.d.ts +5 -0
package/dist/types/src/types/collections.d.ts +812 -0
package/dist/types/src/types/data_source.d.ts +64 -0
package/dist/types/src/types/entities.d.ts +145 -0
package/dist/types/src/types/entity_actions.d.ts +98 -0
package/dist/types/src/types/entity_callbacks.d.ts +173 -0
package/dist/types/src/types/entity_link_builder.d.ts +7 -0
package/dist/types/src/types/entity_overrides.d.ts +9 -0
package/dist/types/src/types/entity_views.d.ts +61 -0
package/dist/types/src/types/export_import.d.ts +21 -0
package/dist/types/src/types/index.d.ts +22 -0
package/dist/types/src/types/locales.d.ts +4 -0
package/dist/types/src/types/modify_collections.d.ts +5 -0
package/dist/types/src/types/plugins.d.ts +225 -0
package/dist/types/src/types/properties.d.ts +1091 -0
package/dist/types/src/types/property_config.d.ts +70 -0
package/dist/types/src/types/relations.d.ts +336 -0
package/dist/types/src/types/slots.d.ts +228 -0
package/dist/types/src/types/translations.d.ts +826 -0
package/dist/types/src/types/user_management_delegate.d.ts +120 -0
package/dist/types/src/types/websockets.d.ts +78 -0
package/dist/types/src/users/index.d.ts +2 -0
package/dist/types/src/users/roles.d.ts +22 -0
package/dist/types/src/users/user.d.ts +46 -0
package/history_diff.log +385 -0
package/jest.config.cjs +16 -0
package/package.json +86 -0
package/scratch.ts +8 -0
package/src/api/ast-schema-editor.ts +289 -0
package/src/api/collections_for_test/callbacks_test_collection.ts +57 -0
package/src/api/errors.ts +155 -0
package/src/api/graphql/graphql-schema-generator.ts +334 -0
package/src/api/graphql/index.ts +2 -0
package/src/api/index.ts +11 -0
package/src/api/openapi-generator.ts +160 -0
package/src/api/rest/api-generator.ts +466 -0
package/src/api/rest/index.ts +2 -0
package/src/api/rest/query-parser.ts +155 -0
package/src/api/schema-editor-routes.ts +39 -0
package/src/api/server.ts +245 -0
package/src/api/types.ts +90 -0
package/src/auth/admin-routes.ts +488 -0
package/src/auth/google-oauth.ts +60 -0
package/src/auth/index.ts +21 -0
package/src/auth/interfaces.ts +316 -0
package/src/auth/jwt.ts +164 -0
package/src/auth/middleware.ts +235 -0
package/src/auth/password.ts +75 -0
package/src/auth/rate-limiter.ts +129 -0
package/src/auth/routes.ts +730 -0
package/src/bootstrappers/index.ts +1 -0
package/src/collections/BackendCollectionRegistry.ts +20 -0
package/src/collections/loader.ts +49 -0
package/src/db/interfaces.ts +60 -0
package/src/email/index.ts +17 -0
package/src/email/smtp-email-service.ts +88 -0
package/src/email/templates.ts +301 -0
package/src/email/types.ts +112 -0
package/src/functions/function-loader.ts +91 -0
package/src/functions/function-routes.ts +31 -0
package/src/functions/index.ts +3 -0
package/src/history/history-routes.ts +128 -0
package/src/history/index.ts +2 -0
package/src/index.ts +56 -0
package/src/init.ts +309 -0
package/src/serve-spa.ts +81 -0
package/src/services/driver-registry.ts +182 -0
package/src/storage/LocalStorageController.ts +368 -0
package/src/storage/S3StorageController.ts +295 -0
package/src/storage/index.ts +32 -0
package/src/storage/routes.ts +247 -0
package/src/storage/storage-registry.ts +187 -0
package/src/storage/types.ts +122 -0
package/src/types/index.ts +27 -0
package/src/utils/logging.ts +35 -0
package/src/utils/sql.ts +38 -0
package/test/admin-routes.test.ts +591 -0
package/test/api-generator.test.ts +458 -0
package/test/ast-schema-editor.test.ts +61 -0
package/test/auth-middleware-hono.test.ts +321 -0
package/test/auth-routes.test.ts +868 -0
package/test/driver-registry.test.ts +280 -0
package/test/errors-hono.test.ts +133 -0
package/test/errors.test.ts +150 -0
package/test/jwt-security.test.ts +173 -0
package/test/jwt.test.ts +311 -0
package/test/middleware.test.ts +295 -0
package/test/password.test.ts +165 -0
package/test/query-parser.test.ts +258 -0
package/test/rate-limiter.test.ts +102 -0
package/test/storage-local.test.ts +278 -0
package/test/storage-registry.test.ts +280 -0
package/test/storage-routes.test.ts +218 -0
package/test/storage-s3.test.ts +301 -0
package/test-ast.ts +28 -0
package/test_output.txt +1133 -0
package/tsconfig.json +49 -0
package/tsconfig.prod.json +20 -0
package/vite.config.ts +78 -0
package/vite.config.ts.timestamp-1775065397568-8a853255edf6e.mjs +46 -0

package/src/storage/S3StorageController.ts ADDED Viewed

@@ -0,0 +1,295 @@
+/**
+ * S3-compatible storage controller (works with AWS S3 and MinIO)
+ */
+import {
+    S3Client,
+    PutObjectCommand,
+    GetObjectCommand,
+    DeleteObjectCommand,
+    ListObjectsV2Command,
+    HeadObjectCommand,
+    _Object,
+    CommonPrefix
+} from '@aws-sdk/client-s3';
+import { getSignedUrl } from '@aws-sdk/s3-request-presigner';
+import {
+    StorageController,
+    S3StorageConfig,
+    DEFAULT_MAX_FILE_SIZE
+} from './types';
+import {
+    UploadFileProps,
+    UploadFileResult,
+    DownloadConfig,
+    DownloadMetadata,
+    StorageListResult,
+    StorageReference
+} from '@rebasepro/types';
+/**
+ * S3-compatible storage implementation
+ * Works with AWS S3 and MinIO (with forcePathStyle option)
+ */
+export class S3StorageController implements StorageController {
+    private config: S3StorageConfig;
+    private client: S3Client;
+    constructor(config: S3StorageConfig) {
+        this.config = config;
+        this.client = new S3Client({
+            region: config.region || 'us-east-1',
+            endpoint: config.endpoint,
+            forcePathStyle: config.forcePathStyle ?? !!config.endpoint, // Auto-enable for custom endpoints (MinIO)
+            credentials: {
+                accessKeyId: config.accessKeyId,
+                secretAccessKey: config.secretAccessKey
+            }
+        });
+    }
+    getType(): 's3' {
+        return 's3';
+    }
+    /**
+     * Validate file before upload
+     */
+    private validateFile(file: File): void {
+        const maxSize = this.config.maxFileSize ?? DEFAULT_MAX_FILE_SIZE;
+        if (file.size > maxSize) {
+            throw new Error(`File size ${file.size} exceeds maximum allowed size ${maxSize}`);
+        }
+        if (this.config.allowedMimeTypes && this.config.allowedMimeTypes.length > 0) {
+            if (!this.config.allowedMimeTypes.includes(file.type)) {
+                throw new Error(`File type ${file.type} is not allowed. Allowed types: ${this.config.allowedMimeTypes.join(', ')}`);
+            }
+        }
+    }
+    /**
+     * Get the bucket name - either from parameter or config
+     */
+    private getBucket(bucket?: string): string {
+        return bucket ?? this.config.bucket;
+    }
+    async uploadFile({
+        file,
+        fileName,
+        path: storagePath,
+        metadata,
+        bucket
+    }: UploadFileProps): Promise<UploadFileResult> {
+        this.validateFile(file);
+        const usedFileName = fileName ?? file.name;
+        const key = storagePath ? `${storagePath}/${usedFileName}` : usedFileName;
+        const usedBucket = this.getBucket(bucket);
+        // Convert File to Buffer
+        const arrayBuffer = await file.arrayBuffer();
+        const buffer = Buffer.from(arrayBuffer);
+        const command = new PutObjectCommand({
+            Bucket: usedBucket,
+            Key: key,
+            Body: buffer,
+            ContentType: file.type,
+            Metadata: metadata ? this.flattenMetadata(metadata) : undefined
+        });
+        await this.client.send(command);
+        return {
+            path: key,
+            bucket: usedBucket,
+            storageUrl: `s3://${usedBucket}/${key}`
+        };
+    }
+    /**
+     * Flatten nested metadata to string values (S3 requirement)
+     */
+    private flattenMetadata(metadata: Record<string, unknown>): Record<string, string> {
+        const flattened: Record<string, string> = {};
+        for (const [key, value] of Object.entries(metadata)) {
+            if (typeof value === 'string') {
+                flattened[key] = value;
+            } else if (value !== undefined && value !== null) {
+                flattened[key] = JSON.stringify(value);
+            }
+        }
+        return flattened;
+    }
+    async getDownloadURL(storagePath: string, bucket?: string): Promise<DownloadConfig> {
+        // Handle s3:// URLs
+        let resolvedPath = storagePath;
+        let resolvedBucket = this.getBucket(bucket);
+        if (storagePath.startsWith('s3://')) {
+            const withoutProtocol = storagePath.substring('s3://'.length);
+            const firstSlash = withoutProtocol.indexOf('/');
+            if (firstSlash > 0) {
+                resolvedBucket = withoutProtocol.substring(0, firstSlash);
+                resolvedPath = withoutProtocol.substring(firstSlash + 1);
+            }
+        }
+        try {
+            // First check if the object exists and get metadata
+            const headCommand = new HeadObjectCommand({
+                Bucket: resolvedBucket,
+                Key: resolvedPath
+            });
+            const headResult = await this.client.send(headCommand);
+            // Generate a signed URL
+            const getCommand = new GetObjectCommand({
+                Bucket: resolvedBucket,
+                Key: resolvedPath
+            });
+            const expiresIn = this.config.signedUrlExpiration ?? 3600;
+            const url = await getSignedUrl(this.client, getCommand, { expiresIn });
+            const metadata: DownloadMetadata = {
+                bucket: resolvedBucket,
+                fullPath: resolvedPath,
+                name: resolvedPath.split('/').pop() || resolvedPath,
+                size: headResult.ContentLength || 0,
+                contentType: headResult.ContentType || 'application/octet-stream',
+                customMetadata: headResult.Metadata || {}
+            };
+            return {
+                url,
+                metadata
+            };
+        } catch (error: unknown) {
+            const s3Error = error as { name?: string; $metadata?: { httpStatusCode?: number } };
+            if (s3Error.name === 'NotFound' || s3Error.$metadata?.httpStatusCode === 404) {
+                return {
+                    url: null,
+                    fileNotFound: true
+                };
+            }
+            throw error;
+        }
+    }
+    async getFile(storagePath: string, bucket?: string): Promise<File | null> {
+        // Handle s3:// URLs
+        let resolvedPath = storagePath;
+        let resolvedBucket = this.getBucket(bucket);
+        if (storagePath.startsWith('s3://')) {
+            const withoutProtocol = storagePath.substring('s3://'.length);
+            const firstSlash = withoutProtocol.indexOf('/');
+            if (firstSlash > 0) {
+                resolvedBucket = withoutProtocol.substring(0, firstSlash);
+                resolvedPath = withoutProtocol.substring(firstSlash + 1);
+            }
+        }
+        try {
+            const command = new GetObjectCommand({
+                Bucket: resolvedBucket,
+                Key: resolvedPath
+            });
+            const response = await this.client.send(command);
+            if (!response.Body) {
+                return null;
+            }
+            // Convert stream to buffer
+            const chunks: Uint8Array[] = [];
+            // @ts-ignore - Body is a ReadableStream in Node.js
+            for await (const chunk of response.Body) {
+                chunks.push(chunk);
+            }
+            const buffer = Buffer.concat(chunks);
+            const contentType = response.ContentType || 'application/octet-stream';
+            const fileName = resolvedPath.split('/').pop() || resolvedPath;
+            const blob = new Blob([buffer], { type: contentType });
+            return new File([blob], fileName, { type: contentType });
+        } catch (error: unknown) {
+            const s3Error = error as { name?: string; $metadata?: { httpStatusCode?: number } };
+            if (s3Error.name === 'NoSuchKey' || s3Error.$metadata?.httpStatusCode === 404) {
+                return null;
+            }
+            throw error;
+        }
+    }
+    async deleteFile(storagePath: string, bucket?: string): Promise<void> {
+        // Handle s3:// URLs
+        let resolvedPath = storagePath;
+        let resolvedBucket = this.getBucket(bucket);
+        if (storagePath.startsWith('s3://')) {
+            const withoutProtocol = storagePath.substring('s3://'.length);
+            const firstSlash = withoutProtocol.indexOf('/');
+            if (firstSlash > 0) {
+                resolvedBucket = withoutProtocol.substring(0, firstSlash);
+                resolvedPath = withoutProtocol.substring(firstSlash + 1);
+            }
+        }
+        const command = new DeleteObjectCommand({
+            Bucket: resolvedBucket,
+            Key: resolvedPath
+        });
+        await this.client.send(command);
+    }
+    async list(storagePath: string, options?: {
+        bucket?: string;
+        maxResults?: number;
+        pageToken?: string;
+    }): Promise<StorageListResult> {
+        const resolvedBucket = this.getBucket(options?.bucket);
+        const command = new ListObjectsV2Command({
+            Bucket: resolvedBucket,
+            Prefix: storagePath || undefined,
+            MaxKeys: options?.maxResults ?? 1000,
+            ContinuationToken: options?.pageToken,
+            Delimiter: '/' // This gives us folder-like behavior
+        });
+        const response = await this.client.send(command);
+        const items: StorageReference[] = (response.Contents || []).map(obj => ({
+            bucket: resolvedBucket,
+            fullPath: obj.Key || '',
+            name: (obj.Key || '').split('/').pop() || '',
+            parent: null as never,
+            root: null as never,
+            toString: () => `s3://${resolvedBucket}/${obj.Key}`
+        }));
+        const prefixes: StorageReference[] = (response.CommonPrefixes || []).map(prefix => ({
+            bucket: resolvedBucket,
+            fullPath: prefix.Prefix || '',
+            name: (prefix.Prefix || '').replace(/\/$/, '').split('/').pop() || '',
+            parent: null as never,
+            root: null as never,
+            toString: () => `s3://${resolvedBucket}/${prefix.Prefix}`
+        }));
+        return {
+            items,
+            prefixes,
+            nextPageToken: response.NextContinuationToken
+        };
+    }
+}

package/src/storage/index.ts ADDED Viewed

@@ -0,0 +1,32 @@
+/**
+ * Storage module for Rebase backend
+ *
+ * Provides file storage functionality with support for:
+ * - Local filesystem storage (default, zero config)
+ * - S3-compatible storage (AWS S3, MinIO)
+ */
+export * from './types';
+export { LocalStorageController } from './LocalStorageController';
+export { S3StorageController } from './S3StorageController';
+export { createStorageRoutes } from './routes';
+export type { StorageRoutesConfig } from './routes';
+export * from './storage-registry';
+import { BackendStorageConfig, StorageController } from './types';
+import { LocalStorageController } from './LocalStorageController';
+import { S3StorageController } from './S3StorageController';
+/**
+ * Factory function to create a storage controller based on configuration
+ */
+export function createStorageController(config: BackendStorageConfig): StorageController {
+    switch (config.type) {
+        case 'local':
+            return new LocalStorageController(config);
+        case 's3':
+            return new S3StorageController(config);
+        default:
+            throw new Error(`Unknown storage type: ${(config as Record<string, unknown>).type}`);
+    }
+}

package/src/storage/routes.ts ADDED Viewed

@@ -0,0 +1,247 @@
+/**
+ * Storage REST API routes using Hono
+ */
+import { Hono } from 'hono';
+import * as fs from 'fs';
+import { StorageController } from './types';
+import { LocalStorageController } from './LocalStorageController';
+import { requireAuth as jwtRequireAuth, optionalAuth } from '../auth/middleware';
+import { ApiError } from '../api/errors';
+import { HonoEnv } from '../api/types';
+export interface StorageRoutesConfig {
+    controller: StorageController;
+    /** Base path for storage routes (default: '/api/storage') */
+    basePath?: string;
+    /** Require authentication for write operations (default: true) */
+    requireAuth?: boolean;
+    /** Allow unauthenticated read access to stored files (default: false).
+     *  When false and requireAuth is true, reads also require authentication. */
+    publicRead?: boolean;
+}
+/**
+ * Extract the wildcard portion of a route path from the full request path.
+ *
+ * Hono's `c.req.param('*')` does not work reliably in sub-routers mounted
+ * via `app.route(prefix, subRouter)`. Instead we derive the wildcard value
+ * from the fully-resolved `c.req.path` and `c.req.routePath`.
+ *
+ * For a route `/metadata/*` mounted at `/api/storage`, a request to
+ * `/api/storage/metadata/default/file.jpg` yields routePath
+ * `/api/storage/metadata/*`.  We strip the prefix (everything before `/*`)
+ * plus one character for the trailing `/` to obtain `default/file.jpg`.
+ */
+export function extractWildcardPath(c: { req: { path: string; routePath: string } }): string {
+    const routePath = c.req.routePath;           // e.g. "/api/storage/metadata/*"
+    const prefix = routePath.replace('/*', '');   // e.g. "/api/storage/metadata"
+    const fullPath = c.req.path;                  // e.g. "/api/storage/metadata/default/file.jpg"
+    const idx = fullPath.indexOf(prefix);
+    if (idx < 0) return '';
+    // +1 to skip the '/' after the prefix
+    return fullPath.substring(idx + prefix.length + 1);
+}
+/**
+ * Create storage REST API routes
+ */
+export function createStorageRoutes(config: StorageRoutesConfig): Hono<HonoEnv> {
+    const router = new Hono<HonoEnv>();
+    const { controller, requireAuth = true, publicRead = false } = config;
+    // Use actual JWT auth middleware from auth module
+    const writeAuthMiddleware = requireAuth ? jwtRequireAuth : optionalAuth;
+    // For read operations: respect publicRead config.
+    const readAuthMiddleware = (publicRead || !requireAuth) ? optionalAuth : jwtRequireAuth;
+    /**
+     * Parse bucket and path from a combined file path.
+     */
+    const parseBucketAndPath = (filePath: string): { bucket: string; resolvedPath: string } => {
+        const parts = filePath.split('/');
+        // Only recognize 'default' as an explicit bucket prefix
+        if (parts.length > 1 && parts[0].toLowerCase() === 'default') {
+            return {
+                bucket: 'default',
+                resolvedPath: parts.slice(1).join('/')
+            };
+        }
+        // All other paths use 'default' bucket with the full path
+        return {
+            bucket: 'default',
+            resolvedPath: filePath
+        };
+    };
+    /**
+     * POST /upload - Upload a file
+     * Body: multipart/form-data with 'file' field
+     * Request body can also contain metadata keys 'metadata_*'
+     */
+    router.post('/upload', writeAuthMiddleware, async (c) => {
+        const body = await c.req.parseBody();
+        const uploadedFile = body['file'];
+        if (!uploadedFile || typeof uploadedFile === 'string') {
+            throw ApiError.badRequest('No file provided');
+        }
+        const storagePath = typeof body['path'] === 'string' ? body['path'] : '';
+        const bucket = typeof body['bucket'] === 'string' ? body['bucket'] : undefined;
+        let fileName = typeof body['fileName'] === 'string' ? body['fileName'] : undefined;
+        if (!fileName) {
+            fileName = uploadedFile.name;
+        }
+        // Extract custom metadata from request body
+        const metadata: Record<string, unknown> = {};
+        for (const [key, value] of Object.entries(body)) {
+            if (key.startsWith('metadata_')) {
+                metadata[key.replace('metadata_', '')] = value;
+            }
+        }
+        const result = await controller.uploadFile({
+            file: uploadedFile,
+            fileName: fileName || 'unnamed',
+            path: storagePath,
+            metadata: Object.keys(metadata).length > 0 ? metadata : undefined,
+            bucket
+        });
+        return c.json({
+            success: true,
+            data: result
+        }, 201);
+    });
+    /**
+     * GET /file/* - Download/serve a file
+     * Path: /file/{bucket}/{path} or /file/{path}
+     */
+    router.get('/file/*', readAuthMiddleware, async (c) => {
+        const rawPath = extractWildcardPath(c);
+        if (!rawPath) {
+            throw ApiError.notFound('File not found');
+        }
+        const filePath = decodeURIComponent(rawPath);
+        // For local storage, serve the file directly
+        if (controller.getType() === 'local') {
+            const localController = controller as LocalStorageController;
+            const { bucket, resolvedPath } = parseBucketAndPath(filePath);
+            const absolutePath = localController.getAbsolutePath(resolvedPath, bucket);
+            // Check if file exists
+            if (!fs.existsSync(absolutePath)) {
+                throw ApiError.notFound('File not found');
+            }
+            // Get content type from metadata or infer from extension
+            let contentType = 'application/octet-stream';
+            const metadataPath = `${absolutePath}.metadata.json`;
+            if (fs.existsSync(metadataPath)) {
+                try {
+                    const metadata = JSON.parse(fs.readFileSync(metadataPath, 'utf-8'));
+                    contentType = metadata.contentType || contentType;
+                } catch {
+                    // Ignore metadata errors
+                }
+            }
+            c.header('Content-Type', contentType);
+            // In a better scenario, we should pipe the stream instead of reading whole file
+            const fileContent = fs.readFileSync(absolutePath);
+            return c.body(new Uint8Array(fileContent));
+        }
+        // For S3 storage, redirect to signed URL
+        const downloadConfig = await controller.getDownloadURL(filePath);
+        if (downloadConfig.fileNotFound || !downloadConfig.url) {
+            throw ApiError.notFound('File not found');
+        }
+        return c.redirect(downloadConfig.url);
+    });
+    /**
+     * GET /metadata/* - Get file metadata
+     */
+    router.get('/metadata/*', readAuthMiddleware, async (c) => {
+        const rawPath = extractWildcardPath(c);
+        if (!rawPath) {
+            return c.json({
+                success: true,
+                data: null,
+                fileNotFound: true
+            }, 404);
+        }
+        const filePath = decodeURIComponent(rawPath);
+        const { bucket, resolvedPath } = parseBucketAndPath(filePath);
+        const downloadConfig = await controller.getDownloadURL(resolvedPath, bucket);
+        if (downloadConfig.fileNotFound) {
+            throw ApiError.notFound('File not found');
+        }
+        return c.json({
+            success: true,
+            data: downloadConfig.metadata
+        });
+    });
+    /**
+     * DELETE /file/* - Delete a file
+     */
+    router.delete('/file/*', writeAuthMiddleware, async (c) => {
+        const rawPath = extractWildcardPath(c);
+        if (!rawPath) {
+            return c.json({ success: true, message: 'No file to delete' });
+        }
+        const filePath = decodeURIComponent(rawPath);
+        const { bucket, resolvedPath } = parseBucketAndPath(filePath);
+        await controller.deleteFile(resolvedPath, bucket);
+        return c.json({
+            success: true,
+            message: 'File deleted'
+        });
+    });
+    /**
+     * GET /list - List files in a path
+     */
+    router.get('/list', writeAuthMiddleware, async (c) => {
+        const storagePath = c.req.query('path') || '';
+        const bucket = c.req.query('bucket');
+        const maxResults = c.req.query('maxResults');
+        const pageToken = c.req.query('pageToken');
+        const result = await controller.list(
+            storagePath,
+            {
+                bucket,
+                maxResults: maxResults ? parseInt(maxResults, 10) : undefined,
+                pageToken
+            }
+        );
+        return c.json({
+            success: true,
+            data: result
+        });
+    });
+    return router;
+}