@robelest/convex-auth 0.0.4-preview.13 → 0.0.4-preview.16

package/dist/component/public/identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.js","names":[],"sources":["../../../src/component/public/identity.ts"],"sourcesContent":["import {\n  mutation,\n  query,\n  v,\n  vAccountDoc,\n  vAuthVerifierDoc,\n  vPaginated,\n  vRefreshTokenDoc,\n  vSessionDoc,\n  vUserDoc,\n  vVerificationCodeDoc,\n} from \"./shared\";\n\n// ============================================================================\n// Users\n// ============================================================================\n\n/**\n * List users with optional filtering, sorting, and pagination.\n *\n * Returns `{ items, nextCursor }` — pass `nextCursor` back as `cursor`\n * for the next page, or `null` when exhausted.\n */\nexport const userList = query({\n  args: {\n    where: v.optional(\n      v.object({\n        email: v.optional(v.string()),\n        phone: v.optional(v.string()),\n        isAnonymous: v.optional(v.boolean()),\n        name: v.optional(v.string()),\n      }),\n    ),\n    limit: v.optional(v.number()),\n    cursor: v.optional(v.union(v.string(), v.null())),\n    orderBy: v.optional(\n      v.union(\n        v.literal(\"_creationTime\"),\n        v.literal(\"name\"),\n        v.literal(\"email\"),\n        v.literal(\"phone\"),\n      ),\n    ),\n    order: v.optional(v.union(v.literal(\"asc\"), v.literal(\"desc\"))),\n  },\n  returns: vPaginated(vUserDoc),\n  handler: async (ctx, args) => {\n    const where = args.where ?? {};\n    const limit = Math.min(Math.max(args.limit ?? 50, 1), 100);\n    const order = args.order ?? \"desc\";\n\n    // Pick index based on where fields\n    let q;\n    if (where.email !== undefined) {\n      q = ctx.db\n        .query(\"User\")\n        .withIndex(\"email\", (idx) => idx.eq(\"email\", where.email!));\n    } else if (where.phone !== undefined) {\n      q = ctx.db\n        .query(\"User\")\n        .withIndex(\"phone\", (idx) => idx.eq(\"phone\", where.phone!));\n    } else {\n      q = ctx.db.query(\"User\");\n    }\n\n    // Apply remaining filters\n    if (where.isAnonymous !== undefined) {\n      q = q.filter((f) => f.eq(f.field(\"isAnonymous\"), where.isAnonymous!));\n    }\n    if (where.name !== undefined) {\n      q = q.filter((f) => f.eq(f.field(\"name\"), where.name!));\n    }\n    // email/phone filters when not used as index\n    if (where.email !== undefined && where.phone !== undefined) {\n      q = q.filter((f) => f.eq(f.field(\"phone\"), where.phone!));\n    }\n\n    q = q.order(order);\n\n    // Cursor-based pagination: skip past the cursor ID\n    const all = await q.collect();\n    let startIdx = 0;\n    if (args.cursor) {\n      const cursorIdx = all.findIndex((doc) => doc._id === args.cursor);\n      if (cursorIdx !== -1) {\n        startIdx = cursorIdx + 1;\n      }\n    }\n    const page = all.slice(startIdx, startIdx + limit + 1);\n    const hasMore = page.length > limit;\n    const items = hasMore ? page.slice(0, limit) : page;\n    const nextCursor = hasMore ? items[items.length - 1]._id : null;\n    return { items, nextCursor };\n  },\n});\n\n/** Retrieve a user by their document ID. */\nexport const userGetById = query({\n  args: { userId: v.id(\"User\") },\n  returns: v.union(vUserDoc, v.null()),\n  handler: async (ctx, { userId }) => {\n    return await ctx.db.get(\"User\", userId);\n  },\n});\n\n/**\n * Find a user by their verified email address. Returns `null` if no user\n * has this email verified, or if multiple users share the same verified email\n * (ambiguous — should not happen in normal operation).\n */\nexport const userFindByVerifiedEmail = query({\n  args: { email: v.string() },\n  returns: v.union(vUserDoc, v.null()),\n  handler: async (ctx, { email }) => {\n    const users = await ctx.db\n      .query(\"User\")\n      .withIndex(\"email\", (q) => q.eq(\"email\", email))\n      .filter((q) => q.neq(q.field(\"emailVerificationTime\"), undefined))\n      .take(2);\n    return users.length === 1 ? users[0] : null;\n  },\n});\n\n/**\n * Find a user by their verified phone number. Returns `null` if no user\n * has this phone verified, or if multiple users share the same verified phone\n * (ambiguous — should not happen in normal operation).\n */\nexport const userFindByVerifiedPhone = query({\n  args: { phone: v.string() },\n  returns: v.union(vUserDoc, v.null()),\n  handler: async (ctx, { phone }) => {\n    const users = await ctx.db\n      .query(\"User\")\n      .withIndex(\"phone\", (q) => q.eq(\"phone\", phone))\n      .filter((q) => q.neq(q.field(\"phoneVerificationTime\"), undefined))\n      .take(2);\n    return users.length === 1 ? users[0] : null;\n  },\n});\n\n/** Insert a new user document. */\nexport const userInsert = mutation({\n  args: { data: v.any() },\n  returns: v.id(\"User\"),\n  handler: async (ctx, { data }) => {\n    return await ctx.db.insert(\"User\", data);\n  },\n});\n\n/** Insert a new user or update an existing one. */\nexport const userUpsert = mutation({\n  args: { userId: v.optional(v.id(\"User\")), data: v.any() },\n  returns: v.id(\"User\"),\n  handler: async (ctx, { userId, data }) => {\n    if (userId !== undefined) {\n      await ctx.db.patch(\"User\", userId, data);\n      return userId;\n    }\n    return await ctx.db.insert(\"User\", data);\n  },\n});\n\n/** Patch an existing user document with partial data. */\nexport const userPatch = mutation({\n  args: { userId: v.id(\"User\"), data: v.any() },\n  returns: v.null(),\n  handler: async (ctx, { userId, data }) => {\n    await ctx.db.patch(\"User\", userId, data);\n    return null;\n  },\n});\n\n/** Delete a user document by ID. No-op if the user does not exist. */\nexport const userDelete = mutation({\n  args: { userId: v.id(\"User\") },\n  returns: v.null(),\n  handler: async (ctx, { userId }) => {\n    if ((await ctx.db.get(\"User\", userId)) !== null) {\n      await ctx.db.delete(\"User\", userId);\n    }\n    return null;\n  },\n});\n\n// ============================================================================\n// Accounts\n// ============================================================================\n\n/** List all accounts for a user. */\nexport const accountListByUser = query({\n  args: { userId: v.id(\"User\") },\n  returns: v.array(vAccountDoc),\n  handler: async (ctx, { userId }) => {\n    return await ctx.db\n      .query(\"Account\")\n      .withIndex(\"user_id_provider\", (q) => q.eq(\"userId\", userId as any))\n      .collect();\n  },\n});\n\n/** Look up an account by provider and provider-specific account ID. */\nexport const accountGet = query({\n  args: { provider: v.string(), providerAccountId: v.string() },\n  returns: v.union(vAccountDoc, v.null()),\n  handler: async (ctx, { provider, providerAccountId }) => {\n    return await ctx.db\n      .query(\"Account\")\n      .withIndex(\"provider_account_id\", (q) =>\n        q.eq(\"provider\", provider).eq(\"providerAccountId\", providerAccountId),\n      )\n      .unique();\n  },\n});\n\n/** Retrieve an account by its document ID. */\nexport const accountGetById = query({\n  args: { accountId: v.id(\"Account\") },\n  returns: v.union(vAccountDoc, v.null()),\n  handler: async (ctx, { accountId }) => {\n    return await ctx.db.get(\"Account\", accountId);\n  },\n});\n\n/** Create a new account linking a user to an auth provider. */\nexport const accountInsert = mutation({\n  args: {\n    userId: v.id(\"User\"),\n    provider: v.string(),\n    providerAccountId: v.string(),\n    secret: v.optional(v.string()),\n    extend: v.optional(v.any()),\n  },\n  returns: v.id(\"Account\"),\n  handler: async (ctx, args) => {\n    return await ctx.db.insert(\"Account\", args as any);\n  },\n});\n\n/** Patch an existing account document with partial data. */\nexport const accountPatch = mutation({\n  args: { accountId: v.id(\"Account\"), data: v.any() },\n  returns: v.null(),\n  handler: async (ctx, { accountId, data }) => {\n    await ctx.db.patch(\"Account\", accountId, data);\n    return null;\n  },\n});\n\n/** Delete an account document. */\nexport const accountDelete = mutation({\n  args: { accountId: v.id(\"Account\") },\n  returns: v.null(),\n  handler: async (ctx, { accountId }) => {\n    await ctx.db.delete(\"Account\", accountId);\n    return null;\n  },\n});\n\n// ============================================================================\n// Sessions\n// ============================================================================\n\n/**\n * List sessions with optional filtering and pagination.\n *\n * Returns `{ items, nextCursor }`.\n */\nexport const sessionList = query({\n  args: {\n    where: v.optional(\n      v.object({\n        userId: v.optional(v.id(\"User\")),\n      }),\n    ),\n    limit: v.optional(v.number()),\n    cursor: v.optional(v.union(v.string(), v.null())),\n    order: v.optional(v.union(v.literal(\"asc\"), v.literal(\"desc\"))),\n  },\n  returns: vPaginated(vSessionDoc),\n  handler: async (ctx, args) => {\n    const where = args.where ?? {};\n    const limit = Math.min(Math.max(args.limit ?? 50, 1), 100);\n    const order = args.order ?? \"desc\";\n\n    let q;\n    if (where.userId !== undefined) {\n      q = ctx.db\n        .query(\"Session\")\n        .withIndex(\"user_id\", (idx) => idx.eq(\"userId\", where.userId!));\n    } else {\n      q = ctx.db.query(\"Session\");\n    }\n\n    q = q.order(order);\n\n    const all = await q.collect();\n    let startIdx = 0;\n    if (args.cursor) {\n      const cursorIdx = all.findIndex((doc) => doc._id === args.cursor);\n      if (cursorIdx !== -1) {\n        startIdx = cursorIdx + 1;\n      }\n    }\n    const page = all.slice(startIdx, startIdx + limit + 1);\n    const hasMore = page.length > limit;\n    const items = hasMore ? page.slice(0, limit) : page;\n    const nextCursor = hasMore ? items[items.length - 1]._id : null;\n    return { items, nextCursor };\n  },\n});\n\n/** Create a new session for a user with an expiration time. */\nexport const sessionCreate = mutation({\n  args: { userId: v.id(\"User\"), expirationTime: v.number() },\n  returns: v.id(\"Session\"),\n  handler: async (ctx, { userId, expirationTime }) => {\n    return await ctx.db.insert(\"Session\", {\n      userId: userId as any,\n      expirationTime,\n    });\n  },\n});\n\n/** Retrieve a session by its document ID. */\nexport const sessionGetById = query({\n  args: { sessionId: v.id(\"Session\") },\n  returns: v.union(vSessionDoc, v.null()),\n  handler: async (ctx, { sessionId }) => {\n    return await ctx.db.get(\"Session\", sessionId);\n  },\n});\n\n/** Delete a session. No-op if the session does not exist. */\nexport const sessionDelete = mutation({\n  args: { sessionId: v.id(\"Session\") },\n  returns: v.null(),\n  handler: async (ctx, { sessionId }) => {\n    if ((await ctx.db.get(\"Session\", sessionId)) !== null) {\n      await ctx.db.delete(\"Session\", sessionId);\n    }\n    return null;\n  },\n});\n\n/** List all sessions for a user. */\nexport const sessionListByUser = query({\n  args: { userId: v.id(\"User\") },\n  returns: v.array(vSessionDoc),\n  handler: async (ctx, { userId }) => {\n    return await ctx.db\n      .query(\"Session\")\n      .withIndex(\"user_id\", (q) => q.eq(\"userId\", userId as any))\n      .collect();\n  },\n});\n\n// ============================================================================\n// Verifiers\n// ============================================================================\n\n/** Create a new PKCE verifier, optionally linked to a session. */\nexport const verifierCreate = mutation({\n  args: { sessionId: v.optional(v.id(\"Session\")) },\n  returns: v.id(\"AuthVerifier\"),\n  handler: async (ctx, { sessionId }) => {\n    return await ctx.db.insert(\"AuthVerifier\", { sessionId: sessionId as any });\n  },\n});\n\n/** Retrieve a verifier by its document ID. */\nexport const verifierGetById = query({\n  args: { verifierId: v.id(\"AuthVerifier\") },\n  returns: v.union(vAuthVerifierDoc, v.null()),\n  handler: async (ctx, { verifierId }) => {\n    return await ctx.db.get(\"AuthVerifier\", verifierId);\n  },\n});\n\n/** Look up a verifier by its cryptographic signature. */\nexport const verifierGetBySignature = query({\n  args: { signature: v.string() },\n  returns: v.union(vAuthVerifierDoc, v.null()),\n  handler: async (ctx, { signature }) => {\n    return await ctx.db\n      .query(\"AuthVerifier\")\n      .withIndex(\"signature\", (q) => q.eq(\"signature\", signature))\n      .unique();\n  },\n});\n\n/** Patch a verifier document with partial data. */\nexport const verifierPatch = mutation({\n  args: { verifierId: v.id(\"AuthVerifier\"), data: v.any() },\n  returns: v.null(),\n  handler: async (ctx, { verifierId, data }) => {\n    await ctx.db.patch(\"AuthVerifier\", verifierId, data);\n    return null;\n  },\n});\n\n/** Delete a verifier document. */\nexport const verifierDelete = mutation({\n  args: { verifierId: v.id(\"AuthVerifier\") },\n  returns: v.null(),\n  handler: async (ctx, { verifierId }) => {\n    await ctx.db.delete(\"AuthVerifier\", verifierId);\n    return null;\n  },\n});\n\n// ============================================================================\n// Verification Codes\n// ============================================================================\n\n/** Find a verification code by its associated account ID. */\nexport const verificationCodeGetByAccountId = query({\n  args: { accountId: v.id(\"Account\") },\n  returns: v.union(vVerificationCodeDoc, v.null()),\n  handler: async (ctx, { accountId }) => {\n    return await ctx.db\n      .query(\"VerificationCode\")\n      .withIndex(\"account_id\", (q) => q.eq(\"accountId\", accountId as any))\n      .unique();\n  },\n});\n\n/** Find a verification code by its code string. */\nexport const verificationCodeGetByCode = query({\n  args: { code: v.string() },\n  returns: v.union(vVerificationCodeDoc, v.null()),\n  handler: async (ctx, { code }) => {\n    return await ctx.db\n      .query(\"VerificationCode\")\n      .withIndex(\"code\", (q) => q.eq(\"code\", code))\n      .unique();\n  },\n});\n\n/** Create a new verification code for OTP, magic link, or OAuth flows. */\nexport const verificationCodeCreate = mutation({\n  args: {\n    accountId: v.id(\"Account\"),\n    provider: v.string(),\n    code: v.string(),\n    expirationTime: v.number(),\n    verifier: v.optional(v.string()),\n    emailVerified: v.optional(v.string()),\n    phoneVerified: v.optional(v.string()),\n  },\n  returns: v.id(\"VerificationCode\"),\n  handler: async (ctx, args) => {\n    return await ctx.db.insert(\"VerificationCode\", args as any);\n  },\n});\n\n/** Delete a verification code document. */\nexport const verificationCodeDelete = mutation({\n  args: { verificationCodeId: v.id(\"VerificationCode\") },\n  returns: v.null(),\n  handler: async (ctx, { verificationCodeId }) => {\n    await ctx.db.delete(\"VerificationCode\", verificationCodeId);\n    return null;\n  },\n});\n\n// ============================================================================\n// Refresh Tokens\n// ============================================================================\n\n/** Create a new refresh token for a session. */\nexport const refreshTokenCreate = mutation({\n  args: {\n    sessionId: v.id(\"Session\"),\n    expirationTime: v.number(),\n    parentRefreshTokenId: v.optional(v.id(\"RefreshToken\")),\n  },\n  returns: v.id(\"RefreshToken\"),\n  handler: async (ctx, args) => {\n    return await ctx.db.insert(\"RefreshToken\", args as any);\n  },\n});\n\n/** Retrieve a refresh token by its document ID. */\nexport const refreshTokenGetById = query({\n  args: { refreshTokenId: v.id(\"RefreshToken\") },\n  returns: v.union(vRefreshTokenDoc, v.null()),\n  handler: async (ctx, { refreshTokenId }) => {\n    return await ctx.db.get(\"RefreshToken\", refreshTokenId);\n  },\n});\n\n/** Patch a refresh token document with partial data. */\nexport const refreshTokenPatch = mutation({\n  args: { refreshTokenId: v.id(\"RefreshToken\"), data: v.any() },\n  returns: v.null(),\n  handler: async (ctx, { refreshTokenId, data }) => {\n    await ctx.db.patch(\"RefreshToken\", refreshTokenId, data);\n    return null;\n  },\n});\n\n/** Get child tokens that were created by exchanging a specific parent token. */\nexport const refreshTokenGetChildren = query({\n  args: {\n    sessionId: v.id(\"Session\"),\n    parentRefreshTokenId: v.id(\"RefreshToken\"),\n  },\n  returns: v.array(vRefreshTokenDoc),\n  handler: async (ctx, { sessionId, parentRefreshTokenId }) => {\n    return await ctx.db\n      .query(\"RefreshToken\")\n      .withIndex(\"session_id_parent_refresh_token_id\", (q) =>\n        q\n          .eq(\"sessionId\", sessionId as any)\n          .eq(\"parentRefreshTokenId\", parentRefreshTokenId as any),\n      )\n      .collect();\n  },\n});\n\n/** List all refresh tokens for a session. */\nexport const refreshTokenListBySession = query({\n  args: { sessionId: v.id(\"Session\") },\n  returns: v.array(vRefreshTokenDoc),\n  handler: async (ctx, { sessionId }) => {\n    return await ctx.db\n      .query(\"RefreshToken\")\n      .withIndex(\"session_id_parent_refresh_token_id\", (q) =>\n        q.eq(\"sessionId\", sessionId as any),\n      )\n      .collect();\n  },\n});\n\n/** Delete all refresh tokens for a session. */\nexport const refreshTokenDeleteAll = mutation({\n  args: { sessionId: v.id(\"Session\") },\n  returns: v.null(),\n  handler: async (ctx, { sessionId }) => {\n    const tokens = await ctx.db\n      .query(\"RefreshToken\")\n      .withIndex(\"session_id_parent_refresh_token_id\", (q) =>\n        q.eq(\"sessionId\", sessionId as any),\n      )\n      .collect();\n    await Promise.all(\n      tokens.map((token) => ctx.db.delete(\"RefreshToken\", token._id)),\n    );\n    return null;\n  },\n});\n\n/** Get the active (unused) refresh token for a session. */\nexport const refreshTokenGetActive = query({\n  args: { sessionId: v.id(\"Session\") },\n  returns: v.union(vRefreshTokenDoc, v.null()),\n  handler: async (ctx, { sessionId }) => {\n    return await ctx.db\n      .query(\"RefreshToken\")\n      .withIndex(\"session_id\", (q) => q.eq(\"sessionId\", sessionId as any))\n      .filter((q) => q.eq(q.field(\"firstUsedTime\"), undefined))\n      .order(\"desc\")\n      .first();\n  },\n});\n"],"mappings":";;;;;;;;;;;AAuBA,MAAa,WAAW,MAAM;CAC5B,MAAM;EACJ,OAAO,EAAE,SACP,EAAE,OAAO;GACP,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC;GAC7B,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC;GAC7B,aAAa,EAAE,SAAS,EAAE,SAAS,CAAC;GACpC,MAAM,EAAE,SAAS,EAAE,QAAQ,CAAC;GAC7B,CAAC,CACH;EACD,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC;EAC7B,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,MAAM,CAAC,CAAC;EACjD,SAAS,EAAE,SACT,EAAE,MACA,EAAE,QAAQ,gBAAgB,EAC1B,EAAE,QAAQ,OAAO,EACjB,EAAE,QAAQ,QAAQ,EAClB,EAAE,QAAQ,QAAQ,CACnB,CACF;EACD,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,MAAM,EAAE,EAAE,QAAQ,OAAO,CAAC,CAAC;EAChE;CACD,SAAS,WAAW,SAAS;CAC7B,SAAS,OAAO,KAAK,SAAS;EAC5B,MAAM,QAAQ,KAAK,SAAS,EAAE;EAC9B,MAAM,QAAQ,KAAK,IAAI,KAAK,IAAI,KAAK,SAAS,IAAI,EAAE,EAAE,IAAI;EAC1D,MAAM,QAAQ,KAAK,SAAS;EAG5B,IAAI;AACJ,MAAI,MAAM,UAAU,OAClB,KAAI,IAAI,GACL,MAAM,OAAO,CACb,UAAU,UAAU,QAAQ,IAAI,GAAG,SAAS,MAAM,MAAO,CAAC;WACpD,MAAM,UAAU,OACzB,KAAI,IAAI,GACL,MAAM,OAAO,CACb,UAAU,UAAU,QAAQ,IAAI,GAAG,SAAS,MAAM,MAAO,CAAC;MAE7D,KAAI,IAAI,GAAG,MAAM,OAAO;AAI1B,MAAI,MAAM,gBAAgB,OACxB,KAAI,EAAE,QAAQ,MAAM,EAAE,GAAG,EAAE,MAAM,cAAc,EAAE,MAAM,YAAa,CAAC;AAEvE,MAAI,MAAM,SAAS,OACjB,KAAI,EAAE,QAAQ,MAAM,EAAE,GAAG,EAAE,MAAM,OAAO,EAAE,MAAM,KAAM,CAAC;AAGzD,MAAI,MAAM,UAAU,UAAa,MAAM,UAAU,OAC/C,KAAI,EAAE,QAAQ,MAAM,EAAE,GAAG,EAAE,MAAM,QAAQ,EAAE,MAAM,MAAO,CAAC;AAG3D,MAAI,EAAE,MAAM,MAAM;EAGlB,MAAM,MAAM,MAAM,EAAE,SAAS;EAC7B,IAAI,WAAW;AACf,MAAI,KAAK,QAAQ;GACf,MAAM,YAAY,IAAI,WAAW,QAAQ,IAAI,QAAQ,KAAK,OAAO;AACjE,OAAI,cAAc,GAChB,YAAW,YAAY;;EAG3B,MAAM,OAAO,IAAI,MAAM,UAAU,WAAW,QAAQ,EAAE;EACtD,MAAM,UAAU,KAAK,SAAS;EAC9B,MAAM,QAAQ,UAAU,KAAK,MAAM,GAAG,MAAM,GAAG;AAE/C,SAAO;GAAE;GAAO,YADG,UAAU,MAAM,MAAM,SAAS,GAAG,MAAM;GAC/B;;CAE/B,CAAC;;AAGF,MAAa,cAAc,MAAM;CAC/B,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,EAAE;CAC9B,SAAS,EAAE,MAAM,UAAU,EAAE,MAAM,CAAC;CACpC,SAAS,OAAO,KAAK,EAAE,aAAa;AAClC,SAAO,MAAM,IAAI,GAAG,IAAI,QAAQ,OAAO;;CAE1C,CAAC;;;;;;AAOF,MAAa,0BAA0B,MAAM;CAC3C,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE;CAC3B,SAAS,EAAE,MAAM,UAAU,EAAE,MAAM,CAAC;CACpC,SAAS,OAAO,KAAK,EAAE,YAAY;EACjC,MAAM,QAAQ,MAAM,IAAI,GACrB,MAAM,OAAO,CACb,UAAU,UAAU,MAAM,EAAE,GAAG,SAAS,MAAM,CAAC,CAC/C,QAAQ,MAAM,EAAE,IAAI,EAAE,MAAM,wBAAwB,EAAE,OAAU,CAAC,CACjE,KAAK,EAAE;AACV,SAAO,MAAM,WAAW,IAAI,MAAM,KAAK;;CAE1C,CAAC;;;;;;AAOF,MAAa,0BAA0B,MAAM;CAC3C,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE;CAC3B,SAAS,EAAE,MAAM,UAAU,EAAE,MAAM,CAAC;CACpC,SAAS,OAAO,KAAK,EAAE,YAAY;EACjC,MAAM,QAAQ,MAAM,IAAI,GACrB,MAAM,OAAO,CACb,UAAU,UAAU,MAAM,EAAE,GAAG,SAAS,MAAM,CAAC,CAC/C,QAAQ,MAAM,EAAE,IAAI,EAAE,MAAM,wBAAwB,EAAE,OAAU,CAAC,CACjE,KAAK,EAAE;AACV,SAAO,MAAM,WAAW,IAAI,MAAM,KAAK;;CAE1C,CAAC;;AAGF,MAAa,aAAa,SAAS;CACjC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE;CACvB,SAAS,EAAE,GAAG,OAAO;CACrB,SAAS,OAAO,KAAK,EAAE,WAAW;AAChC,SAAO,MAAM,IAAI,GAAG,OAAO,QAAQ,KAAK;;CAE3C,CAAC;;AAGF,MAAa,aAAa,SAAS;CACjC,MAAM;EAAE,QAAQ,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC;EAAE,MAAM,EAAE,KAAK;EAAE;CACzD,SAAS,EAAE,GAAG,OAAO;CACrB,SAAS,OAAO,KAAK,EAAE,QAAQ,WAAW;AACxC,MAAI,WAAW,QAAW;AACxB,SAAM,IAAI,GAAG,MAAM,QAAQ,QAAQ,KAAK;AACxC,UAAO;;AAET,SAAO,MAAM,IAAI,GAAG,OAAO,QAAQ,KAAK;;CAE3C,CAAC;;AAGF,MAAa,YAAY,SAAS;CAChC,MAAM;EAAE,QAAQ,EAAE,GAAG,OAAO;EAAE,MAAM,EAAE,KAAK;EAAE;CAC7C,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,QAAQ,WAAW;AACxC,QAAM,IAAI,GAAG,MAAM,QAAQ,QAAQ,KAAK;AACxC,SAAO;;CAEV,CAAC;;AAGF,MAAa,aAAa,SAAS;CACjC,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,EAAE;CAC9B,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,aAAa;AAClC,MAAK,MAAM,IAAI,GAAG,IAAI,QAAQ,OAAO,KAAM,KACzC,OAAM,IAAI,GAAG,OAAO,QAAQ,OAAO;AAErC,SAAO;;CAEV,CAAC;;AAOF,MAAa,oBAAoB,MAAM;CACrC,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,EAAE;CAC9B,SAAS,EAAE,MAAM,YAAY;CAC7B,SAAS,OAAO,KAAK,EAAE,aAAa;AAClC,SAAO,MAAM,IAAI,GACd,MAAM,UAAU,CAChB,UAAU,qBAAqB,MAAM,EAAE,GAAG,UAAU,OAAc,CAAC,CACnE,SAAS;;CAEf,CAAC;;AAGF,MAAa,aAAa,MAAM;CAC9B,MAAM;EAAE,UAAU,EAAE,QAAQ;EAAE,mBAAmB,EAAE,QAAQ;EAAE;CAC7D,SAAS,EAAE,MAAM,aAAa,EAAE,MAAM,CAAC;CACvC,SAAS,OAAO,KAAK,EAAE,UAAU,wBAAwB;AACvD,SAAO,MAAM,IAAI,GACd,MAAM,UAAU,CAChB,UAAU,wBAAwB,MACjC,EAAE,GAAG,YAAY,SAAS,CAAC,GAAG,qBAAqB,kBAAkB,CACtE,CACA,QAAQ;;CAEd,CAAC;;AAGF,MAAa,iBAAiB,MAAM;CAClC,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM,aAAa,EAAE,MAAM,CAAC;CACvC,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GAAG,IAAI,WAAW,UAAU;;CAEhD,CAAC;;AAGF,MAAa,gBAAgB,SAAS;CACpC,MAAM;EACJ,QAAQ,EAAE,GAAG,OAAO;EACpB,UAAU,EAAE,QAAQ;EACpB,mBAAmB,EAAE,QAAQ;EAC7B,QAAQ,EAAE,SAAS,EAAE,QAAQ,CAAC;EAC9B,QAAQ,EAAE,SAAS,EAAE,KAAK,CAAC;EAC5B;CACD,SAAS,EAAE,GAAG,UAAU;CACxB,SAAS,OAAO,KAAK,SAAS;AAC5B,SAAO,MAAM,IAAI,GAAG,OAAO,WAAW,KAAY;;CAErD,CAAC;;AAGF,MAAa,eAAe,SAAS;CACnC,MAAM;EAAE,WAAW,EAAE,GAAG,UAAU;EAAE,MAAM,EAAE,KAAK;EAAE;CACnD,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,WAAW,WAAW;AAC3C,QAAM,IAAI,GAAG,MAAM,WAAW,WAAW,KAAK;AAC9C,SAAO;;CAEV,CAAC;;AAGF,MAAa,gBAAgB,SAAS;CACpC,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,QAAM,IAAI,GAAG,OAAO,WAAW,UAAU;AACzC,SAAO;;CAEV,CAAC;;;;;;AAWF,MAAa,cAAc,MAAM;CAC/B,MAAM;EACJ,OAAO,EAAE,SACP,EAAE,OAAO,EACP,QAAQ,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,EACjC,CAAC,CACH;EACD,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC;EAC7B,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,MAAM,CAAC,CAAC;EACjD,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,MAAM,EAAE,EAAE,QAAQ,OAAO,CAAC,CAAC;EAChE;CACD,SAAS,WAAW,YAAY;CAChC,SAAS,OAAO,KAAK,SAAS;EAC5B,MAAM,QAAQ,KAAK,SAAS,EAAE;EAC9B,MAAM,QAAQ,KAAK,IAAI,KAAK,IAAI,KAAK,SAAS,IAAI,EAAE,EAAE,IAAI;EAC1D,MAAM,QAAQ,KAAK,SAAS;EAE5B,IAAI;AACJ,MAAI,MAAM,WAAW,OACnB,KAAI,IAAI,GACL,MAAM,UAAU,CAChB,UAAU,YAAY,QAAQ,IAAI,GAAG,UAAU,MAAM,OAAQ,CAAC;MAEjE,KAAI,IAAI,GAAG,MAAM,UAAU;AAG7B,MAAI,EAAE,MAAM,MAAM;EAElB,MAAM,MAAM,MAAM,EAAE,SAAS;EAC7B,IAAI,WAAW;AACf,MAAI,KAAK,QAAQ;GACf,MAAM,YAAY,IAAI,WAAW,QAAQ,IAAI,QAAQ,KAAK,OAAO;AACjE,OAAI,cAAc,GAChB,YAAW,YAAY;;EAG3B,MAAM,OAAO,IAAI,MAAM,UAAU,WAAW,QAAQ,EAAE;EACtD,MAAM,UAAU,KAAK,SAAS;EAC9B,MAAM,QAAQ,UAAU,KAAK,MAAM,GAAG,MAAM,GAAG;AAE/C,SAAO;GAAE;GAAO,YADG,UAAU,MAAM,MAAM,SAAS,GAAG,MAAM;GAC/B;;CAE/B,CAAC;;AAGF,MAAa,gBAAgB,SAAS;CACpC,MAAM;EAAE,QAAQ,EAAE,GAAG,OAAO;EAAE,gBAAgB,EAAE,QAAQ;EAAE;CAC1D,SAAS,EAAE,GAAG,UAAU;CACxB,SAAS,OAAO,KAAK,EAAE,QAAQ,qBAAqB;AAClD,SAAO,MAAM,IAAI,GAAG,OAAO,WAAW;GAC5B;GACR;GACD,CAAC;;CAEL,CAAC;;AAGF,MAAa,iBAAiB,MAAM;CAClC,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM,aAAa,EAAE,MAAM,CAAC;CACvC,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GAAG,IAAI,WAAW,UAAU;;CAEhD,CAAC;;AAGF,MAAa,gBAAgB,SAAS;CACpC,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,MAAK,MAAM,IAAI,GAAG,IAAI,WAAW,UAAU,KAAM,KAC/C,OAAM,IAAI,GAAG,OAAO,WAAW,UAAU;AAE3C,SAAO;;CAEV,CAAC;;AAGF,MAAa,oBAAoB,MAAM;CACrC,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,EAAE;CAC9B,SAAS,EAAE,MAAM,YAAY;CAC7B,SAAS,OAAO,KAAK,EAAE,aAAa;AAClC,SAAO,MAAM,IAAI,GACd,MAAM,UAAU,CAChB,UAAU,YAAY,MAAM,EAAE,GAAG,UAAU,OAAc,CAAC,CAC1D,SAAS;;CAEf,CAAC;;AAOF,MAAa,iBAAiB,SAAS;CACrC,MAAM,EAAE,WAAW,EAAE,SAAS,EAAE,GAAG,UAAU,CAAC,EAAE;CAChD,SAAS,EAAE,GAAG,eAAe;CAC7B,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GAAG,OAAO,gBAAgB,EAAa,WAAkB,CAAC;;CAE9E,CAAC;;AAGF,MAAa,kBAAkB,MAAM;CACnC,MAAM,EAAE,YAAY,EAAE,GAAG,eAAe,EAAE;CAC1C,SAAS,EAAE,MAAM,kBAAkB,EAAE,MAAM,CAAC;CAC5C,SAAS,OAAO,KAAK,EAAE,iBAAiB;AACtC,SAAO,MAAM,IAAI,GAAG,IAAI,gBAAgB,WAAW;;CAEtD,CAAC;;AAGF,MAAa,yBAAyB,MAAM;CAC1C,MAAM,EAAE,WAAW,EAAE,QAAQ,EAAE;CAC/B,SAAS,EAAE,MAAM,kBAAkB,EAAE,MAAM,CAAC;CAC5C,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GACd,MAAM,eAAe,CACrB,UAAU,cAAc,MAAM,EAAE,GAAG,aAAa,UAAU,CAAC,CAC3D,QAAQ;;CAEd,CAAC;;AAGF,MAAa,gBAAgB,SAAS;CACpC,MAAM;EAAE,YAAY,EAAE,GAAG,eAAe;EAAE,MAAM,EAAE,KAAK;EAAE;CACzD,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,YAAY,WAAW;AAC5C,QAAM,IAAI,GAAG,MAAM,gBAAgB,YAAY,KAAK;AACpD,SAAO;;CAEV,CAAC;;AAGF,MAAa,iBAAiB,SAAS;CACrC,MAAM,EAAE,YAAY,EAAE,GAAG,eAAe,EAAE;CAC1C,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,iBAAiB;AACtC,QAAM,IAAI,GAAG,OAAO,gBAAgB,WAAW;AAC/C,SAAO;;CAEV,CAAC;;AAOF,MAAa,iCAAiC,MAAM;CAClD,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM,sBAAsB,EAAE,MAAM,CAAC;CAChD,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GACd,MAAM,mBAAmB,CACzB,UAAU,eAAe,MAAM,EAAE,GAAG,aAAa,UAAiB,CAAC,CACnE,QAAQ;;CAEd,CAAC;;AAGF,MAAa,4BAA4B,MAAM;CAC7C,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE;CAC1B,SAAS,EAAE,MAAM,sBAAsB,EAAE,MAAM,CAAC;CAChD,SAAS,OAAO,KAAK,EAAE,WAAW;AAChC,SAAO,MAAM,IAAI,GACd,MAAM,mBAAmB,CACzB,UAAU,SAAS,MAAM,EAAE,GAAG,QAAQ,KAAK,CAAC,CAC5C,QAAQ;;CAEd,CAAC;;AAGF,MAAa,yBAAyB,SAAS;CAC7C,MAAM;EACJ,WAAW,EAAE,GAAG,UAAU;EAC1B,UAAU,EAAE,QAAQ;EACpB,MAAM,EAAE,QAAQ;EAChB,gBAAgB,EAAE,QAAQ;EAC1B,UAAU,EAAE,SAAS,EAAE,QAAQ,CAAC;EAChC,eAAe,EAAE,SAAS,EAAE,QAAQ,CAAC;EACrC,eAAe,EAAE,SAAS,EAAE,QAAQ,CAAC;EACtC;CACD,SAAS,EAAE,GAAG,mBAAmB;CACjC,SAAS,OAAO,KAAK,SAAS;AAC5B,SAAO,MAAM,IAAI,GAAG,OAAO,oBAAoB,KAAY;;CAE9D,CAAC;;AAGF,MAAa,yBAAyB,SAAS;CAC7C,MAAM,EAAE,oBAAoB,EAAE,GAAG,mBAAmB,EAAE;CACtD,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,yBAAyB;AAC9C,QAAM,IAAI,GAAG,OAAO,oBAAoB,mBAAmB;AAC3D,SAAO;;CAEV,CAAC;;AAOF,MAAa,qBAAqB,SAAS;CACzC,MAAM;EACJ,WAAW,EAAE,GAAG,UAAU;EAC1B,gBAAgB,EAAE,QAAQ;EAC1B,sBAAsB,EAAE,SAAS,EAAE,GAAG,eAAe,CAAC;EACvD;CACD,SAAS,EAAE,GAAG,eAAe;CAC7B,SAAS,OAAO,KAAK,SAAS;AAC5B,SAAO,MAAM,IAAI,GAAG,OAAO,gBAAgB,KAAY;;CAE1D,CAAC;;AAGF,MAAa,sBAAsB,MAAM;CACvC,MAAM,EAAE,gBAAgB,EAAE,GAAG,eAAe,EAAE;CAC9C,SAAS,EAAE,MAAM,kBAAkB,EAAE,MAAM,CAAC;CAC5C,SAAS,OAAO,KAAK,EAAE,qBAAqB;AAC1C,SAAO,MAAM,IAAI,GAAG,IAAI,gBAAgB,eAAe;;CAE1D,CAAC;;AAGF,MAAa,oBAAoB,SAAS;CACxC,MAAM;EAAE,gBAAgB,EAAE,GAAG,eAAe;EAAE,MAAM,EAAE,KAAK;EAAE;CAC7D,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,gBAAgB,WAAW;AAChD,QAAM,IAAI,GAAG,MAAM,gBAAgB,gBAAgB,KAAK;AACxD,SAAO;;CAEV,CAAC;;AAGF,MAAa,0BAA0B,MAAM;CAC3C,MAAM;EACJ,WAAW,EAAE,GAAG,UAAU;EAC1B,sBAAsB,EAAE,GAAG,eAAe;EAC3C;CACD,SAAS,EAAE,MAAM,iBAAiB;CAClC,SAAS,OAAO,KAAK,EAAE,WAAW,2BAA2B;AAC3D,SAAO,MAAM,IAAI,GACd,MAAM,eAAe,CACrB,UAAU,uCAAuC,MAChD,EACG,GAAG,aAAa,UAAiB,CACjC,GAAG,wBAAwB,qBAA4B,CAC3D,CACA,SAAS;;CAEf,CAAC;;AAGF,MAAa,4BAA4B,MAAM;CAC7C,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM,iBAAiB;CAClC,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GACd,MAAM,eAAe,CACrB,UAAU,uCAAuC,MAChD,EAAE,GAAG,aAAa,UAAiB,CACpC,CACA,SAAS;;CAEf,CAAC;;AAGF,MAAa,wBAAwB,SAAS;CAC5C,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,gBAAgB;EACrC,MAAM,SAAS,MAAM,IAAI,GACtB,MAAM,eAAe,CACrB,UAAU,uCAAuC,MAChD,EAAE,GAAG,aAAa,UAAiB,CACpC,CACA,SAAS;AACZ,QAAM,QAAQ,IACZ,OAAO,KAAK,UAAU,IAAI,GAAG,OAAO,gBAAgB,MAAM,IAAI,CAAC,CAChE;AACD,SAAO;;CAEV,CAAC;;AAGF,MAAa,wBAAwB,MAAM;CACzC,MAAM,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE;CACpC,SAAS,EAAE,MAAM,kBAAkB,EAAE,MAAM,CAAC;CAC5C,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GACd,MAAM,eAAe,CACrB,UAAU,eAAe,MAAM,EAAE,GAAG,aAAa,UAAiB,CAAC,CACnE,QAAQ,MAAM,EAAE,GAAG,EAAE,MAAM,gBAAgB,EAAE,OAAU,CAAC,CACxD,MAAM,OAAO,CACb,OAAO;;CAEb,CAAC"}

package/dist/component/public/keys.d.ts

@@ -0,0 +1,41 @@
+declare namespace keys_d_exports {
+  export { keyDelete, keyGetByHashedKey, keyGetById, keyInsert, keyList, keyListByUserId, keyPatch };
+}
+/**
+ * Insert a new API key record.
+ *
+ * The caller is responsible for hashing the raw key before passing it here —
+ * this function only stores the hash and metadata.
+ */
+declare const keyInsert: any;
+/**
+ * Look up an API key by its SHA-256 hash.
+ *
+ * Used during Bearer token verification. Returns the full key record
+ * (including rate limit state) or `null` if not found.
+ */
+declare const keyGetByHashedKey: any;
+/**
+ * @deprecated Use `keyList` with `where: { userId }` instead.
+ * Kept for backward compatibility with generated component types.
+ */
+declare const keyListByUserId: any;
+/**
+ * List API keys with optional filtering, sorting, and pagination.
+ *
+ * Returns `{ items, nextCursor }`. Supports filtering by `userId`,
+ * `revoked`, `name`, and `prefix`.
+ */
+declare const keyList: any;
+/** Get a single API key by document ID. */
+declare const keyGetById: any;
+/**
+ * Patch an API key record. Used for updating name, scopes, rate limit config,
+ * revocation, and lastUsedAt / rate limit state tracking.
+ */
+declare const keyPatch: any;
+/** Hard delete an API key record. */
+declare const keyDelete: any;
+//#endregion
+export { keyDelete, keyGetByHashedKey, keyGetById, keyInsert, keyList, keyListByUserId, keyPatch, keys_d_exports };
+//# sourceMappingURL=keys.d.ts.map

package/dist/component/public/keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"keys.d.ts","names":[],"sources":["../../../src/component/public/keys.ts"],"mappings":";;;;;;;;;cAsBa,SAAA;;;;;;AAAb;cAgCa,iBAAA;;;;AAAb;cAea,eAAA;;;;AAAb;;;cAiBa,OAAA;;cAmEA,UAAA;;;;;cAYA,QAAA;;cA4BA,SAAA"}

package/dist/component/public/keys.js

@@ -0,0 +1,157 @@
+import { mutation, query } from "../functions.js";
+import { vApiKeyDoc, vApiKeyRateLimit, vApiKeyRateLimitState, vApiKeyScope } from "../model.js";
+import { ConvexError, v, vPaginated } from "./shared.js";
+
+//#region src/component/public/keys.ts
+/**
+* Insert a new API key record.
+*
+* The caller is responsible for hashing the raw key before passing it here —
+* this function only stores the hash and metadata.
+*/
+const keyInsert = mutation({
+	args: {
+		userId: v.id("User"),
+		prefix: v.string(),
+		hashedKey: v.string(),
+		name: v.string(),
+		scopes: v.array(v.object({
+			resource: v.string(),
+			actions: v.array(v.string())
+		})),
+		rateLimit: v.optional(vApiKeyRateLimit),
+		expiresAt: v.optional(v.number()),
+		metadata: v.optional(v.any())
+	},
+	returns: v.id("ApiKey"),
+	handler: async (ctx, args) => {
+		return await ctx.db.insert("ApiKey", {
+			...args,
+			createdAt: Date.now(),
+			revoked: false
+		});
+	}
+});
+/**
+* Look up an API key by its SHA-256 hash.
+*
+* Used during Bearer token verification. Returns the full key record
+* (including rate limit state) or `null` if not found.
+*/
+const keyGetByHashedKey = query({
+	args: { hashedKey: v.string() },
+	returns: v.union(vApiKeyDoc, v.null()),
+	handler: async (ctx, { hashedKey }) => {
+		return await ctx.db.query("ApiKey").withIndex("hashed_key", (q) => q.eq("hashedKey", hashedKey)).first();
+	}
+});
+/**
+* @deprecated Use `keyList` with `where: { userId }` instead.
+* Kept for backward compatibility with generated component types.
+*/
+const keyListByUserId = query({
+	args: { userId: v.id("User") },
+	returns: v.array(vApiKeyDoc),
+	handler: async (ctx, { userId }) => {
+		return await ctx.db.query("ApiKey").withIndex("user_id", (q) => q.eq("userId", userId)).collect();
+	}
+});
+/**
+* List API keys with optional filtering, sorting, and pagination.
+*
+* Returns `{ items, nextCursor }`. Supports filtering by `userId`,
+* `revoked`, `name`, and `prefix`.
+*/
+const keyList = query({
+	args: {
+		where: v.optional(v.object({
+			userId: v.optional(v.id("User")),
+			revoked: v.optional(v.boolean()),
+			name: v.optional(v.string()),
+			prefix: v.optional(v.string())
+		})),
+		limit: v.optional(v.number()),
+		cursor: v.optional(v.union(v.string(), v.null())),
+		orderBy: v.optional(v.union(v.literal("_creationTime"), v.literal("name"), v.literal("lastUsedAt"), v.literal("expiresAt"), v.literal("revoked"))),
+		order: v.optional(v.union(v.literal("asc"), v.literal("desc")))
+	},
+	returns: vPaginated(vApiKeyDoc),
+	handler: async (ctx, args) => {
+		const where = args.where ?? {};
+		const limit = Math.min(Math.max(args.limit ?? 50, 1), 100);
+		const order = args.order ?? "desc";
+		let q;
+		if (where.userId !== void 0) q = ctx.db.query("ApiKey").withIndex("user_id", (idx) => idx.eq("userId", where.userId));
+		else q = ctx.db.query("ApiKey");
+		if (where.revoked !== void 0) q = q.filter((f) => f.eq(f.field("revoked"), where.revoked));
+		if (where.name !== void 0) q = q.filter((f) => f.eq(f.field("name"), where.name));
+		if (where.prefix !== void 0) q = q.filter((f) => f.eq(f.field("prefix"), where.prefix));
+		q = q.order(order);
+		const all = await q.collect();
+		let startIdx = 0;
+		if (args.cursor) {
+			const cursorIdx = all.findIndex((doc) => doc._id === args.cursor);
+			if (cursorIdx !== -1) startIdx = cursorIdx + 1;
+		}
+		const page = all.slice(startIdx, startIdx + limit + 1);
+		const hasMore = page.length > limit;
+		const items = hasMore ? page.slice(0, limit) : page;
+		return {
+			items,
+			nextCursor: hasMore ? items[items.length - 1]._id : null
+		};
+	}
+});
+/** Get a single API key by document ID. */
+const keyGetById = query({
+	args: { keyId: v.id("ApiKey") },
+	returns: v.union(vApiKeyDoc, v.null()),
+	handler: async (ctx, { keyId }) => {
+		return await ctx.db.get("ApiKey", keyId);
+	}
+});
+/**
+* Patch an API key record. Used for updating name, scopes, rate limit config,
+* revocation, and lastUsedAt / rate limit state tracking.
+*/
+const keyPatch = mutation({
+	args: {
+		keyId: v.id("ApiKey"),
+		data: v.object({
+			name: v.optional(v.string()),
+			scopes: v.optional(v.array(vApiKeyScope)),
+			rateLimit: v.optional(vApiKeyRateLimit),
+			rateLimitState: v.optional(vApiKeyRateLimitState),
+			revoked: v.optional(v.boolean()),
+			lastUsedAt: v.optional(v.number())
+		})
+	},
+	returns: v.null(),
+	handler: async (ctx, { keyId, data }) => {
+		if (await ctx.db.get("ApiKey", keyId) === null) throw new ConvexError({
+			code: "KEY_NOT_FOUND",
+			message: "API key not found",
+			keyId
+		});
+		await ctx.db.patch("ApiKey", keyId, data);
+		return null;
+	}
+});
+/** Hard delete an API key record. */
+const keyDelete = mutation({
+	args: { keyId: v.id("ApiKey") },
+	returns: v.null(),
+	handler: async (ctx, { keyId }) => {
+		if (await ctx.db.get("ApiKey", keyId) === null) throw new ConvexError({
+			code: "KEY_NOT_FOUND",
+			message: "API key not found",
+			keyId
+		});
+		await ctx.db.delete("ApiKey", keyId);
+		return null;
+	}
+});
+
+//#endregion
+export { keyDelete, keyGetByHashedKey, keyGetById, keyInsert, keyList, keyListByUserId, keyPatch };
+//# sourceMappingURL=keys.js.map

package/dist/component/public/keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"keys.js","names":[],"sources":["../../../src/component/public/keys.ts"],"sourcesContent":["import {\n  ConvexError,\n  mutation,\n  query,\n  v,\n  vApiKeyDoc,\n  vApiKeyRateLimit,\n  vApiKeyRateLimitState,\n  vApiKeyScope,\n  vPaginated,\n} from \"./shared\";\n\n// ============================================================================\n// API Keys\n// ============================================================================\n\n/**\n * Insert a new API key record.\n *\n * The caller is responsible for hashing the raw key before passing it here —\n * this function only stores the hash and metadata.\n */\nexport const keyInsert = mutation({\n  args: {\n    userId: v.id(\"User\"),\n    prefix: v.string(),\n    hashedKey: v.string(),\n    name: v.string(),\n    scopes: v.array(\n      v.object({\n        resource: v.string(),\n        actions: v.array(v.string()),\n      }),\n    ),\n    rateLimit: v.optional(vApiKeyRateLimit),\n    expiresAt: v.optional(v.number()),\n    metadata: v.optional(v.any()),\n  },\n  returns: v.id(\"ApiKey\"),\n  handler: async (ctx, args) => {\n    return await ctx.db.insert(\"ApiKey\", {\n      ...args,\n      createdAt: Date.now(),\n      revoked: false,\n    });\n  },\n});\n\n/**\n * Look up an API key by its SHA-256 hash.\n *\n * Used during Bearer token verification. Returns the full key record\n * (including rate limit state) or `null` if not found.\n */\nexport const keyGetByHashedKey = query({\n  args: { hashedKey: v.string() },\n  returns: v.union(vApiKeyDoc, v.null()),\n  handler: async (ctx, { hashedKey }) => {\n    return await ctx.db\n      .query(\"ApiKey\")\n      .withIndex(\"hashed_key\", (q) => q.eq(\"hashedKey\", hashedKey))\n      .first();\n  },\n});\n\n/**\n * @deprecated Use `keyList` with `where: { userId }` instead.\n * Kept for backward compatibility with generated component types.\n */\nexport const keyListByUserId = query({\n  args: { userId: v.id(\"User\") },\n  returns: v.array(vApiKeyDoc),\n  handler: async (ctx, { userId }) => {\n    return await ctx.db\n      .query(\"ApiKey\")\n      .withIndex(\"user_id\", (q) => q.eq(\"userId\", userId))\n      .collect();\n  },\n});\n\n/**\n * List API keys with optional filtering, sorting, and pagination.\n *\n * Returns `{ items, nextCursor }`. Supports filtering by `userId`,\n * `revoked`, `name`, and `prefix`.\n */\nexport const keyList = query({\n  args: {\n    where: v.optional(\n      v.object({\n        userId: v.optional(v.id(\"User\")),\n        revoked: v.optional(v.boolean()),\n        name: v.optional(v.string()),\n        prefix: v.optional(v.string()),\n      }),\n    ),\n    limit: v.optional(v.number()),\n    cursor: v.optional(v.union(v.string(), v.null())),\n    orderBy: v.optional(\n      v.union(\n        v.literal(\"_creationTime\"),\n        v.literal(\"name\"),\n        v.literal(\"lastUsedAt\"),\n        v.literal(\"expiresAt\"),\n        v.literal(\"revoked\"),\n      ),\n    ),\n    order: v.optional(v.union(v.literal(\"asc\"), v.literal(\"desc\"))),\n  },\n  returns: vPaginated(vApiKeyDoc),\n  handler: async (ctx, args) => {\n    const where = args.where ?? {};\n    const limit = Math.min(Math.max(args.limit ?? 50, 1), 100);\n    const order = args.order ?? \"desc\";\n\n    let q;\n    if (where.userId !== undefined) {\n      q = ctx.db\n        .query(\"ApiKey\")\n        .withIndex(\"user_id\", (idx) => idx.eq(\"userId\", where.userId!));\n    } else {\n      q = ctx.db.query(\"ApiKey\");\n    }\n\n    if (where.revoked !== undefined) {\n      q = q.filter((f) => f.eq(f.field(\"revoked\"), where.revoked!));\n    }\n    if (where.name !== undefined) {\n      q = q.filter((f) => f.eq(f.field(\"name\"), where.name!));\n    }\n    if (where.prefix !== undefined) {\n      q = q.filter((f) => f.eq(f.field(\"prefix\"), where.prefix!));\n    }\n\n    q = q.order(order);\n\n    const all = await q.collect();\n    let startIdx = 0;\n    if (args.cursor) {\n      const cursorIdx = all.findIndex((doc) => doc._id === args.cursor);\n      if (cursorIdx !== -1) {\n        startIdx = cursorIdx + 1;\n      }\n    }\n    const page = all.slice(startIdx, startIdx + limit + 1);\n    const hasMore = page.length > limit;\n    const items = hasMore ? page.slice(0, limit) : page;\n    const nextCursor = hasMore ? items[items.length - 1]._id : null;\n    return { items, nextCursor };\n  },\n});\n\n/** Get a single API key by document ID. */\nexport const keyGetById = query({\n  args: { keyId: v.id(\"ApiKey\") },\n  returns: v.union(vApiKeyDoc, v.null()),\n  handler: async (ctx, { keyId }) => {\n    return await ctx.db.get(\"ApiKey\", keyId);\n  },\n});\n\n/**\n * Patch an API key record. Used for updating name, scopes, rate limit config,\n * revocation, and lastUsedAt / rate limit state tracking.\n */\nexport const keyPatch = mutation({\n  args: {\n    keyId: v.id(\"ApiKey\"),\n    data: v.object({\n      name: v.optional(v.string()),\n      scopes: v.optional(v.array(vApiKeyScope)),\n      rateLimit: v.optional(vApiKeyRateLimit),\n      rateLimitState: v.optional(vApiKeyRateLimitState),\n      revoked: v.optional(v.boolean()),\n      lastUsedAt: v.optional(v.number()),\n    }),\n  },\n  returns: v.null(),\n  handler: async (ctx, { keyId, data }) => {\n    const key = await ctx.db.get(\"ApiKey\", keyId);\n    if (key === null) {\n      throw new ConvexError({\n        code: \"KEY_NOT_FOUND\",\n        message: \"API key not found\",\n        keyId,\n      });\n    }\n    await ctx.db.patch(\"ApiKey\", keyId, data);\n    return null;\n  },\n});\n\n/** Hard delete an API key record. */\nexport const keyDelete = mutation({\n  args: { keyId: v.id(\"ApiKey\") },\n  returns: v.null(),\n  handler: async (ctx, { keyId }) => {\n    const key = await ctx.db.get(\"ApiKey\", keyId);\n    if (key === null) {\n      throw new ConvexError({\n        code: \"KEY_NOT_FOUND\",\n        message: \"API key not found\",\n        keyId,\n      });\n    }\n    await ctx.db.delete(\"ApiKey\", keyId);\n    return null;\n  },\n});\n"],"mappings":";;;;;;;;;;;AAsBA,MAAa,YAAY,SAAS;CAChC,MAAM;EACJ,QAAQ,EAAE,GAAG,OAAO;EACpB,QAAQ,EAAE,QAAQ;EAClB,WAAW,EAAE,QAAQ;EACrB,MAAM,EAAE,QAAQ;EAChB,QAAQ,EAAE,MACR,EAAE,OAAO;GACP,UAAU,EAAE,QAAQ;GACpB,SAAS,EAAE,MAAM,EAAE,QAAQ,CAAC;GAC7B,CAAC,CACH;EACD,WAAW,EAAE,SAAS,iBAAiB;EACvC,WAAW,EAAE,SAAS,EAAE,QAAQ,CAAC;EACjC,UAAU,EAAE,SAAS,EAAE,KAAK,CAAC;EAC9B;CACD,SAAS,EAAE,GAAG,SAAS;CACvB,SAAS,OAAO,KAAK,SAAS;AAC5B,SAAO,MAAM,IAAI,GAAG,OAAO,UAAU;GACnC,GAAG;GACH,WAAW,KAAK,KAAK;GACrB,SAAS;GACV,CAAC;;CAEL,CAAC;;;;;;;AAQF,MAAa,oBAAoB,MAAM;CACrC,MAAM,EAAE,WAAW,EAAE,QAAQ,EAAE;CAC/B,SAAS,EAAE,MAAM,YAAY,EAAE,MAAM,CAAC;CACtC,SAAS,OAAO,KAAK,EAAE,gBAAgB;AACrC,SAAO,MAAM,IAAI,GACd,MAAM,SAAS,CACf,UAAU,eAAe,MAAM,EAAE,GAAG,aAAa,UAAU,CAAC,CAC5D,OAAO;;CAEb,CAAC;;;;;AAMF,MAAa,kBAAkB,MAAM;CACnC,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,EAAE;CAC9B,SAAS,EAAE,MAAM,WAAW;CAC5B,SAAS,OAAO,KAAK,EAAE,aAAa;AAClC,SAAO,MAAM,IAAI,GACd,MAAM,SAAS,CACf,UAAU,YAAY,MAAM,EAAE,GAAG,UAAU,OAAO,CAAC,CACnD,SAAS;;CAEf,CAAC;;;;;;;AAQF,MAAa,UAAU,MAAM;CAC3B,MAAM;EACJ,OAAO,EAAE,SACP,EAAE,OAAO;GACP,QAAQ,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC;GAChC,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC;GAChC,MAAM,EAAE,SAAS,EAAE,QAAQ,CAAC;GAC5B,QAAQ,EAAE,SAAS,EAAE,QAAQ,CAAC;GAC/B,CAAC,CACH;EACD,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC;EAC7B,QAAQ,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,MAAM,CAAC,CAAC;EACjD,SAAS,EAAE,SACT,EAAE,MACA,EAAE,QAAQ,gBAAgB,EAC1B,EAAE,QAAQ,OAAO,EACjB,EAAE,QAAQ,aAAa,EACvB,EAAE,QAAQ,YAAY,EACtB,EAAE,QAAQ,UAAU,CACrB,CACF;EACD,OAAO,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,MAAM,EAAE,EAAE,QAAQ,OAAO,CAAC,CAAC;EAChE;CACD,SAAS,WAAW,WAAW;CAC/B,SAAS,OAAO,KAAK,SAAS;EAC5B,MAAM,QAAQ,KAAK,SAAS,EAAE;EAC9B,MAAM,QAAQ,KAAK,IAAI,KAAK,IAAI,KAAK,SAAS,IAAI,EAAE,EAAE,IAAI;EAC1D,MAAM,QAAQ,KAAK,SAAS;EAE5B,IAAI;AACJ,MAAI,MAAM,WAAW,OACnB,KAAI,IAAI,GACL,MAAM,SAAS,CACf,UAAU,YAAY,QAAQ,IAAI,GAAG,UAAU,MAAM,OAAQ,CAAC;MAEjE,KAAI,IAAI,GAAG,MAAM,SAAS;AAG5B,MAAI,MAAM,YAAY,OACpB,KAAI,EAAE,QAAQ,MAAM,EAAE,GAAG,EAAE,MAAM,UAAU,EAAE,MAAM,QAAS,CAAC;AAE/D,MAAI,MAAM,SAAS,OACjB,KAAI,EAAE,QAAQ,MAAM,EAAE,GAAG,EAAE,MAAM,OAAO,EAAE,MAAM,KAAM,CAAC;AAEzD,MAAI,MAAM,WAAW,OACnB,KAAI,EAAE,QAAQ,MAAM,EAAE,GAAG,EAAE,MAAM,SAAS,EAAE,MAAM,OAAQ,CAAC;AAG7D,MAAI,EAAE,MAAM,MAAM;EAElB,MAAM,MAAM,MAAM,EAAE,SAAS;EAC7B,IAAI,WAAW;AACf,MAAI,KAAK,QAAQ;GACf,MAAM,YAAY,IAAI,WAAW,QAAQ,IAAI,QAAQ,KAAK,OAAO;AACjE,OAAI,cAAc,GAChB,YAAW,YAAY;;EAG3B,MAAM,OAAO,IAAI,MAAM,UAAU,WAAW,QAAQ,EAAE;EACtD,MAAM,UAAU,KAAK,SAAS;EAC9B,MAAM,QAAQ,UAAU,KAAK,MAAM,GAAG,MAAM,GAAG;AAE/C,SAAO;GAAE;GAAO,YADG,UAAU,MAAM,MAAM,SAAS,GAAG,MAAM;GAC/B;;CAE/B,CAAC;;AAGF,MAAa,aAAa,MAAM;CAC9B,MAAM,EAAE,OAAO,EAAE,GAAG,SAAS,EAAE;CAC/B,SAAS,EAAE,MAAM,YAAY,EAAE,MAAM,CAAC;CACtC,SAAS,OAAO,KAAK,EAAE,YAAY;AACjC,SAAO,MAAM,IAAI,GAAG,IAAI,UAAU,MAAM;;CAE3C,CAAC;;;;;AAMF,MAAa,WAAW,SAAS;CAC/B,MAAM;EACJ,OAAO,EAAE,GAAG,SAAS;EACrB,MAAM,EAAE,OAAO;GACb,MAAM,EAAE,SAAS,EAAE,QAAQ,CAAC;GAC5B,QAAQ,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;GACzC,WAAW,EAAE,SAAS,iBAAiB;GACvC,gBAAgB,EAAE,SAAS,sBAAsB;GACjD,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC;GAChC,YAAY,EAAE,SAAS,EAAE,QAAQ,CAAC;GACnC,CAAC;EACH;CACD,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,OAAO,WAAW;AAEvC,MADY,MAAM,IAAI,GAAG,IAAI,UAAU,MAAM,KACjC,KACV,OAAM,IAAI,YAAY;GACpB,MAAM;GACN,SAAS;GACT;GACD,CAAC;AAEJ,QAAM,IAAI,GAAG,MAAM,UAAU,OAAO,KAAK;AACzC,SAAO;;CAEV,CAAC;;AAGF,MAAa,YAAY,SAAS;CAChC,MAAM,EAAE,OAAO,EAAE,GAAG,SAAS,EAAE;CAC/B,SAAS,EAAE,MAAM;CACjB,SAAS,OAAO,KAAK,EAAE,YAAY;AAEjC,MADY,MAAM,IAAI,GAAG,IAAI,UAAU,MAAM,KACjC,KACV,OAAM,IAAI,YAAY;GACpB,MAAM;GACN,SAAS;GACT;GACD,CAAC;AAEJ,QAAM,IAAI,GAAG,OAAO,UAAU,MAAM;AACpC,SAAO;;CAEV,CAAC"}

package/dist/component/public/shared.d.ts

@@ -0,0 +1,26 @@
+import { Id } from "../_generated/dataModel.js";
+import { mutation, query } from "../functions.js";
+import { vAccountDoc, vApiKeyDoc, vApiKeyRateLimit, vApiKeyRateLimitState, vApiKeyScope, vAuditActorType, vAuditStatus, vAuthVerifierDoc, vDeviceCodeDoc, vDeviceStatus, vEnterpriseAuditEventDoc, vEnterpriseDoc, vEnterpriseDomainDoc, vEnterpriseDomainVerificationDoc, vEnterprisePolicy, vEnterpriseScimConfigDoc, vEnterpriseScimIdentityDoc, vEnterpriseSecretDoc, vEnterpriseSecretKind, vEnterpriseStatus, vEnterpriseWebhookDeliveryDoc, vEnterpriseWebhookEndpointDoc, vGroupDoc, vGroupInviteDoc, vGroupMemberDoc, vInviteAcceptByTokenResult, vInviteStatus, vPasskeyDoc, vRateLimitResult, vRefreshTokenDoc, vScimResourceType, vScimStatus, vSessionDoc, vTag, vTotpFactorDoc, vUserDoc, vVerificationCodeDoc, vWebhookEndpointStatus } from "../model.js";
+import * as convex_values0 from "convex/values";
+import { ConvexError, v } from "convex/values";
+
+//#region src/component/public/shared.d.ts
+declare namespace shared_d_exports {
+  export { ConvexError, Id, TagPair, mutation, normalizeTag, normalizeTags, query, v, vAccountDoc, vApiKeyDoc, vApiKeyRateLimit, vApiKeyRateLimitState, vApiKeyScope, vAuditActorType, vAuditStatus, vAuthVerifierDoc, vDeviceCodeDoc, vDeviceStatus, vEnterpriseAuditEventDoc, vEnterpriseDoc, vEnterpriseDomainDoc, vEnterpriseDomainVerificationDoc, vEnterprisePolicy, vEnterpriseScimConfigDoc, vEnterpriseScimIdentityDoc, vEnterpriseSecretDoc, vEnterpriseSecretKind, vEnterpriseStatus, vEnterpriseWebhookDeliveryDoc, vEnterpriseWebhookEndpointDoc, vGroupDoc, vGroupInviteDoc, vGroupMemberDoc, vInviteAcceptByTokenResult, vInviteStatus, vPaginated, vPasskeyDoc, vRateLimitResult, vRefreshTokenDoc, vScimResourceType, vScimStatus, vSessionDoc, vTag, vTotpFactorDoc, vUserDoc, vVerificationCodeDoc, vWebhookEndpointStatus };
+}
+declare const vPaginated: (item: any) => convex_values0.VObject<{
+  items: any[];
+  nextCursor: string | null;
+}, {
+  items: convex_values0.VArray<any[], any, "required">;
+  nextCursor: convex_values0.VUnion<string | null, [convex_values0.VString<string, "required">, convex_values0.VNull<null, "required">], "required", never>;
+}, "required", "items" | "nextCursor">;
+type TagPair = {
+  key: string;
+  value: string;
+};
+declare function normalizeTag(tag: TagPair): TagPair;
+declare function normalizeTags(tags: TagPair[]): TagPair[];
+//#endregion
+export { ConvexError, type Id, TagPair, mutation, normalizeTag, normalizeTags, query, shared_d_exports, v, vAccountDoc, vApiKeyDoc, vApiKeyRateLimit, vApiKeyRateLimitState, vApiKeyScope, vAuditActorType, vAuditStatus, vAuthVerifierDoc, vDeviceCodeDoc, vDeviceStatus, vEnterpriseAuditEventDoc, vEnterpriseDoc, vEnterpriseDomainDoc, vEnterpriseDomainVerificationDoc, vEnterprisePolicy, vEnterpriseScimConfigDoc, vEnterpriseScimIdentityDoc, vEnterpriseSecretDoc, vEnterpriseSecretKind, vEnterpriseStatus, vEnterpriseWebhookDeliveryDoc, vEnterpriseWebhookEndpointDoc, vGroupDoc, vGroupInviteDoc, vGroupMemberDoc, vInviteAcceptByTokenResult, vInviteStatus, vPaginated, vPasskeyDoc, vRateLimitResult, vRefreshTokenDoc, vScimResourceType, vScimStatus, vSessionDoc, vTag, vTotpFactorDoc, vUserDoc, vVerificationCodeDoc, vWebhookEndpointStatus };
+//# sourceMappingURL=shared.d.ts.map

package/dist/component/public/shared.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared.d.ts","names":[],"sources":["../../../src/component/public/shared.ts"],"mappings":";;;;;;;;;;cA2Fa,UAAA,GAAc,IAAA,yBAAS,OAAA;;;;SAIhC,cAAA,CAAA,MAAA;;;KAEQ,OAAA;EAAY,GAAA;EAAa,KAAA;AAAA;AAAA,iBAErB,YAAA,CAAa,GAAA,EAAK,OAAA,GAAU,OAAA;AAAA,iBAO5B,aAAA,CAAc,IAAA,EAAM,OAAA,KAAY,OAAA"}

package/dist/component/public/shared.js

@@ -0,0 +1,32 @@
+import { mutation, query } from "../functions.js";
+import { vAccountDoc, vApiKeyDoc, vApiKeyRateLimit, vApiKeyRateLimitState, vApiKeyScope, vAuditActorType, vAuditStatus, vAuthVerifierDoc, vDeviceCodeDoc, vDeviceStatus, vEnterpriseAuditEventDoc, vEnterpriseDoc, vEnterpriseDomainDoc, vEnterpriseDomainVerificationDoc, vEnterprisePolicy, vEnterpriseScimConfigDoc, vEnterpriseScimIdentityDoc, vEnterpriseSecretDoc, vEnterpriseSecretKind, vEnterpriseStatus, vEnterpriseWebhookDeliveryDoc, vEnterpriseWebhookEndpointDoc, vGroupDoc, vGroupInviteDoc, vGroupMemberDoc, vInviteAcceptByTokenResult, vInviteStatus, vPasskeyDoc, vRateLimitResult, vRefreshTokenDoc, vScimResourceType, vScimStatus, vSessionDoc, vTag, vTotpFactorDoc, vUserDoc, vVerificationCodeDoc, vWebhookEndpointStatus } from "../model.js";
+import { ConvexError, v } from "convex/values";
+
+//#region src/component/public/shared.ts
+const vPaginated = (item) => v.object({
+	items: v.array(item),
+	nextCursor: v.union(v.string(), v.null())
+});
+function normalizeTag(tag) {
+	return {
+		key: tag.key.trim().toLowerCase(),
+		value: tag.value.trim().toLowerCase()
+	};
+}
+function normalizeTags(tags) {
+	const seen = /* @__PURE__ */ new Set();
+	const result = [];
+	for (const raw of tags) {
+		const t = normalizeTag(raw);
+		const composite = `${t.key}\0${t.value}`;
+		if (!seen.has(composite)) {
+			seen.add(composite);
+			result.push(t);
+		}
+	}
+	return result;
+}
+
+//#endregion
+export { ConvexError, mutation, normalizeTag, normalizeTags, query, v, vAccountDoc, vApiKeyDoc, vApiKeyRateLimit, vApiKeyRateLimitState, vApiKeyScope, vAuditActorType, vAuditStatus, vAuthVerifierDoc, vDeviceCodeDoc, vDeviceStatus, vEnterpriseAuditEventDoc, vEnterpriseDoc, vEnterpriseDomainDoc, vEnterpriseDomainVerificationDoc, vEnterprisePolicy, vEnterpriseScimConfigDoc, vEnterpriseScimIdentityDoc, vEnterpriseSecretDoc, vEnterpriseSecretKind, vEnterpriseStatus, vEnterpriseWebhookDeliveryDoc, vEnterpriseWebhookEndpointDoc, vGroupDoc, vGroupInviteDoc, vGroupMemberDoc, vInviteAcceptByTokenResult, vInviteStatus, vPaginated, vPasskeyDoc, vRateLimitResult, vRefreshTokenDoc, vScimResourceType, vScimStatus, vSessionDoc, vTag, vTotpFactorDoc, vUserDoc, vVerificationCodeDoc, vWebhookEndpointStatus };
+//# sourceMappingURL=shared.js.map

package/dist/component/public/shared.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared.js","names":[],"sources":["../../../src/component/public/shared.ts"],"sourcesContent":["import { ConvexError, v } from \"convex/values\";\n\nimport type { Id } from \"../_generated/dataModel\";\nimport { mutation, query } from \"../functions\";\nimport {\n  vAccountDoc,\n  vApiKeyDoc,\n  vApiKeyRateLimit,\n  vApiKeyRateLimitState,\n  vApiKeyScope,\n  vAuditActorType,\n  vAuditStatus,\n  vAuthVerifierDoc,\n  vDeviceCodeDoc,\n  vDeviceStatus,\n  vEnterpriseAuditEventDoc,\n  vEnterpriseDoc,\n  vEnterpriseDomainDoc,\n  vEnterpriseDomainVerificationDoc,\n  vEnterprisePolicy,\n  vEnterpriseScimConfigDoc,\n  vEnterpriseScimIdentityDoc,\n  vEnterpriseSecretDoc,\n  vEnterpriseSecretKind,\n  vEnterpriseStatus,\n  vEnterpriseWebhookDeliveryDoc,\n  vEnterpriseWebhookEndpointDoc,\n  vGroupDoc,\n  vGroupInviteDoc,\n  vGroupMemberDoc,\n  vInviteAcceptByTokenResult,\n  vInviteStatus,\n  vPasskeyDoc,\n  vRateLimitResult,\n  vRefreshTokenDoc,\n  vScimResourceType,\n  vScimStatus,\n  vSessionDoc,\n  vTag,\n  vTotpFactorDoc,\n  vUserDoc,\n  vVerificationCodeDoc,\n  vWebhookEndpointStatus,\n} from \"../model\";\n\nexport {\n  ConvexError,\n  mutation,\n  query,\n  v,\n  vAccountDoc,\n  vApiKeyDoc,\n  vApiKeyRateLimit,\n  vApiKeyRateLimitState,\n  vApiKeyScope,\n  vAuditActorType,\n  vAuditStatus,\n  vAuthVerifierDoc,\n  vDeviceCodeDoc,\n  vDeviceStatus,\n  vEnterpriseAuditEventDoc,\n  vEnterpriseDoc,\n  vEnterpriseDomainDoc,\n  vEnterpriseDomainVerificationDoc,\n  vEnterprisePolicy,\n  vEnterpriseScimConfigDoc,\n  vEnterpriseScimIdentityDoc,\n  vEnterpriseSecretDoc,\n  vEnterpriseSecretKind,\n  vEnterpriseStatus,\n  vEnterpriseWebhookDeliveryDoc,\n  vEnterpriseWebhookEndpointDoc,\n  vGroupDoc,\n  vGroupInviteDoc,\n  vGroupMemberDoc,\n  vInviteAcceptByTokenResult,\n  vInviteStatus,\n  vPasskeyDoc,\n  vRateLimitResult,\n  vRefreshTokenDoc,\n  vScimResourceType,\n  vScimStatus,\n  vSessionDoc,\n  vTag,\n  vTotpFactorDoc,\n  vUserDoc,\n  vVerificationCodeDoc,\n  vWebhookEndpointStatus,\n};\nexport type { Id };\n\nexport const vPaginated = (item: any) =>\n  v.object({\n    items: v.array(item),\n    nextCursor: v.union(v.string(), v.null()),\n  });\n\nexport type TagPair = { key: string; value: string };\n\nexport function normalizeTag(tag: TagPair): TagPair {\n  return {\n    key: tag.key.trim().toLowerCase(),\n    value: tag.value.trim().toLowerCase(),\n  };\n}\n\nexport function normalizeTags(tags: TagPair[]): TagPair[] {\n  const seen = new Set<string>();\n  const result: TagPair[] = [];\n  for (const raw of tags) {\n    const t = normalizeTag(raw);\n    const composite = `${t.key}\\0${t.value}`;\n    if (!seen.has(composite)) {\n      seen.add(composite);\n      result.push(t);\n    }\n  }\n  return result;\n}\n"],"mappings":";;;;;AA2FA,MAAa,cAAc,SACzB,EAAE,OAAO;CACP,OAAO,EAAE,MAAM,KAAK;CACpB,YAAY,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,MAAM,CAAC;CAC1C,CAAC;AAIJ,SAAgB,aAAa,KAAuB;AAClD,QAAO;EACL,KAAK,IAAI,IAAI,MAAM,CAAC,aAAa;EACjC,OAAO,IAAI,MAAM,MAAM,CAAC,aAAa;EACtC;;AAGH,SAAgB,cAAc,MAA4B;CACxD,MAAM,uBAAO,IAAI,KAAa;CAC9B,MAAM,SAAoB,EAAE;AAC5B,MAAK,MAAM,OAAO,MAAM;EACtB,MAAM,IAAI,aAAa,IAAI;EAC3B,MAAM,YAAY,GAAG,EAAE,IAAI,IAAI,EAAE;AACjC,MAAI,CAAC,KAAK,IAAI,UAAU,EAAE;AACxB,QAAK,IAAI,UAAU;AACnB,UAAO,KAAK,EAAE;;;AAGlB,QAAO"}