@rolder/kit 3.0.0-alpha.105 → 3.0.0-alpha.107

package/dist/betterAuth/server/surrealDbAdapter/db/getDB.js

@@ -1,10 +1,6 @@
-import { readFile } from "node:fs/promises";
-import node_path from "node:path";
-import { fileURLToPath } from "node:url";
 import { createServerOnlyFn } from "@tanstack/react-start";
 import { getDBInstance } from "../../../../surrealDB/index.js";
-const getDB_dirname = node_path.dirname(fileURLToPath(import.meta.url));
-const authSchemaPath = node_path.resolve(getDB_dirname, './schema.surql');
+import { schema } from "./schema.js";
 let schemaApplied = false;
 let schemaApplying = false;
 const ensureAuthSchema = async (props = {})=>{
@@ -12,7 +8,6 @@ const ensureAuthSchema = async (props = {})=>{
     if (!schemaApplying) try {
         schemaApplying = true;
         const db = await getDBInstance(props);
-        const schema = await readFile(authSchemaPath, 'utf8');
         const betterAuthUrl = "/";
         const betterAuthJwksUrl = `${betterAuthUrl}/api/auth/jwks`;
         await db.query(schema, {

package/dist/betterAuth/server/surrealDbAdapter/db/schema.d.ts

@@ -0,0 +1 @@
+export declare const schema = "\n-- Better Auth JWT Access\n-- URL \u043F\u0435\u0440\u0435\u0434\u0430\u0435\u0442\u0441\u044F \u0447\u0435\u0440\u0435\u0437 \u043F\u0430\u0440\u0430\u043C\u0435\u0442\u0440 $BETTER_AUTH_JWKS_URL \u043F\u0440\u0438 \u0432\u044B\u043F\u043E\u043B\u043D\u0435\u043D\u0438\u0438 \u0441\u0445\u0435\u043C\u044B\nDEFINE ACCESS IF NOT EXISTS better_auth_jwt\n  ON DATABASE\n  TYPE JWT\n  URL $BETTER_AUTH_JWKS_URL\n;\n\n// User\nDEFINE TABLE IF NOT EXISTS user TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;\nDEFINE FIELD IF NOT EXISTS name ON user TYPE string;\nDEFINE FIELD OVERWRITE email ON user TYPE option<string> ASSERT $value = NONE OR string::is_email($value);\nDEFINE FIELD OVERWRITE email_address ON user TYPE option<string> ASSERT $value = NONE OR string::is_email($value);\nDEFINE INDEX IF NOT EXISTS userUserUnique ON user COLUMNS email UNIQUE;\nDEFINE FIELD IF NOT EXISTS emailVerified ON user TYPE bool;\nDEFINE FIELD IF NOT EXISTS image ON user TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS createdAt ON user TYPE option<datetime> DEFAULT time::now();\nDEFINE FIELD IF NOT EXISTS updatedAt ON user TYPE option<datetime> DEFAULT time::now();\n-- Admin plugin\nDEFINE FIELD IF NOT EXISTS role ON user TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS banned ON user TYPE option<bool>;\nDEFINE FIELD IF NOT EXISTS banReason ON user TYPE option<string> | NULL;\nDEFINE FIELD IF NOT EXISTS banExpires ON user TYPE option<datetime> | NULL;\n-- Username plugin\nDEFINE FIELD OVERWRITE username ON user TYPE option<string>;\nDEFINE FIELD OVERWRITE displayUsername ON user TYPE option<string>;\n-- Custom\nDEFINE FIELD IF NOT EXISTS accounts ON user COMPUTED <~account;\nDEFINE FIELD IF NOT EXISTS sessions ON user COMPUTED <~session;\n\n-- // Session\nDEFINE TABLE IF NOT EXISTS session TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;\nDEFINE FIELD IF NOT EXISTS expiresAt ON session TYPE datetime;\nDEFINE FIELD IF NOT EXISTS token ON session TYPE string;\nDEFINE INDEX IF NOT EXISTS sessionSessionUnique ON session COLUMNS token UNIQUE;\nDEFINE FIELD IF NOT EXISTS createdAt ON session TYPE option<datetime> DEFAULT time::now();\nDEFINE FIELD IF NOT EXISTS updatedAt ON session TYPE option<datetime> DEFAULT time::now();\nDEFINE FIELD IF NOT EXISTS ipAddress ON session TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS userAgent ON session TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS userId ON session TYPE record<user> REFERENCE ON DELETE IGNORE;\n-- Admin plugin\nDEFINE FIELD IF NOT EXISTS impersonatedBy ON user TYPE option<record<user>>;\n\n-- // Account\nDEFINE TABLE IF NOT EXISTS account TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;\nDEFINE FIELD IF NOT EXISTS accountId ON account TYPE string;\nDEFINE FIELD IF NOT EXISTS providerId ON account TYPE string;\nDEFINE FIELD IF NOT EXISTS accessToken ON account TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS refreshToken ON account TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS idToken ON account TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS accessTokenExpiresAt ON account TYPE option<datetime>;\nDEFINE FIELD IF NOT EXISTS refreshTokenExpiresAt ON account TYPE option<datetime>;\nDEFINE FIELD IF NOT EXISTS scope ON account TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS password ON account TYPE option<string>;\nDEFINE FIELD IF NOT EXISTS createdAt ON account TYPE option<datetime> DEFAULT time::now();\nDEFINE FIELD IF NOT EXISTS updatedAt ON account TYPE option<datetime> DEFAULT time::now();\n-- Custom\nDEFINE FIELD IF NOT EXISTS userId ON account TYPE record<user> REFERENCE ON DELETE IGNORE;\n\n// Verification\nDEFINE TABLE IF NOT EXISTS verification TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;\nDEFINE FIELD IF NOT EXISTS identifier ON verification TYPE string;\nDEFINE FIELD IF NOT EXISTS value ON verification TYPE string;\nDEFINE FIELD IF NOT EXISTS expiresAt ON verification TYPE datetime;\nDEFINE FIELD IF NOT EXISTS createdAt ON verification TYPE option<datetime> DEFAULT time::now();\nDEFINE FIELD IF NOT EXISTS updatedAt ON verification TYPE option<datetime> DEFAULT time::now();\n\n// JWKS\nDEFINE TABLE IF NOT EXISTS jwks TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;\nDEFINE FIELD IF NOT EXISTS publicKey ON jwks TYPE string;\nDEFINE FIELD IF NOT EXISTS privateKey ON jwks TYPE string;\nDEFINE FIELD IF NOT EXISTS createdAt ON jwks TYPE option<datetime> DEFAULT time::now();\nDEFINE FIELD IF NOT EXISTS updatedAt ON jwks TYPE option<datetime> DEFAULT time::now();\n\n// Root auth user\nIF !user:root.* {\n    CREATE user:root CONTENT {\n    \tname: '\u0421\u0438\u0441\u0442\u0435\u043C\u043D\u0430\u044F \u0443\u0447\u0435\u0442\u043D\u0430\u044F \u0437\u0430\u043F\u0438\u0441\u044C',\n    \trole: 'admin',\n    \tusername: 'root',\n    \tdisplayUsername: 'Root',\n    \temail: 'mail@rolder.dev',\n    \temailVerified: true,\n    \tbanned: false,\n    };\n};\n\nIF !account:root.* {\n    CREATE account:root CONTENT {\n    \taccountId: 'root',\n    \tuserId: user:root,\n    \tpassword: '52c2da6bc1a525ee0f6a298e228a1314:c7ba714b9467d4582c5848947c2536340ff9f85ff6ca6c9ee022f68cd5eb60e227ba0cbadd3d46e9316c4562cef9d7551c957192809bf2a4b27f2a2b1365a08e',\n        providerId: 'credential',\n    };\n};";

package/dist/betterAuth/server/surrealDbAdapter/db/schema.js

@@ -0,0 +1,97 @@
+const schema = `
+-- Better Auth JWT Access
+-- URL передается через параметр $BETTER_AUTH_JWKS_URL при выполнении схемы
+DEFINE ACCESS IF NOT EXISTS better_auth_jwt
+  ON DATABASE
+  TYPE JWT
+  URL $BETTER_AUTH_JWKS_URL
+;
+
+// User
+DEFINE TABLE IF NOT EXISTS user TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;
+DEFINE FIELD IF NOT EXISTS name ON user TYPE string;
+DEFINE FIELD OVERWRITE email ON user TYPE option<string> ASSERT $value = NONE OR string::is_email($value);
+DEFINE FIELD OVERWRITE email_address ON user TYPE option<string> ASSERT $value = NONE OR string::is_email($value);
+DEFINE INDEX IF NOT EXISTS userUserUnique ON user COLUMNS email UNIQUE;
+DEFINE FIELD IF NOT EXISTS emailVerified ON user TYPE bool;
+DEFINE FIELD IF NOT EXISTS image ON user TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS createdAt ON user TYPE option<datetime> DEFAULT time::now();
+DEFINE FIELD IF NOT EXISTS updatedAt ON user TYPE option<datetime> DEFAULT time::now();
+-- Admin plugin
+DEFINE FIELD IF NOT EXISTS role ON user TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS banned ON user TYPE option<bool>;
+DEFINE FIELD IF NOT EXISTS banReason ON user TYPE option<string> | NULL;
+DEFINE FIELD IF NOT EXISTS banExpires ON user TYPE option<datetime> | NULL;
+-- Username plugin
+DEFINE FIELD OVERWRITE username ON user TYPE option<string>;
+DEFINE FIELD OVERWRITE displayUsername ON user TYPE option<string>;
+-- Custom
+DEFINE FIELD IF NOT EXISTS accounts ON user COMPUTED <~account;
+DEFINE FIELD IF NOT EXISTS sessions ON user COMPUTED <~session;
+
+-- // Session
+DEFINE TABLE IF NOT EXISTS session TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;
+DEFINE FIELD IF NOT EXISTS expiresAt ON session TYPE datetime;
+DEFINE FIELD IF NOT EXISTS token ON session TYPE string;
+DEFINE INDEX IF NOT EXISTS sessionSessionUnique ON session COLUMNS token UNIQUE;
+DEFINE FIELD IF NOT EXISTS createdAt ON session TYPE option<datetime> DEFAULT time::now();
+DEFINE FIELD IF NOT EXISTS updatedAt ON session TYPE option<datetime> DEFAULT time::now();
+DEFINE FIELD IF NOT EXISTS ipAddress ON session TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS userAgent ON session TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS userId ON session TYPE record<user> REFERENCE ON DELETE IGNORE;
+-- Admin plugin
+DEFINE FIELD IF NOT EXISTS impersonatedBy ON user TYPE option<record<user>>;
+
+-- // Account
+DEFINE TABLE IF NOT EXISTS account TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;
+DEFINE FIELD IF NOT EXISTS accountId ON account TYPE string;
+DEFINE FIELD IF NOT EXISTS providerId ON account TYPE string;
+DEFINE FIELD IF NOT EXISTS accessToken ON account TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS refreshToken ON account TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS idToken ON account TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS accessTokenExpiresAt ON account TYPE option<datetime>;
+DEFINE FIELD IF NOT EXISTS refreshTokenExpiresAt ON account TYPE option<datetime>;
+DEFINE FIELD IF NOT EXISTS scope ON account TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS password ON account TYPE option<string>;
+DEFINE FIELD IF NOT EXISTS createdAt ON account TYPE option<datetime> DEFAULT time::now();
+DEFINE FIELD IF NOT EXISTS updatedAt ON account TYPE option<datetime> DEFAULT time::now();
+-- Custom
+DEFINE FIELD IF NOT EXISTS userId ON account TYPE record<user> REFERENCE ON DELETE IGNORE;
+
+// Verification
+DEFINE TABLE IF NOT EXISTS verification TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;
+DEFINE FIELD IF NOT EXISTS identifier ON verification TYPE string;
+DEFINE FIELD IF NOT EXISTS value ON verification TYPE string;
+DEFINE FIELD IF NOT EXISTS expiresAt ON verification TYPE datetime;
+DEFINE FIELD IF NOT EXISTS createdAt ON verification TYPE option<datetime> DEFAULT time::now();
+DEFINE FIELD IF NOT EXISTS updatedAt ON verification TYPE option<datetime> DEFAULT time::now();
+
+// JWKS
+DEFINE TABLE IF NOT EXISTS jwks TYPE NORMAL SCHEMAFULL PERMISSIONS FULL;
+DEFINE FIELD IF NOT EXISTS publicKey ON jwks TYPE string;
+DEFINE FIELD IF NOT EXISTS privateKey ON jwks TYPE string;
+DEFINE FIELD IF NOT EXISTS createdAt ON jwks TYPE option<datetime> DEFAULT time::now();
+DEFINE FIELD IF NOT EXISTS updatedAt ON jwks TYPE option<datetime> DEFAULT time::now();
+
+// Root auth user
+IF !user:root.* {
+    CREATE user:root CONTENT {
+    	name: 'Системная учетная запись',
+    	role: 'admin',
+    	username: 'root',
+    	displayUsername: 'Root',
+    	email: 'mail@rolder.dev',
+    	emailVerified: true,
+    	banned: false,
+    };
+};
+
+IF !account:root.* {
+    CREATE account:root CONTENT {
+    	accountId: 'root',
+    	userId: user:root,
+    	password: '52c2da6bc1a525ee0f6a298e228a1314:c7ba714b9467d4582c5848947c2536340ff9f85ff6ca6c9ee022f68cd5eb60e227ba0cbadd3d46e9316c4562cef9d7551c957192809bf2a4b27f2a2b1365a08e',
+        providerId: 'credential',
+    };
+};`;
+export { schema };

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@rolder/kit",
-	"version": "3.0.0-alpha.105",
+	"version": "3.0.0-alpha.107",
 	"type": "module",
 	"exports": {
 		"./ai": {